diff options
| author |   Daniel Black <dragonheart@gentoo.org> | 2010-11-30 08:53:15 +0000 |
|---|---|---|
| committer | Daniel Black <dragonheart@gentoo.org> | 2010-11-30 08:53:15 +0000 |
| commit | 647e26dac1ecd0f2bc539c35590475e5d8015356 (patch) | |
| tree | 65c4a4733e09d11c33a7c03c1b420fcf0def7194 /net-dns/dnssec-root | |
| parent | Version bump, #346529 wrt Mike Auty. (diff) | |
| download | gentoo-2-647e26dac1ecd0f2bc539c35590475e5d8015356.tar.gz gentoo-2-647e26dac1ecd0f2bc539c35590475e5d8015356.tar.bz2 gentoo-2-647e26dac1ecd0f2bc539c35590475e5d8015356.zip | |
initial ebuild of dnssec root key
(Portage version: 2.2.0_alpha3/cvs/Linux i686)
Diffstat (limited to 'net-dns/dnssec-root')
| -rw-r--r-- | net-dns/dnssec-root/ChangeLog | 10 | ||||
| -rw-r--r-- | net-dns/dnssec-root/dnssec-root-20100715.ebuild | 54 | ||||
| -rw-r--r-- | net-dns/dnssec-root/files/anchors2ds.xsl | 32 | ||||
| -rw-r--r-- | net-dns/dnssec-root/metadata.xml | 12 |
4 files changed, 108 insertions, 0 deletions
diff --git a/net-dns/dnssec-root/ChangeLog b/net-dns/dnssec-root/ChangeLog new file mode 100644 index 000000000000..61b28263743b --- /dev/null +++ b/net-dns/dnssec-root/ChangeLog @@ -0,0 +1,10 @@ +# ChangeLog for net-dns/dnssec-root +# Copyright 1999-2010 Gentoo Foundation; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/net-dns/dnssec-root/ChangeLog,v 1.1 2010/11/30 08:53:15 dragonheart Exp $ + +*dnssec-root-20100715 (30 Nov 2010) + + 30 Nov 2010; Daniel Black <dragonheart@gentoo.org> +files/anchors2ds.xsl, + +dnssec-root-20100715.ebuild, +metadata.xml: + initial ebuild + diff --git a/net-dns/dnssec-root/dnssec-root-20100715.ebuild b/net-dns/dnssec-root/dnssec-root-20100715.ebuild new file mode 100644 index 000000000000..387821dab222 --- /dev/null +++ b/net-dns/dnssec-root/dnssec-root-20100715.ebuild @@ -0,0 +1,54 @@ +# Copyright 1999-2010 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-dns/dnssec-root/dnssec-root-20100715.ebuild,v 1.1 2010/11/30 08:53:15 dragonheart Exp $ + +DESCRIPTION="The DNSSEC root key(s)" +HOMEPAGE="https://www.iana.org/dnssec/" +SRC_URI="http://data.iana.org/root-anchors/root-anchors.xml + http://data.iana.org/root-anchors/Kjqmt7v.csr + test? ( http://data.iana.org/root-anchors/Kjqmt7v.crt + http://data.iana.org/root-anchors/root-anchors.p7s + http://data.iana.org/root-anchors/root-anchors.asc + http://data.iana.org/root-anchors/icannbundle.pem + http://data.iana.org/root-anchors/icann.pgp + )" + +LICENSE="public-domain" +SLOT="0" +KEYWORDS="~x86 ~amd64" + +IUSE="test" + +DEPEND="dev-libs/libxslt + test? ( app-crypt/gnupg )" +RDEPEND="" + +S="${WORKDIR}" + + +# xsl and checking as per: +# http://permalink.gmane.org/gmane.network.dns.unbound.user/1039 + +src_unpack() { + einfo 'unpack not needed' +} + +src_compile() { + xsltproc -o "${S}"/root-anchors.txt "${FILESDIR}"/anchors2ds.xsl "${DISTDIR}"/root-anchors.xml || die 'xsl translation failed' +} + +src_test() +{ + gpg --import "${DISTDIR}"/icann.pgp || die 'icann key import failed' + gpg --verify "${DISTDIR}"/root-anchors.asc "${DISTDIR}"/root-anchors.xml || \ + die 'gpg verification of the root key failed' + openssl smime -verify -content "${DISTDIR}"/root-anchors.xml \ + -in "${DISTDIR}"/root-anchors.p7s -inform der \ + -CAfile "${DISTDIR}"/icannbundle.pem \ + || die 'smime verification of the root key failed' +} + +src_install() { + insinto /etc/dnssec + doins root-anchors.txt "${DISTDIR}"/root-anchors.xml "${DISTDIR}"/Kjqmt7v.csr +} diff --git a/net-dns/dnssec-root/files/anchors2ds.xsl b/net-dns/dnssec-root/files/anchors2ds.xsl new file mode 100644 index 000000000000..3df47e20759d --- /dev/null +++ b/net-dns/dnssec-root/files/anchors2ds.xsl @@ -0,0 +1,32 @@ +<?xml version="1.0"?> + +<xsl:stylesheet xmlns:xsl="http://www.w3.org/1999/XSL/Transform" version="1.0"> + <xsl:output method="text"/> + + <xsl:template match="/"> + <xsl:apply-templates/> + </xsl:template> + + <xsl:template match="/TrustAnchor"> + <xsl:apply-templates select="Zone"/> + <xsl:apply-templates select="KeyDigest"/> + <xsl:text> +</xsl:text> + </xsl:template> + + <xsl:template match="KeyDigest"> + <xsl:apply-templates select="KeyTag"/> + <xsl:apply-templates select="Algorithm"/> + <xsl:apply-templates select="DigestType"/> + <xsl:apply-templates select="Digest"/> + </xsl:template> + + <xsl:template match="Zone"> + <xsl:value-of select="text()"/><xsl:text> IN DS </xsl:text> + </xsl:template> + + <xsl:template match="*"> + <xsl:value-of select="text()"/><xsl:text> </xsl:text> + </xsl:template> + +</xsl:stylesheet>
\ No newline at end of file diff --git a/net-dns/dnssec-root/metadata.xml b/net-dns/dnssec-root/metadata.xml new file mode 100644 index 000000000000..5ff1f9c24385 --- /dev/null +++ b/net-dns/dnssec-root/metadata.xml @@ -0,0 +1,12 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> +<pkgmetadata> +<herd>no-herd</herd> +<maintainer> + <email>dragonheart@gentoo.org</email> + <name>Daniel Black</name> + <description>A package I felt obliged to include. Please bump/correct if you see the need. +</description> +</maintainer> +<longdescription>This package distributes the ICANN DNSSEC root key</longdescription> +</pkgmetadata> |