openpkg
/
openpkg-packages


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365
							##
##  sasl.spec -- OpenPKG RPM Specification
##  Copyright (c) 2000-2005 The OpenPKG Project <http://www.openpkg.org/>
##  Copyright (c) 2000-2005 Ralf S. Engelschall <rse@engelschall.com>
##  Copyright (c) 2000-2005 Cable & Wireless <http://www.cw.com/>
##
##  Permission to use, copy, modify, and distribute this software for
##  any purpose with or without fee is hereby granted, provided that
##  the above copyright notice and this permission notice appear in all
##  copies.
##
##  THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED
##  WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
##  MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
##  IN NO EVENT SHALL THE AUTHORS AND COPYRIGHT HOLDERS AND THEIR
##  CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
##  SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
##  LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
##  USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
##  ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
##  OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
##  OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
##  SUCH DAMAGE.
##

#   package information
Name:         sasl
Summary:      Simple Authentication and Security Layer (SASL)
URL:          http://asg.web.cmu.edu/sasl/
Vendor:       Cyrus Project, CMU
Packager:     The OpenPKG Project
Distribution: OpenPKG
Class:        BASE
Group:        Cryptography
License:      BSD
Version:      2.1.20
Release:      20050321

#   package options
%option       with_fsl    yes
%option       with_pam    no
%option       with_login  no
%option       with_ldap   no
%option       with_mysql  no
%option       with_pgsql  no
%option       with_sqlite no
%option       with_ntlm   no
%option       with_sasldb no

#   list of sources
Source0:      ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/cyrus-sasl-%{version}.tar.gz
Source1:      rc.sasl
Source2:      fsl.sasl
Source3:      saslauthd.conf
Patch0:       sasl.patch

#   build information
Prefix:       %{l_prefix}
BuildRoot:    %{l_buildroot}
BuildPreReq:  OpenPKG, openpkg >= 20040130, gcc, make, groff
PreReq:       OpenPKG, openpkg >= 20040130
BuildPreReq:  db >= 4.1.24, openssl
PreReq:       db >= 4.1.24, openssl
%if "%{with_fsl}" == "yes"
BuildPreReq:  fsl >= 1.2.0
PreReq:       fsl >= 1.2.0
%endif
%if "%{with_pam}" == "yes"
BuildPreReq:  PAM
PreReq:       PAM
%endif
%if "%{with_ldap}" == "yes"
BuildPreReq:  openldap
PreReq:       openldap
%endif
%if "%{with_mysql}" == "yes"
BuildPreReq:  mysql
PreReq:       mysql
%endif
%if "%{with_pgsql}" == "yes"
BuildPreReq:  postgresql
PreReq:       postgresql
%endif
%if "%{with_sqlite}" == "yes"
BuildPreReq:  sqlite
PreReq:       sqlite
%endif
AutoReq:      no
AutoReqProv:  no

%description
    SASL is the Simple Authentication and Security Layer, a method
    for adding authentication support to connection-based protocols.
    To use SASL, a protocol includes a command for identifying and
    authenticating a user to a server and for optionally negotiating
    protection of subsequent protocol interactions. If its use is
    negotiated, a security layer is inserted between the protocol and
    the connection.

%track
    prog sasl = {
        version   = %{version}
        url       = ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/
        regex     = cyrus-sasl-(\d+\.\d+\.\d+)\.tar\.gz
    }

%prep
    %setup -q -n cyrus-sasl-%{version}
    %patch -p0

%build
    #   disable some unwanted configure checks
    %{l_shtool} subst \
        -e 's;\(SASL_DB_UTILS="saslpasswd2 sasldblistusers2\);\1 dbconverter-2;' \
        -e "s;javac;javac-xxx;g" \
        -e "s;javah;javah-xxx;g" \
        -e "s;javadoc;javadoc-xxx;g" \
        configure

    #   fix OpenLDAP support
%if "%{with_ldap}" == "yes"
    echo 'ac_cv_lib_ldap_ldap_initialize=yes' >config.cache
    %{l_shtool} subst \
        -e "s;\(\$LDAP_LIBS\) *\(-lcrypto\);\1 -lssl \2;" \
        saslauthd/configure
%endif

    #   enforce disabled Kerberos 5 support in saslauthd
    echo 'ac_cv_header_krb5_h=no' >config.cache

    #   configure path to sasl-server config files
    %{l_shtool} subst \
        -e 's;@l_sysconfdir@;%{l_prefix}/etc/sasl/apps;g' \
        lib/server.c

    #   determine build flags
    cflags="%{l_cflags -O} %{l_cppflags}"
    ldflags="%{l_ldflags} %{l_fsl_ldflags}"
    libs="-ldb %{l_fsl_libs}"
%if "%{with_ldap}" == "yes"
    cflags="$cflags -DAUTH_LDAP"
%endif
%if "%{with_mysql}" == "yes"
    libs="$libs -lz -lm"
%endif
    case "%{l_platform -t}" in
        *-sunos* ) libs="$libs -lrt" ;;
    esac

    #   configure package
    CC="%{l_cc}" \
    CFLAGS="$cflags" \
    CPPFLAGS="%{l_cppflags}" \
    LDFLAGS="$ldflags" \
    LIBS="$libs" \
    ./configure \
        --cache-file=./config.cache \
        --prefix=%{l_prefix} \
        --sysconfdir="%{l_prefix}/etc/sasl" \
        --with-plugindir=%{l_prefix}/lib/sasl \
        --with-saslauthd=%{l_prefix}/var/sasl/saslauthd \
        --with-dbpath=%{l_prefix}/var/sasl/sasldb \
        --with-dblib=berkeley \
        --with-bdb-incdir=%{l_prefix}/include \
        --with-bdb-libdir=%{l_prefix}/lib \
        --with-openssl=%{l_prefix} \
%if "%{with_pam}" == "yes"
        --with-pam \
%else
        --without-pam \
%endif
%if "%{with_login}" == "yes"
        --enable-login \
%else
        --disable-login \
%endif
%if "%{with_ldap}" == "yes"
        --with-ldap=%{l_prefix} \
%else
        --without-ldap \
%endif
%if "%{with_mysql}" == "yes" || "%{with_pgsql}" == "yes" || "%{with_pgsql}" == "yes"
        --enable-sql \
%if "%{with_mysql}" == "yes"
        --with-mysql=%{l_prefix} \
%else
        --without-mysql \
%endif
%if "%{with_pgsql}" == "yes"
        --with-pgsql=%{l_prefix} \
%else
        --without-pgsql \
%endif
%if "%{with_sqlite}" == "yes"
        --with-sqlite=%{l_prefix} \
%else
        --without-sqlite \
%endif
%endif
%if "%{with_ntlm}" == "yes"
        --enable-ntlm \
%else
        --disable-ntlm \
%endif
%if "%{with_sasldb}" == "yes"
        --enable-auth-sasldb \
%endif
        --enable-shared \
        --enable-static \
        --enable-staticdlopen \
        --disable-java \
        --disable-sample \
        --disable-krb4 \
        --disable-gssapi \
        --disable-otp \
        --without-des \
        --without-opie

    #   post adjustment: trust me, libtool, I know what I am doing
    %{l_shtool} subst \
        -e 's;^\(deplibs_check_method=\).*;\1"pass_all";' \
        libtool
    #   post adjustment: do not reference static plugins
    %{l_shtool} subst \
        -e '58s;.*;#define PIC;' \
        lib/dlopen.c
    #   post adjustment: do not pull static plugins into static library
    %{l_shtool} subst \
        -e '/^SASL_STATIC_OBJS/s;\.\./plugins/[^ ]* *;;g' \
        lib/Makefile
    #   post adjustment: build utils against static library
    %{l_shtool} subst \
        -e 's;\(\$(CCLD)\);\1 -static;' \
        -e 's;\(noinst.*=\) *dbconverter.*;\1;' \
        utils/Makefile

    #   post adjustment: fix OpenLDAP support
%if "%{with_ldap}" == "yes"
    %{l_shtool} subst \
        -e "s;^\(saslauthd_LDADD[ 	]*=[ 	]*[^\\]*\);\1 -lcrypt -lldap -llber -lssl -lcrypto ;" \
        saslauthd/Makefile
%endif

    #   build package
    %{l_make} %{l_mflags}
    cd saslauthd
    %{l_make} %{l_mflags} testsaslauthd

%install
    rm -rf $RPM_BUILD_ROOT

    #   install package
    %{l_make} %{l_mflags} install AM_MAKEFLAGS="DESTDIR=$RPM_BUILD_ROOT"

    #   remove libtool cruft
    rm -f \
        $RPM_BUILD_ROOT%{l_prefix}/lib/*.la \
        $RPM_BUILD_ROOT%{l_prefix}/lib/*.s[ol] \
        $RPM_BUILD_ROOT%{l_prefix}/lib/*.s[ol].* \
        $RPM_BUILD_ROOT%{l_prefix}/lib/sasl2/*.la \
        $RPM_BUILD_ROOT%{l_prefix}/lib/sasl2/*.a

    #   post-adjust installation
    mv $RPM_BUILD_ROOT%{l_prefix}/lib/sasl2 \
       $RPM_BUILD_ROOT%{l_prefix}/lib/sasl
    strip $RPM_BUILD_ROOT%{l_prefix}/sbin/* >/dev/null 2>&1 || true

    #   install saslauthd test program
    %{l_shtool} mkdir -f -p -m 755 \
        $RPM_BUILD_ROOT%{l_prefix}/sbin
    %{l_shtool} install -c -m 755 \
        saslauthd/testsaslauthd \
        $RPM_BUILD_ROOT%{l_prefix}/sbin/

    #   install saslauthd default configuration
    %{l_shtool} mkdir -f -p -m 755 \
        $RPM_BUILD_ROOT%{l_prefix}/etc/sasl
    %{l_shtool} install -c -m 755 \
        %{SOURCE saslauthd.conf} \
        $RPM_BUILD_ROOT%{l_prefix}/etc/sasl/

    #   install missing manual pages
    %{l_shtool} mkdir -f -p -m 755 \
        $RPM_BUILD_ROOT%{l_prefix}/man/man8
    %{l_shtool} install -c -m 644 \
        utils/saslpasswd2.8 \
        utils/sasldblistusers2.8 \
        $RPM_BUILD_ROOT%{l_prefix}/man/man8/

    #   create necessary additional directories
    %{l_shtool} mkdir -f -p -m 755 \
        $RPM_BUILD_ROOT%{l_prefix}/var/sasl/log \
        $RPM_BUILD_ROOT%{l_prefix}/var/sasl/saslauthd \
        $RPM_BUILD_ROOT%{l_prefix}/etc/sasl/apps

    #   install run-command script
%if "%{with_pam}" == "yes"
    l_authmech="pam"
%else
    case "%{l_platform -t}" in
        *-linux* | *-sunos* ) l_authmech="shadow"   ;;
        *                   ) l_authmech="getpwent" ;;
    esac
%endif
    %{l_shtool} mkdir -f -p -m 755 \
        $RPM_BUILD_ROOT%{l_prefix}/etc/rc.d
    %{l_shtool} install -c -m 755 \
        -e "s;@l_authmech@;${l_authmech};g" %{l_value -s -a} \
        %{SOURCE rc.sasl} \
        $RPM_BUILD_ROOT%{l_prefix}/etc/rc.d/

    #   install OSSP fsl configuration
    %{l_shtool} mkdir -f -p -m 755 $RPM_BUILD_ROOT%{l_prefix}/etc/fsl
    %{l_shtool} install -c -m 644 %{l_value -s -a} \
        %{SOURCE fsl.sasl} \
        $RPM_BUILD_ROOT%{l_prefix}/etc/fsl/

    #   determine installation files
    %{l_rpmtool} files -v -ofiles -r$RPM_BUILD_ROOT \
        %{l_files_std} \
        '%not %dir %{l_prefix}/etc/fsl' \
        '%config %{l_prefix}/etc/fsl/fsl.sasl' \
        '%config %{l_prefix}/etc/sasl/saslauthd.conf' \
        '%dir %attr(0750,%{l_musr},%{l_rgrp}) %{l_prefix}/var/sasl' \
        '%dir %attr(0750,%{l_musr},%{l_rgrp}) %{l_prefix}/var/sasl/saslauthd' \
        '%dir %attr(0700,%{l_susr},%{l_sgrp}) %{l_prefix}/var/sasl/log'

%files -f files

%clean
    rm -rf $RPM_BUILD_ROOT

%pre
    #   before upgrade, save status and stop service
    [ $1 -eq 2 ] || exit 0
    eval `%{l_rc} sasl status 2>/dev/null | tee %{l_tmpfile}`
    %{l_rc} sasl stop 2>/dev/null
    exit 0

%post
%if "%{with_pam}" == "yes"
    if [ $1 -eq 1 ]; then
        #   after install, add PAM configuration entry
        $RPM_INSTALL_PREFIX/sbin/pamtool --add --smart --name=sasl
    fi
%endif
    if [ $1 -eq 2 ]; then
        #   after upgrade, restore status
        eval `cat %{l_tmpfile}`; rm -f %{l_tmpfile}
        [ ".$sasl_active" = .yes ] && %{l_rc} sasl start
    fi
    exit 0

%preun
    #   before erase, stop service and remove log files
    [ $1 -eq 0 ] || exit 0
    %{l_rc} sasl stop 2>/dev/null
    rm -f $RPM_INSTALL_PREFIX/var/sasl/log/*.log* >/dev/null 2>&1 || true
%if "%{with_pam}" == "yes"
    #   remove PAM configuration entry
    $RPM_INSTALL_PREFIX/sbin/pamtool --remove --smart --name=sasl
%endif
    exit 0