]> git.pld-linux.org Git - packages/freeradius.git/blobdiff - freeradius.spec
projects / packages / freeradius.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
- updated to 0.9.3 (fixes DoS vulnerability in "Tunnel-Password" attr handling)
[packages/freeradius.git] / freeradius.spec
diff --git a/freeradius.spec b/freeradius.spec
index e7cecaf397265460bb7c5d1fcf064b875afd4b26..31c32947a995d8967467a88c4751a920d69f5fa0 100644 (file)
--- a/freeradius.spec
+++ b/freeradius.spec
@@ -1,34 +1,50 @@
-# FIXME: find a way of getting rid of "-" on versions ... rpm will be happy
+%include       /usr/lib/rpm/macros.python
+%include       /usr/lib/rpm/macros.perl
+# FIXME: won't be good to include these contrib examples?
+# Source1:     http://www.ping.de/~fdc/radius/radacct-replay
+# Source2:     http://www.ping.de/~fdc/radius/radlast-0.03
+# Source3:     ftp://ftp.freeradius.org/pub/radius/contrib/radwho.cgi
 Summary:       High-performance and highly configurable RADIUS server
-Summary(pl):   Szybki i wysoce konfigurowalny serwer RADIUS.
+Summary(pl):   Szybki i wysoce konfigurowalny serwer RADIUS
 Name:          freeradius
-Version:       0.1
-Release:       0
-URL:           http://www.freeradius.org/
+Version:       0.9.3
+Release:       0.1
 License:       GPL
 Group:         Networking/Daemons
-Group(de):     Netzwerkwesen/Server
-Group(pl):     Sieciowe/Serwery
-Prereq:                /sbin/chkconfig
-# FIXME: snmpwalk, snmpget and rusers POSSIBLY needed by checkrad
-Requires:      libtool
+Source0:       ftp://ftp.freeradius.org/pub/radius/%{name}-%{version}.tar.gz
+# Source0-md5: 36f33d9dd305a2c9f1089c30a9fff0b8
+Source1:       %{name}.logrotate
+Source2:       %{name}.init
+Source3:       %{name}.pam
+Patch0:                %{name}-ac.patch
+Patch1:                %{name}-rlm_smb-overflow.patch
+URL:           http://www.freeradius.org/
+BuildRequires: autoconf
+BuildRequires: automake
+BuildRequires: cyrus-sasl-devel
+BuildRequires: gdbm-devel
 BuildRequires: libltdl-devel
-BuildRequires: openldap-devel
-#someone's help needed:split&test into %{name}-{mysql,pgsql,common,devel,static,ldap,pam?} hunter.
+BuildRequires: libtool
 BuildRequires: mysql-devel
-BuildRequires: postgresql-devel
+BuildRequires: openldap-devel
+BuildRequires: openssl-devel >= 0.9.7c
 BuildRequires: pam-devel
+BuildRequires: perl-devel
+BuildRequires: postgresql-backend-devel
+BuildRequires: postgresql-devel
+BuildRequires: python-devel
+BuildRequires: net-snmp-devel
+BuildRequires: net-snmp-utils
+BuildRequires: unixODBC-devel
+BuildRequires: rpm-perlprov
+BuildRequires: rpm-pythonprov
+PreReq:                rc-scripts
+Requires(post,preun):  /sbin/chkconfig
+Requires:      libtool
+BuildRoot:     %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
 Obsoletes:     cistron-radius
-Source0:       ftp://ftp.freeradius.org/pub/radius/%{name}-%{version}.tar.gz
-
-%define         _localstatedir  /var/radius
-
-# FIXME: won't be good to include these contrib examples?
-# Source1:     http://www.ping.de/~fdc/radius/radacct-replay
-# Source2:     http://www.ping.de/~fdc/radius/radlast-0.03
-# Source3:     ftp://ftp.freeradius.org/pub/radius/contrib/radwho.cgi
 
-BuildRoot:     %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
+%define                _localstatedir  %{_var}/lib/freeradius
 
 %description
 The FreeRADIUS Server Project is an attempt to create a
@@ -36,90 +52,126 @@ high-performance and highly configurable GPL'd RADIUS server. It is
 generally similar to the Livingston 2.0 RADIUS server, but has a lot
 more features, and is much more configurable.
 
-%description(pl)
+%description -l pl
 Projekt FreeRadius ma na celu stworzenie szybkiego i wysoce
 konfigurowalnego serwera RADIUS na licencji GPL. Ten jest podobny do
 Livingston 2.0 RADIUS server ale ma o wiele wiêcej ficzersów i jest
 bardziej podatny na konfiguracjê.
 
-%prep 
+%prep
 %setup -q
+%patch0 -p1
+%patch1 -p1
 
-# FIXME: some folks prefer -dist files ... rename them or not?
-#cd raddb
-#chmod 640 clients naspasswd radiusd.conf.in
-#cd ..
+tail +3614 aclocal.m4 > acinclude.m4
 
 %build
-CFLAGS="%{rpmcflags}" 
-#libtoolize --copy --force
-#aclocal
-#autoconf
-#automake -a -c
-
-%configure --localstatedir=%{_localstatedir} \
+maindir="$(pwd)"
+for d in rlm_attr_rewrite rlm_checkval rlm_counter rlm_dbm \
+       rlm_eap/types/rlm_eap_{md5,tls} rlm_eap rlm_example \
+       rlm_ippool rlm_krb5 rlm_ldap rlm_pam rlm_perl rlm_python \
+       rlm_radutmp rlm_smb \
+       rlm_sql/drivers/rlm_sql_{db2,iodbc,mysql,oracle,postgresql,unixodbc} \
+       rlm_sql rlm_sqlcounter \
+       rlm_unix rlm_x99_token ; do
+       cd src/modules/${d}
+       %{__aclocal} -I ${maindir}
+       %{__autoconf}
+       if [ -f config.h.in ]; then
+               %{__autoheader}
+       fi
+       cd ${maindir}
+done
+#touch src/modules/rlm_eap/types/rlm_eap_tls/config.h
+%{__libtoolize}
+%{__aclocal}
+%{__autoconf}
+%{__autoheader}
+%configure \
+       --enable-strict-dependencies \
+       --with-logdir=%{_var}/log/freeradius \
+       --with-experimental-modules \
        --with-threads \
        --with-thread-pool \
        --with-gnu-ld \
-       --disable-ltdl-install
+       --with-ltdl-include=%{_includedir}/none \
+       --with-ltdl-lib=%{_libdir} \
+       --disable-ltdl-install \
+       --without-rlm_krb5 \
+       --without-rlm_dbm
 %{__make}
 
-libtool --finish %{_libdir}
-
 %install
-# prepare $RPM_BUILD_ROOT
 rm -rf $RPM_BUILD_ROOT
-install -d $RPM_BUILD_ROOT%{_sysconfdir}/{logrotate.d,pam.d,rc.d/init.d}
-
-# install files
-%{__make} install R=$RPM_BUILD_ROOT
-# done here & put noreplace in %files to avoid messing up existing installations
-for i in radutmp radwtmp  radius.log radwatch.log checkrad.log
-do
-  touch  $RPM_BUILD_ROOT%{_localstatedir}/log/$i
-  echo  $RPM_BUILD_ROOT%{_localstatedir}/log/$i
-  #who the hell should own logfiles/ and what sgid should have radiusd ?
-# do we need %{_sysconfdir}/shadow do be +r for wheel ? or better use PAM ?
-  # Hunter
-done
+install -d $RPM_BUILD_ROOT%{_sysconfdir}/raddb \
+       $RPM_BUILD_ROOT/etc/{logrotate.d,pam.d,rc.d/init.d} \
+       $RPM_BUILD_ROOT%{_var}/log/radius
+
+%{__make} install \
+       R=$RPM_BUILD_ROOT
+
+rm -f $RPM_BUILD_ROOT{%{_mandir}/man8/builddbm.8,%{_sbindir}/rc.radiusd}
+rm -f $RPM_BUILD_ROOT%{_sysconfdir}/raddb/{clients,*.pl}
+
+install %{SOURCE1}     $RPM_BUILD_ROOT/etc/logrotate.d/%{name}
+install %{SOURCE2}     $RPM_BUILD_ROOT/etc/rc.d/init.d/%{name}
+install %{SOURCE3}     $RPM_BUILD_ROOT/etc/pam.d/radius
+
+# remove useless static modules and library
+# rlm*.la are used (lt_dlopen)
+rm -f $RPM_BUILD_ROOT%{_libdir}/{*.a,libradius.la}
 
+%clean
+rm -rf $RPM_BUILD_ROOT
 
-# remove unneeded stuff
-%{__rm} -f $RPM_BUILD_ROOT%{_prefix}/{man/man8/builddbm.8,sbin/rc.radiusd}
+%pre
+if [ -n "`id -u radius 2>/dev/null`" ]; then
+       if [ "`id -u radius`" != "29" ]; then
+               echo "Error: user radius doesn't have uid=29. Correct this before installing radius server." 1>&2
+               exit 1
+       fi
+else
+       /usr/sbin/useradd -u 29 -d %{_localstatedir} -s /bin/false -M -r -c "%{name}" -g nobody radius 1>&2
+fi
 
-cd redhat
-install -m 555 rc.radiusd-redhat $RPM_BUILD_ROOT/etc/rc.d/init.d/radiusd
-install radiusd-logrotate $RPM_BUILD_ROOT/etc/logrotate.d/radiusd
-install radiusd-pam       $RPM_BUILD_ROOT/etc/pam.d/radius
-cd ..
+%post
+/sbin/chkconfig --add %{name}
+if [ -f /var/lock/subsys/%{name} ]; then
+       /etc/rc.d/init.d/%{name} restart 1>&2
+else
+       echo "Run \"/etc/rc.d/init.d/%{name} start\" to start %{name} daemon."
+fi
 
 %preun
 if [ "$1" = "0" ]; then
-       /sbin/chkconfig --del radiusd.init
+       if [ -f /var/lock/subsys/%{name} ]; then
+               /etc/rc.d/init.d/%{name} stop 1>&2
+       fi
+       /sbin/chkconfig --del %{name}
 fi
 
-%postin
+%postun
 if [ "$1" = "0" ]; then
-       /sbin/chkconfig --add radiusd.init
+       /usr/sbin/userdel %{name}
 fi
 
-%clean
-%{__rm} -rf $RPM_BUILD_ROOT
-
 %files
 %defattr(644,root,root,755)
-%doc doc/ChangeLog doc/README* todo/ COPYRIGHT INSTALL
-%config /etc/pam.d/radius
-%config /etc/logrotate.d/radiusd
-%config /etc/rc.d/init.d/radiusd
-%config %{_sysconfdir}/raddb/*
-%{_prefix}/man/*
+%doc doc/*
 %attr(755,root,root) %{_bindir}/*
 %attr(755,root,root) %{_sbindir}/*
-%{_libdir}/*
-%dir %{_localstatedir}/log/radacct/
-%config(missingok noreplace) %{_localstatedir}/log/checkrad.log
-%config(missingok noreplace) %{_localstatedir}/log/radwatch.log
-%config(missingok noreplace) %{_localstatedir}/log/radius.log
-%config(missingok noreplace) %{_localstatedir}/log/radwtmp
-%config(missingok noreplace) %{_localstatedir}/log/radutmp
+%attr(755,root,root) %{_libdir}/*.so
+%{_libdir}/*.la
+%{_datadir}/freeradius
+
+%dir %{_sysconfdir}/raddb
+%config(noreplace) %verify(not md5 size mtime) %{_sysconfdir}/raddb/*
+
+%dir %{_var}/log/%{name}
+%dir %{_var}/log/%{name}/radacct
+
+%attr(754,root,root) /etc/rc.d/init.d/%{name}
+%attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/pam.d/*
+%attr(640,root,root) %config(noreplace) /etc/logrotate.d/*
+
+%{_mandir}/man?/*
Unnamed repository; edit this file 'description' to name the repository.
This page took 0.079987 seconds and 4 git commands to generate.