1 |
commit: 1604747b397cebd0842f6763d5b417a2c86782ee |
2 |
Author: Sven Wegener <swegener <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Aug 1 13:57:37 2019 +0000 |
4 |
Commit: Sven Wegener <swegener <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Aug 1 13:58:57 2019 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1604747b |
7 |
|
8 |
net-dns/pdns: Version bump to 4.1.11, security bug #691086 |
9 |
|
10 |
Bug: https://bugs.gentoo.org/691086 |
11 |
Package-Manager: Portage-2.3.69, Repoman-2.3.16 |
12 |
Signed-off-by: Sven Wegener <swegener <AT> gentoo.org> |
13 |
|
14 |
net-dns/pdns/Manifest | 1 + |
15 |
net-dns/pdns/pdns-4.1.11.ebuild | 157 ++++++++++++++++++++++++++++++++++++++++ |
16 |
2 files changed, 158 insertions(+) |
17 |
|
18 |
diff --git a/net-dns/pdns/Manifest b/net-dns/pdns/Manifest |
19 |
index bb90165f208..89397ffbe5a 100644 |
20 |
--- a/net-dns/pdns/Manifest |
21 |
+++ b/net-dns/pdns/Manifest |
22 |
@@ -1,2 +1,3 @@ |
23 |
DIST pdns-4.1.10.tar.bz2 1117663 BLAKE2B 9c1b8c608862b42019c6b753af950f940455538b439824e10d28a79a4f04fe926decf86f286d79c850f39e0df345d646ba774e5557cce1d44f6c120d8b2892a3 SHA512 59a7a52468f6daae8de01bb2b08d812906ef58047026369895341cfff253a5b9ba29d6a6b43a822f1632641eec34fa1afa6fbb5b0ba5e72ecce8e61787892136 |
24 |
+DIST pdns-4.1.11.tar.bz2 1118103 BLAKE2B f4ba0c463c7ff5f2185b33956ef7749b5ca6496ce850a189ec5a537d174e1391784f2c0c2af3bc7b68d2f1e01ec57c8731dc07a7690905ab7a6e386a1a8f3e4d SHA512 18215f523a39d48c8756bc13ecae1bd78967c2d66619d93ddaafb13062690002a9bdfe1d337796820706692c449286c7b9e9b8d45933684d32acbc20e490c0c4 |
25 |
DIST pdns-4.2.0-rc2.tar.bz2 1245187 BLAKE2B 30ee03752dafa02f5618ba26def1cb8d49b0f7f004b54fcb8d7640b0d60897ac9a9b13e918ab3aaee1d679af772aacd0591e9c9cd3bf6b1af79305e06cac1cdb SHA512 695589980fc35e73fc0e72f57034e2cfefd7b046100dc6f8740ac94dd50ee068453c72aa2ee5626e6cccfca1eeb5e3f036b844039db52d5c45f070d291002122 |
26 |
|
27 |
diff --git a/net-dns/pdns/pdns-4.1.11.ebuild b/net-dns/pdns/pdns-4.1.11.ebuild |
28 |
new file mode 100644 |
29 |
index 00000000000..9c4996e63d3 |
30 |
--- /dev/null |
31 |
+++ b/net-dns/pdns/pdns-4.1.11.ebuild |
32 |
@@ -0,0 +1,157 @@ |
33 |
+# Copyright 1999-2019 Gentoo Authors |
34 |
+# Distributed under the terms of the GNU General Public License v2 |
35 |
+ |
36 |
+EAPI="7" |
37 |
+ |
38 |
+inherit multilib user |
39 |
+ |
40 |
+DESCRIPTION="The PowerDNS Daemon" |
41 |
+HOMEPAGE="https://www.powerdns.com/" |
42 |
+SRC_URI="https://downloads.powerdns.com/releases/${P/_/-}.tar.bz2" |
43 |
+ |
44 |
+LICENSE="GPL-2" |
45 |
+SLOT="0" |
46 |
+KEYWORDS="~amd64 ~x86" |
47 |
+ |
48 |
+# other possible flags: |
49 |
+# db2: we lack the dep |
50 |
+# oracle: dito (need Oracle Client Libraries) |
51 |
+# xdb: (almost) dead, surely not supported |
52 |
+ |
53 |
+IUSE="botan debug doc geoip ldap libressl lua luajit mydns mysql opendbx postgres protobuf remote sodium sqlite systemd tools tinydns test" |
54 |
+ |
55 |
+REQUIRED_USE="mydns? ( mysql )" |
56 |
+ |
57 |
+RDEPEND=" |
58 |
+ libressl? ( dev-libs/libressl:= ) |
59 |
+ !libressl? ( dev-libs/openssl:= ) |
60 |
+ >=dev-libs/boost-1.35:= |
61 |
+ botan? ( dev-libs/botan:2= ) |
62 |
+ lua? ( |
63 |
+ !luajit? ( dev-lang/lua:= ) |
64 |
+ luajit? ( dev-lang/luajit:= ) |
65 |
+ ) |
66 |
+ mysql? ( dev-db/mysql-connector-c ) |
67 |
+ postgres? ( dev-db/postgresql:= ) |
68 |
+ ldap? ( >=net-nds/openldap-2.0.27-r4 app-crypt/mit-krb5 ) |
69 |
+ sqlite? ( dev-db/sqlite:3 ) |
70 |
+ opendbx? ( dev-db/opendbx ) |
71 |
+ geoip? ( >=dev-cpp/yaml-cpp-0.5.1:= dev-libs/geoip ) |
72 |
+ sodium? ( dev-libs/libsodium:= ) |
73 |
+ tinydns? ( >=dev-db/tinycdb-0.77 ) |
74 |
+ protobuf? ( dev-libs/protobuf )" |
75 |
+DEPEND="${RDEPEND}" |
76 |
+BDEPEND="virtual/pkgconfig |
77 |
+ doc? ( app-doc/doxygen )" |
78 |
+ |
79 |
+S="${WORKDIR}"/${P/_/-} |
80 |
+ |
81 |
+src_configure() { |
82 |
+ local dynmodules="pipe bind" # the default backends, always enabled |
83 |
+ |
84 |
+ #use db2 && dynmodules+=" db2" |
85 |
+ use ldap && dynmodules+=" ldap" |
86 |
+ use lua && dynmodules+=" lua" |
87 |
+ use mydns && dynmodules+=" mydns" |
88 |
+ use mysql && dynmodules+=" gmysql" |
89 |
+ use opendbx && dynmodules+=" opendbx" |
90 |
+ #use oracle && dynmodules+=" goracle oracle" |
91 |
+ use postgres && dynmodules+=" gpgsql" |
92 |
+ use remote && dynmodules+=" remote" |
93 |
+ use sqlite && dynmodules+=" gsqlite3" |
94 |
+ use tinydns && dynmodules+=" tinydns" |
95 |
+ use geoip && dynmodules+=" geoip" |
96 |
+ #use xdb && dynmodules+=" xdb" |
97 |
+ |
98 |
+ econf \ |
99 |
+ --disable-static \ |
100 |
+ --sysconfdir=/etc/powerdns \ |
101 |
+ --libdir=/usr/$(get_libdir)/powerdns \ |
102 |
+ --with-modules= \ |
103 |
+ --with-dynmodules="${dynmodules}" \ |
104 |
+ --with-mysql-lib=/usr/$(get_libdir) \ |
105 |
+ $(use_enable botan) \ |
106 |
+ $(use_enable debug verbose-logging) \ |
107 |
+ $(use_enable test unit-tests) \ |
108 |
+ $(use_enable tools) \ |
109 |
+ $(use_enable systemd) \ |
110 |
+ $(use_enable sodium libsodium) \ |
111 |
+ $(usex lua "$(use_with !luajit lua) $(use_with luajit)" \ |
112 |
+ '--without-lua --without-luajit') \ |
113 |
+ $(use_with protobuf) \ |
114 |
+ ${myconf} |
115 |
+} |
116 |
+ |
117 |
+src_compile() { |
118 |
+ default |
119 |
+ use doc && emake -C codedocs codedocs |
120 |
+} |
121 |
+ |
122 |
+src_install() { |
123 |
+ default |
124 |
+ |
125 |
+ mv "${D}"/etc/powerdns/pdns.conf{-dist,} |
126 |
+ |
127 |
+ fperms 0700 /etc/powerdns |
128 |
+ fperms 0600 /etc/powerdns/pdns.conf |
129 |
+ |
130 |
+ # set defaults: setuid=pdns, setgid=pdns |
131 |
+ sed -i \ |
132 |
+ -e 's/^# set\([ug]\)id=$/set\1id=pdns/g' \ |
133 |
+ "${D}"/etc/powerdns/pdns.conf |
134 |
+ |
135 |
+ newinitd "${FILESDIR}"/pdns-r1 pdns |
136 |
+ |
137 |
+ keepdir /var/empty |
138 |
+ |
139 |
+ if use doc; then |
140 |
+ docinto html |
141 |
+ dodoc -r codedocs/html/. |
142 |
+ fi |
143 |
+ |
144 |
+ # Install development headers |
145 |
+ insinto /usr/include/pdns |
146 |
+ doins pdns/*.hh |
147 |
+ insinto /usr/include/pdns/backends/gsql |
148 |
+ doins pdns/backends/gsql/*.hh |
149 |
+ |
150 |
+ if use ldap ; then |
151 |
+ insinto /etc/openldap/schema |
152 |
+ doins "${FILESDIR}"/dnsdomain2.schema |
153 |
+ fi |
154 |
+ |
155 |
+ find "${D}" -name '*.la' -delete || die |
156 |
+} |
157 |
+ |
158 |
+pkg_preinst() { |
159 |
+ enewgroup pdns |
160 |
+ enewuser pdns -1 -1 /var/empty pdns |
161 |
+} |
162 |
+ |
163 |
+pkg_postinst() { |
164 |
+ elog "PowerDNS provides multiple instances support. You can create more instances" |
165 |
+ elog "by symlinking the pdns init script to another name." |
166 |
+ elog |
167 |
+ elog "The name must be in the format pdns.<suffix> and PowerDNS will use the" |
168 |
+ elog "/etc/powerdns/pdns-<suffix>.conf configuration file instead of the default." |
169 |
+ |
170 |
+ if use ldap ; then |
171 |
+ ewarn "The official LDAP backend module is only compile-tested by upstream." |
172 |
+ ewarn "Try net-dns/pdns-ldap-backend if you have problems with it." |
173 |
+ fi |
174 |
+ |
175 |
+ local old |
176 |
+ for old in ${REPLACING_VERSIONS}; do |
177 |
+ ver_test ${old} -lt 3.2 || continue |
178 |
+ |
179 |
+ ewarn "To fix a security bug (bug #458018) had the following" |
180 |
+ ewarn "files/directories the world-readable bit removed (if set):" |
181 |
+ ewarn " ${EPREFIX}/etc/powerdns" |
182 |
+ ewarn " ${EPREFIX}/etc/powerdns/pdns.conf" |
183 |
+ ewarn "Check if this is correct for your setup" |
184 |
+ ewarn "This is a one-time change and will not happen on subsequent updates." |
185 |
+ chmod o-rwx "${EPREFIX}"/etc/powerdns/{,pdns.conf} |
186 |
+ |
187 |
+ break |
188 |
+ done |
189 |
+} |