2004-09-09 03:59:26 +00:00
|
|
|
|
2006-08-17 15:16:56 +00:00
|
|
|
%define crver 1.3
|
2004-09-09 03:59:47 +00:00
|
|
|
|
|
|
|
Summary: SSL certificate and key management utilities
|
2004-09-09 03:59:26 +00:00
|
|
|
Name: crypto-utils
|
2006-08-17 15:16:56 +00:00
|
|
|
Version: 2.3
|
2008-03-03 19:03:09 +00:00
|
|
|
Release: 10
|
2004-09-09 03:59:47 +00:00
|
|
|
Source: crypto-rand-%{crver}.tar.gz
|
|
|
|
Source1: genkey.pl
|
2004-09-10 14:16:06 +00:00
|
|
|
Source2: certwatch.c
|
|
|
|
Source3: certwatch.cron
|
|
|
|
Source4: certwatch.xml
|
2005-02-15 16:30:01 +00:00
|
|
|
Source5: genkey.xml
|
2006-08-17 15:16:56 +00:00
|
|
|
Source6: keyrand.c
|
2007-08-23 10:11:54 +00:00
|
|
|
Source7: COPYING
|
2007-10-24 14:03:17 +00:00
|
|
|
Source8: keyrand.xml
|
2004-09-09 03:59:26 +00:00
|
|
|
Group: Applications/System
|
2007-08-23 10:11:54 +00:00
|
|
|
License: MIT and GPLv2+
|
2007-03-01 09:12:29 +00:00
|
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root
|
2007-08-23 10:11:54 +00:00
|
|
|
BuildRequires: openssl-devel, pkgconfig, newt-devel, xmlto
|
2007-08-23 10:59:55 +00:00
|
|
|
BuildRequires: perl-devel, perl(Newt), perl(ExtUtils::MakeMaker)
|
2007-03-01 09:12:29 +00:00
|
|
|
Requires: perl(Newt), openssl >= 0.9.7f-4
|
2004-09-09 03:59:50 +00:00
|
|
|
Requires: %(eval `perl -V:version`; echo "perl(:MODULE_COMPAT_$version)")
|
2004-09-09 03:59:47 +00:00
|
|
|
Obsoletes: crypto-rand
|
2004-09-09 03:59:26 +00:00
|
|
|
|
|
|
|
%description
|
2004-09-09 03:59:47 +00:00
|
|
|
This package provides tools for managing and generating
|
|
|
|
SSL certificates and keys.
|
2004-09-09 03:59:26 +00:00
|
|
|
|
|
|
|
%prep
|
2004-09-09 03:59:47 +00:00
|
|
|
%setup -q -n crypto-rand-%{crver}
|
2004-09-09 03:59:26 +00:00
|
|
|
|
|
|
|
%build
|
2007-03-01 09:12:29 +00:00
|
|
|
%configure --with-newt=%{_prefix} CFLAGS="$CFLAGS -fPIC"
|
2006-08-17 15:16:56 +00:00
|
|
|
make -C librand
|
2004-09-09 03:59:26 +00:00
|
|
|
|
2005-04-26 09:24:13 +00:00
|
|
|
cc $RPM_OPT_FLAGS -Wall -Werror -I/usr/include/openssl \
|
|
|
|
$RPM_SOURCE_DIR/certwatch.c -o certwatch -lcrypto
|
2006-08-17 15:16:56 +00:00
|
|
|
|
|
|
|
cc $RPM_OPT_FLAGS -Wall -Werror \
|
|
|
|
$RPM_SOURCE_DIR/keyrand.c -o keyrand -lnewt
|
|
|
|
|
2007-10-24 14:03:17 +00:00
|
|
|
date +"%e %B %Y" | tr -d '\n' > date.xml
|
|
|
|
echo -n %{version} > version.xml
|
|
|
|
|
|
|
|
for m in certwatch.xml genkey.xml keyrand.xml; do
|
2007-10-24 14:09:36 +00:00
|
|
|
cp $RPM_SOURCE_DIR/${m} .
|
|
|
|
xmlto man ${m}
|
2005-02-15 16:30:01 +00:00
|
|
|
done
|
2004-09-10 14:16:06 +00:00
|
|
|
|
2004-09-09 03:59:47 +00:00
|
|
|
pushd Makerand
|
|
|
|
perl -pi -e "s/Stronghold/Crypt/g" *
|
2007-03-01 09:12:29 +00:00
|
|
|
perl Makefile.PL PREFIX=$RPM_BUILD_ROOT/usr OPTIMIZE="$RPM_OPT_FLAGS" INSTALLDIRS=vendor
|
2004-09-09 03:59:47 +00:00
|
|
|
make
|
|
|
|
popd
|
2004-09-09 03:59:26 +00:00
|
|
|
|
|
|
|
%install
|
2004-09-10 14:16:06 +00:00
|
|
|
rm -rf $RPM_BUILD_ROOT
|
2004-09-09 03:59:26 +00:00
|
|
|
|
2007-08-23 10:11:54 +00:00
|
|
|
sed -n '1,/^ \*\/$/p' librand/qshs.c > LICENSE.librand
|
|
|
|
cp -p $RPM_SOURCE_DIR/COPYING .
|
|
|
|
|
2004-09-09 03:59:47 +00:00
|
|
|
pushd Makerand
|
|
|
|
make install
|
2004-09-09 03:59:26 +00:00
|
|
|
popd
|
|
|
|
|
2007-03-01 09:12:29 +00:00
|
|
|
find $RPM_BUILD_ROOT -name Makerand.so | xargs chmod 755
|
2004-09-09 03:59:47 +00:00
|
|
|
|
|
|
|
find $RPM_BUILD_ROOT \( -name perllocal.pod -o -name .packlist \) -exec rm -v {} \;
|
2007-03-01 09:12:29 +00:00
|
|
|
find $RPM_BUILD_ROOT -type f -name '*.bs' -a -size 0 -exec rm -f {} ';'
|
|
|
|
find $RPM_BUILD_ROOT -depth -type d -exec rmdir {} 2>/dev/null ';'
|
2004-09-09 03:59:47 +00:00
|
|
|
|
2004-09-10 14:16:06 +00:00
|
|
|
mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/cron.daily \
|
|
|
|
$RPM_BUILD_ROOT%{_mandir}/man1 \
|
|
|
|
$RPM_BUILD_ROOT%{_bindir}
|
|
|
|
|
2004-09-09 03:59:47 +00:00
|
|
|
# install keyrand
|
2006-08-17 15:16:56 +00:00
|
|
|
install -c -m 755 keyrand $RPM_BUILD_ROOT%{_bindir}/keyrand
|
2004-09-10 14:16:06 +00:00
|
|
|
|
|
|
|
# install certwatch
|
|
|
|
install -c -m 755 certwatch $RPM_BUILD_ROOT%{_bindir}/certwatch
|
|
|
|
install -c -m 755 $RPM_SOURCE_DIR/certwatch.cron \
|
|
|
|
$RPM_BUILD_ROOT%{_sysconfdir}/cron.daily/certwatch
|
2007-10-24 14:03:17 +00:00
|
|
|
for f in certwatch genkey keyrand; do
|
|
|
|
install -c -m 644 ${f}.1 $RPM_BUILD_ROOT%{_mandir}/man1/${f}.1
|
|
|
|
done
|
2004-09-09 03:59:47 +00:00
|
|
|
|
|
|
|
# install genkey
|
2005-04-25 14:44:40 +00:00
|
|
|
sed -e "s|^\$bindir.*$|\$bindir = \"%{_bindir}\";|" \
|
|
|
|
-e "s|^\$ssltop.*$|\$ssltop = \"/etc/pki/tls\";|" \
|
|
|
|
-e "s|^\$sslconf.*$|\$sslconf = \"/etc/pki/tls/openssl.cnf\";|" \
|
|
|
|
-e "s|^\$cadir.*$|\$cadir = \"/etc/pki/CA\";|" \
|
2004-09-09 03:59:26 +00:00
|
|
|
-e "1s|.*|\#\!/usr/bin/perl|g" \
|
|
|
|
-e "s/'Challenge',/'Email','Challenge',/g" \
|
|
|
|
-e "/@EXTRA@/d" \
|
2004-09-09 03:59:47 +00:00
|
|
|
< $RPM_SOURCE_DIR/genkey.pl > $RPM_BUILD_ROOT%{_bindir}/genkey
|
2004-09-09 03:59:26 +00:00
|
|
|
|
2007-03-01 09:12:29 +00:00
|
|
|
chmod -R u+w $RPM_BUILD_ROOT
|
|
|
|
|
2004-09-09 03:59:26 +00:00
|
|
|
%clean
|
|
|
|
[ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT
|
|
|
|
|
2007-03-01 09:12:29 +00:00
|
|
|
%files
|
|
|
|
%defattr(-,root,root)
|
2004-09-09 03:59:47 +00:00
|
|
|
%attr(0755,root,root) %{_bindir}/*
|
2005-02-15 16:30:01 +00:00
|
|
|
%attr(0755,root,root) %{_sysconfdir}/cron.daily/certwatch
|
2007-03-01 09:12:29 +00:00
|
|
|
%{_mandir}/man*/*
|
2007-08-23 10:11:54 +00:00
|
|
|
%doc LICENSE* COPYING
|
2007-03-01 09:12:29 +00:00
|
|
|
%{perl_vendorarch}/Crypt
|
|
|
|
%{perl_vendorarch}/auto/Crypt
|
2004-09-09 03:59:26 +00:00
|
|
|
|
|
|
|
%changelog
|
2008-03-03 19:03:09 +00:00
|
|
|
* Mon Mar 3 2008 Tom "spot" Callaway <tcallawa@redhat.com> - 2.3-10
|
|
|
|
- rebuild for new perl again
|
|
|
|
|
2008-02-19 07:03:49 +00:00
|
|
|
* Tue Feb 19 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 2.3-9
|
|
|
|
- Autorebuild for GCC 4.3
|
|
|
|
|
2008-02-08 01:06:37 +00:00
|
|
|
* Thu Feb 7 2008 Tom "spot" Callaway <tcallawa@redhat.com> 2.3-8
|
|
|
|
- rebuild for new perl
|
|
|
|
|
2007-12-05 09:48:49 +00:00
|
|
|
* Wed Dec 5 2007 Joe Orton <jorton@redhat.com> 2.3-7
|
|
|
|
- rebuild for new OpenSSL
|
|
|
|
|
2007-10-30 16:15:10 +00:00
|
|
|
* Tue Oct 30 2007 Joe Orton <jorton@redhat.com> 2.3-6
|
|
|
|
- genkey: wording fix
|
|
|
|
|
2007-10-24 14:03:17 +00:00
|
|
|
* Wed Oct 24 2007 Joe Orton <jorton@redhat.com> 2.3-5
|
|
|
|
- genkey: skip the CA selection dialog; the CA-specific
|
|
|
|
instructions are all out-of-date
|
|
|
|
- man page updates, add man page for keyrand
|
|
|
|
|
2007-08-23 10:11:54 +00:00
|
|
|
* Thu Aug 23 2007 Joe Orton <jorton@redhat.com> 2.3-4
|
|
|
|
- fix certwatch -p too
|
|
|
|
- clarify License; package license texts
|
|
|
|
|
2007-08-22 08:13:29 +00:00
|
|
|
* Wed Aug 22 2007 Joe Orton <jorton@redhat.com> 2.3-3
|
|
|
|
- fix certwatch -a (Tuomo Soini, #253819)
|
|
|
|
|
2007-03-01 09:12:29 +00:00
|
|
|
* Thu Mar 1 2007 Joe Orton <jorton@redhat.com> 2.3-2
|
|
|
|
- various cleanups; require perl(Newt) throughout not newt-perl
|
|
|
|
|
2006-08-17 15:16:56 +00:00
|
|
|
* Thu Aug 17 2006 Joe Orton <jorton@redhat.com> 2.3-1
|
|
|
|
- add GPL-licensed keyrand replacement (#20254)
|
|
|
|
|
2006-07-12 04:54:20 +00:00
|
|
|
* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 2.2-9.2.2
|
|
|
|
- rebuild
|
|
|
|
|
2006-02-11 02:20:13 +00:00
|
|
|
* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 2.2-9.2.1
|
|
|
|
- bump again for double-long bug on ppc(64)
|
|
|
|
|
2006-02-07 11:18:30 +00:00
|
|
|
* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 2.2-9.2
|
|
|
|
- rebuilt for new gcc4.1 snapshot and glibc changes
|
|
|
|
|
2005-12-09 22:40:07 +00:00
|
|
|
* Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
|
|
|
|
- rebuilt
|
|
|
|
|
2005-11-24 17:20:23 +00:00
|
|
|
* Thu Nov 24 2005 Joe Orton <jorton@redhat.com> 2.2-9
|
|
|
|
- rebuild for new slang
|
|
|
|
|
2005-11-08 21:39:17 +00:00
|
|
|
* Tue Nov 8 2005 Tomas Mraz <tmraz@redhat.com> - 2.2-8
|
|
|
|
- rebuilt with new openssl
|
|
|
|
|
2005-10-03 07:48:04 +00:00
|
|
|
* Mon Oct 3 2005 Petr Rockai <prockai@redhat.com> - 2.2-7
|
|
|
|
- rebuild against newt 0.52
|
|
|
|
|
2005-05-26 08:08:46 +00:00
|
|
|
* Thu May 26 2005 Joe Orton <jorton@redhat.com> 2.2-6
|
|
|
|
- certwatch: use UTC time correctly (Tomas Mraz, #158703)
|
|
|
|
|
2005-05-13 15:32:36 +00:00
|
|
|
* Fri May 13 2005 Joe Orton <jorton@redhat.com> 2.2-5
|
|
|
|
- genkey(1): fix paths to use /etc/pki
|
|
|
|
|
2005-04-27 12:39:28 +00:00
|
|
|
* Wed Apr 27 2005 Joe Orton <jorton@redhat.com> 2.2-4
|
|
|
|
- genkey: create private key files with permissions 0400
|
|
|
|
- genkey: tidy up error handling a little
|
|
|
|
|
2005-04-26 12:39:15 +00:00
|
|
|
* Tue Apr 26 2005 Joe Orton <jorton@redhat.com> 2.2-3
|
|
|
|
- pass $OPTIONS to $HTTPD in certwatch.cron
|
|
|
|
- man page tweaks
|
|
|
|
|
2005-04-26 09:20:45 +00:00
|
|
|
* Tue Apr 26 2005 Joe Orton <jorton@redhat.com> 2.2-2
|
|
|
|
- add configuration options for certwatch (#152990)
|
|
|
|
- allow passing options in certwatch.cron via $CERTWATCH_OPTS
|
|
|
|
- require openssl with /etc/pki/tls
|
|
|
|
|
2005-04-25 14:44:40 +00:00
|
|
|
* Mon Apr 25 2005 Joe Orton <jorton@redhat.com> 2.2-1
|
|
|
|
- adapt to use /etc/pki
|
|
|
|
|
2005-03-04 10:10:26 +00:00
|
|
|
* Fri Mar 4 2005 Joe Orton <jorton@redhat.com> 2.1-6
|
|
|
|
- rebuild
|
|
|
|
|
2005-02-15 16:30:01 +00:00
|
|
|
* Tue Feb 15 2005 Joe Orton <jorton@redhat.com> 2.1-5
|
|
|
|
- certwatch: prevent warnings for duplicate certs (#103807)
|
|
|
|
- make /etc/cron.daily/certwatch 0755 (#141003)
|
|
|
|
- add genkey(1) man page (#134821)
|
|
|
|
|
2004-10-19 10:16:32 +00:00
|
|
|
* Tue Oct 19 2004 Joe Orton <jorton@redhat.com> 2.1-4
|
2004-10-19 10:15:57 +00:00
|
|
|
- make certwatch(1) warning distro-neutral
|
|
|
|
- update to crypto-rand 1.1, fixing #136093
|
|
|
|
|
2004-10-13 20:31:09 +00:00
|
|
|
* Wed Oct 13 2004 Joe Orton <jorton@redhat.com> 2.1-3
|
|
|
|
- send warnings To: root rather than root@localhost (#135533)
|
|
|
|
|
2004-10-06 15:00:18 +00:00
|
|
|
* Wed Oct 6 2004 Joe Orton <jorton@redhat.com> 2.1-2
|
|
|
|
- add BuildRequire newt-devel, xmlto (#134695)
|
|
|
|
|
2004-09-10 14:16:06 +00:00
|
|
|
* Fri Sep 10 2004 Joe Orton <jorton@redhat.com> 2.1-1
|
|
|
|
- add /usr/bin/certwatch
|
|
|
|
- support --days argument to genkey (#131045)
|
|
|
|
|
2004-09-09 03:59:50 +00:00
|
|
|
* Tue Aug 17 2004 Joe Orton <jorton@redhat.com> 2.0-6
|
|
|
|
- add perl MODULE_COMPAT requirement
|
|
|
|
|
2004-09-09 03:59:47 +00:00
|
|
|
* Mon Aug 16 2004 Joe Orton <jorton@redhat.com> 2.0-5
|
|
|
|
- rebuild
|
|
|
|
|
|
|
|
* Mon Sep 15 2003 Joe Orton <jorton@redhat.com> 2.0-4
|
|
|
|
- hide private key passwords during entry
|
|
|
|
- fix CSR generation
|
|
|
|
|
|
|
|
* Mon Sep 1 2003 Joe Orton <jorton@redhat.com> 2.0-3
|
|
|
|
- fix warnings when in UTF-8 locale
|
|
|
|
|
|
|
|
* Tue Aug 26 2003 Joe Orton <jorton@redhat.com> 2.0-2
|
|
|
|
- allow upgrade from Stronghold 4.0
|
|
|
|
|
|
|
|
* Mon Aug 4 2003 Joe Orton <jorton@redhat.com> 2.0-1
|
|
|
|
- update for RHEL
|
2004-09-09 03:59:29 +00:00
|
|
|
|
2004-09-09 03:59:26 +00:00
|
|
|
* Wed Sep 11 2002 Joe Orton <jorton@redhat.com> 1.0-12
|
|
|
|
- rebuild
|
|
|
|
|
|
|
|
* Thu Aug 22 2002 Joe Orton <jorton@redhat.com> 1.0-11
|
|
|
|
- fix location of OpenSSL configuration file in gencert
|
|
|
|
|
|
|
|
* Mon Jul 15 2002 Joe Orton <jorton@redhat.com> 1.0-10
|
|
|
|
- fix getca SERVERROOT, SSLTOP expansion (#68870)
|
|
|
|
|
|
|
|
* Mon May 13 2002 Joe Orton <jorton@redhat.com> 1.0-9
|
|
|
|
- improvements to genkey
|
|
|
|
|
|
|
|
* Mon May 13 2002 Joe Orton <jorton@redhat.com> 1.0-8
|
|
|
|
- add php.ini handling to stronghold-config
|
|
|
|
|
|
|
|
* Mon May 13 2002 Joe Orton <jorton@redhat.com> 1.0-7
|
|
|
|
- restore stronghold-config
|
|
|
|
|
|
|
|
* Tue May 07 2002 Gary Benson <gbenson@redhat.com> 1.0-6
|
|
|
|
- remove stronghold-config
|
|
|
|
|
|
|
|
* Tue Apr 09 2002 Gary Benson <gbenson@redhat.com> 1.0-5
|
|
|
|
- change the group to match crypto-rand
|
|
|
|
- change Copyright to License
|
|
|
|
|
|
|
|
* Mon Mar 25 2002 Gary Benson <gbenson@redhat.com> 1.0-4
|
|
|
|
- hack to clean up some cruft that gets left in the docroot after we
|
|
|
|
install.
|
|
|
|
|
|
|
|
* Fri Mar 22 2002 Gary Benson <gbenson@redhat.com>
|
|
|
|
- excise interchange.
|
|
|
|
|
|
|
|
* Wed Feb 13 2002 Gary Benson <gbenson@redhat.com> 1.0-3
|
|
|
|
- ask about interchange too.
|
|
|
|
- make /etc/sysconfig/httpd nicer.
|
|
|
|
|
|
|
|
* Thu May 17 2001 Joe Orton <jorton@redhat.com>
|
|
|
|
- Redone for Red Hat Linux.
|
|
|
|
|
|
|
|
* Mon Mar 20 2001 Mark Cox <mjc@redhat.com>
|
|
|
|
- Changes to make genkey a perl script
|
|
|
|
|
|
|
|
* Mon Dec 04 2000 Joe Orton <jorton@redhat.com>
|
|
|
|
- Put the stronghold/bin -> stronghold/ssl/bin symlink in the %files section
|
|
|
|
rather than creating it in %post.
|
|
|
|
|
|
|
|
* Fri Nov 24 2000 Mark Cox <mjc@redhat.com>
|
|
|
|
- No need for .configure scripts, do the substitution ourselves
|
|
|
|
|
|
|
|
* Tue Nov 21 2000 Mark Cox <mjc@redhat.com>
|
|
|
|
- First version. Because this depends on a build environment
|
|
|
|
- We won't worry about ni-scripts for now, they're not used anyhow
|
|
|
|
|