From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-vs1-f65.google.com (mail-vs1-f65.google.com [209.85.217.65]) by mx.groups.io with SMTP id smtpd.web11.71372.1600116542613338927 for ; Mon, 14 Sep 2020 13:49:02 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20161025 header.b=XjQsOt+s; spf=pass (domain: gmail.com, ip: 209.85.217.65, mailfrom: andrey.z@gmail.com) Received: by mail-vs1-f65.google.com with SMTP id e2so670768vsr.7 for ; Mon, 14 Sep 2020 13:49:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=an9b5jmZduDI9hUBQKHGoIHPr1Pi6UCXfaxG6xDfWcw=; b=XjQsOt+sqHwyC3HP48GKMwDwQUplitTQ7x5NnijZP+ocv7kLuh/qyQIbtcrVJF9l7s KenOOsAX2EC/izGtS9hSk1ckjYRJ6USWG6yQaT6j4nsehe9LKwMPnaeGrgxB9aGhl1PR VRjiTh+FpDvjFanrOtiX28+H4MZIIJvFX3Z/0Kvroox0m73ByXyATxRyyWxr5nwXRIjS rVfhOnMgSybiYorIS7QpWRXFz5pzXWzVsY8W+SrWgr3q8dBbFWaJ5HaDBjOh5Pi+Lnwy DoVUranmhOQ13IzQPuMAzEsvMwMob0bMgYFSH60pDUjnWLU98qCjj98QPaIw/8rQwGAD zoHg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=an9b5jmZduDI9hUBQKHGoIHPr1Pi6UCXfaxG6xDfWcw=; b=qHoLBuYrqa788asu9m2bHpMXyBKi/wE9QKppmroOKBtIW7GbfmmFeeUNXMjpZQ0gzT kfvJHyrssnVBspbALtTnGMPLnP6ZpjYaD62AkiekzO7CUCb4uEmz5CWo3UvTR/ycQN+j bbfd+RfAd+jjpU+Yko96hUvoBEUTjx4V1pofsSPAXFB9M23+MLFq0rwiaK3KS5GmLcX9 JTjr5pz/wRerS51jAQQm3xWhniq94BsO1Z38UKRwAb9iUY2U4CA+AHGzLDGaSzv67EZz e23MP1iTt5ckXv4NJmzbNT4q8YK5gQjG021lYffFWaXBERubeo9lP6KDe+8LoGUYiQOg Z8Pw== X-Gm-Message-State: AOAM532Jj8uMov6mwz8wq71nS4abVbtyuTr5pq2gCVj8CTOAWcZDOiEK c6xhCF3EhPPZRt+Vhkea0+U97IbewYgXIYgxgjg= X-Google-Smtp-Source: ABdhPJxZ+JGxz2lEd0L6ITP7c602RrGJPf0S6I1fXqheGKI/GlQaVoPFacB4kiUx9wvJLP8AGb8epipIc7t7TeYs9Ac= X-Received: by 2002:a05:6102:2132:: with SMTP id f18mr9125489vsg.0.1600116541016; Mon, 14 Sep 2020 13:49:01 -0700 (PDT) MIME-Version: 1.0 References: <20200901152236.9377-1-akuster808@gmail.com> <20200901152236.9377-7-akuster808@gmail.com> <16e181db-60f0-c56d-e327-1f09125682f5@gmail.com> In-Reply-To: <16e181db-60f0-c56d-e327-1f09125682f5@gmail.com> From: "Andrey Zhizhikin" Date: Mon, 14 Sep 2020 22:48:49 +0200 Message-ID: Subject: Re: [OE-core] [PATCH 7/8] bind: Add 9.16.x To: Khem Raj Cc: akuster808 , OE Core mailing list Content-Type: text/plain; charset="UTF-8" On Mon, Sep 14, 2020 at 9:04 PM Khem Raj wrote: > > > > On 9/14/20 10:55 AM, Andrey Zhizhikin wrote: > > Gentle ping here regarding this issue. > > > > Is thre anyone else experiencing this with IPK packages? > > Alright thanks for being persist it has paid off :) I have taken a look > at it and sent a fix to ml Thanks a lot! :) Actually, it was such an obvious thing that I managed to overlook - it didn't cross my eye that update-alternative inheritance was missing in the first place! :) The mystery that still remains however: why did it work for RPM package types? Is there a check that is missing somewhere, or update-alternatives are inherited implicitly? I guess if not because of the fact that it did work out for RPM in the first place - those kinds of obvious failures could be avoided at the very start. > > > > > > On Thu, Sep 10, 2020 at 9:12 AM Andrey Zhizhikin wrote: > >> > >> On Thu, Sep 10, 2020 at 1:53 AM Khem Raj wrote: > >>> > >>> > >>> > >>> On 9/7/20 2:17 PM, Andrey Zhizhikin wrote: > >>>> On Mon, Sep 7, 2020 at 5:28 PM akuster808 wrote: > >>>>> > >>>>> > >>>>> > >>>>> On 9/4/20 1:39 AM, Andrey Zhizhikin wrote: > >>>>>> Hello Armin, > >>>>>> > >>>>>> On Tue, Sep 1, 2020 at 5:23 PM akuster wrote: > >>>>>>> Removed obsolete packageconfig options > >>>>>>> > >>>>>>> License change to MPL-2.0 > >>>>>>> https://gitlab.isc.org/isc-projects/bind9/blob/master/LICENSE > >>>>>>> > >>>>>>> Refreshed: > >>>>>>> bind-ensure-searching-for-json-headers-searches-sysr.patch > >>>>>>> 0001-named-lwresd-V-and-start-log-hide-build-options.patch > >>>>>>> bind-ensure-searching-for-json-headers-searches-sysr.patch > >>>>>>> > >>>>>>> Drop obsolete patch: 0001-configure.in-remove-useless-L-use_openssl-lib.patch > >>>>>>> > >>>>>>> Signed-off-by: Armin Kuster > >>>>>>> --- > >>>>>>> ...1-avoid-start-failure-with-bind-user.patch | 27 ++ > >>>>>>> ...d-V-and-start-log-hide-build-options.patch | 35 ++ > >>>>>>> ...ching-for-json-headers-searches-sysr.patch | 47 +++ > >>>>>>> .../bind/bind-9.16.5/bind9 | 2 + > >>>>>>> .../bind/bind-9.16.5/conf.patch | 330 ++++++++++++++++++ > >>>>>>> .../bind/bind-9.16.5/generate-rndc-key.sh | 8 + > >>>>>>> ...t.d-add-support-for-read-only-rootfs.patch | 65 ++++ > >>>>>>> .../make-etc-initd-bind-stop-work.patch | 42 +++ > >>>>>>> .../bind/bind-9.16.5/named.service | 22 ++ > >>>>>>> meta/recipes-connectivity/bind/bind_9.16.5.bb | 125 +++++++ > >>>>>>> 10 files changed, 703 insertions(+) > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/0001-avoid-start-failure-with-bind-user.patch > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/0001-named-lwresd-V-and-start-log-hide-build-options.patch > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/bind-ensure-searching-for-json-headers-searches-sysr.patch > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/bind9 > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/conf.patch > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/generate-rndc-key.sh > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/init.d-add-support-for-read-only-rootfs.patch > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/make-etc-initd-bind-stop-work.patch > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind-9.16.5/named.service > >>>>>>> create mode 100644 meta/recipes-connectivity/bind/bind_9.16.5.bb > >>>>>>> > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/0001-avoid-start-failure-with-bind-user.patch b/meta/recipes-connectivity/bind/bind-9.16.5/0001-avoid-start-failure-with-bind-user.patch > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..8db96ec049c > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/0001-avoid-start-failure-with-bind-user.patch > >>>>>>> @@ -0,0 +1,27 @@ > >>>>>>> +From 31dde3562f287429eea94b77250d184818b49063 Mon Sep 17 00:00:00 2001 > >>>>>>> +From: Chen Qi > >>>>>>> +Date: Mon, 15 Oct 2018 16:55:09 +0800 > >>>>>>> +Subject: [PATCH] avoid start failure with bind user > >>>>>>> + > >>>>>>> +Upstream-Status: Pending > >>>>>>> + > >>>>>>> +Signed-off-by: Chen Qi > >>>>>>> +--- > >>>>>>> + init.d | 1 + > >>>>>>> + 1 file changed, 1 insertion(+) > >>>>>>> + > >>>>>>> +diff --git a/init.d b/init.d > >>>>>>> +index b2eec60..6e03936 100644 > >>>>>>> +--- a/init.d > >>>>>>> ++++ b/init.d > >>>>>>> +@@ -57,6 +57,7 @@ case "$1" in > >>>>>>> + modprobe capability >/dev/null 2>&1 || true > >>>>>>> + if [ ! -f /etc/bind/rndc.key ]; then > >>>>>>> + /usr/sbin/rndc-confgen -a -b 512 -r /dev/urandom > >>>>>>> ++ chown root:bind /etc/bind/rndc.key >/dev/null 2>&1 || true > >>>>>>> + chmod 0640 /etc/bind/rndc.key > >>>>>>> + fi > >>>>>>> + if [ -f /var/run/named/named.pid ]; then > >>>>>>> +-- > >>>>>>> +2.7.4 > >>>>>>> + > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/0001-named-lwresd-V-and-start-log-hide-build-options.patch b/meta/recipes-connectivity/bind/bind-9.16.5/0001-named-lwresd-V-and-start-log-hide-build-options.patch > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..5bcc16c9b2b > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/0001-named-lwresd-V-and-start-log-hide-build-options.patch > >>>>>>> @@ -0,0 +1,35 @@ > >>>>>>> +From a3af4a405baf5ff582e82aaba392dd9667d94bdc Mon Sep 17 00:00:00 2001 > >>>>>>> +From: Hongxu Jia > >>>>>>> +Date: Mon, 27 Aug 2018 21:24:20 +0800 > >>>>>>> +Subject: [PATCH] `named/lwresd -V' and start log hide build options > >>>>>>> + > >>>>>>> +The build options expose build path directories, so hide them. > >>>>>>> +[snip] > >>>>>>> +$ named -V > >>>>>>> +|built by make with *** (options are hidden) > >>>>>>> +[snip] > >>>>>>> + > >>>>>>> +Upstream-Status: Inappropriate [oe-core specific] > >>>>>>> + > >>>>>>> +Signed-off-by: Hongxu Jia > >>>>>>> + > >>>>>>> +Refreshed for 9.16.0 > >>>>>>> +Signed-off-by: Armin Kuster > >>>>>>> + > >>>>>>> +--- > >>>>>>> + bin/named/include/named/globals.h | 2 +- > >>>>>>> + 1 file changed, 1 insertion(+), 1 deletion(-) > >>>>>>> + > >>>>>>> +Index: bind-9.16.0/bin/named/include/named/globals.h > >>>>>>> +=================================================================== > >>>>>>> +--- bind-9.16.0.orig/bin/named/include/named/globals.h > >>>>>>> ++++ bind-9.16.0/bin/named/include/named/globals.h > >>>>>>> +@@ -69,7 +69,7 @@ EXTERN const char *named_g_version I > >>>>>>> + EXTERN const char *named_g_product INIT(PRODUCT); > >>>>>>> + EXTERN const char *named_g_description INIT(DESCRIPTION); > >>>>>>> + EXTERN const char *named_g_srcid INIT(SRCID); > >>>>>>> +-EXTERN const char *named_g_configargs INIT(CONFIGARGS); > >>>>>>> ++EXTERN const char *named_g_configargs INIT("*** (options are hidden)"); > >>>>>>> + EXTERN const char *named_g_builder INIT(BUILDER); > >>>>>>> + EXTERN in_port_t named_g_port INIT(0); > >>>>>>> + EXTERN isc_dscp_t named_g_dscp INIT(-1); > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/bind-ensure-searching-for-json-headers-searches-sysr.patch b/meta/recipes-connectivity/bind/bind-9.16.5/bind-ensure-searching-for-json-headers-searches-sysr.patch > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..f9cdc7ca4df > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/bind-ensure-searching-for-json-headers-searches-sysr.patch > >>>>>>> @@ -0,0 +1,47 @@ > >>>>>>> +From edda20fb5a6e88548f85e39d34d6c074306e15bc Mon Sep 17 00:00:00 2001 > >>>>>>> +From: Paul Gortmaker > >>>>>>> +Date: Tue, 9 Jun 2015 11:22:00 -0400 > >>>>>>> +Subject: [PATCH] bind: ensure searching for json headers searches sysroot > >>>>>>> + > >>>>>>> +Bind can fail configure by detecting headers w/o libs[1], or > >>>>>>> +it can fail the host contamination check as per below: > >>>>>>> + > >>>>>>> +ERROR: This autoconf log indicates errors, it looked at host include and/or library paths while determining system capabilities. > >>>>>>> +Rerun configure task after fixing this. The path was 'build/tmp/work/core2-64-poky-linux/bind/9.10.2-r1/build' > >>>>>>> +ERROR: Function failed: do_qa_configure > >>>>>>> +ERROR: Logfile of failure stored in: build/tmp/work/core2-64-poky-linux/bind/9.10.2-r1/temp/log.do_configure.5242 > >>>>>>> +ERROR: Task 5 (meta/recipes-connectivity/bind/bind_9.10.2.bb, do_configure) failed with exit code '1' > >>>>>>> +NOTE: Tasks Summary: Attempted 773 tasks of which 768 didn't need to be rerun and 1 failed. > >>>>>>> +No currently running tasks (773 of 781) > >>>>>>> + > >>>>>>> +Summary: 1 task failed: > >>>>>>> + /meta/recipes-connectivity/bind/bind_9.10.2.bb, do_configure > >>>>>>> + > >>>>>>> +One way to fix it would be to unconditionally disable json in bind > >>>>>>> +configure[2] but here we fix it by using the path to where we would > >>>>>>> +put the header if we had json in the sysroot, in case someone wants > >>>>>>> +to make use of the combination some day. > >>>>>>> + > >>>>>>> +[1] https://trac.macports.org/ticket/45305 > >>>>>>> +[2] https://trac.macports.org/changeset/126406 > >>>>>>> + > >>>>>>> +Upstream-Status: Inappropriate [OE Specific] > >>>>>>> +Signed-off-by: Paul Gortmaker > >>>>>>> + > >>>>>>> +--- > >>>>>>> + configure.ac | 2 +- > >>>>>>> + 1 file changed, 1 insertion(+), 1 deletion(-) > >>>>>>> + > >>>>>>> +Index: bind-9.16.4/configure.ac > >>>>>>> +=================================================================== > >>>>>>> +--- bind-9.16.4.orig/configure.ac > >>>>>>> ++++ bind-9.16.4/configure.ac > >>>>>>> +@@ -1232,7 +1232,7 @@ case "$use_lmdb" in > >>>>>>> + LMDB_LIBS="" > >>>>>>> + ;; > >>>>>>> + auto|yes) > >>>>>>> +- for d in /usr /usr/local /opt/local > >>>>>>> ++ for d in "${STAGING_INCDIR}" > >>>>>>> + do > >>>>>>> + if test -f "${d}/include/lmdb.h" > >>>>>>> + then > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/bind9 b/meta/recipes-connectivity/bind/bind-9.16.5/bind9 > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..968679ff7f7 > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/bind9 > >>>>>>> @@ -0,0 +1,2 @@ > >>>>>>> +# startup options for the server > >>>>>>> +OPTIONS="-u bind" > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/conf.patch b/meta/recipes-connectivity/bind/bind-9.16.5/conf.patch > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..aad345f9fcf > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/conf.patch > >>>>>>> @@ -0,0 +1,330 @@ > >>>>>>> +Upstream-Status: Inappropriate [configuration] > >>>>>>> + > >>>>>>> +the patch is imported from openembedded project > >>>>>>> + > >>>>>>> +11/30/2010 - Qing He > >>>>>>> + > >>>>>>> +diff -urN bind-9.3.1.orig/conf/db.0 bind-9.3.1/conf/db.0 > >>>>>>> +--- bind-9.3.1.orig/conf/db.0 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/db.0 2005-07-10 22:14:00.000000000 +0200 > >>>>>>> +@@ -0,0 +1,12 @@ > >>>>>>> ++; > >>>>>>> ++; BIND reverse data file for broadcast zone > >>>>>>> ++; > >>>>>>> ++$TTL 604800 > >>>>>>> ++@ IN SOA localhost. root.localhost. ( > >>>>>>> ++ 1 ; Serial > >>>>>>> ++ 604800 ; Refresh > >>>>>>> ++ 86400 ; Retry > >>>>>>> ++ 2419200 ; Expire > >>>>>>> ++ 604800 ) ; Negative Cache TTL > >>>>>>> ++; > >>>>>>> ++@ IN NS localhost. > >>>>>>> +diff -urN bind-9.3.1.orig/conf/db.127 bind-9.3.1/conf/db.127 > >>>>>>> +--- bind-9.3.1.orig/conf/db.127 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/db.127 2005-07-10 22:14:00.000000000 +0200 > >>>>>>> +@@ -0,0 +1,13 @@ > >>>>>>> ++; > >>>>>>> ++; BIND reverse data file for local loopback interface > >>>>>>> ++; > >>>>>>> ++$TTL 604800 > >>>>>>> ++@ IN SOA localhost. root.localhost. ( > >>>>>>> ++ 1 ; Serial > >>>>>>> ++ 604800 ; Refresh > >>>>>>> ++ 86400 ; Retry > >>>>>>> ++ 2419200 ; Expire > >>>>>>> ++ 604800 ) ; Negative Cache TTL > >>>>>>> ++; > >>>>>>> ++@ IN NS localhost. > >>>>>>> ++1.0.0 IN PTR localhost. > >>>>>>> +diff -urN bind-9.3.1.orig/conf/db.empty bind-9.3.1/conf/db.empty > >>>>>>> +--- bind-9.3.1.orig/conf/db.empty 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/db.empty 2005-07-10 22:14:00.000000000 +0200 > >>>>>>> +@@ -0,0 +1,14 @@ > >>>>>>> ++; BIND reverse data file for empty rfc1918 zone > >>>>>>> ++; > >>>>>>> ++; DO NOT EDIT THIS FILE - it is used for multiple zones. > >>>>>>> ++; Instead, copy it, edit named.conf, and use that copy. > >>>>>>> ++; > >>>>>>> ++$TTL 86400 > >>>>>>> ++@ IN SOA localhost. root.localhost. ( > >>>>>>> ++ 1 ; Serial > >>>>>>> ++ 604800 ; Refresh > >>>>>>> ++ 86400 ; Retry > >>>>>>> ++ 2419200 ; Expire > >>>>>>> ++ 86400 ) ; Negative Cache TTL > >>>>>>> ++; > >>>>>>> ++@ IN NS localhost. > >>>>>>> +diff -urN bind-9.3.1.orig/conf/db.255 bind-9.3.1/conf/db.255 > >>>>>>> +--- bind-9.3.1.orig/conf/db.255 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/db.255 2005-07-10 22:14:00.000000000 +0200 > >>>>>>> +@@ -0,0 +1,12 @@ > >>>>>>> ++; > >>>>>>> ++; BIND reserve data file for broadcast zone > >>>>>>> ++; > >>>>>>> ++$TTL 604800 > >>>>>>> ++@ IN SOA localhost. root.localhost. ( > >>>>>>> ++ 1 ; Serial > >>>>>>> ++ 604800 ; Refresh > >>>>>>> ++ 86400 ; Retry > >>>>>>> ++ 2419200 ; Expire > >>>>>>> ++ 604800 ) ; Negative Cache TTL > >>>>>>> ++; > >>>>>>> ++@ IN NS localhost. > >>>>>>> +diff -urN bind-9.3.1.orig/conf/db.local bind-9.3.1/conf/db.local > >>>>>>> +--- bind-9.3.1.orig/conf/db.local 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/db.local 2005-07-10 22:14:00.000000000 +0200 > >>>>>>> +@@ -0,0 +1,13 @@ > >>>>>>> ++; > >>>>>>> ++; BIND data file for local loopback interface > >>>>>>> ++; > >>>>>>> ++$TTL 604800 > >>>>>>> ++@ IN SOA localhost. root.localhost. ( > >>>>>>> ++ 1 ; Serial > >>>>>>> ++ 604800 ; Refresh > >>>>>>> ++ 86400 ; Retry > >>>>>>> ++ 2419200 ; Expire > >>>>>>> ++ 604800 ) ; Negative Cache TTL > >>>>>>> ++; > >>>>>>> ++@ IN NS localhost. > >>>>>>> ++@ IN A 127.0.0.1 > >>>>>>> +diff -urN bind-9.3.1.orig/conf/db.root bind-9.3.1/conf/db.root > >>>>>>> +--- bind-9.3.1.orig/conf/db.root 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/db.root 2005-07-10 22:14:00.000000000 +0200 > >>>>>>> +@@ -0,0 +1,45 @@ > >>>>>>> ++ > >>>>>>> ++; <<>> DiG 9.2.3 <<>> ns . @a.root-servers.net. > >>>>>>> ++;; global options: printcmd > >>>>>>> ++;; Got answer: > >>>>>>> ++;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18944 > >>>>>>> ++;; flags: qr aa rd; QUERY: 1, ANSWER: 13, AUTHORITY: 0, ADDITIONAL: 13 > >>>>>>> ++ > >>>>>>> ++;; QUESTION SECTION: > >>>>>>> ++;. IN NS > >>>>>>> ++ > >>>>>>> ++;; ANSWER SECTION: > >>>>>>> ++. 518400 IN NS A.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS B.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS C.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS D.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS E.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS F.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS G.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS H.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS I.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS J.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS K.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS L.ROOT-SERVERS.NET. > >>>>>>> ++. 518400 IN NS M.ROOT-SERVERS.NET. > >>>>>>> ++ > >>>>>>> ++;; ADDITIONAL SECTION: > >>>>>>> ++A.ROOT-SERVERS.NET. 3600000 IN A 198.41.0.4 > >>>>>>> ++B.ROOT-SERVERS.NET. 3600000 IN A 192.228.79.201 > >>>>>>> ++C.ROOT-SERVERS.NET. 3600000 IN A 192.33.4.12 > >>>>>>> ++D.ROOT-SERVERS.NET. 3600000 IN A 128.8.10.90 > >>>>>>> ++E.ROOT-SERVERS.NET. 3600000 IN A 192.203.230.10 > >>>>>>> ++F.ROOT-SERVERS.NET. 3600000 IN A 192.5.5.241 > >>>>>>> ++G.ROOT-SERVERS.NET. 3600000 IN A 192.112.36.4 > >>>>>>> ++H.ROOT-SERVERS.NET. 3600000 IN A 128.63.2.53 > >>>>>>> ++I.ROOT-SERVERS.NET. 3600000 IN A 192.36.148.17 > >>>>>>> ++J.ROOT-SERVERS.NET. 3600000 IN A 192.58.128.30 > >>>>>>> ++K.ROOT-SERVERS.NET. 3600000 IN A 193.0.14.129 > >>>>>>> ++L.ROOT-SERVERS.NET. 3600000 IN A 198.32.64.12 > >>>>>>> ++M.ROOT-SERVERS.NET. 3600000 IN A 202.12.27.33 > >>>>>>> ++ > >>>>>>> ++;; Query time: 81 msec > >>>>>>> ++;; SERVER: 198.41.0.4#53(a.root-servers.net.) > >>>>>>> ++;; WHEN: Sun Feb 1 11:27:14 2004 > >>>>>>> ++;; MSG SIZE rcvd: 436 > >>>>>>> ++ > >>>>>>> +diff -urN bind-9.3.1.orig/conf/named.conf bind-9.3.1/conf/named.conf > >>>>>>> +--- bind-9.3.1.orig/conf/named.conf 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/named.conf 2005-07-10 22:33:46.000000000 +0200 > >>>>>>> +@@ -0,0 +1,49 @@ > >>>>>>> ++// This is the primary configuration file for the BIND DNS server named. > >>>>>>> ++// > >>>>>>> ++// If you are just adding zones, please do that in /etc/bind/named.conf.local > >>>>>>> ++ > >>>>>>> ++include "/etc/bind/named.conf.options"; > >>>>>>> ++ > >>>>>>> ++// prime the server with knowledge of the root servers > >>>>>>> ++zone "." { > >>>>>>> ++ type hint; > >>>>>>> ++ file "/etc/bind/db.root"; > >>>>>>> ++}; > >>>>>>> ++ > >>>>>>> ++// be authoritative for the localhost forward and reverse zones, and for > >>>>>>> ++// broadcast zones as per RFC 1912 > >>>>>>> ++ > >>>>>>> ++zone "localhost" { > >>>>>>> ++ type master; > >>>>>>> ++ file "/etc/bind/db.local"; > >>>>>>> ++}; > >>>>>>> ++ > >>>>>>> ++zone "127.in-addr.arpa" { > >>>>>>> ++ type master; > >>>>>>> ++ file "/etc/bind/db.127"; > >>>>>>> ++}; > >>>>>>> ++ > >>>>>>> ++zone "0.in-addr.arpa" { > >>>>>>> ++ type master; > >>>>>>> ++ file "/etc/bind/db.0"; > >>>>>>> ++}; > >>>>>>> ++ > >>>>>>> ++zone "255.in-addr.arpa" { > >>>>>>> ++ type master; > >>>>>>> ++ file "/etc/bind/db.255"; > >>>>>>> ++}; > >>>>>>> ++ > >>>>>>> ++// zone "com" { type delegation-only; }; > >>>>>>> ++// zone "net" { type delegation-only; }; > >>>>>>> ++ > >>>>>>> ++// From the release notes: > >>>>>>> ++// Because many of our users are uncomfortable receiving undelegated answers > >>>>>>> ++// from root or top level domains, other than a few for whom that behaviour > >>>>>>> ++// has been trusted and expected for quite some length of time, we have now > >>>>>>> ++// introduced the "root-delegations-only" feature which applies delegation-only > >>>>>>> ++// logic to all top level domains, and to the root domain. An exception list > >>>>>>> ++// should be specified, including "MUSEUM" and "DE", and any other top level > >>>>>>> ++// domains from whom undelegated responses are expected and trusted. > >>>>>>> ++// root-delegation-only exclude { "DE"; "MUSEUM"; }; > >>>>>>> ++ > >>>>>>> ++include "/etc/bind/named.conf.local"; > >>>>>>> +diff -urN bind-9.3.1.orig/conf/named.conf.local bind-9.3.1/conf/named.conf.local > >>>>>>> +--- bind-9.3.1.orig/conf/named.conf.local 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/named.conf.local 2005-07-10 22:14:06.000000000 +0200 > >>>>>>> +@@ -0,0 +1,8 @@ > >>>>>>> ++// > >>>>>>> ++// Do any local configuration here > >>>>>>> ++// > >>>>>>> ++ > >>>>>>> ++// Consider adding the 1918 zones here, if they are not used in your > >>>>>>> ++// organization > >>>>>>> ++//include "/etc/bind/zones.rfc1918"; > >>>>>>> ++ > >>>>>>> +diff -urN bind-9.3.1.orig/conf/named.conf.options bind-9.3.1/conf/named.conf.options > >>>>>>> +--- bind-9.3.1.orig/conf/named.conf.options 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/named.conf.options 2005-07-10 22:14:06.000000000 +0200 > >>>>>>> +@@ -0,0 +1,24 @@ > >>>>>>> ++options { > >>>>>>> ++ directory "/var/cache/bind"; > >>>>>>> ++ > >>>>>>> ++ // If there is a firewall between you and nameservers you want > >>>>>>> ++ // to talk to, you might need to uncomment the query-source > >>>>>>> ++ // directive below. Previous versions of BIND always asked > >>>>>>> ++ // questions using port 53, but BIND 8.1 and later use an unprivileged > >>>>>>> ++ // port by default. > >>>>>>> ++ > >>>>>>> ++ // query-source address * port 53; > >>>>>>> ++ > >>>>>>> ++ // If your ISP provided one or more IP addresses for stable > >>>>>>> ++ // nameservers, you probably want to use them as forwarders. > >>>>>>> ++ // Uncomment the following block, and insert the addresses replacing > >>>>>>> ++ // the all-0's placeholder. > >>>>>>> ++ > >>>>>>> ++ // forwarders { > >>>>>>> ++ // 0.0.0.0; > >>>>>>> ++ // }; > >>>>>>> ++ > >>>>>>> ++ auth-nxdomain no; # conform to RFC1035 > >>>>>>> ++ > >>>>>>> ++}; > >>>>>>> ++ > >>>>>>> +diff -urN bind-9.3.1.orig/conf/zones.rfc1918 bind-9.3.1/conf/zones.rfc1918 > >>>>>>> +--- bind-9.3.1.orig/conf/zones.rfc1918 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/conf/zones.rfc1918 2005-07-10 22:14:10.000000000 +0200 > >>>>>>> +@@ -0,0 +1,20 @@ > >>>>>>> ++zone "10.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++ > >>>>>>> ++zone "16.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "17.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "18.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "19.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "20.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "21.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "22.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "23.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "24.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "25.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "26.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "27.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "28.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "29.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "30.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++zone "31.172.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> ++ > >>>>>>> ++zone "168.192.in-addr.arpa" { type master; file "/etc/bind/db.empty"; }; > >>>>>>> +diff -urN bind-9.3.1.orig/init.d bind-9.3.1/init.d > >>>>>>> +--- bind-9.3.1.orig/init.d 1970-01-01 01:00:00.000000000 +0100 > >>>>>>> ++++ bind-9.3.1/init.d 2005-07-10 23:09:58.000000000 +0200 > >>>>>>> +@@ -0,0 +1,70 @@ > >>>>>>> ++#!/bin/sh > >>>>>>> ++ > >>>>>>> ++PATH=/sbin:/bin:/usr/sbin:/usr/bin > >>>>>>> ++ > >>>>>>> ++# for a chrooted server: "-u bind -t /var/lib/named" > >>>>>>> ++# Don't modify this line, change or create /etc/default/bind9. > >>>>>>> ++OPTIONS="" > >>>>>>> ++ > >>>>>>> ++test -f /etc/default/bind9 && . /etc/default/bind9 > >>>>>>> ++ > >>>>>>> ++test -x /usr/sbin/rndc || exit 0 > >>>>>>> ++ > >>>>>>> ++case "$1" in > >>>>>>> ++ start) > >>>>>>> ++ echo -n "Starting domain name service: named" > >>>>>>> ++ > >>>>>>> ++ modprobe capability >/dev/null 2>&1 || true > >>>>>>> ++ if [ ! -f /etc/bind/rndc.key ]; then > >>>>>>> ++ /usr/sbin/rndc-confgen -a -b 512 -r /dev/urandom > >>>>>>> ++ chmod 0640 /etc/bind/rndc.key > >>>>>>> ++ fi > >>>>>>> ++ if [ -f /var/run/named/named.pid ]; then > >>>>>>> ++ ps `cat /var/run/named/named.pid` > /dev/null && exit 1 > >>>>>>> ++ fi > >>>>>>> ++ > >>>>>>> ++ # dirs under /var/run can go away on reboots. > >>>>>>> ++ mkdir -p /var/run/named > >>>>>>> ++ mkdir -p /var/cache/bind > >>>>>>> ++ chmod 775 /var/run/named > >>>>>>> ++ chown root:bind /var/run/named >/dev/null 2>&1 || true > >>>>>>> ++ > >>>>>>> ++ if [ ! -x /usr/sbin/named ]; then > >>>>>>> ++ echo "named binary missing - not starting" > >>>>>>> ++ exit 1 > >>>>>>> ++ fi > >>>>>>> ++ if start-stop-daemon --start --quiet --exec /usr/sbin/named \ > >>>>>>> ++ --pidfile /var/run/named/named.pid -- $OPTIONS; then > >>>>>>> ++ if [ -x /sbin/resolvconf ] ; then > >>>>>>> ++ echo "nameserver 127.0.0.1" | /sbin/resolvconf -a lo > >>>>>>> ++ fi > >>>>>>> ++ fi > >>>>>>> ++ echo "." > >>>>>>> ++ ;; > >>>>>>> ++ > >>>>>>> ++ stop) > >>>>>>> ++ echo -n "Stopping domain name service: named" > >>>>>>> ++ if [ -x /sbin/resolvconf ]; then > >>>>>>> ++ /sbin/resolvconf -d lo > >>>>>>> ++ fi > >>>>>>> ++ /usr/sbin/rndc stop >/dev/null 2>&1 > >>>>>>> ++ echo "." > >>>>>>> ++ ;; > >>>>>>> ++ > >>>>>>> ++ reload) > >>>>>>> ++ /usr/sbin/rndc reload > >>>>>>> ++ ;; > >>>>>>> ++ > >>>>>>> ++ restart|force-reload) > >>>>>>> ++ $0 stop > >>>>>>> ++ sleep 2 > >>>>>>> ++ $0 start > >>>>>>> ++ ;; > >>>>>>> ++ > >>>>>>> ++ *) > >>>>>>> ++ echo "Usage: /etc/init.d/bind {start|stop|reload|restart|force-reload}" >&2 > >>>>>>> ++ exit 1 > >>>>>>> ++ ;; > >>>>>>> ++esac > >>>>>>> ++ > >>>>>>> ++exit 0 > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/generate-rndc-key.sh b/meta/recipes-connectivity/bind/bind-9.16.5/generate-rndc-key.sh > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..ef915c0ae5a > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/generate-rndc-key.sh > >>>>>>> @@ -0,0 +1,8 @@ > >>>>>>> +#!/bin/sh > >>>>>>> + > >>>>>>> +if [ ! -s /etc/bind/rndc.key ]; then > >>>>>>> + echo -n "Generating /etc/bind/rndc.key:" > >>>>>>> + /usr/sbin/rndc-confgen -a -b 512 -r /dev/urandom > >>>>>>> + chown root:bind /etc/bind/rndc.key > >>>>>>> + chmod 0640 /etc/bind/rndc.key > >>>>>>> +fi > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/init.d-add-support-for-read-only-rootfs.patch b/meta/recipes-connectivity/bind/bind-9.16.5/init.d-add-support-for-read-only-rootfs.patch > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..11db95ede12 > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/init.d-add-support-for-read-only-rootfs.patch > >>>>>>> @@ -0,0 +1,65 @@ > >>>>>>> +Subject: init.d: add support for read-only rootfs > >>>>>>> + > >>>>>>> +Upstream-Status: Inappropriate [oe specific] > >>>>>>> + > >>>>>>> +Signed-off-by: Chen Qi > >>>>>>> +--- > >>>>>>> + init.d | 40 ++++++++++++++++++++++++++++++++++++++++ > >>>>>>> + 1 file changed, 40 insertions(+) > >>>>>>> + > >>>>>>> +diff --git a/init.d b/init.d > >>>>>>> +index 0111ed4..24677c8 100644 > >>>>>>> +--- a/init.d > >>>>>>> ++++ b/init.d > >>>>>>> +@@ -6,8 +6,48 @@ PATH=/sbin:/bin:/usr/sbin:/usr/bin > >>>>>>> + # Don't modify this line, change or create /etc/default/bind9. > >>>>>>> + OPTIONS="" > >>>>>>> + > >>>>>>> ++test -f /etc/default/rcS && . /etc/default/rcS > >>>>>>> + test -f /etc/default/bind9 && . /etc/default/bind9 > >>>>>>> + > >>>>>>> ++# This function is here because it's possible that /var and / are on different partitions. > >>>>>>> ++is_on_read_only_partition () { > >>>>>>> ++ DIRECTORY=$1 > >>>>>>> ++ dir=`readlink -f $DIRECTORY` > >>>>>>> ++ while true; do > >>>>>>> ++ if [ ! -d "$dir" ]; then > >>>>>>> ++ echo "ERROR: $dir is not a directory" > >>>>>>> ++ exit 1 > >>>>>>> ++ else > >>>>>>> ++ for flag in `awk -v dir=$dir '{ if ($2 == dir) { print "FOUND"; split($4,FLAGS,",") } }; \ > >>>>>>> ++ END { for (f in FLAGS) print FLAGS[f] }' < /proc/mounts`; do > >>>>>>> ++ [ "$flag" = "FOUND" ] && partition="read-write" > >>>>>>> ++ [ "$flag" = "ro" ] && { partition="read-only"; break; } > >>>>>>> ++ done > >>>>>>> ++ if [ "$dir" = "/" -o -n "$partition" ]; then > >>>>>>> ++ break > >>>>>>> ++ else > >>>>>>> ++ dir=`dirname $dir` > >>>>>>> ++ fi > >>>>>>> ++ fi > >>>>>>> ++ done > >>>>>>> ++ [ "$partition" = "read-only" ] && echo "yes" || echo "no" > >>>>>>> ++} > >>>>>>> ++ > >>>>>>> ++bind_mount () { > >>>>>>> ++ olddir=$1 > >>>>>>> ++ newdir=$2 > >>>>>>> ++ mkdir -p $olddir > >>>>>>> ++ cp -a $newdir/* $olddir > >>>>>>> ++ mount --bind $olddir $newdir > >>>>>>> ++} > >>>>>>> ++ > >>>>>>> ++# Deal with read-only rootfs > >>>>>>> ++if [ "$ROOTFS_READ_ONLY" = "yes" ]; then > >>>>>>> ++ [ "$VERBOSE" != "no" ] && echo "WARN: start bind service in read-only rootfs" > >>>>>>> ++ [ `is_on_read_only_partition /etc/bind` = "yes" ] && bind_mount /var/volatile/bind/etc /etc/bind > >>>>>>> ++ [ `is_on_read_only_partition /var/named` = "yes" ] && bind_mount /var/volatile/bind/named /var/named > >>>>>>> ++fi > >>>>>>> ++ > >>>>>>> + test -x /usr/sbin/rndc || exit 0 > >>>>>>> + > >>>>>>> + case "$1" in > >>>>>>> +-- > >>>>>>> +1.7.9.5 > >>>>>>> + > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/make-etc-initd-bind-stop-work.patch b/meta/recipes-connectivity/bind/bind-9.16.5/make-etc-initd-bind-stop-work.patch > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..146f3e35db6 > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/make-etc-initd-bind-stop-work.patch > >>>>>>> @@ -0,0 +1,42 @@ > >>>>>>> +bind: make "/etc/init.d/bind stop" work > >>>>>>> + > >>>>>>> +Upstream-Status: Inappropriate [configuration] > >>>>>>> + > >>>>>>> +Add some configurations, make rndc command be able to controls > >>>>>>> +the named daemon. > >>>>>>> + > >>>>>>> +Signed-off-by: Roy Li > >>>>>>> +--- > >>>>>>> + conf/named.conf | 5 +++++ > >>>>>>> + conf/rndc.conf | 5 +++++ > >>>>>>> + 2 files changed, 10 insertions(+), 0 deletions(-) > >>>>>>> + create mode 100644 conf/rndc.conf > >>>>>>> + > >>>>>>> +diff --git a/conf/named.conf b/conf/named.conf > >>>>>>> +index 95829cf..c8899e7 100644 > >>>>>>> +--- a/conf/named.conf > >>>>>>> ++++ b/conf/named.conf > >>>>>>> +@@ -47,3 +47,8 @@ zone "255.in-addr.arpa" { > >>>>>>> + // root-delegation-only exclude { "DE"; "MUSEUM"; }; > >>>>>>> + > >>>>>>> + include "/etc/bind/named.conf.local"; > >>>>>>> ++include "/etc/bind/rndc.key" ; > >>>>>>> ++controls { > >>>>>>> ++ inet 127.0.0.1 allow { localhost; } > >>>>>>> ++ keys { rndc-key; }; > >>>>>>> ++}; > >>>>>>> +diff --git a/conf/rndc.conf b/conf/rndc.conf > >>>>>>> +new file mode 100644 > >>>>>>> +index 0000000..a0b481d > >>>>>>> +--- /dev/null > >>>>>>> ++++ b/conf/rndc.conf > >>>>>>> +@@ -0,0 +1,5 @@ > >>>>>>> ++include "/etc/bind/rndc.key"; > >>>>>>> ++options { > >>>>>>> ++ default-server localhost; > >>>>>>> ++ default-key rndc-key; > >>>>>>> ++}; > >>>>>>> + > >>>>>>> +-- > >>>>>>> +1.7.5.4 > >>>>>>> + > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind-9.16.5/named.service b/meta/recipes-connectivity/bind/bind-9.16.5/named.service > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..cda56ef0150 > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind-9.16.5/named.service > >>>>>>> @@ -0,0 +1,22 @@ > >>>>>>> +[Unit] > >>>>>>> +Description=Berkeley Internet Name Domain (DNS) > >>>>>>> +Wants=nss-lookup.target > >>>>>>> +Before=nss-lookup.target > >>>>>>> +After=network.target > >>>>>>> + > >>>>>>> +[Service] > >>>>>>> +Type=forking > >>>>>>> +EnvironmentFile=-/etc/default/bind9 > >>>>>>> +PIDFile=/run/named/named.pid > >>>>>>> + > >>>>>>> +ExecStartPre=@SBINDIR@/generate-rndc-key.sh > >>>>>>> +ExecStart=@SBINDIR@/named $OPTIONS > >>>>>>> + > >>>>>>> +ExecReload=@BASE_BINDIR@/sh -c '@SBINDIR@/rndc reload > /dev/null 2>&1 || @BASE_BINDIR@/kill -HUP $MAINPID' > >>>>>>> + > >>>>>>> +ExecStop=@BASE_BINDIR@/sh -c '@SBINDIR@/rndc stop > /dev/null 2>&1 || @BASE_BINDIR@/kill -TERM $MAINPID' > >>>>>>> + > >>>>>>> +PrivateTmp=true > >>>>>>> + > >>>>>>> +[Install] > >>>>>>> +WantedBy=multi-user.target > >>>>>>> diff --git a/meta/recipes-connectivity/bind/bind_9.16.5.bb b/meta/recipes-connectivity/bind/bind_9.16.5.bb > >>>>>>> new file mode 100644 > >>>>>>> index 00000000000..9c20ccc6fa2 > >>>>>>> --- /dev/null > >>>>>>> +++ b/meta/recipes-connectivity/bind/bind_9.16.5.bb > >>>>>>> @@ -0,0 +1,125 @@ > >>>>>>> +SUMMARY = "ISC Internet Domain Name Server" > >>>>>>> +HOMEPAGE = "http://www.isc.org/sw/bind/" > >>>>>>> +SECTION = "console/network" > >>>>>>> + > >>>>>>> +LICENSE = "MPL-2.0" > >>>>>>> +LIC_FILES_CHKSUM = "file://COPYRIGHT;md5=188b8d0644bd6835df43b84e3f180be1" > >>>>>>> + > >>>>>>> +DEPENDS = "openssl libcap zlib libuv" > >>>>>>> + > >>>>>>> +SRC_URI = "https://ftp.isc.org/isc/bind9/${PV}/${BPN}-${PV}.tar.xz \ > >>>>>>> + file://conf.patch \ > >>>>>>> + file://named.service \ > >>>>>>> + file://bind9 \ > >>>>>>> + file://generate-rndc-key.sh \ > >>>>>>> + file://make-etc-initd-bind-stop-work.patch \ > >>>>>>> + file://init.d-add-support-for-read-only-rootfs.patch \ > >>>>>>> + file://bind-ensure-searching-for-json-headers-searches-sysr.patch \ > >>>>>>> + file://0001-named-lwresd-V-and-start-log-hide-build-options.patch \ > >>>>>>> + file://0001-avoid-start-failure-with-bind-user.patch \ > >>>>>>> + " > >>>>>>> + > >>>>>>> +SRC_URI[sha256sum] = "6378b3e51fef11a8be4794dc48e8111ba92d211c0dfd129a0c296ed06a3dc075" > >>>>>>> + > >>>>>>> +UPSTREAM_CHECK_URI = "https://ftp.isc.org/isc/bind9/" > >>>>>>> +# stay at 9.16 follow the ESV versions divisible by 4 > >>>>>>> +UPSTREAM_CHECK_REGEX = "(?P9.(16|20|24|28)(\.\d+)+(-P\d+)*)/" > >>>>>>> + > >>>>>>> +inherit autotools update-rc.d systemd useradd pkgconfig multilib_script multilib_header > >>>>>>> + > >>>>>>> +MULTILIB_SCRIPTS = "${PN}:${bindir}/bind9-config ${PN}:${bindir}/isc-config.sh" > >>>>>>> + > >>>>>>> +# PACKAGECONFIGs readline and libedit should NOT be set at same time > >>>>>>> +PACKAGECONFIG ?= "readline" > >>>>>>> +PACKAGECONFIG[httpstats] = "--with-libxml2=${STAGING_DIR_HOST}${prefix},--without-libxml2,libxml2" > >>>>>>> +PACKAGECONFIG[readline] = "--with-readline=-lreadline,,readline" > >>>>>>> +PACKAGECONFIG[libedit] = "--with-readline=-ledit,,libedit" > >>>>>>> +PACKAGECONFIG[python3] = "--with-python=yes --with-python-install-dir=${PYTHON_SITEPACKAGES_DIR} , --without-python, python3-ply-native," > >>>>>>> + > >>>>>>> +EXTRA_OECONF = " --with-libtool --disable-devpoll --enable-epoll \ > >>>>>>> + --with-gssapi=no --with-lmdb=no --with-zlib \ > >>>>>>> + --sysconfdir=${sysconfdir}/bind \ > >>>>>>> + --with-openssl=${STAGING_DIR_HOST}${prefix} \ > >>>>>>> + " > >>>>>>> +LDFLAGS_append = " -lz" > >>>>>>> + > >>>>>>> +inherit ${@bb.utils.contains('PACKAGECONFIG', 'python3', 'python3native distutils3-base', '', d)} > >>>>>>> + > >>>>>>> +# dhcp needs .la so keep them > >>>>>>> +REMOVE_LIBTOOL_LA = "0" > >>>>>>> + > >>>>>>> +USERADD_PACKAGES = "${PN}" > >>>>>>> +USERADD_PARAM_${PN} = "--system --home ${localstatedir}/cache/bind --no-create-home \ > >>>>>>> + --user-group bind" > >>>>>>> + > >>>>>>> +INITSCRIPT_NAME = "bind" > >>>>>>> +INITSCRIPT_PARAMS = "defaults" > >>>>>>> + > >>>>>>> +SYSTEMD_SERVICE_${PN} = "named.service" > >>>>>>> + > >>>>>>> +do_install_append() { > >>>>>>> + > >>>>>>> + rmdir "${D}${localstatedir}/run" > >>>>>>> + rmdir --ignore-fail-on-non-empty "${D}${localstatedir}" > >>>>>>> + install -d -o bind "${D}${localstatedir}/cache/bind" > >>>>>>> + install -d "${D}${sysconfdir}/bind" > >>>>>>> + install -d "${D}${sysconfdir}/init.d" > >>>>>>> + install -m 644 ${S}/conf/* "${D}${sysconfdir}/bind/" > >>>>>>> + install -m 755 "${S}/init.d" "${D}${sysconfdir}/init.d/bind" > >>>>>>> + if ${@bb.utils.contains('PACKAGECONFIG', 'python3', 'true', 'false', d)}; then > >>>>>>> + sed -i -e '1s,#!.*python3,#! /usr/bin/python3,' \ > >>>>>>> + ${D}${sbindir}/dnssec-coverage \ > >>>>>>> + ${D}${sbindir}/dnssec-checkds \ > >>>>>>> + ${D}${sbindir}/dnssec-keymgr > >>>>>>> + fi > >>>>>>> + > >>>>>>> + # Install systemd related files > >>>>>>> + install -d ${D}${sbindir} > >>>>>>> + install -m 755 ${WORKDIR}/generate-rndc-key.sh ${D}${sbindir} > >>>>>>> + install -d ${D}${systemd_unitdir}/system > >>>>>>> + install -m 0644 ${WORKDIR}/named.service ${D}${systemd_unitdir}/system > >>>>>>> + sed -i -e 's,@BASE_BINDIR@,${base_bindir},g' \ > >>>>>>> + -e 's,@SBINDIR@,${sbindir},g' \ > >>>>>>> + ${D}${systemd_unitdir}/system/named.service > >>>>>>> + > >>>>>>> + install -d ${D}${sysconfdir}/default > >>>>>>> + install -m 0644 ${WORKDIR}/bind9 ${D}${sysconfdir}/default > >>>>>>> + > >>>>>>> + if ${@bb.utils.contains('DISTRO_FEATURES', 'systemd', 'true', 'false', d)}; then > >>>>>>> + install -d ${D}${sysconfdir}/tmpfiles.d > >>>>>>> + echo "d /run/named 0755 bind bind - -" > ${D}${sysconfdir}/tmpfiles.d/bind.conf > >>>>>>> + fi > >>>>>>> + > >>>>>>> + oe_multilib_header isc/platform.h > >>>>>>> +} > >>>>>>> + > >>>>>>> +CONFFILES_${PN} = " \ > >>>>>>> + ${sysconfdir}/bind/named.conf \ > >>>>>>> + ${sysconfdir}/bind/named.conf.local \ > >>>>>>> + ${sysconfdir}/bind/named.conf.options \ > >>>>>>> + ${sysconfdir}/bind/db.0 \ > >>>>>>> + ${sysconfdir}/bind/db.127 \ > >>>>>>> + ${sysconfdir}/bind/db.empty \ > >>>>>>> + ${sysconfdir}/bind/db.local \ > >>>>>>> + ${sysconfdir}/bind/db.root \ > >>>>>>> + " > >>>>>>> + > >>>>>>> +ALTERNATIVE_${PN}-utils = "nslookup" > >>>>>>> +ALTERNATIVE_LINK_NAME[nslookup] = "${bindir}/nslookup" > >>>>>>> +ALTERNATIVE_PRIORITY = "100" > >>>>>> I'm seeing this failing with busybox: > >>>>>> update-alternatives: Error: not linking > >>>>>> /development/yocto-master/build-output/work/imx8mmevk-fsl-linux/image-cmdline-validation/1.0-r0/rootfs/usr/bin/nslookup > >>>>>> to /bin/busybox.nosuid since > >>>>>> /development/yocto-master/build-output/work/imx8mmevk-fsl-linux/image-cmdline-validation/1.0-r0/rootfs/usr/bin/nslookup > >>>>>> exists and is not a link > >>>>>> > >>>>>> busybox sets ALTERNATIVE_PRIORITY = "50". Can this be the issue? > >>>>> > >>>>> That is weird. I would have expected that to be an issue with the old > >>>>> version too. > >>>>> > >>>>> Got any steps to reproduce this? > >>>> > >>>> Sorry for delayed response here, it took me some time but I've finally > >>>> figured the setup to reproduce the issue. > >>>> > >>>> I've used the "vanilla" Poky from master, added IMAGE_INSTALL += > >>>> "bind-utils" to core-image-minimal and switched from RPM to IPK > >>>> format. The last thing turned out to be the trigger for the issue, as > >>>> with RPM package format I was not able to reproduce the issue, and > >>>> this was cause of the delay here. > >>>> > >>>> After the above is done - following error is produced: > >>>> WARNING: core-image-minimal-1.0-r0 do_rootfs: busybox.postinst > >>>> returned 1, marking as unpacked only, configuration required on > >>>> target. > >>>> ERROR: core-image-minimal-1.0-r0 do_rootfs: Postinstall scriptlets of > >>>> ['busybox'] have failed. If the intention is to defer them to first > >>>> boot, > >>>> then please place them into pkg_postinst_ontarget_${PN} (). > >>>> Deferring to first boot via 'exit 1' is no longer supported. > >>>> Details of the failure are in > >>>> /development/projects/poky-vanilla/poky/build/tmp/work/qemux86_64-poky-linux/core-image-minimal/1.0-r0/temp/log.do_rootfs. > >>>> ERROR: Logfile of failure stored in: > >>>> /development/projects/poky-vanilla/poky/build/tmp/work/qemux86_64-poky-linux/core-image-minimal/1.0-r0/temp/log.do_rootfs.6423 > >>>> ERROR: Task (/development/projects/poky-vanilla/poky/meta/recipes-core/images/core-image-minimal.bb:do_rootfs) > >>>> failed with exit code '1' > >>>> NOTE: Tasks Summary: Attempted 3554 tasks of which 3552 didn't need to > >>>> be rerun and 1 failed. > >>>> > >>>> Summary: 1 task failed: > >>>> /development/projects/poky-vanilla/poky/meta/recipes-core/images/core-image-minimal.bb:do_rootfs > >>>> ed: > >>>> > >>>> 'nslookup' is definitely comming from the bind-utils package, and the > >>>> only thing I've noted so far it that in bind-9.11.22 result binary > >>>> name in ${D} is [nslookup.bind], which is different from the one > >>>> provided in bind-9.16.5 - [nslookup]. > >>>> > >>>> In case of previous bind version - both versions seems to be > >>>> installed, and the symlink is fixed onto the nslookup.bind. In the > >>>> current version though - I guess that the real binary is installed > >>>> instead, making symlink operation to fail during update-alternative. > >>> > >>> If it is competing with busybox then perhaps priority for bind to > >>> provide nslookup should be higher than busybox. Can you try that ? > >> > >> busybox has ALTERNATIVE_PRIORITY = "50" while bind is set to > >> ALTERNATIVE_PRIORITY = "100". IIRC higher number means higher priority > >> which is already the case... > >> > >> Nevertheless, I've tried to set 50 and even 40 for 'bind' and had the > >> same failure... > >> > >>> > >>>> > >>>> > >>>> > >>>>> > >>>>> -armin > >>>>>> > >>>>>> Going back to bind 9.11.22 seems to solve it... > >>>>>> > >>>>>>> + > >>>>>>> +PACKAGE_BEFORE_PN += "${PN}-utils" > >>>>>>> +FILES_${PN}-utils = "${bindir}/host ${bindir}/dig ${bindir}/mdig ${bindir}/nslookup ${bindir}/nsupdate" > >>>>>>> +FILES_${PN}-dev += "${bindir}/isc-config.h" > >>>>>>> +FILES_${PN} += "${sbindir}/generate-rndc-key.sh" > >>>>>>> + > >>>>>>> +PACKAGE_BEFORE_PN += "${PN}-libs" > >>>>>>> +FILES_${PN}-libs = "${libdir}/*.so* ${libdir}/named/*.so*" > >>>>>>> +FILES_${PN}-staticdev += "${libdir}/*.la" > >>>>>>> + > >>>>>>> +PACKAGE_BEFORE_PN += "${@bb.utils.contains('PACKAGECONFIG', 'python3', 'python3-bind', '', d)}" > >>>>>>> +FILES_python3-bind = "${sbindir}/dnssec-coverage ${sbindir}/dnssec-checkds \ > >>>>>>> + ${sbindir}/dnssec-keymgr ${PYTHON_SITEPACKAGES_DIR}" > >>>>>>> + > >>>>>>> +RDEPENDS_${PN}-dev = "" > >>>>>>> +RDEPENDS_python3-bind = "python3-core python3-ply" > >>>>>>> -- > >>>>>>> 2.17.1 > >>>>>>> > >>>>>>> > >>>>>> > >>>>>> > >>>>> > >>>> > >>>> > >>>> -- > >>>> Regards, > >>>> Andrey. > >>>> > >>>> > >>>> > >>>> > >>> > >> > >> > >> -- > >> Regards, > >> Andrey. > > > > > > -- Regards, Andrey.