[packages/apache-mod_gnutls.git] / apache-mod_gnutls.spec

%define		mod_name	gnutls
%define 	apxs		/usr/sbin/apxs
Summary:	SSL v3, TLS 1.0 and TLS 1.1 encryption for Apache HTTPD
Summary(pl.UTF-8):	Szyfrowanie SSL v3, TLS 1.0 i TLS 1.1 dla serwera HTTP Apache
Name:		apache-mod_%{mod_name}
Version:	0.2.0
Release:	0.2
License:	Apache Group License
Group:		Networking/Daemons
Source0:	http://www.outoforder.cc/downloads/mod_gnutls/mod_gnutls-%{version}.tar.bz2
# Source0-md5:	80ab766a7b9cfbb730e789032ff26d68
Source1:	%{name}.conf
Source2:	%{name}-dhfile
Source3:	%{name}-rsafile
Patch0:		%{name}-libtool.patch
Patch1:		%{name}-no_certtool.patch
Patch2:		%{name}-paths.patch
URL:		http://www.outoforder.cc/projects/apache/mod_gnutls/
BuildRequires:	%{apxs}
BuildRequires:	apache-devel >= 2.0.42
BuildRequires:	apr_memcache-devel
BuildRequires:	autoconf
BuildRequires:	automake
BuildRequires:	gnutls-devel >= 1.2.0
BuildRequires:	libtool
Requires:	apache(modules-api) = %apache_modules_api
BuildRoot:	%{tmpdir}/%{name}-%{version}-root-%(id -u -n)

%define         _pkglibdir      %(%{apxs} -q LIBEXECDIR 2>/dev/null)
%define		_sysconfdir	%(%{apxs} -q SYSCONFDIR 2>/dev/null)

%description
mod_gnutls uses the GnuTLS library to provide SSL v3, TLS 1.0 and TLS
1.1 encryption for Apache HTTPD. It is similar to mod_ssl in purpose,
but does not use OpenSSL.

Features:
 - Support for SSL v3, TLS 1.0 and TLS 1.1.
 - Support for Server Name Indication
 - Distributed SSL Session Cache via Memcached
 - Local SSL Session Cache using DBM

%description -l pl.UTF-8
mod_gnutls używa biblioteki GnuTLS do obsługi szyfrowania SSL v3, TLS
1.0 i TLS 1.1 dla serwera HTTP Apache. Pod względem przeznaczenia jest
podobny do mod_ssl, ale nie używa biblioteki OpenSSL.

Możliwości:
 - obsługa SSL v3, TLS 1.0 i TLS 1.1
 - obsługa identyfikacji nazwy serwera (Server Name Indication)
 - rozproszona pamięć podręczna sesji SSL poprzez Memcached
 - lokalna pamięć podręczna sesji SSL korzystająca z DBM

%prep
%setup -q -n mod_%{mod_name}-%{version}
%patch0 -p1
%patch1 -p1
%patch2 -p1

%build
%{__libtoolize}
%{__aclocal} -I m4
%{__autoheader}
%{__automake}
%{__autoconf}
%configure \
	--with-apxs=%{apxs} \
	--with-libgnutls=%{_prefix} \
	--without-apr-memcache

%{__make}

%install
rm -rf $RPM_BUILD_ROOT
install -d $RPM_BUILD_ROOT{%{_pkglibdir},%{_sysconfdir}/{conf.d,tls}}
install src/.libs/libmod_gnutls.so $RPM_BUILD_ROOT%{_pkglibdir}/mod_gnutls.so
install %{SOURCE1} $RPM_BUILD_ROOT%{_sysconfdir}/conf.d/40_mod_gnutls.conf
install %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/tls/dhfile
install %{SOURCE3} $RPM_BUILD_ROOT%{_sysconfdir}/tls/rsafile

%clean
rm -rf $RPM_BUILD_ROOT

%post
if [ "$1" = "1" ]; then
	echo "Generating dhfile/rsafile - this may take some time..."
        d=/etc/httpd/tls
        [ -f "$d/dhfile" ] || /usr/bin/certtool --generate-dh-params --bits 1024 --outfile $d/dhfile
        [ -f "$d/rsafile" ] || /usr/bin/certtool --generate-privkey --bits 512 --outfile $d/rsafile
fi
%service -q httpd restart

%postun
if [ "$1" = "0" ]; then
	%service -q httpd restart
	rm -f /etc/httpd/tls/{dhfile,rsafile}
fi

%files
%defattr(644,root,root,755)
%attr(750,root,root) %dir %{_sysconfdir}/tls
%dir %{_sysconfdir}/tls
%attr(640,root,root) %verify(not md5 mtime size) %{_sysconfdir}/conf.d/*_mod_gnutls.conf
%attr(755,root,root) %{_pkglibdir}/*
Commit	Line	Data
2c1b5642 ER	1	%define mod_name gnutls
	2	%define apxs /usr/sbin/apxs
	3	Summary: SSL v3, TLS 1.0 and TLS 1.1 encryption for Apache HTTPD
47c11dca	4	Summary(pl.UTF-8): Szyfrowanie SSL v3, TLS 1.0 i TLS 1.1 dla serwera HTTP Apache
2c1b5642 ER	5	Name: apache-mod_%{mod_name}
2c1b5642 ER	6	Version: 0.2.0
6d84c8aa	7	Release: 0.2
2c1b5642 ER	8	License: Apache Group License
	9	Group: Networking/Daemons
	10	Source0: http://www.outoforder.cc/downloads/mod_gnutls/mod_gnutls-%{version}.tar.bz2
	11	# Source0-md5: 80ab766a7b9cfbb730e789032ff26d68
6d84c8aa AG	12	Source1: %{name}.conf
	13	Source2: %{name}-dhfile
	14	Source3: %{name}-rsafile
51cb7061 AG	15	Patch0: %{name}-libtool.patch
51cb7061 AG	16	Patch1: %{name}-no_certtool.patch
6d84c8aa	17	Patch2: %{name}-paths.patch
2c1b5642	18	URL: http://www.outoforder.cc/projects/apache/mod_gnutls/
fe9ec67c	19	BuildRequires: %{apxs}
2c1b5642	20	BuildRequires: apache-devel >= 2.0.42
f0628c3f	21	BuildRequires: apr_memcache-devel
51cb7061 AG	22	BuildRequires: autoconf
51cb7061 AG	23	BuildRequires: automake
2c1b5642	24	BuildRequires: gnutls-devel >= 1.2.0
51cb7061	25	BuildRequires: libtool
1bc6813a	26	Requires: apache(modules-api) = %apache_modules_api
2c1b5642 ER	27	BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
2c1b5642 ER	28
51cb7061	29	%define _pkglibdir %(%{apxs} -q LIBEXECDIR 2>/dev/null)
6d84c8aa	30	%define _sysconfdir %(%{apxs} -q SYSCONFDIR 2>/dev/null)
51cb7061	31
2c1b5642 ER	32	%description
	33	mod_gnutls uses the GnuTLS library to provide SSL v3, TLS 1.0 and TLS
	34	1.1 encryption for Apache HTTPD. It is similar to mod_ssl in purpose,
	35	but does not use OpenSSL.
	36
	37	Features:
6d84c8aa AG	38	- Support for SSL v3, TLS 1.0 and TLS 1.1.
	39	- Support for Server Name Indication
	40	- Distributed SSL Session Cache via Memcached
	41	- Local SSL Session Cache using DBM
2c1b5642	42
961dafb6 JR	43	%description -l pl.UTF-8
	44	mod_gnutls używa biblioteki GnuTLS do obsługi szyfrowania SSL v3, TLS
	45	1.0 i TLS 1.1 dla serwera HTTP Apache. Pod względem przeznaczenia jest
	46	podobny do mod_ssl, ale nie używa biblioteki OpenSSL.
49e968a7	47
961dafb6	48	Możliwości:
6d84c8aa AG	49	- obsługa SSL v3, TLS 1.0 i TLS 1.1
	50	- obsługa identyfikacji nazwy serwera (Server Name Indication)
	51	- rozproszona pamięć podręczna sesji SSL poprzez Memcached
	52	- lokalna pamięć podręczna sesji SSL korzystająca z DBM
49e968a7	53
2c1b5642 ER	54	%prep
2c1b5642 ER	55	%setup -q -n mod_%{mod_name}-%{version}
51cb7061 AG	56	%patch0 -p1
51cb7061 AG	57	%patch1 -p1
6d84c8aa	58	%patch2 -p1
2c1b5642 ER	59
2c1b5642 ER	60	%build
51cb7061 AG	61	%{__libtoolize}
	62	%{__aclocal} -I m4
	63	%{__autoheader}
	64	%{__automake}
	65	%{__autoconf}
2c1b5642 ER	66	%configure \
	67	--with-apxs=%{apxs} \
	68	--with-libgnutls=%{_prefix} \
	69	--without-apr-memcache
6d84c8aa	70
2c1b5642 ER	71	%{__make}
	72
	73	%install
	74	rm -rf $RPM_BUILD_ROOT
6d84c8aa	75	install -d $RPM_BUILD_ROOT{%{_pkglibdir},%{_sysconfdir}/{conf.d,tls}}
51cb7061	76	install src/.libs/libmod_gnutls.so $RPM_BUILD_ROOT%{_pkglibdir}/mod_gnutls.so
6d84c8aa AG	77	install %{SOURCE1} $RPM_BUILD_ROOT%{_sysconfdir}/conf.d/40_mod_gnutls.conf
	78	install %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/tls/dhfile
	79	install %{SOURCE3} $RPM_BUILD_ROOT%{_sysconfdir}/tls/rsafile
2c1b5642 ER	80
	81	%clean
	82	rm -rf $RPM_BUILD_ROOT
	83
6d84c8aa	84	%post
f0628c3f AG	85	if [ "$1" = "1" ]; then
	86	echo "Generating dhfile/rsafile - this may take some time..."
	87	d=/etc/httpd/tls
	88	[ -f "$d/dhfile" ] \|\| /usr/bin/certtool --generate-dh-params --bits 1024 --outfile $d/dhfile
	89	[ -f "$d/rsafile" ] \|\| /usr/bin/certtool --generate-privkey --bits 512 --outfile $d/rsafile
	90	fi
6d84c8aa AG	91	%service -q httpd restart
	92
	93	%postun
	94	if [ "$1" = "0" ]; then
	95	%service -q httpd restart
f0628c3f	96	rm -f /etc/httpd/tls/{dhfile,rsafile}
6d84c8aa AG	97	fi
6d84c8aa AG	98
2c1b5642 ER	99	%files
2c1b5642 ER	100	%defattr(644,root,root,755)
6d84c8aa	101	%attr(750,root,root) %dir %{_sysconfdir}/tls
f0628c3f	102	%dir %{_sysconfdir}/tls
6d84c8aa AG	103	%attr(640,root,root) %verify(not md5 mtime size) %{_sysconfdir}/conf.d/*_mod_gnutls.conf
6d84c8aa AG	104	%attr(755,root,root) %{_pkglibdir}/*