stunnel-tls/sme7/stunnel-tls.spec

Summary: An SSL-encrypting socket wrapper.
Name: stunnel-tls
Version: 3.22
Release: 4%{?dist}
License: GPL
Group: Applications/Internet
URL: http://stunnel.mirt.net/ 
Source0: ftp://stunnel.mirt.net/stunnel/stunnel-%{version}.tar.gz
Source1: stunnel.cnf
Source2: Certificate-Creation
Source3: sfinger.xinetd
Source4: pop3-redirect.xinetd
Source5: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/imap-tls.README
Source6: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/smtp-tls.README
Source7: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/pop3-tls.README
Source8: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/makesock.c
Patch0: stunnel-3.20-authpriv.patch
Patch1: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/stunnel3.22-sg2.patch
Buildroot: %{_tmppath}/stunnel-root
BuildPrereq: openssl-devel, perl, textutils, fileutils, /usr/share/dict/words, tcp_wrappers
Prereq: textutils, fileutils, /bin/mktemp, /sbin/ldconfig, /usr/share/dict/words, /bin/hostname, /usr/bin/id, /usr/bin/getent
Requires: make
Requires: stunnel >= %{version}-1

%description
Stunnel is a socket wrapper which can provide SSL (Secure Sockets
Layer) support to ordinary applications. For example, it can be used
in conjunction with imapd to create an SSL secure IMAP server.

This RPM contains stunnel-tls and makesock, which are created by
Scott Gifford's patches.

%prep
# %setup -q
%setup -q -n stunnel-%{version}
%patch0 -p1 -b .authpriv
%patch1 -p1 -b .sg2

%build
%configure \
        --with-ssl=%{_prefix} \
        --with-pem-dir=%{_datadir}/ssl/certs \
        --with-cert-file=%{_datadir}/ssl/cert.pem \
        --with-cert-dir=%{_datadir}/ssl/trusted \
        --with-tcp-wrappers
perl -p -i -e 's:-I/usr/include:-I/usr/include -I/usr/kerberos/include:' Makefile

# We have to create a certificate before the makefile asks us to.
rm -f stunnel.pem stunnel.pem.1 stunnel.pem.2
(echo US
 echo .
 echo .
 echo .
 echo .
 echo .
 echo .
 echo .) | openssl req -newkey rsa:1024 -nodes -keyout stunnel.pem.1 -x509 -days 365 -out stunnel.pem.2
cat stunnel.pem.1 >  stunnel.pem
echo ""           >> stunnel.pem
cat stunnel.pem.2 >> stunnel.pem
make piddir=/var/run/
gcc -o makesock %{SOURCE8}

%install
rm -rf $RPM_BUILD_ROOT
mkdir -p $RPM_BUILD_ROOT/%{_sbindir}
install -m755 stunnel $RPM_BUILD_ROOT/%{_sbindir}/stunnel-tls
install -m755 makesock $RPM_BUILD_ROOT/%{_sbindir}/
mkdir -p $RPM_BUILD_ROOT/usr/share/doc
ln -s stunnel-%{version} $RPM_BUILD_ROOT/usr/share/doc/%{name}-%{version}

%post

%postun

%clean
rm -rf $RPM_BUILD_ROOT

%files
%defattr(-,root,root)
%{_sbindir}/stunnel-tls
%{_sbindir}/makesock
/usr/share/doc/%{name}-%{version}

%changelog
* Sun Apr 29 2007 Shad L. Lords <slords@mail.com>
- Clean up spec so package can be built by koji/plague

* Thu Dec 07 2006 Shad L. Lords <slords@mail.com>
- Update to new release naming.  No functional changes.
- Make Packager generic

* Thu Jun 23 2005 Gordon Rowell <gordonr@gormand.com.au> 3.22-3gr01
- Mini RPM with just stunnel-tls and makesock
- Grr - why are RPM macros sooo broken - (percent)makeinstall
  is still executed even if # commented out in the (percent)install
  section

* Fri Feb 18 2005 Charlie Brady <charlieb@e-smith.com> 3.22-2es
- CentOS build fix and recompile

* Mon Mar 10 2003 Charlie Brady <charlieb@e-smith.com> 3.22-1es
- Add Scott Gifford's STARTTLS proxy patches and makesock program.

* Wed Jan  2 2002 Nalin Dahyabhai <nalin@redhat.com> 3.22-1
- update to 3.22, correcting a format-string vulnerability

* Wed Oct 31 2001 Nalin Dahyabhai <nalin@redhat.com> 3.21a-1
- update to 3.21a

* Tue Aug 28 2001 Nalin Dahyabhai <nalin@redhat.com> 3.20-1
- log using LOG_AUTHPRIV facility by default (#47289)
- make permissions on stunnel binary 0755
- implicitly trust certificates in %%{_datadir}/ssl/trusted (#24034)

* Fri Aug 10 2001 Nalin Dahyabhai <nalin@redhat.com> 3.19-1
- update to 3.19 to avoid problems with stunnel being multithreaded, but
  tcp wrappers not being thrad-safe

* Mon Jul 30 2001 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.17

* Mon Jul 23 2001 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.16

* Mon Jul 16 2001 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.15
- enable tcp-wrappers support

* Tue May 29 2001 Nalin Dahyabhai <nalin@redhat.com>
- remove explicit requirement on openssl (specific version isn't enough,
  we have to depend on shared library version anyway)

* Fri Apr 27 2001 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.14

* Mon Mar 26 2001 Preston Brown <pbrown@redhat.com>
- depend on make (#33148)

* Fri Mar  2 2001 Nalin Dahyabhai <nalin@redhat.com>
- rebuild in new environment

* Tue Feb  6 2001 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.13 to get pthread, OOB, 64-bit fixes
- don't need sdf any more

* Thu Dec 28 2000 Nalin Dahyabhai <nalin@redhat.com>
- pull in sdf to build the man page (#22892)

* Fri Dec 22 2000 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.11
- chuck the SIGHUP patch (went upstream)
- chuck parts of the 64-bit clean patch (went upstream)

* Thu Dec 21 2000 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.10
- more 64-bit clean changes, hopefully the last bunch

* Wed Dec 20 2000 Nalin Dahyabhai <nalin@redhat.com>
- change piddir from the default /var/stunnel to /var/run
- clean out pid file on SIGHUP

* Fri Dec 15 2000 Nalin Dahyabhai <nalin@redhat.com>
- update to 3.9 to get a security fix

* Wed Oct 25 2000 Matt Wilson <msw@redhat.com>
- change all unsigned longs to u_int32_t when dealing with network
  addresses

* Fri Aug 18 2000 Nalin Dahyabhai <nalin@redhat.com>
- make stunnel.pem also be (missingok)

* Thu Jun 29 2000 Nalin Dahyabhai <nalin@redhat.com>
- move to Applications/Internet group
- clean up %post script
- make stunnel.pem %ghost %config(noreplace)
- provide a sample file for use with xinetd

* Thu Jun  8 2000 Nalin Dahyabhai <nalin@redhat.com>
- FHS compliance fixes
- modify defaults

* Tue Mar 14 2000 Florian La Roche <Florian.LaRoche@redhat.com>
- update to 3.8
- do not create certificate if one already exists

* Mon Feb 21 2000 Florian La Roche <Florian.LaRoche@redhat.com>
- update to 3.7
- add patch to find /usr/share/ssl
- change some perms

* Sat Oct 30 1999 Bernhard Rosenkraenzer <bero@redhat.com>
- Modify spec file to match Red Hat standards

* Fri Aug 12 1999 Damien Miller <damien@ibs.com.au>
- Updated to 3.4a
- Patched for OpenSSL 0.9.4
- Cleaned up files section

* Sun Jul 11 1999 Damien Miller <dmiller@ilogic.com.au>
- Updated to 3.3

* Sat Nov 28 1998 Damien Miller <dmiller@ilogic.com.au>
- Initial RPMification
1	slords	1.1	Summary: An SSL-encrypting socket wrapper.
2			Name: stunnel-tls
3			Version: 3.22
4			Release: 4%{?dist}
5			License: GPL
6			Group: Applications/Internet
7			URL: http://stunnel.mirt.net/
8			Source0: ftp://stunnel.mirt.net/stunnel/stunnel-%{version}.tar.gz
9			Source1: stunnel.cnf
10			Source2: Certificate-Creation
11			Source3: sfinger.xinetd
12			Source4: pop3-redirect.xinetd
13			Source5: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/imap-tls.README
14			Source6: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/smtp-tls.README
15			Source7: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/pop3-tls.README
16			Source8: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/makesock.c
17			Patch0: stunnel-3.20-authpriv.patch
18			Patch1: http://www.suspectclass.com/~sgifford/stunnel-tlsproxy/stunnel3.22-sg2.patch
19			Buildroot: %{_tmppath}/stunnel-root
20			BuildPrereq: openssl-devel, perl, textutils, fileutils, /usr/share/dict/words, tcp_wrappers
21			Prereq: textutils, fileutils, /bin/mktemp, /sbin/ldconfig, /usr/share/dict/words, /bin/hostname, /usr/bin/id, /usr/bin/getent
22			Requires: make
23			Requires: stunnel >= %{version}-1
24
25			%description
26			Stunnel is a socket wrapper which can provide SSL (Secure Sockets
27			Layer) support to ordinary applications. For example, it can be used
28			in conjunction with imapd to create an SSL secure IMAP server.
29
30			This RPM contains stunnel-tls and makesock, which are created by
31			Scott Gifford's patches.
32
33			%prep
34			# %setup -q
35			%setup -q -n stunnel-%{version}
36			%patch0 -p1 -b .authpriv
37			%patch1 -p1 -b .sg2
38
39			%build
40			%configure \
41			--with-ssl=%{_prefix} \
42			--with-pem-dir=%{_datadir}/ssl/certs \
43			--with-cert-file=%{_datadir}/ssl/cert.pem \
44			--with-cert-dir=%{_datadir}/ssl/trusted \
45			--with-tcp-wrappers
46			perl -p -i -e 's:-I/usr/include:-I/usr/include -I/usr/kerberos/include:' Makefile
47
48			# We have to create a certificate before the makefile asks us to.
49			rm -f stunnel.pem stunnel.pem.1 stunnel.pem.2
50			(echo US
51			echo .
52			echo .
53			echo .
54			echo .
55			echo .
56			echo .
57			echo .) \| openssl req -newkey rsa:1024 -nodes -keyout stunnel.pem.1 -x509 -days 365 -out stunnel.pem.2
58			cat stunnel.pem.1 > stunnel.pem
59			echo "" >> stunnel.pem
60			cat stunnel.pem.2 >> stunnel.pem
61			make piddir=/var/run/
62			gcc -o makesock %{SOURCE8}
63
64			%install
65			rm -rf $RPM_BUILD_ROOT
66			mkdir -p $RPM_BUILD_ROOT/%{_sbindir}
67			install -m755 stunnel $RPM_BUILD_ROOT/%{_sbindir}/stunnel-tls
68			install -m755 makesock $RPM_BUILD_ROOT/%{_sbindir}/
69			mkdir -p $RPM_BUILD_ROOT/usr/share/doc
70			ln -s stunnel-%{version} $RPM_BUILD_ROOT/usr/share/doc/%{name}-%{version}
71
72			%post
73
74			%postun
75
76			%clean
77			rm -rf $RPM_BUILD_ROOT
78
79			%files
80			%defattr(-,root,root)
81			%{_sbindir}/stunnel-tls
82			%{_sbindir}/makesock
83			/usr/share/doc/%{name}-%{version}
84
85			%changelog
86			* Sun Apr 29 2007 Shad L. Lords <slords@mail.com>
87			- Clean up spec so package can be built by koji/plague
88
89			* Thu Dec 07 2006 Shad L. Lords <slords@mail.com>
90			- Update to new release naming. No functional changes.
91			- Make Packager generic
92
93			* Thu Jun 23 2005 Gordon Rowell <gordonr@gormand.com.au> 3.22-3gr01
94			- Mini RPM with just stunnel-tls and makesock
95			- Grr - why are RPM macros sooo broken - (percent)makeinstall
96			is still executed even if # commented out in the (percent)install
97			section
98
99			* Fri Feb 18 2005 Charlie Brady <charlieb@e-smith.com> 3.22-2es
100			- CentOS build fix and recompile
101
102			* Mon Mar 10 2003 Charlie Brady <charlieb@e-smith.com> 3.22-1es
103			- Add Scott Gifford's STARTTLS proxy patches and makesock program.
104
105			* Wed Jan 2 2002 Nalin Dahyabhai <nalin@redhat.com> 3.22-1
106			- update to 3.22, correcting a format-string vulnerability
107
108			* Wed Oct 31 2001 Nalin Dahyabhai <nalin@redhat.com> 3.21a-1
109			- update to 3.21a
110
111			* Tue Aug 28 2001 Nalin Dahyabhai <nalin@redhat.com> 3.20-1
112			- log using LOG_AUTHPRIV facility by default (#47289)
113			- make permissions on stunnel binary 0755
114			- implicitly trust certificates in %%{_datadir}/ssl/trusted (#24034)
115
116			* Fri Aug 10 2001 Nalin Dahyabhai <nalin@redhat.com> 3.19-1
117			- update to 3.19 to avoid problems with stunnel being multithreaded, but
118			tcp wrappers not being thrad-safe
119
120			* Mon Jul 30 2001 Nalin Dahyabhai <nalin@redhat.com>
121			- update to 3.17
122
123			* Mon Jul 23 2001 Nalin Dahyabhai <nalin@redhat.com>
124			- update to 3.16
125
126			* Mon Jul 16 2001 Nalin Dahyabhai <nalin@redhat.com>
127			- update to 3.15
128			- enable tcp-wrappers support
129
130			* Tue May 29 2001 Nalin Dahyabhai <nalin@redhat.com>
131			- remove explicit requirement on openssl (specific version isn't enough,
132			we have to depend on shared library version anyway)
133
134			* Fri Apr 27 2001 Nalin Dahyabhai <nalin@redhat.com>
135			- update to 3.14
136
137			* Mon Mar 26 2001 Preston Brown <pbrown@redhat.com>
138			- depend on make (#33148)
139
140			* Fri Mar 2 2001 Nalin Dahyabhai <nalin@redhat.com>
141			- rebuild in new environment
142
143			* Tue Feb 6 2001 Nalin Dahyabhai <nalin@redhat.com>
144			- update to 3.13 to get pthread, OOB, 64-bit fixes
145			- don't need sdf any more
146
147			* Thu Dec 28 2000 Nalin Dahyabhai <nalin@redhat.com>
148			- pull in sdf to build the man page (#22892)
149
150			* Fri Dec 22 2000 Nalin Dahyabhai <nalin@redhat.com>
151			- update to 3.11
152			- chuck the SIGHUP patch (went upstream)
153			- chuck parts of the 64-bit clean patch (went upstream)
154
155			* Thu Dec 21 2000 Nalin Dahyabhai <nalin@redhat.com>
156			- update to 3.10
157			- more 64-bit clean changes, hopefully the last bunch
158
159			* Wed Dec 20 2000 Nalin Dahyabhai <nalin@redhat.com>
160			- change piddir from the default /var/stunnel to /var/run
161			- clean out pid file on SIGHUP
162
163			* Fri Dec 15 2000 Nalin Dahyabhai <nalin@redhat.com>
164			- update to 3.9 to get a security fix
165
166			* Wed Oct 25 2000 Matt Wilson <msw@redhat.com>
167			- change all unsigned longs to u_int32_t when dealing with network
168			addresses
169
170			* Fri Aug 18 2000 Nalin Dahyabhai <nalin@redhat.com>
171			- make stunnel.pem also be (missingok)
172
173			* Thu Jun 29 2000 Nalin Dahyabhai <nalin@redhat.com>
174			- move to Applications/Internet group
175			- clean up %post script
176			- make stunnel.pem %ghost %config(noreplace)
177			- provide a sample file for use with xinetd
178
179			* Thu Jun 8 2000 Nalin Dahyabhai <nalin@redhat.com>
180			- FHS compliance fixes
181			- modify defaults
182
183			* Tue Mar 14 2000 Florian La Roche <Florian.LaRoche@redhat.com>
184			- update to 3.8
185			- do not create certificate if one already exists
186
187			* Mon Feb 21 2000 Florian La Roche <Florian.LaRoche@redhat.com>
188			- update to 3.7
189			- add patch to find /usr/share/ssl
190			- change some perms
191
192			* Sat Oct 30 1999 Bernhard Rosenkraenzer <bero@redhat.com>
193			- Modify spec file to match Red Hat standards
194
195			* Fri Aug 12 1999 Damien Miller <damien@ibs.com.au>
196			- Updated to 3.4a
197			- Patched for OpenSSL 0.9.4
198			- Cleaned up files section
199
200			* Sun Jul 11 1999 Damien Miller <dmiller@ilogic.com.au>
201			- Updated to 3.3
202
203			* Sat Nov 28 1998 Damien Miller <dmiller@ilogic.com.au>
204			- Initial RPMification