diff options
| author | Javier Torres | 2015-06-09 17:11:07 +0200 |
|---|---|---|
| committer | Javier Torres | 2015-06-09 17:11:07 +0200 |
| commit | 9b6e9e1bfe51d7319998ddcdd56205a6d5bdf3d5 (patch) | |
| tree | c08d686464f42723b469d9353a4c21ce3fb6d400 | |
| download | aur-9b6e9e1bfe51d7319998ddcdd56205a6d5bdf3d5.tar.gz | |
Initial import
| -rw-r--r-- | .SRCINFO | 49 | ||||
| -rw-r--r-- | PKGBUILD | 102 | ||||
| -rw-r--r-- | ods-enforcer.service | 13 | ||||
| -rw-r--r-- | ods-signer.service | 13 | ||||
| -rw-r--r-- | opendnssec.install | 29 | ||||
| -rw-r--r-- | opendnssec.tmpfiles | 1 | ||||
| -rw-r--r-- | pid-path.patch | 24 |
7 files changed, 231 insertions, 0 deletions
diff --git a/.SRCINFO b/.SRCINFO new file mode 100644 index 000000000000..426bc044d540 --- /dev/null +++ b/.SRCINFO @@ -0,0 +1,49 @@ +pkgbase = opendnssec + pkgdesc = Turn-key solution for DNSSEC (sqlite3) + pkgver = 1.4.7 + pkgrel = 2 + url = http://www.opendnssec.org/ + install = opendnssec.install + arch = i686 + arch = x86_64 + license = BSD + depends = libxml2>=2.6.16 + depends = ldns>=1.6.16 + depends = sqlite3>=3.3.9 + optdepends = softhsm: key storage + backup = etc/opendnssec/conf.xml + backup = etc/opendnssec/kasp.xml + backup = etc/opendnssec/zonelist.xml + source = http://www.opendnssec.org/files/source/opendnssec-1.4.7.tar.gz + source = pid-path.patch + source = ods-signer.service + source = ods-enforcer.service + source = opendnssec.tmpfiles + md5sums = 363387b90624acc2e3f6d33fea23c2d3 + md5sums = 471ec859269bc2add2ad6f95539e8c04 + md5sums = e762cdc2c3f8be40aeff379aa4bade76 + md5sums = c5464f7be7984bb9a925da0b157eafdf + md5sums = 69908ba1f46c25e4c34bc91f45bc9660 + sha1sums = c8a5808d68a50db8ed7edf806a58f54428ad7aa8 + sha1sums = a8234e007fb56262c450016d4058693b4fb7c98c + sha1sums = 2a4fac3a16fea3f89b281f0933b6920524978d49 + sha1sums = fa28111fdce06c389813ff6ed2d4cae136252488 + sha1sums = f10d783b3e0232fd3beff645a07207c161371d0c + sha256sums = 8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f + sha256sums = c16b206258bca7fd0fd4838c23d3a1bd80bc33aaf355f6ccdbfbfb3b4c3a7e8f + sha256sums = 596d238ad219de1c88f79fd26a8b829250bf0512a308b34c11fd231d0b4eb0f4 + sha256sums = 75cecbfb0ece13957a68a5bc39c20a1d69b95373e7473545d70621e1732733d8 + sha256sums = 28a43d8d5ee512db5425c86bdba9c5832753dce0260291958b1b73253e3ebf55 + sha384sums = b99c5cd05eb11167f353a5b95d01e1f2c2cadf9c1e49c04afe99f2b083338589d189b5c651274378a427c278cb7ad7ac + sha384sums = 9fbdf5f5e50c1bddc9d7e0ea3126bb520b00cb3f764878629c86075303226b011e401158751a5d3086e22e8ac8f685e7 + sha384sums = 29d68ccca64339ab190518f6c5bffedba71287548634e305a12c98b7744984cc37f6a1748394ca0d96e709dbd520fe19 + sha384sums = 0869168e8c5a5064cbac0d2f0afe71539a68785d548752c609759381648b04015fc7c3ed9684aec944a914143c777a66 + sha384sums = 5c42366ad7b99d496679b089c1605b3af9060ba737350915439d8ef7bbcfd0f7128c389d256a62754bb79e5ad3e215c2 + sha512sums = def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2 + sha512sums = d927457d2d7a5343c4480ff34237f49e3829cef65eefd71fb58ce4fa15d8d969126e64c5a59dc02cc7792876f8a5a91cd4de3c5bfe3acc0396663c8c139d7cce + sha512sums = 39068133b3bfd075f3555491096be50ea0973a73ac716abb19faed0aa972ef043a6012491d4c6c208443352a2a508b8ebfbd7273fd84df43b3d6d478e72e7957 + sha512sums = a3700c82e6577bdacbce9cfd749e71e3c749814884ad4e9a1359e97105f9c045dc1472ba231ecb52c23855cacf67874623c8eef715955bfd41239b199d03a0db + sha512sums = b221eec802ac471cd90908faa252d49ef2d217d6e48262a02490ae99fb64f3b82bc7f2dd2056d6e58b8bb1ca62072d52bffbc2bfd9f4eb794ec2d02275e88899 + +pkgname = opendnssec + diff --git a/PKGBUILD b/PKGBUILD new file mode 100644 index 000000000000..7650011f56a7 --- /dev/null +++ b/PKGBUILD @@ -0,0 +1,102 @@ +# Maintainer: Javier Torres <javitonino [at] gmail [dot] com> + +pkgname=opendnssec +pkgver=1.4.7 +pkgrel=2 +pkgdesc="Turn-key solution for DNSSEC (sqlite3)" +arch=('i686' 'x86_64') +url="http://www.opendnssec.org/" +license=('BSD') +groups=() +depends=('libxml2>=2.6.16' 'ldns>=1.6.16' 'sqlite3>=3.3.9') +makedepends=() +optdepends=('softhsm: key storage') +provides=() +conflicts=() +replaces=() +backup=("etc/opendnssec/conf.xml" + "etc/opendnssec/kasp.xml" + "etc/opendnssec/zonelist.xml") +options=() +install="opendnssec.install" +changelog= +source=("http://www.opendnssec.org/files/source/${pkgname}-${pkgver}.tar.gz" + "pid-path.patch" + "ods-signer.service" + "ods-enforcer.service" + "opendnssec.tmpfiles") +noextract=() + +md5sums=('363387b90624acc2e3f6d33fea23c2d3' + '471ec859269bc2add2ad6f95539e8c04' + 'e762cdc2c3f8be40aeff379aa4bade76' + 'c5464f7be7984bb9a925da0b157eafdf' + '69908ba1f46c25e4c34bc91f45bc9660') +sha1sums=('c8a5808d68a50db8ed7edf806a58f54428ad7aa8' + 'a8234e007fb56262c450016d4058693b4fb7c98c' + '2a4fac3a16fea3f89b281f0933b6920524978d49' + 'fa28111fdce06c389813ff6ed2d4cae136252488' + 'f10d783b3e0232fd3beff645a07207c161371d0c') +sha256sums=('8f757ca9e88d6a6dc8f9b6e46a3da5e3a2881b3311fb91c428bcf906683ac41f' + 'c16b206258bca7fd0fd4838c23d3a1bd80bc33aaf355f6ccdbfbfb3b4c3a7e8f' + '596d238ad219de1c88f79fd26a8b829250bf0512a308b34c11fd231d0b4eb0f4' + '75cecbfb0ece13957a68a5bc39c20a1d69b95373e7473545d70621e1732733d8' + '28a43d8d5ee512db5425c86bdba9c5832753dce0260291958b1b73253e3ebf55') +sha384sums=('b99c5cd05eb11167f353a5b95d01e1f2c2cadf9c1e49c04afe99f2b083338589d189b5c651274378a427c278cb7ad7ac' + '9fbdf5f5e50c1bddc9d7e0ea3126bb520b00cb3f764878629c86075303226b011e401158751a5d3086e22e8ac8f685e7' + '29d68ccca64339ab190518f6c5bffedba71287548634e305a12c98b7744984cc37f6a1748394ca0d96e709dbd520fe19' + '0869168e8c5a5064cbac0d2f0afe71539a68785d548752c609759381648b04015fc7c3ed9684aec944a914143c777a66' + '5c42366ad7b99d496679b089c1605b3af9060ba737350915439d8ef7bbcfd0f7128c389d256a62754bb79e5ad3e215c2') +sha512sums=('def2a8e41331bd70f287ea3081a7368144ada92ad5cc9f62d28d3064e34f7c0c84998422d515f5ec9c7e668757e796df8c5446839e24e4a9e2af1357c342c0b2' + 'd927457d2d7a5343c4480ff34237f49e3829cef65eefd71fb58ce4fa15d8d969126e64c5a59dc02cc7792876f8a5a91cd4de3c5bfe3acc0396663c8c139d7cce' + '39068133b3bfd075f3555491096be50ea0973a73ac716abb19faed0aa972ef043a6012491d4c6c208443352a2a508b8ebfbd7273fd84df43b3d6d478e72e7957' + 'a3700c82e6577bdacbce9cfd749e71e3c749814884ad4e9a1359e97105f9c045dc1472ba231ecb52c23855cacf67874623c8eef715955bfd41239b199d03a0db' + 'b221eec802ac471cd90908faa252d49ef2d217d6e48262a02490ae99fb64f3b82bc7f2dd2056d6e58b8bb1ca62072d52bffbc2bfd9f4eb794ec2d02275e88899') + + +build() +{ + cd "${srcdir}/${pkgname}-${pkgver}" + + # /var/lib/run -> /var/run + patch -p0 < "${srcdir}/pid-path.patch" + + aclocal + autoconf + automake --add-missing + + ./configure --prefix=/usr --datarootdir=/usr/share --localstatedir=/var/lib --sysconfdir=/etc --with-pkcs11-softhsm=/usr/lib/libsofthsm.so --sbindir=/usr/bin + + # Create the correct (/var/run/opendnssec) directory + sed -i \ + -e "s/\$(INSTALL) -d \$(DESTDIR)\$(localstatedir)\/run\/opendnssec/#Removed/" \ + -e "s/\$(INSTALL) -d \$(DESTDIR)\$(localstatedir)\/run/\$(INSTALL) -d \$(DESTDIR)\$(OPENDNSSEC_PID_DIR)/" \ + Makefile + + make +} + +package() { + cd "${srcdir}/${pkgname}-${pkgver}" + + make DESTDIR="${pkgdir}" install + + install -Dm0644 "${srcdir}/ods-signer.service" \ + "${pkgdir}/usr/lib/systemd/system/ods-signer.service" + install -Dm0644 "${srcdir}/ods-enforcer.service" \ + "${pkgdir}/usr/lib/systemd/system/ods-enforcer.service" + install -Dm0644 "enforcer/utils/migrate_adapters_1.sqlite3" \ + "${pkgdir}/usr/share/opendnssec" + install -Dm0644 "${srcdir}/opendnssec.tmpfiles" \ + "${pkgdir}/usr/lib/tmpfiles.d/opendnssec.conf" + install -Dm0644 "LICENSE" \ + "${pkgdir}/usr/share/licenses/opendnssec/LICENSE" + + chown 227:227 "${pkgdir}/etc/opendnssec" -R + chown 227:227 "${pkgdir}/var/lib/opendnssec" -R + + chmod 750 "${pkgdir}/etc/opendnssec" \ + "${pkgdir}/var/lib/opendnssec" + + rm "${pkgdir}/run" -R +} diff --git a/ods-enforcer.service b/ods-enforcer.service new file mode 100644 index 000000000000..f0d0050d0c26 --- /dev/null +++ b/ods-enforcer.service @@ -0,0 +1,13 @@ +[Unit] +Description=OpenDNSSEC Enforcer +After=syslog.target network.target + +[Service] +Type=forking +PIDFile=/run/opendnssec/enforcerd.pid +ExecStart=/usr/bin/ods-control enforcer start +ExecStop=/usr/bin/ods-control enforcer stop + +[Install] +WantedBy=multi-user.target + diff --git a/ods-signer.service b/ods-signer.service new file mode 100644 index 000000000000..ab723e884eda --- /dev/null +++ b/ods-signer.service @@ -0,0 +1,13 @@ +[Unit] +Description=OpenDNSSEC Signer +After=syslog.target network.target + +[Service] +Type=forking +PIDFile=/run/opendnssec/signerd.pid +ExecStart=/usr/bin/ods-control signer start +ExecStop=/usr/bin/ods-control signer stop + +[Install] +WantedBy=multi-user.target + diff --git a/opendnssec.install b/opendnssec.install new file mode 100644 index 000000000000..184803ba5ea3 --- /dev/null +++ b/opendnssec.install @@ -0,0 +1,29 @@ +post_install() { + if [ -z "`grep '^opendnssec:' /etc/group`" ]; then + groupadd -g 227 opendnssec + fi + if [ -z "`grep '^opendnssec:' /etc/passwd`" ]; then + useradd -u 227 -d /var/lib/opendnssec -g opendnssec -s /bin/false opendnssec + fi + + systemd-tmpfiles --create opendnssec.conf + + echo ">> You need an HSM implementation (try softhsm)" +} + + +post_upgrade() { + post_install $1 + OLD=$(echo $2 | sed "s/\(.*\)\.\(.*\)\.\(.*\)/\1\.\2/g") + NEW=$(echo $1 | sed "s/\(.*\)\.\(.*\)\.\(.*\)/\1\.\2/g") + if [ $OLD != "1.4" -a $NEW == "1.4" ]; then + echo ">> NOTICE: UPGRADE TO 1.4" + echo "This update requires upgrading the database" + echo "Run /usr/share/opendnssec/migrate_adapters_1.sqlite3 on your kasp database" + echo "e.g: sqlite3 kasp.db < /usr/share/opendnssec/migrate_adapters_1.sqlite3" + fi +} + +post_remove() { + userdel opendnssec +} diff --git a/opendnssec.tmpfiles b/opendnssec.tmpfiles new file mode 100644 index 000000000000..797fcdf5240c --- /dev/null +++ b/opendnssec.tmpfiles @@ -0,0 +1 @@ +d /run/opendnssec 0750 opendnssec opendnssec
\ No newline at end of file diff --git a/pid-path.patch b/pid-path.patch new file mode 100644 index 000000000000..09194a128b0e --- /dev/null +++ b/pid-path.patch @@ -0,0 +1,24 @@ +--- Makefile.am 2012-07-17 08:53:51.000000000 +0200 ++++ Makefile.am 2012-11-20 21:56:11.000000000 +0100 +@@ -29,8 +29,8 @@ + $(INSTALL) -d $(DESTDIR)$(localstatedir)/opendnssec/signconf + $(INSTALL) -d $(DESTDIR)$(localstatedir)/opendnssec/unsigned + $(INSTALL) -d $(DESTDIR)$(localstatedir)/opendnssec/signed +- $(INSTALL) -d $(DESTDIR)$(localstatedir)/run +- $(INSTALL) -d $(DESTDIR)$(localstatedir)/run/opendnssec ++ $(INSTALL) -d $(DESTDIR)/run ++ $(INSTALL) -d $(DESTDIR)/run/opendnssec + + docs: + (cd libhsm; $(MAKE) doxygen) +--- m4/opendnssec_common.m4 2012-11-01 11:56:59.000000000 +0100 ++++ m4/opendnssec_common.m4 2012-11-20 21:52:56.000000000 +0100 +@@ -17,7 +17,7 @@ + OPENDNSSEC_DATA_DIR=$full_datadir/opendnssec + OPENDNSSEC_SYSCONF_DIR=$full_sysconfdir/opendnssec + OPENDNSSEC_LOCALSTATE_DIR="$full_localstatedir/opendnssec" +-OPENDNSSEC_PID_DIR="$full_localstatedir/run/opendnssec" ++OPENDNSSEC_PID_DIR="/run/opendnssec" + + AC_SUBST([OPENDNSSEC_BIN_DIR]) + AC_SUBST([OPENDNSSEC_SBIN_DIR]) |