about summary refs log tree commit diff
path: root/pkgs/servers/dns/bind
AgeCommit message (Collapse)AuthorFilesLines
2018-06-10bind: only include libcap on linuxMatthew Justin Bauer1-3/+4
2018-06-10bind: compile with libcap (#41755)Nicolas Dudebout1-2/+6
Additionally: + split native and other build inputs + alphabetically order dependencies + explicitly disable libjson support (the configure script looks for it in /usr, /usr/local, and /opt/local)
2018-05-21Merge remote-tracking branch 'upstream/master' into stagingJohn Ericson1-2/+2
2018-05-20bind: 9.12.1 -> 9.12.1-P2R. RyanTM1-2/+2
Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/bind/versions. These checks were done: - built on NixOS - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/delv passed the binary check. - Warning: no invocation of /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/arpaname had a zero exit code or showed the expected version - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/named-rrchecker passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/mdig passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/ddns-confgen passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-cds passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-dsfromkey passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-importkey passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-keyfromlabel passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-keygen passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-revoke passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-settime passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-signzone passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/dnssec-verify passed the binary check. - Warning: no invocation of /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/genrandom had a zero exit code or showed the expected version - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/named passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/named-checkconf passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/named-checkzone passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/named-compilezone passed the binary check. - Warning: no invocation of /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/named-journalprint had a zero exit code or showed the expected version - Warning: no invocation of /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/nsec3hash had a zero exit code or showed the expected version - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/rndc passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/rndc-confgen passed the binary check. - /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2/bin/tsig-keygen passed the binary check. - 20 of 24 passed binary check by having a zero exit code. - 14 of 24 passed binary check by having the new version present in output. - found 9.12.1-P2 with grep in /nix/store/zxylanld5x7l9n2n24g70qj91n4kmj5x-bind-9.12.1-P2 - directory tree listing: https://gist.github.com/d95b236ef147c4c8ad6a99ca42db1acd - du listing: https://gist.github.com/f6bcea6b6bdce7df3f66bbf02768bd20
2018-04-25tree-wide: disable `doCheck` and `doInstallCheck` where it fails (the ↵Jan Malakhovski1-0/+2
trivial part)
2018-04-21Merge branch 'master' into feat/nsd/dnssecMatthew Justin Bauer3-32/+43
2018-03-17bind: 9.12.0 -> 9.12.1Ryan Mulligan1-2/+2
Semi-automatic update generated by https://github.com/ryantm/nix-update tools. These checks were done: - built on NixOS - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/delv help` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/delv -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-rrchecker -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-rrchecker --help` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-rrchecker -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-rrchecker -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-rrchecker --version` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-rrchecker --help` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/mdig -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/mdig -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/ddns-confgen -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-cds -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-dsfromkey -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-importkey -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-keyfromlabel -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-keygen -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-revoke -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-settime -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone --help` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone --version` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone -h` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-signzone --help` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify --help` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify --version` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify -h` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/dnssec-verify --help` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named -V` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-checkconf -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/named-checkzone -v` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/rndc -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/rndc -h` and found version 9.12.1 - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/rndc-confgen -h` got 0 exit code - ran `/nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1/bin/rndc-confgen -h` and found version 9.12.1 - found 9.12.1 with grep in /nix/store/9i6c9yx3p0gvhphd4ahj8pfcm0n78han-bind-9.12.1 - directory tree listing: https://gist.github.com/e9daefd05b7c96cd83a144018a3b6aaf
2018-03-01bind: Remove unnecessary environment defines.Shea Levy1-4/+0
2018-02-28bind: Fix cross-compilationShea Levy1-1/+13
2018-02-25bind: 9.11.2 -> 9.12.0Tim Steinbach3-28/+29
2018-01-22bind: perl as nativeBuildInputWill Dietz1-1/+2
2018-01-17bind: License changed to MPL 2.0adisbladis1-1/+1
2018-01-17bind: 9.11.2 -> 9.11.2-P1 (fixes CVE-2017-3145, CVE-2017-3143, CVE-2017-3141 ↵Andreas Rammhold1-2/+2
& CVE-2017-3140) For more details see [1]. [1] http://ftp.isc.org/isc/bind9/9.11.2-P1/RELEASE-NOTES-bind-9.11.2-P1.html
2017-12-21bind: explicitly disable lmdbDylan Simon1-0/+1
Autodetected by default (so should be disabled) but avoid finding a broken system version.
2017-11-17nixpkgs/bind: use python3Gregor Kleen1-3/+3
2017-11-16nixos/nsd: automatic DNSSEC using BIND toolsetGregor Kleen1-4/+7
2017-08-01pkgs: refactor needless quoting of homepage meta attribute (#27809)Silvan Mosberger1-1/+1
* pkgs: refactor needless quoting of homepage meta attribute A lot of packages are needlessly quoting the homepage meta attribute (about 1400, 22%), this commit refactors all of those instances. * pkgs: Fixing some links that were wrongfully unquoted in the previous commit * Fixed some instances
2017-08-01bind: 9.11.1-P2 -> 9.11.2 for multiple CVEsFranz Pletz1-2/+2
See: https://kb.isc.org/article/AA-01522 Fixes: CVE-2017-3140 CVE-2017-3141 CVE-2017-3142 CVE-2017-3143
2017-06-30bind: 9.10.5-P2 -> 9.11.1-P2Tim Steinbach1-2/+2
2017-06-29bind: update to version 9.10.5-P2 to fix CVE-2017-3142 and CVE-2017-3143Peter Simons1-2/+2
2017-06-15bind: 9.10.5 -> 9.10.5-P1 for CVE-2017-3140Franz Pletz1-2/+2
2017-05-20bind: 9.10.4-P6 -> 9.10.5Robin Gloster1-2/+2
2017-05-09bind: disable seccomp by defaultFranz Pletz1-3/+5
Fixes #25645 & #23431.
2017-02-19dnsutils: +sigchase support for digNikolay Amiantov1-0/+2
Fixes #10728, closes #22989. The dnsutils output got ~60kiB bigger, and I see no extra runtime deps.
2017-02-09bind: 9.10.4-P5 -> 9.10.4-P6 for CVE-2017-3135Franz Pletz1-2/+2
See https://kb.isc.org/article/AA-01453. cc #22549
2017-01-12bind: update to 9.10.4-P5 (CVE-2016-9131, CVE-2016-9147, CVE-2016-9444, ↵Peter Simons1-2/+2
CVE-2016-9778)
2017-01-07bind: fix collision of binaries in outputsFranz Pletz1-4/+3
Using outputsToInstall the intended behaviour of including host and dnsutils when bind is installed can be implemented instead of using symlinks to fix installing all outputs individually with nix-env. Fixes #19761.
2016-12-08bind: fixup more openssl.dev referencesVladimír Čunát1-2/+2
2016-11-01bind: update to 9.10.4-P4 to fix CVE-2016-8864Peter Simons1-2/+2
2016-10-16bind: Disable seccomp on non-x86Tuomas Tynkkynen1-3/+2
The list of permitted syscalls in the seccomp sandbox is only defined for x86. It fails to build otherwise: ```` In file included from /tmp/nix-build-bind-9.10.4-P3.drv-0/bind-9.10.4-P3/lib/isc/include/isc/magic.h:23:0, from /tmp/nix-build-bind-9.10.4-P3.drv-0/bind-9.10.4-P3/lib/isc/include/isc/app.h:89, from ./main.c:26: ./main.c: In function 'setup_seccomp': ./main.c:848:17: error: 'scmp_syscalls' undeclared (first use in this function) INSIST((sizeof(scmp_syscalls) / sizeof(int)) == ````
2016-10-08bind: split out dnsutils & host binaries (#18903)Franz Pletz1-1/+10
These tools are commonly used but don't require the other bind binaries. Bind's libs are used, so they've also been split into an extra output. The old version of host isn't maintained anymore and was removed From Debian back in 2009: https://packages.qa.debian.org/h/host.html
2016-09-28bind: enable seccomp on linuxFranz Pletz1-2/+5
2016-09-27bind: cosmetic fix for Emacs' syntax highlightingPeter Simons1-1/+1
2016-09-27bind: update to version 9.10.4-P3 to fix CVE-2016-2776Peter Simons1-2/+2
2016-09-24bind: 9.10.4 -> 9.10.4-P2 (#18880)Tim Steinbach1-2/+2
2016-08-30treewide: Fix dev references to libxml2Tuomas Tynkkynen1-1/+1
2016-08-29treewide: Shuffle outputsTuomas Tynkkynen1-1/+1
Make either 'bin' or 'out' the first output.
2016-05-22Merge: make dev output references explicitVladimír Čunát1-1/+1
This is a rebase of most commits from #14766, resolving conflicts and a few other evaluation problems.
2016-05-19treewide: Make explicit that 'dev' output of openssl is usedTuomas Tynkkynen1-1/+1
2016-05-18bind: Fix references to openssl in *.la filesTuomas Tynkkynen1-0/+4
Avoids reference to the OpenSSL development headers.
2016-05-16Bring my stdenv.lib.maintainers user name in line with my github nick.Peter Simons1-1/+1
2016-05-14bind: Split into multiple outputsTuomas Tynkkynen2-1/+48
A patch is needed to make bind not print its configure flags on 'named -V'.
2016-05-13bind: Attempt to fix Darwin OpenSSL linkingTuomas Tynkkynen2-1/+28
Issue #15279 reports: ```` Checking for OpenSSL library... using OpenSSL from /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/lib and /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/include checking whether linking with OpenSSL works... no configure: error: Could not run test program using OpenSSL from /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/lib and /nix/store/c6kijfc5py2805lmqczvmcws5cm9jg1l-openssl-1.0.2g-dev/include. Please check the argument to --with-openssl and your shared library configuration (e.g., LD_LIBRARY_PATH). builder for ‘/nix/store/54nni99j4ycwws6zfjwcvv8vxsdk895i-bind-9.10.4.drv’ failed with exit code 1 ````
2016-05-03bind: LibreSSL compatibility added upstreamAlexander Ried2-103/+1
2016-05-03bind: 9.10.3-P4 -> 9.10.4Alexander Ried1-2/+2
2016-03-21bind: 9.10.3 -> 9.10.3-P4 (security)Franz Pletz1-2/+2
Fixes: * CVE-2016-1285: https://kb.isc.org/article/AA-01352/ * CVE-2016-1286: https://kb.isc.org/article/AA-01353/
2015-12-25bind: Fix patching Makefile.inFranz Pletz2-5/+13
There is no postPatchPhase.
2015-12-23bind: add patch to build with libressl 2.3Robin Gloster2-1/+105
2015-09-17bind: 9.10.2-P4 -> 9.10.3William A. Kennington III1-2/+2
2015-09-02bind: 9.10.2-P3 -> 9.10.2-P4William A. Kennington III1-2/+2
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-10-21 08:56:59 +0000