Development release of BIND 10: bind10-devel-20110224 We are pleased to announce the ninth development release of BIND 10. BIND 10 provides a C++ library for DNS (with python wrappers) and several cooperating daemons for providing authoritative DNS service (with SQLite3 backend and DNSSEC), forwarding, and recursive name service. It contains prototype code and experimental interfaces. The main new feature in this release is the iterative resolver. Documentation is included and also available via the BIND 10 website at http://bind10.isc.org/ The bind10-devel-20110224 source may be downloaded from: ftp://ftp.isc.org/isc/bind10/devel-20110224/bind10-devel-20110224.tar.gz A PGP signature of the distribution is at ftp://ftp.isc.org/isc/bind10/devel-20110224/bind10-devel-20110224.tar.gz.sha512.asc The signature was generated with the ISC public key, which is available at https://www.isc.org/about/openpgp Users and developers are encouraged to participate on the BIND 10 mailing lists: https://lists.isc.org/mailman/listinfo/bind10-users https://lists.isc.org/mailman/listinfo/bind10-dev Bugs may be reported as tickets via the developers website (after logging into Trac): http://bind10.isc.org/ A summary of the significant changes since the previous release include (from the ChangeLog): 179. [func] vorner It is possible to start and stop resolver and authoritative server without restart of the whole system. Change of the configuration (Boss/start_auth and Boss/start_resolver) is enough. (Trac #565, git 0ac0b4602fa30852b0d86cc3c0b4730deb1a58fe) 178. [func] jelte Resolver now makes (limited) use of the cache (Trac #491, git 8b41f77f0099ddc7ca7d34d39ad8c39bb1a8363c) 177. [func] stephen The upstream fetch code in asiolink is now protocol agnostic to allow for the addition of fallback to TCP if a fetch response indicates truncation. (Trac #554, git 9739cbce2eaffc7e80640db58a8513295cf684de) 176. [func] zhang likun src/lib/cache: Rename one interface: from lookupClosestRRset() to lookupDeepestNS(), and remove one parameter of it. (Trac #492, git ecbfb7cf929d62a018dd4cdc7a841add3d5a35ae) 175. [bug] jerry src/bin/xfrout: Xfrout use the case-sensitive mode to compress names in an AXFR massage. (Trac #253, git 004e382616150f8a2362e94d3458b59bb2710182) 174. [bug]* jinmei src/lib/dns: revised dnssectime functions so that they don't rely on the time_t type (whose size varies on different systems, which can lead to subtle bugs like some form of "year 2038 problem"). Also handled 32-bit wrap around issues more explicitly, with more detailed tests. The function API has been changed, but the effect should be minimal because these functions are mostly private. (Trac #61, git 09ece8cdd41c0f025e8b897b4883885d88d4ba5d) 173. [bug] jerry python/isc/notify: A notify_out test fails without network connectivity, encapsulate the socket behavior using a mock socket class to fix it. (Trac #346, git 319debfb957641f311102739a15059f8453c54ce) 172. [func] jelte Improved the bindctl cli in various ways, mainly concerning list and map item addressing, the correct display of actual values, and internal help. (Trac #384, git e5fb3bc1ed5f3c0aec6eb40a16c63f3d0fc6a7b2) 171. [func] feng, jerry, jinmei, vorner b10-auth, src/lib/datasrc: in memory data source now works as a complete data source for authoritative DNS servers and b10-auth uses it. It still misses major features, however, including DNSSEC support and zone transfer. (Last trac #553, but many more, git 6f031a09a248e7684723c000f3e8cc981dcdb349) 170. [bug] jinmei Tightened validity checks in the NSEC3 constructors, both "from "text" and "from wire". Specifically, wire data containing invalid type bitmaps or invalid lengths of salt or hash is now correctly rejected. (Trac #117, git 9c690982f24fef19c747a72f43c4298333a58f48) 169. [func] zhang likun, jelte Added a basic implementation for a resolver cache (though not used yet). (Trac #449, git 8aa3b2246ae095bbe7f855fd11656ae3bdb98986) 168. [bug] vorner Boss no longer has the -f argument, which was undocumented and stayed as a relict of previous versions, currently causing only strange behaviour. (Trac #572, git 17f237478961005707d649a661cc72a4a0d612d4) 167. [bug] naokikambe Fixed failure of termination of msgq_test.py with python3 coverage(3.3.1) (Trac #573, git 0e6a18e12f61cc482e07078776234f32605312e5) 166. [func] jelte The resolver now sends back a SERVFAIL when there is a client timeout (timeout_client config setting), but it will not stop resolving (until there is a lookup timeout or a result). (Trac #497 and #489, git af0e5cd93bebb27cb5c4457f7759d12c8bf953a6) 165. [func] jelte The resolver now handles CNAMEs, it will follow them, and include them in the answer. The maximum length of CNAME chains that is supported is 16. (Trac #497, git af0e5cd93bebb27cb5c4457f7759d12c8bf953a6) 164. [bug] y-aharen IntervalTimer: Modified the interface to accept interval in milliseconds. It shortens the time of the tests of IntervalTimer. (Trac #452, git c9f6acc81e24c4b8f0eb351123dc7b43f64e0914) 163. [func] vorner The pimpl design pattern is used in UDPServer, with a shared pointer. This makes it smaller to copy (which is done a lot as a sideeffect of being coroutine) and speeds applications of this class (notably b10-auth) up by around 10%. (Trac #537, git 94cb95b1d508541201fc064302ba836164d3cbe6) 162. [func] stephen Added C++ logging, allowing logging at different severities. Code specifies the message to be logged via a symbol, and the logging code picks up the message from an in-built dictionary. The contents of the dictionary can be replaced at run-time by locale-specific messages. A message compiler program is provided to create message header files and supply the default messages. (Trac #438, git 7b1606cea7af15dc71f5ec1d70d958b00aa98af7) 161. [func] stephen Added ResponseScrubber class to examine response from a server and to remove out-of-bailiwick RRsets. Also does cross-section checks to ensure consistency. (Trac #496, git b9296ca023cc9e76cda48a7eeebb0119166592c5) 160. [func] jelte Updated the resolver to take 3 different timeout values; timeout_query for outstanding queries we sent while resolving timeout_client for sending an answer back to the client timeout_lookup for stopping the resolving (currently 2 and 3 have the same final effect) (Trac 489, git 578ea7f4ba94dc0d8a3d39231dad2be118e125a2) 159. [func] smann The resolver now has a configurable set of root servers to start resolving at (called root_addresses). By default these are not (yet) filled in. If empty, a hardcoded address for f-root will be used right now. (Trac #483, git a07e078b4feeb01949133fc88c9939254c38aa7c) 158. [func] jelte The Resolver module will now do (very limited) resolving, if not set to forwarding mode (i.e. if the configuration option forward_addresses is left empty). It only supports referrals that contain glue addresses at this point, and does no other processing of authoritative answers. (Trac #484, git 7b84de4c0e11f4a070e038ca4f093486e55622af) 157. [bug] vorner One frozen process no longer freezes the whole b10-msgq. It caused the whole system to stop working. (Trac #420, git 93697f58e4d912fa87bc7f9a591c1febc9e0d139) 156. [func] stephen Added ResponseClassifier class to examine response from a server and classify it into one of several categories. (Trac #487, git 18491370576e7438c7893f8551bbb8647001be9c) Please provide feedback about using BIND 10. We look forward to hearing from you. Jeremy C. Reed ISC Release Engineer