From f5a5ca28e9d700f74c026a5d115bce2cac99a9c5 Mon Sep 17 00:00:00 2001 From: Nicolás Reynolds Date: Mon, 10 Jun 2013 21:02:30 -0300 Subject: opendnssec! --- pcr/opendnssec/PKGBUILD | 74 +++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 74 insertions(+) create mode 100644 pcr/opendnssec/PKGBUILD (limited to 'pcr/opendnssec/PKGBUILD') diff --git a/pcr/opendnssec/PKGBUILD b/pcr/opendnssec/PKGBUILD new file mode 100644 index 000000000..1810d94a1 --- /dev/null +++ b/pcr/opendnssec/PKGBUILD @@ -0,0 +1,74 @@ +# Maintainer: Javier Torres + +pkgname=opendnssec +pkgver=1.4.0 +pkgrel=2 +pkgdesc="Turn-key solution for DNSSEC (sqlite3)" +arch=('i686' 'x86_64' 'mips64el') +url="http://www.opendnssec.org/" +license=('BSD') +depends=('libxml2' 'ldns' 'sqlite3' 'softhsm') +backup=("etc/opendnssec/conf.xml" + "etc/opendnssec/kasp.xml" + "etc/opendnssec/zonelist.xml") +install="opendnssec.install" +source=("http://www.opendnssec.org/files/source/${pkgname}-${pkgver}.tar.gz"{,.sig} + "pid-path.patch" + "ods-signer.service" + "ods-enforcer.service") +sha256sums=('36d4926dcdf351a527ad7600b151ab6cc56d0a472a7eb8871eecd70afef9e101' + 'SKIP' + '487a4c05a07feb97c865ddc4c13d00eea6ce8b2b1e5031983c15484f4991ebed' + '1a8cdec0e97a33048956268b766da570f8f7a90d05af59e547219f1381832071' + '75cecbfb0ece13957a68a5bc39c20a1d69b95373e7473545d70621e1732733d8') + +prepare() { + cd "${srcdir}/${pkgname}-${pkgver}" + # /var/lib/run -> /var/run + patch -p0 -i "${srcdir}/pid-path.patch" + + aclocal + autoconf + automake --add-missing +} + +build() { + cd "${srcdir}/${pkgname}-${pkgver}" + + ./configure --prefix=/usr \ + --datarootdir=/usr/share \ + --localstatedir=/var/lib \ + --sysconfdir=/etc \ + --with-pkcs11-softhsm=/usr/lib/libsofthsm.so \ + --sbindir=/usr/bin + + # Create the correct (/var/run/opendnssec) directory + sed -i \ + -e "s/\$(INSTALL) -d \$(DESTDIR)\$(localstatedir)\/run\/opendnssec/#Removed/" \ + -e "s/\$(INSTALL) -d \$(DESTDIR)\$(localstatedir)\/run/\$(INSTALL) -d \$(DESTDIR)\$(OPENDNSSEC_PID_DIR)/" \ + Makefile + + make +} + +package() { + cd "${srcdir}/${pkgname}-${pkgver}" + + install -d "${pkgdir}/var/run/opendnssec" + + make DESTDIR="${pkgdir}" install + + install -d "${pkgdir}/etc/rc.d" + install -Dm0644 "${srcdir}/ods-signer.service" \ + "${pkgdir}/usr/lib/systemd/system/ods-signer.service" + install -Dm0644 "${srcdir}/ods-enforcer.service" \ + "${pkgdir}/usr/lib/systemd/system/ods-enforcer.service" + install -Dm0644 "LICENSE" \ + "${pkgdir}/usr/share/licenses/${pkgname}/LICENSE" + install -Dm0644 "enforcer/utils/migrate_adapters_1.sqlite3" \ + "${pkgdir}/usr/share/opendnssec" + + chown 227:227 "${pkgdir}/etc/opendnssec" -R + chown 227:227 "${pkgdir}/var/lib/opendnssec" -R + chown 227:227 "${pkgdir}/var/run/opendnssec" -R +} -- cgit v1.2.3-54-g00ecf From 9505db13f5db4a7b73d6fe0d6435ed69fb375d80 Mon Sep 17 00:00:00 2001 From: Nicolás Reynolds Date: Tue, 11 Jun 2013 12:26:55 -0300 Subject: opendnssec: secure data dirs --- pcr/opendnssec/PKGBUILD | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) (limited to 'pcr/opendnssec/PKGBUILD') diff --git a/pcr/opendnssec/PKGBUILD b/pcr/opendnssec/PKGBUILD index 1810d94a1..065a1ec68 100644 --- a/pcr/opendnssec/PKGBUILD +++ b/pcr/opendnssec/PKGBUILD @@ -2,7 +2,7 @@ pkgname=opendnssec pkgver=1.4.0 -pkgrel=2 +pkgrel=3 pkgdesc="Turn-key solution for DNSSEC (sqlite3)" arch=('i686' 'x86_64' 'mips64el') url="http://www.opendnssec.org/" @@ -68,7 +68,10 @@ package() { install -Dm0644 "enforcer/utils/migrate_adapters_1.sqlite3" \ "${pkgdir}/usr/share/opendnssec" - chown 227:227 "${pkgdir}/etc/opendnssec" -R - chown 227:227 "${pkgdir}/var/lib/opendnssec" -R - chown 227:227 "${pkgdir}/var/run/opendnssec" -R + chown -R 227:227 "${pkgdir}/etc/opendnssec" \ + "${pkgdir}/var/lib/opendnssec" \ + "${pkgdir}/var/run/opendnssec" + chmod 750 "${pkgdir}/etc/opendnssec" \ + "${pkgdir}/var/lib/opendnssec" \ + "${pkgdir}/var/run/opendnssec" } -- cgit v1.2.3-54-g00ecf