| 1 |
# $Id: smeserver-coova-chilli.spec,v 1.24 2009/03/11 08:58:33 vip-ire Exp $ |
# $Id: smeserver-coova-chilli.spec,v 1.32 2010/07/29 15:08:58 vip-ire Exp $ |
| 2 |
# Authority: vip-ire |
# Authority: vip-ire |
| 3 |
# Name: Daniel Berteaud |
# Name: Daniel Berteaud |
| 4 |
|
|
| 6 |
%define name smeserver-coova-chilli |
%define name smeserver-coova-chilli |
| 7 |
Name: %{name} |
Name: %{name} |
| 8 |
%define version 0.2 |
%define version 0.2 |
| 9 |
%define release 10 |
%define release 19 |
| 10 |
Version: %{version} |
Version: %{version} |
| 11 |
Release: %{release}%{?dist} |
Release: %{release}%{?dist} |
| 12 |
License: GPL |
License: GPL |
| 18 |
BuildRequires: e-smith-devtools |
BuildRequires: e-smith-devtools |
| 19 |
Requires: e-smith-release >= 7.0 |
Requires: e-smith-release >= 7.0 |
| 20 |
Requires: openssl |
Requires: openssl |
| 21 |
Requires: coova-chilli |
Requires: coova-chilli >= 1.0.13 |
| 22 |
Requires: e-smith-radiusd >= 1.0.0-18 |
Requires: e-smith-radiusd >= 1.0.0-18 |
| 23 |
Requires: perl(NetAddr::IP) |
Requires: perl(NetAddr::IP) |
| 24 |
|
Requires: smeserver-remoteuseraccess |
| 25 |
|
|
| 26 |
Patch1: smeserver-coova-chilli-0.2-guest_uplink_downlink.patch |
Patch1: smeserver-coova-chilli-0.2-guest_uplink_downlink.patch |
| 27 |
Patch2: smeserver-coova-chilli-0.2-guest_access.patch |
Patch2: smeserver-coova-chilli-0.2-guest_access.patch |
| 36 |
Patch11: smeserver-coova-chilli-0.2-localhost_nas2.patch |
Patch11: smeserver-coova-chilli-0.2-localhost_nas2.patch |
| 37 |
Patch12: smeserver-coova-chilli-0.2-squid_template_typo.patch |
Patch12: smeserver-coova-chilli-0.2-squid_template_typo.patch |
| 38 |
Patch13: smeserver-coova-chilli-0.2-typo.patch |
Patch13: smeserver-coova-chilli-0.2-typo.patch |
| 39 |
|
Patch14: smeserver-coova-chilli-0.2-allow_uamallowed.patch |
| 40 |
|
Patch15: smeserver-coova-chilli-0.2-drop_privileges.patch |
| 41 |
|
Patch16: smeserver-coova-chilli-0.2-use_sudo.patch |
| 42 |
|
Patch17: smeserver-coova-chilli-0.2-templates2expand_in_createlinks.patch |
| 43 |
|
Patch18: smeserver-coova-chilli-0.2-db_noc2c.patch |
| 44 |
|
Patch19: smeserver-coova-chilli-0.2-remove_space.patch |
| 45 |
|
Patch20: smeserver-coova-chilli-0.2-fixe_allow_uamallowed.patch |
| 46 |
|
Patch21: smeserver-coova-chilli-0.2-fixe_squid_disabled.patch |
| 47 |
|
Patch22: smeserver-coova-chilli-0.2-squid_tcpport.patch |
| 48 |
|
Patch23: smeserver-coova-chilli-0.2-sudo_env.patch |
| 49 |
|
Patch24: smeserver-coova-chilli-0.2-iptables_insert_position.patch |
| 50 |
|
Patch25: smeserver-coova-chilli-0.2-transparent_squid.patch |
| 51 |
|
Patch26: smeserver-coova-chilli-0.2-clean_cgi.patch |
| 52 |
|
Patch27: smeserver-coova-chilli-0.2-remove_obsolete_php_templates.patch |
| 53 |
|
Patch28: smeserver-coova-chilli-0.2-add_macallowed_in_db.patch |
| 54 |
|
Patch29: smeserver-coova-chilli-0.2-add_uamhomepage_in_db.patch |
| 55 |
|
Patch30: smeserver-coova-chilli-0.2-drop_forward_not_to_ext_if.patch |
| 56 |
|
|
| 57 |
%description |
%description |
| 58 |
This package allow you to configure a third interface |
This package allow you to configure a third interface |
| 64 |
This contrib will only work in server&gateway mode |
This contrib will only work in server&gateway mode |
| 65 |
|
|
| 66 |
%changelog |
%changelog |
| 67 |
|
* Wed Oct 20 2010 Daniel B. <daniel@firewall-services.com> 0.2-19 |
| 68 |
|
- Drop all the trafic not going through the external interface |
| 69 |
|
|
| 70 |
|
* Thu Jul 29 2010 Daniel B. <daniel@firewall-services.com> 0.2-18 |
| 71 |
|
- cleanup CGI login script |
| 72 |
|
- remove obsolete php templates |
| 73 |
|
- add macallowed DB key to bypass auth for some mac addresses |
| 74 |
|
- add uamhomepage DB key |
| 75 |
|
|
| 76 |
|
* Mon Jul 19 2010 Daniel B. <daniel@firewall-services.com> 0.2-17 |
| 77 |
|
- Fixes sudo env (bug only in SME8) |
| 78 |
|
- Uses TCPPort squid key instead of TransparentPort so coova can |
| 79 |
|
work with dansguardian |
| 80 |
|
- insert NAT rule just before the ACCEPT (PREROUTING_FROM_CHILLI) |
| 81 |
|
- add transparent directive to squid (required for squid => 2.6) |
| 82 |
|
|
| 83 |
|
* Wed Apr 14 2010 Daniel B. <daniel@firewall-services.com> 0.2-16 |
| 84 |
|
- Fixe a bug in conup.sh and condown.sh |
| 85 |
|
|
| 86 |
|
* Thu Jun 11 2009 Daniel B. <daniel@firewall-services.com> 0.2-15 |
| 87 |
|
- Fixe a bug in masq template for uamallowed entries |
| 88 |
|
|
| 89 |
|
* Thu May 28 2009 Daniel B. <daniel@firewall-services.com> 0.2-14 |
| 90 |
|
- Remove space in hotspot-config.pl template |
| 91 |
|
|
| 92 |
|
* Tue May 26 2009 Daniel B. <daniel@firewall-services.com> 0.2-13 |
| 93 |
|
- Add noc2c key (allow to disable the option, but default to enabled) |
| 94 |
|
|
| 95 |
|
* Thu Apr 30 2009 Daniel B. <daniel@firewall-services.com> 0.2-12 |
| 96 |
|
- Create a new user coovachilli |
| 97 |
|
- Add support of new options uid and gid to drop privileges |
| 98 |
|
- Enabled noc2c (prevent client to client communication) |
| 99 |
|
- Use sudo to call conup/condown script (as chilli runs under un |
| 100 |
|
unprivileged account now) |
| 101 |
|
- Add smeserver-remoteuseraccess as a dependency (for sudoers metadata templates) |
| 102 |
|
- move templates2expand in creatlinks script |
| 103 |
|
|
| 104 |
|
* Wed Mar 13 2009 Daniel B. <daniel@firewall-services.com> 0.2-11 |
| 105 |
|
- Automatically allow uamallowed entries in the firewall (no need to |
| 106 |
|
explicitly allow it agin in AllowOutgoing) |
| 107 |
|
|
| 108 |
* Thu Mar 12 2009 Daniel B. <daniel@firewall-services.com> 0.2-10 |
* Thu Mar 12 2009 Daniel B. <daniel@firewall-services.com> 0.2-10 |
| 109 |
- Small typo correction |
- Small typo correction |
| 110 |
|
|
| 205 |
%patch11 -p1 |
%patch11 -p1 |
| 206 |
%patch12 -p1 |
%patch12 -p1 |
| 207 |
%patch13 -p1 |
%patch13 -p1 |
| 208 |
|
%patch14 -p1 |
| 209 |
|
%patch15 -p1 |
| 210 |
|
%patch16 -p1 |
| 211 |
|
%patch17 -p1 |
| 212 |
|
%patch18 -p1 |
| 213 |
|
%patch19 -p1 |
| 214 |
|
%patch20 -p1 |
| 215 |
|
%patch21 -p1 |
| 216 |
|
%patch22 -p1 |
| 217 |
|
%patch23 -p1 |
| 218 |
|
%patch24 -p1 |
| 219 |
|
%patch25 -p1 |
| 220 |
|
%patch26 -p1 |
| 221 |
|
%patch27 -p1 |
| 222 |
|
%patch28 -p1 |
| 223 |
|
%patch29 -p1 |
| 224 |
|
%patch30 -p1 |
| 225 |
|
|
| 226 |
%build |
%build |
| 227 |
/usr/bin/perl createlinks |
/usr/bin/perl createlinks |
| 231 |
(cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT) |
(cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT) |
| 232 |
/bin/rm -f %{name}-%{version}-filelist |
/bin/rm -f %{name}-%{version}-filelist |
| 233 |
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ |
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ |
| 234 |
--file /etc/chilli/conup.sh 'attr(0750,root,root)' \ |
--file /etc/chilli/conup.sh 'attr(755,root,root)' \ |
| 235 |
--file /etc/chilli/condown.sh 'attr(0750,root,root)' \ |
--file /etc/chilli/condown.sh 'attr(750,root,root)' \ |
| 236 |
|
--file /etc/chilli/call_conup.sh 'attr(755,root,root)' \ |
| 237 |
|
--file /etc/chilli/call_condown.sh 'attr(755,root,root)' \ |
| 238 |
--file /opt/chilli/cgi-bin/hotspotlogin.cgi 'attr(0750,root,www) %config(noreplace)' \ |
--file /opt/chilli/cgi-bin/hotspotlogin.cgi 'attr(0750,root,www) %config(noreplace)' \ |
| 239 |
--file /opt/chilli/lang/hotspotlogin.fr.pl 'config(noreplace)' \ |
--file /opt/chilli/lang/hotspotlogin.fr.pl 'config(noreplace)' \ |
| 240 |
--file /opt/chilli/lang/hotspotlogin.en.pl 'config(noreplace)' \ |
--file /opt/chilli/lang/hotspotlogin.en.pl 'config(noreplace)' \ |
| 247 |
%clean |
%clean |
| 248 |
rm -rf $RPM_BUILD_ROOT |
rm -rf $RPM_BUILD_ROOT |
| 249 |
|
|
| 250 |
|
%pre |
| 251 |
|
if ! /usr/bin/id coovachilli &>/dev/null; then |
| 252 |
|
/usr/sbin/useradd -c 'Coova Chilli User' -s /sbin/nologin -r -d /etc/chilli coovachilli &>/dev/null || \ |
| 253 |
|
%logmsg "Unexpected error adding user \"coovachilli\". Abort installation." |
| 254 |
|
fi |
| 255 |
|
|
| 256 |
|
|
| 257 |
%preun |
%preun |
| 258 |
|
|
| 259 |
if [ $1 == 0 ]; then |
if [ $1 == 0 ]; then |
Parent Directory
| 
Revision Log
| 
Revision Graph
| 
Patch
