FreshPorts -- dns/bind9-devel

BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND architecture. Some of the important features of BIND 9 are: DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests) IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA) Experimental IPv6 Resolver Library DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0 Improved standards conformance Views: One server process can provide multiple "views" of the DNS namespace, e.g. an "inside" view to certain clients, and an "outside" view to others. Multiprocessor Support See the CHANGES file for more information on new features. WWW: https://www.isc.org/software/bind

pkg-plist

make generate-plist

Expand this list (362 items)

/usr/local/share/licenses/bind9-devel-9.13.0.a0.2018.04.20/catalog.mk

/usr/local/share/licenses/bind9-devel-9.13.0.a0.2018.04.20/LICENSE

/usr/local/share/licenses/bind9-devel-9.13.0.a0.2018.04.20/MPL20

bin/arpaname

bin/bind9-config

bin/delv

bin/dig

@comment bin/dnstap-read

bin/host

bin/isc-config.sh

bin/mdig

bin/named-rrchecker

bin/nslookup

bin/nsupdate

@sample etc/mtree/BIND.chroot.dist.sample

@sample etc/mtree/BIND.chroot.local.dist.sample

etc/namedb/bind.keys

etc/namedb/master/empty.db

etc/namedb/master/localhost-forward.db

etc/namedb/master/localhost-reverse.db

@sample etc/namedb/named.conf.sample

etc/namedb/named.root

etc/namedb/rndc.conf.sample

include/bind9/check.h

include/bind9/getaddresses.h

include/bind9/version.h

include/dns/acl.h

include/dns/adb.h

include/dns/badcache.h

include/dns/bit.h

include/dns/byaddr.h

include/dns/cache.h

include/dns/callbacks.h

include/dns/catz.h

include/dns/cert.h

include/dns/client.h

include/dns/clientinfo.h

include/dns/compress.h

include/dns/db.h

include/dns/dbiterator.h

include/dns/dbtable.h

include/dns/diff.h

include/dns/dispatch.h

include/dns/dlz.h

include/dns/dlz_dlopen.h

include/dns/dns64.h

include/dns/dnsrps.h

include/dns/dnssec.h

include/dns/dnstap.h

@comment include/dns/dnstap.pb-c.h

include/dns/ds.h

include/dns/dsdigest.h

include/dns/dyndb.h

include/dns/ecdb.h

include/dns/ecs.h

include/dns/edns.h

include/dns/enumclass.h

include/dns/enumtype.h

include/dns/events.h

include/dns/fixedname.h

include/dns/forward.h

include/dns/geoip.h

include/dns/ipkeylist.h

include/dns/iptable.h

include/dns/journal.h

include/dns/keydata.h

include/dns/keyflags.h

include/dns/keytable.h

include/dns/keyvalues.h

include/dns/lib.h

include/dns/librpz.h

include/dns/log.h

include/dns/lookup.h

include/dns/master.h

include/dns/masterdump.h

include/dns/message.h

include/dns/name.h

include/dns/ncache.h

include/dns/nsec.h

include/dns/nsec3.h

include/dns/nta.h

include/dns/opcode.h

include/dns/order.h

include/dns/peer.h

include/dns/portlist.h

include/dns/private.h

include/dns/rbt.h

include/dns/rcode.h

include/dns/rdata.h

include/dns/rdataclass.h

include/dns/rdatalist.h

include/dns/rdataset.h

include/dns/rdatasetiter.h

include/dns/rdataslab.h

include/dns/rdatastruct.h

include/dns/rdatatype.h

include/dns/request.h

include/dns/resolver.h

include/dns/result.h

include/dns/rootns.h

include/dns/rpz.h

include/dns/rriterator.h

include/dns/rrl.h

include/dns/sdb.h

include/dns/sdlz.h

include/dns/secalg.h

include/dns/secproto.h

include/dns/soa.h

include/dns/ssu.h

include/dns/stats.h

include/dns/tcpmsg.h

include/dns/time.h

include/dns/timer.h

include/dns/tkey.h

include/dns/tsec.h

include/dns/tsig.h

include/dns/ttl.h

include/dns/types.h

include/dns/update.h

include/dns/validator.h

include/dns/version.h

include/dns/view.h

include/dns/xfrin.h

include/dns/zone.h

include/dns/zonekey.h

include/dns/zt.h

include/dst/dst.h

include/dst/gssapi.h

include/dst/lib.h

include/dst/result.h

include/irs/context.h

include/irs/dnsconf.h

include/irs/netdb.h

include/irs/platform.h

include/irs/resconf.h

include/irs/types.h

include/irs/version.h

include/isc/aes.h

include/isc/app.h

include/isc/assertions.h

include/isc/atomic.h

include/isc/backtrace.h

include/isc/base32.h

include/isc/base64.h

include/isc/bind9.h

include/isc/boolean.h

include/isc/buffer.h

include/isc/bufferlist.h

include/isc/commandline.h

include/isc/condition.h

include/isc/counter.h

include/isc/crc64.h

include/isc/deprecated.h

include/isc/dir.h

include/isc/entropy.h

include/isc/errno.h

include/isc/error.h

include/isc/event.h

include/isc/eventclass.h

include/isc/file.h

include/isc/formatcheck.h

include/isc/fsaccess.h

include/isc/fuzz.h

include/isc/hash.h

include/isc/heap.h

include/isc/hex.h

include/isc/hmacmd5.h

include/isc/hmacsha.h

include/isc/ht.h

include/isc/httpd.h

include/isc/int.h

include/isc/interfaceiter.h

include/isc/iterated_hash.h

include/isc/json.h

include/isc/keyboard.h

include/isc/lang.h

include/isc/lex.h

include/isc/lfsr.h

include/isc/lib.h

include/isc/likely.h

include/isc/list.h

include/isc/log.h

include/isc/magic.h

include/isc/md5.h

include/isc/mem.h

include/isc/meminfo.h

include/isc/msgcat.h

include/isc/msgs.h

include/isc/mutex.h

include/isc/mutexblock.h

include/isc/net.h

include/isc/netaddr.h

include/isc/netdb.h

include/isc/netscope.h

include/isc/offset.h

include/isc/once.h

include/isc/os.h

include/isc/parseint.h

include/isc/platform.h

include/isc/pool.h

include/isc/portset.h

include/isc/print.h

include/isc/queue.h

include/isc/quota.h

include/isc/radix.h

include/isc/random.h

include/isc/ratelimiter.h

include/isc/refcount.h

include/isc/regex.h

include/isc/region.h

include/isc/resource.h

include/isc/result.h

include/isc/resultclass.h

include/isc/rwlock.h

include/isc/safe.h

include/isc/serial.h

include/isc/sha1.h

include/isc/sha2.h

include/isc/sockaddr.h

include/isc/socket.h

include/isc/stat.h

include/isc/stats.h

include/isc/stdio.h

include/isc/stdlib.h

include/isc/stdtime.h

include/isc/strerror.h

include/isc/string.h

include/isc/symtab.h

include/isc/syslog.h

include/isc/task.h

include/isc/taskpool.h

include/isc/thread.h

include/isc/time.h

include/isc/timer.h

include/isc/tm.h

include/isc/types.h

include/isc/util.h

include/isc/version.h

include/isc/xml.h

include/isccc/alist.h

include/isccc/base64.h

include/isccc/cc.h

include/isccc/ccmsg.h

include/isccc/events.h

include/isccc/lib.h

include/isccc/result.h

include/isccc/sexpr.h

include/isccc/symtab.h

include/isccc/symtype.h

include/isccc/types.h

include/isccc/util.h

include/isccc/version.h

include/isccfg/aclconf.h

include/isccfg/cfg.h

include/isccfg/dnsconf.h

include/isccfg/grammar.h

include/isccfg/log.h

include/isccfg/namedconf.h

include/isccfg/version.h

include/ns/client.h

include/ns/interfacemgr.h

include/ns/lib.h

include/ns/listenlist.h

include/ns/log.h

include/ns/notify.h

include/ns/query.h

include/ns/server.h

include/ns/sortlist.h

include/ns/stats.h

include/ns/types.h

include/ns/update.h

include/ns/version.h

include/ns/xfrout.h

include/pk11/constants.h

include/pk11/internal.h

include/pk11/pk11.h

include/pk11/result.h

include/pk11/site.h

include/pkcs11/cryptoki.h

include/pkcs11/eddsa.h

include/pkcs11/pkcs11.h

include/pkcs11/pkcs11f.h

include/pkcs11/pkcs11t.h

lib/libbind9.a

lib/libdns.a

lib/libirs.a

lib/libisc.a

lib/libisccc.a

lib/libisccfg.a

lib/libns.a

man/man1/arpaname.1.gz

man/man1/bind9-config.1.gz

man/man1/delv.1.gz

man/man1/dig.1.gz

@comment man/man1/dnstap-read.1.gz

man/man1/host.1.gz

man/man1/isc-config.sh.1.gz

man/man1/mdig.1.gz

man/man1/named-rrchecker.1.gz

man/man1/nslookup.1.gz

man/man1/nsupdate.1.gz

man/man5/named.conf.5.gz

man/man5/rndc.conf.5.gz

man/man8/ddns-confgen.8.gz

man/man8/dnssec-cds.8.gz

man/man8/dnssec-checkds.8.gz

man/man8/dnssec-coverage.8.gz

man/man8/dnssec-dsfromkey.8.gz

man/man8/dnssec-importkey.8.gz

man/man8/dnssec-keyfromlabel.8.gz

man/man8/dnssec-keygen.8.gz

man/man8/dnssec-keymgr.8.gz

man/man8/dnssec-revoke.8.gz

man/man8/dnssec-settime.8.gz

man/man8/dnssec-signzone.8.gz

man/man8/dnssec-verify.8.gz

man/man8/genrandom.8.gz

man/man8/named-checkconf.8.gz

man/man8/named-checkzone.8.gz

man/man8/named-compilezone.8.gz

man/man8/named-journalprint.8.gz

man/man8/named-nzd2nzf.8.gz

man/man8/named.8.gz

man/man8/nsec3hash.8.gz

@comment man/man8/pkcs11-destroy.8.gz

@comment man/man8/pkcs11-keygen.8.gz

@comment man/man8/pkcs11-list.8.gz

@comment man/man8/pkcs11-tokens.8.gz

man/man8/rndc-confgen.8.gz

man/man8/rndc.8.gz

man/man8/tsig-keygen.8.gz

sbin/ddns-confgen

sbin/dnssec-cds

sbin/dnssec-checkds

sbin/dnssec-coverage

sbin/dnssec-dsfromkey

sbin/dnssec-importkey

sbin/dnssec-keyfromlabel

sbin/dnssec-keygen

sbin/dnssec-keymgr

sbin/dnssec-revoke

sbin/dnssec-settime

sbin/dnssec-signzone

sbin/dnssec-verify

sbin/genrandom

sbin/named

sbin/named-checkconf

sbin/named-checkzone

sbin/named-compilezone

sbin/named-journalprint

sbin/named-nzd2nzf

sbin/nsec3hash

@comment sbin/pkcs11-destroy

@comment sbin/pkcs11-keygen

@comment sbin/pkcs11-list

@comment sbin/pkcs11-tokens

sbin/rndc

sbin/rndc-confgen

sbin/tsig-keygen

@dir(bind,bind,) etc/namedb/dynamic

@dir(bind,bind,) etc/namedb/slave

@dir(bind,bind,) etc/namedb/working

Collapse this list.

To install the port: cd /usr/ports/dns/bind9-devel/ && make install clean
To add the package: pkg install bind9-devel

TIMESTAMP = 1524469633 SHA256 (isc-projects-bind9-498491555e578626a37380e8baf3ee0d48dff815_GL0.tar.gz) = dfbbf5cd6e21e3b89d39489dd01d06c13aefbdabdaaf0ddf0665c6cef14d7ef7 SIZE (isc-projects-bind9-498491555e578626a37380e8baf3ee0d48dff815_GL0.tar.gz) = 8967588

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

===> The following configuration options are available for bind9-devel-9.13.0.a0.2018.04.20: DNSTAP=off: Provides fast passive logging of DNS messages DOCS=on: Build and/or install documentation FIXED_RRSET=off: Enable fixed rrset ordering GEOIP=off: Allow geographically based ACL. IDN=on: International Domain Names support IPV6=on: IPv6 protocol support JSON=on: JSON file/format/parser support LARGE_FILE=off: 64-bit file support LMDB=on: Use LMDB for zone management MINCACHE=off: Use the mincachettl patch PORTREVISION=off: Show PORTREVISION in the version string PYTHON=on: Build with Python utilities QUERYTRACE=off: Enable the very verbose query tracelogging RPZ_NSDNAME=on: Enable RPZ NSDNAME policy records RPZ_NSIP=on: Enable RPZ NSIP trigger rules SIGCHASE=on: dig/host/nslookup will do DNSSEC validation START_LATE=off: Start BIND late in the boot process (see help) TCP_FASTOPEN=on: RFC 7413 support THREADS=on: Threading support TUNING_LARGE=off: Tune named for large systems (**READ HELP**) ====> Dynamically Loadable Zones DLZ_POSTGRESQL=off: DLZ Postgres driver DLZ_MYSQL=off: DLZ MySQL driver (no threading) DLZ_BDB=off: DLZ BDB driver DLZ_LDAP=off: DLZ LDAP driver DLZ_FILESYSTEM=on: DLZ filesystem driver DLZ_STUB=off: DLZ stub driver ====> GSSAPI Security API support: you have to select exactly one of them GSSAPI_BASE=off: Using Heimdal in base GSSAPI_HEIMDAL=off: Using security/heimdal GSSAPI_MIT=off: Using security/krb5 GSSAPI_NONE=on: Disable ====> Choose which crypto engine to use: you can only select none or one of them SSL=on: Build with OpenSSL (Required for DNSSEC) NATIVE_PKCS11=off: Use PKCS#11 native API (**READ HELP**) ====> Enable GOST ciphers, needs SSL: you can only select none or one of them GOST=off: GOST raw keys (new default) GOST_ASN1=off: GOST using ASN.1 ===> Use 'make config' to modify these settings

Reason: This is only for FreeBSD 10.0+. BIND auto chroot has been added back to the named rc script. As enabling it by default would most certainly break people's setup, it is not. To enable it, and chroot it in /var/named, add the following line to your rc.conf file: named_chrootdir="/var/named" On first launch, the rc script will move the /usr/local/etc/namedb directory into the chroot, and create a symlink to it. Note that, if you're running from within a jail, you need to have a /var/named/dev devfs created beforehand, with the null and random devices.

Reason: All bind9 ports have been updated to support FreeBSD 10.x after BIND was removed from the base system. It is now self-contained in ${PREFIX}/etc/namedb, and chroot and symlinking options are no longer supported out of the box. For users of FreeBSD 9.x and earlier, the LINKS option is no longer enabled by default, but still supported. No other changes should affect those users, and updating without changing already set options will keep the system in the same state.

Add a TCP_FASTOPEN option (default on) to allow not building it in. [1] It is annoying because it outputs one line saying it cannot enable TCP_FASTOPEN when the deamon starts. While there, discover that FILTER_AAAA is always enabled in 9.12+ and no longer an option, so remove it. PR: 217288 [1] (based on) Reported by: doktornotor mailinator com Sponsored by: Absolight

Add a TUNING_LARGE option. https://kb.isc.org/article/AA-01314/0 Tunes certain compiled-in constants and default settings to values better suited to large servers with 12/16GB+ of memory. This can improve performance on such servers, but will consume more memory and may degrade performance on smaller systems. PR: 224859 Sponsored by: Absolight

Update devel/json-c to 0.13 - Add TEST_TARGET - While I'm here, fix shebang for net/opensips - Bump PORTREVISION of dependent ports for shlib change Changes: https://github.com/json-c/json-c/blob/master/ChangeLog PR: 224675 Exp-run by: antoine

Add a symlink to named's session-keyfile. Using nsupdate -l, and chroot was broken because nsupdate could not find the keyfile by itself. PR: 223403 Submitted by: Harald Schmalzbauer Sponsored by: Absolight

Remove special handling for testing and documentation domains, per RFC 6761 recommendations. While there: - Fix invalid syntax in sample slave config. - Add a message about having syslogd working with BIND9 chroot. PR: 217915 Reported by: eserte12 yahoo de Sponsored by: Absolight

Update to 9.9.10, 9.10.5, 9.11.1 and 9.12 to latest snapshot. While there: Make it more maintainable by sorting stuff in the Makefile and removing vestigial pre 10.3 things. Refresh the root zone hints. "Fix" the configuration section telling you to get some top level zones from f.root-servers.net, which does not allow axfr any more. [1] PR: 218656 [1] Reported by: Thomas Steen Rasmussen / Tykling [1] MFH: 2017Q2 Sponsored by: Absolight

dns/bind9-devel: Set LDFLAGS for ports-based libedit/ncurses The latest version failed to configure using ports libedit+ncurses: configure: checking for readline with -ledit checking for readline... no configure: checking for readline with -ledit -lterminfo checking for readline... no configure: checking for readline with -ledit -ltermcap checking for readline... no configure: checking for readline with -ledit -lncurses checking for readline... no configure: checking for readline with -ledit -lcurses checking for readline... no configure: error: The readline library was not found. Setting LDFLAGS allows the build to complete as before. Approved by: just-fix-it/explicit LDFLAGS blanket

So, on 9, it is failing to build it with jobs. It builds .a before all the .o that are supposed to go in the .a are built. Imagine what happens after that... Reported by: Craig Leres Sponsored by: Absolight

Remove MAKE_JOBS_UNSAFE for BIND9. It was added in 2009 in r232247 without the reason it was failing, I've tried with -J 2-10, and can't have one of the BIND9 port fail. Feel free to add it back, but please, add the reason why it fails. Sponsored by: Absolight

The NEWSTATS and RRL options were removed in BIND9 9.10, so remove them from here, also, make the upstream default options default for real. While there, put back the BIND_TOOLS knobs in bind9-devel. Sponsored by: Absolight