summaryrefslogtreecommitdiffstats
path: root/lib/bind
Commit message (Collapse)AuthorAgeFilesLines
* Upgrade to BIND version 9.8.3, the latest from ISC.dougb2012-05-283-0/+56
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Feature Change * BIND now recognizes the TLSA resource record type, created to support IETF DANE (DNS-based Authentication of Named Entities) Bug Fix * The locking strategy around the handling of iterative queries has been tuned to reduce unnecessary contention in a multi- threaded environment. Other critical bug fixes are included. All BIND users are encouraged to upgrade.
* | Update to version 9.8.2, the latest from ISC, which contains numerous bug fixes.dougb2012-04-057-68/+71
| |
* | Upgrade to BIND version 9.8.1. Release notes at:dougb2011-09-031-0/+12
|\ \ | |/ | | | | | | | | | | | | https://deepthought.isc.org/article/AA-00446/81/ or /usr/src/contrib/bind9/ Approved by: re (kib)
* | Fixes to make the WITH_BIND_LIBS option functional with BIND 9.8.xdougb2011-07-171-2/+8
| |
* | bmake and other updates necessary for the BIND 9.8.x upgrade.dougb2011-07-1612-84/+455
| | | | | | | | | | | | | | | | | | This includes a structural change regarding atomic ops. Previously they were enabled on all platforms unless we had knowledge that they did not work. However both work performed by marius@ on sparc64 and the fact that the 9.8.x branch is fussier in this area has demonstrated that this is not a safe approach. So I've modified a patch provided by marius to enable them for i386, amd64, and ia64 only.
* | Handle the MK_BIND_XML option more intelligentlydougb2011-07-161-5/+12
| |
* | Update to BIND 9.6.3, the latest from ISC on the 9.6 branch.dougb2011-02-066-6/+34
|\ \ | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | All 9.6 users with DNSSEC validation enabled should upgrade to this version, or the latest version in the 9.7 branch, prior to 2011-03-31 in order to avoid validation failures for names in .COM as described here: https://www.isc.org/announcement/bind-9-dnssec-validation-fails-new-ds-record In addition the fixes for this and other bugs, there are also the following: * Various fixes to kerberos support, including GSS-TSIG * Various fixes to avoid leaking memory, and to problems that could prevent a clean shutdown of named
* | Revert part of r217071 so that us mere mortals can clearly seedougb2011-01-091-1/+5
| | | | | | | | | | | | what this bit of code is intended to do. :) Approved by: imp
* | Make this work on big endian MIPS, while not breaking it for smallimp2011-01-061-7/+3
| | | | | | | | | | endian mips. This will also make it work automatically on all future big endian platforms.
* | Prep for the 9.6-ESV-R2 updatedougb2010-10-312-5/+22
| |
* | Since powerpc and powerpc64 share an instruction set, bind can and shouldnwhitehorn2010-07-101-2/+2
| | | | | | | | | | use the 32-bit atomic operations unmodified. Accomplish this by switching some MACHINE_ARCH values to MACHINE_CPUARCH.
* | Update to 9.6.2-P1, the latest patchfix release which deals withdougb2010-03-181-0/+4
| | | | | | | | | | | | | | | | the problems related to the handling of broken DNSSEC trust chains. This fix is only relevant for those who have DNSSEC validation enabled and configure trust anchors from third parties, either manually, or through a system like DLV.
* | Upgrade to version 9.6.2. This version includes all previously releaseddougb2010-03-031-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | security patches to the 9.6.1 version, as well as many other bug fixes. This version also incorporates a different fix for the problem we had patched in contrib/bind9/bin/dig/dighost.c, so that file is now back to being the same as the vendor version. Due to the fact that the DNSSEC algorithm that will be used to sign the root zone is only included in this version and in 9.7.x those who wish to do validation MUST upgrade to one of these prior to July 2010.
* | Commit copyright-only changes to generated files as part of thedougb2010-01-254-4/+4
| | | | | | | | 9.6.1-P3 update
* | Update to BIND 9.6.1-P2. The vulnerability this is designed to fix isdougb2009-11-301-0/+4
| | | | | | | | | | | | related to DNSSEC validation on a resolving name server that allows access to untrusted users. If your system does not fall into all 3 of these categories you do not need to update immediately.
* | Add support for the build options that are currently in the port:dougb2009-06-011-0/+13
| | | | | | | | | | | | | | WITH_BIND_IDN WITH_BIND_LARGE_FILE WITH_BIND_SIGCHASE WITH_BIND_XML
* | Update BIND to version 9.6.1rc1. This version has better performance anddougb2009-05-3116-1090/+555
|\ \ | |/ | | | | | | | | | | | | | | | | | | | | | | lots of new features compared to 9.4.x, including: Full NSEC3 support Automatic zone re-signing New update-policy methods tcp-self and 6to4-self DHCID support. More detailed statistics counters including those supported in BIND 8. Faster ACL processing. Efficient LRU cache-cleaning mechanism. NSID support.
| * In preparation for the BIND 9.6.1rc1 import, remove this directory.dougb2009-05-30209-59367/+0
| | | | | | | | | | The libbind library is no longer distributed as part of the main BIND package, and we never built it in any case.
| * Vendor import of BIND 9.4.3dougb2008-12-232-0/+70
| |
| * Vendor import of BIND 9.4.3dougb2008-12-2339-153/+653
| |
| * Vendor import of BIND 9.4.2-P2dougb2008-09-011-3/+3
| |
| * These files are unused, and due to a more thorough FREEBSD-Xlistdougb2008-07-123-33888/+0
| | | | | | | | are no longer updated.
| * Flatten bind9 vendor work areapeter2008-07-12209-0/+92685
|
* Updates for version 9.4.3dougb2008-12-236-24/+169
|
* Update copyrights and comments as of 9.4.3 (no functional changes)dougb2008-12-234-8/+8
|
* Add strndup(3) prototype to string.h.kib2008-12-081-1/+1
| | | | | | | | | | | This change was erronously ommitted from the r185690, and attempt to simply add the prototype to string.h has revealed that several contributed programs defined local prototypes for strndup(), controlled by autoconfed config.h. So, manually change #undef HAVE_STRNDUP to #define HAVE_STRNDUP 1. Next import of the corresponding program would regenerate config.h, overriding the changes in this commit. No objections from: kan
* Update for version 9.4.2-P2dougb2008-09-011-3/+7
|
* One more glue update for BIND 9.4.2dougb2007-12-021-0/+1
|
* Update glue for BIND 9.4.2dougb2007-12-027-9/+34
|
* Remove the special atomic.h case for arm, and allow it to usedougb2007-06-051-2/+0
| | | | the platform specific file that imp provided.
* Fix the amd64 and pc98 versions of ISC_ATOMIC_ARCH with some helpdougb2007-06-031-5/+3
| | | | | | from ru@. Take a guess at what might work on arm to try and fix the build.
* Update generated files for BIND 9.4.1dougb2007-06-029-220/+512
|
* Update bmake glue for the BIND 9.4.1 import.dougb2007-06-028-18/+64
| | | | | This includes a return to building with threads, since one of the major focuses of the 9.4.x branch is to improve thread performance.
* Update generated files for BIND 9.3.4dougb2007-01-296-282/+45
|
* Changes to generated files related to the 9.3.3 import.dougb2006-12-109-93/+360
|
* Reimplementation of world/kernel build options. For details, see:ru2006-03-178-16/+32
| | | | | | | | http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html The src.conf(5) manpage is to follow in a few days. Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine)
* Updated versions of header files generated per the instructionsdougb2005-12-296-14/+61
| | | | in src/contrib/bind9/FREEBSD-Upgrade for the 9.2.3 import
* Finish the removal of threads support in ../config.mk,v 1.15.ru2005-11-077-20/+2
|
* Disable thread support in BIND. It appears to reduce performance ratherdes2005-07-255-29/+28
| | | | | | | | than increase it, and seems to be the cause of the memory leaks which some users have reported. Requested by: dougb MFC after: 5 days
* Regenerate for 9.3.1dougb2005-03-175-6/+12
|
* bmake changes to handle the move of dns/sec and related filesdougb2005-03-172-17/+17
|
* NOINET6 -> NO_INET6ru2004-12-211-1/+1
|
* NOCRYPT -> NO_CRYPTru2004-12-211-2/+2
|
* NOLIBC_R -> NO_LIBC_Rru2004-12-211-4/+4
| | | | | NOLIBPTHREAD -> NO_LIBPTHREAD NOLIBTHR -> NO_LIBTHR
* For variables that are only checked with defined(), don't provideru2004-10-241-1/+1
| | | | any fake value.
* For variables that are only checked with defined(), don't provideru2004-10-241-1/+1
| | | | any fake value.
* Fix up the man file installation for the new BIND 9 sources:dougb2004-09-261-1/+76
| | | | | | | | 1. Install man files and links for the lwres library. 2. Fix the path in various files to say /etc/namedb/ instead of just /etc. 3. Correctly install the conf file man pages for named and rndc.
* Ruslan has educated me both on the wisdom of why this approach isdougb2004-09-241-9/+6
| | | | | | better than mine, and why to wait for review. Submitted by: ru
* Fix the WANT_BIND_LIBS knob by correctly spelling it as WITH_BIND_LIBSdougb2004-09-248-10/+18
| | | | | | | | | to match how similar syntax is used in the ports system. Thanks to kris for pointing out my mistake here. Install the lwres library unless the user defines NO_BIND, or the new knob, NO_BIND_LIBS_LWRES. There is at least one potential customer for this library in the wings. Thanks to nectar for the reminder.
* Don't expose BIND libraries and their headers to the public by default,ru2004-09-248-18/+69
| | | | | | | | | | | | | | | but have a knob (WANT_BIND_LIBS) to build and install them in /usr/lib and /usr/include. Rumors are that this may be useful at a later point, let's see. What this really means is that all BIND libraries are now internal to buildworld (by default, unless WANT_BIND_LIBS is defined), and linked statically into various BIND executables. While here, removed redundant -I's from CFLAGS in lib/bind makefiles. Sponsored by: des OK'ed by: dougb
OpenPOWER on IntegriCloud