1 ###############################################################################
2 # IPFire.org - An Open Source Firewall Solution #
3 # Copyright (C) - IPFire Development Team <info@ipfire.org> #
4 ###############################################################################
10 maintainer = Michael Tremer <michael.tremer@ipfire.org>
11 groups = System/Libraries
12 url = http://www.openssl.org/
14 summary = A general purpose cryptography library with TLS implementation.
17 The OpenSSL toolkit provides support for secure communications between
18 machines. OpenSSL includes a certificate management tool and shared
19 libraries which provide various cryptographic algorithms and protocols.
22 source_dl = http://openssl.org/source/
34 export RPM_OPT_FLAGS = %{CFLAGS}
37 find crypto/ -name Makefile -exec \
38 sed 's/^ASFLAGS=/&-Wa,--noexecstack /' -i {} \;
40 # Modify the various perl scripts to reference perl in the right location.
41 perl util/perlpath.pl /usr/bin
43 # Generate a table with the compile settings for my perusal.
45 make TABLE PERL=/usr/bin/perl
48 # Set default ssl_arch.
49 ssl_arch = linux-%{DISTRO_ARCH}
51 if "%{DISTRO_ARCH}" == "i686"
53 ssl_arch = linux-elf no-asm 386
56 if "%{DISTRO_ARCH}" == "armv5tel"
57 ssl_arch = linux-generic32
60 if "%{DISTRO_ARCH}" == "armv7hl"
61 ssl_arch = linux-generic32
67 --openssldir=/etc/pki/tls \
68 --enginesdir=%{libdir}/openssl/engines \
79 no-ec no-ecdh no-ecdsa \
86 make depend all build-shared RPM_OPT_FLAGS="%{CFLAGS}" #%{PARALLELISMFLAGS}
88 # Generate hashes for the included certs.
89 make rehash build-shared
93 # Revert ca-dir patch. Otherwise the tests will fail.
94 patch -Np1 -R < %{DIR_PATCHES}/openssl-1.0.0-beta4-ca-dir.patch
100 make install build-shared INSTALL_PREFIX=%{BUILDROOT}
102 # Install manpages do right place
103 mkdir -pv %{BUILDROOT}/usr/share
104 mv -v %{BUILDROOT}/etc/pki/tls/man %{BUILDROOT}/usr/share/
106 mkdir -pv %{BUILDROOT}%{libdir}/openssl
107 mv -v %{BUILDROOT}%{libdir}/engines %{BUILDROOT}%{libdir}/openssl
109 mkdir -pv %{BUILDROOT}/etc/pki/CA/private
110 chmod -v 700 -R %{BUILDROOT}/etc/pki/CA
112 mkdir -pv %{BUILDROOT}/etc/pki/tls
113 install -m 0644 %{DIR_SOURCE}/openssl.cnf %{BUILDROOT}/etc/pki/tls
114 cp -v -r certs %{BUILDROOT}/etc/pki/tls
116 # Rename man pages so that they don't conflict with other system man pages.
117 pushd %{BUILDROOT}%{mandir}
118 for manpage in man*/*; do
119 if [ -L ${manpage} ]; then
120 TARGET=`ls -l ${manpage} | awk '{ print $NF }'`
121 ln -snf ${TARGET}ssl ${manpage}ssl
124 mv ${manpage} ${manpage}ssl
137 requires += ca-certificates
139 files += %{libdir}/openssl
142 package %{name}-devel
146 package %{name}-debuginfo