pkgsrc/security/dnssec-tools/Makefile

# $NetBSD: Makefile,v 1.20 2013/06/16 21:50:56 wiz Exp $

DISTNAME=	dnssec-tools-1.14
PKGREVISION=	1
CATEGORIES=	security
MASTER_SITES=	http://www.dnssec-tools.org/download/

MAINTAINER=	pettai@NetBSD.org
HOMEPAGE=	http://www.dnssec-tools.org/
COMMENT=	Toolkit to ease the deployment of DNSSEC related technologies
LICENSE=	modified-bsd

DEPENDS+=	p5-Net-DNS-SEC-[0-9]*:../../security/p5-Net-DNS-SEC
DEPENDS+=	p5-Text-Diff-[0-9]*:../../textproc/p5-Text-Diff

CONFLICTS=	gethost-[0-9]*

BUILD_DEFS+=	IPV6_READY

USE_TOOLS+=	perl

REPLACE_PERL+=	tools/modules/realm.pm
REPLACE_PERL+=	tools/modules/rollrec.pm
REPLACE_PERL+=	tools/modules/timetrans.pm
REPLACE_PERL+=	tools/modules/tooloptions.pm
REPLACE_PERL+=	tools/convertar/lib/Net/DNS/SEC/Tools/TrustAnchor/Makefile.PL

PERL5_PACKLIST=		auto/Net/DNS/SEC/Tools/Dnspktflow/dnspktflow/.packlist
PERL5_PACKLIST+=	auto/Net/DNS/SEC/Tools/Donuts/donuts/.packlist
PERL5_PACKLIST+=	auto/Net/DNS/SEC/Tools/Drawvalmap/drawvalmap/.packlist
PERL5_PACKLIST+=	auto/Net/DNS/SEC/Tools/Maketestzone/maketestzone/.packlist
PERL5_PACKLIST+=	auto/Net/DNS/SEC/Tools/Mapper/mapper/.packlist
PERL5_PACKLIST+=	auto/Net/DNS/SEC/Tools/conf/.packlist
PERL5_PACKLIST+=	auto/convertar/.packlist
PERL5_PACKLIST+=	auto/dnssec-tools/.packlist

GNU_CONFIGURE=	yes
CONFIGURE_ARGS+=	--with-nsec3
CONFIGURE_ARGS+=	--with-resolv-conf=${PKG_SYSCONFDIR}/dnssec-tools/resolv.conf
CONFIGURE_ARGS+=	--with-root-hints=${PKG_SYSCONFDIR}/dnssec-tools/root.hints
CONFIGURE_ARGS+=	--with-perl-build-args=${MAKE_PARAMS:Q}

USE_LIBTOOL=	yes
USE_LANGUAGES=	c c++

EGDIR=			${PREFIX}/share/examples/dnssec-tools
PKG_SYSCONFSUBDIR?=	dnssec-tools

CONF_FILES=	${EGDIR}/dnsval.conf ${PKG_SYSCONFDIR}/dnsval.conf
CONF_FILES+=	${EGDIR}/resolv.conf ${PKG_SYSCONFDIR}/resolv.conf
CONF_FILES+=	${EGDIR}/root.hints ${PKG_SYSCONFDIR}/root.hints

INSTALLATION_DIRS=	${EGDIR}

.include "options.mk"

.if ${OPSYS} == "NetBSD" && exists(/usr/sbin/dnssec-keygen)
CONFIGURE_ARGS+=	BIND_DNSSEC_KEYGEN=/usr/sbin/dnssec-keygen
.endif
.if ${OPSYS} == "NetBSD" && exists(/usr/sbin/dnssec-signzone)
CONFIGURE_ARGS+=	BIND_DNSSEC_SIGNZONE=/usr/sbin/dnssec-signzone
.endif
.if ${OPSYS} == "NetBSD" && exists(/usr/sbin/named-checkzone)
CONFIGURE_ARGS+=	BIND_DNSSEC_CHECKZONE=/usr/sbin/named-checkzone
.endif

post-install:
	${INSTALL_DATA} ${WRKSRC}/validator/etc/dnsval.conf ${DESTDIR}${EGDIR}
	${INSTALL_DATA} ${WRKSRC}/validator/etc/resolv.conf ${DESTDIR}${EGDIR}
	${INSTALL_DATA} ${WRKSRC}/validator/etc/root.hints ${DESTDIR}${EGDIR}

PERL5_CONFIGURE=	no
.include "../../lang/perl5/module.mk"
.include "../../security/openssl/buildlink3.mk"
.include "../../mk/bsd.pkg.mk"
Add another script to REPLACE_PERL. Bump PKGREVISION. 2013-06-16 23:50:56 +02:00			`# $NetBSD: Makefile,v 1.20 2013/06/16 21:50:56 wiz Exp $`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00
1.14 - New Features - dnssec-nodes - Many new features, including validation tree graphing, on-the-wire traffic display, pcap dump file display, increased data logging and display, improved simultaneous updating, etc. - Libval: - Added initial support for the TLSA rrtype - Added support for ECDSA - Implemented checking for AI_ADDRCONFIG in getaddrinfo - Memory optimizations to improve speed-up - dnssec-check - increased stability across all platforms. - All Around: - Many bug fixes and other minor improvements 1.13 - New Features - rollerd: - Added support for the signzone command. Allow zones to be signed while in the midst of a rollover wait. - Added autosigning of modified zone files. Zone files are considered modified when their "last modification" timestamp is more recent than that of the associated signed zone file. This functionality includes adding the -autosign option and config field. - Added additional commands (via rollctl) to allow greater control over zone rollover actions. - Added -zsargs option to allow global options to be passed to zonesigner. - realms: - Added the realms feature to manage multiple simultaneous rollover environments. Several commands and modules (e.g., dtrealms, realms.pm, buildrealms) were added for the realms feature. - zonesigner: - Added the -threshold option to specify a signing threshold. - Better handling of serial numbers in zone files. - keymod: - New tool that can be used to modify key generation parameters in a keyrec file. - dnssec-check - significant rewrite since the 1.12 release, though individual updates have been available already. - Asynchronous support for non-interrupting GUI support - Letter grades assigned to each resolver - Various user-interface improvements - libval: - Bug fixes - Renamed all validator command-line apps to have a dt- prefix in order to avoid conflicts with pre-existing executables in certain platforms. - dnsval python module - Add python wrapper module for the validator library. Code contributed by Bob Novas. - trustman: - Added an option for use by monitoring systems. - nagios - Added the dt_donuts plugin for running trustman on remote machines. - Added the dt_trustman plugin for monitoring trust anchors. - firefox - updated nspr and firefox patches to work with mozilla-central and nspr-4.9 - webmin: - Added the ability to perform DNSSEC operations on DNSSEC-Tools managed signed zones using the Webmin front-end. - ssh: - Update the patch for enabling local DNSSEC validation to work with OpenSSH 6.0p1. 2013-06-15 21:57:20 +02:00			`DISTNAME= dnssec-tools-1.14`
Add another script to REPLACE_PERL. Bump PKGREVISION. 2013-06-16 23:50:56 +02:00			`PKGREVISION= 1`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00			`CATEGORIES= security`
			`MASTER_SITES= http://www.dnssec-tools.org/download/`

			`MAINTAINER= pettai@NetBSD.org`
			`HOMEPAGE= http://www.dnssec-tools.org/`
			`COMMENT= Toolkit to ease the deployment of DNSSEC related technologies`
			`LICENSE= modified-bsd`

* fixes DEPENDS setting (missing `+'). * use perl5/module.mk and its stuff for perl module build * using packlist, so PLIST entries for perl modules are not required. * PKG_SYSCONFSUBDIR is handled automatically, no need to be in PLIST. * fix substitute handling with USE_DESTDIR=yes. Bump PKGREVISION. 2011-08-19 14:16:33 +02:00			`DEPENDS+= p5-Net-DNS-SEC-[0-9]*:../../security/p5-Net-DNS-SEC`
			`DEPENDS+= p5-Text-Diff-[0-9]*:../../textproc/p5-Text-Diff`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00
CONFLICTS with gethost-[0-9]*; ++pkgrevision Fixes for minor pkglint warnings 2012-09-16 21:24:24 +02:00			`CONFLICTS= gethost-[0-9]*`

The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00			`BUILD_DEFS+= IPV6_READY`

			`USE_TOOLS+= perl`

Add another script to REPLACE_PERL. Bump PKGREVISION. 2013-06-16 23:50:56 +02:00			`REPLACE_PERL+= tools/modules/realm.pm`
			`REPLACE_PERL+= tools/modules/rollrec.pm`
			`REPLACE_PERL+= tools/modules/timetrans.pm`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00			`REPLACE_PERL+= tools/modules/tooloptions.pm`
			`REPLACE_PERL+= tools/convertar/lib/Net/DNS/SEC/Tools/TrustAnchor/Makefile.PL`

			`PERL5_PACKLIST= auto/Net/DNS/SEC/Tools/Dnspktflow/dnspktflow/.packlist`
			`PERL5_PACKLIST+= auto/Net/DNS/SEC/Tools/Donuts/donuts/.packlist`
			`PERL5_PACKLIST+= auto/Net/DNS/SEC/Tools/Drawvalmap/drawvalmap/.packlist`
			`PERL5_PACKLIST+= auto/Net/DNS/SEC/Tools/Maketestzone/maketestzone/.packlist`
			`PERL5_PACKLIST+= auto/Net/DNS/SEC/Tools/Mapper/mapper/.packlist`
			`PERL5_PACKLIST+= auto/Net/DNS/SEC/Tools/conf/.packlist`
			`PERL5_PACKLIST+= auto/convertar/.packlist`
			`PERL5_PACKLIST+= auto/dnssec-tools/.packlist`

			`GNU_CONFIGURE= yes`
CONFLICTS with gethost-[0-9]*; ++pkgrevision Fixes for minor pkglint warnings 2012-09-16 21:24:24 +02:00			`CONFIGURE_ARGS+= --with-nsec3`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00			`CONFIGURE_ARGS+= --with-resolv-conf=${PKG_SYSCONFDIR}/dnssec-tools/resolv.conf`
			`CONFIGURE_ARGS+= --with-root-hints=${PKG_SYSCONFDIR}/dnssec-tools/root.hints`
* fixes DEPENDS setting (missing `+'). * use perl5/module.mk and its stuff for perl module build * using packlist, so PLIST entries for perl modules are not required. * PKG_SYSCONFSUBDIR is handled automatically, no need to be in PLIST. * fix substitute handling with USE_DESTDIR=yes. Bump PKGREVISION. 2011-08-19 14:16:33 +02:00			`CONFIGURE_ARGS+= --with-perl-build-args=${MAKE_PARAMS:Q}`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00
			`USE_LIBTOOL= yes`
			`USE_LANGUAGES= c c++`

CONFLICTS with gethost-[0-9]*; ++pkgrevision Fixes for minor pkglint warnings 2012-09-16 21:24:24 +02:00			`EGDIR= ${PREFIX}/share/examples/dnssec-tools`
			`PKG_SYSCONFSUBDIR?= dnssec-tools`
Add installation of the CONF files, to ease the usability of this package 2010-07-25 21:57:25 +02:00
			`CONF_FILES= ${EGDIR}/dnsval.conf ${PKG_SYSCONFDIR}/dnsval.conf`
			`CONF_FILES+= ${EGDIR}/resolv.conf ${PKG_SYSCONFDIR}/resolv.conf`
			`CONF_FILES+= ${EGDIR}/root.hints ${PKG_SYSCONFDIR}/root.hints`

			`INSTALLATION_DIRS= ${EGDIR}`

The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00			`.include "options.mk"`

Unprivileged users don't have /usr/sbin in PATH on NetBSD, so deal with it. 2011-12-22 17:33:03 +01:00			`.if ${OPSYS} == "NetBSD" && exists(/usr/sbin/dnssec-keygen)`
			`CONFIGURE_ARGS+= BIND_DNSSEC_KEYGEN=/usr/sbin/dnssec-keygen`
One more tool in /usr/sbin. 2012-03-08 02:14:24 +01:00			`.endif`
			`.if ${OPSYS} == "NetBSD" && exists(/usr/sbin/dnssec-signzone)`
Also point configure to dnssec-signzone 2011-12-29 17:37:18 +01:00			`CONFIGURE_ARGS+= BIND_DNSSEC_SIGNZONE=/usr/sbin/dnssec-signzone`
Unprivileged users don't have /usr/sbin in PATH on NetBSD, so deal with it. 2011-12-22 17:33:03 +01:00			`.endif`
One more tool in /usr/sbin. 2012-03-08 02:14:24 +01:00			`.if ${OPSYS} == "NetBSD" && exists(/usr/sbin/named-checkzone)`
			`CONFIGURE_ARGS+= BIND_DNSSEC_CHECKZONE=/usr/sbin/named-checkzone`
			`.endif`
Unprivileged users don't have /usr/sbin in PATH on NetBSD, so deal with it. 2011-12-22 17:33:03 +01:00
Add installation of the CONF files, to ease the usability of this package 2010-07-25 21:57:25 +02:00			`post-install:`
			`${INSTALL_DATA} ${WRKSRC}/validator/etc/dnsval.conf ${DESTDIR}${EGDIR}`
			`${INSTALL_DATA} ${WRKSRC}/validator/etc/resolv.conf ${DESTDIR}${EGDIR}`
			`${INSTALL_DATA} ${WRKSRC}/validator/etc/root.hints ${DESTDIR}${EGDIR}`

* fixes DEPENDS setting (missing `+'). * use perl5/module.mk and its stuff for perl module build * using packlist, so PLIST entries for perl modules are not required. * PKG_SYSCONFSUBDIR is handled automatically, no need to be in PLIST. * fix substitute handling with USE_DESTDIR=yes. Bump PKGREVISION. 2011-08-19 14:16:33 +02:00			`PERL5_CONFIGURE= no`
			`.include "../../lang/perl5/module.mk"`
The DNSSEC-Tools project is about creating a set of software tools, patches, applications, wrappers, extensions, and plugins that will help ease the deployment of DNSSEC related technologies. 2010-07-22 23:08:26 +02:00			`.include "../../security/openssl/buildlink3.mk"`
			`.include "../../mk/bsd.pkg.mk"`