1 |
nanardon |
160914 |
%define _disable_ld_no_undefined 1 |
2 |
|
|
|
3 |
|
|
%define major 1 |
4 |
|
|
%define libname %mklibname freeradius %{major} |
5 |
|
|
%define develname %mklibname -d freeradius |
6 |
|
|
%define _requires_exceptions perl(DBI) |
7 |
|
|
|
8 |
|
|
Summary: High-performance and highly configurable RADIUS server |
9 |
|
|
Name: freeradius |
10 |
|
|
Version: 2.1.12 |
11 |
luigiwalser |
389189 |
%define subrel 2 |
12 |
pterjan |
234924 |
Release: %mkrel 8 |
13 |
pterjan |
234925 |
License: GPLv2+ |
14 |
nanardon |
160914 |
Group: System/Servers |
15 |
|
|
URL: http://www.freeradius.org/ |
16 |
|
|
Source0: ftp://ftp.freeradius.org/pub/radius/%{name}-server-%{version}.tar.bz2 |
17 |
|
|
Source1: ftp://ftp.freeradius.org/pub/radius/%{name}-server-%{version}.tar.bz2.sig |
18 |
|
|
Source2: freeradius.pam-0.77 |
19 |
|
|
Source3: freeradius.pam |
20 |
|
|
Source4: freeradius.init |
21 |
|
|
Source5: freeradius.logrotate |
22 |
|
|
Source6: freeradius.sysconfig |
23 |
guillomovitch |
223238 |
Source7: freeradius.service |
24 |
nanardon |
160914 |
# Fix certificate location |
25 |
|
|
Patch0: freeradius-2.1.11-ssl-config.patch |
26 |
|
|
Patch1: freeradius-server-2.1.6-fix-format-errors.patch |
27 |
|
|
Patch4: freeradius-0.8.1-use-system-com_err.patch |
28 |
|
|
Patch6: freeradius-server-2.1.10-avoid-version.diff |
29 |
|
|
Patch7: freeradius-server-2.1.10-version-info.diff |
30 |
|
|
Patch8: freeradius-2.0.0-samba3.patch |
31 |
|
|
Patch9: freeradius-server-2.1.8-ltdl_no_la.patch |
32 |
|
|
Patch10: freeradius-server-linkage_fix.diff |
33 |
|
|
Patch11: freeradius-server-2.1.7-fix-perl-scripts.patch |
34 |
luigiwalser |
304022 |
Patch12: freeradius-server-2.1.11-CVE-2012-3547.diff |
35 |
luigiwalser |
389189 |
Patch13: freeradius-server-CVE-2011-4966.patch |
36 |
nanardon |
160914 |
BuildRequires: gdbm-devel |
37 |
|
|
BuildRequires: krb5-devel |
38 |
|
|
BuildRequires: libsasl-devel |
39 |
|
|
BuildRequires: libtool-devel |
40 |
|
|
BuildRequires: mysql-devel |
41 |
|
|
BuildRequires: openldap-devel |
42 |
|
|
BuildRequires: openssl-devel |
43 |
|
|
BuildRequires: pam-devel |
44 |
|
|
BuildRequires: pcap-devel |
45 |
|
|
BuildRequires: perl-devel |
46 |
|
|
BuildRequires: postgresql-devel |
47 |
|
|
BuildRequires: python-devel |
48 |
|
|
BuildRequires: ruby-devel |
49 |
|
|
BuildRequires: rpm-helper >= 0.21 |
50 |
|
|
BuildRequires: sqlite3-devel |
51 |
|
|
BuildRequires: unixODBC-devel |
52 |
|
|
BuildRequires: zlib-devel |
53 |
|
|
# minimal version for ssl cert generation |
54 |
|
|
Requires(post): openssl |
55 |
tmb |
233698 |
Requires(post): rpm-helper >= 0.24.8-1 |
56 |
|
|
Requires(preun): rpm-helper >= 0.24.8-1 |
57 |
nanardon |
160914 |
Conflicts: radiusd-cistron |
58 |
|
|
|
59 |
|
|
%description |
60 |
|
|
The FreeRADIUS Server Project is a high-performance and highly configurable |
61 |
|
|
GPL'd RADIUS server. It is somewhat similar to the Livingston 2.0 RADIUS |
62 |
|
|
server, but has many more features, and is much more configurable. |
63 |
|
|
|
64 |
|
|
%package -n %{name}-krb5 |
65 |
|
|
Summary: The Kerberos module for %{name} |
66 |
|
|
Group: System/Servers |
67 |
|
|
Requires: krb5-libs |
68 |
|
|
Requires: %{name} = %{version}-%{release} |
69 |
|
|
Obsoletes: %{libname}-krb5 |
70 |
|
|
|
71 |
|
|
%description -n %{name}-krb5 |
72 |
|
|
The FreeRADIUS server can use Kerberos to authenticate users, and this module |
73 |
|
|
is necessary for that. |
74 |
|
|
|
75 |
|
|
%package -n %{name}-ldap |
76 |
|
|
Summary: The LDAP module for %{name} |
77 |
|
|
Group: System/Servers |
78 |
|
|
Requires: %{name} = %{version}-%{release} |
79 |
|
|
Obsoletes: %{libname}-ldap |
80 |
|
|
|
81 |
|
|
%description -n %{name}-ldap |
82 |
|
|
The FreeRADIUS server can use LDAP to authenticate users, and this module is |
83 |
|
|
necessary for that. |
84 |
|
|
|
85 |
|
|
%package -n %{name}-postgresql |
86 |
|
|
Summary: The PostgreSQL module for %{name} |
87 |
|
|
Group: System/Servers |
88 |
|
|
Requires: %{name} = %{version}-%{release} |
89 |
|
|
Obsoletes: %{libname}-postgresql |
90 |
|
|
|
91 |
|
|
%description -n %{name}-postgresql |
92 |
|
|
The FreeRADIUS server can use PostgreSQL to authenticate users and do |
93 |
|
|
accounting, and this module is necessary for that. |
94 |
|
|
|
95 |
|
|
%package -n %{name}-mysql |
96 |
|
|
Summary: The MySQL module for %{name} |
97 |
|
|
Group: System/Servers |
98 |
|
|
Requires: %{name} = %{version}-%{release} |
99 |
|
|
Obsoletes: %{libname}-mysql |
100 |
|
|
|
101 |
|
|
%description -n %{name}-mysql |
102 |
|
|
The FreeRADIUS server can use MySQL to authenticate users and do accounting, |
103 |
|
|
and this module is necessary for that. |
104 |
|
|
|
105 |
|
|
%package -n %{name}-unixODBC |
106 |
|
|
Summary: The unixODBC module for %{name} |
107 |
|
|
Group: System/Servers |
108 |
|
|
Requires: %{name} = %{version}-%{release} |
109 |
|
|
Obsoletes: %{libname}-unixODBC |
110 |
|
|
|
111 |
|
|
%description -n %{name}-unixODBC |
112 |
|
|
The FreeRADIUS server can use unixODBC to authenticate users and do accounting, |
113 |
|
|
and this module is necessary for that. |
114 |
|
|
|
115 |
|
|
%package -n %{name}-sqlite |
116 |
|
|
Summary: The sqlite module for %{name} |
117 |
|
|
Group: System/Servers |
118 |
|
|
Requires: %{name} = %{version}-%{release} |
119 |
|
|
Obsoletes: %{libname}-sqlite |
120 |
|
|
|
121 |
|
|
%description -n %{name}-sqlite |
122 |
|
|
The FreeRADIUS server can use sqlite to authenticate users and do accounting, |
123 |
|
|
and this module is necessary for that. |
124 |
|
|
|
125 |
|
|
%package -n %{libname} |
126 |
|
|
Summary: Libraries for %{name} |
127 |
|
|
Group: System/Libraries |
128 |
|
|
|
129 |
|
|
%description -n %{libname} |
130 |
|
|
Libraries for %{name} |
131 |
|
|
|
132 |
|
|
%package -n %{develname} |
133 |
|
|
Summary: Development headers for %{name} |
134 |
|
|
Group: Development/C |
135 |
|
|
Requires: %{libname} = %{version}-%{release} |
136 |
|
|
Obsoletes: %{mklibname -d %{name} 1} |
137 |
|
|
Provides: freeradius-devel = %{version}-%{release} |
138 |
|
|
Obsoletes: freeradius-devel |
139 |
|
|
|
140 |
|
|
%description -n %{develname} |
141 |
|
|
Development headers and libraries for %{name} |
142 |
|
|
|
143 |
|
|
%package web |
144 |
|
|
Summary: Web based administration interface for freeradius |
145 |
|
|
Group: System/Servers |
146 |
|
|
Requires: apache-mod_php |
147 |
|
|
Requires: freeradius |
148 |
|
|
Requires: php-mysql |
149 |
|
|
Requires: net-snmp-mibs |
150 |
|
|
Requires: net-snmp-utils |
151 |
|
|
Provides: dialup_admin = %{version}-%{release} |
152 |
|
|
Obsoletes: dialup_admin |
153 |
|
|
|
154 |
|
|
%description web |
155 |
|
|
dialup_admin is a web based administration interface for the freeradius radius |
156 |
|
|
server. It is written in PHP4. It is modular and right now it assumes that user |
157 |
|
|
information is stored in an ldap server or an sql database and accounting in an |
158 |
|
|
sql server. |
159 |
|
|
|
160 |
|
|
%prep |
161 |
|
|
%setup -q -n %{name}-server-%{version} |
162 |
|
|
|
163 |
|
|
# fix strange perms |
164 |
|
|
find . -type d -perm 0700 -exec chmod 755 {} \; |
165 |
|
|
find . -type f -perm 0555 -exec chmod 755 {} \; |
166 |
|
|
find . -type f -perm 0444 -exec chmod 644 {} \; |
167 |
|
|
|
168 |
|
|
%patch0 -p0 -b .config |
169 |
|
|
%patch4 -p0 -b .peroyvind |
170 |
|
|
%patch6 -p1 -b .avoid-version |
171 |
|
|
%patch7 -p1 -b .version-info |
172 |
|
|
%patch8 -p0 -b .samba3 |
173 |
|
|
%patch9 -p1 -b .ltdl_no_la |
174 |
|
|
%patch10 -p0 -b .linkage_fix |
175 |
|
|
%patch11 -p1 -b .file-temp |
176 |
luigiwalser |
389189 |
%patch1 -p1 |
177 |
luigiwalser |
304022 |
%patch12 -p0 -b .CVE-2012-3547 |
178 |
luigiwalser |
389189 |
%patch13 -p1 -b .CVE-2011-4966 |
179 |
nanardon |
160914 |
|
180 |
|
|
# For pre release only: |
181 |
|
|
perl -pi -e 's,\$\(RADIUSD_VERSION\),%{version},' doc/Makefile |
182 |
|
|
perl -pi -e 's,\$\(RADIUSD_VERSION\),%{version},' doc/rfc/Makefile |
183 |
|
|
|
184 |
|
|
# fix path |
185 |
|
|
find . -type f | xargs perl -pi -e "s|/usr/local/bin|%{_bindir}|g" |
186 |
|
|
|
187 |
|
|
# move php3 to php |
188 |
|
|
find dialup_admin -name '*.php3' | while read php3; do |
189 |
|
|
mv $php3 ${php3%%.php3}.php |
190 |
|
|
done |
191 |
|
|
|
192 |
|
|
find dialup_admin -type f | xargs perl -pi -e "s|\.php3|\.php|g" |
193 |
|
|
perl -pi -e "s|\\\${bindir}|\\\${bindir}/|g" dialup_admin/Makefile |
194 |
|
|
|
195 |
|
|
%build |
196 |
|
|
%serverbuild |
197 |
|
|
|
198 |
|
|
export CFLAGS="$CFLAGS -fPIC -DLDAP_DEPRECATED" |
199 |
|
|
export CXXFLAGS="$CXXFLAGS -fPIC -DLDAP_DEPRECATED" |
200 |
|
|
|
201 |
|
|
%configure2_5x \ |
202 |
|
|
--with-gnu-ld \ |
203 |
|
|
--with-threads \ |
204 |
|
|
--with-thread-pool \ |
205 |
|
|
--with-system-libtool \ |
206 |
fwang |
170840 |
--disable-static \ |
207 |
nanardon |
160914 |
--libdir=%{_libdir}/%{name} \ |
208 |
|
|
--libexecdir=%{_libdir}/%{name} \ |
209 |
|
|
--localstatedir=%{_var} \ |
210 |
|
|
--with-logdir=%{_var}/log/radius \ |
211 |
|
|
--disable-ltdl-install \ |
212 |
|
|
--with-ltdl-lib=%{_libdir} \ |
213 |
|
|
--with-ltdl-include=%{_includedir} \ |
214 |
|
|
--with-radacctdir=%{_var}/log/radius/radacct \ |
215 |
|
|
--with-raddbdir=%{_sysconfdir}/raddb \ |
216 |
|
|
--with-static-modules="" \ |
217 |
|
|
--with-experimental-modules \ |
218 |
|
|
--with-large-files \ |
219 |
|
|
--with-rlm-dbm-lib-dir=%{_libdir} \ |
220 |
|
|
--with-rlm-eap-peap-lib-dir=%{_libdir} \ |
221 |
|
|
--with-openssl-libraries=%{_libdir} \ |
222 |
|
|
--with-rlm-krb5-lib-dir=%{_libdir} \ |
223 |
|
|
--with-rlm-ldap-lib-dir=%{_libdir} \ |
224 |
|
|
--with-rlm-ldap-include-dir=%{_includedir}/ldap \ |
225 |
|
|
--with-mysql-include-dir=%{_includedir}/mysql \ |
226 |
|
|
--with-mysql-lib-dir=%{_libdir}/mysql \ |
227 |
|
|
--with-mysql-dir=%{_prefix} \ |
228 |
|
|
--with-rlm-sql-postgresql-lib-dir=%{_libdir}/mysql \ |
229 |
|
|
--with-rlm-sql-postgresql-include-dir=%{_includedir}/pgsql \ |
230 |
|
|
--with-unixodbc-lib-dir=%{_libdir} \ |
231 |
|
|
--with-unixodbc-dir=%{_prefix} \ |
232 |
|
|
--without-rlm_sql_db2 \ |
233 |
|
|
--without-rlm_sql_firebird \ |
234 |
|
|
--without-rlm_sql_freetds \ |
235 |
|
|
--without-rlm_sql_iodbc \ |
236 |
|
|
--without-rlm_sql_oracle \ |
237 |
|
|
--without-rlm_sql_sybase \ |
238 |
|
|
|
239 |
|
|
# enable this one with a hack... |
240 |
|
|
perl -pi \ |
241 |
|
|
-e "s|^TARGET.*|TARGET=rlm_dbm|g;" \ |
242 |
|
|
-e "s|^SRCS.*|SRCS=rlm_dbm.c|g;" \ |
243 |
|
|
-e "s|^RLM_UTILS.*|RLM_UTILS=rlm_dbm_parser rlm_dbm_cat|g;" \ |
244 |
|
|
-e "s|^RLM_CFLAGS.*|RLM_CFLAGS=-I%{_includedir}/gdbm -DHAVE_GDBM_NDBM_H|g;" \ |
245 |
|
|
-e "s|^RLM_LIBS.*|RLM_LIBS=-L%{_libdir} -lgdbm -lgdbm_compat|g;" \ |
246 |
|
|
-e "s|^RLM_INSTALL.*|RLM_INSTALL=rlm_dbm_install|g;" \ |
247 |
|
|
src/modules/rlm_dbm/Makefile |
248 |
|
|
|
249 |
|
|
%if "%{_lib}" == "lib64" |
250 |
|
|
perl -pi -e 's:sys_lib_search_path_spec=.*:sys_lib_search_path_spec="/lib64 /usr/lib64 /usr/local/lib64":' libtool |
251 |
|
|
%endif |
252 |
|
|
|
253 |
|
|
make |
254 |
|
|
|
255 |
|
|
%install |
256 |
|
|
rm -rf %{buildroot} |
257 |
|
|
|
258 |
|
|
%__install -d -m 755 %{buildroot}%{_sysconfdir}/logrotate.d |
259 |
|
|
%__install -d -m 755 %{buildroot}%{_sysconfdir}/pam.d |
260 |
|
|
%__install -d -m 755 %{buildroot}%{_sysconfdir}/sysconfig |
261 |
|
|
%__install -d -m 755 %{buildroot}%{_initrddir} |
262 |
|
|
%__install -d -m 755 %{buildroot}%{_localstatedir}/run/radiusd |
263 |
|
|
%__install -d -m 755 %{buildroot}%{_includedir}/%{name} |
264 |
guillomovitch |
223238 |
%__install -d -m 755 %{buildroot}%{_unitdir} |
265 |
nanardon |
160914 |
|
266 |
|
|
make install R=%{buildroot} |
267 |
|
|
|
268 |
|
|
# fix default configuration file permissions |
269 |
|
|
find %{buildroot}%{_sysconfdir}/raddb -type d | xargs chmod 755 |
270 |
|
|
find %{buildroot}%{_sysconfdir}/raddb -type f | xargs chmod 644 |
271 |
|
|
chmod 640 \ |
272 |
|
|
%{buildroot}%{_sysconfdir}/raddb/acct_users \ |
273 |
|
|
%{buildroot}%{_sysconfdir}/raddb/acct_users \ |
274 |
|
|
%{buildroot}%{_sysconfdir}/raddb/clients.conf \ |
275 |
|
|
%{buildroot}%{_sysconfdir}/raddb/preproxy_users \ |
276 |
|
|
%{buildroot}%{_sysconfdir}/raddb/users \ |
277 |
|
|
|
278 |
|
|
# install headers |
279 |
|
|
%__install -m 644 src/include/* %{buildroot}%{_includedir}/%{name}/ |
280 |
|
|
|
281 |
|
|
# install distribution scripts and stuff... |
282 |
guillomovitch |
223238 |
%__install -m 644 %{SOURCE3} %{buildroot}%{_sysconfdir}/pam.d/radiusd |
283 |
|
|
%__install -m 755 %{SOURCE4} %{buildroot}%{_initrddir}/radiusd |
284 |
|
|
%__install -m 644 %{SOURCE5} %{buildroot}%{_sysconfdir}/logrotate.d/radiusd |
285 |
nanardon |
160914 |
%__install -m 644 %{SOURCE6} %{buildroot}%{_sysconfdir}/sysconfig/radiusd |
286 |
guillomovitch |
223238 |
%__install -m 644 %{SOURCE7} %{buildroot}%{_unitdir}/radiusd.service |
287 |
nanardon |
160914 |
|
288 |
|
|
# put the mibs in place |
289 |
|
|
%__install -d -m 755 %{buildroot}%{_datadir}/snmp/mibs |
290 |
|
|
%__install -m 644 mibs/RADIUS* %{buildroot}%{_datadir}/snmp/mibs/ |
291 |
|
|
|
292 |
|
|
# fix ghostfiles |
293 |
|
|
touch %{buildroot}%{_localstatedir}/log/radius/radutmp |
294 |
|
|
touch %{buildroot}%{_localstatedir}/log/radius/radwtmp |
295 |
|
|
touch %{buildroot}%{_localstatedir}/log/radius/radius.log |
296 |
|
|
|
297 |
|
|
# remove unneeded stuff |
298 |
|
|
%__rm -f %{buildroot}%{_sbindir}/rc.radiusd |
299 |
|
|
%__rm -f %{buildroot}%{_includedir}/%{name}/Makefile |
300 |
|
|
%__rm -f %{buildroot}%{_sysconfdir}/raddb/Makefile |
301 |
|
|
%__rm -rf %{buildroot}%{_sysconfdir}/raddb/sql/mssql |
302 |
|
|
%__rm -rf %{buildroot}%{_sysconfdir}/raddb/sql/oracle |
303 |
|
|
%__rm -f %{buildroot}%{_sysconfdir}/raddb/certs/* |
304 |
|
|
|
305 |
fwang |
176825 |
find %{buildroot} -name '*.la' -delete |
306 |
fwang |
176831 |
rm -f %{buildroot}%{_libdir}/%{name}/*.a |
307 |
fwang |
176825 |
|
308 |
nanardon |
160914 |
# include more docs |
309 |
|
|
%__cp src/modules/rlm_sql/README README.sql |
310 |
|
|
%__cp src/modules/rlm_cram/Readme Readme.cram |
311 |
|
|
%__cp src/modules/rlm_cram/Standard.draft . |
312 |
|
|
%__cp src/modules/rlm_cram/dictionary.sandy . |
313 |
|
|
%__cp src/modules/rlm_smb/README README.smb |
314 |
|
|
|
315 |
|
|
# put specific docs and files where they belong (prepare for doc inclusion) |
316 |
|
|
%__cp doc/rlm_krb5 . |
317 |
|
|
%__cp doc/RADIUS*.schema . |
318 |
|
|
%__cp doc/rlm_ldap . |
319 |
|
|
|
320 |
|
|
%multiarch_includes %{buildroot}%{_includedir}/freeradius/build-radpaths-h |
321 |
|
|
|
322 |
|
|
%multiarch_includes %{buildroot}%{_includedir}/freeradius/radpaths.h |
323 |
|
|
|
324 |
|
|
# the web cruft |
325 |
|
|
install -d %{buildroot}%{_datadir}/%{name}-web |
326 |
|
|
install -d %{buildroot}%{_sysconfdir}/%{name}-web |
327 |
|
|
|
328 |
|
|
pushd dialup_admin |
329 |
|
|
make \ |
330 |
|
|
DIALUP_PREFIX=%{buildroot}%{_datadir}/freeradius-web \ |
331 |
|
|
DIALUP_DOCDIR=%{buildroot}%{_docdir}/freeradius-web \ |
332 |
|
|
DIALUP_CONFDIR=%{buildroot}%{_sysconfdir}/freeradius-web \ |
333 |
|
|
install |
334 |
|
|
popd |
335 |
|
|
|
336 |
|
|
find %{buildroot}%{_datadir}/freeradius-web | xargs perl -pi \ |
337 |
|
|
-e 's|\.\./conf/config\.php|%{_sysconfdir}/freeradius-web/config\.php|g;' \ |
338 |
|
|
-e 's|%{buildroot}||g;' |
339 |
|
|
|
340 |
|
|
find %{buildroot}%{_sysconfdir}/freeradius-web | xargs perl -pi \ |
341 |
|
|
-e 's|\.\./conf/admin\.conf|%{_sysconfdir}/freeradius-web/admin\.conf|g;' \ |
342 |
|
|
-e 's|%{buildroot}||g;' |
343 |
|
|
|
344 |
|
|
find %{buildroot}%{_datadir}/freeradius-web/bin | xargs perl -pi \ |
345 |
|
|
-e 's|/data/local/dialupadmin/conf/admin\.conf|%{_sysconfdir}/freeradius-web/admin\.conf|g;' \ |
346 |
|
|
-e 's|/logs/radiusd/accounting|%{_localstatedir}/log/radius/accounting|g;' |
347 |
|
|
|
348 |
|
|
mv %{buildroot}%{_datadir}/freeradius-web/bin/* %{buildroot}%{_bindir} |
349 |
|
|
mv %{buildroot}%{_bindir}/snmpfinger \ |
350 |
|
|
%{buildroot}%{_bindir}/freeradius-web-snmpfinger |
351 |
|
|
|
352 |
|
|
# fix a simple redirector |
353 |
|
|
cat > %{buildroot}%{_datadir}/%{name}-web/index.html << EOF |
354 |
|
|
<html> |
355 |
|
|
<head> |
356 |
|
|
<title></title> |
357 |
|
|
<meta HTTP-EQUIV="REFRESH" CONTENT="0; URL=htdocs/index.html"> |
358 |
|
|
</head> |
359 |
|
|
<body> |
360 |
|
|
</body> |
361 |
|
|
</html> |
362 |
|
|
EOF |
363 |
|
|
|
364 |
|
|
# apache configuration |
365 |
|
|
install -d %{buildroot}%{_webappconfdir} |
366 |
|
|
cat > %{buildroot}%{_webappconfdir}/%{name}-web.conf <<EOF |
367 |
|
|
# %{name} Apache configuration |
368 |
|
|
Alias /%{name}-web %{_datadir}/%{name}-web |
369 |
|
|
|
370 |
|
|
<Directory %{_datadir}/%{name}-web> |
371 |
|
|
Allow from all |
372 |
|
|
</Directory> |
373 |
|
|
EOF |
374 |
|
|
|
375 |
|
|
# cron stuff |
376 |
|
|
install -d %{buildroot}%{_sysconfdir}/cron.daily |
377 |
|
|
cat > %{buildroot}%{_sysconfdir}/cron.daily/%{name}-web <<EOF |
378 |
|
|
#!/bin/sh |
379 |
|
|
%{_bindir}/tot_stats >/dev/null 2>&1 |
380 |
|
|
%{_bindir}/monthly_tot_stats >/dev/null 2>&1 |
381 |
|
|
EOF |
382 |
|
|
chmod 755 %{buildroot}%{_sysconfdir}/cron.daily/%{name}-web |
383 |
|
|
|
384 |
|
|
install -d %{buildroot}%{_sysconfdir}/cron.monthly |
385 |
|
|
cat > %{buildroot}%{_sysconfdir}/cron.monthly/%{name}-web <<EOF |
386 |
|
|
#!/bin/sh |
387 |
|
|
%{_bindir}/truncate_radacct >/dev/null 2>&1 |
388 |
|
|
%{_bindir}/clean_radacct >/dev/null 2>&1 |
389 |
|
|
EOF |
390 |
|
|
chmod 755 %{buildroot}%{_sysconfdir}/cron.monthly/%{name}-web |
391 |
|
|
|
392 |
|
|
# cleanup |
393 |
|
|
rm -rf %{buildroot}%{_docdir}/%{name} |
394 |
|
|
rm -rf %{buildroot}%{_docdir}/freeradius-web |
395 |
|
|
rm -rf %{buildroot}%{_datadir}/freeradius-web/bin |
396 |
|
|
rm -rf %{buildroot}%{_datadir}/freeradius-web/sql |
397 |
|
|
rm -f %{buildroot}%{_bindir}/dialup_admin.cron |
398 |
|
|
|
399 |
|
|
%pre |
400 |
|
|
%_pre_useradd radius %{_localstatedir}/log/radius/radacct /bin/false |
401 |
|
|
|
402 |
|
|
%post |
403 |
|
|
%_post_service radiusd |
404 |
|
|
%create_ghostfile %{_localstatedir}/log/radius/radutmp radius radius 0644 |
405 |
|
|
%create_ghostfile %{_localstatedir}/log/radius/radwtmp radius radius 0644 |
406 |
|
|
%create_ghostfile %{_localstatedir}/log/radius/radius.log radius radius 0644 |
407 |
|
|
%_create_ssl_certificate radiusd -g radius |
408 |
|
|
if [ $1 = 1 ]; then |
409 |
|
|
openssl dhparam -out %{_sysconfdir}/raddb/certs/dh 1024 2>&1 >/dev/null |
410 |
|
|
dd if=/dev/urandom of=%{_sysconfdir}/raddb/certs/random count=10 2>&1 >/dev/null |
411 |
|
|
chgrp radius %{_sysconfdir}/raddb/certs/random |
412 |
|
|
fi |
413 |
|
|
|
414 |
|
|
%preun |
415 |
|
|
%_preun_service radiusd |
416 |
|
|
|
417 |
|
|
%postun |
418 |
|
|
%_postun_userdel radius |
419 |
|
|
|
420 |
|
|
%files |
421 |
|
|
%doc doc COPYRIGHT CREDITS INSTALL LICENSE README |
422 |
|
|
%doc README.sql README.smb Readme.cram Standard.draft dictionary.sandy |
423 |
|
|
%{_initrddir}/radiusd |
424 |
guillomovitch |
223238 |
%{_unitdir}/radiusd.service |
425 |
nanardon |
160914 |
%config(noreplace) %{_sysconfdir}/pam.d/radiusd |
426 |
|
|
%config(noreplace) %{_sysconfdir}/logrotate.d/radiusd |
427 |
|
|
%config(noreplace) %{_sysconfdir}/sysconfig/radiusd |
428 |
|
|
%dir %{_sysconfdir}/raddb |
429 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/attrs |
430 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/attrs.access_reject |
431 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/attrs.access_challenge |
432 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/attrs.accounting_response |
433 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/attrs.pre-proxy |
434 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/dictionary* |
435 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/experimental.conf |
436 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/example.pl |
437 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/hints |
438 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/huntgroups |
439 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/radiusd.conf |
440 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/policy.conf |
441 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/policy.txt |
442 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/proxy.conf |
443 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/eap.conf |
444 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sql.conf |
445 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sqlippool.conf |
446 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/templates.conf |
447 |
|
|
# those contains passwords |
448 |
|
|
%config(noreplace) %attr(0640,root,radius) %{_sysconfdir}/raddb/acct_users |
449 |
|
|
%config(noreplace) %attr(0640,root,radius) %{_sysconfdir}/raddb/clients.conf |
450 |
|
|
%config(noreplace) %attr(0640,root,radius) %{_sysconfdir}/raddb/preproxy_users |
451 |
|
|
%config(noreplace) %attr(0640,root,radius) %{_sysconfdir}/raddb/users |
452 |
|
|
%dir %{_sysconfdir}/raddb/certs |
453 |
|
|
%dir %{_sysconfdir}/raddb/sites-available |
454 |
|
|
%dir %{_sysconfdir}/raddb/sites-enabled |
455 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sites-available/* |
456 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sites-enabled/* |
457 |
|
|
%dir %{_sysconfdir}/raddb/modules |
458 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/modules/* |
459 |
|
|
%dir %{_sysconfdir}/raddb/sql |
460 |
|
|
%dir %{_sysconfdir}/raddb/sql/ndb |
461 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sql/ndb/README |
462 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sql/ndb/admin.sql |
463 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sql/ndb/schema.sql |
464 |
|
|
%{_bindir}/radclient |
465 |
|
|
%{_bindir}/radconf2xml |
466 |
|
|
%{_bindir}/radcrypt |
467 |
|
|
%{_bindir}/radeapclient |
468 |
|
|
%{_bindir}/radlast |
469 |
|
|
%{_bindir}/radsniff |
470 |
|
|
%{_bindir}/radsqlrelay |
471 |
|
|
%{_bindir}/radtest |
472 |
|
|
%{_bindir}/radwho |
473 |
|
|
%{_bindir}/radzap |
474 |
|
|
%{_bindir}/rlm_dbm_cat |
475 |
|
|
%{_bindir}/rlm_dbm_parser |
476 |
|
|
%{_bindir}/rlm_ippool_tool |
477 |
|
|
%{_bindir}/smbencrypt |
478 |
|
|
%{_sbindir}/checkrad |
479 |
|
|
%{_sbindir}/raddebug |
480 |
|
|
%{_sbindir}/radiusd |
481 |
|
|
%{_sbindir}/radmin |
482 |
|
|
%{_sbindir}/radwatch |
483 |
|
|
%attr(0755,radius,radius) %dir %{_localstatedir}/log/radius |
484 |
|
|
%attr(0755,radius,radius) %dir %{_localstatedir}/log/radius/radacct |
485 |
|
|
%attr(0755,radius,radius) %dir %{_localstatedir}/run/radiusd |
486 |
|
|
%attr(0644,radius,radius) %ghost %{_localstatedir}/log/radius/radutmp |
487 |
|
|
%attr(0644,radius,radius) %ghost %{_localstatedir}/log/radius/radwtmp |
488 |
|
|
%attr(0644,radius,radius) %ghost %{_localstatedir}/log/radius/radius.log |
489 |
|
|
%{_datadir}/snmp/mibs/* |
490 |
|
|
%{_datadir}/freeradius |
491 |
|
|
%{_mandir}/man*/* |
492 |
|
|
|
493 |
|
|
%files -n %{name}-krb5 |
494 |
|
|
%doc rlm_krb5 |
495 |
|
|
%{_libdir}/%{name}/rlm_krb5.so |
496 |
|
|
|
497 |
|
|
%files -n %{name}-ldap |
498 |
|
|
%doc RADIUS*.schema rlm_ldap doc/examples/openldap.schema |
499 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/ldap.attrmap |
500 |
|
|
%{_libdir}/%{name}/rlm_ldap.so |
501 |
|
|
|
502 |
|
|
%files -n %{name}-postgresql |
503 |
|
|
%doc src/billing |
504 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sql/postgresql |
505 |
|
|
%{_libdir}/%{name}/rlm_sql_postgresql.so |
506 |
|
|
|
507 |
|
|
%files -n %{name}-mysql |
508 |
|
|
%config(noreplace) %{_sysconfdir}/raddb/sql/mysql |
509 |
|
|
%{_libdir}/%{name}/rlm_sql_mysql.so |
510 |
|
|
|
511 |
|
|
%files -n %{name}-unixODBC |
512 |
|
|
%{_libdir}/%{name}/rlm_sql_unixodbc.so |
513 |
|
|
|
514 |
|
|
%files -n %{name}-sqlite |
515 |
|
|
%{_libdir}/%{name}/rlm_sql_sqlite.so |
516 |
|
|
|
517 |
|
|
%files -n %{libname} |
518 |
|
|
%{_libdir}/%{name}/libfreeradius-radius.so.%{major}* |
519 |
|
|
%{_libdir}/%{name}/libfreeradius-eap.so.%{major}* |
520 |
|
|
%{_libdir}/%{name}/rlm_acctlog.so |
521 |
|
|
%{_libdir}/%{name}/rlm_acct_unique.so |
522 |
|
|
%{_libdir}/%{name}/rlm_always.so |
523 |
|
|
%{_libdir}/%{name}/rlm_attr_filter.so |
524 |
|
|
%{_libdir}/%{name}/rlm_attr_rewrite.so |
525 |
|
|
%{_libdir}/%{name}/rlm_caching.so |
526 |
|
|
%{_libdir}/%{name}/rlm_chap.so |
527 |
|
|
%{_libdir}/%{name}/rlm_checkval.so |
528 |
|
|
%{_libdir}/%{name}/rlm_copy_packet.so |
529 |
|
|
%{_libdir}/%{name}/rlm_counter.so |
530 |
|
|
%{_libdir}/%{name}/rlm_cram.so |
531 |
|
|
%{_libdir}/%{name}/rlm_dbm.so |
532 |
|
|
%{_libdir}/%{name}/rlm_detail.so |
533 |
|
|
%{_libdir}/%{name}/rlm_digest.so |
534 |
|
|
%{_libdir}/%{name}/rlm_dynamic_clients.so |
535 |
|
|
%{_libdir}/%{name}/rlm_eap_gtc.so |
536 |
|
|
%{_libdir}/%{name}/rlm_eap_leap.so |
537 |
|
|
%{_libdir}/%{name}/rlm_eap_md5.so |
538 |
|
|
%{_libdir}/%{name}/rlm_eap_mschapv2.so |
539 |
|
|
%{_libdir}/%{name}/rlm_eap_peap.so |
540 |
|
|
%{_libdir}/%{name}/rlm_eap_sim.so |
541 |
|
|
%{_libdir}/%{name}/rlm_eap.so |
542 |
|
|
%{_libdir}/%{name}/rlm_eap_tls.so |
543 |
|
|
%{_libdir}/%{name}/rlm_eap_ttls.so |
544 |
|
|
%{_libdir}/%{name}/rlm_example.so |
545 |
|
|
%{_libdir}/%{name}/rlm_exec.so |
546 |
|
|
%{_libdir}/%{name}/rlm_expiration.so |
547 |
|
|
%{_libdir}/%{name}/rlm_expr.so |
548 |
|
|
%{_libdir}/%{name}/rlm_fastusers.so |
549 |
|
|
%{_libdir}/%{name}/rlm_files.so |
550 |
|
|
%{_libdir}/%{name}/rlm_ippool.so |
551 |
|
|
%{_libdir}/%{name}/rlm_jradius.so |
552 |
|
|
%{_libdir}/%{name}/rlm_linelog.so |
553 |
|
|
%{_libdir}/%{name}/rlm_logintime.so |
554 |
|
|
%{_libdir}/%{name}/rlm_mschap.so |
555 |
|
|
%{_libdir}/%{name}/rlm_otp.so |
556 |
|
|
%{_libdir}/%{name}/rlm_pam.so |
557 |
|
|
%{_libdir}/%{name}/rlm_pap.so |
558 |
|
|
%{_libdir}/%{name}/rlm_passwd.so |
559 |
|
|
%{_libdir}/%{name}/rlm_perl.so |
560 |
|
|
%{_libdir}/%{name}/rlm_policy.so |
561 |
|
|
%{_libdir}/%{name}/rlm_preprocess.so |
562 |
|
|
%{_libdir}/%{name}/rlm_protocol_filter.so |
563 |
|
|
%{_libdir}/%{name}/rlm_python.so |
564 |
|
|
%{_libdir}/%{name}/rlm_radutmp.so |
565 |
|
|
%{_libdir}/%{name}/rlm_realm.so |
566 |
|
|
%{_libdir}/%{name}/rlm_replicate.so |
567 |
|
|
%{_libdir}/%{name}/rlm_ruby.so |
568 |
|
|
%{_libdir}/%{name}/rlm_sim_files.so |
569 |
|
|
%{_libdir}/%{name}/rlm_smsotp.so |
570 |
|
|
%{_libdir}/%{name}/rlm_soh.so |
571 |
|
|
%{_libdir}/%{name}/rlm_sqlcounter.so |
572 |
|
|
%{_libdir}/%{name}/rlm_sqlhpwippool.so |
573 |
|
|
%{_libdir}/%{name}/rlm_sqlippool.so |
574 |
|
|
%{_libdir}/%{name}/rlm_sql_log.so |
575 |
|
|
%{_libdir}/%{name}/rlm_sql.so |
576 |
|
|
%{_libdir}/%{name}/rlm_unix.so |
577 |
|
|
%{_libdir}/%{name}/rlm_wimax.so |
578 |
|
|
|
579 |
|
|
%files -n %{develname} |
580 |
|
|
%doc todo |
581 |
|
|
%{multiarch_includedir}/freeradius/build-radpaths-h |
582 |
|
|
%{multiarch_includedir}/freeradius/radpaths.h |
583 |
|
|
%{_includedir}/%{name} |
584 |
|
|
%{_libdir}/%{name}/libfreeradius-radius.so |
585 |
|
|
%{_libdir}/%{name}/libfreeradius-eap.so |
586 |
|
|
|
587 |
|
|
%files -n %{name}-web |
588 |
|
|
%doc dialup_admin/sql/mysql dialup_admin/sql/postgresql dialup_admin/sql/oracle |
589 |
|
|
%doc dialup_admin/doc/AUTHORS dialup_admin/doc/FAQ dialup_admin/doc/HELP_WANTED |
590 |
|
|
%doc dialup_admin/doc/HOWTO dialup_admin/doc/TODO dialup_admin/Changelog |
591 |
|
|
%doc dialup_admin/README dialup_admin/bin/Changelog.* |
592 |
|
|
%config(noreplace) %{_sysconfdir}/cron.daily/%{name}-web |
593 |
|
|
%config(noreplace) %{_sysconfdir}/cron.monthly/%{name}-web |
594 |
|
|
%config(noreplace) %{_webappconfdir}/%{name}-web.conf |
595 |
|
|
%dir %{_sysconfdir}/%{name}-web |
596 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/accounting.attrs |
597 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/auth.request |
598 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/default.vals |
599 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/extra.ldap-attrmap |
600 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/sql.attrmap |
601 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/sql.attrs |
602 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/user_edit.attrs |
603 |
|
|
%config(noreplace) %{_sysconfdir}/%{name}-web/username.mappings |
604 |
|
|
# those contains passwords |
605 |
|
|
%config(noreplace) %attr(0640,root,apache) %{_sysconfdir}/%{name}-web/admin.conf |
606 |
|
|
%config(noreplace) %attr(0640,root,apache) %{_sysconfdir}/%{name}-web/captions.conf |
607 |
|
|
%config(noreplace) %attr(0640,root,apache) %{_sysconfdir}/%{name}-web/naslist.conf |
608 |
|
|
%config(noreplace) %attr(0640,root,apache) %{_sysconfdir}/%{name}-web/config.php |
609 |
|
|
%{_bindir}/backup_radacct |
610 |
|
|
%{_bindir}/clean_radacct |
611 |
|
|
%{_bindir}/clearsession |
612 |
|
|
%{_bindir}/freeradius-web-snmpfinger |
613 |
|
|
%{_bindir}/log_badlogins |
614 |
|
|
%{_bindir}/monthly_tot_stats |
615 |
|
|
%{_bindir}/showmodem |
616 |
|
|
%{_bindir}/sqlrelay_query |
617 |
|
|
%{_bindir}/tot_stats |
618 |
|
|
%{_bindir}/truncate_radacct |
619 |
|
|
%{_datadir}/%{name}-web |