ipsec-tools-vl.spec 7.5 KB

  1. Name: ipsec-tools
  2. Version: 0.6.7
  3. Release: 1%{?_dist_release}
  4. Summary: Tools for configuring and using IPsec
  5. Summary(ja): IPsecツール
  6. License: BSD
  7. Group: System Environment/Base
  8. URL: http://ipsec-tools.sourceforge.net/
  9. Source: http://prdownload.sourceforge.net/ipsec-tools/ipsec-tools-%{version}.tar.bz2
  10. #Source1: ipsec.h
  11. #Source2: pfkeyv2.h
  12. Source3: racoon.conf
  13. Source4: psk.txt
  14. #Source5: xfrm.h
  15. #Source6: udp.h
  16. Source7: racoon.init
  17. Source8: ipsec.conf
  18. Patch: ipsec-tools-0.5-libs.patch
  19. Patch2: isakmp.c.diff
  20. Patch5: ipsec-tools-0.5-64bit.patch
  21. Patch7: ipsec-tools-0.6.5-mls.patch
  22. Patch9: racoon-lspp-ipsec.patch
  23. #BuildRequires: openssl-devel, krb5-devel, bison, flex, automake, libtool
  24. BuildRequires: openssl-devel, bison, flex, automake, libtool, glibc-kernheaders
  25. #BuildRequires: libselinux-devel >= 1.30.28-2
  26. BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root
  27. #Requires: initscripts >= 7.31.11.EL-1
  28. Requires: initscripts
  29. Vendor: Project Vine
  30. Distribution: Vine Linux
  31. %description
  32. This is the IPsec-Tools package. You need this package in order to
  33. really use the IPsec functionality in the linux-2.5+ kernels. This
  34. package builds:
  35. - setkey, a program to directly manipulate policies and SAs
  36. - racoon, an IKEv1 keying daemon
  37. %description -l ja
  38. これは IPsecツールのパッケージです。Linux Kernel 2.5 以上の IPsec
  39. 機能を使うにはこのパッケージが必要です。パッケージには以下の物が
  40. 含まれています。
  41. - setkey, SA と SP を操作/設定する為のプログラム
  42. - racoon, IKEv1 自動鍵交換デーモン
  43. %prep
  44. %setup -q
  45. %patch -p1
  46. %patch2 -p1
  47. %patch5 -p1 -b .64bit
  48. #%patch7 -p1 -b .mls
  49. #%patch9 -p1 -b .sctx
  50. #mkdir -p kernel-headers/linux
  51. #cp %{SOURCE1} %{SOURCE2} %{SOURCE5} %{SOURCE6} kernel-headers/linux
  52. #./bootstrap
  53. %build
  54. sed -i 's|-Werror||g' configure
  55. CFLAGS="$RPM_OPT_FLAGS" %configure \
  56. --sysconfdir=%{_sysconfdir}/racoon \
  57. --with-kernel-headers=/usr/include \
  58. --without-readline \
  59. --enable-adminport \
  60. --enable-hybrid \
  61. --enable-frag \
  62. --enable-dpd \
  63. --enable-natt
  64. # --enable-gssapi \
  65. # --enable-security-context
  66. make
  67. %install
  68. rm -rf $RPM_BUILD_ROOT
  69. mkdir -p $RPM_BUILD_ROOT/sbin
  70. mkdir -p $RPM_BUILD_ROOT%{_sbindir}
  71. mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/racoon
  72. mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/rc.d/init.d
  73. make install DESTDIR=$RPM_BUILD_ROOT
  74. # no devel stuff for now
  75. rm -rf $RPM_BUILD_ROOT%{_libdir}/libipsec.{a,la} \
  76. $RPM_BUILD_ROOT%{_libdir}/libracoon.{a,la} \
  77. $RPM_BUILD_ROOT%{_includedir} \
  78. $RPM_BUILD_ROOT%{_mandir}/man3
  79. install -m 600 %{SOURCE3} \
  80. $RPM_BUILD_ROOT%{_sysconfdir}/racoon/racoon.conf
  81. install -m 600 %{SOURCE4} \
  82. $RPM_BUILD_ROOT%{_sysconfdir}/racoon/psk.txt
  83. install -m 755 %{SOURCE7} \
  84. $RPM_BUILD_ROOT%{_sysconfdir}/rc.d/init.d/racoon
  85. install -m 600 %{SOURCE8} \
  86. $RPM_BUILD_ROOT%{_sysconfdir}/ipsec.conf
  87. mv $RPM_BUILD_ROOT%{_sbindir}/setkey $RPM_BUILD_ROOT/sbin
  88. mkdir -m 0700 -p $RPM_BUILD_ROOT%{_sysconfdir}/racoon/certs
  89. %clean
  90. rm -rf $RPM_BUILD_ROOT
  91. %files
  92. %defattr(-,root,root)
  93. %doc src/racoon/samples/racoon.conf src/racoon/samples/psk.txt
  94. %doc src/racoon/doc/FAQ
  95. %doc ChangeLog NEWS README
  96. /sbin/*
  97. %{_sbindir}/*
  98. %{_mandir}/man*/*
  99. %dir /etc/racoon
  100. %dir /etc/racoon/certs
  101. %dir /var/racoon
  102. %config(noreplace) %{_sysconfdir}/racoon/psk.txt
  103. %config(noreplace) %{_sysconfdir}/racoon/racoon.conf
  104. %config %{_sysconfdir}/rc.d/init.d/racoon
  105. %config(noreplace) %{_sysconfdir}/ipsec.conf
  106. %changelog
  107. * Sun Sep 28 2008 Shu KONNO <owa@bg.wakwak.com> 0.6.7-1vl5
  108. - applied new versioning policy, spec in utf-8
  109. * Sun Jun 10 2007 Ryoichi INAGAKI <ryo1@bc.wakwak.com> 0.6.7-0vl1
  110. - new upstream release (including security fix CVE-2007-1841)
  111. - rebuilt with new toolchain
  112. * Wed Feb 28 2007 Kunio Murasawa <murasawa@fa2.so-net.ne.jp> 0.6.6-1vl1
  113. - initial build for Vine Linux
  114. * Wed Jan 17 2007 Harald Hoyer <harald@redhat.com> - 0.6.6-1
  115. - version 0.6.6
  116. * Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 0.6.5-6
  117. - rebuilt for unwind info generation, broken in gcc-4.1.1-21
  118. * Mon Sep 25 2006 Harald Hoyer <harald@redhat.com> - 0.6.5-5
  119. - added patch for selinux integration (bug #207159)
  120. * Fri Aug 4 2006 Harald Hoyer <harald@redhat.com> - 0.6.5-4
  121. - backport of important 0.6.6 fixes:
  122. - sets NAT-T ports to 0 if no NAT encapsulation
  123. - fixed memory leak
  124. * Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 0.6.5-3.1
  125. - rebuild
  126. * Wed Jun 21 2006 Harald Hoyer <harald@redhat.com> - 0.6.5-3
  127. - more build requirements
  128. * Tue Apr 18 2006 Dan Walsh <dwalsh@redhat.com> - 0.6.5-2
  129. - Fix patch to build MLS Stuff correctly
  130. * Tue Apr 18 2006 Dan Walsh <dwalsh@redhat.com> - 0.6.5-1
  131. - Update to latest upstream version
  132. - Add MLS Patch to allow use of labeled networks
  133. - Patch provided by Joy Latten <latten@austin.ibm.com>
  134. * Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 0.6.4-1.1
  135. - bump again for double-long bug on ppc(64)
  136. * Tue Feb 07 2006 Harald Hoyer <harald@redhat.com> 0.6.4-1
  137. - version 0.6.4
  138. * Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 0.6.3-1.2
  139. - rebuilt for new gcc4.1 snapshot and glibc changes
  140. * Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
  141. - rebuilt
  142. * Mon Dec 05 2005 Harald Hoyer <harald@redhat.com> 0.6.3-1
  143. - version 0.6.3, which contains fixes for various DoS problems
  144. * Wed Nov 9 2005 Tomas Mraz <tmraz@redhat.com> 0.6.1-2
  145. - rebuilt against new openssl
  146. * Wed Oct 12 2005 Harald Hoyer <harald@redhat.com> 0.6.1-1
  147. - version 0.6.1
  148. * Mon Mar 28 2005 Bill Nottingham <notting@redhat.com> 0.5-4
  149. - fix 64-bit issue in setph1attr() (<aviro@redhat.com>)
  150. * Mon Mar 14 2005 Bill Nottingham <notting@redhat.com> 0.5-3
  151. - add patch for DoS (CAN-2005-0398, #145532)
  152. * Sat Mar 5 2005 Uwe Beck <ubeck@c3pdm.com> 0.5-2
  153. - now racoon use /etc/racoon/racoon.conf as default
  154. - add the /var/racoon directory for racoon.sock
  155. * Wed Feb 23 2005 Bill Nottingham <notting@redhat.com> 0.5-1
  156. - update to 0.5
  157. * Thu Nov 4 2004 Bill Nottingham <notting@redhat.com> 0.3.3-2
  158. - don't use new 0.3.3 handling of stdin in setkey; it breaks the
  159. format (#138105)
  160. * Mon Sep 27 2004 Bill Nottingham <notting@redhat.com> 0.3.3-1
  161. - update to 0.3.3 (#122211)
  162. * Sun Aug 08 2004 Alan Cox <alan@redhat.com> 0.2.5-6
  163. - fix buildreqs (Steve Grubb)
  164. * Mon Jun 28 2004 Nalin Dahyabhai <nalin@redhat.com> 0.2.5-5
  165. - rebuild
  166. * Fri Jun 25 2004 Nalin Dahyabhai <nalin@redhat.com> 0.2.5-4
  167. - backport certificate validation fixes from 0.3.3 (#126568)
  168. * Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
  169. - rebuilt
  170. * Wed Apr 14 2004 Bill Nottingham <notting@redhat.com> - 0.2.5-2
  171. - add patch for potential remote DoS (CAN-2004-0403)
  172. * Tue Apr 6 2004 Bill Nottingham <notting@redhat.com>
  173. - update to 0.2.5
  174. * Tue Mar 02 2004 Elliot Lee <sopwith@redhat.com>
  175. - rebuilt
  176. * Mon Feb 23 2004 Bill Nottingham <notting@redhat.com>
  177. - update to 0.2.4, fix racoon install location (#116374, <kajtzu@fi.basen.net>)
  178. * Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
  179. - rebuilt
  180. * Mon Dec 8 2003 Bill Nottingham <notting@redhat.com> 0.2.2-8
  181. - rebuild
  182. * Fri Aug 29 2003 Bill Nottingham <notting@redhat.com> 0.2.2-7
  183. - add fix for #103238
  184. * Tue Aug 5 2003 Bill Nottingham <notting@redhat.com> 0.2.2-6
  185. - update kernel interface bits, rebuild against them
  186. * Tue Jul 29 2003 Bill Nottingham <notting@redhat.com> 0.2.2-5
  187. - rebuild
  188. * Wed Jul 2 2003 Bill Notitngham <notting@redhat.com> 0.2.2-4
  189. - ship a much more pared-down racoon.conf and psk.txt
  190. * Thu Jun 5 2003 Bill Notitngham <notting@redhat.com> 0.2.2-3
  191. - update pfkey header for current kernels
  192. * Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com>
  193. - rebuilt
  194. * Fri May 2 2003 Bill Nottingham <notting@redhat.com> 0.2.2-1
  195. - update to 0.2.2
  196. * Fri Mar 7 2003 Bill Nottingham <notting@redhat.com>
  197. - initial build