Blame SPECS/conntrack-tools.spec

27ee02
Name:           conntrack-tools
27ee02
Version:        1.4.4
adac5a
Release:        11%{?dist}
27ee02
Summary:        Manipulate netfilter connection tracking table and run High Availability
27ee02
Group:          System Environment/Base
27ee02
License:        GPLv2
27ee02
URL:            http://conntrack-tools.netfilter.org/
27ee02
Source0:        http://netfilter.org/projects/%{name}/files/%{name}-%{version}.tar.bz2
27ee02
Source1:        conntrackd.service
27ee02
Source2:        conntrackd.conf
27ee02
27ee02
Patch1:		conntrack-tools-1.4.4-nat_tuple-leak.patch
27ee02
Patch2:		conntrack-tools-1.4.4-free-pktb-after-use.patch
7a4b38
Patch3:		conntrack-Fix-CIDR-to-mask-conversion-on-Big-Endian.patch
7a4b38
Patch4:		nfct-helper-Fix-NFCTH_ATTR_PROTO_L4NUM-size.patch
adac5a
Patch5:		0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch
27ee02
27ee02
BuildRequires:  libnfnetlink-devel >= 1.0.1, libnetfilter_conntrack-devel >= 1.0.6
27ee02
BuildRequires:  libnetfilter_cttimeout-devel >= 1.0.0, libnetfilter_cthelper-devel >= 1.0.0
27ee02
BuildRequires:  libmnl-devel >= 1.0.3, libnetfilter_queue-devel >= 1.0.2
27ee02
BuildRequires:  libtirpc-devel systemd-devel
27ee02
BuildRequires:  pkgconfig bison flex
27ee02
Provides:       conntrack = 1.0-1
27ee02
Obsoletes:      conntrack < 1.0-1
27ee02
Requires(post): systemd
27ee02
Requires(preun): systemd
27ee02
Requires(postun): systemd
27ee02
BuildRequires: systemd
27ee02
27ee02
%description
27ee02
With conntrack-tools you can setup a High Availability cluster and
27ee02
synchronize conntrack state between multiple firewalls.
27ee02
27ee02
The conntrack-tools package contains two programs:
27ee02
- conntrack: the command line interface to interact with the connection
27ee02
             tracking system.
27ee02
- conntrackd: the connection tracking userspace daemon that can be used to
27ee02
              deploy highly available GNU/Linux firewalls and collect
27ee02
              statistics of the firewall use.
27ee02
27ee02
conntrack is used to search, list, inspect and maintain the netfilter
27ee02
connection tracking subsystem of the Linux kernel.
27ee02
Using conntrack, you can dump a list of all (or a filtered selection  of)
27ee02
currently tracked connections, delete connections from the state table, 
27ee02
and even add new ones.
27ee02
In addition, you can also monitor connection tracking events, e.g. 
27ee02
show an event message (one line) per newly established connection.
27ee02
27ee02
%prep
27ee02
%setup -q
27ee02
%patch1 -p1
27ee02
%patch2 -p1
7a4b38
%patch3 -p1
7a4b38
%patch4 -p1
adac5a
%patch5 -p1
27ee02
27ee02
%build
27ee02
export LDFLAGS="${LDFLAGS} -Wl,-z,lazy"
27ee02
%configure --disable-static --enable-systemd
27ee02
sed -i "s/DEFAULT_INCLUDES = -I./DEFAULT_INCLUDES = -I. -I\/usr\/include\/tirpc/" src/helpers/Makefile
27ee02
27ee02
%make_build
27ee02
chmod 644 doc/sync/primary-backup.sh
27ee02
rm -f doc/sync/notrack/conntrackd.conf.orig doc/sync/alarm/conntrackd.conf.orig doc/helper/conntrackd.conf.orig
27ee02
27ee02
%install
27ee02
%make_install
27ee02
find %{buildroot} -type f -name "*.la" -exec rm -f {} ';'
27ee02
mkdir -p %{buildroot}%{_sysconfdir}/conntrackd
27ee02
install -d -m 0755 %{buildroot}%{_unitdir}
27ee02
install -m 0644 %{SOURCE1} %{buildroot}%{_unitdir}/
27ee02
install -m 0644 %{SOURCE2} %{buildroot}%{_sysconfdir}/conntrackd/
27ee02
27ee02
%files
27ee02
%license COPYING
27ee02
%doc AUTHORS TODO doc
27ee02
%dir %{_sysconfdir}/conntrackd
27ee02
%config(noreplace) %{_sysconfdir}/conntrackd/conntrackd.conf
27ee02
%{_unitdir}/conntrackd.service
27ee02
%{_sbindir}/conntrack
27ee02
%{_sbindir}/conntrackd
27ee02
%{_sbindir}/nfct
27ee02
%{_mandir}/man5/*
27ee02
%{_mandir}/man8/*
27ee02
%dir %{_libdir}/conntrack-tools
27ee02
%{_libdir}/conntrack-tools/*
27ee02
27ee02
%post
27ee02
%systemd_post conntrackd.service
27ee02
27ee02
%preun
27ee02
%systemd_preun conntrackd.service
27ee02
27ee02
%postun
27ee02
%systemd_postun conntrackd.service 
27ee02
27ee02
%changelog
adac5a
* Fri Nov 04 2022 Phil Sutter <psutter@redhat.com> - 1.4.4-11
adac5a
- conntrackd: set default hashtable buckets and max entries if not specified
adac5a
7a4b38
* Mon Nov 18 2019 Phil Sutter <psutter@redhat.com> - 1.4.4-10
7a4b38
- Fix issues on Big Endian (rhbz#1750744)
7a4b38
27ee02
* Thu Feb 14 2019 Phil Sutter - 1.4.4-9
27ee02
- Fix previous attempt at linking with -z lazy
27ee02
27ee02
* Tue Dec 11 2018 Paul Wouters <pwouters@redhat.com> - 1.4.4-8
27ee02
- Resolves: rhbz#1646885 [RHEL8] nfct tool lib have undefined symbol
27ee02
- enable systemd support
27ee02
27ee02
* Thu Apr 12 2018 Orion Poplawski <orion@nwra.com> - 1.4.4-7
27ee02
- Use libtirpc
27ee02
- Use %%license
27ee02
27ee02
* Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.4.4-6
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
27ee02
27ee02
* Wed Aug 02 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.4.4-5
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
27ee02
27ee02
* Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.4.4-4
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
27ee02
27ee02
* Wed Feb 22 2017 Paul Wouters <pwouters@redhat.com> - 1.4.4-3
27ee02
- Add upstream patches (free pktb after use, nat_tuple leak)
27ee02
27ee02
* Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.4.4-2
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
27ee02
27ee02
* Thu Sep 22 2016 Paul Wouters <pwouters@redhat.com> - 1.4.4-1
27ee02
- Updated to 1.4.4 (rhbz#1370668)
27ee02
- Include new man5 pages
27ee02
27ee02
* Wed Apr 20 2016 Paul Wouters <pwouters@redhat.com> - 1.4.3-1
27ee02
- Resolves: rhbz#1261220 1.4.3 is available
27ee02
- Update source url
27ee02
- Remove incorporated patches
27ee02
27ee02
* Wed Feb 03 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.4.2-11
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
27ee02
27ee02
* Fri Aug 21 2015 Paul Wouters <pwouters@redhat.com> - 1.4.2-10
27ee02
- Resolves: 1255578 - conntrackd could neither be started nor be stopped
27ee02
27ee02
* Tue Aug 18 2015 Paul Wouters <pwouters@redhat.com> - 1.4.2-9
27ee02
- Resolves: rhbz#CVE-2015-6496, rhbz#1253757
27ee02
- Fold in upstream patches since 1.4.2 release up to git 900d7e8
27ee02
- Fold in upstream patch set of 2015-08-18 for coverity issues
27ee02
27ee02
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.2-8
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
27ee02
27ee02
* Mon Jan 12 2015 Paul Komkoff <i@stingr.net> - 1.4.2-7
27ee02
- bz#1181119 - wait for network to be on before starting conntrackd
27ee02
27ee02
* Sun Jan 11 2015 Paul Komkoff <i@stingr.net> - 1.4.2-6
27ee02
- bz#998105 - remove patch residues from doc
27ee02
27ee02
* Sat Aug 16 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.2-5
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
27ee02
27ee02
* Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.2-4
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
27ee02
27ee02
* Sat Dec 21 2013 Paul Komkoff <i@stingr.net> - 1.4.2-3
27ee02
- rebuilt
27ee02
27ee02
* Sat Sep  7 2013 Paul P. Komkoff Jr <i@stingr.net> - 1.4.2-2
27ee02
- bz#850067
27ee02
27ee02
* Sat Sep  7 2013 Paul P. Komkoff Jr <i@stingr.net> - 1.4.2-1
27ee02
- new upstream version
27ee02
27ee02
* Sat Aug 03 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.0-3
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
27ee02
27ee02
* Fri Feb 08 2013 Paul Komkoff <i@stingr.net> - 1.4.0-2
27ee02
- fix bz#909128
27ee02
27ee02
* Mon Nov 26 2012 Paul P. Komkoff Jr <i@stingr.net> - 1.4.0-1
27ee02
- new upstream version
27ee02
27ee02
* Tue Jul 24 2012 Paul P. Komkoff Jr <i@stingr.net> - 1.2.1
27ee02
- new upstream version
27ee02
27ee02
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.1-2
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
27ee02
27ee02
* Mon May 07 2012 Paul Wouters <pwouters@redhat.com> - 1.0.1-1
27ee02
- Updated to 1.0.1
27ee02
- Added daemon using systemd and configuration file
27ee02
- Removed legacy spec requirements
27ee02
- Patch for: parse.c:240:34: error: 'NULL' undeclared 
27ee02
27ee02
* Thu Jan 12 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.0-2
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
27ee02
27ee02
* Thu May  5 2011 Paul P. Komkoff Jr <i@stingr.net> - 1.0.0
27ee02
- new upstream version
27ee02
27ee02
* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.9.15-2
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
27ee02
27ee02
* Fri Nov 19 2010 Paul P. Komkoff Jr <i@stingr.net> - 0.9.15-1
27ee02
- new upstream version
27ee02
27ee02
* Thu Mar 25 2010 Paul P. Komkoff Jr <i@stingr.net> - 0.9.14-1
27ee02
- update, at last
27ee02
27ee02
* Tue Nov 10 2009 Paul P. Komkoff Jr <i@stingr.net> - 0.9.13-2
27ee02
- failed to properly commit the package :(
27ee02
27ee02
* Tue Oct 13 2009 Paul P. Komkoff Jr <i@stingr.net> - 0.9.13-1
27ee02
- new upstream version
27ee02
27ee02
* Fri Jul 24 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.9.12-4
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
27ee02
27ee02
* Sun May 24 2009 Paul P. Komkoff Jr <i@stingr.net> - 0.9.12-3
27ee02
- new upstream version
27ee02
27ee02
* Sun May 24 2009 Paul P. Komkoff Jr <i@stingr.net> - 0.9.12-2
27ee02
- versioning screwup
27ee02
27ee02
* Sun May 24 2009 Paul P. Komkoff Jr <i@stingr.net> - 0.9.12-1
27ee02
- new upstream version
27ee02
27ee02
* Tue Feb 24 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.9.9-2
27ee02
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
27ee02
27ee02
* Tue Jan 13 2009 Paul P. Komkoff Jr <i@stingr.net> - 0.9.9-1
27ee02
- new upstream version
27ee02
27ee02
* Sun Oct 26 2008 Paul P. Komkoff Jr <i@stingr.net> - 0.9.8-1
27ee02
- new upstream version
27ee02
- remove rollup patch
27ee02
27ee02
* Wed Jul 16 2008 Paul P. Komkoff Jr <i@stingr.net> - 0.9.7-2
27ee02
- fix Patch0/%%patch.
27ee02
27ee02
* Wed Jul 16 2008 Paul P. Komkoff Jr <i@stingr.net> - 0.9.7-1
27ee02
- new upstream version
27ee02
27ee02
* Sat Feb 23 2008 Paul P. Komkoff Jr <i@stingr.net> - 0.9.6-0.1.svn7382
27ee02
- new version from svn
27ee02
27ee02
* Fri Feb 22 2008 Paul P. Komkoff Jr <i@stingr.net> - 0.9.5-5
27ee02
- fix the PATH_MAX-related compilation problem
27ee02
27ee02
* Tue Feb 19 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 0.9.5-4
27ee02
- Autorebuild for GCC 4.3
27ee02
27ee02
* Tue Oct 23 2007 Paul P. Komkoff Jr <i@stingr.net> - 0.9.5-3
27ee02
- review fixes
27ee02
27ee02
* Sun Oct 21 2007 Paul P. Komkoff Jr <i@stingr.net> - 0.9.5-2
27ee02
- review fixes
27ee02
27ee02
* Fri Oct 19 2007 Paul P. Komkoff Jr <i@stingr.net> - 0.9.5-1
27ee02
- new upstream version
27ee02
27ee02
* Sun Jul 22 2007 Paul P. Komkoff Jr <i@stingr.net> - 0.9.4-1
27ee02
- replace conntrack with conntrack-tools