/[smecontribs]/rpms/smeserver-libreswan/contribs9/smeserver-libreswan.spec
ViewVC logotype

Contents of /rpms/smeserver-libreswan/contribs9/smeserver-libreswan.spec

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph

Revision 1.17 - (show annotations) (download)
Sun Oct 13 13:58:14 2019 UTC (4 years, 7 months ago) by jcrisp
Branch: MAIN
CVS Tags: smeserver-libreswan-0_5-30_el6_sme
Changes since 1.16: +6 -1 lines 
* Sun Oct 13 2019 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-30.sme
- Fix issue when there is no xl2tpd key
1 %define name smeserver-libreswan
2 %define version 0.5
3 %define release 30
4 Summary: Plugin to enable IPSEC connections
5 Name: %{name}
6 Version: %{version}
7 Release: %{release}%{?dist}
8 License: GNU GPL version 2
9 URL: http://libreswan.org/
10 Group: SMEserver/addon
11 Source: %{name}-%{version}.tar.gz
12 Patch1: smeserver-libreswan-fix-masq-templates.patch
13 Patch2: smeserver-libreswan-move-logfile.patch
14 Patch3: smeserver-libreswan-add-debug-key.patch
15 Patch4: smeserver-libreswan-fix-rsa-id.patch
16 Patch5: smeserver-libreswan-fix-createlinks.patch
17 Patch6: smeserver-libreswan-ikev2-logrotate.patch
18 Patch7: smeserver-libreswan-add-certificates.patch
19 Patch8: smeserver-libreswan-modify-identifiers.patch
20 Patch9: smeserver-libreswan-modify-identifiers1.patch
21 Patch10: smeserver-libreswan-forceencaps-l2tpd.patch
22 Patch11: smeserver-libreswan-variable-network-interfaces.patch
23 Patch12: smeserver-libreswan-remove-obsoletes.patch
24 Patch13: smeserver-libreswan-add-reauth.patch
25 Patch14: smeserver-libreswan-check-l2tpd-status.patch
26
27 BuildRoot: /var/tmp/%{name}-%{version}
28 BuildArchitectures: noarch
29 BuildRequires: e-smith-devtools
30 Requires: e-smith-release >= 9.2
31 Requires: libreswan >= 3.29
32 AutoReqProv: no
33
34 %description
35 Libreswan is a free software implementation of the most widely supported and standardised VPN protocol based on ("IPsec") and the Internet Key Exchange ("IKE")
36
37 %changelog
38 * Sun Oct 13 2019 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-30.sme
39 - Fix issue when there is no xl2tpd key
40
41 * Sat Aug 31 2019 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-29.sme
42 - Bump required Libreswan to 3.29
43 - add reauth option
44
45 * Thu Jun 21 2018 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-28.sme
46 - Bump required Libreswan to 3.23
47 - Change forceencaps to encapsulation
48 - Remove obsolete nat_traversal
49 - Modify ipsec.conf for no rightsubnet in xl2tpd
50
51 * Tue Sep 19 2017 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-27.sme
52 - Allow variable network interface names - Stefano Zamboni
53
54 * Thu Jun 15 2017 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-26.sme
55 - add keep-alive option in main ipsec.conf
56 - add forceencaps option overall default and per connection
57 - small code tidy
58 - Add support for L2TPD
59
60 * Thu Jan 26 2017 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-25.sme
61 - Fix the ipsec.conf as well
62 - remove automatic \@ in IDs - Fixes [SME: 9729]
63
64 * Thu Jan 26 2017 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-24.sme
65 - remove automatic \@ in IDs - Fixes [SME: 9729]
66 - fix swapped left/right IDs in password file
67
68 * Wed Jan 25 2017 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-23.sme
69 - Add the ability to use PEM/PKCS#12 certificates - fixes [SME: 9942]
70 - lots of code tidying
71
72 * Wed Dec 21 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-22.sme
73 - update logrotate completely now I realise it is symlinked
74 - remove UPDPort and add UPDPorts due to ipsec v2
75
76 * Wed Dec 21 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-21.sme
77 - add more variations for ike v1/2
78 - remove logrotate template
79 - add /etc/e-smith/events/logrotate/logfiles2timestamp/var/log/pluto.log
80 - Fix some log noise when first installed and still disabled
81
82 * Sat Apr 23 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-20.sme
83 - Fix typo in createlinks for sysctl.conf
84
85 * Mon Apr 04 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-19.sme
86 - Fix ID in ipsec.secrets if ID is set
87
88 * Thu Mar 24 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-18.sme
89 - Add debug db key to /etc/ipsec.conf
90 - Remove setting public/private keys as they won't affect unless templates are re-expanded
91 - Set xfrm_larval_drop drop correctly
92
93 * Tue Mar 22 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-17.sme
94 - Move pluto.log to /var/log/pluto
95 - bump libreswan requires version to 3.16
96 - regenerate masq template on ipsec-update
97 - change wiki location page
98 - add sysctl.conf template
99 - modify masq templates for ipsec status enabled/disabled
100 - only load ipsec.conf rather than *.conf to avoid loading v6neighbor-hole.conf
101
102 * Thu Mar 10 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-16.sme
103 - Fix masq templates for missing db entries on install
104
105 * Wed Mar 09 2016 JP Pialasse <tests@pialasse.com> 0.5-15.sme
106 - first import in SME buildsys
107
108 * Wed Feb 17 2016 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-13
109 - Fix small typo in readme
110
111 * Fri Dec 04 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-12
112 - Add keyingtries
113 - Finally fix add issues using asynchronous
114
115 * Wed Dec 02 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-11
116 - Determine host IPtype - static or dynamic IP
117 - auto --up changed to exec
118 - Add checks for Left/Right ID in secrets file
119
120 * Tue Dec 01 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-10
121 - Allow dynamic addresses
122 - Add iptype
123 - disallow " in PSK passwords
124 - Revised logging messages
125
126 * Mon Nov 30 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-9
127 - Amended templates to allow for rsasig. Early cert settings removed
128
129 * Wed Nov 25 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-8
130 - Revised masq templates - disable on ipsec disable
131 - Template ipsec.secrets so Terry won't break it again
132 - Set requires e-smith >=9 and libreswan >=3.14
133
134 * Wed Nov 18 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-7
135 - add 90adjustESP
136
137 * Tue Nov 17 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-6
138 - more update to masq firewalls - change -p 50 to -p ESP
139
140 * Tue Nov 17 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-5
141 - update masq firewall rules
142 - document clean up
143
144 * Wed May 27 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-4
145 - set dpd actions off if ipsec is 'add'
146 - add salifetime key and rename ikelifetime and keylife
147 - change defaults for salifetime and ikelifetime
148 - add in rsasig support
149
150 * Wed Apr 22 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-3
151 - change default ike from aes-sha to aes-sha1
152
153 * Tue Mar 24 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-2
154 - More minor fixes - should work OK with xl2tpd
155
156 * Thu Mar 19 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.5-1
157 - Remove templates2expand and added to createlinks
158 - modified ipsec.secret template
159 - various other fixes
160
161 * Fri Mar 13 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.4-5
162 - Big changes again - now have PreviousState to detect changes
163 - Createlinks to S10 to run after expand-templates
164
165 * Thu Mar 5 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.4-4
166 - Changed lots. Removed sysctl.conf template
167 - Changed firewall template
168
169 * Tue Mar 3 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.4-3
170 - Load of code tidying and prep from xl2tpd
171
172 * Fri Feb 27 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.4-2
173 - Update action script and allow for system not in gateway mode
174 - add ike and phase2alg db settings
175
176 * Tue Feb 24 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.4-1
177 - New ipsec-action script
178 - Numerous template changes
179
180 * Fri Jan 16 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.3-1
181 - remove debugging lines
182 - remove expand templates from spec file
183 - add status check for ipsec.conf
184 - add comment to masq template
185 - updated db defaults
186 - ipsec.conf not expanded on install
187 - missed auto=start
188
189 * Fri Jan 16 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.2-1
190 - remove rc.local modifications
191 - add /etc/sysctl.conf patches
192
193 * Thu Jan 15 2015 John Crisp <jcrisp@safeandsoundit.co.uk> 0.1-1
194 - initial release
195
196 %prep
197 %setup
198 %patch1 -p1
199 %patch2 -p1
200 %patch3 -p1
201 %patch4 -p1
202 %patch5 -p1
203 %patch6 -p1
204 %patch7 -p1
205 %patch8 -p1
206 %patch9 -p1
207 %patch10 -p1
208 %patch11 -p1
209 %patch12 -p1
210 %patch13 -p1
211 %patch14 -p1
212
213 %build
214 perl createlinks
215
216 %install
217 rm -rf $RPM_BUILD_ROOT
218 (cd root ; find . -depth -print | cpio -dump $RPM_BUILD_ROOT)
219 rm -f %{name}-%{version}-filelist
220 /sbin/e-smith/genfilelist $RPM_BUILD_ROOT > %{name}-%{version}-filelist
221 echo "%doc COPYING" >> %{name}-%{version}-filelist
222
223
224 %clean
225 cd ..
226 rm -rf %{name}-%{version}
227
228 %files -f %{name}-%{version}-filelist
229 %defattr(-,root,root)
230
231 %pre
232 %preun
233 %post
234
235 /sbin/e-smith/expand-template /etc/rc.d/init.d/masq
236 /sbin/e-smith/expand-template /etc/inittab
237 /sbin/init q
238
239
240 echo "see https://wiki.contribs.org/Libreswan"
241
242 %postun
243 /sbin/e-smith/expand-template /etc/rc.d/init.d/masq
244 /sbin/e-smith/expand-template /etc/inittab
245 /sbin/init q
admin@koozali.org
 ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed