# Copyright 1999-2022 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI=8 inherit readme.gentoo-r1 toolchain-funcs DESCRIPTION="Collection of DNS client/server software" HOMEPAGE="https://cr.yp.to/djbdns.html" IPV6_PATCH="test29" SRC_URI="http://cr.yp.to/djbdns/${P}.tar.gz http://smarden.org/pape/djb/manpages/${P}-man.tar.gz ipv6? ( http://www.fefe.de/dns/${P}-${IPV6_PATCH}.diff.xz )" SLOT="0" LICENSE="public-domain" KEYWORDS="~alpha ~amd64 ~hppa ~mips ~ppc ~ppc64 ~sparc ~x86" IUSE="ipv6 selinux" DEPEND="" RDEPEND=" acct-user/dnscache acct-user/dnslog acct-user/tinydns sys-apps/ucspi-tcp virtual/daemontools selinux? ( sec-policy/selinux-djbdns )" src_unpack() { # Unpack both djbdns and its man pages to separate directories. default # Now move the man pages under ${S} so that user patches can be # applied to them as well in src_prepare(). mv "${PN}-man" "${P}/man" || die "failed to transplant man pages" } PATCHES=( "${FILESDIR}/headtail-r1.patch" "${FILESDIR}/dnsroots.patch" "${FILESDIR}/dnstracesort.patch" "${FILESDIR}/string_length_255.patch" "${FILESDIR}/srv_record_support.patch" "${FILESDIR}/increase-cname-recustion-depth.patch" "${FILESDIR}/CVE2009-0858_0001-check-response-domain-name-length.patch" "${FILESDIR}/CVE2012-1191_0001-ghost-domain-attack.patch" "${FILESDIR}/AR-and-RANLIB-support.patch" ) src_prepare() { if use ipv6; then PATCHES=(${PATCHES[@]} # The big ipv6 patch. "${WORKDIR}/${P}-${IPV6_PATCH}.diff" # Fix CVE2008-4392 (ipv6) "${FILESDIR}/CVE2008-4392_0001-dnscache-merge-similar-outgoing-queries-ipv6-test29.patch" "${FILESDIR}/CVE2008-4392_0002-dnscache-cache-soa-records-ipv6-test29.patch" "${FILESDIR}/makefile-parallel-test25.patch" ) else PATCHES=(${PATCHES[@]} # Fix CVE2008-4392 (no ipv6) "${FILESDIR}/CVE2008-4392_0001-dnscache-merge-similar-outgoing-queries-r1.patch" "${FILESDIR}/CVE2008-4392_0002-dnscache-cache-soa-records.patch" # Later versions of the ipv6 patch include this "${FILESDIR}/${PV}-errno-r1.patch" ) fi default } src_compile() { echo "$(tc-getCC) ${CFLAGS}" > conf-cc || die echo "$(tc-getCC) ${LDFLAGS}" > conf-ld || die echo "/usr" > conf-home || die emake AR=$(tc-getAR) RANLIB=$(tc-getRANLIB) } src_install() { insinto /etc doins dnsroots.global into /usr dobin *-conf dnscache tinydns walldns rbldns pickdns axfrdns \ *-get *-data *-edit dnsip dnsipq dnsname dnstxt dnsmx \ dnsfilter random-ip dnsqr dnsq dnstrace dnstracesort if use ipv6; then dobin dnsip6 dnsip6q fi dodoc CHANGES README doman man/*.[158] readme.gentoo_create_doc } DISABLE_AUTOFORMATTING=1 DOC_CONTENTS=' To configure djbdns, please follow the instructions at, http://cr.yp.to/djbdns.html Of particular interest are, axfrdns : http://cr.yp.to/djbdns/axfrdns-conf.html dnscache: http://cr.yp.to/djbdns/run-cache-x-home.html tinydns : http://cr.yp.to/djbdns/run-server.html Portage has created users for axfrdns, dnscache, and tinydns; the commands to configure these programs are, 1. axfrdns-conf tinydns dnslog /var/axfrdns /var/tinydns $ip 2. dnscache-conf dnscache dnslog /var/dnscache $ip 3. tinydns-conf tinydns dnslog /var/tinydns $ip (replace $ip with the ip address on which the server will run). If you wish to configure rbldns or walldns, you will need to create those users yourself (although you should still use the "dnslog" user for the logs): 4. rbldns-conf $username dnslog /var/rbldns $ip $base 5. walldns-conf $username dnslog /var/walldns $ip '