223 lines
7.7 KiB
RPMSpec
223 lines
7.7 KiB
RPMSpec
#
|
|
# spec file for package dnsmasq
|
|
#
|
|
# Copyright (c) 2024 SUSE LLC
|
|
#
|
|
# All modifications and additions to the file contributed by third parties
|
|
# remain the property of their copyright owners, unless otherwise agreed
|
|
# upon. The license for this file, and modifications and additions to the
|
|
# file, is the same license as for the pristine package itself (unless the
|
|
# license for the pristine package is not an Open Source License, in which
|
|
# case the license is the MIT License). An "Open Source License" is a
|
|
# license that conforms to the Open Source Definition (Version 1.9)
|
|
# published by the Open Source Initiative.
|
|
|
|
# Please submit bugfixes or comments via https://bugs.opensuse.org/
|
|
#
|
|
|
|
|
|
%if 0%{?suse_version} >= 1550 || 0%{?sle_version} >= 150300
|
|
%bcond_without tftp_user_package
|
|
%else
|
|
%bcond_with tftp_user_package
|
|
%endif
|
|
Name: dnsmasq
|
|
Version: 2.90
|
|
Release: 0
|
|
Summary: DNS Forwarder and DHCP Server
|
|
License: GPL-2.0-only OR GPL-3.0-only
|
|
Group: Productivity/Networking/DNS/Servers
|
|
URL: https://thekelleys.org.uk/dnsmasq/
|
|
Source0: https://thekelleys.org.uk/%{name}/%{name}-%{version}.tar.xz
|
|
Source1: https://thekelleys.org.uk/%{name}/%{name}-%{version}.tar.xz.asc
|
|
Source2: %{name}.keyring
|
|
Source4: dnsmasq.service
|
|
Source5: rc.dnsmasq-suse
|
|
Source6: system-user-dnsmasq.conf
|
|
Patch0: dnsmasq-groups.patch
|
|
BuildRequires: dbus-1-devel
|
|
BuildRequires: dos2unix
|
|
BuildRequires: libidn2-devel
|
|
BuildRequires: libnettle-devel
|
|
BuildRequires: lua-devel
|
|
BuildRequires: pkgconfig
|
|
BuildRequires: pkgconfig(libnetfilter_conntrack)
|
|
BuildRequires: pkgconfig(systemd)
|
|
Provides: dns_daemon
|
|
%if %{with tftp_user_package}
|
|
BuildRequires: sysuser-tools
|
|
Requires(pre): user(tftp)
|
|
%sysusers_requires
|
|
%else
|
|
Requires(pre): %{_sbindir}/useradd
|
|
%endif
|
|
|
|
%description
|
|
Dnsmasq provides network infrastructure for small networks: DNS,
|
|
DHCP, router advertisement and network boot.
|
|
|
|
The DNS subsystem supprots forwarding of all query types, and caching
|
|
of common record types, DNSSEC included. The DHCP subsystem supports
|
|
DHCPv4, DHCPv6, BOOTP and PXE. RA can be used stand-alone or in
|
|
conjunction with DHCPv6.
|
|
|
|
%package utils
|
|
Summary: Utilities for manipulating DHCP server leases
|
|
Group: Productivity/Networking/DNS/Servers
|
|
|
|
%description utils
|
|
Utilities that use the standard DHCP protocol to query/remove a DHCP
|
|
server's leases.
|
|
|
|
%prep
|
|
%autosetup -p0
|
|
|
|
# Remove the executable bit from python example files to
|
|
# avoid unwanted automatic dependencies
|
|
find contrib -name *.py -exec chmod a-x '{}' +
|
|
|
|
# Some docs have the DOS line ends
|
|
dos2unix contrib/systemd/dbus_activation
|
|
|
|
# SED-FIX-UPSTREAM -- Fix paths
|
|
sed -i -e 's|\(PREFIX *= *\)%{_prefix}/local|\1/usr|;
|
|
s|$(LDFLAGS)|$(CFLAGS) $(LDFLAGS)|' \
|
|
Makefile
|
|
|
|
# use lua5.3 instead of lua5.2
|
|
sed -i -e 's|lua5.2|lua%{lua_version}|' Makefile
|
|
|
|
# SED-FIX-UPSTREAM -- Fix man page
|
|
sed -i -e 's|The default is "dip",|The default is "dnsmasq",|' \
|
|
man/dnsmasq.8
|
|
|
|
# SED-FIX-UPSTREAM -- Fix cachesize, group , user and pid location
|
|
sed -i -e 's|CACHESIZ 150|CACHESIZ 2000|;
|
|
s|CHUSER "nobody"|CHUSER "dnsmasq"|;
|
|
s|CHGRP "dip"|CHGRP "dnsmasq"|;
|
|
s|RUNFILE "/var/run/dnsmasq.pid"|RUNFILE "%{_rundir}/dnsmasq.pid"|' \
|
|
src/config.h
|
|
|
|
# Tweaks to the default configuration:
|
|
# - Fix trust-anchor.conf location
|
|
# - Include /etc/dnsmasq.d/*.conf by default
|
|
# - Only answer queries coming from the local network
|
|
sed -i -e '/trust-anchors.conf/c\#conf-file=%{_sysconfdir}/dnsmasq.d/trust-anchors.conf' \
|
|
-e '/conf-dir=.*conf/s/^\#//' \
|
|
-e '0,/^$/{/^$/a \
|
|
# Accept DNS queries only from hosts whose address is on a local\
|
|
# subnet, ie a subnet for which an interface exists on the server.\
|
|
# It is intended to be set as a default on installation, to allow\
|
|
# unconfigured installations to be useful but also safe from being\
|
|
# used for DNS amplification attacks.\
|
|
local-service\
|
|
|
|
}' \
|
|
dnsmasq.conf.example
|
|
|
|
%build
|
|
mv po/no.po po/nb.po
|
|
export CFLAGS="%{optflags} -std=gnu99 -fPIC -DPIC -fpie"
|
|
export LDFLAGS="-Wl,-z,relro,-z,now -pie"
|
|
# the dnsmasq make system hashes the configuration flags, so we have to supply the
|
|
# same flags for make and make install, else everything gets recompiled
|
|
%define _copts "-DHAVE_DBUS -DHAVE_CONNTRACK -DHAVE_LIBIDN2 -DHAVE_DNSSEC -DHAVE_LUASCRIPT"
|
|
%make_build AWK=gawk all-i18n CFLAGS="$CFLAGS" LDFLAGS="$LDFLAGS" COPTS=%{_copts}
|
|
%if %{with tftp_user_package}
|
|
%sysusers_generate_pre %{SOURCE6} dnsmasq system-user-dnsmasq.conf
|
|
%endif
|
|
|
|
%if %{without tftp_user_package}
|
|
%pre
|
|
if ! %{_bindir}/getent group tftp >/dev/null; then
|
|
%{_sbindir}/groupadd -r tftp
|
|
fi
|
|
if ! %{_bindir}/getent passwd tftp >/dev/null; then
|
|
%{_sbindir}/useradd -c "TFTP account" -d /srv/tftpboot -G tftp -g tftp \
|
|
-r -s /bin/false tftp
|
|
fi
|
|
if ! %{_bindir}/getent passwd dnsmasq >/dev/null; then
|
|
%{_sbindir}/useradd -r -d %{_localstatedir}/lib/empty -s /bin/false -c "dnsmasq" -g nogroup -G tftp dnsmasq
|
|
fi
|
|
%else
|
|
|
|
%pre -f dnsmasq.pre
|
|
%endif
|
|
%service_add_pre %{name}.service
|
|
|
|
%post
|
|
%service_add_post %{name}.service
|
|
# reload dbus after install or upgrade to apply new policies
|
|
if [ -z "${TRANSACTIONAL_UPDATE}" -a -x %{_bindir}/systemctl ]; then
|
|
%{_bindir}/systemctl reload dbus.service 2>/dev/null || :
|
|
fi
|
|
|
|
%preun
|
|
%service_del_preun %{name}.service
|
|
|
|
%postun
|
|
%service_del_postun %{name}.service
|
|
# reload dbus after uninstall, our policies are gone again
|
|
if [ $1 -eq 0 -a -z "${TRANSACTIONAL_UPDATE}" \
|
|
-a -x %{_bindir}/systemctl ]; then
|
|
%{_bindir}/systemctl reload dbus.service 2>/dev/null || :
|
|
fi
|
|
|
|
%install
|
|
make install-i18n DESTDIR=%{buildroot} PREFIX=%{_prefix} AWK=gawk COPTS=%{_copts}
|
|
install -d -m 755 %{buildroot}/%{_sysconfdir}/
|
|
install -m 644 dnsmasq.conf.example %{buildroot}/%{_sysconfdir}/dnsmasq.conf
|
|
install -d 755 %{buildroot}%{_datadir}/dbus-1/system.d/
|
|
install -m 644 dbus/dnsmasq.conf %{buildroot}%{_datadir}/dbus-1/system.d/dnsmasq.conf
|
|
install -D -m 0644 %{SOURCE4} %{buildroot}%{_unitdir}/dnsmasq.service
|
|
%if %{without tftp_user_package}
|
|
install -d -m 0755 %{buildroot}/srv/tftpboot
|
|
%else
|
|
mkdir -p %{buildroot}%{_sysusersdir}
|
|
install -m 0644 %{SOURCE6} %{buildroot}%{_sysusersdir}/
|
|
%endif
|
|
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rcdnsmasq
|
|
install -d -m 755 %{buildroot}/%{_sysconfdir}/dnsmasq.d
|
|
install -m 644 trust-anchors.conf %{buildroot}/%{_sysconfdir}/dnsmasq.d/trust-anchors.conf
|
|
|
|
# utils subpackage
|
|
mkdir -p %{buildroot}/%{_bindir} %{buildroot}/%{_mandir}/man1
|
|
make -C contrib/lease-tools %{?_smp_mflags}
|
|
install -m 755 contrib/lease-tools/dhcp_release %{buildroot}/%{_bindir}/dhcp_release
|
|
install -m 644 contrib/lease-tools/dhcp_release.1 %{buildroot}/%{_mandir}/man1/dhcp_release.1
|
|
install -m 755 contrib/lease-tools/dhcp_release6 %{buildroot}/%{_bindir}/dhcp_release6
|
|
install -m 644 contrib/lease-tools/dhcp_release6.1 %{buildroot}/%{_mandir}/man1/dhcp_release6.1
|
|
install -m 755 contrib/lease-tools/dhcp_lease_time %{buildroot}/%{_bindir}/dhcp_lease_time
|
|
install -m 644 contrib/lease-tools/dhcp_lease_time.1 %{buildroot}/%{_mandir}/man1/dhcp_lease_time.1
|
|
make -C contrib/lease-tools clean
|
|
rm -rf contrib/Suse
|
|
rm -rf contrib/Solaris10
|
|
rm -rf contrib/dnsmasq_MacOSX-pre10.4
|
|
rm -rf contrib/slackware-dnsmasq
|
|
rm -rf contrib/MacOSX-launchd
|
|
|
|
%find_lang %{name} --with-man
|
|
|
|
%files -f %{name}.lang
|
|
%license COPYING COPYING-v3
|
|
%doc CHANGELOG FAQ doc.html setup.html dnsmasq.conf.example contrib dbus
|
|
%config(noreplace) %{_sysconfdir}/dnsmasq.conf
|
|
%{_sbindir}/dnsmasq
|
|
%{_sbindir}/rcdnsmasq
|
|
%{_mandir}/man8/dnsmasq.8%{?ext_man}
|
|
%{_datadir}/dbus-1/system.d/dnsmasq.conf
|
|
%{_unitdir}/dnsmasq.service
|
|
%dir %{_sysconfdir}/dnsmasq.d
|
|
%config(noreplace) %{_sysconfdir}/dnsmasq.d/trust-anchors.conf
|
|
%if %{without tftp_user_package}
|
|
%dir %attr(0755,tftp,tftp) /srv/tftpboot
|
|
%else
|
|
%{_sysusersdir}/system-user-dnsmasq.conf
|
|
%endif
|
|
|
|
%files utils
|
|
%{_bindir}/dhcp_*
|
|
%{_mandir}/man1/dhcp_*
|
|
|
|
%changelog
|