|
|
1. Improve BIND performance
|
|
|
* Refactoring / replacing the networking code (wpk)
|
|
|
* First part done for BIND 9.13/9.14
|
|
|
* Second part for BIND 9.15/9.16 - separate engine (libuv)
|
|
|
|
|
|
2. Improve BIND management (each)
|
|
|
* BIND statistics system overhaul (https://gitlab.isc.org/isc-projects/bind9/issues/38)
|
|
|
* Clarify, improve operational utility of statistics and accuracy for (resource consumption, performance, exception alerting)
|
|
|
|
|
|
* Catalog zones update per the Draft (Michal)
|
|
|
|
|
|
3. Security & privacy initiatives
|
|
|
* DNS over TLS (wpk, after network refactoring)
|
|
|
1. Networking
|
|
|
* Client->Server communication with wpk-NetMgr (Priority 1)
|
|
|
* DNS over HTTP(2) (Priority 1)
|
|
|
* Client - dig, delv, named as forwarder
|
|
|
* Server - named as resolver, but auth implicitly
|
|
|
* DNS over TLS (Priority 3)
|
|
|
* Server - named as resolver, but auth implicitly
|
|
|
* Client(?) - dig, delv, named as forwarder
|
|
|
* *XFR
|
|
|
* Simplification of client tools (Priority 4)
|
|
|
|
|
|
* DNS over HTTP(2) (ISC hackathon)
|
|
|
* Client - dig, delv, named as forwarder
|
|
|
* Server - named as resolver, but auth implicitly
|
|
|
2. Improve BIND management
|
|
|
* Stork Metrics (Priority 1)
|
|
|
* BIND statistics system overhaul (https://gitlab.isc.org/isc-projects/bind9/issues/38) (Priority 2)
|
|
|
* Clarify, improve operational utility of statistics and accuracy for (resource consumption, performance, exception alerting) (Priority 3)
|
|
|
* Catalog zones update per the Draft (Priority 4)
|
|
|
* Zone templates (Priority 4)
|
|
|
|
|
|
4. Operational enhancements
|
|
|
3. Operational enhancements
|
|
|
|
|
|
* DNSSEC Made Easy (Matthijs)
|
|
|
* finish/improve DNSSEC key manager, integrate with other DNSSEC tools
|
|
|
* parent-child updating phase 2 (Tony Finch)
|
|
|
* DNSSEC Made Complete (Priority 2)
|
|
|
* finish/improve DNSSEC key manager, integrate with other DNSSEC tools
|
|
|
* parent-child updating phase 2
|
|
|
* TBD updated by @matthijs
|
|
|
|
|
|
* Solution for CNAME at the apex problem (Matthijs)
|
|
|
* Solution for CNAME at the apex problem (Priority 3)
|
|
|
* ANAME draft implemented in a BIND module
|
|
|
* Tony Finch's thing
|
|
|
* SRV-like for HTTP
|
|
|
* HTTPSSRV (In Review)
|
|
|
|
|
|
* RNDC `support` command (Joey)
|
|
|
4. Refactoring
|
|
|
|
|
|
* EDNS Tag draft (draft-bellis-dnsop-edns-tags)
|
|
|
* Automake (Priority 3)
|
|
|
|
|
|
* DNS extended errors draft (each)
|
|
|
* Sphinx-doc (Priority 3)
|
|
|
|
|
|
## Nice to have
|
|
|
* Refactoring / replacing the task+taskmanager code+timers (Priority 4)
|
|
|
* libevent/libuv in BIND 9.15/9.16
|
|
|
|
|
|
* Zone templates
|
|
|
* EDNS chain
|
|
|
* Faster, more efficient zone content propogation zone updates
|
|
|
### Stretch Goals
|
|
|
|
|
|
* Refactoring / replacing the task+taskmanager code+timers
|
|
|
* libevent/libuv in BIND 9.15/9.16
|
|
|
* EDNS Tag draft (draft-bellis-dnsop-edns-tags)
|
|
|
|
|
|
* DNS extended errors draft
|
|
|
|
|
|
* EDNS chain
|
|
|
* Faster, more efficient zone content propagation zone updates
|
|
|
* Whole answer cache as module if it significantly improves performance (Witold's and Evan's pet project)
|
|
|
|
|
|
* Zone file digest (integrity of updates)
|
... | ... | @@ -55,11 +55,11 @@ |
|
|
* Provisioning of zones and configuration -- Catalog zones++ -- like PowerDNS master server, something that will master the views and acls as well as the zones
|
|
|
* Lockless data structures (queues, lists)
|
|
|
* NSEC5 - Experimental; Depends on crypto availability in OpenSSL
|
|
|
* As a hobby project for Ondrej
|
|
|
* Actually going to be implemented by BU
|
|
|
* Telemetry (Call Home)
|
|
|
* Telemetry on options used
|
|
|
* Version check
|
|
|
* DNS Stateful Operations (Matthijs)
|
|
|
* DNS Stateful Operations
|
|
|
|
|
|
## New ideas
|
|
|
|
... | ... | |