Date: Sun, 12 Aug 2012 21:00:33 +0000 (UTC) From: Michael Scheidell <scheidell@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r302454 - in head/dns: . credns credns/files Message-ID: <201208122100.q7CL0XHK039683@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: scheidell Date: Sun Aug 12 21:00:32 2012 New Revision: 302454 URL: http://svn.freebsd.org/changeset/ports/302454 Log: Credns is a software program aimed at fortifying DNSSEC by performing validation in the DNS notify/transfer-chain. WWW: http://www.nlnetlabs.nl/projects/credns/ PR: ports/169732 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> Added: head/dns/credns/ head/dns/credns/Makefile (contents, props changed) head/dns/credns/distinfo (contents, props changed) head/dns/credns/files/ head/dns/credns/files/credns.in (contents, props changed) head/dns/credns/files/pkg-deinstall.in (contents, props changed) head/dns/credns/files/pkg-install.in (contents, props changed) head/dns/credns/pkg-descr (contents, props changed) head/dns/credns/pkg-message (contents, props changed) head/dns/credns/pkg-plist (contents, props changed) Modified: head/dns/Makefile Modified: head/dns/Makefile ============================================================================== --- head/dns/Makefile Sun Aug 12 20:10:47 2012 (r302453) +++ head/dns/Makefile Sun Aug 12 21:00:32 2012 (r302454) @@ -16,6 +16,7 @@ SUBDIR += bindgraph SUBDIR += c-ares SUBDIR += checkdns + SUBDIR += credns SUBDIR += crossip SUBDIR += curvedns SUBDIR += ddclient Added: head/dns/credns/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/Makefile Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,87 @@ +# New ports collection makefile for: credns +# Date created: 9 July 2012 +# Whom: jaap +# +# $FreeBSD$ +# + +PORTNAME= credns +PORTVERSION= 0.2.10 +CATEGORIES= dns security +MASTER_SITES= http://www.nlnetlabs.nl/downloads/credns/ + +MAINTAINER= jaap@NLnetLab.nl +COMMENT= A verifier performing validation in the DNS notify/transfer-chain + +USE_RC_SUBR= credns + +CREDNSUSER?= bind +CREDNSGROUP?= bind +CREDNSLSDIR= /var +CREDNSDBDIR= /var/db/nsd +CREDNSRUNDIR= /var/run/nsd +NSDMAX_IPS?= 512 + +GNU_CONFIGURE= yes +CONFIGURE_ARGS= --with-user=${CREDNSUSER} \ + --localstatedir=${CREDNSLSDIR} \ + --with-dbfile=${CREDNSDBDIR}/nsd.db \ + --with-pidfile=${CREDNSRUNDIR}/nsd.pid + +SUB_FILES= pkg-install pkg-deinstall +SUB_LIST+= CREDNSUSER=${CREDNSUSER} \ + CREDNSGROUP=${CREDNSGROUP} \ + CREDNSDBDIR=${CREDNSDBDIR} \ + CREDNSRUNDIR=${CREDNSRUNDIR} + +USE_OPENSSL= yes + +MAN5= credns.conf.5 +MAN8= credns-notify.8 credns-checkconf.8 credns-patch.8 \ + credns-xfer.8 credns.8 crednsc.8 + +PORTDOCS= CREDITS ChangeLog LICENSE NSD-DATABASE NSD-DIFFFILE \ + NSD-CREDNS-MODS NSD-FOR-BIND-USERS NSD-README README \ + README.icc README.svn RELNOTES REQUIREMENTS TESTPLAN \ + TODO UPGRADING coding-style differences.pdf differences.tex + +OPTIONS= ROOT_SERVER "Dnssexy as proxy for a (local) root" Off \ + IPV6 "Enable IPv6 support" On \ + CHECKING "Enable internal runtime checks" Off \ + MMAP "Use mmap instead of malloc(experimental)" Off \ + MAXIPS "Raise max-ips from 8 to ${NSDMAX_IPS}" Off + +.include <bsd.port.pre.mk> + +.if defined(WITH_ROOT_SERVER) +CONFIGURE_ARGS+= --enable-root-server +.endif + +.if defined(WITHOUT_IPV6) +CONFIGURE_ARGS+= --disable-ipv6 +.endif + +.if defined(WITH_CHECKING) +CONFIGURE_ARGS+= --enable-checking +.endif + +.if defined(WITH_MMAP) +CONFIGURE_ARGS+= --enable-mmap +.endif + +.if defined(WITH_MAXIPS) +CONFIGURE_ARGS+= --with-max-ips=${NSDMAX_IPS} +.endif + +post-install: + ${INSTALL_DATA} ${WRKSRC}/credns.conf.sample \ + ${PREFIX}/etc/credns/credns.conf.sample +.if !defined(NOPORTDOCS) + @${MKDIR} ${DOCSDIR} +.for f in ${PORTDOCS} + ${INSTALL_DATA} ${WRKSRC}/doc/${f} ${DOCSDIR}/${f} +.endfor +.endif + @${SETENV} PKG_PREFIX=${PREFIX} ${SH} ${PKGINSTALL} ${PKGNAME} POST-INSTALL + +.include <bsd.port.post.mk> Added: head/dns/credns/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/distinfo Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,2 @@ +SHA256 (credns-0.2.10.tar.gz) = f9bceafbeb447673de18afec52d29b7d2d30f811b52c141592c7658f8a4444cb +SIZE (credns-0.2.10.tar.gz) = 957981 Added: head/dns/credns/files/credns.in ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/files/credns.in Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,59 @@ +#!/bin/sh +# +# $FreeBSD$ +# +# PROVIDE: credns +# REQUIRE: DAEMON +# REQUIRE: LOGIN +# KEYWORD: shutdown +# +# Add the following line to /etc/rc.conf to enable credns +# +# credns_enable="YES" +# + +. /etc/rc.subr + +name=credns +rcvar=credns_enable + +required_files=%%PREFIX%%/etc/credns/credns.conf + +command=%%PREFIX%%/sbin/crednsc +command_args="start" +pidfile=`%%PREFIX%%/sbin/credns-checkconf -o pidfile %%PREFIX%%/etc/credns/credns.conf` +procname=%%PREFIX%%/sbin/${name} + +load_rc_config ${name} + +credns_enable=${credns_enable-"NO"} + +extra_commands="reload" +start_precmd="credns_precmd" +reload_cmd="credns_reload" +stop_cmd="credns_stop" + +credns_precmd() +{ + db=`%%PREFIX%%/sbin/credns-checkconf -o database %%PREFIX%%/etc/credns/credns.conf` + if [ ! -f "$db" ]; then + ${command} rebuild + fi +} + +credns_reload() +{ + ${command} rebuild && ${command} reload +} + +credns_stop() +{ + echo "Merging credns zone transfer changes to zone files." + ${command} patch + + echo "Stopping ${name}." + ${command} stop +} + +run_rc_command "$1" + Added: head/dns/credns/files/pkg-deinstall.in ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/files/pkg-deinstall.in Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,16 @@ +#!/bin/sh +# $FreeBSD$ + +PATH="/bin:/sbin:/usr/bin:/usr/sbin" + +CREDNSDBDIR=%%CREDNSDBDIR%% +CREDNSRUNDIR=%%CREDNSRUNDIR%% + +if [ "$2" = "POST-DEINSTALL" ]; then + echo "=> Deleting ${CREDNSDBDIR} if empty..." + rm -d ${CREDNSDBDIR} 2>/dev/null || true + echo "=> Deleting ${CREDNSRUNDIR} if empty..." + rm -d ${CREDNSRUNDIR} 2>/dev/null || true +fi + +exit 0 Added: head/dns/credns/files/pkg-install.in ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/files/pkg-install.in Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,19 @@ +#!/bin/sh +# $FreeBSD: ports/dns/nsd/files/pkg-install.in,v 1.1 2010/02/11 19:37:10 pgollucci Exp $ + +PATH="/bin:/sbin:/usr/bin:/usr/sbin" + +CREDNSUSER=%%CREDNSUSER%% +CREDNSGROUP=%%CREDNSGROUP%% +CREDNSDBDIR=%%CREDNSDBDIR%% +CREDNSRUNDIR=%%CREDNSRUNDIR%% + +CHOWN="chown" +INSTALL_DIR="install -d -o ${CREDNSUSER} -g ${CREDNSGROUP} -m 0755" + +if [ "$2" = "POST-INSTALL" ]; then + ${INSTALL_DIR} ${CREDNSDBDIR} ${CREDNSRUNDIR} + ${CHOWN} -R ${CREDNSUSER}:${CREDNSGROUP} ${CREDNSDBDIR} ${CREDNSRUNDIR} +fi + +exit 0 Added: head/dns/credns/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/pkg-descr Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,4 @@ +Credns is a software program aimed at fortifying DNSSEC by performing +validation in the DNS notify/transfer-chain. + +WWW: http://www.nlnetlabs.nl/projects/credns/ Added: head/dns/credns/pkg-message ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/pkg-message Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,10 @@ +************************************************************************** +* * +* To run credns from startup, add credns_enable="YES" * +* to your /etc/rc.conf * +* * +* Take good care when using credns commands, since they often need to * +* be executed as user dedicated to credns, in order for the files it * +* touches or creates to have the proper permissions. * +* * +************************************************************************** Added: head/dns/credns/pkg-plist ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/dns/credns/pkg-plist Sun Aug 12 21:00:32 2012 (r302454) @@ -0,0 +1,8 @@ +sbin/credns +sbin/credns-checkconf +sbin/credns-notify +sbin/credns-patch +sbin/credns-xfer +sbin/crednsc +etc/credns/credns.conf.sample +@dirrmtry etc/credns
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201208122100.q7CL0XHK039683>