2021-05-01 20:28:48 +02:00
|
|
|
#
|
|
|
|
|
# spec file for package pure-ftpd
|
|
|
|
|
#
|
2023-03-31 17:46:39 +02:00
|
|
|
# Copyright (c) 2023 SUSE LLC
|
2021-05-01 20:28:48 +02:00
|
|
|
#
|
|
|
|
|
# All modifications and additions to the file contributed by third parties
|
|
|
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
|
|
|
# upon. The license for this file, and modifications and additions to the
|
|
|
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
|
|
|
# license for the pristine package is not an Open Source License, in which
|
|
|
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
|
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
|
|
|
# published by the Open Source Initiative.
|
|
|
|
|
|
|
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Name: pure-ftpd
|
2022-08-09 11:27:07 +02:00
|
|
|
Version: 1.0.51
|
2021-05-01 20:28:48 +02:00
|
|
|
Release: 0
|
|
|
|
|
Summary: A Lightweight, Fast, and Secure FTP Server
|
|
|
|
|
License: BSD-3-Clause
|
|
|
|
|
Group: Productivity/Networking/Ftp/Servers
|
|
|
|
|
URL: https://www.pureftpd.org
|
|
|
|
|
Source0: https://download.pureftpd.org/pub/%{name}/releases/%{name}-%{version}.tar.bz2
|
|
|
|
|
Source1: https://download.pureftpd.org/pub/%{name}/releases/%{name}-%{version}.tar.bz2.minisig
|
|
|
|
|
Source2: %{name}.keyring
|
|
|
|
|
Source3: %{name}.init
|
|
|
|
|
Source4: %{name}.pamd
|
|
|
|
|
Source5: %{name}.xinetd
|
2023-10-04 11:41:41 +02:00
|
|
|
Source6: %{name}.ftpusers
|
2021-05-01 20:28:48 +02:00
|
|
|
Source8: %{name}.service
|
|
|
|
|
# PATCH-FEATURE-OPENSUSE %{name}-1.0.20_config.patch -- Custom service configs.
|
|
|
|
|
Patch0: %{name}-1.0.20_config.patch
|
|
|
|
|
# PATCH-FEATURE-OPENSUSE %{name}-1.0.20_doc.patch -- Adjust command paths on documentation.
|
|
|
|
|
Patch1: %{name}-1.0.20_doc.patch
|
|
|
|
|
# PATCH-FEATURE-OPENSUSE %{name}-1.0.20_virtualhosts.patch -- Custom VHOST_PATH on openSUSE.
|
|
|
|
|
Patch2: %{name}-1.0.20_virtualhosts.patch
|
|
|
|
|
Patch5: %{name}-1.0.49_ftpwho_path.patch
|
Accepting request 947558 from home:1Antoine1:branches:network
- Update to version 1.0.50:
* Support for MD5, SHA1 and MySQL PASSWORD() function were removed for
password hashing. You should now use scrypt, argon2 or the system crypt(3)
function.
* Soft fail if a USER command is received without TLS and the server is
configured to enforce TLS. Previously, the session was immediately closed,
but that was too brutal for some clients.
* Allow connections from the class E network range -- apparently
required in some cases when using Linux containers.
* Large file listings used to require way more stack allocations than
necessary, possibly reaching hard-coded limits and causing a forced
session close. This has been fixed. (boo#1160111, CVE-2019-20176)
* The SPSV command has been removed.
* Under some circunstances, the server would not start when configured
with directory aliases. This has been fixed.
* PostgreSQL: hard-coded global configuration strings were not escaped.
This has been fixed.
* A warning is now printed when a transfer happens in ASCII mode, as
this is rarely intentional.
* Compilation with --without-ascii is now possible again.
* Configuration options for features that have been disabled at
compile-time are not parsed any more.
* When virtual quotas were configured, files were removed after an
upload if the size quota was exceeded, but not during the upload. This
has been fixed. (boo#1190205, CVE-2021-40524)
* A configuration file can now include other files with the `Include`
directive.
* Fix an out-of-bound read (boo#1164805, CVE-2020-9365).
* Fix a potential uninitialized pointer vulnerability (boo#1165134,
CVE-2020-9274).
OBS-URL: https://build.opensuse.org/request/show/947558
OBS-URL: https://build.opensuse.org/package/show/network/pure-ftpd?expand=0&rev=85
2022-01-24 09:45:36 +01:00
|
|
|
# PATCH-FIX-UPSTREAM %{name}-1.0.50-default_tcp_sedrcv_buffer_size.patch -- bnc#407363
|
|
|
|
|
Patch7: %{name}-1.0.50-default_tcp_sedrcv_buffer_size.patch
|
2021-05-01 20:28:48 +02:00
|
|
|
# PATCH-FIX-OPENSUSE: bnc#789833
|
|
|
|
|
# won't be upstreamed, can be dropped when systemd will be only one init system and kernel get AUDIT_LOGINUID_IMMUTABLE
|
|
|
|
|
Patch8: pure-ftpd-1.0.36-cap-audit-control.patch
|
|
|
|
|
Patch9: pure-ftpd-apparmor.patch
|
|
|
|
|
Patch10: pure-ftpd-malloc-limit.patch
|
|
|
|
|
BuildRequires: libcap-devel
|
Accepting request 947558 from home:1Antoine1:branches:network
- Update to version 1.0.50:
* Support for MD5, SHA1 and MySQL PASSWORD() function were removed for
password hashing. You should now use scrypt, argon2 or the system crypt(3)
function.
* Soft fail if a USER command is received without TLS and the server is
configured to enforce TLS. Previously, the session was immediately closed,
but that was too brutal for some clients.
* Allow connections from the class E network range -- apparently
required in some cases when using Linux containers.
* Large file listings used to require way more stack allocations than
necessary, possibly reaching hard-coded limits and causing a forced
session close. This has been fixed. (boo#1160111, CVE-2019-20176)
* The SPSV command has been removed.
* Under some circunstances, the server would not start when configured
with directory aliases. This has been fixed.
* PostgreSQL: hard-coded global configuration strings were not escaped.
This has been fixed.
* A warning is now printed when a transfer happens in ASCII mode, as
this is rarely intentional.
* Compilation with --without-ascii is now possible again.
* Configuration options for features that have been disabled at
compile-time are not parsed any more.
* When virtual quotas were configured, files were removed after an
upload if the size quota was exceeded, but not during the upload. This
has been fixed. (boo#1190205, CVE-2021-40524)
* A configuration file can now include other files with the `Include`
directive.
* Fix an out-of-bound read (boo#1164805, CVE-2020-9365).
* Fix a potential uninitialized pointer vulnerability (boo#1165134,
CVE-2020-9274).
OBS-URL: https://build.opensuse.org/request/show/947558
OBS-URL: https://build.opensuse.org/package/show/network/pure-ftpd?expand=0&rev=85
2022-01-24 09:45:36 +01:00
|
|
|
BuildRequires: libsodium-devel
|
2021-05-01 20:28:48 +02:00
|
|
|
BuildRequires: mysql-devel
|
|
|
|
|
BuildRequires: openldap2-devel
|
|
|
|
|
BuildRequires: pam-devel
|
|
|
|
|
BuildRequires: postgresql-devel
|
|
|
|
|
Requires(pre): coreutils
|
|
|
|
|
Provides: ftp-server
|
|
|
|
|
Provides: pureftpd = %{version}-%{release}
|
|
|
|
|
%if 0%{?suse_version} > 1500 || 0%{?sle_version} >= 150200
|
|
|
|
|
BuildRequires: postgresql-server-devel
|
|
|
|
|
%endif
|
|
|
|
|
BuildRequires: pkgconfig(systemd)
|
|
|
|
|
Requires(pre): user(ftp)
|
|
|
|
|
|
|
|
|
|
%description
|
|
|
|
|
Pure-FTPd is a fast, production-quality, and standard-conforming FTP
|
|
|
|
|
server, based-on Troll-FTPd. Unlike other popular FTP servers, it has
|
|
|
|
|
no known security flaws, is trivial to set up, and is especially
|
|
|
|
|
designed for modern Linux kernels (setfsuid and sendfile capabilities)
|
|
|
|
|
. Features include: PAM support, IPv6, chroot()ed home directories,
|
|
|
|
|
virtual domains, built-in LS, anti-warez system, bandwidth throttling,
|
|
|
|
|
FXP, bounded ports for passive downloads, upload and download ratios,
|
|
|
|
|
Apache log files, and more.
|
|
|
|
|
|
|
|
|
|
%prep
|
|
|
|
|
%setup -q
|
2024-03-01 14:20:33 +01:00
|
|
|
%patch -P 0
|
|
|
|
|
%patch -P 1
|
|
|
|
|
%patch -P 2
|
|
|
|
|
%patch -P 5
|
|
|
|
|
%patch -P 7
|
|
|
|
|
%patch -P 8 -p1
|
|
|
|
|
%patch -P 9 -p2
|
|
|
|
|
%patch -P 10 -p1
|
2021-05-01 20:28:48 +02:00
|
|
|
|
|
|
|
|
%build
|
2021-05-01 20:29:09 +02:00
|
|
|
CFLAGS="%{optflags} -I%{_includedir}/mysql"
|
|
|
|
|
%configure \
|
|
|
|
|
--docdir=%{_docdir}/%{name} \
|
2021-05-01 20:28:48 +02:00
|
|
|
--sysconfdir=%{_sysconfdir}/%{name} \
|
|
|
|
|
--with-ldap \
|
|
|
|
|
--with-paranoidmsg \
|
|
|
|
|
--with-altlog \
|
|
|
|
|
--with-virtualhosts \
|
|
|
|
|
--with-ftpwho \
|
|
|
|
|
--with-mysql \
|
|
|
|
|
--with-nonalnum \
|
|
|
|
|
--with-pgsql \
|
|
|
|
|
--with-cookie \
|
|
|
|
|
--with-throttling \
|
|
|
|
|
--with-ratios \
|
|
|
|
|
--with-uploadscript \
|
|
|
|
|
--with-diraliases \
|
|
|
|
|
--with-pam \
|
|
|
|
|
--with-puredb \
|
|
|
|
|
--with-sysquotas \
|
|
|
|
|
--with-quotas \
|
|
|
|
|
--with-inetd \
|
|
|
|
|
--with-tls \
|
|
|
|
|
--with-boring \
|
|
|
|
|
--with-peruserlimits \
|
|
|
|
|
--with-virtualchroot \
|
|
|
|
|
--with-extauth
|
2021-05-01 20:29:09 +02:00
|
|
|
%make_build
|
2021-05-01 20:28:48 +02:00
|
|
|
|
|
|
|
|
%install
|
|
|
|
|
%make_install
|
|
|
|
|
|
|
|
|
|
install -dD -m 0755 \
|
2023-03-31 17:46:39 +02:00
|
|
|
%{buildroot}%{_sysconfdir}/{%{name},%{name}/vhosts,openldap/schema}
|
2021-05-01 20:28:48 +02:00
|
|
|
install -m 0644 pure-ftpd.conf %{buildroot}%{_sysconfdir}/%{name}
|
2023-10-04 11:41:41 +02:00
|
|
|
install -m 0600 %{SOURCE6} $RPM_BUILD_ROOT%{_sysconfdir}/%{name}/ftpusers
|
2023-03-31 17:46:39 +02:00
|
|
|
%if 0%{?suse_version} > 1500
|
|
|
|
|
install -dD -m 0755 %{buildroot}%{_pam_vendordir}
|
|
|
|
|
install -m 0644 %{SOURCE4} %{buildroot}%{_pam_vendordir}/pure-ftpd
|
|
|
|
|
%else
|
|
|
|
|
install -dD -m 0755 %{buildroot}%{_sysconfdir}/pam.d
|
2021-05-01 20:28:48 +02:00
|
|
|
install -m 0644 %{SOURCE4} %{buildroot}%{_sysconfdir}/pam.d/pure-ftpd
|
2023-03-31 17:46:39 +02:00
|
|
|
%endif
|
2021-05-01 20:28:48 +02:00
|
|
|
|
|
|
|
|
install -m 0644 pureftpd.schema %{buildroot}%{_sysconfdir}/openldap/schema/
|
|
|
|
|
|
|
|
|
|
install -D -m 0644 usr.sbin.pure-ftpd %{buildroot}%{_sysconfdir}/apparmor/profiles/extras/usr.sbin.pure-ftpd
|
|
|
|
|
|
|
|
|
|
install -D -m0644 %{SOURCE8} %{buildroot}%{_unitdir}/%{name}.service
|
|
|
|
|
ln -sf service %{buildroot}%{_sbindir}/rc%{name}
|
|
|
|
|
|
|
|
|
|
rm %{buildroot}/%{_docdir}/%{name}/README.MacOS-X
|
|
|
|
|
rm %{buildroot}/%{_docdir}/%{name}/pureftpd.schema
|
|
|
|
|
rm %{buildroot}/%{_docdir}/%{name}/pure-ftpd.conf
|
|
|
|
|
|
|
|
|
|
%pre
|
|
|
|
|
%service_add_pre %{name}.service
|
2023-03-31 17:46:39 +02:00
|
|
|
%if 0%{?suse_version} > 1500
|
|
|
|
|
# Prepare for migration to /usr/lib; save any old .rpmsave
|
|
|
|
|
for i in pam.d/pure-ftpd ; do
|
|
|
|
|
test -f %{_sysconfdir}/${i}.rpmsave && mv -v %{_sysconfdir}/${i}.rpmsave %{_sysconfdir}/${i}.rpmsave.old ||:
|
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
%posttrans
|
|
|
|
|
# Migration to /usr/lib, restore just created .rpmsave
|
|
|
|
|
for i in pam.d/pure-ftpd ; do
|
|
|
|
|
test -f %{_sysconfdir}/${i}.rpmsave && mv -v %{_sysconfdir}/${i}.rpmsave %{_sysconfdir}/${i} ||:
|
|
|
|
|
done
|
|
|
|
|
%endif
|
2021-05-01 20:28:48 +02:00
|
|
|
|
|
|
|
|
%preun
|
|
|
|
|
%service_del_preun %{name}.service
|
|
|
|
|
|
|
|
|
|
%post
|
|
|
|
|
if [ -f etc/pure-ftpd.conf ]; then
|
|
|
|
|
mv etc/pure-ftpd.conf etc/pure-ftpd/pure-ftpd.conf
|
|
|
|
|
fi
|
|
|
|
|
%service_add_post %{name}.service
|
|
|
|
|
|
|
|
|
|
%postun
|
|
|
|
|
%service_del_postun %{name}.service
|
|
|
|
|
|
|
|
|
|
%files
|
|
|
|
|
%license COPYING
|
|
|
|
|
%doc FAQ AUTHORS NEWS THANKS README
|
|
|
|
|
%doc README.Configuration-File HISTORY README.Virtual-Users README.AppArmor
|
2021-05-09 15:02:28 +02:00
|
|
|
%doc README.LDAP pureftpd-ldap.conf README.MySQL pureftpd-mysql.conf
|
2021-05-01 20:28:48 +02:00
|
|
|
%doc README.PGSQL pureftpd-pgsql.conf README.TLS
|
|
|
|
|
%doc README.Donations README.Authentication-Modules
|
|
|
|
|
%{_mandir}/man8/*
|
|
|
|
|
%{_bindir}/*
|
|
|
|
|
%{_sbindir}/*
|
|
|
|
|
%dir %{_sysconfdir}/openldap
|
|
|
|
|
%dir %{_sysconfdir}/openldap/schema
|
|
|
|
|
%dir %{_sysconfdir}/%{name}
|
|
|
|
|
%dir %{_sysconfdir}/%{name}/vhosts
|
|
|
|
|
%dir %{_sysconfdir}/apparmor
|
|
|
|
|
%dir %{_sysconfdir}/apparmor/profiles
|
|
|
|
|
%dir %{_sysconfdir}/apparmor/profiles/extras
|
|
|
|
|
%config %{_sysconfdir}/openldap/schema/pureftpd.schema
|
2023-03-31 17:46:39 +02:00
|
|
|
%if 0%{?suse_version} > 1500
|
|
|
|
|
%{_pam_vendordir}/pure-ftpd
|
|
|
|
|
%else
|
2021-05-01 20:28:48 +02:00
|
|
|
%config %{_sysconfdir}/pam.d/pure-ftpd
|
2023-03-31 17:46:39 +02:00
|
|
|
%endif
|
2021-05-01 20:28:48 +02:00
|
|
|
%config(noreplace) %{_sysconfdir}/%{name}/pure-ftpd.conf
|
2023-10-04 11:41:41 +02:00
|
|
|
%config(noreplace) %{_sysconfdir}/%{name}/ftpusers
|
2021-05-01 20:28:48 +02:00
|
|
|
%config(noreplace) %{_sysconfdir}/apparmor/profiles/extras/usr.sbin.pure-ftpd
|
|
|
|
|
|
|
|
|
|
%{_unitdir}/%{name}.service
|
|
|
|
|
|
|
|
|
|
%changelog
|
