[arch-commits] Commit in bind/trunk (01-seccomp.patch PKGBUILD)
Sébastien Luttringer
seblu at archlinux.org
Tue Mar 14 21:27:15 UTC 2017
Date: Tuesday, March 14, 2017 @ 21:27:15
Author: seblu
Revision: 290843
upgpkg: bind 9.11.0.P3-3
- fix FS#53240
Added:
bind/trunk/01-seccomp.patch
Modified:
bind/trunk/PKGBUILD
------------------+
01-seccomp.patch | 39 +++++++++++++++++++++++++++++++++++++++
PKGBUILD | 19 +++++++++++++++----
2 files changed, 54 insertions(+), 4 deletions(-)
Added: 01-seccomp.patch
===================================================================
--- 01-seccomp.patch (rev 0)
+++ 01-seccomp.patch 2017-03-14 21:27:15 UTC (rev 290843)
@@ -0,0 +1,39 @@
+# https://github.com/voidlinux/void-packages/blob/master/srcpkgs/bind/patches/seccomp.patch
+--- a/bin/named/include/named/seccomp.h.orig
++++ b/bin/named/include/named/seccomp.h
+@@ -57,6 +57,8 @@
+ SCMP_SYS(rt_sigsuspend),
+ SCMP_SYS(fstat),
+ SCMP_SYS(epoll_ctl),
+ SCMP_SYS(gettimeofday),
++ SCMP_SYS(getpid),
++ SCMP_SYS(getrandom),
+ SCMP_SYS(unlink),
+ SCMP_SYS(socket),
+@@ -121,6 +123,8 @@
+ "fstat",
+ "epoll_ctl",
+ "gettimeofday",
++ "getpid",
++ "getrandom",
+ "unlink",
+ "socket",
+ "sendto",
+@@ -190,6 +194,8 @@
+ SCMP_SYS(fstat64),
+ SCMP_SYS(epoll_ctl),
+ SCMP_SYS(gettimeofday),
++ SCMP_SYS(getpid),
++ SCMP_SYS(getrandom),
+ SCMP_SYS(unlink),
+ #ifndef ISC_PLATFORM_USETHREADS
+ SCMP_SYS(fcntl64),
+@@ -226,6 +232,8 @@
+ "fstat64",
+ "epoll_ctl",
+ "gettimeofday",
++ "getpid",
++ "getrandom",
+ "unlink",
+ #ifndef ISC_PLATFORM_USETHREADS
+ "fcntl64",
Modified: PKGBUILD
===================================================================
--- PKGBUILD 2017-03-14 20:26:40 UTC (rev 290842)
+++ PKGBUILD 2017-03-14 21:27:15 UTC (rev 290843)
@@ -8,7 +8,7 @@
pkgname=(bind bind-tools)
_pkgver=9.11.0-P3
pkgver=${_pkgver//-/.}
-pkgrel=2
+pkgrel=3
url='https://www.isc.org/software/bind/'
license=('custom:ISC')
arch=('i686' 'x86_64')
@@ -27,7 +27,8 @@
'localhost.zone'
'localhost.ip6.zone'
'127.0.0.zone'
- 'empty.zone')
+ 'empty.zone'
+ '01-seccomp.patch')
sha1sums=('87d604061b23757dd746902ee66cd95545d5872f'
'SKIP'
'c5a2bcd9b0f009ae71f3a03fbdbe012196962a11'
@@ -37,13 +38,23 @@
'6704303a6ed431a29b1d8fe7b12decd4d1f2f50f'
'52da8f1c0247a11b16daa4e03d920e8f09315cbe'
'9c33726088342207ad06d33b2c13408290a0c8ad'
- '4f4457b310cbbeadca2272eced062a9c2b2b42fe')
+ '4f4457b310cbbeadca2272eced062a9c2b2b42fe'
+ 'b1130c6d3ecab96291108194ec9490df3322aabe')
prepare() {
msg2 'Getting a fresh version of root DNS'
# no more using source array, lack of versioning.
- curl -o root.hint http://www.internic.net/zones/named.root
+ curl -o root.hint https://www.internic.net/zones/named.root
[[ -s root.hint ]]
+ cd bind-$_pkgver
+ # apply patch from the source array (should be a pacman feature)
+ local filename
+ for filename in "${source[@]}"; do
+ if [[ "$filename" =~ \.patch$ ]]; then
+ msg2 "Applying patch ${filename##*/}"
+ patch -p1 -N -i "$srcdir/${filename##*/}"
+ fi
+ done
}
build() {
More information about the arch-commits
mailing list