%define name stunnel
%define version 4.07
%define release 1mdk
%define pemdir %{_sysconfdir}/ssl/stunnel
%define build_distcache 0
# commandline overrides:
# rpm -ba|--rebuild --with 'xxx'
%{?_with_distcache: %{expand: %%define build_distcache 1}}
%if %{build_distcache}
%define build_distcache 1
%endif
%define major 0
%define libname %mklibname %{name} %{major}
Summary: Program that wraps normal socket connections with SSL/TLS
Name: %{name}
Version: %{version}
Release: %{release}
License: GPL
Group: System/Servers
URL: http://www.stunnel.org/
Source0: http://www.stunnel.org/download/stunnel/src/%{name}-%{version}.tar.gz
Source1: http://www.stunnel.org/download/stunnel/src/%{name}-%{version}.tar.gz.asc
Patch0: %{name}-4.06-confdir.patch.bz2
Patch1: %{name}-4.06-authpriv.patch.bz2
Patch2: stunnel-4.06-soname.diff.bz2
Patch3: stunnel-4.06-pidfile_location.diff.bz2
# (oe): P100 originates from:
# http://www.stunnel.org/patches/patches/distcache_geoff.patch
Patch100: stunnel-4.06-distcache.diff.bz2
BuildRequires: automake1.7
BuildRequires: autoconf2.5
BuildRequires: openssl >= 0.9.5
BuildRequires: openssl-devel >= 0.9.5
BuildRequires: tcp_wrappers-devel
%if %{build_distcache}
BuildRequires: distcache-devel
%endif
Requires: openssl >= 0.9.5a
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}
%description
The stunnel program is designed to work as SSL encryption wrapper between
remote clients and local (inetd-startable) or remote servers. The concept is
that having non-SSL aware daemons running on your system you can easily set
them up to communicate with clients over secure SSL channels.
stunnel can be used to add SSL functionality to commonly used inetd daemons
like POP-2, POP-3, and IMAP servers, to standalone daemons like NNTP, SMTP
and HTTP, and in tunneling PPP over network sockets without changes to the
source code.
You can also rebuild %{name} with distcache support. The following are
valid build options.
(ie. use with rpm --rebuild):
--with distcache Build with distcache support (disabled per default)
More information about distcache here: http://distcache.sourceforge.net/
%package -n %{libname}
Summary: Shared library for stunnel
Group: System/Libraries
%description -n %{libname}
The stunnel program is designed to work as SSL encryption wrapper between
remote clients and local (inetd-startable) or remote servers. The concept is
that having non-SSL aware daemons running on your system you can easily set
them up to communicate with clients over secure SSL channels.
stunnel can be used to add SSL functionality to commonly used inetd daemons
like POP-2, POP-3, and IMAP servers, to standalone daemons like NNTP, SMTP
and HTTP, and in tunneling PPP over network sockets without changes to the
source code.
This package contains the shared library for stunnel.
%package -n %{libname}-devel
Summary: Development files for stunnel
Group: Development/C
Requires: %{libname} = %{version}-%{release}
Provides: lib%{name}-devel
%description -n %{libname}-devel
The stunnel program is designed to work as SSL encryption wrapper between
remote clients and local (inetd-startable) or remote servers. The concept is
that having non-SSL aware daemons running on your system you can easily set
them up to communicate with clients over secure SSL channels.
stunnel can be used to add SSL functionality to commonly used inetd daemons
like POP-2, POP-3, and IMAP servers, to standalone daemons like NNTP, SMTP
and HTTP, and in tunneling PPP over network sockets without changes to the
source code.
This package contains development files for stunnel.
%prep
%setup -q
%patch0 -p1 -b .confdir
%patch1 -p1 -b .authprv
%patch2 -p1 -b .soname
%patch3 -p0 -b .pidfile_location
%if %{build_distcache}
%patch100 -p1 -b .distcache
%endif
%build
export WANT_AUTOCONF_2_5=1
libtoolize --copy --force && aclocal-1.7 && automake-1.7 -a && autoconf
%configure2_5x \
--with-ssl=%{_prefix} \
--enable-static \
--enable-shared \
%if !%{build_distcache}
--without-distcache --disable-distcache \
%endif
--localstatedir=%{_var} \
--with-tcp-wrappers \
--with-ipv6
echo -e "\n\n\n\n\n\n" | make
%install
[ "%{buildroot}" != "/" ] && rm -rf %{buildroot}
mkdir -p %{buildroot}%{pemdir} \
%{buildroot}%{_var}/openssl/certs/trusted \
%{buildroot}%{_var}/run/stunnel
%makeinstall docdir=`pwd`/doc-to-install
# cleanup
rm -f %{buildroot}%{_mandir}/man8/*.pl.8* \
%{buildroot}%{_mandir}/man8/*fr.8* ./doc-to-install/INSTALL.W32
rm -f %{buildroot}%{pemdir}/*
%post
echo "To build a new pem, execute the following OpenSSL command:"
echo " openssl req -new -x509 -days 365 -nodes \ "
echo " -config %{_docdir}/%{name}-%{version}/stunnel.cnf \ "
echo " -out %{pemdir}/stunnel.pem -keyout %{pemdir}/stunnel.pem"
echo ""
%post -n %{libname} -p /sbin/ldconfig
%postun -n %{libname} -p /sbin/ldconfig
%clean
[ "%{buildroot}" != "/" ] && rm -rf %{buildroot}
%files
%defattr(-,root,root,0755)
%doc doc-to-install/* tools/stunnel.cnf
%{_sbindir}/stunnel
%{_sbindir}/stunnel3
%{_mandir}/man8/stunnel.8.*
%dir %{pemdir}
%dir %{_var}/run/stunnel
%dir %{_var}/openssl/certs/trusted
%files -n %{libname}
%defattr(-,root,root)
%{_libdir}/*.so.*
%files -n %{libname}-devel
%defattr(-,root,root)
%{_libdir}/*.so
%{_libdir}/*.a
%{_libdir}/*.la
%changelog
* Mon Jan 3 2005 Oden Eriksson <oeriksson@mandrakesoft.com> 4.07-1mdk
- 4.07
* Fri Dec 31 2004 Oden Eriksson <oeriksson@mandrakesoft.com> 4.06-3mdk
- revert latest "lib64 fixes"
* Mon Dec 27 2004 Oden Eriksson <oeriksson@mandrakesoft.com> 4.06-2mdk
- added P4 as an --with distcache rpmbuild switch (disabled per default)
- make it rpmbuildupdate aware
- misc spec file fixes
* Mon Dec 27 2004 Oden Eriksson <oeriksson@mandrakesoft.com> 4.06-1mdk
- 4.06
- rediffed P0 & P1
- fix soname (P2) and do libifictions
- automake1.7
- fix default pidfile location (P3)
- enable ipv6
- misc spec file fixes
* Mon Aug 09 2004 Giuseppe Ghibò <ghibo@mandrakesoft.com> 4.05-1mdk
- Release 4.05.
- Use automake1.4.
* Fri Aug 22 2003 Giuseppe Ghibò <ghibo@mandrakesoft.com> 4.04-4mdk
- Fix bug #4836.
* Fri Jul 25 2003 Per Øyvind Karlsen <peroyvind@sintrax.net> 4.04-3mdk
- rebuild
* Tue Jul 01 2003 Stefan van der Eijk <stefan@eijk.nu> 4.04-2mdk
- BuildRequires
- quiet setup
* Fri Feb 14 2003 Giuseppe Ghibò <ghibo@mandrakesoft.com> 4.04-1mdk
- Updated to release 4.04.
- Merged RedHat authpriv Patch.
* Mon Aug 19 2002 Giuseppe Ghibò <ghibo@mandrakesoft.com> 3.22-2mdk
- Fixed PEM path to %{pemdir}.
* Tue Dec 25 2001 Geoffrey Lee <snailtalk@mandrakesoft.com> 3.22-1mdk
- Use pristine source aka tgz.
- Include the asc file with it.
* Thu Nov 22 2001 Thierry Vignaud <tvignaud@mandrakesoft.com> 3.21c-1mdk
- new release
* Fri Nov 02 2001 Geoffrey Lee <snailtalk@mandrakesoft.com> 3.21a-1mdk
- The all-new and shiny 3.21a.
* Sat Aug 18 2001 Geoffrey Lee <snailtalk@mandrakesoft.com> 3.20-1mdk
- New and shiny source.
* Tue Jul 17 2001 Geoffrey Lee <snailtalk@mandrakesoft.com> 2.15-1mdk
- Bump up a new and shiny source.
- Explicitly specify compile with tcpwrappers in configure.
* Thu Mar 08 2001 Giuseppe Ghibò <ghibo@mandrakesoft.com> 3.14-2mdk
- added openssl-devel and tcp_wrappers-devel in BuildRequires.
- use --localstatedir=/var/run.
* Mon Feb 26 2001 Geoffrey Lee <snailtalk@mandrakesoft.com> 3.14-1mdk
- Bump up to 3.14.
* Tue Jan 30 2001 Lenny Cartier <lenny@mandrakesoft.com> 3.13-1mdk
- updated to 3.13
* Sat Dec 23 2000 Geoffrey Lee <snailtalk@mandrakesoft.com> 3.11-1mdk
- new and shiny source code.
- fix build as non-root.
- s/%%buildroot/$RPM_BUILD_ROOT/
- added some rm -rf $RPM_BUILD_ROOT along the way to make build a lot more sane.
- fix non-interactive build.
* Tue Dec 19 2000 Vincent Danen <vdanen@linux-mandrake.com> 3.9-1mdk
- macros
- fix url
- make default pem dir to be /etc/stunnel
- 3.9 (big security fix!!)
* Thu Apr 27 2000 Vincent Danen <vdanen@linux-mandrake.com> 3.8-1mdk
- build for Mandrake
* Wed Jul 14 1999 Dirk O. Siebnich <dok@vossnet.de>
- updated for 3.5.
* Mon Jun 07 1999 Dirk O. Siebnich <dok@vossnet.de>
- adapted from sslwrap RPM spec file
