diff options
author | Michael Orlitzky <mjo@gentoo.org> | 2017-01-18 08:28:33 -0500 |
---|---|---|
committer | Michael Orlitzky <mjo@gentoo.org> | 2017-01-18 08:28:55 -0500 |
commit | e24450ef08df811112ca43af2c8e2dca59b1f9b6 (patch) | |
tree | 4a4e8298c241f186e3be2736503f616ce45a21ec /net-dns/djbdns | |
parent | media-video/kmplayer: version bump 0.12.0b (diff) | |
download | gentoo-e24450ef08df811112ca43af2c8e2dca59b1f9b6.tar.gz gentoo-e24450ef08df811112ca43af2c8e2dca59b1f9b6.tar.bz2 gentoo-e24450ef08df811112ca43af2c8e2dca59b1f9b6.zip |
net-dns/djbdns: remove old versions vulnerable to CVE-2012-1191.
Gentoo-Bug: 404959
Package-Manager: portage-2.3.0
Diffstat (limited to 'net-dns/djbdns')
-rw-r--r-- | net-dns/djbdns/djbdns-1.05-r30.ebuild | 151 |
1 files changed, 0 insertions, 151 deletions
diff --git a/net-dns/djbdns/djbdns-1.05-r30.ebuild b/net-dns/djbdns/djbdns-1.05-r30.ebuild deleted file mode 100644 index 3afbb6619026..000000000000 --- a/net-dns/djbdns/djbdns-1.05-r30.ebuild +++ /dev/null @@ -1,151 +0,0 @@ -# Copyright 1999-2015 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Id$ - -EAPI=5 -inherit eutils flag-o-matic readme.gentoo toolchain-funcs user - -DESCRIPTION="Collection of DNS client/server software" -HOMEPAGE="http://cr.yp.to/djbdns.html" -IPV6_PATCH="test27" - -SRC_URI="http://cr.yp.to/djbdns/${P}.tar.gz - http://smarden.org/pape/djb/manpages/${P}-man.tar.gz - ipv6? ( http://www.fefe.de/dns/${P}-${IPV6_PATCH}.diff.bz2 )" - -SLOT="0" -LICENSE="public-domain" -KEYWORDS="alpha amd64 hppa ~mips ppc ppc64 sparc x86" -IUSE="ipv6 selinux" - -DEPEND="" -RDEPEND="sys-apps/ucspi-tcp - virtual/daemontools - selinux? ( sec-policy/selinux-djbdns )" - -src_unpack(){ - # Unpack both djbdns and its man pages to separate directories. - default - - # Now move the man pages under ${S} so that user patches can be - # applied to them as well in src_prepare(). - mv "${PN}-man" "${P}/man" || die "failed to transplant man pages" -} - -src_prepare() { - epatch \ - "${FILESDIR}/headtail.patch" \ - "${FILESDIR}/dnsroots.patch" \ - "${FILESDIR}/dnstracesort.patch" \ - "${FILESDIR}/string_length_255.patch" \ - "${FILESDIR}/srv_record_support.patch" - - # Fix CVE2009-0858 - epatch "${FILESDIR}/CVE2009-0858_0001-check-response-domain-name-length.patch" - - if use ipv6; then - elog 'At present dnstrace does NOT support IPv6. It will'\ - 'be compiled without IPv6 support.' - - # Create a separate copy of the source tree for dnstrace. - cp -pR "${S}" "${S}-noipv6" || die - - # The big ipv6 patch. - epatch "${WORKDIR}/${P}-${IPV6_PATCH}.diff" - - # Fix CVE2008-4392 (ipv6) - epatch \ - "${FILESDIR}/CVE2008-4392_0001-dnscache-merge-similar-outgoing-queries-ipv6-test25.patch" \ - "${FILESDIR}/CVE2008-4392_0002-dnscache-cache-soa-records-ipv6.patch" \ - "${FILESDIR}/makefile-parallel-test25.patch" - - cd "${S}-noipv6" || die - fi - - # Fix CVE2008-4392 (no ipv6) - epatch \ - "${FILESDIR}/CVE2008-4392_0001-dnscache-merge-similar-outgoing-queries.patch" \ - "${FILESDIR}/CVE2008-4392_0002-dnscache-cache-soa-records.patch" - - # Later versions of the ipv6 patch include this, but even if - # USE=ipv6, we're in the ${S}-noipv6 directory at this point. - epatch "${FILESDIR}/${PV}-errno.patch" - - epatch_user -} - -src_compile() { - echo "$(tc-getCC) ${CFLAGS}" > conf-cc || die - echo "$(tc-getCC) ${LDFLAGS}" > conf-ld || die - echo "/usr" > conf-home || die - emake - - # If djbdns is compiled with IPv6 support, it breaks dnstrace. - # Therefore we must compile dnstrace separately without IPv6 - # support. - if use ipv6; then - elog 'Compiling dnstrace without ipv6 support' - cp conf-cc conf-ld conf-home "${S}-noipv6/" || die - cd "${S}-noipv6" || die - emake dnstrace - fi -} - -src_install() { - insinto /etc - doins dnsroots.global - - into /usr - dobin *-conf dnscache tinydns walldns rbldns pickdns axfrdns \ - *-get *-data *-edit dnsip dnsipq dnsname dnstxt dnsmx \ - dnsfilter random-ip dnsqr dnsq dnstrace dnstracesort - - if use ipv6; then - dobin dnsip6 dnsip6q "${S}-noipv6/dnstrace" - fi - - dodoc CHANGES README - - doman man/*.[158] - - readme.gentoo_create_doc -} - -pkg_preinst() { - # The nofiles group is no longer provided by baselayout. - # Share it with qmail if possible. - enewgroup nofiles 200 - - enewuser dnscache -1 -1 -1 nofiles - enewuser dnslog -1 -1 -1 nofiles - enewuser tinydns -1 -1 -1 nofiles -} - -DISABLE_AUTOFORMATTING=1 -DOC_CONTENTS=' -To configure djbdns, please follow the instructions at, - - http://cr.yp.to/djbdns.html - -Of particular interest are, - - axfrdns : http://cr.yp.to/djbdns/axfrdns-conf.html - dnscache: http://cr.yp.to/djbdns/run-cache-x-home.html - tinydns : http://cr.yp.to/djbdns/run-server.html - -Portage has created users for axfrdns, dnscache, and tinydns; the -commands to configure these programs are, - - 1. axfrdns-conf tinydns dnslog /var/axfrdns /var/tinydns $ip - 2. dnscache-conf dnscache dnslog /var/dnscache $ip - 3. tinydns-conf tinydns dnslog /var/tinydns $ip - -(replace $ip with the ip address on which the server will run). - -If you wish to configure rbldns or walldns, you will need to create -those users yourself (although you should still use the "dnslog" -user for the logs): - - 4. rbldns-conf $username dnslog /var/rbldns $ip $base - 5. walldns-conf $username dnslog /var/walldns $ip -' |