Mon Oct 26 19:23:08 2015 UTC ()
Knot DNS 2.0.1 (2015-09-02)
===========================

Bugfixes:
---------
 - Do not reload expired zones on 'knotc reload' and server startup
 - Fix rare race-condition in event scheduling causing delayed event execution
 - Fix skipping of non-authoritative nodes in NSEC proofs
 - Fix TC flag setting in RRL slipped answers
 - Disable domain name compression for root label
 - Log via journald only when running under systemd
 - Fix CNAME following when quering for NSEC RR type
 - Fix refreshing of DNSSEC signatures for zone keys
 - Fix binding an unavailable IPv6 address on Linux (IP_FREEBIND)
 - Fix infinite loop in knotc zonestatus and memstats
 - Fix memory leak in configuration on server shutdown
 - Fix broken dnsproxy module
 - Fix DNSSEC KASP timestamps parsing in strict POSIX environment
 - fix multi value parsing on big-endian
 - Adapt to Nettle 3 API break causing base64 decoding failures on big-endian

Features:
---------
 - Add 'keymgr zone key ds' to show key's DS record
 - Add 'keymgr tsig generate' to generate TSIG keys
 - Add query module scoping to process either all queries or zone queries only
 - Add support for file name globbing in config file includes
 - Add 'request-edns-option' config option to add custom EDNS0 option into
   server initiated queries

Improvements:
-------------
 - Send minimal responses (remove NS from Authority section for NOERROR)
 - Update persistent timers only on shutdown for better performance
 - Allow change of RR TTL over DDNS
 - Documentation fixes, updates, and improvements in formatting
 - Install yparser and zscanner header files
 - Improve lookup of libsystemd build dependencies
 - Fix compilation warnings in endian conversion functions on OpenBSD

Knot DNS 2.0.0 (2015-06-26)
===========================

Bugfixes:
---------
 - Fix lost NOTIFY message if received during zone transfer
 - Disable fast zone parser when compiled in Clang (workaround for Clang bug)
 - kdig: Record correct dnstap SocketProtocol when retrying over TCP
 - kdig: Hide TSIG section with +noall
 - Do not set AA flag for AXFR/IXFR queries

Features:
---------
 - DNSSEC: separate library, switch to GnuTLS, new utilities
 - DNSSEC: basic KASP support (generate initial keys, ZSK rollover)
 - Configuration: New text format in YAML, binary store in LMDB
 - Zone parser: Split long TXT/SPF strings into multiple strings
 - kdig: Add generic dump style option (+generic)
 - Try all master servers in multi-master environment
 - Improved remotes and ACLs (multiple addresses, multiple keys)
 - Basic support for zone file patterns (%s to substitute zone name)
 - Disable zone file synchronization by setting 'zonefile_sync' to '-1'
 - knsupdate: Add input prompt in interactive mode and 'quit' command
 - knsupdate: Allow TSIG algorithm specification in interactive prompt

Improvements:
-------------
 - Zone dump: Do not write class for SOA record (unified with other RR types)
 - Zone dump: Do not write master server address into the zone file
 - Documentation: Manual pages are included in HTML and PDF


(pettai)
diff -r1.24 -r1.25 pkgsrc/net/knot/Makefile
diff -r1.6 -r1.7 pkgsrc/net/knot/PLIST
diff -r1.14 -r1.15 pkgsrc/net/knot/distinfo
diff -r1.2 -r1.3 pkgsrc/net/knot/files/knot.sh
diff -r1.4 -r0 pkgsrc/net/knot/patches/patch-Makefile.in
diff -r1.3 -r1.4 pkgsrc/net/knot/patches/patch-samples_Makefile.in
cvs diff -r1.24 -r1.25 pkgsrc/net/knot/Makefile (expand / switch to unified diff)

--- pkgsrc/net/knot/Makefile 2015/06/30 13:17:10 1.24
+++ pkgsrc/net/knot/Makefile 2015/10/26 19:23:08 1.25
@@ -1,44 +1,54 @@ @@ -1,44 +1,54 @@
1# $NetBSD: Makefile,v 1.24 2015/06/30 13:17:10 pettai Exp $ 1# $NetBSD: Makefile,v 1.25 2015/10/26 19:23:08 pettai Exp $
2 2
3DISTNAME= knot-1.5.3 3DISTNAME= knot-2.0.1
4CATEGORIES= net 4CATEGORIES= net
5MASTER_SITES= https://secure.nic.cz/files/knot-dns/ 5MASTER_SITES= https://secure.nic.cz/files/knot-dns/
 6EXTRACT_SUFX= .tar.xz
6 7
7MAINTAINER= pettai@NetBSD.org 8MAINTAINER= pettai@NetBSD.org
8HOMEPAGE= http://www.knot-dns.cz/ 9HOMEPAGE= http://www.knot-dns.cz/
9COMMENT= Knot (auth) DNS server 10COMMENT= Knot (auth) DNS server
10LICENSE= gnu-gpl-v3 11LICENSE= gnu-gpl-v3
11 12
12BUILD_DEFS+= VARBASE 13BUILD_DEFS+= VARBASE
13 14
14GNU_CONFIGURE= yes 15GNU_CONFIGURE= yes
15CONFIGURE_ARGS+= --prefix=${PREFIX:Q} 16CONFIGURE_ARGS+= --prefix=${PREFIX:Q}
16CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR} 17CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR}
17CONFIGURE_ARGS+= --localstatedir=${VARBASE}/knot 18CONFIGURE_ARGS+= --localstatedir=${VARBASE}/knot
18CONFIGURE_ARGS+= --with-rundir=${VARBASE}/run/knot 19CONFIGURE_ARGS+= --with-rundir=${VARBASE}/run/knot
19CONFIGURE_ARGS+= --with-storage=${VARBASE}/knot/lib 20CONFIGURE_ARGS+= --with-storage=${VARBASE}/knot/lib
 21CONFIGURE_ARGS+= --with-urcu=${BUILDLINK_PREFIX.userspace-rcu}
 22CONFIGURE_ARGS+= --with-libidn=${BUILDLINK_PREFIX.libidn}
20 23
21USE_LIBTOOL= yes 24USE_LIBTOOL= yes
22USE_TOOLS+= bison flex gmake 25USE_TOOLS+= bison flex gmake pkg-config
 26
 27PKGCONFIG_OVERRIDE= src/dnssec/libdnssec.pc.in
 28PKGCONFIG_OVERRIDE+= src/libknot.pc.in
 29PKGCONFIG_OVERRIDE+= src/zscanner/libzscanner.pc.in
 30
23RCD_SCRIPTS= knot 31RCD_SCRIPTS= knot
24 32
25EGDIR= ${PREFIX}/share/examples/knot 33EGDIR= ${PREFIX}/share/examples/knot
26KNOT_SYSCONFDIR= ${PKG_SYSCONFDIR}/knot 34KNOT_SYSCONFDIR= ${PKG_SYSCONFDIR}/knot
27 35
28SUBST_CLASSES+= paths 36SUBST_CLASSES+= paths
29SUBST_FILES.paths= ${WRKSRC}/samples/Makefile.in 37SUBST_FILES.paths= ${WRKSRC}/samples/Makefile.in
30SUBST_STAGE.paths= post-patch 38SUBST_STAGE.paths= post-patch
31SUBST_SED.paths= -e 's,@EGDIR@,${EGDIR},' 39SUBST_SED.paths= -e 's,@EGDIR@,${EGDIR},'
32 40
33CONF_FILES= ${EGDIR}/knot.sample.conf \ 41CONF_FILES= ${EGDIR}/knot.sample.conf \
34 ${KNOT_SYSCONFDIR}/knot.sample.conf 42 ${KNOT_SYSCONFDIR}/knot.sample.conf
35CONF_FILES+= ${EGDIR}/example.com.zone \ 43CONF_FILES+= ${EGDIR}/example.com.zone \
36 ${KNOT_SYSCONFDIR}/example.com.zone 44 ${KNOT_SYSCONFDIR}/example.com.zone
37 45
38INSTALLATION_DIRS= ${EGDIR} ${KNOT_SYSCONFDIR} 46INSTALLATION_DIRS= ${EGDIR} ${KNOT_SYSCONFDIR}
39OWN_DIRS+= ${VARBASE}/knot 47OWN_DIRS+= ${VARBASE}/knot
40 48
41.include "../../devel/userspace-rcu/buildlink3.mk" 49.include "../../devel/userspace-rcu/buildlink3.mk"
42.include "../../security/openssl/buildlink3.mk" 50.include "../../security/gnutls/buildlink3.mk"
 51.include "../../textproc/jansson/buildlink3.mk"
 52.include "../../devel/libidn/buildlink3.mk"
43.include "../../devel/zlib/buildlink3.mk" 53.include "../../devel/zlib/buildlink3.mk"
44.include "../../mk/bsd.pkg.mk" 54.include "../../mk/bsd.pkg.mk"
cvs diff -r1.6 -r1.7 pkgsrc/net/knot/PLIST (expand / switch to unified diff)

--- pkgsrc/net/knot/PLIST 2014/11/10 21:20:32 1.6
+++ pkgsrc/net/knot/PLIST 2015/10/26 19:23:08 1.7
@@ -1,19 +1,106 @@ @@ -1,19 +1,106 @@
1@comment $NetBSD: PLIST,v 1.6 2014/11/10 21:20:32 pettai Exp $ 1@comment $NetBSD: PLIST,v 1.7 2015/10/26 19:23:08 pettai Exp $
2bin/kdig 2bin/kdig
3bin/khost 3bin/khost
4bin/knsec3hash 4bin/knsec3hash
5bin/knsupdate 5bin/knsupdate
 6include/dnssec/binary.h
 7include/dnssec/crypto.h
 8include/dnssec/dnssec.h
 9include/dnssec/error.h
 10include/dnssec/event.h
 11include/dnssec/kasp.h
 12include/dnssec/key.h
 13include/dnssec/keyid.h
 14include/dnssec/keystore.h
 15include/dnssec/keytag.h
 16include/dnssec/list.h
 17include/dnssec/nsec.h
 18include/dnssec/random.h
 19include/dnssec/sign.h
 20include/dnssec/tsig.h
 21include/libknot/binary.h
 22include/libknot/consts.h
 23include/libknot/descriptor.h
 24include/libknot/dname.h
 25include/libknot/errcode.h
 26include/libknot/internal/array-sort.h
 27include/libknot/internal/base32hex.h
 28include/libknot/internal/base64.h
 29include/libknot/internal/binsearch.h
 30include/libknot/internal/consts.h
 31include/libknot/internal/endian.h
 32include/libknot/internal/errcode.h
 33include/libknot/internal/getline.h
 34include/libknot/internal/heap.h
 35include/libknot/internal/hhash.h
 36include/libknot/internal/lists.h
 37include/libknot/internal/macros.h
 38include/libknot/internal/mem.h
 39include/libknot/internal/mempattern.h
 40include/libknot/internal/mempool.h
 41include/libknot/internal/namedb/namedb.h
 42include/libknot/internal/namedb/namedb_lmdb.h
 43include/libknot/internal/namedb/namedb_trie.h
 44include/libknot/internal/net.h
 45include/libknot/internal/print.h
 46include/libknot/internal/sockaddr.h
 47include/libknot/internal/strlcat.h
 48include/libknot/internal/strlcpy.h
 49include/libknot/internal/tolower.h
 50include/libknot/internal/trie/hat-trie.h
 51include/libknot/internal/trie/murmurhash3.h
 52include/libknot/internal/utils.h
 53include/libknot/internal/wire_ctx.h
 54include/libknot/libknot.h
 55include/libknot/packet/compr.h
 56include/libknot/packet/pkt.h
 57include/libknot/packet/rrset-wire.h
 58include/libknot/packet/wire.h
 59include/libknot/processing/layer.h
 60include/libknot/processing/overlay.h
 61include/libknot/processing/requestor.h
 62include/libknot/rdata.h
 63include/libknot/rdataset.h
 64include/libknot/rrset-dump.h
 65include/libknot/rrset.h
 66include/libknot/rrtype/aaaa.h
 67include/libknot/rrtype/dnskey.h
 68include/libknot/rrtype/naptr.h
 69include/libknot/rrtype/nsec.h
 70include/libknot/rrtype/nsec3.h
 71include/libknot/rrtype/nsec3param.h
 72include/libknot/rrtype/opt.h
 73include/libknot/rrtype/rdname.h
 74include/libknot/rrtype/rrsig.h
 75include/libknot/rrtype/soa.h
 76include/libknot/rrtype/tsig.h
 77include/libknot/rrtype/txt.h
 78include/libknot/tsig-op.h
 79include/libknot/tsig.h
 80include/libknot/yparser/yparser.h
 81include/libknot/yparser/ypformat.h
 82include/libknot/yparser/ypscheme.h
 83include/libknot/yparser/yptrafo.h
 84include/zscanner/error.h
 85include/zscanner/scanner.h
 86lib/libdnssec.la
6lib/libknot.la 87lib/libknot.la
7lib/libzscanner.la 88lib/libzscanner.la
 89lib/pkgconfig/libdnssec.pc
 90lib/pkgconfig/libknot.pc
 91lib/pkgconfig/libzscanner.pc
 92libexec/knot1to2
8man/man1/kdig.1 93man/man1/kdig.1
9man/man1/khost.1 94man/man1/khost.1
 95man/man1/knot1to2.1
10man/man1/knsec3hash.1 96man/man1/knsec3hash.1
11man/man1/knsupdate.1 97man/man1/knsupdate.1
12man/man5/knot.conf.5 98man/man5/knot.conf.5
 99man/man8/keymgr.8
13man/man8/knotc.8 100man/man8/knotc.8
14man/man8/knotd.8 101man/man8/knotd.8
 102sbin/keymgr
15sbin/knotc 103sbin/knotc
16sbin/knotd 104sbin/knotd
17share/examples/knot/example.com.zone 105share/examples/knot/example.com.zone
18share/examples/knot/knot.sample.conf 106share/examples/knot/knot.sample.conf
19@pkgdir etc/knot 
cvs diff -r1.14 -r1.15 pkgsrc/net/knot/distinfo (expand / switch to unified diff)

--- pkgsrc/net/knot/distinfo 2014/11/10 21:20:32 1.14
+++ pkgsrc/net/knot/distinfo 2015/10/26 19:23:08 1.15
@@ -1,7 +1,7 @@ @@ -1,7 +1,7 @@
1$NetBSD: distinfo,v 1.14 2014/11/10 21:20:32 pettai Exp $ 1$NetBSD: distinfo,v 1.15 2015/10/26 19:23:08 pettai Exp $
2 2
3SHA1 (knot-1.5.3.tar.gz) = 4692c5001472443d07ac088592b349793a968706 3SHA1 (knot-2.0.1.tar.xz) = 155a9aa3e7e6f12b70ec8e079ef6c8e137b0f8cf
4RMD160 (knot-1.5.3.tar.gz) = 72442dff1c138ed0ad0300e395c524f318baa123 4RMD160 (knot-2.0.1.tar.xz) = 5fa3ed2da1fb673d329a0d5ade8a4284675c0a63
5Size (knot-1.5.3.tar.gz) = 1175445 bytes 5SHA512 (knot-2.0.1.tar.xz) = b74069a6da4eb0f456a3bd38318712f467f736af1712a14772f7e539b009c02f8e447c2fcd21f5005a2a4906466294ab6b46e7782aac3b88619063aed14cddb5
6SHA1 (patch-Makefile.in) = b24790f99d791ac184eff66db563a0a314f8370c 6Size (knot-2.0.1.tar.xz) = 958560 bytes
7SHA1 (patch-samples_Makefile.in) = 7a2cc5b1eebc7483ffcefc565d200d9a203d49ff 7SHA1 (patch-samples_Makefile.in) = be60c4bfb4ed49dbe8c55dc5d453c8733fb4fb61
cvs diff -r1.2 -r1.3 pkgsrc/net/knot/files/knot.sh (expand / switch to unified diff)

--- pkgsrc/net/knot/files/knot.sh 2015/06/30 13:17:10 1.2
+++ pkgsrc/net/knot/files/knot.sh 2015/10/26 19:23:08 1.3
@@ -1,36 +1,35 @@ @@ -1,36 +1,35 @@
1#!@RCD_SCRIPTS_SHELL@ 1#!@RCD_SCRIPTS_SHELL@
2# 2#
3# $NetBSD: knot.sh,v 1.2 2015/06/30 13:17:10 pettai Exp $ 3# $NetBSD: knot.sh,v 1.3 2015/10/26 19:23:08 pettai Exp $
4# 4#
5# PROVIDE: knot 5# PROVIDE: knot
6# REQUIRE: NETWORKING syslogd 6# REQUIRE: NETWORKING syslogd
7# BEFORE: DAEMON 7# BEFORE: DAEMON
8 8
9if [ -f /etc/rc.subr ]; then 9if [ -f /etc/rc.subr ]; then
10 . /etc/rc.subr 10 . /etc/rc.subr
11fi 11fi
12 12
13name="knot" 13name="knot"
14rcvar=${name} 14rcvar=${name}
15command="@PREFIX@/sbin/knotc" 15command="@PREFIX@/sbin/knotc"
16knotd="@PREFIX@/sbin/knotd" 16knotd="@PREFIX@/sbin/knotd"
17command_args="" 17command_args=""
18pidfile="@VARBASE@/knot/${name}.pid" 18pidfile="@VARBASE@/knot/${name}.pid"
19start_precmd="knot_precmd" 19start_precmd="knot_precmd"
20extra_commands="restart reload" 20extra_commands="reload"
21start_cmd="$knotd -d" 21start_cmd="$knotd -d"
22stop_cmd="$command stop" 22stop_cmd="$command stop"
23restart_cmd="$command restart" 
24reload_cmd="$command reload" 23reload_cmd="$command reload"
25status_cmd="$command status" 24status_cmd="$command status"
26 25
27knot_precmd() 26knot_precmd()
28{ 27{
29 if [ ! -d @VARBASE@/run/knot ]; then 28 if [ ! -d @VARBASE@/run/knot ]; then
30 @MKDIR@ @VARBASE@/run/knot 29 @MKDIR@ @VARBASE@/run/knot
31 @CHMOD@ 0750 @VARBASE@/run/knot 30 @CHMOD@ 0750 @VARBASE@/run/knot
32 @CHOWN@ root:wheel @VARBASE@/run/knot 31 @CHOWN@ root:wheel @VARBASE@/run/knot
33 fi 32 fi
34} 33}
35 34
36if [ -f /etc/rc.subr ]; then 35if [ -f /etc/rc.subr ]; then
File Deleted: pkgsrc/net/knot/patches/Attic/patch-Makefile.in
cvs diff -r1.3 -r1.4 pkgsrc/net/knot/patches/patch-samples_Makefile.in (expand / switch to unified diff)

--- pkgsrc/net/knot/patches/patch-samples_Makefile.in 2014/11/10 21:20:32 1.3
+++ pkgsrc/net/knot/patches/patch-samples_Makefile.in 2015/10/26 19:23:08 1.4
@@ -1,29 +1,25 @@ @@ -1,29 +1,25 @@
1$NetBSD: patch-samples_Makefile.in,v 1.3 2014/11/10 21:20:32 pettai Exp $ 1$NetBSD: patch-samples_Makefile.in,v 1.4 2015/10/26 19:23:08 pettai Exp $
2 2
3Fix sysconfdir + sample conf snippet 3--- samples/Makefile.in.orig 2015-10-26 16:12:16.000000000 +0000
4 
5--- samples/Makefile.in.orig 2014-09-15 14:32:42.000000000 +0000 
6+++ samples/Makefile.in 4+++ samples/Makefile.in
7@@ -252,6 +252,7 @@ sharedstatedir = @sharedstatedir@ 5@@ -264,6 +264,7 @@ sharedstatedir = @sharedstatedir@
8 srcdir = @srcdir@ 6 srcdir = @srcdir@
9 storage_dir = @storage_dir@ 7 storage_dir = @storage_dir@
10 sysconfdir = @sysconfdir@ 8 sysconfdir = @sysconfdir@
11+EGDIR = @EGDIR@ 9+EGDIR = @EGDIR@
12 systemd_CFLAGS = @systemd_CFLAGS@ 10 systemd_CFLAGS = @systemd_CFLAGS@
13 systemd_LIBS = @systemd_LIBS@ 11 systemd_LIBS = @systemd_LIBS@
14 target_alias = @target_alias@ 12 target_alias = @target_alias@
15@@ -469,10 +470,10 @@ knot.sample.conf: knot.sample.conf.in 13@@ -483,9 +484,9 @@ knot.sample.conf: knot.sample.conf.in
16 mv $@.tmp $@ 14 mv $@.tmp $@
17  15
18 install-data-local: knot.sample.conf 16 @HAVE_DAEMON_TRUE@install-data-local: knot.sample.conf
19- [ -d $(DESTDIR)/$(config_dir) ] || \ 17-@HAVE_DAEMON_TRUE@ if [ \! -f $(DESTDIR)/$(config_dir)/knot.sample.conf ]; then \
20- $(INSTALL) -d $(DESTDIR)/$(config_dir) 18-@HAVE_DAEMON_TRUE@ $(INSTALL) -d $(DESTDIR)/$(config_dir); \
21- [ -f $(DESTDIR)/$(config_dir)/knot.sample.conf ] || \ 19-@HAVE_DAEMON_TRUE@ $(INSTALL_DATA) knot.sample.conf $(srcdir)/example.com.zone $(DESTDIR)/$(config_dir); \
22- $(INSTALL_DATA) knot.sample.conf $(srcdir)/example.com.zone $(DESTDIR)/$(config_dir) 20+@HAVE_DAEMON_TRUE@ if [ \! -f $(DESTDIR)/$(EGDIR)/knot.sample.conf ]; then \
23+ [ -d $(DESTDIR)/$(EGDIR) ] || \ 21+@HAVE_DAEMON_TRUE@ $(INSTALL) -d $(DESTDIR)/$(EGDIR); \
24+ $(INSTALL) -d $(DESTDIR)/$(EGDIR) 22+@HAVE_DAEMON_TRUE@ $(INSTALL_DATA) knot.sample.conf $(srcdir)/example.com.zone $(DESTDIR)/$(EGDIR); \
25+ [ -f $(DESTDIR)/$(EGDIR)/knot.sample.conf ] || \ 23 @HAVE_DAEMON_TRUE@ fi
26+ $(INSTALL_DATA) knot.sample.conf $(srcdir)/example.com.zone $(DESTDIR)/$(EGDIR) 24 @HAVE_BASH_COMPLETIONS_TRUE@@HAVE_DAEMON_TRUE@ if [ \! -f $(DESTDIR)/$(bash_completions_dir)/keymgr ]; then \
27  25 @HAVE_BASH_COMPLETIONS_TRUE@@HAVE_DAEMON_TRUE@ $(INSTALL) -d $(DESTDIR)/$(bash_completions_dir); \
28 uninstall-local: 
29 [ -f $(DESTDIR)/$(config_dir)/knot.sample.conf ] && \