From afe62a8bfb27d650ddd3af97892f7ee8193502ff Mon Sep 17 00:00:00 2001 From: Marius Bakke Date: Sat, 26 Nov 2016 13:51:01 +0100 Subject: gnu: Add dnscrypt-wrapper. * gnu/packages/dns.scm (dnscrypt-wrapper): New variable. --- gnu/packages/dns.scm | 44 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 44 insertions(+) (limited to 'gnu/packages/dns.scm') diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm index b49a0b7392..96818f8226 100644 --- a/gnu/packages/dns.scm +++ b/gnu/packages/dns.scm @@ -6,6 +6,7 @@ ;;; Copyright © 2016 John Darrington ;;; Copyright © 2016 ng0 ;;; Copyright © 2016 Tobias Geerinckx-Rice +;;; Copyright © 2016 Marius Bakke ;;; ;;; This file is part of GNU Guix. ;;; @@ -26,7 +27,9 @@ #:use-module (gnu packages autotools) #:use-module (gnu packages base) #:use-module (gnu packages databases) + #:use-module (gnu packages crypto) #:use-module (gnu packages groff) + #:use-module (gnu packages libevent) #:use-module (gnu packages linux) #:use-module (gnu packages perl) #:use-module (gnu packages pkg-config) @@ -134,6 +137,47 @@ high-volume and high-reliability applications. The name BIND stands for (home-page "https://www.isc.org/downloads/bind") (license (list license:isc)))) +(define-public dnscrypt-wrapper + (package + (name "dnscrypt-wrapper") + (version "0.2.2") + (source (origin + (method url-fetch) + (uri (string-append + "https://github.com/cofyc/dnscrypt-wrapper/releases" + "/download/v" version "/" name "-v" version ".tar.bz2")) + (sha256 + (base32 + "1vhg4g0r687f51wcdn7z9w1hxapazx6vyh5rsr8wa48sljzd583g")))) + (build-system gnu-build-system) + (arguments + `(#:make-flags '("CC=gcc") + ;; TODO: Tests require ruby-cucumber and ruby-aruba. + #:tests? #f + #:phases + (modify-phases %standard-phases + (add-before 'configure 'create-configure + (lambda _ + (zero? (system* "make" "configure"))))))) + (native-inputs + `(("autoconf" ,autoconf))) + (inputs + `(("libevent" ,libevent) + ("libsodium" ,libsodium))) + (home-page "https://github.com/Cofyc/dnscrypt-wrapper") + (synopsis "Server-side dnscrypt proxy") + (description + "@command{dnscrypt-wrapper} is a tool to expose a name server over +the @code{dnscrypt} protocol. It can be used as an endpoint for the +@command{dnscrypt-proxy} client to securely tunnel DNS requests between +the two.") + (license (list license:isc + ;; Bundled argparse is MIT. TODO: package and unbundle. + license:expat + ;; dns-protocol.h and rfc1035.{c,h} is gpl2 or gpl3 (either). + license:gpl2 + license:gpl3)))) + (define-public libasr (package (name "libasr") -- cgit v1.2.3 From d24727c0197a3e3a050cec33a391bfadf79db813 Mon Sep 17 00:00:00 2001 From: Marius Bakke Date: Sat, 26 Nov 2016 16:24:18 +0100 Subject: gnu: Add dnscrypt-proxy. * gnu/packages/dns.scm (dnscrypt-proxy): New variable. --- gnu/packages/dns.scm | 50 ++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 50 insertions(+) (limited to 'gnu/packages/dns.scm') diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm index 96818f8226..16e2220c90 100644 --- a/gnu/packages/dns.scm +++ b/gnu/packages/dns.scm @@ -137,6 +137,56 @@ high-volume and high-reliability applications. The name BIND stands for (home-page "https://www.isc.org/downloads/bind") (license (list license:isc)))) +(define-public dnscrypt-proxy + (package + (name "dnscrypt-proxy") + (version "1.7.0") + (source (origin + (method url-fetch) + (uri (string-append + "https://download.dnscrypt.org/dnscrypt-proxy/" + "dnscrypt-proxy-" version ".tar.bz2")) + (sha256 + (base32 + "1qw2nib0d5ia8581lbdnjxgn9c7pf2qw8vhpnnh1wjcjj3gpgbqx")) + (modules '((guix build utils))) + (snippet + ;; Delete bundled libltdl. XXX: This package also bundles + ;; a modified libevent that cannot currently be removed. + '(delete-file-recursively "libltdl")))) + (build-system gnu-build-system) + (arguments + `(#:phases + (modify-phases %standard-phases + (add-before 'configure 'autoreconf + (lambda _ + ;; Re-generate build files due to unbundling ltdl. + ;; TODO: Prevent generating new libltdl and building it. + ;; The system version is still favored and referenced. + (zero? (system* "autoreconf" "-vif"))))))) + (native-inputs + `(("pkg-config" ,pkg-config) + ("automake" ,automake) + ("autoconf" ,autoconf) + ("libtool" ,libtool))) + (inputs + `(("libltdl" ,libltdl) + ("libsodium" ,libsodium))) + (home-page "https://www.dnscrypt.org/") + (synopsis "Securely send DNS requests to a remote server") + (description + "@command{dnscrypt-proxy} is a tool for securing communications +between a client and a DNS resolver. It verifies that responses you get +from a DNS provider was actually sent by that provider, and haven't been +tampered with. For optimal performance it is recommended to use this as +a forwarder for a caching DNS resolver such as @command{dnsmasq}, but it +can also be used as a normal DNS \"server\". A list of public dnscrypt +servers is included, and an up-to-date version is available at +@url{https://download.dnscrypt.org/dnscrypt-proxy/dnscrypt-resolvers.csv}.") + (license (list license:isc + ;; Libevent and src/ext/queue.h is 3-clause BSD. + license:bsd-3)))) + (define-public dnscrypt-wrapper (package (name "dnscrypt-wrapper") -- cgit v1.2.3 From d0f1673dc3799dabeb447783e3c5e82857bbbb09 Mon Sep 17 00:00:00 2001 From: Marius Bakke Date: Fri, 23 Dec 2016 15:53:51 +0100 Subject: gnu: dnscrypt-proxy: Update to 1.8.1. * gnu/packages/dns.scm (dnscrypt-proxy): Update to 1.8.1. --- gnu/packages/dns.scm | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'gnu/packages/dns.scm') diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm index 16e2220c90..56e07ab294 100644 --- a/gnu/packages/dns.scm +++ b/gnu/packages/dns.scm @@ -140,7 +140,7 @@ high-volume and high-reliability applications. The name BIND stands for (define-public dnscrypt-proxy (package (name "dnscrypt-proxy") - (version "1.7.0") + (version "1.8.1") (source (origin (method url-fetch) (uri (string-append @@ -148,7 +148,7 @@ high-volume and high-reliability applications. The name BIND stands for "dnscrypt-proxy-" version ".tar.bz2")) (sha256 (base32 - "1qw2nib0d5ia8581lbdnjxgn9c7pf2qw8vhpnnh1wjcjj3gpgbqx")) + "1dz0knslf7ysc2xx33ljrdlqyr4b0fpm9ifrwvwgcjaxgh94l7m8")) (modules '((guix build utils))) (snippet ;; Delete bundled libltdl. XXX: This package also bundles -- cgit v1.2.3 From 8769d482ef2dc1863cb50761bbfb39f48607c2e3 Mon Sep 17 00:00:00 2001 From: Tobias Geerinckx-Rice Date: Fri, 23 Dec 2016 23:46:53 +0100 Subject: gnu: yadifa: Update to 2.2.3. * gnu/packages/dns.scm (yadifa): Update to 2.2.3. [version, source]: Remove monotonic revision number from the version string. Use it only to reconstruct the download URL. --- gnu/packages/dns.scm | 18 ++++++++++-------- 1 file changed, 10 insertions(+), 8 deletions(-) (limited to 'gnu/packages/dns.scm') diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm index 56e07ab294..175864f519 100644 --- a/gnu/packages/dns.scm +++ b/gnu/packages/dns.scm @@ -261,15 +261,17 @@ asynchronous fashion.") (define-public yadifa (package (name "yadifa") - (version "2.2.1-6281") + (version "2.2.3") (source - (origin - (method url-fetch) - (uri (string-append "http://cdn.yadifa.eu/sites/default/files/releases/" - name "-" version ".tar.gz")) - (sha256 - (base32 - "0vj71z7i9lfbnp93k28aplwldp5mfli0kvrbwmha6fjha6kcr910")))) + (let ((revision "6711")) + (origin + (method url-fetch) + (uri + (string-append "http://cdn.yadifa.eu/sites/default/files/releases/" + name "-" version "-" revision ".tar.gz")) + (sha256 + (base32 + "0ikfm40gx0zjw3gnxsw3rn1k4wb8jacgklja3ygcj1knq6hy2zaa"))))) (build-system gnu-build-system) (native-inputs `(("which" ,which))) -- cgit v1.2.3 From 4d2fd1c016c1ffeb613692949c9557083f946c82 Mon Sep 17 00:00:00 2001 From: Tobias Geerinckx-Rice Date: Fri, 23 Dec 2016 23:52:27 +0100 Subject: gnu: yadifa: Explicitly enable DNSSEC & caching. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * gnu/packages/dns.scm (yadifa)[arguments]: Add configure flags to consistently enable the ‘nsec’, ‘nsec3’, ‘tsig’, and ‘caching’ features. --- gnu/packages/dns.scm | 2 ++ 1 file changed, 2 insertions(+) (limited to 'gnu/packages/dns.scm') diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm index 175864f519..55cfc02e95 100644 --- a/gnu/packages/dns.scm +++ b/gnu/packages/dns.scm @@ -285,6 +285,8 @@ asynchronous fashion.") #:configure-flags (list "--sysconfdir=/etc" "--localstatedir=/var" "--enable-shared" "--disable-static" "--enable-messages" "--enable-ctrl" + "--enable-nsec" "--enable-nsec3" + "--enable-tsig" "--enable-caching" ;; NSID is a rarely-used debugging aid, that also ;; causes the build to fail. Just disable it. "--disable-nsid"))) -- cgit v1.2.3