Blame SPECS/libssh.spec

17e9d0
%define _hardened_build 1
17e9d0
17e9d0
Name:           libssh
17e9d0
Version:        0.7.1
3cd302
Release:        7%{?dist}
17e9d0
Summary:        A library implementing the SSH protocol
17e9d0
License:        LGPLv2+
17e9d0
URL:            http://www.libssh.org
17e9d0
Group:          System Environment/Libraries
17e9d0
BuildRoot:      %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
17e9d0
17e9d0
Source0:        https://red.libssh.org/attachments/download/154/libssh-0.7.1.tar.xz
17e9d0
17e9d0
Patch1:         libssh-CVE-2016-0739.patch
17e9d0
Patch2:         libssh-0.7.1-fix_agent_bigendian.patch
3cd302
Patch3:         libssh-CVE-2018-10933.patch
3cd302
Patch4:         libssh-SHA256.patch
3cd302
Patch5:         libssh-fix-kbdint.patch
17e9d0
17e9d0
BuildRequires:  cmake
17e9d0
BuildRequires:  doxygen
17e9d0
BuildRequires:  openssl-devel
17e9d0
BuildRequires:  pkgconfig
17e9d0
BuildRequires:  zlib-devel
17e9d0
17e9d0
%description
17e9d0
The ssh library was designed to be used by programmers needing a working SSH
17e9d0
implementation by the mean of a library. The complete control of the client is
17e9d0
made by the programmer. With libssh, you can remotely execute programs, transfer
17e9d0
files, use a secure and transparent tunnel for your remote programs. With its
17e9d0
Secure FTP implementation, you can play with remote files easily, without
17e9d0
third-party programs others than libcrypto (from openssl).
17e9d0
17e9d0
%package devel
17e9d0
Summary:        Development files for %{name}
17e9d0
Group:          Development/Libraries
17e9d0
Requires:       %{name}%{?_isa} = %{version}-%{release}
17e9d0
Requires:       pkgconfig
17e9d0
Requires:       cmake
17e9d0
17e9d0
%description devel
17e9d0
The %{name}-devel package contains libraries and header files for developing
17e9d0
applications that use %{name}.
17e9d0
17e9d0
%prep
17e9d0
%setup -q
17e9d0
%patch1 -p1
17e9d0
%patch2 -p1 -b .libssh-0.7.2-fix_agent_bigendian.patch
3cd302
%patch3 -p1 -b .libssh-CVE-2018-10933.patch
3cd302
%patch4 -p1 -b .libssh-SHA256.patch
3cd302
%patch5 -p1 -b .libssh-fix-kbdint.patch
17e9d0
17e9d0
# Remove examples, they are not packaged and do not build on EPEL 5
17e9d0
sed -i -e 's|add_subdirectory(examples)||g' CMakeLists.txt
17e9d0
rm -rf examples
17e9d0
sed -i -e 's| -pedantic-errors||g' cmake/Modules/DefineCompilerFlags.cmake
17e9d0
17e9d0
%build
17e9d0
if test ! -e "obj"; then
17e9d0
  mkdir obj
17e9d0
fi
17e9d0
pushd obj
17e9d0
17e9d0
%cmake \
17e9d0
    %{_builddir}/%{name}-%{version}
17e9d0
make %{?_smp_mflags} VERBOSE=1 CFLAGS="-no-pedantic-errors"
17e9d0
make doc
17e9d0
17e9d0
popd
17e9d0
17e9d0
%install
17e9d0
pushd obj
17e9d0
make DESTDIR=%{buildroot} install
17e9d0
popd
17e9d0
17e9d0
%post -p /sbin/ldconfig
17e9d0
17e9d0
%postun -p /sbin/ldconfig
17e9d0
17e9d0
%clean
17e9d0
rm -rf %{buildroot}
17e9d0
17e9d0
%files
17e9d0
%doc AUTHORS BSD ChangeLog COPYING README
17e9d0
%{_libdir}/libssh.so.*
17e9d0
%{_libdir}/libssh_threads.so.*
17e9d0
17e9d0
%files devel
17e9d0
%doc obj/doc/html
17e9d0
%{_includedir}/libssh/callbacks.h
17e9d0
%{_includedir}/libssh/legacy.h
17e9d0
%{_includedir}/libssh/libssh.h
17e9d0
%{_includedir}/libssh/libsshpp.hpp
17e9d0
%{_includedir}/libssh/server.h
17e9d0
%{_includedir}/libssh/sftp.h
17e9d0
%{_includedir}/libssh/ssh2.h
17e9d0
%dir  %{_libdir}/cmake/libssh
17e9d0
%{_libdir}/cmake/libssh/libssh-config-version.cmake
17e9d0
%{_libdir}/cmake/libssh/libssh-config.cmake
17e9d0
%{_libdir}/pkgconfig/libssh.pc
17e9d0
%{_libdir}/pkgconfig/libssh_threads.pc
17e9d0
%{_libdir}/libssh.so
17e9d0
%{_libdir}/libssh_threads.so
17e9d0
17e9d0
%changelog
3cd302
* Sun Oct 28 2018 Martin Pitt <mpitt@redhat.com> - 0.7.1-7
3cd302
- resolves: #1637182 - Add SHA256 fingerprint support
3cd302
- Fix regression with keyboard interactive authentication introduced in
3cd302
  previous update
3cd302
3cd302
* Tue Oct 09 2018 Andreas Schneider <asn@redhat.com> - 0.7.1-6
3cd302
- resolves: #1637257 - Fix CVE-2018-10933
3cd302
3cd302
* Thu May 03 2018 - Lokesh Mandvekar <lsm5@redhat.com> - 0.7.1-5
3cd302
- correct bogus date annoyance
3cd302
3cd302
* Thu May 03 2018 - Lokesh Mandvekar <lsm5@redhat.com> - 0.7.1-4
3cd302
- Resolves: #1574670 - bump release tag to have build shipped to
3cd302
client/workstation repos
3cd302
17e9d0
* Wed Mar 22 2017 - Dominik Perpeet <dperpeet@redhat.com> - 0.7.1-3
17e9d0
- Fix agent auth on big endian machines
17e9d0
17e9d0
* Mon Feb 22 2016 - Stef Walter <stefw@redhat.com> - 0.7.1-2
17e9d0
- Security fix for CVE-2016-0739 rhbz#1305971
17e9d0
17e9d0
* Mon Jul 06 2015 - Stef Walter <stefw@redhat.com> - 0.7.1-1
17e9d0
- Updated to 0.7.1 release rhbz#1239085
17e9d0
17e9d0
* Wed Apr 22 2015 - Stef Walter <stefw@redhat.com> - 0.6.4-4
17e9d0
- Updated patch for CVE-2015-3146
17e9d0
17e9d0
* Wed Apr 22 2015 - Stef Walter <stefw@redhat.com> - 0.6.4-3
17e9d0
- Enable _hardened_build
17e9d0
17e9d0
* Tue Apr 21 2015 - Stef Walter <stefw@redhat.com> - 0.6.4-2
17e9d0
- Security fix for CVE-2015-3145.
17e9d0
17e9d0
* Wed Apr 01 2015 - Stef Walter <stefw@redhat.com> - 0.6.4-1
17e9d0
- Security fix for CVE-2014-8132.
17e9d0
17e9d0
* Tue Mar 04 2014 - Andreas Schneider <asn@redhat.com> - 0.6.3-1
17e9d0
- Fix CVE-2014-0017.
17e9d0
17e9d0
* Mon Feb 10 2014 - Andreas Schneider <asn@redhat.com> - 0.6.1-1
17e9d0
- Update to version 0.6.1.
17e9d0
- resolves: #1056757 - Fix scp mode.
17e9d0
- resolves: #1053305 - Fix known_hosts heuristic.
17e9d0
17e9d0
* Wed Jan 08 2014 - Andreas Schneider <asn@redhat.com> - 0.6.0-1
17e9d0
- Update to 0.6.0
17e9d0
17e9d0
* Fri Jul 26 2013 - Andreas Schneider <asn@redhat.com> - 0.5.5-1
17e9d0
- Update to 0.5.5.
17e9d0
- Clenup the spec file.
17e9d0
17e9d0
* Thu Jul 18 2013 Simone Caronni <negativo17@gmail.com> - 0.5.4-5
17e9d0
- Add EPEL 5 support.
17e9d0
- Add Debian patches to enable Doxygen documentation.
17e9d0
17e9d0
* Tue Jul 16 2013 Simone Caronni <negativo17@gmail.com> - 0.5.4-4
17e9d0
- Add patch for #982685.
17e9d0
17e9d0
* Mon Jun 10 2013 Simone Caronni <negativo17@gmail.com> - 0.5.4-3
17e9d0
- Clean up SPEC file and fix rpmlint complaints.
17e9d0
17e9d0
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.5.4-2
17e9d0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
17e9d0
17e9d0
* Wed Jan 23 2013 Petr Lautrbach <plautrba@redhat.com> 0.5.4-1
17e9d0
- update to security 0.5.4 release
17e9d0
- CVE-2013-0176 (#894407)
17e9d0
17e9d0
* Tue Nov 20 2012 Petr Lautrbach <plautrba@redhat.com> 0.5.3-1
17e9d0
- update to security 0.5.3 release (#878465)
17e9d0
17e9d0
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.5.2-2
17e9d0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
17e9d0
17e9d0
* Thu Feb 02 2012 Petr Lautrbach <plautrba@redhat.com> 0.5.2-1
17e9d0
- update to 0.5.2 version (#730270)
17e9d0
17e9d0
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.5.0-2
17e9d0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
17e9d0
17e9d0
* Wed Jun  1 2011 Jan F. Chadima <jchadima@redhat.com> - 0.5.0-1
17e9d0
- bounce versionn to 0.5.0 (#709785)
17e9d0
- the support for protocol v1 is disabled
17e9d0
17e9d0
* Tue Feb 08 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.8-2
17e9d0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
17e9d0
17e9d0
* Wed Jan 19 2011 Jan F. Chadima <jchadima@redhat.com> - 0.4.8-1
17e9d0
- bounce versionn to 0.4.8 (#670456)
17e9d0
17e9d0
* Mon Sep  6 2010 Jan F. Chadima <jchadima@redhat.com> - 0.4.6-1
17e9d0
- bounce versionn to 0.4.6 (#630602)
17e9d0
17e9d0
* Thu Jun  3 2010 Jan F. Chadima <jchadima@redhat.com> - 0.4.4-1
17e9d0
- bounce versionn to 0.4.4 (#598592)
17e9d0
17e9d0
* Wed May 19 2010 Jan F. Chadima <jchadima@redhat.com> - 0.4.3-1
17e9d0
- bounce versionn to 0.4.3 (#593288)
17e9d0
17e9d0
* Tue Mar 16 2010 Jan F. Chadima <jchadima@redhat.com> - 0.4.2-1
17e9d0
- bounce versionn to 0.4.2 (#573972)
17e9d0
17e9d0
* Tue Feb 16 2010 Jan F. Chadima <jchadima@redhat.com> - 0.4.1-1
17e9d0
- bounce versionn to 0.4.1 (#565870)
17e9d0
17e9d0
* Fri Dec 11 2009 Jan F. Chadima <jchadima@redhat.com> - 0.4.0-1
17e9d0
- bounce versionn to 0.4.0 (#541010)
17e9d0
17e9d0
* Thu Nov 26 2009 Jan F. Chadima <jchadima@redhat.com> - 0.3.92-2
17e9d0
- typo in spec file
17e9d0
17e9d0
* Thu Nov 26 2009 Jan F. Chadima <jchadima@redhat.com> - 0.3.92-1
17e9d0
- bounce versionn to 0.3.92 (0.4 beta2) (#541010)
17e9d0
17e9d0
* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 0.2-4
17e9d0
- rebuilt with new openssl
17e9d0
17e9d0
* Sat Jul 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2-3
17e9d0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
17e9d0
17e9d0
* Tue Jun 02 2009 Jan F. Chadima <jchadima@redhat.com> - 0.2-2
17e9d0
- Small changes during review
17e9d0
17e9d0
* Mon Jun 01 2009 Jan F. Chadima <jchadima@redhat.com> - 0.2-1
17e9d0
- Initial build
17e9d0