1 |
davidg |
1758 |
%if %{?rhel}%{!?rhel:0} <= 5 |
2 |
|
|
%global _initddir %{_initrddir} |
3 |
|
|
%endif |
4 |
|
|
|
5 |
|
|
Name: fetch-crl |
6 |
|
|
Version: @VERSION@ |
7 |
|
|
Release: @RELEASE@%{?dist} |
8 |
|
|
Summary: Certificate Revocation List retrieval tool |
9 |
|
|
|
10 |
|
|
Group: Applications/System |
11 |
|
|
License: Apache 2.0 |
12 |
|
|
URL: https://dist.eugridpma.info/distribution/util/fetch-crl3 |
13 |
|
|
Source: http://www.eugridpma.org/distribution/util/fetch-crl3/%{name}-%{version}.tar.gz |
14 |
|
|
Vendor: Nikhef |
15 |
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) |
16 |
|
|
BuildArch: noarch |
17 |
|
|
|
18 |
|
|
Requires: openssl, perl, perl(LWP), perl(POSIX), perl(File::Temp), perl(Sys::Syslog), perl(strict) perl(vars) |
19 |
|
|
Autoreq: 0 |
20 |
|
|
|
21 |
|
|
Prefix: /usr |
22 |
|
|
|
23 |
|
|
Requires(post): chkconfig |
24 |
|
|
Requires(preun): chkconfig |
25 |
|
|
|
26 |
|
|
%description |
27 |
|
|
The fetch-crl utility will retrieve certificate revocation lists (CRLs) for |
28 |
|
|
a set of installed trust anchors. Using meta-data with URLs and CAs it will |
29 |
|
|
provision CRLs for use by OpenSSL or NSS in their native format (.rX files |
30 |
|
|
or cert8.db files). It supports parallel downloads, and has failover and |
31 |
|
|
caching capabilities to deal with network interruptions. |
32 |
|
|
This associated cron entries can ensure that CRLs are periodically retrieved |
33 |
|
|
from the web sites of the respective Certification Authorities (CAs) or other |
34 |
|
|
repositories. |
35 |
|
|
CA meta-data should be provided in crl_url files or in IGTF-style info files. |
36 |
|
|
|
37 |
|
|
%prep |
38 |
|
|
|
39 |
|
|
%setup |
40 |
|
|
|
41 |
|
|
%build |
42 |
|
|
|
43 |
|
|
%clean |
44 |
|
|
rm -rf $RPM_BUILD_ROOT |
45 |
|
|
|
46 |
|
|
%install |
47 |
|
|
rm -rf $RPM_BUILD_ROOT |
48 |
|
|
make install PREFIX=$RPM_BUILD_ROOT%{_usr} ETC=$RPM_BUILD_ROOT%{_sysconfdir} CACHE=$RPM_BUILD_ROOT%{_localstatedir}/cache |
49 |
|
|
mkdir -p $RPM_BUILD_ROOT/%{_initddir} |
50 |
|
|
install -p -m 755 $RPM_BUILD_ROOT%{_usr}/share/doc/%{name}-%{version}/%{name}-cron.init $RPM_BUILD_ROOT/%{_initddir}/%{name}-cron |
51 |
|
|
install -p -m 755 $RPM_BUILD_ROOT%{_usr}/share/doc/%{name}-%{version}/%{name}-boot.init $RPM_BUILD_ROOT/%{_initddir}/%{name}-boot |
52 |
|
|
mkdir $RPM_BUILD_ROOT/%{_sysconfdir}/cron.d |
53 |
|
|
install -p -m 644 $RPM_BUILD_ROOT%{_usr}/share/doc/%{name}-%{version}/%{name}-cron.cron $RPM_BUILD_ROOT/%{_sysconfdir}/cron.d/%{name}.cron |
54 |
|
|
|
55 |
|
|
%post |
56 |
|
|
# This adds the proper /etc/rc*.d links for the script |
57 |
|
|
/sbin/chkconfig --add %{name}-cron |
58 |
|
|
/sbin/chkconfig --add %{name}-boot |
59 |
|
|
|
60 |
|
|
%preun |
61 |
|
|
if [ $1 = 0 ] ; then |
62 |
|
|
/sbin/service %{name}-cron stop >/dev/null 2>&1 |
63 |
|
|
/sbin/service %{name}-boot stop >/dev/null 2>&1 |
64 |
|
|
/sbin/chkconfig --del %{name}-cron |
65 |
|
|
/sbin/chkconfig --del %{name}-boot |
66 |
|
|
fi |
67 |
|
|
|
68 |
|
|
|
69 |
|
|
%files |
70 |
|
|
%defattr(-,root,root,-) |
71 |
|
|
%{_sbindir}/fetch-crl |
72 |
|
|
%{_initddir}/%{name}-cron |
73 |
|
|
%{_initddir}/%{name}-boot |
74 |
|
|
%{_localstatedir}/cache/fetch-crl |
75 |
davidg |
1804 |
%doc /usr/share/man/man8 |
76 |
davidg |
1758 |
%doc %{_defaultdocdir}/%{name}-%{version} |
77 |
|
|
%config(noreplace) %{_sysconfdir}/fetch-crl.cnf |
78 |
|
|
%config(noreplace) %{_sysconfdir}/cron.d/fetch-crl.cron |
79 |
|
|
|
80 |
|
|
|
81 |
|
|
%changelog |
82 |
|
|
* Fri Jun 11 2010 David Groep <davidg@nikhef.nl> |
83 |
|
|
Initial build of completely rewritten version 3.0 |