Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 1 | # Default values for additional components |
| 2 | %define build_x11_askpass 1 |
| 3 | |
| 4 | # Define the UID/GID to use for privilege separation |
| 5 | %define sshd_gid 65 |
| 6 | %define sshd_uid 71 |
| 7 | |
| 8 | # The version of x11-ssh-askpass to use |
| 9 | %define xversion 1.2.4.1 |
| 10 | |
| 11 | # Allow the ability to override defaults with -D skip_xxx=1 |
| 12 | %{?skip_x11_askpass:%define build_x11_askpass 0} |
| 13 | |
| 14 | Summary: OpenSSH, a free Secure Shell (SSH) protocol implementation |
| 15 | Name: openssh |
Damien Miller | 80e766f | 2016-07-24 21:50:13 +1000 | [diff] [blame] | 16 | Version: 7.3p1 |
Darren Tucker | 461f50e | 2016-10-21 06:55:58 +1100 | [diff] [blame^] | 17 | URL: https://www.openssh.com/ |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 18 | Release: 1 |
| 19 | Source0: openssh-%{version}.tar.gz |
| 20 | Source1: x11-ssh-askpass-%{xversion}.tar.gz |
| 21 | License: BSD |
| 22 | Group: Productivity/Networking/SSH |
| 23 | BuildRoot: %{_tmppath}/openssh-%{version}-buildroot |
| 24 | PreReq: openssl |
| 25 | Obsoletes: ssh |
| 26 | Provides: ssh |
Damien Miller | 294df78 | 1999-11-23 10:11:29 +1100 | [diff] [blame] | 27 | # |
Damien Miller | 93168eb | 1999-12-07 16:20:49 +1100 | [diff] [blame] | 28 | # (Build[ing] Prereq[uisites] only work for RPM 2.95 and newer.) |
| 29 | # building prerequisites -- stuff for |
| 30 | # OpenSSL (openssl-devel), |
Damien Miller | 93168eb | 1999-12-07 16:20:49 +1100 | [diff] [blame] | 31 | # and Gnome (glibdev, gtkdev, and gnlibsd) |
Damien Miller | 294df78 | 1999-11-23 10:11:29 +1100 | [diff] [blame] | 32 | # |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 33 | BuildPrereq: openssl |
Damien Miller | 2db9977 | 2011-08-12 11:02:35 +1000 | [diff] [blame] | 34 | BuildPrereq: zlib-devel |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 35 | #BuildPrereq: glibdev |
| 36 | #BuildPrereq: gtkdev |
| 37 | #BuildPrereq: gnlibsd |
| 38 | |
| 39 | %package askpass |
| 40 | Summary: A passphrase dialog for OpenSSH and the X window System. |
| 41 | Group: Productivity/Networking/SSH |
| 42 | Requires: openssh = %{version} |
| 43 | Obsoletes: ssh-extras |
| 44 | Provides: openssh:${_libdir}/ssh/ssh-askpass |
| 45 | |
| 46 | %if %{build_x11_askpass} |
| 47 | BuildPrereq: XFree86-devel |
| 48 | %endif |
Damien Miller | 3668206 | 1999-11-15 17:19:24 +1100 | [diff] [blame] | 49 | |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 50 | %description |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 51 | Ssh (Secure Shell) is a program for logging into a remote machine and for |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 52 | executing commands in a remote machine. It is intended to replace |
| 53 | rlogin and rsh, and provide secure encrypted communications between |
| 54 | two untrusted hosts over an insecure network. X11 connections and |
| 55 | arbitrary TCP/IP ports can also be forwarded over the secure channel. |
| 56 | |
| 57 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it |
Damien Miller | a8e06ce | 2003-11-21 23:48:55 +1100 | [diff] [blame] | 58 | up to date in terms of security and features, as well as removing all |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 59 | patented algorithms to seperate libraries (OpenSSL). |
| 60 | |
Damien Miller | 2efcd3c | 2000-09-16 16:30:55 +1100 | [diff] [blame] | 61 | This package includes all files necessary for both the OpenSSH |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 62 | client and server. |
| 63 | |
| 64 | %description askpass |
| 65 | Ssh (Secure Shell) is a program for logging into a remote machine and for |
| 66 | executing commands in a remote machine. It is intended to replace |
| 67 | rlogin and rsh, and provide secure encrypted communications between |
| 68 | two untrusted hosts over an insecure network. X11 connections and |
| 69 | arbitrary TCP/IP ports can also be forwarded over the secure channel. |
| 70 | |
| 71 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it |
| 72 | up to date in terms of security and features, as well as removing all |
| 73 | patented algorithms to seperate libraries (OpenSSL). |
| 74 | |
| 75 | This package contains an X Window System passphrase dialog for OpenSSH. |
Damien Miller | 3f51bf5 | 1999-11-09 14:46:02 +1100 | [diff] [blame] | 76 | |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 77 | %changelog |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 78 | * Wed Oct 26 2005 Iain Morgan <imorgan@nas.nasa.gov> |
| 79 | - Removed accidental inclusion of --without-zlib-version-check |
| 80 | * Tue Oct 25 2005 Iain Morgan <imorgan@nas.nasa.gov> |
| 81 | - Overhaul to deal with newer versions of SuSE and OpenSSH |
Damien Miller | e69f18c | 2000-06-12 16:38:54 +1000 | [diff] [blame] | 82 | * Mon Jun 12 2000 Damien Miller <djm@mindrot.org> |
| 83 | - Glob manpages to catch compressed files |
Damien Miller | ddaffa4 | 2000-03-15 12:31:18 +1100 | [diff] [blame] | 84 | * Wed Mar 15 2000 Damien Miller <djm@ibs.com.au> |
| 85 | - Updated for new location |
| 86 | - Updated for new gnome-ssh-askpass build |
Damien Miller | 95c8e5d | 1999-12-27 16:43:42 +1100 | [diff] [blame] | 87 | * Sun Dec 26 1999 Chris Saia <csaia@wtower.com> |
| 88 | - Made symlink to gnome-ssh-askpass called ssh-askpass |
Damien Miller | 93168eb | 1999-12-07 16:20:49 +1100 | [diff] [blame] | 89 | * Wed Nov 24 1999 Chris Saia <csaia@wtower.com> |
| 90 | - Removed patches that included /etc/pam.d/sshd, /sbin/init.d/rc.sshd, and |
| 91 | /var/adm/fillup-templates/rc.config.sshd, since Damien merged these into |
| 92 | his released tarfile |
| 93 | - Changed permissions on ssh_config in the install procedure to 644 from 600 |
| 94 | even though it was correct in the %files section and thus right in the RPMs |
| 95 | - Postinstall script for the server now only prints "Generating SSH host |
| 96 | key..." if we need to actually do this, in order to eliminate a confusing |
| 97 | message if an SSH host key is already in place |
| 98 | - Marked all manual pages as %doc(umentation) |
Damien Miller | 294df78 | 1999-11-23 10:11:29 +1100 | [diff] [blame] | 99 | * Mon Nov 22 1999 Chris Saia <csaia@wtower.com> |
| 100 | - Added flag to configure daemon with TCP Wrappers support |
| 101 | - Added building prerequisites (works in RPM 3.0 and newer) |
| 102 | * Thu Nov 18 1999 Chris Saia <csaia@wtower.com> |
| 103 | - Made this package correct for SuSE. |
| 104 | - Changed instances of pam_pwdb.so to pam_unix.so, since it works more properly |
| 105 | with SuSE, and lib_pwdb.so isn't installed by default. |
Damien Miller | 3668206 | 1999-11-15 17:19:24 +1100 | [diff] [blame] | 106 | * Mon Nov 15 1999 Damien Miller <djm@mindrot.org> |
| 107 | - Split subpackages further based on patch from jim knoble <jmknoble@pobox.com> |
Damien Miller | 38c6088 | 1999-11-13 13:09:31 +1100 | [diff] [blame] | 108 | * Sat Nov 13 1999 Damien Miller <djm@mindrot.org> |
Damien Miller | c6d5ce8 | 1999-11-15 16:01:07 +1100 | [diff] [blame] | 109 | - Added 'Obsoletes' directives |
Damien Miller | 742d2cb | 1999-11-09 14:28:26 +1100 | [diff] [blame] | 110 | * Tue Nov 09 1999 Damien Miller <djm@ibs.com.au> |
| 111 | - Use make install |
Damien Miller | 3f51bf5 | 1999-11-09 14:46:02 +1100 | [diff] [blame] | 112 | - Subpackages |
Damien Miller | 356a0b0 | 1999-11-08 15:30:59 +1100 | [diff] [blame] | 113 | * Mon Nov 08 1999 Damien Miller <djm@ibs.com.au> |
| 114 | - Added links for slogin |
| 115 | - Fixed perms on manpages |
Damien Miller | 2bbb9d0 | 1999-10-30 09:46:20 +1000 | [diff] [blame] | 116 | * Sat Oct 30 1999 Damien Miller <djm@ibs.com.au> |
| 117 | - Renamed init script |
Damien Miller | 070f7a1 | 1999-10-29 10:29:29 +1000 | [diff] [blame] | 118 | * Fri Oct 29 1999 Damien Miller <djm@ibs.com.au> |
| 119 | - Back to old binary names |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 120 | * Thu Oct 28 1999 Damien Miller <djm@ibs.com.au> |
| 121 | - Use autoconf |
| 122 | - New binary names |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 123 | * Wed Oct 27 1999 Damien Miller <djm@ibs.com.au> |
| 124 | - Initial RPMification, based on Jan "Yenya" Kasprzak's <kas@fi.muni.cz> spec. |
| 125 | |
| 126 | %prep |
Damien Miller | 871f3ca | 1999-12-07 16:32:10 +1100 | [diff] [blame] | 127 | |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 128 | %if %{build_x11_askpass} |
| 129 | %setup -q -a 1 |
| 130 | %else |
Damien Miller | 871f3ca | 1999-12-07 16:32:10 +1100 | [diff] [blame] | 131 | %setup -q |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 132 | %endif |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 133 | |
| 134 | %build |
Damien Miller | 742d2cb | 1999-11-09 14:28:26 +1100 | [diff] [blame] | 135 | CFLAGS="$RPM_OPT_FLAGS" \ |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 136 | %configure --prefix=/usr \ |
| 137 | --sysconfdir=%{_sysconfdir}/ssh \ |
| 138 | --mandir=%{_mandir} \ |
| 139 | --with-privsep-path=/var/lib/empty \ |
Damien Miller | 7948d93 | 2001-09-18 15:12:10 +1000 | [diff] [blame] | 140 | --with-pam \ |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 141 | --libexecdir=%{_libdir}/ssh |
Damien Miller | cdb8b1d | 1999-11-09 14:31:49 +1100 | [diff] [blame] | 142 | make |
| 143 | |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 144 | %if %{build_x11_askpass} |
| 145 | cd x11-ssh-askpass-%{xversion} |
| 146 | %configure --mandir=/usr/X11R6/man \ |
| 147 | --libexecdir=%{_libdir}/ssh |
| 148 | xmkmf -a |
| 149 | make |
Damien Miller | ddaffa4 | 2000-03-15 12:31:18 +1100 | [diff] [blame] | 150 | cd .. |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 151 | %endif |
Damien Miller | ddaffa4 | 2000-03-15 12:31:18 +1100 | [diff] [blame] | 152 | |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 153 | %install |
| 154 | rm -rf $RPM_BUILD_ROOT |
Damien Miller | 7d7c60d | 2000-01-26 14:37:48 +1100 | [diff] [blame] | 155 | make install DESTDIR=$RPM_BUILD_ROOT/ |
Damien Miller | 2b72a4a | 1999-11-09 14:34:31 +1100 | [diff] [blame] | 156 | install -d $RPM_BUILD_ROOT/etc/pam.d/ |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 157 | install -d $RPM_BUILD_ROOT/etc/init.d/ |
Damien Miller | 93168eb | 1999-12-07 16:20:49 +1100 | [diff] [blame] | 158 | install -d $RPM_BUILD_ROOT/var/adm/fillup-templates |
Damien Miller | 606f880 | 2000-09-16 15:39:56 +1100 | [diff] [blame] | 159 | install -m644 contrib/sshd.pam.generic $RPM_BUILD_ROOT/etc/pam.d/sshd |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 160 | install -m744 contrib/suse/rc.sshd $RPM_BUILD_ROOT/etc/init.d/sshd |
| 161 | install -m744 contrib/suse/sysconfig.ssh \ |
Damien Miller | 93168eb | 1999-12-07 16:20:49 +1100 | [diff] [blame] | 162 | $RPM_BUILD_ROOT/var/adm/fillup-templates |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 163 | |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 164 | %if %{build_x11_askpass} |
| 165 | cd x11-ssh-askpass-%{xversion} |
| 166 | make install install.man BINDIR=%{_libdir}/ssh DESTDIR=$RPM_BUILD_ROOT/ |
| 167 | rm -f $RPM_BUILD_ROOT/usr/share/Ssh.bin |
| 168 | %endif |
| 169 | |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 170 | %clean |
| 171 | rm -rf $RPM_BUILD_ROOT |
| 172 | |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 173 | %pre |
| 174 | /usr/sbin/groupadd -g %{sshd_gid} -o -r sshd 2> /dev/null || : |
| 175 | /usr/sbin/useradd -r -o -g sshd -u %{sshd_uid} -s /bin/false -c "SSH Privilege Separation User" -d /var/lib/sshd sshd 2> /dev/null || : |
| 176 | |
Damien Miller | 2efcd3c | 2000-09-16 16:30:55 +1100 | [diff] [blame] | 177 | %post |
Damien Miller | 2db9977 | 2011-08-12 11:02:35 +1000 | [diff] [blame] | 178 | /usr/bin/ssh-keygen -A |
| 179 | %{fillup_and_insserv -n -y ssh sshd} |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 180 | %run_permissions |
| 181 | |
| 182 | %verifyscript |
| 183 | %verify_permissions -e /etc/ssh/sshd_config -e /etc/ssh/ssh_config -e /usr/bin/ssh |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 184 | |
Damien Miller | 2efcd3c | 2000-09-16 16:30:55 +1100 | [diff] [blame] | 185 | %preun |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 186 | %stop_on_removal sshd |
| 187 | |
| 188 | %postun |
| 189 | %restart_on_update sshd |
| 190 | %{insserv_cleanup} |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 191 | |
| 192 | %files |
| 193 | %defattr(-,root,root) |
Damien Miller | 7691e5f | 2009-02-21 18:03:04 +1100 | [diff] [blame] | 194 | %doc ChangeLog OVERVIEW README* PROTOCOL* |
Damien Miller | 493f032 | 2008-06-28 16:01:35 +1000 | [diff] [blame] | 195 | %doc TODO CREDITS LICENCE |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 196 | %attr(0755,root,root) %dir %{_sysconfdir}/ssh |
| 197 | %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/ssh/ssh_config |
| 198 | %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/sshd_config |
| 199 | %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/moduli |
| 200 | %attr(0644,root,root) %config(noreplace) /etc/pam.d/sshd |
| 201 | %attr(0755,root,root) %config /etc/init.d/sshd |
| 202 | %attr(0755,root,root) %{_bindir}/ssh-keygen |
| 203 | %attr(0755,root,root) %{_bindir}/scp |
| 204 | %attr(0755,root,root) %{_bindir}/ssh |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 205 | %attr(0755,root,root) %{_bindir}/ssh-agent |
| 206 | %attr(0755,root,root) %{_bindir}/ssh-add |
| 207 | %attr(0755,root,root) %{_bindir}/ssh-keyscan |
| 208 | %attr(0755,root,root) %{_bindir}/sftp |
| 209 | %attr(0755,root,root) %{_sbindir}/sshd |
| 210 | %attr(0755,root,root) %dir %{_libdir}/ssh |
| 211 | %attr(0755,root,root) %{_libdir}/ssh/sftp-server |
| 212 | %attr(4711,root,root) %{_libdir}/ssh/ssh-keysign |
Damien Miller | d27d85d | 2010-02-24 18:21:45 +1100 | [diff] [blame] | 213 | %attr(0755,root,root) %{_libdir}/ssh/ssh-pkcs11-helper |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 214 | %attr(0644,root,root) %doc %{_mandir}/man1/scp.1* |
| 215 | %attr(0644,root,root) %doc %{_mandir}/man1/sftp.1* |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 216 | %attr(0644,root,root) %doc %{_mandir}/man1/ssh.1* |
| 217 | %attr(0644,root,root) %doc %{_mandir}/man1/ssh-add.1* |
| 218 | %attr(0644,root,root) %doc %{_mandir}/man1/ssh-agent.1* |
| 219 | %attr(0644,root,root) %doc %{_mandir}/man1/ssh-keygen.1* |
| 220 | %attr(0644,root,root) %doc %{_mandir}/man1/ssh-keyscan.1* |
Damien Miller | f299ff8 | 2008-06-26 16:01:56 +1000 | [diff] [blame] | 221 | %attr(0644,root,root) %doc %{_mandir}/man5/moduli.5* |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 222 | %attr(0644,root,root) %doc %{_mandir}/man5/ssh_config.5* |
| 223 | %attr(0644,root,root) %doc %{_mandir}/man5/sshd_config.5* |
| 224 | %attr(0644,root,root) %doc %{_mandir}/man8/sftp-server.8* |
| 225 | %attr(0644,root,root) %doc %{_mandir}/man8/ssh-keysign.8* |
Damien Miller | d27d85d | 2010-02-24 18:21:45 +1100 | [diff] [blame] | 226 | %attr(0644,root,root) %doc %{_mandir}/man8/ssh-pkcs11-helper.8* |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 227 | %attr(0644,root,root) %doc %{_mandir}/man8/sshd.8* |
| 228 | %attr(0644,root,root) /var/adm/fillup-templates/sysconfig.ssh |
Damien Miller | d4a8b7e | 1999-10-27 13:42:43 +1000 | [diff] [blame] | 229 | |
Damien Miller | 88edf62 | 2005-10-30 11:55:45 +1100 | [diff] [blame] | 230 | %if %{build_x11_askpass} |
| 231 | %files askpass |
| 232 | %defattr(-,root,root) |
| 233 | %doc x11-ssh-askpass-%{xversion}/README |
| 234 | %doc x11-ssh-askpass-%{xversion}/ChangeLog |
| 235 | %doc x11-ssh-askpass-%{xversion}/SshAskpass*.ad |
| 236 | %attr(0755,root,root) %{_libdir}/ssh/ssh-askpass |
| 237 | %attr(0755,root,root) %{_libdir}/ssh/x11-ssh-askpass |
| 238 | %attr(0644,root,root) %doc /usr/X11R6/man/man1/ssh-askpass.1x* |
| 239 | %attr(0644,root,root) %doc /usr/X11R6/man/man1/x11-ssh-askpass.1x* |
| 240 | %attr(0644,root,root) %config /usr/X11R6/lib/X11/app-defaults/SshAskpass |
| 241 | %endif |