Commit History - (may be incomplete: see SVNWeb link above for full details) |
Date | By | Description |
22 Jan 2021 11:13:59
9.11.27

|
mat  |
Update to 9.11.27 |
16 Dec 2020 21:36:27
9.11.26

|
mat  |
Update to 9.11.26.
Changes:
https://downloads.isc.org/isc/bind9/9.11.25/RELEASE-NOTES-bind-9.11.25.html |
04 Dec 2020 13:26:02
9.11.25_1

|
mat  |
Fix BIND9 9.11.25's manpages. |
28 Nov 2020 15:03:38
9.11.25

|
mat  |
Update to 9.11.25.
Changes:
https://downloads.isc.org/isc/bind9/9.11.25/RELEASE-NOTES-bind-9.11.25.html |
26 Oct 2020 11:40:51
9.11.24

|
mat  |
Update to 9.11.24
Changes: https://downloads.isc.org/isc/bind9/9.11.24/RELEASE-NOTES-bind-9.11.24.html |
23 Sep 2020 14:42:23
9.11.23_1

|
mat  |
Update to 9.11.23.
MFH: 2020Q3 (bugfix)
Changes: https://downloads.isc.org/isc/bind9/9.11.23/RELEASE-NOTES-bind-9.11.23.html |
26 Aug 2020 13:32:32
9.11.22_1

|
mat  |
Add an option to use the DNS accept filter if available.
PR: 241613
Submitted by: eugen |
26 Aug 2020 13:32:28
9.11.22_1

|
mat  |
Enabled DNSTAP by default.
The ISC recommends having it by default (it is in the packages they
distribute) and the footprint of the dependecies is very small.
While there, cleanup plists.
PR: 237861
Reported by: Greg Rivers |
21 Aug 2020 09:11:48
9.11.22

|
mat  |
Update to 9.11.22.
MFH: 2020Q3 (security fix)
Security: CVE-2020-8620, CVE-2020-8621, CVE-2020-8622,
CVE-2020-8623, CVE-2020-8624 |
20 Jul 2020 13:50:13
9.11.21_1

|
mat  |
Fix rndc with LMDB 0.9.26+.
PR: 247950
Submitted by: delphij
Reportedy: david isnic is
Obtained from: https://gitlab.isc.org/isc-projects/bind9/-/issues/1976
MFH: 2020Q3 (not sure if needed) |
16 Jul 2020 15:51:44
9.11.21

|
mat  |
Update to 9,11,21.
Changes: https://downloads.isc.org/isc/bind9/9.11.21/RELEASE-NOTES-bind-9.11.21.html
MFH: 2020Q3 (bug fixes) |
18 Jun 2020 03:46:42
9.11.20

|
philip  |
Update to 9.11.20.
MFH: 2020Q2
Security: CVE-2020-8619
Submitted by: mat (maintainer) |
22 May 2020 19:20:42
9.11.19_1

|
sunpoet  |
Bump PORTREVISION for devel/json-c json-c |
19 May 2020 09:25:48
9.11.19

|
mat  |
Update to 9.11.19.
MFH: 2020Q2
Security: CVE-2020-8616, CVE-2020-8617 |
15 Apr 2020 20:46:09
9.11.18

|
mat  |
Update to 9.11.18.
MFH: 2020Q2
Changes: https://downloads.isc.org/isc/bind9/9.11.18/RELEASE-NOTES-bind-9.11.18.html |
19 Mar 2020 11:33:37
9.11.17

|
mat  |
Update to 9.11.17. |
20 Feb 2020 09:09:00
9.11.16

|
mat  |
Add forgotten CONFLICTS lines. |
20 Feb 2020 09:07:36
9.11.16

|
mat  |
Update to 9.11.16.
Changes: https://downloads.isc.org/isc/bind9/9.11.16/RELEASE-NOTES-bind-9.11.16.html |
23 Jan 2020 08:55:10
9.11.15

|
mat  |
Update to 9.11.15.
Changes: https://downloads.isc.org/isc/bind9/9.11.15/RELEASE-NOTES-bind-9.11.15.html |
20 Jan 2020 14:48:03
9.11.14

|
mat  |
Fix build when devel/jsoncpp is installed.
PR: 243387
Submitted by: dron kubstu ru |
20 Jan 2020 14:47:54
9.11.14

|
mat  |
Add descriptions for the patches. |
18 Dec 2019 22:37:13
9.11.14

|
mat  |
Update to 9.11.14.
Changes: https://downloads.isc.org/isc/bind9/9.11.14/RELEASE-NOTES-bind-9.11.14.html |
20 Nov 2019 21:41:44
9.11.13

|
mat  |
Update to 9.11.13.
MFH: 2019Q4
Security: CVE-2019-6477 |
16 Oct 2019 22:53:13
9.11.12

|
mat  |
Update to 9.11.12.
Changes: https://downloads.isc.org/isc/bind9/9.11.12/RELEASE-NOTES-bind-9.11.12.html |
09 Oct 2019 10:34:57
9.11.11

|
bapt  |
Drop the ipv6 virtual category for d* category as it is not relevant anymore |
18 Sep 2019 22:27:14
9.11.11

|
mat  |
Update to 9.11.11.
While there, add back GEOIP support via the "new" libmaxminddb.
Changes: https://downloads.isc.org/isc/bind9/9.11.11/RELEASE-NOTES-bind-9.11.11.html |
22 Aug 2019 17:09:20
9.11.10

|
mat  |
Update to 9.11.10. |
18 Jul 2019 16:10:49
9.11.9

|
mat  |
Update to 9.11.9.
Changes: https://downloads.isc.org/isc/bind9/9.11.9/RELEASE-NOTES-bind-9.11.9.html |
01 Jul 2019 16:21:00
9.11.8

|
mat  |
Make a note about expiration here. |
19 Jun 2019 22:42:45
9.11.8

|
mat  |
Update to 9.11.8.
MFH: 2019Q2 (security blanket)
Security: CVE-2019-6471 |
19 Jun 2019 15:20:00
9.11.7

|
mat  |
Convert BIND9's pkg-message files to UCL. |
03 Jun 2019 12:43:27
9.11.7

|
mat  |
Fix build with DNSTAP enabled.
PR: 238036
Reported by: Artyom Davidov |
16 May 2019 07:32:25
9.11.7

|
mat  |
Update to 9.11.7. |
25 Apr 2019 07:17:13
9.11.6P1

|
mat  |
Update to BIND9 9.11.6-P1.
MFH: 2019Q2
Security: CVE-2018-5743 |
23 Apr 2019 13:04:12
9.11.6_1

|
mat  |
Remove conflicts from bind-tools and the server ports.
All servers now depend on the same bind-tools, from the latest BIND9
release.
Chase dependencies to make sure they now depend on the correct port.
Differential Revision: https://reviews.freebsd.org/D19922 |
19 Mar 2019 08:38:44
9.11.6

|
mat  |
Make WITH_DEBUG actually build and be as helpful as possible. |
12 Mar 2019 16:11:31
9.11.6

|
mat  |
Update WWW.
PR: 236196
Submitted by: Leonid Nevecherya |
01 Mar 2019 10:10:03
9.11.6

|
mat  |
Add BIND 9.14.0 first release candidate. |
01 Mar 2019 10:02:53
9.11.6

|
mat  |
Update to 9.11.6. |
22 Feb 2019 08:52:52
9.11.5P4

|
mat  |
Update to 9.11.5-P4.
MFH: 2019Q1 (blanket)
Security: CVE-2018-5744 CVE-2018-5745 CVE-2019-6465 |
09 Feb 2019 23:25:37
9.11.5P1_3

|
sunpoet  |
Update dns/libidn2 to 2.1.1
- Bump PORTREVISION of dependent ports for shlib change
Changes: https://gitlab.com/libidn/libidn2/blob/master/NEWS |
13 Jan 2019 20:58:37
9.11.5P1_2

|
adamw  |
Remove GeoIP-related options. Where possible, replace GeoIP 1 defaults
with GeoIP 2.
Also, as suggested by zi, add an UPDATING note about this. |
06 Jan 2019 20:39:43
9.11.5P1_1

|
sunpoet  |
Update dns/libidn2 to 2.1.0
- Bump PORTREVISION of dependent ports for shlib change
Changes: https://gitlab.com/libidn/libidn2/blob/master/NEWS |
13 Dec 2018 09:06:51
9.11.5P1

|
mat  |
Update to 9.11.5-P1, 9.12.3-P1, 9.13.5.
While there:
- Don't disable symbol table generation when building WITH_DEBUG.
- Try and make sure nullfs can really be used in a more robustt and
centralized way.
- Make sure all changes are sync'ed among all BIND9 ports. |
14 Nov 2018 10:11:58
9.11.5_1

|
mat  |
Make sure gost is really disabled.
It may get picked up from the base OpenSSL and break startup.
While there, make sure the correct engines are used.
Reported by: Kevin P. Neal (on ports@) |
02 Nov 2018 10:13:14
9.11.5

|
mat  |
Remove GOST support from BIND9 9.11 and 9.12.
It was never (widely|really) used, and support for it has been dropped
in OpenSSL starting at 1.1, and BIND9 starting at 9.13.
PR: 231980
Reported by: mfechner |
24 Oct 2018 08:05:48
9.11.5

|
mat  |
Update to 9.11.5. |
20 Sep 2018 14:12:09
9.11.4P2

|
mat  |
Update to 9.11.4-P2.
Switch to libidn2 for idn. |
05 Sep 2018 22:01:55
9.11.4P1_2

|
sunpoet  |
Update devel/json-c to 0.13.1
- Add my LOCAL to MASTER_SITES
- Bump PORTREVISION of dependent ports for shlib change
Changes: https://github.com/json-c/json-c/blob/master/ChangeLog
PR: 231007
Exp-run by: antoine |
24 Aug 2018 11:49:34
9.11.4P1_1

|
mat  |
Permit using allow-new-zones, LMDB, and a chrooted environment.
Fixes this obscure and not at all helpful message:
mdb_env_open of '_default.nzd' failed: No such file or directory
PR: 229125
Reported by: Tomas Ciernik
MFH: 2018Q3 |
08 Aug 2018 21:25:56
9.11.4P1

|
mat  |
Update to 9.11.4-P1 and 9.12.2-P1.
Security: CVE-2018-5740
Sponsored by: Absolight |
11 Jul 2018 09:36:54
9.11.4

|
mat  |
Update BIND9 ports to 9.11.4, 9.12.2 and 9.13.2.
Sponsored by: Absolight |
14 Jun 2018 15:42:52
9.11.3_2

|
mat  |
Include a patch to fix CVE-2018-5738 in all the BIND9 ports.
MFH: 2018Q2 (blanket)
Security: CVE-2018-5738
Sponsored by: Absolight |
06 Jun 2018 10:31:31
9.11.3_1

|
mat  |
Move things around a bit to be more handbook compliant.
Sponsored by: Absolight |
25 May 2018 12:43:32
9.11.3_1

|
mat  |
Add BIND9 9.13.0.
The ISC changed their release model, they are now doing
odd-unstable/even-stable release numbering. This is a development
version, consider it alpha/beta quality. The next stable release will
be 9.14.0.
Changes: https://kb.isc.org/article/AA-01612
Sponsored by: Absolight |
22 May 2018 13:15:13
9.11.3_1

|
mat  |
Add PY_FLAVOR to Python module dependencies.
Sponsored by: Absolight |
17 Apr 2018 08:26:49
9.11.3_1

|
mat  |
Fix build when LOCALBASE!=/usr/local.
PR: 227554
Submitted by: John Hein
Sponsored by: Absolight |
22 Mar 2018 14:13:02
9.11.3_1

|
mat  |
Enable the FILTER_AAAA option by default, the feature was made non
optional in recent versions, so might as well do it in older ones.
PR: 226383
Sponsored by: Absolight |
19 Mar 2018 11:21:38
9.11.3

|
mat  |
Update BIND9 ports to 9.9.12, 9.10.7, 9.11.3 and 9.12.1.
Sponsored by: Absolight |
07 Feb 2018 14:29:09
9.11.2P1_3

|
mat  |
Teach named where its pid file should be by default, to be consistent
with the default configuration, rc script, man pages...
PR: 225687
Reported by: John W. O'Brien
Sponsored by: Absolight |
30 Jan 2018 13:44:45
9.11.2P1_2

|
mat  |
Add a TCP_FASTOPEN option (default on) to allow not building it in. [1]
It is annoying because it outputs one line saying it cannot enable
TCP_FASTOPEN when the deamon starts.
While there, discover that FILTER_AAAA is always enabled in 9.12+ and no
longer an option, so remove it.
PR: 217288 [1] (based on)
Reported by: doktornotor mailinator com
Sponsored by: Absolight |
24 Jan 2018 10:43:30
9.11.2P1_1

|
mat  |
Catch up with the conflicts lines in the BIND9 ports.
Sponsored by: Absolight |
24 Jan 2018 10:43:26
9.11.2P1_1

|
mat  |
Remove support for bind-tools from the BIND9 9.11 port.
Sponsored by: Absolight |
19 Jan 2018 12:32:35
9.11.2P1_1

|
mat  |
Update named.root.
Sponsored by: People afraid of a nuclear holocaust. |
17 Jan 2018 07:59:45
9.11.2P1

|
mat  |
Update BIND9* to 9.9.11-P1, 9.10.6-P1, 9.11.2-P1 and 9.12.0rc3
MFH: 2018Q1
Security: CVE-2017-3145
Sponsored by: Absolight |
12 Jan 2018 12:58:51
9.11.2_7

|
mat  |
Add a TUNING_LARGE option.
https://kb.isc.org/article/AA-01314/0
Tunes certain compiled-in constants and default settings to
values better suited to large servers with 12/16GB+ of memory.
This can improve performance on such servers, but will consume
more memory and may degrade performance on smaller systems.
PR: 224859
Sponsored by: Absolight |
08 Jan 2018 13:38:47
9.11.2_6

|
mat  |
Fix altlog_proglist warning when it contains more than the named service.
PR: 224951
Submitted by: Trix Farrar
Sponsored by: Absolight |
03 Jan 2018 13:36:58
9.11.2_5

|
sunpoet  |
Update devel/json-c to 0.13
- Add TEST_TARGET
- While I'm here, fix shebang for net/opensips
- Bump PORTREVISION of dependent ports for shlib change
Changes: https://github.com/json-c/json-c/blob/master/ChangeLog
PR: 224675
Exp-run by: antoine |
23 Nov 2017 13:55:30
9.11.2_4

|
mat  |
Add an extra check to make sure syslogd is correctly configured when
using chroot.
Sponsored by: Absolight |
07 Nov 2017 15:48:16
9.11.2_3

|
mat  |
Add a symlink to named's session-keyfile.
Using nsupdate -l, and chroot was broken because nsupdate could not find
the keyfile by itself.
PR: 223403
Submitted by: Harald Schmalzbauer
Sponsored by: Absolight |
04 Nov 2017 11:43:35
9.11.2_2

|
dbaio  |
Update license of ports using MPL (without version)
All ports now should use MPL[10|11|20] license.
Approved by: portmgr (blanket) |
03 Nov 2017 13:20:28
9.11.2_2

|
mat  |
Enable the PYTHON option by default, it brings a few interesting DNSSEC
tools.
Sponsored by: Absolight |
25 Oct 2017 13:24:19
9.11.2_1

|
mat  |
Install the mtree file as .sample to allow users to change them.
Sponsored by: Absolight |
28 Jul 2017 22:57:27
9.11.2

|
mat  |
Update BIND9 ports to 9.{9.11,10.6,11.2}.
Sponsored by: Absolight |
10 Jul 2017 18:48:00
9.11.1P3

|
mat  |
Update to 9.{9.10,10.5,11.1}-P3.
Sponsored by: Absolight |
29 Jun 2017 20:51:14
9.11.1P2

|
mat  |
Update to 9.{9.10,10.5,11.1}-P2.
Security: CVE-2017-3142
Security: CVE-2017-3143
Sponsored by: Absolight |
14 Jun 2017 22:54:50
9.11.1P1

|
mat  |
Update to 9.9.10-P1, 9.10.5-P1, 9.11.1-P1.
MFH: 2017Q2
Security: CVE-2017-3140
Security: CVE-2017-3141
Sponsored by: Absolight |
14 Jun 2017 22:54:43
9.11.1

|
mat  |
Remove special handling for testing and documentation domains, per RFC
6761 recommendations.
While there:
- Fix invalid syntax in sample slave config.
- Add a message about having syslogd working with BIND9 chroot.
PR: 217915
Reported by: eserte12 yahoo de
Sponsored by: Absolight |
20 Apr 2017 13:12:36
9.11.1

|
mat  |
Update to 9.9.10, 9.10.5, 9.11.1 and 9.12 to latest snapshot.
While there:
Make it more maintainable by sorting stuff in the Makefile and removing
vestigial pre 10.3 things.
Refresh the root zone hints.
"Fix" the configuration section telling you to get some top level
zones from f.root-servers.net, which does not allow axfr any more. [1]
PR: 218656 [1]
Reported by: Thomas Steen Rasmussen / Tykling [1]
MFH: 2017Q2
Sponsored by: Absolight |
13 Apr 2017 10:15:19
9.11.0P5_1

|
mat  |
Unbreak rndc calls when using non default rndc.key location.
PR: 218335
Sponsored by: Absolight |
13 Apr 2017 04:12:37
9.11.0P5

|
delphij  |
Security update to 9.11.0P5.
Security: c6861494-1ffb-11e7-934d-d05099c0ae8c
Approved by: so
MFH: 2017Q2 |
11 Apr 2017 13:59:43
9.11.0P3

|
mat  |
Remove private URLs that should never have been committed.
Pointy hat: mat
Sponsored by: Absolight |
08 Feb 2017 22:39:28
9.11.0P3

|
mat  |
Update to 9.9.9-P6, 9.10.4-P6 and 9.11.0-P3.
While there, remove the RPZ_PATCH for BIND9 9.9, it has not been updated
for years, and, it does not build any more.
MFH: 2017Q1
Security: CVE-2017-3135
Sponsored by: Absolight |
12 Jan 2017 08:15:41
9.11.0P2_1

|
mat  |
Commit the cleanups that should have gone in with the pervious update.
Sponsored by: Absolight |
12 Jan 2017 07:30:00
9.11.0P2

|
delphij  |
Security update to 9.11.0-P2.
Approved by: so
Security: d4c7e9a9-d893-11e6-9b4d-d050996490d0
MFH: 2017Q1 |
09 Dec 2016 15:40:35
9.11.0P1_1

|
mat  |
Switch bind-tools to BIND9 9.11.
Sponsored by: Absolight |
09 Dec 2016 15:40:32
9.11.0P1_1

|
mat  |
Cleanup CONFLICTS.
Sponsored by: Absolight |
09 Dec 2016 15:02:37
9.11.0P1_1

|
mat  |
Fixup libedit for all BIND9 ports, and fix spurious json dependency by
adding an option.
PR: 215170
Reported by: sunpoet
Sponsored by: Absolight |
02 Nov 2016 06:38:48
9.11.0P1

|
delphij  |
Security update:
dns/bind99: 9.9.9-P3 -> 9.9.9-P4
dns/bind910: 9.10.4-P3 -> 9.10.4-P4
dns/bind911: 9.11.0 -> 9.11.0-P1
Security: CVE-2016-8864
Submitted by: mat
MFH: 2016Q4 |
04 Oct 2016 22:35:31
9.11.0

|
mat  |
Update to 9.11.0
Changes: https://lists.isc.org/pipermail/bind-announce/2016-October/001007.html
Sponsored by: Absolight |
04 Oct 2016 14:37:34
9.11.0.rc3

|
mat  |
Remarke MAKE_JOBS_UNSAFE everywhere.
Sponsored by: Absolight |
30 Sep 2016 12:44:28
9.11.0.rc3

|
mat  |
So, on 9, it is failing to build it with jobs.
It builds .a before all the .o that are supposed to go in the .a are
built. Imagine what happens after that...
Reported by: Craig Leres
Sponsored by: Absolight |
28 Sep 2016 12:55:09
9.11.0.rc3

|
mat  |
Remove MAKE_JOBS_UNSAFE for BIND9.
It was added in 2009 in r232247 without the reason it was failing, I've
tried with -J 2-10, and can't have one of the BIND9 port fail.
Feel free to add it back, but please, add the reason why it fails.
Sponsored by: Absolight |
27 Sep 2016 16:10:22
9.11.0.rc3

|
mat  |
Update BIND9 to latest versions, 9.9.9-P3, 9.10.4-P3, 9.11.0rc3
MFH: 2016Q3
Security: CVE-2016-2776
Sponsored by: Absolight |
31 Aug 2016 12:06:24
9.11.0.rc1

|
mat  |
The START_LATE option is not needed by bind-tools.
Sponsored by: Absolight |
31 Aug 2016 11:59:05
9.11.0.rc1

|
mat  |
The NEWSTATS and RRL options were removed in BIND9 9.10, so remove them
from here, also, make the upstream default options default for real.
While there, put back the BIND_TOOLS knobs in bind9-devel.
Sponsored by: Absolight |
31 Aug 2016 11:58:51
9.11.0.rc1

|
mat  |
Update to 9.11.0rc1.
While there, remove obsolete configure options, and set as default the
one that default to yes.
Changes: https://lists.isc.org/pipermail/bind-announce/2016-August/001002.html
Sponsored by: Absolight |
03 Aug 2016 13:27:59
9.11.0.b3

|
mat  |
Update to 9.11.0b3.
MFH: 2016Q3
Security: CVE-2016-2775
Changes: https://lists.isc.org/pipermail/bind-announce/2016-July/001001.html
Sponsored by: Absolight |
19 Jul 2016 11:30:38
9.11.0.b2

|
mat  |
BIND9 update, 9.9.9-P2, 9.10.4-P2, 9.11.0b2 and latest 9.12 snapshot.
MFH: 2016Q3
Security: CVE-2016-2775
Changes: https://lists.isc.org/pipermail/bind-announce/2016-July/000996.html
Changes: https://lists.isc.org/pipermail/bind-announce/2016-July/000997.html
Changes: https://lists.isc.org/pipermail/bind-announce/2016-July/000998.html
Changes: https://lists.isc.org/pipermail/bind-announce/2016-July/000999.html
Sponsored by: Absolight |
04 Jul 2016 09:47:25
9.11.0.b1

|
mat  |
Introduce BIND9 9.11.0b1. (beta1)
BIND 9.11 brings many changes to BIND, including a new license
(the Mozilla Public License 2.0 -- you can read about it here:
https://www.isc.org/blogs/bind9-adopts-the-mpl-2-0-license-with-bind-9-11-0/)
and many new features, including:
- Catalog zones, a new way to provision zones on slave servers
- dyndb api, a fast new api enabling BIND to serve zones stored
in a database (Developed by Petr Spacek of RedHat)
- RNDC showzone, view-only mode and other improvements
- dnstap query and response logging (Robert Edmonds is the author
of dnstap, see www.dnstap.info)
- EDNS Client-subnet (authoritative server functions)
- DNSSEC key manager, a new utility (Thanks to Sebastian Castro
for helping with development.)
- Automatic CDS/CDSKEY generation
- Negative Trust Anchors for DNSSEC validators
- IPv6 bias to encourage use of IPv6 DNS servers
- Minimal response to "any" queries (Thanks to Tony Finch for
the contribution)
- DNS Cookies are now enabled by default, using the standardized code point
Changes: https://lists.isc.org/pipermail/bind-announce/2016-June/000994.html
Sponsored by: Absolight |