dnsdist: Upgrade to version 2.0.1

To: pkgsrc-wip-changes%NetBSD.org@localhost
Subject: dnsdist: Upgrade to version 2.0.1
From: Marcin Gondek (via pkgsrc-wip) <commit-notify%pkgsrc.org@localhost>
Date: Thu, 18 Sep 2025 18:10:35 +0000
Module Name:	pkgsrc-wip
Committed By:	Marcin Gondek <drixter%e-utp.net@localhost>
Pushed By:	drixter
Date:		Thu Sep 18 20:10:16 2025 +0200
Changeset:	23a45728c60bf9057030ff5640cb2b7c9fd05ab1

Added Files:
	dnsdist/COMMIT_MSG
	dnsdist/DESCR
	dnsdist/Makefile
	dnsdist/PLIST
	dnsdist/distinfo
	dnsdist/files/dnsdist.sh
	dnsdist/files/smf/manifest.xml

Log Message:
dnsdist: Upgrade to version 2.0.1

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=23a45728c60bf9057030ff5640cb2b7c9fd05ab1

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 dnsdist/COMMIT_MSG             | 49 +++++++++++++++++++++++++++
 dnsdist/DESCR                  |  4 +++
 dnsdist/Makefile               | 77 ++++++++++++++++++++++++++++++++++++++++++
 dnsdist/PLIST                  |  4 +++
 dnsdist/distinfo               |  5 +++
 dnsdist/files/dnsdist.sh       | 24 +++++++++++++
 dnsdist/files/smf/manifest.xml | 28 +++++++++++++++
 7 files changed, 191 insertions(+)

diffs:
diff --git a/dnsdist/COMMIT_MSG b/dnsdist/COMMIT_MSG
new file mode 100644
index 0000000000..ecd5e53a4e
--- /dev/null
+++ b/dnsdist/COMMIT_MSG
@@ -0,0 +1,49 @@
+dnsdist: Upgrade to version 2.0.1
+
+2.0.1
+Released: 18th of September 2025
+Improvements
+Update rings' atomic counter without holding the lock
+References: pull request 15925
+Return early when a rule chain is empty
+References: pull request 15926
+Update a cache�s atomic counter without holding the lock
+References: pull request 15927
+Speed up response content matching
+References: pull request 16020
+Only check the freshness of the configuration when needed
+References: pull request 16053
+dnsdist --version: report yaml support
+References: pull request 16029
+Switch Docker images to Debian Trixie
+References: pull request 16031
+Support mnemonics for the Opcode selector
+References: pull request 16032
+
+Bug Fixes
+Upgrade Cloudflare's Quiche to 0.24.5 in our packages (CVE-2025-4820, CVE-2025-4821, CVE-2025-7054)
+References: pull request 15920, pull request 16003
+Add mitigations for the HTTP/2 MadeYouReset attack (CVE-2025-8671), fix a possible DoS in incoming DoH with nghttp2 (CVE-2025-30187)
+References: pull request 16045
+Don�t call nghttp2_session_send from a callback
+References: pull request 16080
+Fix the IO reentry guard in outgoing DoH
+References: pull request 16096
+Clean up incoming TCP connections counters once per minute
+References: pull request 16019
+Fix QType rate dynamic block with YAML
+References: pull request 16017
+Fix systemd template unit and restricted network families when building with meson
+References: pull request 16018
+Add missing generated files to the dist tarball
+References: pull request 16048
+Don�t increment in a potential macro argument
+References: pull request 16049
+Allow building with gcc8, which needs -lstdc++fs as link argument
+References: pull request 16052
+Properly handle truncation for UDP responses sent via sendmmsg
+References: pull request 16081
+dnsdist-resolver: Fix a bug when we get new IPs for a server
+References: pull request 16093
+Fix access to frontends while in client mode�
+References: pull request 16095
diff --git a/dnsdist/DESCR b/dnsdist/DESCR
new file mode 100644
index 0000000000..8b6e998da8
--- /dev/null
+++ b/dnsdist/DESCR
@@ -0,0 +1,4 @@
+dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its
+goal in life is to route traffic to the best server, delivering top
+performance to legitimate users while shunting or blocking abusive
+traffic.
diff --git a/dnsdist/Makefile b/dnsdist/Makefile
new file mode 100644
index 0000000000..0f6dcb4ea3
--- /dev/null
+++ b/dnsdist/Makefile
@@ -0,0 +1,77 @@
+# $NetBSD: Makefile,v 1.39 2025/09/15 07:37:27 wiz Exp $
+
+DISTNAME=	dnsdist-2.0.1
+#PKGREVISION=	1
+CATEGORIES=	net
+MASTER_SITES=	https://downloads.powerdns.com/releases/
+EXTRACT_SUFX=	.tar.xz
+
+MAINTAINER=	drixter%e-utp.net@localhost
+HOMEPAGE=	https://dnsdist.org/
+COMMENT=	Highly DNS-, DoS- and abuse-aware loadbalancer
+LICENSE=	gnu-gpl-v2
+
+TOOL_DEPENDS+=		${PYPKGPREFIX}-yaml-[0-9]*:../../textproc/py-yaml
+
+USE_LANGUAGES=		c c++
+USE_CXX_FEATURES=	c++11
+USE_TOOLS+=		gmake pkg-config
+GNU_CONFIGURE=		yes
+
+.include "../../mk/bsd.prefs.mk"
+
+BUILD_DEFS+=			DNSDIST_USER DNSDIST_GROUP
+DNSDIST_USER?=			dnsdist
+DNSDIST_GROUP?=			dnsdist
+PKG_GROUPS+=			${DNSDIST_GROUP}
+PKG_USERS+=			${DNSDIST_USER}:${DNSDIST_GROUP}
+PKG_GECOS.${DNSDIST_USER}=	dnsdist daemon user
+
+CHECK_WRKREF_SKIP+=		bin/dnsdist
+
+FILES_SUBST+=	DNSDIST_USER=${DNSDIST_USER}
+FILES_SUBST+=	DNSDIST_GROUP=${DNSDIST_GROUP}
+
+CONFIGURE_ARGS+=	--enable-dns-over-tls
+CONFIGURE_ARGS+=	--enable-dnscrypt
+CONFIGURE_ARGS+=	--enable-dnstap
+CONFIGURE_ARGS+=	--with-libsodium
+CONFIGURE_ARGS+=	--with-libssl
+CONFIGURE_ARGS+=	--with-lua
+CONFIGURE_ARGS+=	--with-nghttp2
+CONFIGURE_ARGS+=	--with-re2
+CONFIGURE_ARGS+=	--without-net-snmp
+CONFIGURE_ARGS+=	--enable-dns-over-https
+CONFIGURE_ARGS+=	--sysconfdir=${PKG_SYSCONFDIR}
+CONFIGURE_ARGS+=	--with-boost=${BUILDLINK_PREFIX.boost-headers}
+
+.include "../../mk/readline.buildlink3.mk"
+
+.if ${READLINE_TYPE} == "editline"
+CONFIGURE_ARGS+=	--with-libedit
+CONFIGURE_ENV+=		LIBEDIT_CFLAGS="-I${BUILDLINK_PREFIX.editlinereadline}/include"
+CONFIGURE_ENV+=		LIBEDIT_LIBS="-L${BUILDLINK_PREFIX.editlinereadline}/lib ${BUILDLINK_LDADD.editlinereadline}"
+.include "../../devel/editline/buildlink3.mk"
+.else
+CONFIGURE_ARGS+=	--without-libedit
+.endif
+
+EGDIR=			${PREFIX}/share/examples/dnsdist
+CONF_FILES=		${EGDIR}/dnsdist.conf-dist ${PKG_SYSCONFDIR}/dnsdist.conf
+INSTALLATION_DIRS+=	${EGDIR}
+INSTALL_MAKE_FLAGS=	${MAKE_FLAGS} sysconfdir=${EGDIR}
+
+RCD_SCRIPTS+=		dnsdist
+
+.include "../../databases/lmdb/buildlink3.mk"
+.include "../../security/gnutls/buildlink3.mk"
+.include "../../devel/boost-headers/buildlink3.mk"
+.include "../../devel/re2/buildlink3.mk"
+.include "../../lang/lua/buildlink3.mk"
+.include "../../net/fstrm/buildlink3.mk"
+.include "../../security/libsodium/buildlink3.mk"
+.include "../../security/openssl/buildlink3.mk"
+.include "../../www/nghttp2/buildlink3.mk"
+.include "../../lang/python/pyversion.mk"
+.include "../../mk/atomic64.mk"
+.include "../../mk/bsd.pkg.mk"
diff --git a/dnsdist/PLIST b/dnsdist/PLIST
new file mode 100644
index 0000000000..f84e457785
--- /dev/null
+++ b/dnsdist/PLIST
@@ -0,0 +1,4 @@
+@comment $NetBSD: PLIST,v 1.3 2025/08/12 07:22:24 wiz Exp $
+bin/dnsdist
+man/man1/dnsdist.1
+share/examples/dnsdist/dnsdist.conf-dist
diff --git a/dnsdist/distinfo b/dnsdist/distinfo
new file mode 100644
index 0000000000..ca55f46330
--- /dev/null
+++ b/dnsdist/distinfo
@@ -0,0 +1,5 @@
+$NetBSD: distinfo,v 1.20 2025/08/12 07:22:24 wiz Exp $
+
+BLAKE2s (dnsdist-2.0.1.tar.xz) = 03ee82e4b78f55a72c83ecf92b8950865b82a1f621b87848bc1b21ef765df004
+SHA512 (dnsdist-2.0.1.tar.xz) = 8e0b6b9d9db36e19c4617e79a36f86f8bc1a0096569dab0dc178ee9fa1b3af3b8baaa40252be9c7450a01e2d169a530edcc8f52e794e4efa649f5f0582b579d1
+Size (dnsdist-2.0.1.tar.xz) = 2279512 bytes
diff --git a/dnsdist/files/dnsdist.sh b/dnsdist/files/dnsdist.sh
new file mode 100644
index 0000000000..c4b5d56543
--- /dev/null
+++ b/dnsdist/files/dnsdist.sh
@@ -0,0 +1,24 @@
+#!@RCD_SCRIPTS_SHELL@
+#
+# $NetBSD: dnsdist.sh,v 1.2 2022/10/24 11:08:15 jperkin Exp $
+#
+# PROVIDE: dnsdist 
+# REQUIRE: DAEMON network
+# KEYWORD: shutdown
+
+if [ -f /etc/rc.subr ]; then
+	. /etc/rc.subr
+fi
+
+name="dnsdist"
+rcvar=$name
+command="@PREFIX@/bin/dnsdist"
+dnsdist_flags="${dnsdist_flags:- -u @DNSDIST_USER@ -g @DNSDIST_GROUP@ -C @PKG_SYSCONFDIR@/dnsdist.conf}"
+
+if [ -f /etc/rc.subr ]; then
+        load_rc_config $name
+	run_rc_command "$1"
+else
+	echo -n "${name}"
+	${command} ${dnsdist_flags}
+fi
diff --git a/dnsdist/files/smf/manifest.xml b/dnsdist/files/smf/manifest.xml
new file mode 100644
index 0000000000..739af89727
--- /dev/null
+++ b/dnsdist/files/smf/manifest.xml
@@ -0,0 +1,28 @@
+<?xml version="1.0"?>
+<!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1">
+<service_bundle type="manifest" name="export">
+  <service name="@SMF_PREFIX@/@SMF_NAME@" type="service" version="1">
+    <create_default_instance enabled="false" />
+    <single_instance />
+    <dependency name="network" grouping="require_all" restart_on="error" type="service">
+      <service_fmri value="svc:/milestone/network:default" />
+    </dependency>
+    <dependency name="filesystem" grouping="require_all" restart_on="error" type="service">
+      <service_fmri value="svc:/system/filesystem/local" />
+    </dependency>
+    <exec_method type="method" name="start" exec="@PREFIX@/bin/dnsdist --supervised -u @DNSDIST_USER@ -g @DNSDIST_GROUP@ -C %{config_file} &amp;" timeout_seconds="60" />
+    <exec_method type="method" name="stop" exec=":kill" timeout_seconds="60" />
+    <property_group name="startd" type="framework">
+      <propval name="duration" type="astring" value="contract" />
+      <propval name="ignore_error" type="astring" value="core,signal" />
+    </property_group>
+    <property_group name="application" type="application">
+      <propval name="config_file" type="astring" value="@PKG_SYSCONFDIR@/dnsdist.conf" />
+    </property_group>
+    <template>
+      <common_name>
+        <loctext xml:lang="C">dnsdist daemon</loctext>
+      </common_name>
+    </template>
+  </service>
+</service_bundle>
Prev by Date: xsb: buildink to a symbolic link won't work, swapped the roles main directory and link under config
Next by Date: powerdns-recursor53: PowerDNS Recursor 5.3.0
Previous by Thread: xsb: buildink to a symbolic link won't work, swapped the roles main directory and link under config
Next by Thread: powerdns-recursor53: PowerDNS Recursor 5.3.0
Indexes:
Home | Main Index | Thread Index | Old Index