pam_mount/pam_mount.spec

180 lines
5.9 KiB
RPMSpec

#
# spec file for package pam_mount
#
# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
Name: pam_mount
%define lname libcryptmount0
Summary: A PAM Module that can Mount Volumes for a User Session
License: LGPL-2.1-or-later AND GPL-2.0-or-later
Group: System/Libraries
Version: 2.16
Release: 0
Url: http://pam-mount.sf.net/
Source: http://downloads.sf.net/pam-mount/%name-%version.tar.xz
Source9: http://downloads.sf.net/pam-mount/%name-%version.tar.asc
Source1: convert_pam_mount_conf.pl
Source2: convert_keyhash.pl
Source3: mount.crypt
Source5: baselibs.conf
Source6: %{name}.keyring
Patch1: pam_mount-0.47-enable-logout-kill.dif
Patch2: pam_mount-2.16-fix-luks2-mount.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: fdupes
BuildRequires: libtool
# LOOP64 support:
BuildRequires: linux-glibc-devel >= 2.6
BuildRequires: man
BuildRequires: pam-devel >= 0.99
BuildRequires: perl-XML-Parser
BuildRequires: perl-XML-Writer
BuildRequires: pkgconfig >= 0.19
BuildRequires: xz
BuildRequires: pkgconfig(libHX) >= 3.12.1
BuildRequires: pkgconfig(libcrypto) >= 0.9.7
BuildRequires: pkgconfig(libcryptsetup) >= 1.1.2
BuildRequires: pkgconfig(libpcre) >= 7
BuildRequires: pkgconfig(libxml-2.0) >= 2.6
BuildRequires: pkgconfig(mount) >= 2.20
Requires(post): coreutils
Requires(post): perl-XML-Writer
Requires(post): perl-XML-Parser
# -EBUSY bugs fixed (libdevmapper):
Requires: device-mapper >= 1.02.48
Requires: fd0ssh
Requires: ofl
# for mount(8) and mount.cifs:
Requires: util-linux >= 2.20
Recommends: cifs-mount
%description
This module is aimed at environments with central file servers that a
user wishes to mount on login and unmount on logout, such as
(semi-)diskless stations where many users can logon.
The module also supports mounting local filesystems of any kind the
normal mount utility supports, with extra code to make sure certain
volumes are set up properly because often they need more than just a
mount call, such as encrypted volumes. This includes SMB/CIFS, FUSE,
dm-crypt and LUKS.
%package -n %lname
Summary: Library to mount crypto images and handle key files
Group: System/Libraries
%description -n %lname
libcryptmount takes care of the many steps involved in making a
crypto image (file) available as a mountable block device, including
supplemental key file decryption, loop device setup and crypto device
setup. It supports pam_mount style plain EHD2/OpenSSL images and LUKS
and transparent use of the OS's crypto layer.
%package -n libcryptmount-devel
Summary: Development files for libcryptmount
Group: Development/Libraries/C and C++
Requires: %lname = %version
%description -n libcryptmount-devel
libcryptmount takes care of the many steps involved in making a
crypto image (file) available as a mountable block device, including
supplemental key file decryption, loop device setup and crypto device
setup. It supports pam_mount style plain EHD2/OpenSSL images and LUKS
and transparent use of the OS's crypto layer.
%prep
%setup -q
%patch -P 1 -p1
%patch -P 2 -p1
%build
%configure --disable-static --with-slibdir="/%_lib" \
--includedir="%_includedir/libcryptmount" \
%{?_with_selinux:--with-selinux}
make %{?_smp_mflags}
%install
make install DESTDIR="%buildroot";
# Remove static and libtool version
rm -f "%buildroot/%_lib/security"/*.{a,la} "%buildroot/%_libdir"/*.la
#install the docs
mkdir -p %buildroot/%_docdir/%name/examples
cp doc/bugs.txt doc/news.txt LICENSE* doc/faq.txt doc/todo.txt doc/options.txt doc/pam_mount.txt %buildroot/%_docdir/%name/
install -m 755 %SOURCE1 %buildroot/%_docdir/%name/examples/
install -m 755 %SOURCE2 %buildroot/%_docdir/%name/examples/
#
# move /sbin/mount.crypt to %_sbindir/mount.crypt and put a wrapper script to /sbin/mount.crypt
#
mkdir -p %buildroot%_sbindir/
mv %buildroot/sbin/mount.crypt %buildroot%_sbindir/
ln -s %_sbindir/mount.crypt %buildroot%_sbindir/umount.crypt
install -m755 %SOURCE3 %buildroot/sbin/
%fdupes %buildroot/%_prefix
%post
if [ -e etc/security/pam_mount.conf ]
then
cp etc/security/pam_mount.conf.xml %_docdir/%name/examples/
%_docdir/%name/examples/convert_pam_mount_conf.pl \
-i etc/security/pam_mount.conf -o etc/security/pam_mount.conf.xml
fi
if [ "$1" -gt 1 ]
then
for v in `rpm -q --queryformat "%%{VERSION} " %name`; do
if echo "$v" | grep -E "^0\." - ; then
%_docdir/%name/examples/convert_keyhash.pl \
-i etc/security/pam_mount.conf.xml
break;
fi
done
fi
%post -n %lname -p /sbin/ldconfig
%postun -n %lname -p /sbin/ldconfig
%files
%defattr(-, root, root)
%_docdir/%name
/%_lib/security/pam_mount*.so
/sbin/mount.crypt*
/sbin/umount.crypt*
%_sbindir/mount.crypt
%_sbindir/umount.crypt
%_sbindir/pmvarrun
%_sbindir/pmt-ehd
%config(noreplace) %_sysconfdir/security/pam_mount.conf.xml
%doc %_mandir/man5/pam_mount.conf.5.gz
%doc %_mandir/man8/*.8.gz
%if 0%{?_with_selinux:1}
%policy %_sysconfdir/selinux/strict/src/policy/macros/%{name}_macros.te
%policy %_sysconfdir/selinux/strict/src/policy/file_contexts/misc/%name.fc
%endif
%files -n %lname
%defattr(-,root,root)
%_libdir/libcryptmount.so.0*
%files -n libcryptmount-devel
%defattr(-,root,root)
%_includedir/libcryptmount/
%_libdir/pkgconfig/*.pc
%_libdir/libcryptmount.so
%changelog