October 14, 2011

Welcome to the 14th development release of the BIND 10 suite.
Notable additions include:

 - SPF, DLV, HINFO, and NAPTR resource record types.

 - Incoming IXFR (incremental zone transfer) support.

 - Proof-of-concept DHCPv6 echo server.

 - Per-module stats reporting.

 - Per-zone ACLs for outbound zone transfers.

BIND 10 provides a DNS library in C++ with Python wrappers, an
authoritative DNSSEC-capable DNS server (with SQLite3 and in-memory
backends), and a recursive DNS server (with caching and forwarding).
It also includes other cooperating components for zone transfer
management, configuration management, remote control, statistics
collection, and more. We are using the prototype BIND 10 authoritative
and recursive DNS servers in production.

Note that the DHCPv6 server is not enabled by default.  It is
proof-of-concept code that echoes back packets incoming from clients.
Properly implemented clients will refuse to accept echoed back
SOLICIT messages as they are expecting ADVERTISE.  It is expected
that the next release will include our libdhcp, a library that
handles DHCPv6 packets and options, and a simple server that is able
to assign a lease to a client (Solicit-Advertise-Request-Reply
exchange is performed).

This snapshot tarball and PGP signature can be downloaded at:

  ftp://ftp.isc.org/isc/bind10/devel-20111014/bind10-devel-20111014.tar.gz
  ftp://ftp.isc.org/isc/bind10/devel-20111014/bind10-devel-20111014.tar.gz.sha512.asc

Users and developers are encouraged to participate on the BIND 10
mailing lists.

  https://lists.isc.org/mailman/listinfo/bind10-users
  https://lists.isc.org/mailman/listinfo/bind10-dev

We look forwarding to hearing about your experiences with BIND 10.

  Jeremy C. Reed
  BIND 10 Release Engineer
  ISC

p.s. A summary of the significant changes since the previous release
include (from the ChangeLog):

298.	[doc]		jreed
	Shorten README. Include plain text format of the Guide.
	(git d1897d3, git 337198f)

297.	[func]		dvv
	Implement the SPF rrtype according to RFC4408.
	(Trac #1140, git 146934075349f94ee27f23bf9ff01711b94e369e)

296.	[build]		jreed
	Do not install the unittest libraries. At this time, they
	are not useful without source tree (and they may or may
	not have googletest support). Also, convert several makefiles
	to build tests at "check" time and not build time.
	(Trac #1091, git 2adf4a90ad79754d52126e7988769580d20501c3)

295.	[bug]		jinmei
	__init__.py for isc.dns was installed in the wrong directory,
	which would now make xfrin fail to start.  It was also bad
	in that it replaced any existing __init__.py in th public
	site-packages directory.  After applying this fix You may want to
	check if the wrong init file is in the wrong place, in which
	case it should be removed.
	(Trac #1285, git af3b17472694f58b3d6a56d0baf64601b0f6a6a1)

294.	[func]		jelte, jinmei, vorner
	b10-xfrin now supports incoming IXFR.  See BIND 10 Guide for
	how to configure it and operational notes.
	(Trac #1212, multiple git merges)

293.	[func]*		tomek
	b10-dhcp6: Implemented DHCPv6 echo server. It joins DHCPv6
	multicast groups and listens to incoming DHCPv6 client messages.
	Received messages are then echoed back to clients. This
	functionality is limited, but it can be used to test out client
	resiliency to unexpected messages. Note that network interface
	detection routines are not implemented yet, so interface name
	and its address must be specified in interfaces.txt.
	(Trac #878, git 3b1a604abf5709bfda7271fa94213f7d823de69d)

292.	[func]		dvv
	Implement the DLV rrtype according to RFC4431.
	(Trac #1144, git d267c0511a07c41cd92e3b0b9ee9bf693743a7cf)

291.	[func]		naokikambe
	Statistics items are specified by each module's spec file.
	Stats module can read these through the config manager. Stats
	module and stats httpd report statistics data and statistics
	schema by each module via both bindctl and HTTP/XML.
	(Trac #928,#929,#930,#1175,
	git 054699635affd9c9ecbe7a108d880829f3ba229e)

290.	[func]		jinmei
	libdns++/pydnspp: added an option parameter to the "from wire"
	methods of the Message class.  One option is defined,
	PRESERVE_ORDER, which specifies the parser to handle each RR
	separately, preserving the order, and constructs RRsets in the
	message sections so that each RRset contains only one RR.
	(Trac #1258, git c874cb056e2a5e656165f3c160e1b34ccfe8b302)

289.	[func]*		jinmei
	b10-xfrout: ACLs for xfrout can now be configured per zone basis.
	A per zone ACL is part of a more general zone configuration.  A
	quick example for configuring an ACL for zone "example.com" that
	rejects any transfer request for that zone is as follows:
	> config add Xfrout/zone_config
	> config set Xfrout/zone_config[0]/origin "example.com"
	> config add Xfrout/zone_config[0]/transfer_acl
	> config set Xfrout/zone_config[0]/transfer_acl[0] {"action": "REJECT"}
	The previous global ACL (query_acl) was renamed to transfer_acl,
	which now works as the default ACL.  Note: backward compatibility
	is not provided, so an existing configuration using query_acl
	needs to be updated by hand.
	Note: the per zone configuration framework is a temporary
	workaround.  It will eventually be redesigned as a system wide
	configuration.
	(Trac #1165, git 698176eccd5d55759fe9448b2c249717c932ac31)

288.	[bug]		stephen
	Fixed problem whereby the order in which component files appeared in
	rdataclass.cc was system dependent, leading to problems on some
	systems where data types were used before the header file in which
	they were declared was included.
	(Trac #1202, git 4a605525cda67bea8c43ca8b3eae6e6749797450)

287.	[bug]*		jinmei
	Python script files for log messages (xxx_messages.py) should have
	been installed under the "isc" package.  This fix itself should
	be a transparent change without affecting existing configurations
	or other operational practices, but you may want to clean up the
	python files from the common directly (such as "site-packages").
	(Trac #1101, git 0eb576518f81c3758c7dbaa2522bd8302b1836b3)

286.	[func]		ocean
	libdns++: Implement the HINFO rrtype support according to RFC1034,
	and RFC1035.
	(Trac #1112, git 12d62d54d33fbb1572a1aa3089b0d547d02924aa)

285.	[bug]		jelte
	sqlite3 data source: fixed a race condition on initial startup,
	when the database has not been initialized yet, and multiple
	processes are trying to do so, resulting in one of them failing.
	(Trac #326, git 5de6f9658f745e05361242042afd518b444d7466)

284.	[bug]		jerry
	b10-zonemgr: zonemgr will not terminate on empty zones, it will
	log a warning and try to do zone transfer for them.
	(Trac #1153, git 0a39659638fc68f60b95b102968d7d0ad75443ea)

283.	[bug]		zhanglikun
	Make stats and boss processes wait for answer messages from each
	other in block mode to avoid orphan answer messages, add an internal
	command "getstats" to boss process for getting statistics data from
	boss.
	(Trac #519, git 67d8e93028e014f644868fede3570abb28e5fb43)

282.	[func]		ocean
	libdns++: Implement the NAPTR rrtype according to RFC2915,
	RFC2168 and RFC3403.
	(Trac #1130, git 01d8d0f13289ecdf9996d6d5d26ac0d43e30549c)