]> git.ipfire.org Git - ipfire-3.x.git/blob - openssl/openssl.nm
projects / ipfire-3.x.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge remote-tracking branch 'arne_f/automake'
[ipfire-3.x.git] / openssl / openssl.nm
1 ###############################################################################
2 # IPFire.org - An Open Source Firewall Solution #
3 # Copyright (C) - IPFire Development Team <info@ipfire.org> #
4 ###############################################################################
5
6 name = openssl
7 version = 1.0.1
8 release = 2
9
10 maintainer = Michael Tremer <michael.tremer@ipfire.org>
11 groups = System/Libraries
12 url = http://www.openssl.org/
13 license = OpenSSL
14 summary = A general purpose cryptography library with TLS implementation.
15
16 description
17 The OpenSSL toolkit provides support for secure communications between
18 machines. OpenSSL includes a certificate management tool and shared
19 libraries which provide various cryptographic algorithms and protocols.
20 end
21
22 source_dl = http://openssl.org/source/
23
24 build
25 requires
26 bc
27 gnutls-devel
28 perl
29 util-linux
30 zlib-devel
31 end
32
33 CFLAGS += -DPURIFY
34 export RPM_OPT_FLAGS = %{CFLAGS}
35
36 prepare_cmds
37 find crypto/ -name Makefile -exec \
38 sed 's/^ASFLAGS=/&-Wa,--noexecstack /' -i {} \;
39
40 # Modify the various perl scripts to reference perl in the right location.
41 perl util/perlpath.pl /usr/bin
42
43 # Generate a table with the compile settings for my perusal.
44 touch Makefile
45 make TABLE PERL=/usr/bin/perl
46 end
47
48 # Set default ssl_arch.
49 ssl_arch = linux-%{DISTRO_ARCH}
50
51 if "%{DISTRO_ARCH}" == "i686"
52 # 386 implies no-sse2
53 ssl_arch = linux-elf no-asm 386
54 end
55
56 if "%{DISTRO_ARCH}" == "armv5tel"
57 ssl_arch = linux-generic32
58 end
59
60 if "%{DISTRO_ARCH}" == "armv7hl"
61 ssl_arch = linux-generic32
62 end
63
64 build
65 ./Configure \
66 --prefix=/usr \
67 --openssldir=/etc/pki/tls \
68 --enginesdir=%{libdir}/openssl/engines \
69 shared \
70 zlib-dynamic \
71 enable-camellia \
72 enable-md2 \
73 enable-seed \
74 enable-tlsext \
75 enable-rfc3779 \
76 no-idea \
77 no-mdc2 \
78 no-rc5 \
79 no-ec no-ecdh no-ecdsa \
80 no-srp \
81 -DSSL_FORBID_ENULL \
82 %{ssl_arch} \
83 fips
84
85 # Build.
86 make depend all build-shared RPM_OPT_FLAGS="%{CFLAGS}" #%{PARALLELISMFLAGS}
87
88 # Generate hashes for the included certs.
89 make rehash build-shared
90 end
91
92 test
93 # Revert ca-dir patch. Otherwise the tests will fail.
94 patch -Np1 -R < %{DIR_PATCHES}/openssl-1.0.0-beta4-ca-dir.patch
95
96 make test
97 end
98
99 install
100 make install build-shared INSTALL_PREFIX=%{BUILDROOT}
101
102 # Install manpages do right place
103 mkdir -pv %{BUILDROOT}/usr/share
104 mv -v %{BUILDROOT}/etc/pki/tls/man %{BUILDROOT}/usr/share/
105
106 mkdir -pv %{BUILDROOT}%{libdir}/openssl
107 mv -v %{BUILDROOT}%{libdir}/engines %{BUILDROOT}%{libdir}/openssl
108
109 mkdir -pv %{BUILDROOT}/etc/pki/CA/private
110 chmod -v 700 -R %{BUILDROOT}/etc/pki/CA
111
112 mkdir -pv %{BUILDROOT}/etc/pki/tls
113 install -m 0644 %{DIR_SOURCE}/openssl.cnf %{BUILDROOT}/etc/pki/tls
114 cp -v -r certs %{BUILDROOT}/etc/pki/tls
115
116 # Rename man pages so that they don't conflict with other system man pages.
117 pushd %{BUILDROOT}%{mandir}
118 for manpage in man*/*; do
119 if [ -L ${manpage} ]; then
120 TARGET=`ls -l ${manpage} | awk '{ print $NF }'`
121 ln -snf ${TARGET}ssl ${manpage}ssl
122 rm -f ${manpage}
123 else
124 mv ${manpage} ${manpage}ssl
125 fi
126 done
127 popd
128 end
129 end
130
131 packages
132 package %{name}
133
134 package %{name}-libs
135 template LIBS
136
137 requires += ca-certificates
138
139 files += %{libdir}/openssl
140 end
141
142 package %{name}-devel
143 template DEVEL
144 end
145
146 package %{name}-debuginfo
147 template DEBUGINFO
148 end
149 end
IPFire 3.x development tree