sqlite3. It has single configuration option inside
Kea.
Kea.
This is the messages manual for BIND 10 version - 20120712.
Copyright © 2011-2012 Internet Systems Consortium, Inc.
Abstract
BIND 10 is a Domain Name System (DNS) suite managed by - Internet Systems Consortium (ISC). It includes DNS libraries - and modular components for controlling authoritative and - recursive DNS servers. -
- This is the messages manual for BIND 10 version 20120712. - The most up-to-date version of this document, along with - other documents for BIND 10, can be found at - http://bind10.isc.org/docs. -
Table of Contents
- This document lists each message that can be logged by the - programs in the BIND 10 package. Each entry in this manual - is of the form: -
IDENTIFICATION message-text
- ... where "IDENTIFICATION" is the message identification included - in each message logged and "message-text" is the accompanying - message text. The "message-text" may include placeholders of the - form "%1", "%2" etc.; these parameters are replaced by relevant - values when the message is logged. -
- Each entry is also accompanied by a description giving more - information about the circumstances that result in the message - being logged. -
- For information on configuring and using BIND 10 logging, - refer to the BIND 10 Guide. -
-
- ASIODNS_FD_ADD_TCP adding a new TCP server by opened fd %1
-A debug message informing about installing a file descriptor as a server. -The file descriptor number is noted. -
- ASIODNS_FD_ADD_UDP adding a new UDP server by opened fd %1
-A debug message informing about installing a file descriptor as a server. -The file descriptor number is noted. -
- ASIODNS_FETCH_COMPLETED upstream fetch to %1(%2) has now completed
-A debug message, this records that the upstream fetch (a query made by the -resolver on behalf of its client) to the specified address has completed. -
- ASIODNS_FETCH_STOPPED upstream fetch to %1(%2) has been stopped
-An external component has requested the halting of an upstream fetch. This -is an allowed operation, and the message should only appear if debug is -enabled. -
- ASIODNS_OPEN_SOCKET error %1 opening %2 socket to %3(%4)
-The asynchronous I/O code encountered an error when trying to open a socket -of the specified protocol in order to send a message to the target address. -The number of the system error that caused the problem is given in the -message. -
- ASIODNS_READ_DATA error %1 reading %2 data from %3(%4)
-The asynchronous I/O code encountered an error when trying to read data from -the specified address on the given protocol. The number of the system -error that caused the problem is given in the message. -
- ASIODNS_READ_TIMEOUT receive timeout while waiting for data from %1(%2)
-An upstream fetch from the specified address timed out. This may happen for -any number of reasons and is most probably a problem at the remote server -or a problem on the network. The message will only appear if debug is -enabled. -
- ASIODNS_SEND_DATA error %1 sending data using %2 to %3(%4)
-The asynchronous I/O code encountered an error when trying to send data to -the specified address on the given protocol. The number of the system -error that caused the problem is given in the message. -
- ASIODNS_UNKNOWN_ORIGIN unknown origin for ASIO error code %1 (protocol: %2, address %3)
-An internal consistency check on the origin of a message from the -asynchronous I/O module failed. This may indicate an internal error; -please submit a bug report. -
- ASIODNS_UNKNOWN_RESULT unknown result (%1) when IOFetch::stop() was executed for I/O to %2(%3)
-An internal error indicating that the termination method of the resolver's -upstream fetch class was called with an unknown result code (which is -given in the message). Please submit a bug report. -
- AUTH_AXFR_ERROR error handling AXFR request: %1
-This is a debug message produced by the authoritative server when it -has encountered an error processing an AXFR request. The message gives -the reason for the error, and the server will return a SERVFAIL code to -the sender. -
- AUTH_AXFR_UDP AXFR query received over UDP
-This is a debug message output when the authoritative server has received -an AXFR query over UDP. Use of UDP for AXFRs is not permitted by the -protocol, so the server will return a FORMERR error to the sender. -
- AUTH_COMMAND_FAILED execution of command channel instruction '%1' failed: %2
-Execution of the specified command by the authoritative server failed. The -message contains the reason for the failure. -
- AUTH_CONFIG_CHANNEL_CREATED configuration session channel created
-This is a debug message indicating that authoritative server has created -the channel to the configuration manager. It is issued during server -startup is an indication that the initialization is proceeding normally. -
- AUTH_CONFIG_CHANNEL_ESTABLISHED configuration session channel established
-This is a debug message indicating that authoritative server -has established communication the configuration manager over the -previously-created channel. It is issued during server startup is an -indication that the initialization is proceeding normally. -
- AUTH_CONFIG_CHANNEL_STARTED configuration session channel started
-This is a debug message, issued when the authoritative server has -posted a request to be notified when new configuration information is -available. It is issued during server startup is an indication that -the initialization is proceeding normally. -
- AUTH_CONFIG_LOAD_FAIL load of configuration failed: %1
-An attempt to configure the server with information from the configuration -database during the startup sequence has failed. (The reason for -the failure is given in the message.) The server will continue its -initialization although it may not be configured in the desired way. -
- AUTH_CONFIG_UPDATE_FAIL update of configuration failed: %1
-At attempt to update the configuration the server with information -from the configuration database has failed, the reason being given in -the message. -
- AUTH_DATA_SOURCE data source database file: %1
-This is a debug message produced by the authoritative server when it accesses a -datebase data source, listing the file that is being accessed. -
- AUTH_DNS_SERVICES_CREATED DNS services created
-This is a debug message indicating that the component that will handling -incoming queries for the authoritative server (DNSServices) has been -successfully created. It is issued during server startup is an indication -that the initialization is proceeding normally. -
- AUTH_HEADER_PARSE_FAIL unable to parse header in received DNS packet: %1
-This is a debug message, generated by the authoritative server when an -attempt to parse the header of a received DNS packet has failed. (The -reason for the failure is given in the message.) The server will drop the -packet. -
- AUTH_INVALID_STATISTICS_DATA invalid specification of statistics data specified
-An error was encountered when the authoritiative server specified -statistics data which is invalid for the auth specification file. -
- AUTH_LOAD_TSIG loading TSIG keys
-This is a debug message indicating that the authoritative server -has requested the keyring holding TSIG keys from the configuration -database. It is issued during server startup is an indication that the -initialization is proceeding normally. -
- AUTH_LOAD_ZONE loaded zone %1/%2
-This debug message is issued during the processing of the 'loadzone' command -when the authoritative server has successfully loaded the named zone of the -named class. -
- AUTH_MEM_DATASRC_DISABLED memory data source is disabled for class %1
-This is a debug message reporting that the authoritative server has -discovered that the memory data source is disabled for the given class. -
- AUTH_MEM_DATASRC_ENABLED memory data source is enabled for class %1
-This is a debug message reporting that the authoritative server has -discovered that the memory data source is enabled for the given class. -
- AUTH_MESSAGE_FORWARD_ERROR failed to forward %1 request from %2: %3
-The authoritative server tried to forward some type DNS request -message to a separate process (e.g., forwarding dynamic update -requests to b10-ddns) to handle it, but it failed. The authoritative -server returns SERVFAIL to the client on behalf of the separate -process. The error could be configuration mismatch between b10-auth -and the recipient component, or it may be because the requests are -coming too fast and the receipient process cannot keep up with the -rate, or some system level failure. In either case this means the -BIND 10 system is not working as expected, so the administrator should -look into the cause and address the issue. The log message includes -the client's address (and port), and the error message sent from the -lower layer that detects the failure. -
- AUTH_NOTIFY_QUESTIONS invalid number of questions (%1) in incoming NOTIFY
-This debug message is logged by the authoritative server when it receives -a NOTIFY packet that contains zero or more than one question. (A valid -NOTIFY packet contains one question.) The server will return a FORMERR -error to the sender. -
- AUTH_NOTIFY_RRTYPE invalid question RR type (%1) in incoming NOTIFY
-This debug message is logged by the authoritative server when it receives -a NOTIFY packet that an RR type of something other than SOA in the -question section. (The RR type received is included in the message.) The -server will return a FORMERR error to the sender. -
- AUTH_NO_STATS_SESSION session interface for statistics is not available
-The authoritative server had no session with the statistics module at the -time it attempted to send it data: the attempt has been abandoned. This -could be an error in configuration. -
- AUTH_NO_XFRIN received NOTIFY but XFRIN session is not running
-This is a debug message produced by the authoritative server when it receives -a NOTIFY packet but the XFRIN process is not running. The packet will be -dropped and nothing returned to the sender. -
- AUTH_PACKET_PARSE_ERROR unable to parse received DNS packet: %1
-This is a debug message, generated by the authoritative server when an -attempt to parse a received DNS packet has failed due to something other -than a protocol error. The reason for the failure is given in the message; -the server will return a SERVFAIL error code to the sender. -
- AUTH_PACKET_PROTOCOL_ERROR DNS packet protocol error: %1. Returning %2
-This is a debug message, generated by the authoritative server when an -attempt to parse a received DNS packet has failed due to a protocol error. -The reason for the failure is given in the message, as is the error code -that will be returned to the sender. -
- AUTH_PACKET_RECEIVED message received:\n%1
-This is a debug message output by the authoritative server when it -receives a valid DNS packet. -
-Note: This message includes the packet received, rendered in the form of -multiple lines of text. For this reason, it is suggested that this log message -not be routed to the syslog file, where the multiple lines could confuse -programs that expect a format of one message per line. -
- AUTH_PROCESS_FAIL message processing failure: %1
-This message is generated by the authoritative server when it has -encountered an internal error whilst processing a received packet: -the cause of the error is included in the message. -
-The server will return a SERVFAIL error code to the sender of the packet. -This message indicates a potential error in the server. Please open a -bug ticket for this issue. -
- AUTH_RECEIVED_COMMAND command '%1' received
-This is a debug message issued when the authoritative server has received -a command on the command channel. -
- AUTH_RECEIVED_NOTIFY received incoming NOTIFY for zone name %1, zone class %2
-This is a debug message reporting that an incoming NOTIFY was received. -
- AUTH_RECEIVED_SENDSTATS command 'sendstats' received
-This is a debug message issued when the authoritative server has received -a command from the statistics module to send it data. The 'sendstats' -command is handled differently to other commands, which is why the debug -message associated with it has its own code. -
- AUTH_RESPONSE_FAILURE exception while building response to query: %1
-This is a debug message, generated by the authoritative server when an -attempt to create a response to a received DNS packet has failed. The -reason for the failure is given in the log message. A SERVFAIL response -is sent back. The most likely cause of this is an error in the data -source implementation; it is either creating bad responses or raising -exceptions itself. -
- AUTH_RESPONSE_FAILURE_UNKNOWN unknown exception while building response to query
-This debug message is similar to AUTH_RESPONSE_FAILURE, but further -details about the error are unknown, because it was signaled by something -which is not an exception. This is definitely a bug. -
- AUTH_RESPONSE_RECEIVED received response message, ignoring
-This is a debug message, this is output if the authoritative server -receives a DNS packet with the QR bit set, i.e. a DNS response. The -server ignores the packet as it only responds to question packets. -
- AUTH_SEND_ERROR_RESPONSE sending an error response (%1 bytes):\n%2
-This is a debug message recording that the authoritative server is sending -an error response to the originator of the query. A previous message will -have recorded details of the failure. -
-Note: This message includes the packet sent, rendered in the form of -multiple lines of text. For this reason, it is suggested that this log message -not be routed to the syslog file, where the multiple lines could confuse -programs that expect a format of one message per line. -
- AUTH_SEND_NORMAL_RESPONSE sending an error response (%1 bytes):\n%2
-This is a debug message recording that the authoritative server is sending -a response to the originator of a query. -
-Note: This message includes the packet sent, rendered in the form of -multiple lines of text. For this reason, it is suggested that this log message -not be routed to the syslog file, where the multiple lines could confuse -programs that expect a format of one message per line. -
- AUTH_SERVER_CREATED server created
-An informational message indicating that the authoritative server process has -been created and is initializing. The AUTH_SERVER_STARTED message will be -output when initialization has successfully completed and the server starts -accepting queries. -
- AUTH_SERVER_FAILED server failed: %1
-The authoritative server has encountered a fatal error and is terminating. The -reason for the failure is included in the message. -
- AUTH_SERVER_STARTED server started
-Initialization of the authoritative server has completed successfully -and it is entering the main loop, waiting for queries to arrive. -
- AUTH_SHUTDOWN asked to stop, doing so
-This is a debug message indicating the server was asked to shut down and it is -complying to the request. -
- AUTH_SQLITE3 nothing to do for loading sqlite3
-This is a debug message indicating that the authoritative server has -found that the data source it is loading is an SQLite3 data source, -so no further validation is needed. -
- AUTH_START_DDNS_FORWARDER DDNS UPDATE handling started
-This is a debug message indicating that b10-auth has received a message -that it should internally forward UPDATE message to b10-ddns. When b10-ddns -is not running, b10-auth will respond to UPDATE requests with rcode NOTIMP. -When b10-ddns is running, b10-ddns will handle and respond to the UPDATE -message. -
- AUTH_STATS_CHANNEL_CREATED STATS session channel created
-This is a debug message indicating that the authoritative server has -created a channel to the statistics process. It is issued during server -startup is an indication that the initialization is proceeding normally. -
- AUTH_STATS_CHANNEL_ESTABLISHED STATS session channel established
-This is a debug message indicating that the authoritative server -has established communication over the previously created statistics -channel. It is issued during server startup is an indication that the -initialization is proceeding normally. -
- AUTH_STATS_COMMS communication error in sending statistics data: %1
-An error was encountered when the authoritative server tried to send data -to the statistics daemon. The message includes additional information -describing the reason for the failure. -
- AUTH_STATS_TIMEOUT timeout while sending statistics data: %1
-The authoritative server sent data to the statistics daemon but received -no acknowledgement within the specified time. The message includes -additional information describing the reason for the failure. -
- AUTH_STATS_TIMER_DISABLED statistics timer has been disabled
-This is a debug message indicating that the statistics timer has been -disabled in the authoritative server and no statistics information is -being produced. -
- AUTH_STATS_TIMER_SET statistics timer set to %1 second(s)
-This is a debug message indicating that the statistics timer has been -enabled and that the authoritative server will produce statistics data -at the specified interval. -
- AUTH_STOP_DDNS_FORWARDER DDNS UPDATE handling stopped
-This is a debug message indicating that b10-auth has received a message -that it should stop internally forwarding UPDATE message to b10-ddns. -b10-auth will no longer forward UPDATE messages to b10-ddns, but will -respond itself with error code NOTIMP. -This message is also logged when the forwarding is restarted (for instance -if b10-ddns is restarted and the internal connection needs to be created -again), in which case it should be followed by AUTH_START_DDNS_FORWARDER. -
- AUTH_UNSUPPORTED_OPCODE unsupported opcode: %1
-This is a debug message, produced when a received DNS packet being -processed by the authoritative server has been found to contain an -unsupported opcode. (The opcode is included in the message.) The server -will return an error code of NOTIMPL to the sender. -
- AUTH_XFRIN_CHANNEL_CREATED XFRIN session channel created
-This is a debug message indicating that the authoritative server has -created a channel to the XFRIN (Transfer-in) process. It is issued -during server startup is an indication that the initialization is -proceeding normally. -
- AUTH_XFRIN_CHANNEL_ESTABLISHED XFRIN session channel established
-This is a debug message indicating that the authoritative server has -established communication over the previously-created channel to the -XFRIN (Transfer-in) process. It is issued during server startup is an -indication that the initialization is proceeding normally. -
- AUTH_ZONEMGR_COMMS error communicating with zone manager: %1
-This is a debug message output during the processing of a NOTIFY request. -An error (listed in the message) has been encountered whilst communicating -with the zone manager. The NOTIFY request will not be honored. -
- AUTH_ZONEMGR_ERROR received error response from zone manager: %1
-This is a debug message output during the processing of a NOTIFY -request. The zone manager component has been informed of the request, -but has returned an error response (which is included in the message). The -NOTIFY request will not be honored. -
- BIND10_CHECK_MSGQ_ALREADY_RUNNING checking if msgq is already running
-The boss process is starting up and will now check if the message bus -daemon is already running. If so, it will not be able to start, as it -needs a dedicated message bus. -
- BIND10_COMPONENT_FAILED component %1 (pid %2) failed: %3
-The process terminated, but the bind10 boss didn't expect it to, which means -it must have failed. -
- BIND10_COMPONENT_RESTART component %1 is about to restart
-The named component failed previously and we will try to restart it to provide -as flawless service as possible, but it should be investigated what happened, -as it could happen again. -
- BIND10_COMPONENT_START component %1 is starting
-The named component is about to be started by the boss process. -
- BIND10_COMPONENT_START_EXCEPTION component %1 failed to start: %2
-An exception (mentioned in the message) happened during the startup of the -named component. The componet is not considered started and further actions -will be taken about it. -
- BIND10_COMPONENT_STOP component %1 is being stopped
-A component is about to be asked to stop willingly by the boss. -
- BIND10_COMPONENT_UNSATISFIED component %1 is required to run and failed
-A component failed for some reason (see previous messages). It is either a core -component or needed component that was just started. In any case, the system -can't continue without it and will terminate. -
- BIND10_CONFIGURATOR_BUILD building plan '%1' -> '%2'
-A debug message. This indicates that the configurator is building a plan -how to change configuration from the older one to newer one. This does no -real work yet, it just does the planning what needs to be done. -
- BIND10_CONFIGURATOR_PLAN_INTERRUPTED configurator plan interrupted, only %1 of %2 done
-There was an exception during some planned task. The plan will not continue and -only some tasks of the plan were completed. The rest is aborted. The exception -will be propagated. -
- BIND10_CONFIGURATOR_RECONFIGURE reconfiguring running components
-A different configuration of which components should be running is being -installed. All components that are no longer needed will be stopped and -newly introduced ones started. This happens at startup, when the configuration -is read the first time, or when an operator changes configuration of the boss. -
- BIND10_CONFIGURATOR_RUN running plan of %1 tasks
-A debug message. The configurator is about to execute a plan of actions it -computed previously. -
- BIND10_CONFIGURATOR_START bind10 component configurator is starting up
-The part that cares about starting and stopping the right component from the -boss process is starting up. This happens only once at the startup of the -boss process. It will start the basic set of processes now (the ones boss -needs to read the configuration), the rest will be started after the -configuration is known. -
- BIND10_CONFIGURATOR_STOP bind10 component configurator is shutting down
-The part that cares about starting and stopping processes in the boss is -shutting down. All started components will be shut down now (more precisely, -asked to terminate by their own, if they fail to comply, other parts of -the boss process will try to force them). -
- BIND10_CONFIGURATOR_TASK performing task %1 on %2
-A debug message. The configurator is about to perform one task of the plan it -is currently executing on the named component. -
- BIND10_INVALID_STATISTICS_DATA invalid specification of statistics data specified
-An error was encountered when the boss module specified -statistics data which is invalid for the boss specification file. -
- BIND10_INVALID_USER invalid user: %1
-The boss process was started with the -u option, to drop root privileges -and continue running as the specified user, but the user is unknown. -
- BIND10_KILLING_ALL_PROCESSES killing all started processes
-The boss module was not able to start every process it needed to start -during startup, and will now kill the processes that did get started. -
- BIND10_KILL_PROCESS killing process %1
-The boss module is sending a kill signal to process with the given name, -as part of the process of killing all started processes during a failed -startup, as described for BIND10_KILLING_ALL_PROCESSES -
- BIND10_LOST_SOCKET_CONSUMER consumer %1 of sockets disconnected, considering all its sockets closed
-A connection from one of the applications which requested a socket was -closed. This means the application has terminated, so all the sockets it was -using are now closed and bind10 process can release them as well, unless the -same sockets are used by yet another application. -
- BIND10_MSGQ_ALREADY_RUNNING msgq daemon already running, cannot start
-There already appears to be a message bus daemon running. Either an -old process was not shut down correctly, and needs to be killed, or -another instance of BIND10, with the same msgq domain socket, is -running, which needs to be stopped. -
- BIND10_MSGQ_DISAPPEARED msgq channel disappeared
-While listening on the message bus channel for messages, it suddenly -disappeared. The msgq daemon may have died. This might lead to an -inconsistent state of the system, and BIND 10 will now shut down. -
- BIND10_NO_SOCKET couldn't send a socket for token %1 because of error: %2
-An error occurred when the bind10 process was asked to send a socket file -descriptor. The error is mentioned, most common reason is that the request -is invalid and may not come from bind10 process at all. -
- BIND10_PROCESS_ENDED process %2 of %1 ended with status %3
-This indicates a process started previously terminated. The process id -and component owning the process are indicated, as well as the exit code. -This doesn't distinguish if the process was supposed to terminate or not. -
- BIND10_READING_BOSS_CONFIGURATION reading boss configuration
-The boss process is starting up, and will now process the initial -configuration, as received from the configuration manager. -
- BIND10_RECEIVED_COMMAND received command: %1
-The boss module received a command and shall now process it. The command -is printed. -
- BIND10_RECEIVED_NEW_CONFIGURATION received new configuration: %1
-The boss module received a configuration update and is going to apply -it now. The new configuration is printed. -
- BIND10_RECEIVED_SIGNAL received signal %1
-The boss module received the given signal. -
- BIND10_RESURRECTED_PROCESS resurrected %1 (PID %2)
-The given process has been restarted successfully, and is now running -with the given process id. -
- BIND10_RESURRECTING_PROCESS resurrecting dead %1 process...
-The given process has ended unexpectedly, and is now restarted. -
- BIND10_SELECT_ERROR error in select() call: %1
-There was a fatal error in the call to select(), used to see if a child -process has ended or if there is a message on the message bus. This -should not happen under normal circumstances and is considered fatal, -so BIND 10 will now shut down. The specific error is printed. -
- BIND10_SEND_SIGKILL sending SIGKILL to %1 (PID %2)
-The boss module is sending a SIGKILL signal to the given process. -
- BIND10_SEND_SIGTERM sending SIGTERM to %1 (PID %2)
-The boss module is sending a SIGTERM signal to the given process. -
- BIND10_SETGID setting GID to %1
-The boss switches the process group ID to the given value. This happens -when BIND 10 starts with the -u option, and the group ID will be set to -that of the specified user. -
- BIND10_SETUID setting UID to %1
-The boss switches the user it runs as to the given UID. -
- BIND10_SHUTDOWN stopping the server
-The boss process received a command or signal telling it to shut down. -It will send a shutdown command to each process. The processes that do -not shut down will then receive a SIGTERM signal. If that doesn't work, -it shall send SIGKILL signals to the processes still alive. -
- BIND10_SHUTDOWN_COMPLETE all processes ended, shutdown complete
-All child processes have been stopped, and the boss process will now -stop itself. -
- BIND10_SOCKCREATOR_BAD_CAUSE unknown error cause from socket creator: %1
-The socket creator reported an error when creating a socket. But the function -which failed is unknown (not one of 'S' for socket or 'B' for bind). -
- BIND10_SOCKCREATOR_BAD_RESPONSE unknown response for socket request: %1
-The boss requested a socket from the creator, but the answer is unknown. This -looks like a programmer error. -
- BIND10_SOCKCREATOR_EOF eof while expecting data from socket creator
-There should be more data from the socket creator, but it closed the socket. -It probably crashed. -
- BIND10_SOCKCREATOR_INIT initializing socket creator parser
-The boss module initializes routines for parsing the socket creator -protocol. -
- BIND10_SOCKCREATOR_KILL killing the socket creator
-The socket creator is being terminated the aggressive way, by sending it -sigkill. This should not happen usually. -
- BIND10_SOCKCREATOR_TERMINATE terminating socket creator
-The boss module sends a request to terminate to the socket creator. -
- BIND10_SOCKCREATOR_TRANSPORT_ERROR transport error when talking to the socket creator: %1
-Either sending or receiving data from the socket creator failed with the given -error. The creator probably crashed or some serious OS-level problem happened, -as the communication happens only on local host. -
- BIND10_SOCKET_CREATED successfully created socket %1
-The socket creator successfully created and sent a requested socket, it has -the given file number. -
- BIND10_SOCKET_ERROR error on %1 call in the creator: %2/%3
-The socket creator failed to create the requested socket. It failed on the -indicated OS API function with given error. -
- BIND10_SOCKET_GET requesting socket [%1]:%2 of type %3 from the creator
-The boss forwards a request for a socket to the socket creator. -
- BIND10_STARTED_CC started configuration/command session
-Debug message given when BIND 10 has successfull started the object that -handles configuration and commands. -
- BIND10_STARTED_PROCESS started %1
-The given process has successfully been started. -
- BIND10_STARTED_PROCESS_PID started %1 (PID %2)
-The given process has successfully been started, and has the given PID. -
- BIND10_STARTING starting BIND10: %1
-Informational message on startup that shows the full version. -
- BIND10_STARTING_CC starting configuration/command session
-Informational message given when BIND 10 is starting the session object -that handles configuration and commands. -
- BIND10_STARTING_PROCESS starting process %1
-The boss module is starting the given process. -
- BIND10_STARTING_PROCESS_PORT starting process %1 (to listen on port %2)
-The boss module is starting the given process, which will listen on the -given port number. -
- BIND10_STARTING_PROCESS_PORT_ADDRESS starting process %1 (to listen on %2#%3)
-The boss module is starting the given process, which will listen on the -given address and port number (written as <address>#<port>). -
- BIND10_STARTUP_COMPLETE BIND 10 started
-All modules have been successfully started, and BIND 10 is now running. -
- BIND10_STARTUP_ERROR error during startup: %1
-There was a fatal error when BIND10 was trying to start. The error is -shown, and BIND10 will now shut down. -
- BIND10_STARTUP_UNEXPECTED_MESSAGE unrecognised startup message %1
-During the startup process, a number of messages are exchanged between the -Boss process and the processes it starts. This error is output when a -message received by the Boss process is recognised as being of the -correct format but is unexpected. It may be that processes are starting -of sequence. -
- BIND10_STARTUP_UNRECOGNISED_MESSAGE unrecognised startup message %1
-During the startup process, a number of messages are exchanged between the -Boss process and the processes it starts. This error is output when a -message received by the Boss process is not recognised. -
- BIND10_START_AS_NON_ROOT_AUTH starting b10-auth as a user, not root. This might fail.
-The authoritative server is being started or restarted without root privileges. -If the module needs these privileges, it may have problems starting. -Note that this issue should be resolved by the pending 'socket-creator' -process; once that has been implemented, modules should not need root -privileges anymore. See tickets #800 and #801 for more information. -
- BIND10_START_AS_NON_ROOT_RESOLVER starting b10-resolver as a user, not root. This might fail.
-The resolver is being started or restarted without root privileges. -If the module needs these privileges, it may have problems starting. -Note that this issue should be resolved by the pending 'socket-creator' -process; once that has been implemented, modules should not need root -privileges anymore. See tickets #800 and #801 for more information. -
- BIND10_STOP_PROCESS asking %1 to shut down
-The boss module is sending a shutdown command to the given module over -the message channel. -
- BIND10_UNKNOWN_CHILD_PROCESS_ENDED unknown child pid %1 exited
-An unknown child process has exited. The PID is printed, but no further -action will be taken by the boss process. -
- BIND10_WAIT_CFGMGR waiting for configuration manager process to initialize
-The configuration manager process is so critical to operation of BIND 10 -that after starting it, the Boss module will wait for it to initialize -itself before continuing. This debug message is produced during the -wait and may be output zero or more times depending on how long it takes -the configuration manager to start up. The total length of time Boss -will wait for the configuration manager before reporting an error is -set with the command line --wait switch, which has a default value of -ten seconds. -
- CACHE_ENTRY_MISSING_RRSET missing RRset to generate message for %1
-The cache tried to generate the complete answer message. It knows the structure -of the message, but some of the RRsets to be put there are not in cache (they -probably expired already). Therefore it pretends the message was not found. -
- CACHE_LOCALZONE_FOUND found entry with key %1 in local zone data
-Debug message, noting that the requested data was successfully found in the -local zone data of the cache. -
- CACHE_LOCALZONE_UNKNOWN entry with key %1 not found in local zone data
-Debug message. The requested data was not found in the local zone data. -
- CACHE_LOCALZONE_UPDATE updating local zone element at key %1
-Debug message issued when there's update to the local zone section of cache. -
- CACHE_MESSAGES_DEINIT deinitialized message cache
-Debug message. It is issued when the server deinitializes the message cache. -
- CACHE_MESSAGES_EXPIRED found an expired message entry for %1 in the message cache
-Debug message. The requested data was found in the message cache, but it -already expired. Therefore the cache removes the entry and pretends it found -nothing. -
- CACHE_MESSAGES_FOUND found a message entry for %1 in the message cache
-Debug message. We found the whole message in the cache, so it can be returned -to user without any other lookups. -
- CACHE_MESSAGES_INIT initialized message cache for %1 messages of class %2
-Debug message issued when a new message cache is issued. It lists the class -of messages it can hold and the maximum size of the cache. -
- CACHE_MESSAGES_REMOVE removing old instance of %1/%2/%3 first
-Debug message. This may follow CACHE_MESSAGES_UPDATE and indicates that, while -updating, the old instance is being removed prior of inserting a new one. -
- CACHE_MESSAGES_UNCACHEABLE not inserting uncacheable message %1/%2/%3
-Debug message, noting that the given message can not be cached. This is because -there's no SOA record in the message. See RFC 2308 section 5 for more -information. -
- CACHE_MESSAGES_UNKNOWN no entry for %1 found in the message cache
-Debug message. The message cache didn't find any entry for the given key. -
- CACHE_MESSAGES_UPDATE updating message entry %1/%2/%3
-Debug message issued when the message cache is being updated with a new -message. Either the old instance is removed or, if none is found, new one -is created. -
- CACHE_RESOLVER_DEEPEST looking up deepest NS for %1/%2
-Debug message. The resolver cache is looking up the deepest known nameserver, -so the resolution doesn't have to start from the root. -
- CACHE_RESOLVER_INIT initializing resolver cache for class %1
-Debug message. The resolver cache is being created for this given class. -
- CACHE_RESOLVER_INIT_INFO initializing resolver cache for class %1
-Debug message, the resolver cache is being created for this given class. The -difference from CACHE_RESOLVER_INIT is only in different format of passed -information, otherwise it does the same. -
- CACHE_RESOLVER_LOCAL_MSG message for %1/%2 found in local zone data
-Debug message. The resolver cache found a complete message for the user query -in the zone data. -
- CACHE_RESOLVER_LOCAL_RRSET RRset for %1/%2 found in local zone data
-Debug message. The resolver cache found a requested RRset in the local zone -data. -
- CACHE_RESOLVER_LOOKUP_MSG looking up message in resolver cache for %1/%2
-Debug message. The resolver cache is trying to find a message to answer the -user query. -
- CACHE_RESOLVER_LOOKUP_RRSET looking up RRset in resolver cache for %1/%2
-Debug message. The resolver cache is trying to find an RRset (which usually -originates as internally from resolver). -
- CACHE_RESOLVER_NO_QUESTION answer message for %1/%2 has empty question section
-The cache tried to fill in found data into the response message. But it -discovered the message contains no question section, which is invalid. -This is likely a programmer error, please submit a bug report. -
- CACHE_RESOLVER_UNKNOWN_CLASS_MSG no cache for class %1
-Debug message. While trying to lookup a message in the resolver cache, it was -discovered there's no cache for this class at all. Therefore no message is -found. -
- CACHE_RESOLVER_UNKNOWN_CLASS_RRSET no cache for class %1
-Debug message. While trying to lookup an RRset in the resolver cache, it was -discovered there's no cache for this class at all. Therefore no data is found. -
- CACHE_RESOLVER_UPDATE_MSG updating message for %1/%2/%3
-Debug message. The resolver is updating a message in the cache. -
- CACHE_RESOLVER_UPDATE_RRSET updating RRset for %1/%2/%3
-Debug message. The resolver is updating an RRset in the cache. -
- CACHE_RESOLVER_UPDATE_UNKNOWN_CLASS_MSG no cache for class %1
-Debug message. While trying to insert a message into the cache, it was -discovered that there's no cache for the class of message. Therefore -the message will not be cached. -
- CACHE_RESOLVER_UPDATE_UNKNOWN_CLASS_RRSET no cache for class %1
-Debug message. While trying to insert an RRset into the cache, it was -discovered that there's no cache for the class of the RRset. Therefore -the message will not be cached. -
- CACHE_RRSET_EXPIRED found expired RRset %1/%2/%3
-Debug message. The requested data was found in the RRset cache. However, it is -expired, so the cache removed it and is going to pretend nothing was found. -
- CACHE_RRSET_INIT initializing RRset cache for %1 RRsets of class %2
-Debug message. The RRset cache to hold at most this many RRsets for the given -class is being created. -
- CACHE_RRSET_LOOKUP looking up %1/%2/%3 in RRset cache
-Debug message. The resolver is trying to look up data in the RRset cache. -
- CACHE_RRSET_NOT_FOUND no RRset found for %1/%2/%3 in cache
-Debug message which can follow CACHE_RRSET_LOOKUP. This means the data is not -in the cache. -
- CACHE_RRSET_REMOVE_OLD removing old RRset for %1/%2/%3 to make space for new one
-Debug message which can follow CACHE_RRSET_UPDATE. During the update, the cache -removed an old instance of the RRset to replace it with the new one. -
- CACHE_RRSET_UNTRUSTED not replacing old RRset for %1/%2/%3, it has higher trust level
-Debug message which can follow CACHE_RRSET_UPDATE. The cache already holds the -same RRset, but from more trusted source, so the old one is kept and new one -ignored. -
- CACHE_RRSET_UPDATE updating RRset %1/%2/%3 in the cache
-Debug message. The RRset is updating its data with this given RRset. -
- CC_ASYNC_READ_FAILED asynchronous read failed (error code = %1)
-This marks a low level error, we tried to read data from the message queue -daemon asynchronously, but the ASIO library returned an error. -
- CC_CONN_ERROR error connecting to message queue (%1)
-It is impossible to reach the message queue daemon for the reason given. It -is unlikely there'll be reason for whatever program this currently is to -continue running, as the communication with the rest of BIND 10 is vital -for the components. -
- CC_DISCONNECT disconnecting from message queue daemon
-The library is disconnecting from the message queue daemon. This debug message -indicates that the program is trying to shut down gracefully. -
- CC_ESTABLISH trying to establish connection with message queue daemon at %1
-This debug message indicates that the command channel library is about to -connect to the message queue daemon, which should be listening on the UNIX-domain -socket listed in the output. -
- CC_ESTABLISHED successfully connected to message queue daemon
-This debug message indicates that the connection was successfully made, this -should follow CC_ESTABLISH. -
- CC_GROUP_RECEIVE trying to receive a message
-Debug message, noting that a message is expected to come over the command -channel. -
- CC_GROUP_RECEIVED message arrived ('%1', '%2')
-Debug message, noting that we successfully received a message (its envelope and -payload listed). This follows CC_GROUP_RECEIVE, but might happen some time -later, depending if we waited for it or just polled. -
- CC_GROUP_SEND sending message '%1' to group '%2'
-Debug message, we're about to send a message over the command channel. -
- CC_INVALID_LENGTHS invalid length parameters (%1, %2)
-This happens when garbage comes over the command channel or some kind of -confusion happens in the program. The data received from the socket make no -sense if we interpret it as lengths of message. The first one is total length -of the message; the second is the length of the header. The header -and its length (2 bytes) is counted in the total length. -
- CC_LENGTH_NOT_READY length not ready
-There should be data representing the length of message on the socket, but it -is not there. -
- CC_NO_MESSAGE no message ready to be received yet
-The program polled for incoming messages, but there was no message waiting. -This is a debug message which may happen only after CC_GROUP_RECEIVE. -
- CC_NO_MSGQ unable to connect to message queue (%1)
-It isn't possible to connect to the message queue daemon, for reason listed. -It is unlikely any program will be able continue without the communication. -
- CC_READ_ERROR error reading data from command channel (%1)
-A low level error happened when the library tried to read data from the -command channel socket. The reason is listed. -
- CC_READ_EXCEPTION error reading data from command channel (%1)
-We received an exception while trying to read data from the command -channel socket. The reason is listed. -
- CC_REPLY replying to message from '%1' with '%2'
-Debug message, noting we're sending a response to the original message -with the given envelope. -
- CC_SET_TIMEOUT setting timeout to %1ms
-Debug message. A timeout for which the program is willing to wait for a reply -is being set. -
- CC_START_READ starting asynchronous read
-Debug message. From now on, when a message (or command) comes, it'll wake the -program and the library will automatically pass it over to correct place. -
- CC_SUBSCRIBE subscribing to communication group %1
-Debug message. The program wants to receive messages addressed to this group. -
- CC_TIMEOUT timeout reading data from command channel
-The program waited too long for data from the command channel (usually when it -sent a query to different program and it didn't answer for whatever reason). -
- CC_UNSUBSCRIBE unsubscribing from communication group %1
-Debug message. The program no longer wants to receive messages addressed to -this group. -
- CC_WRITE_ERROR error writing data to command channel (%1)
-A low level error happened when the library tried to write data to the command -channel socket. -
- CC_ZERO_LENGTH invalid message length (0)
-The library received a message length being zero, which makes no sense, since -all messages must contain at least the envelope. -
- CFGMGR_AUTOMATIC_CONFIG_DATABASE_UPDATE Updating configuration database from version %1 to %2
-An older version of the configuration database has been found, from which -there was an automatic upgrade path to the current version. These changes -are now applied, and no action from the administrator is necessary. -
- CFGMGR_BACKED_UP_CONFIG_FILE Config file %1 was removed; a backup was made at %2
-BIND 10 has been started with the command to clear the configuration -file. The existing file has been backed up (moved) to the given file -name. A new configuration file will be created in the original location -when necessary. -
- CFGMGR_BAD_UPDATE_RESPONSE_FROM_MODULE Unable to parse response from module %1: %2
-The configuration manager sent a configuration update to a module, but -the module responded with an answer that could not be parsed. The answer -message appears to be invalid JSON data, or not decodable to a string. -This is likely to be a problem in the module in question. The update is -assumed to have failed, and will not be stored. -
- CFGMGR_CC_SESSION_ERROR Error connecting to command channel: %1
-The configuration manager daemon was unable to connect to the messaging -system. The most likely cause is that msgq is not running. -
- CFGMGR_CONFIG_FILE Configuration manager starting with configuration file: %1
-The configuration manager is starting, reading and saving the configuration -settings to the shown file. -
- CFGMGR_DATA_READ_ERROR error reading configuration database from disk: %1
-There was a problem reading the persistent configuration data as stored -on disk. The file may be corrupted, or it is of a version from where -there is no automatic upgrade path. The file needs to be repaired or -removed. The configuration manager daemon will now shut down. -
- CFGMGR_IOERROR_WHILE_WRITING_CONFIGURATION Unable to write configuration file; configuration not stored: %1
-There was an IO error from the system while the configuration manager -was trying to write the configuration database to disk. The specific -error is given. The most likely cause is that the directory where -the file is stored does not exist, or is not writable. The updated -configuration is not stored. -
- CFGMGR_OSERROR_WHILE_WRITING_CONFIGURATION Unable to write configuration file; configuration not stored: %1
-There was an OS error from the system while the configuration manager -was trying to write the configuration database to disk. The specific -error is given. The most likely cause is that the system does not have -write access to the configuration database file. The updated -configuration is not stored. -
- CFGMGR_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the cfgmgr daemon. The -daemon will now shut down. -
- CMDCTL_BAD_CONFIG_DATA error in config data: %1
-There was an error reading the updated configuration data. The specific -error is printed. -
- CMDCTL_BAD_PASSWORD bad password for user: %1
-A login attempt was made to b10-cmdctl, but the password was wrong. -Users can be managed with the tool b10-cmdctl-usermgr. -
- CMDCTL_CC_SESSION_ERROR error reading from cc channel: %1
-There was a problem reading from the command and control channel. The -most likely cause is that the message bus daemon is not running. -
- CMDCTL_CC_SESSION_TIMEOUT timeout on cc channel
-A timeout occurred when waiting for essential data from the cc session. -This usually occurs when b10-cfgmgr is not running or not responding. -Since we are waiting for essential information, this is a fatal error, -and the cmdctl daemon will now shut down. -
- CMDCTL_COMMAND_ERROR error in command %1 to module %2: %3
-An error was encountered sending the given command to the given module. -Either there was a communication problem with the module, or the module -was not able to process the command, and sent back an error. The -specific error is printed in the message. -
- CMDCTL_COMMAND_SENT command '%1' to module '%2' was sent
-This debug message indicates that the given command has been sent to -the given module. -
- CMDCTL_NO_SUCH_USER username not found in user database: %1
-A login attempt was made to b10-cmdctl, but the username was not known. -Users can be added with the tool b10-cmdctl-usermgr. -
- CMDCTL_NO_USER_ENTRIES_READ failed to read user information, all users will be denied
-The b10-cmdctl daemon was unable to find any user data in the user -database file. Either it was unable to read the file (in which case -this message follows a message CMDCTL_USER_DATABASE_READ_ERROR -containing a specific error), or the file was empty. Users can be added -with the tool b10-cmdctl-usermgr. -
- CMDCTL_SEND_COMMAND sending command %1 to module %2
-This debug message indicates that the given command is being sent to -the given module. -
- CMDCTL_SSL_SETUP_FAILURE_USER_DENIED failed to create an SSL connection (user denied): %1
-The user was denied because the SSL connection could not successfully -be set up. The specific error is given in the log message. Possible -causes may be that the ssl request itself was bad, or the local key or -certificate file could not be read. -
- CMDCTL_STARTED cmdctl is listening for connections on %1:%2
-The cmdctl daemon has started and is now listening for connections. -
- CMDCTL_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the cmdctl daemon. The -daemon will now shut down. -
- CMDCTL_UNCAUGHT_EXCEPTION uncaught exception: %1
-The b10-cmdctl daemon encountered an uncaught exception and -will now shut down. This is indicative of a programming error and -should not happen under normal circumstances. The exception message -is printed. -
- CMDCTL_USER_DATABASE_READ_ERROR failed to read user database file %1: %2
-The b10-cmdctl daemon was unable to read the user database file. The -file may be unreadable for the daemon, or it may be corrupted. In the -latter case, it can be recreated with b10-cmdctl-usermgr. The specific -error is printed in the log message. -
- CONFIG_CCSESSION_MSG error in CC session message: %1
-There was a problem with an incoming message on the command and control -channel. The message does not appear to be a valid command, and is -missing a required element or contains an unknown data format. This -most likely means that another BIND10 module is sending a bad message. -The message itself is ignored by this module. -
- CONFIG_CCSESSION_MSG_INTERNAL error handling CC session message: %1
-There was an internal problem handling an incoming message on the command -and control channel. An unexpected exception was thrown, details of -which are appended to the message. The module will continue to run, -but will not send back an answer. -
-The most likely cause of this error is a programming error. Please raise -a bug report. -
- CONFIG_CCSESSION_STOPPING error sending stopping message: %1
-There was a problem when sending a message signaling that the module using -this CCSession is stopping. This message is sent so that the rest of the -system is aware that the module is no longer running. Apart from logging -this message, the error itself is ignored, and the ModuleCCSession is -still stopped. The specific exception message is printed. -
- CONFIG_CCSESSION_STOPPING_UNKNOWN unknown error sending stopping message
-Similar to CONFIG_CCSESSION_STOPPING, but in this case the exception that -is seen is not a standard exception, and further information is unknown. -This is a bug. -
- CONFIG_GET_FAIL error getting configuration from cfgmgr: %1
-The configuration manager returned an error when this module requested -the configuration. The full error message answer from the configuration -manager is appended to the log error. The most likely cause is that -the module is of a different (command specification) version than the -running configuration manager. -
- CONFIG_GET_FAILED error getting configuration from cfgmgr: %1
-The configuration manager returned an error response when the module -requested its configuration. The full error message answer from the -configuration manager is appended to the log error. -
- CONFIG_JSON_PARSE JSON parse error in %1: %2
-There was an error parsing the JSON file. The given file does not appear -to be in valid JSON format. Please verify that the filename is correct -and that the contents are valid JSON. -
- CONFIG_LOG_CONFIG_ERRORS error(s) in logging configuration: %1
-There was a logging configuration update, but the internal validator -for logging configuration found that it contained errors. The errors -are shown, and the update is ignored. -
- CONFIG_LOG_EXPLICIT will use logging configuration for explicitly-named logger %1
-This is a debug message. When processing the "loggers" part of the -configuration file, the configuration library found an entry for the named -logger that matches the logger specification for the program. The logging -configuration for the program will be updated with the information. -
- CONFIG_LOG_IGNORE_EXPLICIT ignoring logging configuration for explicitly-named logger %1
-This is a debug message. When processing the "loggers" part of the -configuration file, the configuration library found an entry for the -named logger. As this does not match the logger specification for the -program, it has been ignored. -
- CONFIG_LOG_IGNORE_WILD ignoring logging configuration for wildcard logger %1
-This is a debug message. When processing the "loggers" part of the -configuration file, the configuration library found the named wildcard -entry (one containing the "*" character) that matched a logger already -matched by an explicitly named entry. The configuration is ignored. -
- CONFIG_LOG_WILD_MATCH will use logging configuration for wildcard logger %1
-This is a debug message. When processing the "loggers" part of -the configuration file, the configuration library found the named -wildcard entry (one containing the "*" character) that matches a logger -specification in the program. The logging configuration for the program -will be updated with the information. -
- CONFIG_MOD_SPEC_FORMAT module specification error in %1: %2
-The given file does not appear to be a valid specification file: details -are included in the message. Please verify that the filename is correct -and that its contents are a valid BIND10 module specification. -
- CONFIG_MOD_SPEC_REJECT module specification rejected by cfgmgr: %1
-The specification file for this module was rejected by the configuration -manager. The full error message answer from the configuration manager is -appended to the log error. The most likely cause is that the module is of -a different (specification file) version than the running configuration -manager. -
- CONFIG_OPEN_FAIL error opening %1: %2
-There was an error opening the given file. The reason for the failure -is included in the message. -
- CONFIG_SESSION_STOPPING_FAILED error sending stopping message: %1
-There was a problem when sending a message signaling that the module using -this CCSession is stopping. This message is sent so that the rest of the -system is aware that the module is no longer running. Apart from logging -this message, the error itself is ignored, and the ModuleCCSession is -still stopped. The specific exception message is printed. -
- DATASRC_BAD_NSEC3_NAME NSEC3 record has a bad owner name '%1'
-The software refuses to load NSEC3 records into a wildcard domain or -the owner name has two or more labels below the zone origin. -It isn't explicitly forbidden, but no sane zone wouldn have such names -for NSEC3. BIND 9 also refuses NSEC3 at wildcard, so this behavior is -compatible with BIND 9. -
- DATASRC_CACHE_CREATE creating the hotspot cache
-This is a debug message issued during startup when the hotspot cache -is created. -
- DATASRC_CACHE_DESTROY destroying the hotspot cache
-Debug information. The hotspot cache is being destroyed. -
- DATASRC_CACHE_DISABLE disabling the hotspot cache
-A debug message issued when the hotspot cache is disabled. -
- DATASRC_CACHE_ENABLE enabling the hotspot cache
-A debug message issued when the hotspot cache is enabled. -
- DATASRC_CACHE_EXPIRED item '%1' in the hotspot cache has expired
-A debug message issued when a hotspot cache lookup located the item but it -had expired. The item was removed and the program proceeded as if the item -had not been found. -
- DATASRC_CACHE_FOUND the item '%1' was found
-Debug information. An item was successfully located in the hotspot cache. -
- DATASRC_CACHE_FULL hotspot cache is full, dropping oldest
-Debug information. After inserting an item into the hotspot cache, the -maximum number of items was exceeded, so the least recently used item will -be dropped. This should be directly followed by CACHE_REMOVE. -
- DATASRC_CACHE_INSERT inserting item '%1' into the hotspot cache
-A debug message indicating that a new item is being inserted into the hotspot -cache. -
- DATASRC_CACHE_NOT_FOUND the item '%1' was not found in the hotspot cache
-A debug message issued when hotspot cache was searched for the specified -item but it was not found. -
- DATASRC_CACHE_OLD_FOUND older instance of hotspot cache item '%1' found, replacing
-Debug information. While inserting an item into the hotspot cache, an older -instance of an item with the same name was found; the old instance will be -removed. This will be directly followed by CACHE_REMOVE. -
- DATASRC_CACHE_REMOVE removing '%1' from the hotspot cache
-Debug information. An item is being removed from the hotspot cache. -
- DATASRC_CACHE_SLOTS setting the hotspot cache size to '%1', dropping '%2' items
-The maximum allowed number of items of the hotspot cache is set to the given -number. If there are too many, some of them will be dropped. The size of 0 -means no limit. -
- DATASRC_DATABASE_COVER_NSEC_UNSUPPORTED %1 doesn't support DNSSEC when asked for NSEC data covering %2
-The datasource tried to provide an NSEC proof that the named domain does not -exist, but the database backend doesn't support DNSSEC. No proof is included -in the answer as a result. -
- DATASRC_DATABASE_FINDNSEC3 Looking for NSEC3 for %1 in %2 mode
-Debug information. A search in an database data source for NSEC3 that -matches or covers the given name is being started. -
- DATASRC_DATABASE_FINDNSEC3_COVER found a covering NSEC3 for %1 at label count %2: %3
-Debug information. An NSEC3 that covers the given name is found and -being returned. The found NSEC3 RRset is also displayed. When the shown label -count is smaller than that of the given name, the matching NSEC3 is for a -superdomain of the given name (see DATASRC_DATABSE_FINDNSEC3_TRYHASH). The -found NSEC3 RRset is also displayed. -
- DATASRC_DATABASE_FINDNSEC3_MATCH found a matching NSEC3 for %1 at label count %2: %3
-Debug information. An NSEC3 that matches (a possibly superdomain of) -the given name is found and being returned. When the shown label -count is smaller than that of the given name, the matching NSEC3 is -for a superdomain of the given name (see DATASRC_DATABSE_FINDNSEC3_TRYHASH). -The found NSEC3 RRset is also displayed. -
- DATASRC_DATABASE_FINDNSEC3_TRYHASH looking for NSEC3 for %1 at label count %2 (hash %3)
-Debug information. In an attempt of finding an NSEC3 for the give name, -(a possibly superdomain of) the name is hashed and searched for in the -NSEC3 name space. When the shown label count is smaller than that of the -shown name, the search tries the superdomain name that share the shown -(higher) label count of the shown name (e.g., for -www.example.com. with shown label count of 3, example.com. is being -tried, as "." is 1 label long). -
- DATASRC_DATABASE_FINDNSEC3_TRYHASH_PREV looking for previous NSEC3 for %1 at label count %2 (hash %3)
-Debug information. An exact match on hash (see -DATASRC_DATABASE_FINDNSEC3_TRYHASH) was unsuccessful. We get the previous hash -to that one instead. -
- DATASRC_DATABASE_FIND_RECORDS looking in datasource %1 for record %2/%3/%4
-Debug information. The database data source is looking up records with the given -name and type in the database. -
- DATASRC_DATABASE_FIND_TTL_MISMATCH TTL values differ in %1 for elements of %2/%3/%4, setting to %5
-The datasource backend provided resource records for the given RRset with -different TTL values. This isn't allowed on the wire and is considered -an error, so we set it to the lowest value we found (but we don't modify the -database). The data in database should be checked and fixed. -
- DATASRC_DATABASE_FOUND_ANY search in datasource %1 resulted in returning all records of %2
-The data returned by the database backend contained data for the given domain -name, so all the RRsets of the domain are returned. -
- DATASRC_DATABASE_FOUND_CNAME search in datasource %1 for %2/%3/%4 found CNAME, resulting in %5
-When searching the domain for a name a CNAME was found at that name. -Even though it was not the RR type being sought, it is returned. (The -caller may want to continue the lookup by replacing the query name with -the canonical name and restarting the query with the original RR type.) -
- DATASRC_DATABASE_FOUND_DELEGATION Found delegation at %2 in %1
-When searching for a domain, the program met a delegation to a different zone -at the given domain name. It will return that one instead. -
- DATASRC_DATABASE_FOUND_DELEGATION_EXACT search in datasource %1 for %2/%3/%4 found delegation at %5
-The program found the domain requested, but it is a delegation point to a -different zone, therefore it is not authoritative for this domain name. -It will return the NS record instead. -
- DATASRC_DATABASE_FOUND_DNAME Found DNAME at %2 in %1
-When searching for a domain, the program met a DNAME redirection to a different -place in the domain space at the given domain name. It will return that one -instead. -
- DATASRC_DATABASE_FOUND_EMPTY_NONTERMINAL empty non-terminal %2 in %1
-The domain name does not have any RRs associated with it, so it doesn't -exist in the database. However, it has a subdomain, so it does exist -in the DNS address space. This type of domain is known an an "empty -non-terminal" and so we return NXRRSET instead of NXDOMAIN. -
- DATASRC_DATABASE_FOUND_NXDOMAIN search in datasource %1 resulted in NXDOMAIN for %2/%3/%4
-The data returned by the database backend did not contain any data for the given -domain name, class and type. -
- DATASRC_DATABASE_FOUND_NXRRSET search in datasource %1 for %2/%3/%4 resulted in NXRRSET
-The data returned by the database backend contained data for the given domain -name and class, but not for the given type. -
- DATASRC_DATABASE_FOUND_NXRRSET_NSEC search in datasource %1 for %2/%3/%4 resulted in RRset %5
-A search in the database for RRs for the specified name, type and class has -located RRs that match the name and class but not the type. DNSSEC information -has been requested and returned. -
- DATASRC_DATABASE_FOUND_RRSET search in datasource %1 resulted in RRset %2
-The data returned by the database backend contained data for the given domain -name, and it either matches the type or has a relevant type. The RRset that is -returned is printed. -
- DATASRC_DATABASE_ITERATE iterating zone %1
-The program is reading the whole zone, eg. not searching for data, but going -through each of the RRsets there. -
- DATASRC_DATABASE_ITERATE_END iterating zone finished
-While iterating through the zone, the program reached end of the data. -
- DATASRC_DATABASE_ITERATE_NEXT next RRset in zone is %1/%2
-While iterating through the zone, the program extracted next RRset from it. -The name and RRtype of the RRset is indicated in the message. -
- DATASRC_DATABASE_ITERATE_TTL_MISMATCH TTL values differ for RRs of %1/%2/%3, setting to %4
-While iterating through the zone, the time to live for RRs of the -given RRset were found to be different. Since an RRset cannot have -multiple TTLs, we set it to the lowest value we found (but we don't -modify the database). This is what the client would do when such RRs -were given in a DNS response according to RFC2181. The data in -database should be checked and fixed. -
- DATASRC_DATABASE_JOURNALREADER_END %1/%2 on %3 from %4 to %5
-This is a debug message indicating that the program (successfully) -reaches the end of sequences of a zone's differences. The zone's name -and class, database name, and the start and end serials are shown in -the message. -
- DATASRC_DATABASE_JOURNALREADER_NEXT %1/%2 in %3/%4 on %5
-This is a debug message indicating that the program retrieves one -difference in difference sequences of a zone and successfully converts -it to an RRset. The zone's name and class, database name, and the -name and RR type of the retrieved diff are shown in the message. -
- DATASRC_DATABASE_JOURNALREADER_START %1/%2 on %3 from %4 to %5
-This is a debug message indicating that the program starts reading -a zone's difference sequences from a database-based data source. The -zone's name and class, database name, and the start and end serials -are shown in the message. -
- DATASRC_DATABASE_JOURNALREADR_BADDATA failed to convert a diff to RRset in %1/%2 on %3 between %4 and %5: %6
-This is an error message indicating that a zone's diff is broken and -the data source library failed to convert it to a valid RRset. The -most likely cause of this is that someone has manually modified the -zone's diff in the database and inserted invalid data as a result. -The zone's name and class, database name, and the start and end -serials, and an additional detail of the error are shown in the -message. The administrator should examine the diff in the database -to find any invalid data and fix it. -
- DATASRC_DATABASE_NO_MATCH not match for %2/%3/%4 in %1
-No match (not even a wildcard) was found in the named data source for the given -name/type/class in the data source. -
- DATASRC_DATABASE_UPDATER_COMMIT updates committed for '%1/%2' on %3
-Debug information. A set of updates to a zone has been successfully -committed to the corresponding database backend. The zone name, -its class and the database name are printed. -
- DATASRC_DATABASE_UPDATER_CREATED zone updater created for '%1/%2' on %3
-Debug information. A zone updater object is created to make updates to -the shown zone on the shown backend database. -
- DATASRC_DATABASE_UPDATER_DESTROYED zone updater destroyed for '%1/%2' on %3
-Debug information. A zone updater object is destroyed, either successfully -or after failure of, making updates to the shown zone on the shown backend -database. -
- DATASRC_DATABASE_UPDATER_ROLLBACK zone updates roll-backed for '%1/%2' on %3
-A zone updater is being destroyed without committing the changes. -This would typically mean the update attempt was aborted due to some -error, but may also be a bug of the application that forgets committing -the changes. The intermediate changes made through the updater won't -be applied to the underlying database. The zone name, its class, and -the underlying database name are shown in the log message. -
- DATASRC_DATABASE_UPDATER_ROLLBACKFAIL failed to roll back zone updates for '%1/%2' on %3: %4
-A zone updater is being destroyed without committing the changes to -the database, and attempts to rollback incomplete updates, but it -unexpectedly fails. The higher level implementation does not expect -it to fail, so this means either a serious operational error in the -underlying data source (such as a system failure of a database) or -software bug in the underlying data source implementation. In either -case if this message is logged the administrator should carefully -examine the underlying data source to see what exactly happens and -whether the data is still valid. The zone name, its class, and the -underlying database name as well as the error message thrown from the -database module are shown in the log message. -
- DATASRC_DATABASE_WILDCARD_ANY search in datasource %1 resulted in wildcard match type ANY on %2
-The database doesn't contain directly matching name. When searching -for a wildcard match, a wildcard record matching the name of the query -containing some RRsets was found. All the RRsets of the node are returned. -
- DATASRC_DATABASE_WILDCARD_CANCEL_NS canceled wildcard match on %3 because %2 contains NS (data source %1)
-The database was queried to provide glue data and it didn't find direct match. -It could create it from given wildcard, but matching wildcards is forbidden -under a zone cut, which was found. Therefore the delegation will be returned -instead. -
- DATASRC_DATABASE_WILDCARD_CANCEL_SUB wildcard %2 can't be used to construct %3 because %4 exists in %1
-The answer could be constructed using the wildcard, but the given subdomain -exists, therefore this name is something like empty non-terminal (actually, -from the protocol point of view, it is empty non-terminal, but the code -discovers it differently). -
- DATASRC_DATABASE_WILDCARD_CNAME search in datasource %1 for %2/%3/%4 found wildcard CNAME at %5, resulting in %6
-The database doesn't contain directly matching name. When searching -for a wildcard match, a CNAME RR was found at a wildcard record -matching the name. This is returned as the result of the search. -
- DATASRC_DATABASE_WILDCARD_EMPTY found subdomains of %2 which is a wildcard match for %3 in %1
-The given wildcard matches the name being sough but it as an empty -nonterminal (e.g. there's nothing at *.example.com but something like -subdomain.*.example.org, do exist: so *.example.org exists in the -namespace but has no RRs assopciated with it). This will produce NXRRSET. -
- DATASRC_DATABASE_WILDCARD_MATCH search in datasource %1 resulted in wildcard match at %2 with RRset %3
-The database doesn't contain directly matching name. When searching -for a wildcard match, a wildcard record matching the name and type of -the query was found. The data at this point is returned. -
- DATASRC_DATABASE_WILDCARD_NS search in datasource %1 for %2/%3/%4 found wildcard delegation at %5, resulting in %6
-The database doesn't contain directly matching name. When searching -for a wildcard match, an NS RR was found at a wildcard record matching -the name. This is returned as the result of the search. -
- DATASRC_DATABASE_WILDCARD_NXRRSET search in datasource %1 for %2/%3/%4 resulted in wildcard NXRRSET at %5
-The database doesn't contain directly matching name. When searching -for a wildcard match, a matching wildcard entry was found but it did -not contain RRs the requested type. AN NXRRSET indication is returned. -
- DATASRC_DO_QUERY handling query for '%1/%2'
-A debug message indicating that a query for the given name and RR type is being -processed. -
- DATASRC_LIST_NOT_CACHED zone %1/%2 not cached, cache disabled globally. Will not be available.
-The process disabled caching of RR data completely. However, the given zone -is provided as a master file and it can be served from memory cache only. -Therefore, the zone will not be available for this process. If this is -a problem, you should move the zone to some database backend (sqlite3, for -example) and use it from there. -
- DATASRC_MEM_ADD_RRSET adding RRset '%1/%2' into zone '%3'
-Debug information. An RRset is being added to the in-memory data source. -
- DATASRC_MEM_ADD_WILDCARD adding wildcards for '%1'
-This is a debug message issued during the processing of a wildcard -name. The internal domain name tree is scanned and some nodes are -specially marked to allow the wildcard lookup to succeed. -
- DATASRC_MEM_ADD_ZONE adding zone '%1/%2'
-Debug information. A zone is being added into the in-memory data source. -
- DATASRC_MEM_ANY_SUCCESS ANY query for '%1' successful
-Debug information. The domain was found and an ANY type query is being answered -by providing everything found inside the domain. -
- DATASRC_MEM_CNAME CNAME at the domain '%1'
-Debug information. The requested domain is an alias to a different domain, -returning the CNAME instead. -
- DATASRC_MEM_CNAME_COEXIST can't add data to CNAME in domain '%1'
-This is the same problem as in MEM_CNAME_TO_NONEMPTY, but it happened the -other way around -- adding some other data to CNAME. -
- DATASRC_MEM_CNAME_TO_NONEMPTY can't add CNAME to domain with other data in '%1'
-Someone or something tried to add a CNAME into a domain that already contains -some other data. But the protocol forbids coexistence of CNAME with anything -(RFC 1034, section 3.6.2). This indicates a problem with provided data. -
- DATASRC_MEM_CREATE creating zone '%1' in '%2' class
-Debug information. A representation of a zone for the in-memory data source is -being created. -
- DATASRC_MEM_DELEG_FOUND delegation found at '%1'
-Debug information. A delegation point was found above the requested record. -
- DATASRC_MEM_DESTROY destroying zone '%1' in '%2' class
-Debug information. A zone from in-memory data source is being destroyed. -
- DATASRC_MEM_DNAME_ENCOUNTERED encountered a DNAME
-Debug information. While searching for the requested domain, a DNAME was -encountered on the way. This may lead to redirection to a different domain and -stop the search. -
- DATASRC_MEM_DNAME_FOUND DNAME found at '%1'
-Debug information. A DNAME was found instead of the requested information. -
- DATASRC_MEM_DNAME_NS DNAME and NS can't coexist in non-apex domain '%1'
-A request was made for DNAME and NS records to be put into the same -domain which is not the apex (the top of the zone). This is forbidden -by RFC 2672 (section 3) and indicates a problem with provided data. -
- DATASRC_MEM_DOMAIN_EMPTY requested domain '%1' is empty
-Debug information. The requested domain exists in the tree of domains, but -it is empty. Therefore it doesn't contain the requested resource type. -
- DATASRC_MEM_DUP_RRSET duplicate RRset '%1/%2'
-An RRset is being inserted into in-memory data source for a second time. The -original version must be removed first. Note that loading master files where an -RRset is split into multiple locations is not supported yet. -
- DATASRC_MEM_EXACT_DELEGATION delegation at the exact domain '%1'
-Debug information. There's a NS record at the requested domain. This means -this zone is not authoritative for the requested domain, but a delegation -should be followed. The requested domain is an apex of some zone. -
- DATASRC_MEM_FIND find '%1/%2'
-Debug information. A search for the requested RRset is being started. -
- DATASRC_MEM_FINDNSEC3 finding NSEC3 for %1, mode %2
-Debug information. A search in an in-memory data source for NSEC3 that -matches or covers the given name is being started. -
- DATASRC_MEM_FINDNSEC3_COVER found a covering NSEC3 for %1: %2
-Debug information. An NSEC3 that covers the given name is found and -being returned. The found NSEC3 RRset is also displayed. -
- DATASRC_MEM_FINDNSEC3_MATCH found a matching NSEC3 for %1 at label count %2: %3
-Debug information. An NSEC3 that matches (a possibly superdomain of) -the given name is found and being returned. When the shown label -count is smaller than that of the given name, the matching NSEC3 is -for a superdomain of the given name (see DATASRC_MEM_FINDNSEC3_TRYHASH). -The found NSEC3 RRset is also displayed. -
- DATASRC_MEM_FINDNSEC3_TRYHASH looking for NSEC3 for %1 at label count %2 (hash %3)
-Debug information. In an attempt of finding an NSEC3 for the give name, -(a possibly superdomain of) the name is hashed and searched for in the -NSEC3 name space. When the shown label count is smaller than that of the -shown name, the search tries the superdomain name that share the shown -(higher) label count of the shown name (e.g., for -www.example.com. with shown label count of 3, example.com. is being -tried). -
- DATASRC_MEM_FIND_ZONE looking for zone '%1'
-Debug information. A zone object for this zone is being searched for in the -in-memory data source. -
- DATASRC_MEM_LOAD loading zone '%1' from file '%2'
-Debug information. The content of master file is being loaded into the memory. -
- DATASRC_MEM_NOT_FOUND requested domain '%1' not found
-Debug information. The requested domain does not exist. -
- DATASRC_MEM_NO_NSEC3PARAM NSEC3PARAM is missing for NSEC3-signed zone %1/%2
-The in-memory data source has loaded a zone signed with NSEC3 RRs, -but it doesn't have a NSEC3PARAM RR at the zone origin. It's likely that -the zone is somehow broken, but this RR is not necessarily needed for -handling lookups with NSEC3 in this data source, so it accepts the given -content of the zone. Nevertheless the administrator should look into -the integrity of the zone data. -
- DATASRC_MEM_NS_ENCOUNTERED encountered a NS
-Debug information. While searching for the requested domain, a NS was -encountered on the way (a delegation). This may lead to stop of the search. -
- DATASRC_MEM_NXRRSET no such type '%1' at '%2'
-Debug information. The domain exists, but it doesn't hold any record of the -requested type. -
- DATASRC_MEM_OUT_OF_ZONE domain '%1' doesn't belong to zone '%2'
-It was attempted to add the domain into a zone that shouldn't have it -(eg. the domain is not subdomain of the zone origin). This indicates a -problem with provided data. -
- DATASRC_MEM_RENAME renaming RRset from '%1' to '%2'
-Debug information. A RRset is being generated from a different RRset (most -probably a wildcard). So it must be renamed to whatever the user asked for. In -fact, it's impossible to rename RRsets with our libraries, so a new one is -created and all resource records are copied over. -
- DATASRC_MEM_SINGLETON trying to add multiple RRs for domain '%1' and type '%2'
-Some resource types are singletons -- only one is allowed in a domain -(for example CNAME or SOA). This indicates a problem with provided data. -
- DATASRC_MEM_SUCCESS query for '%1/%2' successful
-Debug information. The requested record was found. -
- DATASRC_MEM_SUPER_STOP stopped as '%1' is superdomain of a zone node, meaning it's empty
-Debug information. The search stopped because the requested domain was -detected to be a superdomain of some existing node of zone (while there -was no exact match). This means that the domain is an empty nonterminal, -therefore it is treated as NXRRSET case (eg. the domain exists, but it -doesn't have the requested record type). -
- DATASRC_MEM_SWAP swapping contents of two zone representations ('%1' and '%2')
-Debug information. The contents of two in-memory zones are being exchanged. -This is usual practice to do some manipulation in exception-safe manner -- the -new data are prepared in a different zone object and when it works, they are -swapped. The old one contains the new data and the other one can be safely -destroyed. -
- DATASRC_MEM_WILDCARD_CANCEL wildcard match canceled for '%1'
-Debug information. A domain above wildcard was reached, but there's something -below the requested domain. Therefore the wildcard doesn't apply here. This -behaviour is specified by RFC 1034, section 4.3.3 -
- DATASRC_MEM_WILDCARD_DNAME DNAME record in wildcard domain '%1'
-The software refuses to load DNAME records into a wildcard domain. It isn't -explicitly forbidden, but the protocol is ambiguous about how this should -behave and BIND 9 refuses that as well. Please describe your intention using -different tools. -
- DATASRC_MEM_WILDCARD_NS NS record in wildcard domain '%1'
-The software refuses to load NS records into a wildcard domain. It isn't -explicitly forbidden, but the protocol is ambiguous about how this should -behave and BIND 9 refuses that as well. Please describe your intention using -different tools. -
- DATASRC_META_ADD adding a data source into meta data source
-This is a debug message issued during startup or reconfiguration. -Another data source is being added into the meta data source. -
- DATASRC_META_ADD_CLASS_MISMATCH mismatch between classes '%1' and '%2'
-It was attempted to add a data source into a meta data source, but their -classes do not match. -
- DATASRC_META_REMOVE removing data source from meta data source
-Debug information. A data source is being removed from meta data source. -
- DATASRC_QUERY_ADD_NSEC adding NSEC record for '%1'
-Debug information. A NSEC record covering this zone is being added. -
- DATASRC_QUERY_ADD_NSEC3 adding NSEC3 record of zone '%1'
-Debug information. A NSEC3 record for the given zone is being added to the -response message. -
- DATASRC_QUERY_ADD_RRSET adding RRset '%1/%2' to message
-Debug information. An RRset is being added to the response message. -
- DATASRC_QUERY_ADD_SOA adding SOA of '%1'
-Debug information. A SOA record of the given zone is being added to the -authority section of the response message. -
- DATASRC_QUERY_AUTH_FAIL the underlying data source failed with %1
-The underlying data source failed to answer the authoritative query. 1 means -some error, 2 is not implemented. The data source should have logged the -specific error already. -
- DATASRC_QUERY_BAD_REFERRAL bad referral to '%1'
-The domain lives in another zone. But it is not possible to generate referral -information for it. -
- DATASRC_QUERY_CACHED data for %1/%2 found in hotspot cache
-Debug information. The requested data were found in the hotspot cache, so -no query is sent to the real data source. -
- DATASRC_QUERY_CHECK_CACHE checking hotspot cache for '%1/%2'
-Debug information. While processing a query, lookup to the hotspot cache -is being made. -
- DATASRC_QUERY_COPY_AUTH copying authoritative section into message
-Debug information. The whole referral information is being copied into the -response message. -
- DATASRC_QUERY_DELEGATION looking for delegation on the path to '%1'
-Debug information. The software is trying to identify delegation points on the -way down to the given domain. -
- DATASRC_QUERY_EMPTY_CNAME CNAME at '%1' is empty
-A CNAME chain was being followed and an entry was found that pointed -to a domain name that had no RRsets associated with it. As a result, -the query cannot be answered. This indicates a problem with supplied data. -
- DATASRC_QUERY_EMPTY_DNAME the DNAME on '%1' is empty
-During an attempt to synthesize CNAME from this DNAME it was discovered the -DNAME is empty (it has no records). This indicates problem with supplied data. -
- DATASRC_QUERY_FAIL query failed
-Some subtask of query processing failed. The reason should have been reported -already and a SERVFAIL will be returned to the querying system. -
- DATASRC_QUERY_FOLLOW_CNAME following CNAME at '%1'
-Debug information. The domain is a CNAME (or a DNAME and a CNAME for it -has already been created) and the search is following this chain. -
- DATASRC_QUERY_GET_MX_ADDITIONAL addition of A/AAAA for '%1' requested by MX '%2'
-Debug information. While processing a query, a MX record was met. It -references the mentioned address, so A/AAAA records for it are looked up -and put it into the additional section. -
- DATASRC_QUERY_GET_NS_ADDITIONAL addition of A/AAAA for '%1' requested by NS '%2'
-Debug information. While processing a query, a NS record was met. It -references the mentioned address, so A/AAAA records for it are looked up -and put it into the additional section. -
- DATASRC_QUERY_GLUE_FAIL the underlying data source failed with %1
-The underlying data source failed to answer the glue query. 1 means some error, -2 is not implemented. The data source should have logged the specific error -already. -
- DATASRC_QUERY_INVALID_OP invalid query operation requested
-This indicates a programmer error. The DO_QUERY was called with unknown -operation code. -
- DATASRC_QUERY_IS_AUTH auth query (%1/%2)
-Debug information. The last DO_QUERY is an auth query. -
- DATASRC_QUERY_IS_GLUE glue query (%1/%2)
-Debug information. The last DO_QUERY is a query for glue addresses. -
- DATASRC_QUERY_IS_NOGLUE query for non-glue addresses (%1/%2)
-Debug information. The last DO_QUERY is a query for addresses that are not -glue. -
- DATASRC_QUERY_IS_REF query for referral (%1/%2)
-Debug information. The last DO_QUERY is a query for referral information. -
- DATASRC_QUERY_IS_SIMPLE simple query (%1/%2)
-Debug information. The last DO_QUERY is a simple query. -
- DATASRC_QUERY_MISPLACED_TASK task of this type should not be here
-This indicates a programming error. A task was found in the internal task -queue, but this kind of task wasn't designed to be inside the queue (it should -be handled right away, not queued). -
- DATASRC_QUERY_MISSING_NS missing NS records for '%1'
-NS records should have been put into the authority section. However, this zone -has none. This indicates problem with provided data. -
- DATASRC_QUERY_MISSING_SOA the zone '%1' has no SOA
-The answer should have been a negative one (eg. of nonexistence of something). -To do so, a SOA record should be put into the authority section, but the zone -does not have one. This indicates problem with provided data. -
- DATASRC_QUERY_NOGLUE_FAIL the underlying data source failed with %1
-The underlying data source failed to answer the no-glue query. 1 means some -error, 2 is not implemented. The data source should have logged the specific -error already. -
- DATASRC_QUERY_NO_CACHE_ANY_AUTH ignoring hotspot cache for ANY query (%1/%2 in %3 class)
-Debug information. The hotspot cache is ignored for authoritative ANY queries -for consistency reasons. -
- DATASRC_QUERY_NO_CACHE_ANY_SIMPLE ignoring hotspot cache for ANY query (%1/%2 in %3 class)
-Debug information. The hotspot cache is ignored for ANY queries for consistency -reasons. -
- DATASRC_QUERY_NO_DS_NSEC there's no DS record in the '%1' zone
-An attempt to add a NSEC record into the message failed, because the zone does -not have any DS record. This indicates problem with the provided data. -
- DATASRC_QUERY_NO_DS_NSEC3 there's no DS record in the '%1' zone
-An attempt to add a NSEC3 record into the message failed, because the zone does -not have any DS record. This indicates problem with the provided data. -
- DATASRC_QUERY_NO_ZONE no zone containing '%1' in class '%2'
-Debug information. Lookup of domain failed because the datasource -has no zone that contains the domain. Maybe someone sent a query -to the wrong server for some reason. This may also happen when -looking in the datasource for addresses for NS records. -
- DATASRC_QUERY_PROCESS processing query '%1/%2' in the '%3' class
-Debug information. A sure query is being processed now. -
- DATASRC_QUERY_PROVE_NX_FAIL unable to prove nonexistence of '%1'
-The user wants DNSSEC and we discovered the entity doesn't exist (either -domain or the record). But there was an error getting NSEC/NSEC3 record -to prove the nonexistence. -
- DATASRC_QUERY_REF_FAIL the underlying data source failed with %1
-The underlying data source failed to answer the query for referral information. -1 means some error, 2 is not implemented. The data source should have logged -the specific error already. -
- DATASRC_QUERY_RRSIG unable to answer RRSIG query for %1
-The server is unable to answer a direct query for RRSIG type, but was asked -to do so. -
- DATASRC_QUERY_SIMPLE_FAIL the underlying data source failed with %1
-The underlying data source failed to answer the simple query. 1 means some -error, 2 is not implemented. The data source should have logged the specific -error already. -
- DATASRC_QUERY_SYNTH_CNAME synthesizing CNAME from DNAME on '%1'
-This is a debug message. While answering a query, a DNAME was encountered. The -DNAME itself will be returned, along with a synthesized CNAME for clients that -do not understand the DNAME RR. -
- DATASRC_QUERY_TASK_FAIL task failed with %1
-The query subtask failed. The reason should have been reported by the subtask -already. The code is 1 for error, 2 for not implemented. -
- DATASRC_QUERY_TOO_MANY_CNAMES CNAME chain limit exceeded at '%1'
-A CNAME led to another CNAME and it led to another, and so on. After 16 -CNAMEs, the software gave up. Long CNAME chains are discouraged, and this -might possibly be a loop as well. Note that some of the CNAMEs might have -been synthesized from DNAMEs. This indicates problem with supplied data. -
- DATASRC_QUERY_UNKNOWN_RESULT unknown result of subtask
-This indicates a programmer error. The answer of subtask doesn't look like -anything known. -
- DATASRC_QUERY_WILDCARD looking for a wildcard covering '%1'
-Debug information. A direct match wasn't found, so a wildcard covering the -domain is being looked for now. -
- DATASRC_QUERY_WILDCARD_FAIL error processing wildcard for '%1'
-During an attempt to cover the domain by a wildcard an error happened. The -exact kind was hopefully already reported. -
- DATASRC_QUERY_WILDCARD_PROVE_NX_FAIL unable to prove nonexistence of '%1' (%2)
-While processing a wildcard, it wasn't possible to prove nonexistence of the -given domain or record. The code is 1 for error and 2 for not implemented. -
- DATASRC_QUERY_WILDCARD_REFERRAL unable to find referral info for '%1' (%2)
-While processing a wildcard, a referral was met. But it wasn't possible to get -enough information for it. The code is 1 for error, 2 for not implemented. -
- DATASRC_SQLITE_CLOSE closing SQLite database
-Debug information. The SQLite data source is closing the database file. -
- DATASRC_SQLITE_COMPATIBLE_VERSION database schema V%1.%2 not up to date (expecting V%3.%4) but is compatible
-The version of the SQLite3 database schema used to hold the zone data -is not the latest one - the current version of BIND 10 was written -with a later schema version in mind. However, the database is -compatible with the current version of BIND 10, and BIND 10 will run -without any problems. -
-Consult the release notes for your version of BIND 10. Depending on -the changes made to the database schema, it is possible that improved -performance could result if the database were upgraded. -
- DATASRC_SQLITE_CONNCLOSE Closing sqlite database
-The database file is no longer needed and is being closed. -
- DATASRC_SQLITE_CONNOPEN Opening sqlite database file '%1'
-The database file is being opened so it can start providing data. -
- DATASRC_SQLITE_CREATE SQLite data source created
-Debug information. An instance of SQLite data source is being created. -
- DATASRC_SQLITE_DESTROY SQLite data source destroyed
-Debug information. An instance of SQLite data source is being destroyed. -
- DATASRC_SQLITE_DROPCONN SQLite3Database is being deinitialized
-The object around a database connection is being destroyed. -
- DATASRC_SQLITE_ENCLOSURE looking for zone containing '%1'
-Debug information. The SQLite data source is trying to identify which zone -should hold this domain. -
- DATASRC_SQLITE_ENCLOSURE_NOT_FOUND no zone contains '%1'
-Debug information. The last SQLITE_ENCLOSURE query was unsuccessful; there's -no such zone in our data. -
- DATASRC_SQLITE_FIND looking for RRset '%1/%2'
-Debug information. The SQLite data source is looking up a resource record -set. -
- DATASRC_SQLITE_FINDADDRS looking for A/AAAA addresses for '%1'
-Debug information. The data source is looking up the addresses for given -domain name. -
- DATASRC_SQLITE_FINDADDRS_BAD_CLASS class mismatch looking for addresses ('%1' and '%2')
-The SQLite data source was looking up A/AAAA addresses, but the data source -contains different class than the query was for. -
- DATASRC_SQLITE_FINDEXACT looking for exact RRset '%1/%2'
-Debug information. The SQLite data source is looking up an exact resource -record. -
- DATASRC_SQLITE_FINDEXACT_BAD_CLASS class mismatch looking for an RRset ('%1' and '%2')
-The SQLite data source was looking up an exact RRset, but the data source -contains different class than the query was for. -
- DATASRC_SQLITE_FINDREC looking for record '%1/%2'
-Debug information. The SQLite data source is looking up records of given name -and type in the database. -
- DATASRC_SQLITE_FINDREF looking for referral at '%1'
-Debug information. The SQLite data source is identifying if this domain is -a referral and where it goes. -
- DATASRC_SQLITE_FINDREF_BAD_CLASS class mismatch looking for referral ('%1' and '%2')
-The SQLite data source was trying to identify if there's a referral. But -it contains different class than the query was for. -
- DATASRC_SQLITE_FIND_BAD_CLASS class mismatch looking for an RRset ('%1' and '%2')
-The SQLite data source was looking up an RRset, but the data source contains -different class than the query was for. -
- DATASRC_SQLITE_FIND_NSEC3 looking for NSEC3 in zone '%1' for hash '%2'
-Debug information. We're trying to look up a NSEC3 record in the SQLite data -source. -
- DATASRC_SQLITE_FIND_NSEC3_NO_ZONE no such zone '%1'
-The SQLite data source was asked to provide a NSEC3 record for given zone. -But it doesn't contain that zone. -
- DATASRC_SQLITE_INCOMPATIBLE_VERSION database schema V%1.%2 incompatible with version (V%3.%4) expected
-The version of the SQLite3 database schema used to hold the zone data -is incompatible with the version expected by BIND 10. As a result, -BIND 10 is unable to run using the database file as the data source. -
-The database should be updated using the means described in the BIND -10 documentation. -
- DATASRC_SQLITE_NEWCONN SQLite3Database is being initialized
-A wrapper object to hold database connection is being initialized. -
- DATASRC_SQLITE_OPEN opening SQLite database '%1'
-Debug information. The SQLite data source is loading an SQLite database in -the provided file. -
- DATASRC_SQLITE_PREVIOUS looking for name previous to '%1'
-This is a debug message. The name given was not found, so the program -is searching for the next name higher up the hierarchy (e.g. if -www.example.com were queried for and not found, the software searches -for the "previous" name, example.com). -
- DATASRC_SQLITE_PREVIOUS_NO_ZONE no zone containing '%1'
-The name given was not found, so the program is searching for the next -name higher up the hierarchy (e.g. if www.example.com were queried -for and not found, the software searches for the "previous" name, -example.com). However, this name is not contained in any zone in the -data source. This is an error since it indicates a problem in the earlier -processing of the query. -
- DATASRC_SQLITE_SETUP setting up SQLite database
-The database for SQLite data source was found empty. It is assumed this is the -first run and it is being initialized with current schema. It'll still contain -no data, but it will be ready for use. -
- DATASRC_STATIC_CLASS_NOT_CH static data source can handle CH class only
-An error message indicating that a query requesting a RR for a class other -that CH was sent to the static data source (which only handles CH queries). -
- DATASRC_STATIC_CREATE creating the static datasource
-Debug information. The static data source (the one holding stuff like -version.bind) is being created. -
- DATASRC_STATIC_FIND looking for '%1/%2'
-Debug information. This resource record set is being looked up in the static -data source. -
- DATASRC_UNEXPECTED_QUERY_STATE unexpected query state
-This indicates a programming error. An internal task of unknown type was -generated. -
- DBUTIL_BACKUP created backup of %1 in %2
-A backup for the given database file was created. Same of original file and -backup are given in the output message. -
- DBUTIL_CHECK_ERROR unable to check database version: %1
-There was an error while trying to check the current version of the database -schema. The error is shown in the message. -
- DBUTIL_CHECK_NOCONFIRM --noconfirm is not compatible with --check
-b10-dbutil was called with --check and --noconfirm. --noconfirm only has -meaning with --upgrade, so this is considered an error. -
- DBUTIL_CHECK_OK this is the latest version of the database schema. No upgrade is required
-The database schema version has been checked, and is up to date. -No action is required. -
- DBUTIL_CHECK_UPGRADE_NEEDED re-run this program with the --upgrade switch to upgrade
-The database schema version is not up to date, and an update is required. -Please run the dbutil tool again, with the --upgrade argument. -
- DBUTIL_COMMAND_NONE must select one of --check or --upgrade
-b10-dbutil was called with neither --check nor --upgrade. One action must be -provided. -
- DBUTIL_COMMAND_UPGRADE_CHECK --upgrade is not compatible with --check
-b10-dbutil was called with both the commands --upgrade and --check. Only one -action can be performed at a time. -
- DBUTIL_DATABASE_MAY_BE_CORRUPT database file %1 may be corrupt, restore it from backup (%2)
-The upgrade failed while it was in progress; the database may now be in an -inconsistent state, and it is advised to restore it from the backup that was -created when b10-dbutil started. -
- DBUTIL_EXECUTE Executing SQL statement: %1
-Debug message; the given SQL statement is executed -
- DBUTIL_FILE Database file: %1
-The database file that is being checked. -
- DBUTIL_NO_FILE must supply name of the database file to upgrade
-b10-dbutil was called without a database file. Currently, it cannot find this -file on its own, and it must be provided. -
- DBUTIL_STATEMENT_ERROR failed to execute %1: %2
-The given database statement failed to execute. The error is shown in the -message. -
- DBUTIL_TOO_MANY_ARGUMENTS too many arguments to the command, maximum of one expected
-There were too many command-line arguments to b10-dbutil -
- DBUTIL_UPGRADE_CANCELED upgrade canceled; database has not been changed
-The user aborted the upgrade, and b10-dbutil will now exit. -
- DBUTIL_UPGRADE_DBUTIL please get the latest version of b10-dbutil and re-run
-A database schema was found that was newer than this version of dbutil, which -is apparently out of date and should be upgraded itself. -
- DBUTIL_UPGRADE_FAILED upgrade failed: %1
-While the upgrade was in progress, an unexpected error occurred. The error -is shown in the message. -
- DBUTIL_UPGRADE_NOT_ATTEMPTED database upgrade was not attempted
-Due to the earlier failure, the database schema upgrade was not attempted, -and b10-dbutil will now exit. -
- DBUTIL_UPGRADE_NOT_NEEDED database already at latest version, no upgrade necessary
-b10-dbutil was told to upgrade the database schema, but it is already at the -latest version. -
- DBUTIL_UPGRADE_NOT_POSSIBLE database at a later version than this utility can support
-b10-dbutil was told to upgrade the database schema, but it is at a higher -version than this tool currently supports. Please update b10-dbutil and try -again. -
- DBUTIL_UPGRADE_PREPARATION_FAILED upgrade preparation failed: %1
-An unexpected error occurred while b10-dbutil was preparing to upgrade the -database schema. The error is shown in the message -
- DBUTIL_UPGRADE_SUCCESFUL database upgrade successfully completed
-The database schema update was completed successfully. -
- DBUTIL_UPGRADING upgrading database from %1 to %2
-An upgrade is in progress, the versions of the current upgrade action are shown. -
- DBUTIL_VERSION_CURRENT database version %1
-The current version of the database schema. -
- DBUTIL_VERSION_HIGH database is at a later version (%1) than this program can cope with (%2)
-The database schema is at a higher version than b10-dbutil knows about. -
- DBUTIL_VERSION_LOW database version %1, latest version is %2.
-The database schema is not up to date, the current version and the latest -version are in the message. -
- DDNS_ACCEPT_FAILURE error accepting a connection: %1
-There was a low-level error when we tried to accept an incoming connection -(probably coming from b10-auth). We continue serving on whatever other -connections we already have, but this connection is dropped. The reason -is logged. -
- DDNS_AUTH_DBFILE_UPDATE updated auth DB file to %1
-b10-ddns was notified of updates to the SQLite3 DB file that b10-auth -uses for the underlying data source and on which b10-ddns needs to -make updates. b10-ddns then updated its internal setup so further -updates would be made on the new DB. -
- DDNS_CC_SESSION_ERROR error reading from cc channel: %1
-There was a problem reading from the command and control channel. The -most likely cause is that the msgq process is not running. -
- DDNS_CC_SESSION_TIMEOUT_ERROR timeout waiting for cc response
-There was a problem reading a response from another module over the -command and control channel. The most likely cause is that the -configuration manager b10-cfgmgr is not running. -
- DDNS_CONFIG_ERROR error found in configuration data: %1
-The ddns process encountered an error when installing the configuration at -startup time. Details of the error are included in the log message. -
- DDNS_CONFIG_HANDLER_ERROR failed to update ddns configuration: %1
-An update to b10-ddns configuration was delivered but an error was -found while applying them. None of the delivered updates were applied -to the running b10-ddns system, and the server will keep running with -the existing configuration. If this happened in the initial -configuration setup, the server will be running with the default -configurations. -
- DDNS_DROP_CONN dropping connection on file descriptor %1 because of error %2
-There was an error on a connection with the b10-auth server (or whatever -connects to the ddns daemon). This might be OK, for example when the -authoritative server shuts down, the connection would get closed. It also -can mean the system is busy and can't keep up or that the other side got -confused and sent bad data. -
- DDNS_GET_REMOTE_CONFIG_FAIL failed to get %1 module configuration %2 times: %3
-b10-ddns tried to get configuration of some remote modules for its -operation, but it failed. The most likely cause of this is that the -remote module has not fully started up and b10-ddns couldn't get the -configuration in a timely fashion. b10-ddns attempts to retry it a -few times, imposing a short delay, hoping it eventually succeeds if -it's just a timing issue. The number of total failed attempts is also -logged. If it reaches an internal threshold b10-ddns considers it a -fatal error and terminates. Even in that case, if b10-ddns is -configured as a "dispensable" component (which is the default), the -parent bind10 process will restart it, and there will be another -chance of getting the remote configuration successfully. These are -not the optimal behavior, but it's believed to be sufficient in -practice (there would normally be no failure in the first place). If -it really causes an operational trouble other than having a few of -these log messages, please submit a bug report; there can be several -ways to make it more sophisticated. Another, less likely reason for -having this error is because the remote modules are not actually -configured to run. If that's the case fixing the configuration should -solve the problem - either by making sure the remote module will run -or by not running b10-ddns (without these remote modules b10-ddns is -not functional, so there's no point in running it in this case). -
- DDNS_MODULECC_SESSION_ERROR error encountered by configuration/command module: %1
-There was a problem in the lower level module handling configuration and -control commands. This could happen for various reasons, but the most likely -cause is that the configuration database contains a syntax error and ddns -failed to start at initialization. A detailed error message from the module -will also be displayed. -
- DDNS_NEW_CONN new connection on file descriptor %1 from %2
-Debug message. We received a connection and we are going to start handling -requests from it. The file descriptor number and the address where the request -comes from is logged. The connection is over a unix domain socket and is likely -coming from a b10-auth process. -
- DDNS_RECEIVED_AUTH_UPDATE received configuration updates from auth server
-b10-ddns is notified of updates to b10-auth configuration -(including a report of the initial configuration) that b10-ddns might -be interested in. -
- DDNS_RECEIVED_SHUTDOWN_COMMAND shutdown command received
-The ddns process received a shutdown command from the command channel -and will now shut down. -
- DDNS_RECEIVED_ZONEMGR_UPDATE received configuration updates from zonemgr
-b10-ddns is notified of updates to b10-zonemgr's configuration -(including a report of the initial configuration). It may possibly -contain changes to the secondary zones, in which case b10-ddns will -update its internal copy of that configuration. -
- DDNS_REQUEST_PARSE_FAIL failed to parse update request: %1
-b10-ddns received an update request via b10-auth, but the received -data failed to pass minimum validation: it was either broken wire -format data for a valid DNS message (e.g. it's shorter than the -fixed-length header), or the opcode is not update, or TSIG is included -in the request but it fails to validate. Since b10-auth should have -performed this level of checks, such an error shouldn't be detected at -this stage and should rather be considered an internal bug. This -event is therefore logged at the error level, and the request is -simply dropped. Additional information of the error is also logged. -
- DDNS_REQUEST_TCP_QUOTA reject TCP update client %1 (%2 running)
-b10-ddns received a new update request from a client over TCP, but -the number of TCP clients being handled by the server already reached -the configured quota, so the latest client was rejected by closing -the connection. The administrator may want to check the status of -b10-ddns, and if this happens even if the server is not very busy, -the quota may have to be increased. Or, if it's more likely to be -malicious or simply bogus clients that somehow keep the TCP connection -open for a long period, maybe they should be rejected with an -appropriate ACL configuration or some lower layer filtering. The -number of existing TCP clients are shown in the log, which should be -identical to the current quota. -
- DDNS_RESPONSE_SOCKET_ERROR failed to send update response to %1: %2
-Network I/O error happens in sending an update response. The -client's address that caused the error and error details are also -logged. -
- DDNS_RESPONSE_TCP_SOCKET_ERROR failed to complete sending update response to %1 over TCP
-b10-ddns had tried to send an update response over TCP, and it hadn't -been completed at that time, and a followup attempt to complete the -send operation failed due to some network I/O error. While a network -error can happen any time, this event is quite unexpected for two -reasons. First, since the size of a response to an update request -should be generally small, it's unlikely that the initial attempt -didn't fail but wasn't completed. Second, since the first attempt -succeeded and the TCP connection had been established in the first -place, it's more likely for the subsequent attempt to succeed. In any -case, there may not be able to do anything to fix it at the server -side, but the administrator may want to check the general reachability -with the client address. -
- DDNS_SECONDARY_ZONES_UPDATE updated secondary zone list (%1 zones are listed)
-b10-ddns has successfully updated the internal copy of secondary zones -obtained from b10-zonemgr, based on a latest update to zonemgr's -configuration. The number of newly configured (unique) secondary -zones is logged. -
- DDNS_SECONDARY_ZONES_UPDATE_FAIL failed to update secondary zone list: %1
-An error message. b10-ddns was notified of updates to a list of -secondary zones from b10-zonemgr and tried to update its own internal -copy of the list, but it failed. This can happen if the configuration -contains an error, and b10-zonemgr should also reject that update. -Unfortunately, in the current implementation there is no way to ensure -that both zonemgr and ddns have consistent information when an update -contains an error; further, as of this writing zonemgr has a bug that -it could partially update the list of secondary zones if part of the -list has an error (see Trac ticket #2038). b10-ddns still keeps -running with the previous configuration, but it's strongly advisable -to check log messages from zonemgr, and if it indicates there can be -inconsistent state, it's better to restart the entire BIND 10 system -(just restarting b10-ddns wouldn't be enough, because zonemgr can have -partially updated configuration due to bug #2038). The log message -contains an error description, but it's intentionally kept simple as -it's primarily a matter of zonemgr. To know the details of the error, -log messages of zonemgr should be consulted. -
- DDNS_SESSION session arrived on file descriptor %1
-A debug message, informing there's some activity on the given file descriptor. -It will be either a request or the file descriptor will be closed. See -following log messages to see what of it. -
- DDNS_SHUTDOWN ddns server shutting down
-The ddns process is shutting down. It will no longer listen for new commands -or updates. Any command or update that is being addressed at this moment will -be completed, after which the process will exit. -
- DDNS_STARTED ddns server is running and listening for updates
-The ddns process has successfully started and is now ready to receive commands -and updates. -
- DDNS_START_FORWARDER_ERROR Error from b10-auth when requesting DDNS UPDATE forwarding: %1
-There was an error response from b10-auth to the command to start -forwarding DDNS UPDATE messages to b10-ddns. -It is almost certain that DDNS UPDATE messages are not handled now, and that -they will be responded to with a NOTIMP error code, even though b10-ddns is -running. -The error message is printed, and additional information may be found in -the b10-auth log output. Since this is an error that is sent by the -b10-auth module, it should have more information as to what the actual -problem was. -
- DDNS_START_FORWARDER_FAIL Error sending request for DDNS UPDATE forwarding to b10-auth: %1
-There was an error when attempting to send b10-auth the request to forward -DDNS UPDATE messages to the b10-ddns module. This points to an internal -problem using the inter-module messaging system. -This needs to be inspected, as it is almost certain that DDNS UPDATE messages -are not handled now. -The specific error is printed in the log message. -
- DDNS_STOPPED ddns server has stopped
-The ddns process has successfully stopped and is no longer listening for or -handling commands or updates, and will now exit. -
- DDNS_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the ddns process. The -process will now shut down. -
- DDNS_STOP_FORWARDER_ERROR Error from b10-auth when requesting to stop DDNS UPDATE forwarding: %1
-There was an error response from b10-auth to the command to stop -forwarding DDNS UPDATE messages to b10-ddns. -This specific error may not be fatal; instead of returning NOTIMP for future -DDNS UPDATE messages, it will return SERVFAIL. However, this does point to -an underlying problem in the messaging system, and should be inspected. -The error message is printed, and additional information may be found in -the b10-auth log output. -
- DDNS_STOP_FORWARDER_FAIL Error sending request to stop DDNS UPDATE forwarding to b10-auth: %1
-There was an error when attempting to send b10-auth the request to stop -forwarding DDNS UPDATE messages to the b10-ddns module. This points to an -internal problem using the inter-module messaging system. -This specific error may not be fatal; instead of returning NOTIMP for future -DDNS UPDATE messages, it will return SERVFAIL. However, this does point to -an underlying problem in the messaging system, and should be inspected. -The specific error is printed in the log message. -
- DDNS_UNCAUGHT_EXCEPTION uncaught exception of type %1: %2
-The b10-ddns process encountered an uncaught exception and will now shut -down. This is indicative of a programming error and should not happen under -normal circumstances. The exception type and message are printed. -
- DDNS_UPDATE_NOTIFY notified %1 of updates to %2
-Debug message. b10-ddns has made updates to a zone based on an update -request and has successfully notified an external module of the updates. -The notified module will use that information for updating its own -state or any necessary protocol action such as zone reloading or sending -notify messages to secondary servers. -
- DDNS_UPDATE_NOTIFY_FAIL failed to notify %1 of updates to %2: %3
-b10-ddns has made updates to a zone based on an update request and -tried to notify an external component of the updates, but the -notification fails. One possible cause of this is that the external -component is not really running and it times out in waiting for the -response, although it will be less likely to happen in practice -because these components will normally be configured to run when the -server provides the authoritative DNS service; ddns is rather optional -among them. If this happens, however, it will suspend b10-ddns for a -few seconds during which it cannot handle new requests (some may be -delayed, some may be dropped, depending on the volume of the incoming -requests). This is obviously bad, and if this error happens due to -this reason, the administrator should make sure the component in -question should be configured to run. For a longer term, b10-ddns -should be more robust about this case such as by making this -notification asynchronously and/or detecting the existence of the -external components to avoid hopeless notification in the first place. -Severity of this error for the receiving components depends on the -type of the component. If it's b10-xfrout, this means DNS notify -messages won't be sent to secondary servers of the zone. It's -suboptimal, but not necessarily critical as the secondary servers will -try to check the zone's status periodically. If it's b10-auth and the -notification was needed to have it reload the corresponding zone, it's -more serious because b10-auth won't be able to serve the new version -of the zone unless some explicit recovery action is taken. So the -administrator needs to examine this message and takes an appropriate -action. In either case, this notification is generally expected to -succeed; so the fact it fails itself means there's something wrong in -the BIND 10 system, and it would be advisable to check other log -messages. -
- LIBDDNS_DATASRC_ERROR update client %1 failed due to data source error: %2
-An update attempt failed due to some error in the corresponding data -source. This is generally an unexpected event, but can still happen -for various reasons such as DB lock contention or a failure of the -backend DB server. The cause of the error is also logged. It's -advisable to check the message, and, if necessary, take an appropriate -action (e.g., restarting the DB server if it dies). If this message -is logged the data source isn't modified due to the -corresponding update request. When used by the b10-ddns, the server -will return a response with an RCODE of SERVFAIL. -
- LIBDDNS_PREREQ_FORMERR update client %1 for zone %2: Format error in prerequisite (%3). Non-zero TTL.
-The prerequisite with the given name, class and type is not well-formed. -The specific prerequisite is shown. In this case, it has a non-zero TTL value. -A FORMERR error response is sent to the client. -
- LIBDDNS_PREREQ_FORMERR_ANY update client %1 for zone %2: Format error in prerequisite (%3). Non-zero TTL or rdata found.
-The prerequisite with the given name, class and type is not well-formed. -The specific prerequisite is shown. In this case, it either has a non-zero -TTL value, or has rdata fields. A FORMERR error response is sent to the client. -
- LIBDDNS_PREREQ_FORMERR_CLASS update client %1 for zone %2: Format error in prerequisite (%3). Bad class.
-The prerequisite with the given name, class and type is not well-formed. -The specific prerequisite is shown. In this case, the class of the -prerequisite should either match the class of the zone in the Zone Section, -or it should be ANY or NONE, and it is not. A FORMERR error response is sent -to the client. -
- LIBDDNS_PREREQ_FORMERR_NONE update client %1 for zone %2: Format error in prerequisite (%3). Non-zero TTL or rdata found.
-The prerequisite with the given name, class and type is not well-formed. -The specific prerequisite is shown. In this case, it either has a non-zero -TTL value, or has rdata fields. A FORMERR error response is sent to the client. -
- LIBDDNS_PREREQ_NAME_IN_USE_FAILED update client %1 for zone %2: 'Name is in use' prerequisite not satisfied (%3), rcode: %4
-A DNS UPDATE prerequisite was not satisfied. The specific prerequisite that -was not satisfied is shown. The client is sent an error response with the -given rcode. -In this case, the specific prerequisite is 'Name is in use'. From RFC2136: -Name is in use. At least one RR with a specified NAME (in -the zone and class specified by the Zone Section) must exist. -Note that this prerequisite is NOT satisfied by empty -nonterminals. -
- LIBDDNS_PREREQ_NAME_NOT_IN_USE_FAILED update client %1 for zone %2: 'Name is not in use' (%3) prerequisite not satisfied, rcode: %4
-A DNS UPDATE prerequisite was not satisfied. The specific prerequisite that -was not satisfied is shown. The client is sent an error response with the -given rcode. -In this case, the specific prerequisite is 'Name is not in use'. -From RFC2136: -Name is not in use. No RR of any type is owned by a -specified NAME. Note that this prerequisite IS satisfied by -empty nonterminals. -
- LIBDDNS_PREREQ_NOTZONE update client %1 for zone %2: prerequisite not in zone (%3)
-A DDNS UPDATE prerequisite has a name that does not appear to be inside -the zone specified in the Zone section of the UPDATE message. -The specific prerequisite is shown. A NOTZONE error response is sent to -the client. -
- LIBDDNS_PREREQ_RRSET_DOES_NOT_EXIST_FAILED update client %1 for zone %2: 'RRset does not exist' (%3) prerequisite not satisfied, rcode: %4
-A DNS UPDATE prerequisite was not satisfied. The specific prerequisite that -was not satisfied is shown. The client is sent an error response with the -given rcode. -In this case, the specific prerequisite is 'RRset does not exist'. -From RFC2136: -RRset does not exist. No RRs with a specified NAME and TYPE -(in the zone and class denoted by the Zone Section) can exist. -
- LIBDDNS_PREREQ_RRSET_EXISTS_FAILED update client %1 for zone %2: 'RRset exists (value independent)' (%3) prerequisite not satisfied, rcode: %4
-A DNS UPDATE prerequisite was not satisfied. The specific prerequisite that -was not satisfied is shown. The client is sent an error response with the -given rcode. -In this case, the specific prerequisite is 'RRset exists (value independent)'. -From RFC2136: -RRset exists (value dependent). A set of RRs with a -specified NAME and TYPE exists and has the same members -with the same RDATAs as the RRset specified here in this -Section. -
- LIBDDNS_PREREQ_RRSET_EXISTS_VAL_FAILED update client %1 for zone %2: 'RRset exists (value dependent)' (%3) prerequisite not satisfied, rcode: %4
-A DNS UPDATE prerequisite was not satisfied. The specific prerequisite that -was not satisfied is shown. The client is sent an error response with the -given rcode. -In this case, the specific prerequisite is 'RRset exists (value dependent)'. -From RFC2136: -RRset exists (value independent). At least one RR with a -specified NAME and TYPE (in the zone and class specified by -the Zone Section) must exist. -
- LIBDDNS_UPDATE_ADD_BAD_TYPE update client %1 for zone %2: update addition RR bad type: %3
-The Update section of a DDNS update message contains a statement -that tries to add a record of an invalid type. Most likely the -record has an RRType that is considered a 'meta' type, which -cannot be zone content data. The specific record is shown. -A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_APPROVED update client %1 for zone %2 approved
-Debug message. An update request was approved in terms of the zone's -update ACL. -
- LIBDDNS_UPDATE_BAD_CLASS update client %1 for zone %2: bad class in update RR: %3
-The Update section of a DDNS update message contains an RRset with -a bad class. The class of the update RRset must be either the same -as the class in the Zone Section, ANY, or NONE. -A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_DATASRC_ERROR error in datasource during DDNS update: %1
-An error occured while committing the DDNS update changes to the -datasource. The specific error is printed. A SERVFAIL response is sent -back to the client. -
- LIBDDNS_UPDATE_DELETE_BAD_TYPE update client %1 for zone %2: update deletion RR bad type: %3
-The Update section of a DDNS update message contains a statement -that tries to delete an rrset of an invalid type. Most likely the -record has an RRType that is considered a 'meta' type, which -cannot be zone content data. The specific record is shown. -A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_DELETE_NONZERO_TTL update client %1 for zone %2: update deletion RR has non-zero TTL: %3
-The Update section of a DDNS update message contains a 'delete rrset' -statement with a non-zero TTL. This is not allowed by the protocol. -A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_DELETE_RRSET_NOT_EMPTY update client %1 for zone %2: update deletion RR contains data %3
-The Update section of a DDNS update message contains a 'delete rrset' -statement with a non-empty RRset. This is not allowed by the protocol. -A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_DELETE_RR_BAD_TYPE update client %1 for zone %2: update deletion RR bad type: %3
-The Update section of a DDNS update message contains a statement -that tries to delete one or more rrs of an invalid type. Most -likely the records have an RRType that is considered a 'meta' -type, which cannot be zone content data. The specific record is -shown. A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_DELETE_RR_NONZERO_TTL update client %1 for zone %2: update deletion RR has non-zero TTL: %3
-The Update section of a DDNS update message contains a 'delete rrs' -statement with a non-zero TTL. This is not allowed by the protocol. -A FORMERR response is sent back to the client. -
- LIBDDNS_UPDATE_DENIED update client %1 for zone %2 denied
-Informational message. An update request was denied because it was -rejected by the zone's update ACL. When this library is used by -b10-ddns, the server will respond to the request with an RCODE of -REFUSED as described in Section 3.3 of RFC2136. -
- LIBDDNS_UPDATE_DROPPED update client %1 for zone %2 dropped
-Informational message. An update request was denied because it was -rejected by the zone's update ACL. When this library is used by -b10-ddns, the server will then completely ignore the request; no -response will be sent. -
- LIBDDNS_UPDATE_ERROR update client %1 for zone %2: %3
-Debug message. An error is found in processing a dynamic update -request. This log message is used for general errors that are not -normally expected to happen. So, in general, it would mean some -problem in the client implementation or an interoperability issue -with this implementation. The client's address, the zone name and -class, and description of the error are logged. -
- LIBDDNS_UPDATE_FORWARD_FAIL update client %1 for zone %2: update forwarding not supported
-Debug message. An update request is sent to a secondary server. This -is not necessarily invalid, but this implementation does not yet -support update forwarding as specified in Section 6 of RFC2136 and it -will simply return a response with an RCODE of NOTIMP to the client. -The client's address and the zone name/class are logged. -
- LIBDDNS_UPDATE_NOTAUTH update client %1 for zone %2: not authoritative for update zone
-Debug message. An update request was received for a zone for which -the receiving server doesn't have authority. In theory this is an -unexpected event, but there are client implementations that could send -update requests carelessly, so it may not necessarily be so uncommon -in practice. If possible, you may want to check the implementation or -configuration of those clients to suppress the requests. As specified -in Section 3.1 of RFC2136, the receiving server will return a response -with an RCODE of NOTAUTH. -
- LIBDDNS_UPDATE_NOTZONE update client %1 for zone %2: update RR out of zone %3
-A DDNS UPDATE record has a name that does not appear to be inside -the zone specified in the Zone section of the UPDATE message. -The specific update record is shown. A NOTZONE error response is -sent to the client. -
- LIBDDNS_UPDATE_PREREQUISITE_FAILED prerequisite failed in update client %1 for zone %2: result code %3
-The handling of the prerequisite section (RFC2136 Section 3.2) found -that one of the prerequisites was not satisfied. The result code -should give more information on what prerequisite type failed. -If the result code is FORMERR, the prerequisite section was not well-formed. -An error response with the given result code is sent back to the client. -
- LIBDDNS_UPDATE_UNCAUGHT_EXCEPTION update client %1 for zone %2: uncaught exception while processing update section: %3
-An uncaught exception was encountered while processing the Update -section of a DDNS message. The specific exception is shown in the log message. -To make sure DDNS service is not interrupted, this problem is caught instead -of reraised; The update is aborted, and a SERVFAIL is sent back to the client. -This is most probably a bug in the DDNS code, but *could* be caused by -the data source. -
- LIBXFRIN_DIFFERENT_TTL multiple data with different TTLs (%1, %2) on %3/%4/%5. Adjusting %2 -> %1.
-The xfrin module received an update containing multiple rdata changes for the -same RRset. But the TTLs of these don't match each other. As we combine them -together, the latter one gets overwritten to the earlier one in the sequence. -
- LIBXFRIN_NO_JOURNAL disabled journaling for updates to %1 on %2
-An attempt was made to create a Diff object with journaling enabled, but -the underlying data source didn't support journaling (while still allowing -updates) and so the created object has it disabled. At a higher level this -means that the updates will be applied to the zone but subsequent IXFR requests -will result in a full zone transfer (i.e., an AXFR-style IXFR). Unless the -overhead of the full transfer is an issue this message can be ignored; -otherwise you may want to check why the journaling wasn't allowed on the -data source and either fix the issue or use a different type of data source. -
- LOGIMPL_ABOVE_MAX_DEBUG debug level of %1 is too high and will be set to the maximum of %2
-A message from the interface to the underlying logger implementation reporting -that the debug level (as set by an internally-created string DEBUGn, where n -is an integer, e.g. DEBUG22) is above the maximum allowed value and has -been reduced to that value. The appearance of this message may indicate -a programming error - please submit a bug report. -
- LOGIMPL_BAD_DEBUG_STRING debug string '%1' has invalid format
-A message from the interface to the underlying logger implementation -reporting that an internally-created string used to set the debug level -is not of the correct format (it should be of the form DEBUGn, where n -is an integer, e.g. DEBUG22). The appearance of this message indicates -a programming error - please submit a bug report. -
- LOGIMPL_BELOW_MIN_DEBUG debug level of %1 is too low and will be set to the minimum of %2
-A message from the interface to the underlying logger implementation reporting -that the debug level (as set by an internally-created string DEBUGn, where n -is an integer, e.g. DEBUG22) is below the minimum allowed value and has -been increased to that value. The appearance of this message may indicate -a programming error - please submit a bug report. -
- LOG_BAD_DESTINATION unrecognized log destination: %1
-A logger destination value was given that was not recognized. The -destination should be one of "console", "file", or "syslog". -
- LOG_BAD_SEVERITY unrecognized log severity: %1
-A logger severity value was given that was not recognized. The severity -should be one of "DEBUG", "INFO", "WARN", "ERROR", "FATAL" or "NONE". -
- LOG_BAD_STREAM bad log console output stream: %1
-Logging has been configured so that output is written to the terminal -(console) but the stream on which it is to be written is not recognised. -Allowed values are "stdout" and "stderr". -
- LOG_DUPLICATE_MESSAGE_ID duplicate message ID (%1) in compiled code
-During start-up, BIND 10 detected that the given message identification -had been defined multiple times in the BIND 10 code. This indicates a -programming error; please submit a bug report. -
- LOG_DUPLICATE_NAMESPACE line %1: duplicate $NAMESPACE directive found
-When reading a message file, more than one $NAMESPACE directive was found. -(This directive is used to set a C++ namespace when generating header -files during software development.) Such a condition is regarded as an -error and the read will be abandoned. -
- LOG_INPUT_OPEN_FAIL unable to open message file %1 for input: %2
-The program was not able to open the specified input message file for -the reason given. -
- LOG_INVALID_MESSAGE_ID line %1: invalid message identification '%2'
-An invalid message identification (ID) has been found during the read of -a message file. Message IDs should comprise only alphanumeric characters -and the underscore, and should not start with a digit. -
- LOG_LOCK_TEST_MESSAGE this is a test message.
-This is a log message used in testing. -
- LOG_NAMESPACE_EXTRA_ARGS line %1: $NAMESPACE directive has too many arguments
-The $NAMESPACE directive in a message file takes a single argument, a -namespace in which all the generated symbol names are placed. This error -is generated when the compiler finds a $NAMESPACE directive with more -than one argument. -
- LOG_NAMESPACE_INVALID_ARG line %1: $NAMESPACE directive has an invalid argument ('%2')
-The $NAMESPACE argument in a message file should be a valid C++ namespace. -This message is output if the simple check on the syntax of the string -carried out by the reader fails. -
- LOG_NAMESPACE_NO_ARGS line %1: no arguments were given to the $NAMESPACE directive
-The $NAMESPACE directive in a message file takes a single argument, -a C++ namespace in which all the generated symbol names are placed. -This error is generated when the compiler finds a $NAMESPACE directive -with no arguments. -
- LOG_NO_MESSAGE_ID line %1: message definition line found without a message ID
-Within a message file, message are defined by lines starting with a "%". -The rest of the line should comprise the message ID and text describing -the message. This error indicates the message compiler found a line in -the message file comprising just the "%" and nothing else. -
- LOG_NO_MESSAGE_TEXT line %1: line found containing a message ID ('%2') and no text
-Within a message file, message are defined by lines starting with a "%". -The rest of the line should comprise the message ID and text describing -the message. This error indicates the message compiler found a line -in the message file comprising just the "%" and message identification, -but no text. -
- LOG_NO_SUCH_MESSAGE could not replace message text for '%1': no such message
-During start-up a local message file was read. A line with the listed -message identification was found in the file, but the identification is -not one contained in the compiled-in message dictionary. This message -may appear a number of times in the file, once for every such unknown -message identification. -
-There may be several reasons why this message may appear: -
-- The message ID has been mis-spelled in the local message file. -
-- The program outputting the message may not use that particular message -(e.g. it originates in a module not used by the program.) -
-- The local file was written for an earlier version of the BIND 10 software -and the later version no longer generates that message. -
-Whatever the reason, there is no impact on the operation of BIND 10. -
- LOG_OPEN_OUTPUT_FAIL unable to open %1 for output: %2
-Originating within the logging code, the program was not able to open -the specified output file for the reason given. -
- LOG_PREFIX_EXTRA_ARGS line %1: $PREFIX directive has too many arguments
-Within a message file, the $PREFIX directive takes a single argument, -a prefix to be added to the symbol names when a C++ file is created. -This error is generated when the compiler finds a $PREFIX directive with -more than one argument. -
-Note: the $PREFIX directive is deprecated and will be removed in a future -version of BIND 10. -
- LOG_PREFIX_INVALID_ARG line %1: $PREFIX directive has an invalid argument ('%2')
-Within a message file, the $PREFIX directive takes a single argument, -a prefix to be added to the symbol names when a C++ file is created. -As such, it must adhere to restrictions on C++ symbol names (e.g. may -only contain alphanumeric characters or underscores, and may nor start -with a digit). A $PREFIX directive was found with an argument (given -in the message) that violates those restrictions. -
-Note: the $PREFIX directive is deprecated and will be removed in a future -version of BIND 10. -
- LOG_READING_LOCAL_FILE reading local message file %1
-This is an informational message output by BIND 10 when it starts to read -a local message file. (A local message file may replace the text of -one of more messages; the ID of the message will not be changed though.) -
- LOG_READ_ERROR error reading from message file %1: %2
-The specified error was encountered reading from the named message file. -
- LOG_UNRECOGNISED_DIRECTIVE line %1: unrecognised directive '%2'
-Within a message file, a line starting with a dollar symbol was found -(indicating the presence of a directive) but the first word on the line -(shown in the message) was not recognised. -
- LOG_WRITE_ERROR error writing to %1: %2
-The specified error was encountered by the message compiler when writing -to the named output file. -
- NOTIFY_OUT_DATASRC_ACCESS_FAILURE failed to get access to data source: %1
-notify_out failed to get access to one of configured data sources. -Detailed error is shown in the log message. This can be either a -configuration error or installation setup failure. -
- NOTIFY_OUT_DATASRC_ZONE_NOT_FOUND Zone %1 is not found
-notify_out attempted to get slave information of a zone but the zone -isn't found in the expected data source. This shouldn't happen, -because notify_out first identifies a list of available zones before -this process. So this means some critical inconsistency in the data -source or software bug. -
- NOTIFY_OUT_INVALID_ADDRESS invalid address %1#%2: %3
-The notify_out library tried to send a notify message to the given -address, but it appears to be an invalid address. The configuration -for secondary nameservers might contain a typographic error, or a -different BIND 10 module has forgotten to validate its data before -sending this module a notify command. As such, this should normally -not happen, and points to an oversight in a different module. -
- NOTIFY_OUT_REPLY_BAD_OPCODE bad opcode in notify reply from %1#%2: %3
-The notify_out library sent a notify message to the nameserver at -the given address, but the response did not have the opcode set to -NOTIFY. The opcode in the response is printed. Since there was a -response, no more notifies will be sent to this server for this -notification event. -
- NOTIFY_OUT_REPLY_BAD_QID bad QID in notify reply from %1#%2: got %3, should be %4
-The notify_out library sent a notify message to the nameserver at -the given address, but the query id in the response does not match -the one we sent. Since there was a response, no more notifies will -be sent to this server for this notification event. -
- NOTIFY_OUT_REPLY_BAD_QUERY_NAME bad query name in notify reply from %1#%2: got %3, should be %4
-The notify_out library sent a notify message to the nameserver at -the given address, but the query name in the response does not match -the one we sent. Since there was a response, no more notifies will -be sent to this server for this notification event. -
- NOTIFY_OUT_REPLY_QR_NOT_SET QR flags set to 0 in reply to notify from %1#%2
-The notify_out library sent a notify message to the namesever at the -given address, but the reply did not have the QR bit set to one. -Since there was a response, no more notifies will be sent to this -server for this notification event. -
- NOTIFY_OUT_REPLY_UNCAUGHT_EXCEPTION uncaught exception: %1
-There was an uncaught exception in the handling of a notify reply -message, either in the message parser, or while trying to extract data -from the parsed message. The error is printed, and notify_out will -treat the response as a bad message, but this does point to a -programming error, since all exceptions should have been caught -explicitly. Please file a bug report. Since there was a response, -no more notifies will be sent to this server for this notification -event. -
- NOTIFY_OUT_RETRY_EXCEEDED notify to %1#%2: number of retries (%3) exceeded
-The maximum number of retries for the notify target has been exceeded. -Either the address of the secondary nameserver is wrong, or it is not -responding. -
- NOTIFY_OUT_SENDING_NOTIFY sending notify to %1#%2
-A notify message is sent to the secondary nameserver at the given -address. -
- NOTIFY_OUT_SOCKET_ERROR socket error sending notify to %1#%2: %3
-There was a network error while trying to send a notify message to -the given address. The address might be unreachable. The socket -error is printed and should provide more information. -
- NOTIFY_OUT_SOCKET_RECV_ERROR socket error reading notify reply from %1#%2: %3
-There was a network error while trying to read a notify reply -message from the given address. The socket error is printed and should -provide more information. -
- NOTIFY_OUT_TIMEOUT retry notify to %1#%2
-The notify message to the given address (noted as address#port) has -timed out, and the message will be resent until the max retry limit -is reached. -
- NOTIFY_OUT_ZONE_BAD_SOA Zone %1 is invalid in terms of SOA
-This is a warning issued when the notify_out module finds a zone that -doesn't have an SOA RR or has multiple SOA RRs. Notify message won't -be sent to such a zone. -
- NOTIFY_OUT_ZONE_NO_NS Zone %1 doesn't have NS RR
-This is a warning issued when the notify_out module finds a zone that -doesn't have an NS RR. Notify message won't be sent to such a zone. -
- NSAS_EMPTY_RESPONSE response to query for %1 returned an empty answer section
-The NSAS (nameserver address store - part of the resolver) made a query -for information it needed. The query completed successfully but the -answer section in the response was empty. -
- NSAS_ERROR_RESPONSE error response of %1 returned in query for %2
-The NSAS (nameserver address store - part of the resolver) made a query -for information it needed. The query completed successfully but the -RCODE in the response was something other than NOERROR. -
- NSAS_FIND_NS_ADDRESS asking resolver to obtain A and AAAA records for %1
-A debug message issued when the NSAS (nameserver address store - part -of the resolver) is making a callback into the resolver to retrieve the -address records for the specified nameserver. -
- NSAS_FOUND_ADDRESS found address %1 for %2
-A debug message issued when the NSAS (nameserver address store - part -of the resolver) has retrieved the given address for the specified -nameserver through an external query. -
- NSAS_LOOKUP_CANCEL lookup for zone %1 has been canceled
-A debug message issued when an NSAS (nameserver address store - part of -the resolver) lookup for a zone has been canceled. -
- NSAS_NS_LOOKUP_FAIL failed to lookup any %1 for %2
-A debug message issued when the NSAS (nameserver address store - part of -the resolver) has been unable to retrieve the specified resource record -for the specified nameserver. This is not necessarily a problem - the -nameserver may be unreachable, in which case the NSAS will try other -nameservers in the zone. -
- NSAS_NULL_RESPONSE got null message in success callback for query for %1
-The NSAS (nameserver address store - part of the resolver) made a query -for information it needed. The query completed successfully, but the -message passed to the callback was null. -
-This message indicates an internal error in the NSAS. Please raise a -bug report. -
- NSAS_SEARCH_ZONE_NS searching NSAS for nameservers for zone %1
-A debug message output when a call is made to the NSAS (nameserver -address store - part of the resolver) to obtain the nameservers for -the specified zone. -
- NSAS_UPDATE_RTT update RTT for %1: was %2 ms, is now %3 ms
-A NSAS (nameserver address store - part of the resolver) debug message -reporting the update of a round-trip time (RTT) for a query made to the -specified nameserver. The RTT has been updated using the value given -and the new RTT is displayed. (The RTT is subject to a calculation that -damps out sudden changes. As a result, the new RTT used by the NSAS in -future decisions of which nameserver to use is not necessarily equal to -the RTT reported.) -
- NSAS_WRONG_ANSWER queried for %1 RR of type/class %2/%3, received response %4/%5
-A NSAS (nameserver address store - part of the resolver) made a query for -a resource record of a particular type and class, but instead received -an answer with a different given type and class. -
-This message indicates an internal error in the NSAS. Please raise a -bug report. -
- PYSERVER_COMMON_DNS_TCP_SEND_DONE completed sending TCP message to %1 (%2 bytes in total)
-Debug message. A complete DNS message has been successfully -transmitted over a TCP connection, possibly after multiple send -operations. The destination address and the total size of the message -(including the 2-byte length field) are shown in the log message. -
- PYSERVER_COMMON_DNS_TCP_SEND_ERROR failed to send TCP message to %1 (%2/%3 bytes sent): %4
-A DNS message has been attempted to be sent out over a TCP connection, -but it failed due to some network error. Although it's not expected -to happen too often, it can still happen for various reasons. The -administrator may want to examine the cause of the failure, which is -included in the log message, to see if it requires some action to -be taken at the server side. When this message is logged, the -corresponding TCP connection was closed immediately after the error -was detected. -
- PYSERVER_COMMON_DNS_TCP_SEND_PENDING sent part TCP message to %1 (up to %2/%3 bytes)
-Debug message. A part of DNS message has been transmitted over a TCP -connection, and it's suspended because further attempt would block. -The destination address and the total size of the message that has -been transmitted so far (including the 2-byte length field) are shown -in the log message. -
- PYSERVER_COMMON_TSIG_KEYRING_DEINIT Deinitializing global TSIG keyring
-A debug message noting that the global TSIG keyring is being removed from -memory. Most programs don't do that, they just exit, which is OK. -
- PYSERVER_COMMON_TSIG_KEYRING_INIT Initializing global TSIG keyring
-A debug message noting the TSIG keyring storage is being prepared. It should -appear at most once in the lifetime of a program. The keyring still needs -to be loaded from configuration. -
- PYSERVER_COMMON_TSIG_KEYRING_UPDATE Updating global TSIG keyring
-A debug message. The TSIG keyring is being (re)loaded from configuration. -This happens at startup or when the configuration changes. The old keyring -is removed and new one created with all the keys. -
- RESLIB_ANSWER answer received in response to query for <%1>
-A debug message reporting that an answer has been received to an upstream -query for the specified question. Previous debug messages will have -indicated the server to which the question was sent. -
- RESLIB_CNAME CNAME received in response to query for <%1>
-A debug message recording that CNAME response has been received to an -upstream query for the specified question. Previous debug messages will -have indicated the server to which the question was sent. -
- RESLIB_DEEPEST did not find <%1> in cache, deepest delegation found is %2
-A debug message, a cache lookup did not find the specified <name, -class, type> tuple in the cache; instead, the deepest delegation found -is indicated. -
- RESLIB_EMPTY_RESPONSE empty response received to query for <%1>
-A debug message, the response to the specified query from an upstream -nameserver did not contain anything in the answer or authority sections, -although in all other respects it was a valid response. A SERVFAIL will -be returned to the system making the original query. -
- RESLIB_ERROR_RESPONSE unspecified error received in response to query for <%1>
-A debug message, the response to the specified query to an upstream -nameserver indicated that the response was classified as an erroneous -response, but that the nature of the error cannot be identified. -A SERVFAIL will be returned to the system making the original query. -
- RESLIB_EXTRADATA_RESPONSE extra data in response to query for <%1>
-A debug message indicating that the response to the specified query -from an upstream nameserver contained too much data. This can happen if -an ANY query was sent and the answer section in the response contained -multiple RRs with different names. A SERVFAIL will be returned to the -system making the original query. -
- RESLIB_FOLLOW_CNAME following CNAME chain to <%1>
-A debug message, a CNAME response was received and another query is -being issued for the <name, class, type> tuple. -
- RESLIB_INVALID_NAMECLASS_RESPONSE invalid name or class in response to query for <%1>
-A debug message, the response to the specified query from an upstream -nameserver (as identified by the ID of the response) contained either -an answer not matching the query name or an answer having a different -class to that queried for. A SERVFAIL will be returned to the system -making the original query. -
- RESLIB_INVALID_QNAME_RESPONSE invalid name or class in response to query for <%1>
-A debug message, the response to the specified query from an upstream -nameserver (as identified by the ID of the response) contained a name -in the question section that did not match that of the query. A SERVFAIL -will be returned to the system making the original query. -
- RESLIB_INVALID_TYPE_RESPONSE invalid name or class in response to query for <%1>
-A debug message, the response to the specified query from an upstream -nameserver (as identified by the ID of the response) contained an -invalid type field. A SERVFAIL will be returned to the system making -the original query. -
- RESLIB_LONG_CHAIN CNAME received in response to query for <%1>: CNAME chain length exceeded
-A debug message recording that a CNAME response has been received to an upstream -query for the specified question (Previous debug messages will have indicated -the server to which the question was sent). However, receipt of this CNAME -has meant that the resolver has exceeded the CNAME chain limit (a CNAME chain -is where on CNAME points to another) and so an error is being returned. -
- RESLIB_MULTIPLE_CLASS_RESPONSE response to query for <%1> contained multiple RRsets with different classes
-A debug message reporting that the response to an upstream query for -the specified name contained multiple RRsets in the answer and not all -were of the same class. This is a violation of the standard and so a -SERVFAIL will be returned. -
- RESLIB_NOTSINGLE_RESPONSE response to query for <%1> was not a response
-A debug message, the response to the specified query from an upstream -nameserver was a CNAME that had mutiple RRs in the RRset. This is -an invalid response according to the standards so a SERVFAIL will be -returned to the system making the original query. -
- RESLIB_NOT_ONE_QNAME_RESPONSE not one question in response to query for <%1>
-A debug message, the response to the specified query from an upstream -nameserver (as identified by the ID of the response) did not contain -one name in the question section as required by the standard. A SERVFAIL -will be returned to the system making the original query. -
- RESLIB_NOT_RESPONSE response to query for <%1> was not a response
-A debug message, the response to the specified query from an upstream -nameserver (as identified by the ID of the response) did not have the QR -bit set (thus indicating that the packet was a query, not a response). -A SERVFAIL will be returned to the system making the original query. -
- RESLIB_NO_NS_RRSET no NS RRSet in referral response received to query for <%1>
-A debug message, this indicates that a response was received for the specified -query and was categorized as a referral. However, the received message did -not contain any NS RRsets. This may indicate a programming error in the -response classification code. -
- RESLIB_NSAS_LOOKUP looking up nameserver for zone %1 in the NSAS
-A debug message, the RunningQuery object is querying the NSAS for the -nameservers for the specified zone. -
- RESLIB_NXDOM_NXRR NXDOMAIN/NXRRSET received in response to query for <%1>
-A debug message recording that either a NXDOMAIN or an NXRRSET response has -been received to an upstream query for the specified question. Previous debug -messages will have indicated the server to which the question was sent. -
- RESLIB_OPCODE_RESPONSE response to query for <%1> did not have query opcode
-A debug message, the response to the specified query from an upstream -nameserver was a response that did not have the opcode set to that of -a query. According to the standards, this is an invalid response to -the query that was made, so a SERVFAIL will be returned to the system -making the original query. -
- RESLIB_PROTOCOL protocol error in answer for %1: %3
-A debug message indicating that a protocol error was received. As there -are no retries left, an error will be reported. -
- RESLIB_PROTOCOL_RETRY protocol error in answer for %1: %2 (retries left: %3)
-A debug message indicating that a protocol error was received and that -the resolver is repeating the query to the same nameserver. After this -repeated query, there will be the indicated number of retries left. -
- RESLIB_RCODE_ERROR response to query for <%1> returns RCODE of %2
-A debug message, the response to the specified query indicated an error -that is not covered by a specific code path. A SERVFAIL will be returned. -
- RESLIB_RECQ_CACHE_FIND found <%1> in the cache (resolve() instance %2)
-This is a debug message and indicates that a RecursiveQuery object found the -the specified <name, class, type> tuple in the cache. The instance number -at the end of the message indicates which of the two resolve() methods has -been called. -
- RESLIB_RECQ_CACHE_NO_FIND did not find <%1> in the cache, starting RunningQuery (resolve() instance %2)
-This is a debug message and indicates that the look in the cache made by the -RecursiveQuery::resolve() method did not find an answer, so a new RunningQuery -object has been created to resolve the question. The instance number at -the end of the message indicates which of the two resolve() methods has -been called. -
- RESLIB_REFERRAL referral received in response to query for <%1>
-A debug message recording that a referral response has been received to an -upstream query for the specified question. Previous debug messages will -have indicated the server to which the question was sent. -
- RESLIB_REFER_ZONE referred to zone %1
-A debug message indicating that the last referral message was to the specified -zone. -
- RESLIB_RESOLVE asked to resolve <%1> (resolve() instance %2)
-A debug message, the RecursiveQuery::resolve method has been called to resolve -the specified <name, class, type> tuple. The first action will be to lookup -the specified tuple in the cache. The instance number at the end of the -message indicates which of the two resolve() methods has been called. -
- RESLIB_RRSET_FOUND found single RRset in the cache when querying for <%1> (resolve() instance %2)
-A debug message, indicating that when RecursiveQuery::resolve queried the -cache, a single RRset was found which was put in the answer. The instance -number at the end of the message indicates which of the two resolve() -methods has been called. -
- RESLIB_RTT round-trip time of last query calculated as %1 ms
-A debug message giving the round-trip time of the last query and response. -
- RESLIB_RUNQ_CACHE_FIND found <%1> in the cache
-This is a debug message and indicates that a RunningQuery object found -the specified <name, class, type> tuple in the cache. -
- RESLIB_RUNQ_CACHE_LOOKUP looking up up <%1> in the cache
-This is a debug message and indicates that a RunningQuery object has made -a call to its doLookup() method to look up the specified <name, class, type> -tuple, the first action of which will be to examine the cache. -
- RESLIB_RUNQ_FAIL failure callback - nameservers are unreachable
-A debug message indicating that a RunningQuery's failure callback has been -called because all nameservers for the zone in question are unreachable. -
- RESLIB_RUNQ_SUCCESS success callback - sending query to %1
-A debug message indicating that a RunningQuery's success callback has been -called because a nameserver has been found, and that a query is being sent -to the specified nameserver. -
- RESLIB_TCP_TRUNCATED TCP response to query for %1 was truncated
-This is a debug message logged when a response to the specified query to an -upstream nameserver returned a response with the TC (truncation) bit set. This -is treated as an error by the code. -
- RESLIB_TEST_SERVER setting test server to %1(%2)
-This is a warning message only generated in unit tests. It indicates -that all upstream queries from the resolver are being routed to the -specified server, regardless of the address of the nameserver to which -the query would normally be routed. If seen during normal operation, -please submit a bug report. -
- RESLIB_TEST_UPSTREAM sending upstream query for <%1> to test server at %2
-This is a debug message and should only be seen in unit tests. A query for -the specified <name, class, type> tuple is being sent to a test nameserver -whose address is given in the message. -
- RESLIB_TIMEOUT query <%1> to %2 timed out
-A debug message indicating that the specified upstream query has timed out and -there are no retries left. -
- RESLIB_TIMEOUT_RETRY query <%1> to %2 timed out, re-trying (retries left: %3)
-A debug message indicating that the specified query has timed out and that -the resolver is repeating the query to the same nameserver. After this -repeated query, there will be the indicated number of retries left. -
- RESLIB_TRUNCATED response to query for <%1> was truncated, re-querying over TCP
-A debug message, this indicates that the response to the specified query was -truncated and that the resolver will be re-querying over TCP. There are -various reasons why responses may be truncated, so this message is normal and -gives no cause for concern. -
- RESLIB_UPSTREAM sending upstream query for <%1> to %2
-A debug message indicating that a query for the specified <name, class, type> -tuple is being sent to a nameserver whose address is given in the message. -
- RESOLVER_AXFR_TCP AXFR request received over TCP
-This is a debug message output when the resolver received a request for -an AXFR (full transfer of a zone) over TCP. Only authoritative servers -are able to handle AXFR requests, so the resolver will return an error -message to the sender with the RCODE set to NOTIMP. -
- RESOLVER_AXFR_UDP AXFR request received over UDP
-This is a debug message output when the resolver received a request for -an AXFR (full transfer of a zone) over UDP. Only authoritative servers -are able to handle AXFR requests (and in any case, an AXFR request should -be sent over TCP), so the resolver will return an error message to the -sender with the RCODE set to NOTIMP. -
- RESOLVER_CLIENT_TIME_SMALL client timeout of %1 is too small
-During the update of the resolver's configuration parameters, the value -of the client timeout was found to be too small. The configuration -update was abandoned and the parameters were not changed. -
- RESOLVER_CONFIG_CHANNEL configuration channel created
-This is a debug message output when the resolver has successfully -established a connection to the configuration channel. -
- RESOLVER_CONFIG_ERROR error in configuration: %1
-An error was detected in a configuration update received by the -resolver. This may be in the format of the configuration message (in -which case this is a programming error) or it may be in the data supplied -(in which case it is a user error). The reason for the error, included -in the message, will give more details. The configuration update is -not applied and the resolver parameters were not changed. -
- RESOLVER_CONFIG_LOADED configuration loaded
-This is a debug message output when the resolver configuration has been -successfully loaded. -
- RESOLVER_CONFIG_UPDATED configuration updated: %1
-This is a debug message output when the resolver configuration is being -updated with the specified information. -
- RESOLVER_CREATED main resolver object created
-This is a debug message indicating that the main resolver object has -been created. -
- RESOLVER_DNS_MESSAGE_RECEIVED DNS message received: %1
-This is a debug message from the resolver listing the contents of a -received DNS message. -
- RESOLVER_DNS_MESSAGE_SENT DNS message of %1 bytes sent: %2
-This is a debug message containing details of the response returned by -the resolver to the querying system. -
- RESOLVER_FAILED resolver failed, reason: %1
-This is an error message output when an unhandled exception is caught -by the resolver. After this, the resolver will shut itself down. -Please submit a bug report. -
- RESOLVER_FORWARD_ADDRESS setting forward address %1(%2)
-If the resolver is running in forward mode, this message will appear -during startup to list the forward address. If multiple addresses are -specified, it will appear once for each address. -
- RESOLVER_FORWARD_QUERY processing forward query
-This is a debug message indicating that a query received by the resolver -has passed a set of checks (message is well-formed, it is allowed by the -ACL, it is a supported opcode, etc.) and is being forwarded to upstream -servers. -
- RESOLVER_HEADER_ERROR message received, exception when processing header: %1
-This is a debug message from the resolver noting that an exception -occurred during the processing of a received packet. The packet has -been dropped. -
- RESOLVER_IXFR IXFR request received
-This is a debug message indicating that the resolver received a request -for an IXFR (incremental transfer of a zone). Only authoritative servers -are able to handle IXFR requests, so the resolver will return an error -message to the sender with the RCODE set to NOTIMP. -
- RESOLVER_LOOKUP_TIME_SMALL lookup timeout of %1 is too small
-During the update of the resolver's configuration parameters, the value -of the lookup timeout was found to be too small. The configuration -update will not be applied. -
- RESOLVER_MESSAGE_ERROR error parsing received message: %1 - returning %2
-This is a debug message noting that parsing of the body of a received -message by the resolver failed due to some error (although the parsing of -the header succeeded). The message parameters give a textual description -of the problem and the RCODE returned. -
- RESOLVER_NEGATIVE_RETRIES negative number of retries (%1) specified in the configuration
-This error is issued when a resolver configuration update has specified -a negative retry count: only zero or positive values are valid. The -configuration update was abandoned and the parameters were not changed. -
- RESOLVER_NON_IN_PACKET non-IN class request received, returning REFUSED message
-This debug message is issued when resolver has received a DNS packet that -was not IN (Internet) class. The resolver cannot handle such packets, -so is returning a REFUSED response to the sender. -
- RESOLVER_NORMAL_QUERY processing normal query
-This is a debug message indicating that the query received by the resolver -has passed a set of checks (message is well-formed, it is allowed by the -ACL, it is a supported opcode, etc.) and is being processed by the resolver. -
- RESOLVER_NOTIFY_RECEIVED NOTIFY arrived but server is not authoritative
-The resolver has received a NOTIFY message. As the server is not -authoritative it cannot process it, so it returns an error message to -the sender with the RCODE set to NOTAUTH. -
- RESOLVER_NOT_ONE_QUESTION query contained %1 questions, exactly one question was expected
-This debug message indicates that the resolver received a query that -contained the number of entries in the question section detailed in -the message. This is a malformed message, as a DNS query must contain -only one question. The resolver will return a message to the sender -with the RCODE set to FORMERR. -
- RESOLVER_NO_ROOT_ADDRESS no root addresses available
-A warning message issued during resolver startup, this indicates that -no root addresses have been set. This may be because the resolver will -get them from a priming query. -
- RESOLVER_PARSE_ERROR error parsing received message: %1 - returning %2
-This is a debug message noting that the resolver received a message and -the parsing of the body of the message failed due to some non-protocol -related reason (although the parsing of the header succeeded). -The message parameters give a textual description of the problem and -the RCODE returned. -
- RESOLVER_PRINT_COMMAND print message command, arguments are: %1
-This debug message is logged when a "print_message" command is received -by the resolver over the command channel. -
- RESOLVER_PROTOCOL_ERROR protocol error parsing received message: %1 - returning %2
-This is a debug message noting that the resolver received a message and -the parsing of the body of the message failed due to some protocol error -(although the parsing of the header succeeded). The message parameters -give a textual description of the problem and the RCODE returned. -
- RESOLVER_QUERY_ACCEPTED query accepted: '%1/%2/%3' from %4
-This debug message is produced by the resolver when an incoming query -is accepted in terms of the query ACL. The log message shows the query -in the form of <query name>/<query type>/<query class>, and the client -that sends the query in the form of <Source IP address>#<source port>. -
- RESOLVER_QUERY_DROPPED query dropped: '%1/%2/%3' from %4
-This is an informational message that indicates an incoming query has -been dropped by the resolver because of the query ACL. Unlike the -RESOLVER_QUERY_REJECTED case, the server does not return any response. -The log message shows the query in the form of <query name>/<query -type>/<query class>, and the client that sends the query in the form of -<Source IP address>#<source port>. -
- RESOLVER_QUERY_REJECTED query rejected: '%1/%2/%3' from %4
-This is an informational message that indicates an incoming query has -been rejected by the resolver because of the query ACL. This results -in a response with an RCODE of REFUSED. The log message shows the query -in the form of <query name>/<query type>/<query class>, and the client -that sends the query in the form of <Source IP address>#<source port>. -
- RESOLVER_QUERY_SETUP query setup
-This is a debug message noting that the resolver is creating a -RecursiveQuery object. -
- RESOLVER_QUERY_SHUTDOWN query shutdown
-This is a debug message noting that the resolver is destroying a -RecursiveQuery object. -
- RESOLVER_QUERY_TIME_SMALL query timeout of %1 is too small
-During the update of the resolver's configuration parameters, the value -of the query timeout was found to be too small. The configuration -parameters were not changed. -
- RESOLVER_RECEIVED_MESSAGE resolver has received a DNS message
-This is a debug message indicating that the resolver has received a -DNS message. Depending on the debug settings, subsequent log output -will indicate the nature of the message. -
- RESOLVER_RECURSIVE running in recursive mode
-This is an informational message that appears at startup noting that -the resolver is running in recursive mode. -
- RESOLVER_SERVICE_CREATED service object created
-This debug message is output when resolver creates the main service object -(which handles the received queries). -
- RESOLVER_SET_PARAMS query timeout: %1, client timeout: %2, lookup timeout: %3, retry count: %4
-This debug message lists the parameters being set for the resolver. These are: -query timeout: the timeout (in ms) used for queries originated by the resolver -to upstream servers. Client timeout: the interval to resolve a query by -a client: after this time, the resolver sends back a SERVFAIL to the client -whilst continuing to resolve the query. Lookup timeout: the time at which the -resolver gives up trying to resolve a query. Retry count: the number of times -the resolver will retry a query to an upstream server if it gets a timeout. -
-The client and lookup timeouts require a bit more explanation. The -resolution of the client query might require a large number of queries to -upstream nameservers. Even if none of these queries timeout, the total time -taken to perform all the queries may exceed the client timeout. When this -happens, a SERVFAIL is returned to the client, but the resolver continues -with the resolution process; data received is added to the cache. However, -there comes a time - the lookup timeout - when even the resolver gives up. -At this point it will wait for pending upstream queries to complete or -timeout and drop the query. -
- RESOLVER_SET_QUERY_ACL query ACL is configured
-This debug message is generated when a new query ACL is configured for -the resolver. -
- RESOLVER_SET_ROOT_ADDRESS setting root address %1(%2)
-This message gives the address of one of the root servers used by the -resolver. It is output during startup and may appear multiple times, -once for each root server address. -
- RESOLVER_SHUTDOWN resolver shutdown complete
-This informational message is output when the resolver has shut down. -
- RESOLVER_SHUTDOWN_RECEIVED received command to shut down
-A debug message noting that the server was asked to terminate and is -complying to the request. -
- RESOLVER_STARTED resolver started
-This informational message is output by the resolver when all initialization -has been completed and it is entering its main loop. -
- RESOLVER_STARTING starting resolver with command line '%1'
-An informational message, this is output when the resolver starts up. -
- RESOLVER_UNEXPECTED_RESPONSE received unexpected response, ignoring
-This is a debug message noting that the resolver received a DNS response -packet on the port on which is it listening for queries. The packet -has been ignored. -
- RESOLVER_UNSUPPORTED_OPCODE opcode %1 not supported by the resolver
-This is debug message output when the resolver received a message with an -unsupported opcode (it can only process QUERY opcodes). It will return -a message to the sender with the RCODE set to NOTIMP. -
- SOCKETREQUESTOR_CREATED Socket requestor created for application %1
-Debug message. A socket requesor (client of the socket creator) is created -for the corresponding application. Normally this should happen at most -one time throughout the lifetime of the application. -
- SOCKETREQUESTOR_DESTROYED Socket requestor destoryed
-Debug message. The socket requestor created at SOCKETREQUESTOR_CREATED -has been destroyed. This event is generally unexpected other than in -test cases. -
- SOCKETREQUESTOR_GETSOCKET Received a %1 socket for [%2]:%3, FD=%4, token=%5, path=%6
-Debug message. The socket requestor for the corresponding application -has requested a socket for a set of address, port and protocol (shown -in the log message) and successfully got it from the creator. The -corresponding file descriptor and the associated "token" (an internal -ID used between the creator and requestor) are shown in the log -message. -
- SOCKETREQUESTOR_RELEASESOCKET Released a socket of token %1
-Debug message. The socket requestor has released a socket passed by -the creator. The associated token of the socket is shown in the -log message. If the corresponding SOCKETREQUESTOR_GETSOCKET was logged -more detailed information of the socket can be identified by matching -the token. -
- SRVCOMM_ADDRESSES_NOT_LIST the address and port specification is not a list in %1
-This points to an error in configuration. What was supposed to be a list of -IP address - port pairs isn't a list at all but something else. -
- SRVCOMM_ADDRESS_FAIL failed to listen on addresses (%1)
-The server failed to bind to one of the address/port pair it should according -to configuration, for reason listed in the message (usually because that pair -is already used by other service or missing privileges). The server will try -to recover and bind the address/port pairs it was listening to before (if any). -
- SRVCOMM_ADDRESS_MISSING address specification is missing "address" or "port" element in %1
-This points to an error in configuration. An address specification in the -configuration is missing either an address or port and so cannot be used. The -specification causing the error is given in the message. -
- SRVCOMM_ADDRESS_TYPE address specification type is invalid in %1
-This points to an error in configuration. An address specification in the -configuration malformed. The specification causing the error is given in the -message. A valid specification contains an address part (which must be a string -and must represent a valid IPv4 or IPv6 address) and port (which must be an -integer in the range valid for TCP/UDP ports on your system). -
- SRVCOMM_ADDRESS_UNRECOVERABLE failed to recover original addresses also (%1)
-The recovery of old addresses after SRVCOMM_ADDRESS_FAIL also failed for -the reason listed. -
-The condition indicates problems with the server and/or the system on -which it is running. The server will continue running to allow -reconfiguration, but will not be listening on any address or port until -an administrator does so. -
- SRVCOMM_ADDRESS_VALUE address to set: %1#%2
-Debug message. This lists one address and port value of the set of -addresses we are going to listen on (eg. there will be one log message -per pair). This appears only after SRVCOMM_SET_LISTEN, but might -be hidden, as it has higher debug level. -
- SRVCOMM_EXCEPTION_ALLOC exception when allocating a socket: %1
-The process tried to allocate a socket using the socket creator, but an error -occurred. But it is not one of the errors we are sure are "safe". In this case -it is unclear if the unsuccessful communication left the process and the bind10 -process in inconsistent state, so the process is going to abort to prevent -further problems in that area. -
-This is probably a bug in the code, but it could be caused by other unusual -conditions (like insufficient memory, deleted socket file used for -communication). -
- SRVCOMM_KEYS_DEINIT deinitializing TSIG keyring
-Debug message indicating that the server is deinitializing the TSIG keyring. -
- SRVCOMM_KEYS_INIT initializing TSIG keyring
-Debug message indicating that the server is initializing the global TSIG -keyring. This should be seen only at server start. -
- SRVCOMM_KEYS_UPDATE updating TSIG keyring
-Debug message indicating new keyring is being loaded from configuration (either -on startup or as a result of configuration update). -
- SRVCOMM_PORT_RANGE port out of valid range (%1 in %2)
-This points to an error in configuration. The port in an address -specification is outside the valid range of 0 to 65535. -
- SRVCOMM_SET_LISTEN setting addresses to listen to
-Debug message, noting that the server is about to start listening on a -different set of IP addresses and ports than before. -
- SRVCOMM_UNKNOWN_EXCEPTION_ALLOC unknown exception when allocating a socket
-The situation is the same as in the SRVCOMM_EXCEPTION_ALLOC case, but further -details about the error are unknown, because it was signaled by throwing -something not being an exception. This is definitely a bug. -
- STATHTTPD_BAD_OPTION_VALUE bad command line argument: %1
-The stats-httpd module was called with a bad command-line argument -and will not start. -
- STATHTTPD_CC_SESSION_ERROR error connecting to message bus: %1
-The stats-httpd module was unable to connect to the BIND 10 command -and control bus. A likely problem is that the message bus daemon -(b10-msgq) is not running. The stats-httpd module will now shut down. -
- STATHTTPD_CLOSING closing %1#%2
-The stats-httpd daemon will stop listening for requests on the given -address and port number. -
- STATHTTPD_CLOSING_CC_SESSION stopping cc session
-Debug message indicating that the stats-httpd module is disconnecting -from the command and control bus. -
- STATHTTPD_HANDLE_CONFIG reading configuration: %1
-The stats-httpd daemon has received new configuration data and will now -process it. The (changed) data is printed. -
- STATHTTPD_RECEIVED_SHUTDOWN_COMMAND shutdown command received
-A shutdown command was sent to the stats-httpd module, and it will -now shut down. -
- STATHTTPD_RECEIVED_STATUS_COMMAND received command to return status
-A status command was sent to the stats-httpd module, and it will -respond with 'Stats Httpd is up.' and its PID. -
- STATHTTPD_RECEIVED_UNKNOWN_COMMAND received unknown command: %1
-An unknown command has been sent to the stats-httpd module. The -stats-httpd module will respond with an error, and the command will -be ignored. -
- STATHTTPD_SERVER_DATAERROR HTTP server data error: %1
-An internal error occurred while handling an HTTP request. An HTTP 404 -response will be sent back, and the specific error is printed. This -is an error condition that likely points the specified data -corresponding to the requested URI is incorrect. -
- STATHTTPD_SERVER_ERROR HTTP server error: %1
-An internal error occurred while handling an HTTP request. An HTTP 500 -response will be sent back, and the specific error is printed. This -is an error condition that likely points to a module that is not -responding correctly to statistic requests. -
- STATHTTPD_SERVER_INIT_ERROR HTTP server initialization error: %1
-There was a problem initializing the HTTP server in the stats-httpd -module upon receiving its configuration data. The most likely cause -is a port binding problem or a bad configuration value. The specific -error is printed in the message. The new configuration is ignored, -and an error is sent back. -
- STATHTTPD_SHUTDOWN shutting down
-The stats-httpd daemon is shutting down. -
- STATHTTPD_STARTED listening on %1#%2
-The stats-httpd daemon will now start listening for requests on the -given address and port number. -
- STATHTTPD_STARTING_CC_SESSION starting cc session
-Debug message indicating that the stats-httpd module is connecting to -the command and control bus. -
- STATHTTPD_START_SERVER_INIT_ERROR HTTP server initialization error: %1
-There was a problem initializing the HTTP server in the stats-httpd -module upon startup. The most likely cause is that it was not able -to bind to the listening port. The specific error is printed, and the -module will shut down. -
- STATHTTPD_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the stats-httpd -daemon. The daemon will now shut down. -
- STATHTTPD_UNKNOWN_CONFIG_ITEM unknown configuration item: %1
-The stats-httpd daemon received a configuration update from the -configuration manager. However, one of the items in the -configuration is unknown. The new configuration is ignored, and an -error is sent back. As possible cause is that there was an upgrade -problem, and the stats-httpd version is out of sync with the rest of -the system. -
- STATS_BAD_OPTION_VALUE bad command line argument: %1
-The stats module was called with a bad command-line argument and will -not start. -
- STATS_CC_SESSION_ERROR error connecting to message bus: %1
-The stats module was unable to connect to the BIND 10 command and -control bus. A likely problem is that the message bus daemon -(b10-msgq) is not running. The stats module will now shut down. -
- STATS_RECEIVED_NEW_CONFIG received new configuration: %1
-This debug message is printed when the stats module has received a -configuration update from the configuration manager. -
- STATS_RECEIVED_SHOWSCHEMA_ALL_COMMAND received command to show all statistics schema
-The stats module received a command to show all statistics schemas of all modules. -
- STATS_RECEIVED_SHOWSCHEMA_NAME_COMMAND received command to show statistics schema for %1
-The stats module received a command to show the specified statistics schema of the specified module. -
- STATS_RECEIVED_SHOW_ALL_COMMAND received command to show all statistics
-The stats module received a command to show all statistics that it has -collected. -
- STATS_RECEIVED_SHOW_NAME_COMMAND received command to show statistics for %1
-The stats module received a command to show the statistics that it has -collected for the given item. -
- STATS_RECEIVED_SHUTDOWN_COMMAND shutdown command received
-A shutdown command was sent to the stats module and it will now shut down. -
- STATS_RECEIVED_STATUS_COMMAND received command to return status
-A status command was sent to the stats module. It will return a -response indicating that it is running normally. -
- STATS_RECEIVED_UNKNOWN_COMMAND received unknown command: %1
-An unknown command has been sent to the stats module. The stats module -will respond with an error and the command will be ignored. -
- STATS_SEND_REQUEST_BOSS requesting boss to send statistics
-This debug message is printed when a request is sent to the boss module -to send its data to the stats module. -
- STATS_STARTING starting
-The stats module will be now starting. -
- STATS_START_ERROR stats module error: %1
-An internal error occurred while starting the stats module. The stats -module will be now shutting down. -
- STATS_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the stats module. The -daemon will now shut down. -
- STATS_UNKNOWN_COMMAND_IN_SPEC unknown command in specification file: %1
-The specification file for the stats module contains a command that -is unknown in the implementation. The most likely cause is an -installation problem, where the specification file stats.spec is -from a different version of BIND 10 than the stats module itself. -Please check your installation. -
- XFRIN_AUTH_LOADZONE sending Auth loadzone for origin=%1, class=%2
-There was a successful zone transfer. We send the "loadzone" command for the -zone to b10-auth. -
- XFRIN_AXFR_INCONSISTENT_SOA AXFR SOAs are inconsistent for %1: %2 expected, %3 received
-The serial fields of the first and last SOAs of AXFR (including AXFR-style -IXFR) are not the same. According to RFC 5936 these two SOAs must be the -"same" (not only for the serial), but it is still not clear what the -receiver should do if this condition does not hold. There was a discussion -about this at the IETF dnsext wg: -http://www.ietf.org/mail-archive/web/dnsext/current/msg07908.html -and the general feeling seems that it would be better to reject the -transfer if a mismatch is detected. On the other hand, also as noted -in that email thread, neither BIND 9 nor NSD performs any comparison -on the SOAs. For now, we only check the serials (ignoring other fields) -and only leave a warning log message when a mismatch is found. If it -turns out to happen with a real world primary server implementation -and that server actually feeds broken data (e.g. mixed versions of -zone), we can consider a stricter action. -
- XFRIN_BAD_MASTER_ADDR_FORMAT bad format for master address: %1
-The given master address is not a valid IP address. -
- XFRIN_BAD_MASTER_PORT_FORMAT bad format for master port: %1
-The master port as read from the configuration is not a valid port number. -
- XFRIN_BAD_TSIG_KEY_STRING bad TSIG key string: %1
-The TSIG key string as read from the configuration does not represent -a valid TSIG key. -
- XFRIN_BAD_ZONE_CLASS Invalid zone class: %1
-The zone class as read from the configuration is not a valid DNS class. -
- XFRIN_CC_SESSION_ERROR error reading from cc channel: %1
-There was a problem reading from the command and control channel. The -most likely cause is that xfrin the msgq daemon is not running. -
- XFRIN_COMMAND_ERROR error while executing command '%1': %2
-There was an error while the given command was being processed. The -error is given in the log message. -
- XFRIN_CONNECT_MASTER error connecting to master at %1: %2
-There was an error opening a connection to the master. The error is -shown in the log message. -
- XFRIN_GOT_INCREMENTAL_RESP got incremental response for %1
-In an attempt of IXFR processing, the begenning SOA of the first difference -(following the initial SOA that specified the final SOA for all the -differences) was found. This means a connection for xfrin tried IXFR -and really aot a response for incremental updates. -
- XFRIN_GOT_NONINCREMENTAL_RESP got nonincremental response for %1
-Non incremental transfer was detected at the "first data" of a transfer, -which is the RR following the initial SOA. Non incremental transfer is -either AXFR or AXFR-style IXFR. In the latter case, it means that -in a response to IXFR query the first data is not SOA or its SOA serial -is not equal to the requested SOA serial. -
- XFRIN_IMPORT_DNS error importing python DNS module: %1
-There was an error importing the python DNS module pydnspp. The most -likely cause is a PYTHONPATH problem. -
- XFRIN_IXFR_TRANSFER_SUCCESS incremental IXFR transfer of zone %1 succeeded (messages: %2, changesets: %3, deletions: %4, additions: %5, bytes: %6, run time: %7 seconds, %8 bytes/second)
-The IXFR transfer for the given zone was successful. -The provided information contains the following values: -
-messages: Number of overhead DNS messages in the transfer. -
-changesets: Number of difference sequences. -
-deletions: Number of Resource Records deleted by all the changesets combined, -including the SOA records. -
-additions: Number of Resource Records added by all the changesets combined, -including the SOA records. -
-bytes: Full size of the transfer data on the wire. -
-run time: Time (in seconds) the complete ixfr took. -
-bytes/second: Transfer speed. -
-Note that there is no cross-checking of additions and deletions; if the same -RR gets added and deleted in multiple changesets, it is counted each time; -therefore, for each changeset, there should at least be 1 deletion and 1 -addition (the updated SOA record). -
- XFRIN_IXFR_UPTODATE IXFR requested serial for %1 is %2, master has %3, not updating
-The first SOA record in an IXFR response indicates the zone's serial -at the primary server is not newer than the client's. This is -basically unexpected event because normally the client first checks -the SOA serial by an SOA query, but can still happen if the transfer -is manually invoked or (although unlikely) there is a rapid change at -the primary server between the SOA and IXFR queries. The client -implementation confirms the whole response is this single SOA, and -aborts the transfer just like a successful case. -
- XFRIN_MSGQ_SEND_ERROR error while contacting %1 and %2
-There was a problem sending a message to the xfrout module or the -zone manager. This most likely means that the msgq daemon has quit or -was killed. -
- XFRIN_MSGQ_SEND_ERROR_AUTH error while contacting %1
-There was a problem sending a message to b10-auth. This most likely -means that the msgq daemon has quit or was killed. -
- XFRIN_MSGQ_SEND_ERROR_ZONE_MANAGER error while contacting %1
-There was a problem sending a message to the zone manager. This most -likely means that the msgq daemon has quit or was killed. -
- XFRIN_NOTIFY_UNKNOWN_MASTER got notification to retransfer zone %1 from %2, expected %3
-The system received a notify for the given zone, but the address it came -from does not match the master address in the Xfrin configuration. The notify -is ignored. This may indicate that the configuration for the master is wrong, -that a wrong machine is sending notifies, or that fake notifies are being sent. -
- XFRIN_RETRANSFER_UNKNOWN_ZONE got notification to retransfer unknown zone %1
-There was an internal command to retransfer the given zone, but the -zone is not known to the system. This may indicate that the configuration -for xfrin is incomplete, or there was a typographical error in the -zone name in the configuration. -
- XFRIN_STARTED xfrin started
-This informational message is output by xfrin when all initialization -has been completed and it is entering its main loop. -
- XFRIN_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the xfrin daemon. The -daemon will now shut down. -
- XFRIN_TRANSFER_SUCCESS full %1 transfer of zone %2 succeeded (messages: %3, records: %4, bytes: %5, run time: %6 seconds, %7 bytes/second)
-The AXFR transfer of the given zone was successful. -The provided information contains the following values: -
-messages: Number of overhead DNS messages in the transfer -
-records: Number of Resource Records in the full transfer, excluding the -final SOA record that marks the end of the AXFR. -
-bytes: Full size of the transfer data on the wire. -
-run time: Time (in seconds) the complete axfr took -
-bytes/second: Transfer speed -
- XFRIN_UNKNOWN_ERROR unknown error: %1
-An uncaught exception was raised while running the xfrin daemon. The -exception message is printed in the log message. -
- XFRIN_XFR_OTHER_FAILURE %1 transfer of zone %2 failed: %3
-The XFR transfer for the given zone has failed due to a problem outside -of the xfrin module. Possible reasons are a broken DNS message or failure -in database connection. The error is shown in the log message. -
- XFRIN_XFR_PROCESS_FAILURE %1 transfer of zone %2/%3 failed: %4
-An XFR session failed outside the main protocol handling. This -includes an error at the data source level at the initialization -phase, unexpected failure in the network connection setup to the -master server, or even more unexpected failure due to unlikely events -such as memory allocation failure. Details of the error are shown in -the log message. In general, these errors are not really expected -ones, and indicate an installation error or a program bug. The -session handler thread tries to clean up all intermediate resources -even on these errors, but it may be incomplete. So, if this log -message continuously appears, system resource consumption should be -checked, and you may even want to disable the corresponding transfers. -You may also want to file a bug report if this message appears so -often. -
- XFRIN_XFR_TRANSFER_FAILURE %1 transfer of zone %2 with %3 failed: %4
-The XFR transfer for the given zone has failed due to an internal error. -The error is shown in the log message. -
- XFRIN_XFR_TRANSFER_FALLBACK falling back from IXFR to AXFR for %1
-The IXFR transfer of the given zone failed. This might happen in many cases, -such that the remote server doesn't support IXFR, we don't have the SOA record -(or the zone at all), we are out of sync, etc. In many of these situations, -AXFR could still work. Therefore we try that one in case it helps. -
- XFRIN_XFR_TRANSFER_PROTOCOL_ERROR %1 transfer of zone %2 with %3 failed: %4
-The XFR transfer for the given zone has failed due to a protocol -error, such as an unexpected response from the primary server. The -error is shown in the log message. It may be because the primary -server implementation is broken or (although less likely) there was -some attack attempt, but it can also happen due to configuration -mismatch such as the remote server does not have authority for the -zone any more but the local configuration hasn't been updated. So it -is recommended to check the primary server configuration. -
- XFRIN_XFR_TRANSFER_STARTED %1 transfer of zone %2 started
-A connection to the master server has been made, the serial value in -the SOA record has been checked, and a zone transfer has been started. -
- XFRIN_ZONE_CREATED Zone %1 not found in the given data source, newly created
-On starting an xfrin session, it is identified that the zone to be -transferred is not found in the data source. This can happen if a -secondary DNS server first tries to perform AXFR from a primary server -without creating the zone image beforehand (e.g. by b10-loadzone). As -of this writing the xfrin process provides backward compatible -behavior to previous versions: creating a new one in the data source -not to surprise existing users too much. This is probably not a good -idea, however, in terms of who should be responsible for managing -zones at a higher level. In future it is more likely that a separate -zone management framework is provided, and the situation where the -given zone isn't found in xfrout will be treated as an error. -
- XFRIN_ZONE_MULTIPLE_SOA Zone %1 has %2 SOA RRs
-On starting an xfrin session, it is identified that the zone to be -transferred has multiple SOA RRs. Such a zone is broken, but could be -accidentally configured especially in a data source using "non -captive" backend database. The implementation ignores entire SOA RRs -and tries to continue processing as if the zone were empty. This -means subsequent AXFR can succeed and possibly replace the zone with -valid content, but an IXFR attempt will fail. -
- XFRIN_ZONE_NO_SOA Zone %1 does not have SOA
-On starting an xfrin session, it is identified that the zone to be -transferred does not have an SOA RR in the data source. This is not -necessarily an error; if a secondary DNS server first tries to perform -transfer from a primary server, the zone can be empty, and therefore -doesn't have an SOA. Subsequent AXFR will fill in the zone; if the -attempt is IXFR it will fail in query creation. -
- XFRIN_ZONE_SERIAL_AHEAD Serial number (%1) for %2 received from master %3 < ours (%4)
-The response to an SOA query prior to xfr indicated that the zone's -SOA serial at the primary server is smaller than that of the xfrin -client. This is not necessarily an error especially if that -particular primary server is another secondary server which hasn't got -the latest version of the zone. But if the primary server is known to -be the real source of the zone, some unexpected inconsistency may have -happened, and you may want to take a closer look. In this case xfrin -doesn't perform subsequent zone transfer. -
- XFROUT_BAD_TSIG_KEY_STRING bad TSIG key string: %1
-The TSIG key string as read from the configuration does not represent -a valid TSIG key. -
- XFROUT_CC_SESSION_ERROR error reading from cc channel: %1
-There was a problem reading from the command and control channel. The -most likely cause is that the msgq daemon is not running. -
- XFROUT_CC_SESSION_TIMEOUT_ERROR timeout waiting for cc response
-There was a problem reading a response from another module over the -command and control channel. The most likely cause is that the -configuration manager b10-cfgmgr is not running. -
- XFROUT_CONFIG_ERROR error found in configuration data: %1
-The xfrout process encountered an error when installing the configuration at -startup time. Details of the error are included in the log message. -
- XFROUT_FETCH_REQUEST_ERROR socket error while fetching a request from the auth daemon
-There was a socket error while contacting the b10-auth daemon to -fetch a transfer request. The auth daemon may have shutdown. -
- XFROUT_HANDLE_QUERY_ERROR error while handling query: %1
-There was a general error handling an xfrout query. The error is shown -in the message. In principle this error should not appear, and points -to an oversight catching exceptions in the right place. However, to -ensure the daemon keeps running, this error is caught and reported. -
- XFROUT_IMPORT error importing python module: %1
-There was an error importing a python module. One of the modules needed -by xfrout could not be found. This suggests that either some libraries -are missing on the system, or the PYTHONPATH variable is not correct. -The specific place where this library needs to be depends on your -system and your specific installation. -
- XFROUT_IXFR_MULTIPLE_SOA IXFR client %1: authority section has multiple SOAs
-An IXFR request was received with more than one SOA RRs in the authority -section. The xfrout daemon rejects the request with an RCODE of -FORMERR. -
- XFROUT_IXFR_NO_JOURNAL_SUPPORT IXFR client %1, %2: journaling not supported in the data source, falling back to AXFR
-An IXFR request was received but the underlying data source did -not support journaling. The xfrout daemon fell back to AXFR-style -IXFR. -
- XFROUT_IXFR_NO_SOA IXFR client %1: missing SOA
-An IXFR request was received with no SOA RR in the authority section. -The xfrout daemon rejects the request with an RCODE of FORMERR. -
- XFROUT_IXFR_NO_VERSION IXFR client %1, %2: version (%3 to %4) not in journal, falling back to AXFR
-An IXFR request was received, but the requested range of differences -were not found in the data source. The xfrout daemon fell back to -AXFR-style IXFR. -
- XFROUT_IXFR_NO_ZONE IXFR client %1, %2: zone not found with journal
-The requested zone in IXFR was not found in the data source -even though the xfrout daemon sucessfully found the SOA RR of the zone -in the data source. This can happen if the administrator removed the -zone from the data source within the small duration between these -operations, but it's more likely to be a bug or broken data source. -Unless you know why this message was logged, and especially if it -happens often, it's advisable to check whether the data source is -valid for this zone. The xfrout daemon considers it a possible, -though unlikely, event, and returns a response with an RCODE of -NOTAUTH. -
- XFROUT_IXFR_UPTODATE IXFR client %1, %2: client version is new enough (theirs=%3, ours=%4)
-An IXFR request was received, but the client's SOA version is the same as -or newer than that of the server. The xfrout server responds to the -request with the answer section being just one SOA of that version. -Note: as of this wrting the 'newer version' cannot be identified due to -the lack of support for the serial number arithmetic. This will soon -be implemented. -
- XFROUT_MODULECC_SESSION_ERROR error encountered by configuration/command module: %1
-There was a problem in the lower level module handling configuration and -control commands. This could happen for various reasons, but the most likely -cause is that the configuration database contains a syntax error and xfrout -failed to start at initialization. A detailed error message from the module -will also be displayed. -
- XFROUT_NEW_CONFIG Update xfrout configuration
-New configuration settings have been sent from the configuration -manager. The xfrout daemon will now apply them. -
- XFROUT_NEW_CONFIG_DONE Update xfrout configuration done
-The xfrout daemon is now done reading the new configuration settings -received from the configuration manager. -
- XFROUT_NOTIFY_COMMAND received command to send notifies for %1/%2
-The xfrout daemon received a command on the command channel that -NOTIFY packets should be sent for the given zone. -
- XFROUT_PARSE_QUERY_ERROR error parsing query: %1
-There was a parse error while reading an incoming query. The parse -error is shown in the log message. A remote client sent a packet we -do not understand or support. The xfrout request will be ignored. -In general, this should only occur for unexpected problems like -memory allocation failures, as the query should already have been -parsed by the b10-auth daemon, before it was passed here. -
- XFROUT_PROCESS_REQUEST_ERROR error processing transfer request: %1
-There was an error in receiving a transfer request from b10-auth. -This is generally an unexpected event, but is possible when, for -example, b10-auth terminates in the middle of forwarding the request. -When this happens it's unlikely to be recoverable with the same -communication session with b10-auth, so b10-xfrout drops it and -waits for a new session. In any case, this error indicates that -there's something very wrong in the system, so it's advisable to check -the over all status of the BIND 10 system. -
- XFROUT_QUERY_DROPPED %1 client %2: request to transfer %3 dropped
-The xfrout process silently dropped a request to transfer zone to -given host. This is required by the ACLs. The %2 represents the IP -address and port of the peer requesting the transfer, and the %3 -represents the zone name and class. -
- XFROUT_QUERY_QUOTA_EXCCEEDED %1 client %2: request denied due to quota (%3)
-The xfr request was rejected because the server was already handling -the maximum number of allowable transfers as specified in the transfers_out -configuration parameter, which is also shown in the log message. The -request was immediately responded and terminated with an RCODE of REFUSED. -This can happen for a busy xfrout server, and you may want to increase -this parameter; if the server is being too busy due to requests from -unexpected clients you may want to restrict the legitimate clients -with ACL. -
- XFROUT_QUERY_REJECTED %1 client %2: request to transfer %3 rejected
-The xfrout process rejected (by REFUSED rcode) a request to transfer zone to -given host. This is because of ACLs. The %2 represents the IP -address and port of the peer requesting the transfer, and the %3 -represents the zone name and class. -
- XFROUT_RECEIVED_SHUTDOWN_COMMAND shutdown command received
-The xfrout daemon received a shutdown command from the command channel -and will now shut down. -
- XFROUT_RECEIVE_FILE_DESCRIPTOR_ERROR error receiving the file descriptor for an XFR connection
-There was an error receiving the file descriptor for the transfer -request from b10-auth. There can be several reasons for this, but -the most likely cause is that b10-auth terminates for some reason -(maybe it's a bug of b10-auth, maybe it's an intentional restart by -the administrator), so depending on how this happens it may or may not -be a serious error. But in any case this is not expected to happen -frequently, and it's advisable to figure out how this happened if -this message is logged. Even if this error happens xfrout will reset -its internal state and will keep receiving further requests. So -if it's just a temporary restart of b10-auth the administrator does -not have to do anything. -
- XFROUT_REMOVE_OLD_UNIX_SOCKET_FILE_ERROR error removing unix socket file %1: %2
-The unix socket file xfrout needs for contact with the auth daemon -already exists, and needs to be removed first, but there is a problem -removing it. It is likely that we do not have permission to remove -this file. The specific error is show in the log message. The xfrout -daemon will shut down. -
- XFROUT_REMOVE_UNIX_SOCKET_FILE_ERROR error clearing unix socket file %1: %2
-When shutting down, the xfrout daemon tried to clear the unix socket -file used for communication with the auth daemon. It failed to remove -the file. The reason for the failure is given in the error message. -
- XFROUT_SOCKET_SELECT_ERROR error while calling select() on request socket: %1
-There was an error while calling select() on the socket that informs -the xfrout daemon that a new xfrout request has arrived. This should -be a result of rare local error such as memory allocation failure and -shouldn't happen under normal conditions. The error is included in the -log message. -
- XFROUT_STARTED xfrout started
-This informational message is output by xfrout when all initialization -has been completed and it is entering its main loop. -
- XFROUT_STOPPED_BY_KEYBOARD keyboard interrupt, shutting down
-There was a keyboard interrupt signal to stop the xfrout daemon. The -daemon will now shut down. -
- XFROUT_STOPPING the xfrout daemon is shutting down
-The current transfer is aborted, as the xfrout daemon is shutting down. -
- XFROUT_UNIX_SOCKET_FILE_IN_USE another xfrout process seems to be using the unix socket file %1
-While starting up, the xfrout daemon tried to clear the unix domain -socket needed for contacting the b10-auth daemon to pass requests -on, but the file is in use. The most likely cause is that another -xfrout daemon process is still running. This xfrout daemon (the one -printing this message) will not start. -
- XFROUT_XFR_TRANSFER_CHECK_ERROR %1 client %2: check for transfer of %3 failed: %4
-Pre-response check for an incomding XFR request failed unexpectedly. -The most likely cause of this is that some low level error in the data -source, but it may also be other general (more unlikely) errors such -as memory shortage. Some detail of the error is also included in the -message. The xfrout server tries to return a SERVFAIL response in this case. -
- XFROUT_XFR_TRANSFER_DONE %1 client %2: transfer of %3 complete
-The transfer of the given zone has been completed successfully, or was -aborted due to a shutdown event. -
- XFROUT_XFR_TRANSFER_ERROR %1 client %2: error transferring zone %3: %4
-An uncaught exception was encountered while sending the response to -an AXFR query. The error message of the exception is included in the -log message, but this error most likely points to incomplete exception -handling in the code. -
- XFROUT_XFR_TRANSFER_FAILED %1 client %2: transfer of %3 failed, rcode: %4
-A transfer out for the given zone failed. An error response is sent -to the client. The given rcode is the rcode that is set in the error -response. This is either NOTAUTH (we are not authoritative for the -zone), SERVFAIL (our internal database is missing the SOA record for -the zone), or REFUSED (the limit of simultaneous outgoing AXFR -transfers, as specified by the configuration value -Xfrout/max_transfers_out, has been reached). -
- XFROUT_XFR_TRANSFER_STARTED %1 client %2: transfer of zone %3 has started
-A transfer out of the given zone has started. -
- ZONEMGR_CCSESSION_ERROR command channel session error: %1
-An error was encountered on the command channel. The message indicates -the nature of the error. -
- ZONEMGR_JITTER_TOO_BIG refresh_jitter is too big, setting to 0.5
-The value specified in the configuration for the refresh jitter is too large -so its value has been set to the maximum of 0.5. -
- ZONEMGR_KEYBOARD_INTERRUPT exiting zonemgr process as result of keyboard interrupt
-An informational message output when the zone manager was being run at a -terminal and it was terminated via a keyboard interrupt signal. -
- ZONEMGR_LOAD_ZONE loading zone %1 (class %2)
-This is a debug message indicating that the zone of the specified class -is being loaded. -
- ZONEMGR_NO_MASTER_ADDRESS internal BIND 10 command did not contain address of master
-A command received by the zone manager from the Auth module did not -contain the address of the master server from which a NOTIFY message -was received. This may be due to an internal programming error; please -submit a bug report. -
- ZONEMGR_NO_SOA zone %1 (class %2) does not have an SOA record
-When loading the named zone of the specified class the zone manager -discovered that the data did not contain an SOA record. The load has -been abandoned. -
- ZONEMGR_NO_TIMER_THREAD trying to stop zone timer thread but it is not running
-An attempt was made to stop the timer thread (used to track when zones -should be refreshed) but it was not running. This may indicate an -internal program error. Please submit a bug report. -
- ZONEMGR_NO_ZONE_CLASS internal BIND 10 command did not contain class of zone
-A command received by the zone manager from another BIND 10 module did -not contain the class of the zone on which the zone manager should act. -This may be due to an internal programming error; please submit a -bug report. -
- ZONEMGR_NO_ZONE_NAME internal BIND 10 command did not contain name of zone
-A command received by the zone manager from another BIND 10 module did -not contain the name of the zone on which the zone manager should act. -This may be due to an internal programming error; please submit a -bug report. -
- ZONEMGR_RECEIVE_NOTIFY received NOTIFY command for zone %1 (class %2)
-This is a debug message indicating that the zone manager has received a -NOTIFY command over the command channel. The command is sent by the Auth -process when it is acting as a slave server for the zone and causes the -zone manager to record the master server for the zone and start a timer; -when the timer expires, the master will be polled to see if it contains -new data. -
- ZONEMGR_RECEIVE_SHUTDOWN received SHUTDOWN command
-This is a debug message indicating that the zone manager has received -a SHUTDOWN command over the command channel from the Boss process. -It will act on this command and shut down. -
- ZONEMGR_RECEIVE_UNKNOWN received unknown command '%1'
-This is a warning message indicating that the zone manager has received -the stated command over the command channel. The command is not known -to the zone manager and although the command is ignored, its receipt -may indicate an internal error. Please submit a bug report. -
- ZONEMGR_RECEIVE_XFRIN_FAILED received XFRIN FAILED command for zone %1 (class %2)
-This is a debug message indicating that the zone manager has received -an XFRIN FAILED command over the command channel. The command is sent -by the Xfrin process when a transfer of zone data into the system has -failed, and causes the zone manager to schedule another transfer attempt. -
- ZONEMGR_RECEIVE_XFRIN_SUCCESS received XFRIN SUCCESS command for zone %1 (class %2)
-This is a debug message indicating that the zone manager has received -an XFRIN SUCCESS command over the command channel. The command is sent -by the Xfrin process when the transfer of zone data into the system has -succeeded, and causes the data to be loaded and served by BIND 10. -
- ZONEMGR_REFRESH_ZONE refreshing zone %1 (class %2)
-The zone manager is refreshing the named zone of the specified class -with updated information. -
- ZONEMGR_SELECT_ERROR error with select(): %1
-An attempt to wait for input from a socket failed. The failing operation -is a call to the operating system's select() function, which failed for -the given reason. -
- ZONEMGR_SEND_FAIL failed to send command to %1, session has been closed
-The zone manager attempted to send a command to the named BIND 10 module, -but the send failed. The session between the modules has been closed. -
- ZONEMGR_SESSION_ERROR unable to establish session to command channel daemon
-The zonemgr process was not able to be started because it could not -connect to the command channel daemon. The most usual cause of this -problem is that the daemon is not running. -
- ZONEMGR_SESSION_TIMEOUT timeout on session to command channel daemon
-The zonemgr process was not able to be started because it timed out when -connecting to the command channel daemon. The most usual cause of this -problem is that the daemon is not running. -
- ZONEMGR_SHUTDOWN zone manager has shut down
-A debug message, output when the zone manager has shut down completely. -
- ZONEMGR_STARTED zonemgr started
-This informational message is output by zonemgr when all initialization -has been completed and it is entering its main loop. -
- ZONEMGR_STARTING zone manager starting
-A debug message output when the zone manager starts up. -
- ZONEMGR_TIMER_THREAD_RUNNING trying to start timer thread but one is already running
-This message is issued when an attempt is made to start the timer -thread (which keeps track of when zones need a refresh) but one is -already running. It indicates either an error in the program logic or -a problem with stopping a previous instance of the timer. Please submit -a bug report. -
- ZONEMGR_UNKNOWN_ZONE_FAIL zone %1 (class %2) is not known to the zone manager
-An XFRIN operation has failed but the zone that was the subject of the -operation is not being managed by the zone manager. This can be either the -result of a bindctl command to transfer in a currently unknown (or mistyped) -zone, or, if this error appears without the administrator giving transfer -commands, it can indicate an error in the program, as it should not have -initiated transfers of unknown zones on its own. -
- ZONEMGR_UNKNOWN_ZONE_NOTIFIED notified zone %1 (class %2) is not known to the zone manager
-A NOTIFY was received but the zone that was the subject of the operation -is not being managed by the zone manager. This may indicate an error -in the program (as the operation should not have been initiated if this -were the case). Please submit a bug report. -
- ZONEMGR_UNKNOWN_ZONE_SUCCESS zone %1 (class %2) is not known to the zone manager
-An XFRIN operation has succeeded but the zone received is not being -managed by the zone manager. This may indicate an error in the program -(as the operation should not have been initiated if this were the case). -Please submit a bug report. -
-
This is a companion document for BIND 10 version +
This is a companion document for BIND 10 version 20120712.
Copyright © 2012 Internet Systems Consortium, Inc. ("ISC")
Abstract
BIND 10 is a framework that features Domain Name System - (DNS) suite and Dynamic Host Configuration Protocol (DHCP) - servers with development managed by Internet Systems Consortium (ISC). + (DNS) and Dynamic Host Configuration Protocol (DHCP) + software with development managed by Internet Systems Consortium (ISC). This document describes various aspects of DHCP performance, measurements and tuning. It covers BIND 10 DHCP (codename Kea), existing ISC DHCP4 software, perfdhcp (a DHCP performance - measurement tool) and other related topics.
Table of Contents
List of Tables
- 3.1. Synchronous results
- 3.2. Asynchronous results
- 3.3. Estimated performance
Table of Contents
Table of Contents
List of Tables
Table of Contents
ISC would like to acknowledge generous support for BIND 10 development of DHCPv4 and DHCPv6 components provided by Comcast.
- This document is in its early stages of development. It is - expected to grow significantly in a near future. It will + This document is in the early stages of development. It is + expected to grow significantly in the near future. It will cover topics like database backend perfomance measurements, - pros an cons of various optimization techniques and - tools. + tools, and the pros an cons of various optimization techniques.
Table of Contents
+
Table of Contents
-
+
Kea will support several different database backends, using both popular databases (like MySQL or SQLite) and - custom-developed solutions (like in-memory database). BIND 10 - source code features set of performance microbenchmarks. - These are small tools written in C/C++ that simulate expected + custom-developed solutions (such as an in-memory database). + To aid in the choice of backend, the BIND 10 + source code features a set of performance microbenchmarks. + Written in C/C++, these are small tools that simulate expected DHCP server behaviour and evaluate the performance of - considered databases. As implemented benchmarks are not really + considered databases. As implemented, the benchmarks are not really simulating DHCP operation, but rather use set of primitives - that can be used by a real server, they are called + that can be used by a real server. For this reason, they are called micro-benchmarks.
Although there are many operations and data types that server could store in a database, the most frequently used data - type is lease information. Although lease information for IPv4 - and IPv6 differs slightly, it is expected that the performance + type is lease information. Although the information held for IPv4 + and IPv6 leases differs slightly, it is expected that the performance differences will be minimal between IPv4 and IPv6 lease operations. - Therefore each test uses lease4 table for performance measurements. + Therefore each test uses the lease4 table (in which IPv4 leases are stored) + for performance measurements.
All benchmarks are implemented as single threaded applications that take advantage of a single database connection.
- Those benchmarks are stored in tests/tools/dhcp-ubench - directory. This directory contains simplified prototypes for - various DB back-ends that are planned or considered as a - backend engine for BIND10 DHCP. Athough trivial now, they are - expected to evolve into useful tools that will allow users to - measure performance in their specific environment. + Those benchmarks are stored in tests/tools/dhcp-ubench directory of the + BIND 10 source tree. This directory contains simplified prototypes for + the various database back-ends that are planned or considered as a + possibly for BIND10 DHCP. These benchmarks are expected to evolve into + useful tools that will allow users to measure performance in their + specific environment.
Currently the following benchmarks are implemented: -
in memory+flat file
SQLite
MySQL
+
In memory + flat file
SQLite
MySQL
- As they require additional (sometimes heavy) dependencies, they are not - built by default. Actually, their build system is completely separated. - It will be eventually merged with the main BIND10 makefile system, but - that is a low priority for now. + As the benchmarks require additional (sometimes heavy) dependencies, they + are not built by default. Actually, their build system is completely + separate from that of the rest of BIND 10. It will be eventually merged + with the main BIND 10 build system.
All benchmarks will follow the same pattern: -
prepare operation (connect to a database, create a file etc.)
Measure timestamp 0
Commit new lease4 (repeated X times)
Measure timestamp 1
Search for random lease4 (repeated X times)
Measure timestamp 2
Update existing lease4 (repeated X times)
Measure timestamp 3
Delete existing lease4 (repeated X times)
Measure timestamp 4
Print out statistics, based on X and measured timestamps.
+
Prepare operation (connect to a database, create a file etc.)
Measure timestamp 0
Commit new lease4 record (repeated N times)
Measure timestamp 1
Search for random lease4 record (repeated N times)
Measure timestamp 2
Update existing lease4 record (repeated N times)
Measure timestamp 3
Delete existing lease4 record (repeated N times)
Measure timestamp 4
Print out statistics, based on N and measured timestamps.
Although this approach does not attempt to simulate actual DHCP server - operation that has mix of all steps intervening, it answers the - questions about basic database strenghts and weak points. In particular - it can show what is the impact of specific DB optimizations, like + operation that has mix of all steps, it answers the + questions about basic database strengths and weak points. In particular + it can show what is the impact of specific database optimizations, such as changing engine, optimizing for writes/reads etc.
- The framework attempts to do the same amount of operations for every + The framework attempts to do the same amount of work for every backend thus allowing fair complarison between them. -
MySQL backend requires MySQL client development libraries. It uses - mysql_config tool (that works similar to pkg-config) to discover required +
The MySQL backend requires the MySQL client development libraries. It uses + the mysql_config tool (similar to pkg-config) to discover required compilation and linking options. To install required packages on Ubuntu, use the following command: @@ -71,53 +72,54 @@ Make sure that MySQL server is running. Make sure that you have your setup configured so there is a user that is able to modify used database.
Before running tests, you need to initialize your database. You can - use mysql.schema script for that purpose. WARNING: It will drop existing - Kea database. Do not run this on your production server. Assuming your - MySQL user is kea, you can initialize your test database by: + use mysql.schema script for that purpose.
WARNING: It will drop existing + Kea database. Do not run this on your production server.
Assuming your + MySQL user is "kea", you can initialize your test database by:
$ mysql -u kea -p < mysql.schema-
After database is initialized, you are ready to run the test: +
After the database is initialized, you are ready to run the test:
$ ./mysql_ubenchor -
$ ./mysql_ubench > results->mysql.txt+
$ ./mysql_ubench > results-mysql.txtRedirecting output to a file is important, because for each operation there is a single character printed to show progress. If you have a slow - terminal, this may considerably affect test perfromance. On the other hand, - printing something after each operation is required, as poor DB setting - may slow down operations to around 20 per second. Observant user is expected - to note that initial dots are printed too slowly and abort the test.
Currently all default parameters are hardcoded. Default values can be - overwritten using command line switches. Although all benchmarks take - the same list of parameters, some of them are specific to a given backend - type. To get a list of supported parameters, run your benchmark with -h option: + terminal, this may considerably affect test performance. On the other hand, + printing something after each operation is required as poor database settings + may slow down operations to around 20 per second. (The observant user is expected + to note that the initial dots are printed too slowly and abort the test.)
Currently all default parameters are hardcoded. Default values can be + overridden using command line switches. Although all benchmarks take + the same list of parameters, some of them are specific to a given backend. + To get a list of supported parameters, run the benchmark with the "-h" option: -
$ ./mysql_ubench -h
-This is a benchmark designed to measure expected performance
-of several backends. This particular version identifies itself
-as following:
-MySQL client version is 5.5.24
-
-Possible command-line parameters:
- -h - help (you are reading this)
- -m hostname - specifies MySQL server to connect (MySQL backend only)
- -u username - specifies MySQL user name (MySQL backend only)
- -p password - specifies MySQL passwod (MySQL backend only)
- -f name - database or filename (MySQL, SQLite and memfile)
- -n integer - number of test repetitions (MySQL, SQLite and memfile)
- -s yes|no - synchronous/asynchronous operation (MySQL, SQLite and memfile)
- -v yes|no - verbose mode (MySQL, SQLite and memfile)
- -c yes|no - should compiled statements be used (MySQL only)
-- -
One parameter that has huge impact on performance is a a backend engine. +
$ ./mysql_ubench -h+
Synchronous operation requires database backend to + physically store changes to disk before proceeding. This + property ensures that no data is lost in case of the server + failure. Unfortunately, it slows operation + considerably. Asynchronous mode allows database to write data at + a later time (usually controlled by the database engine on OS + disk buffering mechanism).
To modify the default mysql_ubench parameters, command line + switches can be used. The currently supported switches are + (default values specified in brackets): +
-f name - name of the database ("kea")
-m hostname - name of the database host ("localhost")
-u user - MySQL username ("root")
-p password - MySQL password ("secret")
-n num - number of iterations (100)
-s yes|no - should the operations be performed in a synchronous (yes) + or asynchronous (no) manner (yes)
-v yes|no - verbose mode. Should the test print out progress? (yes)
-c yes|no - precompiled statements. Should the SQL statements be precompiled? (yes)
+
One parameter that has huge impact on performance is the choice of backend engine. You can get a list of engines of your MySQL implementation by using
> show engines;- in your mysql client. Two notable engines are MyISAM and InnoDB. mysql_ubench will - use MyISAM for synchronous mode and InnoDB for asynchronous.
SQLite backend requires both sqlite3 development and run-time package. Their + in your mysql client. Two notable engines are MyISAM and InnoDB. mysql_ubench uses + use MyISAM for synchronous mode and InnoDB for asynchronous. Please use + '-s yes|no' to choose whether you want synchronous or asynchronous operations.
Another parameter that affects performance are precompiled statements. + In a basic approach, the actual SQL query is passed as a text string that is + then parsed by the database engine. Alternative is a so called precompiled + statement. In this approach the SQL query is compiled an specific values are being + bound to it. In the next iteration the query remains the same, only bound values + are changing (e.g. searching for a different address). Usage of basic or precompiled + statements is controlled with '-c no|yes'.
The SQLite backend requires both the sqlite3 development and run-time packages. Their names may vary from system to system, but on Ubuntu 12.04 they are called sqlite3 libsqlite3-dev. To install them, use the following command: @@ -133,63 +135,151 @@ Possible command-line parameters: or
> ./sqlite_ubench > results-sqlite.txt
To modify default sqlite_ubench parameters, command line - switches can be used. Currently supported parameters are + switches can be used. The currently supported switches are (default values specified in brackets): -
-f filename - name of the database file ("sqlite.db")
-n num - number of iterations (100)
-s yes|no - should the operations be performend in synchronous (yes) - or asynchronous (no) manner (yes)
-v yes|no - verbose mode. Should the test print out progress? (yes)
-c yes|no - compiled statements. Should the SQL statements be precompiled?
+
-f filename - name of the database file ("sqlite.db")
-n num - number of iterations (100)
-s yes|no - should the operations be performed in a synchronous (yes) + or asynchronous (no) manner (yes)
-v yes|no - verbose mode. Should the test print out progress? (yes)
-c yes|no - precompiled statements. Should the SQL statements be precompiled? (yes)
SQLite can run in asynchronous or synchronous mode. This - mode can be controlled by using sync parameter. It is set - using (PRAGMA synchronous = ON or OFF).
Another tweakable feature is journal mode. It can be + mode can be controlled by using "synchronous" parameter. It is set + using the SQLite command:
PRAGMA synchronous = ON|OFF
Another tweakable feature is journal mode. It can be turned to several modes of operation. Its value can be modified in SQLite_uBenchmark::connect(). See http://www.sqlite.org/pragma.html#pragma_journal_mode for - detailed explanantion.
Memfile backend is custom developed prototype backend that - somewhat mimics operation of ISC DHCP4. It uses in-memory - storage using standard C++ and boost mechanisms (std::map and - boost::shared_ptr<>). All database changes are also - written to a lease file. That file is strictly write-only. This - approach takes advantage of the fact that simple append is faster - than edition with potential whole file relocation.
To modify default memfile_ubench parameters, command line - switches can be used. Currently supported parameters are + detailed explanantion.
sqlite_bench supports precompiled statements. Please use + '-c no|yes' to define which should be used: basic SQL query (no) or + precompiled statement (yes).
The memfile backend is a + custom backend that somewhat mimics operation of ISC DHCP4. It + implements in-memory storage using standard C++ and boost + mechanisms (std::map and boost::shared_ptr<>). All + database changes are also written to a lease file, which is + strictly write-only. This approach takes advantage of the fact + that file append operation is faster than modifications introduced + in the middle of the file (as it often requires moving all data + after modified point, effectively requiring writing large parts of + the whole file, not just changed fragment).
There are no preparatory steps required for memfile benchmark. + The only requirement is the ability to create and write specified lease + file (dhcpd.leases in the current directory). The tests can be run + as follows: +
> ./memfile_ubench+ or +
> ./memfile_ubench > results-memfile.txt+
To modify default memfile_ubench parameters, command line + switches can be used. Currently supported switches are (default values specified in brackets): -
-f filename - name of the database file ("dhcpd.leases")
-n num - number of iterations (100)
-s yes|no - should the operations be performend in synchronous (yes) +
-f filename - name of the database file ("dhcpd.leases")
-n num - number of iterations (100)
-s yes|no - should the operations be performend in a synchronous (yes) or asynchronous (no) manner (yes)
-v yes|no - verbose mode. Should the test print out progress? (yes)
memfile can run in asynchronous or synchronous mode. This mode can be controlled by using sync parameter. It uses fflush() and fsync() in synchronous mode to make sure that - data is not buffered and physically stored on disk.
This section contains sample results for backend performance measurements, taken using microbenchmarks. Tests were conducted on reasonably powerful machine:
CPU: Quad-core Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz (8 logical cores) -HDD: 1,5TB Seagate Barracuda ST31500341AS 7200rpm (used only one of them), ext4 partition +HDD: 1,5TB Seagate Barracuda ST31500341AS 7200rpm, ext4 partition OS: Ubuntu 12.04, running kernel 3.2.0-26-generic SMP x86_64 compiler: g++ (Ubuntu/Linaro 4.6.3-1ubuntu5) 4.6.3 MySQL version: 5.5.24 SQLite version: 3.7.9sourceid version is 2011-11-01 00:52:41 c7c6050ef060877ebe77b41d959e9df13f8c9b5e
-
Benchmarks were run in two series: synchronous and +
The benchmarks were run without using precompiled statements. + The code was compiled with the -O0 flag (no code optimizations). + Each run was executed once.
Two series of measures were made, synchronous and asynchronous. As those modes offer radically different - performances, synchronous mode was conducted for 1000 (one - thousand) repetitions and asynchronous mode was conducted for - 100000 (hundred thousand) repetitions.
Table 3.1. Synchronous results
| Backend | Operations | Create | Search | Update | Delete | Average |
|---|---|---|---|---|---|---|
| MySQL | 1000 | 31.603978s | 0.116612s | 27.964191s | 27.695209s | 21.844998s |
| SQLite | 1000 | 61.421356s | 0.033283s | 59.476638s | 56.034150s | 44.241357s |
| memfile | 1000 | 41.711886s | 0.000724s | 42.267578s | 42.169679s | 31.537467s |
Following parameters were measured for asynchronous mode. - MySQL and SQLite were run with 100 thousand repetitions. Memfile - was run for 1 million repetitions due to much larger performance.
Table 3.2. Asynchronous results
| Backend | Operations | Create [s] | Search [s] | Update [s] | Delete [s] | Average [s] |
|---|---|---|---|---|---|---|
| MySQL | 100000 | 10.584842s | 10.386402s | 10.062384s | 8.890197s | 9.980956s |
| SQLite | 100000 | 3.710356s | 3.159129s | 2.865354s | 2.439406s | 3.043561s |
| memfile | 1000000 (sic!) | 6.084131s | 0.862667s | 6.018585s | 5.146704s | 4.528022s |
Presented performance results can be computed into operations per second metrics. + performances, synchronous mode was conducted for one + thousand repetitions and asynchronous mode was conducted for + one hundred thousand repetitions.
Table 3.1. Synchronous results (basic)
| Backend | Operations | Create [s] | Search [s] | Update [s] | Delete [s] | Average [s] |
|---|---|---|---|---|---|---|
| MySQL | 1,000 | 31.604 | 0.117 | 27.964 | 27.695 | 21.845 |
| SQLite | 1,000 | 61.421 | 0.033 | 59.477 | 56.034 | 44.241 |
| memfile | 1,000 | 38.224 | 0.001 | 38.041 | 38.017 | 28.571 |
The following parameters were measured for asynchronous mode. + MySQL and SQLite were run with one hundred thousand repetitions.
Table 3.2. Asynchronous results (basic)
| Backend | Operations | Create [s] | Search [s] | Update [s] | Delete [s] | Average [s] |
|---|---|---|---|---|---|---|
| MySQL | 100,000 | 10.585 | 10.386 | 10.062 | 8.890 | 9.981 |
| SQLite | 100,000 | 3.710 | 3.159 | 2.865 | 2.439 | 3.044 |
| memfile | 100,000 | 1.300 | 0.039 | 1.307 | 1.278 | 0.981 |
The presented performance results can be converted into operations per second metrics. + It should be noted that due to large differences between various operations (sometimes + over three orders of magnitude), it is difficult to create a simple, readable chart with + that data.
Table 3.3. Estimated basic performance
| Backend | Create [oper/s] | Search [oper/s] | Update [oper/s] | Delete [oper/s] | Average [oper/s] |
|---|---|---|---|---|---|
| MySQL (async) | 9447.47 | 9627.97 | 9938.00 | 11248.34 | 10065.45 |
| SQLite (async) | 26951.59 | 31654.29 | 34899.70 | 40993.59 | 33624.79 |
| memfile (async) | 76944.27 | 2542588.35 | 76504.54 | 78269.25 | 693576.60 |
| MySQL (sync) | 31.64 | 8575.45 | 35.76 | 36.11 | 2169.74 |
| SQLite (sync) | 16.28 | 20045.37 | 16.81 | 17.85 | 7524.08 |
| memfile (sync) | 26.16 | 1223990.21 | 26.29 | 26.30 | 306017.24 |
Graphical representation of the basic performance results + presented in table Table 3.3, “Estimated basic performance”.
This section contains sample results for backend performance measurements, + taken using microbenchmarks. Tests were conducted on reasonably powerful machine: +
+CPU: Quad-core Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz (8 logical cores) +HDD: 1,5TB Seagate Barracuda ST31500341AS 7200rpm, ext4 partition +OS: Ubuntu 12.04, running kernel 3.2.0-26-generic SMP x86_64 +compiler: g++ (Ubuntu/Linaro 4.6.3-1ubuntu5) 4.6.3 +MySQL version: 5.5.24 +SQLite version: 3.7.9sourceid version is 2011-11-01 00:52:41 c7c6050ef060877ebe77b41d959e9df13f8c9b5e
+
The benchmarks were run with precompiled statements enabled. + The code was compiled with the -Ofast flag (optimize compilation for speed). + Each run was repeated three times and measured values were averaged.
Again the benchmarks were run in two series, synchronous and + asynchronous. As those modes offer radically different + performances, synchronous mode was conducted for one + thousand repetitions and asynchronous mode was conducted for + one hundred thousand repetitions.
Table 3.4. Synchronous results (optimized)
| Backend | Operations | Create [s] | Search [s] | Update [s] | Delete [s] | Average [s] |
|---|---|---|---|---|---|---|
| MySQL | 1,000 | 27.887 | 0.106 | 28.223 | 27.696 | 20.978 |
| SQLite | 1,000 | 61.299 | 0.015 | 59.648 | 61.098 | 45.626 |
| memfile | 1,000 | 39.564 | 0.001 | 39.543 | 39.326 | 29.608 |
The following parameters were measured for asynchronous mode. + MySQL and SQLite were run with one hundred thousand repetitions.
Table 3.5. Asynchronous results (optimized)
| Backend | Operations | Create [s] | Search [s] | Update [s] | Delete [s] | Average [s] |
|---|---|---|---|---|---|---|
| MySQL | 100,000 | 8.507 | 9.698 | 7.785 | 8.326 | 8.579 |
| SQLite | 100,000 | 1.562 | 0.949 | 1.513 | 1.502 | 1.382 |
| memfile | 100,000 | 1.302 | 0.038 | 1.306 | 1.263 | 0.977 |
The presented performance results can be converted into operations per second metrics. It should be noted that due to large differences between various operations (sometime - over 3 orders of magnitude), it is difficult to create a simple, readable chart with - that data.
Table 3.3. Estimated performance
| Backend | Create [oper/s] | Search [oper/s] | Update [oper/s] | Delete [oper/s] | Average [oper/s] |
|---|---|---|---|---|---|
| MySQL (async) | 9447.47 | 9627.97 | 9938.00 | 11248.34 | 10065.45 |
| SQLite (async) | 26951.59 | 31654.29 | 34899.70 | 40993.59 | 33624.79 |
| memfile (async) | 164362.01 | 1159195.84 | 166152.01 | 194299.11 | 421002.24 |
| MySQL (sync) | 31.64 | 8575.45 | 35.76 | 36.11 | 2169.74 |
| SQLite (sync) | 16.28 | 20045.37 | 16.81 | 17.85 | 7524.08 |
| memfile (sync) | 23.97 | 1381215.47 | 23.66 | 23.71 | 345321.70 |
Graphical representation of the performance results - presented in table Table 3.3, “Estimated performance”.
- For debugging purposes the code was compiled with -g -O0 - flags. While majority of the time was spent in backend - functions (that was probably compiled with -O2 flags), the - benchmark code could perform faster, when compiled with -O2, - rather than -O0. That is expected to affect memfile benchmark. + over three orders of magnitude), it is difficult to create a simple, readable chart with + the data.
Table 3.6. Estimated optimized performance
| Backend | Create [oper/s] | Search [oper/s] | Update [oper/s] | Delete [oper/s] | Average [oper/s] |
|---|---|---|---|---|---|
| MySQL (async) | 11754.84 | 10311.34 | 12845.35 | 12010.24 | 11730.44 |
| SQLite (async) | 64005.90 | 105391.29 | 66075.51 | 66566.43 | 75509.78 |
| memfile (async) | 76832.16 | 2636018.56 | 76542.50 | 79188.81 | 717145.51 |
| MySQL (sync) | 35.86 | 9461.10 | 35.43 | 36.11 | 2392.12 |
| SQLite (sync) | 16.31 | 67036.11 | 16.76 | 16.37 | 16771.39 |
| memfile (sync) | 25.28 | 3460207.61 | 25.29 | 25.43 | 865070.90 |
Graphical representation of the optimized performance + results presented in table Table 3.6, “Estimated optimized performance”.
+ Improvements gained by introducing support for precompiled + statements in MySQL is somewhat disappointing - between 6 and + 29%. On the other hand, the improvement in SQLite is + surprisingly high - the efficiency is more than doubled.
- Currently all operations were conducted on one by one - basis. Each operation was treated as a separate - transaction. Grouping X operations together will potentially - bring almost X fold increase in synchronous operations. - Extension for this benchmark in this regard should be considered. - That affects only write operations (insert, update and delete). Read - operations (search) are expected to be barely affected. + Compiled statements do not have any measureable impact on + synchronous operations. That is as expected, because the major + bottleneck is the disk performance. +
+ Compilation flags yield surprisingly high improvements for C++ + STL code. The memfile backend is in some operations is almost + twice as fast. +
+ If synchronous operation is required, the current performance + results are likely to be deemed inadequate. The limiting + factor here is a disk access time. Even migrating to high + performance 15,000 rpm disk is expected to only roughly double + number of leases per second, compared to the current results. + The reason is that to write a file to disk, at least two disk + sector writes + are required: the new content and i-node modification of the + file. The easiest way to boost synchronous performance is to + switch to SSD disks. Memory-backed RAM disks are also a viable + solution. However, care should be taken to properly engineer + backup strategy for such RAM disks. +
+ While the custom made backend (memfile) provides the best + perfomance, it carries over all the limitations existing in + the ISC DHCP4 code: there are no external tools to query or + change database, the maintenance requires deep knowledge etc. + Those flaws are not shared by usage of a proper database + backend, like MySQL and SQLite. They both offer third party + tools for administrative tasks, they are well documented and + maintained. However, SQLite support for concurrent access is + limiting in certain cases. Since all three investigated + backends more than meet expected performance results, it is + recommended to use MySQL as a first concrete database backend. + Should this choice be rejected for any reason, the second + recommended choice is SQLite. +
+ It should be emphaisized that obtained measurements indicate + only database performance and they cannot be directly + translated to expected leases per second or queries per second + performance by an actual server. The DHCP server must do much + more than just query the database to properly process client's + message. The provided results should be considered as only rough + estimates. They can also be used for relative comparisons + between backends. +
+ For basic measurements the code was compiled with -g -O0 + flags. For optimized measurements the benchmarking code was + compiled with -Ofast (optimize for speed). In both cases, the + same backend (MySQL or SQLite) library was used. It may be + useful to recompile the libraries (or the whole server in case + of MySQL) with -Ofast. +
+ There are many MySQL parameters that various sources recommend + to improve performance. They were not investigated further. +
+ Currently all operations are conducted on one by one + basis. Each operation is treated as a separate + transaction. Grouping N operations together will potentially + bring almost N fold increase in synchronous operations. Such a + feature is present in ISC DHCP4 and is called cache-threshold. + Extension for this benchmark in this regard should be + considered. That affects only write operations (insert, + update and delete). Read operations (search) are expected to + be barely affected.
Multi-threaded or multi-process benchmark may be considered in
the future. It may be somewhat difficult as only some backends
diff --git a/tests/tools/dhcp-ubench/dhcp-perf-guide.xml b/tests/tools/dhcp-ubench/dhcp-perf-guide.xml
index 16bbd63fa9..2bfe9bff90 100644
--- a/tests/tools/dhcp-ubench/dhcp-perf-guide.xml
+++ b/tests/tools/dhcp-ubench/dhcp-perf-guide.xml
@@ -40,8 +40,8 @@
-
-
-
+
+
+
+
+
+
+
+
+
+
+
+