首页 开源 资讯 活动 开源许可证
软件工程云服务
软件代码质量检测云服务 持续集成与部署云服务 社区个性化内容推荐服务 贡献审阅人推荐服务 群体化学习服务 重睛鸟代码扫描工具
Watch 1 Star 0 Fork 41

cuibaobao/haproxy

forked from src-openEuler/haproxy 
代码 Issues 0 Pull Requests 0 Wiki 0 统计
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
该仓库未声明开源许可证文件(LICENSE),使用请关注具体项目描述及其代码上游依赖。
项目仓库所选许可证以仓库主分支所使用许可证为准
克隆/下载
haproxy.spec 4.08 KB
一键复制 编辑 原始数据 按行查看 历史
root 提交于 2020-05-13 12:50 . fix CVE-2020-11100
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136
%define haproxy_user      haproxy

%define haproxy_group     haproxy



%global _hardened_build   1



Name:             haproxy

Version:          1.8.14

Release:          5

Summary:          The Reliable, High Performance TCP/HTTP Load Balancer



License:          GPLv2+

URL:              http://www.haproxy.org/

Source0:          http://www.haproxy.org/download/1.8/src/haproxy-%{version}.tar.gz

Source1:          %{name}.service

Source2:          %{name}.cfg

Source3:          %{name}.logrotate

Source4:          %{name}.sysconfig



Patch6000:	  CVE-2018-20615-BUG-CRITICAL-mux-h2-re-check-the-frame-length-when-P.patch

Patch6001:	  CVE-2018-20103.patch

Patch6002:	  CVE-2018-20102.patch

Patch6003:        CVE-2020-11100.patch



BuildRequires:    gcc lua-devel pcre-devel zlib-devel openssl-devel systemd-devel systemd-units

Requires(pre):    shadow-utils

Requires(post):   systemd

Requires(preun):  systemd

Requires(postun): systemd



%package_help

%description

HAProxy is a free, very fast and reliable solution offering high availability, load balancing,

and proxying for TCP and HTTP-based applications. It is particularly suited for very high traffic

web sites and powers quite a number of the world's most visited ones. 



%prep

%autosetup -n %{name}-%{version} -p1



%build

use_regparm_opt=

%ifarch %ix86 x86_64

use_regparm_opt="USE_REGPARM=1"

%endif



%make_build CPU="generic" TARGET="linux2628" USE_OPENSSL=1 USE_PCRE=1 USE_ZLIB=1 \

    USE_LUA=1 USE_CRYPT_H=1 USE_SYSTEMD=1 USE_LINUX_TPROXY=1 USE_GETADDRINFO=1 ${use_regparm_opt} \

    ADDINC="%{optflags}" ADDLIB="%{__global_ldflags}"



pushd contrib/halog

%make_build ${halog} OPTIMIZE="%{optflags} %{build_ldflags}"

popd



pushd contrib/iprange

%make_build iprange OPTIMIZE="%{optflags} %{build_ldflags}"

popd



%install

install -d %{buildroot}%{_sbindir}

install haproxy  %{buildroot}%{_sbindir}

install -d %{buildroot}%{_mandir}/man1

install -m 644 doc/haproxy.1 %{buildroot}%{_mandir}/man1



pushd %{buildroot}

install -p -D -m 0644 %{SOURCE1} .%{_unitdir}/%{name}.service

install -p -D -m 0644 %{SOURCE2} .%{_sysconfdir}/haproxy/%{name}.cfg

install -p -D -m 0644 %{SOURCE3} .%{_sysconfdir}/logrotate.d/%{name}

install -p -D -m 0644 %{SOURCE4} .%{_sysconfdir}/sysconfig/%{name}

install -d -m 0755 .%{_bindir}

install -d -m 0755 .%{_localstatedir}/lib/haproxy

install -d -m 0755 .%{_datadir}/haproxy

popd



install -p -m 0755 ./contrib/halog/halog %{buildroot}%{_bindir}/halog

install -p -m 0755 ./contrib/iprange/iprange %{buildroot}%{_bindir}/iprange

install -p -m 0644 ./examples/errorfiles/* %{buildroot}%{_datadir}/haproxy



for httpfile in $(find ./examples/errorfiles/ -type f) 

do

    install -p -m 0644 $httpfile %{buildroot}%{_datadir}/haproxy

done



%{__rm} -rf ./examples/errorfiles/

find ./examples/* -type f ! -name "*.cfg" -exec %{__rm} -f "{}" \;



textfiles=$(find ./ -type f -name '*.txt')

for textfile in ${textfiles}

do

    %{__mv} ${textfile} ${textfile}.old

    iconv --from-code ISO8859-1 --to-code UTF-8 --output ${textfile} ${textfile}.old

    %{__rm} -f ${textfile}.old

done



%pre

getent group %{haproxy_group} >/dev/null || groupadd -r %{haproxy_group}

getent passwd %{haproxy_user} >/dev/null || useradd -r -g %{haproxy_user} -d \

    %{_localstatedir}/lib/haproxy -s /sbin/nologin -c "haproxy" %{haproxy_user}

exit 0



%post

%systemd_post %{name}.service



%preun

%systemd_preun %{name}.service



%postun

%systemd_postun_with_restart %{name}.service



%files

%defattr(-,root,root)

%license LICENSE

%dir %{_sysconfdir}/haproxy

%config(noreplace) %{_sysconfdir}/haproxy/%{name}.cfg

%config(noreplace) %{_sysconfdir}/logrotate.d/%{name}

%config(noreplace) %{_sysconfdir}/sysconfig/%{name}

%{_bindir}/halog

%{_bindir}/iprange

%{_sbindir}/%{name}

%{_unitdir}/%{name}.service

%dir %{_localstatedir}/lib/haproxy

%dir %{_datadir}/haproxy

%{_datadir}/haproxy/*



%files help

%defattr(-,root,root)

%doc doc/* examples/* CHANGELOG README ROADMAP VERSION

%{_mandir}/man1/*



%changelog

* Thu May 7 2020 cuibaobao <cuibaobao1@huawei.com> - 1.8.14-5

- Type:cves

- ID: CVE-2020-11100

- SUG:restart

- DESC: fix CVE-2020-11100



* Wed Dec 4 2019 openEuler Buildteam <buildteam@openeuler.org> - 1.8.14-4

- Package init
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化