summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorAaron Bauman <bman@gentoo.org>2020-09-24 14:54:33 -0400
committerAaron Bauman <bman@gentoo.org>2020-09-24 15:53:17 -0400
commit0253543021b04dd2339f66438542f2c43c876b82 (patch)
treedc63276edc7b1a3d8169a3b666282c9af6ab768c /net-dns/opendnssec
parentnet-analyzer/sguil-client: drop old EAPI=5 (diff)
downloadgentoo-0253543021b04dd2339f66438542f2c43c876b82.tar.gz
gentoo-0253543021b04dd2339f66438542f2c43c876b82.tar.bz2
gentoo-0253543021b04dd2339f66438542f2c43c876b82.zip
net-dns/opendnssec: drop old EAPI=5
Signed-off-by: Aaron Bauman <bman@gentoo.org>
Diffstat (limited to 'net-dns/opendnssec')
-rw-r--r--net-dns/opendnssec/Manifest4
-rw-r--r--net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild204
-rw-r--r--net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild208
-rw-r--r--net-dns/opendnssec/opendnssec-1.4.8.2.ebuild206
-rw-r--r--net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild240
5 files changed, 0 insertions, 862 deletions
diff --git a/net-dns/opendnssec/Manifest b/net-dns/opendnssec/Manifest
index 0136e5ba4f94..b7655458e116 100644
--- a/net-dns/opendnssec/Manifest
+++ b/net-dns/opendnssec/Manifest
@@ -1,5 +1 @@
-DIST opendnssec-1.3.18.tar.gz 1143889 BLAKE2B 0443a9d29de479257c05d024a756c176a342032eb17b105c04f5808ba550f1026815f191bce6ada13c54a7b7fea0f816d7754227f3d1c9ed76bc4d602785c2cf SHA512 5df39ba778c9b1245e88b81df7aa491bca0aad2943845284c4f8b4dd729fa69014d45f07bdf99a048ccf668a1c9675a8dd99efcec1abdbd4e06e9738fec6ab6d
-DIST opendnssec-1.4.12.tar.gz 1036392 BLAKE2B 3bfbcfe91d7da7c2e4b1c5439f7d55e15612ab6ace6af25fcb9c9eb7ddb2e1055e70684c2bd6bbae57a0c2eb78098b448f7dca198e0d6f9e2e812945a1f06cc2 SHA512 b72b76ab4aec8cc63cc9c020bef9a24b000fd00172a07cf43d57b3a33041bef9e107b71eb7271bb13c3566510599c6a1913cf986a724e169c42dc8bdac8d2e51
-DIST opendnssec-1.4.8.2.tar.gz 1043171 BLAKE2B 20b1fa0d97b776223314937061cd42f4fe0a924e58a159fd0399d23058e2b0fd44d55049947de26c36aade5b5599527fc03f09eeef4e20f8c9beee40dfbcd7fb SHA512 7f2e10b425f60947aca40c61509b07ddc4363105cc882b518ffa816437299d6f881411cb38325f27b3a34c2005953988b39c945362866dd0f1f7c6ef973bfa06
-DIST opendnssec-2.0.1.tar.gz 1101523 BLAKE2B 0446efd04e73e00d204c53164c3c6aaecb9f37014a110ee85d7e7b1728d225aafcf9e6ef31a7dd29cdf2e875e7b653ab6e8178cece65c47a1c5b027facc16130 SHA512 aa12818f92688e087acaff8a6771d2a7da733e04d9e821967d313c7ff880a1056f470b11988eba1e7aad606418c3a4587f654163d74f68e3f61943c74d86d052
DIST opendnssec-2.0.3.tar.gz 1103355 BLAKE2B b64e729003de86e4139efaad60c9feae9f4e19c16a29fdced55d66f5896c4b7d76c4b8c57a8330d55c0c03e87de1ebe6ec49ef9d1b6e215be963680d2c805579 SHA512 4745a9ac317cc65d6f5b14be640687efd5fde2149541f692fb607a458378d27e903f175023c1aa16a777d17cef9cc68f1a84e7e7cdb233466d26756721b34424
diff --git a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild b/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
deleted file mode 100644
index a37fb6fc331a..000000000000
--- a/net-dns/opendnssec/opendnssec-1.3.18-r1.ebuild
+++ /dev/null
@@ -1,204 +0,0 @@
-# Copyright 1999-2020 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="-auditor +curl debug doc eppclient mysql +signer +sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- curl? ( net-misc/curl )
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-# test? dev-util/cunit # Requires running test DB
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
- eppclient? ( curl )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-1.3.14-drop-privileges.patch"
- "${FILESDIR}/${PN}-1.3.14-use-system-trang.patch"
- "${FILESDIR}/${PN}-1.3.18-eppclient-curl-CVE-2012-5582.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- local i
-
- for i in eppclient mysql; do
- if use ${i}; then
- ewarn
- ewarn "Usage of ${i} is considered experimental."
- ewarn "Do not report bugs against this feature."
- ewarn
- fi
- done
-
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- # $(use_with test cunit "${EPREFIX}/usr/") \
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- --disable-auditor \
- $(use_with curl) \
- $(use_enable debug timeshift) \
- $(use_enable eppclient) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- use sqlite && doins enforcer/utils/migrate_keyshare_sqlite3.pl
- use mysql && doins enforcer/utils/migrate_keyshare_mysql.pl
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{conf,kasp,zonelist,zonefetch}.xml
- use eppclient && fowners root:opendnssec /etc/opendnssec/eppclientd.conf
-
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd-1.3.x opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd-1.3.x opendnssec
- use auditor || sed -i 's/^CHECKCONFIG_BIN=.*/CHECKCONFIG_BIN=/' "${D}"/etc/conf.d/opendnssec
-}
-
-pkg_postinst() {
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
- if use auditor; then
- ewarn
- ewarn "Please note that auditor support has been disabled in this version since it"
- ewarn "it depends on ruby 1.8 which has been removed from the portage tree."
- ewarn "USE=auditor is only provided for this warning but will not install the"
- ewarn "auditor anymore."
- ewarn
- fi
-}
diff --git a/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild b/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
deleted file mode 100644
index 7204fc6a5df8..000000000000
--- a/net-dns/opendnssec/opendnssec-1.4.12-r1.ebuild
+++ /dev/null
@@ -1,208 +0,0 @@
-# Copyright 1999-2020 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools eutils multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-drop-privileges.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- local patch
- default
- for patch in "${PATCHES[@]}"; do
- epatch "$patch"
- done
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_enable debug timeshift) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- if use sqlite; then
- doins enforcer/utils/migrate_*sqlite*
- fi
- if use mysql; then
- doins enforcer/utils/migrate_*mysql*
- fi
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
-
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.3.*)
- ewarn ""
- ewarn "You are upgrading from version 1.3."
- ewarn ""
- ewarn "Please be aware of the following:"
- ewarn " * OpenDNSSEC now supports both input and output adapters for"
- ewarn " AXFR and IXFR in addition to file transfer."
- ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
- ewarn " to support this enhancement."
- ewarn " -> changes to the KASP database mean that a database"
- ewarn " migration is required to upgrade to 1.4 from earlier"
- ewarn " versions of OpenDNSSEC."
- ewarn " * The auditor is no longer supported."
- ewarn ""
- ewarn "You can find more information here:"
- ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
- ewarn ""
- ;;
- esac
- done
-}
diff --git a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild b/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
deleted file mode 100644
index fa23c0bf555a..000000000000
--- a/net-dns/opendnssec/opendnssec-1.4.8.2.ebuild
+++ /dev/null
@@ -1,206 +0,0 @@
-# Copyright 1999-2020 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql +signer sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir.patch"
- "${FILESDIR}/${PN}-fix-run-dir.patch"
- "${FILESDIR}/${PN}-drop-privileges.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- base_src_prepare
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var/" \
- --disable-static \
- --with-database-backend=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_enable debug timeshift) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install update scripts
- insinto /usr/share/opendnssec
- if use sqlite; then
- doins enforcer/utils/migrate_keyshare_sqlite3.pl
- doins enforcer/utils/migrate_adapters_1.sqlite3
- fi
- if use mysql; then
- doins enforcer/utils/migrate_keyshare_mysql.pl
- doins enforcer/utils/migrate_adapters_1.mysql
- fi
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,signconf,unsigned,signed,tmp}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
-
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.3.*)
- ewarn ""
- ewarn "You are upgrading from version 1.3."
- ewarn ""
- ewarn "Please be aware of the following:"
- ewarn " * OpenDNSSEC now supports both input and output adapters for"
- ewarn " AXFR and IXFR in addition to file transfer."
- ewarn " -> The zonefetch.xml file has been replaced by addns.xml"
- ewarn " to support this enhancement."
- ewarn " -> changes to the KASP database mean that a database"
- ewarn " migration is required to upgrade to 1.4 from earlier"
- ewarn " versions of OpenDNSSEC."
- ewarn " * The auditor is no longer supported."
- ewarn ""
- ewarn "You can find more information here:"
- ewarn " * /usr/share/doc/opendnssec*/MIGRATION*"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+zone+fetcher+to+DNS+adapters"
- ewarn " * https://wiki.opendnssec.org/display/DOCS/Migrating+from+earlier+versions+of+OpenDNSSEC"
- ewarn ""
- ;;
- esac
- done
-}
diff --git a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild b/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
deleted file mode 100644
index b93dc8f5ab2b..000000000000
--- a/net-dns/opendnssec/opendnssec-2.0.1-r1.ebuild
+++ /dev/null
@@ -1,240 +0,0 @@
-# Copyright 1999-2020 Gentoo Authors
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=5
-
-MY_P="${P/_}"
-PKCS11_IUSE="+softhsm opensc external-hsm"
-inherit autotools eutils multilib user
-
-DESCRIPTION="An open-source turn-key solution for DNSSEC"
-HOMEPAGE="https://www.opendnssec.org/"
-SRC_URI="https://www.${PN}.org/files/source/${MY_P}.tar.gz"
-
-LICENSE="BSD GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-IUSE="debug doc +mysql readline +signer sqlite test ${PKCS11_IUSE}"
-RESTRICT="!test? ( test )"
-
-RDEPEND="
- dev-lang/perl
- dev-libs/libxml2
- dev-libs/libxslt
- net-libs/ldns
- mysql? (
- virtual/mysql
- dev-perl/DBD-mysql
- )
- opensc? ( dev-libs/opensc )
- readline? ( sys-libs/readline:0 )
- softhsm? ( dev-libs/softhsm:* )
- sqlite? (
- dev-db/sqlite:3
- dev-perl/DBD-SQLite
- )
-"
-DEPEND="${RDEPEND}
- doc? ( app-doc/doxygen )
- test? (
- app-text/trang
- )
-"
-
-REQUIRED_USE="
- ^^ ( mysql sqlite )
- ^^ ( softhsm opensc external-hsm )
-"
-
-PATCHES=(
- "${FILESDIR}/${PN}-fix-localstatedir-2.0.x.patch"
- "${FILESDIR}/${PN}-fix-run-dir-2.0.x.patch"
- "${FILESDIR}/${PN}-drop-privileges-2.0.x.patch"
- "${FILESDIR}/${PN}-use-system-trang.patch"
-)
-
-S="${WORKDIR}/${MY_P}"
-
-DOCS=( MIGRATION NEWS )
-
-check_pkcs11_setup() {
- # PKCS#11 HSM's are often only available with proprietary drivers not
- # available in portage tree.
-
- if use softhsm; then
- PKCS11_LIB=softhsm
- if has_version ">=dev-libs/softhsm-1.3.1"; then
- PKCS11_PATH=/usr/$(get_libdir)/softhsm/libsofthsm.so
- else
- PKCS11_PATH=/usr/$(get_libdir)/libsofthsm.so
- fi
- elog "Building with SoftHSM PKCS#11 library support."
- fi
- if use opensc; then
- PKCS11_LIB=opensc
- PKCS11_PATH=/usr/$(get_libdir)/opensc-pkcs11.so
- elog "Building with OpenSC PKCS#11 library support."
- fi
- if use external-hsm; then
- if [[ -n ${PKCS11_SCA6000} ]]; then
- PKCS11_LIB=sca6000
- PKCS11_PATH=${PKCS11_SCA6000}
- elif [[ -n ${PKCS11_ETOKEN} ]]; then
- PKCS11_LIB=etoken
- PKCS11_PATH=${PKCS11_ETOKEN}
- elif [[ -n ${PKCS11_NCIPHER} ]]; then
- PKCS11_LIB=ncipher
- PKCS11_PATH=${PKCS11_NCIPHER}
- elif [[ -n ${PKCS11_AEPKEYPER} ]]; then
- PKCS11_LIB=aepkeyper
- PKCS11_PATH=${PKCS11_AEPKEYPER}
- else
- ewarn "You enabled USE flag 'external-hsm' but did not specify a path to a PKCS#11"
- ewarn "library. To set a path, set one of the following environment variables:"
- ewarn " for Sun Crypto Accelerator 6000, set: PKCS11_SCA6000=<path>"
- ewarn " for Aladdin eToken, set: PKCS11_ETOKEN=<path>"
- ewarn " for Thales/nCipher netHSM, set: PKCS11_NCIPHER=<path>"
- ewarn " for AEP Keyper, set: PKCS11_AEPKEYPER=<path>"
- ewarn "Example:"
- ewarn " PKCS11_ETOKEN=\"/opt/etoken/lib/libeTPkcs11.so\" emerge -pv opendnssec"
- ewarn "or store the variable into /etc/portage/make.conf"
- die "USE flag 'external-hsm' set but no PKCS#11 library path specified."
- fi
- elog "Building with external PKCS#11 library support ($PKCS11_LIB): ${PKCS11_PATH}"
- fi
-}
-
-pkg_pretend() {
- if has_version "<net-dns/opendnssec-1.4.10"; then
- ################################################################################
- eerror "You are already using OpenDNSSEC."
- eerror "In order to migrate to version >=2.0.0 you need to upgrade to"
- eerror "version >=1.4.10 first:"
- eerror ""
- eerror " emerge \"<net-dns/opendnssec-2\""
- eerror ""
- eerror "See https://github.com/opendnssec/opendnssec/blob/2.0/master/MIGRATION"
- eerror "for details."
- eerror ""
- die "Please upgrade to version >=1.4.10 first for proper db migraion"
- fi
-
- check_pkcs11_setup
-}
-
-pkg_setup() {
- enewgroup opendnssec
- enewuser opendnssec -1 -1 -1 opendnssec
-
- # pretend does not preserve variables so we need to run this once more
- check_pkcs11_setup
-}
-
-src_prepare() {
- local patch
- default
- for patch in "${PATCHES[@]}"; do
- epatch "$patch"
- done
- eautoreconf
-}
-
-src_configure() {
- econf \
- --without-cunit \
- --localstatedir="${EPREFIX}/var" \
- --disable-static \
- --with-enforcer-database=$(use mysql && echo "mysql")$(use sqlite && echo "sqlite3") \
- --with-pkcs11-${PKCS11_LIB}=${PKCS11_PATH} \
- $(use_with readline) \
- $(use_enable signer)
-}
-
-src_compile() {
- default
- use doc && emake docs
-}
-
-src_install() {
- default
-
- # remove useless .la files
- find "${ED}" -name '*.la' -delete
-
- # Remove subversion tags from config files to avoid useless config updates
- sed -i \
- -e '/<!-- \$Id:/ d' \
- "${ED}"/etc/opendnssec/* || die
-
- # install db update/migration stuff
- insinto /usr/share/opendnssec/db
- if use sqlite; then
- doins enforcer/utils/convert_mysql_to_sqlite
- fi
- if use mysql; then
- doins enforcer/utils/convert_sqlite_to_mysql
- fi
-
- insinto /usr/share/opendnssec/db/sql
- if use sqlite; then
- doins enforcer/src/db/schema.sqlite
- fi
- if use mysql; then
- doins enforcer/src/db/schema.mysql
- fi
-
- insinto /usr/share/opendnssec/db/1.4-2.0_db_convert
- doins enforcer/utils/1.4-2.0_db_convert/find_problematic_zones.sql
- doins enforcer/utils/1.4-2.0_db_convert/README.md
- if use sqlite; then
- doins enforcer/utils/1.4-2.0_db_convert/sqlite_convert.sql
- doins enforcer/utils/1.4-2.0_db_convert/convert_sqlite
- fi
- if use mysql; then
- doins enforcer/utils/1.4-2.0_db_convert/convert_mysql
- doins enforcer/utils/1.4-2.0_db_convert/mysql_convert.sql
- fi
-
- # patch scripts to find schema files
- sed -i \
- -e 's,^SCHEMA=../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
- -e 's,^SCHEMA=../../src/db/,SCHEMA=/usr/share/opendnssec/db/sql/,' \
- "${ED}"/usr/share/opendnssec/db/convert_* \
- "${ED}"/usr/share/opendnssec/db/1.4-2.0_db_convert/convert_*
-
- # fix permissions
- fowners root:opendnssec /etc/opendnssec
- fowners root:opendnssec /etc/opendnssec/{addns,conf,kasp,zonelist}.xml
- fowners opendnssec:opendnssec /var/lib/opendnssec/{,enforcer,signconf,signed,signer,unsigned}
-
- # install conf/init script
- newinitd "${FILESDIR}"/opendnssec.initd opendnssec
- newconfd "${FILESDIR}"/opendnssec.confd opendnssec
-}
-
-pkg_postinst() {
- local v
- if use softhsm; then
- elog "Please make sure that you create your softhsm database in a location writeable"
- elog "by the opendnssec user. You can set its location in /etc/softhsm.conf."
- elog "Suggested configuration is:"
- elog " echo \"0:/var/lib/opendnssec/softhsm_slot0.db\" >> /etc/softhsm.conf"
- elog " softhsm --init-token --slot 0 --label OpenDNSSEC"
- elog " chown opendnssec:opendnssec /var/lib/opendnssec/softhsm_slot0.db"
- fi
- for v in $REPLACING_VERSIONS; do
- case $v in
- 1.4.*)
- ewarn ""
- ewarn "You are upgrading from version 1.4."
- ewarn ""
- ewarn "A migration is needed from 1.4 to 2.0."
- ewarn "For details see /usr/share/doc/${P}/MIGRATION*"
- ewarn ""
- ewarn "For your convenience the mentioned migration scripts and README"
- ewarn "have been installed to /usr/share/${PN}/db/1.4-2.0_db_convert"
- ewarn ""
- ;;
- esac
- done
-}