diff --git a/README b/README
index 5c40df1139..167a78d899 100644
--- a/README
+++ b/README
@@ -228,11 +228,9 @@ developers.google.com/protocol-buffers, and BIND must be configured with
--enable-dnstap.
Certain compiled-in constants and default settings can be increased to
-values better suited to large servers with abundant memory resources (e.g,
-64-bit servers with 12G or more of memory) by specifying --with-tuning=
-large on the configure command line. This can improve performance on big
-servers, but will consume more memory and may degrade performance on
-smaller systems.
+values better suited to small machines, e.g. OpenWRT boxes, by specifying
+--with-tuning=small on the configure command line. This will decrease
+memory usage by using smaller structures, but will degrade performance.
On Linux, process capabilities are managed in user space using the libcap
library, which can be installed on most Linux systems via the libcap-dev
diff --git a/bin/dig/nslookup.1 b/bin/dig/nslookup.1
index 752d52d98b..84afa0758e 100644
--- a/bin/dig/nslookup.1
+++ b/bin/dig/nslookup.1
@@ -233,7 +233,10 @@ Change the default TCP/UDP name server port to
.RS 4
Change the type of the information query\&.
.sp
-(Default = A; abbreviations = q, ty)
+(Default = A and then AAAA; abbreviations = q, ty)
+.sp
+\fBNote:\fR
+It is only possible to specify one query type, only the default behavior looks up both when an alternative is not specified\&.
.RE
.PP
\fB\fI[no]\fR\fR\fBrecurse\fR
diff --git a/bin/dig/nslookup.html b/bin/dig/nslookup.html
index dc8c5c236a..9ec3e4bfd6 100644
--- a/bin/dig/nslookup.html
+++ b/bin/dig/nslookup.html
@@ -229,17 +229,17 @@ nslookup -query=hinfo -timeout=10
The class specifies the protocol group of the information.
-
+
(Default = IN; abbreviation = cl)
[no]debug
- Turn on or off the display of the full response packet and
- any intermediate response packets when searching.
+ Turn on or off the display of the full response packet and
+ any intermediate response packets when searching.
-
+
(Default = nodebug; abbreviation = [no]deb)
@@ -247,9 +247,9 @@ nslookup -query=hinfo -timeout=10
Turn debugging mode on or off. This displays more about
- what nslookup is doing.
+ what nslookup is doing.
-
+
(Default = nod2)
@@ -267,7 +267,7 @@ nslookup -query=hinfo -timeout=10
names in the domain search list to the request until an
answer is received.
-
+
(Default = search)
@@ -276,7 +276,7 @@ nslookup -query=hinfo -timeout=10
Change the default TCP/UDP name server port to value.
-
+
(Default = 53; abbreviation = po)
@@ -289,9 +289,15 @@ nslookup -query=hinfo -timeout=10
Change the type of the information query.
-
- (Default = A; abbreviations = q, ty)
+
+ (Default = A and then AAAA; abbreviations = q, ty)
+
+ Note: It is
+ only possible to specify one query type, only
+ the default behavior looks up both when an
+ alternative is not specified.
+
[no]recurse
+
(Default = recurse; abbreviation = [no]rec)
ndots=number
- Set the number of dots (label separators) in a domain
- that will disable searching. Absolute names always
- stop searching.
+ Set the number of dots (label separators) in a domain
+ that will disable searching. Absolute names always
+ stop searching.
retry=number
@@ -331,21 +337,21 @@ nslookup -query=hinfo -timeout=10
Always use a virtual circuit when sending requests to the
server.
-
+
(Default = novc)
[no]fail
- Try the next nameserver if a nameserver responds with
- SERVFAIL or a referral (nofail) or terminate query
- (fail) on such a response.
-
-
+ Try the next nameserver if a nameserver responds with
+ SERVFAIL or a referral (nofail) or terminate query
+ (fail) on such a response.
+
+
(Default = nofail)
-
+
diff --git a/bin/dnssec/dnssec-keyfromlabel.8 b/bin/dnssec/dnssec-keyfromlabel.8
index 16c5546ee3..02ce4a8e59 100644
--- a/bin/dnssec/dnssec-keyfromlabel.8
+++ b/bin/dnssec/dnssec-keyfromlabel.8
@@ -92,7 +92,7 @@ Specifies the label for a key pair in the crypto hardware\&.
.sp
When
BIND
-9 is built with OpenSSL\-based PKCS#11 support, the label is an arbitrary string that identifies a particular key\&. It may be preceded by an optional OpenSSL engine name, followed by a colon, as in "pkcs11:\fIkeylabel\fR"\&.
+9 is built with OpenSSL\-based PKCS#11 support, the label is an arbitrary string that identifies a particular key\&.
.sp
When
BIND
diff --git a/bin/dnssec/dnssec-keyfromlabel.html b/bin/dnssec/dnssec-keyfromlabel.html
index ac53995ca0..92c4e3cf4c 100644
--- a/bin/dnssec/dnssec-keyfromlabel.html
+++ b/bin/dnssec/dnssec-keyfromlabel.html
@@ -146,9 +146,7 @@
When BIND 9 is built with OpenSSL-based
PKCS#11 support, the label is an arbitrary string that
- identifies a particular key. It may be preceded by an
- optional OpenSSL engine name, followed by a colon, as in
- "pkcs11:keylabel".
+ identifies a particular key.
When BIND 9 is built with native PKCS#11
diff --git a/bin/named/named.8 b/bin/named/named.8
index 1759e081f2..1b95cf3fae 100644
--- a/bin/named/named.8
+++ b/bin/named/named.8
@@ -187,7 +187,7 @@ Allow
\fBnamed\fR
to use up to
\fI#max\-socks\fR
-sockets\&. The default value is 4096 on systems built with default configuration options, and 21000 on systems built with "configure \-\-with\-tuning=large"\&.
+sockets\&. The default value is 21000 on systems built with default configuration options, and 4096 on systems built with "configure \-\-with\-tuning=small"\&.
.if n \{\
.sp
.\}
diff --git a/bin/named/named.conf.5 b/bin/named/named.conf.5
index 51f7af645b..a3de94887c 100644
--- a/bin/named/named.conf.5
+++ b/bin/named/named.conf.5
@@ -10,12 +10,12 @@
.\" Title: named.conf
.\" Author:
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 2019-08-12
+.\" Date: 2020-02-07
.\" Manual: BIND9
.\" Source: ISC
.\" Language: English
.\"
-.TH "NAMED\&.CONF" "5" "2019\-08\-12" "ISC" "BIND9"
+.TH "NAMED\&.CONF" "5" "2020\-02\-07" "ISC" "BIND9"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
@@ -97,6 +97,31 @@ dlz \fIstring\fR {
.if n \{\
.RE
.\}
+.SH "DNSSEC-POLICY"
+.sp
+.if n \{\
+.RS 4
+.\}
+.nf
+dnssec\-policy \fIstring\fR {
+ dnskey\-ttl \fIduration\fR;
+ keys { ( csk | ksk | zsk ) ( key\-directory ) lifetime ( \fIduration\fR | unlimited )
+ algorithm \fIinteger\fR [ \fIinteger\fR ]; \&.\&.\&. };
+ max\-zone\-ttl \fIduration\fR;
+ parent\-ds\-ttl \fIduration\fR;
+ parent\-propagation\-delay \fIduration\fR;
+ parent\-registration\-delay \fIduration\fR;
+ publish\-safety \fIduration\fR;
+ retire\-safety \fIduration\fR;
+ signatures\-refresh \fIduration\fR;
+ signatures\-validity \fIduration\fR;
+ signatures\-validity\-dnskey \fIduration\fR;
+ zone\-propagation\-delay \fIduration\fR;
+};
+.fi
+.if n \{\
+.RE
+.\}
.SH "DYNDB"
.sp
.if n \{\
@@ -150,7 +175,7 @@ logging {
.\}
.SH "MANAGED-KEYS"
.PP
-Deprecated \- see TRUST\-ANCHORS\&.
+Deprecated \- see DNSSEC\-KEYS\&.
.sp
.if n \{\
.RS 4
@@ -262,6 +287,7 @@ options {
dnssec\-dnskey\-kskonly \fIboolean\fR;
dnssec\-loadkeys\-interval \fIinteger\fR;
dnssec\-must\-be\-secure \fIstring\fR \fIboolean\fR;
+ dnssec\-policy \fIstring\fR;
dnssec\-secure\-to\-insecure \fIboolean\fR;
dnssec\-update\-mode ( maintain | no\-resign );
dnssec\-validation ( yes | no | auto );
@@ -411,8 +437,8 @@ options {
\fIinteger\fR;
response\-policy { zone \fIstring\fR [ add\-soa \fIboolean\fR ] [ log
\fIboolean\fR ] [ max\-policy\-ttl \fIduration\fR ] [ min\-update\-interval
- \fIduration\fR ] [ policy ( cname | disabled | drop | given | no\-op |
- nodata | nxdomain | passthru | tcp\-only \fIquoted_string\fR ) ] [
+ \fIduration\fR ] [ policy ( cname | disabled | drop | given | no\-op
+ | nodata | nxdomain | passthru | tcp\-only \fIquoted_string\fR ) ] [
recursive\-only \fIboolean\fR ] [ nsip\-enable \fIboolean\fR ] [
nsdname\-enable \fIboolean\fR ]; \&.\&.\&. } [ add\-soa \fIboolean\fR ] [
break\-dnssec \fIboolean\fR ] [ max\-policy\-ttl \fIduration\fR ] [
@@ -567,7 +593,7 @@ trust\-anchors { \fIstring\fR ( static\-key |
.\}
.SH "TRUSTED-KEYS"
.PP
-Deprecated \- see TRUST\-ANCHORS\&.
+Deprecated \- see DNSSEC\-KEYS\&.
.sp
.if n \{\
.RS 4
@@ -657,6 +683,7 @@ view \fIstring\fR [ \fIclass\fR ] {
dnssec\-dnskey\-kskonly \fIboolean\fR;
dnssec\-loadkeys\-interval \fIinteger\fR;
dnssec\-must\-be\-secure \fIstring\fR \fIboolean\fR;
+ dnssec\-policy \fIstring\fR;
dnssec\-secure\-to\-insecure \fIboolean\fR;
dnssec\-update\-mode ( maintain | no\-resign );
dnssec\-validation ( yes | no | auto );
@@ -780,8 +807,8 @@ view \fIstring\fR [ \fIclass\fR ] {
\fIinteger\fR;
response\-policy { zone \fIstring\fR [ add\-soa \fIboolean\fR ] [ log
\fIboolean\fR ] [ max\-policy\-ttl \fIduration\fR ] [ min\-update\-interval
- \fIduration\fR ] [ policy ( cname | disabled | drop | given | no\-op |
- nodata | nxdomain | passthru | tcp\-only \fIquoted_string\fR ) ] [
+ \fIduration\fR ] [ policy ( cname | disabled | drop | given | no\-op
+ | nodata | nxdomain | passthru | tcp\-only \fIquoted_string\fR ) ] [
recursive\-only \fIboolean\fR ] [ nsip\-enable \fIboolean\fR ] [
nsdname\-enable \fIboolean\fR ]; \&.\&.\&. } [ add\-soa \fIboolean\fR ] [
break\-dnssec \fIboolean\fR ] [ max\-policy\-ttl \fIduration\fR ] [
@@ -1067,30 +1094,6 @@ zone \fIstring\fR [ \fIclass\fR ] {
.if n \{\
.RE
.\}
-.SH "DNSSEC-POLICY"
-.sp
-.if n \{\
-.RS 4
-.\}
-.nf
-dnssec\-policy \fIstring\fR {
- dnskey\-ttl \fIduration\fR;
- keys { ( csk | ksk | zsk ) key\-directory lifetime \fIduration\fR algorithm \fIinteger\fR [ \fIinteger\fR ] ; \&.\&.\&. };
- parent\-ds\-ttl \fIduration\fR;
- parent\-propagation\-delay \fIduration\fR;
- parent\-registration\-delay \fIduration\fR;
- publish\-safety \fIduration\fR;
- retire\-safety \fIduration\fR;
- signatures\-refresh \fIduration\fR;
- signatures\-validity \fIduration\fR;
- signatures\-validity\-dnskey \fIduration\fR;
- zone\-max\-ttl \fIduration\fR;
- zone\-propagation\-delay \fIduration\fR;
-};
-.fi
-.if n \{\
-.RE
-.\}
.SH "FILES"
.PP
/etc/named\&.conf
diff --git a/bin/named/named.conf.docbook b/bin/named/named.conf.docbook
index 9aeeac10cc..bb6e7b93cf 100644
--- a/bin/named/named.conf.docbook
+++ b/bin/named/named.conf.docbook
@@ -13,7 +13,7 @@
- 2019-12-12
+ 2020-02-07
ISC
diff --git a/bin/named/named.conf.html b/bin/named/named.conf.html
index 69a9382b11..b1eb15b3a2 100644
--- a/bin/named/named.conf.html
+++ b/bin/named/named.conf.html
@@ -92,7 +92,28 @@ dlz
-
DYNDB
+
DNSSEC-POLICY
+
+dnssec-policy string {
+ dnskey-ttl duration;
+ keys { ( csk | ksk | zsk ) ( key-directory ) lifetime ( duration | unlimited )
+ algorithm integer [ integer ]; ... };
+ max-zone-ttl duration;
+ parent-ds-ttl duration;
+ parent-propagation-delay duration;
+ parent-registration-delay duration;
+ publish-safety duration;
+ retire-safety duration;
+ signatures-refresh duration;
+ signatures-validity duration;
+ signatures-validity-dnskey duration;
+ zone-propagation-delay duration;
+};
+
+
+
DYNDB
dyndb string quoted_string {
unspecified-text };
@@ -100,7 +121,7 @@ dyndb
-
KEY
+
KEY
key string {
algorithm string;
@@ -110,7 +131,7 @@ key
-
LOGGING
+
LOGGING
logging {
category string { string; ... };
@@ -131,8 +152,8 @@ logging
-
MANAGED-KEYS
-
Deprecated - see TRUST-ANCHORS.
+
MANAGED-KEYS
+
Deprecated - see DNSSEC-KEYS.
managed-keys { string ( static-key
| initial-key | static-ds |
@@ -142,7 +163,7 @@ managed-keys
-
MASTERS
+
MASTERS
masters string [ port integer ] [ dscp
integer ] { ( masters | ipv4_address [
@@ -152,7 +173,7 @@ masters
-
OPTIONS
+
OPTIONS
options {
allow-new-zones boolean;
@@ -232,6 +253,7 @@ options
dnssec-dnskey-kskonly boolean;
dnssec-loadkeys-interval integer;
dnssec-must-be-secure string boolean;
+ dnssec-policy string;
dnssec-secure-to-insecure boolean;
dnssec-update-mode ( maintain | no-resign );
dnssec-validation ( yes | no | auto );
@@ -381,8 +403,8 @@ options
integer;
response-policy { zone string [ add-soa boolean ] [ log
boolean ] [ max-policy-ttl duration ] [ min-update-interval
- duration ] [ policy ( cname | disabled | drop | given | no-op |
- nodata | nxdomain | passthru | tcp-only quoted_string ) ] [
+ duration ] [ policy ( cname | disabled | drop | given | no-op
+ | nodata | nxdomain | passthru | tcp-only quoted_string ) ] [
recursive-only boolean ] [ nsip-enable boolean ] [
nsdname-enable boolean ]; ... } [ add-soa boolean ] [
break-dnssec boolean ] [ max-policy-ttl duration ] [
@@ -451,7 +473,7 @@ options
-
PLUGIN
+
PLUGIN
plugin ( query ) string [ { unspecified-text
} ];
@@ -459,7 +481,7 @@ plugin
-
SERVER
+
SERVER
server netprefix {
bogus boolean;
@@ -497,7 +519,7 @@ server
-
STATISTICS-CHANNELS
+
STATISTICS-CHANNELS
statistics-channels {
inet ( ipv4_address | ipv6_address |
@@ -509,7 +531,7 @@ statistics-channels
-
TRUST-ANCHORS
+
TRUST-ANCHORS
trust-anchors { string ( static-key |
initial-key | static-ds | initial-ds )
@@ -519,8 +541,8 @@ trust-anchors
-
TRUSTED-KEYS
-
Deprecated - see TRUST-ANCHORS.
+
TRUSTED-KEYS
+
Deprecated - see DNSSEC-KEYS.
trusted-keys { string integer
integer integer
@@ -529,7 +551,7 @@ trusted-keys
-
VIEW
+
VIEW
view string [ class ] {
allow-new-zones boolean;
@@ -602,6 +624,7 @@ view
dnssec-dnskey-kskonly boolean;
dnssec-loadkeys-interval integer;
dnssec-must-be-secure string boolean;
+ dnssec-policy string;
dnssec-secure-to-insecure boolean;
dnssec-update-mode ( maintain | no-resign );
dnssec-validation ( yes | no | auto );
@@ -725,8 +748,8 @@ view
integer;
response-policy { zone string [ add-soa boolean ] [ log
boolean ] [ max-policy-ttl duration ] [ min-update-interval
- duration ] [ policy ( cname | disabled | drop | given | no-op |
- nodata | nxdomain | passthru | tcp-only quoted_string ) ] [
+ duration ] [ policy ( cname | disabled | drop | given | no-op
+ | nodata | nxdomain | passthru | tcp-only quoted_string ) ] [
recursive-only boolean ] [ nsip-enable boolean ] [
nsdname-enable boolean ]; ... } [ add-soa boolean ] [
break-dnssec boolean ] [ max-policy-ttl duration ] [
@@ -908,7 +931,7 @@ view
-
ZONE
+
ZONE
zone string [ class ] {
allow-notify { address_match_element; ... };
@@ -1007,27 +1030,6 @@ zone
-
-
DNSSEC-POLICY
-
-
-dnssec-policy string {
- dnskey-ttl duration;
- keys { ( csk | ksk | zsk ) key-directory lifetime duration algorithm integer [ integer ] ; ... };
- parent-ds-ttl duration;
- parent-propagation-delay duration;
- parent-registration-delay duration;
- publish-safety duration;
- retire-safety duration;
- signatures-refresh duration;
- signatures-validity duration;
- signatures-validity-dnskey duration;
- zone-max-ttl duration;
- zone-propagation-delay duration;
-};
-
-
-
FILES
diff --git a/bin/named/named.html b/bin/named/named.html
index 18f5d2db9a..95a9c49ff1 100644
--- a/bin/named/named.html
+++ b/bin/named/named.html
@@ -230,9 +230,9 @@
Allow named to use up to
#max-socks sockets.
- The default value is 4096 on systems built with default
- configuration options, and 21000 on systems built with
- "configure --with-tuning=large".
+ The default value is 21000 on systems built with default
+ configuration options, and 4096 on systems built with
+ "configure --with-tuning=small".
Warning
diff --git a/configure b/configure
index 79ae1f6aa4..9599d17719 100755
--- a/configure
+++ b/configure
@@ -1,6 +1,6 @@
#! /bin/sh
# Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for BIND 9.15.
+# Generated by GNU Autoconf 2.69 for BIND 9.17.
#
# Report bugs to .
#
@@ -589,10 +589,10 @@ MAKEFLAGS=
# Identity of this package.
PACKAGE_NAME='BIND'
PACKAGE_TARNAME='bind'
-PACKAGE_VERSION='9.15'
-PACKAGE_STRING='BIND 9.15'
+PACKAGE_VERSION='9.17'
+PACKAGE_STRING='BIND 9.17'
PACKAGE_BUGREPORT='info@isc.org'
-PACKAGE_URL='https://www.isc.org/downloads/BIND/'
+PACKAGE_URL='https://www.isc.org/downloads/'
# Factoring default headers for most tests.
ac_includes_default="\
@@ -852,7 +852,6 @@ infodir
docdir
oldincludedir
includedir
-runstatedir
localstatedir
sharedstatedir
sysconfdir
@@ -1026,7 +1025,6 @@ datadir='${datarootdir}'
sysconfdir='${prefix}/etc'
sharedstatedir='${prefix}/com'
localstatedir='${prefix}/var'
-runstatedir='${localstatedir}/run'
includedir='${prefix}/include'
oldincludedir='/usr/include'
docdir='${datarootdir}/doc/${PACKAGE_TARNAME}'
@@ -1279,15 +1277,6 @@ do
| -silent | --silent | --silen | --sile | --sil)
silent=yes ;;
- -runstatedir | --runstatedir | --runstatedi | --runstated \
- | --runstate | --runstat | --runsta | --runst | --runs \
- | --run | --ru | --r)
- ac_prev=runstatedir ;;
- -runstatedir=* | --runstatedir=* | --runstatedi=* | --runstated=* \
- | --runstate=* | --runstat=* | --runsta=* | --runst=* | --runs=* \
- | --run=* | --ru=* | --r=*)
- runstatedir=$ac_optarg ;;
-
-sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb)
ac_prev=sbindir ;;
-sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \
@@ -1425,7 +1414,7 @@ fi
for ac_var in exec_prefix prefix bindir sbindir libexecdir datarootdir \
datadir sysconfdir sharedstatedir localstatedir includedir \
oldincludedir docdir infodir htmldir dvidir pdfdir psdir \
- libdir localedir mandir runstatedir
+ libdir localedir mandir
do
eval ac_val=\$$ac_var
# Remove trailing slashes.
@@ -1538,7 +1527,7 @@ if test "$ac_init_help" = "long"; then
# Omit some internal or obsolete options to make the list less imposing.
# This message is too long to be a string in the A/UX 3.1 sh.
cat <<_ACEOF
-\`configure' configures BIND 9.15 to adapt to many kinds of systems.
+\`configure' configures BIND 9.17 to adapt to many kinds of systems.
Usage: $0 [OPTION]... [VAR=VALUE]...
@@ -1578,7 +1567,6 @@ Fine tuning of the installation directories:
--sysconfdir=DIR read-only single-machine data [PREFIX/etc]
--sharedstatedir=DIR modifiable architecture-independent data [PREFIX/com]
--localstatedir=DIR modifiable single-machine data [PREFIX/var]
- --runstatedir=DIR modifiable per-process data [LOCALSTATEDIR/run]
--libdir=DIR object code libraries [EPREFIX/lib]
--includedir=DIR C header files [PREFIX/include]
--oldincludedir=DIR C header files for non-gcc [/usr/include]
@@ -1604,7 +1592,7 @@ fi
if test -n "$ac_init_help"; then
case $ac_init_help in
- short | recursive ) echo "Configuration of BIND 9.15:";;
+ short | recursive ) echo "Configuration of BIND 9.17:";;
esac
cat <<\_ACEOF
@@ -1775,7 +1763,7 @@ Use these variables to override the choices made by `configure' or to help
it to find libraries and programs with nonstandard names/locations.
Report bugs to .
-BIND home page: .
+BIND home page: .
_ACEOF
ac_status=$?
fi
@@ -1838,7 +1826,7 @@ fi
test -n "$ac_init_help" && exit $ac_status
if $ac_init_version; then
cat <<\_ACEOF
-BIND configure 9.15
+BIND configure 9.17
generated by GNU Autoconf 2.69
Copyright (C) 2012 Free Software Foundation, Inc.
@@ -2261,7 +2249,7 @@ cat >config.log <<_ACEOF
This file contains any messages produced by compilers while
running configure, to aid debugging if configure makes a mistake.
-It was created by BIND $as_me 9.15, which was
+It was created by BIND $as_me 9.17, which was
generated by GNU Autoconf 2.69. Invocation command line was
$ $0 $@
@@ -4023,7 +4011,7 @@ else
We can't simply define LARGE_OFF_T to be 9223372036854775807,
since some C++ compilers masquerading as C compilers
incorrectly reject 9223372036854775807. */
-#define LARGE_OFF_T ((((off_t) 1 << 31) << 31) - 1 + (((off_t) 1 << 31) << 31))
+#define LARGE_OFF_T (((off_t) 1 << 62) - 1 + ((off_t) 1 << 62))
int off_t_is_large[(LARGE_OFF_T % 2147483629 == 721
&& LARGE_OFF_T % 2147483647 == 1)
? 1 : -1];
@@ -4069,7 +4057,7 @@ else
We can't simply define LARGE_OFF_T to be 9223372036854775807,
since some C++ compilers masquerading as C compilers
incorrectly reject 9223372036854775807. */
-#define LARGE_OFF_T ((((off_t) 1 << 31) << 31) - 1 + (((off_t) 1 << 31) << 31))
+#define LARGE_OFF_T (((off_t) 1 << 62) - 1 + ((off_t) 1 << 62))
int off_t_is_large[(LARGE_OFF_T % 2147483629 == 721
&& LARGE_OFF_T % 2147483647 == 1)
? 1 : -1];
@@ -4093,7 +4081,7 @@ rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext
We can't simply define LARGE_OFF_T to be 9223372036854775807,
since some C++ compilers masquerading as C compilers
incorrectly reject 9223372036854775807. */
-#define LARGE_OFF_T ((((off_t) 1 << 31) << 31) - 1 + (((off_t) 1 << 31) << 31))
+#define LARGE_OFF_T (((off_t) 1 << 62) - 1 + ((off_t) 1 << 62))
int off_t_is_large[(LARGE_OFF_T % 2147483629 == 721
&& LARGE_OFF_T % 2147483647 == 1)
? 1 : -1];
@@ -4138,7 +4126,7 @@ else
We can't simply define LARGE_OFF_T to be 9223372036854775807,
since some C++ compilers masquerading as C compilers
incorrectly reject 9223372036854775807. */
-#define LARGE_OFF_T ((((off_t) 1 << 31) << 31) - 1 + (((off_t) 1 << 31) << 31))
+#define LARGE_OFF_T (((off_t) 1 << 62) - 1 + ((off_t) 1 << 62))
int off_t_is_large[(LARGE_OFF_T % 2147483629 == 721
&& LARGE_OFF_T % 2147483647 == 1)
? 1 : -1];
@@ -4162,7 +4150,7 @@ rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext
We can't simply define LARGE_OFF_T to be 9223372036854775807,
since some C++ compilers masquerading as C compilers
incorrectly reject 9223372036854775807. */
-#define LARGE_OFF_T ((((off_t) 1 << 31) << 31) - 1 + (((off_t) 1 << 31) << 31))
+#define LARGE_OFF_T (((off_t) 1 << 62) - 1 + ((off_t) 1 << 62))
int off_t_is_large[(LARGE_OFF_T % 2147483629 == 721
&& LARGE_OFF_T % 2147483647 == 1)
? 1 : -1];
@@ -24193,7 +24181,7 @@ cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1
# report actual input values of CONFIG_FILES etc. instead of their
# values after options handling.
ac_log="
-This file was extended by BIND $as_me 9.15, which was
+This file was extended by BIND $as_me 9.17, which was
generated by GNU Autoconf 2.69. Invocation command line was
CONFIG_FILES = $CONFIG_FILES
@@ -24254,13 +24242,13 @@ Configuration commands:
$config_commands
Report bugs to .
-BIND home page: ."
+BIND home page: ."
_ACEOF
cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`"
ac_cs_version="\\
-BIND config.status 9.15
+BIND config.status 9.17
configured by $0, generated by GNU Autoconf 2.69,
with options \\"\$ac_cs_config\\"
@@ -26012,7 +26000,7 @@ report() {
if test "yes" = "$enable_full_report" -o "standard" = "$locktype"; then
echo " Mutex lock type: $locktype"
fi
- test "large" = "$use_tuning" && echo " Large-system tuning (--with-tuning)"
+ test "small" = "$with_tuning" && echo " Small-system tuning (--with-tuning)"
test "no" = "$use_dnstap" || \
echo " Allow 'dnstap' packet logging (--enable-dnstap)"
test -z "$MAXMINDDB_LIBS" || echo " GeoIP2 access control (--enable-geoip)"
@@ -26072,7 +26060,7 @@ report() {
echo "Features disabled or unavailable on this platform:"
test "no" = "$found_ipv6" && echo " IPv6 support (--enable-ipv6)"
- test "large" = "$use_tuning" || echo " Large-system tuning (--with-tuning)"
+ test "small" = "$with_tuning" || echo " Small-system tuning (--with-tuning)"
test "no" = "$use_dnstap" && \
echo " Allow 'dnstap' packet logging (--enable-dnstap)"
diff --git a/doc/arm/Bv9ARM.ch01.html b/doc/arm/Bv9ARM.ch01.html
index f572980839..ee71bd54e0 100644
--- a/doc/arm/Bv9ARM.ch01.html
+++ b/doc/arm/Bv9ARM.ch01.html
@@ -614,6 +614,6 @@
-
BIND 9.15.8 (Development Release)
+
BIND 9.17.0 (Development Release)