diff options
Diffstat (limited to '')
36 files changed, 1059 insertions, 0 deletions
diff --git a/distro/deb/changelog b/distro/deb/changelog new file mode 100644 index 0000000..3a10bd9 --- /dev/null +++ b/distro/deb/changelog @@ -0,0 +1,6 @@ +knot (__VERSION__-1) unstable; urgency=medium + + * move changelog to OBS + * see NEWS or https://knot-dns.cz + + -- Tomas Krizek <tomas.krizek@nic.cz> Tue, 21 Feb 2018 17:36:45 +0100 diff --git a/distro/deb/clean b/distro/deb/clean new file mode 100644 index 0000000..7e5c111 --- /dev/null +++ b/distro/deb/clean @@ -0,0 +1 @@ +doc/modules diff --git a/distro/deb/compat b/distro/deb/compat new file mode 100644 index 0000000..ec63514 --- /dev/null +++ b/distro/deb/compat @@ -0,0 +1 @@ +9 diff --git a/distro/deb/control b/distro/deb/control new file mode 100644 index 0000000..1301985 --- /dev/null +++ b/distro/deb/control @@ -0,0 +1,222 @@ +Source: knot +Section: net +Priority: optional +Maintainer: Knot DNS <knot-dns@labs.nic.cz> +Uploaders: + Tomas Krizek <tomas.krizek@nic.cz>, + Daniel Salzman <daniel.salzman@nic.cz>, +Build-Depends-Indep: + ghostscript, + python3-sphinx, + texinfo, + texlive, + texlive-font-utils, + texlive-generic-extra, + texlive-latex-extra, +Build-Depends: + debhelper (>= 9), + latexmk, + libcap-ng-dev, + libedit-dev, + libfstrm-dev, + libgnutls28-dev, + libidn2-0-dev, + libjemalloc-dev, + liblmdb-dev, + libmaxminddb-dev, + libprotobuf-c-dev, + libsystemd-dev [linux-any] | libsystemd-daemon-dev [linux-any], + libsystemd-dev [linux-any] | libsystemd-journal-dev [linux-any], + liburcu-dev (>= 0.4), + pkg-config, + protobuf-c-compiler, +Standards-Version: 4.2.0 +Homepage: https://www.knot-dns.cz/ +Vcs-Browser: https://gitlab.labs.nic.cz/knot/knot-dns +Vcs-Git: https://gitlab.labs.nic.cz/knot/knot-dns.git +Rules-Requires-Root: no + +Package: knot +Architecture: any +Depends: + adduser, + libdnssec6 (= ${binary:Version}), + libknot8 (= ${binary:Version}), + libzscanner2 (= ${binary:Version}), + lsb-base (>= 3.0-6), + ${misc:Depends}, + ${shlibs:Depends}, +Suggests: + systemd, +Description: Authoritative domain name server + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + +Package: libknot8 +Architecture: any +Multi-Arch: same +Depends: + ${misc:Depends}, + ${shlibs:Depends}, +Section: libs +Replaces: + knot-libs (<< 2.0.1-4), + libknot7 (<< 2.6.8-2~) +Breaks: + knot-libs (<< 2.0.1-4), + libknot7 (<< 2.6.8-2~) +Description: Authoritative domain name server (shared library) + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package provides libknot shared library used by Knot DNS and + Knot Resolver. + +Package: libzscanner2 +Architecture: any +Multi-Arch: same +Depends: + ${misc:Depends}, + ${shlibs:Depends}, +Section: libs +Replaces: + knot-libs (<< 2.0.1-4), + libzscanner1 (<< 2.6.8-2~), +Breaks: + knot-libs (<< 2.0.1-4), + libzscanner1 (<< 2.6.8-2~), +Description: DNS zone-parsing library from Knot + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package provides a fast zone parser shared library used by Knot + DNS and Knot Resolver. + +Package: libdnssec6 +Architecture: any +Multi-Arch: same +Depends: + ${misc:Depends}, + ${shlibs:Depends}, +Section: libs +Replaces: + knot-libs (<< 2.0.1-4), + libdnssec5 (<< 2.6.8-2~), +Breaks: + knot-libs (<< 2.0.1-4), + libdnssec5 (<< 2.6.8-2~), +Description: DNSSEC shared library from Knot + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package provides common DNSSEC shared library used by Knot DNS + and Knot Resolver. + +Package: libknot-dev +Architecture: any +Multi-Arch: same +Depends: + libdnssec6 (= ${binary:Version}), + libgnutls28-dev, + libknot8 (= ${binary:Version}), + libzscanner2 (= ${binary:Version}), + ${misc:Depends}, + ${shlibs:Depends}, +Section: libdevel +Replaces: + knot-libs (<< 2.0.1-4), +Breaks: + knot-libs (<< 2.0.1-4), +Description: Knot DNS shared library development files + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package provides development files for internal common shared + libraries. + +Package: knot-dnsutils +Architecture: any +Depends: + libdnssec6 (= ${binary:Version}), + libknot8 (= ${binary:Version}), + libzscanner2 (= ${binary:Version}), + ${misc:Depends}, + ${shlibs:Depends}, +Description: Clients provided with Knot DNS (kdig, knslookup, knsupdate) + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package delivers various client programs related to DNS that are + derived from the Knot DNS source tree. + . + - kdig - query the DNS in various ways + - knsupdate - perform dynamic updates (See RFC2136) + . + Those clients were designed to be 1:1 compatible with BIND dnsutils, + but they provide some enhancements, which are documented in respective + manpages. + . + WARNING: knslookup is not provided as it is considered obsolete. + +Package: knot-host +Architecture: any +Depends: + libdnssec6 (= ${binary:Version}), + libknot8 (= ${binary:Version}), + libzscanner2 (= ${binary:Version}), + ${misc:Depends}, + ${shlibs:Depends}, +Description: Version of 'host' bundled with Knot DNS + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package provides the 'host' program in the form that is bundled + with the Knot DNS. The 'host' command is designed to be 1:1 + compatible with BIND 9.x 'host' program. + +Package: knot-doc +Architecture: all +Multi-Arch: foreign +Depends: + libjs-jquery, + libjs-underscore, + ${misc:Depends}, +Section: doc +Description: Documentation for Knot DNS + Knot DNS is a fast, authoritative only, high performance, feature + full and open source name server. + . + Knot DNS is developed by CZ.NIC Labs, the R&D department of .CZ + registry and hence is well suited to run anything from the root + zone, the top-level domain, to many smaller standard domain names. + . + This package provides various documents that are useful for + maintaining a working Knot DNS installation. diff --git a/distro/deb/copyright b/distro/deb/copyright new file mode 100644 index 0000000..63fa371 --- /dev/null +++ b/distro/deb/copyright @@ -0,0 +1,83 @@ +Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ +Upstream-Name: Knot DNS +Upstream-Contact: knot-dns@labs.nic.cz +Source: https://secure.nic.cz/files/knot-dns/ + +Files: * +Copyright: 2011-2012 CZ.NIC, z.s.p.o. +License: GPL-3+ with OpenSSL exception + This program is free software: you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + . + In addition, as a special exception, the author of this program gives + permission to link the code of its release with the OpenSSL project's + "OpenSSL" library (or with modified versions of it that use the same + license as the "OpenSSL" library), and distribute the linked + executables. You must obey the GNU General Public License in all + respects for all of the code used other than "OpenSSL". If you + modify this file, you may extend this exception to your version of + the file, but you are not obligated to do so. If you do not wish to + do so, delete this exception statement from your version. + . + This program is distributed in the hope that it will be useful, but + WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. + . + You should have received a copy of the GNU General Public License + along with this program. If not, see <https://www.gnu.org/licenses/>. + . + On Debian systems, the full text of the GNU General Public License + version 3 can be found in the file `/usr/share/common-licenses/GPL-3'. + +Files: tests/tap/* +Copyright: 2000-2001, 2004, 2006-2011 Russ Allbery <rra@stanford.edu> +License: Expat + +Files: src/contrib/ucw/* +Copyright: 1998 Martin Mares <mj@ucw.cz> +License: GPL-3+ + +Files: debian/* +Copyright: 2011 Ondřej Surý <ondrej@debian.org> +License: GPL-3+ + +License: Expat + Permission is hereby granted, free of charge, to any person obtaining + a copy of this software and associated documentation files (the + "Software"), to deal in the Software without restriction, including + without limitation the rights to use, copy, modify, merge, publish, + distribute, sublicense, and/or sell copies of the Software, and to + permit persons to whom the Software is furnished to do so, subject to + the following conditions: + . + The above copyright notice and this permission notice shall be + included in all copies or substantial portions of the Software. + . + THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, + EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF + MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND + NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS + BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN + ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN + CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE + SOFTWARE. + +License: GPL-3+ + This program is free software: you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation, either version 3 of the License, or + (at your option) any later version. + . + This program is distributed in the hope that it will be useful, but + WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. + . + You should have received a copy of the GNU General Public License + along with this program. If not, see <https://www.gnu.org/licenses/>. + . + On Debian systems, the full text of the GNU General Public License + version 3 can be found in the file `/usr/share/common-licenses/GPL-3'. diff --git a/distro/deb/docs b/distro/deb/docs new file mode 100644 index 0000000..e845566 --- /dev/null +++ b/distro/deb/docs @@ -0,0 +1 @@ +README diff --git a/distro/deb/knot-dnsutils.NEWS b/distro/deb/knot-dnsutils.NEWS new file mode 100644 index 0000000..20045dc --- /dev/null +++ b/distro/deb/knot-dnsutils.NEWS @@ -0,0 +1,6 @@ +knot (2.5.4-2) unstable; urgency=medium + + The compatibility links with dig and nsupdate has been dropped + in favour of coinstallability with dnsutils (from BIND9). + + -- Ondřej Surý <ondrej@debian.org> Mon, 18 Sep 2017 07:07:49 +0200 diff --git a/distro/deb/knot-dnsutils.install b/distro/deb/knot-dnsutils.install new file mode 100644 index 0000000..2e45630 --- /dev/null +++ b/distro/deb/knot-dnsutils.install @@ -0,0 +1,4 @@ +usr/bin/kdig +usr/bin/knsupdate +usr/share/man/man1/kdig.1 +usr/share/man/man1/knsupdate.1 diff --git a/distro/deb/knot-doc.install b/distro/deb/knot-doc.install new file mode 100644 index 0000000..c19da52 --- /dev/null +++ b/distro/deb/knot-doc.install @@ -0,0 +1,2 @@ +usr/share/doc/knot/* /usr/share/doc/knot-doc/ +usr/share/info diff --git a/distro/deb/knot-doc.links b/distro/deb/knot-doc.links new file mode 100644 index 0000000..3949022 --- /dev/null +++ b/distro/deb/knot-doc.links @@ -0,0 +1,2 @@ +usr/share/javascript/jquery/jquery.min.js usr/share/doc/knot-doc/_static/jquery.js +usr/share/javascript/underscore/underscore.min.js usr/share/doc/knot-doc/_static/underscore.js diff --git a/distro/deb/knot-host.NEWS b/distro/deb/knot-host.NEWS new file mode 100644 index 0000000..20045dc --- /dev/null +++ b/distro/deb/knot-host.NEWS @@ -0,0 +1,6 @@ +knot (2.5.4-2) unstable; urgency=medium + + The compatibility links with dig and nsupdate has been dropped + in favour of coinstallability with dnsutils (from BIND9). + + -- Ondřej Surý <ondrej@debian.org> Mon, 18 Sep 2017 07:07:49 +0200 diff --git a/distro/deb/knot-host.install b/distro/deb/knot-host.install new file mode 100644 index 0000000..fc5b4a3 --- /dev/null +++ b/distro/deb/knot-host.install @@ -0,0 +1,2 @@ +usr/bin/khost +usr/share/man/man1/khost.1 diff --git a/distro/deb/knot.NEWS b/distro/deb/knot.NEWS new file mode 100644 index 0000000..fa22ec4 --- /dev/null +++ b/distro/deb/knot.NEWS @@ -0,0 +1,12 @@ +knot (2.0.0-1) unstable; urgency=medium + + The configuration file format has changed with Knot DNS 2.0 release. + The knot1to2 conversion tools has been provided for your convenience + and the package will automatically save the existing configuration + file to /var/backups/knot/<TIMESTAMP> directory and convert the + configuration file into the new format. The Knot DNS team worked + hard to make this transition as smooth as possible, but you are + strongly advised to check the results if everything went as + expected. + + -- Ondřej Surý <ondrej@debian.org> Mon, 29 Jun 2015 10:36:08 +0200 diff --git a/distro/deb/knot.dirs b/distro/deb/knot.dirs new file mode 100644 index 0000000..6e937aa --- /dev/null +++ b/distro/deb/knot.dirs @@ -0,0 +1 @@ +var/lib/knot diff --git a/distro/deb/knot.init b/distro/deb/knot.init new file mode 100644 index 0000000..ec6e3f5 --- /dev/null +++ b/distro/deb/knot.init @@ -0,0 +1,168 @@ +#!/bin/sh +### BEGIN INIT INFO +# Provides: knot +# Required-Start: $network $local_fs $remote_fs $syslog +# Required-Stop: $remote_fs $syslog +# Default-Start: 2 3 4 5 +# Default-Stop: 0 1 6 +# Short-Description: authoritative domain name server +# Description: Knot DNS is a authoritative-only domain name server +### END INIT INFO + +# Author: Ondřej Surý <ondrej@debian.org> + +# PATH should only include /usr/* if it runs after the mountnfs.sh script +PATH=/sbin:/usr/sbin:/bin:/usr/bin +DESC="Knot DNS server" # Introduce a short description here +NAME=knotd # Introduce the short server's name here +DAEMON=/usr/sbin/$NAME # Introduce the server's location here +PIDFILE=/run/knot/knot.pid +SCRIPTNAME=/etc/init.d/knot +KNOTC=/usr/sbin/knotc + +# Exit if the package is not installed +[ -x $DAEMON ] || exit 0 + +KNOTD_ARGS="-c /etc/knot/knot.conf" + +# Read configuration variable file if it is present +[ -r /etc/default/knot ] && . /etc/default/knot + +DAEMON_ARGS="-d $KNOTD_ARGS" + +# Define LSB log_* functions. +# Depend on lsb-base (>= 3.0-6) to ensure that this file is present. +. /lib/lsb/init-functions + +# +# Function that starts the daemon/service +# +do_start() +{ + # Return + # 0 if daemon has been started + # 1 if daemon was already running + # 2 if daemon could not be started + + $KNOTC status >/dev/null 2>/dev/null \ + && return 1 + + start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON --test > /dev/null \ + || return 1 + start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON -- \ + $DAEMON_ARGS \ + || return 2 +} + +# +# Function that stops the daemon/service +# +do_stop() +{ + # Return + # 0 if daemon has been stopped + # 1 if daemon was already stopped + # 2 if daemon could not be stopped + # other if a failure occurred + + $KNOTC status >/dev/null 2>/dev/null \ + || return 1 + + $KNOTC stop >/dev/null + RETVAL="$?" + [ $? = 1 ] && return 2 + + # Many daemons don't delete their pidfiles when they exit. + rm -f $PIDFILE + return 0 +} + +do_reload() { + $KNOTC reload >/dev/null + return $? +} + +do_tmpfiles() { + local type path mode user group age argument + if [ -r "$1" ]; then + if [ -x /bin/systemd-tmpfiles ]; then + /bin/systemd-tmpfiles --create "$1" + else + while read type path mode user group age argument; do + case "$type" in + d) + mkdir -p "$path"; + chmod "$mode" "$path"; + chown "$user:$group" "$path"; + ;; + \#*) + ;; + *) + log_warning_msg "tmpfile.d type '$type' is not supported yet" + ;; + esac + done < "$1" + fi + else + log_warning_msg "tmpfiles.d file '$1' doesn't exist or is not readable" + fi +} + +case "$1" in + start) + do_tmpfiles /usr/lib/tmpfiles.d/knot.conf + log_daemon_msg "Starting $DESC " "$NAME" + do_start + case "$?" in + 0|1) log_end_msg 0 ;; + 2) log_end_msg 1 ;; + esac + ;; + stop) + log_daemon_msg "Stopping $DESC" "$NAME" + do_stop + case "$?" in + 0|1) log_end_msg 0 ;; + 2) log_end_msg 1 ;; + esac + ;; + status) + STATUS=$($KNOTC status 2>&1 >/dev/null) + RETVAL=$? + if [ $RETVAL = 0 ]; then + log_success_msg "$NAME is running" + else + log_failure_msg "$NAME is not running ($STATUS)" + fi + exit $RETVAL + ;; + reload|force-reload) + log_daemon_msg "Reloading $DESC" "$NAME" + do_reload + log_end_msg $? + ;; + restart) + log_daemon_msg "Restarting $DESC" "$NAME" + do_stop + case "$?" in + 0|1) + do_start + case "$?" in + 0) log_end_msg 0 ;; + 1) log_end_msg 1 ;; # Old process is still running + *) log_end_msg 1 ;; # Failed to start + esac + ;; + *) + # Failed to stop + log_end_msg 1 + ;; + esac + ;; + *) + echo "Usage: $SCRIPTNAME {start|stop|status|restart|reload|force-reload}" >&2 + exit 3 + ;; +esac + +: diff --git a/distro/deb/knot.install b/distro/deb/knot.install new file mode 100644 index 0000000..0c3d0aa --- /dev/null +++ b/distro/deb/knot.install @@ -0,0 +1,15 @@ +debian/ufw/knot etc/ufw/applications.d/ +etc/knot/knot.conf +usr/bin/knsec3hash +usr/bin/kzonecheck +usr/sbin/kjournalprint +usr/sbin/keymgr +usr/sbin/knotc +usr/sbin/knotd +usr/share/man/man1/knsec3hash.1 +usr/share/man/man1/kzonecheck.1 +usr/share/man/man5/knot.conf.5 +usr/share/man/man8/kjournalprint.8 +usr/share/man/man8/keymgr.8 +usr/share/man/man8/knotc.8 +usr/share/man/man8/knotd.8 diff --git a/distro/deb/knot.maintscript b/distro/deb/knot.maintscript new file mode 100644 index 0000000..42bc330 --- /dev/null +++ b/distro/deb/knot.maintscript @@ -0,0 +1 @@ +rm_conffile /etc/init/knot.conf 2.0.0-1~ diff --git a/distro/deb/knot.postinst b/distro/deb/knot.postinst new file mode 100644 index 0000000..09a2982 --- /dev/null +++ b/distro/deb/knot.postinst @@ -0,0 +1,16 @@ +#!/bin/sh +set -e + +if [ "$1" = "configure" ]; then + if ! getent passwd knot > /dev/null; then + adduser --quiet --system --group --no-create-home --home /var/lib/knot knot + fi + + dpkg-statoverride --list /var/lib/knot > /dev/null || dpkg-statoverride --update --add knot knot 0755 /var/lib/knot + dpkg-statoverride --list /etc/knot/knot.conf > /dev/null || dpkg-statoverride --update --add knot knot 0640 /etc/knot/knot.conf + dpkg-statoverride --list /etc/knot > /dev/null || dpkg-statoverride --update --add knot knot 0750 /etc/knot +fi + +#DEBHELPER# + +exit 0 diff --git a/distro/deb/knot.postrm b/distro/deb/knot.postrm new file mode 100644 index 0000000..76dccba --- /dev/null +++ b/distro/deb/knot.postrm @@ -0,0 +1,18 @@ +#!/bin/sh +set -e + +if test "$1" = "purge"; then + spool=/var/lib/knot + rm -rf $spool/timers $spool/keys $spool/journal + rmdir $spool 2>/dev/null || true + + dpkg-statoverride --remove /var/lib/knot >/dev/null 2>/dev/null || true + dpkg-statoverride --remove /etc/knot/knot.conf >/dev/null 2>/dev/null || true + dpkg-statoverride --remove /etc/knot >/dev/null 2>/dev/null || true + + deluser --quiet knot > /dev/null || true +fi + +#DEBHELPER# + +exit 0 diff --git a/distro/deb/knot.service b/distro/deb/knot.service new file mode 100644 index 0000000..9c1545e --- /dev/null +++ b/distro/deb/knot.service @@ -0,0 +1,19 @@ +[Unit] +Description=Knot DNS server +Wants=network-online.target +After=network-online.target +Documentation=man:knotd(8) man:knot.conf(5) man:knotc(8) + +[Service] +Type=notify +User=knot +Group=knot +CapabilityBoundingSet=CAP_NET_BIND_SERVICE CAP_SETPCAP +AmbientCapabilities=CAP_NET_BIND_SERVICE CAP_SETPCAP +ExecStartPre=/usr/sbin/knotc conf-check +ExecStart=/usr/sbin/knotd +ExecReload=/usr/sbin/knotc reload +Restart=on-abort + +[Install] +WantedBy=multi-user.target diff --git a/distro/deb/knot.tmpfile b/distro/deb/knot.tmpfile new file mode 100644 index 0000000..edec729 --- /dev/null +++ b/distro/deb/knot.tmpfile @@ -0,0 +1,3 @@ +# tmpfiles.d(5) runtime directory for knot +#Type Path Mode UID GID Age Argument + d /run/knot 0755 knot knot - - diff --git a/distro/deb/libdnssec6.install b/distro/deb/libdnssec6.install new file mode 100644 index 0000000..17a9fe6 --- /dev/null +++ b/distro/deb/libdnssec6.install @@ -0,0 +1 @@ +usr/lib/*/libdnssec.so.* diff --git a/distro/deb/libdnssec6.symbols b/distro/deb/libdnssec6.symbols new file mode 100644 index 0000000..955e5b6 --- /dev/null +++ b/distro/deb/libdnssec6.symbols @@ -0,0 +1,108 @@ +libdnssec.so.6 libdnssec6 #MINVER# + dnssec_algorithm_digest_support@Base 2.6.0 + dnssec_algorithm_key_size_check@Base 2.3.0 + dnssec_algorithm_key_size_default@Base 2.3.0 + dnssec_algorithm_key_size_range@Base 2.3.0 + dnssec_algorithm_key_support@Base 2.6.0 + dnssec_binary_alloc@Base 2.3.0 + dnssec_binary_cmp@Base 2.3.0 + dnssec_binary_dup@Base 2.3.0 + dnssec_binary_free@Base 2.3.0 + dnssec_binary_from_base64@Base 2.3.0 + dnssec_binary_resize@Base 2.3.0 + dnssec_binary_to_base64@Base 2.3.0 + dnssec_crypto_cleanup@Base 2.3.0 + dnssec_crypto_init@Base 2.3.0 + dnssec_crypto_reinit@Base 2.3.0 + dnssec_item_get@Base 2.3.0 + dnssec_item_set@Base 2.3.0 + dnssec_key_can_sign@Base 2.3.0 + dnssec_key_can_verify@Base 2.3.0 + dnssec_key_clear@Base 2.3.0 + dnssec_key_create_ds@Base 2.3.0 + dnssec_key_dup@Base 2.3.0 + dnssec_key_free@Base 2.3.0 + dnssec_key_get_algorithm@Base 2.3.0 + dnssec_key_get_dname@Base 2.3.0 + dnssec_key_get_flags@Base 2.3.0 + dnssec_key_get_keyid@Base 2.6.0 + dnssec_key_get_keytag@Base 2.3.0 + dnssec_key_get_protocol@Base 2.3.0 + dnssec_key_get_pubkey@Base 2.3.0 + dnssec_key_get_rdata@Base 2.3.0 + dnssec_key_get_size@Base 2.3.0 + dnssec_key_import_keystore@Base 2.3.0 + dnssec_key_load_pkcs8@Base 2.3.0 + dnssec_key_new@Base 2.3.0 + dnssec_key_set_algorithm@Base 2.3.0 + dnssec_key_set_dname@Base 2.3.0 + dnssec_key_set_flags@Base 2.3.0 + dnssec_key_set_protocol@Base 2.3.0 + dnssec_key_set_pubkey@Base 2.3.0 + dnssec_key_set_rdata@Base 2.3.0 + dnssec_keyid_copy@Base 2.3.0 + dnssec_keyid_equal@Base 2.3.0 + dnssec_keyid_is_valid@Base 2.3.0 + dnssec_keyid_normalize@Base 2.3.0 + dnssec_keystore_close@Base 2.3.0 + dnssec_keystore_deinit@Base 2.3.0 + dnssec_keystore_generate_key@Base 2.3.0 + dnssec_keystore_import@Base 2.3.0 + dnssec_keystore_init@Base 2.3.0 + dnssec_keystore_init_pkcs11@Base 2.3.0 + dnssec_keystore_init_pkcs8_custom@Base 2.3.0 + dnssec_keystore_init_pkcs8_dir@Base 2.3.0 + dnssec_keystore_list_keys@Base 2.3.0 + dnssec_keystore_open@Base 2.3.0 + dnssec_keystore_remove_key@Base 2.3.0 + dnssec_keytag@Base 2.3.0 + dnssec_list_append@Base 2.3.0 + dnssec_list_clear@Base 2.3.0 + dnssec_list_clear_full@Base 2.3.0 + dnssec_list_contains@Base 2.3.0 + dnssec_list_free@Base 2.3.0 + dnssec_list_free_full@Base 2.3.0 + dnssec_list_head@Base 2.3.0 + dnssec_list_insert_after@Base 2.3.0 + dnssec_list_insert_before@Base 2.3.0 + dnssec_list_is_empty@Base 2.3.0 + dnssec_list_new@Base 2.3.0 + dnssec_list_next@Base 2.3.0 + dnssec_list_nth@Base 2.3.0 + dnssec_list_prepend@Base 2.3.0 + dnssec_list_prev@Base 2.3.0 + dnssec_list_remove@Base 2.3.0 + dnssec_list_search@Base 2.3.0 + dnssec_list_size@Base 2.3.0 + dnssec_list_tail@Base 2.3.0 + dnssec_nsec3_hash@Base 2.3.0 + dnssec_nsec3_hash_length@Base 2.3.0 + dnssec_nsec3_params_free@Base 2.3.0 + dnssec_nsec3_params_from_rdata@Base 2.3.0 + dnssec_nsec_bitmap_add@Base 2.3.0 + dnssec_nsec_bitmap_clear@Base 2.3.0 + dnssec_nsec_bitmap_contains@Base 2.7.0 + dnssec_nsec_bitmap_free@Base 2.3.0 + dnssec_nsec_bitmap_new@Base 2.3.0 + dnssec_nsec_bitmap_size@Base 2.3.0 + dnssec_nsec_bitmap_write@Base 2.3.0 + dnssec_random_binary@Base 2.3.0 + dnssec_random_buffer@Base 2.3.0 + dnssec_sign_add@Base 2.3.0 + dnssec_sign_free@Base 2.3.0 + dnssec_sign_init@Base 2.3.0 + dnssec_sign_new@Base 2.3.0 + dnssec_sign_verify@Base 2.3.0 + dnssec_sign_write@Base 2.3.0 + dnssec_strerror@Base 2.3.0 + dnssec_tsig_add@Base 2.3.0 + dnssec_tsig_algorithm_from_dname@Base 2.3.0 + dnssec_tsig_algorithm_from_name@Base 2.3.0 + dnssec_tsig_algorithm_size@Base 2.3.0 + dnssec_tsig_algorithm_to_dname@Base 2.3.0 + dnssec_tsig_algorithm_to_name@Base 2.3.0 + dnssec_tsig_free@Base 2.3.0 + dnssec_tsig_new@Base 2.3.0 + dnssec_tsig_optimal_key_size@Base 2.3.0 + dnssec_tsig_size@Base 2.3.0 + dnssec_tsig_write@Base 2.3.0 diff --git a/distro/deb/libknot-dev.install b/distro/deb/libknot-dev.install new file mode 100644 index 0000000..cb60d88 --- /dev/null +++ b/distro/deb/libknot-dev.install @@ -0,0 +1,3 @@ +usr/include/ +usr/lib/*/*.so +usr/lib/*/pkgconfig/* diff --git a/distro/deb/libknot8.install b/distro/deb/libknot8.install new file mode 100644 index 0000000..f9b9f93 --- /dev/null +++ b/distro/deb/libknot8.install @@ -0,0 +1 @@ +usr/lib/*/libknot.so.* diff --git a/distro/deb/libknot8.symbols b/distro/deb/libknot8.symbols new file mode 100644 index 0000000..90ca65e --- /dev/null +++ b/distro/deb/libknot8.symbols @@ -0,0 +1,206 @@ +libknot.so.8 libknot8 #MINVER# + KNOT_DB_LMDB_DUPSORT@Base 2.5.0 + KNOT_DB_LMDB_INTEGERKEY@Base 2.4.0 + KNOT_DB_LMDB_MAPASYNC@Base 2.5.0 + KNOT_DB_LMDB_NOSYNC@Base 2.4.0 + KNOT_DB_LMDB_NOTLS@Base 2.3.0 + KNOT_DB_LMDB_RDONLY@Base 2.3.0 + KNOT_DB_LMDB_WRITEMAP@Base 2.5.0 + KNOT_DUMP_STYLE_DEFAULT@Base 2.3.0 + knot_ctl_accept@Base 2.3.0 + knot_ctl_alloc@Base 2.3.0 + knot_ctl_bind@Base 2.3.0 + knot_ctl_close@Base 2.3.0 + knot_ctl_connect@Base 2.3.0 + knot_ctl_free@Base 2.3.0 + knot_ctl_receive@Base 2.3.0 + knot_ctl_send@Base 2.3.0 + knot_ctl_set_timeout@Base 2.3.0 + knot_ctl_unbind@Base 2.3.0 + knot_db_lmdb_api@Base 2.3.0 + knot_db_lmdb_del_exact@Base 2.5.0 + knot_db_lmdb_get_mapsize@Base 2.4.0 + knot_db_lmdb_get_usage@Base 2.4.0 + knot_db_lmdb_iter_del@Base 2.3.0 + knot_db_lmdb_txn_begin@Base 2.3.0 + knot_db_trie_api@Base 2.3.0 + knot_dname_cmp@Base 2.3.0 + knot_dname_copy@Base 2.3.0 + knot_dname_free@Base 2.3.0 + knot_dname_from_str@Base 2.3.0 + knot_dname_in_bailiwick@Base 2.7.0 + knot_dname_is_equal@Base 2.3.0 + knot_dname_labels@Base 2.3.0 + knot_dname_lf@Base 2.7.0 + knot_dname_matched_labels@Base 2.3.0 + knot_dname_prefixlen@Base 2.3.0 + knot_dname_realsize@Base 2.3.0 + knot_dname_replace_suffix@Base 2.3.0 + knot_dname_size@Base 2.3.0 + knot_dname_store@Base 2.7.0 + knot_dname_to_lower@Base 2.3.0 + knot_dname_to_str@Base 2.3.0 + knot_dname_to_wire@Base 2.3.0 + knot_dname_unpack@Base 2.3.0 + knot_dname_wire_check@Base 2.3.0 + knot_dnssec_alg_names@Base 2.3.0 + knot_edns_add_option@Base 2.3.0 + knot_edns_alignment_size@Base 2.7.0 + knot_edns_chain_parse@Base 2.4.0 + knot_edns_chain_size@Base 2.4.0 + knot_edns_chain_write@Base 2.4.0 + knot_edns_client_subnet_get_addr@Base 2.3.1 + knot_edns_client_subnet_parse@Base 2.3.0 + knot_edns_client_subnet_set_addr@Base 2.3.1 + knot_edns_client_subnet_size@Base 2.3.1 + knot_edns_client_subnet_write@Base 2.3.1 + knot_edns_cookie_client_check@Base 2.7.0 + knot_edns_cookie_client_generate@Base 2.7.0 + knot_edns_cookie_parse@Base 2.7.0 + knot_edns_cookie_server_check@Base 2.7.0 + knot_edns_cookie_server_generate@Base 2.7.0 + knot_edns_cookie_size@Base 2.7.0 + knot_edns_cookie_write@Base 2.7.0 + knot_edns_get_ext_rcode@Base 2.3.0 + knot_edns_get_option@Base 2.3.0 + knot_edns_get_options@Base 2.7.0 + knot_edns_get_version@Base 2.3.0 + knot_edns_init@Base 2.3.0 + knot_edns_keepalive_parse@Base 2.4.0 + knot_edns_keepalive_size@Base 2.4.0 + knot_edns_keepalive_write@Base 2.4.0 + knot_edns_reserve_option@Base 2.3.0 + knot_edns_set_ext_rcode@Base 2.3.0 + knot_edns_set_version@Base 2.3.0 + knot_error_from_libdnssec@Base 2.5.0 + knot_get_obsolete_rdata_descriptor@Base 2.3.0 + knot_get_rdata_descriptor@Base 2.3.0 + knot_naptr_header_size@Base 2.3.0 + knot_opcode_names@Base 2.3.0 + knot_opt_code_to_string@Base 2.7.0 + knot_pkt_begin@Base 2.3.0 + knot_pkt_clear@Base 2.3.0 + knot_pkt_copy@Base 2.3.0 + knot_pkt_ext_rcode@Base 2.4.0 + knot_pkt_ext_rcode_name@Base 2.4.0 + knot_pkt_free@Base 2.3.0 + knot_pkt_init_response@Base 2.3.0 + knot_pkt_new@Base 2.3.0 + knot_pkt_parse@Base 2.3.0 + knot_pkt_parse_question@Base 2.3.0 + knot_pkt_put_question@Base 2.3.0 + knot_pkt_put_rotate@Base 2.7.0 + knot_pkt_reclaim@Base 2.3.0 + knot_pkt_reserve@Base 2.3.0 + knot_rcode_names@Base 2.3.0 + knot_rdataset_add@Base 2.3.0 + knot_rdataset_at@Base 2.3.0 + knot_rdataset_clear@Base 2.3.0 + knot_rdataset_copy@Base 2.3.0 + knot_rdataset_eq@Base 2.3.0 + knot_rdataset_intersect@Base 2.3.0 + knot_rdataset_member@Base 2.3.0 + knot_rdataset_merge@Base 2.3.0 + knot_rdataset_reserve@Base 2.3.0 + knot_rdataset_size@Base 2.3.0 + knot_rdataset_subtract@Base 2.7.0 + knot_rdataset_unreserve@Base 2.3.0 + knot_rrclass_from_string@Base 2.3.0 + knot_rrclass_to_string@Base 2.3.0 + knot_rrset_add_rdata@Base 2.7.0 + knot_rrset_clear@Base 2.3.0 + knot_rrset_copy@Base 2.3.0 + knot_rrset_equal@Base 2.3.0 + knot_rrset_free@Base 2.3.0 + knot_rrset_is_nsec3rel@Base 2.3.0 + knot_rrset_new@Base 2.7.0 + knot_rrset_rr_from_wire@Base 2.3.0 + knot_rrset_rr_to_canonical@Base 2.3.0 + knot_rrset_size@Base 2.3.0 + knot_rrset_to_wire_extra@Base 2.7.1 + knot_rrset_to_wire_rotate@Base 2.7.0 + knot_rrset_txt_dump@Base 2.3.0 + knot_rrset_txt_dump_data@Base 2.3.0 + knot_rrset_txt_dump_header@Base 2.3.0 + knot_rrtype_additional_needed@Base 2.3.0 + knot_rrtype_from_string@Base 2.3.0 + knot_rrtype_is_dnssec@Base 2.3.0 + knot_rrtype_is_metatype@Base 2.3.0 + knot_rrtype_should_be_lowercased@Base 2.3.0 + knot_rrtype_to_string@Base 2.3.0 + knot_strerror@Base 2.3.0 + knot_tsig_add@Base 2.3.0 + knot_tsig_append@Base 2.3.0 + knot_tsig_client_check@Base 2.3.0 + knot_tsig_client_check_next@Base 2.3.0 + knot_tsig_create_rdata@Base 2.3.0 + knot_tsig_key_copy@Base 2.3.0 + knot_tsig_key_deinit@Base 2.3.0 + knot_tsig_key_init@Base 2.3.0 + knot_tsig_key_init_file@Base 2.3.0 + knot_tsig_key_init_str@Base 2.3.0 + knot_tsig_rcode_names@Base 2.4.0 + knot_tsig_rdata_alg@Base 2.3.0 + knot_tsig_rdata_alg_name@Base 2.3.0 + knot_tsig_rdata_error@Base 2.3.0 + knot_tsig_rdata_fudge@Base 2.3.0 + knot_tsig_rdata_is_ok@Base 2.3.0 + knot_tsig_rdata_mac@Base 2.3.0 + knot_tsig_rdata_mac_length@Base 2.3.0 + knot_tsig_rdata_orig_id@Base 2.3.0 + knot_tsig_rdata_other_data@Base 2.3.0 + knot_tsig_rdata_other_data_length@Base 2.3.0 + knot_tsig_rdata_set_fudge@Base 2.3.0 + knot_tsig_rdata_set_mac@Base 2.3.0 + knot_tsig_rdata_set_orig_id@Base 2.3.0 + knot_tsig_rdata_set_other_data@Base 2.3.0 + knot_tsig_rdata_set_time_signed@Base 2.3.0 + knot_tsig_rdata_time_signed@Base 2.3.0 + knot_tsig_rdata_tsig_timers_length@Base 2.3.0 + knot_tsig_rdata_tsig_variables_length@Base 2.3.0 + knot_tsig_server_check@Base 2.3.0 + knot_tsig_sign@Base 2.3.0 + knot_tsig_sign_next@Base 2.3.0 + knot_tsig_wire_maxsize@Base 2.3.0 + knot_tsig_wire_size@Base 2.4.1 + yp_addr@Base 2.5.0 + yp_addr_noport@Base 2.5.0 + yp_addr_noport_to_bin@Base 2.5.0 + yp_addr_noport_to_txt@Base 2.5.0 + yp_addr_range_to_bin@Base 2.5.0 + yp_addr_range_to_txt@Base 2.5.0 + yp_addr_to_bin@Base 2.5.0 + yp_addr_to_txt@Base 2.5.0 + yp_base64_to_bin@Base 2.5.0 + yp_base64_to_txt@Base 2.5.0 + yp_bool_to_bin@Base 2.5.0 + yp_bool_to_txt@Base 2.5.0 + yp_deinit@Base 2.5.0 + yp_dname_to_bin@Base 2.5.0 + yp_dname_to_txt@Base 2.5.0 + yp_format_id@Base 2.5.0 + yp_format_key0@Base 2.5.0 + yp_format_key1@Base 2.5.0 + yp_hex_to_bin@Base 2.5.0 + yp_hex_to_txt@Base 2.5.0 + yp_init@Base 2.5.0 + yp_int_to_bin@Base 2.5.0 + yp_int_to_txt@Base 2.5.0 + yp_item_to_bin@Base 2.5.0 + yp_item_to_txt@Base 2.5.0 + yp_option_to_bin@Base 2.5.0 + yp_option_to_txt@Base 2.5.0 + yp_parse@Base 2.5.0 + yp_schema_check_deinit@Base 2.5.0 + yp_schema_check_init@Base 2.5.0 + yp_schema_check_parser@Base 2.5.0 + yp_schema_check_str@Base 2.5.0 + yp_schema_copy@Base 2.5.0 + yp_schema_find@Base 2.5.0 + yp_schema_free@Base 2.5.0 + yp_schema_merge@Base 2.5.0 + yp_schema_purge_dynamic@Base 2.5.0 + yp_set_input_file@Base 2.5.0 + yp_set_input_string@Base 2.5.0 + yp_str_to_bin@Base 2.5.0 + yp_str_to_txt@Base 2.5.0 diff --git a/distro/deb/libzscanner2.install b/distro/deb/libzscanner2.install new file mode 100644 index 0000000..a8dc226 --- /dev/null +++ b/distro/deb/libzscanner2.install @@ -0,0 +1 @@ +usr/lib/*/libzscanner.so.* diff --git a/distro/deb/libzscanner2.symbols b/distro/deb/libzscanner2.symbols new file mode 100644 index 0000000..95995bf --- /dev/null +++ b/distro/deb/libzscanner2.symbols @@ -0,0 +1,10 @@ +libzscanner.so.2 libzscanner2 #MINVER# + zs_deinit@Base 2.3.0 + zs_errorname@Base 2.3.0 + zs_init@Base 2.3.0 + zs_parse_all@Base 2.3.0 + zs_parse_record@Base 2.3.0 + zs_set_input_file@Base 2.3.0 + zs_set_input_string@Base 2.3.0 + zs_set_processing@Base 2.3.0 + zs_strerror@Base 2.3.0 diff --git a/distro/deb/not-installed b/distro/deb/not-installed new file mode 100644 index 0000000..c928be1 --- /dev/null +++ b/distro/deb/not-installed @@ -0,0 +1 @@ +etc/knot/example.com.zone diff --git a/distro/deb/prepare-environment b/distro/deb/prepare-environment new file mode 100755 index 0000000..7176f5e --- /dev/null +++ b/distro/deb/prepare-environment @@ -0,0 +1,38 @@ +#!/bin/sh + +set -eu + +CONFFILE=${1:-/etc/knot/knot.conf} + +if [ ! -r $CONFFILE ]; then + echo "$CONFFILE doesn't exist or has wrong permissions." + exit 1; +fi + +KNOT_RUNDIR=$(sed -ne "s/#.*$//;s/.*rundir: \"*\([^\";]*\\).*/\\1/p;" $CONFFILE) +[ -z "$KNOT_RUNDIR" ] && KNOT_RUNDIR=/run/knot + +mkdir --parents "$KNOT_RUNDIR"; + +KNOT_USER=$(sed -ne "s/#.*$//;s/.*user:[ \"]*\\([^\\:\"]*\\)[ \"]*/\\1/p;" $CONFFILE) + +if [ -n "$KNOT_USER" ]; then + if ! getent passwd $KNOT_USER >/dev/null; then + echo "Configured user '$KNOT_USER' doesn't exist." + exit 1 + fi + + KNOT_GROUP=$(sed -ne "s/#.*$//;s/.*user:[ \"]*[^\\:\"]*\\:\\([^\"]*\\)[ \"]*/\\1/p;" $CONFFILE) + if [ -z "$KNOT_GROUP" ]; then + KNOT_GROUP=$(getent group $(getent passwd "$KNOT_USER" | cut -f 4 -d :) | cut -f 1 -d :) + fi + + if ! getent group $KNOT_GROUP >/dev/null; then + echo "Configured group '$KNOT_GROUP' doesn't exist." + exit 1 + fi + chown --silent "$KNOT_USER:$KNOT_GROUP" "$KNOT_RUNDIR" + chmod 775 "$KNOT_RUNDIR" +fi + +: diff --git a/distro/deb/rules b/distro/deb/rules new file mode 100755 index 0000000..ddccb6a --- /dev/null +++ b/distro/deb/rules @@ -0,0 +1,79 @@ +#!/usr/bin/make -f +# -*- makefile -*- + +# Uncomment this to turn on verbose mode. +# export DH_VERBOSE=1 + +# To enable all, uncomment following line +export DEB_BUILD_MAINT_OPTIONS = hardening=+all +export DEB_CFLAGS_MAINT_APPEND = -Wall -DNDEBUG +export DEB_LDFLAGS_MAINT_APPEND = -Wl,--as-needed + +export DPKG_GENSYMBOLS_CHECK_LEVEL := 4 + +include /usr/share/dpkg/default.mk + +ifeq (maint,$(filter $(DEB_BUILD_OPTIONS),maint)) + FASTPARSER := --disable-fastparser +else + FASTPARSER := --enable-fastparser +endif + +ifeq ($(DEB_HOST_ARCH),$(filter $(DEB_HOST_ARCH),hurd-i386)) + RECVMMSG:=--enable-recvmmsg=no +else + RECVMMSG:=--enable-recvmmsg=yes +endif + +ifeq ($(DEB_HOST_ARCH),$(filter $(DEB_HOST_ARCH),amd64 i386)) + RUN_TEST := +else + RUN_TEST := -timeout --kill-after=5s 5m +endif + +%: + dh $@ --dbgsym-migration='knot-dbg (<< 2.2.0-2~)' --exclude=.la --exclude=example.com.zone + +override_dh_auto_configure: + dh_auto_configure -- \ + --sysconfdir=/etc \ + --localstatedir=/var/lib \ + --libexecdir=/usr/lib/knot \ + --with-rundir=/run/knot \ + --with-moduledir=/usr/lib/$(DEB_HOST_MULTIARCH)/knot \ + --with-storage=/var/lib/knot \ + --with-memory-allocator=jemalloc \ + --enable-systemd=auto \ + --enable-dnstap \ + --with-module-dnstap=yes \ + $(RECVMMSG) \ + $(FASTPARSER) \ + --disable-silent-rules \ + --disable-static + +override_dh_auto_build-indep: + dh_auto_build -- info pdf html + +override_dh_auto_install-arch: + dh_auto_install -- install + # rename knot.sample.conf to knot.conf + mv $(CURDIR)/debian/tmp/etc/knot/knot.sample.conf $(CURDIR)/debian/tmp/etc/knot/knot.conf + +override_dh_auto_install-indep: + dh_auto_install -- install-info install-pdf install-html + # rename knot.sample.conf to knot.conf + mv $(CURDIR)/debian/tmp/etc/knot/knot.sample.conf $(CURDIR)/debian/tmp/etc/knot/knot.conf + +override_dh_auto_test-indep: +override_dh_auto_test-arch: + $(RUN_TEST) dh_auto_test + +override_dh_installdirs-arch: + dh_installdirs --arch --package=knot /usr/lib/$(DEB_HOST_MULTIARCH)/knot + dh_installdirs --arch --remaining-packages + +override_dh_missing: + dh_missing --fail-missing + +override_dh_installchangelogs: + dh_installchangelogs NEWS diff --git a/distro/deb/source/format b/distro/deb/source/format new file mode 100644 index 0000000..163aaf8 --- /dev/null +++ b/distro/deb/source/format @@ -0,0 +1 @@ +3.0 (quilt) diff --git a/distro/deb/tests/control b/distro/deb/tests/control new file mode 100644 index 0000000..559a8f7 --- /dev/null +++ b/distro/deb/tests/control @@ -0,0 +1,2 @@ +Tests: kdig +Depends: knot-dnsutils, ca-certificates diff --git a/distro/deb/tests/kdig b/distro/deb/tests/kdig new file mode 100755 index 0000000..a2f388e --- /dev/null +++ b/distro/deb/tests/kdig @@ -0,0 +1,11 @@ +#!/bin/bash + +set -e + +expected=93.184.216.34 +answer=$(kdig +short +tls-ca +tls-hostname=dns.cmrg.net @dns.cmrg.net example.org) + +if [ "$answer" != "$expected" ]; then + printf "expected: %s\ngot: %s\n" "$expected" "$answer" >&2 + kdig +tls-ca +tls-hostname=dns.cmrg.net @dns.cmrg.net example.org +fi diff --git a/distro/deb/ufw/knot b/distro/deb/ufw/knot new file mode 100644 index 0000000..ee36916 --- /dev/null +++ b/distro/deb/ufw/knot @@ -0,0 +1,4 @@ +[Knot] +title=Internet Domain Name Server +description=The Knot DNS implements an Internet domain name server. +ports=53 diff --git a/distro/deb/watch b/distro/deb/watch new file mode 100644 index 0000000..a763cd4 --- /dev/null +++ b/distro/deb/watch @@ -0,0 +1,4 @@ +version=3 +opts=uversionmangle=s/-((alpha|beta|rc)\d*)$/~$1/,pgpsigurlmangle=s/$/.asc/,dversionmangle=s/\+hotfix// \ +https://secure.nic.cz/files/knot-dns/ \ +(?:|.*/)knot(?:[_\-]v?|)(\d\S*)\.(?:tar\.xz|txz|tar\.bz2|tbz2|tar\.gz|tgz) |