mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-22 01:59:26 +00:00
Code Issues Releases Wiki Activity
Page: BIND 9.15 Plan
Pages
"main" branch partial history rewrite in August 2022 A few thoughts on Rust in BIND BIND 9 Achievements BIND 9 F2F Meeting in Warsaw, October 2019 BIND 9 Memory Explained BIND 9 PKCS11 BIND 9 Packaging BIND 9 Style Guide BIND 9.11 ESV Soft Code Freeze BIND 9.15 Plan BIND 9.17 Plan BIND 9.19 Plan BIND 9.19 Planning: CHANGES BIND 9.19 Planning: Configuration Backend BIND 9.19 Planning: DB notes BIND 9.19 Planning: Discuss new features BIND 9.19 Planning: Incident Manager Rotation BIND 9.19 Planning: Netmgr evaluation BIND 9.19 Planning: Refactor RBTDB BIND 9.19 Planning: Refactoring XFR BIND 9.19 Planning: Refactoring zone.c BIND 9.19 Planning: Refactoring BIND 9.19 Planning: Statistics System Overhaul BIND 9.19 Planning: Testing BIND 9.19 Planning: Things to do before BIND 9.18 cutoff BIND 9.21 Plan BIND Development and Release Process 2019 BIND development workflow CGroups v2 limiting resource consumption for testing CPU profiling using perf Config system requirements DNS Shotgun integration into Gitlab CI DNSSEC Key and Signing Policy (KASP) Data structure survey Debian Packages Escalation Engineer Duties Git Of Theseus Gitlab how to Integration tests wish list Internal objects and their relations Known Issues in BIND 9.18 Known Issues in BIND 9.20 Known Issues in BIND 9.21 LLM based tools thoughts Planning Policy for removing named.conf options Preparing Useful Merge Requests QP‑trie in NSD Requirements and Designs Server side Git hooks Serving stale data Stable Release Update Statistics Requirements SystemTap on 4326 remove locking from copy_namehook_lists SystemTap on main Team Meetings Testing by configuration options Updating resolver algorithm, or "who knows best, the parent or the child?" User space Probing in BIND 9 _sidebar benchmarks best practices caches dashboard home october2018meeting pytest howto stdatomic usage in master
Clone
27
BIND 9.15 Plan
Evan Hunt edited this page 2019-03-31 05:48:42 -04:00
Table of Contents
  1. Improve BIND performance
  • Refactoring / replacing the networking code (wpk)
    • First part done for BIND 9.13/9.14
    • Second part for BIND 9.15/9.16 - separate engine (libuv)
  1. Improve BIND management (each)

  • BIND statistics system overhaul (https://gitlab.isc.org/isc-projects/bind9/issues/38)

  • Clarify, improve operational utility of statistics and accuracy for (resource consumption, performance, exception alerting)

  • Catalog zones update per the Draft (Michal)

  1. Security & privacy initiatives

  • DNS over TLS (wpk, after network refactoring)

    • Server - named as resolver, but auth implicitly
    • Client(?) - dig, delv, named as forwarder
    • *XFR

  • DNS over HTTP(2) (ISC hackathon)

    • Client - dig, delv, named as forwarder
    • Server - named as resolver, but auth implicitly
  1. Operational enhancements

  • DNSSEC Made Easy (Matthijs)

    • finish/improve DNSSEC key manager, integrate with other DNSSEC tools
    • parent-child updating phase 2 (Tony Finch)

  • Solution for CNAME at the apex problem (Matthijs)

    • ANAME draft implemented in a BIND module
    • Tony Finch's thing
    • SRV-like for HTTP

  • RNDC support command (Joey)

  • EDNS Tag draft (draft-bellis-dnsop-edns-tags)

  • DNS extended errors draft (each)

Nice to have

  • Zone templates

  • EDNS chain

  • Faster, more efficient zone content propogation zone updates

  • Refactoring / replacing the task+taskmanager code+timers

    • libevent/libuv in BIND 9.15/9.16

  • Whole answer cache as module if it significantly improves performance (Witold's and Evan's pet project)

  • Zone file digest (integrity of updates)

  • GUI/API for managing configuration of multiple servers in one place.

    • Joint project with Kea
    • package RNDC python library

  • Provisioning of zones and configuration -- Catalog zones++ -- like PowerDNS master server, something that will master the views and acls as well as the zones

  • Lockless data structures (queues, lists)

  • NSEC5 - Experimental; Depends on crypto availability in OpenSSL

    • As a hobby project for Ondrej

  • Telemetry (Call Home)

    • Telemetry on options used
    • Version check

  • DNS Stateful Operations (Matthijs)