network/munge: Added (an authentication service).

Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
This commit is contained in:
Emmanuel N. Millán 2015-08-19 05:55:02 +07:00 committed by Willy Sudiarto Raharjo
parent f67e406bc2
commit 6ac3d63979
5 changed files with 181 additions and 0 deletions

17
network/munge/README Normal file
View file

@ -0,0 +1,17 @@
MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service for creating and validating credentials.
It is designed to be highly scalable for use in an HPC cluster environment.
It allows a process to authenticate the UID and GID of another local or remote process
within a group of hosts having common users and groups. These hosts form a security realm
that is defined by a shared cryptographic key. Clients within this security realm can create
and validate credentials without the use of root privileges, reserved ports, or platform-specific methods.
On most platforms, the munged daemon does not require root privileges to run.
If possible, you should run the daemon as a non-privileged user.
This can be specified in the init script /etc/rc.d/rc.munge.
# groupadd -g 310 munge
# useradd -u 310 -d /var/lib/munge -s /bin/false -g munge munge
After installation a secret key file needs to be created. Follow instructions from:
https://github.com/dun/munge/wiki/Installation-Guide#creating-a-secret-key

26
network/munge/doinst.sh Normal file
View file

@ -0,0 +1,26 @@
config() {
NEW="$1"
OLD="$(dirname $NEW)/$(basename $NEW .new)"
# If there's no config file by that name, mv it over:
if [ ! -r $OLD ]; then
mv $NEW $OLD
elif [ "$(cat $OLD | md5sum)" = "$(cat $NEW | md5sum)" ]; then
# toss the redundant copy
rm $NEW
fi
# Otherwise, we leave the .new copy for the admin to consider...
}
preserve_perms() {
NEW="$1"
OLD="$(dirname $NEW)/$(basename $NEW .new)"
if [ -e $OLD ]; then
cp -a $OLD ${NEW}.incoming
cat $NEW > ${NEW}.incoming
mv ${NEW}.incoming $NEW
fi
config $NEW
}
preserve_perms etc/rc.d/rc.munge.new
config etc/default/munge.new

View file

@ -0,0 +1,109 @@
#!/bin/sh -e
# Slackware build script for Munge
# Copyright 2015 Emmanuel N. Millán, Mendoza, Argentina.
# All rights reserved.
#
# Redistribution and use of this script, with or without modification, is
# permitted provided that the following conditions are met:
#
# 1. Redistributions of this script must retain the above copyright
# notice, this list of conditions and the following disclaimer.
#
# THIS SOFTWARE IS PROVIDED BY THE AUTHOR "AS IS" AND ANY EXPRESS OR IMPLIED
# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
# MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
# EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
# PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
# OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
# OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
# ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
PRGNAM=munge
VERSION=${VERSION:-0.5.11}
BUILD=${BUILD:-1}
TAG=${TAG:-_SBo}
DOCS="AUTHORS COPYING COPYING.LESSER DISCLAIMER.LLNS DISCLAIMER.UC \
HISTORY INSTALL JARGON META NEWS PLATFORMS QUICKSTART README README.MULTILIB"
if [ -z "$ARCH" ]; then
case "$( uname -m )" in
i?86) ARCH=i486 ;;
arm*) ARCH=arm ;;
*) ARCH=$( uname -m ) ;;
esac
fi
CWD=$(pwd)
TMP=${TMP:-/tmp/SBo}
PKG=$TMP/package-$PRGNAM
OUTPUT=${OUTPUT:-/tmp}
if [ "$ARCH" = "i486" ]; then
SLKCFLAGS="-O2 -march=i486 -mtune=i686"
LIBDIRSUFFIX=""
elif [ "$ARCH" = "i686" ]; then
SLKCFLAGS="-O2 -march=i686 -mtune=i686"
LIBDIRSUFFIX=""
elif [ "$ARCH" = "x86_64" ]; then
SLKCFLAGS="-O2 -fPIC"
LIBDIRSUFFIX="64"
else
SLKCFLAGS="-O2"
LIBDIRSUFFIX=""
fi
set -e
rm -rf $PKG
mkdir -p $TMP $PKG $OUTPUT
cd $TMP
rm -rf $PRGNAM-$VERSION
tar xvf $CWD/$PRGNAM-$VERSION.tar.bz2
cd $PRGNAM-$VERSION
chown -R root:root .
find -L . \
\( -perm 777 -o -perm 775 -o -perm 750 -o -perm 711 -o -perm 555 \
-o -perm 511 \) -exec chmod 755 {} \; -o \
\( -perm 666 -o -perm 664 -o -perm 640 -o -perm 600 -o -perm 444 \
-o -perm 440 -o -perm 400 \) -exec chmod 644 {} \;
CFLAGS="$SLKCFLAGS" \
CXXFLAGS="$SLKCFLAGS" \
./configure \
--prefix=/usr \
--libdir=/usr/lib${LIBDIRSUFFIX} \
--localstatedir=/var \
--mandir=/usr/man \
--sysconfdir=/etc \
--enable-static=no \
--build=$ARCH-slackware-linux \
--host=$ARCH-slackware-linux
make
make install DESTDIR=$PKG
# Remove systemd files
rm -rf $PKG/usr/lib/systemd/
mv $PKG/etc/rc.d/init.d/munge $PKG/etc/rc.d/rc.munge.new
mv $PKG/etc/default/munge $PKG/etc/default/munge.new
rm -rf $PKG/etc/rc.d/init.d/
find $PKG/usr/man -type f -exec gzip -9 {} \;
for i in $( find $PKG/usr/man -type l ) ; do ln -s $( readlink $i ).gz $i.gz ; rm $i ; done
mkdir -p $PKG/usr/doc/$PRGNAM-$VERSION
cp -a $DOCS $PKG/usr/doc/$PRGNAM-$VERSION
cat $CWD/$PRGNAM.SlackBuild > $PKG/usr/doc/$PRGNAM-$VERSION/$PRGNAM.SlackBuild
mkdir -p $PKG/install
cat $CWD/slack-desc > $PKG/install/slack-desc
cat $CWD/doinst.sh > $PKG/install/doinst.sh
cd $PKG
/sbin/makepkg -l y -c n $OUTPUT/$PRGNAM-$VERSION-$ARCH-$BUILD$TAG.${PKGTYPE:-tgz}

10
network/munge/munge.info Normal file
View file

@ -0,0 +1,10 @@
PRGNAM="munge"
VERSION="0.5.11"
HOMEPAGE="http://dun.github.io/munge/"
DOWNLOAD="https://github.com/dun/munge/releases/download/munge-0.5.11/munge-0.5.11.tar.bz2"
MD5SUM="bd8fca8d5f4c1fcbef1816482d49ee01"
DOWNLOAD_x86_64=""
MD5SUM_x86_64=""
REQUIRES=""
MAINTAINER="Emmanuel N. Millán"
EMAIL="emmanueln@gmail.com"

19
network/munge/slack-desc Normal file
View file

@ -0,0 +1,19 @@
# HOW TO EDIT THIS FILE:
# The "handy ruler" below makes it easier to edit a package description.
# Line up the first '|' above the ':' following the base package name, and
# the '|' on the right side marks the last column you can put a character in.
# You must make exactly 11 lines for the formatting to be correct. It's also
# customary to leave one space after the ':' except on otherwise blank lines.
|-----handy-ruler------------------------------------------------------|
munge: munge (an authentication service)
munge:
munge: MUNGE is an authentication service for creating and validating
munge: credentials. It is designed to be highly scalable for use in an HPC
munge: cluster environment. It allows a process to authenticate the UID and
munge: GID of another local or remote process within a group of hosts having
munge: common users and groups.
munge:
munge:
munge:
munge: http://dun.github.io/munge/