Port details |
- opendnssec2 Tool suite for maintaining DNSSEC
- 2.1.10_2 dns
=2 Version of this port present on the latest quarterly branch. - Maintainer: jaap@NLnetLabs.nl
 - Port Added: 2016-07-13 13:29:25
- Last Update: 2022-07-20 14:21:47
- Commit Hash: 66ee090
- People watching this port, also watch:: rancid3, nsd
- License: BSD3CLAUSE
- Description:
- OpenDNSSEC was created as an open-source turn-key solution for
DNSSEC. It secures zone data just before it is published in an
authoritative name server.
WWW: http://www.opendnssec.org
- SVNWeb : git : Homepage
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- opendnssec2>0:dns/opendnssec2
- Conflicts:
- CONFLICTS:
- Conflicts Matches:
-
There are no Conflicts Matches for this port. This is usually an error.
- To install the port:
- cd /usr/ports/dns/opendnssec2/ && make install clean
- To add the package, run one of these commands:
- pkg install dns/opendnssec2
- pkg install opendnssec2
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: opendnssec2
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1631361191
SHA256 (opendnssec-2.1.10.tar.gz) = c0a8427de241118dccbf7abc508e4dd53fb75b45e9f386addbadae7ecc092756
SIZE (opendnssec-2.1.10.tar.gz) = 1142027
- Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- ldns>=1.6.16 : dns/ldns
- sqlite3>=3.3.9 : databases/sqlite3
- autoconf>=2.71 : devel/autoconf
- automake>=1.16.5 : devel/automake
- libtoolize : devel/libtool
- Library dependencies:
-
- libldns.so : dns/ldns
- libxml2.so : textproc/libxml2
- libsqlite3.so : databases/sqlite3
- There are no ports dependent upon this port
- Configuration Options:
- ===> The following configuration options are available for opendnssec2-2.1.10_2:
DOCS=on: Build and/or install documentation
SOFTHSM=off: SoftHSM cryptographic store for PKCS #11 interface
====> Options available for the single DB: you have to select exactly one of them
MYSQL=off: Use MYSQL backend
SQLITE=on: Use SQLite backend
===> Use 'make config' to modify these settings
- Options name:
- dns_opendnssec2
- USES:
- autoreconf cpe libtool ssl sqlite
- pkg-message:
- For install:
- A manual migration step is needed to migration from 1.4 to 2.0.
First migrate to at least the 1.4.10 release if you have not already done
so.
Review the documentation on the OpenDNSSEC site. This can be
updated in between releases to provide more help. Especially if
you have tooling around OpenDNSSEC you should be aware that some
command line utilities have changed. A fair amount of backward
compatibility has been respected, but changes are present.
The enforcer does require a full migration, as the internal database has
been completely revised. See the documentation in
/usr/local/share/doc/opendnssec/1.4-2.0_db_convert/README.md for a description.
Migration scripts are installed in /usr/local/share/doc/opendnssec.
The signer does not require any migration. Backward compatibility is
respected from earlier 1.4 release. The signer should not require a
full resign of your zone when upgrading, however if you decide to downgrade
a full resign is required.
An HowTo is provided at
<https://wiki.opendnssec.org/display/DOCS20/Quick+start+guide>
- Master Sites:
|
Commit History - (may be incomplete: see SVNWeb link above for full details) |
Date | By | Description |
20 Jul 2022 14:21:47 2.1.10_2 |
Tobias C. Berner (tcberner)  |
dns: remove 'Created by' lines
A big Thank You to the original contributors of these ports:
* Aaron Dalton <aaron@FreeBSD.org>
* Akinori MUSHA aka knu <knu@idaemons.org>
* Alex Samorukov <samm@freebsd.org>
* Alexey Dokuchaev <danfe@FreeBSD.org>
* Allan Jude <allanjude@freebsd.org>
* Amar Takhar <verm@drunkmonk.net>
* Anders Nordby <anders@fix.no>
* Andrew Greenwood <greenwood.andy@gmail.com>
* Anton Berezin <tobez@FreeBSD.org>
* Ashish SHUKLA <ashish@FreeBSD.org>
* Attila Nagy <bra@fsn.hu> (Only the first 15 lines of the commit message are shown above ) |
10 Apr 2022 19:11:41 2.1.10_2 |
Charlie Li (vishwin)  |
textproc/libxml2: bump all LIB_DEPENDS consumers
This is a separate commit to facilitate easier cherry-picking for
quarterly.
PR: 262853, 262940, 262877, 263126
Approved by: fluffy (mentor) |
26 Mar 2022 08:27:27 2.1.10_1 |
Matthias Fechner (mfechner)  |
textproc/libxml2: bump all dependencies
This should make sure that all dependent ports will pick
up the new version commited with a13ec21cd733f67a9fc0dc00ab45268bdc236246 |
18 Oct 2021 07:13:48 2.1.10 |
Yasuhiro Kimura (yasu)  Author: Jaap Akkerhuis |
dns/opendnssec2: Update to 2.1.10
* Pet portclippy
* Reformat Makefile with portfmt
ReleaseNotes: https://www.opendnssec.org/2021/09/opendnssec-2-1-10/
PR: 258631
Approved by: ygy (mentor)
Differential Revision: https://reviews.freebsd.org/D32536 |
31 Aug 2021 11:24:17 2.1.9 |
Bernhard Froehlich (decke)  |
dns/opendnssec2: Add CPE information
Approved by: portmgr (blanket) |
05 May 2021 16:35:54 2.1.9 |
Neel Chauhan (nc)  Author: Jaap Akkerhuis |
dns/opendnssec2: Update to 2.1.9
Changes: https://www.opendnssec.org/2021/05/opendnssec-2-1-9/
PR: 255615 |
06 Apr 2021 14:31:13 2.1.8 |
Mathieu Arnold (mat)  |
all: Remove all other $FreeBSD keywords. |
06 Apr 2021 14:31:07 2.1.8 |
Mathieu Arnold (mat)  |
Remove # $FreeBSD$ from Makefiles. |
10 Mar 2021 13:35:37
2.1.8 |
lwhsu  |
dns/opendnssec2: Add missing patch to fix the build
PR: 254075
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) |
05 Mar 2021 19:53:12
2.1.8 |
nc  |
dns/opendnssec2: Update to 2.1.8
Changes: https://www.opendnssec.org/2021/02/opendnssec-2-1-8/
PR: 253795
Submitted by: Jaap Akkerhuis <jaap AT NLnetLabs DOT nl> (maintainer) |
02 Nov 2020 14:11:36
2.1.7 |
dbaio  |
dns/opendnssec2: Update to 2.1.7
Patches removed were incorporated upstream.
Changelog: https://www.opendnssec.org/2020/10/opendnssec-2-1-7/
PR: 250293
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
MFH: 2020Q4 (blanket: bugfix release) |
26 Sep 2020 12:41:19
2.1.6_1 |
se  |
Fix build with -fno-common
While here use INSTALL_TARGET=install-strip to install stripped binaries. |
11 Feb 2020 20:11:58
2.1.6 |
pi  |
dns/opendnssec2: upgrade 2.1.4 -> 2.1.6
This release of 2.1.6 fixes some issues regarding the key list
wrongfully displayed (a regression bug in 2.1.5) as well as a small
leak in the enforcer (which can add up when you bang the enforcer
with a lot of commands. And as well as a serious signing error when
using Combined Signing Keys (CSKs), this is only relevant if you
combine KSK and ZSK in one. Especially users of CSKs need this fix
now. Another nice fix is a reconnect to a MySQL/MariaDB database
you you don't have to tweak database parameters.
PR: 244047
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Relnotes: https://www.opendnssec.org/2019/11/opendnssec-2-1-5/
https://www.opendnssec.org/2020/02/opendnssec-2-1-6/ |
04 Oct 2019 18:33:00
2.1.4_1 |
rene  |
dns/opendnsssec*: switch to openhsm2 to the HSM option. |
02 Sep 2019 21:23:28
2.1.4_1 |
swills  |
Bump PORTREVISION on ldns consumers
Shared lib version changed in update
Reported by: sunpoet |
13 Aug 2019 16:01:59
2.1.4  |
mat  |
Convert to UCL & cleanup pkg-message (categories d) |
05 Jun 2019 08:49:53
2.1.4 |
joneum  |
Update to 2.1.4
PR: 237988
Sponsored by: Netzkommune GmbH |
14 Aug 2017 14:46:31
2.1.3 |
matthew  |
Update to 2.1.3:
As of today version 2.1.3 of OpenDNSSEC has been released. No special
migration steps are required when upgrading from a previous 2.x.x
release. It includes fixes to the build system, some regressions w.r.t.
OpenDNSSEC 1.4 and a signing bug. Please note that version 2.1.2 was
skipped for release.
Build fixes:
* OPENDNSSEC-904: autoconfigure fails to properly identify functions in
ssl library on some distributions. This caused the "tsig unknown
algorithm hmac-sha256" error.
* OPENDNSSEC-894: repair configuration script to allow excluding the
build of the enforcer. (Only the first 15 lines of the commit message are shown above ) |
08 Aug 2017 18:02:54
2.1.1_1 |
ultima  |
* Bump Revision
* Fix typo in the Port's Makefile, causes a failure in a conversion script
* Added license file
* Cleanup Makefile
PR: 221144
Submitted by: <jaap@NLnetLabs.nl> (maintainer)
Reviewed by: matthew (mentor)
Approved by: matthew (mentor)
MFH: 2017Q3
Differential Revision: https://reviews.freebsd.org/D11898 |
28 May 2017 23:17:00
2.1.1 |
sunpoet  |
Fix OPTIONS_DEFAULT: remove DOCS which is added by framework
Approved by: portmgr (blanket) |
02 May 2017 19:33:34
2.1.1 |
pi  |
dns/opendnssec2: update 2.1.0 -> 2.1.1
- OPENDNSSEC-889: MySQL migration script didnt work for all database
and MySQL versions.
- OPENDNSSEC-887: Segfault on extraneous tag.
- OPENDNSSEC-880: Command line parsing for import key command failed.
- OPENDNSSEC-890: Bogus signatures upon wrong zone input when TTLs
for same rrset are mismatching.
PR: 218995
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) |
08 Mar 2017 11:04:53
2.1.0 |
robak  |
dns/opendnssec2: update 2.0.3 -> 2.1.0
- Fix DB scripts from docs
PR: 217563
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
MFH: 2017Q1 |
03 Mar 2017 04:12:21
2.0.3_1 |
miwi  |
- Chase ldns shlip bump
PR: 217495 |
25 Oct 2016 08:23:25
2.0.3 |
robak  |
dns/opendnssec2: update 2.0.1 -> 2.0.3
PR: 213610
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
MFH: 2016Q4 |
12 Sep 2016 02:41:09
2.0.1 |
marino  |
dns/opendnssecs: Add SSL flags and honor them, configure SSL base too
Approved by: SSL blanket |
29 Jul 2016 07:45:18
2.0.1 |
erwin  |
- Update to 2.0.1
- Switch to options helpers
This release is primarily focused on ironing out the issues on the migration
path from 1.4 to 2.0. Besides that there are no functional changes.
* Fixed crash and linking issue in ods-migrate.
* Fixed case where 2.0.0 could not read backup files from 1.4.10.
* Fixed bug in migration script where key state in the database wasn't
transformed properly.
PR: 211403
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Sponsored by: DK Hostmaster A/S |
13 Jul 2016 13:29:18
2.0.0 |
erwin  |
The current opendnssec porthas seen a massive rewrite by the upstream
so it was rechristened opendnssec Version 2.
To quote the announcement at <https://www.opendnssec.org>:
"OpenDNSSEC got a entire re-write of the enforcer. This part of
OpenDNSSEC controls changing signing keys in the right way to perform
a roll-over. Before, the enforcer would perform a roll-over according
to a strict paradigm. One scenario in which deviations would not be
possible.
The new enforcer is more aware of the zone changes being propagated in
the Internet. It can therefore decide when it is safe to make changes,
rather than to rely upon a given scenario.
PR: 211018
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl>
Sponsored by: DK Hostmaster A/S |