* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2015-10-04 14:02 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2015-10-04 14:02 UTC (permalink / raw
To: gentoo-commits
commit: fa55636fb980dd9aef5110a5bdaf902947904330
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Oct 4 14:00:59 2015 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Oct 4 14:00:59 2015 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fa55636f
net-dns/opendnssec: bump version
Package-Manager: portage-2.2.22
net-dns/opendnssec/Manifest | 1 +
net-dns/opendnssec/opendnssec-1.4.7.ebuild | 206 +++++++++++++++++++++++++++++
2 files changed, 207 insertions(+)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index e16f178..0be9984 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -2,3 +2,4 @@ DIST opendnssec-1.3.17.tar.gz 1140751 SHA256 9f0dcfb53a3e10255b2d85e6a30663548ec
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
DIST opendnssec-1.4.4.tar.gz 1009728 SHA256 71f930d871e3526f930ac57925f5d5b934988e0b2e9e858926bfc73d9ba9d00e SHA512 aa88049cdd9275b7167e8a135beaa0ea6b9b2030818ec9d7815dbceb906cb0ac19d9a8e6e8571b6c37db452bbf9ab2a615785bad8ffb0a8eb21c50de42cd99b1 WHIRLPOOL 0ce1536aa69c394595105c1803761697d8450bc42e84c6a9e80568ade61fc6e0060f8b4d9bdb9547ff0cd17e27671a4c5fa3576c9d58a47188c7ff87043ccfb1
DIST opendnssec-1.4.6.tar.gz 1014314 SHA256 53f9c454f331822925d76c9d9e5e7cb3fe2dfb03e3c467f67f9412f10d0fd5ec SHA512 c01e6e46e2007d0ae4035253484590d9a892be8284b179b6d3cdb0f8481789a67a79f9043d04de0aecc165fb44d88dac0eb02444f48e0ccd366f118a2bbb5c18 WHIRLPOOL 4535fb49879b27698b0ba88f05b2fd963c69829446a7d5eb8419c19768059347e0adfd1b59efe50b2acd5550758f499290e02ee52b1b92695e8f9061ad465bf0
+DIST opendnssec-1.4.7.tar.gz 1038884 SHA256 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f SHA512 def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 WHIRLPOOL 37641549f4bb6ecb519a091e60537acf7fab69fc3482ab8857abd2ce57d8b5240031069d487246f88577ca32d48004b10a7784c10b4155b3339d67bd5567591a
diff --git a/net-dns/opendnssec/opendnssec-1.4.7.ebuild b/net-dns/opendnssec/opendnssec-1.4.7.ebuild
new file mode 100644
index 0000000..032caea
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-1.4.7.ebuild
@@ -0,0 +1,206 @@
+# Copyright 1999-2015 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Id$
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit base autotools multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="http://www.opendnssec.org/"
+SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ softhsm? ( dev-libs/softhsm )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir.patch"
+ "${FILESDIR}/${PN}-fix-run-dir.patch"
+ "${FILESDIR}/${PN}-drop-privileges.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ base_src_prepare
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var/" \
+ --disable-static \
+ --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_enable debug timeshift) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install update scripts
+ insinto /usr/share/opendnssec
+ if use sqlite; then
+ doins enforcer/utils/migrate_keyshare_sqlite3.pl
+ doins enforcer/utils/migrate_adapters_1.sqlite3
+ fi
+ if use mysql; then
+ doins enforcer/utils/migrate_keyshare_mysql.pl
+ doins enforcer/utils/migrate_adapters_1.mysql
+ fi
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.3.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.3."
+ ewarn ""
+ ewarn "Please be aware of the following:"
+ ewarn " * OpenDNSSEC now supports both input and output adapters for"
+ ewarn " AXFR and IXFR in addition to file transfer."
+ ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
+ ewarn " to support this enhancement."
+ ewarn " -> changes to the KASP database mean that a database"
+ ewarn " migration is required to upgrade to 1.4 from earlier"
+ ewarn " versions of OpenDNSSEC."
+ ewarn " * The auditor is no longer supported."
+ ewarn ""
+ ewarn "You can find more information here:"
+ ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
+ ewarn ""
+ ;;
+ esac
+ done
+}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2015-10-04 14:02 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2015-10-04 14:02 UTC (permalink / raw
To: gentoo-commits
commit: 6a0fe1c7659b7fd2e5dbd8b96c26aa87725b0667
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Oct 4 14:01:50 2015 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Oct 4 14:01:50 2015 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6a0fe1c7
net-dns/opendnssec: remove old version
Package-Manager: portage-2.2.22
net-dns/opendnssec/Manifest | 1 -
net-dns/opendnssec/opendnssec-1.4.4.ebuild | 206 -----------------------------
2 files changed, 207 deletions(-)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 0be9984..e969d31 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,5 +1,4 @@
DIST opendnssec-1.3.17.tar.gz 1140751 SHA256 9f0dcfb53a3e10255b2d85e6a30663548eca1ec2e900b7cd5db9329f1710e323 SHA512 6d3172cf5dc1bee1dbd14a5b9a8ada4ce3ebd954e2cd7adde664ac4b5e0cab81ed1cba2e2efeceacedf16f56d40a0874b73d7c844bbbbb6e1be1f8235a4c99f7 WHIRLPOOL 80e3a99dedb2ea1cc6a1d109bcf4e874cc9cc18abfaa233a2533f7a05b7129543cf2fbeaf6c6cde343755cacbca3125a4426c421805425204725f9ddcb156657
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
-DIST opendnssec-1.4.4.tar.gz 1009728 SHA256 71f930d871e3526f930ac57925f5d5b934988e0b2e9e858926bfc73d9ba9d00e SHA512 aa88049cdd9275b7167e8a135beaa0ea6b9b2030818ec9d7815dbceb906cb0ac19d9a8e6e8571b6c37db452bbf9ab2a615785bad8ffb0a8eb21c50de42cd99b1 WHIRLPOOL 0ce1536aa69c394595105c1803761697d8450bc42e84c6a9e80568ade61fc6e0060f8b4d9bdb9547ff0cd17e27671a4c5fa3576c9d58a47188c7ff87043ccfb1
DIST opendnssec-1.4.6.tar.gz 1014314 SHA256 53f9c454f331822925d76c9d9e5e7cb3fe2dfb03e3c467f67f9412f10d0fd5ec SHA512 c01e6e46e2007d0ae4035253484590d9a892be8284b179b6d3cdb0f8481789a67a79f9043d04de0aecc165fb44d88dac0eb02444f48e0ccd366f118a2bbb5c18 WHIRLPOOL 4535fb49879b27698b0ba88f05b2fd963c69829446a7d5eb8419c19768059347e0adfd1b59efe50b2acd5550758f499290e02ee52b1b92695e8f9061ad465bf0
DIST opendnssec-1.4.7.tar.gz 1038884 SHA256 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f SHA512 def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 WHIRLPOOL 37641549f4bb6ecb519a091e60537acf7fab69fc3482ab8857abd2ce57d8b5240031069d487246f88577ca32d48004b10a7784c10b4155b3339d67bd5567591a
diff --git a/net-dns/opendnssec/opendnssec-1.4.4.ebuild b/net-dns/opendnssec/opendnssec-1.4.4.ebuild
deleted file mode 100644
index 118902c..0000000
--- a/net-dns/opendnssec/opendnssec-1.4.4.ebuild
+++ /dev/null
@@ -1,206 +0,0 @@
-# Copyright 1999-2014 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="http://www.opendnssec.org/"
-SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-drop-privileges.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_enable debug timeshift) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- if use sqlite; then
- doins enforcer/utils/migrate_keyshare_sqlite3.pl
- doins enforcer/utils/migrate_adapters_1.sqlite3
- fi
- if use mysql; then
- doins enforcer/utils/migrate_keyshare_mysql.pl
- doins enforcer/utils/migrate_adapters_1.mysql
- fi
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
-
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.3.*)
- ewarn ""
- ewarn "You are upgrading from version 1.3."
- ewarn ""
- ewarn "Please be aware of the following:"
- ewarn " * OpenDNSSEC now supports both input and output adapters for"
- ewarn " AXFR and IXFR in addition to file transfer."
- ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
- ewarn " to support this enhancement."
- ewarn " -> changes to the KASP database mean that a database"
- ewarn " migration is required to upgrade to 1.4 from earlier"
- ewarn " versions of OpenDNSSEC."
- ewarn " * The auditor is no longer supported."
- ewarn ""
- ewarn "You can find more information here:"
- ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
- ewarn ""
- ;;
- esac
- done
-}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2015-12-06 23:43 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2015-12-06 23:43 UTC (permalink / raw
To: gentoo-commits
commit: 26db751bd8b82a7a3f91965faac3ab8a8c5dcf50
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Dec 6 23:41:22 2015 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Dec 6 23:43:02 2015 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=26db751b
net-dns/opendnssec: bump version
Package-Manager: portage-2.2.26
net-dns/opendnssec/Manifest | 1 +
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 206 +++++++++++++++++++++++++++
2 files changed, 207 insertions(+)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index e969d31..9fac856 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -2,3 +2,4 @@ DIST opendnssec-1.3.17.tar.gz 1140751 SHA256 9f0dcfb53a3e10255b2d85e6a30663548ec
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
DIST opendnssec-1.4.6.tar.gz 1014314 SHA256 53f9c454f331822925d76c9d9e5e7cb3fe2dfb03e3c467f67f9412f10d0fd5ec SHA512 c01e6e46e2007d0ae4035253484590d9a892be8284b179b6d3cdb0f8481789a67a79f9043d04de0aecc165fb44d88dac0eb02444f48e0ccd366f118a2bbb5c18 WHIRLPOOL 4535fb49879b27698b0ba88f05b2fd963c69829446a7d5eb8419c19768059347e0adfd1b59efe50b2acd5550758f499290e02ee52b1b92695e8f9061ad465bf0
DIST opendnssec-1.4.7.tar.gz 1038884 SHA256 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f SHA512 def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 WHIRLPOOL 37641549f4bb6ecb519a091e60537acf7fab69fc3482ab8857abd2ce57d8b5240031069d487246f88577ca32d48004b10a7784c10b4155b3339d67bd5567591a
+DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
new file mode 100644
index 0000000..032caea
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
@@ -0,0 +1,206 @@
+# Copyright 1999-2015 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Id$
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit base autotools multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="http://www.opendnssec.org/"
+SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ softhsm? ( dev-libs/softhsm )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir.patch"
+ "${FILESDIR}/${PN}-fix-run-dir.patch"
+ "${FILESDIR}/${PN}-drop-privileges.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ base_src_prepare
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var/" \
+ --disable-static \
+ --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_enable debug timeshift) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install update scripts
+ insinto /usr/share/opendnssec
+ if use sqlite; then
+ doins enforcer/utils/migrate_keyshare_sqlite3.pl
+ doins enforcer/utils/migrate_adapters_1.sqlite3
+ fi
+ if use mysql; then
+ doins enforcer/utils/migrate_keyshare_mysql.pl
+ doins enforcer/utils/migrate_adapters_1.mysql
+ fi
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.3.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.3."
+ ewarn ""
+ ewarn "Please be aware of the following:"
+ ewarn " * OpenDNSSEC now supports both input and output adapters for"
+ ewarn " AXFR and IXFR in addition to file transfer."
+ ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
+ ewarn " to support this enhancement."
+ ewarn " -> changes to the KASP database mean that a database"
+ ewarn " migration is required to upgrade to 1.4 from earlier"
+ ewarn " versions of OpenDNSSEC."
+ ewarn " * The auditor is no longer supported."
+ ewarn ""
+ ewarn "You can find more information here:"
+ ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
+ ewarn ""
+ ;;
+ esac
+ done
+}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2015-12-06 23:43 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2015-12-06 23:43 UTC (permalink / raw
To: gentoo-commits
commit: 6199632107a61ce1f67d9f56d7449a8933ed965b
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Dec 6 23:42:34 2015 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Dec 6 23:43:02 2015 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=61996321
net-dns/opendnssec: remove version 1.4.6
Package-Manager: portage-2.2.26
net-dns/opendnssec/Manifest | 1 -
net-dns/opendnssec/opendnssec-1.4.6.ebuild | 206 -----------------------------
2 files changed, 207 deletions(-)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 9fac856..60f8369 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,5 +1,4 @@
DIST opendnssec-1.3.17.tar.gz 1140751 SHA256 9f0dcfb53a3e10255b2d85e6a30663548eca1ec2e900b7cd5db9329f1710e323 SHA512 6d3172cf5dc1bee1dbd14a5b9a8ada4ce3ebd954e2cd7adde664ac4b5e0cab81ed1cba2e2efeceacedf16f56d40a0874b73d7c844bbbbb6e1be1f8235a4c99f7 WHIRLPOOL 80e3a99dedb2ea1cc6a1d109bcf4e874cc9cc18abfaa233a2533f7a05b7129543cf2fbeaf6c6cde343755cacbca3125a4426c421805425204725f9ddcb156657
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
-DIST opendnssec-1.4.6.tar.gz 1014314 SHA256 53f9c454f331822925d76c9d9e5e7cb3fe2dfb03e3c467f67f9412f10d0fd5ec SHA512 c01e6e46e2007d0ae4035253484590d9a892be8284b179b6d3cdb0f8481789a67a79f9043d04de0aecc165fb44d88dac0eb02444f48e0ccd366f118a2bbb5c18 WHIRLPOOL 4535fb49879b27698b0ba88f05b2fd963c69829446a7d5eb8419c19768059347e0adfd1b59efe50b2acd5550758f499290e02ee52b1b92695e8f9061ad465bf0
DIST opendnssec-1.4.7.tar.gz 1038884 SHA256 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f SHA512 def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 WHIRLPOOL 37641549f4bb6ecb519a091e60537acf7fab69fc3482ab8857abd2ce57d8b5240031069d487246f88577ca32d48004b10a7784c10b4155b3339d67bd5567591a
DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
diff --git a/net-dns/opendnssec/opendnssec-1.4.6.ebuild b/net-dns/opendnssec/opendnssec-1.4.6.ebuild
deleted file mode 100644
index 118902c..0000000
--- a/net-dns/opendnssec/opendnssec-1.4.6.ebuild
+++ /dev/null
@@ -1,206 +0,0 @@
-# Copyright 1999-2014 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="http://www.opendnssec.org/"
-SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-drop-privileges.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_enable debug timeshift) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- if use sqlite; then
- doins enforcer/utils/migrate_keyshare_sqlite3.pl
- doins enforcer/utils/migrate_adapters_1.sqlite3
- fi
- if use mysql; then
- doins enforcer/utils/migrate_keyshare_mysql.pl
- doins enforcer/utils/migrate_adapters_1.mysql
- fi
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
-
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.3.*)
- ewarn ""
- ewarn "You are upgrading from version 1.3."
- ewarn ""
- ewarn "Please be aware of the following:"
- ewarn " * OpenDNSSEC now supports both input and output adapters for"
- ewarn " AXFR and IXFR in addition to file transfer."
- ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
- ewarn " to support this enhancement."
- ewarn " -> changes to the KASP database mean that a database"
- ewarn " migration is required to upgrade to 1.4 from earlier"
- ewarn " versions of OpenDNSSEC."
- ewarn " * The auditor is no longer supported."
- ewarn ""
- ewarn "You can find more information here:"
- ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
- ewarn ""
- ;;
- esac
- done
-}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-03-24 0:30 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-03-24 0:30 UTC (permalink / raw
To: gentoo-commits
commit: 16d1fd7a7163dbd4580e5ae586cacb74bb5e3b42
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Wed Mar 23 23:30:45 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Thu Mar 24 00:24:33 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=16d1fd7a
net-dns/opendnssec: remove insecure versions
Package-Manager: portage-2.2.28
net-dns/opendnssec/Manifest | 1 -
net-dns/opendnssec/opendnssec-1.3.17.ebuild | 203 ----------------------------
net-dns/opendnssec/opendnssec-1.3.18.ebuild | 203 ----------------------------
3 files changed, 407 deletions(-)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 60f8369..856e7f5 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,4 +1,3 @@
-DIST opendnssec-1.3.17.tar.gz 1140751 SHA256 9f0dcfb53a3e10255b2d85e6a30663548eca1ec2e900b7cd5db9329f1710e323 SHA512 6d3172cf5dc1bee1dbd14a5b9a8ada4ce3ebd954e2cd7adde664ac4b5e0cab81ed1cba2e2efeceacedf16f56d40a0874b73d7c844bbbbb6e1be1f8235a4c99f7 WHIRLPOOL 80e3a99dedb2ea1cc6a1d109bcf4e874cc9cc18abfaa233a2533f7a05b7129543cf2fbeaf6c6cde343755cacbca3125a4426c421805425204725f9ddcb156657
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
DIST opendnssec-1.4.7.tar.gz 1038884 SHA256 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f SHA512 def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 WHIRLPOOL 37641549f4bb6ecb519a091e60537acf7fab69fc3482ab8857abd2ce57d8b5240031069d487246f88577ca32d48004b10a7784c10b4155b3339d67bd5567591a
DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
diff --git a/net-dns/opendnssec/opendnssec-1.3.17.ebuild b/net-dns/opendnssec/opendnssec-1.3.17.ebuild
deleted file mode 100644
index eddc1dd..0000000
--- a/net-dns/opendnssec/opendnssec-1.3.17.ebuild
+++ /dev/null
@@ -1,203 +0,0 @@
-# Copyright 1999-2014 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="http://www.opendnssec.org/"
-SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="-auditor +curl debug doc eppclient mysql +signer +sqlite test ${PKCS11_IUSE}"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- curl? ( net-misc/curl )
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-# test? dev-util/cunit # Requires running test DB
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
- eppclient? ( curl )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-1.3.14-drop-privileges.patch"
- "${FILESDIR}/${PN}-1.3.14-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- local i
-
- for i in eppclient mysql; do
- if use ${i}; then
- ewarn
- ewarn "Usage of ${i} is considered experimental."
- ewarn "Do not report bugs against this feature."
- ewarn
- fi
- done
-
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- # $(use_with test cunit "${EPREFIX}/usr/") \
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- --disable-auditor \
- $(use_with curl) \
- $(use_enable debug timeshift) \
- $(use_enable eppclient) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- use sqlite && doins enforcer/utils/migrate_keyshare_sqlite3.pl
- use mysql && doins enforcer/utils/migrate_keyshare_mysql.pl
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{conf,kasp,zonelist,zonefetch}.xml
- use eppclient && fowners root:opendnssec /etc/opendnssec/eppclientd.conf
-
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd-1.3.x opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd-1.3.x opendnssec
- use auditor || sed -i 's/^CHECKCONFIG_BIN=.*/CHECKCONFIG_BIN=/' "${D}"/etc/conf.d/opendnssec
-}
-
-pkg_postinst() {
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
- if use auditor; then
- ewarn
- ewarn "Please note that auditor support has been disabled in this version since it"
- ewarn "it depends on ruby 1.8 which has been removed from the portage tree."
- ewarn "USE=auditor is only provided for this warning but will not install the"
- ewarn "auditor anymore."
- ewarn
- fi
-}
diff --git a/net-dns/opendnssec/opendnssec-1.3.18.ebuild b/net-dns/opendnssec/opendnssec-1.3.18.ebuild
deleted file mode 100644
index eddc1dd..0000000
--- a/net-dns/opendnssec/opendnssec-1.3.18.ebuild
+++ /dev/null
@@ -1,203 +0,0 @@
-# Copyright 1999-2014 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="http://www.opendnssec.org/"
-SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="-auditor +curl debug doc eppclient mysql +signer +sqlite test ${PKCS11_IUSE}"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- curl? ( net-misc/curl )
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-# test? dev-util/cunit # Requires running test DB
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
- eppclient? ( curl )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-1.3.14-drop-privileges.patch"
- "${FILESDIR}/${PN}-1.3.14-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- local i
-
- for i in eppclient mysql; do
- if use ${i}; then
- ewarn
- ewarn "Usage of ${i} is considered experimental."
- ewarn "Do not report bugs against this feature."
- ewarn
- fi
- done
-
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- # $(use_with test cunit "${EPREFIX}/usr/") \
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- --disable-auditor \
- $(use_with curl) \
- $(use_enable debug timeshift) \
- $(use_enable eppclient) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- use sqlite && doins enforcer/utils/migrate_keyshare_sqlite3.pl
- use mysql && doins enforcer/utils/migrate_keyshare_mysql.pl
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{conf,kasp,zonelist,zonefetch}.xml
- use eppclient && fowners root:opendnssec /etc/opendnssec/eppclientd.conf
-
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd-1.3.x opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd-1.3.x opendnssec
- use auditor || sed -i 's/^CHECKCONFIG_BIN=.*/CHECKCONFIG_BIN=/' "${D}"/etc/conf.d/opendnssec
-}
-
-pkg_postinst() {
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
- if use auditor; then
- ewarn
- ewarn "Please note that auditor support has been disabled in this version since it"
- ewarn "it depends on ruby 1.8 which has been removed from the portage tree."
- ewarn "USE=auditor is only provided for this warning but will not install the"
- ewarn "auditor anymore."
- ewarn
- fi
-}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-08-23 15:48 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-08-23 15:48 UTC (permalink / raw
To: gentoo-commits
commit: cf60402a821d0f1815710928e1b74bc46b47812e
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Tue Aug 23 06:49:14 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Tue Aug 23 15:48:33 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=cf60402a
net-dns/opendnssec: drop old version
Package-Manager: portage-2.3.0
net-dns/opendnssec/Manifest | 1 -
net-dns/opendnssec/opendnssec-1.4.7.ebuild | 206 -----------------------------
2 files changed, 207 deletions(-)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 856e7f5..9beee25 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,3 +1,2 @@
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
-DIST opendnssec-1.4.7.tar.gz 1038884 SHA256 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f SHA512 def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 WHIRLPOOL 37641549f4bb6ecb519a091e60537acf7fab69fc3482ab8857abd2ce57d8b5240031069d487246f88577ca32d48004b10a7784c10b4155b3339d67bd5567591a
DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
diff --git a/net-dns/opendnssec/opendnssec-1.4.7.ebuild b/net-dns/opendnssec/opendnssec-1.4.7.ebuild
deleted file mode 100644
index 032caea..0000000
--- a/net-dns/opendnssec/opendnssec-1.4.7.ebuild
+++ /dev/null
@@ -1,206 +0,0 @@
-# Copyright 1999-2015 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="http://www.opendnssec.org/"
-SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-drop-privileges.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_enable debug timeshift) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- if use sqlite; then
- doins enforcer/utils/migrate_keyshare_sqlite3.pl
- doins enforcer/utils/migrate_adapters_1.sqlite3
- fi
- if use mysql; then
- doins enforcer/utils/migrate_keyshare_mysql.pl
- doins enforcer/utils/migrate_adapters_1.mysql
- fi
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
-
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.3.*)
- ewarn ""
- ewarn "You are upgrading from version 1.3."
- ewarn ""
- ewarn "Please be aware of the following:"
- ewarn " * OpenDNSSEC now supports both input and output adapters for"
- ewarn " AXFR and IXFR in addition to file transfer."
- ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
- ewarn " to support this enhancement."
- ewarn " -> changes to the KASP database mean that a database"
- ewarn " migration is required to upgrade to 1.4 from earlier"
- ewarn " versions of OpenDNSSEC."
- ewarn " * The auditor is no longer supported."
- ewarn ""
- ewarn "You can find more information here:"
- ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
- ewarn ""
- ;;
- esac
- done
-}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-08-23 15:48 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-08-23 15:48 UTC (permalink / raw
To: gentoo-commits
commit: 7d29483319696877ae0a7b1e40d34e824a76bbc0
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Tue Aug 23 06:51:24 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Tue Aug 23 15:48:33 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7d294833
net-dns/opendnssec: bump 1.4 branch
Package-Manager: portage-2.3.0
net-dns/opendnssec/Manifest | 1 +
net-dns/opendnssec/opendnssec-1.4.10.ebuild | 210 ++++++++++++++++++++++++++++
2 files changed, 211 insertions(+)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 9beee25..4f98250 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,2 +1,3 @@
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
+DIST opendnssec-1.4.10.tar.gz 1036069 SHA256 55b44c1da3a665eef0af1d1b3f4d1c57d20f50f77858b1dd3d03ca6ebc1df7cb SHA512 00ba6ceba595f9d4d7736af982b78779f204eb52fcf92222256792368328647ca1a4c84b4db64dcdd9a0119292f132a4efd15e60436c2a125bf6a8fb3f33540e WHIRLPOOL 2122feed10b83b38f8954ebaaf5d065bbf124d573c085559d0b3542dc8b58b8c55a489ceda9707836501a03efbe7a81bc7518e394c86ef1f682822943bbc0a82
DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
diff --git a/net-dns/opendnssec/opendnssec-1.4.10.ebuild b/net-dns/opendnssec/opendnssec-1.4.10.ebuild
new file mode 100644
index 0000000..7e2931f
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-1.4.10.ebuild
@@ -0,0 +1,210 @@
+# Copyright 1999-2016 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Id$
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit autotools eutils multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="http://www.opendnssec.org/"
+SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ softhsm? ( dev-libs/softhsm )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir.patch"
+ "${FILESDIR}/${PN}-fix-run-dir.patch"
+ "${FILESDIR}/${PN}-drop-privileges.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ local patch
+ default
+ for patch in "${PATCHES[@]}"; do
+ epatch "$patch"
+ done
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var/" \
+ --disable-static \
+ --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_enable debug timeshift) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install update scripts
+ insinto /usr/share/opendnssec
+ if use sqlite; then
+ doins enforcer/utils/migrate_keyshare_sqlite3.pl
+ doins enforcer/utils/migrate_adapters_1.sqlite3
+ fi
+ if use mysql; then
+ doins enforcer/utils/migrate_keyshare_mysql.pl
+ doins enforcer/utils/migrate_adapters_1.mysql
+ fi
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.3.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.3."
+ ewarn ""
+ ewarn "Please be aware of the following:"
+ ewarn " * OpenDNSSEC now supports both input and output adapters for"
+ ewarn " AXFR and IXFR in addition to file transfer."
+ ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
+ ewarn " to support this enhancement."
+ ewarn " -> changes to the KASP database mean that a database"
+ ewarn " migration is required to upgrade to 1.4 from earlier"
+ ewarn " versions of OpenDNSSEC."
+ ewarn " * The auditor is no longer supported."
+ ewarn ""
+ ewarn "You can find more information here:"
+ ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
+ ewarn ""
+ ;;
+ esac
+ done
+}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-12-18 2:54 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-12-18 2:54 UTC (permalink / raw
To: gentoo-commits
commit: 8fc665b5a6c9ded4a0482bd28e24dc2228e5dfd4
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Dec 18 02:41:10 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Dec 18 02:42:27 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8fc665b5
net-dns/opendnssec: remove base inherit
net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild | 2 +-
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 4 ++--
.../{opendnssec-2.0.1.ebuild => opendnssec-2.0.1-r1.ebuild} | 0
3 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
index 0f38b64..ce4b1bd 100644
--- a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
@@ -6,7 +6,7 @@ EAPI=5
MY_P="${P/_}"
PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
+inherit autotools multilib user
DESCRIPTION="An open-source turn-key solution for DNSSEC"
HOMEPAGE="http://www.opendnssec.org/"
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
index 032caea..8aa2023 100644
--- a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
@@ -1,4 +1,4 @@
-# Copyright 1999-2015 Gentoo Foundation
+# Copyright 1999-2016 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Id$
@@ -6,7 +6,7 @@ EAPI=5
MY_P="${P/_}"
PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit base autotools multilib user
+inherit autotools multilib user
DESCRIPTION="An open-source turn-key solution for DNSSEC"
HOMEPAGE="http://www.opendnssec.org/"
diff --git a/net-dns/opendnssec/opendnssec-2.0.1.ebuild b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
similarity index 100%
rename from net-dns/opendnssec/opendnssec-2.0.1.ebuild
rename to net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-12-18 2:54 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-12-18 2:54 UTC (permalink / raw
To: gentoo-commits
commit: f500309a20868f75c6b6631bcda9417698ad4b8c
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Dec 18 02:47:36 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Dec 18 02:47:36 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f500309a
net-dns/opendnssec: bump version
Package-Manager: portage-2.3.2
net-dns/opendnssec/Manifest | 1 +
net-dns/opendnssec/opendnssec-2.0.3.ebuild | 240 +++++++++++++++++++++++++++++
2 files changed, 241 insertions(+)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 156c921..6adc4fd 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -2,3 +2,4 @@ DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe524
DIST opendnssec-1.4.10.tar.gz 1036069 SHA256 55b44c1da3a665eef0af1d1b3f4d1c57d20f50f77858b1dd3d03ca6ebc1df7cb SHA512 00ba6ceba595f9d4d7736af982b78779f204eb52fcf92222256792368328647ca1a4c84b4db64dcdd9a0119292f132a4efd15e60436c2a125bf6a8fb3f33540e WHIRLPOOL 2122feed10b83b38f8954ebaaf5d065bbf124d573c085559d0b3542dc8b58b8c55a489ceda9707836501a03efbe7a81bc7518e394c86ef1f682822943bbc0a82
DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
DIST opendnssec-2.0.1.tar.gz 1101523 SHA256 bf874bbb346699a5b539699f90a54e0c15fff0574df7a3c118abb30938b7b346 SHA512 aa12818f92688e087acaff8a6771d2a7da733e04d9e821967d313c7ff880a1056f470b11988eba1e7aad606418c3a4587f654163d74f68e3f61943c74d86d052 WHIRLPOOL 865fbd0d21cd015e87da5f26858e39a233464fb04e56a21683b4713d3836b925eea80973446571da78730ef765d5a1a3fc5f8ad192dd09fdf6eb7467ae417769
+DIST opendnssec-2.0.3.tar.gz 1103355 SHA256 ebeb5481d696cf83c21c5dfbecce6ab5dcc73df1a08573ef257f2f6fe10f6214 SHA512 4745a9ac317cc65d6f5b14be640687efd5fde2149541f692fb607a458378d27e903f175023c1aa16a777d17cef9cc68f1a84e7e7cdb233466d26756721b34424 WHIRLPOOL 51389851b46b62ee1829dd2af5cb41edbe28484ff23dd9b281f77ee7966dd67aa743f1c8d869052bb0a598cf42ab850ad0d2f80343b26aaf551940bb9f0d3f41
diff --git a/net-dns/opendnssec/opendnssec-2.0.3.ebuild b/net-dns/opendnssec/opendnssec-2.0.3.ebuild
new file mode 100644
index 00000000..06b45e3
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-2.0.3.ebuild
@@ -0,0 +1,240 @@
+# Copyright 1999-2016 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+# $Id$
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit autotools eutils multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="http://www.opendnssec.org/"
+SRC_URI="http://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql readline +signer sqlite test ${PKCS11_IUSE}"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ readline? ( sys-libs/readline:0 )
+ softhsm? ( dev-libs/softhsm:* )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir-2.0.x.patch"
+ "${FILESDIR}/${PN}-fix-run-dir-2.0.x.patch"
+ "${FILESDIR}/${PN}-drop-privileges-2.0.x.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ if has_version "<net-dns/opendnssec-1.4.10"; then
+ ################################################################################
+ eerror "You are already using OpenDNSSEC."
+ eerror "In order to migrate to version >=2.0.0 you need to upgrade to"
+ eerror "version >=1.4.10 first:"
+ eerror ""
+ eerror " emerge \"<net-dns/opendnssec-2\""
+ eerror ""
+ eerror "See https://github.com/opendnssec/opendnssec/blob/2.0/master/MIGRATION"
+ eerror "for details."
+ eerror ""
+ die "Please upgrade to version >=1.4.10 first for proper db migraion"
+ fi
+
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ local patch
+ default
+ for patch in "${PATCHES[@]}"; do
+ epatch "$patch"
+ done
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var" \
+ --disable-static \
+ --with-enforcer-database=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_with readline) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install db update/migration stuff
+ insinto /usr/share/opendnssec/db
+ if use sqlite; then
+ doins enforcer/utils/convert_mysql_to_sqlite
+ fi
+ if use mysql; then
+ doins enforcer/utils/convert_sqlite_to_mysql
+ fi
+
+ insinto /usr/share/opendnssec/db/sql
+ if use sqlite; then
+ doins enforcer/src/db/schema.sqlite
+ fi
+ if use mysql; then
+ doins enforcer/src/db/schema.mysql
+ fi
+
+ insinto /usr/share/opendnssec/db/1.4-2.0_db_convert
+ doins enforcer/utils/1.4-2.0_db_convert/find_problematic_zones.sql
+ doins enforcer/utils/1.4-2.0_db_convert/README.md
+ if use sqlite; then
+ doins enforcer/utils/1.4-2.0_db_convert/sqlite_convert.sql
+ doins enforcer/utils/1.4-2.0_db_convert/convert_sqlite
+ fi
+ if use mysql; then
+ doins enforcer/utils/1.4-2.0_db_convert/convert_mysql
+ doins enforcer/utils/1.4-2.0_db_convert/mysql_convert.sql
+ fi
+
+ # patch scripts to find schema files
+ sed -i \
+ -e 's,^SCHEMA=../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ -e 's,^SCHEMA=../../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ "${ED}"/usr/share/opendnssec/db/convert_* \
+ "${ED}"/usr/share/opendnssec/db/1.4-2.0_db_convert/convert_*
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,enforcer,signconf,signed,signer,unsigned}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.4.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.4."
+ ewarn ""
+ ewarn "A migration is needed from 1.4 to 2.0."
+ ewarn "For details see /usr/share/doc/${P}/MIGRATION*"
+ ewarn ""
+ ewarn "For your convenience the mentioned migration scripts and README"
+ ewarn "have been installed to /usr/share/${PN}/db/1.4-2.0_db_convert"
+ ewarn ""
+ ;;
+ esac
+ done
+}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-12-18 2:54 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-12-18 2:54 UTC (permalink / raw
To: gentoo-commits
commit: d8ba4f71005de67d28d326fff4664dcfef68768e
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Dec 18 02:44:34 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Dec 18 02:44:34 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d8ba4f71
net-dns/opendnssec: fix softhsm dependency (add slot)
net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild | 2 +-
net-dns/opendnssec/opendnssec-1.4.10.ebuild | 2 +-
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 2 +-
net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild | 2 +-
4 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
index ce4b1bd..6e6ca53 100644
--- a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
@@ -28,7 +28,7 @@ RDEPEND="
dev-perl/DBD-mysql
)
opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
+ softhsm? ( dev-libs/softhsm:* )
sqlite? (
dev-db/sqlite:3
dev-perl/DBD-SQLite
diff --git a/net-dns/opendnssec/opendnssec-1.4.10.ebuild b/net-dns/opendnssec/opendnssec-1.4.10.ebuild
index 7e2931f..dce3f84 100644
--- a/net-dns/opendnssec/opendnssec-1.4.10.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.10.ebuild
@@ -27,7 +27,7 @@ RDEPEND="
dev-perl/DBD-mysql
)
opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
+ softhsm? ( dev-libs/softhsm:* )
sqlite? (
dev-db/sqlite:3
dev-perl/DBD-SQLite
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
index 8aa2023..6b5fb50 100644
--- a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
@@ -27,7 +27,7 @@ RDEPEND="
dev-perl/DBD-mysql
)
opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm )
+ softhsm? ( dev-libs/softhsm:* )
sqlite? (
dev-db/sqlite:3
dev-perl/DBD-SQLite
diff --git a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
index f2caf66..1d8076a 100644
--- a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
@@ -28,7 +28,7 @@ RDEPEND="
)
opensc? ( dev-libs/opensc )
readline? ( sys-libs/readline:0 )
- softhsm? ( dev-libs/softhsm )
+ softhsm? ( dev-libs/softhsm:* )
sqlite? (
dev-db/sqlite:3
dev-perl/DBD-SQLite
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-12-18 2:54 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-12-18 2:54 UTC (permalink / raw
To: gentoo-commits
commit: b1e969260dbe85c4d5e112fe4193560b823f044c
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Dec 18 02:45:37 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Dec 18 02:45:37 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b1e96926
net-dns/opendnssec: fix sed calls, fixes #601310
Thanks to Kévin Beaubestre for the patch!
net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
index 1d8076a..06b45e3 100644
--- a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
@@ -197,8 +197,8 @@ src_install() {
# patch scripts to find schema files
sed -i \
- -e 's,^SCHEMA=../src/db/,/usr/share/opendnssec/db/,' \
- -e 's,^SCHEMA=../../src/db/,/usr/share/opendnssec/db/,' \
+ -e 's,^SCHEMA=../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ -e 's,^SCHEMA=../../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
"${ED}"/usr/share/opendnssec/db/convert_* \
"${ED}"/usr/share/opendnssec/db/1.4-2.0_db_convert/convert_*
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-12-19 19:32 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-12-19 19:32 UTC (permalink / raw
To: gentoo-commits
commit: 1ecc8f034ef5405a2032a11ff834480b1fa666a3
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Mon Dec 19 19:29:52 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Mon Dec 19 19:32:22 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1ecc8f03
net-dns/opendnssec: bump branch 1.4
Package-Manager: Portage-2.3.3, Repoman-2.3.1
net-dns/opendnssec/Manifest | 2 +-
.../opendnssec/{opendnssec-1.4.10.ebuild => opendnssec-1.4.12.ebuild} | 0
2 files changed, 1 insertion(+), 1 deletion(-)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 6adc4fd..78fb556 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,5 +1,5 @@
DIST opendnssec-1.3.18.tar.gz 1143889 SHA256 e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676 SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d WHIRLPOOL 7213b8f2f86651114449bc4734452d6065960e26ee289051949ca27ae3b23280cea45ff707f71942eef91c9009200272c0985ef3d3de43c9343ad2e1e54303ce
-DIST opendnssec-1.4.10.tar.gz 1036069 SHA256 55b44c1da3a665eef0af1d1b3f4d1c57d20f50f77858b1dd3d03ca6ebc1df7cb SHA512 00ba6ceba595f9d4d7736af982b78779f204eb52fcf92222256792368328647ca1a4c84b4db64dcdd9a0119292f132a4efd15e60436c2a125bf6a8fb3f33540e WHIRLPOOL 2122feed10b83b38f8954ebaaf5d065bbf124d573c085559d0b3542dc8b58b8c55a489ceda9707836501a03efbe7a81bc7518e394c86ef1f682822943bbc0a82
+DIST opendnssec-1.4.12.tar.gz 1036392 SHA256 4ba6cf06fcd1131c1ed913d61959ddc90726ed5e4f153c90f45ec64445528a0c SHA512 b72b76ab4aec8cc63cc9c020bef9a24b000fd00172a07cf43d57b3a33041bef9e107b71eb7271bb13c3566510599c6a1913cf986a724e169c42dc8bdac8d2e51 WHIRLPOOL f6b98b3f7522185383f1bac4b233bf725a24ba998fd09c61762de25baeb70ce3633909bc5ffe7f0ac9e83201adbe73c701e7a1892c059908ed17a75731d6335c
DIST opendnssec-1.4.8.2.tar.gz 1043171 SHA256 7fd553ee39173e807477ed1daff6ee2f8b1c83875cd2e52a1df3315bf0015513 SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06 WHIRLPOOL 38079a89d8e3d039aeab28c80b7fb1a9739014736d6076442c546fae1b13e1c89faa1858beb6f4d2f495d19a2a1187a7af10c55c0ed33563bc9b2d57945de807
DIST opendnssec-2.0.1.tar.gz 1101523 SHA256 bf874bbb346699a5b539699f90a54e0c15fff0574df7a3c118abb30938b7b346 SHA512 aa12818f92688e087acaff8a6771d2a7da733e04d9e821967d313c7ff880a1056f470b11988eba1e7aad606418c3a4587f654163d74f68e3f61943c74d86d052 WHIRLPOOL 865fbd0d21cd015e87da5f26858e39a233464fb04e56a21683b4713d3836b925eea80973446571da78730ef765d5a1a3fc5f8ad192dd09fdf6eb7467ae417769
DIST opendnssec-2.0.3.tar.gz 1103355 SHA256 ebeb5481d696cf83c21c5dfbecce6ab5dcc73df1a08573ef257f2f6fe10f6214 SHA512 4745a9ac317cc65d6f5b14be640687efd5fde2149541f692fb607a458378d27e903f175023c1aa16a777d17cef9cc68f1a84e7e7cdb233466d26756721b34424 WHIRLPOOL 51389851b46b62ee1829dd2af5cb41edbe28484ff23dd9b281f77ee7966dd67aa743f1c8d869052bb0a598cf42ab850ad0d2f80343b26aaf551940bb9f0d3f41
diff --git a/net-dns/opendnssec/opendnssec-1.4.10.ebuild b/net-dns/opendnssec/opendnssec-1.4.12.ebuild
similarity index 100%
rename from net-dns/opendnssec/opendnssec-1.4.10.ebuild
rename to net-dns/opendnssec/opendnssec-1.4.12.ebuild
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2016-12-29 17:33 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2016-12-29 17:33 UTC (permalink / raw
To: gentoo-commits
commit: 61c0f44e5832377589f06e6e1944c238a1fe3b08
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Thu Dec 29 17:32:49 2016 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Thu Dec 29 17:33:40 2016 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=61c0f44e
net-dns/opendnssec: add missing migration scripts (fixes #602432)
Thanks to Romain Riviere for reporting!
Package-Manager: Portage-2.3.3, Repoman-2.3.1
.../{opendnssec-1.4.12.ebuild => opendnssec-1.4.12-r1.ebuild} | 6 ++----
1 file changed, 2 insertions(+), 4 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-1.4.12.ebuild b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
similarity index 96%
rename from net-dns/opendnssec/opendnssec-1.4.12.ebuild
rename to net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
index dce3f84..1de7723 100644
--- a/net-dns/opendnssec/opendnssec-1.4.12.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
@@ -154,12 +154,10 @@ src_install() {
# install update scripts
insinto /usr/share/opendnssec
if use sqlite; then
- doins enforcer/utils/migrate_keyshare_sqlite3.pl
- doins enforcer/utils/migrate_adapters_1.sqlite3
+ doins enforcer/utils/migrate_*sqlite*
fi
if use mysql; then
- doins enforcer/utils/migrate_keyshare_mysql.pl
- doins enforcer/utils/migrate_adapters_1.mysql
+ doins enforcer/utils/migrate_*mysql*
fi
# fix permissions
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2017-09-02 14:56 Michael Palimaka
0 siblings, 0 replies; 27+ messages in thread
From: Michael Palimaka @ 2017-09-02 14:56 UTC (permalink / raw
To: gentoo-commits
commit: c7b9318b87a0eb228ca8a4bfd0879fecb966c976
Author: Francesco Turco <fturco <AT> fastmail <DOT> fm>
AuthorDate: Thu Aug 24 21:09:50 2017 +0000
Commit: Michael Palimaka <kensington <AT> gentoo <DOT> org>
CommitDate: Sat Sep 2 14:56:07 2017 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c7b9318b
net-dns/opendnssec: update make.conf path, #624534
Gentoo-Bug 624534
net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild | 4 ++--
net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild | 4 ++--
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 4 ++--
net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild | 4 ++--
net-dns/opendnssec/opendnssec-2.0.3.ebuild | 4 ++--
5 files changed, 10 insertions(+), 10 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
index ebbc2fc2f69..d4bfd0296b7 100644
--- a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
@@ -1,4 +1,4 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2017 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
EAPI=5
@@ -99,7 +99,7 @@ check_pkcs11_setup() {
ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
ewarn "Example:"
ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
+ ewarn "or store the variable into /etc/portage/make.conf"
die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
fi
elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
diff --git a/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
index 437cd22d787..68d85cf8be5 100644
--- a/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
@@ -1,4 +1,4 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2017 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
EAPI=5
@@ -95,7 +95,7 @@ check_pkcs11_setup() {
ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
ewarn "Example:"
ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
+ ewarn "or store the variable into /etc/portage/make.conf"
die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
fi
elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
index f960e163421..c83f258bb10 100644
--- a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
@@ -1,4 +1,4 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2017 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
EAPI=5
@@ -95,7 +95,7 @@ check_pkcs11_setup() {
ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
ewarn "Example:"
ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
+ ewarn "or store the variable into /etc/portage/make.conf"
die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
fi
elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
diff --git a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
index 68a95e0f739..f4ecf0b3f3e 100644
--- a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
@@ -1,4 +1,4 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2017 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
EAPI=5
@@ -96,7 +96,7 @@ check_pkcs11_setup() {
ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
ewarn "Example:"
ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
+ ewarn "or store the variable into /etc/portage/make.conf"
die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
fi
elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
diff --git a/net-dns/opendnssec/opendnssec-2.0.3.ebuild b/net-dns/opendnssec/opendnssec-2.0.3.ebuild
index 68a95e0f739..f4ecf0b3f3e 100644
--- a/net-dns/opendnssec/opendnssec-2.0.3.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.0.3.ebuild
@@ -1,4 +1,4 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2017 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
EAPI=5
@@ -96,7 +96,7 @@ check_pkcs11_setup() {
ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
ewarn "Example:"
ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/make.conf"
+ ewarn "or store the variable into /etc/portage/make.conf"
die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
fi
elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2020-09-27 0:14 Conrad Kostecki
0 siblings, 0 replies; 27+ messages in thread
From: Conrad Kostecki @ 2020-09-27 0:14 UTC (permalink / raw
To: gentoo-commits
commit: 07c203efa6c209002bbc794b4052a65046229ea6
Author: Michael Mair-Keimberger <m.mairkeimberger <AT> gmail <DOT> com>
AuthorDate: Sat Sep 26 14:43:00 2020 +0000
Commit: Conrad Kostecki <conikost <AT> gentoo <DOT> org>
CommitDate: Sun Sep 27 00:14:50 2020 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=07c203ef
net-dns/opendnssec: fix metadata.xml, remove unused USE description
Closes: https://github.com/gentoo/gentoo/pull/17683
Package-Manager: Portage-3.0.8, Repoman-3.0.1
Signed-off-by: Michael Mair-Keimberger <m.mairkeimberger <AT> gmail.com>
Signed-off-by: Conrad Kostecki <conikost <AT> gentoo.org>
net-dns/opendnssec/metadata.xml | 2 --
1 file changed, 2 deletions(-)
diff --git a/net-dns/opendnssec/metadata.xml b/net-dns/opendnssec/metadata.xml
index f81a154f2ec..05f2788d150 100644
--- a/net-dns/opendnssec/metadata.xml
+++ b/net-dns/opendnssec/metadata.xml
@@ -5,8 +5,6 @@
<email>mschiff@gentoo.org</email>
</maintainer>
<use>
- <flag name="auditor">Enables auditing capabilities for OpenDNSSEC</flag>
- <flag name="eppclient">Enables support for automatic submission of DNSSEC keys to an upstream epp server</flag>
<flag name="signer">Enables signing capabilities for OpenDNSSEC</flag>
<flag name="opensc">Enables support for storing DNSSEC keys through a <pkg>dev-libs/opensc</pkg> PKCS#11 interface</flag>
<flag name="softhsm">Enables support for storing DNSSEC keys in a <pkg>dev-libs/softhsm</pkg> PKCS#11 object</flag>
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2020-09-29 13:53 Aaron Bauman
0 siblings, 0 replies; 27+ messages in thread
From: Aaron Bauman @ 2020-09-29 13:53 UTC (permalink / raw
To: gentoo-commits
commit: 01d1b4b0b7ad60855d735b3260e9bf8dedd78eda
Author: Aaron Bauman <bman <AT> gentoo <DOT> org>
AuthorDate: Tue Sep 29 13:52:32 2020 +0000
Commit: Aaron Bauman <bman <AT> gentoo <DOT> org>
CommitDate: Tue Sep 29 13:52:32 2020 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=01d1b4b0
Revert "net-dns/opendnssec: drop old EAPI=5"
This reverts commit 0253543021b04dd2339f66438542f2c43c876b82.
* I dropped LTS release so let's restore them.
Signed-off-by: Aaron Bauman <bman <AT> gentoo.org>
net-dns/opendnssec/Manifest | 4 +
net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild | 204 +++++++++++++++++++++
net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild | 208 +++++++++++++++++++++
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 206 +++++++++++++++++++++
net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild | 240 +++++++++++++++++++++++++
5 files changed, 862 insertions(+)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index b7655458e11..0136e5ba4f9 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1 +1,5 @@
+DIST opendnssec-1.3.18.tar.gz 1143889 BLAKE2B 0443a9d29de479257c05d024a756c176a342032eb17b105c04f5808ba550f1026815f191bce6ada13c54a7b7fea0f816d7754227f3d1c9ed76bc4d602785c2cf SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d
+DIST opendnssec-1.4.12.tar.gz 1036392 BLAKE2B 3bfbcfe91d7da7c2e4b1c5439f7d55e15612ab6ace6af25fcb9c9eb7ddb2e1055e70684c2bd6bbae57a0c2eb78098b448f7dca198e0d6f9e2e812945a1f06cc2 SHA512 b72b76ab4aec8cc63cc9c020bef9a24b000fd00172a07cf43d57b3a33041bef9e107b71eb7271bb13c3566510599c6a1913cf986a724e169c42dc8bdac8d2e51
+DIST opendnssec-1.4.8.2.tar.gz 1043171 BLAKE2B 20b1fa0d97b776223314937061cd42f4fe0a924e58a159fd0399d23058e2b0fd44d55049947de26c36aade5b5599527fc03f09eeef4e20f8c9beee40dfbcd7fb SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06
+DIST opendnssec-2.0.1.tar.gz 1101523 BLAKE2B 0446efd04e73e00d204c53164c3c6aaecb9f37014a110ee85d7e7b1728d225aafcf9e6ef31a7dd29cdf2e875e7b653ab6e8178cece65c47a1c5b027facc16130 SHA512 aa12818f92688e087acaff8a6771d2a7da733e04d9e821967d313c7ff880a1056f470b11988eba1e7aad606418c3a4587f654163d74f68e3f61943c74d86d052
DIST opendnssec-2.0.3.tar.gz 1103355 BLAKE2B b64e729003de86e4139efaad60c9feae9f4e19c16a29fdced55d66f5896c4b7d76c4b8c57a8330d55c0c03e87de1ebe6ec49ef9d1b6e215be963680d2c805579 SHA512 4745a9ac317cc65d6f5b14be640687efd5fde2149541f692fb607a458378d27e903f175023c1aa16a777d17cef9cc68f1a84e7e7cdb233466d26756721b34424
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
new file mode 100644
index 00000000000..a37fb6fc331
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
@@ -0,0 +1,204 @@
+# Copyright 1999-2020 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit autotools multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="https://www.opendnssec.org/"
+SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="-auditor +curl debug doc eppclient mysql +signer +sqlite test ${PKCS11_IUSE}"
+RESTRICT="!test? ( test )"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ curl? ( net-misc/curl )
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ softhsm? ( dev-libs/softhsm:* )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+# test? dev-util/cunit # Requires running test DB
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+ eppclient? ( curl )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir.patch"
+ "${FILESDIR}/${PN}-fix-run-dir.patch"
+ "${FILESDIR}/${PN}-1.3.14-drop-privileges.patch"
+ "${FILESDIR}/${PN}-1.3.14-use-system-trang.patch"
+ "${FILESDIR}/${PN}-1.3.18-eppclient-curl-CVE-2012-5582.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/portage/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ local i
+
+ for i in eppclient mysql; do
+ if use ${i}; then
+ ewarn
+ ewarn "Usage of ${i} is considered experimental."
+ ewarn "Do not report bugs against this feature."
+ ewarn
+ fi
+ done
+
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ base_src_prepare
+ eautoreconf
+}
+
+src_configure() {
+ # $(use_with test cunit "${EPREFIX}/usr/") \
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var/" \
+ --disable-static \
+ --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ --disable-auditor \
+ $(use_with curl) \
+ $(use_enable debug timeshift) \
+ $(use_enable eppclient) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install update scripts
+ insinto /usr/share/opendnssec
+ use sqlite && doins enforcer/utils/migrate_keyshare_sqlite3.pl
+ use mysql && doins enforcer/utils/migrate_keyshare_mysql.pl
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{conf,kasp,zonelist,zonefetch}.xml
+ use eppclient && fowners root:opendnssec /etc/opendnssec/eppclientd.conf
+
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd-1.3.x opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd-1.3.x opendnssec
+ use auditor || sed -i 's/^CHECKCONFIG_BIN=.*/CHECKCONFIG_BIN=/' "${D}"/etc/conf.d/opendnssec
+}
+
+pkg_postinst() {
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+ if use auditor; then
+ ewarn
+ ewarn "Please note that auditor support has been disabled in this version since it"
+ ewarn "it depends on ruby 1.8 which has been removed from the portage tree."
+ ewarn "USE=auditor is only provided for this warning but will not install the"
+ ewarn "auditor anymore."
+ ewarn
+ fi
+}
diff --git a/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
new file mode 100644
index 00000000000..7204fc6a5df
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
@@ -0,0 +1,208 @@
+# Copyright 1999-2020 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit autotools eutils multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="https://www.opendnssec.org/"
+SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
+RESTRICT="!test? ( test )"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ softhsm? ( dev-libs/softhsm:* )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir.patch"
+ "${FILESDIR}/${PN}-fix-run-dir.patch"
+ "${FILESDIR}/${PN}-drop-privileges.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/portage/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ local patch
+ default
+ for patch in "${PATCHES[@]}"; do
+ epatch "$patch"
+ done
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var/" \
+ --disable-static \
+ --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_enable debug timeshift) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install update scripts
+ insinto /usr/share/opendnssec
+ if use sqlite; then
+ doins enforcer/utils/migrate_*sqlite*
+ fi
+ if use mysql; then
+ doins enforcer/utils/migrate_*mysql*
+ fi
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.3.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.3."
+ ewarn ""
+ ewarn "Please be aware of the following:"
+ ewarn " * OpenDNSSEC now supports both input and output adapters for"
+ ewarn " AXFR and IXFR in addition to file transfer."
+ ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
+ ewarn " to support this enhancement."
+ ewarn " -> changes to the KASP database mean that a database"
+ ewarn " migration is required to upgrade to 1.4 from earlier"
+ ewarn " versions of OpenDNSSEC."
+ ewarn " * The auditor is no longer supported."
+ ewarn ""
+ ewarn "You can find more information here:"
+ ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
+ ewarn ""
+ ;;
+ esac
+ done
+}
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
new file mode 100644
index 00000000000..fa23c0bf555
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
@@ -0,0 +1,206 @@
+# Copyright 1999-2020 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit autotools multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="https://www.opendnssec.org/"
+SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
+RESTRICT="!test? ( test )"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ softhsm? ( dev-libs/softhsm:* )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir.patch"
+ "${FILESDIR}/${PN}-fix-run-dir.patch"
+ "${FILESDIR}/${PN}-drop-privileges.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/portage/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ base_src_prepare
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var/" \
+ --disable-static \
+ --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_enable debug timeshift) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install update scripts
+ insinto /usr/share/opendnssec
+ if use sqlite; then
+ doins enforcer/utils/migrate_keyshare_sqlite3.pl
+ doins enforcer/utils/migrate_adapters_1.sqlite3
+ fi
+ if use mysql; then
+ doins enforcer/utils/migrate_keyshare_mysql.pl
+ doins enforcer/utils/migrate_adapters_1.mysql
+ fi
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.3.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.3."
+ ewarn ""
+ ewarn "Please be aware of the following:"
+ ewarn " * OpenDNSSEC now supports both input and output adapters for"
+ ewarn " AXFR and IXFR in addition to file transfer."
+ ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
+ ewarn " to support this enhancement."
+ ewarn " -> changes to the KASP database mean that a database"
+ ewarn " migration is required to upgrade to 1.4 from earlier"
+ ewarn " versions of OpenDNSSEC."
+ ewarn " * The auditor is no longer supported."
+ ewarn ""
+ ewarn "You can find more information here:"
+ ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
+ ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
+ ewarn ""
+ ;;
+ esac
+ done
+}
diff --git a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
new file mode 100644
index 00000000000..b93dc8f5ab2
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
@@ -0,0 +1,240 @@
+# Copyright 1999-2020 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=5
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+inherit autotools eutils multilib user
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="https://www.opendnssec.org/"
+SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql readline +signer sqlite test ${PKCS11_IUSE}"
+RESTRICT="!test? ( test )"
+
+RDEPEND="
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ virtual/mysql
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ readline? ( sys-libs/readline:0 )
+ softhsm? ( dev-libs/softhsm:* )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+DEPEND="${RDEPEND}
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir-2.0.x.patch"
+ "${FILESDIR}/${PN}-fix-run-dir-2.0.x.patch"
+ "${FILESDIR}/${PN}-drop-privileges-2.0.x.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+)
+
+S="${WORKDIR}/${MY_P}"
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/portage/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ if has_version "<net-dns/opendnssec-1.4.10"; then
+ ################################################################################
+ eerror "You are already using OpenDNSSEC."
+ eerror "In order to migrate to version >=2.0.0 you need to upgrade to"
+ eerror "version >=1.4.10 first:"
+ eerror ""
+ eerror " emerge \"<net-dns/opendnssec-2\""
+ eerror ""
+ eerror "See https://github.com/opendnssec/opendnssec/blob/2.0/master/MIGRATION"
+ eerror "for details."
+ eerror ""
+ die "Please upgrade to version >=1.4.10 first for proper db migraion"
+ fi
+
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ enewgroup opendnssec
+ enewuser opendnssec -1 -1 -1 opendnssec
+
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ local patch
+ default
+ for patch in "${PATCHES[@]}"; do
+ epatch "$patch"
+ done
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var" \
+ --disable-static \
+ --with-enforcer-database=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_with readline) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install db update/migration stuff
+ insinto /usr/share/opendnssec/db
+ if use sqlite; then
+ doins enforcer/utils/convert_mysql_to_sqlite
+ fi
+ if use mysql; then
+ doins enforcer/utils/convert_sqlite_to_mysql
+ fi
+
+ insinto /usr/share/opendnssec/db/sql
+ if use sqlite; then
+ doins enforcer/src/db/schema.sqlite
+ fi
+ if use mysql; then
+ doins enforcer/src/db/schema.mysql
+ fi
+
+ insinto /usr/share/opendnssec/db/1.4-2.0_db_convert
+ doins enforcer/utils/1.4-2.0_db_convert/find_problematic_zones.sql
+ doins enforcer/utils/1.4-2.0_db_convert/README.md
+ if use sqlite; then
+ doins enforcer/utils/1.4-2.0_db_convert/sqlite_convert.sql
+ doins enforcer/utils/1.4-2.0_db_convert/convert_sqlite
+ fi
+ if use mysql; then
+ doins enforcer/utils/1.4-2.0_db_convert/convert_mysql
+ doins enforcer/utils/1.4-2.0_db_convert/mysql_convert.sql
+ fi
+
+ # patch scripts to find schema files
+ sed -i \
+ -e 's,^SCHEMA=../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ -e 's,^SCHEMA=../../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ "${ED}"/usr/share/opendnssec/db/convert_* \
+ "${ED}"/usr/share/opendnssec/db/1.4-2.0_db_convert/convert_*
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,enforcer,signconf,signed,signer,unsigned}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.4.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.4."
+ ewarn ""
+ ewarn "A migration is needed from 1.4 to 2.0."
+ ewarn "For details see /usr/share/doc/${P}/MIGRATION*"
+ ewarn ""
+ ewarn "For your convenience the mentioned migration scripts and README"
+ ewarn "have been installed to /usr/share/${PN}/db/1.4-2.0_db_convert"
+ ewarn ""
+ ;;
+ esac
+ done
+}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2020-09-29 13:53 Aaron Bauman
0 siblings, 0 replies; 27+ messages in thread
From: Aaron Bauman @ 2020-09-29 13:53 UTC (permalink / raw
To: gentoo-commits
commit: 3ec537c84fe7c60771683b928f2d75366b62ca1a
Author: Aaron Bauman <bman <AT> gentoo <DOT> org>
AuthorDate: Tue Sep 29 13:51:47 2020 +0000
Commit: Aaron Bauman <bman <AT> gentoo <DOT> org>
CommitDate: Tue Sep 29 13:51:47 2020 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3ec537c8
Revert "net-dns/opendnssec: fix metadata.xml, remove unused USE description"
This reverts commit 07c203efa6c209002bbc794b4052a65046229ea6.
* I dropped LTS releases so let's restore them
Signed-off-by: Aaron Bauman <bman <AT> gentoo.org>
net-dns/opendnssec/metadata.xml | 2 ++
1 file changed, 2 insertions(+)
diff --git a/net-dns/opendnssec/metadata.xml b/net-dns/opendnssec/metadata.xml
index 05f2788d150..f81a154f2ec 100644
--- a/net-dns/opendnssec/metadata.xml
+++ b/net-dns/opendnssec/metadata.xml
@@ -5,6 +5,8 @@
<email>mschiff@gentoo.org</email>
</maintainer>
<use>
+ <flag name="auditor">Enables auditing capabilities for OpenDNSSEC</flag>
+ <flag name="eppclient">Enables support for automatic submission of DNSSEC keys to an upstream epp server</flag>
<flag name="signer">Enables signing capabilities for OpenDNSSEC</flag>
<flag name="opensc">Enables support for storing DNSSEC keys through a <pkg>dev-libs/opensc</pkg> PKCS#11 interface</flag>
<flag name="softhsm">Enables support for storing DNSSEC keys in a <pkg>dev-libs/softhsm</pkg> PKCS#11 object</flag>
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-04-01 22:08 Sam James
0 siblings, 0 replies; 27+ messages in thread
From: Sam James @ 2021-04-01 22:08 UTC (permalink / raw
To: gentoo-commits
commit: de75873c820ca3a3cfe3c5d2ed796a0154f30dc3
Author: Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Thu Apr 1 02:09:21 2021 +0000
Commit: Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Thu Apr 1 22:08:35 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=de75873c
net-dns/opendnssec: add missing base inherit
Signed-off-by: Sam James <sam <AT> gentoo.org>
net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild | 4 ++--
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
index a37fb6fc331..540acdd5bf6 100644
--- a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
@@ -1,11 +1,11 @@
-# Copyright 1999-2020 Gentoo Authors
+# Copyright 1999-2021 Gentoo Authors
# Distributed under the terms of the GNU General Public License v2
EAPI=5
MY_P="${P/_}"
PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools multilib user
+inherit autotools base multilib user
DESCRIPTION="An open-source turn-key solution for DNSSEC"
HOMEPAGE="https://www.opendnssec.org/"
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
index fa23c0bf555..d6dbea99206 100644
--- a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
+++ b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
@@ -1,11 +1,11 @@
-# Copyright 1999-2020 Gentoo Authors
+# Copyright 1999-2021 Gentoo Authors
# Distributed under the terms of the GNU General Public License v2
EAPI=5
MY_P="${P/_}"
PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools multilib user
+inherit autotools base multilib user
DESCRIPTION="An open-source turn-key solution for DNSSEC"
HOMEPAGE="https://www.opendnssec.org/"
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-04-04 6:33 Sam James
0 siblings, 0 replies; 27+ messages in thread
From: Sam James @ 2021-04-04 6:33 UTC (permalink / raw
To: gentoo-commits
commit: f26cc3c53fc2124bfd489e7538ee0bf90075c3f1
Author: Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Sun Apr 4 01:54:56 2021 +0000
Commit: Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Sun Apr 4 06:32:37 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f26cc3c5
net-dns/opendnssec: drop 1.3.18-r1, 1.4.8.2 (base.eclass--)
Signed-off-by: Sam James <sam <AT> gentoo.org>
net-dns/opendnssec/Manifest | 2 -
net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild | 204 ------------------------
net-dns/opendnssec/opendnssec-1.4.8.2.ebuild | 206 -------------------------
3 files changed, 412 deletions(-)
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 0136e5ba4f9..b771c89f713 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,5 +1,3 @@
-DIST opendnssec-1.3.18.tar.gz 1143889 BLAKE2B 0443a9d29de479257c05d024a756c176a342032eb17b105c04f5808ba550f1026815f191bce6ada13c54a7b7fea0f816d7754227f3d1c9ed76bc4d602785c2cf SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d
DIST opendnssec-1.4.12.tar.gz 1036392 BLAKE2B 3bfbcfe91d7da7c2e4b1c5439f7d55e15612ab6ace6af25fcb9c9eb7ddb2e1055e70684c2bd6bbae57a0c2eb78098b448f7dca198e0d6f9e2e812945a1f06cc2 SHA512 b72b76ab4aec8cc63cc9c020bef9a24b000fd00172a07cf43d57b3a33041bef9e107b71eb7271bb13c3566510599c6a1913cf986a724e169c42dc8bdac8d2e51
-DIST opendnssec-1.4.8.2.tar.gz 1043171 BLAKE2B 20b1fa0d97b776223314937061cd42f4fe0a924e58a159fd0399d23058e2b0fd44d55049947de26c36aade5b5599527fc03f09eeef4e20f8c9beee40dfbcd7fb SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06
DIST opendnssec-2.0.1.tar.gz 1101523 BLAKE2B 0446efd04e73e00d204c53164c3c6aaecb9f37014a110ee85d7e7b1728d225aafcf9e6ef31a7dd29cdf2e875e7b653ab6e8178cece65c47a1c5b027facc16130 SHA512 aa12818f92688e087acaff8a6771d2a7da733e04d9e821967d313c7ff880a1056f470b11988eba1e7aad606418c3a4587f654163d74f68e3f61943c74d86d052
DIST opendnssec-2.0.3.tar.gz 1103355 BLAKE2B b64e729003de86e4139efaad60c9feae9f4e19c16a29fdced55d66f5896c4b7d76c4b8c57a8330d55c0c03e87de1ebe6ec49ef9d1b6e215be963680d2c805579 SHA512 4745a9ac317cc65d6f5b14be640687efd5fde2149541f692fb607a458378d27e903f175023c1aa16a777d17cef9cc68f1a84e7e7cdb233466d26756721b34424
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
deleted file mode 100644
index 540acdd5bf6..00000000000
--- a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
+++ /dev/null
@@ -1,204 +0,0 @@
-# Copyright 1999-2021 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools base multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="-auditor +curl debug doc eppclient mysql +signer +sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- curl? ( net-misc/curl )
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-# test? dev-util/cunit # Requires running test DB
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
- eppclient? ( curl )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-1.3.14-drop-privileges.patch"
- "${FILESDIR}/${PN}-1.3.14-use-system-trang.patch"
- "${FILESDIR}/${PN}-1.3.18-eppclient-curl-CVE-2012-5582.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- local i
-
- for i in eppclient mysql; do
- if use ${i}; then
- ewarn
- ewarn "Usage of ${i} is considered experimental."
- ewarn "Do not report bugs against this feature."
- ewarn
- fi
- done
-
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- # $(use_with test cunit "${EPREFIX}/usr/") \
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- --disable-auditor \
- $(use_with curl) \
- $(use_enable debug timeshift) \
- $(use_enable eppclient) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- use sqlite && doins enforcer/utils/migrate_keyshare_sqlite3.pl
- use mysql && doins enforcer/utils/migrate_keyshare_mysql.pl
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{conf,kasp,zonelist,zonefetch}.xml
- use eppclient && fowners root:opendnssec /etc/opendnssec/eppclientd.conf
-
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd-1.3.x opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd-1.3.x opendnssec
- use auditor || sed -i 's/^CHECKCONFIG_BIN=.*/CHECKCONFIG_BIN=/' "${D}"/etc/conf.d/opendnssec
-}
-
-pkg_postinst() {
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
- if use auditor; then
- ewarn
- ewarn "Please note that auditor support has been disabled in this version since it"
- ewarn "it depends on ruby 1.8 which has been removed from the portage tree."
- ewarn "USE=auditor is only provided for this warning but will not install the"
- ewarn "auditor anymore."
- ewarn
- fi
-}
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
deleted file mode 100644
index d6dbea99206..00000000000
--- a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
+++ /dev/null
@@ -1,206 +0,0 @@
-# Copyright 1999-2021 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools base multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-drop-privileges.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_enable debug timeshift) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- if use sqlite; then
- doins enforcer/utils/migrate_keyshare_sqlite3.pl
- doins enforcer/utils/migrate_adapters_1.sqlite3
- fi
- if use mysql; then
- doins enforcer/utils/migrate_keyshare_mysql.pl
- doins enforcer/utils/migrate_adapters_1.mysql
- fi
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
-
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.3.*)
- ewarn ""
- ewarn "You are upgrading from version 1.3."
- ewarn ""
- ewarn "Please be aware of the following:"
- ewarn " * OpenDNSSEC now supports both input and output adapters for"
- ewarn " AXFR and IXFR in addition to file transfer."
- ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
- ewarn " to support this enhancement."
- ewarn " -> changes to the KASP database mean that a database"
- ewarn " migration is required to upgrade to 1.4 from earlier"
- ewarn " versions of OpenDNSSEC."
- ewarn " * The auditor is no longer supported."
- ewarn ""
- ewarn "You can find more information here:"
- ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
- ewarn ""
- ;;
- esac
- done
-}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-04-04 7:22 Sam James
0 siblings, 0 replies; 27+ messages in thread
From: Sam James @ 2021-04-04 7:22 UTC (permalink / raw
To: gentoo-commits
commit: 5ada73eddafb52752cbed2a5b2dfb04c2570cf2b
Author: Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Sun Apr 4 07:19:41 2021 +0000
Commit: Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Sun Apr 4 07:21:49 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5ada73ed
net-dns/opendnssec: fix UnusedLocalUse
Signed-off-by: Sam James <sam <AT> gentoo.org>
net-dns/opendnssec/metadata.xml | 2 --
1 file changed, 2 deletions(-)
diff --git a/net-dns/opendnssec/metadata.xml b/net-dns/opendnssec/metadata.xml
index f81a154f2ec..05f2788d150 100644
--- a/net-dns/opendnssec/metadata.xml
+++ b/net-dns/opendnssec/metadata.xml
@@ -5,8 +5,6 @@
<email>mschiff@gentoo.org</email>
</maintainer>
<use>
- <flag name="auditor">Enables auditing capabilities for OpenDNSSEC</flag>
- <flag name="eppclient">Enables support for automatic submission of DNSSEC keys to an upstream epp server</flag>
<flag name="signer">Enables signing capabilities for OpenDNSSEC</flag>
<flag name="opensc">Enables support for storing DNSSEC keys through a <pkg>dev-libs/opensc</pkg> PKCS#11 interface</flag>
<flag name="softhsm">Enables support for storing DNSSEC keys in a <pkg>dev-libs/softhsm</pkg> PKCS#11 object</flag>
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-07-13 20:57 Conrad Kostecki
0 siblings, 0 replies; 27+ messages in thread
From: Conrad Kostecki @ 2021-07-13 20:57 UTC (permalink / raw
To: gentoo-commits
commit: adc6e26564188845077807b81584517d2176a018
Author: Conrad Kostecki <conikost <AT> gentoo <DOT> org>
AuthorDate: Tue Jul 13 19:41:43 2021 +0000
Commit: Conrad Kostecki <conikost <AT> gentoo <DOT> org>
CommitDate: Tue Jul 13 20:55:14 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=adc6e265
net-dns/opendnssec: drop old version
Closes: https://bugs.gentoo.org/781383
Package-Manager: Portage-3.0.20, Repoman-3.0.3
Signed-off-by: Conrad Kostecki <conikost <AT> gentoo.org>
net-dns/opendnssec/opendnssec-2.0.3-r1.ebuild | 238 --------------------------
1 file changed, 238 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-2.0.3-r1.ebuild b/net-dns/opendnssec/opendnssec-2.0.3-r1.ebuild
deleted file mode 100644
index eea0ece708c..00000000000
--- a/net-dns/opendnssec/opendnssec-2.0.3-r1.ebuild
+++ /dev/null
@@ -1,238 +0,0 @@
-# Copyright 1999-2021 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=7
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql readline +signer sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- dev-db/mysql-connector-c:0=
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- readline? ( sys-libs/readline:0 )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}"
-BDEPEND="
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir-2.0.x.patch"
- "${FILESDIR}/${PN}-fix-run-dir-2.0.x.patch"
- "${FILESDIR}/${PN}-drop-privileges-2.0.x.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
- "${FILESDIR}/${PN}-openssl1.1.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- if has_version "<net-dns/opendnssec-1.4.10"; then
- ################################################################################
- eerror "You are already using OpenDNSSEC."
- eerror "In order to migrate to version >=2.0.0 you need to upgrade to"
- eerror "version >=1.4.10 first:"
- eerror ""
- eerror " emerge \"<net-dns/opendnssec-2\""
- eerror ""
- eerror "See https://github.com/opendnssec/opendnssec/blob/2.0/master/MIGRATION"
- eerror "for details."
- eerror ""
- die "Please upgrade to version >=1.4.10 first for proper db migraion"
- fi
-
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- default
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var" \
- --disable-static \
- --with-enforcer-database=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_with readline) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install db update/migration stuff
- insinto /usr/share/opendnssec/db
- if use sqlite; then
- doins enforcer/utils/convert_mysql_to_sqlite
- fi
- if use mysql; then
- doins enforcer/utils/convert_sqlite_to_mysql
- fi
-
- insinto /usr/share/opendnssec/db/sql
- if use sqlite; then
- doins enforcer/src/db/schema.sqlite
- fi
- if use mysql; then
- doins enforcer/src/db/schema.mysql
- fi
-
- insinto /usr/share/opendnssec/db/1.4-2.0_db_convert
- doins enforcer/utils/1.4-2.0_db_convert/find_problematic_zones.sql
- doins enforcer/utils/1.4-2.0_db_convert/README.md
- if use sqlite; then
- doins enforcer/utils/1.4-2.0_db_convert/sqlite_convert.sql
- doins enforcer/utils/1.4-2.0_db_convert/convert_sqlite
- fi
- if use mysql; then
- doins enforcer/utils/1.4-2.0_db_convert/convert_mysql
- doins enforcer/utils/1.4-2.0_db_convert/mysql_convert.sql
- fi
-
- # patch scripts to find schema files
- sed -i \
- -e 's,^SCHEMA=../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
- -e 's,^SCHEMA=../../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
- "${ED}"/usr/share/opendnssec/db/convert_* \
- "${ED}"/usr/share/opendnssec/db/1.4-2.0_db_convert/convert_* || die
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,enforcer,signconf,signed,signer,unsigned}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.4.*)
- ewarn ""
- ewarn "You are upgrading from version 1.4."
- ewarn ""
- ewarn "A migration is needed from 1.4 to 2.0."
- ewarn "For details see /usr/share/doc/${P}/MIGRATION*"
- ewarn ""
- ewarn "For your convenience the mentioned migration scripts and README"
- ewarn "have been installed to /usr/share/${PN}/db/1.4-2.0_db_convert"
- ewarn ""
- ;;
- esac
- done
-}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-07-13 20:57 Conrad Kostecki
0 siblings, 0 replies; 27+ messages in thread
From: Conrad Kostecki @ 2021-07-13 20:57 UTC (permalink / raw
To: gentoo-commits
commit: 3172a8041d5b126c5e735e4be879cba2a0322dfc
Author: Conrad Kostecki <conikost <AT> gentoo <DOT> org>
AuthorDate: Tue Jul 13 19:38:53 2021 +0000
Commit: Conrad Kostecki <conikost <AT> gentoo <DOT> org>
CommitDate: Tue Jul 13 20:55:13 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3172a804
net-dns/opendnssec: migrate to GLEP 81
Bug: https://bugs.gentoo.org/781383
Package-Manager: Portage-3.0.20, Repoman-3.0.3
Signed-off-by: Conrad Kostecki <conikost <AT> gentoo.org>
net-dns/opendnssec/opendnssec-2.0.3-r2.ebuild | 242 ++++++++++++++++++++++++++
1 file changed, 242 insertions(+)
diff --git a/net-dns/opendnssec/opendnssec-2.0.3-r2.ebuild b/net-dns/opendnssec/opendnssec-2.0.3-r2.ebuild
new file mode 100644
index 00000000000..17efc48d490
--- /dev/null
+++ b/net-dns/opendnssec/opendnssec-2.0.3-r2.ebuild
@@ -0,0 +1,242 @@
+# Copyright 1999-2021 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=7
+
+MY_P="${P/_}"
+PKCS11_IUSE="+softhsm opensc external-hsm"
+
+inherit autotools
+
+DESCRIPTION="An open-source turn-key solution for DNSSEC"
+HOMEPAGE="https://www.opendnssec.org/"
+SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
+S="${WORKDIR}/${MY_P}"
+
+LICENSE="BSD GPL-2"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="debug doc +mysql readline +signer sqlite test ${PKCS11_IUSE}"
+RESTRICT="!test? ( test )"
+
+RDEPEND="
+ acct-group/opendnssec
+ acct-user/opendnssec
+ dev-lang/perl
+ dev-libs/libxml2
+ dev-libs/libxslt
+ net-libs/ldns
+ mysql? (
+ dev-db/mysql-connector-c:0=
+ dev-perl/DBD-mysql
+ )
+ opensc? ( dev-libs/opensc )
+ readline? ( sys-libs/readline:0 )
+ softhsm? ( dev-libs/softhsm:* )
+ sqlite? (
+ dev-db/sqlite:3
+ dev-perl/DBD-SQLite
+ )
+"
+
+DEPEND="${RDEPEND}"
+
+BDEPEND="
+ doc? ( app-doc/doxygen )
+ test? (
+ app-text/trang
+ )
+"
+
+REQUIRED_USE="
+ ^^ ( mysql sqlite )
+ ^^ ( softhsm opensc external-hsm )
+"
+
+PATCHES=(
+ "${FILESDIR}/${PN}-fix-localstatedir-2.0.x.patch"
+ "${FILESDIR}/${PN}-fix-run-dir-2.0.x.patch"
+ "${FILESDIR}/${PN}-drop-privileges-2.0.x.patch"
+ "${FILESDIR}/${PN}-use-system-trang.patch"
+ "${FILESDIR}/${PN}-openssl1.1.patch"
+)
+
+DOCS=( MIGRATION NEWS )
+
+check_pkcs11_setup() {
+ # PKCS#11 HSM's are often only available with proprietary drivers not
+ # available in portage tree.
+
+ if use softhsm; then
+ PKCS11_LIB=softhsm
+ if has_version ">=dev-libs/softhsm-1.3.1"; then
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
+ else
+ PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
+ fi
+ elog "Building with SoftHSM PKCS#11 library support."
+ fi
+ if use opensc; then
+ PKCS11_LIB=opensc
+ PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
+ elog "Building with OpenSC PKCS#11 library support."
+ fi
+ if use external-hsm; then
+ if [[ -n ${PKCS11_SCA6000} ]]; then
+ PKCS11_LIB=sca6000
+ PKCS11_PATH=${PKCS11_SCA6000}
+ elif [[ -n ${PKCS11_ETOKEN} ]]; then
+ PKCS11_LIB=etoken
+ PKCS11_PATH=${PKCS11_ETOKEN}
+ elif [[ -n ${PKCS11_NCIPHER} ]]; then
+ PKCS11_LIB=ncipher
+ PKCS11_PATH=${PKCS11_NCIPHER}
+ elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
+ PKCS11_LIB=aepkeyper
+ PKCS11_PATH=${PKCS11_AEPKEYPER}
+ else
+ ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
+ ewarn "library. To set a path, set one of the following environment variables:"
+ ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
+ ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
+ ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
+ ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
+ ewarn "Example:"
+ ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
+ ewarn "or store the variable into /etc/portage/make.conf"
+ die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
+ fi
+ elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
+ fi
+}
+
+pkg_pretend() {
+ if has_version "<net-dns/opendnssec-1.4.10"; then
+ ################################################################################
+ eerror "You are already using OpenDNSSEC."
+ eerror "In order to migrate to version >=2.0.0 you need to upgrade to"
+ eerror "version >=1.4.10 first:"
+ eerror ""
+ eerror " emerge \"<net-dns/opendnssec-2\""
+ eerror ""
+ eerror "See https://github.com/opendnssec/opendnssec/blob/2.0/master/MIGRATION"
+ eerror "for details."
+ eerror ""
+ die "Please upgrade to version >=1.4.10 first for proper db migraion"
+ fi
+
+ check_pkcs11_setup
+}
+
+pkg_setup() {
+ # pretend does not preserve variables so we need to run this once more
+ check_pkcs11_setup
+}
+
+src_prepare() {
+ default
+ eautoreconf
+}
+
+src_configure() {
+ econf \
+ --without-cunit \
+ --localstatedir="${EPREFIX}/var" \
+ --disable-static \
+ --with-enforcer-database=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
+ --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
+ $(use_with readline) \
+ $(use_enable signer)
+}
+
+src_compile() {
+ default
+ use doc && emake docs
+}
+
+src_install() {
+ default
+
+ # remove useless .la files
+ find "${ED}" -name '*.la' -delete
+
+ # Remove subversion tags from config files to avoid useless config updates
+ sed -i \
+ -e '/<!-- \$Id:/ d' \
+ "${ED}"/etc/opendnssec/* || die
+
+ # install db update/migration stuff
+ insinto /usr/share/opendnssec/db
+ if use sqlite; then
+ doins enforcer/utils/convert_mysql_to_sqlite
+ fi
+ if use mysql; then
+ doins enforcer/utils/convert_sqlite_to_mysql
+ fi
+
+ insinto /usr/share/opendnssec/db/sql
+ if use sqlite; then
+ doins enforcer/src/db/schema.sqlite
+ fi
+ if use mysql; then
+ doins enforcer/src/db/schema.mysql
+ fi
+
+ insinto /usr/share/opendnssec/db/1.4-2.0_db_convert
+ doins enforcer/utils/1.4-2.0_db_convert/find_problematic_zones.sql
+ doins enforcer/utils/1.4-2.0_db_convert/README.md
+ if use sqlite; then
+ doins enforcer/utils/1.4-2.0_db_convert/sqlite_convert.sql
+ doins enforcer/utils/1.4-2.0_db_convert/convert_sqlite
+ fi
+ if use mysql; then
+ doins enforcer/utils/1.4-2.0_db_convert/convert_mysql
+ doins enforcer/utils/1.4-2.0_db_convert/mysql_convert.sql
+ fi
+
+ # patch scripts to find schema files
+ sed -i \
+ -e 's,^SCHEMA=../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ -e 's,^SCHEMA=../../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
+ "${ED}"/usr/share/opendnssec/db/convert_* \
+ "${ED}"/usr/share/opendnssec/db/1.4-2.0_db_convert/convert_* || die
+
+ # create directories
+ keepdir /var/lib/opendnssec/{,enforcer,signconf,signed,signer,unsigned}
+
+ # fix permissions
+ fowners root:opendnssec /etc/opendnssec
+ fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
+ fowners opendnssec:opendnssec /var/lib/opendnssec/{,enforcer,signconf,signed,signer,unsigned}
+
+ # install conf/init script
+ newinitd "${FILESDIR}"/opendnssec.initd opendnssec
+ newconfd "${FILESDIR}"/opendnssec.confd opendnssec
+}
+
+pkg_postinst() {
+ local v
+ if use softhsm; then
+ elog "Please make sure that you create your softhsm database in a location writeable"
+ elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
+ elog "Suggested configuration is:"
+ elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
+ elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
+ elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
+ fi
+ for v in $REPLACING_VERSIONS; do
+ case $v in
+ 1.4.*)
+ ewarn ""
+ ewarn "You are upgrading from version 1.4."
+ ewarn ""
+ ewarn "A migration is needed from 1.4 to 2.0."
+ ewarn "For details see /usr/share/doc/${P}/MIGRATION*"
+ ewarn ""
+ ewarn "For your convenience the mentioned migration scripts and README"
+ ewarn "have been installed to /usr/share/${PN}/db/1.4-2.0_db_convert"
+ ewarn ""
+ ;;
+ esac
+ done
+}
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-11-28 1:49 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2021-11-28 1:49 UTC (permalink / raw
To: gentoo-commits
commit: 98a218efd4ed121ed1a8f8ffc7b4fbb880fe90eb
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Sun Nov 28 01:48:55 2021 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Sun Nov 28 01:49:48 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=98a218ef
net-dns/opendnssec: cleanups and improve tests
Signed-off-by: Marc Schiffbauer <mschiff <AT> gentoo.org>
net-dns/opendnssec/opendnssec-2.1.10.ebuild | 15 +++------------
1 file changed, 3 insertions(+), 12 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-2.1.10.ebuild b/net-dns/opendnssec/opendnssec-2.1.10.ebuild
index 2df181514c42..fc1cc54c2d14 100644
--- a/net-dns/opendnssec/opendnssec-2.1.10.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.1.10.ebuild
@@ -45,6 +45,8 @@ BDEPEND="
doc? ( app-doc/doxygen )
test? (
app-text/trang
+ dev-libs/softhsm:*
+ dev-util/cunit
)
"
@@ -53,13 +55,6 @@ REQUIRED_USE="
^^ ( softhsm opensc external-hsm )
"
-#PATCHES=(
-# "${FILESDIR}/${PN}-fix-localstatedir-2.0.x.patch"
-# "${FILESDIR}/${PN}-fix-run-dir-2.0.x.patch"
-# "${FILESDIR}/${PN}-drop-privileges-2.0.x.patch"
-# "${FILESDIR}/${PN}-use-system-trang.patch"
-# "${FILESDIR}/${PN}-openssl1.1.patch"
-#)
PATCHES=(
"${FILESDIR}/${PN}-fix-run-dir-2.1.x.patch"
"${FILESDIR}/${PN}-use-system-trang.patch"
@@ -73,11 +68,7 @@ check_pkcs11_setup() {
if use softhsm; then
PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
+ PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm2.so
elog "Building with SoftHSM PKCS#11 library support."
fi
if use opensc; then
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-12-07 10:02 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2021-12-07 10:02 UTC (permalink / raw
To: gentoo-commits
commit: bd28cb6ad310d84eaf7afd5f7ddd70e13b2a035c
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Tue Dec 7 10:00:08 2021 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Tue Dec 7 10:01:25 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bd28cb6a
net-dns/opendnssec: fix dependency on ldns
Closes: https://bugs.gentoo.org/828425
Signed-off-by: Marc Schiffbauer <mschiff <AT> gentoo.org>
.../{opendnssec-2.1.10.ebuild => opendnssec-2.1.10-r1.ebuild} | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/net-dns/opendnssec/opendnssec-2.1.10.ebuild b/net-dns/opendnssec/opendnssec-2.1.10-r1.ebuild
similarity index 98%
rename from net-dns/opendnssec/opendnssec-2.1.10.ebuild
rename to net-dns/opendnssec/opendnssec-2.1.10-r1.ebuild
index fc1cc54c2d14..210d41c8d872 100644
--- a/net-dns/opendnssec/opendnssec-2.1.10.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.1.10-r1.ebuild
@@ -25,7 +25,7 @@ RDEPEND="
dev-lang/perl
dev-libs/libxml2
dev-libs/libxslt
- net-libs/ldns
+ net-libs/ldns[ed25519,ed448]
mysql? (
dev-db/mysql-connector-c:0=
dev-perl/DBD-mysql
@@ -133,10 +133,10 @@ src_prepare() {
}
src_configure() {
+# --localstatedir="${EPREFIX}/var/lib" \
econf \
--enable-installation-user=opendnssec \
--enable-installation-group=opendnssec \
- --localstatedir="${EPREFIX}/var/lib" \
--without-cunit \
--disable-static \
--with-enforcer-database=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2021-12-24 10:57 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2021-12-24 10:57 UTC (permalink / raw
To: gentoo-commits
commit: debaa1a0472615bac5d951695d79d56e6cfd9d94
Author: Mike Gilbert <floppym <AT> gentoo <DOT> org>
AuthorDate: Wed Dec 22 23:14:57 2021 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Fri Dec 24 10:39:03 2021 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=debaa1a0
net-dns/opendnssec: update ldns dep
The ed25519 and ed448 USE flags are being removed.
Bug: https://bugs.gentoo.org/829687
Signed-off-by: Mike Gilbert <floppym <AT> gentoo.org>
Closes: https://bugs.gentoo.org/829687
Closes: https://github.com/gentoo/gentoo/pull/23475
Signed-off-by: Marc Schiffbauer <mschiff <AT> gentoo.org>
.../{opendnssec-2.1.10-r1.ebuild => opendnssec-2.1.10-r2.ebuild} | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/net-dns/opendnssec/opendnssec-2.1.10-r1.ebuild b/net-dns/opendnssec/opendnssec-2.1.10-r2.ebuild
similarity index 99%
rename from net-dns/opendnssec/opendnssec-2.1.10-r1.ebuild
rename to net-dns/opendnssec/opendnssec-2.1.10-r2.ebuild
index 210d41c8d872..771b0a19985f 100644
--- a/net-dns/opendnssec/opendnssec-2.1.10-r1.ebuild
+++ b/net-dns/opendnssec/opendnssec-2.1.10-r2.ebuild
@@ -25,7 +25,7 @@ RDEPEND="
dev-lang/perl
dev-libs/libxml2
dev-libs/libxslt
- net-libs/ldns[ed25519,ed448]
+ net-libs/ldns[ed25519(+),ed448(+)]
mysql? (
dev-db/mysql-connector-c:0=
dev-perl/DBD-mysql
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2023-12-04 8:32 Marc Schiffbauer
0 siblings, 0 replies; 27+ messages in thread
From: Marc Schiffbauer @ 2023-12-04 8:32 UTC (permalink / raw
To: gentoo-commits
commit: 1795fabcf9a1850d4b9ec0013cd1609917e7a483
Author: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
AuthorDate: Mon Dec 4 08:32:15 2023 +0000
Commit: Marc Schiffbauer <mschiff <AT> gentoo <DOT> org>
CommitDate: Mon Dec 4 08:32:32 2023 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1795fabc
net-dns/opendnssec: drop myself as a maintainer
Signed-off-by: Marc Schiffbauer <mschiff <AT> gentoo.org>
net-dns/opendnssec/metadata.xml | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/net-dns/opendnssec/metadata.xml b/net-dns/opendnssec/metadata.xml
index c86a03d33842..142c2461b8ff 100644
--- a/net-dns/opendnssec/metadata.xml
+++ b/net-dns/opendnssec/metadata.xml
@@ -1,9 +1,7 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE pkgmetadata SYSTEM "https://www.gentoo.org/dtd/metadata.dtd">
<pkgmetadata>
- <maintainer type="person">
- <email>mschiff@gentoo.org</email>
- </maintainer>
+ <!-- maintainer-needed -->
<use>
<flag name="signer">Enables signing capabilities for OpenDNSSEC</flag>
<flag name="opensc">Enables support for storing DNSSEC keys through a <pkg>dev-libs/opensc</pkg> PKCS#11 interface</flag>
^ permalink raw reply related [flat|nested] 27+ messages in thread
* [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/
@ 2024-07-08 3:40 Sam James
0 siblings, 0 replies; 27+ messages in thread
From: Sam James @ 2024-07-08 3:40 UTC (permalink / raw
To: gentoo-commits
commit: 64395bcec543d3055349fcf4cb823dcb810f9e4a
Author: Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Mon Jul 8 03:40:27 2024 +0000
Commit: Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Mon Jul 8 03:40:27 2024 +0000
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=64395bce
net-dns/opendnssec: add github upstream metadata
Signed-off-by: Sam James <sam <AT> gentoo.org>
net-dns/opendnssec/metadata.xml | 3 +++
1 file changed, 3 insertions(+)
diff --git a/net-dns/opendnssec/metadata.xml b/net-dns/opendnssec/metadata.xml
index 142c2461b8ff..dacff87f9bec 100644
--- a/net-dns/opendnssec/metadata.xml
+++ b/net-dns/opendnssec/metadata.xml
@@ -8,4 +8,7 @@
<flag name="softhsm">Enables support for storing DNSSEC keys in a <pkg>dev-libs/softhsm</pkg> PKCS#11 object</flag>
<flag name="external-hsm">Enables support for storing DNSSEC keys through an arbitrary non-portage PKCS#11 interface, specified through an environment variable</flag>
</use>
+ <upstream>
+ <remote-id type="github">opendnssec/opendnssec</remote-id>
+ </upstream>
</pkgmetadata>
^ permalink raw reply related [flat|nested] 27+ messages in thread
end of thread, other threads:[~2024-07-08 3:40 UTC | newest]
Thread overview: 27+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2021-04-04 6:33 [gentoo-commits] repo/gentoo:master commit in: net-dns/opendnssec/ Sam James
-- strict thread matches above, loose matches on Subject: below --
2024-07-08 3:40 Sam James
2023-12-04 8:32 Marc Schiffbauer
2021-12-24 10:57 Marc Schiffbauer
2021-12-07 10:02 Marc Schiffbauer
2021-11-28 1:49 Marc Schiffbauer
2021-07-13 20:57 Conrad Kostecki
2021-07-13 20:57 Conrad Kostecki
2021-04-04 7:22 Sam James
2021-04-01 22:08 Sam James
2020-09-29 13:53 Aaron Bauman
2020-09-29 13:53 Aaron Bauman
2020-09-27 0:14 Conrad Kostecki
2017-09-02 14:56 Michael Palimaka
2016-12-29 17:33 Marc Schiffbauer
2016-12-19 19:32 Marc Schiffbauer
2016-12-18 2:54 Marc Schiffbauer
2016-12-18 2:54 Marc Schiffbauer
2016-12-18 2:54 Marc Schiffbauer
2016-12-18 2:54 Marc Schiffbauer
2016-08-23 15:48 Marc Schiffbauer
2016-08-23 15:48 Marc Schiffbauer
2016-03-24 0:30 Marc Schiffbauer
2015-12-06 23:43 Marc Schiffbauer
2015-12-06 23:43 Marc Schiffbauer
2015-10-04 14:02 Marc Schiffbauer
2015-10-04 14:02 Marc Schiffbauer
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox