bind9-devel BIND DNS suite with updated DNSSEC and DNS64
9.15.0.a0.2019.06.25 dns =1

9.15.0.a0.2019.03.29_2Version of this port present on the latest quarterly branch.

Maintainer: mat@FreeBSD.org
Port Added: 2015-11-05 15:01:37
Last Update: 2019-06-25 13:52:20
SVN Revision: 505086
Also Listed In: net ipv6
License: MPL20

BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND
architecture.  Some of the important features of BIND 9 are:

DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
     Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
     Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
     e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support

See the CHANGES file for more information on new features.

WWW: https://www.isc.org/downloads/bind/

SVNWeb : Homepage

Pseudo-pkg-plist information, but much better, from make generate-plist
Expand this list (309 items)

1. /usr/local/share/licenses/bind9-devel-9.15.0.a0.2019.06.25/catalog.mk
2. /usr/local/share/licenses/bind9-devel-9.15.0.a0.2019.06.25/LICENSE
3. /usr/local/share/licenses/bind9-devel-9.15.0.a0.2019.06.25/MPL20
4. bin/bind9-config
5. @comment bin/dnstap-read
6. bin/isc-config.sh
7. @sample etc/mtree/BIND.chroot.dist.sample
8. @sample etc/mtree/BIND.chroot.local.dist.sample
9. etc/namedb/bind.keys
10. etc/namedb/master/empty.db
11. etc/namedb/master/localhost-forward.db
12. etc/namedb/master/localhost-reverse.db
13. @sample etc/namedb/named.conf.sample
14. etc/namedb/named.root
15. etc/namedb/rndc.conf.sample
16. include/bind9/check.h
17. include/bind9/getaddresses.h
18. include/bind9/version.h
19. include/dns/acl.h
20. include/dns/adb.h
21. include/dns/badcache.h
22. include/dns/bit.h
23. include/dns/byaddr.h
24. include/dns/cache.h
25. include/dns/callbacks.h
26. include/dns/catz.h
27. include/dns/cert.h
28. include/dns/client.h
29. include/dns/clientinfo.h
30. include/dns/compress.h
31. include/dns/db.h
32. include/dns/dbiterator.h
33. include/dns/dbtable.h
34. include/dns/diff.h
35. include/dns/dispatch.h
36. include/dns/dlz.h
37. include/dns/dlz_dlopen.h
38. include/dns/dns64.h
39. include/dns/dnsrps.h
40. include/dns/dnssec.h
41. include/dns/dnstap.h
42. include/dns/ds.h
43. include/dns/dsdigest.h
44. include/dns/dyndb.h
45. include/dns/ecdb.h
46. include/dns/ecs.h
47. include/dns/edns.h
48. include/dns/enumclass.h
49. include/dns/enumtype.h
50. include/dns/events.h
51. include/dns/fixedname.h
52. include/dns/forward.h
53. include/dns/geoip.h
54. include/dns/ipkeylist.h
55. include/dns/iptable.h
56. include/dns/journal.h
57. include/dns/keydata.h
58. include/dns/keyflags.h
59. include/dns/keytable.h
60. include/dns/keyvalues.h
61. include/dns/lib.h
62. include/dns/librpz.h
63. include/dns/log.h
64. include/dns/lookup.h
65. include/dns/master.h
66. include/dns/masterdump.h
67. include/dns/message.h
68. include/dns/name.h
69. include/dns/ncache.h
70. include/dns/nsec.h
71. include/dns/nsec3.h
72. include/dns/nta.h
73. include/dns/opcode.h
74. include/dns/order.h
75. include/dns/peer.h
76. include/dns/portlist.h
77. include/dns/private.h
78. include/dns/rbt.h
79. include/dns/rcode.h
80. include/dns/rdata.h
81. include/dns/rdataclass.h
82. include/dns/rdatalist.h
83. include/dns/rdataset.h
84. include/dns/rdatasetiter.h
85. include/dns/rdataslab.h
86. include/dns/rdatastruct.h
87. include/dns/rdatatype.h
88. include/dns/request.h
89. include/dns/resolver.h
90. include/dns/result.h
91. include/dns/rootns.h
92. include/dns/rpz.h
93. include/dns/rriterator.h
94. include/dns/rrl.h
95. include/dns/sdb.h
96. include/dns/sdlz.h
97. include/dns/secalg.h
98. include/dns/secproto.h
99. include/dns/soa.h
100. include/dns/ssu.h
101. include/dns/stats.h
102. include/dns/tcpmsg.h
103. include/dns/time.h
104. include/dns/timer.h
105. include/dns/tkey.h
106. include/dns/tsec.h
107. include/dns/tsig.h
108. include/dns/ttl.h
109. include/dns/types.h
110. include/dns/update.h
111. include/dns/validator.h
112. include/dns/version.h
113. include/dns/view.h
114. include/dns/xfrin.h
115. include/dns/zone.h
116. include/dns/zonekey.h
117. include/dns/zoneverify.h
118. include/dns/zt.h
119. include/dst/dst.h
120. include/dst/gssapi.h
121. include/dst/result.h
122. include/irs/context.h
123. include/irs/dnsconf.h
124. include/irs/netdb.h
125. include/irs/platform.h
126. include/irs/resconf.h
127. include/irs/types.h
128. include/irs/version.h
129. include/isc/aes.h
130. include/isc/app.h
131. include/isc/assertions.h
132. include/isc/atomic.h
133. include/isc/backtrace.h
134. include/isc/base32.h
135. include/isc/base64.h
136. include/isc/bind9.h
137. include/isc/buffer.h
138. include/isc/bufferlist.h
139. include/isc/commandline.h
140. include/isc/condition.h
141. include/isc/counter.h
142. include/isc/crc64.h
143. include/isc/deprecated.h
144. include/isc/dir.h
145. include/isc/endian.h
146. include/isc/errno.h
147. include/isc/error.h
148. include/isc/event.h
149. include/isc/eventclass.h
150. include/isc/file.h
151. include/isc/formatcheck.h
152. include/isc/fsaccess.h
153. include/isc/fuzz.h
154. include/isc/hash.h
155. include/isc/heap.h
156. include/isc/hex.h
157. include/isc/hmac.h
158. include/isc/ht.h
159. include/isc/httpd.h
160. include/isc/interfaceiter.h
161. include/isc/iterated_hash.h
162. include/isc/lang.h
163. include/isc/lex.h
164. include/isc/lfsr.h
165. include/isc/lib.h
166. include/isc/likely.h
167. include/isc/list.h
168. include/isc/log.h
169. include/isc/magic.h
170. include/isc/md.h
171. include/isc/mem.h
172. include/isc/meminfo.h
173. include/isc/mutex.h
174. include/isc/mutexblock.h
175. include/isc/net.h
176. include/isc/netaddr.h
177. include/isc/netdb.h
178. include/isc/netscope.h
179. include/isc/nonce.h
180. include/isc/offset.h
181. include/isc/once.h
182. include/isc/os.h
183. include/isc/parseint.h
184. include/isc/platform.h
185. include/isc/pool.h
186. include/isc/portset.h
187. include/isc/print.h
188. include/isc/queue.h
189. include/isc/quota.h
190. include/isc/radix.h
191. include/isc/random.h
192. include/isc/ratelimiter.h
193. include/isc/refcount.h
194. include/isc/regex.h
195. include/isc/region.h
196. include/isc/resource.h
197. include/isc/result.h
198. include/isc/resultclass.h
199. include/isc/rwlock.h
200. include/isc/safe.h
201. include/isc/serial.h
202. include/isc/siphash.h
203. include/isc/sockaddr.h
204. include/isc/socket.h
205. include/isc/stat.h
206. include/isc/stats.h
207. include/isc/stdatomic.h
208. include/isc/stdio.h
209. include/isc/stdtime.h
210. include/isc/strerr.h
211. include/isc/string.h
212. include/isc/symtab.h
213. include/isc/syslog.h
214. include/isc/task.h
215. include/isc/taskpool.h
216. include/isc/thread.h
217. include/isc/time.h
218. include/isc/timer.h
219. include/isc/tm.h
220. include/isc/types.h
221. include/isc/util.h
222. include/isc/version.h
223. include/isccc/alist.h
224. include/isccc/base64.h
225. include/isccc/cc.h
226. include/isccc/ccmsg.h
227. include/isccc/events.h
228. include/isccc/result.h
229. include/isccc/sexpr.h
230. include/isccc/symtab.h
231. include/isccc/symtype.h
232. include/isccc/types.h
233. include/isccc/util.h
234. include/isccc/version.h
235. include/isccfg/aclconf.h
236. include/isccfg/cfg.h
237. include/isccfg/dnsconf.h
238. include/isccfg/grammar.h
239. include/isccfg/log.h
240. include/isccfg/namedconf.h
241. include/isccfg/version.h
242. include/ns/client.h
243. include/ns/hooks.h
244. include/ns/interfacemgr.h
245. include/ns/lib.h
246. include/ns/listenlist.h
247. include/ns/log.h
248. include/ns/notify.h
249. include/ns/query.h
250. include/ns/server.h
251. include/ns/sortlist.h
252. include/ns/stats.h
253. include/ns/types.h
254. include/ns/update.h
255. include/ns/version.h
256. include/ns/xfrout.h
257. include/pk11/constants.h
258. include/pk11/internal.h
259. include/pk11/pk11.h
260. include/pk11/result.h
261. include/pk11/site.h
262. include/pkcs11/cryptoki.h
263. include/pkcs11/eddsa.h
264. include/pkcs11/pkcs11.h
265. include/pkcs11/pkcs11f.h
266. include/pkcs11/pkcs11t.h
267. lib/libbind9.a
268. lib/libdns.a
269. lib/libirs.a
270. lib/libisc.a
271. lib/libisccc.a
272. lib/libisccfg.a
273. lib/libns.a
274. lib/named/filter-aaaa.so
275. man/man1/bind9-config.1.gz
276. @comment man/man1/dnstap-read.1.gz
277. man/man1/isc-config.sh.1.gz
278. man/man5/named.conf.5.gz
279. man/man5/rndc.conf.5.gz
280. man/man8/ddns-confgen.8.gz
281. man/man8/filter-aaaa.8.gz
282. man/man8/named-checkconf.8.gz
283. man/man8/named-checkzone.8.gz
284. man/man8/named-compilezone.8.gz
285. man/man8/named-nzd2nzf.8.gz
286. man/man8/named.8.gz
287. @comment man/man8/pkcs11-destroy.8.gz
288. @comment man/man8/pkcs11-keygen.8.gz
289. @comment man/man8/pkcs11-list.8.gz
290. @comment man/man8/pkcs11-tokens.8.gz
291. man/man8/rndc-confgen.8.gz
292. man/man8/rndc.8.gz
293. man/man8/tsig-keygen.8.gz
294. sbin/ddns-confgen
295. sbin/named
296. sbin/named-checkconf
297. sbin/named-checkzone
298. sbin/named-compilezone
299. sbin/named-nzd2nzf
300. @comment sbin/pkcs11-destroy
301. @comment sbin/pkcs11-keygen
302. @comment sbin/pkcs11-list
303. @comment sbin/pkcs11-tokens
304. sbin/rndc
305. sbin/rndc-confgen
306. sbin/tsig-keygen
307. @dir(bind,bind,) etc/namedb/dynamic
308. @dir(bind,bind,) etc/namedb/slave
309. @dir(bind,bind,) etc/namedb/working
Collapse this list.

Dependency lines:

• bind9-devel>0:dns/bind9-devel

Conflicts:

• CONFLICTS:
  • bind911
  • bind912
  • bind913
  • bind914

Conflicts Matches:

There are no Conflicts Matches for this port. This is usually an error.

---

To install the port: cd /usr/ports/dns/bind9-devel/ && make install clean
To add the package: pkg install bind9-devel

PKGNAME: bind9-devel

There is no flavor information for this port.

distinfo:

TIMESTAMP = 1561460029
SHA256 (isc-projects-bind9-32fc6c85f403ec26aa71ba403607f0032b373859_GL0.tar.gz) = a77d6b168606b0a01c0e6192f2699a35e425fe9983061680f1af2fc21b71b65a
SIZE (isc-projects-bind9-32fc6c85f403ec26aa71ba403607f0032b373859_GL0.tar.gz) = 6325417

---

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:

1. pkgconf>=1.3.0_1 : devel/pkgconf

Runtime dependencies:

1. bind-tools>0 : dns/bind-tools

Library dependencies:

1. libxml2.so : textproc/libxml2
2. libidn2.so : dns/libidn2
3. libjson-c.so : devel/json-c
4. liblmdb.so : databases/lmdb
5. libedit.so.0 : devel/libedit
6. libiconv.so : converters/libiconv

There are no ports dependent upon this port

---

Configuration Options

===> The following configuration options are available for bind9-devel-9.15.0.a0.2019.06.25:
     DNSTAP=off: Provides fast passive logging of DNS messages
     DOCS=on: Build and/or install documentation
     FIXED_RRSET=off: Enable fixed rrset ordering
     IDN=on: International Domain Names support
     JSON=on: JSON file/format/parser support
     LARGE_FILE=off: 64-bit file support
     LMDB=on: Use LMDB for zone management
     OVERRIDECACHE=off: Use the override-cache patch
     PORTREVISION=off: Show PORTREVISION in the version string
     QUERYTRACE=off: Enable the very verbose query tracelogging
     SIGCHASE=on: dig/host/nslookup will do DNSSEC validation
     START_LATE=off: Start BIND late in the boot process (see help)
     TCP_FASTOPEN=on: RFC 7413 support
     TUNING_LARGE=off: Tune named for large systems (**READ HELP**)
====> Dynamically Loadable Zones
     DLZ_POSTGRESQL=off: DLZ Postgres driver
     DLZ_MYSQL=off: DLZ MySQL driver (no threading)
     DLZ_BDB=off: DLZ BDB driver
     DLZ_LDAP=off: DLZ LDAP driver
     DLZ_FILESYSTEM=on: DLZ filesystem driver
     DLZ_STUB=off: DLZ stub driver
====> GSSAPI Security API support: you have to select exactly one of them
     GSSAPI_BASE=off: Using Heimdal in base
     GSSAPI_HEIMDAL=off: Using security/heimdal
     GSSAPI_MIT=off: Using security/krb5
     GSSAPI_NONE=on: Disable
====> Choose which crypto engine to use: you can only select none or one of them
     NATIVE_PKCS11=off: Use PKCS#11 native API (**READ HELP**)
===> Use 'make config' to modify these settings

---

USES:

compiler:c11 cpe libedit pkgconfig ssl tar:bz2 iconv

---

Master Sites:

1. http://distcache.FreeBSD.org/local-distfiles/mat/bind/
2. http://distcache.eu.FreeBSD.org/local-distfiles/mat/bind/
3. http://distcache.us-east.FreeBSD.org/local-distfiles/mat/bind/
4. http://distcache.us-west.FreeBSD.org/local-distfiles/mat/bind/
5. https://gitlab.isc.org/isc-projects/bind9/repository/32fc6c85f403ec26aa71ba403607f0032b373859/archive.tar.gz?dummy=/

• 2015-03-24

  Affects: users of dns/bind9*

  Author: mat@FreeBSD.org

  Reason: 
    This is only for FreeBSD 10.0+.
  
    BIND auto chroot has been added back to the named rc script.  As enabling it
    by default would most certainly break people's setup, it is not.  To enable
    it, and chroot it in /var/named, add the following line to your rc.conf file:
  
    named_chrootdir="/var/named"
  
    On first launch, the rc script will move the /usr/local/etc/namedb directory
    into the chroot, and create a symlink to it.
  
    Note that, if you're running from within a jail, you need to have a
    /var/named/dev devfs created beforehand, with the null and random devices.
  
  

• 2013-11-12

  Affects: users of dns/bind9*

  Author: erwin@FreeBSD.org

  Reason: 
    All bind9 ports have been updated to support FreeBSD 10.x after
    BIND was removed from the base system.  It is now self-contained
    in ${PREFIX}/etc/namedb, and chroot and symlinking options are
    no longer supported out of the box.
  
    For users of FreeBSD 9.x and earlier, the LINKS option is no longer
    enabled by default, but still supported.  No other changes should
    affect those users, and updating without changing already set options
    will keep the system in the same state.
  
  

• port moved here from dns/bind913 on 2019-05-16
  REASON: Remove outdated development version
  

Update to latest commit.

Convert BIND9's pkg-message files to UCL.

Update to latest commit.

Fix build when not using WITH_DEBUG.

Reported by:	pkg-fallout@

Fix named when using plugins and chroot.

BIND9 introduced plugins and migrated the filter-aaaa feature to a
plugin.
As it loads its plugins late in the startup process (read after chroot),
the plugins need to be available in the chroot.

Also, refactor the code now that a second directory need to be handled.

PR:		238011
Reported by:	ryan@timewasted.me
MFH:		2019Q2

Update to latest commit.

For some reason, this does not always get picked up correctly.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Prevent bind-tools from inheriting CONFLICTS.

I don't see how this can be a problem as bind-tools is never built after
bind9*.

Reported by:	Matthew D. Fuller

Switch to using OPTIONS_EXCLUDE to avoid picking up strays.

If you had things installed, say, lmdb, it would be picked up and linked
with.

Reported by:	sunpoet

Remove conflicts from bind-tools and the server ports.

All servers now depend on the same bind-tools, from the latest BIND9
release.

Chase dependencies to make sure they now depend on the correct port.

Differential Revision:	https://reviews.freebsd.org/D19922

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Make WITH_DEBUG actually build and be as helpful as possible.

Update to latest commit.

Update WWW.

PR:		236196
Submitted by:	Leonid Nevecherya

Update to latest commit.

Update to latest commit.

Add BIND 9.14.0 first release candidate.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update dns/libidn2 to 2.1.1

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS

Update to latest commit.

Use official patch instead of my half baked one.

No functionnal changes.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Remove GeoIP-related options. Where possible, replace GeoIP 1 defaults
with GeoIP 2.

Also, as suggested by zi, add an UPDATING note about this.

Update to latest commit.

Update dns/libidn2 to 2.1.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://gitlab.com/libidn/libidn2/blob/master/NEWS

Update to latest commit.

Update to latest commit.

While there, rename MINCACHE option, most of its features have been
integrated in BIND9, the only remaining bit of the patch is the override
cache feature to force all cached TTL to a specific one.

Update to 9.11.5-P1, 9.12.3-P1, 9.13.5.

While there:
- Don't disable symbol table generation when building WITH_DEBUG.
- Try and make sure nullfs can really be used in a more robustt and
  centralized way.
- Make sure all changes are sync'ed among all BIND9 ports.

Bump PORTREVISION for ports depending on the canonical version of GCC
defined via Mk/bsd.default-versions.mk which has moved from GCC 7.4 t
GCC 8.2 under most circumstances.

This includes ports
 - with USE_GCC=yes or USE_GCC=any,
 - with USES=fortran,
 - using Mk/bsd.octave.mk which in turn features USES=fortran, and
 - with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang,
   c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib
plus, as a double check, everything INDEX-11 showed depending on lang/gcc7.

PR:		231590

Update to latest commit.

The filter-aaaa feature is now a pluggable module.
While there, ipv6 is not optional any more.

These ports now build on powerpc64.

While here, pet portlint.

Approved by:	portmgr (tier-2 blanket)

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Fix build on powerpc64.

PR:		231786
Submitted by:	Piotr Kubaj

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Update to latest commit.

Fix build on i386.

Update to latest commit.

Update to latest commit.

Various cleanup & fixes post-DOCS/EXAMPLES cleanup.

PR:		230864
Submitted by:	mat
exp-runs by:	antoine

Update to latest commit.

Update devel/json-c to 0.13.1

- Add my LOCAL to MASTER_SITES
- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://github.com/json-c/json-c/blob/master/ChangeLog
PR:		231007
Exp-run by:	antoine

Update to latest commit

Update to latest (building) commit.

Cleanup obsolete options.

Permit using allow-new-zones, LMDB, and a chrooted environment.

Fixes this obscure and not at all helpful message:
mdb_env_open of '_default.nzd' failed: No such file or directory

PR:		229125
Reported by:	Tomas Ciernik
MFH:		2018Q3

Update to latest commit.

Update to v5.29.1-93-g8d8d86ac0a.

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Include a patch to fix CVE-2018-5738 in all the BIND9 ports.

MFH:		2018Q2 (blanket)
Security:	CVE-2018-5738
Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Move things around a bit to be more handbook compliant.

Sponsored by:	Absolight

Mark as broken on powerpc64.

Approved by:	portmgr (tier-2 blanket)

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Typo.

Noticed by:	danfe
Sponsored by:	Absolight

Add BIND9 9.13.0.

The ISC changed their release model, they are now doing
odd-unstable/even-stable release numbering.  This is a development
version, consider it alpha/beta quality.  The next stable release will
be 9.14.0.

Changes:	https://kb.isc.org/article/AA-01612
Sponsored by:	Absolight

Add PY_FLAVOR to Python module dependencies.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

OpenSSL is no longer optional, and upstream switched from idnkit to libidn2.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Fix build when LOCALBASE!=/usr/local.

PR:		227554
Submitted by:	John Hein
Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

While there, add some placeholders for things to change when a new
branch gets there.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

While there, use the GitLab integration.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Update to latest commit.

The ISC has a gitlab now, use it.

Sponsored by:	Absolight

Update to latest commit.

Sponsored by:	Absolight

Teach named where its pid file should be by default, to be consistent
with the default configuration, rc script, man pages...

PR:		225687
Reported by:	John W. O'Brien
Sponsored by:	Absolight

Update to latest snapshot.

Sponsored by:	Absolight

16 vulnerabilities affecting 123 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2019-06-22 13:48:42