1 | Name: ipsec-tools |
---|
2 | Version: 0.6.7 |
---|
3 | Release: 2%{?_dist_release} |
---|
4 | Summary: Tools for configuring and using IPsec |
---|
5 | Summary(ja): IPsecツール |
---|
6 | License: BSD |
---|
7 | Group: System Environment/Base |
---|
8 | URL: http://ipsec-tools.sourceforge.net/ |
---|
9 | Source: http://prdownload.sourceforge.net/ipsec-tools/ipsec-tools-%{version}.tar.bz2 |
---|
10 | #Source1: ipsec.h |
---|
11 | #Source2: pfkeyv2.h |
---|
12 | Source3: racoon.conf |
---|
13 | Source4: psk.txt |
---|
14 | #Source5: xfrm.h |
---|
15 | #Source6: udp.h |
---|
16 | Source7: racoon.init |
---|
17 | Source8: ipsec.conf |
---|
18 | |
---|
19 | Patch: ipsec-tools-0.5-libs.patch |
---|
20 | Patch2: isakmp.c.diff |
---|
21 | Patch5: ipsec-tools-0.5-64bit.patch |
---|
22 | Patch7: ipsec-tools-0.6.5-mls.patch |
---|
23 | Patch9: racoon-lspp-ipsec.patch |
---|
24 | |
---|
25 | #BuildRequires: openssl-devel, krb5-devel, bison, flex, automake, libtool |
---|
26 | BuildRequires: openssl-devel, bison, flex, automake, libtool, glibc-kernheaders |
---|
27 | #BuildRequires: libselinux-devel >= 1.30.28-2 |
---|
28 | BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root |
---|
29 | #Requires: initscripts >= 7.31.11.EL-1 |
---|
30 | Requires: initscripts |
---|
31 | |
---|
32 | Vendor: Project Vine |
---|
33 | Distribution: Vine Linux |
---|
34 | |
---|
35 | %description |
---|
36 | This is the IPsec-Tools package. You need this package in order to |
---|
37 | really use the IPsec functionality in the linux-2.5+ kernels. This |
---|
38 | package builds: |
---|
39 | |
---|
40 | - setkey, a program to directly manipulate policies and SAs |
---|
41 | - racoon, an IKEv1 keying daemon |
---|
42 | |
---|
43 | %description -l ja |
---|
44 | これは IPsecツールのパッケージです。Linux Kernel 2.5 以上の IPsec |
---|
45 | 機能を使うにはこのパッケージが必要です。パッケージには以下の物が |
---|
46 | 含まれています。 |
---|
47 | |
---|
48 | - setkey, SA と SP を操作/設定する為のプログラム |
---|
49 | - racoon, IKEv1 自動鍵交換デーモン |
---|
50 | |
---|
51 | %prep |
---|
52 | %setup -q |
---|
53 | %patch -p1 |
---|
54 | %patch2 -p1 |
---|
55 | %patch5 -p1 -b .64bit |
---|
56 | #%patch7 -p1 -b .mls |
---|
57 | #%patch9 -p1 -b .sctx |
---|
58 | |
---|
59 | #mkdir -p kernel-headers/linux |
---|
60 | #cp %{SOURCE1} %{SOURCE2} %{SOURCE5} %{SOURCE6} kernel-headers/linux |
---|
61 | #./bootstrap |
---|
62 | |
---|
63 | %build |
---|
64 | sed -i 's|-Werror||g' configure |
---|
65 | CFLAGS="$RPM_OPT_FLAGS" %configure \ |
---|
66 | --sysconfdir=%{_sysconfdir}/racoon \ |
---|
67 | --with-kernel-headers=/usr/include \ |
---|
68 | --without-readline \ |
---|
69 | --enable-adminport \ |
---|
70 | --enable-hybrid \ |
---|
71 | --enable-frag \ |
---|
72 | --enable-dpd \ |
---|
73 | --enable-natt |
---|
74 | # --enable-gssapi \ |
---|
75 | # --enable-security-context |
---|
76 | make |
---|
77 | |
---|
78 | %install |
---|
79 | rm -rf $RPM_BUILD_ROOT |
---|
80 | mkdir -p $RPM_BUILD_ROOT/sbin |
---|
81 | mkdir -p $RPM_BUILD_ROOT%{_sbindir} |
---|
82 | mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/racoon |
---|
83 | mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/rc.d/init.d |
---|
84 | make install DESTDIR=$RPM_BUILD_ROOT |
---|
85 | # no devel stuff for now |
---|
86 | rm -rf $RPM_BUILD_ROOT%{_libdir}/libipsec.{a,la} \ |
---|
87 | $RPM_BUILD_ROOT%{_libdir}/libracoon.{a,la} \ |
---|
88 | $RPM_BUILD_ROOT%{_includedir} \ |
---|
89 | $RPM_BUILD_ROOT%{_mandir}/man3 |
---|
90 | |
---|
91 | install -m 600 %{SOURCE3} \ |
---|
92 | $RPM_BUILD_ROOT%{_sysconfdir}/racoon/racoon.conf |
---|
93 | install -m 600 %{SOURCE4} \ |
---|
94 | $RPM_BUILD_ROOT%{_sysconfdir}/racoon/psk.txt |
---|
95 | install -m 755 %{SOURCE7} \ |
---|
96 | $RPM_BUILD_ROOT%{_sysconfdir}/rc.d/init.d/racoon |
---|
97 | install -m 600 %{SOURCE8} \ |
---|
98 | $RPM_BUILD_ROOT%{_sysconfdir}/ipsec.conf |
---|
99 | |
---|
100 | mv $RPM_BUILD_ROOT%{_sbindir}/setkey $RPM_BUILD_ROOT/sbin |
---|
101 | |
---|
102 | mkdir -m 0700 -p $RPM_BUILD_ROOT%{_sysconfdir}/racoon/certs |
---|
103 | |
---|
104 | %clean |
---|
105 | rm -rf $RPM_BUILD_ROOT |
---|
106 | |
---|
107 | %files |
---|
108 | %defattr(-,root,root) |
---|
109 | %doc src/racoon/samples/racoon.conf src/racoon/samples/psk.txt |
---|
110 | %doc src/racoon/doc/FAQ |
---|
111 | %doc ChangeLog NEWS README |
---|
112 | /sbin/* |
---|
113 | %{_sbindir}/* |
---|
114 | %{_mandir}/man*/* |
---|
115 | %dir /etc/racoon |
---|
116 | %dir /etc/racoon/certs |
---|
117 | %dir /var/racoon |
---|
118 | %config(noreplace) %{_sysconfdir}/racoon/psk.txt |
---|
119 | %config(noreplace) %{_sysconfdir}/racoon/racoon.conf |
---|
120 | %config %{_sysconfdir}/rc.d/init.d/racoon |
---|
121 | %config(noreplace) %{_sysconfdir}/ipsec.conf |
---|
122 | |
---|
123 | %changelog |
---|
124 | * Sun Feb 06 2011 Yoji TOYODA <bsyamato@sea.plala.or.jp> 0.6.7-2 |
---|
125 | - rebuild with openssl-1.0.0c |
---|
126 | |
---|
127 | * Sun Sep 28 2008 Shu KONNO <owa@bg.wakwak.com> 0.6.7-1vl5 |
---|
128 | - applied new versioning policy, spec in utf-8 |
---|
129 | |
---|
130 | * Sun Jun 10 2007 Ryoichi INAGAKI <ryo1@bc.wakwak.com> 0.6.7-0vl1 |
---|
131 | - new upstream release (including security fix CVE-2007-1841) |
---|
132 | - rebuilt with new toolchain |
---|
133 | |
---|
134 | * Wed Feb 28 2007 Kunio Murasawa <murasawa@fa2.so-net.ne.jp> 0.6.6-1vl1 |
---|
135 | - initial build for Vine Linux |
---|
136 | |
---|
137 | * Wed Jan 17 2007 Harald Hoyer <harald@redhat.com> - 0.6.6-1 |
---|
138 | - version 0.6.6 |
---|
139 | |
---|
140 | * Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 0.6.5-6 |
---|
141 | - rebuilt for unwind info generation, broken in gcc-4.1.1-21 |
---|
142 | |
---|
143 | * Mon Sep 25 2006 Harald Hoyer <harald@redhat.com> - 0.6.5-5 |
---|
144 | - added patch for selinux integration (bug #207159) |
---|
145 | |
---|
146 | * Fri Aug 4 2006 Harald Hoyer <harald@redhat.com> - 0.6.5-4 |
---|
147 | - backport of important 0.6.6 fixes: |
---|
148 | - sets NAT-T ports to 0 if no NAT encapsulation |
---|
149 | - fixed memory leak |
---|
150 | |
---|
151 | * Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 0.6.5-3.1 |
---|
152 | - rebuild |
---|
153 | |
---|
154 | * Wed Jun 21 2006 Harald Hoyer <harald@redhat.com> - 0.6.5-3 |
---|
155 | - more build requirements |
---|
156 | |
---|
157 | * Tue Apr 18 2006 Dan Walsh <dwalsh@redhat.com> - 0.6.5-2 |
---|
158 | - Fix patch to build MLS Stuff correctly |
---|
159 | |
---|
160 | * Tue Apr 18 2006 Dan Walsh <dwalsh@redhat.com> - 0.6.5-1 |
---|
161 | - Update to latest upstream version |
---|
162 | - Add MLS Patch to allow use of labeled networks |
---|
163 | - Patch provided by Joy Latten <latten@austin.ibm.com> |
---|
164 | |
---|
165 | * Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 0.6.4-1.1 |
---|
166 | - bump again for double-long bug on ppc(64) |
---|
167 | |
---|
168 | * Tue Feb 07 2006 Harald Hoyer <harald@redhat.com> 0.6.4-1 |
---|
169 | - version 0.6.4 |
---|
170 | |
---|
171 | * Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 0.6.3-1.2 |
---|
172 | - rebuilt for new gcc4.1 snapshot and glibc changes |
---|
173 | |
---|
174 | * Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com> |
---|
175 | - rebuilt |
---|
176 | |
---|
177 | * Mon Dec 05 2005 Harald Hoyer <harald@redhat.com> 0.6.3-1 |
---|
178 | - version 0.6.3, which contains fixes for various DoS problems |
---|
179 | |
---|
180 | * Wed Nov 9 2005 Tomas Mraz <tmraz@redhat.com> 0.6.1-2 |
---|
181 | - rebuilt against new openssl |
---|
182 | |
---|
183 | * Wed Oct 12 2005 Harald Hoyer <harald@redhat.com> 0.6.1-1 |
---|
184 | - version 0.6.1 |
---|
185 | |
---|
186 | * Mon Mar 28 2005 Bill Nottingham <notting@redhat.com> 0.5-4 |
---|
187 | - fix 64-bit issue in setph1attr() (<aviro@redhat.com>) |
---|
188 | |
---|
189 | * Mon Mar 14 2005 Bill Nottingham <notting@redhat.com> 0.5-3 |
---|
190 | - add patch for DoS (CAN-2005-0398, #145532) |
---|
191 | |
---|
192 | * Sat Mar 5 2005 Uwe Beck <ubeck@c3pdm.com> 0.5-2 |
---|
193 | - now racoon use /etc/racoon/racoon.conf as default |
---|
194 | - add the /var/racoon directory for racoon.sock |
---|
195 | |
---|
196 | * Wed Feb 23 2005 Bill Nottingham <notting@redhat.com> 0.5-1 |
---|
197 | - update to 0.5 |
---|
198 | |
---|
199 | * Thu Nov 4 2004 Bill Nottingham <notting@redhat.com> 0.3.3-2 |
---|
200 | - don't use new 0.3.3 handling of stdin in setkey; it breaks the |
---|
201 | format (#138105) |
---|
202 | |
---|
203 | * Mon Sep 27 2004 Bill Nottingham <notting@redhat.com> 0.3.3-1 |
---|
204 | - update to 0.3.3 (#122211) |
---|
205 | |
---|
206 | * Sun Aug 08 2004 Alan Cox <alan@redhat.com> 0.2.5-6 |
---|
207 | - fix buildreqs (Steve Grubb) |
---|
208 | |
---|
209 | * Mon Jun 28 2004 Nalin Dahyabhai <nalin@redhat.com> 0.2.5-5 |
---|
210 | - rebuild |
---|
211 | |
---|
212 | * Fri Jun 25 2004 Nalin Dahyabhai <nalin@redhat.com> 0.2.5-4 |
---|
213 | - backport certificate validation fixes from 0.3.3 (#126568) |
---|
214 | |
---|
215 | * Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com> |
---|
216 | - rebuilt |
---|
217 | |
---|
218 | * Wed Apr 14 2004 Bill Nottingham <notting@redhat.com> - 0.2.5-2 |
---|
219 | - add patch for potential remote DoS (CAN-2004-0403) |
---|
220 | |
---|
221 | * Tue Apr 6 2004 Bill Nottingham <notting@redhat.com> |
---|
222 | - update to 0.2.5 |
---|
223 | |
---|
224 | * Tue Mar 02 2004 Elliot Lee <sopwith@redhat.com> |
---|
225 | - rebuilt |
---|
226 | |
---|
227 | * Mon Feb 23 2004 Bill Nottingham <notting@redhat.com> |
---|
228 | - update to 0.2.4, fix racoon install location (#116374, <kajtzu@fi.basen.net>) |
---|
229 | |
---|
230 | * Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com> |
---|
231 | - rebuilt |
---|
232 | |
---|
233 | * Mon Dec 8 2003 Bill Nottingham <notting@redhat.com> 0.2.2-8 |
---|
234 | - rebuild |
---|
235 | |
---|
236 | * Fri Aug 29 2003 Bill Nottingham <notting@redhat.com> 0.2.2-7 |
---|
237 | - add fix for #103238 |
---|
238 | |
---|
239 | * Tue Aug 5 2003 Bill Nottingham <notting@redhat.com> 0.2.2-6 |
---|
240 | - update kernel interface bits, rebuild against them |
---|
241 | |
---|
242 | * Tue Jul 29 2003 Bill Nottingham <notting@redhat.com> 0.2.2-5 |
---|
243 | - rebuild |
---|
244 | |
---|
245 | * Wed Jul 2 2003 Bill Notitngham <notting@redhat.com> 0.2.2-4 |
---|
246 | - ship a much more pared-down racoon.conf and psk.txt |
---|
247 | |
---|
248 | * Thu Jun 5 2003 Bill Notitngham <notting@redhat.com> 0.2.2-3 |
---|
249 | - update pfkey header for current kernels |
---|
250 | |
---|
251 | * Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com> |
---|
252 | - rebuilt |
---|
253 | |
---|
254 | * Fri May 2 2003 Bill Nottingham <notting@redhat.com> 0.2.2-1 |
---|
255 | - update to 0.2.2 |
---|
256 | |
---|
257 | * Fri Mar 7 2003 Bill Nottingham <notting@redhat.com> |
---|
258 | - initial build |
---|