meson: Fix bad strerror_r check

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4146 from brauner/2022-06-13.fixes

build: fixes

build: map autotools options to meson options in meson_options.txt

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

README: reflect meson in the documentation

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: add missing memfd-rexec option

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: support thread-safety enforcement as option

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: use cc.links() to check for static libcap

Fixes: #4144
Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

Merge pull request #4142 from brauner/2022-06-09.build.fixes

tests: fix oss-fuzz port to meson

oss-fuzz: cleanup build flags

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

oss-fuzz: ensure binaries are zipped

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

oss-fuzz: adapt options to oss-fuzz build

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

oss-fuzz: handle dependencies

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: separate oss-fuzz tests from regular test builds

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

github/workflows/cifuzz: update to Ubuntu 22.04

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: add oss-fuzz switch

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: add seccomp build option

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: fix build with various options turned off

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: tweak build flags

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

Merge pull request #4141 from lxc/dependabot/github_actions/actions/upload-artifact-3

build(deps): bump actions/upload-artifact from 1 to 3

build(deps): bump actions/upload-artifact from 1 to 3

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 1 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v1...v3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Merge pull request #4140 from turrisxyz/Dependabot-GitHub-Actions

chore: Included githubactions in the dependabot config

chore: Included githubactions in the dependabot config

This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

Merge pull request #4139 from stgraber/master

Github workflow fixes

github: Fix compiler version task for coverity

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

github: Fix bad syntax in cifuzz

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4137 from brauner/2022-06-08.stgraber.master

build: remove autotools and finish meson port

github/workflows/sanitizers: port sanitizers builds to meson

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

github/workflows: port all workflows to Ubuntu 22.04

So we have a new enough meson version everywhere.

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

github/workflows/cifuzz: ensure necessary paths are added

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

github/workflows/build: remove sanitizer build

We have a separate workflow for this.

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

github/workflows/build: add -Db_lto_mode=default

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

github/workflows/build: install lvvm as well

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

oss-fuzz: more meson options

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: lxc-init doesn't need to build the whole config infra

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: add additional command line switches

In order to compile for fuzzers where we will need and want to turn a
bunch of things off add command line switches that allow us to do so.

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: use liblxc_sources everywhere

The old split didn't buy us a lot and causes problems when buidling with
sanitizers enabled so just use the full sources.

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

config: make lxc-{containers,net}.in executable

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

Merge pull request #4136 from turrisxyz/Pinned-Dependencies-GitHub

chore: Set permissions for GitHub actions

meson: Always defined IS_BIONIC

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

src: Don't use ifdef/defined for config.h

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

github: Update coverity workflow for meson

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

github: Update build test for meson

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

README: Update for meson

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

doc: Update for meson

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add basic Makefile

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Remove autotools

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

chore: Set permissions for GitHub actions

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>

Merge pull request #4135 from stgraber/meson

More meson fixes

meson: Fix mntent include condition

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

lxc/rexec: Use HAVE_FEXECVE

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add lxcmntent to unmount-namespace hook

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add missing prlimit include

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Only build seccomp and selinux when needed

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Always define HAVE_LIBURING

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: seccomp is optional

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Fix on shallow git trees

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add bionic detection

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Fix RPM spec variables

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Make lxc-user-nic setuid

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Don't include lxc-test-fuzzers

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Skip static library when using sanitizer

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Cleanup and fix includes

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add coverity flag

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4133 from dasteihn/sta/fallthrough

CODING_STYLE: add forgotten fallthrough

CODING_STYLE: add forgotten fallthrough

Signed-off-by: Philipp Stanner <stanner@posteo.de>

Merge pull request #4130 from stgraber/master

Finalize the meson port

meson: Add RPM spec

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Rework configuration variables

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Tweak config for manpages

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Export more variables to doc

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Export LXC_DISTRO_SYSCONF

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4126 from stgraber/master

Complete meson port

meson: Add apparmor profiles

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add sysconfig

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add init scripts

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Rename want_io_uring

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Make docbook2man required if user requested doc

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4125 from stgraber/master

meson: Tweak docs

meson: More flexible doc handling

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Simplify if statements

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4124 from stgraber/master

More meson work

meson: Add manpages

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Only build tools when requested

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add tools option

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Re-shuffle PAM

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson_options: Move entries around

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Merge pull request #4120 from brauner/2022-05-18.meson.pam

build: add pam_cgfs to meson

Merge pull request #4121 from sitano/ivan_fix_pidfds_loglvl

lxc_can_use_pidfd: don't log error if pidfds not supported, trace

lxc_can_use_pidfd: don't log error if pidfds not supported, trace

Signed-off-by: Ivan Prisyazhnyy <john.koepi@gmail.com>

pam: fix compiler warnings

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

build: add pam_cgfs to meson

Signed-off-by: Christian Brauner (Microsoft) <christian.brauner@ubuntu.com>

Merge pull request #4115 from terceiro/rename-completion

bash: rename main bash completion file

Merge pull request #4117 from stgraber/master

More meson coverage

meson: Add remaining scripts

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Re-organize dir variables

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add init helper scripts

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add common configs

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add SELinux configs

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

meson: Add global config

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

bash: rename main bash completion file

Since the `lxc` binary is actually provided by lxd, the main
bash-completion file needs to be moved away to not conflict with a bash
completion file provided for the `lxc` binary by lxd.

Signed-off-by: Antonio Terceiro <terceiro@debian.org>