commit 0ee579d9e323525b1a63a13445d6636a2654e237 Author: CentOS Sources Date: Tue May 7 08:54:45 2019 -0400 import munge-0.5.13-1.el8 diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..f4d645c --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +SOURCES/munge-0.5.13.tar.xz diff --git a/.munge.metadata b/.munge.metadata new file mode 100644 index 0000000..1020c5f --- /dev/null +++ b/.munge.metadata @@ -0,0 +1 @@ +bcb0b89e44c5c0ec21f4bcfaacb4493b82aace61 SOURCES/munge-0.5.13.tar.xz diff --git a/SOURCES/create-munge-key b/SOURCES/create-munge-key new file mode 100644 index 0000000..07dddd4 --- /dev/null +++ b/SOURCES/create-munge-key @@ -0,0 +1,73 @@ +#! /bin/sh +# Generates a random key for munged +# +# (C) 2007 Gennaro Oliva +# You may freely distribute this file under the terms of the GNU General +# Public License, version 2 or later. + +#Setting default random file +randomfile=/dev/urandom + +#Usage message +usage="Try \`$0 -h' for more information." + +#Help message +needhelp() { +echo Usage: create-munge-key [OPTION]... +echo Generates a random key for munged +echo List of options +echo " -f force overwriting existing old key" +echo " -r specify /dev/random as random file for key generation" +echo " default is /dev/urandom" +echo " -h display this help and exit" +} + +#Parsing command line options +while getopts "hrf" options; do + case $options in + r ) randomfile=/dev/random;; + f ) force=yes;; + h ) needhelp + exit 0;; + \? ) echo $usage + exit 1;; + * ) echo $usage + exit 1;; + esac +done + +if [ `id -u` != 0 ] ; then + echo "Please run create-munge-key as root." + exit 1 +fi + + +#Checking random file presence +if [ ! -e $randomfile ] ; then + echo $0: cannot find random file $randomfile + exit 1 +fi + +#Checking if the user want to overwrite existing key file +if [ "$force" != "yes" ] && [ -e /etc/munge/munge.key ] ; then + echo The munge key /etc/munge/munge.key already exists + echo -n "Do you want to overwrite it? (y/N) " + read ans + if [ "$ans" != "y" -a "$ans" != "Y" ] ; then + exit 0 + fi +fi + +#Generating the key file and change owner and permissions +if [ "$randomfile" = "/dev/random" ] ; then + echo Please type on the keyboard, echo move your mouse, + echo utilize the disks. This gives the random number generator + echo a better chance to gain enough entropy. +fi +echo -n "Generating a pseudo-random key using $randomfile " +dd if=$randomfile bs=1 count=1024 > /etc/munge/munge.key \ + 2>/dev/null +chown munge:munge /etc/munge/munge.key +chmod 0400 /etc/munge/munge.key +echo completed. +exit 0 diff --git a/SOURCES/munge.logrotate b/SOURCES/munge.logrotate new file mode 100644 index 0000000..8a92840 --- /dev/null +++ b/SOURCES/munge.logrotate @@ -0,0 +1,5 @@ +/var/log/munge/munged.log { + missingok + notifempty + copytruncate +} diff --git a/SPECS/munge.spec b/SPECS/munge.spec new file mode 100644 index 0000000..8ef61c2 --- /dev/null +++ b/SPECS/munge.spec @@ -0,0 +1,303 @@ +Name: munge +Version: 0.5.13 +Release: 1%{?dist} +Summary: Enables uid & gid authentication across a host cluster + +Group: Applications/System +# The libs and devel package is GPLv3+ and LGPLv3+ where as the main package is GPLv3 only. +License: GPLv3+ and LGPLv3+ +URL: https://dun.github.io/munge/ +Source0: https://github.com/dun/munge/releases/download/munge-%{version}/munge-%{version}.tar.xz +Source1: create-munge-key +Source2: munge.logrotate + +BuildRequires: systemd-units +BuildRequires: zlib-devel bzip2-devel libgcrypt-devel +Requires: munge-libs = %{version}-%{release} + +Requires(pre): shadow-utils + +Requires(post): systemd +Requires(preun): systemd +Requires(postun): systemd + + +%description +MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service for creating +and validating credentials. It is designed to be highly scalable for use +in an HPC cluster environment. +It allows a process to authenticate the UID and GID of another local or +remote process within a group of hosts having common users and groups. +These hosts form a security realm that is defined by a shared cryptographic +key. Clients within this security realm can create and validate credentials +without the use of root privileges, reserved ports, or platform-specific +methods. + +%package devel +Summary: Development files for uid * gid authentication across a host cluster +Group: Applications/System +Requires: munge-libs%{?_isa} = %{version}-%{release} + +%description devel +Header files for developing using MUNGE. + +%package libs +Summary: Runtime libs for uid * gid authentication across a host cluster +Group: Applications/System + +%description libs +Runtime libraries for using MUNGE. + + +%prep +%setup -q +cp -p %{SOURCE1} create-munge-key +cp -p %{SOURCE2} munge.logrotate + +%build +%configure --disable-static --with-crypto-lib=libgcrypt +# Get rid of some rpaths for /usr/sbin +sed -i 's|^hardcode_libdir_flag_spec=.*|hardcode_libdir_flag_spec=""|g' libtool +sed -i 's|^runpath_var=LD_RUN_PATH|runpath_var=DIE_RPATH_DIE|g' libtool +make %{?_smp_mflags} + + +%install + +rm -rf %{buildroot} +make install DESTDIR=%{buildroot} + +# Install extra files. +install -p -m 755 create-munge-key %{buildroot}/%{_sbindir}/create-munge-key +install -p -D -m 644 munge.logrotate %{buildroot}/%{_sysconfdir}/logrotate.d/munge + +# rm unneeded files. +rm %{buildroot}/%{_sysconfdir}/sysconfig/munge +# +rm %{buildroot}/%{_initddir}/munge + +# Exclude .la files +rm %{buildroot}/%{_libdir}/libmunge.la + + +# Fix a few permissions +chmod 700 %{buildroot}%{_var}/lib/munge %{buildroot}%{_var}/log/munge +chmod 700 %{buildroot}%{_sysconfdir}/munge + +# Create and empty key file and pid file to be marked as a ghost file below. +# i.e it is not actually included in the rpm, only the record +# of it is. +touch %{buildroot}%{_var}/run/munge/munged.pid + +%clean +rm -rf %{buildroot} + +%postun +%systemd_postun_with_restart munge.service + +%preun +%systemd_preun munge.service + +%pre +getent group munge >/dev/null || groupadd -r munge +getent passwd munge >/dev/null || \ +useradd -r -g munge -d %{_var}/run/munge -s /sbin/nologin \ + -c "Runs Uid 'N' Gid Emporium" munge +exit 0 + + +%post +%systemd_post munge.service + +%post libs -p /sbin/ldconfig +%postun libs -p /sbin/ldconfig + +%files +%{_bindir}/munge +%{_bindir}/remunge +%{_bindir}/unmunge +%{_sbindir}/munged +%{_sbindir}/create-munge-key +%{_mandir}/man1/munge.1.gz +%{_mandir}/man1/remunge.1.gz +%{_mandir}/man1/unmunge.1.gz +%{_mandir}/man7/munge.7.gz +%{_mandir}/man8/munged.8.gz +%{_unitdir}/munge.service + +%attr(0700,munge,munge) %dir %{_var}/log/munge +%attr(0700,munge,munge) %dir %{_sysconfdir}/munge +%attr(0755,munge,munge) %dir %{_var}/run/munge/ +%attr(0644,munge,munge) %ghost %{_var}/run/munge/munged.pid +%attr(0700,munge,munge) %dir %{_var}/lib/munge + +%config(noreplace) %{_tmpfilesdir}/munge.conf +%config(noreplace) %{_sysconfdir}/logrotate.d/munge + +%doc AUTHORS +%doc JARGON META NEWS QUICKSTART README +%doc doc + +%files libs +%{_libdir}/libmunge.so.2 +%{_libdir}/libmunge.so.2.0.0 +%doc COPYING COPYING.LESSER + +%files devel +%{_includedir}/munge.h +%{_libdir}/libmunge.so +%{_libdir}/pkgconfig/munge.pc +%{_mandir}/man3/munge.3.gz +%{_mandir}/man3/munge_ctx.3.gz +%{_mandir}/man3/munge_ctx_copy.3.gz +%{_mandir}/man3/munge_ctx_create.3.gz +%{_mandir}/man3/munge_ctx_destroy.3.gz +%{_mandir}/man3/munge_ctx_get.3.gz +%{_mandir}/man3/munge_ctx_set.3.gz +%{_mandir}/man3/munge_ctx_strerror.3.gz +%{_mandir}/man3/munge_decode.3.gz +%{_mandir}/man3/munge_encode.3.gz +%{_mandir}/man3/munge_enum.3.gz +%{_mandir}/man3/munge_enum_int_to_str.3.gz +%{_mandir}/man3/munge_enum_is_valid.3.gz +%{_mandir}/man3/munge_enum_str_to_int.3.gz +%{_mandir}/man3/munge_strerror.3.gz + + +%changelog +* Thu Jul 19 2018 Jarod Wilson - 0.5.13-1 +- Update to upstream 0.5.13 release + +* Fri Feb 09 2018 Igor Gnatenko - 0.5.12-9 +- Escape macros in %%changelog + +* Thu Feb 08 2018 Fedora Release Engineering - 0.5.12-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild + +* Thu Aug 03 2017 Fedora Release Engineering - 0.5.12-7 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild + +* Wed Jul 26 2017 Fedora Release Engineering - 0.5.12-6 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild + +* Mon Jun 19 2017 Steve Traylen - 0.5.12-5 +- Use libgcrypt rather than openssl. + +* Fri Feb 10 2017 Fedora Release Engineering - 0.5.12-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild + +* Mon Aug 15 2016 Steve Traylen - 0.5.12-3 +- Correct Licesing strings. + +* Mon Aug 15 2016 Steve Traylen - 0.5.12-2 +- Include COPYING.LESSER also. +- Correct URL homepage + +* Mon Aug 15 2016 Steve Traylen - 0.5.12-1 +- Upstream 0.5.12 +- License now GPLv3+ and also LGPLv3+ for libs. + +* Thu Feb 04 2016 Fedora Release Engineering - 0.5.11-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild + +* Wed Jun 17 2015 Fedora Release Engineering - 0.5.11-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild + +* Sun Aug 17 2014 Fedora Release Engineering - 0.5.11-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild + +* Sat Jun 07 2014 Fedora Release Engineering - 0.5.11-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild + +* Mon Jun 02 2014 Nils Philippsen +- fix typo + +* Fri Aug 30 2013 Steve Traylen - 0.5.11-1 +- Upstream 0.5.11 +- Use upstream's systemd files. +- Fix incorrect dates in changelogs. +- Fix systemd scriptlets #850219 +- Use buildroot macro everywhere. +* Sat Aug 03 2013 Fedora Release Engineering - 0.5.10-6 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild + +* Thu Feb 14 2013 Fedora Release Engineering - 0.5.10-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild + +* Fri Jul 20 2012 Fedora Release Engineering - 0.5.10-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild + +* Sun Feb 5 2012 Steve Traylen - 0.5.10-3 +- Remove EPEL4 support since EOL. +- Change to systemd. + +* Fri Jan 13 2012 Fedora Release Engineering - 0.5.10-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild + +* Sun Feb 27 2011 Steve Traylen - 0.5.10-1 +- Upstream to 0.5.10 +- Add _isa tags to all build requires. +- Remove unused patch munge-correct-service-name.patch, upstream fixed. +- Update and add check-key-exists.patch back. +- Revert back to default CFLAGS. _GNU_SOURCE not needed any more. + +* Tue Feb 08 2011 Fedora Release Engineering - 0.5.9-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild + +* Tue Dec 7 2010 Steve Traylen - 0.5.9-4 +- Upsteam is now hosted on google. +- Mark /var/run/munge as a %%ghost file. #656631 + +* Sat Mar 27 2010 Steve Traylen - 0.5.9-3 +- Release Bump +* Fri Mar 26 2010 Steve Traylen - 0.5.9-2 +- Remove initd-pass-rpmlint.patch, has been applied upstream. +- Remove remove-GPL_LICENSED-cpp.patch, has been applied upstream. +* Fri Mar 26 2010 Steve Traylen - 0.5.9-1 +- New upstream 0.5.9 +* Wed Oct 21 2009 Steve Traylen - 0.5.8-8 +- Requirment on munge removed from munge-libs. +- Explicit exact requirment on munge-libs for munge and munge-devel + added. +* Wed Oct 21 2009 Steve Traylen - 0.5.8-7 +- rhbz#530128 Move runtime libs to a new -libs package. + ldconfig moved to new -libs package as a result. +* Sat Sep 26 2009 Steve Traylen - 0.5.8-6 +- Patch for rhbz #525732 - Loads /etc/sysconfig/munge + correctly. +- Mark pid file as ghost file on oses that support that. +- Permisions on pid directory to 755 + +* Fri Aug 21 2009 Tomas Mraz - 0.5.8-5 +- rebuilt with new openssl + +* Wed Jul 22 2009 Steve Traylen - 0.5.8-4 +- Expand defattr with 4th argument for default directory perms. +- Explict attr for non 0644 files and 0755 directories. + +* Wed Jul 22 2009 Steve Traylen - 0.5.8-3 +- Append -DGNU_SOURCE to default CFLAGS. + +* Wed Jul 22 2009 Steve Traylen - 0.5.8-2 +- Correct License to GPLv2+ +- Move man3 pages to the devel package. +- Remove +x bit from create-munge-key source. +- Preserve timestamps when installing files. +- ldconfig not needed on -devel package. +- Do a condrestart when upgrading. +- Remove redundant files from docs. +- chmod /var/lib/munge /var/log/munge and /etc/munge to 700. +- Apply patch to not error when GPL_LICENSED is not set. +- Patch service script to print error on if munge.key not present + on start only and with a better error. +- Remove dont-exit-form-lib.patch. munge is expecting munge to + do this. +- Remove libgcrypt-devel from BuildRequires, uses openssl by + default anyway. +- Mark the munge.key as a ghost file. + + +* Fri Jun 12 2009 Steve Traylen - 0.5.8-1 +- First Build + +