Overview

File ipe-policy.spec of Package ipe-policy

# needssslcertforbuild
# needsrootforbuild

%if 0%{?fedora}
%global debug_package %{nil}
%endif

Name:           ipe-policy
Version:        0.0.1
Release:        0
Summary:        signed IPE policy
License:        GPL-2.0-or-later
Group:          Development/Tools/Other
Source0:        %{name}_%{version}.tar.gz
BuildRoot:      %{_tmppath}/%{name}-%{version}-build
BuildArch:      noarch
BuildRequires:  systemd
%if 0%{?suse_version}
BuildRequires:  systemd-experimental
%endif

%description
This package provides a signed IPE policy

%prep
%autosetup -p1
mkdir -p %{name}-%{version}

%build

%install

mkdir -p hashes/ %{buildroot}/etc/ipe/

if [ ! -f $RPM_SOURCE_DIR/hashes.cpio.rsasign.sig ]; then
	cp ipe-policy hashes/
	pushd hashes/
	find . -type f | cpio -H newc -o >$RPM_SOURCE_DIR/../OTHER/hashes.cpio.rsasign
	popd
	cp $RPM_SOURCE_DIR/ipe-policy*tar* $RPM_SOURCE_DIR/ipe-policy*spec ipe-policy $RPM_SOURCE_DIR/../OTHER/

	# Otherwise build will fail
	touch %{buildroot}/etc/ipe/ipe-policy.p7b
else
	pushd hashes/
	cpio -idm <$RPM_SOURCE_DIR/hashes.cpio.rsasign.sig
	popd

	PATH=/usr/lib/systemd/:$PATH systemd-keyutil --certificate $RPM_SOURCE_DIR/_projectcert.crt --output %{buildroot}/etc/ipe/ipe-policy.p7b --content $RPM_SOURCE_DIR/ipe-policy --signature hashes/ipe-policy.sig pkcs7
fi

%files
/etc/ipe/ipe-policy.p7b
%dir /etc/ipe/

%changelog
* Tue Mar 11 2025 Luca Boccassi <bluca@debian.org>
- Initial version
openSUSE Build Service is sponsored by
Places