blob: a62772886f848e8784419f115f55d9ad8cfc60d1 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
|
# Copyright 1999-2011 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/net-dns/djbdns/djbdns-1.05-r23.ebuild,v 1.8 2011/01/29 23:36:52 bangert Exp $
IUSE="doc ipv6 selinux static"
inherit eutils flag-o-matic toolchain-funcs
DESCRIPTION="Excellent high-performance DNS services"
HOMEPAGE="http://cr.yp.to/djbdns.html"
IPV6_PATCH="test23"
SRC_URI="
http://cr.yp.to/djbdns/${P}.tar.gz
ipv6? ( http://www.fefe.de/dns/${P}-${IPV6_PATCH}.diff.bz2 )
"
SLOT="0"
LICENSE="public-domain"
KEYWORDS="alpha amd64 hppa ~mips ppc ppc64 sparc x86"
RDEPEND="
virtual/daemontools
sys-apps/ucspi-tcp
doc? ( app-doc/djbdns-man )
selinux? ( sec-policy/selinux-djbdns )
"
src_unpack() {
unpack "${P}.tar.gz"
cd "${S}"
echo
elog 'Several patches have been dropped from this djbdns ebuild revision.'
elog 'Please use the DJBDNS_PATCH_DIR variable to specify a directory'
elog 'of custom patches.'
elog
elog 'Some of them can be found at http://tinydns.org/ or'
elog 'http://homepages.tesco.net/J.deBoynePollard/Softwares/djbdns/'
elog
epatch \
"${FILESDIR}/headtail.patch" \
"${FILESDIR}/dnsroots.patch" \
"${FILESDIR}/dnstracesort.patch"
# Fix CVE2009-0858
epatch "${FILESDIR}/CVE2009-0858_0001-check-response-domain-name-length.patch"
if use ipv6; then
elog "At present dnstrace does NOT support IPv6. It will"\
"be compiled without IPv6 support."
cp -pR "${S}" "${S}-noipv6"
# Careful -- >=test21 of the IPv6 patch includes the errno patch
epatch "${DISTDIR}/${P}-${IPV6_PATCH}.diff.bz2"
# Fix CVE2008-4392
epatch \
"${FILESDIR}/CVE2008-4392_0001-dnscache-merge-similar-outgoing-queries-ipv6.patch" \
"${FILESDIR}/CVE2008-4392_0002-dnscache-cache-soa-records-ipv6.patch"
cd "${S}-noipv6"
fi
# Fix CVE2008-4392
epatch \
"${FILESDIR}/CVE2008-4392_0001-dnscache-merge-similar-outgoing-queries.patch" \
"${FILESDIR}/CVE2008-4392_0002-dnscache-cache-soa-records.patch"
epatch "${FILESDIR}/${PV}-errno.patch"
if [[ -n "${DJBDNS_PATCH_DIR}" && -d "${DJBDNS_PATCH_DIR}" ]]
then
echo
ewarn "You enabled custom patches from ${DJBDNS_PATCH_DIR}."
ewarn "Be warned that you won't get any support when using "
ewarn "this feature. You're on your own from now!"
echo
ebeep
cd "${S}" && epatch "${DJBDNS_PATCH_DIR}/"*
fi
}
src_compile() {
use static && append-ldflags -static
echo "$(tc-getCC) ${CFLAGS}" > conf-cc
echo "$(tc-getCC) ${LDFLAGS}" > conf-ld
echo "/usr" > conf-home
emake -j1 || die "emake failed"
# If djbdns is compiled with IPv6 support, it breaks dnstrace.
# Therefore we must compile dnstrace separately without IPv6
# support.
if use ipv6; then
elog "Compiling dnstrace without ipv6 support"
cd "${S}-noipv6"
echo "$(tc-getCC) ${CFLAGS}" > conf-cc
echo "$(tc-getCC) ${LDFLAGS}" > conf-ld
echo "/usr" > conf-home
emake -j1 dnstrace || die "emake failed"
fi
}
src_install() {
insinto /etc
doins dnsroots.global
into /usr
dobin *-conf dnscache tinydns walldns rbldns pickdns axfrdns \
*-get *-data *-edit dnsip dnsipq dnsname dnstxt dnsmx \
dnsfilter random-ip dnsqr dnsq dnstrace dnstracesort
use ipv6 && dobin dnsip6 dnsip6q "${S}-noipv6/dnstrace"
dodoc CHANGES FILES README SYSDEPS TARGETS TODO VERSION
dobin "${FILESDIR}/dnscache-setup"
dobin "${FILESDIR}/tinydns-setup"
newbin "${FILESDIR}/djbdns-setup-r17" djbdns-setup
}
pkg_setup() {
# The nofiles group is provided by baselayout
enewuser dnscache -1 -1 -1 nofiles
enewuser dnslog -1 -1 -1 nofiles
enewuser tinydns -1 -1 -1 nofiles
}
pkg_postinst() {
elog "Use dnscache-setup & tinydns-setup or djbdns-setup to configure djbdns."
}
|
GitWeb