1 |
%define sdb 1 |
2 |
%define geoip 0 |
3 |
%define gssapi 1 |
4 |
|
5 |
%{?_with_sdbp: %{expand: %%global sdb 1}} |
6 |
%{?_without_sdb: %{expand: %%global sdb 0}} |
7 |
%{?_with_geoip: %{expand: %%global geoip 1}} |
8 |
%{?_without_geoip: %{expand: %%global geoip 0}} |
9 |
%{?_with_gssapi: %{expand: %%global gssapi 1}} |
10 |
%{?_without_gssapi: %{expand: %%global gssapi 0}} |
11 |
|
12 |
%define major_version 9.10.3 |
13 |
%define patch_version P4 |
14 |
%define dashpatch %{?patch_version:-%patch_version}%nil |
15 |
%define dotpatch %{?patch_version:.%patch_version}%nil |
16 |
%define chroot_prefix /var/lib/named |
17 |
|
18 |
Name: bind |
19 |
Version: %{major_version}%{dotpatch} |
20 |
Release: %mkrel 1 |
21 |
Summary: A DNS (Domain Name System) server |
22 |
License: ISC |
23 |
Group: System/Servers |
24 |
URL: http://www.isc.org/products/BIND/ |
25 |
Source0: ftp://ftp.isc.org/isc/%{name}9/%{major_version}%{dashpatch}/%{name}-%{major_version}%{dashpatch}.tar.gz |
26 |
Source1: ftp://ftp.isc.org/isc/%{name}9/%{major_version}%{dashpatch}/%{name}-%{major_version}%{dashpatch}.tar.gz.sha512.asc |
27 |
|
28 |
Source6: named.sysconfig |
29 |
Source7: named.logrotate |
30 |
Source8: named.NetworkManager |
31 |
Source11: ftp://ftp.internic.net/domain/named.cache |
32 |
Source20: bind-keygen.c |
33 |
Source40: bind.tmpfiles |
34 |
Source41: named.service |
35 |
Source42: named-sdb.service |
36 |
Source43: setup-named-chroot.sh |
37 |
|
38 |
# sdb |
39 |
Source30: ldap2zone.c |
40 |
Source31: ldap2zone.1 |
41 |
Source32: named-sdb.8 |
42 |
Source33: zonetodb.1 |
43 |
Source34: zone2sqlite.1 |
44 |
Source35: bind-9.3.1rc1-sdb_tools-Makefile.in |
45 |
Source36: dnszone.schema |
46 |
Source37: README.sdb_pgsql |
47 |
|
48 |
Source100: named.conf |
49 |
Source102: named.root.key |
50 |
Source103: trusted-key.key |
51 |
Source105: rndc.key |
52 |
Source110: named.ca |
53 |
Source111: named.localhost |
54 |
Source112: named.empty |
55 |
Source113: named.loopback |
56 |
|
57 |
# fedora patches |
58 |
Patch10: bind-9.5-PIE.patch |
59 |
Patch72: bind-9.5-dlz-64bit.patch |
60 |
Patch87: bind-9.5-parallel-build.patch |
61 |
Patch99: bind-9.9.3-libtool2.diff |
62 |
Patch101: bind-96-old-api.patch |
63 |
Patch102: bind-95-rh452060.patch |
64 |
Patch106: bind93-rh490837.patch |
65 |
Patch107: bind97-dist-pkcs11.patch |
66 |
Patch109: bind97-rh478718.patch |
67 |
Patch110: bind97-rh570851.patch |
68 |
Patch111: bind97-exportlib.patch |
69 |
Patch112: bind97-rh645544.patch |
70 |
Patch119: bind97-rh693982.patch |
71 |
Patch123: bind98-rh735103.patch |
72 |
Patch127: bind99-forward.patch |
73 |
Patch130: bind-9.9.3-dlz-libdb4.diff |
74 |
Patch131: bind-9.9.1-P2-multlib-conflict.patch |
75 |
Patch133: bind99-rh640538.patch |
76 |
Patch134: bind97-rh669163.patch |
77 |
Patch135: bind99-libidn4.patch |
78 |
Patch137: bind99-rrl.patch |
79 |
|
80 |
# SDB patches |
81 |
Patch11: bind-9.9.3-sdbsrc.diff |
82 |
Patch12: bind-9.10-sdb.patch |
83 |
Patch62: bind-9.5-sdb-sqlite-bld.patch |
84 |
|
85 |
# needs inpection |
86 |
Patch17: bind-9.3.2b1-fix_sdb_ldap.patch |
87 |
Patch104: bind-9.10-dyndb.patch |
88 |
|
89 |
# IDN patches |
90 |
Patch73: bind-9.5-libidn.patch |
91 |
Patch83: bind-9.5-libidn2.patch |
92 |
Patch85: bind-9.5-libidn3.patch |
93 |
Patch94: bind95-rh461409.patch |
94 |
|
95 |
# other patches |
96 |
Patch206: bind-9.2.0rc3-varrun.patch |
97 |
Patch208: bind-9.3.2-prctl_set_dumpable.patch |
98 |
|
99 |
Requires: bind-utils >= %{version}-%{release} |
100 |
Requires(post): systemd >= %{systemd_required_version} |
101 |
Requires(post): rpm-helper >= 0.24.8-1 |
102 |
Requires(preun): rpm-helper >= 0.24.8-1 |
103 |
BuildRequires: openssl-devel |
104 |
BuildRequires: multiarch-utils >= 1.0.3 |
105 |
BuildRequires: libidn-devel |
106 |
BuildRequires: postgresql-devel |
107 |
BuildRequires: mysql-devel |
108 |
BuildRequires: libcap-devel >= 2.10 |
109 |
BuildRequires: libxml2-devel |
110 |
%if %{gssapi} |
111 |
BuildRequires: krb5-devel |
112 |
%endif |
113 |
%if %{geoip} |
114 |
BuildRequires: geoip-devel |
115 |
%endif |
116 |
%if %{sdb} |
117 |
BuildRequires: mysql-devel |
118 |
BuildRequires: openldap-devel |
119 |
BuildRequires: postgresql-devel |
120 |
BuildRequires: sqlite3-devel |
121 |
%endif |
122 |
|
123 |
%description |
124 |
BIND (Berkeley Internet Name Domain) is an implementation of the DNS |
125 |
(domain Name System) protocols. BIND includes a DNS server (named), |
126 |
which resolves host names to IP addresses, and a resolver library |
127 |
(routines for applications to use when interfacing with DNS). A DNS |
128 |
server allows clients to name resources or objects and share the |
129 |
information with other network machines. The named DNS server can be |
130 |
used on workstations as a caching name server, but is generally only |
131 |
needed on one machine for an entire network. Note that the |
132 |
configuration files for making BIND act as a simple caching nameserver |
133 |
are included in the caching-nameserver package. |
134 |
|
135 |
Install the bind package if you need a DNS server for your network. If |
136 |
you want bind to act a caching name server, you will also need to install |
137 |
the caching-nameserver package. |
138 |
|
139 |
Many BIND 8 features previously unimplemented in BIND 9, including |
140 |
domain-specific forwarding, the \$GENERATE master file directive, and |
141 |
the "blackhole", "dialup", and "sortlist" options Forwarding of dynamic |
142 |
update requests; this is enabled by the "allow-update-forwarding" option |
143 |
A new, simplified database interface and a number of sample drivers based |
144 |
on it; see doc/dev/sdb for details |
145 |
Support for building single-threaded servers for environments that do not |
146 |
supply POSIX threads |
147 |
New configuration options: "min-refresh-time", "max-refresh-time", |
148 |
"min-retry-time", "max-retry-time", "additional-from-auth", |
149 |
"additional-from-cache", "notify explicit" |
150 |
Faster lookups, particularly in large zones. |
151 |
|
152 |
Build Options: |
153 |
--with sdb Build with database backends and DLZ support (enabled by default) |
154 |
--with geoip Build with GeoIP support (disabled per default) |
155 |
|
156 |
%if %{sdb} |
157 |
%package sdb |
158 |
Summary: BIND server with database backends and DLZ support |
159 |
Group: System/Servers |
160 |
Requires: bind |
161 |
Requires(post): rpm-helper >= 0.24.8-1 |
162 |
Requires(preun): rpm-helper >= 0.24.8-1 |
163 |
|
164 |
%description sdb |
165 |
BIND (Berkeley Internet Name Domain) is an implementation of the DNS |
166 |
(Domain Name System) protocols. BIND includes a DNS server (named-sdb) |
167 |
which has compiled-in SDB (Simplified Database Backend) which includes |
168 |
support for using alternative Zone Databases stored in an LDAP server |
169 |
(ldapdb), a postgreSQL database (pgsqldb), an sqlite database (sqlitedb), |
170 |
or in the filesystem (dirdb), in addition to the standard in-memory RBT |
171 |
(Red Black Tree) zone database. It also includes support for DLZ |
172 |
(Dynamic Loadable Zones) |
173 |
%endif |
174 |
|
175 |
%package utils |
176 |
Summary: Utilities for querying DNS name servers |
177 |
Group: Networking/Other |
178 |
|
179 |
%description utils |
180 |
Bind-utils contains a collection of utilities for querying DNS (Domain |
181 |
Name Service) name servers to find out information about Internet hosts. |
182 |
These tools will provide you with the IP addresses for given host names, |
183 |
as well as other information about registered domains and network |
184 |
addresses. |
185 |
|
186 |
You should install bind-utils if you need to get information from DNS name |
187 |
servers. |
188 |
|
189 |
%package devel |
190 |
Summary: Include files and libraries needed for bind DNS development |
191 |
Group: Development/C |
192 |
|
193 |
%description devel |
194 |
The bind-devel package contains all the include files and the |
195 |
library required for DNS (Domain Name Service) development for |
196 |
BIND versions 9.x.x. |
197 |
|
198 |
%package doc |
199 |
Summary: Documentation for BIND |
200 |
Group: Documentation |
201 |
BuildArch: noarch |
202 |
|
203 |
%description doc |
204 |
The bind-devel package contains the documentation for BIND. |
205 |
|
206 |
%prep |
207 |
%setup -q -n %{name}-%{major_version}%{dashpatch} |
208 |
|
209 |
%patch10 -p1 -b .PIE |
210 |
|
211 |
%patch104 -p1 -b .dyndb |
212 |
%patch72 -p1 -b .64bit |
213 |
%patch73 -p1 -b .libidn |
214 |
%patch83 -p1 -b .libidn2 |
215 |
%patch85 -p1 -b .libidn3 |
216 |
%patch87 -p1 -b .parallel |
217 |
%patch94 -p1 -b .rh461409 |
218 |
mkdir m4 |
219 |
%patch99 -p0 -b .libtool2 |
220 |
%patch102 -p1 -b .rh452060 |
221 |
%patch106 -p1 -b .rh490837 |
222 |
%patch107 -p1 -b .dist-pkcs11 |
223 |
%patch109 -p1 -b .rh478718 |
224 |
%patch110 -p1 -b .rh570851 |
225 |
# exportlib is gone, keep for now |
226 |
# %%patch111 -p1 -b .exportlib |
227 |
%patch112 -p1 -b .rh645544 |
228 |
%patch119 -p1 -b .rh693982 |
229 |
%patch123 -p1 -b .rh735103 |
230 |
%patch127 -p1 -b .forward |
231 |
# no idea what this is good for, keep for now |
232 |
# %%patch130 -p1 -b .libdb4 |
233 |
%patch131 -p1 -b .multlib-conflict |
234 |
%patch137 -p1 -b .rrl |
235 |
|
236 |
%if %{sdb} |
237 |
%patch101 -p1 -b .old-api |
238 |
mkdir bin/named-sdb |
239 |
cp -r bin/named/* bin/named-sdb |
240 |
%patch11 -p1 -b .sdbsrc |
241 |
# SDB ldap |
242 |
cp -fp contrib/sdb/ldap/ldapdb.[ch] bin/named-sdb |
243 |
# SDB postgreSQL |
244 |
cp -fp contrib/sdb/pgsql/pgsqldb.[ch] bin/named-sdb |
245 |
# SDB sqlite |
246 |
cp -fp contrib/sdb/sqlite/sqlitedb.[ch] bin/named-sdb |
247 |
# SDB Berkeley DB - needs to be ported to DB4! |
248 |
#cp -fp contrib/sdb/bdb/bdb.[ch] bin/named_sdb |
249 |
# SDB dir |
250 |
cp -fp contrib/sdb/dir/dirdb.[ch] bin/named-sdb |
251 |
# SDB tools |
252 |
mkdir -p bin/sdb_tools |
253 |
cp -fp %{SOURCE30} bin/sdb_tools/ldap2zone.c |
254 |
cp -fp %{SOURCE35} bin/sdb_tools/Makefile.in |
255 |
#cp -fp contrib/sdb/bdb/zone2bdb.c bin/sdb_tools |
256 |
cp -fp contrib/sdb/ldap/{zone2ldap.1,zone2ldap.c} bin/sdb_tools |
257 |
cp -fp contrib/sdb/pgsql/zonetodb.c bin/sdb_tools |
258 |
cp -fp contrib/sdb/sqlite/zone2sqlite.c bin/sdb_tools |
259 |
%patch12 -p1 -b .sdb |
260 |
%patch17 -p1 -b .fix_sdb_ldap |
261 |
%patch62 -p1 -b .sdb-sqlite-bld |
262 |
%endif |
263 |
%patch133 -p1 -b .rh640538 |
264 |
%patch134 -p1 -b .rh669163 |
265 |
%patch135 -p1 -b .libidn4 |
266 |
|
267 |
%patch206 -p1 -b .varrun.droplet |
268 |
%patch208 -p1 -b .prctl_set_dumpable.droplet |
269 |
|
270 |
cp %{SOURCE20} keygen.c |
271 |
cp %{SOURCE11} named.cache |
272 |
|
273 |
%build |
274 |
%serverbuild |
275 |
|
276 |
# https://kb.isc.org/article/AA-01167 |
277 |
export CFLAGS="$CFLAGS -fno-delete-null-pointer-checks" |
278 |
|
279 |
# -DBIND9 due to P123 |
280 |
export CPPFLAGS="$CPPFLAGS -DDIG_SIGCHASE -DBIND9 -fPIC" |
281 |
export STD_CDEFINES="$CPPFLAGS" |
282 |
|
283 |
libtoolize --copy --force |
284 |
aclocal -I m4 --force |
285 |
autoheader --force |
286 |
autoconf --force |
287 |
|
288 |
# (oe) make queryperf from the contrib _before_ bind..., makes it |
289 |
# easier to determine if it builds or not, it saves time... |
290 |
pushd contrib/queryperf |
291 |
rm -f configure |
292 |
autoconf |
293 |
%configure2_5x |
294 |
%make CFLAGS="$CFLAGS" |
295 |
popd |
296 |
|
297 |
pushd contrib/query-loc-* |
298 |
perl -pi -e "s|-lnsl|-lnsl -lresolv|g" configure* |
299 |
rm -f configure |
300 |
autoconf |
301 |
%configure2_5x |
302 |
%make CFLAGS="$CFLAGS" |
303 |
popd |
304 |
|
305 |
%configure2_5x \ |
306 |
--localstatedir=/var \ |
307 |
--disable-openssl-version-check \ |
308 |
--enable-exportlib \ |
309 |
--with-export-libdir=%{_libdir} \ |
310 |
--with-export-includedir=%{_includedir} \ |
311 |
--enable-threads \ |
312 |
--enable-largefile \ |
313 |
--enable-ipv6 \ |
314 |
--enable-filter-aaaa \ |
315 |
--enable-epoll \ |
316 |
--with-openssl=%{_prefix} \ |
317 |
%if %{gssapi} |
318 |
--with-gssapi=%{_prefix} --disable-isc-spnego \ |
319 |
%endif |
320 |
%if %{geoip} |
321 |
--with-geoip=%{_prefix} \ |
322 |
%endif |
323 |
--with-randomdev=/dev/urandom \ |
324 |
--with-libxml2=yes \ |
325 |
--enable-newstats \ |
326 |
--enable-rrl \ |
327 |
%if %{sdb} |
328 |
--with-dlz-ldap=yes \ |
329 |
--with-dlz-postgres=yes \ |
330 |
--with-dlz-mysql=yes \ |
331 |
--with-dlz-filesystem=yes \ |
332 |
--with-dlz-stub=yes |
333 |
%endif |
334 |
|
335 |
# pkcs11 support requires a working backend, otherwise bind won't start |
336 |
# http://blogs.sun.com/janp/ |
337 |
# http://sourceforge.net/projects/opencryptoki |
338 |
#--with-pkcs11 \ |
339 |
|
340 |
make |
341 |
|
342 |
gcc $CFLAGS -o dns-keygen keygen.c |
343 |
|
344 |
%install |
345 |
%makeinstall_std |
346 |
|
347 |
install -d -p %{buildroot}%{_libdir}/bind |
348 |
install -d %{buildroot}/var/named/{slaves,data,dynamic} |
349 |
install -d %{buildroot}/var/log |
350 |
|
351 |
# chroot |
352 |
install -d %{buildroot}%{chroot_prefix}/{dev,etc,var} |
353 |
install -d %{buildroot}%{chroot_prefix}/var/{log,named,run/named,tmp} |
354 |
install -d %{buildroot}%{chroot_prefix}/etc/{pki/dnssec-keys,named} |
355 |
install -d %{buildroot}%{chroot_prefix}/%{_libdir}/bind |
356 |
install -d %{buildroot}%{chroot_prefix}/%{_libdir}/openssl |
357 |
|
358 |
# these are required to prevent them being erased during upgrade of previous |
359 |
# versions that included them (rh bug #130121): |
360 |
touch %{buildroot}%{chroot_prefix}/dev/null |
361 |
touch %{buildroot}%{chroot_prefix}/dev/random |
362 |
touch %{buildroot}%{chroot_prefix}/dev/zero |
363 |
touch %{buildroot}%{chroot_prefix}/etc/localtime |
364 |
|
365 |
install -m 755 %{SOURCE43} %{buildroot}%{_sbindir}/setup-named-chroot.sh |
366 |
|
367 |
# systemd files |
368 |
install -d -m 755 %{buildroot}%{_unitdir} |
369 |
install -m 644 %{SOURCE41} %{buildroot}%{_unitdir} |
370 |
install -m 644 %{SOURCE42} %{buildroot}%{_unitdir} |
371 |
|
372 |
install -D -m 644 %{SOURCE40} %{buildroot}%{_tmpfilesdir}/named.conf |
373 |
|
374 |
# main configuration |
375 |
install -m 644 %{SOURCE100} %{buildroot}%{_sysconfdir}/named.conf |
376 |
install -m 644 %{SOURCE102} %{buildroot}%{_sysconfdir}/named.root.key |
377 |
install -m 644 %{SOURCE103} %{buildroot}%{_sysconfdir}/trusted-key.key |
378 |
install -m 640 %{SOURCE105} %{buildroot}%{_sysconfdir}/rndc.key |
379 |
|
380 |
mv %{buildroot}%{_sysconfdir}/bind.keys \ |
381 |
%{buildroot}%{_sysconfdir}/named.iscdlv.key |
382 |
install -d 755 %{buildroot}/etc/named |
383 |
|
384 |
install -d 755 %{buildroot}%{_localstatedir}/named |
385 |
install -m 644 %{SOURCE110} %{buildroot}%{_localstatedir}/named/named.ca |
386 |
install -m 644 %{SOURCE111} %{buildroot}%{_localstatedir}/named/named.localhost |
387 |
install -m 644 %{SOURCE112} %{buildroot}%{_localstatedir}/named/named.empty |
388 |
install -m 644 %{SOURCE113} %{buildroot}%{_localstatedir}/named/named.loopback |
389 |
|
390 |
# other configuration |
391 |
install -D -m 644 %{SOURCE6} %{buildroot}%{_sysconfdir}/sysconfig/named |
392 |
install -D -m 644 %{SOURCE7} %{buildroot}%{_sysconfdir}/logrotate.d/named |
393 |
|
394 |
install -d -m 755 %{buildroot}%{_sysconfdir}/rsyslog.d/ |
395 |
cat > %{buildroot}%{_sysconfdir}/rsyslog.d/named.conf <<'EOF' |
396 |
$AddUnixListenSocket /var/lib/named/dev/log |
397 |
EOF |
398 |
|
399 |
install -D -m 755 \ |
400 |
%{SOURCE8} %{buildroot}%{_sysconfdir}/NetworkManager/dispatcher.d/13-named |
401 |
|
402 |
%if %{sdb} |
403 |
mkdir -p %{buildroot}/etc/openldap/schema |
404 |
install -m 644 %{SOURCE36} %{buildroot}/etc/openldap/schema/dnszone.schema |
405 |
install -m 644 %{SOURCE37} contrib/sdb/pgsql/ |
406 |
|
407 |
install -m 644 %{SOURCE31} %{buildroot}%{_mandir}/man1/ldap2zone.1 |
408 |
install -m 644 %{SOURCE32} %{buildroot}%{_mandir}/man8/named-sdb.8 |
409 |
install -m 644 %{SOURCE33} %{buildroot}%{_mandir}/man1/zonetodb.1 |
410 |
install -m 644 %{SOURCE34} %{buildroot}%{_mandir}/man1/zone2sqlite.1 |
411 |
%endif |
412 |
|
413 |
# contrib |
414 |
install -m0755 contrib/scripts/named-bootconf.sh %{buildroot}%{_sbindir}/named-bootconf |
415 |
install -m0755 contrib/queryperf/queryperf %{buildroot}%{_bindir}/ |
416 |
cp contrib/queryperf/README README.queryperf |
417 |
|
418 |
install -m0755 contrib/query-loc-*/query-loc %{buildroot}%{_bindir}/ |
419 |
install -m0644 contrib/query-loc-*/query-loc.1 %{buildroot}%{_mandir}/man1/ |
420 |
cp contrib/query-loc-*/ADDRESSES ADDRESSES.query-loc |
421 |
cp contrib/query-loc-*/ALGO ALGO.query-loc |
422 |
cp contrib/query-loc-*/README README.query-loc |
423 |
cp contrib/query-loc-*/USAGE USAGE.query-loc |
424 |
|
425 |
install -m 755 dns-keygen %{buildroot}%{_sbindir}/dns-keygen |
426 |
|
427 |
install -d -m 755 %{buildroot}%{_docdir}/%{name} |
428 |
install -d -m 755 %{buildroot}%{_docdir}/%{name}/arm |
429 |
install -m 644 doc/arm/*.html %{buildroot}%{_docdir}/%{name}/arm |
430 |
install -m 644 doc/arm/*.pdf %{buildroot}%{_docdir}/%{name}/arm |
431 |
cp -pr doc/misc %{buildroot}%{_docdir}/%{name} |
432 |
rm -f %{buildroot}%{_docdir}/%{name}/misc/Makefile* |
433 |
|
434 |
%multiarch_binaries %{buildroot}%{_bindir}/isc-config.sh |
435 |
%multiarch_binaries %{buildroot}%{_bindir}/bind9-config |
436 |
|
437 |
cat > README.mga <<EOF |
438 |
Mageia BIND SDB support: |
439 |
|
440 |
Mageia ships named with compiled in Simplified Database Backend modules that |
441 |
ISC provides in the "contrib/sdb" directory. Install bind-sdb package if you |
442 |
want to use them. The SDB modules for LDAP, PostGreSQL, DirDB and SQLite are |
443 |
compiled into named-sdb. |
444 |
EOF |
445 |
|
446 |
%triggerpostun -- bind < 9.9.2 |
447 |
# handle migration from previous setup after uninstallation of previous release |
448 |
# so as to catch modified configuration files saved as .rpmsave |
449 |
for f in named.conf trusted_networks_acl.conf logging.conf rndc.conf rndc.key; do |
450 |
if [ -f %{chroot_prefix}/etc/$f.rpmsave ]; then |
451 |
if [ -f %{_sysconfdir}/$f ]; then |
452 |
mv %{_sysconfdir}/$f %{_sysconfdir}/$f.rpmnew |
453 |
fi |
454 |
mv %{chroot_prefix}/etc/$f.rpmsave %{_sysconfdir}/$f; |
455 |
fi |
456 |
done |
457 |
|
458 |
if [ -d %{chroot_prefix}/var/named/master ]; then |
459 |
mv %{chroot_prefix}/var/named/master %{_localstatedir}/named |
460 |
fi |
461 |
|
462 |
if [ -d %{chroot_prefix}/var/named/reverse ]; then |
463 |
mv %{chroot_prefix}/var/named/reverse %{_localstatedir}/named |
464 |
fi |
465 |
|
466 |
%pre |
467 |
%_pre_useradd named /var/lib/named /bin/false |
468 |
|
469 |
%post |
470 |
if [ "$1" -gt 1 ]; then |
471 |
# upgrade |
472 |
mv -f %{chroot_prefix}/var/named/* /var/named/ |
473 |
rm -rf %{chroot_prefix}%{_libdir}/openssl-* |
474 |
fi |
475 |
%_tmpfilescreate named |
476 |
%_post_service named |
477 |
|
478 |
# chroot devices |
479 |
[ -e %{chroot_prefix}/dev/random ] || \ |
480 |
/bin/mknod %{chroot_prefix}/dev/random c 1 8 |
481 |
[ -e %{chroot_prefix}/dev/zero ] || \ |
482 |
/bin/mknod %{chroot_prefix}/dev/zero c 1 5 |
483 |
[ -e %{chroot_prefix}/dev/null ] || \ |
484 |
/bin/mknod %{chroot_prefix}/dev/null c 1 3 |
485 |
rm -f %{chroot_prefix}/etc/localtime |
486 |
cp /etc/localtime %{chroot_prefix}/etc/localtime |
487 |
|
488 |
if [ "$1" -eq 1 ]; then |
489 |
# installation |
490 |
MYKEY="`%{_sbindir}/dns-keygen`" |
491 |
perl -pi -e "s|_MY_KEY_|$MYKEY|g" %{_sysconfdir}/rndc.key |
492 |
fi |
493 |
|
494 |
%preun |
495 |
%_preun_service named |
496 |
|
497 |
if [ "$1" -eq 0 ]; then |
498 |
# uninstallation |
499 |
rm -f %{chroot_prefix}/dev/{random,zero,null} |
500 |
rm -f %{chroot_prefix}/etc/localtime |
501 |
fi |
502 |
|
503 |
%postun |
504 |
%_postun_userdel named |
505 |
|
506 |
%files |
507 |
%doc CHANGES README README.mga FAQ COPYRIGHT |
508 |
%{_bindir}/delv |
509 |
%{_sbindir}/arpaname |
510 |
%{_sbindir}/ddns-confgen |
511 |
%{_sbindir}/dns-keygen |
512 |
%{_sbindir}/dnssec-checkds |
513 |
%{_sbindir}/dnssec-coverage |
514 |
%{_sbindir}/dnssec-dsfromkey |
515 |
%{_sbindir}/dnssec-importkey |
516 |
%{_sbindir}/dnssec-keyfromlabel |
517 |
%{_sbindir}/dnssec-keygen |
518 |
%{_sbindir}/dnssec-revoke |
519 |
%{_sbindir}/dnssec-settime |
520 |
%{_sbindir}/dnssec-signzone |
521 |
%{_sbindir}/dnssec-verify |
522 |
%{_sbindir}/genrandom |
523 |
%{_sbindir}/isc-hmac-fixup |
524 |
%{_sbindir}/lwresd |
525 |
%{_sbindir}/named |
526 |
%{_sbindir}/named-bootconf |
527 |
%{_sbindir}/named-checkconf |
528 |
%{_sbindir}/named-checkzone |
529 |
%{_sbindir}/named-compilezone |
530 |
%{_sbindir}/named-journalprint |
531 |
%{_sbindir}/named-rrchecker |
532 |
%{_sbindir}/nsec3hash |
533 |
%{_sbindir}/rndc |
534 |
%{_sbindir}/rndc-confgen |
535 |
%{_sbindir}/setup-named-chroot.sh |
536 |
%{_sbindir}/tsig-keygen |
537 |
%{_mandir}/man1/arpaname.1.* |
538 |
%{_mandir}/man1/delv.1* |
539 |
%{_mandir}/man1/named-rrchecker.1* |
540 |
%{_mandir}/man5/named.conf.5* |
541 |
%{_mandir}/man5/rndc.conf.5* |
542 |
%{_mandir}/man8/ddns-confgen.8.* |
543 |
%{_mandir}/man8/dnssec-*.8* |
544 |
%{_mandir}/man8/genrandom.8.* |
545 |
%{_mandir}/man8/isc-hmac-fixup.8.* |
546 |
%{_mandir}/man8/lwresd.8* |
547 |
%{_mandir}/man8/named-*.8* |
548 |
%{_mandir}/man8/named.8* |
549 |
%{_mandir}/man8/nsec3hash.8.* |
550 |
%{_mandir}/man8/rndc.8* |
551 |
%{_mandir}/man8/rndc-confgen.8* |
552 |
%{_mandir}/man8/tsig-keygen.8* |
553 |
%{_libdir}/bind |
554 |
|
555 |
# main configuration |
556 |
%dir %{_sysconfdir}/named |
557 |
%config(noreplace) %{_sysconfdir}/named.conf |
558 |
%attr(-,root,named) %config(noreplace) %{_sysconfdir}/rndc.key |
559 |
%attr(-,root,named) %config(noreplace) %{_sysconfdir}/named.iscdlv.key |
560 |
%attr(-,root,named) %config(noreplace) %{_sysconfdir}/named.root.key |
561 |
|
562 |
# other configuration |
563 |
%config(noreplace) %{_sysconfdir}/sysconfig/named |
564 |
%config(noreplace) %{_sysconfdir}/rsyslog.d/named.conf |
565 |
%config(noreplace) %{_sysconfdir}/logrotate.d/named |
566 |
%{_sysconfdir}/NetworkManager/dispatcher.d/13-named |
567 |
%{_tmpfilesdir}/named.conf |
568 |
%{_unitdir}/named.service |
569 |
|
570 |
# variable directory |
571 |
%dir %{_localstatedir}/named |
572 |
%attr(-,named,named) %dir %{_localstatedir}/named/slaves |
573 |
%attr(-,named,named) %dir %{_localstatedir}/named/data |
574 |
%attr(-,named,named) %dir %{_localstatedir}/named/dynamic |
575 |
%config(noreplace) %{_localstatedir}/named/named.ca |
576 |
%config(noreplace) %{_localstatedir}/named/named.localhost |
577 |
%config(noreplace) %{_localstatedir}/named/named.loopback |
578 |
%config(noreplace) %{_localstatedir}/named/named.empty |
579 |
|
580 |
# the chroot |
581 |
%ghost %{chroot_prefix}/dev/null |
582 |
%ghost %{chroot_prefix}/dev/random |
583 |
%ghost %{chroot_prefix}/dev/zero |
584 |
%ghost %{chroot_prefix}/etc/localtime |
585 |
%dir %{chroot_prefix} |
586 |
%dir %{chroot_prefix}/dev |
587 |
%dir %{chroot_prefix}/etc |
588 |
%dir %{chroot_prefix}/etc/named |
589 |
%dir %{chroot_prefix}/etc/pki |
590 |
%dir %{chroot_prefix}/etc/pki/dnssec-keys |
591 |
%dir %{chroot_prefix}/var |
592 |
%dir %{chroot_prefix}/var/run |
593 |
%dir %{chroot_prefix}/var/named |
594 |
%dir %{chroot_prefix}/usr |
595 |
%dir %{chroot_prefix}/%{_libdir} |
596 |
%dir %{chroot_prefix}/%{_libdir}/bind |
597 |
%dir %{chroot_prefix}/%{_libdir}/openssl |
598 |
|
599 |
%attr(-,named,named) %dir %{chroot_prefix}/var/run/named |
600 |
%attr(-,named,named) %dir %{chroot_prefix}/var/tmp |
601 |
%attr(-,named,named) %dir %{chroot_prefix}/var/log |
602 |
|
603 |
|
604 |
%files devel |
605 |
%doc CHANGES README |
606 |
%multiarch %{multiarch_bindir}/isc-config.sh |
607 |
%multiarch %{multiarch_bindir}/bind9-config |
608 |
%{_bindir}/isc-config.sh |
609 |
%{_bindir}/bind9-config |
610 |
%{_includedir}/* |
611 |
%{_libdir}/*.a |
612 |
%{_mandir}/man1/bind9-config.1* |
613 |
%{_mandir}/man1/isc-config.sh.1* |
614 |
%{_mandir}/man3/lwres*.3* |
615 |
|
616 |
%files utils |
617 |
%doc README COPYRIGHT *.query-loc *.queryperf |
618 |
%{_bindir}/dig |
619 |
%{_bindir}/host |
620 |
%{_bindir}/nslookup |
621 |
%{_bindir}/nsupdate |
622 |
%{_bindir}/queryperf |
623 |
%{_bindir}/query-loc |
624 |
%{_mandir}/man1/host.1* |
625 |
%{_mandir}/man1/dig.1* |
626 |
%{_mandir}/man1/nslookup.1* |
627 |
%{_mandir}/man1/nsupdate.1* |
628 |
%{_mandir}/man1/query-loc.1* |
629 |
%{_sysconfdir}/trusted-key.key |
630 |
|
631 |
%files doc |
632 |
%{_docdir}/%{name} |
633 |
|
634 |
%if %{sdb} |
635 |
%files sdb |
636 |
%doc contrib/sdb/ldap/README.ldap |
637 |
%doc contrib/sdb/ldap/INSTALL.ldap |
638 |
%doc contrib/sdb/pgsql/README.sdb_pgsql |
639 |
%{_unitdir}/named-sdb.service |
640 |
%{_mandir}/man1/zone2ldap.1* |
641 |
%{_mandir}/man1/ldap2zone.1* |
642 |
%{_mandir}/man1/zonetodb.1* |
643 |
%{_mandir}/man1/zone2sqlite.1* |
644 |
%{_mandir}/man8/named-sdb.8* |
645 |
%config(noreplace) %{_sysconfdir}/openldap/schema/dnszone.schema |
646 |
%{_sbindir}/named-sdb |
647 |
%{_sbindir}/zone2ldap |
648 |
%{_sbindir}/ldap2zone |
649 |
%{_sbindir}/zonetodb |
650 |
%{_sbindir}/zone2sqlite |
651 |
%endif |