public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

knot-resolver: 1.5.3 -> 2.0.0 (feature update)

Browse Source 
Also split extraFeatures into a wrapper derivation.
So far, no changes like user renaming nor systemd unit rework.
This commit is contained in:
Vladimír Čunát 2018-02-01 17:15:28 +01:00
parent 9a5fe79d07
commit bbfca0f371
No known key found for this signature in database
GPG Key ID: E747DF1F9575A3AA
2 changed files with 44 additions and 33 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
nixos/modules/services/networking/kresd.nix
View File

@ -43,7 +43,7 @@ in
type = with types; listOf str; type = with types; listOf str;
default = [ "::1" "127.0.0.1" ]; default = [ "::1" "127.0.0.1" ];
description = '' description = ''
What addresses the server should listen on. What addresses the server should listen on. (UDP+TCP 53)
''; '';
}; };
# TODO: perhaps options for more common stuff like cache size or forwarding # TODO: perhaps options for more common stuff like cache size or forwarding
@ -99,9 +99,9 @@ in
Restart = "on-failure"; Restart = "on-failure";
}; };
# Trust anchor goes from dns-root-data by default.
script = '' script = ''
exec '${package}/bin/kresd' --config '${configFile}' \ exec '${package}/bin/kresd' --config '${configFile}' --forks=1
-k '${pkgs.dns-root-data}/root.key'
''; '';
requires = [ "kresd.socket" ]; requires = [ "kresd.socket" ];

71
pkgs/servers/dns/knot-resolver/default.nix
View File

@ -1,63 +1,55 @@
{ stdenv, fetchurl, pkgconfig, hexdump, which { stdenv, fetchurl, runCommand, pkgconfig, hexdump, which
, knot-dns, luajit, libuv, lmdb, gnutls, nettle , knot-dns, luajit, libuv, lmdb, gnutls, nettle
, cmocka, systemd, dns-root-data, makeWrapper , cmocka, systemd, dns-root-data, makeWrapper
, extraFeatures ? false /* catch-all if defaults aren't enough */ , extraFeatures ? false /* catch-all if defaults aren't enough */
, hiredis, libmemcached, luajitPackages , hiredis, libmemcached, luajitPackages
}: }:
let # un-indented, over the whole file
let result = if extraFeatures then wrapped-full else unwrapped;
inherit (stdenv.lib) optional optionals optionalString;
in inherit (stdenv.lib) optional optionals optionalString concatStringsSep;
stdenv.mkDerivation rec {
unwrapped = stdenv.mkDerivation rec {
name = "knot-resolver-${version}"; name = "knot-resolver-${version}";
version = "1.5.3"; version = "2.0.0";
src = fetchurl { src = fetchurl {
url = "http://secure.nic.cz/files/knot-resolver/${name}.tar.xz"; url = "http://secure.nic.cz/files/knot-resolver/${name}.tar.xz";
sha256 = "03sb05zz6qn966apcprdqhmirkz7kjdbx8hswbvgamk1s2xd7v6f"; sha256 = "b40d9dbef05031464dfff57712f476e7cddc0fda26b41daf660c5a33ea203ce0";
}; };
outputs = [ "out" "dev" ]; outputs = [ "out" "dev" ];
configurePhase = ":"; configurePhase = ":";
nativeBuildInputs = [ pkgconfig which makeWrapper hexdump ]; nativeBuildInputs = [ pkgconfig which hexdump ];
# http://knot-resolver.readthedocs.io/en/latest/build.html#requirements # http://knot-resolver.readthedocs.io/en/latest/build.html#requirements
buildInputs = [ knot-dns luajit libuv gnutls nettle lmdb ] buildInputs = [ knot-dns luajit libuv gnutls nettle lmdb ]
++ optional doInstallCheck cmocka ++ optional doCheck cmocka
++ optional stdenv.isLinux systemd # sd_notify ++ optional stdenv.isLinux systemd # sd_notify
++ optionals extraFeatures [ ## optional dependencies; TODO: libedit, dnstap
hiredis libmemcached # additional cache backends ;
];
## optional dependencies; TODO: libedit, dnstap, http2 module?
makeFlags = [ "PREFIX=$(out)" "ROOTHINTS=${dns-root-data}/root.hints" ]; makeFlags = [
"PREFIX=$(out)"
"ROOTHINTS=${dns-root-data}/root.hints"
"KEYFILE_DEFAULT=${dns-root-data}/root.ds"
];
CFLAGS = [ "-O2" "-DNDEBUG" ]; CFLAGS = [ "-O2" "-DNDEBUG" ];
enableParallelBuilding = true; enableParallelBuilding = true;
doCheck = true; doCheck = true;
doInstallCheck = true; doInstallCheck = false; # FIXME
preInstallCheck = '' preInstallCheck = ''
patchShebangs tests/config/runtest.sh patchShebangs tests/config/runtest.sh
''; '';
postInstall = '' postInstall = ''
rm "$out"/etc/kresd/root.hints # using system-wide instead rm "$out"/etc/knot-resolver/root.hints # using system-wide instead
'' '';
# optional: to allow auto-bootstrapping root trust anchor via https
+ (with luajitPackages; ''
wrapProgram "$out/sbin/kresd" \
--set LUA_PATH '${
stdenv.lib.concatStringsSep ";"
(map getLuaPath [ luasec luasocket ])
}' \
--set LUA_CPATH '${
stdenv.lib.concatStringsSep ";"
(map getLuaCPath [ luasec luasocket ])
}'
'');
meta = with stdenv.lib; { meta = with stdenv.lib; {
description = "Caching validating DNS resolver, from .cz domain registry"; description = "Caching validating DNS resolver, from .cz domain registry";
@ -67,5 +59,24 @@ stdenv.mkDerivation rec {
platforms = filter (p: p != "aarch64-linux") platforms.unix; platforms = filter (p: p != "aarch64-linux") platforms.unix;
maintainers = [ maintainers.vcunat /* upstream developer */ ]; maintainers = [ maintainers.vcunat /* upstream developer */ ];
}; };
} };
wrapped-full = with luajitPackages; let
luaPkgs = [ luasec luasocket ]; # TODO: cqueues and others for http2 module
in runCommand unwrapped.name
{
nativeBuildInputs = [ makeWrapper ];
preferLocalBuild = true;
allowSubstitutes = false;
}
''
mkdir -p "$out/sbin" "$out/share"
makeWrapper '${unwrapped}/sbin/kresd' "$out"/sbin/kresd \
--set LUA_PATH '${concatStringsSep ";" (map getLuaPath luaPkgs)}' \
--set LUA_CPATH '${concatStringsSep ";" (map getLuaCPath luaPkgs)}'
ln -sr '${unwrapped}/share/man' "$out"/share/
ln -sr "$out"/{sbin,bin}
'';
in result