diff options
Diffstat (limited to 'net-dns/dnssec-root/dnssec-root-20100715.ebuild')
| -rw-r--r-- | net-dns/dnssec-root/dnssec-root-20100715.ebuild | 51 |
1 files changed, 51 insertions, 0 deletions
diff --git a/net-dns/dnssec-root/dnssec-root-20100715.ebuild b/net-dns/dnssec-root/dnssec-root-20100715.ebuild new file mode 100644 index 000000000000..0b1ef1285b93 --- /dev/null +++ b/net-dns/dnssec-root/dnssec-root-20100715.ebuild @@ -0,0 +1,51 @@ +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Id$ + +DESCRIPTION="The DNSSEC root key(s)" +HOMEPAGE="https://www.iana.org/dnssec/" +SRC_URI="http://data.iana.org/root-anchors/root-anchors.xml + http://data.iana.org/root-anchors/Kjqmt7v.csr + test? ( http://data.iana.org/root-anchors/Kjqmt7v.crt + http://data.iana.org/root-anchors/root-anchors.p7s + http://data.iana.org/root-anchors/root-anchors.asc + http://data.iana.org/root-anchors/icannbundle.pem + http://data.iana.org/root-anchors/icann.pgp + )" + +LICENSE="public-domain" +SLOT="0" +KEYWORDS="amd64 x86" + +IUSE="test" + +DEPEND="dev-libs/libxslt + test? ( app-crypt/gnupg )" +RDEPEND="" + +S="${WORKDIR}" + +# xsl and checking as per: +# http://permalink.gmane.org/gmane.network.dns.unbound.user/1039 + +src_unpack() { :; } + +src_compile() { + xsltproc -o "${S}"/root-anchors.txt "${FILESDIR}"/anchors2ds.xsl "${DISTDIR}"/root-anchors.xml || die 'xsl translation failed' +} + +src_test() +{ + gpg --import "${DISTDIR}"/icann.pgp || die 'icann key import failed' + gpg --verify "${DISTDIR}"/root-anchors.asc "${DISTDIR}"/root-anchors.xml || \ + die 'gpg verification of the root key failed' + openssl smime -verify -content "${DISTDIR}"/root-anchors.xml \ + -in "${DISTDIR}"/root-anchors.p7s -inform der \ + -CAfile "${DISTDIR}"/icannbundle.pem \ + || die 'smime verification of the root key failed' +} + +src_install() { + insinto /etc/dnssec + doins root-anchors.txt "${DISTDIR}"/root-anchors.xml "${DISTDIR}"/Kjqmt7v.csr || die +} |