reinit the tree, so we can have metadata

6 files changed, 231 insertions, 0 deletions

diff --git a/net-libs/adns/Manifest b/net-libs/adns/Manifest
new file mode 100644
index 000000000000..bdc45c900f37
--- /dev/null
+++ b/net-libs/adns/Manifest
@@ -0,0 +1,8 @@
+AUX README.security 567 SHA256 ec1bf8c850d6245a69e5308bc71ec4c4d5dbeea7e7a1346bd5b810afd0a5d244 SHA512 5a1538d4d93abc5e465798c43a768efd62d913cd040cdd0d25be5a9232ec30742506a414b93ea8db0f5f9edee2cd5de92d792b85b06197aed6d0f06b97740aeb WHIRLPOOL f2470c898464b4eb775ef4a257f12a521c5c3b6847880a4c35e530741dc19152c01b2f6493d7e36220b13c9a42917e3a4ddca25a4833c69d52ef2771c86f171f
+AUX adns-1.4-cnamechain.patch 5342 SHA256 e4b47f3ce0e36f6b023416a62a9329c2bc322e4c2fc068524772cd174e54b12c SHA512 d625261f570951a42c1b7d61c3f84f9f570ac74855e20afba81ebd593788aa5789c56a99fdc6e81487d7388596b2c197381d0bfaaccd1a6ccf5069cafe8eb7c5 WHIRLPOOL 6339252d3bd1754bc05ad3b85e599a0327823a2a398485cd1b3ff68438552c183f22c6f679d01e635b892a7c8e9374375cab8de851b00421a06ec39bbd3e51d9
+DIST adns-1.4.tar.gz 252668 SHA256 717b92a39117a5d8b04ea7c652c630659c6eecb35211129a8cee95e6524ca9fe SHA512 9c067def9467578edbbaa47d5e9bc822dabc96bb66f58d032f93b842aaf3746783102ecda9303b24c6437db34d1c4819d2a0e13d08c23c9c7be27c8180604775 WHIRLPOOL dd8d0be7de16567df9426229a4fc5b91021ca16de25e8f269828bc77f641b200c1adfc0f11e44c007431e4d57e311a3785a39477c8daba9e8ddd62d49c540aa3
+EBUILD adns-1.4-r2.ebuild 1092 SHA256 589896440c5c4e2427b9ad9766584e195cb33885511ca647edf60545779f5957 SHA512 bffe85e2a15cfb68a1b409ca25a98a01345168ae55f7aebce6da4622f58d772612db1a1594626d18e0effc433311cf990e88687a3a4ec07cc99afe42f2c98898 WHIRLPOOL c2bc3845c6a39803f9b18b822ca0393a30d8b4c7cb246e1655a9cbee4643247d7eaa2052c1a0f3845b384cee8e7e54ad46d928cb3ba65897aaf323399463ac40
+EBUILD adns-1.4.ebuild 970 SHA256 6419173949fd15dd511c62a85dfa5e8e42aeb2a67f7cbad4231ac5eb4c74ff7c SHA512 3ea6c19882ef37eeeeae897444e2c579ad7dcf9622c23f8020d8dc7e8acb64a6105a06096b4a11770a489ac1753b6320ff5c3d402992798dc8aa6915ed808018 WHIRLPOOL 25d3e9940964a9eab2e11977ed666b53dacf0c7d627a410ddf903d1423769df3af86e01cf663cd5dbdb6932f693c54bc7461b2f7903821de8bfbd6adade6c7af
+MISC ChangeLog 2617 SHA256 701cb3b80fa1fbc2a8fd68ac215656f48ddf7e06d1f15f16c877c863daa884d3 SHA512 92544f1f8577b0afb678d588b1c01d4fd3ca6d894d477ac05dbacd192e73ba20aca9a2b64e11e7dcc0dc46786cdd89fc4238eab11870811cda55ef3968e65a09 WHIRLPOOL 972580d2763d85dad63f76fc41197e89e8b7f7bc819ac046e52f6b33484840a5e38127d581e4e844a12572a735d7e1714929f3b7ee7c638dc315bb1c3031ffa7
+MISC ChangeLog-2015 4583 SHA256 032adc9c876bf38d20f93026a590fc255a2397c61508c83b5be8950767d4ea82 SHA512 7f737b38dbea8fce3f8c2a3114c925452b3ea28b5b6d2468c4f2d07bb93209915543fc0aea13d50e8d9064a3ea4d310e9d27a9cb3279fc00f1c8700df569cb4e WHIRLPOOL 433b8b1a0d7d9a93b892c91175f4c52dd8c77c2b0e5f4fdada4c23fcd23002c4c4558d5a2f488fe2aa2942b0790a1ffd2d411669089738c9d228ce91336e7b7d
+MISC metadata.xml 166 SHA256 2caff447f5bd2701d8456ada5cc633c41ef4373fa4bfeabeb73599d40bcc941b SHA512 a56648c974a1d14dd4c18237532773c72057a13ab90c58b5da04f185e3c12a8bd8d5c21fb06053507f31766291a82dc7d87b34cd65fd94cfe2af7295c813ef84 WHIRLPOOL 1ff70497eca6531f0e0614c72a19f4b8e5ff486a58d369f4f0b36308d1d6b01168f9da887740e3b9f536236be251d3fe05f904d27a9233a7cf613416ba882968
diff --git a/net-libs/adns/adns-1.4-r2.ebuild b/net-libs/adns/adns-1.4-r2.ebuild
new file mode 100644
index 000000000000..36e6d678aa28
--- /dev/null
+++ b/net-libs/adns/adns-1.4-r2.ebuild
@@ -0,0 +1,42 @@
+# Copyright 1999-2017 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=6
+
+inherit multilib toolchain-funcs
+
+DESCRIPTION="Advanced, easy to use, asynchronous-capable DNS client library and utilities"
+HOMEPAGE="http://www.chiark.greenend.org.uk/~ian/adns/"
+SRC_URI="ftp://ftp.chiark.greenend.org.uk/users/ian/adns/${P}.tar.gz"
+
+LICENSE="GPL-2+ LGPL-2+"
+SLOT="0"
+KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~amd64-fbsd ~x86-fbsd"
+
+src_prepare() {
+	eapply "${FILESDIR}"/${P}-cnamechain.patch
+	# remove bogus test wrt bug #295072
+	rm "${S}"/regress/case-cnametocname.sys || die
+	eapply_user
+}
+
+src_configure() {
+	CC=$(tc-getCC) econf
+}
+
+src_compile() {
+	emake AR=$(tc-getAR) RANLIB=$(tc-getRANLIB)
+}
+
+src_install () {
+	dodir /usr/{include,bin,$(get_libdir)}
+	emake prefix="${ED}"/usr libdir="${ED}"/usr/$(get_libdir) install
+	dodoc README TODO changelog "${FILESDIR}"/README.security
+	docinto html
+	dodoc README.html
+	MY_POSTINST_MSG=$(<"${FILESDIR}"/README.security)
+}
+
+pkg_postinst() {
+	ewarn "${MY_POSTINST_MSG}"
+}
diff --git a/net-libs/adns/adns-1.4.ebuild b/net-libs/adns/adns-1.4.ebuild
new file mode 100644
index 000000000000..6fcb37315725
--- /dev/null
+++ b/net-libs/adns/adns-1.4.ebuild
@@ -0,0 +1,33 @@
+# Copyright 1999-2017 Gentoo Foundation
+# Distributed under the terms of the GNU General Public License v2
+
+inherit eutils multilib toolchain-funcs
+
+DESCRIPTION="Advanced, easy to use, asynchronous-capable DNS client library and utilities"
+HOMEPAGE="http://www.chiark.greenend.org.uk/~ian/adns/"
+SRC_URI="ftp://ftp.chiark.greenend.org.uk/users/ian/adns/${P}.tar.gz"
+
+LICENSE="GPL-2+ LGPL-2+"
+SLOT="0"
+KEYWORDS="alpha amd64 arm hppa ia64 ~mips ppc ppc64 s390 sh sparc x86 ~x86-fbsd"
+IUSE=""
+
+DEPEND=""
+RDEPEND=""
+
+src_compile() {
+	CC=$(tc-getCC) econf || die "econf failed"
+	emake AR=$(tc-getAR) RANLIB=$(tc-getRANLIB) || die "emake failed"
+}
+
+src_install () {
+	dodir /usr/{include,bin,$(get_libdir)}
+	emake prefix="${D}"/usr libdir="${D}"/usr/$(get_libdir) install || die "emake install failed"
+	dodoc README TODO changelog "${FILESDIR}"/README.security
+	dohtml *.html
+	MY_POSTINST_MSG=$(<"${FILESDIR}"/README.security)
+}
+
+pkg_postinst() {
+	ewarn "${MY_POSTINST_MSG}"
+}
diff --git a/net-libs/adns/files/README.security b/net-libs/adns/files/README.security
new file mode 100644
index 000000000000..c09f544f3f99
--- /dev/null
+++ b/net-libs/adns/files/README.security
@@ -0,0 +1,11 @@
+SECURITY AND PERFORMANCE - AN IMPORTANT NOTE
+
+adns is not a `full-service resolver': it does no caching of responses
+at all, and has no defence against bad nameservers or fake packets
+which appear to come from your real nameservers.  It relies on the
+full-service resolvers listed in resolv.conf to handle these tasks.
+
+For secure and reasonable operation you MUST run a full-service
+nameserver on the same system as your adns applications, or on the
+same local, fully trusted network.  You MUST only list such
+nameservers in the adns configuration (eg resolv.conf).
diff --git a/net-libs/adns/files/adns-1.4-cnamechain.patch b/net-libs/adns/files/adns-1.4-cnamechain.patch
new file mode 100644
index 000000000000..9edf69461c01
--- /dev/null
+++ b/net-libs/adns/files/adns-1.4-cnamechain.patch
@@ -0,0 +1,132 @@
+[ADNS] Re: CNAME chains 
+Brad Spencer spencer at infointeractive.com 
+Mon, 28 Aug 2006 14:43:00 -0300 
+
+Previous message: CNAME chains 
+Next message: CNAME chains option 
+Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] 
+--pf9I7BMVVzbSWLtt
+Content-Type: text/plain; charset=us-ascii
+Content-Disposition: inline
+
+On Fri, Aug 25, 2006 at 11:36:04AM -0700, William Ahern wrote:
+> On Fri, Aug 25, 2006 at 09:39:01AM +0100, peter burden wrote:
+> > Hello,
+> >    Is there any way to make ADNS follow CNAME chains ?
+> > 
+> >    I have set the adns_qf_cname_loose query flag and it seems OK for a 
+> > single
+> >    CNAME - e.g. (output from 'dig')
+
+I posted a small patch back in 2003 that made changes to adns so that
+it would follow CNAME chains.  See
+
+http://www.chiark.greenend.org.uk/pipermail/adns-discuss/2003/001072.html
+
+The patch included in that post is against an old adns version, so I
+have attached my latest version of the patch to this message.  (I have
+not tested that the attached patch applied cleanly to the current adns
+source, but it may be slightly more in sync with the current version.)
+
+> CNAME chains are technically not allowed. Such chains are violations of the
+> specifications. Also, I believe MX host lookups returning CNAMEs (i.e. MX
+> yahoo.com -> A mail.yahoo.com -> CNAME foo) is also illegal.
+
+I have also been told that CNAME chains are illegal, but I can not
+find any actual text that says that a resolver should fail when it
+encounters them.  In fact, RFC 1034 Section 3.6.2 says:
+
+  Domain names in RRs which point at another name should always point at
+  the primary name and not the alias.  This avoids extra indirections in
+  accessing information.  For example, the address to name RR for the
+  above host should be:
+
+     52.0.0.10.IN-ADDR.ARPA  IN      PTR     C.ISI.EDU
+
+  rather than pointing at USC-ISIC.ARPA.
+
+The above implies that CNAME chains are illegal, IMO.  But then, the
+next sentence is:
+
+  Of course, by the robustness principle, domain software should not
+  fail when presented with CNAME chains or loops; CNAME chains
+  should be followed and CNAME loops signalled as an error.
+
+This advice, coupled with the fact that CNAME chains exist in the
+wild, triggered me to create the patch in the first place.  My patch
+doesn't detect loops, but instead simply won't follow chains longer
+than a certain (hard-coded) size.
+
+Hope this helps!
+
+-- 
+------------------------------------------------------------------
+Brad Spencer - spencer@infointeractive.com - "It's quite nice..."
+Systems Architect | InfoInterActive Corp. | A Canadian AOL Company
+
+--pf9I7BMVVzbSWLtt
+Content-Type: text/plain; charset=us-ascii
+Content-Disposition: attachment; filename="cname_chains.diff"
+
+Index: adns-1.0/src/internal.h
+===================================================================
+RCS file: /iia/cvsroot/3rdParty/gnu/adns/adns-1.0/src/internal.h,v
+retrieving revision 1.3
+retrieving revision 1.4
+diff -u -p -r1.3 -r1.4
+--- adns-1.0/src/internal.h	2 Oct 2003 17:01:46 -0000	1.3
++++ adns-1.0/src/internal.h	2 Oct 2003 17:14:29 -0000	1.4
+@@ -206,6 +206,9 @@ struct adns__query {
+   int cname_dglen, cname_begin;
+   /* If non-0, has been allocated using . */
+ 
++  int cname_alias_hops_left;
++  /* The number of cname alias hops we will allow */
++
+   vbuf search_vb;
+   int search_origlen, search_pos, search_doneabs;
+   /* Used by the searching algorithm.  The query domain in textual form
+Index: adns-1.0/src/query.c
+===================================================================
+RCS file: /iia/cvsroot/3rdParty/gnu/adns/adns-1.0/src/query.c,v
+retrieving revision 1.3
+retrieving revision 1.4
+diff -u -p -r1.3 -r1.4
+--- adns-1.0/src/query.c	2 Oct 2003 17:01:47 -0000	1.3
++++ adns-1.0/src/query.c	2 Oct 2003 17:14:29 -0000	1.4
+@@ -63,6 +63,8 @@ static adns_query query_alloc(adns_state
+ 
+   qu->cname_dgram= 0;
+   qu->cname_dglen= qu->cname_begin= 0;
++  /* Allow CNAME chains up to some sane limit */
++  qu->cname_alias_hops_left = 10;
+ 
+   adns__vbuf_init(&qu->search_vb);
+   qu->search_origlen= qu->search_pos= qu->search_doneabs= 0;
+Index: adns-1.0/src/reply.c
+===================================================================
+RCS file: /iia/cvsroot/3rdParty/gnu/adns/adns-1.0/src/reply.c,v
+retrieving revision 1.3
+retrieving revision 1.4
+diff -u -p -r1.3 -r1.4
+--- adns-1.0/src/reply.c	2 Oct 2003 17:01:47 -0000	1.3
++++ adns-1.0/src/reply.c	2 Oct 2003 17:14:30 -0000	1.4
+@@ -191,12 +191,13 @@ void adns__procdgram(adns_state ads, con
+       if (qu->flags & adns_qf_cname_forbid) {
+ 	adns__query_fail(qu,adns_s_prohibitedcname);
+ 	return;
+-      } else if (qu->cname_dgram) { /* Ignore second and subsequent CNAME(s) */
++      } else if (qu->cname_dgram && --(qu->cname_alias_hops_left) <= 0) { /* Don't follow "too long" CNAME chains */
+ 	adns__debug(ads,serv,qu,"allegedly canonical name %s"
+-		    " is actually alias for %s", qu->answer->cname,
++		    " is actually alias for %s and aliases too deep",
++                    qu->answer->cname,
+ 		    adns__diag_domain(ads,serv,qu, &qu->vb,
+ 				      dgram,dglen,rdstart));
+-	adns__query_fail(qu,adns_s_prohibitedcname);
++	adns__query_fail(qu,adns_s_norecurse);
+ 	return;
+       } else if (wantedrrs) { /* Ignore CNAME(s) after RR(s). */
+ 	adns__debug(ads,serv,qu,"ignoring CNAME (to %s) coexisting with RR",
+
+--pf9I7BMVVzbSWLtt--
diff --git a/net-libs/adns/metadata.xml b/net-libs/adns/metadata.xml
new file mode 100644
index 000000000000..6f49eba8f496
--- /dev/null
+++ b/net-libs/adns/metadata.xml
@@ -0,0 +1,5 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+<!-- maintainer-needed -->
+</pkgmetadata>