blob: 0b1ef1285b93764d40e32cabb3542111e0740328 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
# Copyright 1999-2011 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Id$
DESCRIPTION="The DNSSEC root key(s)"
HOMEPAGE="https://www.iana.org/dnssec/"
SRC_URI="http://data.iana.org/root-anchors/root-anchors.xml
http://data.iana.org/root-anchors/Kjqmt7v.csr
test? ( http://data.iana.org/root-anchors/Kjqmt7v.crt
http://data.iana.org/root-anchors/root-anchors.p7s
http://data.iana.org/root-anchors/root-anchors.asc
http://data.iana.org/root-anchors/icannbundle.pem
http://data.iana.org/root-anchors/icann.pgp
)"
LICENSE="public-domain"
SLOT="0"
KEYWORDS="amd64 x86"
IUSE="test"
DEPEND="dev-libs/libxslt
test? ( app-crypt/gnupg )"
RDEPEND=""
S="${WORKDIR}"
# xsl and checking as per:
# http://permalink.gmane.org/gmane.network.dns.unbound.user/1039
src_unpack() { :; }
src_compile() {
xsltproc -o "${S}"/root-anchors.txt "${FILESDIR}"/anchors2ds.xsl "${DISTDIR}"/root-anchors.xml || die 'xsl translation failed'
}
src_test()
{
gpg --import "${DISTDIR}"/icann.pgp || die 'icann key import failed'
gpg --verify "${DISTDIR}"/root-anchors.asc "${DISTDIR}"/root-anchors.xml || \
die 'gpg verification of the root key failed'
openssl smime -verify -content "${DISTDIR}"/root-anchors.xml \
-in "${DISTDIR}"/root-anchors.p7s -inform der \
-CAfile "${DISTDIR}"/icannbundle.pem \
|| die 'smime verification of the root key failed'
}
src_install() {
insinto /etc/dnssec
doins root-anchors.txt "${DISTDIR}"/root-anchors.xml "${DISTDIR}"/Kjqmt7v.csr || die
}
|
GitWeb
