Compiling dnsmasq with dnssec support?

Johannes Kastl mail at ojkastl.de
Sun Oct 30 01:15:24 PDT 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi all,

I just tried to get dnssec working with dnsmasq, but I found no way
to compile it with DNSSEC via macports (i.e. there is no variant
+dnssec).

I tried to create a variant (in my local repository), which sets
- -DHAVE_DNSSEC in the COPTS list, but during compilation it never got
used and thus dnsmasq does not start as soon as dnssec-related
options (https://wiki.gentoo.org/wiki/Dnsmasq#DNSSEC) appear in the
conf file.

I then created a patch, put it into the files folder, and told the
portfile to use it:

> patchfiles      patch-src-config.h.diff \ 
> patch-src-network.c.diff \ patch-src-config.h_DNSSEC.diff

And now it seems to compile and does start with dnssec-related stuff
in dnsmasq.conf.

If I understand the config.h correctly, using COPTS should work,
alas in my tests it did not...

Question 1: Is it possible to use different patchfiles-statements,
depending on the variant?

Question 2: Is it possible to add another patch in one variant?

Question 3: Is there any reason why no +dnssec variant exists? Or
why dnssec is not enabled by default (as long as the dnssec stuff is
commented in the dnsmasq.conf it should not interfere, I guess)?

Kind regards,
Johannes
-----BEGIN PGP SIGNATURE-----
Comment: Using GnuPG with SeaMonkey - http://www.enigmail.net/

iEYEARECAAYFAlgVrBYACgkQzi3gQ/xETbI9AwCfXtv3w95oB02aRR5WKSTh5rjB
wd8AnRmFrpV/M6/Xy3LCiJY0qc4xJnJ9
=9w20
-----END PGP SIGNATURE-----



More information about the macports-dev mailing list