<86>Apr 27 09:58:51 userdel[413111]: delete user 'rooter' <86>Apr 27 09:58:51 userdel[413111]: removed group 'rooter' owned by 'rooter' <86>Apr 27 09:58:51 userdel[413111]: removed shadow group 'rooter' owned by 'rooter' <86>Apr 27 09:58:51 groupadd[413162]: group added to /etc/group: name=rooter, GID=1814 <86>Apr 27 09:58:51 groupadd[413162]: group added to /etc/gshadow: name=rooter <86>Apr 27 09:58:51 groupadd[413162]: new group: name=rooter, GID=1814 <86>Apr 27 09:58:51 useradd[413207]: new user: name=rooter, UID=1814, GID=1814, home=/root, shell=/bin/bash, from=none <86>Apr 27 09:58:51 userdel[413261]: delete user 'builder' <86>Apr 27 09:58:51 userdel[413261]: removed group 'builder' owned by 'builder' <86>Apr 27 09:58:51 userdel[413261]: removed shadow group 'builder' owned by 'builder' <86>Apr 27 09:58:51 groupadd[413296]: group added to /etc/group: name=builder, GID=1815 <86>Apr 27 09:58:51 groupadd[413296]: group added to /etc/gshadow: name=builder <86>Apr 27 09:58:51 groupadd[413296]: new group: name=builder, GID=1815 <86>Apr 27 09:58:51 useradd[413330]: new user: name=builder, UID=1815, GID=1815, home=/usr/src, shell=/bin/bash, from=none <13>Apr 27 09:58:55 rpmi: libidn2-2.3.7-alt1 sisyphus+339505.100.1.2 1706718975 installed <13>Apr 27 09:58:55 rpmi: libnettle8-3.9.1-alt1 sisyphus+322548.100.1.2 1686176897 installed <13>Apr 27 09:58:55 rpmi: strace-6.8-alt1 sisyphus+343145.100.1.1 1710923000 installed <13>Apr 27 09:58:55 rpmi: libgdbm-1.8.3-alt10 sisyphus+278100.1600.1.1 1626059138 installed <13>Apr 27 09:58:55 rpmi: libexpat-2.5.0-alt1 sisyphus+309227.100.1.1 1667075766 installed <13>Apr 27 09:58:55 rpmi: less-633-alt1 sisyphus+328181.300.2.1 1693321749 installed <13>Apr 27 09:58:55 rpmi: libtcl-8.6.13-alt1 sisyphus+310696.100.1.1 1669548256 installed <13>Apr 27 09:58:55 rpmi: libp11-kit-1:0.25.3-alt2 sisyphus+336533.100.1.1 1702645575 installed <13>Apr 27 09:58:55 rpmi: libtasn1-4.19.0-alt3 sisyphus+327816.100.1.1 1692802618 installed <13>Apr 27 09:58:55 rpmi: tcl-8.6.13-alt1 sisyphus+310696.100.1.1 1669548256 installed <13>Apr 27 09:58:55 rpmi: libhogweed6-3.9.1-alt1 sisyphus+322548.100.1.2 1686176897 installed <13>Apr 27 09:58:55 rpmi: libgnutls30-3.8.4-alt1 sisyphus+343729.100.2.1 1711570650 installed <13>Apr 27 09:58:55 rpmi: libngtcp2.16-1.4.0-alt1 sisyphus+343912.100.1.1 1711714686 installed <13>Apr 27 09:58:55 rpmi: libngtcp2_crypto_gnutls8-1.4.0-alt1 sisyphus+343912.100.1.1 1711714686 installed <13>Apr 27 09:58:55 rpmi: groff-base-1.22.3-alt2 sisyphus+275306.100.2.1 1624538359 installed <13>Apr 27 09:58:55 rpmi: libpipeline-1.5.7-alt1_1 sisyphus+312433.100.1.1 1671879776 installed <13>Apr 27 09:58:55 rpmi: sudo-1:1.9.15p5-alt1 sisyphus+337671.100.2.2 1705639466 installed <13>Apr 27 09:58:55 rpmi: libmpdec3-2.5.1-alt3 sisyphus+314490.500.5.1 1675432033 installed <13>Apr 27 09:58:55 rpmi: libb2-0.98.1-alt1_1 sisyphus+291614.100.1.1 1638962878 installed <13>Apr 27 09:58:55 rpmi: publicsuffix-list-dafsa-20240415-alt1 sisyphus+345249.100.1.1 1713270235 installed <13>Apr 27 09:58:55 rpmi: libpsl-0.21.5-alt1 sisyphus+338474.100.1.1 1705684771 installed <13>Apr 27 09:58:55 rpmi: libnghttp3.9-1.2.0-alt1 sisyphus+343912.200.1.1 1711714731 installed <13>Apr 27 09:58:55 rpmi: libnghttp2-1.61.0-alt1 sisyphus+344450.100.1.1 1712304122 installed <13>Apr 27 09:58:55 rpmi: openldap-common-2.6.7-alt1 sisyphus+343335.200.1.1 1711113916 installed <13>Apr 27 09:58:55 rpmi: libntlm-1.5-alt1 sisyphus+278100.3300.1.1 1626059663 installed <13>Apr 27 09:58:55 rpmi: libidn-1.37-alt2 sisyphus+300849.100.1.1 1653769693 installed <13>Apr 27 09:58:55 rpmi: libbrotlicommon-1.1.0-alt1 sisyphus+328501.100.1.1 1693598420 installed <13>Apr 27 09:58:55 rpmi: libbrotlidec-1.1.0-alt1 sisyphus+328501.100.1.1 1693598420 installed <13>Apr 27 09:58:55 rpmi: libxxhash-0.8.2-alt1 sisyphus+336514.200.7.1 1702672120 installed <13>Apr 27 09:58:55 rpmi: liblz4-1:1.9.4-alt1 sisyphus+309416.100.1.1 1667413000 installed <13>Apr 27 09:58:55 rpmi: libverto-0.3.2-alt1_1 sisyphus+321176.2200.10.2 1684806164 installed <13>Apr 27 09:58:55 rpmi: liblmdb-0.9.32-alt1 sisyphus+342426.100.1.1 1710124284 installed <13>Apr 27 09:58:55 rpmi: libkeyutils-1.6.3-alt1 sisyphus+266061.100.1.1 1612919567 installed <13>Apr 27 09:58:55 rpmi: libcom_err-1.46.4.0.5.4cda-alt1 sisyphus+283826.100.1.1 1629975361 installed <13>Apr 27 09:58:55 rpmi: libedit3-3.1.20230828-alt1 sisyphus+330914.200.3.1 1696922745 installed <13>Apr 27 09:58:55 rpmi: diffstat-1.64-alt1 sisyphus+278100.700.1.1 1626056686 installed <13>Apr 27 09:58:55 rpmi: rpm-macros-alternatives-0.5.2-alt2 sisyphus+315270.200.2.1 1676457367 installed <13>Apr 27 09:58:55 rpmi: alternatives-0.5.2-alt2 sisyphus+315270.200.2.1 1676457367 installed <13>Apr 27 09:58:55 rpmi: ca-certificates-2024.02.24-alt1 sisyphus+341362.100.1.1 1708791001 installed <13>Apr 27 09:58:55 rpmi: ca-trust-0.2.0-alt1 sisyphus+344843.100.1.1 1712743326 installed <13>Apr 27 09:58:55 rpmi: p11-kit-trust-1:0.25.3-alt2 sisyphus+336533.100.1.1 1702645575 installed <13>Apr 27 09:58:56 rpmi: libcrypto3-3.1.5-alt2 sisyphus+343320.140.3.1 1711982452 installed <13>Apr 27 09:58:56 rpmi: libssl3-3.1.5-alt2 sisyphus+343320.140.3.1 1711982452 installed <86>Apr 27 09:58:56 groupadd[436367]: group added to /etc/group: name=_keytab, GID=999 <86>Apr 27 09:58:56 groupadd[436367]: group added to /etc/gshadow: name=_keytab <86>Apr 27 09:58:56 groupadd[436367]: new group: name=_keytab, GID=999 <13>Apr 27 09:58:56 rpmi: libkrb5-1.21.2-alt2 sisyphus+338902.100.2.1 1706700985 installed <13>Apr 27 09:58:56 rpmi: python3-3.12.2-alt1 sisyphus+341702.200.1.1 1709232959 installed <13>Apr 27 09:58:56 rpmi: python3-base-3.12.2-alt1 sisyphus+341702.200.1.1 1709232959 installed <13>Apr 27 09:58:56 rpmi: libgsasl-2.2.0-alt1 sisyphus+333173.100.1.1 1698696961 installed <86>Apr 27 09:58:56 groupadd[440482]: group added to /etc/group: name=sasl, GID=998 <86>Apr 27 09:58:56 groupadd[440482]: group added to /etc/gshadow: name=sasl <86>Apr 27 09:58:56 groupadd[440482]: new group: name=sasl, GID=998 <13>Apr 27 09:58:56 rpmi: libsasl2-3-2.1.28-alt2 sisyphus+343335.100.1.1 1711112524 installed <13>Apr 27 09:58:56 rpmi: libldap2-2.6.7-alt1 sisyphus+343335.200.1.1 1711113906 installed <13>Apr 27 09:58:56 rpmi: openssh-common-9.6p1-alt1 sisyphus+338324.200.2.1 1706093727 installed <86>Apr 27 09:58:56 groupadd[440714]: group added to /etc/group: name=sshagent, GID=997 <86>Apr 27 09:58:56 groupadd[440714]: group added to /etc/gshadow: name=sshagent <86>Apr 27 09:58:56 groupadd[440714]: new group: name=sshagent, GID=997 <13>Apr 27 09:58:57 rpmi: openssh-clients-9.6p1-alt1 sisyphus+338324.200.2.1 1706093727 installed <13>Apr 27 09:58:57 rpmi: rsync-3.2.7-alt1 sisyphus+325006.2000.1.1 1689498390 installed <13>Apr 27 09:58:57 rpmi: libssh2-1.11.0-alt2 sisyphus+339356.100.1.1 1706593140 installed <13>Apr 27 09:58:57 rpmi: libcurl-8.7.1-alt2 sisyphus+345773.100.1.1 1713974756 installed <13>Apr 27 09:58:57 rpmi: git-core-2.42.1-alt1 sisyphus+333661.100.1.1 1699193194 installed <13>Apr 27 09:58:57 rpmi: firejail-0.9.72-alt1 sisyphus+317164.100.1.1 1679407004 installed <13>Apr 27 09:58:57 rpmi: libssl-devel-3.1.5-alt2 sisyphus+343320.140.3.1 1711982452 installed <13>Apr 27 09:58:57 rpmi: man-db-2.12.0-alt1 sisyphus+336930.2100.1.1 1703107336 installed <13>Apr 27 09:58:57 rpmi: expect-1:5.45.4-alt4 sisyphus+276236.100.1.2 1624923742 installed <13>Apr 27 09:58:57 rpmi: libseccomp-devel-2.5.5-alt1 sisyphus+335558.200.2.1 1701474992 installed Building target platforms: i586 Building for target i586 Wrote: /usr/src/in/nosrpm/fdns-0.9.72-alt1.nosrc.rpm (w1.gzdio) Installing fdns-0.9.72-alt1.src.rpm Building target platforms: i586 Building for target i586 Executing(%prep): /bin/sh -e /usr/src/tmp/rpm-tmp.20048 + umask 022 + /bin/mkdir -p /usr/src/RPM/BUILD + cd /usr/src/RPM/BUILD + cd /usr/src/RPM/BUILD + rm -rf fdns-0.9.72 + echo 'Source #0 (fdns-0.9.72.tar):' Source #0 (fdns-0.9.72.tar): + /bin/tar -xf /usr/src/RPM/SOURCES/fdns-0.9.72.tar + cd fdns-0.9.72 + echo 'Source #1 (fdns-0.9.72-etc-blocklists.tar):' Source #1 (fdns-0.9.72-etc-blocklists.tar): + /bin/tar -xf /usr/src/RPM/SOURCES/fdns-0.9.72-etc-blocklists.tar + /bin/chmod -c -Rf u+rwX,go-w . + echo 'Patch #0 (fdns-0.9.72-alt.patch):' Patch #0 (fdns-0.9.72-alt.patch): + /usr/bin/patch -p1 patching file src/fdns/fdns.h patching file src/fdns/main.c patching file src/fdns/server.c patching file src/fdns/ssl.c patching file test/fdns/all-interfaces.exp patching file test/fdns/blocklist-file.exp patching file test/fdns/blocklist.exp patching file test/fdns/dotvsh2.exp patching file test/fdns/fallback.exp patching file test/fdns/filter-doh.exp patching file test/fdns/filter.exp patching file test/fdns/forwarder.exp patching file test/fdns/help-man.exp patching file test/fdns/invalid-server.exp patching file test/fdns/ipv6.exp patching file test/fdns/keepalive.exp patching file test/fdns/list-adblocker.exp patching file test/fdns/list-all.exp patching file test/fdns/list-anycast.exp patching file test/fdns/list-family.exp patching file test/fdns/list-opennic.exp patching file test/fdns/list-security.exp patching file test/fdns/list.exp patching file test/fdns/local-doh.exp patching file test/fdns/monitor.exp patching file test/fdns/multiserver.exp patching file test/fdns/nofilter.exp patching file test/fdns/print-requests.exp patching file test/fdns/restart-workers.exp patching file test/fdns/server-anycast.exp patching file test/fdns/test-servers-anycast.exp patching file test/fdns/test-servers.exp patching file test/fdns/test-url-list.exp patching file test/fdns/test-url.exp patching file test/fdns/test-user.sh patching file test/fdns/test.sh patching file test/fdns/transport-udp.exp patching file test/fdns/transport.exp patching file test/fdns/unlisted.exp patching file test/fdns/wget.exp patching file test/fdns/whitelist-file.exp patching file test/fdns/whitelist.exp patching file test/fdns/workers.exp + exit 0 Executing(%build): /bin/sh -e /usr/src/tmp/rpm-tmp.44414 + umask 022 + /bin/mkdir -p /usr/src/RPM/BUILD + cd /usr/src/RPM/BUILD + cd fdns-0.9.72 + CFLAGS='-pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic' + export CFLAGS + CXXFLAGS='-pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic' + export CXXFLAGS + FFLAGS='-pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic' + export FFLAGS + FCFLAGS='-pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic' + export FCFLAGS + '[' -n '' ']' ++ printf %s '-pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic' ++ sed -r 's/(^|[[:space:]]+)-[^m][^[:space:]]*//g' + ASFLAGS=' -march=i586 -mtune=generic' + export ASFLAGS + export lt_cv_deplibs_check_method=pass_all + lt_cv_deplibs_check_method=pass_all + readlink -e -- ./configure + xargs -ri dirname -- '{}' + xargs -ri find '{}' -type f '(' -name config.sub -or -name config.guess ')' -printf '%h/\n' + sort -u + xargs -rn1 install -pm755 -- /usr/share/gnu-config/config.sub /usr/share/gnu-config/config.guess + configure_runstatedir_flags= + grep -qF runstatedir=DIR ./configure + configure_runstatedir_flags=--runstatedir=/var/run + ./configure --build=i586-alt-linux --host=i586-alt-linux --prefix=/usr --exec-prefix=/usr --bindir=/usr/bin --sbindir=/usr/sbin --sysconfdir=/etc --datadir=/usr/share --includedir=/usr/include --libdir=/usr/lib --libexecdir=/usr/lib --localstatedir=/var/lib --sharedstatedir=/var/lib --mandir=/usr/share/man --infodir=/usr/share/info --disable-dependency-tracking --disable-silent-rules --runstatedir=/var/run --without-included-gettext configure: WARNING: unrecognized options: --disable-dependency-tracking, --disable-silent-rules, --without-included-gettext checking for i586-alt-linux-gcc... i586-alt-linux-gcc checking whether the C compiler works... yes checking for C compiler default output file name... a.out checking for suffix of executables... checking whether we are cross compiling... no checking for suffix of object files... o checking whether the compiler supports GNU C... yes checking whether i586-alt-linux-gcc accepts -g... yes checking for i586-alt-linux-gcc option to enable C11 features... none needed checking for a BSD-compatible install... /usr/bin/ginstall -c checking for i586-alt-linux-ranlib... no checking for ranlib... ranlib checking whether C compiler accepts -mindirect-branch=thunk... yes checking whether C compiler accepts -mretpoline... no checking whether C compiler accepts -fstack-clash-protection... yes checking whether C compiler accepts -fstack-protector-strong... yes checking for main in -lpthread... yes checking for stdio.h... yes checking for stdlib.h... yes checking for string.h... yes checking for inttypes.h... yes checking for stdint.h... yes checking for strings.h... yes checking for sys/stat.h... yes checking for sys/types.h... yes checking for unistd.h... yes checking for pthread.h... yes checking for i586-alt-linux-pkg-config... no checking for pkg-config... pkg-config checking whether compiling and linking against OpenSSL works... yes OpenSSL library found checking for main in -lseccomp... yes checking for seccomp.h... yes configure: creating ./config.status config.status: creating Makefile config.status: creating src/common.mk config.status: creating src/fdns/Makefile config.status: creating src/nxdomain/Makefile configure: WARNING: unrecognized options: --disable-dependency-tracking, --disable-silent-rules, --without-included-gettext Configuration options: prefix: /usr sysconfdir: /etc systemd directory: /etc/fdns Spectre compiler patch: yes apparmor: seccomp: -DHAVE_SECCOMP EXTRA_LDFLAGS: EXTRA_CFLAGS: -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong fatal warnings: Gcov instrumentation: + make -j16 make -C src/fdns make -C src/nxdomain make: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72' ./mkman.sh 0.9.72 src/man/nxdomain.txt nxdomain.1 make: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c hpack_static.c -o hpack_static.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72' ./mkman.sh 0.9.72 src/man/fdns.txt fdns.1 make: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c resolver.c -o resolver.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c dnsdb.c -o dnsdb.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c dot.c -o dot.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c forwarder.c -o forwarder.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c huffman.c -o huffman.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c log.c -o log.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c h11.c -o h11.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c cache.c -o cache.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c lint.c -o lint.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c nxdomain.c -o nxdomain.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition nxdomain.c: In function 'test': nxdomain.c:92:14: warning: unused variable 'buf' [-Wunused-variable] 92 | char buf[LINE_MAX]; | ^~~ make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c filter.c -o filter.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c h2.c -o h2.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c dns.c -o dns.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c frontend.c -o frontend.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition frontend.c: In function 'frontend': frontend.c:489:121: warning: left-hand operand of comma expression has no effect [-Wunused-value] 489 | stats.query_time = (s.query_time * 0.18) + (stats.query_time * 0,82); | ^ make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c net.c -o net.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c timetrace.c -o timetrace.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c main.c -o main.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c procs.c -o procs.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c security.c -o security.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c shmem.c -o shmem.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c whitelist.c -o whitelist.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c resolver.c -o resolver.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c server.c -o server.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pipe -frecord-gcc-switches -Wall -g -O2 -flto=auto -march=i586 -mtune=generic -ggdb -O2 -DVERSION='"0.9.72"' -DHAVE_SECCOMP -DPREFIX='"/usr"' -DSYSCONFDIR='"/etc/fdns"' -DLIBDIR='"/usr/lib"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -fstack-clash-protection -fstack-protector-strong -c ssl.c -o ssl.o : warning: "_FORTIFY_SOURCE" redefined : note: this is the location of the previous definition make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' i586-alt-linux-gcc -pie -Wl,-z,relro -Wl,-z,now -lpthread -lseccomp -o nxdomain nxdomain.o resolver.o make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' i586-alt-linux-gcc -pie -Wl,-z,relro -Wl,-z,now -lpthread -lseccomp -o fdns cache.o dns.o dnsdb.o dot.o filter.o forwarder.o frontend.o h11.o h2.o hpack_static.o huffman.o lint.o log.o main.o net.o procs.o resolver.o security.o server.o shmem.o ssl.o timetrace.o whitelist.o -lssl -lcrypto -lrt -lseccomp make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' + exit 0 Executing(%install): /bin/sh -e /usr/src/tmp/rpm-tmp.76144 + umask 022 + /bin/mkdir -p /usr/src/RPM/BUILD + cd /usr/src/RPM/BUILD + /bin/chmod -Rf u+rwX -- /usr/src/tmp/fdns-buildroot + : + /bin/rm -rf -- /usr/src/tmp/fdns-buildroot + PATH=/usr/libexec/rpm-build:/usr/src/bin:/usr/bin:/bin:/usr/local/bin:/usr/games + cd fdns-0.9.72 + make 'INSTALL=/usr/libexec/rpm-build/install -p' install DESTDIR=/usr/src/tmp/fdns-buildroot SYSTEMD_DIR=/lib/systemd/system make: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72' make -C src/fdns make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make[1]: Nothing to be done for 'all'. make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/fdns' make -C src/nxdomain make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' make[1]: Nothing to be done for 'all'. make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72/src/nxdomain' make realinstall make[1]: Entering directory '/usr/src/RPM/BUILD/fdns-0.9.72' # fdns executable install -m 0755 -d /usr/src/tmp/fdns-buildroot//usr/bin install -c -m 0755 src/fdns/fdns /usr/src/tmp/fdns-buildroot//usr/bin/. install -c -m 0755 src/nxdomain/nxdomain /usr/src/tmp/fdns-buildroot//usr/bin/. # documents install -m 0755 -d /usr/src/tmp/fdns-buildroot//usr/share/doc/fdns install -c -m 0644 COPYING /usr/src/tmp/fdns-buildroot//usr/share/doc/fdns/. install -c -m 0644 README /usr/src/tmp/fdns-buildroot//usr/share/doc/fdns/. install -c -m 0644 RELNOTES /usr/src/tmp/fdns-buildroot//usr/share/doc/fdns/. # etc files install -m 0755 -d /usr/src/tmp/fdns-buildroot/etc/fdns install -m 0644 -t /usr/src/tmp/fdns-buildroot/etc/fdns etc/list.adblocker etc/list.coinblocker etc/list.fp-trackers etc/list.phishing etc/list.tld-blacklist etc/resolver.seccomp install -m 0644 -t /usr/src/tmp/fdns-buildroot/etc/fdns etc/servers etc/list.trackers # install server cusomization file sh -c "if [ ! -f /usr/src/tmp/fdns-buildroot//etc/fdns/servers.local ]; then install -c -m 0644 etc/servers.local /usr/src/tmp/fdns-buildroot//etc/fdns/servers.local; fi;" # systemd service unit install -Dm0644 etc/fdns.service /usr/src/tmp/fdns-buildroot/lib/systemd/system/fdns.service # man pages echo "**********************************" ********************************** echo fdns.1 nxdomain.1 fdns.1 nxdomain.1 echo "**********************************" ********************************** install -m 0755 -d /usr/src/tmp/fdns-buildroot//usr/share/man/man1 for man in fdns.1 nxdomain.1; do \ rm -f $man.gz; \ gzip -9n $man; \ case "$man" in \ *.1) install -c -m 0644 $man.gz /usr/src/tmp/fdns-buildroot//usr/share/man/man1/; ;; \ esac; \ done rm -f fdns.1 nxdomain.1 fdns.1.gz nxdomain.1.gz # bash completion install -m 0755 -d /usr/src/tmp/fdns-buildroot//usr/share/bash-completion/completions install -c -m 0644 src/bash_completion/fdns.bash_completion /usr/src/tmp/fdns-buildroot//usr/share/bash-completion/completions/fdns make[1]: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72' make: Leaving directory '/usr/src/RPM/BUILD/fdns-0.9.72' + /usr/lib/rpm/brp-alt Cleaning files in /usr/src/tmp/fdns-buildroot (auto) Verifying and fixing files in /usr/src/tmp/fdns-buildroot (binconfig,pkgconfig,libtool,desktop,gnuconfig) Checking contents of files in /usr/src/tmp/fdns-buildroot/ (default) Compressing files in /usr/src/tmp/fdns-buildroot (auto) Verifying systemd units in /usr/src/tmp/fdns-buildroot Adjusting library links in /usr/src/tmp/fdns-buildroot ./lib: (from :0) Verifying ELF objects in /usr/src/tmp/fdns-buildroot (arch=normal,fhs=normal,lfs=relaxed,lint=relaxed,rpath=normal,stack=normal,textrel=normal,unresolved=normal) verify-elf: WARNING: ./usr/bin/nxdomain: uses non-LFS functions: fopen mkstemp verify-elf: WARNING: ./usr/bin/fdns: uses non-LFS functions: fopen ftruncate mmap readdir stat Splitting links to aliased files under /{,s}bin in /usr/src/tmp/fdns-buildroot Executing(%check): /bin/sh -e /usr/src/tmp/rpm-tmp.67615 + umask 022 + /bin/mkdir -p /usr/src/RPM/BUILD + cd /usr/src/RPM/BUILD + cd fdns-0.9.72 + export PATH=/usr/src/bin:/usr/bin:/bin:/usr/local/bin:/usr/games:/usr/src/tmp/fdns-buildroot/usr/bin + PATH=/usr/src/bin:/usr/bin:/bin:/usr/local/bin:/usr/games:/usr/src/tmp/fdns-buildroot/usr/bin + export SHELL + export SERVER_LIST=/usr/src/tmp/fdns-buildroot/etc/fdns/servers + SERVER_LIST=/usr/src/tmp/fdns-buildroot/etc/fdns/servers + cd test/fdns + ./test-user.sh TESTING: help/man (test/fdns/help-man.exp) spawn /bin/bash fdns --server-list=/usr/src/tmp/fdns-buildroot/etc/fdns/servers --help [builder@localhost fdns]$ tmp [builder@localhost fdns]$ cat tmp FDNS(1) fdns man page FDNS(1) NAME fdns - Firejail DNS over HTTPS/TLS proxy SYNOPSIS Start the server (root user): fdns [OPTIONS] Start the monitor (regular user): fdns --monitor DESCRIPTION FDNS is an encrypted DNS proxy server for small networks and Linux desktops. To speed up the name resolution FDNS caches the responses, and uses a configurable adblocker and privacy filter to cut down the unnecessary traffic. We preconfigure FDNS with a large list of DoH/DoT service providers. For privacy reasons we use only services from non-logging providers. We prefer servers run out-of-pocket by students, engineers, open-source enthusiasts, privacy-oriented non-profit organizations, etc. Currently there are more than 100 such servers on our list. We also track a corporate category with several providers: Adguard, CleanBrowsing, Cloudflare, and Quad9. All have a non-logging privacy policy that will work in most parts of the world. The servers are organized using a simple geographically-aware tagging system. This allows the user to request specialized services such as adblocking, security, family filters, etc. Once started, FDNS chooses a server at random, as close geographically as possible. We derive the computer location from the timezone set- ting. There are no IP packets sent out to geolocation services. Three geographical zones are defined so far: Americas, AsiaPacific and Europe. Use --list=all option to print all the servers and the corre- sponding tags. OPTIONS --allow-all-queries Allow all DNS query types; by default only A queries are allowed. In case --ipv6 is set, AAAA queries are also allowed. --allow-expired-certs Allow expired SSL certificates during SSL connection. --allow-self-signed-certs Allow self-signed SSL certificates during SSL connection. Use this option for bringing up new servers. --blocklist=domain Block domain and return NXDOMAIN. Note: Blocking domains can also be requested in /etc/fdns/hosts file. This setting is global, and it will block the domains in all fdns instances running on your computer. Use --blocklist when you have multiple fdns proxies running, each instance with a different blocklist. Example: $ fdns --blocklist=fonts.googleaps.com --blocklist-file=filename Block all domains listed in the file. --cache-ttl=seconds Change DNS cache TTL, in seconds. By default we use a fixed cache TTL of 40 minutes. --certfile=filename Use an SSL certificate file in PEM format. By default we use the certificates installed by OpenSSL. Example: $ sudo fdns --certfile=/etc/ssl/certs/ca-certificates.crt --daemonize Detach from the controlling terminal and run as a Unix daemon. The typical way to start FDNS as network proxy is $ sudo fdns --proxy-addr-any --daemonize --debug Print debug messages. --debug-transport Print HTTP2 debug messages. --debug-ssl Print SSL/TLS debug messages. --details SSL connection information, HTTP headers and network traces are printed on the screen during the testing phase of the connec- tion. Example: $ fdns --test-server=cloudflare --details Testing server cloudflare Tags: anycast, Americas, AsiaPacific, Europe URL: https://cloudflare-dns.com/dns-query Bootstrap IP address: 1.1.1.1 Port: 443 TLSv1.3, ALPN h2, SNI no HTTP Header: ----------------------------- | (HPACK dynamic table size: 4096) | :status: 200 | server: cloudflare | date: Mon, 19 Jun 2023 11:20:53 GMT | content-type: application/dns-message | access-control-allow-origin: * | content-length: 77 | cf-ray: 7d9b62a62ff3ff84-BOS ----------------------------- SSL/TLS connection: 519.42 ms Network Trace: -----> rx 60 bytes: IP + TCP + TLS + H2-WINDOW-UPDATE -----> rx 187 bytes: IP + TCP + TLS + H2-HEADERS + H2-DATA (end stream) DoH query average: 64.38 ms Header uncompressed | compressed | ratio: 185 | 28 | 6.61:1 DoH/Do53 bandwidth ratio: 2.50 all done TESTING: list (test/fdns/list.exp) spawn /bin/bash [builder@localhost fdns]$ = set:qnGrzyfd3jHZqSZFS8l8ebHc4, libcrypto.so.3(OPENSSL_3.0.0), libseccomp.so.2 >= set:if7f4J0jiklXcvnd, libssl.so.3 >= set:niBO2kc09mkc4KYpwhoW303K4Zu7NRYbJdVtHN8G4RkUpKaxnJZc, libssl.so.3(OPENSSL_3.0.0), rtld(GNU_HASH) Requires(rpmlib): rpmlib(SetVersions) Finding debuginfo files (using /usr/lib/rpm/find-debuginfo-files) Executing: /bin/sh -e /usr/src/tmp/rpm-tmp.zFAxFL Creating fdns-debuginfo package Processing files: fdns-debuginfo-0.9.72-alt1 Finding Provides (using /usr/lib/rpm/find-provides) Executing: /bin/sh -e /usr/src/tmp/rpm-tmp.NsNPiL find-provides: running scripts (debuginfo) Finding Requires (using /usr/lib/rpm/find-requires) Executing: /bin/sh -e /usr/src/tmp/rpm-tmp.HMbkx4 find-requires: running scripts (debuginfo) Requires: fdns = 0.9.72-alt1, /usr/lib/debug/lib/ld-linux.so.2.debug, debug(libc.so.6), debug(libcrypto.so.3), debug(libseccomp.so.2), debug(libssl.so.3) Adding to fdns-debuginfo a strict dependency on fdns Wrote: /usr/src/RPM/RPMS/i586/fdns-0.9.72-alt1.i586.rpm (w2T16.xzdio) Wrote: /usr/src/RPM/RPMS/i586/fdns-debuginfo-0.9.72-alt1.i586.rpm (w2.lzdio) 6.87user 3.24system 0:16.74elapsed 60%CPU (0avgtext+0avgdata 52932maxresident)k 0inputs+0outputs (0major+562040minor)pagefaults 0swaps 3.87user 2.78system 0:33.85elapsed 19%CPU (0avgtext+0avgdata 129196maxresident)k 7680inputs+0outputs (0major+222823minor)pagefaults 0swaps --- fdns-0.9.72-alt1.i586.rpm.repo 2024-03-25 06:43:00.000000000 +0000 +++ fdns-0.9.72-alt1.i586.rpm.hasher 2024-04-27 09:59:22.116976602 +0000 @@ -57,4 +57,4 @@ File: /lib/systemd/system/fdns.service 100644 root:root 39e16dbfa974fbe9a39ec59d1651bd9a -File: /usr/bin/fdns 100755 root:root 2f0b32234a6ede5b69f3ad616db6d5fe -File: /usr/bin/nxdomain 100755 root:root f375238eabf93f2675db0ad084661943 +File: /usr/bin/fdns 100755 root:root 2fd72e2b9b20dede7e4e13bc18588452 +File: /usr/bin/nxdomain 100755 root:root f3d96f1b17869c3da5adc85b6a8ac931 File: /usr/share/bash-completion/completions/fdns 100644 root:root 0823108aa87de1ac4d0c101994660229 @@ -70,2 +70,2 @@ File: /usr/share/man/man1/nxdomain.1.xz 100644 root:root ae55a8998367541e41bcbbf50bb7cbc3 -RPMIdentity: cc71d918313cdd72f8a0f349a2c78204daf71358388a55354b18f4d77bfa960ad78ce3fde099248b1aeefc47024c41674c9a8809f3045aa248d3719625be05f8 +RPMIdentity: 71691c88d4bd200edbfe80060e6f05c1cf5bb8d0c2c114051e96d16072262525738e5a83019ce568dc29ca2694548d9ee79522233be2d2785ae03e9835fc768e --- fdns-debuginfo-0.9.72-alt1.i586.rpm.repo 2024-03-25 06:43:00.000000000 +0000 +++ fdns-debuginfo-0.9.72-alt1.i586.rpm.hasher 2024-04-27 09:59:22.367980479 +0000 @@ -1,7 +1,7 @@ -/usr/lib/debug/.build-id/20 40755 root:root -/usr/lib/debug/.build-id/20/b1251ea251891d6fd9a6141b9e56a474965622 120777 root:root ../../../../bin/fdns -/usr/lib/debug/.build-id/20/b1251ea251891d6fd9a6141b9e56a474965622.debug 120777 root:root ../../usr/bin/fdns.debug -/usr/lib/debug/.build-id/6b 40755 root:root -/usr/lib/debug/.build-id/6b/8a7c43a48c159c6966ecd1fc437ed8743c63bf 120777 root:root ../../../../bin/nxdomain -/usr/lib/debug/.build-id/6b/8a7c43a48c159c6966ecd1fc437ed8743c63bf.debug 120777 root:root ../../usr/bin/nxdomain.debug +/usr/lib/debug/.build-id/3f 40755 root:root +/usr/lib/debug/.build-id/3f/4802cc66bfffafce0778b529f4c53d162ec64b 120777 root:root ../../../../bin/fdns +/usr/lib/debug/.build-id/3f/4802cc66bfffafce0778b529f4c53d162ec64b.debug 120777 root:root ../../usr/bin/fdns.debug +/usr/lib/debug/.build-id/f9 40755 root:root +/usr/lib/debug/.build-id/f9/389b5856411602f8029a0311c606a25c8f3113 120777 root:root ../../../../bin/nxdomain +/usr/lib/debug/.build-id/f9/389b5856411602f8029a0311c606a25c8f3113.debug 120777 root:root ../../usr/bin/nxdomain.debug /usr/lib/debug/usr/bin/fdns.debug 100644 root:root @@ -51,10 +51,10 @@ Provides: fdns-debuginfo = 0.9.72-alt1:sisyphus+342503.1.8.1 -File: /usr/lib/debug/.build-id/20 40755 root:root -File: /usr/lib/debug/.build-id/20/b1251ea251891d6fd9a6141b9e56a474965622 120777 root:root ../../../../bin/fdns -File: /usr/lib/debug/.build-id/20/b1251ea251891d6fd9a6141b9e56a474965622.debug 120777 root:root ../../usr/bin/fdns.debug -File: /usr/lib/debug/.build-id/6b 40755 root:root -File: /usr/lib/debug/.build-id/6b/8a7c43a48c159c6966ecd1fc437ed8743c63bf 120777 root:root ../../../../bin/nxdomain -File: /usr/lib/debug/.build-id/6b/8a7c43a48c159c6966ecd1fc437ed8743c63bf.debug 120777 root:root ../../usr/bin/nxdomain.debug -File: /usr/lib/debug/usr/bin/fdns.debug 100644 root:root a1dc12fd0e352a52b834d3e3887e1d0c -File: /usr/lib/debug/usr/bin/nxdomain.debug 100644 root:root 21a04e1592904d313b3483012a64183c +File: /usr/lib/debug/.build-id/3f 40755 root:root +File: /usr/lib/debug/.build-id/3f/4802cc66bfffafce0778b529f4c53d162ec64b 120777 root:root ../../../../bin/fdns +File: /usr/lib/debug/.build-id/3f/4802cc66bfffafce0778b529f4c53d162ec64b.debug 120777 root:root ../../usr/bin/fdns.debug +File: /usr/lib/debug/.build-id/f9 40755 root:root +File: /usr/lib/debug/.build-id/f9/389b5856411602f8029a0311c606a25c8f3113 120777 root:root ../../../../bin/nxdomain +File: /usr/lib/debug/.build-id/f9/389b5856411602f8029a0311c606a25c8f3113.debug 120777 root:root ../../usr/bin/nxdomain.debug +File: /usr/lib/debug/usr/bin/fdns.debug 100644 root:root 47d6ce3da52d8b4ab2ac0ba5cad08c21 +File: /usr/lib/debug/usr/bin/nxdomain.debug 100644 root:root 10b9d4c2f667d69a80a6daa13ad1356b File: /usr/src/debug/fdns-0.9.72 40755 root:root @@ -94,2 +94,2 @@ File: /usr/src/debug/fdns-0.9.72/src/nxdomain/resolver.c 100644 root:root 6fba9990c7eaff72304bbf67b64f8b08 -RPMIdentity: dc37db4d1f465cce6042fe79583863975effd4736866bda72d39d4a771ee76b4cc5e124baa87d1cb9d0744aa38e420d144e59f7761b17d319a5e3d480bc7c56b +RPMIdentity: 1eea8ccec59dcce85409be75aa960483d373b8f234aa2b14b27586a8d92fd2a417de313a315640a8b6d389dfe7cea9aaaf6c66972ceaf431d7ea7884285a1b94