* [gentoo-commits] gentoo-x86 commit in net-dns/bind: bind-9.7.0_p2-r1.ebuild ChangeLog bind-9.6.2_p2.ebuild bind-9.7.0_p2.ebuild bind-9.6.1_p3-r1.ebuild
@ 2010-05-23 20:44 Christian Ruppert (idl0r)
0 siblings, 0 replies; only message in thread
From: Christian Ruppert (idl0r) @ 2010-05-23 20:44 UTC (permalink / raw
To: gentoo-commits
idl0r 10/05/23 20:44:50
Modified: ChangeLog
Added: bind-9.7.0_p2-r1.ebuild bind-9.6.2_p2.ebuild
Removed: bind-9.7.0_p2.ebuild bind-9.6.1_p3-r1.ebuild
Log:
Improve chroot part, bug 321071. Version bump from bind-9.6.1_p3 to bind-9.6.2_p2. bind-9.7.0_p2 revbump. Add chaos view to files/named.conf-r4.
(Portage version: 2.2_rc67/cvs/Linux x86_64)
Revision Changes Path
1.275 net-dns/bind/ChangeLog
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/ChangeLog?rev=1.275&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/ChangeLog?rev=1.275&content-type=text/plain
diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/ChangeLog?r1=1.274&r2=1.275
Index: ChangeLog
===================================================================
RCS file: /var/cvsroot/gentoo-x86/net-dns/bind/ChangeLog,v
retrieving revision 1.274
retrieving revision 1.275
diff -u -r1.274 -r1.275
--- ChangeLog 22 May 2010 09:04:13 -0000 1.274
+++ ChangeLog 23 May 2010 20:44:50 -0000 1.275
@@ -1,6 +1,16 @@
# ChangeLog for net-dns/bind
# Copyright 1999-2010 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/net-dns/bind/ChangeLog,v 1.274 2010/05/22 09:04:13 jlec Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-dns/bind/ChangeLog,v 1.275 2010/05/23 20:44:50 idl0r Exp $
+
+*bind-9.7.0_p2-r1 (23 May 2010)
+*bind-9.6.2_p2 (23 May 2010)
+
+ 23 May 2010; Christian Ruppert <idl0r@gentoo.org>
+ -bind-9.6.1_p3-r1.ebuild, +bind-9.6.2_p2.ebuild, -bind-9.7.0_p2.ebuild,
+ +bind-9.7.0_p2-r1.ebuild, files/named.conf-r4, files/named.init-r7:
+ Improve chroot part, bug 321071. Version bump from bind-9.6.1_p3 to
+ bind-9.6.2_p2. bind-9.7.0_p2 revbump. Add chaos view to
+ files/named.conf-r4.
22 May 2010; Justin Lecher <jlec@gentoo.org> bind-9.7.0_p2.ebuild:
Removed epause in EAPI=3 ebuilds
1.1 net-dns/bind/bind-9.7.0_p2-r1.ebuild
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/bind-9.7.0_p2-r1.ebuild?rev=1.1&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/bind-9.7.0_p2-r1.ebuild?rev=1.1&content-type=text/plain
Index: bind-9.7.0_p2-r1.ebuild
===================================================================
# Copyright 1999-2010 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/net-dns/bind/bind-9.7.0_p2-r1.ebuild,v 1.1 2010/05/23 20:44:50 idl0r Exp $
EAPI="3"
inherit eutils autotools toolchain-funcs flag-o-matic
MY_PV="${PV/_p/-P}"
MY_P="${PN}-${MY_PV}"
SDB_LDAP_VER="1.1.0"
GEOIP_PV=1.3
GEOIP_SRC_URI_BASE="http://bind-geoip.googlecode.com/"
GEOIP_P="bind-geoip-${GEOIP_PV}"
DESCRIPTION="BIND - Berkeley Internet Name Domain - Name Server"
HOMEPAGE="http://www.isc.org/software/bind"
SRC_URI="ftp://ftp.isc.org/isc/bind9/${MY_PV}/${MY_P}.tar.gz
sdb-ldap? ( mirror://gentoo/bind-sdb-ldap-${SDB_LDAP_VER}.tar.bz2 )
doc? ( mirror://gentoo/dyndns-samples.tbz2 )
geoip? ( ${GEOIP_SRC_URI_BASE}/files/${GEOIP_P}-readme.txt
${GEOIP_SRC_URI_BASE}/files/${GEOIP_P}.patch )"
LICENSE="as-is"
SLOT="0"
KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86"
IUSE="ssl ipv6 doc dlz postgres berkdb mysql odbc ldap selinux idn threads
resolvconf urandom sdb-ldap xml geoip"
DEPEND="ssl? ( >=dev-libs/openssl-0.9.6g )
mysql? ( >=virtual/mysql-4.0 )
odbc? ( >=dev-db/unixODBC-2.2.6 )
ldap? ( net-nds/openldap )
idn? ( net-dns/idnkit )
postgres? ( virtual/postgresql-base )
threads? ( >=sys-libs/libcap-2.1.0 )
xml? ( dev-libs/libxml2 )
geoip? ( >=dev-libs/geoip-1.4.6 )"
RDEPEND="${DEPEND}
selinux? ( sec-policy/selinux-bind )
resolvconf? ( net-dns/openresolv )"
S="${WORKDIR}/${MY_P}"
pkg_setup() {
use threads && {
ewarn
ewarn "If you're in vserver enviroment, you're probably want to"
ewarn "disable threads support because of linux capabilities dependency"
ewarn
}
ebegin "Creating named group and user"
enewgroup named 40
enewuser named 40 -1 /etc/bind named
eend ${?}
}
src_prepare() {
# bug 278364 (workaround)
epatch "${FILESDIR}/${PN}-9.6.1-parallel.patch"
# Adjusting PATHs in manpages
for i in bin/{named/named.8,check/named-checkconf.8,rndc/rndc.8} ; do
sed -i \
-e 's:/etc/named.conf:/etc/bind/named.conf:g' \
-e 's:/etc/rndc.conf:/etc/bind/rndc.conf:g' \
-e 's:/etc/rndc.key:/etc/bind/rndc.key:g' \
"${i}" || die "sed failed, ${i} doesn't exist"
done
if use dlz; then
epatch "${FILESDIR}"/${PN}-9.4.0-dlzbdb-close_cursor.patch
# bind fails to reconnect to MySQL5 databases, bug #180720, patch by Nicolas Brousse
# (http://www.shell-tips.com/2007/09/04/bind-950-patch-dlz-mysql-5-for-auto-reconnect/)
use mysql && has_version ">=dev-db/mysql-5" && epatch "${FILESDIR}"/bind-dlzmysql5-reconnect.patch
if use ldap; then
# bug 238681
epatch "${FILESDIR}/bind-9.6.1-dlz-patch-ldap-url.patch" \
"${FILESDIR}/bind-9.6.1-dlz-patch-dollar2.patch"
fi
fi
# should be installed by bind-tools
sed -i -r -e "s:(nsupdate|dig) ::g" bin/Makefile.in || die
# sdb-ldap patch as per bug #160567
# Upstream URL: http://bind9-ldap.bayour.com/
use sdb-ldap && epatch "${WORKDIR}"/sdb-ldap/${PN}-sdb-ldap-${SDB_LDAP_VER}.patch
if use geoip; then
cp "${DISTDIR}"/${GEOIP_P}.patch "${S}" || die
sed -i -e 's/-RELEASEVER=3/-RELEASEVER=2/' \
-e 's/+RELEASEVER=3-geoip-1.3/+RELEASEVER=1-geoip-1.3/' \
${GEOIP_P}.patch || die
epatch ${GEOIP_P}.patch
fi
# bug #220361
rm {aclocal,libtool}.m4
WANT_AUTOCONF=2.5 AT_NO_RECURSIVE=1 eautoreconf
# remove useless c++ checks
epunt_cxx
}
src_configure() {
local myconf=""
use dlz && {
myconf="${myconf} --with-dlz-filesystem --with-dlz-stub"
use postgres && myconf="${myconf} --with-dlz-postgres"
use mysql && myconf="${myconf} --with-dlz-mysql"
use berkdb && myconf="${myconf} --with-dlz-bdb"
use ldap && myconf="${myconf} --with-dlz-ldap"
use odbc && myconf="${myconf} --with-dlz-odbc"
}
if use threads; then
if use dlz && use mysql; then
ewarn
ewarn "MySQL uses thread local storage in its C api. Thus MySQL"
ewarn "requires that each thread of an application execute a MySQL"
ewarn "\"thread initialization\" to setup the thread local storage."
ewarn "This is impossible to do safely while staying within the DLZ"
ewarn "driver API. This is a limitation caused by MySQL, and not"
ewarn "the DLZ API."
ewarn "Because of this BIND MUST only run with a single thread when"
ewarn "using the MySQL driver."
ewarn
myconf="${myconf} --disable-linux-caps --disable-threads"
ewarn "Threading support disabled"
else
myconf="${myconf} --enable-linux-caps --enable-threads"
einfo "Threading support enabled"
fi
else
myconf="${myconf} --disable-linux-caps --disable-threads"
fi
if use urandom; then
myconf="${myconf} --with-randomdev=/dev/urandom"
else
myconf="${myconf} --with-randomdev=/dev/random"
fi
use geoip && myconf="${myconf} --with-geoip"
# bug #158664
gcc-specs-ssp && replace-flags -O[23s] -O
export BUILD_CC=$(tc-getBUILD_CC)
econf \
--sysconfdir=/etc/bind \
--localstatedir=/var \
--with-libtool \
$(use_with ssl openssl) \
$(use_with idn) \
$(use_enable ipv6) \
$(use_with xml libxml2) \
${myconf}
# bug #151839
echo '#undef SO_BSDCOMPAT' >> config.h
}
src_install() {
emake DESTDIR="${D}" install || die
dodoc CHANGES FAQ README || die
if use idn; then
dodoc contrib/idn/README.idnkit || die
fi
if use doc; then
dodoc doc/arm/Bv9ARM.pdf || die
docinto misc
dodoc doc/misc/* || die
# might a 'html' useflag make sense?
docinto html
dohtml -r doc/arm/* || die
docinto draft
dodoc doc/draft/* || die
docinto rfc
dodoc doc/rfc/* || die
docinto contrib
dodoc contrib/named-bootconf/named-bootconf.sh \
contrib/nanny/nanny.pl || die
# some handy-dandy dynamic dns examples
cd "${D}"/usr/share/doc/${PF}
tar xf "${DISTDIR}"/dyndns-samples.tbz2 || die
fi
use geoip && dodoc "${DISTDIR}"/${GEOIP_P}-readme.txt
insinto /etc/bind
newins "${FILESDIR}"/named.conf-r4 named.conf || die
# ftp://ftp.rs.internic.net/domain/named.cache:
insinto /var/bind
doins "${FILESDIR}"/named.cache || die
insinto /var/bind/pri
newins "${FILESDIR}"/127.zone-r1 127.zone || die
newins "${FILESDIR}"/localhost.zone-r3 localhost.zone || die
newinitd "${FILESDIR}"/named.init-r7 named || die
newconfd "${FILESDIR}"/named.confd-r3 named || die
newenvd "${FILESDIR}"/10bind.env 10bind || die
# Let's get rid of those tools and their manpages since they're provided by bind-tools
rm -f "${D}"/usr/share/man/man1/{dig,host,nslookup}.1*
rm -f "${D}"/usr/share/man/man8/{dnssec-keygen,nsupdate}.8*
rm -f "${D}"/usr/bin/{dig,host,nslookup,dnssec-keygen,nsupdate}
rm -f "${D}"/usr/sbin/{dig,host,nslookup,dnssec-keygen,nsupdate}
dosym /var/bind/named.cache /var/bind/root.cache || die
dosym /var/bind/pri /etc/bind/pri || die
dosym /var/bind/sec /etc/bind/sec || die
keepdir /var/bind/sec
dodir /var/{run,log}/named || die
fowners root:named /{etc,var}/bind /var/{run,log}/named /var/bind/{sec,pri}
fowners root:named /var/bind/named.cache /var/bind/pri/{127,localhost}.zone /etc/bind/{bind.keys,named.conf}
fperms 0640 /var/bind/named.cache /var/bind/pri/{127,localhost}.zone /etc/bind/{bind.keys,named.conf}
fperms 0750 /etc/bind /var/bind/pri
fperms 0770 /var/{run,log}/named /var/bind/{,sec}
}
pkg_postinst() {
if [ ! -f '/etc/bind/rndc.key' ]; then
if [ -c /dev/urandom ]; then
einfo "Using /dev/urandom for generating rndc.key"
/usr/sbin/rndc-confgen -r /dev/urandom -a
echo
else
einfo "Using /dev/random for generating rndc.key"
/usr/sbin/rndc-confgen -a
echo
fi
chown root:named /etc/bind/rndc.key
chmod 0640 /etc/bind/rndc.key
fi
einfo "The default zone files are now installed as *.zone,"
einfo "be careful merging config files if you have modified"
einfo "/var/bind/pri/127.zone or /var/bind/pri/localhost.zone"
einfo
einfo "You can edit /etc/conf.d/named to customize named settings"
einfo
einfo "If you like to run bind in chroot AND this is a new install OR"
einfo "your bind doesn't already run in chroot, simply run:"
einfo "\`emerge --config '=${CATEGORY}/${PF}'\`"
einfo "Before running the above command you might want to change the chroot"
einfo "dir in /etc/conf.d/named. Otherwise /chroot/dns will be used."
einfo
einfo "Recently verisign added a wildcard A record to the .COM and .NET TLD"
einfo "zones making all .com and .net domains appear to be registered"
einfo "This causes many problems such as breaking important anti-spam checks"
einfo "which verify source domains exist. ISC released a patch for BIND which"
einfo "adds 'delegation-only' zones to allow admins to return the .com and .net"
einfo "domain resolution to their normal function."
einfo
einfo "There is no need to create a com or net data file. Just the"
einfo "entries to the named.conf file is enough."
einfo
einfo " zone "com" IN { type delegation-only; };"
einfo " zone "net" IN { type delegation-only; };"
CHROOT=$(sed -n 's/^[[:blank:]]\?CHROOT="\([^"]\+\)"/\1/p' /etc/conf.d/named 2>/dev/null)
if [[ -n ${CHROOT} && -d ${CHROOT} ]]; then
ewarn "NOTE: as of 'bind-9.6.1' the chroot part of the init-script got some major changes."
fi
}
pkg_config() {
CHROOT=$(sed -n 's/^[[:blank:]]\?CHROOT="\([^"]\+\)"/\1/p' /etc/conf.d/named 2>/dev/null)
if [ -z "${CHROOT}" ]; then
CHROOT="/chroot/dns"
fi
if [[ -d "${CHROOT}" ]]; then
ewarn "NOTE: As of 'bind-9.6.1' the chroot part of the init-script got some major changes."
ewarn
ewarn "${CHROOT} already exists... some things might become overridden"
ewarn "press CTRL+C if you don't want to continue"
sleep 10
fi
echo; einfo "Setting up the chroot directory..."
mkdir -m 0750 -p ${CHROOT}
mkdir -m 0755 -p ${CHROOT}/{dev,etc,var/{run,log}}
mkdir -m 0750 -p ${CHROOT}/etc/bind
mkdir -m 0770 -p ${CHROOT}/var/{bind,{run,log}/named}
chown root:named ${CHROOT} ${CHROOT}/var/{bind,{run,log}/named} ${CHROOT}/etc/bind
cp /etc/localtime ${CHROOT}/etc/localtime
mknod ${CHROOT}/dev/null c 1 3
chmod 0666 ${CHROOT}/dev/null
mknod ${CHROOT}/dev/zero c 1 5
chmod 0666 ${CHROOT}/dev/zero
if use urandom; then
mknod ${CHROOT}/dev/urandom c 1 9
chmod 0666 ${CHROOT}/dev/urandom
else
mknod ${CHROOT}/dev/random c 1 8
chmod 0666 ${CHROOT}/dev/random
fi
elog "You may need to add the following line to your syslog-ng.conf:"
elog "source jail { unix-stream(\"${CHROOT}/dev/log\"); };"
grep -q "^#[[:blank:]]\?CHROOT" /etc/conf.d/named ; RETVAL=$?
if [ $RETVAL = 0 ]; then
sed -i 's/^# \?\(CHROOT.*\)$/\1/' /etc/conf.d/named 2>/dev/null
fi
}
1.1 net-dns/bind/bind-9.6.2_p2.ebuild
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/bind-9.6.2_p2.ebuild?rev=1.1&view=markup
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-dns/bind/bind-9.6.2_p2.ebuild?rev=1.1&content-type=text/plain
Index: bind-9.6.2_p2.ebuild
===================================================================
# Copyright 1999-2010 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/net-dns/bind/bind-9.6.2_p2.ebuild,v 1.1 2010/05/23 20:44:50 idl0r Exp $
EAPI="3"
inherit eutils autotools toolchain-funcs flag-o-matic
MY_PV="${PV/_p/-P}"
MY_P="${PN}-${MY_PV}"
SDB_LDAP_VER="1.1.0"
GEOIP_PV=1.3
GEOIP_SRC_URI_BASE="http://bind-geoip.googlecode.com/"
GEOIP_P="bind-geoip-${GEOIP_PV}"
DESCRIPTION="BIND - Berkeley Internet Name Domain - Name Server"
HOMEPAGE="http://www.isc.org/software/bind"
SRC_URI="ftp://ftp.isc.org/isc/bind9/${MY_PV}/${MY_P}.tar.gz
sdb-ldap? ( mirror://gentoo/bind-sdb-ldap-${SDB_LDAP_VER}.tar.bz2 )
doc? ( mirror://gentoo/dyndns-samples.tbz2 )
geoip? ( ${GEOIP_SRC_URI_BASE}/files/${GEOIP_P}-readme.txt
${GEOIP_SRC_URI_BASE}/files/${GEOIP_P}.patch )"
LICENSE="as-is"
SLOT="0"
KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86"
IUSE="ssl ipv6 doc dlz postgres berkdb mysql odbc ldap selinux idn threads
resolvconf urandom sdb-ldap xml geoip"
DEPEND="ssl? ( >=dev-libs/openssl-0.9.6g )
mysql? ( >=virtual/mysql-4.0 )
odbc? ( >=dev-db/unixODBC-2.2.6 )
ldap? ( net-nds/openldap )
idn? ( net-dns/idnkit )
postgres? ( virtual/postgresql-base )
threads? ( >=sys-libs/libcap-2.1.0 )
xml? ( dev-libs/libxml2 )
geoip? ( >=dev-libs/geoip-1.4.6 )"
RDEPEND="${DEPEND}
selinux? ( sec-policy/selinux-bind )
resolvconf? ( net-dns/openresolv )"
S="${WORKDIR}/${MY_P}"
pkg_setup() {
use threads && {
ewarn
ewarn "If you're in vserver enviroment, you're probably want to"
ewarn "disable threads support because of linux capabilities dependency"
ewarn
}
ebegin "Creating named group and user"
enewgroup named 40
enewuser named 40 -1 /etc/bind named
eend ${?}
}
src_prepare() {
# bug 278364 (workaround)
epatch "${FILESDIR}/${PN}-9.6.1-parallel.patch"
# Adjusting PATHs in manpages
for i in bin/{named/named.8,check/named-checkconf.8,rndc/rndc.8} ; do
sed -i \
-e 's:/etc/named.conf:/etc/bind/named.conf:g' \
-e 's:/etc/rndc.conf:/etc/bind/rndc.conf:g' \
-e 's:/etc/rndc.key:/etc/bind/rndc.key:g' \
"${i}" || die "sed failed, ${i} doesn't exist"
done
if use dlz; then
epatch "${FILESDIR}"/${PN}-9.4.0-dlzbdb-close_cursor.patch
# bind fails to reconnect to MySQL5 databases, bug #180720, patch by Nicolas Brousse
# (http://www.shell-tips.com/2007/09/04/bind-950-patch-dlz-mysql-5-for-auto-reconnect/)
use mysql && has_version ">=dev-db/mysql-5" && epatch "${FILESDIR}"/bind-dlzmysql5-reconnect.patch
if use ldap; then
# bug 238681
epatch "${FILESDIR}/bind-9.6.1-dlz-patch-ldap-url.patch" \
"${FILESDIR}/bind-9.6.1-dlz-patch-dollar2.patch"
fi
fi
# should be installed by bind-tools
sed -i -r -e "s:(nsupdate|dig) ::g" bin/Makefile.in || die
# sdb-ldap patch as per bug #160567
# Upstream URL: http://bind9-ldap.bayour.com/
use sdb-ldap && epatch "${WORKDIR}"/sdb-ldap/${PN}-sdb-ldap-${SDB_LDAP_VER}.patch
if use geoip; then
cp "${DISTDIR}"/${GEOIP_P}.patch "${S}" || die
sed -i -e 's/-RELEASEVER=3/-RELEASEVER=2/' \
-e 's/+RELEASEVER=3-geoip-1.3/+RELEASEVER=2-geoip-1.3/' \
${GEOIP_P}.patch || die
epatch ${GEOIP_P}.patch
fi
# bug #220361
rm {aclocal,libtool}.m4
WANT_AUTOCONF=2.5 AT_NO_RECURSIVE=1 eautoreconf
# remove useless c++ checks
epunt_cxx
}
src_configure() {
local myconf=""
use dlz && {
myconf="${myconf} --with-dlz-filesystem --with-dlz-stub"
use postgres && myconf="${myconf} --with-dlz-postgres"
use mysql && myconf="${myconf} --with-dlz-mysql"
use berkdb && myconf="${myconf} --with-dlz-bdb"
use ldap && myconf="${myconf} --with-dlz-ldap"
use odbc && myconf="${myconf} --with-dlz-odbc"
}
if use threads; then
if use dlz && use mysql; then
ewarn
ewarn "MySQL uses thread local storage in its C api. Thus MySQL"
ewarn "requires that each thread of an application execute a MySQL"
ewarn "\"thread initialization\" to setup the thread local storage."
ewarn "This is impossible to do safely while staying within the DLZ"
ewarn "driver API. This is a limitation caused by MySQL, and not"
ewarn "the DLZ API."
ewarn "Because of this BIND MUST only run with a single thread when"
ewarn "using the MySQL driver."
ewarn
myconf="${myconf} --disable-linux-caps --disable-threads"
ewarn "Threading support disabled"
else
myconf="${myconf} --enable-linux-caps --enable-threads"
einfo "Threading support enabled"
fi
else
myconf="${myconf} --disable-linux-caps --disable-threads"
fi
if use urandom; then
myconf="${myconf} --with-randomdev=/dev/urandom"
else
myconf="${myconf} --with-randomdev=/dev/random"
fi
use geoip && myconf="${myconf} --with-geoip"
# bug #158664
gcc-specs-ssp && replace-flags -O[23s] -O
export BUILD_CC=$(tc-getBUILD_CC)
econf \
--sysconfdir=/etc/bind \
--localstatedir=/var \
--with-libtool \
$(use_with ssl openssl) \
$(use_with idn) \
$(use_enable ipv6) \
$(use_with xml libxml2) \
${myconf}
# bug #151839
echo '#undef SO_BSDCOMPAT' >> config.h
}
src_install() {
emake DESTDIR="${D}" install || die
dodoc CHANGES FAQ KNOWN-DEFECTS README || die
if use idn; then
dodoc README.idnkit || die
fi
if use doc; then
dodoc doc/arm/Bv9ARM.pdf || die
docinto misc
dodoc doc/misc/* || die
# might a 'html' useflag make sense?
docinto html
dohtml -r doc/arm/* || die
docinto draft
dodoc doc/draft/* || die
docinto rfc
dodoc doc/rfc/* || die
docinto contrib
dodoc contrib/named-bootconf/named-bootconf.sh \
contrib/nanny/nanny.pl || die
# some handy-dandy dynamic dns examples
cd "${D}"/usr/share/doc/${PF}
tar xf "${DISTDIR}"/dyndns-samples.tbz2 || die
fi
use geoip && dodoc "${DISTDIR}"/${GEOIP_P}-readme.txt
insinto /etc/bind
newins "${FILESDIR}"/named.conf-r4 named.conf || die
# ftp://ftp.rs.internic.net/domain/named.cache:
insinto /var/bind
doins "${FILESDIR}"/named.cache || die
insinto /var/bind/pri
newins "${FILESDIR}"/127.zone-r1 127.zone || die
newins "${FILESDIR}"/localhost.zone-r3 localhost.zone || die
newinitd "${FILESDIR}"/named.init-r7 named || die
newconfd "${FILESDIR}"/named.confd-r3 named || die
newenvd "${FILESDIR}"/10bind.env 10bind || die
# Let's get rid of those tools and their manpages since they're provided by bind-tools
rm -f "${D}"/usr/share/man/man1/{dig,host,nslookup}.1*
rm -f "${D}"/usr/share/man/man8/{dnssec-keygen,nsupdate}.8*
rm -f "${D}"/usr/bin/{dig,host,nslookup,dnssec-keygen,nsupdate}
rm -f "${D}"/usr/sbin/{dig,host,nslookup,dnssec-keygen,nsupdate}
dosym /var/bind/named.cache /var/bind/root.cache || die
dosym /var/bind/pri /etc/bind/pri || die
dosym /var/bind/sec /etc/bind/sec || die
keepdir /var/bind/sec
dodir /var/{run,log}/named || die
fowners root:named /{etc,var}/bind /var/{run,log}/named /var/bind/{sec,pri}
fowners root:named /var/bind/named.cache /var/bind/pri/{127,localhost}.zone /etc/bind/named.conf
fperms 0640 /var/bind/named.cache /var/bind/pri/{127,localhost}.zone /etc/bind/named.conf
fperms 0750 /etc/bind /var/bind/pri
fperms 0770 /var/{run,log}/named /var/bind/{,sec}
}
pkg_postinst() {
if [ ! -f '/etc/bind/rndc.key' ]; then
if [ -c /dev/urandom ]; then
einfo "Using /dev/urandom for generating rndc.key"
/usr/sbin/rndc-confgen -r /dev/urandom -a
echo
else
einfo "Using /dev/random for generating rndc.key"
/usr/sbin/rndc-confgen -a
echo
fi
chown root:named /etc/bind/rndc.key
chmod 0640 /etc/bind/rndc.key
fi
einfo "The default zone files are now installed as *.zone,"
einfo "be careful merging config files if you have modified"
einfo "/var/bind/pri/127.zone or /var/bind/pri/localhost.zone"
einfo
einfo "You can edit /etc/conf.d/named to customize named settings"
einfo
einfo "If you like to run bind in chroot AND this is a new install OR"
einfo "your bind doesn't already run in chroot, simply run:"
einfo "\`emerge --config '=${CATEGORY}/${PF}'\`"
einfo "Before running the above command you might want to change the chroot"
einfo "dir in /etc/conf.d/named. Otherwise /chroot/dns will be used."
einfo
einfo "Recently verisign added a wildcard A record to the .COM and .NET TLD"
einfo "zones making all .com and .net domains appear to be registered"
einfo "This causes many problems such as breaking important anti-spam checks"
einfo "which verify source domains exist. ISC released a patch for BIND which"
einfo "adds 'delegation-only' zones to allow admins to return the .com and .net"
einfo "domain resolution to their normal function."
einfo
einfo "There is no need to create a com or net data file. Just the"
einfo "entries to the named.conf file is enough."
einfo
einfo " zone "com" IN { type delegation-only; };"
einfo " zone "net" IN { type delegation-only; };"
CHROOT=$(sed -n 's/^[[:blank:]]\?CHROOT="\([^"]\+\)"/\1/p' /etc/conf.d/named 2>/dev/null)
if [[ -n ${CHROOT} && -d ${CHROOT} ]]; then
ewarn "NOTE: as of 'bind-9.6.1' the chroot part of the init-script got some major changes."
fi
}
pkg_config() {
CHROOT=$(sed -n 's/^[[:blank:]]\?CHROOT="\([^"]\+\)"/\1/p' /etc/conf.d/named 2>/dev/null)
if [ -z "${CHROOT}" ]; then
CHROOT="/chroot/dns"
fi
if [[ -d "${CHROOT}" ]]; then
ewarn "NOTE: As of 'bind-9.6.1' the chroot part of the init-script got some major changes."
ewarn
ewarn "${CHROOT} already exists... some things might become overridden"
ewarn "press CTRL+C if you don't want to continue"
sleep 10
fi
echo; einfo "Setting up the chroot directory..."
mkdir -m 0750 -p ${CHROOT}
mkdir -m 0755 -p ${CHROOT}/{dev,etc,var/{run,log}}
mkdir -m 0750 -p ${CHROOT}/etc/bind
mkdir -m 0770 -p ${CHROOT}/var/{bind,{run,log}/named}
chown root:named ${CHROOT} ${CHROOT}/var/{bind,{run,log}/named} ${CHROOT}/etc/bind
cp /etc/localtime ${CHROOT}/etc/localtime
mknod ${CHROOT}/dev/null c 1 3
chmod 0666 ${CHROOT}/dev/null
mknod ${CHROOT}/dev/zero c 1 5
chmod 0666 ${CHROOT}/dev/zero
if use urandom; then
mknod ${CHROOT}/dev/urandom c 1 9
chmod 0666 ${CHROOT}/dev/urandom
else
mknod ${CHROOT}/dev/random c 1 8
chmod 0666 ${CHROOT}/dev/random
fi
elog "You may need to add the following line to your syslog-ng.conf:"
elog "source jail { unix-stream(\"${CHROOT}/dev/log\"); };"
grep -q "^#[[:blank:]]\?CHROOT" /etc/conf.d/named ; RETVAL=$?
if [ $RETVAL = 0 ]; then
sed -i 's/^# \?\(CHROOT.*\)$/\1/' /etc/conf.d/named 2>/dev/null
fi
}
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2010-05-23 20:44 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-05-23 20:44 [gentoo-commits] gentoo-x86 commit in net-dns/bind: bind-9.7.0_p2-r1.ebuild ChangeLog bind-9.6.2_p2.ebuild bind-9.7.0_p2.ebuild bind-9.6.1_p3-r1.ebuild Christian Ruppert (idl0r)
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox