/[smecontribs]/rpms/smeserver-openvpn-bridge/contribs10/smeserver-openvpn-bridge.spec
ViewVC logotype

Annotation of /rpms/smeserver-openvpn-bridge/contribs10/smeserver-openvpn-bridge.spec

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph

Revision 1.14 - (hide annotations) (download)
Thu Nov 24 04:25:52 2022 UTC (18 months, 1 week ago) by jpp
Branch: MAIN
CVS Tags: smeserver-openvpn-bridge-2_1-20_el7_sme
Changes since 1.13: +9 -2 lines 
* Wed Nov 23 2022 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-20.sme
- log to dedicated file [SME: 12242]
- use locale timezone for logging [SME: 6155]
1 jpp 1.14 # $Id: smeserver-openvpn-bridge.spec,v 1.13 2022/11/11 16:08:28 jpp Exp $
2 brianr 1.1 # Authority: vip-ire
3     # Name: Daniel Berteaud
4    
5     Summary: OpenVPN, a strong VPN solution build over SSL, pre-configured for bridge mode
6     %define name smeserver-openvpn-bridge
7     Name: %{name}
8     %define version 2.1
9 jpp 1.14 %define release 20
10 brianr 1.1 Version: %{version}
11     Release: %{release}%{?dist}
12     License: GPL
13     Group: Networking/Remote access
14     Source: %{name}-%{version}.tar.xz
15    
16     Patch0: smeserver-openvpn-bridge-2.1-locale-2015-02-17.patch
17     Patch1: smeserver-openvpn-bridge-2.1-add_routes_for_s2s_virtual_ip.patch
18     Patch2: smeserver-openvpn-bridge-2.1-remove_obsolete_libpam_symlink.patch
19     Patch3: smeserver-openvpn-bridge-2.1-typo_in_en_locale.patch
20     Patch4: smeserver-openvpn-bridge-2.1-locale-2017-02-02.patch
21     Patch5: smeserver-openvpn-bridge-2.1-locale-2017-12-02.patch
22     Patch6: smeserver-openvpn-bridge-2.1-push-routes.patch
23     Patch7: smeserver-openvpn-bridge-2.1-locale-2019-12-07.patch
24 brianr 1.2 Patch8: smeserver-openvpn-bridge-2.1-Add-in-systemd-startup.patch
25 jpp 1.3 Patch9: smeserver-openvpn-bridge-2.1-bz11335.patch
26 jpp 1.5 Patch10: smeserver-openvpn-bridge-2.1-bz11335-sme10bis.patch
27 terryfage 1.6 Patch11: smeserver-openvpn-bridge-2.1-locale-2021-08-23.patch
28 terryfage 1.7 Patch12: smeserver-openvpn-bridge-2.1-locale-2021-09-08.patch
29 jpp 1.8 Patch13: smeserver-openvpn-bridge-2.1-bz12018-backup.patch
30 jpp 1.13 Patch14: smeserver-openvpn-bridge-2.1-locale-2022-11-11.patch
31 jpp 1.14 Patch15: smeserver-openvpn-bridge-2.1-bz1224-bz6155-logging.patch
32 brianr 1.1
33     BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
34     BuildArchitectures: noarch
35    
36     BuildRequires: e-smith-devtools
37    
38 jpp 1.12 Provides: perl(esmith::FormMagick::Panel::openvpnbridge)
39 brianr 1.1 Requires: e-smith-base
40     Requires: openvpn
41     Requires: smeserver-bridge-interface
42     Requires: perl(Net::OpenVPN::Manage)
43     Obsoletes: smeserver-openvpn-bridge-fws
44     Obsoletes: smeserver-openvpn-bridge.fws
45    
46     %description
47     This package contains all the needed scripts and templates
48     to have a full working openvpn server running in bridge mode.
49    
50     %changelog
51 jpp 1.14 * Wed Nov 23 2022 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-20.sme
52     - log to dedicated file [SME: 12242]
53     - use locale timezone for logging [SME: 6155]
54    
55 jpp 1.13 * Fri Nov 11 2022 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-19.sme
56     - apply locale 2022-11-1 patch
57    
58 jpp 1.12 * Sat Jul 30 2022 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-18.sme
59     - add Provides perl(esmith::FormMagick::Panel::openvpnbridge)
60    
61 brianr 1.11 * Sat Jul 30 2022 Brian Read <brianr@bjsystems.co.uk> 2.1-17.sme
62     - Re-build and link to latest devtools [SME: 11997]
63    
64 jpp 1.8 * Sat Jul 23 2022 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-16.sme
65     - add to core backup [SME: 12018]
66    
67 terryfage 1.7 * Wed Sep 08 2021 Terry Fage <terry.fage@gmail.com> 2.1-15.sme
68     - apply locale 2021-09-08 patch
69    
70 terryfage 1.6 * Mon Aug 23 2021 Terry Fage <terry.fage@gmail.com> 2.1-14.sme
71     - apply locale 2021-08-23 patch
72    
73 jpp 1.5 * Wed Mar 31 2021 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-13.sme
74     - default AES-128-CBC and SHA256 fix [SME: 11335]
75     - better frist screen with information on link and hnac and cipher
76     - better client default configuration with embded shared key and CAcert
77     - migrate cipher to Cipher like routed and s2s usage
78     - HMAC and Cipher are accessible to change using the manager.
79 brianr 1.11 - Re-build and link to latest devtools typos in translations [SME: 6647]
80 jpp 1.5
81 jpp 1.3 * Tue Mar 23 2021 Jean-Philippe Pialasse <tests@pialasse.com> 2.1-12.sme
82 brianr 1.11 - Re-build and link to latest devtools permisison issue on private keys [SME: 11335]
83 jpp 1.3 - rework unit file
84     avoid failure, add ncp cipher, add loging status
85     - add default cipher AES-256-CBC - if issue with older clients < 2.4
86     it is advised to set it to 'auto' or BF-CBC
87    
88 brianr 1.2 * Thu Feb 04 2021 Brian Read <brianr@bjsystems.co.uk> 2.1-11.sme
89     - Initial import to SME10 [SME: 11335]
90     - Add-in-systemd-startup
91    
92 brianr 1.1 * Sat Dec 07 2019 SME Translation Server <translations@contribs.org> 2.1-10.sme
93     - apply locale 2019-12-07 patch
94    
95     * Thu Nov 15 2018 John Crisp <jcrisp@safeandsoundit.co.uk> 2.1-9.sme
96     - Add option to enable/doisable PushRoute [SME: 10547]
97    
98     * Sat Dec 02 2017 SME Translation Server <translations@contribs.org> 2.1-8.sme
99     - apply locale 2017-12-02 patch
100    
101     * Wed Feb 01 2017 Jean-Philipe Pialasse <tests@pialasse.com> 2.1-7.sme
102     - apply locale 2017-02-02.patch
103    
104     * Sat May 7 2016 Daniel Berteaud <daniel@firewall-services.com> 2.1-6.sme
105     - Typo in en-us locale for the panel [SME: 9301]
106    
107     * Wed Feb 10 2016 Daniel Berteaud <daniel@firewall-services.com> 2.1-5.sme
108     - Remove obsolete libpam.so symlink so AutoReqProv do not add a dep on i686
109     pam
110    
111     * Mon Feb 8 2016 Daniel Berteaud <daniel@firewall-services.com> 2.1-4.sme
112     - Create /etc/openvpn/bridge/dev/urandom [SME: 9238]
113    
114     * Thu Aug 6 2015 Daniel Berteaud <daniel@firewall-services.com> 2.1-3.sme
115     - Add routes for s2s virtual IP
116    
117     * Tue Feb 17 2015 Daniel Berteaud <daniel@firewall-services.com> 2.1-2.sme
118     - Apply locale 2015-02-17 patch
119    
120     * Mon Nov 11 2013 Daniel B. <daniel@firewall-services.com> 2.1-1.sme
121     - Rebuild for SME9
122    
123     * Sun Jul 14 2013 JP Pialasse <tests@pialasse.com> 2.0-50.sme
124     - apply locale 2013-07-14 patch
125    
126     * Thu Jun 6 2013 Daniel B. <daniel@firewall-services.com> 2.0-49.sme
127     - Fix plugin directory for x86_64 [SME: 7658]
128    
129     * Fri Mar 22 2013 Daniel B. <daniel@firewall-services.com> 2.0-48.sme
130     - Fix spelling in en-us panel [SME: 7507]
131    
132     * Mon Oct 08 2012 Daniel B. <daniel@firewall-services.com> 2.0-47.sme
133     - Create a tmp dir (needed for openvpn 2.2.2)
134    
135     * Tue Mar 20 2012 SME Translation Server <translations@contribs.org> 2.0-46.el6
136     - apply locale 2012-03-20 patch
137    
138     * Wed Apr 27 2011 SME Translation Server <translations@contribs.org> 2.0-45.sme
139     - apply locale 2011-04-27 patch
140    
141     * Sun Mar 06 2011 SME Translation Server <translations@contribs.org> 2.0-44.sme
142     - apply locale 2011-03-06 patch
143    
144     * Thu Feb 17 2011 Daniel B. <daniel@firewall-services.com> 2.0-43.sme
145     - Fix a typo in the panel [SME: 6509]
146    
147     * Tue Jan 25 2011 Daniel B. <daniel@firewall-services.com> 2.0-42.sme
148     - Stop disabling service on rpm removal (spec change only)
149    
150     * Tue Jan 25 2011 Daniel B. <daniel@firewall-services.com> 2.0-41.sme
151     - Add comp-lzo option back into client conf file
152    
153     * Tue Oct 26 2010 Daniel B. <daniel@firewall-services.com> 2.0-40.sme
154     - Add PassTOS DB key to enable/disable passtos
155     - Enhance routes push (work with s2s contrib)
156    
157     * Tue Oct 19 2010 Daniel B. <daniel@firewall-services.com> 2.0-39.sme
158     - templates cleanup
159     - DB prop to disable local networks routes push to client
160    
161     * Mon Jul 19 2010 Daniel B. <daniel@firewall-services.com> 2.0-38.sme
162     - apply locale 2010-07-19 patc
163    
164     * Wed Jun 02 2010 Daniel B. <daniel@firewall-services.com> 2.0-37.sme
165     - apply locale 2010-06-02 patch
166     - use multilog timestamp
167    
168     * Wed May 12 2010 Daniel B. <daniel@firewall-services.com> 2.0-36.sme
169     - Comment the passtos option as it's not supported on Windows
170    
171     * Fri Apr 30 2010 Daniel B. <daniel@firewall-services.com> 2.0-35.sme
172     - add the passtos option
173     - push the comp-lzo option to the client
174     - apply locale 2010-04-29 patch
175    
176     * Tue Mar 02 2010 SME Translation Server <translations@contribs.org> 2.0-34.sme
177     - apply locale 2010-03-02 patch
178    
179     * Wed Nov 18 2009 Daniel B. <daniel@firewall-services.com> 2.0-33.sme
180     - code cleanup
181    
182     * Tue Nov 17 2009 Daniel B. <daniel@firewall-services.com> 2.0-32.sme
183     - apply locale 2009-11-17 patch
184     - Fix CRL update on event (openvpn-bridge-update)
185    
186     * Tue Oct 27 2009 SME Translation Server <translations@contribs.org> 2.0-31.sme
187     - apply locale 2009-10-27 patch
188    
189     * Wed Oct 21 2009 Daniel B. <daniel@firewall-services.com> 2.0-30.sme
190     - apply locale 2009-10-21 patch
191    
192     * Tue Sep 29 2009 Daniel B. <daniel@firewall-services.com> 2.0-29.sme
193     - Put tls-client directive in client config file even when additional TLS
194     auth is disabled (required for the main TLS auth) [SME: 5495]
195     - apply locale 2009-09-28 patch
196    
197     * Mon Aug 24 2009 SME Translation Server <translations@contribs.org> 2.0-28.sme
198     - apply locale 2009-08-24 patch
199    
200     * Wed Jul 22 2009 Daniel B. <daniel@firewall-services.com> 2.0-27.sme
201     - apply locale 2009-07-22 patch
202    
203     * Thu Jun 25 2009 Daniel B. <daniel@firewall-services.com> 2.0-26.sme
204     - expand config and restart the service when local networks are added
205     or removed so the new routes are pushed
206    
207     * Tue May 26 2009 Daniel B. <daniel@firewall-services.com> 2.0-25.sme
208     - apply locale 2009-05-26 patch
209    
210     * Sun May 24 2009 Daniel B. <daniel@firewall-services.com> 2.0-24.sme
211     - apply locale 2009-05-24 patch
212    
213     * Thu Apr 30 2009 Daniel B. <daniel@firewall-services.com> 2.0-23.sme
214     - apply local 2009-04-30 patch
215    
216     * Mon Apr 27 2009 SME Translation Server <translations@contribs.org> 2.0-22.sme
217     - apply locale 2009-04-27 patch
218    
219     * Tue Apr 14 2009 Daniel B. <daniel@firewall-services.com> [2.0-21]
220     - Fixe permissions on public directory (pub and ccd) which must be readable
221     by everyone (especially user nobody)
222    
223     * Sun Apr 12 2009 Daniel B. <daniel@firewall-services.com> [2.0-20]
224     - remove obsolete init scripts reset-openvpn and openvpn-bridge
225    
226     * Wed Mar 18 2009 Daniel B. <daniel@firewall-services.com> [2.0-19]
227     - Do not add cipher directive in client configuration file if set to 'auto'
228    
229     * Wed Mar 11 2009 Daniel B. <daniel@firewall-services.com> [2.0-18]
230     - Compatibility with openvpn 2.1 (detect plugin dir location) [SME: 5060]
231    
232     * Mon Mar 09 2009 Daniel B. <daniel@firewall-services.com> [2.0-17]
233     - Add smeserver-bridge-interface as dependency
234     - Update spec description
235    
236     * Tue Mar 03 2009 SME Translation Server [2.0-16]
237     - apply locale 2009-03-03 patch
238    
239     * Tue Mar 03 2009 Jonathan Martens <smeserver-contribs@snetram.nl> [2.0-15]
240     - Fix some more errors in the en-us locale
241     - Remove tabs from SPEC file as some editors act weird with them, e.g. nano
242    
243     * Tue Mar 03 2009 Jonathan Martens <smeserver-contribs@snetram.nl> [2.0-14]
244     - Fix some grammar errors in the en-us locale
245    
246     * Tue Mar 03 2009 Jonathan Martens <smeserver-contribs@snetram.nl> [2.0-13]
247     - Fix a typo in the en-us locale
248    
249     * Tue Mar 03 2009 Shad L. Lords <slords@mail.com> [2.0-12]
250     - Fix xml language tag to be correct
251    
252     * Tue Mar 03 2009 Shad L. Lords <slords@mail.com> [2.0-11]
253     - Remove duplicate translations that break pootle
254    
255     * Tue Mar 03 2009 Shad L. Lords <slords@mail.com> [2.0-10]
256     - Rename locale/en to locale/en-us to pootle works
257    
258     * Tue Mar 03 2009 Daniel B. <daniel@firewall-services.com> [2.0-9]
259     - Apply locale patch fr 1
260     - Add e-smith-devtools as a build dependency
261    
262     * Thu Jan 29 2009 Daniel B. <daniel@firewall-services.com> [2.0-8]
263     - Fix an error with the creation of the db
264    
265     * Wed Jan 28 2009 Daniel B. <daniel@firewall-services.com> [2.0-7]
266     - Cleanly create openvpn-bridge db
267    
268     * Fri Jan 16 2009 Daniel B. <daniel@firewall-services.com> [2.0-6]
269     - Just warn if openvpn db is missing
270     - Fix certificates check
271     - Warn if bridge service isn't enabled
272     - Configure the CRL update URL
273    
274     * Mon Jan 12 2009 Daniel B. <daniel@firewall-services.com> [2.0-5]
275     - localization patch
276    
277     * Mon Dec 22 2008 Daniel B. <daniel@firewall-services.com> [2.0-4]
278     - Add validate_common_name routine
279    
280 jpp 1.9 * Fri Dec 19 2008 Daniel B. <daniel@firewall-services.com> [2.0-3]
281 brianr 1.1 - Added option configRequired (accept only certificate listed in the rules section)
282     - Clean config templates
283    
284     * Tue Dec 16 2008 Daniel B. <daniel@firewall-services.com> [2.0-2]
285     - Add missing pull directive in client config
286    
287     * Fri Dec 12 2008 Daniel B. <daniel@firewall-services.com> [2.0-1]
288     - Remove useless migrate fragment (now handled by the bridge package)
289    
290     * Thu Dec 04 2008 Daniel B. <daniel@firewall-services.com> [2.0-0]
291     - The bridge stuff is now in a separated rpm
292     - Restarting the service doesn't cut the InternalInterface
293     as the bridge isn't restarted
294     - Correct (truely this time) the bug with dhcpd looping
295     - Panel re-writen in FormMagick (much more simple now)
296     - Removed the certificate manager, now handled by phpki
297     - Real-time clients info using Net::OpenVPN::Manage
298     - Routes to local networks are pushed to clients
299    
300     * Tue Feb 06 2007 Daniel Berteaud <daniel@firewall-services.com>
301     - [1.1-1]
302     - Bugs fixes (repported by Stephan Braunstein)
303     - corrections in the en language
304    
305     * Tue Feb 06 2007 Daniel Berteaud <daniel@firewall-services.com>
306     - [1.1-0]
307     - panel enhancement
308     - little correction in the local file
309    
310 jpp 1.9 * Mon Dec 11 2006 Daniel Berteaud <daniel@firewall-services.com>
311 brianr 1.1 - [1.0-3]
312     - correction of permissions on startup and shutdown scripts
313     - little correction in the local file
314    
315     * Fri Dec 08 2006 Daniel Berteaud <daniel@firewall-services.com>
316     - [1.0-2]
317     - Added missing directory keys/bridge
318    
319 jpp 1.10 * Wed Dec 06 2006 Daniel Berteaud <daniel@firewall-services.com>
320 brianr 1.1 - [1.0-1]
321     - Removed useless parameters from the panel (tap, br and localInf)
322     - Added a stop script (k20openvpn-bridge)
323     - panel renamed to openvpn-bridge for futur compatibility
324    
325     %prep
326    
327     %setup -q -n %{name}-%{version}
328     %patch0 -p1
329     %patch1 -p1
330     %patch2 -p1
331     %patch3 -p1
332     %patch4 -p1
333     %patch5 -p1
334     %patch6 -p1
335     %patch7 -p1
336 brianr 1.2 %patch8 -p1
337 jpp 1.3 %patch9 -p1
338 terryfage 1.6 %patch10 -p1
339     %patch11 -p1
340 terryfage 1.7 %patch12 -p1
341 jpp 1.8 %patch13 -p1
342 jpp 1.13 %patch14 -p1
343 jpp 1.14 %patch15 -p1
344 terryfage 1.6
345 jpp 1.3 rm -rf root/usr/sbin/systemd/
346     rm -rf root/var/service/
347 brianr 1.1
348     %build
349     perl createlinks
350    
351     %{__mkdir_p} root/etc/openvpn/bridge/ccd
352     %{__mkdir_p} root/etc/openvpn/bridge/priv
353     %{__mkdir_p} root/etc/openvpn/bridge/pub
354     %{__mkdir_p} root/etc/openvpn/bridge/tmp
355     %{__mkdir_p} root/etc/openvpn/bridge/dev
356     %{__mkdir_p} root/var/log/openvpn-bridge
357    
358     %install
359     /bin/rm -rf $RPM_BUILD_ROOT
360     (cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT)
361     /bin/rm -f %{name}-%{version}-filelist
362     /sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
363 jpp 1.3 --dir /var/log/openvpn-bridge 'attr(0750,root,root)' \
364 brianr 1.1 --dir /etc/openvpn/bridge/pub 'attr(0755,root,root)' \
365     --dir /etc/openvpn/bridge/priv 'attr(0750,root,root)' \
366     --dir /etc/openvpn/bridge/ccd 'attr(0755,root,root)' \
367 jpp 1.14 --dir /etc/openvpn/bridge/etc 'attr(0755,root,root)' \
368 brianr 1.1 --dir /etc/openvpn/bridge/tmp 'attr(0770,root,nobody)' \
369     --file /usr/bin/ovpn-bridge-update-crl 'attr(0750,root,root)' \
370     > %{name}-%{version}-filelist
371    
372     %files -f %{name}-%{version}-filelist
373     %defattr(-,root,root)
374    
375     %clean
376     rm -rf $RPM_BUILD_ROOT
377    
378     %post
379     if [ \! -c /etc/openvpn/bridge/dev/urandom ]; then
380     mknod -m 0444 /etc/openvpn/bridge/dev/urandom c 1 9
381     fi
382    
383     %preun
admin@koozali.org
 ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed