trousers-0.3.13-11 and strongswan-5.6.2-2

git-svn-id: http://trac.vinelinux.org/repos/projects/specs@11578 ec354946-7b23-47d6-9f5a-488ba84defc7

s/strongswan/strongswan-vl.spec

@@ -0,0 +1,760 @@
+%bcond_with systemd
+%bcond_with fips2
+%bcond_without tss
+
+%global _unpackaged_files_terminate_build 1
+%global _hardened_build 0
+#%%define prerelease dr1
+
+Name:           strongswan
+Version:        5.6.2
+Release:        2%{?_dist_release}
+Summary:        An OpenSource IPsec-based VPN and TNC solution
+License:        GPLv2+
+URL:            http://www.strongswan.org/
+Vendor:         Project Vine
+Distribution:   Vine Linux
+Packager:       tomop
+Source0:        http://download.strongswan.org/%{name}-%{version}%{?prerelease}.tar.bz2
+Source1000:     strongswan.init
+Patch1:         strongswan-5.6.0-uintptr_t.patch
+
+# only needed for pre-release versions
+#BuildRequires:  autoconf automake
+
+BuildRequires:  gmp-devel
+BuildRequires:  curl-devel
+BuildRequires:  openldap-devel
+BuildRequires:  openssl-devel
+BuildRequires:  sqlite3-devel
+BuildRequires:  gettext-devel
+BuildRequires:  libxml2-devel
+BuildRequires:  pam-devel
+BuildRequires:  libgcrypt-devel
+BuildRequires:  iptables-devel
+%if %{with tss}
+BuildRequires:  trousers-devel
+BuildRequires:  json-c-devel
+%endif
+
+%if "%{?_dist_release}" != "vl6"
+BuildRequires:  NetworkManager-libnm-devel
+%endif
+
+%if %{with systemd}
+BuildRequires:  systemd-devel
+Requires(post): systemd
+Requires(preun): systemd
+Requires(postun): systemd
+%else
+Requires(post): /sbin/chkconfig
+Requires(preun): /sbin/chkconfig
+Requires(postun): /sbin/chkconfig
+%endif
+
+%description
+The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key
+exchange protocols in conjunction with the native NETKEY IPsec stack of the
+Linux kernel.
+
+%package libipsec
+Summary: Strongswan's libipsec backend
+%description libipsec
+The kernel-libipsec plugin provides an IPsec backend that works entirely
+in userland, using TUN devices and its own IPsec implementation libipsec.
+
+%package charon-nm
+Summary:        NetworkManager plugin for Strongswan
+Requires:       dbus
+Obsoletes:      %{name}-NetworkManager < 0:5.0.4-5
+Conflicts:      %{name}-NetworkManger < 0:5.0.4-5
+%description charon-nm
+NetworkManager plugin integrates a subset of Strongswan capabilities
+to NetworkManager.
+
+%if %{with tss}
+%package tnc-imcvs
+Summary: Trusted network connect (TNC)'s IMC/IMV functionality
+Requires: %{name} = %{version}
+%description tnc-imcvs
+This package provides Trusted Network Connect's (TNC) architecture support.
+It includes support for TNC client and server (IF-TNCCS), IMC and IMV message
+exchange (IF-M), interface between IMC/IMV and TNC client/server (IF-IMC
+and IF-IMV). It also includes PTS based IMC/IMV for TPM based remote
+attestation, SWID IMC/IMV, and OS IMC/IMV. It's IMC/IMV dynamic libraries
+modules can be used by any third party TNC Client/Server implementation
+possessing a standard IF-IMC/IMV interface. In addition, it implements
+PT-TLS to support TNC over TLS.
+%endif
+
+%prep
+%setup -q -n %{name}-%{version}%{?prerelease}
+%patch1 -p1
+
+%build
+# only for snapshots
+#autoreconf
+
+# --with-ipsecdir moves internal commands to /usr/libexec/strongswan
+# --bindir moves 'pki' command to /usr/libexec/strongswan
+# See: http://wiki.strongswan.org/issues/552
+# too broken to enable:    --enable-sha3 --enable-rdrand --enable-connmark --enable-forecast
+%configure --disable-static \
+    --with-ipsec-script=strongswan \
+    --sysconfdir=%{_sysconfdir}/strongswan \
+    --with-ipsecdir=%{_libexecdir}/strongswan \
+    --bindir=%{_libexecdir}/strongswan \
+    --with-ipseclibdir=%{_libdir}/strongswan \
+%if %{with fips2}
+    --with-fips-mode=2 \
+%endif
+%if "%{?_dist_release}" != "vl6"
+    --enable-nm \
+%endif
+    --enable-openssl \
+    --enable-unity \
+    --enable-ctr \
+    --enable-ccm \
+    --enable-gcm \
+    --enable-chapoly \
+    --enable-md4 \
+    --enable-gcrypt \
+    --enable-newhope \
+    --enable-xauth-eap \
+    --enable-xauth-pam \
+    --enable-xauth-noauth \
+    --enable-eap-identity \
+    --enable-eap-md5 \
+    --enable-eap-gtc \
+    --enable-eap-tls \
+    --enable-eap-ttls \
+    --enable-eap-peap \
+    --enable-eap-mschapv2 \
+    --enable-eap-tnc \
+    --enable-eap-sim \
+    --enable-eap-sim-file \
+    --enable-eap-aka \
+    --enable-eap-aka-3gpp \
+    --enable-eap-aka-3gpp2 \
+    --enable-eap-dynamic \
+    --enable-eap-radius \
+    --enable-ext-auth \
+    --enable-ipseckey \
+    --enable-pkcs11 \
+    --enable-farp \
+    --enable-dhcp \
+    --enable-ha \
+    --enable-led \
+    --enable-sqlite \
+    --enable-tnc-ifmap \
+    --enable-tnc-pdp \
+    --enable-tnc-imc \
+    --enable-tnc-imv \
+    --enable-tnccs-20 \
+    --enable-tnccs-11 \
+    --enable-tnccs-dynamic \
+    --enable-curl \
+    --enable-cmd \
+    --enable-acert \
+    --enable-vici \
+    --enable-swanctl \
+    --enable-duplicheck \
+%if %{with tss}
+    --enable-tss-trousers \
+    --enable-aikgen \
+    --enable-tpm \
+    --enable-imc-test \
+    --enable-imv-test \
+    --enable-imc-scanner \
+    --enable-imv-scanner  \
+    --enable-imc-attestation \
+    --enable-imv-attestation \
+    --enable-imv-os \
+    --enable-imc-os \
+    --enable-imc-swid \
+    --enable-imv-swid \
+    --enable-imc-swima \
+    --enable-imv-swima \
+    --enable-imc-hcd \
+    --enable-imv-hcd \
+%endif
+%ifarch x86_64 %{ix86}
+    --enable-aesni \
+%endif
+%if %{with systemd}
+    --enable-systemd \
+%endif
+    --enable-kernel-libipsec
+
+
+
+make %{?_smp_mflags}
+
+%install
+rm -rf %{buildroot}
+
+make install DESTDIR=%{buildroot}
+
+%if "%{?_dist_release}" != "vl6"
+mv %{buildroot}%{_sysconfdir}/strongswan/dbus-1 %{buildroot}%{_sysconfdir}/
+%endif
+
+# prefix man pages
+for i in %{buildroot}%{_mandir}/*/*; do
+    if echo "$i" | grep -vq '/strongswan[^\/]*$'; then
+        mv "$i" "`echo "$i" | sed -re 's|/([^/]+)$|/strongswan_\1|'`"
+    fi
+done
+find %{buildroot} -type f -name '*.la' -delete
+# delete unwanted library files - no consumers, so no -devel package
+rm %{buildroot}%{_libdir}/strongswan/*.so
+# fix config permissions
+chmod 644 %{buildroot}%{_sysconfdir}/%{name}/%{name}.conf
+
+# Create ipsec.d directory tree.
+install -d -m 700 %{buildroot}%{_sysconfdir}/%{name}/ipsec.d
+for i in aacerts acerts certs cacerts crls ocspcerts private reqs; do
+    install -d -m 700 %{buildroot}%{_sysconfdir}/%{name}/ipsec.d/${i}
+done
+
+%if ! %{with systemd}
+mkdir -p %{buildroot}%{_initdir}
+install -m755 %{SOURCE1000} %{buildroot}%{_initdir}/ipsec
+%endif
+
+
+%post
+%if %{with systemd}
+%systemd_post %{name}.service
+%else
+/sbin/chkconfig --add ipsec
+%endif
+
+%preun
+%if %{with systemd}
+%systemd_preun %{name}.service
+%else
+if [ $1 -eq 0 ]; then 
+  /sbin/service ipsec stop
+  /sbin/chkconfig --del ipsec
+fi
+%endif
+
+%postun
+%if %{with systemd}
+%systemd_postun_with_restart %{name}.service
+%else
+if [ $1 -gt 0 ]; then 
+  /sbin/service ipsec condrestart
+fi
+%endif
+
+%files
+%doc README NEWS TODO ChangeLog
+%{!?_licensedir:%global license %%doc}
+%license COPYING
+%dir %attr(0700,root,root) %{_sysconfdir}/strongswan
+%config(noreplace) %{_sysconfdir}/strongswan/*
+%dir %{_libdir}/strongswan
+%dir %{_libdir}/strongswan/plugins
+%dir %{_libexecdir}/strongswan
+%{_sbindir}/charon-cmd
+%{_sbindir}/strongswan
+%{_sbindir}/swanctl
+%{_libdir}/strongswan/*.so.*
+%exclude %{_libdir}/strongswan/libipsec.so.*
+%{_libdir}/strongswan/plugins/*.so
+%exclude %{_libdir}/strongswan/plugins/libstrongswan-kernel-libipsec.so
+%{_libexecdir}/strongswan/*
+%if "%{?_dist_release}" != "vl6"
+%exclude %{_libexecdir}/strongswan/charon-nm
+%endif
+%{_mandir}/man?/*.gz
+%{_datadir}/strongswan/templates/config/
+%if %{with tss}
+%exclude %{_libdir}/strongswan/imcvs
+%exclude %{_libdir}/strongswan/libimcv.so.*
+%exclude %{_libdir}/strongswan/libtnccs.so.*
+%exclude %{_libdir}/strongswan/libradius.so.*
+%exclude %{_libdir}/strongswan/plugins/libstrongswan-pkcs7.so
+%exclude %{_libdir}/strongswan/plugins/libstrongswan-sqlite.so
+%exclude %{_libdir}/strongswan/plugins/libstrongswan-*tnc*.so
+%exclude %{_libdir}/strongswan/plugins/libstrongswan-eap-radius.so
+%exclude %{_libexecdir}/strongswan/attest
+%exclude %{_libexecdir}/strongswan/pt-tls-client
+%{_datadir}/strongswan/templates/database/
+%exclude %dir %{_datadir}/strongswan/swidtag
+%endif
+%if %{with systemd}
+%{_sbindir}/charon-systemd
+%{_unitdir}/strongswan.service
+%{_unitdir}/strongswan-swanctl.service
+%else
+%{_initdir}/ipsec
+%endif
+
+%if %{with tss}
+%files tnc-imcvs
+%{_sbindir}/sw-collector
+%{_sbindir}/sec-updater
+%dir %{_libdir}/strongswan/imcvs
+%dir %{_libdir}/strongswan/plugins
+%{_libdir}/strongswan/libimcv.so.*
+%{_libdir}/strongswan/libtnccs.so.*
+%{_libdir}/strongswan/libradius.so.*
+%{_libdir}/strongswan/plugins/libstrongswan-pkcs7.so
+%{_libdir}/strongswan/plugins/libstrongswan-sqlite.so
+%{_libdir}/strongswan/plugins/libstrongswan-*tnc*.so
+%{_libdir}/strongswan/plugins/libstrongswan-eap-radius.so
+%{_libexecdir}/strongswan/attest
+%{_libexecdir}/strongswan/pt-tls-client
+%dir %{_datadir}/strongswan/swidtag
+%{_datadir}/strongswan/swidtag/*.swidtag
+%endif
+
+%files libipsec
+%{_libdir}/strongswan/libipsec.so.*
+%{_libdir}/strongswan/plugins/libstrongswan-kernel-libipsec.so
+
+%if "%{?_dist_release}" != "vl6"
+%files charon-nm
+%doc COPYING
+%{_sysconfdir}/dbus-1/system.d/nm-strongswan-service.conf
+%{_libexecdir}/strongswan/charon-nm
+%endif
+
+%changelog
+* Mon Mar 05 2018 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> - 5.6.2-2
+- initial build for Vine Linux.
+
+* Wed Feb 21 2018 Lubomir Rintel <lkundrak@v3.sk> - 5.6.2-1
+- Updated to 5.6.2 (Dropped libnm-glib use in charon-nm)
+
+* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 5.6.1-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
+
+* Fri Dec 22 2017 Paul Wouters <pwouters@redhat.com> - 5.6.1-1
+- Updated to 5.6.1 (RSA-PSS support)
+
+* Sun Dec 10 2017 Björn Esser <besser82@fedoraproject.org> - 5.6.0-3
+- Rebuilt for libjson-c.so.3
+
+* Fri Dec 01 2017 Lubomir Rintel <lkundrak@v3.sk> - 5.6.0-2
+- Fix the placement of charon-nm D-Bus policy
+
+* Sat Sep 09 2017 Paul Wouters <pwouters@redhat.com> - 5.6.0-1
+- Updated to 5.6.0
+- Fixup configure arguments, enabled a bunch of new features
+- Added new BuildRequires:
+- Fixup Obsolete/Conflicts, use license macro
+- Don't require autoconf/autotools for non-snapshots
+- Remove macro overuse, remove fedora/rhel checks and sysvinit support
+- Make listings/grouping of all plugins/libs to reduce file listing
+
+* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 5.5.3-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
+
+* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 5.5.3-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
+
+* Mon Jun 12 2017 Paul Wouters <pwouters@redhat.com> - 5.5.3-1
+- Updated to 5.5.3
+
+* Sat May 27 2017 Paul Wouters <pwouters@redhat.com> - 5.5.2-1
+- Updated to 5.5.2
+
+* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 5.5.0-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
+
+* Thu Sep 15 2016 Pavel Šimerda <psimerda@redhat.com> - 5.5.0-2
+- Resolves: #1367796 - Enable the unity plugin
+
+* Mon Aug 08 2016 Pavel Šimerda <psimerda@redhat.com> - 5.5.0-1
+- New version 5.5.0
+
+* Wed Jun 22 2016 Pavel Šimerda <psimerda@redhat.com>
+- Enable IKEv2 GCM (requires gcrypt module as well) - merged from f22 by Paul Wouters
+
+* Wed Jun 22 2016 Pavel Šimerda <psimerda@redhat.com> - 5.4.0-1
+- New version 5.4.0
+
+* Thu Mar 03 2016 Pavel Šimerda <psimerda@redhat.com> - 5.3.5-1
+- New version 5.3.5
+
+* Fri Feb 05 2016 Fedora Release Engineering <releng@fedoraproject.org> - 5.3.3-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
+
+* Fri Jan 15 2016 Paul Wouters <pwouters@redhat.com> - 5.3.3-2
+- Enable IKEv2 GCM (requires gcrypt module as well)
+
+* Tue Sep 29 2015 Pavel Šimerda <psimerda@redhat.com> - 5.3.3-1
+- new version 5.3.3
+
+* Thu Sep 24 2015 Pavel Šimerda <psimerda@redhat.com> - 5.3.2-3
+- Resolves: #1264598 - strongswan: many configuration files are not protected
+
+* Fri Jun 19 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.3.2-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
+
+* Tue Jun 09 2015 Pavel Šimerda <psimerda@redhat.com>
+- new version 5.3.2
+
+* Fri Jun 05 2015 Pavel Šimerda <psimerda@redhat.com> - 5.3.1-1
+- new version 5.3.1
+
+* Tue Mar 31 2015 Pavel Šimerda <psimerda@redhat.com> - 5.3.0-1
+- new version 5.3.0
+
+* Fri Feb 20 2015 Avesh Agarwal <avagarwa@redhat.com> - 5.2.2-2
+- Fixes strongswan swanctl service issue rhbz#1193106
+
+* Tue Jan 06 2015 Pavel Šimerda <psimerda@redhat.com> - 5.2.2-1
+- new version 5.2.2
+
+* Thu Dec 18 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.2-0.2.dr1
+- Enabled ccm, and ctr plugins as it seems enabling just openssl does
+  not work for using ccm and ctr algos.
+
+* Mon Dec 8 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.2-0.1.dr1
+- New strongswan developer release 5.2.2dr1
+
+* Mon Nov 24 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.1-2
+- 1167331: Enabled native systemd support.
+- Does not disable old systemd, starter, ipsec.conf support yet.
+
+* Thu Oct 30 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.1-1
+- New upstream release 5.2.1
+
+* Thu Oct 16 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.1-0.2.rc1
+- New upstream release candidate 5.2.1rc1
+
+* Fri Oct 10 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.1-1
+- new version 5.2.1dr1
+
+* Thu Sep 25 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-7
+- use upstream patch for json/json-c dependency
+
+* Thu Sep 25 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-6
+- Resolves: #1146145 - Strongswan is compiled without xauth-noauth plugin
+
+* Mon Aug 18 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.2.0-5
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
+
+* Tue Aug 05 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-4
+- Resolves: #1081804 - enable Kernel IPSec support
+
+* Wed Jul 30 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-3
+- rebuilt
+
+* Tue Jul 29 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-2
+- fix json-c dependency
+
+* Tue Jul 15 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.0-1
+- New upstream release 5.2.0
+- The Attestation IMC/IMV pair supports the IMA-NG
+  measurement format
+- Aikgen tool to generate an Attestation Identity Key bound
+  to a TPM
+- Swanctl tool to provide a portable, complete IKE
+  configuration and control interface for the command
+  line using vici interface with libvici library
+- PT-EAP transport protocol (RFC 7171) for TNC
+- Enabled support for acert for checking X509 attribute certificate
+- Updated patches, removed selinux patch as upstream has fixed it
+  in this release.
+- Updated spec file with minor cleanups
+
+* Thu Jun 26 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-0.4.dr6
+- improve prerelease macro
+
+* Thu Jun 26 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-0.3
+- Resolves: #1111895 - bump to 5.2.0dr6
+
+* Thu Jun 12 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-0.2
+- Related: #1087437 - remove or upstream all patches not specific to fedora/epel
+
+* Thu Jun 12 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0-0.1.dr5
+- fix the pre-release version according to guidelines before it gets branched
+
+* Fri Jun 06 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0dr5-1
+- new version 5.2.0dr5
+- add json-c-devel to build deps
+
+* Mon May 26 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0dr4-3
+- merge two related patches
+
+* Mon May 26 2014 Pavel Šimerda <psimerda@redhat.com> - 5.2.0dr4-2
+- clean up the patches a bit
+
+* Thu May 22 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.2.0dr4-1
+- New upstream developer release 5.2.0dr4
+- Attestation IMV/IMC supports IMA-NG measurement format now
+- Aikgen tool to generate an Attestation Identity Key bound
+  to a TPM
+- PT-EAP transport protocol (RFC 7171) for TNC
+- vici plugin provides IKE Configuration Interface for charon
+- Enabled support for acert for checking X509 attribute certificate
+- Updated patches
+- Updated spec file with minor cleanups
+
+* Tue Apr 15 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.3-1
+- new version 5.1.3
+
+* Mon Apr 14 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.3rc1-1
+- new version 5.1.3rc1
+
+* Mon Mar 24 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.2-4
+- #1069928 - updated libexec patch.
+
+* Tue Mar 18 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.2-3
+- fixed el6 initscript
+- fixed pki directory location
+
+* Fri Mar 14 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.2-2
+- clean up the specfile a bit
+- replace the initscript patch with an individual initscript
+- patch to build for epel6
+
+* Mon Mar 03 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.2-1
+- #1071353 - bump to 5.1.2
+- #1071338 - strongswan is compiled without xauth-pam plugin
+- remove obsolete patches
+- sent all patches upstream
+- added comments to all patches
+- don't touch the config with sed
+
+* Thu Feb 20 2014 Avesh Agarwal <avagarwa@redhat.com> - 5.1.1-6
+- Fixed full hardening for strongswan (full relro and PIE).
+  The previous macros had a typo and did not work
+  (see bz#1067119).
+- Fixed tnc package description to reflect the current state of
+  the package.
+- Fixed pki binary and moved it to /usr/libexece/strongswan as
+  others binaries are there too.
+
+* Wed Feb 19 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.1-5
+- #903638 - SELinux is preventing /usr/sbin/xtables-multi from 'read' accesses on the chr_file /dev/random
+
+* Thu Jan 09 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.1-4
+- Removed redundant patches and *.spec commands caused by branch merging
+
+* Wed Jan 08 2014 Pavel Šimerda <psimerda@redhat.com> - 5.1.1-3
+- rebuilt
+
+* Mon Dec 2 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.1.1-2
+- Resolves: 973315
+- Resolves: 1036844
+
+* Fri Nov 1 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.1.1-1
+- Support for PT-TLS  (RFC 6876)
+- Support for SWID IMC/IMV
+- Support for command line IKE client charon-cmd
+- Changed location of pki to /usr/bin
+- Added swid tags files
+- Added man pages for pki and charon-cmd
+- Renamed pki to strongswan-pki to avoid conflict with
+  pki-core/pki-tools package.
+- Update local patches
+- Fixes CVE-2013-6075
+- Fixes CVE-2013-6076
+- Fixed autoconf/automake issue as configure.ac got changed
+  and it required running autoreconf during the build process.
+- added strongswan signature file to the sources.
+
+* Thu Sep 12 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.1.0-3
+- Fixed initialization crash of IMV and IMC particularly
+  attestation imv/imc as libstrongswas was not getting
+  initialized.
+
+* Fri Aug 30 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.1.0-2
+- Enabled fips support
+- Enabled TNC's ifmap support
+- Enabled TNC's pdp support
+- Fixed hardocded package name in this spec file
+
+* Wed Aug 7 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.1.0-1
+- rhbz#981429: New upstream release
+- Fixes CVE-2013-5018: rhbz#991216, rhbz#991215
+- Fixes rhbz#991859 failed to build in rawhide
+- Updated local patches and removed which are not needed
+- Fixed errors around charon-nm
+- Added plugins libstrongswan-pkcs12.so, libstrongswan-rc2.so,
+  libstrongswan-sshkey.so
+- Added utility imv_policy_manager
+
+* Thu Jul 25 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 5.0.4-5
+- rename strongswan-NetworkManager to strongswan-charon-nm
+- fix enable_nm macro
+
+* Mon Jul 15 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 5.0.4-4
+- %%files tries to package some of the shared objects as directories (#984437)
+- fix broken systemd unit file (#984300)
+- fix rpmlint error: description-line-too-long
+- fix rpmlint error: macro-in-comment
+- fix rpmlint error: spelling-error Summary(en_US) fuctionality
+- depend on 'systemd' instead of 'systemd-units'
+- use new systemd scriptlet macros
+- NetworkManager subpackage should have a copy of the license (#984490)
+- enable hardened_build as this package meets the PIE criteria (#984429)
+- invocation of "ipsec _updown iptables" is broken as ipsec is renamed
+  to strongswan in this package (#948306)
+- invocation of "ipsec scepclient" is broken as ipsec is renamed
+  to strongswan in this package
+- add /etc/strongswan/ipsec.d and missing subdirectories
+- conditionalize building of strongswan-NetworkManager subpackage as the
+  version of NetworkManager in EL6 is too old (#984497)
+
+* Fri Jun 28 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.0.4-3
+- Patch to fix a major crash issue when Freeradius loads
+  attestatiom-imv and does not initialize libstrongswan which
+  causes crash due to calls to PTS algorithms probing APIs.
+  So this patch fixes the order of initialization. This issues
+  does not occur with charon because libstrongswan gets
+  initialized earlier.
+- Patch that allows to outputs errors when there are permission
+  issues when accessing strongswan.conf.
+- Patch to make loading of modules configurable when libimcv
+  is used in stand alone mode without charon with freeradius
+  and wpa_supplicant.
+
+* Tue Jun 11 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.0.4-2
+- Enabled TNCCS 1.1 protocol
+- Fixed libxm2-devel build dependency
+- Patch to fix the issue with loading of plugins
+
+* Wed May 1 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.0.4-1
+- New upstream release
+- Fixes for CVE-2013-2944
+- Enabled support for OS IMV/IMC
+- Created and applied a patch to disable ECP in fedora, because
+  Openssl in Fedora does not allow ECP_256 and ECP_384. It makes
+  it non-compliant to TCG's PTS standard, but there is no choice
+  right now. see redhat bz # 319901.
+- Enabled Trousers support for TPM based operations.
+
+* Sat Apr 20 2013 Pavel Šimerda <psimerda@redhat.com> - 5.0.3-2
+- Rebuilt for a single specfile for rawhide/f19/f18/el6
+
+* Fri Apr 19 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.0.3-1
+- New upstream release
+- Enabled curl and eap-identity plugins
+- Enabled support for eap-radius plugin.
+
+* Thu Apr 18 2013 Pavel Šimerda <psimerda@redhat.com> - 5.0.2-3
+- Add gettext-devel to BuildRequires because of epel6
+- Remove unnecessary comments
+
+* Tue Mar 19 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.0.2-2
+- Enabled support for eap-radius plugin.
+
+* Mon Mar 11 2013 Avesh Agarwal <avagarwa@redhat.com> - 5.0.2-1
+- Update to upstream release 5.0.2
+- Created sub package strongswan-tnc-imcvs that provides trusted network
+  connect's IMC and IMV funtionality. Specifically it includes PTS 
+  based IMC/IMV for TPM based remote attestation and scanner and test 
+  IMCs and IMVs. The Strongswan's IMC/IMV dynamic libraries can be used 
+  by any third party TNC Client/Server implementation possessing a 
+  standard IF-IMC/IMV interface.
+
+* Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.0.1-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
+
+* Thu Oct 04 2012 Pavel Šimerda <psimerda@redhat.com> - 5.0.1-1
+- Update to release 5.0.1
+
+* Thu Oct 04 2012 Pavel Šimerda <psimerda@redhat.com> - 5.0.0-4.git20120619
+- Add plugins to interoperate with Windows 7 and Android (#862472)
+  (contributed by Haim Gelfenbeyn)
+
+* Sat Jul 21 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.0.0-3.git20120619
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
+
+* Sun Jul 08 2012 Pavel Šimerda <pavlix@pavlix.net> - 5.0.0-2.git20120619
+- Fix configure substitutions in initscripts
+
+* Wed Jul 04 2012 Pavel Šimerda <psimerda@redhat.com> - 5.0.0-1.git20120619
+- Update to current upstream release
+- Comment out all stuff that is only needed for git builds
+- Remove renaming patch from git
+- Improve init patch used for EPEL
+
+* Thu Jun 21 2012 Pavel Šimerda <psimerda@redhat.com> - 5.0.0-0.3.git20120619
+- Build with openssl plugin enabled
+
+* Wed Jun 20 2012 Pavel Šimerda <psimerda@redhat.com> - 5.0.0-0.2.git20120619
+- Add README.Fedora with link to 4.6 to 5.0 migration information
+
+* Tue Jun 19 2012 Pavel Šimerda - 5.0.0-0.1.git20120619
+- Snapshot of upcoming major release
+- Move patches and renaming upstream
+  http://wiki.strongswan.org/issues/194
+  http://wiki.strongswan.org/issues/195
+- Notified upstream about manpage issues
+
+* Tue Jun 19 2012 Pavel Šimerda - 4.6.4-2
+- Make initscript patch more distro-neutral
+- Add links to bugreports for patches
+
+* Fri Jun 01 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.4-1
+- New upstream version (CVE-2012-2388)
+
+* Sat May 26 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.3-2
+- Add --enable-nm to configure
+- Add NetworkManager-devel to BuildRequires
+- Add NetworkManager-glib-devel to BuildRequires
+- Add strongswan-NetworkManager package
+
+* Sat May 26 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.3-1
+- New version of Strongswan
+- Support for RFC 3110 DNSKEY (see upstream changelog)
+- Fix corrupt scriptlets
+
+* Fri Mar 30 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.2-2
+- #808612 - strongswan binary renaming side-effect
+
+* Sun Feb 26 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.2-1
+- New upstream version
+- Changed from .tar.gz to .tar.bz2
+- Added libstrongswan-pkcs8.so
+
+* Wed Feb 15 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-8
+- Fix initscript's status function
+
+* Wed Feb 15 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-7
+- Expand tabs in config files for better readability
+- Add sysvinit script for epel6
+
+* Wed Feb 15 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-6
+- Fix program name in systemd unit file
+
+* Tue Feb 14 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-5
+- Improve fedora/epel conditionals
+
+* Sat Jan 21 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-4
+- Protect configuration directory from ordinary users
+- Add still missing directory /etc/strongswan
+
+* Fri Jan 20 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-3
+- Change directory structure to avoid clashes with Openswan
+- Prefixed all manpages with 'strongswan_'
+- Every file now includes 'strongswan' somewhere in its path
+- Removed conflict with Openswan
+- Finally fix permissions on strongswan.conf
+
+* Fri Jan 20 2012 Pavel Šimerda <pavlix@pavlix.net> - 4.6.1-2
+- Change license tag from GPL to GPLv2+
+- Change permissions on /etc/strongswan.conf to 644
+- Rename ipsec.8 manpage to strongswan.8
+- Fix empty scriptlets for non-fedora builds
+- Add ldconfig scriptlet
+- Add missing directories and files
+
+* Sun Jan 01 2012 Pavel Šimerda <pavlix@pavlix.net - 4.6.1-1
+- Bump to version 4.6.1
+
+* Sun Jan 01 2012 Pavel Šimerda <pavlix@pavlix.net - 4.6.0-3
+- Add systemd scriptlets
+- Add conditions to also support EPEL6
+
+* Sat Dec 10 2011 Pavel Šimerda <pavlix@pavlix.net> - 4.6.0-2
+- Experimental build for development

t/trousers/trousers-vl.spec

@@ -0,0 +1,322 @@
+%bcond_with systemd
+%global _unpackaged_files_terminate_build 1
+
+Name: trousers
+Summary: TCG's Software Stack v1.2
+Version: 0.3.13
+Release: 11%{?_dist_release}
+License: BSD
+Group: System Environment/Libraries
+Url: http://trousers.sourceforge.net
+Vendor: Project Vine
+Distribution: Vine Linux
+Packager: tomop
+
+Source0: http://downloads.sourceforge.net/%{name}/%{name}-%{version}.tar.gz
+Source1: tcsd.service
+Source1000: tcsd.init
+Patch1:  trousers-0.3.13-noinline.patch
+Patch2:  trousers-openssl1.1.patch
+
+BuildRequires: libtool, openssl-devel
+Requires(pre): shadow-utils
+Requires: %{name}-lib%{?_isa} = %{version}-%{release}
+%if %{with systemd}
+BuildRequires: systemd
+Requires(post): systemd-units
+Requires(preun): systemd-units
+Requires(postun): systemd-units
+%endif
+
+%description
+TrouSerS is an implementation of the Trusted Computing Group's Software Stack
+(TSS) specification. You can use TrouSerS to write applications that make use
+of your TPM hardware. TPM hardware can create, store and use RSA keys
+securely (without ever being exposed in memory), verify a platform's software
+state using cryptographic hashes and more.
+
+%package lib
+Summary: TrouSerS libtspi library
+Group: Development/Libraries
+# Needed obsoletes due to the -lib subpackage split
+Obsoletes: trousers < 0.3.13-4
+
+%description lib
+The libtspi library for use in Trusted Computing enabled applications.
+
+%package static
+Summary: TrouSerS TCG Device Driver Library
+Group: Development/Libraries
+Requires: %{name}-devel%{?_isa} = %{version}-%{release}
+
+%description static
+The TCG Device Driver Library (TDDL) used by the TrouSerS tcsd as the
+interface to the TPM's device driver. For more information about writing
+applications to the TDDL interface, see the latest TSS spec at
+https://www.trustedcomputinggroup.org/specs/TSS.
+
+%package devel
+Summary: TrouSerS header files and documentation
+Group: Development/Libraries
+Requires: %{name}-lib%{?_isa} = %{version}-%{release}
+
+%description devel
+Header files and man pages for use in creating Trusted Computing enabled
+applications.
+
+%prep
+%setup -q
+%patch1 -p1 -b .noinline
+#patch2 -p1 -b .ssl1.1
+# fix man page paths
+sed -i -e 's|/var/tpm|/var/lib/tpm|g' -e 's|/usr/local/var|/var|g' man/man5/tcsd.conf.5.in man/man8/tcsd.8.in
+
+%build
+%configure --with-gui=openssl
+make -k %{?_smp_mflags}
+
+%install
+mkdir -p ${RPM_BUILD_ROOT}/%{_localstatedir}/lib/tpm
+make install DESTDIR=${RPM_BUILD_ROOT} INSTALL="install -p"
+rm -f ${RPM_BUILD_ROOT}/%{_libdir}/libtspi.la
+
+%if %{with systemd}
+mkdir -p $RPM_BUILD_ROOT%{_unitdir}
+install -m 0644 %{SOURCE1} $RPM_BUILD_ROOT%{_unitdir}/
+%else
+mkdir -p $RPM_BUILD_ROOT%{_initdir}
+install -m 0755 %{SOURCE1000} $RPM_BUILD_ROOT%{_initdir}/tcsd
+%endif
+
+%pre
+getent group tss >/dev/null || groupadd -g 59 -r tss
+getent passwd tss >/dev/null || \
+useradd -r -u 59 -g tss -d /dev/null -s /sbin/nologin \
+ -c "Account used by the trousers package to sandbox the tcsd daemon" tss
+exit 0
+
+%post
+%if %{with systemd}
+%systemd_post tcsd.service
+%else
+/sbin/chkconfig --add tcsd
+%endif
+
+%preun
+%if %{with systemd}
+%systemd_preun tcsd.service
+%else
+if [ $1 -eq 0 ]; then 
+  /sbin/service tcsd stop
+  /sbin/chkconfig --del tcsd
+fi
+%endif
+
+%postun
+%if %{with systemd}
+%systemd_postun_with_restart tcsd.service 
+%else
+if [ $1 -gt 0 ]; then 
+  /sbin/service tcsd condrestart
+fi
+%endif
+
+%post lib -p /sbin/ldconfig
+
+%postun lib -p /sbin/ldconfig
+
+%files
+%doc README ChangeLog
+%{_sbindir}/tcsd
+%config(noreplace) %attr(0600, tss, tss) %{_sysconfdir}/tcsd.conf
+%{_mandir}/man5/*
+%{_mandir}/man8/*
+%if %{with systemd}
+%attr(644,root,root) %{_unitdir}/tcsd.service
+%else
+%{_initdir}/tcsd
+%endif
+
+%attr(0700, tss, tss) %{_localstatedir}/lib/tpm/
+
+%files lib
+%{!?_licensedir:%global license %%doc}
+%license LICENSE
+%{_libdir}/libtspi.so.?
+%{_libdir}/libtspi.so.?.?.?
+
+%files devel
+# The files to be used by developers, 'trousers-devel'
+%doc doc/LTC-TSS_LLD_08_r2.pdf doc/TSS_programming_SNAFUs.txt
+%attr(0755, root, root) %{_libdir}/libtspi.so
+%{_includedir}/tss/
+%{_includedir}/trousers/
+%{_mandir}/man3/Tspi_*
+
+%files static
+# The only static library shipped by trousers, the TDDL
+%{_libdir}/libtddl.a
+
+%changelog
+* Mon Mar 05 2018 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> - 0.3.13-11
+- initial build for Vine Linux.
+
+* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.3.13-10
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
+
+* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.3.13-9
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
+
+* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 0.3.13-8
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
+
+* Tue Feb  7 2017 Peter Robinson <pbrobinson@fedoraproject.org> 0.3.13-7
+- Add patch for OpenSSL 1.1
+
+* Fri Feb 05 2016 Fedora Release Engineering <releng@fedoraproject.org> - 0.3.13-6
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
+
+* Fri Jun 19 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.13-5
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
+
+* Tue May 26 2015 Tomáš Mráz <tmraz@redhat.com> 0.3.13-4
+- Split libtspi to a trousers-lib subpackage (#1225062)
+- Fix FTBFS with current gcc (drop inline keyword when bogus)
+
+* Mon Aug 18 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.13-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
+
+* Sun Jun 08 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.13-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
+
+* Thu May 15 2014 Steve Grubb <sgrubb@redhat.com> 0.3.13-1
+- New upstream bug fix release
+
+* Tue Mar 18 2014 Steve Grubb <sgrubb@redhat.com> 0.3.11.2-3
+- Fix crash when linking libgnutls and libmysqlclient (#1069079)
+- Don't order tcsd after syslog.target (#1055198)
+
+* Thu Feb 13 2014 Peter Robinson <pbrobinson@fedoraproject.org> 0.3.11.2-2
+- Minor spec cleanups
+
+* Mon Aug 19 2013 Steve Grubb <sgrubb@redhat.com> 0.3.11.2-1
+- New upstream bug fix and license change release
+
+* Sun Aug 04 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.10-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
+
+* Sun Jun 02 2013 Steve Grubb <sgrubb@redhat.com> 0.3.10-3
+- Remove +x bit from service file (#963916)
+
+* Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.10-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
+
+* Tue Sep 25 2012 Steve Grubb <sgrubb@redhat.com> 0.3.10-1
+- New upstream bug fix release
+
+* Thu Aug 30 2012 Steve Grubb <sgrubb@redhat.com> 0.3.9-4
+- Make daemon full RELRO
+
+* Mon Aug 27 2012 Steve Grubb <sgrubb@redhat.com> 0.3.9-3
+- bz #836476 - Provide native systemd service
+
+* Sun Jul 22 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.9-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
+
+* Thu Jun 21 2012 Steve Grubb <sgrubb@redhat.com> 0.3.9-1
+- New upstream bug fix release
+
+* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.6-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
+
+* Fri Apr 08 2011 Steve Grubb <sgrubb@redhat.com> 0.3.6-1
+- New upstream bug fix release
+
+* Thu Feb 10 2011 Miloš Jakubíček <xjakub@fi.muni.cz> - 0.3.4-5
+- Fix paths in man pages, mark them as %%doc -- fix BZ#676394
+
+* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.4-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
+
+* Sat May 01 2010 Miloš Jakubíček <xjakub@fi.muni.cz> - 0.3.4-3
+- Fix init script to conform to Fedora guidelines
+- Do not overuse macros
+
+* Mon Feb 08 2010 Steve Grubb <sgrubb@redhat.com> 0.3.4-2
+- Fix issue freeing a data structure
+
+* Fri Jan 29 2010 Steve Grubb <sgrubb@redhat.com> 0.3.4-1
+- New upstream bug fix release
+- Upstream requested the tpm-emulator patch be dropped
+
+* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 0.3.1-19
+- rebuilt with new openssl
+
+* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.1-18
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
+
+* Thu May 14 2009 Milos Jakubicek <xjakub@fi.muni.cz> - 0.3.1-17
+- Do not overuse macros.
+- Removed unnecessary file requirements on chkconfig, ldconfig and service,
+  now requiring the initscripts and chkconfig packages.
+
+* Wed May 06 2009 Milos Jakubicek <xjakub@fi.muni.cz> - 0.3.1-16
+- Fix a typo in groupadd causing the %%pre scriptlet to fail (resolves BZ#486155).
+
+* Mon Apr 27 2009 Milos Jakubicek <xjakub@fi.muni.cz> - 0.3.1-15
+- Fix FTBFS: added trousers-0.3.1-gcc44.patch
+
+* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.1-14
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
+
+* Sun Jan 18 2009 Tomas Mraz <tmraz@redhat.com> - 0.3.1-13
+- rebuild with new openssl
+
+* Tue Dec 16 2008 David Woodhouse <David.Woodhouse@intel.com> - 0.3.1-12
+- Bump release to avoid wrong tag in rawhide
+
+* Tue Dec 16 2008 David Woodhouse <David.Woodhouse@intel.com> - 0.3.1-11
+- Work around SELinux namespace pollution (#464037)
+- Use SO_REUSEADDR
+- Use TPM emulator if it's available and no hardware is
+
+* Fri Aug 08 2008 Emily Ratliff <ratliff@austin.ibm.com> - 0.3.1-10
+- Use the uid/gid pair assigned to trousers from BZ#457593
+
+* Fri Aug 01 2008 Emily Ratliff <ratliff@austin.ibm.com> - 0.3.1-9
+- Incorporated changes from the RHEL package which were done by Steve Grubb
+
+* Wed Jun 04 2008 Emily Ratliff <ratliff@austin.ibm.com> - 0.3.1-8
+- Fix cast issue preventing successful build on ppc64 and x86_64
+
+* Tue Jun 03 2008 Emily Ratliff <ratliff@austin.ibm.com> - 0.3.1-7
+- Fix for BZ #434267 and #440733. Patch authored by Debora Velarde
+
+* Tue Feb 19 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 0.3.1-6
+- Autorebuild for GCC 4.3
+
+* Mon Dec 17 2007 Kent Yoder <kyoder@users.sf.net> - 0.3.1-5
+- Updated static rpm's comment line (too long)
+
+* Thu Dec 13 2007 Kent Yoder <kyoder@users.sf.net> - 0.3.1-4
+- Updated specfile for RHBZ#323441 comment #28
+
+* Wed Dec 12 2007 Kent Yoder <kyoder@users.sf.net> - 0.3.1-3
+- Updated specfile for RHBZ#323441 comment #22
+
+* Wed Nov 28 2007 Kent Yoder <kyoder@users.sf.net> - 0.3.1-2
+- Updated to include the include dirs in the devel package;
+added the no-install-hooks patch
+
+* Wed Nov 28 2007 Kent Yoder <kyoder@users.sf.net> - 0.3.1-1
+- Updated specfile for RHBZ#323441 comment #13
+
+* Mon Nov 12 2007 Kent Yoder <kyoder@users.sf.net> - 0.3.1
+- Updated specfile for comments in RHBZ#323441
+
+* Wed Jun 07 2006 Kent Yoder <kyoder@users.sf.net> - 0.2.6-1
+- Updated build section to use smp_mflags
+- Removed .la file from installed dest and files section
+
+* Tue Jun 06 2006 Kent Yoder <kyoder@users.sf.net> - 0.2.6-1
+- Initial add of changelog tag for trousers CVS