ChangeLog 181 KB
Newer Older
Stephen Morris's avatar
Stephen Morris committed
1
2
3
4
5
6
646.	[func]		stephen
	Extended the hooks framework to add a "validate libraries" function.
	This will be used to check libraries specified during BIND 10
	configuration.
	(Trac #3054, git 0f845ed94f462dee85b67f056656b2a197878b04)

7
645.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
8
9
	Added initial set of hooks (pk4_receive, subnet4_select,
	lease4_select, pkt4_send) to the DHCPv6 server.
10
11
	(Trac #2994, git be65cfba939a6a7abd3c93931ce35c33d3e8247b)

12
13
14
15
16
17
18
19
20
644.	[func]		marcin
	b10-dhcp4, b10-dhcp6: Implemented selection of the interfaces
	that server listens on, using Configuration Manager. It is
	possible to specify interface names explicitly or use asterisk
	to specify that server should listen on all available interfaces.
	Sockets are reopened according to the new configuration as
	soon as it is committed.
	(Trac #1555, git f48a3bff3fbbd15584d788a264d5966154394f04)

21
22
23
24
25
26
27
643.	[bug]		muks
	When running some unittests as root that depended on insufficient
	file permissions, the tests used to fail because the root user
	could still access such files. Such tests are now skipped when
	they are run as the root user.
	(Trac #3056, git 92ebabdbcf6168666b03d7f7fbb31f899be39322)

28
29
30
31
32
642.	[func]		tomek
	Added initial set of hooks (pk6_receive, subnet6_select,
	lease6_select, pkt6_send) to the DHCPv6 server.
	(Trac #2995, git d6de376f97313ba40fef989e4a437d184fdf70cc)

33
34
35
36
37
38
641.	[func]		stephen
	Added the hooks framework. This allows shared libraries of
	user-written functions to be loaded at run-time and the
	functions called during packet processing.
	(Trac #2980, git 82c997a72890a12af135ace5b9ee100e41c5534e)

39
40
41
42
43
44
45
640.	[func]		marcin
	b10-dhcp-ddns: Implemented DNSClient class which implements
	asynchronous DNS updates using UDP. The TCP and TSIG support
	will be	implemented at later time. Nevertheless, class API
	accomodates the use of TCP and TSIG.
	(Trac #2977, git 5a67a8982baa1fd6b796c063eeb13850c633702c)

46
47
48
49
50
51
639.	[bug]		muks
	Added workaround for build failure on Fedora 19 between GCC 4.8.x
	and boost versions less than 1.54. Fedora 19 currently ships
	boost-1.53.
	(Trac #3039, git 4ef6830ed357ceb859ebb3e5e821a064bd8797bb)

Naoki Kambe's avatar
Naoki Kambe committed
52
53
54
55
56
57
638.	[bug]*		naokikambe
	Per-zone statistics counters are distinguished by zone class,
	e.g. IN, CH, and HS. A class name is added onto a zone name in
	structure of per-zone statistics.
	(Trac #2884, git c0153581c3533ef045a92e68e0464aab00947cbb)

58
59
60
61
62
63
637.	[func]		[tmark]
	Added initial implementation of NameChangeRequest,
	which embodies DNS update requests sent to DHCP-DDNS
	by its clients.
	(trac3007 git f33bdd59c6a8c8ea883f11578b463277d01c2b70)

64
65
66
67
68
636.	[func]		[tmark]
	Added the initial implementation of configuration parsing for
	DCHP-DDNS.
	(Trac #2957, git c04fb71fa44c2a458aac57ae54eeb1711c017a49)

69
70
71
72
635.	[func]		marcin
	b10-dhcp-ddns: Implemented DNS Update message construction.
	(Trac #2796, git eac5e751473e238dee1ebf16491634a1fbea25e2)

73
74
75
76
77
78
79
80
81
634.	[bug]		muks
	When processing DDNS updates, we now check the zone more
	thoroughly with the received zone data updates to check if it is
	valid.  If the zone fails validation, we reply with SERVFAIL
	rcode. So, while previously we may have allowed more zone data
	cases without checking which resulted in invalid zones, such
	update requests are now rejected.
	(Trac #2759, git d8991bf8ed720a316f7506c1dd9db7de5c57ad4d)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
82
83
84
85
86
87
88
633.	[func]		jinmei
	b10-memmgr: a new BIND 10 module that manages shared memory
	segments for DNS zone data.  At this point it's runnable but does
	nothing really meaningful for end users; it was added to the
	master branch for further development.
	(Trac #2854, git d05d7aa36d0f8f87b94dba114134b50ca37eabff)

89
90
91
92
93
632.	[bug]		marcin
	perfdhcp: Fixed a bug in whereby the application was sporadically
	crashing when timed out packets were garbage collected.
	(Trac #2979, git 6d42b333f446eccc9d0204bcc04df38fed0c31db)

94
95
96
97
98
631.	[bug]		muks
	Applied a patch by Tomas Hozza to fix a couple of compile errors
	on Fedora 19 development release.
	(Trac #3001, git 6e42b90971b377261c72d51c38bf4a8dc336664a)

99
100
101
102
103
104
105
630.	[bug]		muks
	If there is a problem loading the backend module for a type of
	data source, b10-auth would not serve any zones. This behaviour
	has been changed now so that it serves zones from all other usable
	data sources that were configured.
	(Trac #2947, git 9a3ddf1e2bfa2546bfcc7df6d9b11bfbdb5cf35f)

106
107
108
109
629.	[func]		stephen
	Added first part of the hooks framework.
	(Trac #2794, git d2b107586db7c2deaecba212c891d231d7e54a07)

110
111
112
113
114
115
628.	[func]		y-aharen
	b10-auth: A new statistics item 'qryrecursion' has been introduced.
	The counter is for the number of queries (OpCode=Query) with Recursion
	Desired (RD) bit on.
	(Trac #2796, git 3d291f42cdb186682983aa833a1a67cb9e6a8434)

116
627.	[func]		tmark
117
118
119
120
	Logger name for DHCP-DDNS has been changed from "d2_logger" to
	"dhcpddns".  In addition, its log messages now use two suffixes,
	DCTL_ for logs the emanate from the underlying base classes, and
	DHCP_DDNS_ for logs which emanate from DHCP-DDNS specific code
121
	(Trac #2978, git 5aec5fb20b0486574226f89bd877267cb9116921)
Thomas Markwalder's avatar
Thomas Markwalder committed
122

123
124
125
126
127
626.	[func]		tmark
	Created the initial implementation of DHCP-DDNS service
	controller class, D2Controller, and the abstract class from
	which it derives,DControllerBase. D2Controller manages the
	lifecycle and BIND10 integration of the DHCP-DDNS application
128
	process, D2Process. Also note, module name is now
129
130
131
	b10-dhcp-ddns.
	(Trac #2956, git a41cac582e46213c120b19928e4162535ba5fe76)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
132
133
134
135
136
137
138
139
140
141
625.	[bug]*		jinmei
	b10-xfrin/b10-loadzone: b10-xfrin now refers to the unified
	"data_sources" module configuration instead of almost-deprecated
	the Auth/database_file configuration (Note: zonemgr still uses the
	latter, so a secondary server would still need it for the moment).
	Due to this change, b10-xfrin does not auto-generate an initial
	zone for the very first transfer anymore; b10-loadzone has been
	extended with a new -e option for the initial setup.
	(Trac #2946, git 8191aec04c5279c199909f00f0a0b2b8f7bede94)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
142
143
144
145
146
147
148
149
150
151
624.	[bug]		jinmei
	logging: prevented multiple BIND 10 processes from generating
	multiple small log files when they dumped logs to files and try
	to roll over them simultaneously.  This fix relies on a feature of
	underling logging library (log4cplus) version 1.1.0 or higher,
	so the problem can still happen if BIND 10 is built with an older
	version of log4cplus. (But this is expected to happen rarely in
	any case unless a verbose debug level is specified).
	(Trac #1622, git 5da8f8131b1224c99603852e1574b2a1adace236)

152
623.	[func]		tmark
153
154
155
156
157
158
	Created the initial, bare-bones implementation of DHCP-DDNS service
	process class, D2Process, and the abstract class from which it derives,
	DProcessBase. D2Process will provide the DHCP-DDNS specific event loop
	and business logic.
	(Trac #2955, git dbe4772246039a1257b6492936fda2a8600cd245)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
159
160
161
162
163
164
165
166
167
168
169
622.	[func]*		jinmei
	b10-xfrin now has tighter control on the choice of IXFR or AXFR
	through zones/request_ixfr configuration item.  It includes
	the new "IXFR only" behavior for some special cases.  b10-xfrin
	now also uses AXFR whenever necessary, so it is now safe to try
	IXFR by default and it's made the default.  The previous
	use_ixfr configuration item was deprecated and triggers startup
	failure if specified; configuration using use_ixfr should be
	updated.
	(Trac #2911, git 8118f8e4e9c0ad3e7b690bbce265a163e4f8767a)

170
171
172
173
174
175
176
177
178
179
180
181
621.	[func]		team
	libdns++: All Rdata classes now use the generic lexer in
	constructors from text. This means that the name fields in such
	RRs in a zone file can now be non-absolute (the origin name in that
	context will be used), e.g., when loaded by b10-loadzone. Note
	that the existing string constructors for these Rdata classes also
	use the generic lexer, and they now expect an absolute name (with
	the trailing '.') in the name fields.
	(Trac #2522, git ea97070cf6b41299351fc29af66fa39c6465d56a)
	(Trac #2521, git c6603decaadcd33ccf9aee4a7b22447acec4b7f6)
	(See also ChangeLog 594, 564, 545)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
182
183
184
185
186
187
188
189
190
191
620.	[bug]		jinmei
	b10-auth now returns SERVFAIL to queries for a zone that is
	configured to be loaded in-memory but isn't due to load time
	errors (missing zone file or errors in the zone file, etc).
	Such zones were previously treated as non existent and would
	result in REFUSED or unintentional match against less specific
	zones.  The revised behavior is also compatible with BIND 9.
	(Trac #2905, git 56ee9810fdfb5f86bd6948e6bf26545ac714edd8)

619.	[bug]		jinmei
JINMEI Tatuya's avatar
JINMEI Tatuya committed
192
193
194
195
196
	b10-xfrout now uses blocking send for xfr response messages
	to prevent abrupt termination of the stream due to a slower
	client or narrower network bandwidth.
	(Trac #2934, git bde0e94518469557c8b455ccbecc079a38382afd)

197
618.	[func]*		marcin
JINMEI Tatuya's avatar
JINMEI Tatuya committed
198
199
200
201
202
203
204
205
206
	b10-dhcp4: Added the ability for the server to respond to a
	directly connected client which does not yet have an IP address.
	On Linux, the server will unicast the response to the client's
	hardware address and the 'yiaddr' (the client's new IP
	address). Sending a response to the unicast address prevents other
	(not interested) hosts from receiving the server response. This
	capability is not yet implemented on non-Linux Operating Systems
	where, in all cases, the server responds to the broadcast
	address. The logic conforms to section 4.1 of RFC 2131.
207
208
	(Trac #2902, git c2d40e3d425f1e51647be6a717c4a97d7ca3c29c)

209
210
211
212
213
214
215
216
617.	[bug]		marcin
	b10-dhcp4: Fixed a bug whereby the domain-name option was encoded
	as FQDN (using technique described in RFC1035) instead of a string.
	Also, created new class which represents an option carrying a single
	string value. This class is now used for all standard options of
	this kind.
	(Trac #2786, git 96b1a7eb31b16bf9b270ad3d82873c0bd86a3530)

217
218
219
220
221
222
616.	[doc]		stephen
	Added description to the DHCP "Database Back-Ends" section of the
	BIND 10 Developer's Guide about how to set up a MySQL database for
	testing the DHCP MySQL backend.
	(Trac #2653, git da3579feea036aa2b7d094b1c260a80a69d2f9aa)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
223
224
225
226
227
228
229
615.	[bug]		jinmei
	b10-auth: Avoid referencing to a freed object when authoritative
	server addresses are reconfigured.  It caused a crash on a busy
	server during initial startup time, and the same crash could also
	happen if listen_on parameters are reconfigured at run time.
	(Trac #2946, git d5f2a0d0954acd8bc33aabb220fab31652394fcd)

230
614.	[func]		tmark
231
	b10-d2: Initial DHCP-DDNS (a.k.a. D2) module implemented.
Jeremy C. Reed's avatar
Jeremy C. Reed committed
232
233
	Currently it does nothing useful, except for providing the
	skeleton implementation to be expanded in the future.
234
235
	(Trac #2954, git 392c5ec5d15cd8c809bc9c6096b9f2bfe7b8c66a)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
236
237
238
239
240
241
242
243
244
245
246
613.	[func]		jinmei
	datasrc: Error handling in loading zones into memory is now more
	consistent and convenient: data source configuration does not fail
	due to zones configured to be loaded into memory but not available
	in the data source, just like the case of missing zone file for
	the MasterFiles type of data source.  Also, zones that aren't
	loaded into memory due to errors can now be reloaded for b10-auth
	using the bindctl Auth loadzone command after fixing the error,
	without reconfiguring the entire data source.
	(Trac #2851, git a3d4fe8a32003534150ed076ea0bbf80e1fcc43c)

247
248
612.	[func]		tomek
	b10-dhcp6: Support for relayed DHCPv6 traffic has been added.
249
	(Trac #2898, git c3f6b67fa16a07f7f7ede24dd85feaa7c157e1cb)
250

Naoki Kambe's avatar
Naoki Kambe committed
251
252
253
254
255
256
257
611.	[func]		naokikambe
	Added Xfrin statistics items such as the number of successful
	transfers.  These are per-zone type counters.  Their values can be
	obtained with zone names by invoking "Stats show Xfrin" via bindctl
	while Xfrin is running.
	(Trac #2252, git e1a0ea8ef5c51b9b25afa111fbfe9347afbe5413)

258
bind10-1.1.0beta2 released on May 10, 2013
259

260
261
262
263
264
265
610.	[bug]		muks
	When the sqlite3 program is not available on the system (in
	PATH), we no longer attempt to run some tests which depend
	on it.
	(Trac #1909, git f85b274b85b57a094d33ca06dfbe12ae67bb47df)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
266
267
268
269
270
271
272
273
274
609.	[bug]		jinmei
	Handled some rare error cases in DNS server classes correctly.
	This fix specifically solves occasional crash of b10-auth due to
	errors caused by TCP DNS clients.  Also, as a result of cleanups
	with the fix, b10-auth should now be a little bit faster in
	handling UDP queries: in some local experiments it ran about 5%
	faster.
	(Trac #2903, git 6d3e0f4b36a754248f8a03a29e2c36aef644cdcc)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
275
276
277
278
279
280
281
282
608.	[bug]		jinmei
	b10-cmdctl: fixed a hangup problem on receiving the shutdown
	command from bindctl.  Note, however, that cmdctl is defined as
	a "needed" module by default, so shutting down cmdctl would cause
	shutdown of the entire BIND 10 system anyway, and is therefore
	still not very useful in practice.
	(Trac #2712, git fa392e8eb391a17d30550d4b290c975710651d98)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
283
284
285
286
287
288
289
290
291
292
293
294
295
607.	[bug]		jinmei
	Worked around some unit test regressions on FreeBSD 9.1 due to
	a binary compatibility issue between standard and system
	libraries (http://www.freebsd.org/cgi/query-pr.cgi?pr=175453).
	While not all tests still pass, main BIND 10 programs should
	generally work correctly.  Still, there can be odd run time
	behavior such as abrupt crash instead of graceful shutdown
	when some fatal event happens, so it's generally discouraged to
	use BIND 10 on FreeBSD 9.1 RELEASE.  According to the above
	bug report for FreeBSD, it seems upgrading or downgrading the
	FreeBSD version will solve this problem.
	(Trac #2887, git 69dfb4544d9ded3c10cffbbfd573ae05fdeb771f)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
296
297
298
299
300
301
302
606.	[bug]		jinmei
	b10-xfrout now correctly stops sending notify requests once it
	receives a valid response.  It previously handled it as if the
	requests are timed out and resent it a few times in a short
	period.
	(Trac #2879, git 4c45f29f28ae766a9f7dc3142859f1d0000284e1)

Thomas Markwalder's avatar
Thomas Markwalder committed
303
605.	[bug]		tmark
304
305
	Modified perfdhcp to calculate the times displayed for packet sent
	and received as time elapsed since perfdhcp process start time.
Thomas Markwalder's avatar
Thomas Markwalder committed
306
307
308
309
310
	Previously these were times since the start of the epoch.
	However the large numbers involved caused loss of precision
	in the calculation of the test statistics.
	(Trac #2785, git e9556924dcd1cf285dc358c47d65ed7c413e02cf)

311
312
313
314
315
316
317
318
319
604.	[func]		marcin
	libdhcp++: abstracted methods which open sockets and send/receive
	DHCP4 packets to a separate class. Other classes will be derived
	from it to implement OS-specific methods of DHCPv4 packets filtering.
	The primary purpose for this change is to add support for Direct
	DHCPv4 response to a client which doesn't have an address yet on
	different OSes.
	(Trac #991, git 33ffc9a750cd3fb34158ef676aab6b05df0302e2)

320
321
322
323
324
325
326
327
603.	[func]		tmark
	The directory in which the b10-dchp4 and b10-dhcp6 server id files has
	been changed from the local state directory (set by the "configure"
	--localstatedir switch) to the "bind10" subdirectory of it. After an
	upgrade, server id files in the former location will be orphaned and
	should be manually removed.
	(Trac #2770, git a622140d411b3f07a68a1451e19df36118a80650)

Thomas Markwalder's avatar
Thomas Markwalder committed
328
602.	[bug]		tmark
Jeremy C. Reed's avatar
Jeremy C. Reed committed
329
	Perfdhcp will now exit gracefully if the command line argument for
330
331
332
	IP version (-4 or -6) does not match the command line argument
	given for the server. Prior to this perfdhcp would core when given
	an IP version of -6 but a valid IPv4 address for server.
Thomas Markwalder's avatar
Thomas Markwalder committed
333
334
	(Trac #2784, git 96b66c0c79dccf9a0206a45916b9b23fe9b94f74)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
335
336
601.	[bug]*		jinmei, vorner
	The "delete record" interface of the database based data source
337
	was extended so that the parameter includes reversed name in
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
338
339
340
341
342
343
344
345
346
	addition to the actual name.  This may help the underlying
	accessor implementation if reversed names are more convenient
	for the delete operation.  This was the case for the SQLite3
	accessor implementation, and it now performs delete operations
	much faster.  At a higher level, this means IXFR and DDNS Updates
	to the sqlite3 database are no longer so slow on large zones as
	they were before.
	(Trac #2877, git 33bd949ac7288c61ed0a664b7329b50b36d180e5)

347
600.	[bug]		tmark
348
349
350
351
352
353
354
355
	Changed mysql_lease_mgr to set the SQL mode option to STRICT. This
	causes mysql it to treat invalid input data as an error. Rather than
	"successfully" inserting a too large value by truncating it, the
	insert will fail, and the lease manager will throw an exception.
	Also, attempts to create a HWAddr (hardware address) object with
	too long an array of data now throw an exception.
	(Trac #2387, git cac02e9290600407bd6f3071c6654c1216278616)

356
599.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
357
358
	libdhcp++: Pkt6 class is now able to parse and build relayed DHCPv6
	messages.
359
360
	(Trac #2827, git 29c3f7f4e82d7e85f0f5fb692345fd55092796b4)

361
bind10-1.1.0beta1 released on April 4, 2013
Jeremy C. Reed's avatar
Jeremy C. Reed committed
362

363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
598.	[func]*		jinmei
	The separate "static" data source is now deprecated as it can be
	served in the more generic "MasterFiles" type of data source.
	This means existing configuration may not work after an update.
	If "config show data_sources/classes/CH[0]" on bindctl contains a
	"static" type of data source, you'll need to update it as follows:
	> config set data_sources/classes/CH[0]/type MasterFiles
	> config set data_sources/classes/CH[0]/params {"BIND": =>
	  "<the value of current data_sources/classes/CH[0]/params>"}
	> config set data_sources/classes/CH[0]/cache-enable true
	> config commit
	(Same for CH[1], CH[2], IN[0], etc, if applicable, although it
	should be very unlikely in practice.  Also note: '=>' above
	indicates the next line is actually part of the command.  Do
	not type in this "arrow").
	(Part of Trac #2833, git 0363b4187fe3c1a148ad424af39e12846610d2d7)

380
381
382
383
384
385
597.	[func]		tmark
	b10-dhcp6: Added unit tests for handling requests when no
	IPv6 subnets are configured/defined. Testing these conditions
	was overlooked during implementation of Trac #2719.
	(Trac #2721, git ce7f53b2de60e2411483b4aa31c714763a36da64)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
386
387
388
389
390
391
392
393
394
596.	[bug]		jinmei
	Added special handling for the case where b10-auth receives a
	NOTIFY message, but zonemgr isn't running. Previously this was
	logged as a communications problem at the ERROR level, resulting
	in increasing noise when zonemgr is intentionally stopped. Other
	than the log level there is no change in externally visible
	behavior.
	(Trac #2562, git 119eed9938b17cbad3a74c823aa9eddb7cd337c2)

395
595.	[bug]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
396
397
	All DHCP components now gracefully refuse to handle too short
	DUIDs and client-id.
398
399
	(Trac #2723, git a043d8ecda6aff57922fe98a33c7c3f6155d5d64)

400
401
402
403
404
405
406
407
408
594.	[func]		muks, pselkirk
	libdns++: the NSEC, DS, DLV, and AFSDB Rdata classes now use the
	generic lexer in constructors from text.  This means that the name
	fields in such RRs in a zone file can now be non-absolute (the
	origin name in that context will be used), e.g., when loaded by
	b10-loadzone.
	(Trac #2386, git dc0f34afb1eccc574421a802557198e6cd2363fa)
	(Trac #2391, git 1450d8d486cba3bee8be46e8001d66898edd370c)

409
410
411
412
413
414
593.	[func]		jelte
	Address + port output and logs is now consistent according to our
	coding guidelines, e.g. <address>:<port> in the case of IPv4, and
	[<address>]:<port> in the case of IPv6, instead of <address>#<port>
	(Trac #1086, git bcefe1e95cdd61ee4a09b20522c3c56b315a1acc)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
415
416
417
418
419
420
421
422
423
592.	[bug]		jinmei
	b10-auth and zonemgr now handle some uncommon NOTIFY messages more
	gracefully: auth immediately returns a NOTAUTH response if the
	server does not have authority for the zone (the behavior
	compatible with BIND 9) without bothering zonemgr; zonemgr now
	simply skips retransfer if the specified zone is not in its
	secondary zone list, instead of producing noisy error logs.
	(Trac #1938, git 89d7de8e2f809aef2184b450e7dee1bfec98ad14)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
424
425
591.	[func]		vorner
	Ported the remaining tests from the old shell/perl based system to
426
427
	lettuce. Make target `systest' is now gone. Currently, the lettuce
	tests are in git only, not part of the release tarball.
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
428
429
	(Trac #2624, git df1c5d5232a2ab551cd98b77ae388ad568a683ad)

Thomas Markwalder's avatar
Thomas Markwalder committed
430
431
432
433
590.	[bug]		tmark
	Modified "include" statements in DHCP MySQL lease manager code to
	fix build problems if MySQL is installed in a non-standard location.
	(Trac #2825, git 4813e06cf4e0a9d9f453890557b639715e081eca)
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
434

435
436
437
438
439
589.	[bug]		jelte
	b10-cmdctl now automatically re-reads the user accounts file when
	it is updated.
	(Trac #2710, git 16e8be506f32de668699e6954f5de60ca9d14ddf)

440
588.	[bug]*		jreed
441
442
	b10-xfrout: Log message id XFROUT_QUERY_QUOTA_EXCCEEDED
	changed to XFROUT_QUERY_QUOTA_EXCEEDED.
443
	(git be41be890f1349ae4c870a887f7acd99ba1eaac5)
444

445
446
587.	[bug]		jelte
	When used from python, the dynamic datasource factory now
447
	explicitly loads the logging messages dictionary, so that correct
448
449
450
	logging messages does not depend on incidental earlier import
	statements. Also, the sqlite3-specific log messages have been moved
	from the general datasource library to the sqlite3 datasource
451
	(which also explicitly loads its messages).
452
	(Trac #2746, git 1c004d95a8b715500af448683e4a07e9b66ea926)
453

454
586.	[func]		marcin
455
	libdhcp++: Removed unnecessary calls to the function which
456
457
458
459
460
461
462
463
464
	validates option definitions used to create instances of options
	being decoded in the received packets. Eliminating these calls
	lowered the CPU utilization by the server by approximately 10%.
	Also, added the composite search indexes on the container used to
	store DHCP leases by Memfile backend. This resulted in the
	significant performance rise when using this backend to store
	leases.
	(Trac #2701, git b96a30b26a045cfaa8ad579b0a8bf84f5ed4e73f)

465
466
467
468
469
470
471
472
473
474
585.	[func]		jinmei, muks
	The zone data loader now accepts RRs in any order during load.
	Before it used to reject adding non-consecutive RRsets. It
	expected records for a single owner name and its type to be
	grouped together. These restrictions are now removed.  It now also
	suppresses any duplicate RRs in the zone file when loading them
	into memory.
	(Trac #2440, git 232307060189c47285121f696d4efb206f632432)
	(Trac #2441, git 0860ae366d73314446d4886a093f4e86e94863d4)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
475
476
477
478
479
480
481
482
483
584.	[bug]		jinmei
	Fixed build failure with Boost 1.53 (and probably higher) in the
	internal utility library.  Note that with -Werror it may still
	fail, but it's due to a Boost bug that is reportedly fixed in their
	development trunk.  See https://svn.boost.org/trac/boost/ticket/8080
	Until the fix is available in a released Boost version you may need
	to specify the --without-werror configure option to build BIND 10.
	(Trac #2764, git ca1da8aa5de24358d7d4e7e9a4625347457118cf)

484
485
486
487
488
489
490
491
492
493
494
583.	[func]*		jelte
	b10-cmdctl-usermgr has been updated and its options and arguments
	have changed; it now defaults to the same accounts file as
	b10-cmdctl defaults to. It can now be used to remove users from the
	accounts file as well, and it now accepts command-line arguments to
	specify the username and password to add or remove, in which case
	it will not prompt for them.
	Note that using a password on the command line is not recommended,
	as this can be viewed by other users.
	(Trac #2713, git 9925af3b3f4daa47ba8c2eb66f556b01ed6f0502)

Naoki Kambe's avatar
Naoki Kambe committed
495
496
497
498
499
500
501
582.	[func]		naokikambe
	New statistics items related unixdomain sockets added into Xfrout :
	open, openfail, close, bindfail, acceptfail, accept, senderr, and
	recverr.  Their values can be obtained by invoking "Stats show Xfrout"
	via bindctl while Xfrout is running.
	(Trac #2225, git 6df60554683165adacc2d1c3d29aa42a0c9141a1)

502
581.	[func]*		y-aharen
Yoshitaka Aharen's avatar
Yoshitaka Aharen committed
503
504
505
506
507
	Added statistics items in b10-auth based on
	http://bind10.isc.org/wiki/StatisticsItems. Qtype counters are
	dropped as it requires further spec design discussion.
	(Trac #2154, Trac #2155,
	             git 61d7c3959eb991b22bc1c0ef8f4ecb96b65d9325)
508
	(Trac #2157, git e653adac032f871cbd66cd500c37407a56d14589)
Yoshitaka Aharen's avatar
Yoshitaka Aharen committed
509

510
511
bind10-1.0.0-rc released on February 14, 2013

512
513
514
515
516
517
518
580.	[func]*		muks
	There is no longer a default user account. The old default account
	with username 'root' has been removed. In a fresh installation of
	BIND 10, the administrator has to configure a user account using
	the b10-cmdctl-usermgr program.
	(Trac #2641, git 54e8f4061f92c2f9e5b8564240937515efa6d934)

519
520
521
522
523
524
525
526
527
579.	[bug]		jinmei
	libdatasrc/b10-auth: corrected some corner cases in query handling
	of in-memory data source that led to the following invalid/odd
	responses from b10-auth:
	- duplicate RRs in answer and additional for type ANY query
	- incorrect NSEC for no error, no data (NXRRSET) response that
	  matches a wildcard
	(Trac #2585, git abe78fae4ba3aca5eb01806dd4e05607b1241745)

528
529
578.	[bug]		jinmei
	b10-auth now returns closest encloser NSEC3 proof to queries for
530
	an empty non terminal derived from an Opt-Out NSEC3 RR, as clarified
531
532
533
534
	in errata 3441 for RFC5155.  Previously it regarded such case as
	broken zone and returned SERVFAIL.
	(Trac #2659, git 24c235cb1b379c6472772d340e21577c3460b742)

535
536
537
538
539
540
541
577.	[func]		muks
	Added an SQLite3 index on records(rname, rdtype). This decreases
	insert performance by ~28% and adds about ~20% to the file size,
	but increases zone iteration performance. As it introduces a new
	index, a database upgrade would be required.
	(Trac #1756, git 9b3c959af13111af1fa248c5010aa33ee7e307ee)

542
543
544
576.	[bug]		tmark, tomek
	b10-dhcp6: Fixed bug when the server aborts operation when
	receiving renew and there are no IPv6 subnets configured.
Jeremy C. Reed's avatar
Jeremy C. Reed committed
545
	(Trac #2719, git 3132b8b19495470bbfd0f2ba0fe7da443926034b)
546

547
548
549
550
551
552
553
554
575.	[bug]		marcin
	b10-dhcp6: Fixed the bug whereby the subnet for the incoming
	packet was selected using only its source address. The subnet
	is now selected using either source address or the name of the
	server's interface on which the packet has been received.
	(Trac #2704, git 1cbacf19a28bdae50bb9bd3767bca0147fde37ed)

574.	[func]		tmark
555
556
557
558
559
560
	b10-dhcp4, b10-dhcp6: Composite key indexes were added to the lease
	tables to reduce lease search time. The lease4 table now has two
	additional indexes: a) hwaddr/subnet_id and b) client_id/subnet_id.
	The lease6 now has the one additional index: iaid/subnet_id/duid.
	Adding these indexes significantly improves lease acquisition
	performance.
561
	(Trac #2699,#2703, git 54bbed5fcbe237c5a49b515ae4c55148723406ce)
562

Stephen Morris's avatar
Stephen Morris committed
563
564
565
566
567
568
573.	[bug]		stephen
	Fixed problem whereby the DHCP server crashed if it ran out of
	addresses.  Such a condition now causes a packet to be returned
	to the client refusing the allocation of an address.
	(Trac #2681, git 87ce14cdb121b37afb5b1931af51bed7f6323dd6)

569
570
571
572
573
572.	[bug]		marcin
	perfdhcp: Fixed bug where the command line switches used to
	run the perfdhcp where printed as ASCII codes.
	(Trac #2700, git b8d6b949eb7f4705e32fbdfd7694ca2e6a6a5cdc)

574
575
576
577
578
579
571.	[build]		jinmei
	The ./configure script can now handle output from python-config
	--ldflags that contains a space after -L switches.  This fixes
	failure reported on some Solaris environments.
	(Trac #2661, git e6f86f2f5eec8e6003c13d36804a767a840d96d6)

580
570.	[bug]		tmark, marcin, tomek
581
	b10-dhcp4: Address renewal now works properly for DHCPv4 clients
Tomek Mrugalski's avatar
Tomek Mrugalski committed
582
583
	that do not send client ID.
	(Trac #2702, git daf2abe68ce9c111334a15c14e440730f3a085e2)
584

585
569.	[bug]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
586
587
588
589
	b10-dhcp4: Fix bug whereby a DHCP packet without a client ID
	could crash the MySQL lease database backend.
	(Trac #2697, git b5e2be95d21ed750ad7cf5e15de2058aa8bc45f4)

Jeremy C. Reed's avatar
Jeremy C. Reed committed
590
568.	[func]		muks
591
592
593
594
	Various message IDs have been renamed to remove the word 'ERROR'
	from them when they are not logged at ERROR severity level.
	(Trac #2672, git 660a0d164feaf055677f375977f7ed327ead893e)

595
596
597
598
567.	[doc]		marcin, stephen, tomek
	Update DHCP sections of the BIND 10 guide.
	(Trac #2657, git 1d0c2004865d1bf322bf78d13630d992e39179fd)

599
600
601
602
603
604
605
606
607
608
609
610
566.	[func]*		jinmei
	libdns++/Python isc.dns: In Python isc.dns, function style
	constants for RRType, RRClass, Rcode and Opcode were deprecated
	and replaced with straightforward object constants, e.g., from
	RRType.AAAA() to RRType.AAAA.  This is a backward incompatible
	change (see the Trac ticket for a conversion script if needed).
	Also, these constants are now more consistent between C++
	and Python, and RRType constants for all currently standardized
	types are now supported (even if Rdata for these are not yet
	available).
	(Trac #1866 and #2409, git e5005185351cf73d4a611407c2cfcd163f80e428)

611
612
613
614
615
616
617
618
619
620
621
565.	[func]*		jelte
	The main initializer script (formerly known as either 'bind10',
	'boss', or 'bob'), has been renamed to b10-init (and Init in
	configuration). Configuring which components are run is henceforth
	done through '/Init/components', and the sbin/bind10 script is now
	simply a shellscript that runs b10-init. Existing configuration is
	automatically updated. NOTE: once configuration with this update
	has been saved (by committing any new change with bindctl), you
	cannot run older versions of BIND 10 anymore with this configuration.
	(Trac #1901, git bae3798603affdb276f370c1ac6b33b011a5ed4f)

622
623
624
625
626
627
628
629
630
631
632
633
564.	[func]		muks
	libdns++: the CNAME, DNAME, MX, NS, PTR and SRV Rdata classes now
	use the generic lexer in constructors from text.  This means that
	the name fields in such RRs in a zone file can now be non-absolute
	(the origin name in that context will be used), e.g., when loaded
	by b10-loadzone. One additional change to the libdns++ API is that
	the existing string constructors for these Rdata classes also use
	the generic lexer, and they now expect an absolute name (with the
	trailing '.') in the name fields.
	(Trac #2390, git a01569277cda3f78b1171bbf79f15ecf502e81e2)
	(Trac #2656, git 5a0d055137287f81e23fbeedd35236fee274596d)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
634
635
636
637
638
563.	[build]		jinmei
	Added --disable-rpath configure option to avoid embedding library
	paths to binaries.  Patch from Adam Tkac.
	(Trac #2667, git 1c50c5a6ee7e9675e3ab154f2c7f975ef519fca2)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
639
640
562.	[func]*		vorner
	The b10-xfrin now performs basic sanity check on just received
Jeremy C. Reed's avatar
Jeremy C. Reed committed
641
	zone. It'll reject severely broken zones (such as missing NS
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
642
643
644
	records).
	(Trac #2439, git 44699b4b18162581cd1dd39be5fb76ca536012e6)

645
646
647
648
649
650
561.	[bug]		kambe, jelte
	b10-stats-httpd no longer dumps request information to the console,
	but uses the bind10 logging system. Additionally, the logging
	identifiers have been changed from STATHTTPD_* to STATSHTTPD_*
	(Trac #1897, git 93716b025a4755a8a2cbf250a9e4187741dbc9bb)

651
652
653
654
655
656
657
658
560.	[bug]		jinmei
	b10-auth now sets the TTL of SOA RR for negative responses to
	the minimum of the RR TTL and the minimum TTL of the SOA RDATA
	as specified in RFC2308; previously the RR TTL was always used.
	The ZoneFinder class was extended partly for implementing this
	and partly for allowing further optimization.
	(Trac #2309 and #2635, git ee17e979fcde48b59d91c74ac368244169065f3b)

659
660
661
662
663
664
665
666
667
559.	[bug]		jelte
	b10-cmdctl no longer aborts on basic file issues with its https
	certificate or private key file. It performs additional checks, and
	provides better error logs if these fail. Additionally, bindctl
	provides a better error report if it is unable to connect over
	https connection. This issue could occur if BIND 10 was installed
	with root privileges but then started as a normal user.
	(Trac #2595, git 09b1a2f927483b407d70e98f5982f424cc872149)

668
669
670
671
672
673
674
675
558.	[func]		marcin
	b10-dhcp4: server now adds configured options to its
	responses to a client when client requests them.
	A few basic options: Routers, Domain Name, Domain
	Name Servers and Subnet Mask are added regardless
	if client requested them or not.
	(Trac #2591, git aeec2dc1b9c511d17971ac63138576c37e7c5164)

676
557.	[doc]		stephen
677
678
679
	Update DHCP sections of the BIND 10 guide.
	(Trac #2642, git e5faeb5fa84b7218fde486347359504cf692510e)

680
681
682
683
684
685
686
687
688
556.	[bug]		marcin
	Fixed DHCP servers configuration whereby the servers did not
	receive a configuration stored in the database on their startup.
	Also, the configuration handler function now uses full configuration
	instead of partial to configure the server. This guarantees that
	dependencies between various configuration parameters are
	fulfilled.
	(Trac #2637, git 91aa998226f1f91a232f2be59a53c9568c4ece77)

689
690
691
692
693
694
555.	[func]		marcin
	The encapsulated option space name can be specified for
	a DHCP option. It comprises sub-options being sent within
	an option that encapsulates this option space.
	(Trac #2314, git 27e6119093723a1e46a239ec245a8b4b10677635)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
695
696
697
698
699
700
701
702
554.	[func]		jinmei
	b10-loadzone: improved completion log message and intermediate
	reports: It now logs the precise number of loaded RRs on
	completion, and intermediate reports show additional information
	such as the estimated progress in percentage and estimated time
	to complete.
	(Trac #2574, git 5b8a824054313bdecb8988b46e55cb2e94cb2d6c)

Jeremy C. Reed's avatar
Jeremy C. Reed committed
703
553.	[func]		stephen
704
705
706
707
	Values of the parameters to access the DHCP server lease database
	can now be set through the BIND 10 configuration mechanism.
	(Trac #2559, git 6c6f405188cc02d2358e114c33daff58edabd52a)

Jeremy C. Reed's avatar
Jeremy C. Reed committed
708
709
552.	[bug]		shane
	Build on Raspberry PI.
710
711
712
713
714
715
	The main issue was use of char for reading from input streams,
	which is incorrect, as EOF is returned as an int -1, which would
	then get cast into a char -1.
	A number of other minor issues were also fixed.
	(Trac #2571, git 525333e187cc4bbbbde288105c9582c1024caa4a)

Jeremy C. Reed's avatar
Jeremy C. Reed committed
716
551.	[bug]		shane
717
718
719
720
	Kill msgq if we cannot connect to it on startup.
	When the boss process was unable to connect to the msgq, it would
	exit. However, it would leave the msgq process running. This has
	been fixed, and the msgq is now stopped in this case.
721
	(Trac #2608, git 016925ef2437e0396127e135c937d3a55539d224)
722
723

550.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
724
725
726
727
728
	b10-dhcp4: The DHCPv4 server now generates a server identifier
	the first time it is run. The identifier is preserved in a file
	across server restarts.
	b10-dhcp6: The server identifier is now preserved in a file across
	server restarts.
729
730
	(Trac #2597, git fa342a994de5dbefe32996be7eebe58f6304cff7)

731
549.	[func]		tomek
732
733
734
	b10-dhcp6: It is now possible to specify that a configured subnet
	is reachable locally over specified interface (see "interface"
	parameter in Subnet6 configuration).
735
736
737
	(Trac #2596, git a70f6172194a976b514cd7d67ce097bbca3c2798)

548.	[func]		vorner
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
738
739
740
741
742
743
744
	The message queue daemon now appears on the bus. This has two
	effects, one is it obeys logging configuration and logs to the
	correct place like the rest of the modules. The other is it
	appears in bindctl as module (but it doesn't have any commands or
	configuration yet).
	(Trac #2582, git ced31d8c5a0f2ca930b976d3caecfc24fc04634e)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
745
746
747
748
547.	[func]*		vorner
	The b10-loadzone now performs more thorough sanity check on the
	loaded data.  Some of the checks are now fatal and zone failing
	them will be rejected.
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
749
	(Trac #2436, git 48d999f1cb59f308f9f30ba2639521d2a5a85baa)
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
750

751
752
753
754
755
756
757
758
759
546.	[func]		marcin
	DHCP option definitions can be now created using the
	Configuration Manager. The option definition specifies
	the option code, name and the types of the data being
	carried by the option.  The Configuration Manager
	reports an error on attempt to override standard DHCP
	option definition.
	(Trac #2317, git 71e25eb81e58a695cf3bad465c4254b13a50696e)

760
761
762
763
764
765
766
545.	[func]		jinmei
	libdns++: the SOA Rdata class now uses the generic lexer in
	constructors from text.  This means that the MNAME and RNAME of an
	SOA RR in a zone file can now be non absolute (the origin name
	in that context will be used), e.g., when loaded by b10-loadzone.
	(Trac #2500, git 019ca218027a218921519f205139b96025df2bb5)

767
544.	[func]		tomek
768
769
770
771
772
773
774
	b10-dhcp4: Allocation engine support for IPv4 added. Currently
	supported operations are server selection (Discover/Offer),
	address assignment (Request/Ack), address renewal (Request/Ack),
	and address release (Release). Expired leases can be reused.
	Some options (e.g. Router Option) are still hardcoded, so the
	DHCPv4 server is not yet usable, although its address allocation
	is operational.
775
776
	(Trac #2320, git 60606cabb1c9584700b1f642bf2af21a35c64573)

777
778
779
543.	[func]*		jelte
	When calling getFullConfig() as a module, , the configuration is now
	returned as properly-structured JSON.  Previously, the structure had
Jeremy C. Reed's avatar
Jeremy C. Reed committed
780
781
	been flattened, with all data being labelled by fully-qualified
	element names.
782
783
	(Trac #2619, git bed3c88c25ea8f7e951317775e99ebce3340ca22)

784
785
786
787
788
789
790
791
792
793
794
542.	[func]		marcin
	Created OptionSpace and OptionSpace6 classes to represent DHCP
	option spaces. The option spaces are used to group instances
	and definitions of options having uniqe codes. A special type
	of option space is the so-called "vendor specific option space"
	which groups sub-options sent within Vendor Encapsulated Options.
	The new classes are not used yet but they will be used once
	the creation of option spaces by configuration manager is
	implemented.
	(Trac #2313, git 37a27e19be874725ea3d560065e5591a845daa89)

795
541.	[func]		marcin
796
	Added routines to search for configured DHCP options and their
797
	definitions using name of the option space they belong to.
798
799
	New routines are called internally from the DHCPv4 and DHCPv6
	servers code.
800
801
	(Trac #2315, git 741fe7bc96c70df35d9a79016b0aa1488e9b3ac8)

802
803
804
805
806
807
808
809
810
540.	[func]		marcin
	DHCP Option values can be now specified using a string of
	tokens separated with comma sign. Subsequent tokens are used
	to set values for corresponding data fields in a particular
	DHCP option. The format of the token matches the data type
	of the corresponding option field: e.g. "192.168.2.1" for IPv4
	address, "5" for integer value etc.
	(Trac #2545, git 792c129a0785c73dd28fd96a8f1439fe6534a3f1)

Stephen Morris's avatar
Stephen Morris committed
811
812
813
814
539.	[func]		stephen
	Add logging to the DHCP server library.
	(Trac #2524, git b55b8b6686cc80eed41793c53d1779f4de3e9e3c)

Mukund Sivaraman's avatar
Mukund Sivaraman committed
815
816
817
818
819
820
821
538.	[bug]		muks
	Added escaping of special characters (double-quotes, semicolon,
	backslash, etc.) in text-like RRType's toText() implementation.
	Without this change, some TXT and SPF RDATA were incorrectly
	stored in SQLite3 datasource as they were not escaped.
	(Trac #2535, git f516fc484544b7e08475947d6945bc87636d4115)

822
537.	[func]		tomek
823
824
	b10-dhcp6: Support for RELEASE message has been added. Clients
	are now able to release their non-temporary IPv6 addresses.
825
826
	(Trac #2326, git 0974318566abe08d0702ddd185156842c6642424)

827
828
829
830
831
832
833
834
835
836
837
536.	[build]		jinmei
	Detect a build issue on FreeBSD with g++ 4.2 and Boost installed via
	FreeBSD ports at ./configure time.  This seems to be a bug of
	FreeBSD	ports setup and has been reported to the maintainer:
	http://www.freebsd.org/cgi/query-pr.cgi?pr=174753
	Until it's fixed, you need to build BIND 10 for FreeBSD that has
	this problem with specifying --without-werror, with clang++
	(development version), or with manually extracted Boost header
	files (no compiled Boost library is necessary).
	(Trac #1991, git 6b045bcd1f9613e3835551cdebd2616ea8319a36)

838
839
840
841
842
535.	[bug]		jelte
	The log4cplus internal logging mechanism has been disabled, and no
	output from the log4cplus library itself should be printed to
	stderr anymore. This output can be enabled by using the
	compile-time option --enable-debug.
843
	(Trac #1081, git db55f102b30e76b72b134cbd77bd183cd01f95c0)
844

Jeremy C. Reed's avatar
Jeremy C. Reed committed
845
534.	[func]*		vorner
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
846
847
848
849
850
851
	The b10-msgq now uses the same logging format as the rest
	of the system. However, it still doesn't obey the common
	configuration, as due to technical issues it is not able
	to read it yet.
	(git 9e6e821c0a33aab0cd0e70e51059d9a2761f76bb)

852
853
bind10-1.0.0-beta released on December 20, 2012

854
855
856
857
858
859
860
861
862
533.	[build]*		jreed
	Changed the package name in configure.ac from bind10-devel
	to bind10. This means the default sub-directories for
	etc, include, libexec, share, share/doc, and var are changed.
	If upgrading from a previous version, you may need to move
	and update your configurations or change references for the
	old locations.
	(git bf53fbd4e92ae835280d49fbfdeeebd33e0ce3f2)

863
864
865
866
867
868
869
870
871
532.	[func]		marcin
	Implemented configuration of DHCPv4 option values using
	the configuration manager. In order to set values for the
	data fields carried by a particular option, the user
	specifies a string of hexadecimal digits that is converted
	to binary data and stored in the option buffer. A more
	user-friendly way of specifying option content is planned.
	(Trac #2544, git fed1aab5a0f813c41637807f8c0c5f8830d71942)

872
531.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
873
874
	b10-dhcp6: Added support for expired leases. Leases for IPv6
	addresses that are past their valid lifetime may be recycled, i.e.
875
	relocated to other clients if needed.
876
877
	(Trac #2327, git 62a23854f619349d319d02c3a385d9bc55442d5e)

878
879
880
881
882
883
884
885
886
887
888
889
890
891
530.	[func]*		team
	b10-loadzone was fully overhauled.  It now uses C++-based zone
	parser and loader library, performing stricter checks, having
	more complete support for master file formats, producing more
	helpful logs, is more extendable for various types of data
	sources, and yet much faster than the old version.  In
	functionality the new version should be generally backwards
	compatible to the old version, but there are some
	incompatibilities: name fields of RDATA (in NS, SOA, etc) must
	be absolute for now; due to the stricter checks some input that was
	(incorrectly) accepted by the old version may now be rejected;
	command line options and arguments are not compatible.
	(Trac #2380, git 689b015753a9e219bc90af0a0b818ada26cc5968)

892
529.	[func]*		team
893
894
895
896
897
898
899
900
901
902
903
	The in-memory data source now uses a more complete master
	file parser to load textual zone files.  As of this change
	it supports multi-line RR representation and more complete
	support for escaped and quoted strings.  It also produces
	more helpful log messages when there is an error in the zone
	file.  It will be enhanced as more specific tasks in the
	#2368 meta ticket are completed.  The new parser is generally
	backward compatible to the previous one, but due to the
	tighter checks some input that has been accepted so far
	could now be rejected, so it's advisable to check if you
	use textual zone files directly loaded to memory.
904
905
	(Trac #2470, git c4cf36691115c15440b65cac16f1c7fcccc69521)

906
907
908
909
910
911
912
528.	[func]		marcin
	Implemented definitions for DHCPv4 option definitions identified
	by option codes: 1 to 63, 77, 81-82, 90-92, 118-119, 124-125.
	These definitions are now used by the DHCPv4 server to parse
	options received from a client.
	(Trac #2526, git 50a73567e8067fdbe4405b7ece5b08948ef87f98)

913
914
915
916
917
918
919
920
527.	[bug]		jelte
	Fixed a bug in the synchronous UDP server code where unexpected
	errors from ASIO or the system libraries could cause b10-auth to
	stop. In asynchronous mode these errors would be ignored
	completely. Both types have been updated to report the problem with
	an ERROR log message, drop the packet, and continue service.
	(Trac #2494, git db92f30af10e6688a7dc117b254cb821e54a6d95)

921
526.	[bug]		stephen
922
923
924
925
926
	Miscellaneous fixes to DHCP code including rationalisation of
	some methods in LeaseMgr and resolving some Doxygen/cppcheck
	issues.
	(Trac #2546, git 0140368ed066c722e5d11d7f9cf1c01462cf7e13)

927
525.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
928
929
930
931
	b10-dhcp4: DHCPv4 server is now able to parse configuration. It
	is possible to specify IPv4 subnets with dynamic pools within
	them. Although configuration is accepted, it is not used yet. This
	will be implemented shortly.
932
933
	(Trac #2270, git de29c07129d41c96ee0d5eebdd30a1ea7fb9ac8a)

934
524.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
935
936
	b10-dhcp6 is now able to handle RENEW messages. Leases are
	renewed and REPLY responses are sent back to clients.
937
938
	(Trac #2325, git 7f6c9d057cc0a7a10f41ce7da9c8565b9ee85246)

939
940
941
942
943
944
523.	[bug]		muks
	Fixed a problem in inmem NSEC3 lookup (for, instance when using a
	zone with no non-apex names) which caused exceptions when the zone
	origin was not added as an explicit NSEC3 record.
	(Trac #2503, git 6fe86386be0e7598633fe35999112c1a6e3b0370)

945
522.	[func]*		jelte
946
947
948
949
950
951
952
953
	Configuration of TSIG keys for b10-xfrin has changed; instead of
	specifying the full TSIG key (<name>:<base64>:<algo>) it now expects
	just the name, and uses the global TSIG Key Ring like all the other
	components (configuration list /tsig_keys/keys).
	Note: this is not automatically updated, so if you use TSIG in
	xfrin, you need to update your configuration.
	(Trac #1351, git e65b7b36f60f14b7abe083da411e6934cdfbae7a)

954
955
956
957
958
959
521.	[func]		marcin
	Implemented definitions for DHCPv6 standard options identified
	by codes up to 48. These definitions are now used by the DHCPv6
	server to create instances of options being sent to a client.
	(Trac #2491, git 0a4faa07777189ed9c25211987a1a9b574015a95)

960
961
962
963
964
965
966
967
968
969
970
971
972
973
520.	[func]		jelte
	The system no longer prints initial log messages to stdout
	regardless of what logging configuration is present, but it
	temporarily stores any log messages until the configuration is
	processed. If there is no specific configuration, or if the
	configuration cannot be accessed, it will still fall back to stdout.
	Note that there are still a few instances where output is printed,
	these shall be addressed separately.
	Note also that, currently, in case it falls back to stdout (such as
	when it cannot connect to b10-cfgmgr), all log messages are always
	printed (including debug messages), regardless of whether -v was
	used. This shall also be addressed in a future change.
	(Trac #2445, git 74a0abe5a6d10b28e4a3e360e87b129c232dea68)

Mukund Sivaraman's avatar
Mukund Sivaraman committed
974
519.	[bug]		muks
975
976
	Fixed a problem in inmem NSEC lookup which caused returning an
	incorrect NSEC record or (in rare cases) assert failures
977
978
	when a non-existent domain was queried, which was a sub-domain of
	a domain that existed.
Mukund Sivaraman's avatar
Mukund Sivaraman committed
979
980
	(Trac #2504, git 835553eb309d100b062051f7ef18422d2e8e3ae4)

981
982
983
984
518.	[func]		stephen
	Extend DHCP MySQL backend to handle IPv4 addresses.
	(Trac #2404, git ce7db48d3ff5d5aad12b1da5e67ae60073cb2607)

985
986
987
988
989
517.	[func]		stephen
	Added IOAddress::toBytes() to get byte representation of address.
	Also added convenience methods for V4/V6 address determination.
	(Trac #2396, git c23f87e8ac3ea781b38d688f8f7b58539f85e35a)

990
991
992
993
994
995
996
516.	[bug]		marcin
	Fixed 'make distcheck' failure when running perfdhcp unit tests.
	The unit tests used to read files from the folder specified
	with the path relative to current folder, thus when the test was
	run from a different folder the files could not be found.
	(Trac #2479, git 4e8325e1b309f1d388a3055ec1e1df98c377f383)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
997
998
999
1000
1001
1002
1003
1004
515.	[bug]		jinmei
	The in-memory data source now accepts an RRSIG provided without
	a covered RRset in loading.  A subsequent query for its owner name
	of the covered type would generally result in NXRRSET; if the
	covered RRset is of type NSEC3, the corresponding NSEC3 processing
	would result in SERVFAIL.
	(Trac #2420, git 6744c100953f6def5500bcb4bfc330b9ffba0f5f)

1005
1006
1007
1008
1009
1010
514.	[bug]		jelte
	b10-msgq now handles socket errors more gracefully when sending data
	to clients. It no longer exits with 'broken pipe' errors, and is
	also better at resending data on temporary error codes from send().
	(Trac #2398, git 9f6b45ee210a253dca608848a58c824ff5e0d234)

1011
1012
1013
1014
1015
1016
1017
1018
513.	[func]		marcin
	Implemented the OptionCustom class for DHCPv4 and DHCPv6.
	This class represents an option which has a defined
	structure: a set of data fields of specific types and order.
	It is used to represent those options that can't be
	represented by any other specialized class.
	(Trac #2312, git 28d885b457dda970d9aecc5de018ec1120143a10)

1019
1020
1021
1022
1023
1024
1025
1026
512.	[func]		jelte
	Added a new tool b10-certgen, to check and update the self-signed
	SSL certificate used by b10-cmdctl. The original certificate
	provided has been removed, and a fresh one is generated upon first
	build. See the b10-certgen manpage for information on how to update
	existing installed certificates.
	(Trac #1044, git 510773dd9057ccf6caa8241e74a7a0b34ca971ab)

1027
1028
1029
1030
1031
1032
1033
1034
511.	[bug]		stephen
	Fixed a race condition in the DHCP tests whereby the test program
	spawned a subprocess and attempted to read (without waiting) from
	the interconnecting pipe before the subprocess had written
	anything.  The lack of output was being interpreted as a test
	failure.
	(Trac #2410, git f53e65cdceeb8e6da4723730e4ed0a17e4646579)

1035
1036
1037
1038
1039
1040
1041
1042
510.	[func]		marcin
	DHCP option instances can be created using a collection of strings.
	Each string represents a value of a particular data field within
	an option. The data field values, given as strings, are validated
	against the actual types of option fields specified in the options
	definitions.
	(Trac #2490, git 56cfd6612fcaeae9acec4a94e1e5f1a88142c44d)

Mukund Sivaraman's avatar
Mukund Sivaraman committed
1043
1044
1045
1046
1047
509.	[func]		muks
	Log messages now include the pid of the process that logged the
	message.
	(Trac #1745, git fc8bbf3d438e8154e7c2bdd322145a7f7854dc6a)

1048
1049
1050
1051
1052
1053
1054
508.	[bug]		stephen
	Split the DHCP library into two directories, each with its own
	Makefile.  This properly solves the problem whereby a "make"
	operation with multiple threads could fail because of the
	dependencies between two libraries in the same directory.
	(Trac #2475, git 834fa9e8f5097c6fd06845620f68547a97da8ff8)

1055
1056
bind10-devel-20121115 released on November 15, 2012

1057
507.	[doc]		jelte
1058
1059
1060
1061
	Added a chapter about the use of the bindctl command tool to
	to the BIND 10 guide.
	(Trac #2305, git c4b0294b5bf4a9d32fb18ab62ca572f492788d72)

1062
1063
1064
1065
1066
1067
1068
506.	[security]		jinmei
	Fixed a use-after-free case in handling DNAME record with the
	in-memory data source.  This could lead to a crash of b10-auth
	if it serves a zone containing a DNAME RR from the in-memory
	data source.  This bug was introduced at bind10-devel-20120927.
	(Trac #2471, git 2b1793ac78f972ddb1ae2fd092a7f539902223ff)

1069
1070
1071
1072
1073
1074
505.	[bug]		jelte
	Fixed a bug in b10-xfrin where a wrong call was made during the
	final check of a TSIG-signed transfer, incorrectly rejecting the
	transfer.
	(Trac #2464, git eac81c0cbebee72f6478bdb5cda915f5470d08e1)

Naoki Kambe's avatar
Naoki Kambe committed
1075
1076
504.	[bug]*		naokikambe
	Fixed an XML format viewed from b10-stats-httpd. Regarding
1077
1078
1079
1080
1081
1082
	per-zone counters as zones of Xfrout, a part of the item
	values wasn't an exact XML format. A zone name can be
	specified in URI as
	/bind10/statistics/xml/Xfrout/zones/example.org/xfrreqdone.
	XSD and XSL formats are also changed to constant ones due
	to these changes.
Naoki Kambe's avatar
Naoki Kambe committed
1083
1084
	(Trac #2298, git 512d2d46f3cb431bcdbf8d90af27bff8874ba075)

1085
503.	[func]		Stephen
1086
1087
1088
1089
1090
1091
1092
1093
	Add initial version of a MySQL backend for the DHCP code.  This
	implements the basic IPv6 lease access functions - add lease, delete
	lease and update lease.  The backend is enabled by specifying
	--with-dhcp-mysql on the "configure" command line: without this
	switch, the MySQL code is not compiled, so leaving BIND 10 able to
	be built on systems without MySQL installed.
	(Trac #2342, git c7defffb89bd0f3fdd7ad2437c78950bcb86ad37)

1094
502.	[func]		vorner
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1095
1096
1097
1098
	TTLs can be specified with units as well as number of seconds now.
	This allows specifications like "1D3H".
	(Trac #2384, git 44c321c37e17347f33ced9d0868af0c891ff422b)

1099
501.	[func]		tomek
1100
1101
1102
1103
	Added DHCPv6 allocation engine, now used in the processing of DHCPv6
	messages.
	(Trac #2414, git b3526430f02aa3dc3273612524d23137b8f1fe87)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
500.	[bug]		jinmei
	Corrected the autoconf example in the examples directory so it can
	use the configured path to Boost to check availability of the BIND 10
	library.  Previously the sample configure script could fail if
	Boost is installed in an uncommon place.  Also, it now provides a
	helper m4 function and example usage for embedding the library
	path to executable (using linker options like -Wl,-R) to help
	minimize post-build hassles.
	(Trac #2356, git 36514ddc884c02a063e166d44319467ce6fb1d8f)

1114
1115
1116
1117
1118
1119
499.	[func]		team
	The b10-auth 'loadzone' command now uses the internal thread
	introduced in 495 to (re)load a zone in the background, so that
	query processing isn't blocked while loading a zone.
	(Trac #2213, git 686594e391c645279cc4a95e0e0020d1c01fba7e)

1120
1121
1122
1123
498.	[func]		marcin
	Implemented DHCPv6 option values configuration using configuration
	manager. In order to set values for data fields carried by the
	particular option, user specifies the string of hexadecimal digits
1124
1125
1126
	that is in turn converted to binary data and stored into option
	buffer. More user friendly way of option content specification is
	planned.
1127
1128
	(Trac #2318, git e75c686cd9c14f4d6c2a242a0a0853314704fee9)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1129
1130
1131
1132
1133
1134
1135
1136
1137
497.	[bug]		jinmei
	Fixed several issues in isc-sysinfo:
	- make sure it doesn't report a negative value for free memory
	  size (this happened on FreeBSD, but can possibly occur on other
	  BSD variants)
	- correctly identifies the SMP support in kernel on FreeBSD
	- print more human readable uptime as well as the time in seconds
	(Trac #2297, git 59a449f506948e2371ffa87dcd19059388bd1657)

1138
496.	[func]		tomek
1139
1140
1141
1142
	DHCPv6 Allocation Engine implemented. It allows address allocation
	from the configured subnets/pools. It currently features a single
	allocator: IterativeAllocator, which assigns addresses iteratively.
	Other allocators (hashed, random) are planned.
1143
1144
	(Trac #2324, git 8aa188a10298e3a55b725db36502a99d2a8d638a)

1145
1146
1147
1148
1149
1150
1151
1152
495.	[func]		team
	b10-auth now handles reconfiguration of data sources in
	background using a separate thread.  This means even if the new
	configuration includes a large amount of data to be loaded into
	memory (very large zones and/or a very large number of zones),
	the reconfiguration doesn't block query handling.
	(Multiple Trac tickets up to #2211)

1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
494.	[bug]		jinmei
	Fixed a problem that shutting down BIND 10 kept some of the
	processes alive.  It was two-fold: when the main bind10 process
	started as a root, started b10-sockcreator with the privilege, and
	then dropped the privilege, the bind10 process cannot kill the
	sockcreator via signal any more (when it has to), but it kept
	sending the signal and didn't stop.  Also, when running on Python
	3.1 (or older), the sockcreator had some additional file
	descriptor open, which prevented it from exiting even after the
	bind10 process terminated.  Now the bind10 process simply gives up
	killing a subprocess if it fails due to lack of permission, and it
	makes sure the socket creator is spawned without any unnecessary
	FDs open.
	(Trac #1858, git 405d85c8a0042ba807a3a123611ff383c4081ee1)

1168
1169
1170
1171
1172
1173
1174
1175
1176
1177
1178
493.	[build]		jinmei
	Fixed build failure with newer versions of clang++.  These
	versions are stricter regarding "unused variable" and "unused
	(driver) arguments" warnings, and cause fatal build error
	with -Werror.  The affected versions of clang++ include Apple's
	customized version 4.1 included in Xcode 4.5.1.  So this fix
	will solve build errors for Mac OS X that uses newer versions of
	Xcode.
	(Trac #2340, git 55be177fc4f7537143ab6ef5a728bd44bdf9d783,
	3e2a372012e633d017a97029d13894e743199741 and commits before it
	with [2340] in the commit log)
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1179

1180
492.	[func]		tomek
1181
	libdhcpsrv: The DHCP Configuration Manager is now able to store
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1182
	information about IPv4 subnets and pools. It is still not possible
1183
1184
1185
1186
	to configure that information. Such capability will be implemented
	in a near future.
	(Trac #2237, git a78e560343b41f0f692c7903c938b2b2b24bf56b)

1187
1188
1189
1190
1191
1192
1193
1194
491.	[func]		tomek
	b10-dhcp6: Configuration for DHCPv6 has been implemented.
	Currently it is possible to configure IPv6 subnets and pools
	within those subnets, global and per subnet values of renew,
	rebind, preferred and valid lifetimes. Configured parameters
	are accepted, but are not used yet by the allocation engine yet.
	(Trac #2269, git 028bed9014b15facf1a29d3d4a822c9d14fc6411)

1195
490.	[func]		tomek
1196
	libdhcpsrv: An abstract API for lease database has been
1197
1198
	implemented. It offers a common interface to all concrete
	database backends.
1199
1200
	(Trac #2140, git df196f7609757253c4f2f918cd91012bb3af1163)

Mukund Sivaraman's avatar
Mukund Sivaraman committed
1201
1202
1203
1204
1205
1206
489.	[func]		muks
	The isc::dns::RRsetList class has been removed. It was now unused
	inside the BIND 10 codebase, and the interface was considered
	prone to misuse.
	(Trac #2266, git 532ac3d0054f6a11b91ee369964f3a84dabc6040)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1207
1208
488.	[build]		jinmei
	On configure, changed the search order for Python executable.
1209
	It first tries more specific file names such as "python3.2" before
JINMEI Tatuya's avatar
JINMEI Tatuya committed
1210
1211
1212
1213
	more generic "python3".  This will prevent configure failure on
	Mac OS X that installs Python3 via recent versions of Homebrew.
	(Trac #2339, git 88db890d8d1c64de49be87f03c24a2021bcf63da)

1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
1225
487.	[bug]		jinmei
	The bind10 process now terminates a component (subprocess) by the
	"config remove Boss/components" bindctl command even if the
	process crashes immediately before the command is sent to bind10.
	Previously this led to an inconsistent state between the
	configuration and an internal component list of bind10, and bind10
	kept trying to restart the component.  A known specific case of
	this problem is that b10-ddns could keep failing (due to lack of
	dependency modules) and the administrator couldn't stop the
	restart via bindctl.
	(Trac #2244, git 7565788d06f216ab254008ffdfae16678bcd00e5)

1226
1227
1228
486.	[bug]*		jinmei
	All public header files for libb10-dns++ are now installed.
	Template configure.ac and utility AC macros for external projects
1229
	using the library are provided under the "examples" directory.
1230
1231
1232
1233
	The src/bin/host was moved as part of the examples (and not
	installed with other BIND 10 programs any more).
	(Trac #1870, git 4973e638d354d8b56dcadf71123ef23c15662021)

1234
1235
1236
1237
1238
1239
1240
1241
1242
485.	[bug]		jelte
	Several bugs have been fixed in bindctl; tab-completion now works
	within configuration lists, the problem where sometimes the
	completion added a part twice has been solved, and it no longer
	suggests the confusing value 'argument' as a completion-hint for
	configuration items. Additionally, bindctl no longer crashes upon
	input like 'config remove Boss'.
	(Trac #2254, git 9047de5e8f973e12e536f7180738e6b515439448)

1243
484.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1244
1245
1246
1247
	A new library (libb10-dhcpsrv) has been created. At present, it
	only holds the code for the DHCP Configuration Manager. Currently
	this object only supports basic configuration storage for the DHCPv6
	server,	but that capability will be expanded.
1248
1249
	(Trac #2238, git 6f29861b92742da34be9ae76968e82222b5bfd7d)

Jeremy C. Reed's avatar
Jeremy C. Reed committed
1250
1251
1252
1253
1254
1255
1256
1257
1258
1259
bind10-devel-20120927 released on September 27, 2012

483.	[func]		marcin
	libdhcp++: Added new parameter to define sub-second timeout
	for DHCP packet reception. The total timeout is now specified
	by two parameters:  first specifies integral number of
	seconds, second (which defaults to 0) specifies fractional
	seconds with microsecond resolution.
	(Trac #2231, git 15560cac16e4c52129322e3cb1787e0f47cf7850)

1260
1261
1262
1263
1264
1265
1266
1267
1268
1269
1270
482.	[func]		team
	Memory footprint of the in-memory data source has been
	substantially improved.  For example, b10-auth now requires much
	less memory than BIND 9 named for loading and serving the same
	zone in-memory.  This is a transparent change in terms of user
	operation; there's no need to update or change the configuration
	to enable this feature.
	Notes: multiple instances of b10-auth still make separate copies
	of the memory image.  Also, loading zones in memory still suspends
	query processing, so manual reloading or reloading after incoming
	transfer may cause service disruption for huge zones.
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1271
	(Multiple Trac tickets, Summarized in Trac #2101)
1272

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1273
1274
481.	[bug]		vorner
	The abbreviated form of IP addresses in ACLs is accepted
1275
	(eg. "from": ["127.0.0.1", "::1"] now works).
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1276
1277
	(Trac #2191, git 48b6e91386b46eed383126ad98dddfafc9f7e75e)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1278
480.	[doc]		vorner
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1279
	Added documentation about global TSIG key ring to the Guide.
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1280
	(Trac #2189, git 52177bb31f5fb8e134aecb9fd039c368684ad2df)
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1281

1282
1283
1284
479.	[func]		marcin
	Refactored perfdhcp tool to C++, added missing unit tests and removed
	the old code. The new code uses libdhcp++ (src/lib/dhcp) for DHCP
1285
1286
	packet management, network interface management and packet
	transmission.
1287
1288
1289
1290
1291
1292
1293
1294
	(Trac #1954, git 8d56105742f3043ed4b561f26241f3e4331f51dc)
	(Trac #1955, git 6f914bb2c388eb4dd3e5c55297f8988ab9529b3f)
	(Trac #1956, git 6f914bb2c388eb4dd3e5c55297f8988ab9529b3f)
	(Trac #1957, git 7fca81716ad3a755bf5744e88c3adeef15b04450)
	(Trac #1958, git 94e17184270cda58f55e6da62e845695117fede3)
	(Trac #1959, git a8cf043db8f44604c7773e047a9dc2861e58462a)
	(Trac #1960, git 6c192e5c0903f349b4d80cf2bb6cd964040ae7da)

Naoki Kambe's avatar
Naoki Kambe committed
1295
1296
1297
1298
1299
1300
478.	[func]		naokikambe
	New statistics items added into b10-xfrout: ixfr_running and
	axfr_running.  Their values can be obtained by invoking "Stats show
	Xfrout" via bindctl while b10-xfrout is running.
	(Trac #2222, git 91311bdbfea95f65c5e8bd8294ba08fac12405f1)

1301
1302
1303
1304
1305
477.	[bug]		jelte
	Fixed a problem with b10-msgq on OSX when using a custom Python
	installation, that offers an unreliable select.poll() interface.
	(Trac #2190, git e0ffa11d49ab949ee5a4ffe7682b0e6906667baa)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1306
476.	[bug]		vorner
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1307
	The Xfrin now accepts transfers with some TSIG signatures omitted, as
1308
1309
	allowed per RFC2845, section 4.4. This solves a compatibility
	issues with Knot and NSD.
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1310
	(Trac #1357, git 7ca65cb9ec528118f370142d7e7b792fcc31c9cf)
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1311

Naoki Kambe's avatar
Naoki Kambe committed
1312
475.	[func]		naokikambe
1313
1314
1315
1316
	Added Xfrout statistics counters: notifyoutv4, notifyoutv6,
	xfrrej, and xfrreqdone. These are per-zone type counters.
	The value of these counters can be seen with zone name by
	invoking "Stats show Xfrout" via bindctl.
1317
	(Trac #2158, git e68c127fed52e6034ab5309ddd506da03c37a08a)
1318

1319
474.	[func]		stephen
1320
1321
1322
	DHCP servers now use the BIND 10 logging system for messages.
	(Trac #1545, git de69a92613b36bd3944cb061e1b7c611c3c85506)

1323
1324
1325
1326
1327
1328
473.	[bug]		jelte
	TCP connections now time out in b10-auth if no (or not all) query
	data is sent by the client. The timeout value defaults to 5000
	milliseconds, but is configurable in Auth/tcp_recv_timeout.
	(Trac #357, git cdf3f04442f8f131542bd1d4a2228a9d0bed12ff)

Jeremy C. Reed's avatar
Jeremy C. Reed committed
1329
1330
1331
1332
1333
1334
1335
1336
1337
472.	[build]		jreed
	All generated documentation is removed from the git repository.
	The ./configure --enable-man option is removed. A new option
	-enable-generate-docs is added; it checks for required
	documentation building dependencies. Dummy documentation is
	built and installed if not used. Distributed tarballs will
	contain the generated documentation.
	(Trac #1687, git 2d4063b1a354f5048ca9dfb195e8e169650f43d0)

1338
471.	[bug]		vorner
1339
1340
1341
	Fixed a problem when b10-loadzone tried to tread semicolon
	in string data as start of comment, which caused invalid
	data being loaded.
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1342
1343
	(Trac #2188, git 12efec3477feb62d7cbe36bdcfbfc7aa28a36f57)

Naoki Kambe's avatar
Naoki Kambe committed
1344
470.	[func]		naokikambe
1345
1346
1347
1348
1349
	The stats module now supports partial statistics updates. Each
	module can return only statistics data which have been updated since
	the last time it sent them to the stats module. The purpose of partial
	updates is to reduce the amount of statistics data sent through the
	message queue.
Naoki Kambe's avatar
Naoki Kambe committed
1350
	(Trac #2179, git d659abdd9f3f369a29830831297f64484ac7b051)
1351

1352
1353
1354
1355
1356
1357
1358
1359
1360
1361
1362
469.	[bug]		jelte
	libdatasrc: the data source client list class now ignores zone
	content problems (such as out-of-zone data) in MasterFiles type
	zones, instead of aborting the entire configuration.  It only logs
	an error, and all other zones and datasources are still loaded. The
	error log message has been improved to include the zone origin and
	source file name.  As a result of this change, b10-auth no longer
	exits upon encountering such errors during startup.
	(Trac #2178, git a75ed413e8a1c8e3702beea4811a46a1bf519bbd)

468.	[func]*		naokikambe, fujiwara
Kazunori Fujiwara's avatar
Kazunori Fujiwara committed
1363
	b10-stats polls the bind10 and b10-auth with new 'getstats' command
1364
1365
1366
1367
1368
	to retrieve statistics data.  The "poll-interval" parameter in
	b10-stats is for configuring the polling interval.  All statistics
	data collected once are preserved while b10-stats is running.
	The "sendstats" command was removed from bind10 and b10-auth. The
	"statistics-interval" configuration item was removed from b10-auth.
1369
1370
	(Trac #2136, git dcb5ce50b4b4e50d28247d5f8b5cb8d90bda942a)
	(Trac #2137, git d53bb65a43f6027b15a6edc08c137951e3ce5e0e)
1371
	(Trac #2138, git b34e3313460eebc9c272ca8c1beb27297c195150)
1372

1373
1374
bind10-devel-20120816 released on August 16, 2012

1375
1376
1377
1378
1379
1380
1381
1382
1383
1384
467.	[bug]		jelte
	For configurations, allow named sets to contain lists of items.
	(Trac #2114, git 712637513505f7afb8434292ca2a98c3517dffd3)

466.	[func]		jelte
	Allow bindctl to add and remove items to and from lists
	and dicts for items of type "any". This is for easier
	configurations.
	(Trac #2184, git ad2d728d1496a9ff59d622077850eed0638b54eb)

1385
1386
1387
1388
465.	[doc]		vorner
	Improved documentation about ACLs in the Guide.
	(Trac #2066, git 76f733925b3f3560cfc2ee96d2a19905b623bfc3)

1389
1390
1391
1392
1393
464.	[func]		jelte, muks
	libdns++: The LabelSequence class has been extended with some new
	methods.  These are mainly intended for internal development, but
	the class is public, so interested users may want to look into the
	extensions.
1394
1395
1396
1397
1398
	(Trac #2052, git 57c61f2^..dbef0e2)
	(Trac #2053, git 1fc2b06b57a008ec602daa2dac79939b3cc6b65d)
	(Trac #2086, git 3fac7d5579c5f51b8e952b50db510b45bfa986f3)
	(Trac #2087, git 49ad6346f574d00cfbd1d12905915fd0dd6a0bac)
	(Trac #2148, git 285c2845ca96e7ef89f9158f1dea8cda147b6566)
1399

Mukund Sivaraman's avatar
Mukund Sivaraman committed
1400
1401
1402
1403
463.	[func]		jinmei
	Python isc.dns: the Name, RRType and RRClass classes are now
	hashable.  So, for example, objects of these classes can be used
	as a dictionary key.
1404
	(Trac #1883, git 93ec40dd0a1df963c676037cc60c066c748b3030)
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1405

Jeremy C. Reed's avatar
Jeremy C. Reed committed
1406
462.	[build]		jreed
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1407
1408
1409
1410
1411
	BIND 10 now compiles against googletest-1.6.0 versions that are
	installed on the system as source code. For such versions, use the
	--with-gtest-source configure switch.
	(Trac #1999, git 6a26d459a40d7eed8ebcff01835377b3394a78de)

Mukund Sivaraman's avatar
Mukund Sivaraman committed
1412
461.	[bug]		muks
1413
1414
1415
1416
	We now set g+w and g+s permissions (mode 02770) during
	installation for the BIND 10 local state directory
	($prefix/var/bind10-devel/) so that permissions to files
	and sub-directories created in that directory are inherited.
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1417
1418
	(Trac #2171, git ab4d20907abdb3ce972172463dcc73405b3dee79)

Mukund Sivaraman's avatar
Mukund Sivaraman committed
1419
1420
1421
460.	[bug]		muks
	SSHFP's algorithm and fingerprint type checks have been relaxed
	such that they will accept any values in [0,255]. This is so that
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1422
	future algorithm and fingerprint types are accommodated.
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1423
1424
	(Trac #2124, git 49e6644811a7ad09e1326f20dd73ab43116dfd21)

1425
459.	[func]		tomek
1426
	b10-dhcp6: DHCPv6 server component is now integrated into
1427
	BIND 10 framework. It can be started from BIND 10 (using bindctl)
1428
1429
1430
1431
	and can receive commands. The only supported command for now
	is 'Dhcp6 shutdown'.
	b10-dhcp4: Command line-switch '-s' to disable msgq was added.
	b10-dhcp6: Command line-switch '-s' to disable msgq was added.
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1432
	(Trac #1708, git e0d7c52a71414f4de1361b09d3c70431c96daa3f)
Kazunori Fujiwara's avatar
Kazunori Fujiwara committed
1433

1434
458.	[build]*		jinmei
JINMEI Tatuya's avatar
JINMEI Tatuya committed
1435
1436
1437
1438
1439
1440
1441
1442
1443
1444
1445
1446
	BIND 10 now relies on Boost offset_ptr, which caused some new
	portability issues.  Such issues are detected at ./configure time.
	If ./configure stops due to this, try the following workaround:
	- If it's about the use of mutable for a reference with clang++,
	  upgrade Boost version to 1.44 or higher, or try a different
	  compiler (e.g. g++ generally seems to be free from this issue)
	- If it's about the use of "variadic templates", specify
	  --without-werror so the warning won't be promoted to an error.
	  Specifying BOOST_NO_USER_CONFIG in CXXFLAGS may also work
	  (which would be the case if Boost is installed via pkgsrc)
	(Trac #2147, git 30061d1139aad8716e97d6b620c259752fd0a3cd)

1447
457.	[build]*		muks
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1448
1449
1450
1451
	BIND 10 library names now have a "b10-" prefix. This is to avoid
	clashes with other similarly named libraries on the system.
	(Trac #2071, git ac20a00c28069804edc0a36050995df52f601efb)

1452
456.	[build]		muks
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1453
	BIND 10 now compiles against log4cplus-1.1.0 (RC releases)
1454
1455
1456
	also.  Note: some older versions of log4cplus don't work any more;
	known oldest workable version is 1.0.4.  Thanks to John Lumby for
	sending a patch.
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1457
1458
	(Trac #2169, git 7d7e5269d57451191c0aef1b127d292d3615fe2c)

Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1459
455.	[func]*		vorner
1460
1461
1462
	The server now uses newer API for data sources. This would be an
	internal change, however, the data sources are now configured
	differently. Please, migrate your configuration to the top-level
1463
1464
	"data_sources" module.  Also the bind10 -n and --no-cache
	and b10-auth -n options are removed.
Michal 'vorner' Vaner's avatar
Michal 'vorner' Vaner committed
1465
1466
	(Trac #1976, git 0d4685b3e7603585afde1b587cbfefdfaf6a1bb3)

1467
1468
1469
1470
1471
1472
1473
454.	[bug]		jelte
	b10-cfgmgr now loads its configuration check plugins directly from
	the plugin search path, as opposed to importing them from the
	general python system module path list; this prevents naming
	conflicts with real python modules.
	(Trac #2119, git 2f68d7ac5c3c7cc88a3663191113eece32d46a3d)

1474
1475
1476
1477
1478
1479
1480
453.	[bug]		jelte
	b10-auth no longer tries to send DDNS UPDATE messages to b10-ddns if
	b10-ddns is not running. Sending an UPDATE to BIND 10 that is not
	configured to run DDNS will now result in a response with rcode
	NOTIMP instead of SERVFAIL.
	(Trac #1986, git bd6b0a5ed3481f78fb4e5cb0b18c7b6e5920f9f8)

1481
1482
1483
1484
1485
1486
1487
1488
452.	[func]		muks, jelte
	isc-sysinfo: An initial implementation of the isc-sysinfo
	tool is now available for Linux, OpenBSD, FreeBSD, and Mac
	OS X. It gathers and outputs system information which can
	be used by future tech support staff. This includes a
	generic Python "sysinfo" module.
	(Trac #2062, #2121, #2122, #2172,
	git 144e80212746f8d55e6a59edcf689fec9f32ae95)
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1489

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1490
1491
1492
1493
1494
1495
1496
1497
451.	[bug]		muks, jinmei
	libdatasrc: the database-based data source now correctly returns
	glue records on (not under) a zone cut, such as in the case where
	the NS name of an NS record is identical to its owner name. (Note:
	libdatasrc itself doesn't judge what kind of record type can be a
	"glue"; it's the caller's responsibility.)
	(Trac #1771, git 483f1075942965f0340291e7ff7dae7806df22af)

1498
450.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1499
	b10-dhcp4: DHCPv4 server component is now integrated into
1500
	BIND 10 framework. It can be started from BIND 10 (using bindctl)
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1501
1502
	and can receive commands. The only supported command for now
	is 'Dhcp4 shutdown'.
1503
	(Trac #1651, git 7e16a5a50d3311e63d10a224ec6ebcab5f25f62c)
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1504

Jeremy C. Reed's avatar
Jeremy C. Reed committed
1505
bind10-devel-20120621 released on June 21, 2012
1506

1507
1508
1509
449.	[bug]		muks
	b10-xfin: fixed a bug where xfrin sent the wrong notification
	message to zonemgr on successful zone transfer. This also
Jeremy C. Reed's avatar
Jeremy C. Reed committed
1510
	solves other reported problems such as too frequent attempts
1511
1512
1513
	of zone refreshing (see Trac #1786 and #1834).
	(Trac #2023, git b5fbf8a408a047a2552e89ef435a609f5df58d8c)

1514
1515
1516
1517
1518
1519
448.	[func]		team
	b10-ddns is now functional and handles dynamic update requests
	per RFC 2136.  See BIND 10 guide for configuration and operation
	details.
	(Multiple Trac tickets)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1520
1521
1522
1523
447.	[bug]		jinmei
	Fixed a bug in b10-xfrout where a helper thread could fall into
	an infinite loop if b10-auth stops while the thread is waiting for
	forwarded requests from b10-auth.
1524
	(Trac #988 and #1833, git 95a03bbefb559615f3f6e529d408b749964d390a)
JINMEI Tatuya's avatar
JINMEI Tatuya committed
1525

Mukund Sivaraman's avatar
Mukund Sivaraman committed
1526
1527
1528
1529
1530
446.	[bug]		muks
	A number of warnings reported by Python about unclosed file and
	socket objects were fixed. Some related code was also made safer.
	(Trac #1828, git 464682a2180c672f1ed12d8a56fd0a5ab3eb96ed)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1531
1532
1533
1534
1535
1536
1537
445.	[bug]*		jinmei
	The pre-install check for older SQLite3 DB now refers to the DB
	file with the prefix of DESTDIR.  This ensures that 'make install'
	with specific DESTDIR works regardless of the version of the DB
	file installed in the default path.
	(Trac #1982, git 380b3e8ec02ef45555c0113ee19329fe80539f71)

JINMEI Tatuya's avatar
JINMEI Tatuya committed
1538
1539
1540
1541
1542
1543
444.	[bug]		jinmei
	libdatasrc: fixed ZoneFinder for database-based data sources so
	that it handles type DS query correctly, i.e., treating it as
	authoritative data even on a delegation point.
	(Trac #1912, git 7130da883f823ce837c10cbf6e216a15e1996e5d)

1544
443.	[func]*		muks
Mukund Sivaraman's avatar
Mukund Sivaraman committed
1545
1546
1547
1548
1549
1550
1551
1552
1553
1554
	The logger now uses a lockfile named `logger_lockfile' that is
	created in the local state directory to mutually separate
	individual logging operations from various processes. This is
	done so that log messages from different processes don't mix
	together in the middle of lines. The `logger_lockfile` is created
	with file permission mode 0660. BIND 10's local state directory
	should be writable and perhaps have g+s mode bit so that the
	`logger_lockfile` can be opened by a group of processes.
	(Trac #1704, git ad8d445dd0ba208107eb239405166c5c2070bd8b)

Tomek Mrugalski's avatar
Tomek Mrugalski committed
1555
442.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1556
1557
1558
	b10-dhcp4, b10-dhcp6: Both DHCP servers now accept -p parameter
	that can be used to specify listening port number. This capability
	is useful only for testing purposes.
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1559
1560
	(Trac #1503, git e60af9fa16a6094d2204f27c40a648fae313bdae)

1561
441.	[func]		tomek
1562
1563
	libdhcp++: Stub interface detection (support for interfaces.txt
	file) was removed.
1564
	(Trac #1281, git 900fc8b420789a8c636bcf20fdaffc60bc1041e0)
1565

Jeremy C. Reed's avatar
Jeremy C. Reed committed
1566
bind10-devel-20120517 released on May 17, 2012
1567

Jeremy C. Reed's avatar
Jeremy C. Reed committed
1568
1569
1570
1571
1572
1573
440.	[func]		muks
	bindctl: improved some error messages so they will be more
	helpful.  Those include the one when the zone name is unspecified
	or the name is invalid in the b10-auth configuration.
	(Trac #1627, git 1a4d0ae65b2c1012611f4c15c5e7a29d65339104)

1574
439.	[func]		team
1575
1576
1577
1578
1579
1580
	The in-memory data source can now load zones from the
	sqlite3 data source, so that zones stored in the database
	(and updated for example by xfrin) can be served from memory.
	(Trac #1789,#1790,#1792,#1793,#1911,
	git 93f11d2a96ce4dba9308889bdb9be6be4a765b27)

1581
438.	[bug]		naokikambe
1582
1583
1584
1585
1586
1587
1588
1589
1590
1591
1592
1593
1594
	b10-stats-httpd now sends the system a notification that
	it is shutting down if it encounters a fatal error during
	startup.
	(Trac #1852, git a475ef271d4606f791e5ed88d9b8eb8ed8c90ce6)

437.	[build]		jinmei
	Building BIND 10 may fail on MacOS if Python has been
	installed via Homebrew unless --without-werror is specified.
	The configure script now includes a URL that explains this
	issue when it detects failure that is possibly because of
	this problem.
	(Trac #1907, git 0d03b06138e080cc0391fb912a5a5e75f0f97cec)

1595
1596
1597
1598
1599
436.	[bug]		jelte
	The --config-file option now works correctly with relative paths if
	--data-path is not given.
	(Trac #1889, git ce7d1aef2ca88084e4dacef97132337dd3e50d6c)

1600
1601
1602
1603
435.	[func]		team
	The in-memory datasource now supports NSEC-signed zones.
	(Trac #1802-#1810, git 2f9aa4a553a05aa1d9eac06f1140d78f0c99408b)

1604
434.	[func]		tomek
Tomek Mrugalski's avatar
Tomek Mrugalski committed
1605
1606
	libdhcp++: Linux interface detection refactored. The code is
	now cleaner. Tests better support certain versions of ifconfig.