Development release of BIND 10: bind10-devel-20120517 Welcome to the 19th development release of BIND 10. This is the first development release of our fourth project year. Its new enhancements include: * Zones stored in a SQLite3 database can be loaded and served from in-memory for higher performance. A secondary zone can now also be served from in-memory. * NSEC support is completed for the in-memory datasource. * The control user interface can now execute a set of pre-defined commands for quick configurations. For the complete list of changes, see the ChangeLog at the end of this announcement. We now have 703 unique log messages each with corresponding documentation. Our build farm builds and run tests with SPARC, x86-64, and i386 architectures; Solaris, NetBSD, OpenBSD, MacOS, CentOS Linux. Debian Linux, and FreeBSD operating systems; and Clang, GCC, and SunStudio compilers. Both the authoritative and resolver servers are being used in production; for example, we run a community AS112 service that handles a light load of over 10,000 queries per second. BIND 10 provides a C++ library for DNS (with python wrappers) and several cooperating daemons for providing authoritative DNS service (with SQLite3 and in-memory backends and DNSSEC support), DNS forwarding, and recursive name service. It also includes experimental DHCPv4 and DHCPv6 servers and a C++ library for DHCP. BIND 10 offers statistics collection, remote configurations and operations, and documented logging messages. Documentation is included and also available via the BIND 10 website at http://bind10.isc.org/ The bind10-devel-20120517 source may be downloaded from: ftp://ftp.isc.org/isc/bind10/devel-20120517/bind10-devel-20120517.tar.gz A PGP signature of the distribution is at ftp://ftp.isc.org/isc/bind10/devel-20120517/bind10-devel-20120517.tar.gz.sha512.asc The signature was generated with the ISC public key, which is available at https://www.isc.org/about/openpgp Users and developers are encouraged to participate on the BIND 10 mailing lists. Please provide your feedback: https://lists.isc.org/mailman/listinfo/bind10-users https://lists.isc.org/mailman/listinfo/bind10-dev Bugs may be reported as tickets via the developers website (after logging into Trac): http://bind10.isc.org/ Thank you for using BIND 10! Jeremy C. Reed ISC Release Engineer ChangeLog: 440. [func] muks bindctl: improved some error messages so they will be more helpful. Those include the one when the zone name is unspecified or the name is invalid in the b10-auth configuration. (Trac #1627, git 1a4d0ae65b2c1012611f4c15c5e7a29d65339104) 439. [func] team The in-memory data source can now load zones from the sqlite3 data source, so that zones stored in the database (and updated for example by xfrin) can be served from memory. (Trac #1789,#1790,#1792,#1793,#1911, git 93f11d2a96ce4dba9308889bdb9be6be4a765b27) 438. [bug] naokikambe b10-stats-httpd now sends the system a notification that it is shutting down if it encounters a fatal error during startup. (Trac #1852, git a475ef271d4606f791e5ed88d9b8eb8ed8c90ce6) 437. [build] jinmei Building BIND 10 may fail on MacOS if Python has been installed via Homebrew unless --without-werror is specified. The configure script now includes a URL that explains this issue when it detects failure that is possibly because of this problem. (Trac #1907, git 0d03b06138e080cc0391fb912a5a5e75f0f97cec) 436. [bug] jelte The --config-file option now works correctly with relative paths if --data-path is not given. (Trac #1889, git ce7d1aef2ca88084e4dacef97132337dd3e50d6c) 435. [func] team The in-memory datasource now supports NSEC-signed zones. (Trac #1802-#1810, git 2f9aa4a553a05aa1d9eac06f1140d78f0c99408b) 434. [func] tomek libdhcp++: Linux interface detection refactored. The code is now cleaner. Tests better support certain versions of ifconfig. (Trac #1528, git 221f5649496821d19a40863e53e72685524b9ab2) 433. [func] tomek libdhcp++: Option6 and Pkt6 now follow the same design as options and packet for DHCPv4. General code refactoring after end of 2011 year release. (Trac #1540, git a40b6c665617125eeb8716b12d92d806f0342396) 432. [bug]* muks BIND 10 now installs its header files in a BIND 10 specific sub-directory in the install prefix. (Trac #1930, git fcf2f08db9ebc2198236bfa25cf73286821cba6b) 431. [func]* muks BIND 10 no longer starts b10-stats-httpd by default. (Trac #1885, git 5c8bbd7ab648b6b7c48e366e7510dedca5386f6c) 430. [bug] jelte When displaying configuration data, bindctl no longer treats optional list items as an error, but shows them as an empty list. (Trac #1520, git 0f18039bc751a8f498c1f832196e2ecc7b997b2a) 429. [func] jelte Added an 'execute' component to bindctl, which executes either a set of commands from a file or a built-in set of commands. Currently, only 'init_authoritative_server' is provided as a built-in set, but it is expected that more will be added later. (Trac #1843, git 551657702a4197ef302c567b5c0eaf2fded3e121) 428. [bug] marcin perfdhcp: bind to local address to allow reception of replies from IPv6 DHCP servers. (Trac #1908, git 597e059afaa4a89e767f8f10d2a4d78223af3940) 427. [bug] jinmei libdatasrc, b10-xfrin: the zone updater for database-based data sources now correctly distinguishes NSEC3-related RRs (NSEC3 and NSEC3-covering RRSIG) from others, and the SQLite3 implementation now manipulates them in the separate table for the NSEC3 namespace. As a result b10-xfrin now correctly updates NSEC3-signed zones by inbound zone transfers. (Trac #1781,#1788,#1891, git 672f129700dae33b701bb02069cf276238d66be3) 426. [bug] vorner The NSEC3 records are now included when transferring a signed zone out. (Trac #1782, git 36efa7d10ecc4efd39d2ce4dfffa0cbdeffa74b0) 425. [func]* muks Don't autostart b10-auth, b10-xfrin, b10-xfrout and b10-zonemgr in the default configuration. (Trac #1818, git 31de885ba0409f54d9a1615eff5a4b03ed420393) 424. [bug] jelte Fixed a bug in bindctl where in some cases, configuration settings in a named set could disappear, if a child element is modified. (Trac #1491, git 00a36e752802df3cc683023d256687bf222e256a) 423. [bug] jinmei The database based zone iterator now correctly resets mixed TTLs of the same RRset (when that happens) to the lowest one. The previous implementation could miss lower ones if it appears in a later part of the RRset. (part of Trac #1791, git f1f0bc00441057e7050241415ee0367a09c35032) 422. [bug] jinmei The database based zone iterator now separates RRSIGs of the same name and type but for different covered types. (part of Trac #1791, git b4466188150a50872bc3c426242bc7bba4c5f38d) 421. [build] jinmei Made sure BIND 10 can be built with clang++ 3.1. (It failed on MacOS 10.7 using Xcode 4.3, but it's more likely to be a matter of clang version.) (Trac #1773, git ceaa247d89ac7d97594572bc17f005144c5efb8d) 420. [bug]* jinmei, stephen Updated the DB schema used in the SQLite3 data source so it can use SQL indices more effectively. The previous schema had several issues in this sense and could be very slow for some queries on a very large zone (especially for negative answers). This change requires a major version up of the schema; use b10-dbutil to upgrade existing database files. Note: 'make install' will fail unless old DB files installed in the standard location have been upgraded. (Trac #324, git 8644866497053f91ada4e99abe444d7876ed00ff) 419. [bug] jelte JSON handler has been improved; escaping now works correctly (including quotes in strings), and it now rejects more types of malformed input. (Trac #1626, git 3b09268518e4e90032218083bcfebf7821be7bd5) 418. [bug] vorner Fixed crash in bindctl when config unset was called. (Trac #1715, git 098da24dddad497810aa2787f54126488bb1095c) 417. [bug] jelte The notify-out code now looks up notify targets in their correct zones (and no longer just in the zone that the notify is about). (Trac #1535, git 66300a3c4769a48b765f70e2d0dbf8bbb714435b) 416. [func]* jelte The implementations of ZoneFinder::find() now throw an OutOfZone exception when the name argument is not in or below the zone this zonefinder contains. (Trac #1535, git 66300a3c4769a48b765f70e2d0dbf8bbb714435b)