%define version 2.0.1 %define auth_ldap_version 1.0.1 %define plugindir %_libdir/%name %define buildldap 1 # There is an issue with gcc, so disable for amd64 # waiting reply/fix %ifarch amd64 %define buildldap 0 %endif Summary: A Secure UDP Tunneling Daemon Name: openvpn Version: %version Release: 2.2.20060mdk URL: http://openvpn.net/ Source0: http://openvpn.net/release/%{name}-%{version}.tar.bz2 Source1: http://www.opendarwin.org/~landonf/software/openvpn-auth-ldap/auth-ldap-%{auth_ldap_version}.tar.gz Patch0: %{name}-own-user.patch.bz2 Patch1: openvpn-adding-routes.patch.bz2 Patch2: openvpn-auth-ldap-1.0.patch.bz2 Patch3: openvpn-2.0.1-foreign_option.patch Patch4: openvpn-2.0.1-CVE-2005-3409.patch Patch5: openvpn-2.0.1-CVE-2006-1629.patch License: GPL Group: Networking/Other BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-buildroot BuildRequires: liblzo-devel openssl-devel BuildRequires: pam-devel BuildRequires: automake1.8 %if %buildldap BuildRequires: gcc-objc BuildRequires: openldap-devel %endif Requires(pre): rpm-helper Requires(preun): rpm-helper Requires(post): rpm-helper Requires(postun): rpm-helper %description OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP port. %if buildldap This package contains the auth-ldap plugin %endif %prep %setup -q %if %buildldap %setup -q -a 1 %endif %patch0 -p0 %patch1 -p1 %if %buildldap %patch2 -p0 %endif %patch3 -p0 -b .cve-2005-3393 %patch4 -p0 -b .cve-2005-3409 %patch5 -p1 -b .cve-2006-1629 %build #./pre-touch aclocal-1.8 automake-1.8 autoconf CFLAGS="%optflags -fPIC" CCFLAGS="%optflags -fPIC" %configure \ --enable-pthread \ --enable-plugin \ --with-lzo-headers=%_includedir/lzo %make # plugins %make -C plugin/down-root %make -C plugin/auth-pam %if %buildldap %make -C auth-ldap-%auth_ldap_version OPENVPN=.. LDAP=/usr %endif %install %makeinstall_std #install -m755 %{name}.8 -D %{buildroot}%{_mandir}/man8/%{name}.8 #install -m755 %{name} -D %{buildroot}%{_sbindir}/%{name} install -m755 sample-scripts/%{name}.init -D %{buildroot}/%{_initrddir}/%{name} install -d %{buildroot}%{_sysconfdir}/%{name} mkdir -p %{buildroot}%{_datadir}/%{name} cp -pr easy-rsa sample-{config-file,key,script}s %{buildroot}%{_datadir}/%{name} install -d $RPM_BUILD_ROOT%{_localstatedir}/%{name} #plugins mkdir -p %buildroot%plugindir for pi in down-root auth-pam; do %__cp -f plugin/$pi/README plugin/README.$pi %__install -c -m 755 plugin/$pi/openvpn-$pi.so %{buildroot}%plugindir/openvpn-$pi.so done %if %buildldap %__install -c -m 755 auth-ldap-%auth_ldap_version/openvpn-auth-ldap.so %{buildroot}%plugindir/openvpn-auth-ldap.so %__cp -f auth-ldap-%auth_ldap_version/README auth-ldap-%auth_ldap_version/README-openvpn-auth-ldap %endif %clean [ %{buildroot} != "/" ] && rm -rf %{buildroot} %pre %_pre_useradd %{name} %{_localstatedir}/%{name} /bin/true %post %_post_service %{name} %preun %_preun_service %{name} %postun %_postun_userdel %{name} %files %defattr(-,root,root) %doc AUTHORS COPYING INSTALL PORTS README %doc plugin/README.* %if %buildldap %doc auth-ldap-%auth_ldap_version/README-openvpn-auth-ldap %endif %{_mandir}/man8/%{name}.8* %{_sbindir}/%{name} %{_datadir}/%{name} %dir %{_sysconfdir}/%{name} %config(noreplace) %{_initrddir}/%{name} %dir %{_localstatedir}/%{name} %dir %plugindir %plugindir/*.so %changelog * Mon Apr 10 2006 <vdanen@mandriva.com> 2.0.1-2.2.20060mdk - P5: security fix for CVE-2006-1629 * Fri Dec 09 2005 <vdanen@mandriva.com> 2.0.1-2.1.20060mdk - P3: security fix for CVE-2005-3393 - P4: security fix for CVE-2005-3409 * Tue Aug 30 2005 Oden Eriksson <oeriksson@mandriva.com> 2.0.1-2mdk - rebuilt against new openldap-2.3.6 libs * Wed Aug 24 2005 Olivier Thauvin <nanardon@mandriva.org> 2.0.1-1mdk - 2.0.1 - ldap patch version 1.0.1 - remove patch3, fix upstream * Sat Jul 09 2005 Olivier Thauvin <nanardon@mandriva.org> 2.0-4mdk - rebuild for lzo (#16777) - add patch3: fix -lzo2 calls * Wed Jun 22 2005 Olivier Thauvin <nanardon@mandriva.org> 2.0-3mdk - rebuild for lzo (Thanks Michar) * Wed May 11 2005 Olivier Thauvin <nanardon@mandriva.org> 2.0-2mdk - Request by Luis Daniel Lucio Quiroz <dlucio@okay.com.mx> - add native plugin - add openvpn-auth-ldap plugin (except for amd64) * Tue Apr 19 2005 Olivier Thauvin <nanardon@mandriva.org> 2.0-1mdk - 2.0 final * Thu Apr 07 2005 Olivier Thauvin <thauvin@aerov.jussieu.fr> 2.0-0.rc20.1mdk - 2.0-rc20 * Thu Jan 13 2005 Per Ãyvind Karlsen <peroyvind@linux-mandrake.com> 1.6.0-2mdk - rebuild - cosmetics * Mon May 31 2004 Per Øyvind Karlsen <peroyvind@linux-mandrake.com> 1.6.0-1mdk - 1.6.0 - fix buildrequires (lib64..) - drop GPL license file, there's no reason for us to ship such common license files in packages, as we ship them with the common-licenses package! * Thu Feb 26 2004 Lenny Cartier <lenny@mandrakesoft.com> 1.5.0-2mdk - used patch from Andre Nathan <andre@digirati.com.br> to ease adding routes * Tue Nov 26 2003 Lenny Cartier <lenny@mandrakesoft.com> 1.5.0-1mdk - 1.5.0 * Sun Jun 27 2003 Lenny Cartier <lenny@mandrakesoft.com> 1.4.2-1mdk - 1.4.2 * Wed Jun 11 2003 Per Ãyvind Karlsen <peroyvind@sintrax.net> 1.4.1-2mdk - macroize - drop redundant requires on liblzo1, rpm will figure out this itself - add %%{_sysconfdir}/%{name} to files list - do parallell build - run under own user (Patch0) * Mon Jun 02 2003 Florin <florin@mandrakesoft.com> 1.4.1-1mdk - 1.4.1 * Fri Feb 07 2003 Olivier Thauvin <thauvin@aerov.jussieu.fr> 1.3.2-1mdk - 1.3.2 * Thu Nov 28 2002 Olivier Thauvin <thauvin@aerov.jussieu.fr> 1.3.1-2mdk - BuildRequires liblzo-devel libopenssl-devel - add missing initscript * Sun Sep 22 2002 Han Boetes <han@linux-mandrake.com> 1.3.1-1mdk - Bump version * Mon Jun 17 2002 Florin <florin@mandrakesoft.com> 1.2.1-1mdk - 1.2.1 - first mdk release * Wed May 22 2002 James Yonan <jim@yonan.net> 1.2.0-1 -- Added mknod for Linux 2.4 * Wed May 15 2002 Doug Keller <dsk@voidstar.dyndns.org> 1.1.1.16-2 - Added init scripts - Added conf file support * Mon May 13 2002 bishop clark (LC957) <bishop@platypus.bc.ca> 1.1.1.14-1 - Added new directories for config examples and such * Sun May 12 2002 bishop clark (LC957) <bishop@platypus.bc.ca> 1.1.1.13-1 - Updated buildroot directive and cleanup command - added easy-rsa utilities * Mon Mar 25 2002 bishop clark (LC957) <bishop@platypus.bc.ca> 1.0-1 - Initial build.