Пакет pam_pkcs11: Specfile
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 | # vim: set ft=spec: -*- rpm -spec -*- Name: pam_pkcs11 Version: 0.6.4 Release: alt1.M60P.1 Summary: PKCS #11 PAM Module and Login Tools Group: System/Base License: LGPL Url: http://www.opensc-project.org/pam_pkcs11/ Source: %name-%version.tar Patch: %name-%version-alt-build.patch Patch1: %name-%version-docs.patch Patch2: %name-%version-global_ca.patch Patch3: %name-%version-ru.po.patch Patch4: %name-%version-buffer.patch Patch5: %name-%version-ask-pin-later.patch Patch6: %name-%version-fix-build-with-pcsclite-1.7.4.patch # Automatically added by buildreq on Fri Jul 31 2009 (-bi) BuildRequires: cvs docbook-style-xsl flex libldap-devel libpam-devel libpcsclite-devel libssl-devel xsltproc # SCARD_READERSTATE_A will change to SCARD_READERSTATE afterwards: BuildPreReq: libpcsclite-devel >= 1.7.4 %description This Linux-PAM login module allows a X.509 certificate based user login. The certificate and its dedicated private key are thereby accessed by means of an appropriate PKCS #11 module. For the verification of the users' certificates, locally stored CA certificates as well as either online or locally accessible CRLs are used. Adittional included pam_pkcs11 related tools: - pkcs11_eventmgr: Generate actions on card insert/removal/timeout events - pklogin_finder: Get the loginname that maps to a certificate - pkcs11_inspect: Inspect the contents of a certificate %package pcsc Summary: PCSC-Lite extra tools for pam_pkcs11 Group: System/Base Requires: %name = %version-%release %description pcsc This package contains pam_pkcs11 tools that relies on PCSC-Lite library: - card_eventmgr: Generate card insert/removal events. %package ldap Summary: LDAP Cert-to-Login mapper for pam_pkcs11 Group: System/Base Requires: %name = %version-%release %description ldap This package contains a Certificate-To-Login mapper based on queries to a LDAP server. As it depends on extra libraries, is distributed as a separate package. - ldap_mapper.so: LDAP-based mapper module. %prep %setup %patch -p1 %patch1 -p1 %patch2 -p1 %patch3 -p1 %patch4 -p1 %patch5 -p1 %patch6 -p1 # fixup configs sed -i -e ' s,/usr/lib/pam_pkcs11/,/%_lib/%name/,g; s,/usr/lib/,%_libdir/,g; s,/etc/pam_pkcs11/,%_sysconfdir/security/%name/,g; ' etc/*.example doc/*.in doc/*.xml %build %autoreconf %configure \ --libdir=/%_lib \ --disable-static \ --enable-shared \ --with-confdir=%_sysconfdir/security/%name \ # %make_build %install %makeinstall_std mkdir -p %buildroot%_sysconfdir/security/%name/{cacerts,crls} for f in pam_pkcs11.conf card_eventmgr.conf pkcs11_eventmgr.conf; do install -pm644 "etc/$f.example" "%buildroot%_sysconfdir/security/%name/$f" done %find_lang %name %files -f %name.lang %doc AUTHORS README %doc doc/pam_pkcs11.html %doc doc/mappers_api.html %doc doc/README.autologin %doc doc/README.mappers %dir %_sysconfdir/security/%name %dir %_sysconfdir/security/%name/cacerts %dir %_sysconfdir/security/%name/crls %config(noreplace) %_sysconfdir/security/%name/pam_pkcs11.conf %config(noreplace) %_sysconfdir/security/%name/pkcs11_eventmgr.conf %_bindir/pkcs11_eventmgr %_bindir/pklogin_finder %_bindir/pkcs11_inspect %_bindir/pkcs11_listcerts %_bindir/pkcs11_setup %dir /%_lib/%name /%_lib/%name/openssh_mapper.so /%_lib/%name/opensc_mapper.so %_pam_modules_dir/pam_pkcs11.so %_man1dir/pkcs11_eventmgr.1* %_man1dir/pkcs11_inspect.1* %_man1dir/pkcs11_listcerts.1* %_man1dir/pkcs11_setup.1* %_man1dir/pklogin_finder.1* %_man8dir/pam_pkcs11.8* %dir %_datadir/%name %_datadir/%name/pam_pkcs11.conf.example %_datadir/%name/pam.d_login.example %_datadir/%name/subject_mapping.example %_datadir/%name/mail_mapping.example %_datadir/%name/digest_mapping.example %_datadir/%name/pkcs11_eventmgr.conf.example %files pcsc %doc doc/README.eventmgr %config(noreplace) %_sysconfdir/security/%name/card_eventmgr.conf %_bindir/card_eventmgr %_mandir/man1/card_eventmgr.1.gz %_datadir/%name/card_eventmgr.conf.example %files ldap %doc doc/README.ldap_mapper /%_lib/%name/ldap_mapper.so %changelog * Thu Nov 17 2016 Ivan Zakharyaschev <imz@altlinux.org> 0.6.4-alt1.M60P.1 - fix build with libpcsclite-devel >= 1.7.4 (thx vitty@) * Mon Jul 16 2012 Vitaly Kuznetsov <vitty@altlinux.ru> 0.6.4-alt2 - fix build * Wed Dec 08 2010 Igor Vlasenko <viy@altlinux.ru> 0.6.4-alt1.1 - rebuild with new openssl and/or boost by request of git.alt administrator * Mon Jun 28 2010 Alexey I. Froloff <raorn@altlinux.org> 0.6.4-alt1 - [0.6.4] * Tue Oct 06 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt5 - Ask PIN only if there are any certificates that can be mapped to user * Sat Sep 05 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt4 - Fix buffer overflow in non-POSIX locales * Sun Aug 23 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt3 - Russian translations updated * Fri Jul 31 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt2 - Document moar pam_pkcs11 options in default config - cert_policy: global_ca - use system-wide cert storage when verifying certificates - Fix paths in manpages and documentation - Dropped make_hash_links.sh in favor of c_rehash (openssl) * Tue Jul 21 2009 Alexey I. Froloff <raorn@altlinux.org> 0.6.1-alt1 - Built for Sisyphus |