1 |
ennael |
36772 |
# default options |
2 |
|
|
%define sdb_ldap 1 |
3 |
|
|
%define sdb_mysql 0 |
4 |
|
|
%define geoip 0 |
5 |
|
|
%define gssapi 1 |
6 |
|
|
|
7 |
|
|
%{?_with_sdb_ldap: %{expand: %%global sdb_ldap 1}} |
8 |
|
|
%{?_without_sdb_ldap: %{expand: %%global sdb_ldap 0}} |
9 |
|
|
%{?_with_sdb_mysql: %{expand: %%global sdb_mysql 1}} |
10 |
|
|
%{?_without_sdb_mysql: %{expand: %%global sdb_mysql 0}} |
11 |
|
|
%{?_with_geoip: %{expand: %%global geoip 1}} |
12 |
|
|
%{?_without_geoip: %{expand: %%global geoip 0}} |
13 |
|
|
%{?_with_gssapi: %{expand: %%global gssapi 1}} |
14 |
|
|
%{?_without_gssapi: %{expand: %%global gssapi 0}} |
15 |
|
|
|
16 |
|
|
%if %{sdb_mysql} |
17 |
|
|
%define sdb_ldap 0 |
18 |
|
|
%endif |
19 |
|
|
|
20 |
|
|
%if %{sdb_ldap} |
21 |
|
|
%define sdb_mysql 0 |
22 |
|
|
%endif |
23 |
|
|
|
24 |
|
|
%if %{geoip} |
25 |
|
|
%define geoip 1 |
26 |
|
|
%endif |
27 |
|
|
|
28 |
|
|
%if %{gssapi} |
29 |
|
|
%define gssapi 1 |
30 |
|
|
%endif |
31 |
|
|
|
32 |
guillomovitch |
136524 |
%define major_version 9.8.0 |
33 |
|
|
%define patch_version P4 |
34 |
|
|
%define dashpatch %{?patch_version:-%patch_version}%nil |
35 |
|
|
%define dotpatch %{?patch_version:.%patch_version}%nil |
36 |
pterjan |
95469 |
|
37 |
ennael |
36772 |
Summary: A DNS (Domain Name System) server |
38 |
|
|
Name: bind |
39 |
guillomovitch |
136524 |
Version: %{major_version}%{patch_version} |
40 |
|
|
Release: %mkrel 1 |
41 |
pterjan |
95469 |
License: ISC |
42 |
ennael |
36772 |
Group: System/Servers |
43 |
|
|
URL: http://www.isc.org/products/BIND/ |
44 |
guillomovitch |
136524 |
Source0: ftp://ftp.isc.org/isc/%{name}9/%{major_version}%{dashpatch}/%{name}-%{major_version}%{dashpatch}.tar.gz |
45 |
|
|
Source1: ftp://ftp.isc.org/isc/%{name}9/%{major_version}%{dashpatch}/%{name}-%{major_version}%{dashpatch}.tar.gz.asc |
46 |
ennael |
36772 |
Source2: bind-manpages.tar.bz2 |
47 |
|
|
Source3: bind-dhcp-dynamic-dns-examples.tar.bz2 |
48 |
|
|
Source4: bind-named.init |
49 |
|
|
Source6: bind-named.sysconfig |
50 |
|
|
Source7: bind-keygen.c |
51 |
|
|
Source11: ftp://ftp.internic.net/domain/named.cache |
52 |
|
|
# (oe) http://mysql-bind.sourceforge.net/ |
53 |
|
|
Source12: mysql-bind-0.1.tar.bz2 |
54 |
|
|
# (oe) http://bind9-ldap.bayour.com/bind-sdb-ldap-1.0.tar.gz |
55 |
|
|
Source13: bind-sdb-ldap-1.0.tar.bz2 |
56 |
|
|
# (oe) http://www.blue-giraffe.com/zone2ldap/zone2ldap-0.4.tar.gz |
57 |
|
|
Source14: zone2ldap-0.4.tar.bz2 |
58 |
|
|
# (oe) http://www.venaas.no/dns/ldap2zone/ |
59 |
|
|
Source15: ldap2zone.tar.bz2 |
60 |
|
|
# caching-nameserver files (S100-S112) |
61 |
|
|
Source100: bogon_acl.conf |
62 |
|
|
Source101: hosts |
63 |
|
|
Source102: localdomain.zone |
64 |
|
|
Source103: localhost.zone |
65 |
|
|
Source104: logging.conf |
66 |
|
|
Source105: named.broadcast |
67 |
|
|
Source106: named.conf |
68 |
|
|
Source107: named.ip6.local |
69 |
|
|
Source108: named.local |
70 |
|
|
Source109: named.zero |
71 |
|
|
Source110: rndc.conf |
72 |
|
|
Source111: rndc.key |
73 |
|
|
Source112: trusted_networks_acl.conf |
74 |
guillomovitch |
136519 |
|
75 |
|
|
# fedora patches |
76 |
|
|
Patch71: bind-9.5-overflow.patch |
77 |
|
|
Patch72: bind-9.5-dlz-64bit.patch |
78 |
|
|
Patch87: bind-9.5-parallel-build.patch |
79 |
|
|
Patch99: bind-96-libtool2.patch |
80 |
|
|
Patch102: bind-95-rh452060.patch |
81 |
|
|
Patch106: bind93-rh490837.patch |
82 |
|
|
Patch104: bind-96-dyndb.patch |
83 |
|
|
|
84 |
|
|
# IDN patches |
85 |
|
|
Patch73: bind-9.5-libidn.patch |
86 |
|
|
Patch83: bind-9.5-libidn2.patch |
87 |
|
|
Patch85: bind-9.5-libidn3.patch |
88 |
|
|
Patch94: bind95-rh461409.patch |
89 |
|
|
|
90 |
|
|
# other patches |
91 |
misc |
87096 |
# make dig go to the 2nd server by default |
92 |
|
|
# likely deprecated, to be looked at |
93 |
guillomovitch |
136519 |
Patch200: bind-fallback-to-second-server.diff |
94 |
|
|
Patch201: bind-queryperf_fix.diff |
95 |
|
|
Patch202: bind-9.2.3-sdb_ldap.patch |
96 |
|
|
Patch203: bind-9.3.1-zone2ldap_fixes.diff |
97 |
|
|
Patch204: bind-9.3.0rc2-sdb_mysql.patch |
98 |
|
|
Patch205: zone2ldap-0.4-ldapv3.patch |
99 |
|
|
Patch206: bind-9.2.0rc3-varrun.patch |
100 |
|
|
Patch208: bind-9.3.2-prctl_set_dumpable.patch |
101 |
ennael |
36772 |
# (oe) rediffed patch originates from http://www.caraytech.com/geodns/ |
102 |
|
|
Patch300: bind-9.4.0-geoip.diff |
103 |
|
|
Requires(pre): rpm-helper |
104 |
|
|
Requires(postun): rpm-helper |
105 |
|
|
Requires: bind-utils >= %{version}-%{release} |
106 |
|
|
BuildRequires: openssl-devel |
107 |
|
|
BuildRequires: multiarch-utils >= 1.0.3 |
108 |
|
|
BuildRequires: libidn-devel |
109 |
|
|
BuildRequires: postgresql-devel |
110 |
|
|
BuildRequires: mysql-devel |
111 |
|
|
BuildRequires: libcap-devel >= 2.10 |
112 |
guillomovitch |
136529 |
BuildRequires: libxml2-devel |
113 |
ennael |
36772 |
%if %{gssapi} |
114 |
|
|
BuildRequires: krb5-devel |
115 |
|
|
%endif |
116 |
guillomovitch |
136529 |
%if %{geoip} |
117 |
|
|
BuildRequires: libgeoip-devel |
118 |
|
|
%endif |
119 |
|
|
%if %{sdb_mysql} |
120 |
|
|
BuildRequires: mysql-devel |
121 |
|
|
%endif |
122 |
|
|
%if %{sdb_ldap} |
123 |
|
|
BuildRequires: openldap-devel |
124 |
|
|
%endif |
125 |
ennael |
36772 |
|
126 |
|
|
%description |
127 |
|
|
BIND (Berkeley Internet Name Domain) is an implementation of the DNS |
128 |
|
|
(domain Name System) protocols. BIND includes a DNS server (named), |
129 |
|
|
which resolves host names to IP addresses, and a resolver library |
130 |
|
|
(routines for applications to use when interfacing with DNS). A DNS |
131 |
|
|
server allows clients to name resources or objects and share the |
132 |
|
|
information with other network machines. The named DNS server can be |
133 |
|
|
used on workstations as a caching name server, but is generally only |
134 |
|
|
needed on one machine for an entire network. Note that the |
135 |
|
|
configuration files for making BIND act as a simple caching nameserver |
136 |
|
|
are included in the caching-nameserver package. |
137 |
|
|
|
138 |
|
|
Install the bind package if you need a DNS server for your network. If |
139 |
|
|
you want bind to act a caching name server, you will also need to install |
140 |
|
|
the caching-nameserver package. |
141 |
|
|
|
142 |
|
|
Many BIND 8 features previously unimplemented in BIND 9, including |
143 |
|
|
domain-specific forwarding, the \$GENERATE master file directive, and |
144 |
|
|
the "blackhole", "dialup", and "sortlist" options Forwarding of dynamic |
145 |
|
|
update requests; this is enabled by the "allow-update-forwarding" option |
146 |
|
|
A new, simplified database interface and a number of sample drivers based |
147 |
|
|
on it; see doc/dev/sdb for details |
148 |
|
|
Support for building single-threaded servers for environments that do not |
149 |
|
|
supply POSIX threads |
150 |
|
|
New configuration options: "min-refresh-time", "max-refresh-time", |
151 |
|
|
"min-retry-time", "max-retry-time", "additional-from-auth", |
152 |
|
|
"additional-from-cache", "notify explicit" |
153 |
|
|
Faster lookups, particularly in large zones. |
154 |
|
|
|
155 |
|
|
Build Options: |
156 |
|
|
--without sdb_ldap Build without ldap simple database support (enabled |
157 |
|
|
per default) |
158 |
|
|
--with sdb_mysql Build with MySQL database support (disables ldap |
159 |
|
|
support, it's either way.) |
160 |
|
|
--with geoip Build with GeoIP support (disabled per default) |
161 |
|
|
|
162 |
|
|
%package utils |
163 |
|
|
Summary: Utilities for querying DNS name servers |
164 |
|
|
Group: Networking/Other |
165 |
|
|
|
166 |
|
|
%description utils |
167 |
|
|
Bind-utils contains a collection of utilities for querying DNS (Domain |
168 |
|
|
Name Service) name servers to find out information about Internet hosts. |
169 |
|
|
These tools will provide you with the IP addresses for given host names, |
170 |
|
|
as well as other information about registered domains and network |
171 |
|
|
addresses. |
172 |
|
|
|
173 |
|
|
You should install bind-utils if you need to get information from DNS name |
174 |
|
|
servers. |
175 |
|
|
|
176 |
|
|
%package devel |
177 |
|
|
Summary: Include files and libraries needed for bind DNS development |
178 |
|
|
Group: Development/C |
179 |
|
|
|
180 |
|
|
%description devel |
181 |
|
|
The bind-devel package contains all the include files and the |
182 |
|
|
library required for DNS (Domain Name Service) development for |
183 |
|
|
BIND versions 9.x.x. |
184 |
|
|
|
185 |
|
|
%package doc |
186 |
|
|
Summary: Documentation for BIND |
187 |
|
|
Group: Books/Other |
188 |
|
|
|
189 |
|
|
%description doc |
190 |
|
|
The bind-devel package contains the documentation for BIND. |
191 |
|
|
|
192 |
|
|
%prep |
193 |
guillomovitch |
136524 |
%setup -q -n %{name}-%{major_version}%{dashpatch} -a2 -a3 -a12 -a13 -a14 -a15 |
194 |
ennael |
36772 |
|
195 |
guillomovitch |
136519 |
%patch200 -p1 -b .fallback-to-second-server.droplet |
196 |
|
|
%patch201 -p0 -b .queryperf_fix.droplet |
197 |
ennael |
36772 |
|
198 |
|
|
%if %{sdb_ldap} |
199 |
|
|
%__cp bind-sdb-ldap-*/ldapdb.c bin/named/ |
200 |
|
|
%__cp bind-sdb-ldap-*/ldapdb.h bin/named/include/ |
201 |
guillomovitch |
136519 |
%patch202 -p1 -b .ldap_sdb.droplet |
202 |
|
|
%patch203 -p0 -b .zone2ldap_fixes.droplet |
203 |
|
|
%patch205 -p0 -b .ldapv3.droplet |
204 |
ennael |
36772 |
%endif |
205 |
|
|
|
206 |
|
|
%if %{sdb_mysql} |
207 |
|
|
mv mysql-bind-0.1 contrib/sdb/mysql |
208 |
|
|
%__cp contrib/sdb/mysql/mysqldb.c bin/named |
209 |
|
|
%__cp contrib/sdb/mysql/mysqldb.h bin/named/include |
210 |
guillomovitch |
136519 |
%patch204 -p1 -b .sdb_mysql.droplet |
211 |
ennael |
36772 |
%endif |
212 |
|
|
|
213 |
guillomovitch |
136519 |
%patch206 -p0 -b .varrun.droplet |
214 |
|
|
%patch208 -p0 -b .prctl_set_dumpable.droplet |
215 |
|
|
%patch71 -p1 -b .overflow.droplet |
216 |
|
|
%patch72 -p0 -b .64bit |
217 |
ennael |
36772 |
|
218 |
guillomovitch |
136519 |
%patch73 -p1 -b .libidn |
219 |
|
|
%patch83 -p1 -b .libidn2 |
220 |
|
|
%patch85 -p1 -b .libidn3 |
221 |
|
|
%patch94 -p1 -b .rh461409 |
222 |
ennael |
36772 |
mkdir -p m4 |
223 |
guillomovitch |
136519 |
%patch99 -p1 -b .libtool2 |
224 |
|
|
%patch102 -p0 -b .rh452060 |
225 |
|
|
%patch106 -p0 -b .rh490837 |
226 |
|
|
%patch104 -p1 -b .dyndb |
227 |
|
|
%patch87 -p1 -b .parallel |
228 |
ennael |
36772 |
|
229 |
|
|
%if %{geoip} |
230 |
|
|
%patch300 -p1 -b .geoip |
231 |
|
|
%endif |
232 |
|
|
|
233 |
cjw |
94107 |
sed -e "s#@BUILD_ARCH@#%{_target_cpu}#" %{SOURCE4} >named.init |
234 |
ennael |
36772 |
cp %{SOURCE6} named.sysconfig |
235 |
|
|
cp %{SOURCE7} keygen.c |
236 |
|
|
cp %{SOURCE11} named.cache |
237 |
|
|
|
238 |
|
|
mkdir -p caching-nameserver |
239 |
|
|
cp %{SOURCE100} caching-nameserver/bogon_acl.conf |
240 |
|
|
cp %{SOURCE101} caching-nameserver/hosts |
241 |
|
|
cp %{SOURCE102} caching-nameserver/localdomain.zone |
242 |
|
|
cp %{SOURCE103} caching-nameserver/localhost.zone |
243 |
|
|
cp %{SOURCE104} caching-nameserver/logging.conf |
244 |
|
|
cp %{SOURCE105} caching-nameserver/named.broadcast |
245 |
|
|
cp %{SOURCE106} caching-nameserver/named.conf |
246 |
|
|
cp %{SOURCE107} caching-nameserver/named.ip6.local |
247 |
|
|
cp %{SOURCE108} caching-nameserver/named.local |
248 |
|
|
cp %{SOURCE109} caching-nameserver/named.zero |
249 |
|
|
cp %{SOURCE110} caching-nameserver/rndc.conf |
250 |
|
|
cp %{SOURCE111} caching-nameserver/rndc.key |
251 |
|
|
cp %{SOURCE112} caching-nameserver/trusted_networks_acl.conf |
252 |
|
|
|
253 |
|
|
%build |
254 |
|
|
%serverbuild |
255 |
|
|
|
256 |
|
|
export CPPFLAGS="$CPPFLAGS -DDIG_SIGCHASE" |
257 |
|
|
export STD_CDEFINES="$CPPFLAGS" |
258 |
|
|
|
259 |
guillomovitch |
136264 |
libtoolize --copy --force |
260 |
|
|
aclocal -I m4 --force |
261 |
|
|
autoheader --force |
262 |
|
|
autoconf --force |
263 |
ennael |
36772 |
|
264 |
|
|
# (oe) make queryperf from the contrib _before_ bind..., makes it |
265 |
|
|
# easier to determine if it builds or not, it saves time... |
266 |
|
|
pushd contrib/queryperf |
267 |
|
|
rm -f configure |
268 |
|
|
autoconf |
269 |
|
|
%configure2_5x |
270 |
|
|
%make CFLAGS="$CFLAGS" |
271 |
|
|
popd |
272 |
|
|
|
273 |
|
|
pushd contrib/query-loc-* |
274 |
|
|
perl -pi -e "s|-lnsl|-lnsl -lresolv|g" configure* |
275 |
|
|
rm -f configure |
276 |
|
|
autoconf |
277 |
|
|
%configure2_5x |
278 |
|
|
%make CFLAGS="$CFLAGS" |
279 |
|
|
popd |
280 |
|
|
|
281 |
|
|
export CFLAGS="$CFLAGS -DLDAP_DEPRECATED" |
282 |
|
|
|
283 |
|
|
%if %{geoip} |
284 |
|
|
export CFLAGS="$CFLAGS -DLDAP_DEPRECATED -DGEOIP" |
285 |
|
|
export LDFLAGS="$LDFLAGS -lGeoIP" |
286 |
|
|
%endif |
287 |
|
|
|
288 |
guillomovitch |
136293 |
%configure2_5x \ |
289 |
ennael |
36772 |
--localstatedir=/var \ |
290 |
|
|
--disable-openssl-version-check \ |
291 |
guillomovitch |
136263 |
--enable-exportlib \ |
292 |
|
|
--with-export-libdir=%{_libdir} \ |
293 |
|
|
--with-export-includedir=%{_includedir} \ |
294 |
ennael |
36772 |
--enable-threads \ |
295 |
|
|
--enable-largefile \ |
296 |
|
|
--enable-ipv6 \ |
297 |
|
|
--enable-filter-aaaa \ |
298 |
|
|
--enable-epoll \ |
299 |
|
|
--with-openssl=%{_prefix} \ |
300 |
|
|
%if %{gssapi} |
301 |
|
|
--with-gssapi=%{_prefix} --disable-isc-spnego \ |
302 |
|
|
%endif |
303 |
|
|
--with-randomdev=/dev/urandom \ |
304 |
|
|
--with-libxml2=yes \ |
305 |
|
|
--with-dlz-postgres=yes \ |
306 |
|
|
--with-dlz-mysql=yes \ |
307 |
|
|
--with-dlz-bdb=no \ |
308 |
|
|
--with-dlz-filesystem=yes \ |
309 |
|
|
--with-dlz-ldap=yes \ |
310 |
|
|
--with-dlz-odbc=no \ |
311 |
|
|
--with-dlz-stub=yes |
312 |
|
|
|
313 |
|
|
# pkcs11 support requires a working backend, otherwise bind won't start |
314 |
|
|
# http://blogs.sun.com/janp/ |
315 |
|
|
# http://sourceforge.net/projects/opencryptoki |
316 |
|
|
#--with-pkcs11 \ |
317 |
|
|
|
318 |
guillomovitch |
136692 |
make |
319 |
ennael |
36772 |
|
320 |
|
|
%if %{sdb_ldap} |
321 |
|
|
pushd zone2ldap |
322 |
|
|
# fix references to zone2ldap |
323 |
|
|
perl -pi -e "s|zone2ldap|zonetoldap|g" * |
324 |
guillomovitch |
136529 |
gcc $CFLAGS \ |
325 |
|
|
-I../lib/dns/include \ |
326 |
|
|
-I../lib/dns/sec/dst/include \ |
327 |
|
|
-I../lib/isc/include \ |
328 |
|
|
-I../lib/isc/unix/include \ |
329 |
|
|
-I../lib/isc/pthreads/include \ |
330 |
|
|
-c zone2ldap.c |
331 |
|
|
gcc $CFLAGS \ |
332 |
|
|
-o zone2ldap \ |
333 |
|
|
zone2ldap.o ../lib/dns/libdns.a \ |
334 |
|
|
-lcrypto -lpthread ../lib/isc/libisc.a \ |
335 |
|
|
-lldap -llber -lresolv %{?gssapi:-lgssapi_krb5} -lxml2 \ |
336 |
|
|
$LDFLAGS |
337 |
ennael |
36772 |
popd |
338 |
|
|
|
339 |
|
|
pushd ldap2zone |
340 |
guillomovitch |
136529 |
gcc $CFLAGS \ |
341 |
|
|
-I../lib/dns/include \ |
342 |
|
|
-I../lib/dns/sec/dst/include \ |
343 |
|
|
-I../lib/isc/include \ |
344 |
|
|
-I../lib/isc/unix/include \ |
345 |
|
|
-I../lib/isc/pthreads/include \ |
346 |
|
|
-c ldap2zone.c |
347 |
|
|
gcc $CFLAGS \ |
348 |
|
|
-o ldap2zone \ |
349 |
|
|
ldap2zone.o ../lib/dns/libdns.a \ |
350 |
|
|
-lcrypto -lpthread \ |
351 |
|
|
../lib/isc/libisc.a\ |
352 |
|
|
-lldap -llber -lresolv %{?gssapi:-lgssapi_krb5} -lxml2 \ |
353 |
|
|
$LDFLAGS |
354 |
ennael |
36772 |
popd |
355 |
|
|
%endif |
356 |
|
|
|
357 |
|
|
%if %{sdb_mysql} |
358 |
|
|
pushd contrib/sdb/mysql |
359 |
guillomovitch |
136529 |
gcc $CFLAGS \ |
360 |
|
|
-I%{_includedir}/mysql \ |
361 |
|
|
-I../../../lib/dns/include \ |
362 |
|
|
-I../../../lib/dns/sec/dst/include \ |
363 |
|
|
-I../../../lib/isc/include \ |
364 |
|
|
-I../../../lib/isc/unix/include \ |
365 |
|
|
-I../../../lib/isc/pthreads/include \ |
366 |
|
|
-c zonetodb.c |
367 |
|
|
gcc $CFLAGS \ |
368 |
|
|
-o zonetodb \ |
369 |
|
|
zonetodb.o ../../../lib/dns/libdns.a \ |
370 |
|
|
-lcrypto -lpthread ../../../lib/isc/libisc.a \ |
371 |
|
|
-lmysqlclient -lresolv %{?gssapi:-lgssapi_krb5} -lxml2 \ |
372 |
|
|
$LDFLAGS |
373 |
ennael |
36772 |
popd |
374 |
|
|
%endif |
375 |
|
|
|
376 |
|
|
gcc $CFLAGS -o dns-keygen keygen.c |
377 |
|
|
|
378 |
|
|
#%%check |
379 |
|
|
## run the test suite |
380 |
|
|
#make check |
381 |
|
|
|
382 |
|
|
%install |
383 |
|
|
rm -rf %{buildroot} |
384 |
|
|
|
385 |
|
|
pushd doc |
386 |
|
|
rm -rf html |
387 |
|
|
popd |
388 |
|
|
|
389 |
|
|
# make some directories |
390 |
|
|
install -d %{buildroot}%{_initrddir} |
391 |
|
|
install -d %{buildroot}%{_sysconfdir}/sysconfig |
392 |
|
|
install -d %{buildroot}/var/run/named |
393 |
|
|
|
394 |
|
|
%makeinstall_std |
395 |
|
|
|
396 |
|
|
ln -snf named %{buildroot}%{_sbindir}/lwresd |
397 |
|
|
|
398 |
|
|
install -m0755 contrib/named-bootconf/named-bootconf.sh %{buildroot}%{_sbindir}/named-bootconf |
399 |
|
|
install -m0755 contrib/queryperf/queryperf %{buildroot}%{_bindir}/ |
400 |
|
|
cp contrib/queryperf/README README.queryperf |
401 |
|
|
|
402 |
|
|
install -m0755 contrib/query-loc-*/query-loc %{buildroot}%{_bindir}/ |
403 |
|
|
install -m0644 contrib/query-loc-*/query-loc.1 %{buildroot}%{_mandir}/man1/ |
404 |
|
|
cp contrib/query-loc-*/ADDRESSES ADDRESSES.query-loc |
405 |
|
|
cp contrib/query-loc-*/ALGO ALGO.query-loc |
406 |
|
|
cp contrib/query-loc-*/README README.query-loc |
407 |
|
|
cp contrib/query-loc-*/USAGE USAGE.query-loc |
408 |
|
|
|
409 |
|
|
|
410 |
|
|
install -m0755 named.init %{buildroot}%{_initrddir}/named |
411 |
|
|
install -m0644 named.sysconfig %{buildroot}%{_sysconfdir}/sysconfig/named |
412 |
|
|
|
413 |
|
|
%if %{sdb_ldap} |
414 |
|
|
install -m0755 zone2ldap/zone2ldap %{buildroot}%{_bindir}/zonetoldap |
415 |
|
|
install -m0644 zone2ldap/zone2ldap.1 %{buildroot}%{_mandir}/man1/zonetoldap.1 |
416 |
|
|
install -m0755 ldap2zone/ldap2zone %{buildroot}%{_bindir}/ldap2zone |
417 |
|
|
%endif |
418 |
|
|
|
419 |
|
|
%if %{sdb_mysql} |
420 |
|
|
install -m0755 contrib/sdb/mysql/zonetodb %{buildroot}%{_bindir}/ |
421 |
|
|
cp contrib/sdb/mysql/ChangeLog contrib/sdb/mysql/ChangeLog.mysql |
422 |
|
|
cp contrib/sdb/mysql/README contrib/sdb/mysql/README.mysql |
423 |
|
|
%endif |
424 |
|
|
|
425 |
|
|
install -m0755 dns-keygen %{buildroot}%{_sbindir}/dns-keygen |
426 |
|
|
|
427 |
|
|
# make the chroot |
428 |
|
|
install -d %{buildroot}/var/lib/named/{dev,etc} |
429 |
|
|
install -d %{buildroot}/var/lib/named/var/{log,run,tmp} |
430 |
|
|
install -d %{buildroot}/var/lib/named/var/named/{master,slaves,reverse} |
431 |
|
|
|
432 |
|
|
install -m 644 \ |
433 |
|
|
caching-nameserver/named.conf \ |
434 |
|
|
caching-nameserver/logging.conf \ |
435 |
|
|
caching-nameserver/trusted_networks_acl.conf \ |
436 |
|
|
caching-nameserver/hosts \ |
437 |
|
|
caching-nameserver/bogon_acl.conf \ |
438 |
|
|
%{buildroot}/var/lib/named/etc |
439 |
|
|
install -m 640 \ |
440 |
|
|
caching-nameserver/rndc.conf\ |
441 |
|
|
caching-nameserver/rndc.key \ |
442 |
|
|
%{buildroot}/var/lib/named/etc |
443 |
|
|
install -m 644 \ |
444 |
|
|
caching-nameserver/localdomain.zone \ |
445 |
|
|
caching-nameserver/localhost.zone \ |
446 |
|
|
%{buildroot}/var/lib/named/var/named/master |
447 |
|
|
install -m 644 \ |
448 |
|
|
caching-nameserver/named.broadcast \ |
449 |
|
|
caching-nameserver/named.ip6.local \ |
450 |
|
|
caching-nameserver/named.local \ |
451 |
|
|
caching-nameserver/named.zero \ |
452 |
|
|
%{buildroot}/var/lib/named/var/named/reverse |
453 |
|
|
|
454 |
|
|
# fix some compat symlinks |
455 |
|
|
ln -s /var/lib/named/etc/named.conf %{buildroot}%{_sysconfdir}/named.conf |
456 |
|
|
ln -s /var/lib/named/etc/rndc.conf %{buildroot}%{_sysconfdir}/rndc.conf |
457 |
|
|
ln -s /var/lib/named/etc/rndc.key %{buildroot}%{_sysconfdir}/rndc.key |
458 |
|
|
mv %{buildroot}%{_sysconfdir}/bind.keys %{buildroot}/var/lib/named/etc/ |
459 |
|
|
ln -s /var/lib/named/etc/bind.keys %{buildroot}%{_sysconfdir}/bind.keys |
460 |
|
|
|
461 |
|
|
echo "; Use \"dig @A.ROOT-SERVERS.NET . ns\" to update this file if it's outdated." > named.cache.tmp |
462 |
|
|
cat named.cache >> named.cache.tmp |
463 |
|
|
install -m0644 named.cache.tmp %{buildroot}/var/lib/named/var/named/named.ca |
464 |
|
|
|
465 |
|
|
# fix man pages |
466 |
|
|
install -m0644 man5/resolver.5 %{buildroot}%{_mandir}/man5/ |
467 |
|
|
ln -s resolver.5 %{buildroot}%{_mandir}/man5/resolv.5 |
468 |
|
|
|
469 |
|
|
# the following 3 lines is needed to make it short-circuit compliant. |
470 |
|
|
pushd doc |
471 |
|
|
rm -rf html |
472 |
|
|
popd |
473 |
|
|
|
474 |
|
|
install -d doc/html |
475 |
|
|
cp -f `find . -type f |grep html |sed -e 's#\/%{name}-%{version}##'|grep -v contrib` doc/html |
476 |
|
|
|
477 |
|
|
%multiarch_binaries %{buildroot}%{_bindir}/isc-config.sh |
478 |
|
|
|
479 |
|
|
cat > README.urpmi << EOF |
480 |
|
|
The most significant changes starting from the bind-9.3.2-5mdk package: |
481 |
|
|
|
482 |
|
|
o Installs in a chroot environment per default (/var/lib/named) for |
483 |
|
|
security measures. |
484 |
|
|
|
485 |
|
|
o Acts as a caching only resolver per default, ip addresses that should be |
486 |
|
|
allowed to use recursive lookups must be defined in the |
487 |
|
|
/var/lib/named/etc/trusted_networks_acl.conf file. |
488 |
|
|
EOF |
489 |
|
|
|
490 |
|
|
%pre |
491 |
|
|
%_pre_useradd named /var/lib/named /bin/false |
492 |
|
|
|
493 |
|
|
# check if bind is chrooted and try to restore it |
494 |
|
|
if [ -x %{_sbindir}/bind-chroot.sh ]; then |
495 |
|
|
ROOTDIR="/var/lib/named-chroot" |
496 |
|
|
[ -f /etc/sysconfig/named ] && . /etc/sysconfig/named |
497 |
|
|
if [ -d $ROOTDIR -a ! -d /var/lib/named ]; then |
498 |
|
|
echo "old chroot found at $ROOTDIR, copying to /var/lib/named" |
499 |
|
|
cp -rp $ROOTDIR /var/lib/named |
500 |
|
|
chown -R named:named /var/lib/named |
501 |
|
|
fi |
502 |
|
|
if grep -q "$ROOTDIR" /etc/sysconfig/syslog; then |
503 |
|
|
if [ -f /var/lock/subsys/named ]; then |
504 |
|
|
service named stop > /dev/null 2>/dev/null || : |
505 |
|
|
fi |
506 |
|
|
%{_sbindir}/bind-chroot.sh --unchroot > /dev/null 2>/dev/null || : |
507 |
|
|
fi |
508 |
|
|
if [ -f /var/lock/subsys/syslog ]; then |
509 |
|
|
service syslog restart > /dev/null 2>/dev/null || : |
510 |
|
|
fi |
511 |
|
|
fi |
512 |
|
|
|
513 |
|
|
DATE=`date +%%Y%%m%%d%%j%%S` |
514 |
|
|
for f in named.conf rndc.conf rndc.key; do |
515 |
|
|
# move away files to prepare for softlinks |
516 |
|
|
if [ -f /etc/$f -a ! -h /etc/$f ]; then mv -vf /etc/$f /etc/$f.$DATE; fi |
517 |
|
|
if [ -f /etc/$f -a ! -h /etc/$f ]; then mv -vf /etc/$f /etc/$f.$DATE; fi |
518 |
|
|
if [ -f /etc/$f -a ! -h /etc/$f ]; then mv -vf /etc/$f /etc/$f.$DATE; fi |
519 |
|
|
done |
520 |
|
|
|
521 |
|
|
%post |
522 |
|
|
if grep -q "_MY_KEY_" /var/lib/named/etc/rndc.conf /var/lib/named/etc/rndc.key; then |
523 |
|
|
MYKEY="`%{_sbindir}/dns-keygen`" |
524 |
|
|
perl -pi -e "s|_MY_KEY_|$MYKEY|g" /var/lib/named/etc/rndc.conf /var/lib/named/etc/rndc.key |
525 |
|
|
fi |
526 |
|
|
|
527 |
|
|
%_post_service named |
528 |
|
|
|
529 |
|
|
%preun |
530 |
|
|
%_preun_service named |
531 |
|
|
|
532 |
|
|
%postun |
533 |
|
|
%_postun_userdel named |
534 |
|
|
|
535 |
|
|
%files |
536 |
|
|
%doc CHANGES README FAQ COPYRIGHT README.urpmi |
537 |
|
|
%if %{sdb_ldap} |
538 |
|
|
%doc contrib/sdb/ldap/README.ldap contrib/sdb/ldap/INSTALL.ldap |
539 |
|
|
%endif |
540 |
|
|
%if %{sdb_mysql} |
541 |
|
|
%doc contrib/sdb/mysql/ChangeLog.mysql contrib/sdb/mysql/README.mysql |
542 |
|
|
%endif |
543 |
|
|
%if %{geoip} |
544 |
|
|
%doc geodns.INSTALL geodns.named.conf-sample |
545 |
|
|
%endif |
546 |
|
|
%config(noreplace) %{_sysconfdir}/sysconfig/named |
547 |
|
|
%{_initrddir}/named |
548 |
|
|
%{_sbindir}/arpaname |
549 |
|
|
%{_sbindir}/ddns-confgen |
550 |
|
|
%{_sbindir}/dns-keygen |
551 |
|
|
%{_sbindir}/dnssec-dsfromkey |
552 |
|
|
%{_sbindir}/dnssec-keyfromlabel |
553 |
|
|
%{_sbindir}/dnssec-keygen |
554 |
|
|
%{_sbindir}/dnssec-revoke |
555 |
|
|
%{_sbindir}/dnssec-settime |
556 |
|
|
%{_sbindir}/dnssec-signzone |
557 |
|
|
%{_sbindir}/genrandom |
558 |
|
|
%{_sbindir}/isc-hmac-fixup |
559 |
|
|
%{_sbindir}/lwresd |
560 |
|
|
%{_sbindir}/named |
561 |
|
|
%{_sbindir}/named-bootconf |
562 |
|
|
%{_sbindir}/named-checkconf |
563 |
|
|
%{_sbindir}/named-checkzone |
564 |
|
|
%{_sbindir}/named-compilezone |
565 |
|
|
%{_sbindir}/named-journalprint |
566 |
|
|
%{_sbindir}/nsec3hash |
567 |
|
|
%{_sbindir}/rndc |
568 |
|
|
%{_sbindir}/rndc-confgen |
569 |
|
|
%{_mandir}/man1/arpaname.1.* |
570 |
|
|
%{_mandir}/man5/named.conf.5* |
571 |
|
|
%{_mandir}/man5/rndc.conf.5* |
572 |
|
|
%{_mandir}/man8/ddns-confgen.8.* |
573 |
|
|
%{_mandir}/man8/dnssec-*.8* |
574 |
|
|
%{_mandir}/man8/genrandom.8.* |
575 |
|
|
%{_mandir}/man8/isc-hmac-fixup.8.* |
576 |
|
|
%{_mandir}/man8/lwresd.8* |
577 |
|
|
%{_mandir}/man8/named-*.8* |
578 |
|
|
%{_mandir}/man8/named.8* |
579 |
|
|
%{_mandir}/man8/nsec3hash.8.* |
580 |
|
|
%{_mandir}/man8/rndc.8* |
581 |
|
|
%{_mandir}/man8/rndc-confgen.8* |
582 |
|
|
# the chroot |
583 |
|
|
%dir /var/lib/named |
584 |
|
|
%dir /var/lib/named/dev |
585 |
|
|
%dir /var/lib/named/etc |
586 |
|
|
%dir /var/lib/named/var |
587 |
|
|
%dir /var/lib/named/var/named |
588 |
|
|
%attr(-,named,named) %dir /var/lib/named/var/log |
589 |
|
|
%attr(-,named,named) %dir /var/lib/named/var/run |
590 |
|
|
%attr(-,named,named) %dir /var/lib/named/var/tmp |
591 |
|
|
%attr(-,named,named) %dir /var/lib/named/var/named/master |
592 |
|
|
%attr(-,named,named) %dir /var/lib/named/var/named/slaves |
593 |
|
|
%attr(-,named,named) %dir /var/lib/named/var/named/reverse |
594 |
|
|
%config(noreplace) /var/lib/named/etc/named.conf |
595 |
|
|
%attr(-,root,named) %config(noreplace) /var/lib/named/etc/bind.keys |
596 |
|
|
%attr(-,root,named) %config(noreplace) /var/lib/named/etc/rndc.conf |
597 |
|
|
%attr(-,root,named) %config(noreplace) /var/lib/named/etc/rndc.key |
598 |
|
|
%{_sysconfdir}/bind.keys |
599 |
|
|
%{_sysconfdir}/named.conf |
600 |
|
|
%{_sysconfdir}/rndc.conf |
601 |
|
|
%{_sysconfdir}/rndc.key |
602 |
|
|
%config(noreplace) /var/lib/named/etc/bogon_acl.conf |
603 |
|
|
%config(noreplace) /var/lib/named/etc/logging.conf |
604 |
|
|
%config(noreplace) /var/lib/named/etc/trusted_networks_acl.conf |
605 |
|
|
%config(noreplace) /var/lib/named/etc/hosts |
606 |
|
|
%config(noreplace) /var/lib/named/var/named/master/localdomain.zone |
607 |
|
|
%config(noreplace) /var/lib/named/var/named/master/localhost.zone |
608 |
|
|
%config(noreplace) /var/lib/named/var/named/reverse/named.broadcast |
609 |
|
|
%config(noreplace) /var/lib/named/var/named/reverse/named.ip6.local |
610 |
|
|
%config(noreplace) /var/lib/named/var/named/reverse/named.local |
611 |
|
|
%config(noreplace) /var/lib/named/var/named/reverse/named.zero |
612 |
|
|
%config(noreplace) /var/lib/named/var/named/named.ca |
613 |
|
|
|
614 |
|
|
%files devel |
615 |
|
|
%doc CHANGES README |
616 |
|
|
%multiarch %{multiarch_bindir}/isc-config.sh |
617 |
|
|
%{_bindir}/isc-config.sh |
618 |
|
|
%{_includedir}/* |
619 |
|
|
%{_libdir}/*.a |
620 |
|
|
%{_mandir}/man1/isc-config.sh.1* |
621 |
|
|
%{_mandir}/man3/lwres*.3* |
622 |
|
|
|
623 |
|
|
%files utils |
624 |
|
|
%doc README COPYRIGHT *.query-loc *.queryperf |
625 |
|
|
%{_bindir}/dig |
626 |
|
|
%{_bindir}/host |
627 |
|
|
%{_bindir}/nslookup |
628 |
|
|
%{_bindir}/nsupdate |
629 |
|
|
%{_bindir}/queryperf |
630 |
|
|
%{_bindir}/query-loc |
631 |
|
|
%{_mandir}/man1/host.1* |
632 |
|
|
%{_mandir}/man1/dig.1* |
633 |
|
|
%{_mandir}/man1/nslookup.1* |
634 |
|
|
%{_mandir}/man1/nsupdate.1* |
635 |
|
|
%{_mandir}/man1/query-loc.1* |
636 |
|
|
%if %{sdb_ldap} |
637 |
|
|
%doc zone2ldap/zone2ldap.README ldap2zone/README.ldap2zone ldap2zone/dnszone-schema.txt |
638 |
|
|
%{_bindir}/zonetoldap |
639 |
|
|
%{_bindir}/ldap2zone |
640 |
|
|
%{_mandir}/man1/zonetoldap.1* |
641 |
|
|
%endif |
642 |
|
|
%{_mandir}/man5/resolver.5* |
643 |
|
|
%{_mandir}/man5/resolv.5* |
644 |
|
|
|
645 |
|
|
%files doc |
646 |
|
|
%doc doc/draft doc/html doc/rfc doc/misc/ |
647 |
|
|
%doc doc/dhcp-dynamic-dns-examples doc/chroot doc/trustix |
648 |
|
|
|