head	1.2;
access;
symbols
	perseant-exfatfs-base-20250801:1.2
	perseant-exfatfs-base-20240630:1.2
	perseant-exfatfs:1.2.0.6
	perseant-exfatfs-base:1.2
	cjep_sun2x:1.2.0.4
	cjep_sun2x-base:1.2
	cjep_staticlib_x-base1:1.2
	cjep_staticlib_x:1.2.0.2
	cjep_staticlib_x-base:1.2
	phil-wifi-20200421:1.2
	phil-wifi-20200411:1.2
	phil-wifi-20200406:1.2
	bind-9-14-5:1.1.1.1
	ISC:1.1.1;
locks; strict;
comment	@# @;


1.2
date	2019.09.12.17.04.18;	author christos;	state dead;
branches;
next	1.1;
commitid	pCYKKdB8QCUeeKCB;

1.1
date	2019.09.05.19.27.32;	author christos;	state Exp;
branches
	1.1.1.1;
next	;
commitid	1opkUA1RvXLhfRBB;

1.1.1.1
date	2019.09.05.19.27.32;	author christos;	state Exp;
branches;
next	;
commitid	1opkUA1RvXLhfRBB;


desc
@@


1.2
log
@remove bad file
@
text
@--- ../include/config.h	2019-06-17 13:55:15.345039460 -0400
+++ config.h	2019-09-05 13:55:22.729372793 -0400
@@@@ -4,9 +4,6 @@@@
 /* Define if building universal (internal helper macro) */
 /* #undef AC_APPLE_UNIVERSAL_BUILD */
 
-/* Use AES for Client Cookie generation */
-#define AES_CC 1
-
 /* Define if you cannot bind() before connect() for TCP sockets. */
 /* #undef BROKEN_TCP_BIND_BEFORE_CONNECT */
 
@@@@ -22,12 +19,6 @@@@
 /* Define to enable American Fuzzy Lop test harness */
 /* #undef ENABLE_AFL */
 
-/* Define to enable rpz nsdname rules. */
-#define ENABLE_RPZ_NSDNAME 1
-
-/* Define to enable rpz nsip rules. */
-#define ENABLE_RPZ_NSIP 1
-
 /* define if you want TCP_FASTOPEN enabled if available */
 #define ENABLE_TCP_FASTOPEN 1
 
@@@@ -52,6 +43,9 @@@@
 /* Define to 1 if you have the `arc4random_uniform' function. */
 #define HAVE_ARC4RANDOM_UNIFORM 1
 
+/* define if the ARM yield instruction is available */
+/* #undef HAVE_ARM_YIELD */
+
 /* Define to 1 if the compiler supports __builtin_clz. */
 #define HAVE_BUILTIN_CLZ 1
 
@@@@ -61,9 +55,6 @@@@
 /* define if the compiler supports __builtin_unreachable(). */
 #define HAVE_BUILTIN_UNREACHABLE 1
 
-/* Define to 1 if you have the `catgets' function. */
-#define HAVE_CATGETS 1
-
 /* Define to 1 if you have the `chroot' function. */
 #define HAVE_CHROOT 1
 
@@@@ -71,10 +62,7 @@@@
 #define HAVE_CLOCK_GETTIME 1
 
 /* Use CMocka */
-/* #undef HAVE_CMOCKA */
-
-/* Define to 1 if you have the <cmocka.h> header file. */
-/* #undef HAVE_CMOCKA_H */
+#define HAVE_CMOCKA 1
 
 /* Define to 1 if you have the `cpuset_setaffinity' function. */
 /* #undef HAVE_CPUSET_SETAFFINITY */
@@@@ -178,6 +166,9 @@@@
 /* Build with GeoIP support */
 /* #undef HAVE_GEOIP */
 
+/* Build with GeoIP2 support */
+/* #undef HAVE_GEOIP2 */
+
 /* Build with GeoIP City IPv6 support */
 /* #undef HAVE_GEOIP_CITY_V6 */
 
@@@@ -263,7 +254,7 @@@@
 /* #undef HAVE_LIBSOCKET */
 
 /* Define if libxml2 was found */
-/* #define HAVE_LIBXML2 */
+#define HAVE_LIBXML2 1
 
 /* Define to 1 if you have the <linux/netlink.h> header file. */
 /* #undef HAVE_LINUX_NETLINK_H */
@@@@ -295,6 +286,9 @@@@
 /* define if OpenSSL supports Ed25519 */
 #define HAVE_OPENSSL_ED25519 1
 
+/* define if OpenSSL supports Ed448 */
+#define HAVE_OPENSSL_ED448 1
+
 /* Define to 1 if you have the `processor_bind' function. */
 /* #undef HAVE_PROCESSOR_BIND */
 
@@@@ -370,18 +364,17 @@@@
 /* Define to 1 if you have the `setresuid' function. */
 /* #undef HAVE_SETRESUID */
 
-#ifdef ISC_PLATFORM_USETHREADS
 /* Define to 1 if you have the `sigwait' function. */
 #define HAVE_SIGWAIT 1
-#endif
+
+/* define if the SPARC pause instruction is available */
+/* #undef HAVE_SPARC_PAUSE */
 
 /* define if struct stat has st_mtim.tv_nsec field */
 /* #undef HAVE_STAT_NSEC */
 
 /* Define to 1 if you have the <stdatomic.h> header file. */
-#ifndef __lint__
 #define HAVE_STDATOMIC_H 1
-#endif
 
 /* Define to 1 if you have the <stdint.h> header file. */
 #define HAVE_STDINT_H 1
@@@@ -450,10 +443,10 @@@@
 #define HAVE_SYS_UN_H 1
 
 /* Define to 1 if you have the <threads.h> header file. */
-/* #undef HAVE_THREADS_H */
+#define HAVE_THREADS_H 1
 
 /* Define if thread_local keyword is available */
-/* #undef HAVE_THREAD_LOCAL */
+#define HAVE_THREAD_LOCAL 1
 
 /* Define if Thread-Local Storage is available */
 #define HAVE_TLS 1
@@@@ -483,13 +476,7 @@@@
 /* #undef HAVE___ATOMIC */
 
 /* Define if __thread keyword is available */
-#define HAVE___THREAD 1
-
-/* Use HMAC-SHA1 for Client Cookie generation */
-/* #undef HMAC_SHA1_CC */
-
-/* Use HMAC-SHA256 for Client Cookie generation */
-/* #undef HMAC_SHA256_CC */
+/* #undef HAVE___THREAD */
 
 /* Define if you want to use inline buffers */
 #define ISC_BUFFER_USEINLINE 1
@@@@ -498,7 +485,7 @@@@
 #define ISC_DLZ_DLOPEN 1
 
 /* define if the linker supports --wrap option */
-/* #undef LD_WRAP */
+#define LD_WRAP 1
 
 /* have __attribute__s used in librpz.h */
 #define LIBRPZ_HAVE_ATTR 1
@@@@ -595,7 +582,6 @@@@
 /* Define to enable very verbose query trace logging. */
 #define WANT_QUERYTRACE 1
 
-#ifndef __NetBSD__
 /* Define WORDS_BIGENDIAN to 1 if your processor stores words with the most
    significant byte first (like Motorola and SPARC, unlike Intel). */
 #if defined AC_APPLE_UNIVERSAL_BUILD
@@@@ -607,7 +593,6 @@@@
 /* #  undef WORDS_BIGENDIAN */
 # endif
 #endif
-#endif
 
 /* Define to 1 if on MINIX. */
 /* #undef _MINIX */
@


1.1
log
@Initial revision
@
text
@@


1.1.1.1
log
@	--- 9.14.5 released ---

5277.	[bug]		Cache DB statistics could underflow when serve-stale
			was in use, because of a bug in counter maintenance
			when RRsets become stale.

			Functions for dumping statistics have been updated
			to dump active, stale, and ancient statistic
			counters.  Ancient RRset counters are prefixed
			with '~'; stale RRset counters are still prefixed
			with '#'. [GL #602]

5275.	[bug]		Mark DS records included in referral messages
			with trust level "pending" so that they can be
			validated and cached immediately, with no need to
			re-query. [GL #964]

5274.	[bug]		Address potential use after free race when shutting
			down rpz. [GL #1175]

5273.	[bug]		Check that bits [64..71] of a dns64 prefix are zero.
			[GL #1159]

5269.	[port]		cygwin: can return ETIMEDOUT on connect() with a
			non-blocking socket. [GL #1133]

5268.	[bug]		named could crash during configuration if
			configured to use "geoip continent" ACLs with
			legacy GeoIP. [GL #1163]

5266.	[bug]		named-checkconf failed to report dnstap-output
			missing from named.conf when dnstap was specified.
			[GL #1136]

5265.	[bug]		DNS64 and RPZ nodata (CNAME *.) rules interacted badly
			[GL #1106]

5264.	[func]		New DNS Cookie algorithm - siphash24 - has been added
			to BIND 9. [GL #605]

5236.	[func]		Add SipHash 2-4 implementation in lib/isc/siphash.c
			and switch isc_hash_function() to use SipHash 2-4.
			[GL #605]

	--- 9.14.4 released ---

5260.	[bug]		dnstap-read was producing malformed output for large
			packets. [GL #1093]

5258.	[func]		Added support for the GeoIP2 API from MaxMind,
			when BIND is compiled using "configure --with-geoip2".
			The legacy GeoIP API can be enabled by using
			"configure --with-geoip" instead. These options
			cannot be used together.

			Certain geoip ACL settings that were available with
			legacy GeoIP are not available when using GeoIP2.
			See the ARM for details. [GL #182]

5257.	[bug]		Some statistics data was not being displayed.
			Add shading to the zone tables. [GL #1030]

5256.	[bug]		Ensure that glue records are included in root
			priming responses if "minimal-responses" is not
			set to "yes". [GL #1092]

5255.	[bug]		Errors encountered while reloading inline-signing
			zones could be ignored, causing the zone content to
			be left in an incompletely updated state rather than
			reverted. [GL #1109]

5254.	[func]		Collect metrics to report to the statistics-channel
			DNSSEC signing operations (dnssec-sign) and refresh
			operations (dnssec-refresh) per zone and per keytag.
			[GL #513]

5253.	[port]		Support platforms that don't define ULLONG_MAX.
			[GL #1098]

5251.	[bug]		Statistics were broken in x86 Windows builds.
			[GL #1081]

5249.	[bug]		Fix a possible underflow in recursion clients
			statistics when hitting recursive clients
			soft quota. [GL #1067]

	--- 9.14.3 released ---

5244.	[security]	Fixed a race condition in dns_dispatch_getnext()
			that could cause an assertion failure if a
			significant number of incoming packets were
			rejected. (CVE-2019-6471) [GL #942]

5243.	[bug]		Fix a possible race between dispatcher and socket
			code in a high-load cold-cache resolver scenario.
			[GL #943]

5242.	[bug]		In relaxed qname minimizatiom mode, fall back to
			normal resolution when encountering a lame
			delegation, and use _.domain/A queries rather
			than domain/NS. [GL #1055]

5241.	[bug]		Fix Ed448 private and public key ASN.1 prefix blobs.
			[GL #225]

5240.	[bug]		Remove key id calculation for RSAMD5. [GL #996]

5238.	[bug]		Fix a possible deadlock in TCP code. [GL #1046]

5237.	[bug]		Recurse to find the root server list with 'dig +trace'.
			[GL #1028]

5234.	[port]		arm: just use the compiler's default support for
			yield. [GL #981]

	--- 9.14.2 released ---

5233.	[bug]		Negative trust anchors did not work with "forward only;"
			to validating resolvers. [GL #997]

5231.	[protocol]	Add support for displaying CLIENT-TAG and SERVER-TAG.
			[GL #960]

5229.	[protocol]	Enforce known SSHFP fingerprint lengths. [GL #852]

5228.	[cleanup]	If trusted-keys and managed-keys are configured
			simultaneously for the same name, the key cannot
			be rolled automatically. This configuration now
			logs a warning. [GL #868]

5224.	[bug]		Only test provide-ixfr on TCP streams. [GL #991]

5223.	[bug]		Fixed a race in the filter-aaaa plugin accessing
			the hash table. [GL #1005]

5222.	[bug]		'delv -t ANY' could leak memory. [GL #983]

5221.	[test]		Enable parallel execution of system tests on
			Windows. [GL !4101]

5220.	[cleanup]	Refactor the isc_stat structure to take advantage
			of stdatomic. [GL !1493]

5219.	[bug]		Fixed a race in the filter-aaaa plugin that could
			trigger a crash when returning an instance object
			to the memory pool. [GL #982]

5218.	[bug]		Conditionally include <dlfcn.h>. [GL #995]

5217.	[bug]		Restore key id calculation for RSAMD5. [GL #996]

5216.	[bug]		Fetches-per-zone counter wasn't updated correctly
			when doing qname minimization. [GL #992]

5215.	[bug]		Change #5124 was incomplete; named could still
			return FORMERR instead of SERVFAIL in some cases.
			[GL #990]

5214.	[bug]		win32: named now removes its lock file upon shutdown.
			[GL #979]

5213.	[bug]		win32: Eliminated a race which allowed named.exe running
			as a service to be killed prematurely during shutdown.
			[GL #978]

5211.	[bug]		Allow out-of-zone additional data to be included
			in authoritative responses if recursion is allowed
			and "minimal-responses" is disabled.  This behavior
			was inadvertently removed in change #4605. [GL #817]

5210.	[bug]		When dnstap is enabled and recursion is not
			available, incoming queries are now logged
			as "auth". Previously, this depended on whether
			recursion was requested by the client, not on
			whether recursion was available. [GL #963]

5209.	[bug]		When update-check-ksk is true, add_sigs was not
			considering offline keys, leaving record sets signed
			with the incorrect type key. [GL #763]

5208.	[test]		Run valid rdata wire encodings through totext+fromtext
			and tofmttext+fromtext methods to check these methods.
			[GL #899]

5207.	[test]		Check delv and dig TTL values. [GL #965]

5206.	[bug]		Delv could print out bad TTLs. [GL #965]

5205.	[bug]		Enforce that a DS hash exists. [GL #899]

5204.	[test]		Check that dns_rdata_fromtext() produces a record that
			will be accepted by dns_rdata_fromwire(). [GL #852]

5203.	[bug]		Enforce whether key rdata exists or not in KEY,
			DNSKEY, CDNSKEY and RKEY. [GL #899]

5202.	[bug]		<dns/ecs.h> was missing ISC_LANG_ENDDECLS. [GL #976]

5190.	[bug]		Ignore trust anchors using disabled algorithms.
			[GL #806]
@
text
@@