[gentoo-commits] repo/gentoo:master commit in: net-dns/bind-tools/

Tue, 09 May 2017 00:26:15 -0700 

commit:     1c1604f431994b979df63f6af2cd878cc7fb2978
Author:     Christian Ruppert <idl0r <AT> gentoo <DOT> org>
AuthorDate: Tue May  9 07:24:01 2017 +0000
Commit:     Christian Ruppert <idl0r <AT> gentoo <DOT> org>
CommitDate: Tue May  9 07:25:05 2017 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1c1604f4

net-dns/bind-tools: Version bumps, re bug 615420 - CVE-2017-3136, 
CVE-2017-3137, CVE-2017-3138

Package-Manager: Portage-2.3.5, Repoman-2.3.2

 net-dns/bind-tools/Manifest                    |   2 +
 net-dns/bind-tools/bind-tools-9.10.5.ebuild    | 131 ++++++++++++++++++++++++
 net-dns/bind-tools/bind-tools-9.11.0_p5.ebuild | 133 +++++++++++++++++++++++++
 3 files changed, 266 insertions(+)

diff --git a/net-dns/bind-tools/Manifest b/net-dns/bind-tools/Manifest
index 89077bf4876..5856928d451 100644
--- a/net-dns/bind-tools/Manifest
+++ b/net-dns/bind-tools/Manifest
@@ -1,3 +1,5 @@
 DIST bind-9.10.4-P4.tar.gz 9299638 SHA256 
a41ce7518e1d0faa40312cc89f4ca42246906b2718099d992e87a5d3ce9a9d86 SHA512 
a662053f2052eb2d7ea61b4ecbd4e92980c808080598f7c4590c746e8e5d6545a9f965a8aeece57ce92b17545844cf8565719f697eaef6e2ade8106d810d2799
 WHIRLPOOL 
31b8e7b7a7c35d9894d91d2caf7428935f28c319c0af5176aaa8bfabac38882c658fa45f5548387295502013b2cba2de624279531d9b79f4c120b4da62c46b1b
+DIST bind-9.10.5.tar.gz 9431916 SHA256 
71688d2e134e42205075eef93cc1b78b42a140a2d61bf8263afc9c92fc872b0e SHA512 
4050cffeecf5d4d2f34f202a7c4459671f882feaf4901d7d0be257e6beba36bcfe3e4d9428fd44c3e44141d368bd2a8380e1c517c322bc683e4b9563e340497f
 WHIRLPOOL 
489178be5f88b7e36628aa2a17ff1992f0fd1e7aab0e9679d2607280e8de1509435346669d35f87189fab8be73d3ff6e3da5f2a0041d88549ee640fbdd3ab8a4
 DIST bind-9.11.0-P2.tar.gz 9677204 SHA256 
d651f83ce1c08c83d6ac8201685c4f2b5fdb79794f3a4f93c3948e0ef439c1e5 SHA512 
19ba809814d42afdbd7cab291b006ac23d08a4aabfcbed101bc269a68597e70f2f89e1da27b719ceb4c94741702df2b95b2d8fce46b2a33a65ff242d5a3b298d
 WHIRLPOOL 
c79adae68a970e43100b6ed3a446dd872ffcf7ce8439bd86e721bf9555f309d0004efb0c9b577d17a7cde59a143e034f86287f544abb2596457d3e55f0f6632b
 DIST bind-9.11.0-P3.tar.gz 9691935 SHA256 
0feee0374bcbdee73a9d4277f3c5007622279572d520d7c27a4b64015d8ca9e9 SHA512 
fd5818ea36d7d4aa754a69ced675485cdb80b82f871b3f175c24715c0bd57fc78d4566657996f86ab32cb4158a974e97bb941ff9920cc3718b3484c161164b45
 WHIRLPOOL 
34db478ddd0841f8be244835c1d4b4149b4bda37707d56f697c544e836000aba0b0fa33c12ba8b86ebf9ca358cf7706db546570fe6371d94f93dca277dae1069
+DIST bind-9.11.0-P5.tar.gz 9698446 SHA256 
1e283f0567b484687dfd7b936e26c9af4f64043daf73cbd8f3eb1122c9fb71f5 SHA512 
142407db35a7bba6e676f2b3dc726a3a6ece9df8a27722f108ec309e24c4614da097b6cd31675c4925e68ff147896bc0a16dd71aa74dd73753ba86a2dbd7d3bd
 WHIRLPOOL 
a2aba3a52ad3610891733a3c8d93c0f5b263f706e36178a6f642b18e607a665ad0b15bdf679b9a5d149e9262eb5f718e23a09e989b63a418ee8fdfcb7f435186

diff --git a/net-dns/bind-tools/bind-tools-9.10.5.ebuild 
b/net-dns/bind-tools/bind-tools-9.10.5.ebuild
new file mode 100644
index 00000000000..6558e762503
--- /dev/null
+++ b/net-dns/bind-tools/bind-tools-9.10.5.ebuild
@@ -0,0 +1,131 @@
+# Copyright 1999-2017 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI="5"
+
+inherit eutils autotools flag-o-matic toolchain-funcs
+
+MY_PN=${PN//-tools}
+MY_PV=${PV/_p/-P}
+MY_PV=${MY_PV/_rc/rc}
+MY_P="${MY_PN}-${MY_PV}"
+
+DESCRIPTION="bind tools: dig, nslookup, host, nsupdate, dnssec-keygen"
+HOMEPAGE="http://www.isc.org/software/bind";
+SRC_URI="ftp://ftp.isc.org/isc/bind9/${MY_PV}/${MY_P}.tar.gz";
+
+LICENSE="ISC BSD BSD-2 HPND JNIC RSA openssl"
+SLOT="0"
+KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 
~sh ~sparc ~x86 ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos 
~x86-macos ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
+IUSE="doc gost gssapi idn ipv6 libressl readline seccomp ssl urandom xml"
+# no PKCS11 currently as it requires OpenSSL to be patched, also see bug 409687
+
+REQUIRED_USE="gost? ( !libressl ssl )"
+
+CDEPEND="
+       ssl? (
+               !libressl? ( dev-libs/openssl:0 )
+               libressl? ( dev-libs/libressl )
+       )
+       gost? ( >=dev-libs/openssl-1.0.0:0[-bindist] )
+       xml? ( dev-libs/libxml2 )
+       idn? ( net-dns/idnkit )
+       gssapi? ( virtual/krb5 )
+       readline? ( sys-libs/readline:0= )
+       seccomp? ( sys-libs/libseccomp )"
+DEPEND="${CDEPEND}
+       virtual/pkgconfig"
+RDEPEND="${CDEPEND}
+       !<net-dns/bind-9.10.2"
+
+S="${WORKDIR}/${MY_P}"
+
+# bug 479092, requires networking
+RESTRICT="test"
+
+src_prepare() {
+       epatch "${FILESDIR}"/${PN}-9.5.0_p1-lwconfig.patch #231247
+
+       # Disable tests for now, bug 406399
+       sed -i '/^SUBDIRS/s:tests::' bin/Makefile.in lib/Makefile.in || die
+
+       # bug #220361
+       rm aclocal.m4
+       rm -rf libtool.m4/
+
+       mv configure.in configure.ac || die # configure.in is deprecated
+       eautoreconf
+}
+
+src_configure() {
+       local myconf=
+
+       if use urandom; then
+               myconf="${myconf} --with-randomdev=/dev/urandom"
+       else
+               myconf="${myconf} --with-randomdev=/dev/random"
+       fi
+
+       # bug 344029
+       append-cflags "-DDIG_SIGCHASE"
+
+       # localstatedir for nsupdate -l, bug 395785
+       tc-export BUILD_CC
+       econf \
+               --localstatedir=/var \
+               --without-python \
+               --without-libjson \
+               --disable-openssl-version-check \
+               $(use_enable ipv6) \
+               $(use_with idn) \
+               $(usex idn --with-idnlib=-lidnkit '') \
+               $(use_enable seccomp) \
+               $(use_with ssl openssl) \
+               $(use_with xml libxml2) \
+               $(use_with gssapi) \
+               $(use_with readline) \
+               $(use_with gost) \
+               ${myconf}
+
+       # bug #151839
+       echo '#undef SO_BSDCOMPAT' >> config.h
+}
+
+src_compile() {
+       local AR=$(tc-getAR)
+
+       emake AR="${AR}" -C lib/
+       emake AR="${AR}" -C bin/delv/
+       emake AR="${AR}" -C bin/dig/
+       emake AR="${AR}" -C bin/nsupdate/
+       emake AR="${AR}" -C bin/dnssec/
+}
+
+src_install() {
+       dodoc README CHANGES FAQ
+
+       cd "${S}"/bin/delv
+       dobin delv
+       doman delv.1
+
+       cd "${S}"/bin/dig
+       dobin dig host nslookup
+       doman {dig,host,nslookup}.1
+
+       cd "${S}"/bin/nsupdate
+       dobin nsupdate
+       doman nsupdate.1
+       if use doc; then
+               dohtml nsupdate.html
+       fi
+
+       cd "${S}"/bin/dnssec
+       for tool in dsfromkey importkey keyfromlabel keygen \
+         revoke settime signzone verify; do
+               dobin dnssec-"${tool}"
+               doman dnssec-"${tool}".8
+               if use doc; then
+                       dohtml dnssec-"${tool}".html
+               fi
+       done
+}

diff --git a/net-dns/bind-tools/bind-tools-9.11.0_p5.ebuild 
b/net-dns/bind-tools/bind-tools-9.11.0_p5.ebuild
new file mode 100644
index 00000000000..7b7694cdca8
--- /dev/null
+++ b/net-dns/bind-tools/bind-tools-9.11.0_p5.ebuild
@@ -0,0 +1,133 @@
+# Copyright 1999-2017 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI="5"
+
+inherit eutils autotools flag-o-matic toolchain-funcs
+
+MY_PN=${PN//-tools}
+MY_PV=${PV/_p/-P}
+MY_PV=${MY_PV/_rc/rc}
+MY_P="${MY_PN}-${MY_PV}"
+
+DESCRIPTION="bind tools: dig, nslookup, host, nsupdate, dnssec-keygen"
+HOMEPAGE="http://www.isc.org/software/bind";
+SRC_URI="ftp://ftp.isc.org/isc/bind9/${MY_PV}/${MY_P}.tar.gz";
+
+LICENSE="Apache-2.0 BSD BSD-2 GPL-2 HPND ISC MPL-2.0"
+SLOT="0"
+KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 
~sh ~sparc ~x86 ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos 
~x86-macos ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
+IUSE="doc gost gssapi idn ipv6 libressl readline seccomp ssl urandom xml"
+# no PKCS11 currently as it requires OpenSSL to be patched, also see bug 409687
+
+REQUIRED_USE="gost? ( !libressl ssl )"
+
+CDEPEND="
+       ssl? (
+               !libressl? ( dev-libs/openssl:0 )
+               libressl? ( dev-libs/libressl )
+       )
+       gost? ( >=dev-libs/openssl-1.0.0:0[-bindist] )
+       xml? ( dev-libs/libxml2 )
+       idn? ( net-dns/idnkit )
+       gssapi? ( virtual/krb5 )
+       readline? ( sys-libs/readline:0= )
+       seccomp? ( sys-libs/libseccomp )"
+DEPEND="${CDEPEND}
+       virtual/pkgconfig"
+RDEPEND="${CDEPEND}
+       !<net-dns/bind-9.10.2"
+
+S="${WORKDIR}/${MY_P}"
+
+# bug 479092, requires networking
+RESTRICT="test"
+
+src_prepare() {
+       epatch "${FILESDIR}"/${PN}-9.5.0_p1-lwconfig.patch #231247
+
+       # Disable tests for now, bug 406399
+       sed -i '/^SUBDIRS/s:tests::' bin/Makefile.in lib/Makefile.in || die
+
+       # bug #220361
+       rm aclocal.m4
+       rm -rf libtool.m4/
+
+       mv configure.in configure.ac || die # configure.in is deprecated
+       eautoreconf
+}
+
+src_configure() {
+       local myconf=
+
+       if use urandom; then
+               myconf="${myconf} --with-randomdev=/dev/urandom"
+       else
+               myconf="${myconf} --with-randomdev=/dev/random"
+       fi
+
+       # bug 344029
+       append-cflags "-DDIG_SIGCHASE"
+
+       # localstatedir for nsupdate -l, bug 395785
+       tc-export BUILD_CC
+       econf \
+               --localstatedir=/var \
+               --without-python \
+               --without-libjson \
+               --without-zlib \
+               --without-lmdb \
+               --disable-openssl-version-check \
+               $(use_enable ipv6) \
+               $(use_with idn) \
+               $(usex idn --with-idnlib=-lidnkit '') \
+               $(use_enable seccomp) \
+               $(use_with ssl openssl) \
+               $(use_with xml libxml2) \
+               $(use_with gssapi) \
+               $(use_with readline) \
+               $(use_with gost) \
+               ${myconf}
+
+       # bug #151839
+       echo '#undef SO_BSDCOMPAT' >> config.h
+}
+
+src_compile() {
+       local AR=$(tc-getAR)
+
+       emake AR="${AR}" -C lib/
+       emake AR="${AR}" -C bin/delv/
+       emake AR="${AR}" -C bin/dig/
+       emake AR="${AR}" -C bin/nsupdate/
+       emake AR="${AR}" -C bin/dnssec/
+}
+
+src_install() {
+       dodoc README CHANGES FAQ
+
+       cd "${S}"/bin/delv
+       dobin delv
+       doman delv.1
+
+       cd "${S}"/bin/dig
+       dobin dig host nslookup
+       doman {dig,host,nslookup}.1
+
+       cd "${S}"/bin/nsupdate
+       dobin nsupdate
+       doman nsupdate.1
+       if use doc; then
+               dohtml nsupdate.html
+       fi
+
+       cd "${S}"/bin/dnssec
+       for tool in dsfromkey importkey keyfromlabel keygen \
+         revoke settime signzone verify; do
+               dobin dnssec-"${tool}"
+               doman dnssec-"${tool}".8
+               if use doc; then
+                       dohtml dnssec-"${tool}".html
+               fi
+       done
+}

Reply via email to