1a8bf1bd53
Verify GPG signature: Perform build-time offline GPG verification.
Please verify that included keyring matches your needs.
For manipulation with the offline keyring, please use gpg-offline tool from openSUSE:Factory, devel-tools-building or Base:System.
See the man page and/or /usr/share/doc/packages/gpg-offline/PACKAGING.HOWTO.
If you need to build your package for older products and don't want to mess spec file with ifs, please follow PACKAGING.HOWTO:
you can link or aggregate gpg-offline from
devel:tools:building or use following trick with "osc meta prjconf":
--- Cut here ----
%if 0%{?suse_version} <= 1220
Substitute: gpg-offline
%endif
Macros:
%gpg_verify(dnf) \
%if 0%{?suse_version} > 1220\
echo "WARNING: Using %%gpg_verify macro from prjconf, not from gpg-offline package."\
gpg-offline --directory="%{-d:%{-d*}}%{!-d:%{_sourcedir}}" --package="%{-n:%{-n*}}%{!-n:%{name}}""%{-f: %{-f*}}" --verify %{**}\
%else\
echo "WARNING: Dummy prjconf macro. gpg-offline is not available, skipping %{**} GPG signature verification!"\
%endif\
%nil
-----------------
OBS-URL: https://build.opensuse.org/request/show/143917
OBS-URL: https://build.opensuse.org/package/show/Linux-PAM/pam_mount?expand=0&rev=43
179 lines
5.8 KiB
RPMSpec
179 lines
5.8 KiB
RPMSpec
#
|
|
# spec file for package pam_mount
|
|
#
|
|
# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
|
|
#
|
|
# All modifications and additions to the file contributed by third parties
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
# upon. The license for this file, and modifications and additions to the
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
# license for the pristine package is not an Open Source License, in which
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
# published by the Open Source Initiative.
|
|
|
|
# Please submit bugfixes or comments via http://bugs.opensuse.org/
|
|
#
|
|
|
|
|
|
Name: pam_mount
|
|
%define lname libcryptmount0
|
|
Summary: A PAM Module that can Mount Volumes for a User Session
|
|
License: LGPL-2.1+ and GPL-2.0+
|
|
Group: System/Libraries
|
|
Version: 2.13
|
|
Release: 0
|
|
Url: http://pam-mount.sf.net/
|
|
|
|
Source: %name-%version.tar.xz
|
|
Source9: %name-%version.tar.xz.asc
|
|
Source1: convert_pam_mount_conf.pl
|
|
Source2: convert_keyhash.pl
|
|
Source3: mount.crypt
|
|
Source5: baselibs.conf
|
|
Source6: %{name}.keyring
|
|
Patch1: pam_mount-0.47-enable-logout-kill.dif
|
|
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
|
BuildRequires: gpg-offline
|
|
BuildRequires: libtool
|
|
BuildRequires: pam-devel >= 0.99
|
|
BuildRequires: perl-XML-Parser
|
|
BuildRequires: perl-XML-Writer
|
|
# LOOP64 support:
|
|
BuildRequires: fdupes
|
|
BuildRequires: linux-glibc-devel >= 2.6
|
|
BuildRequires: man
|
|
BuildRequires: pkgconfig >= 0.19
|
|
BuildRequires: xz
|
|
BuildRequires: pkgconfig(libHX) >= 3.12.1
|
|
BuildRequires: pkgconfig(libcrypto) >= 0.9.7
|
|
BuildRequires: pkgconfig(libcryptsetup) >= 1.1.2
|
|
BuildRequires: pkgconfig(libxml-2.0) >= 2.6
|
|
BuildRequires: pkgconfig(mount) >= 2.20
|
|
|
|
Requires(post): coreutils, perl-XML-Writer, perl-XML-Parser
|
|
# -EBUSY bugs fixed (libdevmapper):
|
|
Requires: device-mapper >= 1.02.48
|
|
# for mount(8) and mount.cifs:
|
|
Requires: util-linux
|
|
Recommends: cifs-mount
|
|
# for fd0ssh and ofl:
|
|
Suggests: hxtools >= 20090116
|
|
|
|
%description
|
|
This module is aimed at environments with central file servers that a
|
|
user wishes to mount on login and unmount on logout, such as
|
|
(semi-)diskless stations where many users can logon.
|
|
|
|
The module also supports mounting local filesystems of any kind the
|
|
normal mount utility supports, with extra code to make sure certain
|
|
volumes are set up properly because often they need more than just a
|
|
mount call, such as encrypted volumes. This includes SMB/CIFS, FUSE,
|
|
dm-crypt and LUKS.
|
|
|
|
%package -n %lname
|
|
Summary: Library to mount crypto images and handle key files
|
|
Group: System/Libraries
|
|
|
|
%description -n %lname
|
|
libcryptmount takes care of the many steps involved in making a
|
|
crypto image (file) available as a mountable block device, including
|
|
supplemental key file decryption, loop device setup and crypto device
|
|
setup. It supports pam_mount style plain EHD2/OpenSSL images and LUKS
|
|
and transparent use of the OS's crypto layer.
|
|
|
|
%package -n libcryptmount-devel
|
|
Summary: Development files for libcryptmount
|
|
Group: Development/Libraries/C and C++
|
|
Requires: %lname = %version
|
|
|
|
%description -n libcryptmount-devel
|
|
libcryptmount takes care of the many steps involved in making a
|
|
crypto image (file) available as a mountable block device, including
|
|
supplemental key file decryption, loop device setup and crypto device
|
|
setup. It supports pam_mount style plain EHD2/OpenSSL images and LUKS
|
|
and transparent use of the OS's crypto layer.
|
|
|
|
%prep
|
|
%gpg_verify %{S:9}
|
|
%setup -q
|
|
%patch -P 1 -p1
|
|
|
|
%build
|
|
%configure --disable-static --with-slibdir=/%_lib \
|
|
--includedir=%_includedir/libcryptmount-%version \
|
|
%{?_with_selinux:--with-selinux}
|
|
make %{?_smp_mflags}
|
|
|
|
%install
|
|
%make_install
|
|
# Remove static and libtool version
|
|
rm -f "%buildroot/%_lib/security"/*.{a,la} "%buildroot/%_libdir"/*.la
|
|
#install the docs
|
|
mkdir -p %buildroot/%_docdir/%name/examples
|
|
cp doc/bugs.txt doc/changelog.txt LICENSE* doc/faq.txt doc/todo.txt doc/options.txt doc/pam_mount.txt %buildroot/%_docdir/%name/
|
|
install -m 755 %SOURCE1 %buildroot/%_docdir/%name/examples/
|
|
install -m 755 %SOURCE2 %buildroot/%_docdir/%name/examples/
|
|
#
|
|
# move /sbin/mount.crypt to %_sbindir/mount.crypt and put a wrapper script to /sbin/mount.crypt
|
|
#
|
|
mkdir -p %buildroot%_sbindir/
|
|
mv %buildroot/sbin/mount.crypt %buildroot%_sbindir/
|
|
ln -s %_sbindir/mount.crypt %buildroot%_sbindir/umount.crypt
|
|
install -m755 %SOURCE3 %buildroot/sbin/
|
|
%fdupes %buildroot
|
|
|
|
%post
|
|
if [ -e etc/security/pam_mount.conf ]
|
|
then
|
|
cp etc/security/pam_mount.conf.xml %_docdir/%name/examples/
|
|
%_docdir/%name/examples/convert_pam_mount_conf.pl \
|
|
-i etc/security/pam_mount.conf -o etc/security/pam_mount.conf.xml
|
|
fi
|
|
if [ "$1" -gt 1 ]
|
|
then
|
|
for v in `rpm -q --queryformat "%%{VERSION} " %name`; do
|
|
if echo "$v" | grep -E "^0\." - ; then
|
|
%_docdir/%name/examples/convert_keyhash.pl \
|
|
-i etc/security/pam_mount.conf.xml
|
|
break;
|
|
fi
|
|
done
|
|
fi
|
|
|
|
%post -n %lname -p /sbin/ldconfig
|
|
|
|
%postun -n %lname -p /sbin/ldconfig
|
|
|
|
%files
|
|
%defattr(-, root, root)
|
|
%docdir %_docdir/%name
|
|
%_docdir/%name
|
|
/%_lib/security/pam_mount*.so
|
|
/sbin/mount.crypt*
|
|
/sbin/umount.crypt*
|
|
%_sbindir/mount.crypt
|
|
%_sbindir/umount.crypt
|
|
%_sbindir/pmvarrun
|
|
%_sbindir/pmt-ehd
|
|
%config(noreplace) %_sysconfdir/security/pam_mount.conf.xml
|
|
%doc %_mandir/man5/pam_mount.conf.5.gz
|
|
%doc %_mandir/man8/*.8.gz
|
|
%if 0%{?_with_selinux:1}
|
|
%policy %_sysconfdir/selinux/strict/src/policy/macros/%{name}_macros.te
|
|
%policy %_sysconfdir/selinux/strict/src/policy/file_contexts/misc/%name.fc
|
|
%endif
|
|
|
|
%files -n %lname
|
|
%defattr(-,root,root)
|
|
%_libdir/libcryptmount.so.0*
|
|
|
|
%files -n libcryptmount-devel
|
|
%defattr(-,root,root)
|
|
%_includedir/libcryptmount-%version
|
|
%_libdir/pkgconfig/*.pc
|
|
%_libdir/libcryptmount.so
|
|
|
|
%changelog
|