1 Summary: System wide CA certificates resource for a specific product
2 Name: ca-certificates-ext
6 Group: Security/Certificate Management
7 Source0: %{name}-%{version}.tar.gz
9 BuildRequires: ca-certificates-devel
11 BuildRequires: coreutils
12 BuildRequires: findutils
14 Requires: security-config
15 Requires: ca-certificates
18 Utilities for system wide CA certificate installation or deinstallation for a specific product
21 %define user_name security_fw
22 %define group_name security_fw
23 %define smack_domain_name System::Shared
26 %define ro_data_dir %{?TZ_SYS_RO_SHARE:%TZ_SYS_RO_SHARE}%{!?TZ_SYS_RO_SHARE:%_datadir}
27 %define certs_ext_dir %{ro_data_dir}/%{name}
28 %define certs_ext_add %{certs_ext_dir}/certs_add
29 %define certs_ext_del %{certs_ext_dir}/certs_del
36 %cmake . -DVERSION=%version \
37 -DCERTS_EXT_DIR=%{certs_ext_dir} \
38 -DCERTS_EXT_ADD=%{certs_ext_add} \
39 -DCERTS_EXT_DEL=%{certs_ext_del}
45 # remove README file before processing
46 rm %{certs_ext_add}/README
47 rm %{certs_ext_del}/README
49 # add certificates for a specific product
50 find %{certs_ext_add} -type f -exec cp {} %{TZ_SYS_RO_CA_CERTS_ORIG} \;
51 # delete certificates not to be used in a specific product
52 DEL_LIST=`find %{certs_ext_del} -type f -printf "%f "`
53 for cert in ${DEL_LIST}
55 rm -f %{TZ_SYS_RO_CA_CERTS_ORIG}/${cert}
58 # regenerate symbolic files and bundle files
59 %{TZ_SYS_RO_CA_CERTS_SCRIPT}/concat-cacerts.sh \
60 %{TZ_SYS_RO_CA_CERTS_ORIG} \
63 %{TZ_SYS_RO_CA_CERTS_SCRIPT}/gen-symlinks.sh \
66 %{TZ_SYS_RO_CA_CERTS} \
67 %{TZ_SYS_RO_CA_CERTS_ORIG} \
69 %{TZ_SYS_RO_CA_BUNDLE}
72 rm -rf %{certs_ext_dir}
75 %manifest %{name}.manifest
78 %attr(444, root, root) %{certs_ext_add}/*
80 %attr(444, root, root) %{certs_ext_del}/*