mir/kea
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/kea synced 2025-08-22 01:49:48 +00:00
Code Issues Releases Wiki Activity
kea/ChangeLog
Razvan Becheriu 7257d61107 [#3916] addressed review comments
2025-06-02 22:44:11 +03:00

14876 lines
568 KiB
Plaintext
Raw Blame History

2349. [func] razvan
The kea-ctrl-agent has been deprecated and it issues a warning
log message on startup. As of Kea 2.7.2 the Kea servers:
kea-dhcp4, kea-dhcp6, and kea-dhcp-ddns directly support command
API connections over HTTPS/HTTP.
(Gitlab #3916)
2348. [bug] razvan, Darwin4053
Fix arguments order in flex option hook library debug messages.
(Gitlab #3875)
Kea 2.7.9 (development) released on May 28, 2025
2347. [build] andrei
The library version numbers have been bumped up for the Kea 2.7.9
development release.
(Gitlab #3892)
2346. [sec]* tmark, fdupont, razvan
All files and sockets created by Kea servers have been
restricted to default paths determined at compile time
which may be overridden by environment variables. This
includes lease files, log files, forensic log files, control
channel sockets, and the output from commands such as
cache-write, lease4-write, and lease6-write. The output
of config-write is restricted to the directory from which the
configuration file was read. Use of unsupported paths will
result in servers emitting errors and refusing to start
or rejecting commands. The specifics including the supported
paths and environment variable names are in the relevant
ARM sections.
CVE:2025-32801
(Gitlab #3831)
2345. [sec]* fdupont
Change the umask to no group write and no other access
at the entry of Kea server/agent binaries.
CVE:2025-32803
(Gitlab #3832)
2344. [sec]* tmark
kea-dhcp4, kea-dhcp6, kea-dhcp-ddns, and kea-ctrl-agent will
now only load hook libraries from the default installation
directory. If a path other than this is specified Kea will
not load the hook library. For ease of use, the path may be
omitted.
CVE:2025-32801
(Gitlab #3830)
Kea 2.7.8 (development) released on April 30, 2025
2343. [build] wlodek
The library version numbers have been bumped up for the Kea 2.7.8
development release.
(Gitlab #3863)
2342. [bug] andrei
A MySQL error that rarely occurs in unknown circumstances that
can prevent Kea from renewing leases that have null or invalid
JSON values in the user_context column is now handled in the
lease triggers.
(Gitlab #3763)
2341. [build] andrei
Kea built with Meson is now officially tested. Some bugs related
to the Meson build system were fixed. Documentation about how to
build Kea with Meson was added.
(Gitlab #3732, #3812)
2340. [func] tmark
The subnet commands hook library was modified such that
the subnet's shared network name is now included for each
subnet returned by the subnet4-list and subnet6-list
commands.
(Gitlab #3811)
2339. [bug] tmark
Corrected an issue which caused kea-dhcp4 to
NAK requests for an offered lease when a
conflicting host reservation exists and
offer-lifetime is greater than zero. The
server will now remove the unusable lease,
renew the temporary lease, and send it back
in a DHCPACK.
(Gitlab #3555)
2338. [doc] tmark
Clarified how classes impact option order precedence.
(Gitlab #3748)
2337. [bug] tmark
When generating FQDNs from IP addresses for DDNS,
kea-dhcp6 will now append a zero to the end of
prefixes that would otherwise end in a hyphen.
(Gitlab #3781)
2336. [func] razvan
Added support for syslog backend in forensic log hook library.
(Gitlab #3569)
Kea 2.7.7 (development) released on March 26, 2025
2335. [func] razvan
The following hook libraries are now open source:
for the kea-dhcp4 and the kea-dhcp6 servers
'libdhcp_class_cmds', 'libdhcp_ddns_tuning',
'libdhcp_flex_id', 'libdhcp_legal_log',
'libdhcp_host_cache', 'libdhcp_host_cmds',
'libdhcp_lease_query', 'libdhcp_limits',
'libdhcp_ping_check', 'libdhcp_radius',
'libdhcp_subnet_cmds' and for the kea-dhcp-ddns server
'libddns_gss_tsig'.
(Gitlab #3333)
2334. [func] fdupont
Added experimental support for registering self-generated
IPv6 addresses using DHCPv6 (RFC 9686).
(Gitlab #3683, #3802)
2333. [build] andrei, fdupont
Added meson as a build system.
(Gitlab #3443, #3729, #3730, #3731)
2332. [func] tmark
Lease reclamation is now skipped and rescheduled
while DHCP service is disabled. This applies to
both kea-dhcp4 and kea-dhcp6.
(Gitlab #3693)
2331. [bug] tmark
Added support for choosing from multiple
occurrences of the same option based on
class-tagging. Prior to this the last
occurrence listed was the only option
considered.
(Gitlab #3747)
2330. [func] tmark
The lease-cmds hook library now supports storing
custom values, referred to as ``binding-variables``,
within the lease's ``user-context``. Supported
in both kea-dhcp4 and kea-dhcp6.
(Gitlab #3463)
2329. [bug] andrei
An "argument list too long" error message no longer appears when
the "kea-admin lease-upload" command tries to upload a large set
of leases. The command is also significantly faster now.
(Gitlab #3666)
2328. [build] andrei
Kea no longer depends on a PostgreSQL server development header.
(Gitlab #3711)
2327. [build] mgodzina
The library version numbers have been bumped up for the Kea 2.7.7
development release.
(Gitlab #3817)
2326. [bug] razvan
Fixed a bug which was causing the allocation engine to reject the
lease if a data race caused by a different server updating the
shared database entries was detected. The entire packet is now
dropped in this particular case. This applies to both kea-dhcp4
and kea-dhcp6 servers.
(Gitlab #3648)
2325. [bug] razvan
Fixed a bug which was causing address allocation counters to be
negative when client released leases and the server has lease
affinity and lease reclamation enabled.
(Gitlab #1336)
2324. [func] razvan
It is not necessary to restart the server to apply changes in the
TLS configuration. Running the "config-reload" command is
sufficient. A different address or port must be specified when
switching from HTTP to HTTPS or from HTTPS to HTTP.
(Gitlab #3694)
Kea 2.7.6 (development) released on January 29, 2025
2323. [func]* fdupont
Kea now refuses secrets and passwords taken from examples,
including when not built with unit tests "keatest".
(Gitlab #3398)
2322. [bug] marcin
Avoid conflicts in DNS cleanup performed by two servers in
the terminated state in HA.
(Gitlab #3649)
2321. [func] tmark
Modified kea-dhcp4 and kea-dhcp6 to support
DDNS behavioral parameters at the pool level.
(Gitlab #3049)
2320. [bug] fdupont
Fixed a bug where the lease in the released state was not read
properly.
(Gitlab #3699)
2319. [build] fdupont, q66
Kea can now build with Boost 1.87. The minimum supported Boost
version has been bumped up from 1.57 to 1.66. Thanks to q66
for the patch.
(Gitlab #3696)
2318. [build] razvan
The library version numbers have been bumped up for the Kea 2.7.6
development release.
(Gitlab #3724)
2317. [bug] razvan
Fixed a bug related to database connection recovery which was
preventing the server to resume processing packets because the
dhcp state was never re-enabled.
(Gitlab #3727)
2316. [func] razvan
The kea-dhcp4, kea-dhcp6 and kea-dhcp-ddns servers now support
multiple http/https connections. The can be configured in the
"control-sockets" list.
(Gitlab #3082, #3721)
2315. [func] razvan
Kea can now load hook libraries specifying only the binary name.
It uses the default hook libraries installation path which is
provided in the config report as "Hooks directory".
(Gitlab #2101, #3579)
2314. [func] tmark
Added three new parameters which may be used to
influence DNS TTL to kea-dhcp4 and kea-dhcp6:
'ddns-ttl', 'ddns-ttl-min', and 'ddns-ttl-max'.
(Gitlab #2819, #3663)
Kea 2.7.5 (development) released on December 11, 2024
2313. [doc] marcin
Clarified that the FLQ allocator should not be used with shared
lease database.
(Gitlab #3577)
2312. [doc] fdupont
Made clear that when a HTTP control channel is reconfigured
with the same address and port the listener socket is reused
so any TLS setup change is ignored.
(Gitlab #3255)
2311. [doc] piotrek
Added a more extensive definition of the tuple DHCP option
type in the ARM documentation.
(Gitlab #3661)
2310. [bug] andrei
Kea servers no longer increase in memory when being reconfigured.
(Gitlab #3652)
2309. [build] mgodzina
The library version numbers have been bumped up for the Kea 2.7.5
development release.
(Gitlab #3695)
2308. [bug] marcin
Prevent the servers from returning to HA maintenance
states after receiving the ha-maintenance-cancel command
while they also respond to the DHCP traffic.
(Gitlab #3655)
2307. [func] tmark
The parameter "client-class" (a single class name) in
shared networks, subnets, and pools has been replaced with
"client-classes" (a list of one or more class names).
This applies to both kea-dhcp4 and kea-dhcp6.
(Gitlab #3592)
2306. [func] fdupont
Added a new "http-headers" parameter to the CA and
HTTP control socket configuration sections which can
be used to specify extra 'name: value' headers to be
added to HTTP responses.
(Gitlab #3609)
2305. [func] tmark
Both kea-dhcp4 and kea-dhcp6 servers will now
log a warning message when they detect classes that
configure lease life time parameters (e.g. 'valid-lifetime',
'preferred-lifetime') while also setting
'only-in-additional-list' to true.
(Gitlab #2736)
2304. [bug] tmark
Modified both kea-dhcp4 and kea-dhcp6 to avoid
generating DDNS update requests when leases are
being reused due to lease caching.
(Gitlab #3257)
Kea 2.7.4 (development) released on October 30, 2024
2303. [func] tmark
The parameters 'require-client-classes' and
'only-if-required' have been replaced with 'evaluate-
additional-classes' and 'only-in-additional-list'
respectively and deprecated. This applies to both
kea-dhcp4 and kea-dhcp6.
(Gitlab #3587)
2302. [func] tmark
Options may now be configured with a list of client
classes for which they apply. This feature is referred to
as "option class-tagging" and is supported by both
kea-dhcp4 and kea-dhcp6.
(GitLab #3583)
2301. [func] fdupont
Added support of DHCPv4 "cablelab-client-conf" (122) option
and its associated suboptions specified by RFC 3495, 3594
and 3634 in the "cablelabs-client-conf" space at the
exception of the suboption 3.
(Gitlab #3404)
2300. [build, func] andrei
Standalone fuzz target binaries used in fuzz testing were added
to the "fuzz" directory.
(Gitlab #3605)
2299. [func]* fdupont
Required classes are now evaluated in the same order as
for option data, i.e. (pd-)pool, subnet and shared network.
Before the order was reversed but this feature was not
used.
(Gitlab #3590)
2298. [bug] fdupont
Fixed a bug where Kea did not return the value of
vendor-encapsulated-options when redefined in a client class.
(Gitlab #3582)
2297. [build]* fdupont
Made the Botan boost TLS support mandatory. Changed
the configure argument to --with-botan using
the Botan pkg-config library name e.g. "botan-2".
(Gitlab #3552)
2296. [func]* fdupont
Classes included in 'require-client-classes' that do
not have test expressions will now be unconditionally
added to the client's list of matching classes.
Previously they were ignored.
(Gitlab #3388)
2295. [func] fdupont
Relaxed the lease, host and config database backend types
in the configuration syntax. This change is introduced to
better handle optional backends provided in hooks, such as
currently available MySQL or PostgreSQL hooks.
(Gitlab #3585)
2294. [func] fdupont
Added support of DHCPv6 "ntp-server" (56) option
specified by RFC 5908 and its associated suboptions
in the "v6-ntp-server-suboptions" space.
(Gitlab #3390)
2293. [build] razvan
The library version numbers have been bumped up for the Kea 2.7.4
development release.
(Gitlab #3639)
2292. [doc] tmark
Updated the ARM to include and an explanation for why
the default values for 'calculate-tee-times' are
different for kea-dhcp4 and kea-dhcp6.
(Gitlab #3538)
2291. [func] fdupont
Added three new API commands: subnet4-select-test and
subnet4o6-select-test to kea-dhcp4, and subnet6-select-test
to kea-dhcp6. These commands can be used to check which
subnet the server will select based on given input parameters.
(Gitlab #2974)
2290. [bug] razvan
Fixed applying 'output_options' when using the 'config-set'
command. Deprecated 'output_options' which will be removed in
future versions. Configurations should be updated by switching
to using 'output-options' instead.
(Gitlab #3594)
2289. [func]* razvan
Support for lease, host, and config backends for MySQL and
PostgreSQL have been consolidated into a single hook library for
each data base: 'libdhcp_mysql.so' and 'libdhcp_pgsql.so'
respectively.
(Gitlab #3536)
2288. [bug] marcin
Prevent the clients from declining expired or released leases.
Only a valid lease assigned to the declining client can now
be declined. When a misbehaving client declined a lease it did
not own it often led to inconsistent statistics of assigned and
declined leases.
(Gitlab #3565)
2287. [bug] razvan
Fixed the serialization of 'retry-on-startup' database
configuration parameter as boolean instead of string.
(Gitlab #3578)
Kea 2.7.3 (development) released on August 25, 2024
2286. [func] fdupont
Reorganized UNIX control socket code.
(Gitlab #3506)
2285. [build] tomek
Changed image type in the Developer's guide from PNG to SVG.
This drastically reduced the size of the generated docs
(from 2.7GB to 560MB).
(Gitlab #3566)
2284. [build] razvan
The library version numbers have been bumped up for the Kea 2.7.3
development release.
(Gitlab #3597)
2283. [func] tmark
The order or precedence of options specified in a
template class and its spawned classes has been
reversed. An option specified in a spawned class now
takes precedence over the same option if specified in
the template class. This change applies to both
kea-dhcp4 and kea-dhcp6.
(Gitlab #3576)
2282. [bug] razvan
Fixed a bug caused by starting listeners when checking the
configuration using the '-T' command line parameter. This was
also causing the check to fail if loading the High Availability
hook library.
(Gitlab #3542)
2281. [bug] andrei
An issue was fixed where kea-admin and kea-lfc were not found by
the Kea DHCP servers when installed via a custom defined sbindir.
(Gitlab #3504)
2280. [func] fdupont
IPv6 host reservation syntax now accepts a new entry
"excluded-prefixes": a pd-exclude option (RFC6603)
can now be added into an iaprefix option carrying
a reserved prefix.
(Gitlab #1387)
2279. [build] pprindeville
Replace the cut and rev utilities with shell variable expansions,
improving compatibility with minimal setups on embedded systems.
(Gitlab #3533)
2278. [build] dim
Replace ``std::basic_string<uint8_t>`` with equivalent
``std::vector<uint8_t>`` constructs, since the former has been
deprecated for a while in libc++, and has been completely
removed as of libc++ 19.
(Gitlab #3532)
Kea 2.7.2 (development) released on August 28, 2024
2277. [build] andrei
"libca_rbac.so" is now a symbolic link to "libdhcp_rbac.so".
(Gitlab #3550)
2276. [build] razvan
The library version numbers have been bumped up for the Kea 2.7.2
development release.
(Gitlab #3549)
2275. [func] andrei
When running with High-Availability (HA) enabled, the status-get
command now includes in its response the system time for each HA
node and the clock skew in seconds between active peers.
(Gitlab #3513)
2274. [doc, func, build] andrei
The events that logged EVAL_RESULT now log a different message
for each triggering event. As a result, the message was split
into eight messages. The messages that were logged at INFO level
are now logged at the same level as their DEBUG counterparts:
level 50. Fixed an issue that was causing some messages to not
appear under the "Kea Messages Manual" section. A new section
called "Kea Debug Messages By Log Level" is added to the ARM.
(Gitlab #1945)
2273. [func]* fdupont
The RBAC (role-based access control) hook library was
extended to support the new HTTP/HTTPS control socket
of Kea servers. Note its name changed too from
"libca_rbac.so" to "libdhcp_rbac.so".
(Gitlab #3483)
2272. [perf] fdupont
Implementation of "and", "or" and "ifelse" expressions
was changed to evaluate sub-expressions only when needed.
(Gitlab #3502)
2271. [func] fdupont
Extended the control-socket entry taking a map
specifying a UNIX/LOCAL control socket for DHCPv4,
DHCPv6 and DHCP-DDNS servers to a control-sockets
list of maps taking also a HTTP/HTTPS control socket
with authentication and TLS parameters from the
Control Agent.
(Gitlab #3477)
2270. [bug] andrei
Fixed flag -P|--port not working in kea-admin on mysql db-init,
mysql db-upgrade, pgsql db-upgrade, pgsql lease-dump.
pgsql db-upgrade now properly reports an upgrade failure instead
of attempting to upgrade to subsequent schema versions.
(Gitlab #2882)
2269. [func] tmark
Extended kea-dhcp4 and kea-dhcp6 lenient option parsing
to drop FQDN options such as v4-lost and v6-access-domain
if they contain malformed FQDNs.
(Gitlab #3492)
Kea 2.7.1 (development) released on July 31, 2024
2268. [build] razvan
The library version numbers have been bumped up for the Kea 2.7.1
development release.
(Gitlab #3515)
2267. [bug] tmark
Corrected an issue in MySQL config back end that
causes preferred life time values to be overwritten
when updating client classes via remote-set-class6.
command.
(Gitlab #3469)
2266. [bug] fdupont
Improved the code handling multiple instances of
the same v4 option according to RFC 3396.
(Gitlab #3440)
2265. [bug]* fdupont
The 'control-socket' ('control-socket.socket-name' and
'control-socket.socket-type') was removed from the global maps
which can be managed by the config backend because in fact if
it is possible to change values they are not applied.
(Gitlab #3479)
2264. [bug]* tmark
Corrected an issue with overlapping enum values
for option definition data type. This was causing
option definitions of type "record", created via
config backend commands, to not load properly when
fetched from the back end.
(Gitlab #3476)
2263. [func] fdupont
RFC 8925 "IPv6-Only Preferred Option for DHCPv4" is now
fully implemented: 0.0.0.0 address can be offerred.
(Gitlab #3094)
2262. [bug] marcin
Corrected a bug in storing and fetching the encapsulated DHCP
options from the configuration backend. These options were
sometimes not returned when they were specified at the subnet,
shared network or client class level.
(Gitlab #3481)
2261. [bug] razvan
Reset the local and remote disabled state when applying
configuration. The dhcp-state is now included in the 'status-get'
command. It indicates if the dhcp service is enabled or the
reason why it is disabled (user command, HA command or database
connection failure).
(Gitlab #3446)
2260. [bug] razvan
Fixed a file descriptor leak in the High Availability hook
library.
(Gitlab #3449)
2259. [func] fdupont
All permissions for other users are now removed from files
created by Kea agents and servers.
(Gitlab #3050)
Kea 2.7.0 (development) released on June 26, 2024
2258. [build] razvan
The library version numbers have been bumped up for the Kea 2.7.0
development release.
(Gitlab #3459)
2257. [func] andrei
Exceptions thrown from Sysrepo while processing a NETCONF config
change or while sending notifications are now caught and logged.
The configuration is not applied in that case, but at least
kea-netconf recovers instead of crashing. These scenarios are
corner cases that are likely not found in production and that
trigger bugs in upstream code.
(Gitlab #3435)
2256. [func] marcin
High Availability hook now supports lease affinity for the
released leases. When a lease is released but left in the
database for a possible re-allocation this information is
propagated to the partner server. Previously, a released
lease was always deleted in the partner, causing a loss of
the association between the lease and the client in the
partner's lease database. This change introduces a new
"released" lease state which appears for the released leases
in the lease database and in the lease updates exchanged
between the HA partners. It is a backward incompatible change
for the HA partners that haven't been upgraded to the latest
Kea version. They will reject the lease updates for the
released leases holding the new state value.
(Gitlab #3246)
2255. [bug] razvan
The environment is now inherited by kea-lfc when started by
the Kea DHCP server.
(Gitlab #3450)
2254. [func] tmark
Added two API commands to Perfmon hook library:
"perfmon-control" which can be used to enable
or disable monitoring and reporting at runtime;
and "perfmon-get-all-durations" which fetches
a snapshot of raw performance data.
(Gitlab #3328)
2253. [func] fdupont
Added the predicate token "match" which evaluates regular
expression matching to classification expression.
(Gitlab #3170)
2252. [bug] fdupont
Corrected an issue in kea-dhcp6 which caused reserved prefixes
to not be removed when their host reservation was deleted by
ip address.
(Gitlab #3375)
2251. [func] tmark
A new global statistic, "queue-mgr-queue-full", has been
added to kea-dhcp-ddns. It tracks the number of times
then receive queue for DNS update requests (NCRs) has
reached maxium capacity.
(Gitlab #2611)
2250. [func] razvan
Kea now pretty prints options with binary data whenever possible.
(Gitlab #2844)
2249. [func] razvan
Made v6 relay options 18 (interface-id), 37 (remote-id) and
38 (subscriber-id) available to the run script hook library.
(Gitlab #3035)
2248. [bug] tmark
Fixed a corner-case issue in kea-dhcp6 that was
causing it to attempt to update a lease for an address
with a generated FQDN even though the address was not
available to be leased.
(Gitlab #3356)
Kea 2.6.0 (stable) released on May 29, 2024
2247. [build] razvan
The library version numbers have been bumped up for the Kea 2.6.0
stable release.
(Gitlab #3430)
2246. [bug] razvan
Permit configuring pool-id in pd-pools which can be useful in
statistics. Previously, Kea would emit an error when configured
with PD pool ids.
(Gitlab #3424)
2245. [doc] tomek
Many already supported RFCs are now listed in the Supported
DHCP standards and Supported DHCPv6 standards in the Kea
Administrator Reference Manual (ARM).
(Gitlab #3346)
2244. [func] mgodzina
The lease4-wipe and lease6-wipe commands now log a deprecation
warning.
(Gitlab #3427)
2243. [func] razvan
Updated yang modules: removed qualifying-suffix,
override-no-update, override-client-update,
replace-client-name, generated-prefix, hostname-char-set
and hostname-char-replacement from dhcp-ddns, removed
reservation-mode and added retry-on-startup,
stash-agent-options and ddns-conflict-resolution-mode.
(Gitlab #3301)
2242. [func] razvan
Removed deprecated command "libreload".
(Gitlab #2960)
2241. [doc] tomek
Several aspects of lease_cmds documentation were updated.
The examples and error messages were corrected.
(Gitlab #3340)
2240. [doc] slawek
Updated the documentation to consider the restricted default
privileges provided in Postgres 15 when creating a database.
(Gitlab #2773)
2239. [func]* razvan
Removed deprecated parameter: "reservation-mode".
(Gitlab #2959)
2238. [func]* razvan
Removed the following deprecated parameters from "dhcp-ddns"
global element: "generated-prefix", "qualifying-suffix",
"replace-client-name", "override-client-update",
"override-no-update", "hostname-char-replacement",
"hostname-char-set".
(Gitlab #2958)
2237. [doc] slawek
Added an instruction to the ARM on how to verify the PGP
signature of the tarball with the source code.
(Gitlab #3021)
2236. [doc] marcin
Documented incompatibility of the subnet reselection by
RADIUS with the hub-and-spoke configurations in HA.
(Gitlab #3252)
2235. [bug] tmark
Remove defaulted on-update behavior from 'expire'
columns in lease4 and lease6 tables for MySQL/Mariadb
lease databases. Corrects an issue when upgrading from
releases prior to Kea 2.4.0 to Kea 2.4.0 or later with
Mariadb version 10.10 or later that causes all existing
v6 leases to expire immediately.
(Gitlab #3396)
2234. [build] andrei
Kea now builds with MySQL client libraries that have removed the
mysql_ssl_set function which was deprecated in MySQL 8.0.35.
The mysql_options function is used instead.
(Gitlab #3256)
2233. [bug] razvan
Fixed a bug which was causing the status-get command to return
an error when the lease database connection had not yet been
established.
(Gitlab #3223)
2232. [func]* fdupont
Auto-generated subnet identifiers are no longer supported.
Configurations that contain subnets without explicit subnet
identifiers (i.e. without an "id" entry) will now be rejected.
(Gitlab #2961)
2231. [func] fdupont
The "ip-address" configuration parameter in the "relay" map has
been removed. In its place, use "ip-addresses" introduced in
Kea 1.4.
(Gitlab #3378)
2230. [func] tmark
Both kea-dhcp4 and kea-dhcp6 will now emit an INFO
level log statement for each packet received and
sent by the server. Formerly these logs were only
emitted at DEBUG level.
(Gitlab #3203)
2229. [bug] tmark
Kea now builds with MySQL client libraries that have removed the
the MYSQL_OPT_RECONNECT feature and, in those cases, no longer
explicitly disables the reconnect feature, but relies on its
default disabled state.
(Gitlab #3311)
Kea 2.5.8 (development) released on April 30, 2024
2228. [build] piotrek
The library version numbers have been bumped up for the Kea 2.5.8
development release.
(Gitlab #3355)
2227. [func] fdupont
Implemented the stash-agent-options global parameter
for DHCPv4 (new feature from ISC DHCP allowing to
renew reserved address when the host reservation identifier
is based on the dhcp-agent-options option added by a relay.
(Gitlab #2976)
2226. [func] piotrek
Added information about transaction ID in all possible
places in loggers: alloc-engine, bad-packets, ddns,
eval, leases, options, packets.
(Gitlab #2820)
2225. [func] marcin
Ensure backward compatibility of High Availability
between Kea 2.5.8+ and earlier versions. It introduces
a new origin-id argument to the dhcp-enable, dhcp-disable
and ha-sync-complete-notify commands. It is ignored by the
earlier Kea versions. The origin argument is sent in addition
to the origin-id and has the format recognizable by the old
Kea versions.
(Gitlab #3344)
2224. [func] andrei
Printing the version now mentions if premium is included and
shows the git commit hash for the premium source code repository
if the executable is built from sources.
(Gitlab #3254)
2223. [bug] tmark
Fixed an issue in PerfMon hook library which causes
the kea6_server to crash when the server responds
to a client query for which no subnet was selected.
(Gitlab #3347)
2222. [bug] piotrek
Fixed a bug in host_cmds. When PostgreSQL was used as
hosts database storage, reservation-del command called
with given IPv6 host address and the subnet Id deleted
all IPv6 hosts in given subnet.
Corrected the issue so that now only given host
reservation is deleted.
(Gitlab #3294)
2221. [bug] tmark
Corrected an index on the dhcp4_servers table
in the PostgreSQL schema.
(Gitlab #2957)
2220. [bug] marcin
Exclude packets ignored during load balancing from the
pkt6-receive-drop statistics. The packets dropped by the
HA hook library during subnet selection are counted in
the pkt4-receive-drop and pkt6-receive-drop statistics.
(Gitlab #3125)
2219. [bug] marcin
Corrected an issue in processing the server-name argument
of the ha-sync command. The argument was ignored when the
synchronization with a backup server was performed.
(Gitlab #3276)
2218. [func] marcin
Addressed an inconsistent state of the High Availability
service that occurs when one of the terminated services is
restarted and another one is not. The restarted service waits 10
minutes for the partner restart. If the partner is not restarted
the service transitions to the terminated state to continue
responding to the DHCP traffic.
(Gitlab #3250)
2217. [func] fdupont
Extended the lenient-option-parsing compatibility
flag to ignore DHCPv4 fqdn (81) and DHCPv6 client-fqdn
(39) options with some invalid domain names (e.g.
beginning with an empty label).
(Gitlab #3289)
2216. [func] tmark
PerfMon hook library is now functional. It accumulates
and reports performance data, and supports alarms. Still
lacking are API commands.
(Gitlab #3297)
2215. [bug] tmark
Corrected an issue that can cause kea-dhcp-ddns to
stop processing queued requests. Thanks to Shawn
Routhier from Infoblox for reporting the issue.
(Gitlab #3295)
2214. [func] tmark
PerfMon hook library can now parse its configuration
and the ARM has been updated with more detailed
information. Functionality is still limited.
(Gitlab #3278)
Kea 2.5.7 (development) released on March 27, 2024
2213. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.7
development release.
(Gitlab #3304)
2212. [build] tomek
The jinja dependency, used in building documentation, was
updated.
(Gitlab #3079)
2211. [bug] razvan, tmark
Corrected an issue in kea-dhcp4 and kea-dhcp6 that
causes an infinite loop when database does not exist
at startup introduced by #2692.
(Gitlab #3300)
2210. [func] piotrek
Added libkea-dhcp++, libkea-cfgclient, libkea-d2srv,
libkea-dhcpsrv, libkea-util and libkea-util-io headers that were
missing after Kea install. Now all needed headers are installed.
(Gitlab #3267)
2209. [func] fdupont
Some hooks using multi-threading postpone their startup until
after the configuration has been completed. If the hook
subsequently failed the startup, the error would not have been
properly propagated. The fix ensures that the errors are
reported during the configuration stage.
(Gitlab #2692)
Kea 2.5.6 (development) released on February 28, 2024
2208. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.6
development release.
(Gitlab #3261)
2207. [func] piotrek
Kea now supports DNR options as specified in RFC9463,
RFC9461, RFC9460. The option may be configured using
convenient notation, where Kea takes care of complex
option encoding to be inline with RFCs.
(Gitlab #3141)
2206. [func] andrei
DHCP servers now initialize the database schema automatically on
startup or on reconfiguration if there is at least one database
backend configured and if the configured database is empty.
(Gitlab #3025)
2205. [func] tmark
Perfmon hook library now dumps the packet event stack
of query packets to debug logging after they have been
processed.
(Gitlab #3231)
2204. [func] tmark
The skeleton of a new open source hook library,
libdhcp_perfmon.so, has been added. The library is
still in development and does not yet provide any functionality.
(Gitlab #3242)
Kea 2.5.5 (development) released on January 31, 2024
2203. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.5
development release.
(Gitlab #3235)
2202. [func] razvan
The Configuration Backend now supports scalar parameters
contained by top level global maps: 'compatibility',
'control-socket', 'dhcp-ddns', 'expired-leases-processing',
'multi-threading', 'sanity-checks', 'server-id' and
'dhcp-queue-control'.
(Gitlab #1790)
2201. [func] andrei
To facilitate setting multiple option-data entries with same code
and space, but different data, the set of keys for the
option-data list was extended with the "data" leaf in YANG
modules.
(Gitlab #3198)
2200. [func] piotrek
Kea now supports new DHCPv4 option code 121, Classless Static
Route option defined in RFC 3442.
Option may be defined in binary format and also as a string
using convenient static route notation.
(Gitlab #3074)
2199. [func] marcin
Added support for hub-and-spoke high availability configuration.
(Gitlab #3106, #3178)
2198. [func] razvan
A new log message
DHCPSRV_CFGMGR_IP_RESERVATIONS_UNIQUE_DUPLICATES_DETECTED is
shown when multiple reservations are detected for the same IP
address.
(Gitlab #3108)
2197. [func] razvan
Added support for database connection retry on server startup.
The new 'retry-on-startup' parameter controls this behavior along
with the other existing parameters: 'on-fail',
'max-reconnect-tries' and 'reconnect-wait-time'.
(Gitlab #3019)
2196. [func] tmark
The ping-check hook library can now be used with kea-dhcp4
in either multi-threaded or single-threaded mode.
(Gitlab #3107)
2195. [func] tmark
Added a new hook point to kea-dhcp4, "lease4_server_decline".
DHCPv4 leases declined by ping-check hook library are now
propagated to HA peers.
(Gitlab #3110)
Kea 2.5.4 (development) released on November 29, 2023
2194. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.4
development release.
(Gitlab #3173)
2193. [func] tmark, piotrek
The ping-check hook library is now functional. It provides
the ability of kea-dhcp4 to check the availability of an
address prior to offering it to a client using ICMP ECHO
REQUESTs.
(Gitlab #3084)
2192. [func] razvan
The packet logging is now more consistent between DHCPv4 and
DHCPv6. Also, extra details are now logged.
(Gitlab #3109)
2191. [doc] andrei
The new RADIUS hook library is now operational. Documentation has
been updated. A section about differences to the old RADIUS hook
library is included.
(Gitlab #2442)
Kea 2.5.3 (development) released on October 25, 2023
2190. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.3
development release.
(Gitlab #3118)
2189. [doc] tomek
Security reporting process described in a Github-friendly format.
There is no new information, mostly pointers to already existing
documents.
(Gitlab #3080)
2188. [bug] razvan
Fixed a race condition in free lease queue allocator.
(Gitlab #3111)
2187. [func] tmark
To facilitate use in containers, the restriction from listening
on 0.0.0.0 or :: addresses has been removed from kea-dhcp-ddns.
The server will now issue a warning if configured to use either
address.
(Gitlab #3116)
2186. [bug] andrei
Fixed interface redetection which had stopped working since
Kea 2.3.6.
(Gitlab #3017)
2185. [func] razvan
Added extended log messages: DHCP4_DISCOVER, DHCP4_REQUEST,
DHCP6_PROCESS_IA_NA_SOLICIT, DHCP6_PROCESS_IA_PD_SOLICIT, which
include the hint address in the client request. The log message
tag DHCP4_LEASE_ADVERT has been renamed to DHCP4_LEASE_OFFER.
(Gitlab #2918)
2184. [bug] razvan
Fixed a bug in evaluated expression parser which was not properly
handling escaped null characters.
(Gitlab #3086)
2183. [bug] andrei
Fixed a bug where one of the commands that retrieve statistic
values sent to the kea-ctrl-agent would get an overflow error in
the response if the inquired statistic was intended to have a big
integer data type, and if the integer value would not be
representable on 64 bits. Affected statistics are "total-nas" and
"total-pds", and the bug only manifests if the inquired pool, or
the inquired subnet's aggregated pool space, is large enough.
Prior to this fix, commands would get a correct response over
unix socket.
(Gitlab #3068)
Kea 2.5.2 (development) released on September 27, 2023
2182. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.2
development release.
(Gitlab #3085)
2181. [func] razvan
Added additional tokens which evaluate string expressions:
"lcase" which converts to lower case and "ucase" which
converts to upper case.
(Gitlab #3048)
2180. [build] andrei
Apart from enabling log4cplus's own logging, and adding more
sanity checks in DNS code, the --enable-debug configure flag
now also makes the compiler produce more abundant debugging
information that can be read by a debugger.
(Gitlab #1520)
2179. [doc] piotrek
Updated Developer's Guide with information about new hook
point "lease4_offer".
(Gitlab #3067)
2178. [doc] andrei
Clarified in the ARM that DHCPv6 clients with unstable DUIDs can
be handled using the flex-id library. The configuration examples
that can help with that are found in the flex-id documentation.
(Gitlab #181)
2177. [func] piotrek
Implemented new DHCPv4 hook point "lease4_offer".
The callout is executed after the server has received
the DHCPDISCOVER and the DHCPOFFER has been constructed
but not yet sent to the client.
(Gitlab #3038, #3063)
2176. [doc] piotrek, razvan
Updated ARM docs with new configuration key "output-options" and
alias "output_options". All config examples, where previous
"output_options" key appeared, were updated.
(Gitlab #2904, #3004)
Kea 2.5.1 (development) released on August 30, 2023
2175. [build] razvan
The library version numbers have been bumped up for the Kea 2.5.1
development release.
(Gitlab #3026)
2174. [func] fdupont
Added a new information message which displays the
client and the transaction identification information
for received queries between message unpacking and
first classification.
(Gitlab #2854)
2173. [bug] tmark
Fixed a sporadic failure of IOSignaltest.mixedSignals
unit test. Test no longer relies on signals arriving
in order they are sent as it cannot be guaranteed.
(Gitlab #2954)
2172. [func] fdupont
Completed and improved logs showing what client classes
are assigned to queries during processing.
(Gitlab #2908)
Kea 2.5.0 (development) released on July 26, 2023
2171. [build] andrei
The library version numbers have been bumped up for the Kea 2.5.0
development release.
(Gitlab #2990)
2170. [build] fdupont
Moved from C++ 11 to C++ 14 as the minimal C++ version
which must be supported by the C++ compiler tobuild Kea.
(Gitlab #2876)
2169. [bug] marcin
Applied a workaround in the connection to MySQL that prevents
potential crashes in libmysqlclient library when connection
to the database is lost and re-established.
(Gitlab #2792)
2168. [func] fdupont
Cross-reference tables to bind relay and remote
identifiers from extended info of DHCPv6 leases
were added to SQL backends. A new command
"extended-info6-upgrade" (re)builds these tables
making leases visible to Bulk Lease Queries.
(Gitlab #2869)
2167. [func] tmark
The kea-dhcp<4/6> parameter, ddns-use-conflict-resolution,
has been deprecated and replaced with
ddns-conflict-resolution-mode. The new parameter supports
four modes of behavior pertaining to DDNS update conflict
resolution: check-with-dhcid, no-check-with-dhcid,
check-exists-with-dhcid, and no-check-without-dhcid.
Thanks to Shawn Routhier from Infoblox for contributing
the patch to implement this feature.
(Gitlab #2276)
Kea 2.4.0 (stable) released on July 05, 2023
2166. [build] mgodzina
The library version numbers have been bumped up for the Kea 2.4.0
stable release.
(Gitlab #2939)
2165. [bug] marcin
DHCP options configured in the host database are now returned
with their encapsulated options to the clients.
(Gitlab #2826)
2164. [bug] razvan
Added checks to catch invalid prefix/prefix-len combinations in
commands that create or update pools, leases, and reservations.
(Gitlab #2725)
2163. [build] slawek
Dropped the Kea connector for Python 2.
(Gitlab #2467)
2162. [doc] marcin
Documented renaming operation-target values in host_cmds hook
library. The "primary" was renamed to "memory", and the
"alternate" was renamed to "database".
(Gitlab #2901)
2161. [doc] fdupont
Clarified how Kea treats situations where there are multiple
reservations for the same host.
(Gitlab #2745)
2160. [doc] tomek
Added clarification about RFC3046 (Relay agent option) support,
with some examples how to use its content.
(Gitlab #2887)
2159. [bug] razvan
Fixed a crash when splitting long options or sending user defined
options when multi-threading is enabled. Also fixed some cases
when options are not properly split if the serialized data
reaches the end of the 255 bytes long boundary.
(Gitlab #2942)
2158. [func] piotrek
A new command named "reservation-get-by-address" is now available
in the host_cmds hook library. It returns all host reservations
for given IP address either in all subnets or in a given subnet.
(Gitlab #2795)
2157. [func]* fdupont
Added a warning issued when the configuration contains subnets
without explicit subnet identifiers (without "id" entry). The
auto-generated subnet identifiers are now deprecated.
(Gitlab #2866)
2156. [func] razvan
Added an optional 'pool-id' parameter that can be used to enable
per-pool statistics. Supported by kea-dhcp4 and kea-dhcp6 for all
pool types.
(Gitlab #2898)
2155. [func] fdupont, tomek
Added the config-hash-get command which returns the
SHA-256 hash of the current configuration, helping
in detecting changes. Updated config-get, config-set
commands to also return SHA-256 hash.
(Gitlab #2707)
2154. [doc] darren
Corrected minor typo in table in section 8.2.10 of the ARM where
type was shown as ipv6-address and should have said ipv4-address.
(Gitlab #2913)
2153. [doc] darren
Changed wording of documentation of ip-reservations-unique
flag to clarify which host reservation backends support false.
(Gitlab #2900)
2152. [doc] razvan
Added documentation and unittests for counters by pool ID.
(Gitlab #145, #2883)
2151. [bug] marcin
Corrected a bug in the host manager that affected getting a host
by an IPv6 address or delegated prefix. This query returned only
partial host information. It lacked other IPv6 reservations and
some DHCP options.
(Gitlab #2931)
2150. [bug] marcin
Fixed a bug in encapsulating DHCP options fetched from the config
backend. The suboptions are now included in the top-level options
they belong to.
(Gitlab #2881)
2149. [doc] andrei
The vendor options documentation has been improved.
(Gitlab #2793)
2148. [build] tmark
The include file, cfg_globals.h, has been added to the
to dhcpsrv/Makefile.am such that it now gets installed.
Prior to this it was omitted from installation.
(GitLab #2608)
2147. [doc] andrei
There are now more cross-references in the ARM. Commands and hook
libraries link to their own section. Programs link to their
manual pages.
(Gitlab #2554)
2146. [func] piotrek
Making DHCP4_PACKET_DROP_* and DHCP6_PACKET_DROP_* debug prints
more verbose. The prints are including now hwaddr for DHCP4 and
duid for DHCP6.
(Gitlab #2865)
2145. [bug] piotrek
Fixed a bug in kea-admin script where lack of lease type argument
was not caught correctly and kea-lfc was called without -4 or -6
DHCP version.
(Gitlab #2855)
Kea 2.3.8 (development) released on May 31, 2023
2144. [build] razvan
The library version numbers have been bumped up for the Kea 2.3.8
development release.
(Gitlab #2885)
2143. [func] razvan
Added v4 statistic counters per pool:
subnet[id].pool[id].assigned-addresses
subnet[id].pool[id].cumulative-assigned-addresses
subnet[id].pool[id].declined-addresses
subnet[id].pool[id].reclaimed-declined-addresses
subnet[id].pool[id].reclaimed-leases
subnet[id].pool[id].total-addresses
Added v6 statistic counters per pool:
subnet[id].pool[id].assigned-nas
subnet[id].pd-pool[id].assigned-pds
subnet[id].pool[id].cumulative-assigned-nas
subnet[id].pd-pool[id].cumulative-assigned-pds
subnet[id].pool[id].declined-addresses
subnet[id].pool[id].reclaimed-declined-addresses
subnet[id].pool[id].reclaimed-leases
subnet[id].pd-pool[id].reclaimed-leases
subnet[id].pool[id].total-nas
subnet[id].pd-pool[id].total-pds
Counters are stored in the lease storage and after schema
upgrade all existing leases are considered to be part of pool
ID 0. On lease update, the counters will be updated accordingly
including pool IDs and statistics will converge to real values
over time.
(Gitlab #145)
2142. [func] piotrek
New command option was added to perfdhcp: --or.
It allows to insert extra option(s) to relayed DHCPv6 message
at given level of encapsulation. For now only the first level of
encapsulation is supported.
(Gitlab #2834)
2141. [bug] razvan
The High Availability hook library is sending the 'origin'
parameter set to 'ha-partner' when sending lease update
commands which enables the forensic log hook library to
distinguish between administrator commands and HA partner
commands.
(Gitlab #2629)
2140. [func] slawek
Implemented functions to delete the host reservations from the
JSON configuration. Updated the host manager to fully support
altering the primary source (JSON configuration). Its methods
accept a new argument ("operation target") to specify the data
source (JSON configuration and/or hosts database) to query or
alter. Fixed a function that retrieves IPv6 host reservations
from the configuration by address.
(Gitlab #2815)
2139. [bug] marcin
Fixed a bug in the delegated prefix permutations that caused
allocating prefixes in the same order by the random and FLQ
allocators.
(Gitlab #2860)
2138. [bug] marcin
Fixed a bug in the DHCPv4 server that sent DHCPNAK to a client
in the INIT-REBOOT state when the server had no matching subnet
configuration for that client.
(Gitlab #2858)
2137. [func] fdupont
A new command "extended-info4-upgrade" makes old leases
from SQL DHCPV4 lease database visible to Bulk Lease Queries.
(Gitlab #2757)
2136. [func] tmark
The default value, in kea-dhcp6, for preferred-lifetime is
now calculated as: 0.625 * valid-lifetime. This calculation
is also used in the event that the specified value for
preferred-lifetime is greater than valid-lifetime. Prior to
this, the default value was 3600 seconds, and there was no
check against sending values greater than valid-lifetime.
(Gitlab #2835)
2135. [build] tomek
The CodeQL pipeline has been enabled on github. Developer's guide
updated with details.
(Gitlab #2760)
2134. [func] andrei
Statistics total-nas and total-pds were increased from 64-bit
values to 128-bit values to accurately represent large pools.
(Gitlab #2658)
2133. [func] andrei
Added missing YANG nodes: allocator, ddns-ttl-percent,
exclude-first-last-24, ignore-dhcp-server-identifier,
offer-lifetime, pd-allocator, read-timeout, tcp-user-timeout,
write-timeout.
Removed obsolete YANG nodes: contact-points, keyspace.
(Gitlab #2832)
2132. [bug] marcin
Fixed a bug in the allocation engine that could cause an invalid
lease assignment in the shared networks using subnets with
different allocator types.
(Gitlab #2843)
2131. [bug] razvan
Added support for 255 bytes long client-id and 130 bytes long
duid (2 bytes for type and at most 128 bytes for value).
(Gitlab #2786)
2130. [func] piotrek
Added support of DHCP Options for the Discovery of
Network-designated Resolvers (DNR) as per draft-ietf-add-dnr.
Kea can now handle DHCPv4 Option code 162 and DHCPv6 Option
code 144.
(Gitlab #2536)
2129. [func] andrei
New statistics were added to keep track of leases that have their
CLTT increased in memory and their expiration time left unchanged
in persistent storage as part of the lease caching feature. The
statistics are: v4-lease-reuse, subnet[id].v4-lease-reuse,
v6-ia-na-lease-reuse, subnet[id].v6-ia-na-lease-reuse,
v6-ia-pd-lease-reuse, subnet[id].v6-ia-pd-lease-reuse.
(Gitlab #2797)
2128. [bug]* razvan
In addition to logging them, the server now sets the
CalloutHandle status to DROP to indicate an error occurred when
it catches unhandled exceptions thrown by a callout.
(Gitlab #2805)
Kea 2.3.7 (development) released on April 26, 2023
2127. [build] razvan
The library version numbers have been bumped up for the Kea 2.3.7
development release.
(Gitlab #2837)
2126. [func] andrei
A new command named reservation-update is now available in the
host_cmds hook library. It updates an existing reservation.
(Gitlab #549)
2125. [func] marcin
Allocators can now be configured in the configuration backend.
(Gitlab #2823)
2124. [perf] andrei
When not explicitly configured, multi-threading mode and the HTTP
dedicated listener are enabled by default for the
high-availability hook library ("enable-multi-threading" and
"http-dedicated-listener" set to true).
(Gitlab #2749)
2123. [bug] razvan
Fixed a bug which was truncating relay suboptions (circuit-id
code 1 and remote-id code 2) if the data ended in 0x0. The
option definitions have been updated from OPT_STRING_TYPE to
OPT_BINARY_TYPE.
(Gitlab #2794)
2122. [bug] marcin
Fixed a bug in the HA hook library whereby the HA service could
sometimes terminate even after the partner's clock has been
corrected. The last clock skew is now ignored when a
communication failure with the partner occurs.
(Gitlab #2754)
2121. [func] marcin
Implemented Free Lease Queue allocator. It can be used for
address assignment in DHCPv4 and prefix delegation in DHCPv6.
The allocator is suitable when the DHCP servers work with
nearly depleted pools, and the time to find an available
lease becomes long with other allocators. The new allocator,
however, slows down the server startup and reconfiguration.
It also uses more memory.
(Gitlab #2780, #2764)
Kea 2.3.6 (development) released on March 29, 2023
2120. [build] razvan
The library version numbers have been bumped up for the Kea 2.3.6
development release.
(Gitlab #2807)
2119. [func] tmark
Added a new parameter, ddns-ttl-percent, to kea-dhcp4
and kea-dhcp6, that may be used to calculate DNS TTL
as a simple percentage of the lease life time.
(Gitlab #225)
2118. [bug] razvan
Fixed a bug which was changing the multi-threading settings when
running config-test command and the settings were different from
the server's configuration. This also fixes the rollback on the
multi-threading settings if there is a configuration error
detected. Also hooks now set DROP flag on the
dhcp4_srv_configured and dhcp6_srv_configured callouts if the
configuration is invalid or an error occured. Proper shutdown
of the HTTP listener is performed now instead of generating a
server crash if the provided address is not valid.
(Gitlab #2799)
2117. [func] fdupont
Added a new ignore-dhcp-server-identifier DHCPv4 compatibility
flag which when set to true (default is false) makes any query
to be accepted even when the address in the DHCP Server
Identifier option belongs to another server (standard behavior
is to drop such queries).
(Gitlab #2785)
2116. [func] piotrek
Added support of Secure Zero Touch Provisioning options as per
RFC8572. Kea can now handle DHCPv4 Option code #143 and DHCPv6
Option code #136.
(Gitlab #939)
2115. [func] tmark
Added the parameter, offer-lifetime, to kea-dhcp4. When
greater than zero, the server temporarily allocates and
persists leases during DHCPOFFER processing.
(Gitlab #2719)
2114. [func] razvan
Added the -T command line parameter to kea-dhcp4 and kea-dhcp6
for testing configuration files, similar to -t, but with extra
checks like checking database connections, checking hook
libraries parameters, and others.
(Gitlab #1671)
2113. [bug] razvan
The reload functionality (by sending SIGHUP) of the kea-dhcp4
and kea-dhcp6 servers has been enhanced to rollback to
previously working configuration if the new configuration is
invalid. There are still cases that can leave the server in an
unrecoverable state, and such case is indicated by a FATAL
log message. The same logic applies to the "config-set" command
available to the server through the control channel.
(Gitlab #2722)
2112. [doc] fdupont
Added in the ARM security a section explaining how
to tune the OpenSSL configuration file for Kea service
accepting commands over HTTPS.
(Gitlab #2784)
2111. [bug] fdupont
Fixed a bug which advertised re-assigned released leases
with zero lifetimes.
(Gitlab #2766)
2110. [func] fdupont
A new boolean configuration flag called "never-send" has been
added to the option data scope. When enabled, the option is not
sent in a response to the client, even if the client explicitly
requests it.
(Gitlab #719)
2109. [bug] fdupont
Compatibility flags e.g. lenient-option-parsing were not
saved by config-get and similar commands.
(Gitlab #2790)
2108. [func] fdupont
Added a new exclude-first-last-24 DHCPv4 compatibility flag
which when set to true (default is false) skips addresses
in .0 and .255 in subnets with prefix length less than 24
in the allocation engine routine picking a free address.
(Gitlab #720)
2107. [func] fdupont
The Kea DHCPv4 server can now handle multiple vivco-suboptions
options with different enterprise IDs.
(Gitlab #467)
2106. [bug] tmark
Corrected code that allowed lease6-get-* commands to return
IA_NA leases with prefix length values of zero and logic in
kea-dhcp6 that was incorrectly generating duplicate iaaddr
options with lifetimes of zero for such leases in REPLYs to
RENEWs.
(Gitlab #2660)
2105. [bug] tmark
kea-dhcp6 now consistently uses valid and preferred lifetime
values provided via classes. Prior to this it was not
utilizing class-supplied lifetimes when renewing existing
leases or when reusing expired leases.
(Gitlab #2739)
Kea 2.3.5 (development) released on February 22, 2023
2104. [build] andrei
The library version numbers have been bumped up for the Kea 2.3.5
development release.
(Gitlab #2768)
2103. [perf] andrei
When not explicitly configured, multi-threading is now enabled by
default for the core Kea DHCP service ("enable-multi-threading"
set to true). For now, HA+MT is still disabled by default
("enable-multi-threading" and "http-dedicated-listener" both
still set to false in the high-availability library parameters).
(Gitlab #2402)
2102. [func]* tmark
The logger to which kea-dhcp4 now logs EVAL_RESULT log
messages issued during packet classification has been
changed from "options4" to "dhcp4". This corrects an
inconsistency between kea-dhcp6 and kea-dhcp4 behavior.
(Gitlab #2720)
2101. [build] andrei
Shell tests and python tests no longer run if gtest is disabled.
This provides the ability to run distcheck without tests.
(Gitlab #2742)
2100. [doc] Kevin P. Fleming
Fixed several JSON examples in the Kea ARM.
(Gitlab #2494)
2099. [func]* tmark
An address reserved in a global reservation must now lie
within the range of the subnet or shared-network selected
by Kea. If it does not, the server will attempt to allocate an
address dynamically. This change applies to both kea-dhcp4 and
kea-dhcp6. Previously, the servers would grant a lease for any
globally reserved address without regard for its feasibility
within the selected subnet. Thanks to Kyle Birkeland for
reporting the issue and contributing the patch.
(Gitlab #2631, #2632)
2098. [doc] razvan
Updated client classification examples in the ARM with a case
where both operands of the evaluated expression are computed at
runtime.
(Gitlab #2664)
2097. [func] tmark
kea-dhcp4 and kea-dhcp6 will now accept renew-timer values that
exceed rebind-timer values but will ignore them and issue a
warning. Previously, the servers treated those values as a fatal
configuration error.
(Gitlab #2677)
2096. [bug] tmark
Corrected a bug which allowed options to be added to themselves
as suboptions.
(Gitlab #2538)
2095. [bug] marcin, tmark
Added a compile-time check of whether the PostgreSQL version
supports the "tcp-user-timeout" parameter. This parameter
is available in PostgreSQL version 12 and later. It is now
ignored for earlier versions and a suitable warning message
is issued.
(Gitlab #2734)
2094. [bug] razvan
Fixed a bug which caused the Kea server to crash when
using the high-availability hooks library and running reconfigure
commands. Thanks to Caciano Machado for reporting this bug and
providing detailed steps on how to replicate it.
(Gitlab #2575)
2093. [func] fdupont
It is now possible to add an "empty" host reservation without any
attribute (e.g. no address, no hostname, no client classes,
etc.). This is useful for determining the KNOWN class.
(Gitlab #2723)
2092. [bug] fdupont
Added logic to kea-dhcp4 and kea-dhcp6 to catch and log
database connection errors that occur during lease
reclamation. Previously, such errors caused the
reclamation timer to not get rescheduled.
(Gitlab #2682)
2091. [bug] marcin
Fixed a bug that caused a response to a config-get command
to lack the configured read-timeout, write-timeout, and
tcp-user-timeout parameters.
(Gitlab #2741)
2090. [build] andrei
Fixed the --with-site-packages configure flag, which previously
had no effect.
(Gitlab #2669)
Kea 2.3.4 (development) released on January 25, 2023
2089. [build] razvan
The library version numbers have been bumped for the Kea 2.3.4
development release.
(Gitlab #2726)
2088. [func]* tomek
The libreload command is now deprecated. The code is still there,
but it will be removed in the future versions.
(Gitlab #2693)
2087. [func] razvan
The Kea DHCPv4 server can now handle multiple vendor options
with different enterprise IDs and multiple vivso-suboptions.
(Gitlab #1518)
2086. [bug] andrei
A spacing issue in a prepared statement that prevented Config
Backend from working with PostgreSQL 15 and above has been fixed.
(Gitlab #2724)
2085. [func] tmark
kea-dhcp-ddns uses new log messages to clearly distinguish
between timeouts and other IO errors when communicating with
DNS servers.
(Gitlab #2589)
2084. [func] razvan
When the client adds a prefix length in the hint, the server
will try to select a pool with the delegated prefix length
equal to the respective value. If no pool is found, the server
will try to select a pool with a lower delegated prefix length
(a larger address space) and if none is found, it will try to
select a pool with a higher delegated prefix length (a smaller
address space).
(Gitlab #1958)
2083. [func] marcin
New database connection parameters, "read-timeout" and
"write-timeout", control the timeouts in communication with the
MySQL database. The "tcp-user-timeout" controls the timeout in
communication with the PostgreSQL database. Setting these
timeouts can prevent occasional Kea hangs due to issues with
the database connectivity.
(Gitlab #2688)
2082. [bug] razvan
The prefix address provided in the prefix and prefix length pair
from the pool configuration is now checked to match the first
address in the pool.
(Gitlab #2612)
2081. [func] tmark
The default value for the kea-dhcp-ddns parameter,
dns-server-timeout, has been increased from 100 ms to
500 ms. This was done to improve the out-of-the-box
user experience.
(Gitlab #2590)
2080. [func] tmark
Bulk Lease Query results can now include delegated prefixes.
Memfile queries used by Bulk Lease Query (BLQ) were modified
to include delegated prefixes when appropriate. Prior to
this they were returning only address leases.
(Gitlab #2713)
2079. [func] marcin
The lease allocation strategy is now configurable. It is possible
to select between iterative and random lease selection for the
address assignment and prefix delegation, respectively, at the
global, shared network, and subnet levels.
(Gitlab #2348, #969)
Kea 2.3.3 (development) released on November 30, 2022
2078. [build] andrei
The library version numbers have been bumped for the Kea 2.3.3
development release.
(Gitlab #2650)
2077. [func] andrei
YANG modules have been updated with three configuration nodes:
extended-info-checks, ignore-rai-link-selection, template-test.
keatest-module has also gained empty, leafref and union nodes for
proper testing of all YANG leaf types.
Additionally, stable libyang and sysrepo versions are recommended
for use in the ARM in place of the previous development versions.
(Gitlab #2601)
2076. [doc] razvan
Add documentation for template classes and the new parameter
'template-test' which evaluates to a string value. This indicates
if the class is spawning classes with the name containing the
evaluated value: 'SPAWN_<template-class-name>_<evaluated-value>'
only if the value is not empty string. This will also add the
packet to the <template-class-name> class.
(Gitlab #2606)
2075. [bug] razvan
The builtin client class ALL can now be used again to apply lease
limits and rate limits.
(Gitlab #2615)
2074. [func] tmark
Added a new library, libkea_tcp, that provides support for a
generic TCP listener. Initially, this library will be used
for Bulk LeaseQuery
(Gitlab #2583)
Kea 2.3.2 (development) released on October 26, 2022
2073. [build] razvan
The library version numbers have been bumped for the Kea 2.3.2
development release.
(Gitlab #2607)
2072. [func] razvan
If both "flush-reclaimed-timer-wait-time" and
"hold-reclaimed-time" are non-zero, when the client sends a
release message the lease is expired. Previously it was deleted
from the lease storage. The default values are 25 and 3600
respectively, effectively changing the default server behavior.
(Gitlab #2548)
2071. [perf] andrei
Significantly improved the performance of editing configuration
with kea-netconf. Instead of making a request to the sysrepo
datastore for each leaf and leaf-list node, a single request is
done and the config is translated from the received data node.
This approach is considered experimental.
(Gitlab #2400)
2070. [func] andrei
kea-netconf now requires libyang v2 and sysrepo v2 to compile and
run. Support for libyang v1 and sysrepo v1 has been dropped.
(Gitlab #2311)
2069. [func] fdupont
Added a new sanity checker named "extended-info-checks"
which checks and eventually upgrades lease extended
info which store into lease user context in DHCPv4
the dhcp-agent-options content and in DHCPv6 the
relay-msg fields and options.
(Gitlab #2595)
2068. [func] djt
Kea's official APK, Deb, and RPM packages have been restructured
and made to follow a consistent packaging standard. Some of the
package names have been modified, and some packages have been
consolidated into larger packages as a result of these changes.
Kea now runs under a service user on RPM systems. Upgrading Kea
on Debian and Ubuntu systems should be done with ``apt
dist-upgrade`` when upgrading to this release or later, as some
packages need to be removed before being reinstalled. Depending
on how Kea was installed, upgrading to this release or later on
Debian or Ubuntu systems could cause the DHCPv6 and/or the DDNS
server, as well as the open-source hooks to be removed. In order
to ensure they are properly installed, either install the
``isc-kea`` metapackage, or install the packages explicitly by
name. Further details can be found in the Gitlab issue.
(Gitlab #2220)
2067. [func] fdupont
Updated the layout of extended information optionally
stored in lease user context to add remote and relay
identifier (sub-)options.
(Gitlab #2587)
2066. [bug] fdupont
Fixed lease reuse process to clear the user context
when the lease expired and was reclaimed.
(Gitlab #2588)
2065. [func] djt
A compatibility config option called ignore-rai-link-selection
has been added to the DHCPv4 config allow operators to ignore
Link Selection suboption data in Relay Agent information options.
When this configuration value is set to true, Kea will no longer
use data provided in the suboption for subnet selection.
(Gitlab #2543)
Kea 2.3.1 (development) released on September 28, 2022
2064. [build] mgodzina
The library version numbers have been bumped for the Kea 2.3.1
development release.
(Gitlab #2576)
2063. [bug] fdupont
Fixed 32 bit compatibility issue with PostgreSQL time.
(Gitlab #2532)
2062. [func] fdupont
The lease_cmds hook library supports two new commands
"lease4-write" and "lease6-write" which should help
to recover emergency situations e.g. full disk space
by writing the memory lease database into a CSV file.
They are supported only by the memfile backend.
(Gitlab #1654)
2061. [bug]* fdupont
Enforce length limits on host identifier (20 bytes for
hardware address, 128 bytes for DUID and other types).
(Gitlab #2557)
2060. [build] andrei
Two scripts that are used for checking YANG modules now
automatically detect the location of the yanglint tool and its
libraries based on the values passed to the configure script.
"make check" should now pass uninterrupted on some delicate
systems like Alpine and RPM-based. Also, reinstall.sh, used to
install YANG modules, now detects sysrepoctl automatically.
(Gitlab #2558)
2059. [func] marcin
The lease_cmds hook library returns a new "conflict" status
code indicating an issue with a lease update due to a mismatch
between the received lease and the server's configuration or
state. The HA hook library differentiates between this new
status and a general error and avoids transitioning to the
partner-down state when conflicts occur. The new
"max-rejected-lease-updates" parameter sets a limit for the
maximum number of conflicts before the server terminates the
HA service.
(Gitlab #2408)
2058. [build] fdupont
kea-lfc is now built just after libraries.
(Gitlab #2526)
2057. [doc] marcin
Fixed broken example and documentation for long DHCPv4 options
in the ARM.
(Gitlab #2545)
2056. [build] andrei
Improved build compatibility in Kea between g++ and Boost
libraries. The compilation error that was fixed was reported to
occur with g++ 8 and boost 1.75. The fix consists of passing
callbacks directly to boost::asio::io_service::post and not
indirectly through a functor. Thanks to rski for reporting the
error and suggesting the fix!
(Gitlab #2519)
2055. [func] andrei
When Kea starts with an erroneous file configuration, if the
logging is viable and is configured to log at least at ERROR
level, it will log the errors according to the configured
logging. Previously, it would log them in stderr which made
gathering of the errors more difficult. A final log message is
still logged at stderr just as before.
(Gitlab #1955)
Kea 2.3.0 (development) released on August 31, 2022
2054. [build] razvan
The library version numbers have been bumped for the Kea 2.3.0
development release.
(Gitlab #2546)
2053. [doc] razvan
A new appendix for configuration templates added to Kea ARM.
which include High Availability with multi-threading and secure
connections using TLS.
(Gitlab #2441)
2052. [func] andrei
Omitted logger configuration entries are now properly inherited
from the root logger as the ARM suggests.
(Gitlab #2537)
2051. [func] razvan
Added support for bulk lease query options defined in RFC 6926.
The bulk lease query functionality has not been implemented yet.
(Gitlab #2527)
2050. [build] andrei, tomek
Fixed problem with preparing system using hammer on FreeBSD
13.0. The available sphinx and python versions are now detected
dynamically. This should prevent future package upgrades (e.g.
to python 3.10) from breaking our builds again.
(Gitlab #2534)
2049. [build] razvan, fdupont
The distcheck rule is able to compile and run unittests for
database backends, GSS-TSIG and Sysrepo/NETCONF.
(Gitlab #2071)
2048. [bug] fdupont
Set broadcast MAC destination address in DHCPv4 replies
when the IP address is broadcast. Thanks to Joost Bekkers
for reporting the issue and contributing the patch. This
improves Kea's compatibility with Cisco Small Business
switches.
(Gitlab #2211)
2047. [func] fdupont
Added support of multiple instances of the DHCPv6
"vendor-class" (code 16) and "vendor-opts" (code 17)
options: specifying multiple options with different
enterprise numbers is now supported by Kea.
2046. [doc] andrei
Disabled smart quotes in Sphinx configuration to leave quotes
unchanged. Prior to this change, quotes were converted into
left-quotes and right-quotes. This made it difficult for users to
copy and use chunks of configuration directly from the ARM.
(Gitlab #2513)
Kea 2.2.0 (stable) released on July 27, 2022
2045. [build] tmark
Bumped library version numbers for the Kea 2.2.0 stable release.
(Gitlab #2504)
2044. [func] tmark
Modified indexes on the hosts table in the postgresql
schema to improve performance on host reservation searches.
Thanks to Paul Kutzer for suggesting these changes.
(Gitlab #2452)
2043. [func] andrei
The status-get command now shows the status of the sockets being
opened to receive DHCP requests, and a list of errors for the
sockets that were not successfully created.
(Gitlab #2434)
2042. [func] razvan
Added missing parameters to YANG modules, including TLS
parameters for database connections.
(Gitlab #2224)
2041. [bug] tmark
HA now applies load balancing and scoping only to inbound
client packet types that apply to client lease fulfillment,
e.g. DHCPDISCOVER, DHCPREQUEST, DHCPV6_SOLICIT, DHCPV6_REQUEST,
etc. Previously, HA indiscriminately balanced and
scoped all inbound packets, including those related to lease
query.
(Gitlab #1781)
2040. [func] djt
Added support for Alpine 3.16 in hammer.py.
(Gitlab #2491)
2039. [doc] andrei
Updated the limits hook library ARM documentation to reflect
support for lease limits.
(Gitlab #2481)
2038. [func] djt
Added a new statistic to kea-dhcp4 that counts host
reservation conflicts. They are now tracked at both
the global and subnet levels, as v4-reservation-conflicts
and subnet[id].v4-reservation-conflicts, respectively.
(Gitlab #2419)
2037. [bug] razvan, marcin
Fixed a crash in the HA+MT scenario caused by a race condition
which occurred between resetting the CalloutHandle state and
accessing the hook point parameters, from different threads,
when unparking packets.
(Gitlab #2473)
2036. [build] andrei
Added a tool that checks whether there are any missing REST
commands from the API Reference section of the ARM.
See tools/check-for-missing-api-commands.sh.
It has been integrated into the Gitlab CI and runs on every
push.
(Gitlab #2379)
2035. [doc] Daniel Bjors
The Developer's Guide now correctly uses the Lease4CollectionPtr
and Lease6CollectionPtr types. Thanks to Daniel Bjors for
reporting this typo.
(Gitlab #2447)
2034. [func] andrei
The PostgreSQL schema has been changed to provide initial support
for the lease-limiting feature, part of the limits hook library.
(Gitlab #2445)
2033. [func] tmark
Functionality needed to support the lease-limiting feature of
of the limits hook library has been added to Memfile_LeaseMgr.
(Gitlab #2436)
Kea 2.1.7 (development) released on June 29, 2022
2032. [build] razvan
The library version numbers have been bumped for the Kea 2.1.7
development release.
(Gitlab #2455)
2031. [func] fdupont
Improved compatibility with OpenSSL 3.0.x, in particular
recover system error messages.
(Gitlab #1614)
2030. [doc] fdupont, tomek
GSS-TSIG examples updated. The recommendation to not use
client-keytab and credentials-cache at the same time added.
(Gitlab #2247)
2029. [bug] fdupont
The check of the subnet id in configuration is stricter:
values outside the 0..4294967295 are rejected. Note that
the value 0 means to leave Kea to assign itself the id.
(Gitlab #2086)
2028. [build] orbea, fdupont
Compatibility with LibreSSL 3.5.2 improved.
(Github #121, Gitlab #2411)
2027. [func] fdupont
The TLS is now supported with Multi-Threaded HA (HA+MT) scenario.
Additional parameters (trust-anchor, cert-file, key-file,
require-client-certs) are now supported in the HA configuration.
(Gitlab #1706)
2026. [func] andrei
The MySQL schema has been changed to provide initial support for
the lease limiting feature, part of the limits hook library.
(Gitlab #2438)
2025. [bug] tmark
Added missing support for client-class user-context to
both MySQL and PostgreSQL CB hook libraries.
(Gitlab #2430)
2024. [func] djt
The ALLOC_ENGINE_V4_ALLOC_FAIL_SUBNET log message format has been
slightly modified, so that when it is emitted for a subnet that
is not within a shared network, it emits "(none)" for the value
of the shared network. The ARM documentation for this parameter
has been updated to reflect that subnets within shared networks
will in fact display which shared network the subnet belongs to.
The ALLOC_ENGINE_V6_ALLOC_FAIL_SUBNET log message format has
changed to be consistent with the format of
ALLOC_ENGINE_V4_ALLOC_FAIL_SUBNET.
(Gitlab #2395)
2023. [bug] tmark
Corrected a MySQL CB issue that caused subnets to be
updated without having audit entries created when the
affiliated shared-network is deleted. This can cause
the subnets to be excluded from subsequent CB refresh
cycles.
(Gitlab #2299)
Kea 2.1.6 (development) released on May 25 2022
2022. [func] andrei, djt
kea-admin lease-upload now calls the lease file cleanup (LFC)
process to clean up entries with duplicate addresses in the input
CSV file, to avoid a conflict error when inserting the leases in
the database. kea-admin also no longer asks for input on
non-interactive shells. A new -y|--yes flag has been added that
enables automatic overwriting of any file that kea-admin writes
to, when dumping or uploading leases.
(Gitlab #2293)
2021. [build] razvan
The library version numbers have been bumped for the Kea 2.1.6
development release.
(Gitlab #2421)
2020. [doc] andrei
The rate-limiting feature of the new limits hook library has been
documented. It can apply a specified limit of a certain number of
packets per time unit to a given client class or subnet.
(Gitlab #562, #1650)
2019. [func] tmark
A new built-in class, "SKIP_DDNS", was added, which can be used
in conjunction with the ddns-tuning hook library to skip
performing DDNS updates for a given client.
(Gitlab #2354)
2018. [func] razvan
The kea-dhcp4 server now supports portions of RFC 3396, allowing
it to send and receive DHCP options longer than 255 bytes.
(Gitlab #2227)
2017. [bug] marcin
A bug in the allocation engine, which caused it to write an
allocated lease under the wrong subnet ID within a shared
network, has been corrected. This was occurring when multiple
clients matched the same fixed address reservation. The first
client is now assigned the fixed address, while a subsequent
client is then given a dynamically allocated address from a
different subnet in the shared network.
(Gitlab #2409)
2016. [doc] fdupont
Documentation for the role-based access control (RBAC)
premium hook library was added to the ARM.
(Gitlab #1263)
Kea 2.1.5 (development) released on Apr 27, 2022
2015. [bug] tmark
Fixed an issue in kea-dhcp6 that was causing the server
not to update the FQDN option in outbound responses when
the ddns-tuning hook lib calculates a new host name.
(Gitlab #2392)
2014. [bug] tmark
Correct an issue that was causing reconfigure to fail
in kea-dhcp4 and kea-dhcp6 when using ddns-tuning hook
library.
(Gitlab #2390)
2013. [build] razvan
Library version numbers bumped for Kea 2.1.5 development
version.
(Gitlab #2385)
2012. [doc] andrei
Documented whether it's OK or not to have overlapping pools,
including PD pools in IPv6.
(Gitlab #1842)
2011. [func] djt
Added CTRL_AGENT_COMMAND_RECEIVED log line with command and
source address to the kea-ctrl-agent for commands which
are not forwarded on to another daemon. Added client
remote-address to CTRL_AGENT_COMMAND_FORWARDED log message if
it is available.
(Gitlab #687)
2010. [func] razvan
Several extra log messages now detail the subnet selection
process. The messages are available on debuglevel 40.
(Gitlab #2352)
2009. [func] tmark
Added new hook callout points: ddns4_update to Kea DHCPv4
server and ddns6_update to Kea DHCPv6 server. This enables
use of the ddns-tuning hook library.
(Gitlab #1548)
2008. [func]* tomek
The support for benchmarks have been removed.
(Gitlab #2372)
2007. [func] tmark
Added split() function to classification expression
language.
(GitLab #2272)
2006. [func] slawek
Added ``service-sockets-require-all`` parameter to specify
mandatory successfully binding all needed service sockets to
initialize DHCP services (defaults to false). If any socket is
unavailable, then the service fails to start. Added
``service-sockets-max-retries`` parameter (defaults to 0) to
specify the number of retries to open unavailable sockets and
``service-sockets-retry-wait-time`` parameter to specify a time
interval to wait between attempts.
(Gitlab #1716)
2005. [func]* razvan
The support for Cassandra database backend has been removed.
(Gitlab #2116)
Kea 2.1.4 (development) released on March 30, 2022
2004. [build] razvan
Library version numbers bumped for Kea 2.1.4 development
version.
(Gitlab #2363)
2003. [func] fdupont
Added the support of sub-options in the flex_option
hook library.
(GitLab #2314)
2002. [bug] tmark
Fixed a bug in MySql config backend that caused it to
store unspecified, client-class valid and preferred life
time values as zero in the database.
(Gitlab #2344)
2001. [bug] razvan
Fixed a bug which causes client classes with empty test
expressions to fail class evaluation when those classes are
retrieved from config backend.
(Gitlab #2336)
2000. [func] fdupont
Added the ``early-global-reservations-lookup`` configuration
parameter which allows to perform a search for global host
reservations and set client classes before the subnet
selection. This is achieved when explicitly configured to
``true`` and it defaults to ``false`` if not configured.
(Gitlab #2249)
1999. [func] tmark, razvan
The kea-dhcp6 server fully supports using PostgreSQL for config
backend. This should be considered an experimental feature.
(Gitlab #2355, #2356)
1998. [func] tmark, razvan
With the addition of support for client classes, the kea-dhcp4
server now fully supports using PostgreSQL for config backend.
(Gitlab #2322)
1997. [bug] tmark
The obsolete log message, DHCP4_NCR_CREATE, has been
removed from kea-dhcp4.
(GitLab #2301)
Kea 2.1.3 (development) released on Feb 23, 2022
1996. [build] razvan
Library version numbers bumped for Kea 2.1.3 development
version.
(Gitlab #2317)
1995. [func] tmark
kea-dhcp4 now supports using PostgreSQL for config
backend for everything except client classes. The
new hook library is libdhcp_pgsql_cb.so. This should
be considered an experimental feature.
(Gitlab #95)
1994. [func] razvan
Added support for Server Identifier Override RAI sub-option
(RFC 5107). The implementation is not complete according to the
RFC, because the server does not store the RAI, but the
functionality handles expected use cases.
(Gitlab #1695)
1993. [func] razvan
Added global and per subnet counters for allocation failures:
``v4-allocation-fail``, ``v4-allocation-fail-shared-network``,
``v4-allocation-fail-subnet``, ``v4-allocation-fail-no-pools``,
``v4-allocation-fail-classes``, ``subnet[X].v4-allocation-fail``,
``subnet[X].v4-allocation-fail-shared-network``,
``subnet[X].v4-allocation-fail-subnet``,
``subnet[X].v4-allocation-fail-no-pools``,
``subnet[X].v4-allocation-fail-classes``,
``v6-allocation-fail``, ``v6-allocation-fail-shared-network``,
``v6-allocation-fail-subnet``, ``v6-allocation-fail-no-pools``,
``v6-allocation-fail-classes``, ``subnet[X].v6-allocation-fail``,
``subnet[X].v6-allocation-fail-shared-network``,
``subnet[X].v6-allocation-fail-subnet``,
``subnet[X].v6-allocation-fail-no-pools``,
``subnet[X].v6-allocation-fail-classes``.
There is a warning log message emitted in the logs each time one
of the allocation failure counters is incremented.
(Gitlab #2054)
1992. [bug] razvan
The ``maxver`` and ``maxsize`` logger parameters are excluded
from ``config-get`` command response if the logger output is
``stdout``, ``stderr`` or ``syslog``.
(Gitlab #2288)
1991. [bug] jinmei, razvan
Fixed keactrl exit code when netconf is not build.
(Gitlab #2262)
1990. [func] razvan
Added the ``reservations-lookup-first`` configuration parameter
which controls whether host reservations lookup should be
performed before lease lookup. This parameter has effect only
when multi-threading is disabled. When multi-threading is
enabled, host reservations lookup is always performed first. The
``reservations-lookup-first`` parameter defaults to ``false``
when multi-threading is disabled.
(Gitlab #2036)
Kea 2.1.2 (development) released on Jan 26, 2022
1989. [build] razvan
Library version numbers bumped for Kea 2.1.2 development
version.
(Gitlab #2281)
1988. [bug] tmark
Kea core logic now ensures options belonging
to client classes are properly created when
classes are read from configuration backends.
(Gitlab #2246)
1987. [bug] tmark
Fixed an issue in PostgreSQL support code that caused
asserts when compiled with: -Wp,-D_GLIBCXX_ASSERTIONS.
(Gitlab #2284)
1986. [func] fdupont
The kea-admin command now accepts extra arguments which
are passed to the database command tool, e.g. '--ssl' to
'mysql' with `kea-admin ... -x --ssl'. Quotes are not
preserved but multiple arguments can be given.
(Gitlab #2225)
1985. [func] fdupont
Added support for using files to configure basic HTTP
credentials. Instead of configuring a value, it is taken from
the content of a file. The new parameters of the Control Agent
configuration are:
- 'user-file' pointing to a file vs 'user'
- 'password-file' pointing to a file vs 'password'
- 'password-file' pointing to a file with the secret
(which is <user>:<password>) vs 'user' and 'password'.
For the High Availability hook library the new parameter
is 'basic-auth-password-file' which can be used as an
alternative to 'basic-auth-password'.
(Gitlab #2006)
1984. [func] andrei
Introduced the lease-upload command to kea-admin which can upload
leases from a memfile CSV file to a database backend.
(Gitlab #2039)
1983. [bug] fdupont
Minimum and maximum values of lifetimes are no longer
skipped when the configuration is retrieved even when
they are the same as the default value.
(Gitlab #2222)
1982. [bug] andrei
The config for an HA peer now accepts an IPv6 address as a valid
value for the "url" entry.
(Gitlab #2264)
1981. [func] tomek
The default-url DHCPv4 option has been replaced with
v4-captive-portal, as defined in RFC8910.
(Gitlab #1684)
1980. [func]* andrei
The kea-admin lease-dump command now outputs a CSV file that is
compatible with the memfile backend. This is useful when
migrating from database to memfile. The generated output is
backwards incompatible. Any tools that depend on it would need
to adapt.
(Gitlab #2038)
1979. [bug] fdupont
Update and delete operations on leases no longer raise
an error with infinite valid lifetime (used by BOOTP)
and MySQL or PostgreSQL backends where timestamps can
be limited to 32 bits.
(Gitlab 897)
1978. [doc] tomek
The Kea Administrator Reference Manual now correctly states that
DHCPv6 authentication option has code 11, not 10.
(Gitlab #2207)
1977. [bug] razvan
Use only MAX_HWADDR_LEN (20) bytes from remote-id when extracting
the MAC from relay options.
(Gitlab #2201)
1976. [func] andrei
Added hwtype and hwaddr_source columns to v6 memfile.
(Gitlab #2236)
1975. [func] tmark
Additional changes and corrections relating to Config Backend
were made to the PostgreSQL database schema. In addition, the
upgrade scripts were renamed to ensure proper file name ordering.
Note that PostgreSQL CB is not yet functional.
(Gitlab #2183, #2244, #2245)
1974. [func] fdupont
The global parameter lookup has been refactored to provide better
performance. Proper return error code (CONTROL_RESULT_ERROR) has
been fixed in some cases when trying to apply the new
configuration. Old code was using wrong hardcoded '2' value
(CONTROL_RESULT_COMMAND_UNSUPPORTED).
(Gitlab #1082)
1973. [func] fdupont
MySQL backends now can be configured to use the SSL/TLS
support to protect connections to the server. New
database parameters are "cert-file", "key-file",
"trust-anchor" and "cipher-list". The negotiated cipher
name is logged so the MySQL service configuration can
be checked. PostgreSQL accepts the same parameters
but they only trigger the call to the OpenSSL generic
initialization in the Pq C-API.
(Gitlab #34)
1972. [func] andrei
Kea servers now can accept trailing commas in file
configurations. While parsing, a warning is printed with the
location of the comma to give the user the ability to correct
a mistake.
(Gitlab #2084)
1971. [func] tmark, jad
Added support for embedded DHCPv6 DUIDs within DHCPv4
Client Identifier options per RFC 4361. This allows
Kea to support DDNS in dual stack environments per
RFC 4703(Sec 5.2). Thanks to John Dickinson for
contributing the patch!
(Gitlab #1934)
Kea 2.1.1 (development) released on Nov 24, 2021
1970. [build] razvan
Library version numbers bumped for Kea 2.1.1 development
version.
(Gitlab #2195)
1969. [build] andrei
Fixed "make check -j N" running tests in parallel in src/lib/log.
(Gitlab #2172)
1968. [build] andrei
Fixed make check failing when googletest support was disabled.
(Gitlab #2167)
1967. [bug] andrei
Fixed a bug where keactrl did not color the active status code
for kea-dhcp-ddns as it did for the other servers.
(Gitlab #2117)
1966. [func] djt
Allow Kea to pack opaque data tuples within options with zero
length to accommodate some DHCP clients who have been observed
to send DHCPv4 option 124 with zero length tuples.
(Gitlab #2021)
1965. [func] andrei
Increase the value that "maxsize" can take from 2GB to 2PB.
(Gitlab #2130)
1964. [func] wlodek
Added support for Debian 11 in hammer.py.
(Gitlab #2042, #2193)
1963. [func] andrei
hammer.py has had several improvements.
NETCONF and PostgreSQL will be properly configured when running
prepare-system on Fedora and FreeBSD.
vagrant will be automatically upgraded if it is too outdated.
Error messages are more clear when running on unsupported
systems.
hammer.py is now able to detect Arch Linux distributions and
offers limited support for it, being able to prepare-system with
freeradius and netconf support.
(Gitlab #2111, #2112)
1962. [func] andrei
kea-netconf updates: fixed store-extended-info, it was an
operational node instead of a config node. Added several
containers and leaves: compatibility, lenient-option-parsing,
multi-threading, enable-multi-threading, packet-queue-size,
thread-pool-size, valid-lifetime, min-valid-lifetime,
max-valid-lifetime, preferred-lifetime, min-preferred-lifetime,
max-preferred-lifetime, cache-max-age, cache-threshold,
ddns-generated-prefix, ddns-override-client-update,
ddns-override-no-update, ddns-qualifying-suffix,
ddns-replace-client-name, ddns-send-updates,
ddns-update-on-renew, ddns-use-conflict-resolution,
ip-reservations-unique, parked-packet-limit, reservations-global,
reservations-in-subnet, reservations-out-of-pool,
statistic-default-sample-age, statistic-default-sample-count,
store-extended-info, on-fail.
(Gitlab #2136)
1961. [func] tomek, tmark
The initial, stubbed version of the PostgreSQL CB hook
library has been created. The library is not yet functional
and does not installed.
(Gitlab #1848)
1960. [build] andrei
Froze sphinx dependency versions used to build documentation.
Added the update-python-dependencies Makefile rule to bump the
versions.
(Gitlab #2161)
1959. [doc] djt
Move documentation for acceptable format strings into the Kea
ARM. The relevant section of the ARM was previously referring
to a dead link in the Log4cpp documentation.
(Gitlab #2134)
1958. [func] tomek, tmark
PostgreSQL database schema has been extended with tables for
Config Backend (CB). This is the first step towards PostgreSQL
CB. However, as there is no code yet to use those new tables,
they're not not functional yet.
(Gitlab #90, #2166)
Kea 2.1.0 (development) released on Oct 27, 2021
1957. [build] razvan
Library version numbers bumped for Kea 2.1.0 development
version.
(Gitlab #2141)
1956. [bug] tmark
Modified stat_cmds hook library to omit statistics
for non-existent subnets from results returned by
stat-lease4-get and stat-lease6-get commands.
(Gitlab #2033)
1955. [bug] tmark
kea-dhcp4 no longer sends DHCPNAKs in response to
DHCPREQUESTs for addresses for which it has no knowledge.
(Gitlab #1584)
1954. [doc] fdupont
Updated the Developer's Guide to explain what to do when
GSS-TSIG hook unit tests fail from a system Kerberos
incompatible configuration.
(Gitlab #2056)
1953. [build] fdupont
Changed the name of the GSS-TSIG hook library object to
libddns_gss_tsig.so.
(Gitlab #2115)
Kea 2.0.0 (stable) released on September 29, 2021
1952. [build] razvan
Library version numbers bumped for Kea 2.0.0 stable version.
(Gitlab #2104)
1951. [doc] tomek
A new appendix for configuration templates added to Kea ARM.
the first of which is a home power user.
(Gitlab #2050)
1950. [doc] slawek
Added a description and an example of the usage of the "include"
statement in the Kea configuration file to the ARM.
(Gitalb #2080)
1949. [bug] tmark
kea-dhcp6 now correctly determines DNS update flags when
the allocation engine dynamically changes the selected
network subnet.
(Gitlab #1622)
1948. [func] tmark
HTTP library will now emit a warning log when the queue of
pending client requests for a given URL exceeds a threshold.
(Gitlab #2085)
1947. [bug] marcin
Corrected a bug in the High Availability hooks library that could
cause a standby server not to synchronize its lease database
after a temporary communication interruption with its partner.
(Gitlab #1959)
1946. [bug] marcin
Fixes a bug in MySQL configuration backend schema. DHCP options
associated with deleted client classes are now automatically
deleted.
(Gitlab #2094)
1945. [build] andrei
Reverted qa#261 changes, which forced linking with OpenSSL 1.1
when available. This caused a segfault, when Kea's crypto library
used OpenSSL 1.1, but the MySQL library it linked against, used
OpenSSL 1.0.
(Gitlab #2081)
1944. [bug] tmark
kea-dhcp4 and kea-dhcp6 both now support a global parameter,
parked-packet-limit, that can be used to limit the number
of client responses the server may park pending completion
of hook library callouts.
(Gitlab #1307)
1943. [bug] marcin
Fixed a bug in fetching client classes from the Config Backend.
The bug resulted in failures during attempts to evaluate the
classes for a received packet.
(Gitlab #2077)
1942. [func] fdupont
Added basic statistics to the DHCP-DDNS server.
(Gitlab #2040)
1941. [func] fdupont
Per DNS server TSIG keys are now supported in the DHCP-DDNS
(aka D2) server configuration. A new callout point 'select_key'
gives access to the selected TSIG key before sending DNS updates.
(Gitlab #2011)
Kea 1.9.11 (development) released on Aug 30, 2021
1940. [build] razvan
Library version numbers bumped for Kea 1.9.11 development
version.
(Gitlab #2053)
1939. [bug] tmark
Removed all MultiThreadingCriticalSections from lease_cmds
hooks library which can cause a dead-lock when running HA+MT.
The commands simply try to acquire the resource lock and fail
if the resource is unavailable also logging an error message.
(Gitlab #2051)
1938. [bug] razvan
Fix dead locks caused by commands with CS on http listener
threads and CS on main thread racing with CS on other threads.
(Gitlab #2041, #2043)
1937. [bug] razvan
The Config Backend is now capable of reestablishing database
connection after a failure.
(Gitlab #1982)
1936. [build] andrei
Kea attempts to first link with compatibility library OpenSSL 1.1
(usually found on CentOS 7) before falling back to the system
OpenSSL (1.0 on CentOS 7 which is out of support).
(Gitlab qa#261)
1935. [func] andrei
The store-extended-info config entry was added to Kea YANG
modules at root-level and at subnet-level.
(Gitlab #1944)
1934. [func] tmark
Kea-dhcp6 now supports specifying valid-lifetime and
preferred-lifetime values in client classes (via both
configuration file and Config Backend). Prior to this
it could only be specified at the global, shared-network,
and subnet scopes.
(Gitlab #1710)
1933. [doc] fdupont, tomek
Added a new ARM section about GSS-TSIG. Currently it describes
how to build Kea with GSS-API support. It will be expanded in
the future.
(Gitlab #2018)
1932. [func] tmark
MySQL indexing of leases database has been improved. It now
behaves better on older MySQL versions. In particular, the lease
reclamation no longer causes full scans to be performed. This
fix introduces MySQL schema update to 11.0. This should reduce
the periodic performance slowdowns.
(Gitlab #2030)
1931. [bug] tomek
Two hook messages HOOKS_CALLOUT_ERROR and HOOKS_CALLOUT_MESSAGES
are now printing the hook name and index properly. Thank you to
Shawn Routhier for reporting the issue.
(Gitlab #2020)
1930. [doc] razvan
Extended documentation section about setting up the timezones in
MySQL and PostgreSQL databases.
(Gitlab #1978)
1929. [build] andrei
Compatibility with upcoming boost 1.77 has been improved.
Thanks to Brad Smith for the patch!
(Gitlab #1980)
1928. [bug] tmark
Modified kea-dhcp4 and kea-dhcp6 to only append the
ddns-qualifying-suffix if the input name does not
already end with that suffix. Prior to this the
suffix was always added which could lead to names
including the suffix twice.
(Gitlab #1529)
Kea 1.9.10 (development) released on Jul 30, 2021
1927. [build] razvan
Library version numbers bumped for Kea 1.9.10 development
version.
(Gitlab #1984)
1926. [func]* marcin
Server tags in the MySQL database are now represented as strings
with a maximum length of 64 characters. Previously, the server
tags could be up to 256 characters long, and it could cause
database migrations to fail on the systems with UTF-8 encoding
configured for MySQL. Shorter server tags avoid hitting the
limitation on the maximum length of an indexed table column.
(Gitlab #1976)
1925. [build] fdupont
Updated parsers to bison 3.3 or later.
(Gitlab #453)
1924. [bug] razvan
The MultiThreadingCriticalSection is now thread-safe and can be
called from http client or http listener processing threads.
(Gitlab #1964)
1923. [func] andrei
Integrate with Sysrepo v1.x branch. Building with support for
Sysrepo now requires the latest v1.x versions:
sysrepo v1.4.140 + libyang v1.0.240.
Support for legacy Sysrepo versions v0.x has been dropped.
(Gitlab #1077)
1922. [func] marcin
Added support for storing client classes in the MySQL config
backend.
(Gitlab #1920, #1928, #1965, #1972, #1977)
1921. [func] fdupont
The D2 d2_srv_configured hook point used DROP status to notify
the D2 server that an error has occurred and the configuration
is rejected. The error message is passed to the D2 server
through the new 'error' hook parameter.
(Gitlab #1950)
Kea 1.9.9 (development) released on June 30, 2021
1920. [build] andrei
Bump library versions for the Kea 1.9.9 development release.
(Gitlab #1947)
1919. [bug] razvan
Fix the run script hook library leaving behind defunct processes.
(Gitlab #1878)
1918. [bug] razvan
When parsed, PSID was incorrectly ignoring the PSID value when
psid-len was 16 instead of ignoring it when the values is 0 as
per the RFC.
(Gitlab #1858)
1917. [func] tomek
DHCPv4 and DHCPv6 are now more consistent when logging the
reasons why a packet was dropped. This information is now
available on debuglevel 15. Also added a section in the ARM
discussing the debug levels. The subnet selection failed log
message now provides more useful information about the subnet.
(Gitlab #1915, #1916)
1916. [func] razvan
The Kea DHCPv4 server accepts requests using server identifier
configured at client class level.
(Gitlab #1836)
1915. [func] andrei
DOCSIS options are no longer offered to any vendor other than
Cable Labs (vendor-id == 4491). This was not an explicit check
previously and the match to the vendor relied on a technicality
such that other vendors could have received these options under
certain conditions.
(Gitlab #1894)
1914. [func]* tomek
The Cassandra (CQL) support is being deprecated, both for
leases and host backends. For the time being the features
will produce a warning, but will otherwise function normally.
However, the functionality will be removed in the future
Kea releases.
(Gitlab #1892)
1913. [doc] tomek
Kea adopted Developer Certificate of Origin for incoming
contributions. Please see the CONTRIBUTING.md file for details.
(Gitlab #1895)
1912. [doc] fdupont, tomek
The Kea configuration syntax is now documented in BNF notation.
See new appendix in the ARM.
(Gitlab #504, #745)
1911. [bug] andrei
Fixed a minor regression where kea-admin and keactrl would output
technical errors like "unbound variable" instead of more helpful
messages like "missing backend" because of the undefined variable
checks introduced in 1.9.4. Added tests to further prevent it.
(Gitlab #1653)
1910. [func] andrei
Extended perfdhcp to send v4 DHCPRELEASE messages via -F flag.
(Gitlab #1119)
1909. [build] fdupont
Experimental support for Heimdal implementation of GSS-API
with Kerberos 5 added.
(Gitlab #1909)
1908. [func] razvan
Added export for V4 option 82 (DHO_DHCP_AGENT_OPTIONS) and
respective suboptions 1 (RAI_OPTION_AGENT_CIRCUIT_ID) and
suboption 2 (RAI_OPTION_REMOTE_ID) in the run script hooks
library.
(Gitlab #1840)
1907. [doc] peterd, andrei, razvan
Many Kea ARM corrections and updates.
(Gitlab #1917)
1906. [func] fdupont
Added support for the TKEY DNS resource record.
(Gitlab #1880)
1905. [build] fdupont
Added an optional --with-gssapi switch to the configure
script. It checks for the presence and suitability of
packages pertinent to GSS-TSIG. This has been added in
anticipation of future work and does not add any
functionality to Kea.
(Gitlab #1884)
Kea 1.9.8 (development) released on May 26, 2021
1904. [build] wlodek
Library version numbers bumped for Kea 1.9.8 development
version.
(Gitlab #1882)
1903. [func] andrei
Kea now recognizes requests sent from vendors that include their
information in DHCPv6 Vendor Class option (code 16) for the
purpose of offering custom options in the response. Previously,
only the Vendor-specific Information option (code 17) was
searched for a vendor ID. For the purpose of classification, both
options are looked into, now, just as before.
(Gitlab #1837)
1902. [func] andrei, fdupont
All logs that expose configuration, either in full or in snippets
now have the values of "password" and "secret" entries replaced
with asterisks "*****".
(Gitlab #1721)
1901. [bug] marcin
Corrected a bug in DHCPv4 subnet selection. The server ignored
the Subnet Selection option supplied by a client if its query
contained a Relay Agent Information (RAI) option without a Link
Selection option. After this change, the server respects the
Subnet Selection option when RAI lacks the Link Selection
option. If RAI includes it, it takes precedence over the Subnet
Selection option.
(Gitlab #1816)
1900. [bug] tmark
Fixed a sporadic failure caused by a wrong assertion in
unit test, testMtHttpClientTest.workPauseResumeShutdown,
introduced by #1818.
(Gitlab #1876)
1899. [func] tmark,razvan
In HA+Mt mode, the HA hook library now pauses and resumes
its worker threads when Kea core enters and exits critical
sections, respectively. This eliminates race conditions
during core processing such as reconfiguration, shutdown,
and certain RESTful API commands.
(Gitlab #1818)
1898. [func] fdupont
The DROP class may now depend on the KNOWN or UNKNOWN classes
and may be used after the host reservation lookup.
(Gitlab #1815)
1897. [func] andrei
Kea has a new configuration section called "compatibility" geared
towards non-compliant clients. The only boolean parameter added
for now called "lenient-option-parsing" changes the way DHCPv6
option 16's vendor-class-data field is parsed. When enabled,
instead of complaining that a length exceeds the rest of the
option's buffer, the value is considered to be the rest of the
buffer. This also applies to custom options defined with the
tuple type for both DHCPv4 and DHCPv6.
(Gitlab #1860)
1896. [func] wlodek
Perfdhcp extended to send v6 traffic from multiple networks.
(Gitlab #1416)
1895. [func] razvan
Added additional evaluation tokens to extract and print data:
addrtotext, int8totext, int16totext, int32totext, uint8totext,
uint16totext, uint32totext.
(Gitlab #1680)
1894. [func] fdupont
Implemented 'auth' logger, dedicated to logging access
control information, such as basic HTTP authentication.
(Gitlab #1590)
1893. [func] fdupont
Botan 2.14 or later can now be used as a crypto library for
the TLS/HTTPS support in Kea.
(Gitlab #1665)
1892. [func] fdupont
Added + operator as an convenient alias to concat() function
in expressions.
(Gitlab #1824)
Kea 1.9.7 (development) released on Apr 28, 2021
1891. [build] razvan
Library version numbers bumped for Kea 1.9.7 development
version.
(Gitlab #1820)
1890. [doc] fdupont
Added a new section to the ARM, Kea Security, which describes
various security related topics and how to address them.
(Gitlab #1587)
1889. [func] fdupont
Accept comments (shell '#', C++ '//' and C '/*...*/') in
JSON commands sent via the control channel or the Control
Agent.
(Gitlab #1652)
1888. [func] tmark
Added a new operational mode, HA+MT, to the HA hook library.
HA+MT provides direct, multi-threaded HTTP communication
between peers for the exchange HA protocol commands and
responses.
(Gitlab #1736)
1887. [build] andrei, fdupont
Migrated autoconf macros, which became warningly deprecated
since autoconf 2.70, to supported macros.
(Gitlab #1632, #1651)
1886. [doc] tomek
Added a section in the ARM explaining the relationship between
keactrl and systemd scripts.
(Gitlab #1759)
1885. [func] andrei
kea-admin is now able to interactively ask for a password if no
parameter follows the -p or the --password parameters. This
requires the user to give it as the last parameter. The entered
password is not echoed back to the terminal in order to prevent
over-the-shoulder snooping or other social engineering
techniques. Alternatively, you can set the password via the
KEA_ADMIN_DB_PASSWORD environment variable.
(Gitlab #1675)
1884. [doc] fdupont
HTTP_CONNECTION_HANDSHAKE_FAILED log message got a
description.
(Gitlab #1779)
Kea 1.9.6 (development) released on March 31, 2021
1883. [build] andrei
Bump library versions for Kea 1.9.6 release.
(Gitlab #1772)
1882. [func] razvan
Implemented database connection recovery for forensic logging.
To achieve this, the "on-fail" connection parameter has been
added to control the action performed on connection loss.
The supported values are "stop-retry-exit", "serve-retry-exit"
and "serve-retry-continue". They indicate if the server should
disable the service on connection loss ("stop-retry-exit") or if
on recovery failure the server should shut down
("stop-retry-exit" and "serve-retry-exit") or continue
("serve-retry-continue"). The default value used (if not
configured) is "stop-retry-exit" for lease, host and config
backends, and "serve-retry-continue" for forensic log.
(Gitlab #1621)
1881. [func] fdupont
Moved errors about URLs using names (vs addresses) or
https (vs http) scheme in High Availability hook
configuration from connection opening time to
configuration time.
(Gitlab #1758)
1880. [build] fdupont
TLS support is now reported by configure in the
cryptographic backend section.
(Gitlab #1774)
1879. [func] fdupont
The Control Agent now supports TLS/HTTPS. This works with
OpenSSL and there are known problems with Botan, which will
be addressed in the future.
(Gitlab #1662)
1878. [bug] razvan
Request enabling DHCP service when the HA hooks library is
unloaded. It may remain disabled if it had been disabled
outside of the HA hooks library. Prior to this change, if
the HA hooks library disabled the DHCP service it would
always remain disabled after the hooks library was unloaded.
(Gitlab #1697)
1877. [func] fdupont
kea-shell supports TLS/HTTPS. This is limited to the python 3
version i.e. if kea-shell is configured with python 2 it still
works in 1.9.6 but raises an error if a new TLS/HTTPS argument
is specified.
(Gitlab #1663)
1876. [doc] fdupont
Added documentation for TLS/HTTPS support.
(Gitlab #1664)
1875. [func] fdupont
TLS/HTTPS support was added to asiolink and http libraries.
(Gitlab #1661)
1874. [doc] marcin
Added notes in the ARM highlighting that the address and
delegated prefix pools must be split when HA load-balancing
mode is used.
(Gitlab #1726)
1873. [func] andrei
kea-admin now accepts the -P|--port parameter with a custom
port used to connect to the database.
(Gitlab #1674)
Kea 1.9.5 (development) released on Feb 24, 2021
1872. [build] razvan
Library version numbers bumped for Kea 1.9.5 development
version.
(Gitlab #1713)
1871. [bug] andrei
The cache threshold feature introduced in 1.9.4 modified
previously versioned schema 9.5. This caused problems for people
who had already upgraded to 9.5 which in Kea versions means 1.9.2
and 1.9.3.
In this change, the upgrade commands were moved to schema 9.6 and
are only applied if the database does not contain the required
columns. Affected Kea installments can now be upgraded to 1.9.5
and above seamlessly.
(Gitlab #1698)
1870. [bug] razvan
Fixed a crash when using the Kea Legal Log Hooks Library with
multi-threading. This bug was affecting only database backends.
The log file backend was not affected by this bug.
(Gitlab #1711)
1869. [func] tmark
Kea-dhcp4 now supports specifying valid-lifetime in client
classes. Prior to this it could only be specified at the
global, shared-network, and subnet scopes.
(Gitlab #1635)
1868. [func] andrei
The forensic log hook library has gained an auto-increment
primary key column in it's logs table. It is now able to function
in a MySQL Percona cluster which requires a primary key for all
it's tables when configured with pxc_strict_mode = ENFORCING
which is also the default value.
(Gitlab #1709)
1867. [bug] andrei
MySQL connection unit tests have been modified to work with
Percona cluster. This change doesn't fix all problems, but it
improves the situation sufficiently to be able to run unit tests
with positive results on a Percona cluster.
(Gitlab #1708)
1866. [func] marcin
Added new log messages issued when a dynamic lease allocation
fails. The new messages provide comprehensive information about
the circumstances in which the failure occurred. In particular,
they state whether the client is connected to a shared network
or not. If it is, the shared network name is provided. Otherwise,
the client's subnet id is logged. The new messages also inform
from how many subnets the server attempted to allocate a lease
and how many subnets could not be used because of non-matching
client classes.
(Gitlab #1701)
1865. [func] razvan
Implemented the Run Script hooks library which can be used to
run external scripts for specific packet processing hook points.
There are several exported environment variables available for
the script. Currently the implementation is nonblocking and
Kea will not wait for the script to finish execution before
continuing to the next step. For this reason, the next step
provided by the script is ignored.
(Gitlab #899)
1864. [func] fdupont
New parameters to handle TLS support added in Control Agent
config: "trust-anchor", "cert-file", "key-file" and
"cert-required". They can be configured, but their values are
not yet used.
(Gitlab #1662)
1863. [func] andrei
The perfdhcp tool now supports the -x l option that exports the
assigned leases to stdout in CSV format. This new capability is
very useful for the ongoing DB cluster experiments, where we need
to correlate leases between multiple Kea instances sharing the
same cluster.
(Gitlab #1703)
1862. [build] andrei
Added execution permissions to the upgrade scripts in Kea's
installation. Previously kea-admin db-upgrade would fail with a
permission denied error. It started manifesting in 1.9.3 and
affected 1.9.4 as well. Additionally, now, when running make in
the source repository to recreate scripts e.g. kea-admin, after a
change to the .in files e.g. kea-admin.in, they maintain the
execution permissions granted in the initial build. This makes
development more seamless.
(Gitlab #1681)
1861. [bug]* tmark
kea-dhcp4 now uses the value for each fixed field (e.g.
next-server, server-hostname, boot-file-name) from the
first class in query's list of classes that specifies the
field. Prior to this it used the value from the last class
which specified the field. It may be necessary to revise
existing configurations to get the desired values.
(Gitlab #1672)
Kea 1.9.4 (development) released on Jan 27, 2021
1860. [build] razvan
Library version numbers bumped for Kea 1.9.4 development
version.
(Gitlab #1666)
1859. [doc] wlodek
Added example files with configured Vendor Specific Information
option (code 43) and Vendor-Identifying Vendor-specific
Information option (code 125) with several suboptions each.
(Gitlab #1546)
1858. [bug] razvan
The DHCP service can be independently enabled or disabled by
the user command, by the database connection mechanics or
by the HA library. The DHCP service is disabled when any
of those originators disables the service, and it is enabled
when all those who previously disabled the service enable it.
The 'dhcp-enable' and 'dhcp-disable' commands accept 'origin'
parameter with valid values of 'user' (which is the default)
indicating a user generated command and 'ha-partner' which is
used internally by the HA library.
(Gitlab #1601)
1857. [build] andrei
Code format styles meant to be as close as possible to the
recommended coding guidelines are now included with the Kea
source repository in the form of .clang-format and
.uncrustify.cfg. The clang-format.sh and uncrustify.sh scripts in
the tools directory can be used to apply these styles to chosen
files. See coding guidelines in CONTRIBUTING.md for more details.
(Gitlab #1455)
1856. [bug] razvan
When using the config backend, the server converts the old
'reservation-mode' global parameter internally to new
reservation flags. The new flags are listed when issuing the
config-get command.
(Gitlab #1598)
1855. [func] marcin
Improved failover procedure in Kea High Availability library
by introducing new communication-recovery state. In this
state the load balancing servers remain responsive to DHCP
queries when the communication between them is interrupted.
The new feature is controlled using the delayed-updates-limit
configuration parameter.
(Gitlab #1402)
1854. [func, perf] fdupont
Implemented "lease caching", a feature similar to ISC
DHCP's dhcp-cache-threshold. Lease caching is configured
through two new parameters: cache-max-age and cache-threshold,
and is supported by both kea-dhcp4 and kea-dhcp6. When enabled,
lease-caching allows the server to skip updating lease storage,
when a client is requesting it's own pre-existing lease whose
age falls under the cache threshold and for which there are no
substantive changes to lease values such as the hostname.
(Gitlab #1418)
1853. [func] fdupont
Populated the space field of option definitions. This solved
reported bugs where a specific standard option processing
was applied to an option from another space but sharing the
same code. In particular, this fixes the problem reported
with vendor suboption 125.
(Gitlab #1585)
1852. [bug] razvan
Corrected the value of unacked-clients-left returned in response
to the status-get command and the corresponding log messages.
The previously returned value was too low by 1.
(Gitlab #1578)
1851. [func] fdupont
Removed methods fetching leases by both client identifier
and hardware addresses from the API.
(Gitlab #1540)
1850. [build] andrei
Add two scripts to help with code aesthetics, insight on how Kea
is built or minor build optimizations:
* ./tools/check-for-duplicate-includes.sh: warns you if
there is a source file that includes the same header twice.
While this wouldn't normally result in any errors, it is an
unusual practice. If you feel that a header should be included
twice in a file, add the file under "# Exceptions:" in the
script.
* ./tools/print-generated-files.sh: prints all the files
that are generated which may or may not be part of the
repository. These consist of messages, parser files, and "built
sources" (as called in Makefile.am files).
(Gitlab #1602)
1849. [doc] tomek
Two known DHCPv4 RFC violations are now documented in the ARM.
They are both cases where Kea deliberately deviates from the
RFC to accommodate some common broken-client behaviors.
(Gitlab #1608, #1615)
1848. [bug] razvan
The cql upgrade script from schema v3.0 to v4.0 was broken in
Kea-1.9.3 and has been fixed also enabling the unittest.
(Gitlab #1616)
Kea 1.9.3 (development) released on Dec 16, 2020
1847. [bug] andrei
Harden shell scripts and fix some of the resulted test failures.
* #!/bin/sh for all scripts
* set -eu in all scripts
* shellcheck all scripts, and fix all shellcheck warnings
* and more...
(Gitlab #1574)
1846. [build] razvan
Library version numbers bumped for Kea 1.9.3 development
version.
(Gitlab #1605)
1845. [func] marcin
Kea configuration now allows for using database passwords
which include whitespace.
(Gitlab #692)
1844. [bug] marcin
Corrected a bug in Kea Control Agent error responses when a
malformed command was sent. In some cases a map with an error
response was returned instead of a list.
(Gitlab #432)
1843. [func] andrei
Allow perfdhcp to request options via option 55 PRL. perfdhcp
adds option 55 with a few requested options by default so in
order to allow `perfdhcp -o 55,abcd` special logic to merge all
the buffers of option 55 was implemented. Works with multiple
`-o` arguments.
(Gitlab #1508)
1842. [func] razvan
Fixed the db connection reconnect implementation to honor
each connection backend configuration. The most important
improvement is that only the affected manager will be
recreated when a connection is lost. Previously, even
managers which were not affected had to be recreated on
any connection loss. Also fixed an issue with recovery
when multi-threading is enabled.
(Gitlab #1375)
1841. [bug] marcin
Corrected issues with inheritance of the DHCPv6 interface-id
parameter. When interface-id is set at shared network level
but not at the subnet level this setting is properly propagated
to the config backend and reported when responding to the
config-get command. Prior to this change, if the interface-id
was set for a shared network, it was always returned for the
subnets belonging to this shared network, even when subnet
specific value was not specified.
(Gitlab #652)
1840. [bug] fdupont
Fixed the inheritance of the triple min-valid-lifetime,
valid-lifetime and max-valid-lifetime parameters from
the global scope, and fixed it for preferred-lifetime too.
Added a sanity check refusing incorrect settings, e.g.
the lifetime not being between min and max values.
(Gitlab #1456)
1839. [bug] tmark
kea-dhcp4 and kea-dhcp6 now calculate the DDNS TTL value
based on RFC 4702, Section 5 which suggests that the
TTL value be 1/3 of the lease's valid life time with a
minimum value of 10 minutes. Prior to this the servers
set the TTL to equal to the lease's valid life time.
(Gitlab #936)
1838. [bug] fdupont
The DHCPv6 sent multiple instances of an option or a
sub-option when it seems to be requested more than once
directly by the client or using the always-send flag.
(Gitlab #1449)
1837. [doc] cstrotm
Several Kea ARM corrections.
(Gitlab #1514)
Kea 1.9.2 (development) released on Nov 25, 2020
1836. [build] razvan
Library version numbers bumped for Kea 1.9.2 development
version.
(Gitlab #1555)
1835. [doc] peterd
Several Kea ARM corrections.
(Gitlab #1536)
1834. [func] fdupont
Added two new callouts (hook points) in the control agent.
The "auth" callout is executed after the basic authentication
(if configured) and the command processing. The "response"
callout is executed after the command processing and before
the HTTP response is returned.
(Gitlab #1421)
1833. [doc] sgoldlust
Many documentation corrections.
(Gitlab #1539)
1832. [func] tomek, wlodek
Perfdhcp extended with functionality to gradually
increase elapsed time in solicit and secs field in offer.
(Gitlab #1332)
1831. [bug] razvan
Fixed the DHCPv6 server implementation of the
reservations-out-of-pool flag to match the DHCPv4 one. When the
flag is true:
* the server assumes that all reserved address do not belong to
the dynamic pool.
* the server will not assign reserved addresses that are inside
the dynamic pool to the respective clients.
* addresses matching the respective reservations from inside
the dynamic pools (if any) can be dynamically assigned to any
client.
(Gitlab #1550)
1830. [func] fdupont, razvan
Added new configuration options reservations-global,
reservations-in-subnet and reservations-out-of-pool to replace
the old reservation-mode parameter. The new flags can be
configured independently, adding support for new configuration
scenarios when global and in subnet reservations are both
active.
(Gitlab #1405)
1829. [bug] fdupont, razvan
Fixed a bug in the hasAddressReservation function which was
causing the search for reservations to end as soon as no global
reservation was found when configuring a subnet or shared
network with global reservations enabled.
(Gitlab #1405)
1828. [bug] andrei, razvan
Fix trivial logic error in handling the "lease4-update" command
manifesting itself on v4 if multi-threading is enabled.
Notable affected environment is a HA with the
"send-lease-updates" configuration setting explicitly set to
true. Prior to this fix, lease updates would not go through to
other HA nodes, even though some log lines would say they would.
A simple workaround prior to this fix is to disable
multi-threading.
(Gitlab #1542)
1827. [build] andrei
Add `tools/add-config-h.sh` script that can add
`#include <config.h>` lines to non-generated source files that
are missing it.
(Gitlab #1453)
Kea 1.9.1 (development) released on Oct 28, 2020
1826. [build] razvan
Library version numbers bumped for Kea 1.9.1 development
version.
(Gitlab #1481)
1825. [doc] andrei
Examples for option definitions, option data, standardized option
spaces other than "dhcp[46]", custom option spaces, option
embedding under doc/examples/kea[46]/all-options.json.
(Gitlab #1298)
1824. [func] tmark
Added a new parameter, ddns-use-conflict-resolution, to
kea-dhcp4 and kea-dhcp6. This parameter is passed per request
to kea-dhcp-ddns which uses it to determine whether or not
conflict resolution rules (see RFC 4703) are followed for that
request. The default value is true. Disabling conflict
resolution should only be used after careful consideration.
(Gitlab #1386)
1823. [doc] tomek
Updated options documentation for DHCPv4 and DHCPv6.
(Gitlab #1436, #1460)
1822. [func] fdupont
When multi-threading is enabled the status-get command displays
the average length of the multi-threading packet queue for last
10, 100 and 1000 packets.
(Gitlab #1306)
1821. [func] anonymous, fdupont
The forensic log hook library now logs release and decline
events.
(Gitlab #1445)
1820. [bug] razvan
Fixed lease update when using HA and lease_cmds hooks with
database backend. Previously, HA updates were rejected because
the database backend rejects operations on the lease if the old
expiration time is different than what it is already stored, to
act as a protection mechanism for parallel updates from several
threads or processes.
(Gitlab #1434)
1819. [func] fdupont
Improved error messages for bad escapes in JSON strings.
(Gitlab #151)
1818. [doc] andrei
Add to the reservation documentation:
* instructions on how to choose "reservation-mode"
* priority of "reservation-mode" specified at all levels
* priority of file reservations vs database reservations
(Gitlab #1299)
1817. [func] fdupont
Redact control agent logs to hide basic HTTP authentication
passwords from the configuration files. Note that when HTTP
headers are logged credentials are present in clear text.
(Gitlab #1459)
1816. [func] fdupont
The message logged when basic HTTP authentication succeed is
now informative (was DEBUG, is INFO now).
(Gitlab #1450)
1815. [bug] marcin
Fixed libdhcpsrv build failures when building without database
backends.
(Gitlab #1468)
1814. [func] marcin
Added ip-reservations-unique global parameter which controls
whether or not it is allowed to create multiple host reservations
for the same IP address or delegated prefix. By default, it is
not allowed to create multiple reservations for the same lease
within the same subnet. This change facilitates the use case
in which a single host can communicate with the DHCP server over
multiple network interfaces but should be assigned the same
reserved lease regardless of which interface is used.
(Gitlab #1428)
1813. [func] tmark
A new parameter, ddns-update-on-renew, has been added to
kea-dhcp4 and kea-dhcp6 configuration. When true, the server
will always update DNS when a lease is renewed even if the DNS
information for the lease has not changed. The prior, and now
default, behavior is for the server to only update DNS for a
renewing lease if its DNS information has changed.
(Gitlab #1385)
1812. [doc] andrei
Document how MAC addresses can be formatted for use as attributes
in RADIUS authentication
(Gitlab #1441)
1811. [func] fdupont
Two new parameters were added: cache-threshold and cache-max-age
to the DHCPv4 and DHCPv6 global scopes. They will govern the
upcoming cache threshold feature. The parameters can be set and
retrieved, but they're not used yet.
(Gitlab #1418)
Kea 1.9.0 (development) released on Sep 30, 2020
1810. [build] fdupont, razvan
Bump up libs version for Kea 1.9.0 release.
(Gitlab #1400)
1809. [func] razvan
Added csv-format option to flex_option hook to be able to insert
option data in csv format. The implicit value is false,
maintaining compatibility with the previous default raw format.
(Gitlab #1373)
1808. [func] razvan
Support for new IPv6-only-preferred option for DHCPv4 has been
added. It lets Kea to signal to compatible devices that the
IPv6 connectivity is available and they can disable their
IPv4 stack. This implements support for draft-ietf-dhc-v6only-08,
which is expected to be soon published by IETF as an RFC.
(Gitlab #1351)
1807. [doc] tomek
Added separate table with DHCPv4 options that are governed by Kea
itself, rather than configured by administrator.
(Gitlab #1323, #1398)
1806. [bug] tmark
The DNS update code behaving better when there is a shared
network and the code initially selected one subnet, but then
later determined that a different subnet will be used. There
is still a corner-case in DHCPv6 if the client requests multiple
addresses or multiple prefixes and some of them is serviced from
one subnet and some from another.
(Gitlab #1389)
1805. [doc] tomek
API documentation for lease4-get-* and lease6-get-* commands
has been updated.
(Gitlab #1392)
1804. [func] fdupont
Added a new reservation-get-by-id command to retrieve all host
reservations with an identifier value and type. Made the
subnet-id optional in the reservation-get-page command.
(Gitlab #1163)
1803. [doc] fdupont
Corrected Kea ARM sections describing how to send DHCPv6
Vendor-specific Information Option (code 17) with sub-options.
(Gitlab #1025)
1802. [bug] fdupont
Removed the bug which allowed for repeating the same
configuration parameter multiple times in the same scope.
The second occurrence of the parameter overwrote the first
occurrence causing server misconfiguration. Starting from
this change an error is raised when the same parameter occurs
multiple times in a given scope the location of the first value.
(Gitlab #1102)
1801. [doc] fdupont
Moved JSON files describing commands to the share directory
and adding a new access entry taking read or write values.
(Gitlab #1240)
1800. [func] fdupont
Added support of basic HTTP authentication in HTTP library,
control agent, kea shell and high availability hook.
(Gitlab #1304)
1799. [bug] fdupont
Checked execution of queries to get schema versions of MySQL
and PostgreSQL database in kea-admin.
(Gitlab #828)
1798. [bug] tmark
kea-dhcp4 now correctly updates DNS when a client
returns for lease after the lease has expired. Prior
to this, the server would remove the entries but then
fail to add them unless the hostname (or FQDN) changed.
This change also eliminates redundant DNS removes when
expired leases are reclaimed and given to different clients.
(Gitlab #1409)
Kea 1.8.0 (stable) released on Aug 26, 2020
1797. [build] razvan
Bump up libs version for Kea 1.8.0 release.
(Gitlab #1395)
1796. [bug] marcin
Kea HTTP client re-establishes connection with the HTTP server
when timeout occurs. Prior to this change the client tried to
reuse the connection after timeout often getting subsequent
timeouts. Re-establishing the connection may help avoid further
timeouts during the High Availability operation.
(Gitlab #1390)
1795. [bug] razvan
Added check for 'renew-timer' value to be lower than or equal to
'rebind-timer' value at subnet and shared network level.
(Gitlab #505)
1794. [func] razvan
The 'status-get' command send to DHCPv4 or DHCPv6 servers will return
information about multi threading settings ('multi-threading-enabled',
and only if this setting is active, 'thread-pool-size' and
'packet-queue-size').
(Gitlab #1305)
1793. [doc] tmark
Added Leasequery hook library to the list of available hook
libraries in the ARM.
(Gitlab #1372)
1792. [doc] tmark
Added the Database Connectivity section to the ARM which explains
how Kea servers respond to backend database connectivity issues.
(Gitlab #1284)
1791. [doc] tmark
Updated the ARM section for the Lease Commands hook library
which incorrectly stated that a command return value of 2 would
be returned when no lease(s) matched the command. The value
returned is actually 3.
(Gitlab #1384)
1790. [bug] marcin
Fixed a bug in Kea Configuration Backend observed when using certain
MariaDB database versions. As a result of this bug the Kea servers were
unable to fetch configurations stored in the database upon startup. The
bug was related to the usage of timestamps which in MariaDB must be
set to 1970-01-01 00:00:01 UTC or later. In some cases the Kea CB used
out of bounds timestamp values. This bug was observed when using MariaDB
10.4.13.
(Gitlab #1382)
1789. [bug] razvan
Fixed a bug in the lease reclaim process which would not reschedule the
timer if the operation failed.
(Gitlab #1335)
1788. [bug]* fdupont
When a host reservation in a subnet reserves an address, the
address must be within the subnet. This check was previously
only done by the host command hook library. Note it does not
apply to prefix delegation.
(Gitlab #1254)
1787. [bug] razvan
The recount leases functions consider leases in 'declined' state as
'assigned' so that when the lease is reclaimed or reused, no negative
counters are generated. The 'subnet[X].reclaimed-leases' and
'reclaimed-leases' are now cumulative counters and are never
decremented or reset until server restart. Removed references to non
existent 'declined-reclaimed-addresses' counters.
(Gitlab #1336)
1786. [bug] razvan
Update lease stats when using commands from lease-cmds hook.
(Gitlab #1065)
1785. [func] fdupont
If enabled, the default value for queue capacity in congestion control
has been trimmed down from 500 to 64. The feature continues to be disabled
by default.
(Gitlab #285)
1784. [build] wlodek
Socket path in kea ddns default config was changed to
/tmp/kea-ddns-ctrl-socket.
(Gitlab #1379)
1783. [doc] tomek
Installation instructions for RADIUS hook updated.
(Gitlab #1310)
1782. [bug] tmark
Corrected a bug that causes kea-dhcp4/kea-dhcp6 servers to crash after
losing connectivity to a configuration backend database. The servers
now correctly honor the max-reconnect-tries parameter.
(Gitlab #1369)
1781. [bug] razvan
Reject invalid declined state for PD prefix in add and update
commands in lease-cmds hook.
(Gitlab #1349)
Kea 1.7.10 (development) released on Jul 29, 2020
1780. [doc] wlodek
Added a section to Kea ARM about tuning performance for kea-dhcp4
and kea-dhcp6.
(Gitlab #1285)
1779. [build] tmark
Library version numbers bumped for release.
(Gitlab #1346)
1778. [func]* fdupont
Changed the order of subnets to follow ascending subnet identifier.
(Gitlab #1265)
1777. [doc] fdupont
Added in the Developer's Guide an example about how to cross
compile Kea for a Raspberry Pi.
(Gitlab #1221)
1776. [func] fdupont
DHCP servers now log a fatal error message when a reconfiguration
attempt left a no longer working server. Documentation was
updated tp propose remedy actions.
(Gitlab #507,#1166)
1775. [doc] vicky
A Code of Conduct has been added.
(Gitlab #1143)
1774. [func] tmark
leaseX-del commands now support a new parameter, update-ddns,
which instructs the server to remove DNS entries for a
lease after it has been deleted.
(Gitlab #544)
1773. [perf] fdupont
Kea statistics now uses standard c++11 chrono library instead
of POSIX time library from boost.
(Gitlab #1174)
1772. [perf] fdupont
Set kea-lfc process priority to lower than default.
This change should alleviate CPU utilization spikes caused
by LFC process observed on some systems.
(Gitlab #1311)
1771. [func] fdupont
Duplicate ChangeLog entry removed.
1770. [func] fdupont
Added kea-admin lease-stat-recount command which recounts cached
statistics in MySQL and PostgreSQL lease databases.
(Gitlab #1196)
1769. [build] fdupont
Added detection of the musl libc which implements dlclose() as
a no-operation: this behavior breaks Kea expectations for
hook library unloading.
(Gitlab #771)
1768. [func]* fdupont
Removed the support of the Logging toplevel entry. Now loggers must
be defined in each server toplevel entry.
(Gitlab #916)
1767. [bug] fdupont
Fixed unit tests failing on systems where an interface is named eth0.
(Gitlab #1043)
1766. [func] fdupont
Optimized the interface manager code and removed the 16 bit limit
to interface indexes.
(Gitlab #553)
1765. [bug] fdupont
Corrected a bug in MySQL Config Backend which occasionally caused
the DHCP servers to overlook some configuration changes. This
issue could occur when the server fetched configuration changes
within one second after they they were applied in the database.
(Gitlab #1247)
1764. [doc] fdupont
Added thread safety consideration sections to library documentations
in the developer guide.
(Gitlab #996,#1264)
1763. [bug] fdupont
Changed the way hook libraries are unloaded. Now unload is done
in two phases: the first phase calls unload() entry points and
removes callouts, the second phase unmaps hook library memory
spaces. This should lead to fewer problems including fewer crashes
at exit time. On the other hand, incorrect libraries can stay
in memory until exit and prevent any (re)load.
(Gitlab #1282)
Kea 1.7.9 (development) released on June 24, 2020
1762. [bug] fdupont
Fixed the control command execution: either it was deferred by
DHCP packet processing or a spurious error message was logged.
(Gitlab #1234)
1761. [bug] fdupont
Found and fixed a possible source of incorrect statistics cached
in MySQL and PostgreSQL lease databases which in some cases
made servers fail to start.
(Gitlab #944,#1196)
1760. [bug] razvan
Fixed log message on DHCPv6 IA_NA lease renew.
(Gitlab #1276)
1759. [bug]* fdupont
Fixed the way configuration global entries are parsed in DHCPv4
and DHCPv6 servers. We expect that the change will not be visible
for sane configurations.
(Gitlab #1245)
1758. [func]* fdupont
Earlier Kea versions converted "comment" entries to "user-context"
scope in the configuration when using config-get. This backwards
compatibility has now been removed. This may affect users who use
config-get or config-write commands and use comments in their
configurations.
(Gitlab #1100)
1757. [bug] fdupont
config-backend-pull commands were fixed to be applied to the
current configuration
(Gitlab #1189)
1756. [bug] fdupont
Made the parking lot API generic thread safe.
(Gitlab #1255)
1755. [func]* fdupont
Implemented various race avoidance mechanisms in the multi-threaded
packet processing: only one query from the same client is processed,
subsequent queries from the same client are dropped at the exception
of the most recent which will be processed after. When picking
a free address or prefix from a pool the resource is considered
as not free for other threads. This is used by the lease commands
hooks library to avoid conflicts with a minimal overhead.
Finally individual lease reclamation is exclusive of multi-threaded
packet processing.
(Gitlab #1147)
Kea 1.7.8 (development) released on May 27, 2020
1754. [func] marcin
Improved the procedure of restarting the servers in the terminated
HA state. The servers can now be restarted sequentially without the
risk of returning to the terminated state right after restart.
Previously, the servers had to be both shutdown before being
restarted to avoid returning to the terminated state.
(Gitlab #1205)
1753. [func]* marcin
Extended the response to the status-get command to include
information about the progress of the failover procedure
while the active servers are in the communication interrupted
state. The new data allow for monitoring the number of clients
attempting to communicate with the partner which is presumably
offline, total number of packets sent to the partner and so on.
The syntax of the response was modified and is incompatible with
previous Kea versions.
(Gitlab #1087)
1752. [doc] tmark
Added documentation for the Leasequery premium
hook library to the ARM.
(Gitlab #1180)
1751. [perf] marcin
Corrected performance issue occurring while loading large configurations
via the MySQL Config Backend. Improper database indexing caused long
server startup time as well as long time to respond to various
commands, such as subnet4-list or subnet6-list.
(Gitlab #1242)
1750. [func] razvan
Refactored HooksManager so that no lazy initialization is possible
from dhcp processing functions. The function getHooksManager is now
private.
(Gitlab #1227)
1749. [func] fdupont
When the version is a development (vs. stable) one (second
number is odd, e.g. in 1.7.x) a server or agent logs a
warning to dissuade use in production.
(Gitlab #1184)
1748. [func] marcin
Added two extensions to the HA hooks library. Firstly, the active
servers no longer wait for the lease update acknowledgments from
the backup servers. Secondly, the new passive-backup mode allows
for running a single active server with a number of backup
servers.
(Gitlab #999)
1747. [bug] fdupont
Multi-threading and congestion handling were made incompatible:
when both are enabled by a configuration the dhcp-queue-control is
silently disabled, when packet-queue-size is not 0 and the
multi-threading packet queue is full the oldest packet is dropped
to make room for a new received one.
(Gitlab #1173)
1746. [bug] fdupont
lease4-add and lease6-add commands now return an error when the
lease already exists.
(Gitlab #1170)
1745. [bug] fdupont
Made state model and external sockets thread safe.
(Gitlab #1095)
1744. [func] razvan
Stopping packet processing when changing or reloading configuration.
(Gitlab #1188)
Kea 1.7.7 (development) released on Apr 29, 2020
1743. [doc] tomek
ISC now provides a dashboard solution for Kea. Added documentation
pointers about the ISC Stork project.
(Gitlab #1191)
1742. [func] fdupont
Added new cumulative statistics: for each assigned IPv4 address,
IPv6 NA address or IPv6 PD prefixes cumulative-assigned-addresses,
cumulative-assigned-nas or cumulative-assigned-pds global and
per subnet is increased. A spelling error in the result-set of
the stat-lease4-get of the stat cmds hook library was fixed.
(Gitlab #816)
1741. [func] fdupont
When the MySQL InnoDB reports a deadlock (very rare event)
the failed query is rerun.
(Gitlab #1160)
1740. [bug] fdupont
Incorrect signal handling in the process library (used for
control agent, d2 and netconf server but not by DHCPv4 or
DHCPv6 servers) was replaced by the boost ASIO signal set.
(Gitlab #1096)
1739. [func] razvan
Added multi threading configuration parameters which can be used
to adjust server performance according to setup resources and needs:
enable-multi-threading, thread-pool-size and packet-queue-size.
There is also an automatic detection implemented by using
thread-pool-size set to 0. However, the packet-queue-size must be
manually configured and does not scale automatically.
The temporary -N command line option was removed.
The multi threading is disabled by default.
(Gitlab #893)
1738. [func] fdupont
Added new global parameters statistic-default-sample-count and
statistic-default-sample-age to set the default values used
for sample keeping limits.
(Gitlab #1005)
1737. [func] tmark
Added store-extended-info parameter to kea-dhcp4 and kea-dhcp6
which enables the storage of additional information per lease.
This has been added in anticipation of supporting LeaseQuery.
(Gitlab #1010)
1736. [doc] fdupont
A default logging syntax has been updated to reflect recently added
multi-threading capabilities. The process is now identified by
name/process-id.thread-id, e.g. kea-dhcp4.dhcpsrv/8475.12345, where
12345 is the thread-id. Its exact syntax is OS dependent. The
logging syntax can be tweaked using `pattern` option for logging.
(Gitlab #1150)
Kea 1.7.6 (development) released on Mar 25, 2020
1735. [func] wlodek
Added clean output mode to perfdhcp with configurable separator
for periodic reports.
(Gitlab #1046)
1734. [doc] vicky
A list of supported OSes is now described in a separate
platforms.rst file.
(Gitlab #1055)
1733. [func] tmark
Added lease4-resend-ddns and lease6-resend-ddns commands to
the Lease Commands hook library. These commands may be used to
instruct kea-dhcp4 or kea-dhcp6 to resend a request to update a
lease's DNS entries to kea-dhcp-ddns.
(Gitlab #1106)
1732. [func] marcin
Client classes specified within host reservations can be used
to influence subnet choice within a shared network and pool
selection within a subnet.
(Gitlab #1139)
1731. [func] razvan
The NameChangeSender class is thread safe, making DNS updates
compatible with multi-threading packet processing.
(Gitlab #1148)
1730. [func] razvan
Added -N command line switch that enables experimental multi-threading
support. Number of threads can be specified (e.g. -N8) or Kea can be
told to autodetect number of CPU threads (-N0). This feature is
experimental. It hasn't been tested extensively and is known to cause
problems with DDNS and HA. Do not use in production!
(Gitlab #893)
1729. [func] razvan
The RAII MultiThreadingCriticalSection class is now able to
automatically stop and start the packet thread pool in order to
perform server configuration and avoid race conditions in non
thread safe code.
(Gitlab #1016)
1728. [bug] tmark
Memfile now supports commas in the hostname and user-context
columns. Commas in either column now escaped as "&#x2c" when
written out, and unescaped when read back in.
(Gitlab #608)
1727. [bug] tmark
When shutting down due to lost backend database connectivity,
kea-dhcp4 and kea-dhcp6 processes will exit with a non-zero value.
This was temporarily altered by #1108. In addition, the "shutdown"
command now supports an "exit-value" argument.
(Gitlab #1115)
1726. [func] razvan
Handling SKIP and DROP state in hooks so that the same operation
is not performed multiple times. Some hooks will throw exceptions
if the pktX_receive or pktX_send is handled by other hooks, in
such case, the configuration order of the hooks must be changed.
(Gitlab #1088)
Kea 1.7.5 (development) released on Feb 26, 2020
1725. [func] wlodek
Added perfdhcp command option to enable checking address
and/or prefix uniqueness.
(Gitlab #1021)
1724. [func] razvan
Added packet thread pool in dhcpv4 and dhcpv6 servers. It adds
the ability to handle processPacket function on multiple threads.
When enabled, parked packets are also added to the queue of items
to be handles by the thread pool. The packet thread pool is
currently disabled and there is no option to enable it yet.
(Gitlab #892)
1723. [func] tmark
Hostname sanitizing is now globally enabled by default. Prior
to this it was disabled.
(Gitlab #1048)
1722. [bug] razvan
Compilation fix for MySQL/MariaDB on Ubuntu 19.10.
(Gitlab #1071)
1721. [func]* fdupont
Added multi_threading_compatible function in hooks to retrieve
the compatibility with multi-threading. This function is called
when the library is loaded and if it reports 0 (incompatible) and
multi-threading is enabled, then the configuration will be
rejected. The absence of this function from the library defaults
to incompatibility with multi-threading. All hooks and premium
hooks must be updated to be able to be used with multi-threading.
However, not all libraries are (or will ever be) compatible.
(Gitlab #947)
1720. [func]* tomek
The next step status in pkt4_send hook point now is able to
distinguish between SKIP (Kea will skip packing the packet with
the assumption that a hook already did that) and DROP (Kea will
drop the packet). Previously both SKIP and DROP were interpreted
as skip packing.
(Gitlab #1090)
1719. [func] razvan
Prepared CalloutManager to be used in multi-threading by moving
the current library index and hook index to the CalloutHandle.
This change removes the CallountHandle::getLibraryHandle, along
with the possibility of dynamically registering/deregistering
callouts inside callouts.
(Gitlab #957)
1718. [bug] tmark
kea-dhcp4 and kea-dhcp6 now shutdown gracefully by executing
the shutdown command, if connectivity with a backend database
has been lost and retries are either disabled or have been
exhausted. Prior to this they simply invoked exit() which
could orphan control socket files or cause segfaults unloading
the CB Cmds hook library.
(Gitlab #1108)
1717. [func] razvan
Prepared PgSqlHostMgr to be used with multi-threading by using a
connection pool with thread context.
(Gitlab #1074)
1716. [func] razvan
Implemented thread safe stats manager and stats context.
(Gitlab #891)
1715. [bug] tmark
Kea servers now detect and remove orphaned control channel
sockets. This corrects a failure of the servers to restart
with an error of "address already in use" following a fatal
loss of database connectivity.
(Gitlab #1097)
Kea 1.7.4 (development) released on Jan 29, 2020
1714. [build] razvan
Bumped up library version numbers for Kea 1.7.4 release.
(Gitlab #1101)
1713. [bug]* tmark
Code added under #35 to permit scoping of DDNS behavioral parameters
was refactored to improve performance.
(Gitlab #981)
1712. [bug] tmark
Corrected an issue in the MySQL CB hook library which could
cause subnet and shared-network options, properly added to
the CB database, to be discarded when fetched from the backend.
(Gitlab #1093)
1711. [func] razvan
Prepared MySqlHostMgr to be used with multi-threading by using a
connection pool with thread context.
(Gitlab #1073)
1710. [bug] fdupont
The code that handles default parameters and parameters
inheritance, such as applying global values to subnet level,
has been updated slightly. Although unlikely, there is small
possibility this may affect boot-file-name, client-class,
interface, match-client-id, authoritative, next-server,
reservation-mode, and server-hostname values in Subnet4 and
client-class, interface, interface-id, rapid-commit, and
reservation-mode in Subnet6.
(Gitlab #724)
1709. [func] fdupont
MySQL Configuration Backend now allows for storing DDNS related
configuration in the database.
(Gitlab #946)
1708. [doc] tomek
Clarified the relationship between comments and user context.
(Gitlab #1079)
1707. [func] marcin
High Availability hooks library supports controlled maintenance
of the servers. The new ha-maintenance-start command puts one
of the servers in the partner-in-maintenance state and causes
this server to take over the entire DHCP traffic directed to the
HA service. The second server in the in-maintenance state can be
safely shutdown for the maintenance. This new mechanism solves
the problem present in earlier versions of Kea when the
administrator had to rely on the failover mechanism to promote
one of the servers to handle the DHCP traffic while the other
server was down.
(Gitlab #1024)
1706. [bug] fdupont
Fixed BOOTP hook. It now properly handles BOOTP packets and sends
valid responses.
(Gitlab #1064)
1705. [bug] fdupont
Modified option 43 parsing to interpret sub-option codes 0 and 255
as PAD and END when no sub-option with these codes are defined.
This adds control of illegal but common use of these reserved
code points in option 43.
(Gitlab #950)
1704. [func] fdupont
Prepared memfile lease manager to be used with multi-threading.
(Gitlab #894)
1703. [bug] niclas rozenvik
A fix in the --with-gtest option. It is now able to detect the
libgtest.a. Thank you to Niclas Rozenvik for reporting the issue
and proposing a fix!
(Gitlab #1080)
1702. [func] razvan
Update and delete operations on database backends use lease old
expire value (internal storage) to detect concurrent actions on
the same lease.
(Gitlab #1040)
1701. [func] razvan
Initialize all option definitions at program startup instead of
using lazy initialization to make access thread safe and lock-less.
(Gitlab #889)
1700. [func] godfryd
Enabled checking Kea merge request in GitLab CI by Danger tool
(see https://danger.systems/guides/dangerfile.html).
(Gitlab #672)
Kea 1.7.3 (development) released on Nov 18th, 2019
1699. [func] fdupont, marcin
Implemented status-get command which returns general status
information about a Kea server status and optionally
HA specific information if the HA hooks library is present.
(Gitlab #1041)
1698. [doc] wlodek
Avalanche scenario for perfdhcp is now documented.
(Gitlab #876)
1697. [doc] wlodek
Forensic logging documentation now mentions database
configuration.
(Gitlab #943)
1696. [func] fdupont
A new hook library libdhcp_bootp has been implemented. Once
loaded, this hook will provide support for BOOTP packets, as
defined in RFC1497. Please see the "BOOTP support" Section in the
ARM for details.
(Gitlab #898)
1695. [func] fdupont
Added support of BOOTP leases with infinite valid lifetime.
This includes representation of such leases in MySQL and
PostgreSQL databases which the expire date can be a 32 bit
integer.
(Gitlab #897)
1694. [doc] marcin
Described the usage of the ha-heartbeat command to check the
states of the HA enabled DHCP servers.
(Gitlab #998)
1693. [func] fdupont
Client supplied ciaddr is now sent back when responding to
DHCPINFORM
(Gitlab #992)
1692. [build] fdupont
Better support for google test 1.10.0.
(Gitlab #954)
1691. [build] tomek
Google test version detection improved.
(Gitlab #206)
1690. [func] fdupont, razvan
As a preparation for upcoming multi-threading, the PgSQL
connection pool has been implemented. This code is not
usable on its own yet, but it will allow all threads
to share a pool of connections in the future. This
should improve the overall PgSQL lease backend performance.
Fixed some log messages that were missing lease type details
in DHCPv6 PostgreSQL lease manager actions.
(Gitlab #1044)
Kea 1.7.2 (development) released on Nov 27, 2019
1689. [bug]* fdupont
The default Kea Control Agent's configuration file uses port 8000
instead of 8080 for the agent. This corrects the mismatch between
the default port number used by the kea-shell and the agent.
(Gitlab #793)
1688. [func] fdupont
Added a new callout (hook point) executed when the server has
completed a configuration update using the Config Backend.
(Gitlab #596)
1687. [doc] fdupont
Described for developers the way for a hook library to be loadable
only for specific server(s) and applied as an example to ha.
(Gitlab #50)
1686. [func] razvan
Added a generic ThreadPool class which can be used to process
functor work items in parallel, on multiple threads. It uses
a queue container to manage the work items.
(Gitlab #883)
1685. [build] fdupont
Small build improvement. The fcntl.h header is included in more
portable way. This should make it easier to build on Alpine systems and
possibly other systems.
(Gitlab #765)
1684. [func] fdupont
As a preparation for upcoming multi-threading, the MySQL
connection pool has been implemented. This code is not
usable on its own yet, but it will allow all threads
to share a pool of connections in the future. This
should improve the overall MySQL lease backend performance.
(Gitlab #960)
1683. [bug] wlodek
Perfdhcp is able to parse incoming packet and determine
if included IA_NA/IA_PD options are correct, counter
of rejected leases is introduced for all DHCP v6 message
exchanges. Perfdhcp will no longer send Request/Renew/Release
message without proper IA_NA/IA_PD included.
(Gitlab #572)
1682. [bug]* tmark
Added logic to core code and HA hook lib to allow HA peers
to detect and handle out of bandwidth socket events. This
corrects a defect introduced in Kea 1.6.0 that can cause
an HA server to become unresponsive when an HA socket has
been closed by a peer. Note that there is a change to the
signature of the external socket callback handler invoked
by IfaceMgr. Custome hook libraries happen register external
sockets with IfaceMgr will require modification and
recompilation.
(Gitlab #964)
Kea 1.7.1 (development) released on Oct 30, 2019
1681. [func] fdupont
Added new command config-backend-pull which forces the server
to immediately poll the configuration updates from the
configuration backend
(Gitlab #904)
1680. [bug,build] Kristoffer Larsen
A bug in Makefile has been fixed. The changes made to
src/lib/dhcpsrv/alloc_engine_messages.mes are now picked up
properly.
(Gitlab #752)
1679. [func] fdupont
Added new commands to the lease_cmds hooks library to search for
leases by hardware address, client-id, DUID and hostname. Now
hostnames are stored in lower case within the lease database.
(Gitlab #393)
1678. [build] fdupont
The arguments passed to configure are now stored and are available
using -W command line option.
(Gitlab #869)
1677. [doc] wlodek
Sample configs now all use the same paths for control sockets.
(Gitlab #795)
1676. [func] fdupont
A new hook - flex-option - has been developed. It allows setting
up DHCPv4 and DHCPv6 option values dynamically, using expression.
This capability is very useful when you want to generate option
value procedurally. For details, see new section "Flexible Option
for Option value settings" in the Kea Administrator Reference
Manual.
(Gitlab #219,!523, git 2bf854c029b9b07ee6161bc1fcb4dfdc9846ee42)
1675. [func] fdupont
Both DHCPv4 and DHCPv6 can now listen on and send responses
to a custom UDP port, as specified with the -p command line
option. This capability is mostly useful for testing.
(Gitlab #677,!548, git 47e709fb7b89464d4473e8c7cb138f539042d68b)
1674. [perf] fdupont
Added a Multi Threading Manager singleton class in the util library.
(Gitlab #962,!566, git 66b090e54b45bdeefda266ddd62e42b46ed48d1d)
1673. [bug] tmark
Fixed a bug introduced in Kea 1.6.0 (see #539) that caused
kea-dhcp4 and kea-dhcp6 to discard inbound packets containing
string options that consist solely of nulls. The servers
will now quietly omit empty or all-null string options from
inbound packets.
(Gitlab #900,!561, git c75a7c10bde74f59d481a7717b4e03b9cb2268a6)
1672. [build] fdupont
Deprecated bind1st and bind2nd templates were replaced with
lambda expressions or plain bind templates.
(Gitlab #919,!521, git b12fa3374454c9c0d749557d5532aab55dbc58d9)
1671. [bug] tmark
Corrected an issue in kea-dhcp6 where the server would fail
to extend the expiry of a existing dynamic lease assigned to
client with host reservation.
(Gitlab #754,!558, git c223380012b82c93292528b593002c2b80b5361b)
1670. [func] fdupont
Added searches for host reservations by hostname and by hostname
and subnet.
(Gitlab #392,!529, git 50068ada6b277c9251de9062501d8c478a8f5529)
1669. [func] tmark
Rather than within the 'dhcp-ddns' section, DDNS behavioral
parameters may now be specified at global, shared-network,
and subnet scopes. Implemented for both kea-dhcp4 and
kea-dhcp6. Not yet supported by Config Backend or Netconf.
(Gitlab #35,!517, git 49ce6286f5d00f99c1c890f12cbc0fd633c9dbf6)
1668. [build] fdupont
The Kea util thread library was removed.
(Gitlab #907,!519, git 1b27dc52aae23753643461086f0950b125bf9c93)
1667. [build] fdupont
The availability of C++11 thread, mutex, condition variable and
atomic libraries is now checked by ./configure.
(Gitlab #918,!520, git baf4097520c1cd38366ee4f33a95dde040906e9e)
1666. [doc] tmark
Added note in ARM about manually admining cb data being possible
but not supported.
(Gitlab #917,!518, git f242e5c2e0e14331172671477dce3a6597691b55)
Kea 1.7.0 (development) released on Sep 25, 2019
1665. [build] tmark
Bumped up library version numbers for Kea 1.7.0 final release.
(Gitlab #924,!526, git c4061d0fdd660c8e375b4e1317603935ccc00b39)
1664. [build] razvan
Make sysrepo_config detect installed sysrepo version.
(Gitlab #766,!449, git e1a236fa4f4680d3eadade6b5f5a6a6065620a5b)
1663. [build] fdupont
Dropped support for Botan 1.x crypto library in Kea as these
versions are now end of life.
(Gitlab #345,!498, git ba028eee986c0da963754c6fcb74790081557bec)
1662. [bug] marcin
Prevent deadlock in the Kea DHCP servers caused by allocating
memory in the system signal handler. The issue was found on
CentOS 7.6, but could possibly affect Kea running on any other
OS.
(Gitlab #796,!504, git f858d9d0b63a18370ebb8bd7d1b8250d0c5a1cb5)
1661. [bug] tmark
kea-dhcp4 now rejects inbound client messages that have
neither a hardware address nor a client identifier.
(Gitlab #821,!501, git 60baf65d0c9de384b0da147b50b7fc3180fc54dd)
1660. [func] franek
Statistics of the DHCP packets are now initialized upon the
server startup. This makes the statistics available for fetching
via control channel immediately after the server is started.
(Gitlab #755,!503, git f0238d1b6e88dfedaa91029ec3b65e06c14cab34)
1659. [bug] razvan
Corrected an issue in the DHCPv4 server logic whereby the user-defined
option definitions were not committed which could result in
configuration failures when values for such options were specified.
(Gitlab #729, !434, git e5b68fb226161dcdef0e4d2d9d03d9bdb95af5e2)
Kea 1.6.0 (stable) released on Aug 28, 2019
1658. [bug] tmark
Renamed the column "array" in option definition tables
in MySQL schema to "is_array" to avoid a reserved word
conflict introduced by MySQL 8.0.17.
(Gitlab #853,!26-p, git 6665c3b6d0f9f2a45b7710e8e9a36fff8f99bf7f)
1657. [bug] marcin, tomek
Corrected multiple occurrences of out of bounds vector reads.
These could cause server to assert when GLIBCXX_ASSERTIONS
was enabled during compilation. Also, eliminated overflows as
a result of strncpy.
(Gitlab #851,!24-p, git 4b1d6ffc5ae4f1e1fa5990a644c9786e7f6afea6)
1656. [bug] marcin
Corrected a bug in the Kea MySQL Configuration Backend which
caused the Kea DHCPv6 server to incorrectly require the server
tag to be provided with the remote-subnet6-option-set command.
In addition, corrected issues with setting and deleting
pool specific DHCP options via the Configuration Backend.
(Gitlab #847,!23-p, git 578bc6c997679c507c2f9e419783d34de77816cd)
1655. [bug] marcin
Corrected a bug in the Kea MySQL Configuration Backend which
prevented the DHCP servers from discovering and fetching the
changes applied with the new commands. The new commands set
and delete the options embedded within the subnets, shared
networks and pools.
(Gitlab #845,!22-p, git 7fb2255b212e4e98ff4dbf6d8e2e0ada78701110)
1654. [sec] tmark
kea-dhcp4 Memfile logic now ensures during reading and writing
that leases which are not in the declined state, have either
a hardware address, client id, or both. kea-dhcp6 Memfile logic
now ensures leases which are not declined have a non-empty DUID.
CVE:2019-6474
(Gitlab #805,!6-p, git 9705445210cf2a5c4bbe86fde4ce010c45b7aac1)
1653. [sec] tmark
Added a new parameter, "max-row-errors", to Memfile lease database
configuration for kea-dhcp4 and kea-dhcp6. This parameter can be
used to limit the number of rows discarded due to error during
lease file loading after which the server will abandon the effort
and exit. The default value of 0 disables the limit.
CVE:2019-6474
(Gitlab #805,!5-p git af7393c517cea37a7091075e5d0d24793bccf013)
1652. [sec] tmark
Prevent the DHCP servers from asserting when malformed
hostname or FQDN options are received. Now the servers will
drop the DHCP packets containing the malformed options.
CVE:2019-6473
(Gitlab #730,!2-p git a2a98c421bb400a81218bd28d6a6f62accd31b1f)
1651. [sec] tmark
Added logic to kea-dhcp6 to catch values for client or
server DUIDs that exceed 128 bytes to inbound packet
sanity checking.
CVE:2019-6472
(Gitlab #722,!1-p git bb1a64b8945950f4439121ce4fef566d37c8630c)
1650. [build] marcin
Bumped up library version numbers for Kea 1.6.0 final release.
(Gitlab #841,!490, git 2e88e2554905dd66b9974c9fc513ee7e7b825a46)
1649. [doc] sgoldlust
API documentation updated and cleaned up.
(Gitlab #810,!471, git f1ae84186beb54d45f8455236827108289b0b0d6)
1648. [func] fdupont,marcin
Client classification information (client-class,
require-client-classes) and excluded prefix (excluded-prefix,
excluded-prefix-len) may now be specified in the MySQL
Configuration Backend.
(Gitlab #659,!387, git 1f2cae397b48e2a28a7a7e61f6392691b9d32c13)
1647. [doc] marcin
Updated "Local and Relayed Traffic in Shared Networks" sections
of the Kea ARM. Explained that all subnets within a shared
network should have the same subnet selector, i.e. interface
name or relay IP address.
(Gitlab #496,!483, git 1335e5643cc142c65bfc49c13280e9aaf3eeec21)
1646. [func] fdupont
YANG models updated to cover the latest parameters:
pattern and max-row-errors.
(Gitlab #823,!477, git 79d0d45ec0c791560e297ca77fc88842b0a33868)
1645. [func] tmark
Binary option data may now be specified as a single-quoted
text string, within double quotes: "'some text'". This is
handy for binary options that convey text such as urls or
file names.
(Gitlab #761,!447, git 215d84f00208ac8a2710c28abc3386d6b765ede6)
1644. [doc] marcin, fdupont
Added a warning about class dependence on built-in classes.
(Gitlab #727,!466, git 9977d2927cf9b9cf1cd13de30aa5551ca900165b)
1643. [build] godfryd
Added an optional --with-site-packages switch to configure
script. It allows python package installation in a separate
directory (mostly useful on Debian systems when building native
packages).
(Gitlab #721,#480, git 66332000ff618fbb41656981c7bbf3bb940066fe)
1642. [doc] fdupont, marcin
User documentation for remote-option{4,6}-* commands.
(Gitlab #826,!479, git 9b469ab63a9627e377a219cf8f83033e4e613b11)
1641. [func] tmark
Added a new Logger output option, 'pattern', which can be
used to customize log message content and layout.
(Gitlab #665,!460, git 2add51ecf0d91d2a9ac797594c38472190c18460)
1640. [func] fdupont
Added sub-option expression for client classification and flex-id.
Users can access sub-option with option[12].option[34].hex or
option[12].option[34].exist
(Gitlab #150,!385, git 70bb412f20b706484538680906d6fcfd7ee6da68)
1639. [func] fdupont
Updated YANG models with the latest changes in kea-dhcp4 and
kea-dhcp6.
(Gitlab #433,!473, git c46e8da1561e7d0c6c6f481d2e32cc9ae398324c)
1638. [bug] franek, razvan
Kea statistics improvements: Correct statistic-get{all} commands.
(Gitlab #756,!470, git 59fb24794af8a9ca8ee3621bc01dfd507350b2c1)
1637. [bug] tmark
Corrected an issue in kea-dhcp6 where the server would assign
a different lease each time a client with a dynamic host
reservation returned via a SOLICIT.
(Gitlab #754,!440, git c548d9330e6f626e538343c5e6361457057efdd7)
1636. [bug] razvan
Http request and response parser now accepts 0 for Content-Length.
(Gitlab #708,!423, git 09d75804e050083b502a96c8e77b0e98c735ae3d)
1635. [doc] godfryd, tomek
Converted API documentation to Sphinx format.
(Gitlab #777,!464, git 3ba1a265537330308c313a38b85e84cbe02704ae)
1634. [func] franek, razvan
Kea statistics improvements: Added commands for set sample age and
set sample count.
(Gitlab #731,!459, git dde1b96b33ed20dbe2c815f1168e62b66635e39f)
1633. [bug] fdupont
Added missing YANG Kea test module in distributions.
(Gitlab #747,!436, git a800e79c7917acc723cbc71b626adc360e15a8d7)
1632. [doc] razvan, tmark
Fixed doc examples.
(Gitlab #649,!381, git e14b90735ff57be0776270364064952d353d7e3a)
1631. [bug] marcin
Corrected the bug in mysql_cb hooks library which in some cases
caused the pools to be orphaned and left in the database after
the subnet has been updated.
(Gitlab #632,!438, git ea15b537d62c66e03923b5fdce91db8795f436b4)
1630. [build] fdupont
Added support for sysrepo 0.7.8 (and libyang 1.0-r3).
(Gitlab #742,!430, git 6776a829f90768225ea794145e522560d26fe959)
1629. [func] tmark
High Availability logging now also emits server and partner system
times when reporting clock skew issues. Prior to this it reported
only the skew between the two servers.
(Gitlab #174,!414, git 9715ddecb0143d997a57edea564f5c180a7f8577)
1628. [bug] fdupont
Improved the error message from MySQL CB -set commands when
a specified server does not exist.
(Gitlab #732,!429, git 82f34e60363eec72a117939a5526bdb1ececb53c)
1627. [func] fdupont
Added new command server-tag-get to DHCPv4 and DHCPv6 servers.
(Gitlab #470,!386, git 3cb43f112662ba3f9d2fc7152dfa1639401b1491)
1626. [bug] marcin
Automatically delete embedded options as a result of deleting
a subnet, pool or shared network from the MySQL Configuration
Backend. Prior to this change, the options were unnecessarily
left in the database. The database schema version was affected
and its version bumped up to 8.2.
(Gitlab #680,!426, git 03f0af3900bdd9eaa951b23cc9508f0618d3f1bb)
Kea 1.6.0-beta2 (development) released on July 24, 2019
1625. [build] tmark, marcin
Bumped up libraries version numbers for Kea 1.6.0 beta2 release.
(Gitlab #740,!427, git 359fe51531e802f052bd4172d4e295378155dbd5)
1624. [doc] marcin
Documented a usage of the server tags with the Kea Configuration
Backend in the Kea ARM.
(Gitlab #643,!421, git 4c60b02e619bce2c434bbf9ee0e775d8776b2d74)
1623. [bug] fdupont
Eliminated the issue whereby the DHCP server could terminate as a
result of the remote-network4-del and remote-network6-del commands.
(Gitlab #738,!425, git b34151b647aae8690fe0996090e13403a8e3ad55)
1622. [bug] fdupont
Corrected server tags returned with the metadata when fetching
option definitions from the MySQL configuration backend
(Gitlab #737,!424, git 1cc95ae2a66102427e583b4924383fd414e24f0f)
1621. [func] fdupont
Both kea-dhcp4 and kea-dhcp6 now support a special class, 'DROP'.
When the class is defined, inbound client packets that match the
class's match expression will be dropped without further processing.
Each such drop is logged at DEBUG level and accounted for in
drop statistics.
(Gitlab #606,!375, git bfa5b2c50324e9d2339daa8309774f49a5e7bf3c)
1620. [func] franek, razvan
Kea statistics improvements: Support for storing more than one
sample.
(Gitlab #696,!418, git c7b8c275758c96f56081e02da429f5dd9d653b87)
1619. [func] marcin
Add support for associating subnets with the server tags in the
mysql_cb hooks library.
(Gitlab #717,!417, git e121ec4e0a04bc5bebdbfecf9cc1606b50e71263)
1618. [func] marcin
Add support for associating the shared networks with the server
tags in the mysql_cb hooks library.
(Gitlab #716,!412, git 326fdbeb51dc1f6eebbdbbdcce78cfac87a61bd9)
1617. [bug] fdupont
During the application of the config backend the external config
is initialized to the default values so when a global parameter
is changed and deleted it gets back a sane value.
(Gitlab #630,!355, git 237afd3c512ed4d05ae76de76cce21dca643a889)
1616. [func] fdupont
Renamed kea-admin lease-init, lease-version and lease-upgrade
commands to db-init, db-version and db-upgrade. Only the lease-*
command is now lease-dump.
(Gitlab #466,!393, git cbd2ed23f2ea0649ccf608fe818197d2923108f0)
1615. [func] fdupont
Added check for keyword name and type in parsers of objects
managed by the config backend (options, option definitions,
subnets and shared networks).
(Gitlab #575,!358, git c9d87afad8db924da0aadc1b8ab40638bd0a6738)
1614. [func] marcin
Add support for associating the DHCP option definitions with
the server tags in the mysql_cb hooks library.
(Gitlab #715,!411, git 5511725555138213de4f48dc1091d65b5db47034)
1613. [func] marcin
Add support for associating the global DHCP options with the
server tags in the mysql_cb hooks library.
(Gitlab #714,!409, git 711c1dca9de388b786942fe5bedb8b8cf63b85ba)
1612. [bug] razvan
Fixed crash caused by unloading premium libraries which use
custom host cache containers.
(Gitlab #639,!410, git d3f7e9d9a18d93fb014c8e637e15c6ae9ca9269e)
1611. [doc] fdupont
Clarified how Kea handles subnet prefixes in server configuration.
(Gitlab #419,!333, git f260b51148b4f7584165e13fcf2320fdd5992a74)
1610. [build] fdupont
Removed the obsolete compatcheck top directory.
(Gitlab #667,!391, git 8cb113a52f0cf56fbdb5cb0e87464135234c2ac1)
1609. [bug] fdupont
Fixed the implementation of authentication keys in DHCPv6
host reservations. Please note this includes a PostgreSQL
schema update.
(Gitlab #550,!297, git f45511f0445cd4204671771175f7f0d34df54b0e)
1608. [bug] fdupont
Missing debug DHCP6_PACKET_SEND logging message was added.
(Gitlab #699,!401, git ac96edbe30be5c93f5e3d2512961f1bc99c3253a)
1607. [bug] tmark
Corrected an initialization issue which caused lease sanity
checking to be enabled inside the Lease File Cleanup (LFC)
process. The LFC cannot meaningfully perform sanity checking
as it does not have access to the full server configuration.
(Gitlab #686,!403 git 68b2cb0385779ef0c520164e418dee124d7cb364)
1606. [bug] tmark
Corrected an error with retrieving DHCPv6 leases, whose IAID
values are larger than int32_t max, from Postgresql lease
databases.
(Gitlab #651,!384, git 67e047df61d56558d474514a21ed0db96152557a)
1605. [func] marcin
Extended mysql_cb hooks library to support new API calls for
managing the DHCP servers in the database. In addition, added
support for associating the global parameters with the server
tags.
(Gitlab #642,!373, git 8ca1021809a6c44cf8a6589a959e94ca9ca76c29)
1604. [bug] fdupont
Improved configuration failure messages when the problem is
from the configuration backend and not the configuration file.
(Gitlab #616,!379, git 637e9f03cc502068822ab0310f2e070d4a4da339)
1603. [perf] tmark
High Availability now registers its HTTP sockets with Interface
Manager's main thread allowing the thread can monitor them for
IO readiness. This should improve the responsiveness of HA peers
to each other.
(Gitlab #691,!395, git 4a0b024bc6d83b26fe702d95ee7ce0c914b37d8e)
1602. [func] fdupont
Added more information to sanity-checker log messages.
(Gitlab #685,!392, git 5367cd1196662739bbff5e99072ab6a55cfb0489)
1601. [func] fdupont
Kea servers now add the lease validity lifetime to informational
lease allocation log messages.
(Gitlab #694,!399, git cb29b532cf1f8790f9752d7e8253b0aa31ce05e6)
1600. [bug] fdupont
Fixed prefixLengthFromRange() routine.
(Gitlab #583.!377, git 10bd31217d8a0a77345c4cba7a59314f70c1b509)
1599. [perf] marcin
Improved performance of the DHCPv6 server running with High
Availability by aggregating multiple lease updates in a single
lease6-bulk-apply command instead of generating multiple
lease6-update commands, one for each allocated lease.
(Gitlab #689,!394, git 65021b840b94da3d118e541fba5469c8ed15175b)
1598. [bug] razvan
Added unittests for long (> 65536 chars) tokens in parsed configs
so any crash related to parsers could be detected.
(Gitlab #604,!376, git 811735b67fcdb5592c3e020792c154f2f454259c)
1597. [func] fdupont
Added new configuration parameters for handling user lease
time hints to kea-dhcp4: min-valid-lifetime and max-valid-lifetime;
and to kea-dhcp6: min-preferred-lifetime, max-preferred-lifetime,
min-valid-lifetime, and max-valid-lifetime.
(Gitlab #295,!325, git 8641448c4106bf28ea32df72e5e0ad520d3946ae)
1596. [func] marcin
Implemented lease6-bulk-apply command in the lease_cmds hooks
library.
(Gitlab #683,!390, git 122473c18b632ddfa22b8a48f6d9399bc18e2598)
1595. [func] fdupont
Removed unused t1_ and t2_ members from internal lease class.
(Gitlab #567,!357, git 6072db5f4ca6cfa9573152c255f97dd170acbd57)
1594. [bug] fdupont
Kea no longer uses the .../var/kea directory, for instance pid
files are now in .../var/run/kea.
BEWARE this applies to the kea-dhcp6-serverid file so if the
server will not find the file at its new location it will believe
it is the first time it is being started and will generate a new
server DUID. If that happens, clients will keep trying to get to
the old server and be confused.
(Gitlab #538,!334, git 928b9ae57452aae1dff92ad689ba180fa975381c)
1593. [bug] marcin
Fixed a bug in the Kea Control Agent which caused a sporadic crash
after a timeout while sending the HTTP response to the controlling
client.
(Gitlab #491,!363, git ff204dfe4dd80702f8bb2edf83f8486e019a7e04)
1592. [build] tmark
Files related to YANG and netconf are now only installed
when the build is configured with --with-syspro.
(Gitlab #584,!364, git 350ae513ed4e8e8e07b159658f88ec7d70b644d3)
1591. [doc] razvan
Fixed classify and pd-exclude documentation examples.
(Gitlab #590,!380, git 26b04d2d2d2a88be6abc5879a2fb48e05f0003fd)
1590. [func] fdupont
It is now possible to specify hostname-char-set and
hostname-char-replacement at the global scope allowing to sanitize
host names without requiring a dhcp-ddns entry.
(Gitlab #540,!374, git 0a5979369902070ee0c4faf3b713627455b99489)
1589. [bug] razvan
Fixed configuring kea with tools/cql_config when using --with-cql
from source.
(Gitlab #522,!261, git bf7debc182e094a8b34f1f2df99cf4e9f84c8906)
1588. [func] marcin
Extended APIs of the DHCPv4 and DHCPv6 configuration backends with
the management functions for the server tags.
(Gitlab #641,!352, git 022d2266e71ced7ec79e0717298ca8e88330a7e7)
1587. [bug] razvan
Fixed IPv6 prefix delegation pools retrieval from the MySQL
Configuration Backend.
(Gitlab #637,!349, git 483273734e8608ed68624d7a868f20672c859c95)
Kea 1.6.0-beta (development) released on May 29, 2019
1586. [build] razvan, marcin
Bumped up libraries version numbers for Kea 1.6.0 beta release.
(Gitlab #617,!340, git c0434bf882b6ec483120e39f6b70b5a40fe7c711)
1585. [bug, func] marcin
MySQL Configuration Backend supports DHCPv6 interface-id parameter.
(Gitlab #628,!341, git 3a07c636ba4c7fceabe59ec597c44a9c8e3367eb)
1584. [doc] marcin
Documented Kea Configuration Backend in the Kea Administrator
Reference Manual.
(Gitlab #71,!314, git 3a65b7a9104f2a988dacf1acc26312b4259e958d)
1583. [bug] fdupont, marcin
Corrected a bug which caused failures to merge a subnet from the
Configuration Backend into the DHCP server's configuration
when subnet identifier was modified.
(Gitlab #492,!252, git c9aba2b5e915c27a8539e6b8f0498179ba896da4)
1582. [bug] tmark
Input values for DHCPv4 and DHCPv6 options of type 'string'
will now be trimmed of any trailing null bytes (0x0).
(Gitlab #539, !330, git b126558e9e39e9bff517dceac25a00e96d150085)
1581. [bug] marcin
Corrected a bug whereby the DHCPv6 server did not take into
account a relay address specified at the shared network level
during the subnet selection.
(Gitlab #620,!332, git c2383e404a5227f6b55655c09ccdc03930815500)
1580. [bug] jonatan.raudsepp
Compilation fix for Alpine linux in Perfdhcp code. Thanks to
Jonatan Raudsepp for sending a patch!
(Gitlab #624,!337, git 19321df9e4490b75ac7b322afec9d231bcb6ffe3)
1579. [bug] razvan
Fixed a bug which caused setting dhcp4o6-port to not function via
Kea configuration backend.
(Gitlab #577,!331, git 98c24fe1873795bbc94d426c54c588b05d79406f)
1578. [func] fdupont
The configuration syntax has changed. The Logging scope that used
to be shared between all servers has been deprecated. Each daemon
is supposed to define its own loggers using 'loggers' array. The
old configuration syntax is still accepted, but is considered
deprecated. Kea 1.6 will accept it, but that capability will be
removed in the future. Please migrate your configuration to new
syntax.
(Gitlab #208,!196, git 37b8ec6c2c4b64681059f8fad26d112adbb7ee2b)
1577. [func] razvan
Implemented host reservations page retrieval for Cassandra.
(Gitlab #511,!278, git 152e82b49f5e5abd9d3a2a4825ed8620973f5ef1)
1576. [doc] fdupont
New commands cache-get-by-id and cache-size are now documented.
(Gitlab #594,!324, git 3753008cc77f71457b5d777560d8e36dc56e7acd)
1575. [bug] razvan
Fixed issue with keactrl logging error when trying to stop running
services.
(Gitlab #534,!327, git 6ddee0a93ec4ad692cc385150c159d9e8da5232d)
1574. [bug] razvan
Add logging to the MySQL config backend.
(Gitlab #398,!315, git bc46fd3420afdf60ae8841866e8458f7f6e072e8)
1573. [bug] razvan
Fixed build sysrepo from sources using sysrepo_config.
(Gitlab #523,!262, git b86864a9b058a18eaaded2273dc5f40a9ec97c78)
1572. [bug] tmark
Corrected an issue where kea-dhcp6 was incorrectly scheduling DNS
entry removals when renewing leases with generated FQDNs.
(Gitlab #577,!310, git 362f40bebbdbe083ec6420a43ee1c050edf6bba6)
1571. [bug] marcin
The mysql_cb hooks library registers the MySQL backend for the
DHCPv6 server.
(Gitlab #603,!322, git 1ede298fcdc7a9b7018b6e300e2d759e33f73645)
1570. [bug] marcin
Corrected the bug in the Kea HTTP library which could cause a server
to assert when system clock was modified during the transaction.
(Gitlab #599,!320, git 958abe5063b6e602c0070e336524e313c3a87671)
1569. [perf] fdupont
Improved performance of the DHCPv4 server in cases when
match-client-id set disabled by removing unnecessary query to the
lease database."
(Gitlab 509,!272, git 2ad41651c1118fe6f7dfb918df0694dd254706f1)
1568. [bug] tmark
kea-dhcp6 now properly skips sanity checking prefix leases.
Prior to this it was incorrectly subjecting them to sanity
checks during memfile lease file reloads and then flagging
the leases as incorrect.
(Gitlab #591,!#313, git 12262c5df19673652be73cf1dd62d07527bee95d)
1567. [bug] marcin
Kea HTTP client now always includes Host header in all HTTP requests.
The Host header is required in all HTTP/1.1 requests. This corrects
the problem whereby HA peers were unable to communicate via reverse
HTTP proxy because the proxy was responding with Bad Request status
when no Host header was included.
(Gitlab #360,!305, git ddb6dbf4cf63e98d3954c5d46e0311abc4fd6cfc)
1566. [func] tmark
kea-dhcp6 can now be configured to calculate values to
send to clients for T1 and T2 times. Prior to this
it was only possibly to specify explicit values.
(Gitlab #365,!296, git 144b83a84c836d6ff17620b35cb74f830b13c2eb)
1565. [func] marcin
MySQL Config Backend returns server tags associated with the
configuration elements.
(Gitlab #579,!309, git 1e2648df047fe964e8ad3e9deb1c85eea32b1219)
1564. [func] fdupont
Implemented two new commands to manage subnets: subnet4-update and
subnet6-update. They allow an update of existing subnets
configuration.
(Gitlab #465,!265, git 71eb9188033f81dab56fc5a847a39f5497398b62)
1563. [bug] razvan
Fixed compilation of google benchmarks.
(Gitlab #520,!260, git 11aa890d30ecce5518b9f0bad389feea6be78167)
1562. [bug] marcin
Corrected a bug whereby the DHCP server would trigger a segfault
upon termination when MySQL configuration backend was in use.
(Gitlab #571,!306, git 705e7bb6dd27ec90dd2807d4aac0905e3cb13de4)
1561. [func] tmark
kea-dhcp6 now automatically deletes configuration elements
that have been deleted from configuration backends.
(Gitlab #566,!304, git 2e85376f1b57187b822c662144380e04372cffff)
1560. [bug] fdupont
kea-dhcp4 now permits option code values of 0 and 255 for
options defined in option spaces other than the "dhcp4" space.
(Gitlab #564,!300, git 7a0a0b84d91893f08c0ee6f236daa05bede65166)
1559. [func] fdupont
Added DHCPv6 support to the MySQL Config Backend hook.
(Gitlab #397,!244, git 980091ecd717e41a61f0d7f6808213e450647d8e)
1558. [func] tmark
In addition to a continuous string of digits, hexadecimal
literals may now be a series of one or more octets separated
by either colons or spaces.
(Gitlab #484, git 251efcd5f518a215173845b22555276df0e0ffc6)
1557. [bug] marcin
Added support for "reservation-mode" parameter in the shared network
configuration parsers. It corrects a bug in Configuration Backend
whereby host reservation mode was not stored in the database when
specified via remote-network4-set command.
(Gitlab #517,!301, git e6533001e9d850432254d3cfe995a4f7abcee6e2)
1556. [bug] fdupont
Corrected parser for option definitions to refuse definitions with
duplicate code or name.
(Gitlab #503,!246, git 0befb653277463cd8f88740119fe90a93dbb1466)
1555. [bug] fdupont
Corrected parsers for option definitions to prevent setting out of
range option code values.
(Gitlab #500,!247, git 5c139602d7656df74060fee63461ffba4f290547)
1554. [func] tmark
kea-dhcp6 now uses globals, option definitions, options,
share-networks, and subnets from configuration backends.
(Gitlab #413,!288, git ff367e273ed8763b354db272c5955a78203d865e)
1553. [func] marcin
DHCPv4 server automatically fetches incremental configuration updates
from the configuration backends.
(Gitlab #103,!277, git 319f7709edb40d6c01390a34942b9d4a200b333e)
(Gitlab #103,!289, git 80087e2d0f90f9ba6623860fed4f4d33ee935ad0)
1552. [bug] marcin
Corrected inheritance of the subnet and shared network specific
parameters in the MySQL Configuration Backend.
(Gitlab #552,!295, git 4812e4227a57b29bfa3995e71588233424a3abb1)
1551. [func] razvan
Added consistency and serial-consistency parameters to CQL
connection. Fixed all statements.
(Gitlab #16,!287, git 56a9b6a860899274f9cafe2366a6731a46490e92)
1550. [func] marcin
Implemented inheritance of the DHCPv4 global and shared network
specific configuration parameters when using configuration
backend.
(Gitlab #490,!284, git 2508f942e879ef74b20c07ffdba37d187d6ea932)
1549. [func] tmark
kea-dhcp6 can now be configured to fetch data from configuration
backends. It does not yet utilize the data fetched.
(Gitlab #104,!290, git d8a25c1ecd17ad24bdce6af19e7a42ce66d4c4f2)
1548. [func] razvan
Added consistency and serial-consistency parameters to CQL
connection.
(Gitlab #16,!266, git 5771173d721464d879869fad6456211031858d6c)
1547. [bug, doc] fdupont
Option value for sip-ua-cs-domains has been corrected in the
Kea User's Guide. Thanks to Shawn Routhier from Infoblox for
reporting this issue.
(Gitlab #536,!281, git c128fd9a6b7bffc36ba4fe9a0badebe55441d673)
1546. [func] tmark
kea-dhcp4 now uses options fetched from configured backends.
(Gitlab #401,!254, git 6a33a6f1810f5899ff9c8bc79d0093eebad5c728)
1545. [func] fdupont
A new parameter "data-directory" has been added to DHCPv6.
If specified, it allows DHCPv6 server to store lease and
server-id files in non-standard locations.
(Gitlab #430,!263, git 1f094e18a21124abcaf846cab52c8cba65ca36bc)
1544. [build] fdupont
Message compiler is no longer needed during compilation and
generated message files are part of the distribution. They can be
regenerated using --enable-generate-messages switch passed to
configure script.
(Gitlab #441,!233, git 499b7c36454bcac2553f7bf304d48d7d80f4d4ca)
1543. [bug] fdupont
Corrected behavior of the remote-subnet4-set so as it is now
possible to set the subnet using both an ID or a subnet prefix.
(Gitlab #481,!251, git 9ef651950fde16e258e4b03dd21bbf6dd07d5231)
1542. [test] tmark
MySQL, PostgreSQL, and CQL unit tests will now attempt to wipe
the unit test data, rather than the (re)create the schema between
each test. This reduces test execution time appreciably. The
behavior may be overridden by defining environment variable:
KEA_TEST_DB_WIPE_DATA_ONLY="false". This will cause the schema
to be recreated before each test but may dramatically increase
test execution time.
(Gitlab #526,!269, git 7e81d7bea27e919b652351880872aae68ad1b209)
(Gitlab #531,!279, git 7f8c4fc535df3019789aea1881b7bb3bd539963a)
1541. [bug] fdupont
Empty Relay Agent Information option is no longer sent in server
responses. Thanks to Geoffrey Huang from Qingdao Agricultural
University, and Jiaqi Liu from Qingdao WuKeSong Company
Communication Limited, Shandong, PRC for reporting this issue.
(Gitlab #519,#510,!271, git f3563396d2227e48e96a5d65587406d8d1868db5)
1540. [func] fdupont
Added a new method deleteSharedNetworkSubnets4 in the config
backend API to delete all subnets belonging to a shared network.
(Gitlab #512,!256, git 76991c42d115641c7fdcd0f215137be578fb39a0)
1539. [build] fdupont
Obsolete dns++.pc file for pkg-config was removed.
(Gitlab #498,!274, git 93cd62c99f69cc379c08cd06791db522c1fb0aca)
1538. [func] marcin
DHCP configuration parsers correctly handle unspecified parameters.
This change was required for the MySQL Config Backend to record
unspecified parameters as NULL in the database.
(Gitlab #488,!259, git d3b33058651036be34200f16d2da230267415056)
1537. [func] godfryd
Improved handling unix sockets in unit tests. Now by default
they are created in temporary folder under /tmp folder. This
fixes the issue with creating sockets with too long path
in the case when source folder is deeply nested.
(Gitlab #357,!258, git a45e2f68d7d1848adb0cf755954a3d76c9dff338)
1536. [build] tomek
Many changes in keactrl, kea-admin, cql_config and sysrepo_config
scripts. ISC is now using shellcheck to verify portability of
our scripts.
(Gitlab #480,!245, git 8818ba0260ba36710b88db6401069f9fe4f3a73a)
1535. [func] godfryd
Added checking required Vagrant version by Hammer.
Removed Hammer from EXTRA_DIST.
(Gitlab #518,!257, git ea0006f6eb948d7d4a034b413c5086cbe483eb75)
1534. [func] marcin
MySQL config backend correctly handles the optional values for
subnets and shared networks. Also, updated the MySQL config
backend to store and fetch T1 and T2 percentage settings.
(Gitlab #489,!250, git 01fc4d5bb4105b90c7025e8ca8131c3c15203848)
1533. [doc] sgoldlust,stephen
Kea User's Guide significantly updated.
(Gitlab #362,!182, git 4b7a8df6054d18f2c90fe61d93533466f89e6324)
1532. [func]* marcin
Renamed OptionalValue C++ object to Optional and modified its
API. This object is now used to represent optional values in
subnets and shared networks. This is an internal Kea logic
change but it may impact existing user hooks libraries.
(Gitlab #487,!232, git 1c58e0ce9b9fd6fc8864dbfb2335bc5841c78ff3)
1531. [func] tmark
When fetching configuration data from configured backends,
kea-dhcp4 will now merge option definitions.
(Gitlab #400,!243, git 0c5d1417031e49bd0c247889989e187db2dd8f4b)
1530. [bug] adwol
Potential syntax error in keactrl fixed. Thanks to Adam Osuchowski
from Silesian University of Technology for providing a patch.
(Gitlab #162,!241, git b1a1137f252432aa956ed6fea3da21c740857333)
1529. [func] tmark
When fetching configuration data from configured backends,
kea-dhcp4 will now merge global parameters.
(Gitlab #402,!224, git dadaf76f8dd61b8bb3405aa5dc80029f09b2d4ec)
1528. [func] fdupont
Aligned DHCPv4 and DHCPv6 specific tables used by the MySQL Config
Backend. Extended MySQL schema to implement audit trail for the
DHCPv6 Config Backend.
(Gitlab #460,!232,!236, git 57f945f917db522773281c9e95ec8027afae6205)
1527. [build] adwol,fdupont,tomek
Default Kea installation directory has been changed to
${prefix}/lib/kea/hooks.
(Gitlab #161,!240, git cfaf16cf02191bf5b7172cade3f58a626288b5f0)
1526. [func] tmark
In addition to subnets, when fetching configuration data from
configured backends, kea-dhcp4 will now merge shared-networks.
(Gitlab #399,!215, git 6b57b6b5d678c91b6b380fbe08beafd06b0e7b1d)
1525. [func] fdupont
Defined API for the DHCPv6 Configuration Backend.
(Gitlab #458,!231, git f16e03d9bf1c10903c16b2614223b10880f73d50)
1524. [func] tomek
Support for vendor options improved in DHCPv4 and DHCPv6. Kea is now
able to send back vendor suboptions, even if the client packet didn't
include DHCPv4 vivso (125) or DHCPv6 vendor (17) option. Usage of client
classification in such a case is required, though.
(Gitlab #464,!238, git 5c79da9358862657a631a9a8fc2ce79ae26b762e)
1523. [bug] fdupont
IfaceMgr::send method now returns proper status that matches
its documentation. Thanks to Matthias Stoeckl from Secunet
for reporting this issue.
(Gitlab #417,!221, git 4be58523f38097cea81ea06161aead58e00aeb2a)
1522. [bug] marcin
The "unspecified" DHCP timer values (e.g. renew-timer) are
represented as NULL values in the database. This corrects
a bug whereby the unspecified timers defaulted to 0 which
prevented the DHCP server from calculating the timers to
be sent to the client. Instead a value of 0 was sent.
(Gitlab #451,!227, git 5ec9a55528fbcfff4e0c808f9a745b9fd3a5dfae)
1521. [func] marcin
Removed subsecond precision for the timestamps in MySQL config
backend. It caused issues on systems with MySQL version prior
to 5.6.4 which don't support subsecond timestamp values.
(Gitlab #444,!229, git 71200e98f5a862908240a0d2e269b5da23290af9)
1520. [build] fdupont
Made perfdhcp build optional and off by default: to build it
please use the new --enable-perfdhcp configure flag.
(Gitlab #340,!220, git b2d9a5559c348e82d6730809ccf1429097a9872c)
1519. [bug] Brent Bloxam
A bug in kea-admin that always assumed the PostgreSQL database is
always local has been fixed. Thank you to Brent Bloxam from
Beanfield Metroconnect for submitting a patch!
(Gitlab #423,!216, git d14e2f34c7d544aeb5e1e219f305fac9ab18c498)
1518. [func] marcin
Extended MySQL schema to include the types of the global DHCP
parameters in the database. The Kea servers will use this
information to cast the values fetched from the database into
their actual types. The supported types are: string, integer,
boolean and real.
(Gitlab #429,!217, git edd745c507ce5a888461df1489311de0c22cd312)
1517. [func] tmark
kea-dhcp4 will now connect to and fetch configuration data from
configured backends. At this point, only fetched subnet data is
merged and used.
(Gitlab #101,!202, git c572f8aea94349ff5fb4afee13a88ba811cc6459)
1516. [func] marcin
Implemented audit trail for MySQL Configuration Backend. It allows
for tracking incremental changes in the servers' configurations.
Both mysql_cb hooks library and the MySQL schema have been updated
to facilitate this feature.
(Gitlab #396,!205, git 6d40db07ef641eef29405c42e718979e7a1e8675)
1515. [func] fdupont
Changes required for new host commands that retrieve all host
reservations from a given subnet (reservation-get-all,
reservation-get-page) added. Also added documentation.
(Gitlab #313,!199, git 991b2fadcb9e8171a78e27f95e4bfba6393d7824)
1514. [func] fdupont
Control Agent and DHCP-DDNS daemons now support config-reload
command, that instruct a given server to load again its
configuration from a file on disk.
(Gitlab #375,!192, git 93648a3a4918225e2c4413ae220fccc59eaea99a)
1513. [func] godfryd
Fixed perfdhcp that now it keeps requested rate during performance
testing. Previously it was always about 20% lower than expected.
(Gitlab #283,!135, git 329f54bb151ec35888e9a8070cc5fa368d6f1f5e)
1512. [func] tmark
kea-dhcp4 will now ignore empty Host Name (option code 12) values
received from clients. While an empty value for this option is
not RFC-compliant, some clients do send them. Prior to the this
server would drop the entire packet. In the spirit of being liberal
in what we accept, the server will now simply omit the option.
(Gitlab #40,!203, git f41bd35c3e7a3bdc1f31c5602fd91d5c84c60163)
1511. [func] fdupont
Obsolete experimental secure DHCPv6 options (701-704) removed.
(Gitlab #386,!196, git 1114527652615fb730e323946cafaf1c7ca72b42)
1510. [bug] fdupont
DHCPv4 and DHCPv6 no longer crash if badly broken configuration
is received.
(Gitlab #381,!193, git f45fe7b7e3916d36d017b4ec5b50588fbf517d86)
1509. [func] tmark
kea-dhcp4 can now be configured to calculate values to
send to clients for for T1 and T2 (options 58 and 59
respectively). Prior to this it was only possibly to
specify explicit values.
(Gitlab #365,!194, git 67944844a40436cd69e0e5b4962f5c9cba89ef6f)
1508. [func] fdupont
Implemented the management API using a control socket for the
DHCP DDNS (D2) server. D2 now supports the following commands:
build-report, config-get, config-set, config-test, config-write,
list-commands, shutdown and version-get. Also, extended Control
Agent (CA) to support one additional command: config-set.
(Gitlab #30,!183, git ab27550cec365f42289eb5fa1bc39f33f01b19c2)
1507. [func] tmark
kea-dhcp4 now ensures that the message type option (53) is
the first option in outbound DHCPv4 packets. This was done
to accommodate non-compliant clients that require the option
to be first.
(Gitlab #363,!177, git 34f40035bf7a7849083138cacee440a9f0991d67)
Kea 1.5.0 released on Dec 14, 2018
1506. [build] marcin
Bumped up libraries version numbers for Kea 1.5.0 final release.
(Gitlab #338,!168, git 551c5d704804d0ab2ea276e95dbae66b9d0f5561)
1505. [bug] marcin
Corrected an issue in the lease_cmds hooks library which caused
errors while adding leases with high lease expiration time value
to the database. Many thanks to Shawn Routhier from Infoblox for
finding and reporting the issue.
(Gitlab #337,!167, git 3fcdc28814310ac93b3903897e952b3b60cfa0bc)
1504. [bug] fdupont
Created separate control buffers for reception and transmission
over UDP sockets.
(Gitlab #327,!166, git cbb573858d7b1a4d2ba2316db457aa55ab037fc3)
1503. [doc] fdupont, marcin
Updated "JSON Configuration" section of the Kea User's Guide.
(Gitlab #198,!160, git 94c66b3c071d7bbf4b247bf57cd75ddcc343177e)
1502. [bug] fdupont
Unicode parser for JSON structures has been improved. It now
handles escape sequences better.
(Gitlab #45,!40, git ba9b18cf2af66f8fb80e3dbbe13da11c99764588)
1501. [func] fdupont
keactrl now supports kea-netconf. The new daemon is disabled by
default. Please edit keactrl.conf (netconf=yes) if you want to
start using it.
(Gitlab #186,!163, git 8f7d556456891e7c675082f7e6cc88da71a92fee)
1500. [func, doc] tmark
Streamlined the isc::dhcp::PacketQueue interface and
added a section on Congestion Handling to the developer's guide.
(Gitlab #278,!162, git 0ce615f5da993ac90f675c5315ba7cb5c2ef3e1c)
1499. [func] tmark
For Kea 1.5.0, congestion handling has been disabled by
default.
(Gitlab #277,!164, git 8d87c46a3cc7b7be4dd5f751b48449e92ee62d84)
1498. [bug] marcin
Corrected behavior of the DHCP servers with respect to the
"reconnect-wait-time" parameter setting. This parameter is
specified in milliseconds, but the servers used to interpret
it as specified in seconds.
(Gitlab #173,!154, git 377f49e84ad6ebc91cbeac4116d24a15571c522d)
1497. [func] fdupont
All YANG modules now have a revision specified. When starting,
kea-netconf daemon will now check if the required modules are
installed and have a proper revision. This should help spotting
issues when migrating from older YANG modules.
(Gitlab #204,!121, git 9e772e1472e073ee85924cfc706cb57a5e70a0b1)
1496. [doc] marcin
Updated Kea documentation to reference RFC 8415, which is the
new DHCPv6 specification. It obsoletes a number of RFCs:
RFC 3315 (previous DHCPv6 specification), RFC 3633, RFC 3736,
RFC 4242, RFC 7083, RFC 7283 and RFC 7550. Kea documentation
now refers to RFC 8415 where appropriate instead of obsoleted
RFCs.
(Gitlab #288,!158, git 974b033a8de7a8e671156c33efeb13d4ac847c96)
1495. [bug] marcin
Corrected an issue in the Memfile lease backend which caused
errors while reading leases with very long lifetimes. Many
thanks to Shawn Routhier from Infoblox for finding and reporting
the issue.
(Gitlab #303,!151, git ab92ab6fcd414f1efc7c5de6a641274da7c04e92)
1494. [bug] marcin
Kea servers reject commands with unsupported parameters.
(Gitlab #253,!147, git 7fc55489887c0e8f32db5c1fe9f46fa1cc2a4407)
1493. [bug] marcin
Names carried in DHCPv4 Client FQDN option, Hostname option and
stored in the lease database are case insensitive.
(Gitlab #86,!152, git d9e23e2a6a3114b1c87de9c881ef10cdb1e00c61)
Kea 1.5.0-beta2 released on Nov 30, 2018
1492. [doc] fdupont
Added a step by step netconf operation example in the
Kea Administrator's Guide.
(Gitlab #195,!131, git 994a826caf3c1a9f5f84d8b703a3b202120e91b6)
1491. [build] tomek
coroutine.hpp from Boost 1.68 has been added the Kea source.
It is used only if the Boost library provided by the system
is very old and does not include that header. This effectively
reverts the change done in Kea 1.4.0.
(Gitlab #293,!45, git df0f507b8b750c8dff1f537cad5b5748b7841852)
1491. [build] marcin
Bumped up libraries version numbers for Kea 1.5.0 beta2 release.
Also, generated logger message files are now installed with Kea.
(Gitlab #62,!144, git 7dc8d73a58504fd81a49b1c54651388d53d98d53)
1490. [bug] marcin
Applied fixes in Cassandra Host Manager which prevents Kea
crash during an attempt to delete non-existing reservation.
In particular, this crash was observed as a result of sending
reservation-del command over RESTful API.
(Gitlab #27,!138, git 8666ed4754ffd27f3aa46a2cf3e4b161a1d877ee)
1489. [doc] fdupont
Added examples of global host reservations.
(Gitlab #136, !143, git bee8b8620f849f6bcaf2b31c3b130bb371c6312c)
1488. [doc] marcin
Added stat_cmds to the list of available hooks libraries.
(Gitlab #85,!142, git 08615372b4f869fe61b13559efa33d0d9794d79b)
1487. [doc] marcin
Corrected broken links and various typos in Kea documentation
which had been identified during Kea 1.5.0 beta1 release
process.
(Gitlab #263,!137, git 79a224288efa1e1c51b0f2ec11ff646563b306e1)
1486. [func] tmark
For Kea 1.5.0-beta2, congestion handling has been enabled by
default. This was done to expose the feature to more testing.
We will finalize the default setting prior to releasing Kea 1.5.0.
(Gitlab #276,!132, git fda1f985997412a58d3b4eee4a1ca0588d3f3beb)
1485. [func] fdupont
Simplified and updated Kea YANG models. For instance the list of
loggers was moved from the removed logging container to global
config parameters.
(Gitlab #204, !97, git 1de6c2987ec9067b7c1baa577c6dcd6ddd1b30fb)
1484. [bug] marcin
Resolved issues with MySQL backend failing to insert a lease
to the MariaDB database on OpenSUSE. This fix may also
improve stability of the MySQL backend on other systems running
MariaDB.
(Gitlab #53,!125, git 038eddbc7b904289e4b74b5ef2406cb57f79a646)
1483. [func] tmark
Use of congestion handling is now optional via the 'enable-queue'
flag added to 'dhcp-queue-control'. It is disabled by default.
When disabled Kea's DHCPv4 and DHCPv6 servers will consume packets
directly from interface sockets in the main thread (i.e. employs
pre Kea 1.5 technique).
(Gitlab #260, !120, git 9e304fae48d0d0658fd39a21aba9da528b4cc6f4)
1482. [func] fdupont
The configuration parameter "reservation-mode" can be specified
at global (new), subnet and shared network levels.
(Gitlab #268,!126, git c72d381c39868308c7d11c7d4def3bdae0a0e04e)
1481. [func] fdupont
Cleaned up the keatest-module YANG test module.
(Gitlab #204,!98, git a830adcefd9306969216d35c51306df3610278bb)
1480. [func] fdupont
The unused configuration parameter "always-include-fqdn"
was removed. Configurations using it will be rejected as
it is no longer recognized.
(Gitlab #182,!128, git cafeba167e7c64370dd39eca4551f61acd89d3da)
1479. [build] fdupont
Support for sysrepo 0.7.6 (and libyang 0.16-r2) was added.
Previous versions of sysrepo (and libyang) are still supported.
(Gitlab #176, !107, git 4304a10b21708afb2a7599c77bc7508a600333cb)
1478. [bug] marcin
Performance improvements in the HTTP client code used in the
Kea High Availability.
(Gitlab #57,!122, git 7bd97af1f3d7670cd64cadf0d0cb9ddbe4e74909)
Kea 1.5.0-beta1 released on Nov 9, 2018
1477. [build] marcin
Bumped up libraries version numbers for Kea 1.5.0 beta release.
(Gitlab #261,!119, git 54d63139048e7fe2dd0384b547ed6f8b96ff0e8f)
1476. [func] tmark
Added initial implementation of congestion handling to kea-dhcp4
and kea-dhcpt6. This adds a new top level element to the server
configurations, "dhcp-queue-control". Both servers will now
read client packets from interface sockets in a separate thread
queueing them for server level processing. For Kea 1.5-Beta
this feature is always on.
(Gitlab #42, !103, git 09d5ffebc8f9bfab2ab99c384eec9c3a3c915f39)
1475. [func] sebschrader
Add authoritative feature for DHCPv4 from ISC DHCP: requests from
unknown clients are dropped (default/previous behavior) or
answered with DHCPNAK (new behavior with new authoritative flag
set to true for the subnet). Patch proposed by Sebastian Schrader.
(Gitlab #66, !115, git 0fc1b767826f214475025d8631227970de368de5)
1474. [doc] godfryd
Updated list of supported operating systems.
(Gitlab #205, !109, git 73253af554cf48434798282f8440a99b1494fd04)
1473. [doc] tomek
Outdated FAQ section removed from the User's Guide.
(Gitlab #118, !113, git 7d079384bd5f49e0e36a571ee964bfd7d6ebd25d)
1472. [bug] marcin
Timeout is now reported by the HTTP client when connecting to the server
takes too long. This eliminates HTTP client hangs when firewall is
misconfigured and causes connection to never be established. This issue
was found during Kea High Availability testing.
(Gitlab #26,!106, git 9724823f160af0ef5e8ccdf779087ff08a04457a)
1471. [bug] lmasarati
Fixed a bug in kea-admin that ignored specified remote hostname.
Thank you to lmasarati and Thorsten Krohn for reporting it and
proposing a patch!
(Gitlab #61, #138, !114, git 901cac7dc85ad8dacf631bf3a5c266eefeb3e6a1)
1470. [func] marcin
Improved lease database synchronization mechanisms in High
Availability hooks library. The new implementation uses
lease4-get-page and lease6-get-page commands to fetch leases
from the partner server. This prevents timeouts occurring
during long synchronizations as well as decreases CPU and
memory consumption on the HA enabled servers during lease
database synchronization.
(Gitlab #78,!85, git c54ea216463dcc6df693c96c4a5f82c0fbec2ff6)
1469. [doc] marcin, fdupont
Documented new class_cmds premium library which is used
to modify client class configuration of the DHCP servers.
(Gitlab #64,!41, git c1c1d0b71496d81b330a8c1eb95996bbf634ada0)
1468. [build] wlodek
make distcheck fix.
(Gitlab #202, !111, git 5d8fb5f7af5fa36f4cb2b89f10631683b2e230d5)
1467. [doc] fdupont, tomek
Doxygen errors fixed.
(Gitlab #180,!93, git d12fb04d71c3b2d0e84ebb2c957334454b5705c4)
1466. [func] fdupont
Added random number generation in services provided by
the crypto library (and ultimately by the crypto backend,
i.e. Botan or OpenSSL).
(Gitlab #29,!9, git 609ddc69613dc828b3d93673d61a2c259c3944aa)
1465. [build] marcin
Removed libkea-process dependency on MySQL, Postgres and
Cassandra libraries.
(Gitlab #194,!104, git bcce7d3c2226c10218d537c4688344c3b7f8c84a)
1464. [build] marcin
Exclude mysql_cb hooks library from the Kea 1.5.0 release. This
library will be added back in Kea 1.6.0 release.
(Gitlab #93,!105, git 49572aa300ea2b25712d7e8cea0dd0df34faf7ee)
1463. [bug] tmark
Added missing parsing logic for the reservation-mode value,
"global", to kea-dhcp6. The parsing logic was somehow omitted
and caused kea-dhcp6 configuration parsing to fail on values
of "global".
(Gitlab #129,!55, git 00352d701f61274f0993b468a413af6c5623af3d)
1462. [build,doc] tomek,sgoldlust,vicky
Kea REST API is now documented. Thanks to Suzanne Goldlust for
providing descriptions for great majority of commands and to
Vicky Risk for review and corrections. Also, docgen, a new
tool for documentation generation has been written.
(Gitlab #10,!3, git 5d2e4d6fcc182a19eafa895abc35b1aee599fd23)
1461. [doc] marcin, fdupont
Added new sample configurations providing all parameters at
the exception of host reservations for DHCPv4 and DHCPv6 servers
for testing of configuration managers.
(Gitlab #130,!89, git 4bc7e0dbe4804f63c51d100a8f724327e3d3a936)
1460. [func] tmark
While kea-dhcp4 and kea-dhcp6 configuration parsing supports
configuration backend elements "server-tag" and "config-control",
use of these parameters has been disabled. Development of this
feature will resume after Kea 1.5 release.
(Gitlab #101,!87, git 4292a7ef7ab268826f846812e7320e1fe1fc46ef)
1459. [func] marcin
Implemented libdhcp_mysql_cb hooks library which provides
Configuration Backend functionality for MySQL.
(Gitlab #93, git 98456608056b3361352b3127767138845eeb5d00)
1458. [func] fdupont
Control sockets for kea-netconf has been implemented. The code is
not functional yet, but the capability of the kea-netconf daemon
to communicate with CA, D2, DHCPv4 and DHCPv6 daemons is there.
(Gitlab #153,!60, git 11486e255aef704114645f8e7c5fee9c3abf9e76)
1457. [func] tmark
Both kea-dhcp4 and kea-dhcp6 configuration parsing support new,
server-level configuration elements "server-tag" and "config-control".
While these elements will parse, they are not yet used by the servers.
(Gitlab #32,!23, git c0727407da8d749d9fb51d873a725369800c967b)
1456. [build] tomek
Extended Kea version is now stored in a separate file for
build performance reasons.
(Gitlab #137,!42, git 87479e979ca3d3025cb4129ace991a59e32e0f62)
1455. [func] fdupont
Implemented hexstring(value, separator) operator that can be used
in any expression, such as client classification, flex-id or
RADIUS attribute.
(Gitlab #67,!34, git 004d9a29db09b1c203c52e23585bd275c52095fa)
1454. [func] fdupont
Unused interface-id and rapid-commit parameters removed from
DHCPv4 parser.
(Gitlab #116,!24, git 7e47292f10acb9179241c991d3591e9bfa47c37d)
1453. [func] marcin
Updated MySQL schema to facilitate Kea Configuration Backend
feature.
(Gitlab #89,!22, git e28c0c7b3e7a7729167cdad993f634ed1f0ac53b)
1452. [func] marcin
Implemented libkea-cb library which includes basic class
hierarchy for the Kea Configuration Backend.
(Gitlab #28,!20, git fb5c031ecaf4182e56f62874e9a6bd4c1d755a77)
1451. [build] tmark
Resolved a namespace issue with std::distance() in libdhcp++.cc
when building with Boost 1.68. Thanks to Huy Vu and Khem Raj
for reporting and suggesting a fix.
(Gitlab #109,!21, git 1fd301f998129e9926ffa35eac27768ae150633d)
1450. [build] tomek
Dependencies improved. libkea-process no longer requires libkea-dhcpsrv.
As a result, D2 and CA are no longer linked with libkea-dhcpsrv.
(Gitlab #25,!14, git cdb3a6f2d98a303b80433df7e0d5698c77897b7f)
1449. [func] tmark
Modified Kea 1.5.0 database upgrade scripts to convert
subnet ID values of 0, to either null (MySQL and Postgres)
or 0xFFFFFFFF (CQL), in existing host reservations. This
is done to accommodate support for global host reservations.
(Gitlab #15,!11, git 25b54fd9ced4c6d3a2c8ceff9cc7c866b56da2c1)
1448. [build]* marcin
Created new Kea libraries: libkea-database, libkea-mysql,
libkea-pgsql and libkea-cql. Some database specific code was
moved from libkea-dhcpsrv to those new libraries.
(Gitlab #92,!13, git 5feb6b8a53675c27715e9e8fbeb312bd6eb17547)
1447. [doc] tmark
Updated Kea Administrator's Guide with discussions of the
use of subnet ID parameters in hook library commands.
(Gitlab #14,!15 git# 4a7da8069feab1e21132689a9368f8ccb4174683)
1446. [func] tmark
kea-dhcp6 now supports global host reservations and a new
global reservations-mode . Prior to this reservations could
only be specified per subnet. This is supported by by Memfile,
MySQL, PostgreSQL, and Cassandra host data sources.
(Gitlab #13,!6, git# a5484c4d8852662be7da1e6e8b1d4c1a19e6502f)
1445. [func] tomek
Implemented initial skeleton version of the kea-netconf tool.
Currently it can't do anything, but the build system is now
capable of detecting sysrepo (use --with-sysrepo in configure),
there's a very basic documentation and unit-tests.
(gitlab !1, git 89ff2093811d65220d99dc2a6516375c4ec953dc)
1444. [bug] tomek
keactrl version tests now work properly on macOS.
(Gitlab !5, git a8c385e1507ffd101f65b445783b0355b01decce)
1443. [func] tmark
kea-dhcp4 now supports global host reservations and a new
global reservations-mode . Prior to this reservations could
only be specified per subnet. This is supported by by Memfile,
MySQL,PostgreSQL,and Cassandra host data sources.
(Trac #5705, git f991cffd06add941f8bf2937232f51d597623e21)
1442. [func] MayyaSunil
Implemented new queries for IPv6 leases by DUID.
(Github #99, git c20b5248da1283e596e35ad057ae242f4d613965)
1441. [func] marcin
Added log message indicating that the control socket has been
opened by a server.
(Gitlab #8, git 3dbaf4917bea112466f1ee5726870c545950e114)
1440. [func] tmark
The internal representation of an "unused" subnet-id has been
changed from zero to 0xFFFFFFFF. The largest, valid value for
a subnet's ID is now 0xFFFFFFFE. Three new constants have been
added so subnet_id.h:
isc::dhcp::SUBNET_ID_GLOBAL
isc::dhcp::SUBNET_ID_UNUSED
isc::dhcp::SUBNET_ID_MAX
which should be used in code/hooks in place of hard-coded values.
(Trac #5704, git 90fe9ca2cd6f63bcc7168bdc3786677db57b65ec)
1439. [func] tomek
keactrl and kea-admin tools can now report version.
(Gitlab #9, git 4a00ab5d4b9ac9193fc5f924149aeaca7a88e2ef)
1438. [func] tomek
subnet-id parameter is now optional in lease4-add, lease6-add,
lease4-update and lease6-update commands. If not specified or
its value is zero, Kea will attempt to figure out the correct
value of subnet-id. If there is no matching subnet configured,
the lease will be rejected.
(Trac #5683, git a8ce7a78b5b294e6bce02de887552a1e4593db4e)
1437. [func] tomek
DHCPv4 and DHCPv6 servers are now able to sanity check and
possibly correct some inconsistencies in leases when loaded from
disk (memfile). A new parameter to govern this behavior has been
added.
(Trac #5682, git 609bfa0a67caa91fac6834eb39260acfd19e3be4)
1436. [func] tmark
Added two new configuration parameters to kea-dhcp4 and kea-dhcp6
DhcpDdns sections: 'hostname-char-set' and 'hostname-char-replacement'.
These values (when not empty) are used by the server to sanitize
host name and FQDN domain names sent by clients prior to using them
to construct DNS names.
(Trac #5680, git 32466ab3d4688e66c8c2f9fd24d4a98fcc871ff6)
1435. [func] marcin
Implemented ha-continue command in HA hooks library and
updated the Kea User's Guide with the information how to
pause and resume the HA state machine.
(Trac #5675, git 98a9bd4f6766ff2f53681d84d55c56988be4d501)
1434. [func] MayyaSunil
Code added to support storage of Authentication key host reservation.
There is no way to use the code yet.
(Github #88, git 66602af46b1a7d9f4197b1f285c928bd9f80ba2b)
1433. [func] marcin
Implemented state HA state machine pausing in the high
availability hooks library.
(Trac #5674, git b9f3f082c7a88fe98fa4545b9649193ceb5e3ef5)
1432. [func] MayyaSunil
Code added to handle Authentication option in DHCPv6. There
is no way to use this code yet.
(Github #93, git 022dae4393da9e714678d52886d4f478ba308ba9)
1431. [func] marcin
Implemented lease4-get-page and lease6-get-page commands
in lease_cmds hooks library.
(Trac #5651, git b056828212f7b206ff8bd07c097fd6f427d22d71)
1430. [func] fdupont
Lease objects and lease backends are now able to store user
context. User context can store an arbitrary data as long
as it is in JSON format. Database schemas updated.
(Trac #5584, git b0b7a198b99fd417466708c80cb7cc2162ae480c)
1429. [bug] marcin
Removed memory leak in the DHCPv4 and DHCPv6 servers which
occurred when hooks libraries where loaded.
(Trac #5664, git 2584b902d2617089bfa7238133490ddd855aa77a)
1428. [bug] marcin
Corrected behavior of the standby server in the HA hot-standby
mode, which failed to monitor delays in responses to the
DHCP queries sent to the primary server after the primary
server became unavailable. This resulted in transition of
the standby server to the partner-down state immediately
after detecting interruption in communication with the
primary over the control channel.
(Trac #5654, git 7a83f05fe40fb1b6812b055e2d6d633d9e00160c)
Kea 1.4.0 released on June 15, 2018
1427. [bug] marcin
Resolved multiple problems causing slow synchronization of
leases in the HA hooks library, including adjusting
timeouts in control channel and improving performance of
responses sent by the Command Manager to Control Agent.
Also, introduced 'sync-timeout' configuration parameter
into HA hooks library to control lease database
synchronization timeout.
(Trac #5649, git cbc29128863916a13364749bf681586aea2aa51e)
1426. [func] fdupont
Added KNOWN and UNKNOWN built-in client classes: after host lookup
if a matching host entry is found the incoming packet is added to
the KNOWN class, if none is found to the UNKNOWN class. Then
expressions depending directly or indirectly on these classes are
evaluated. Note these classes may be used to select a pool but
they may not to select a subnet.
(Trac #5549, git 6a856ed9722b918a65dca15ff44314e28897784e)
1425. [bug] marcin
Improved performance of the DHCP server running in High
Availability configuration by optimizing the management of
CalloutHandle objects passed to the callouts.
(Trac #5647, git eea88d5c8f4d8efb6c5bfdfbf4e070a90069db5d)
1424. [doc] marcin
List of hooks libraries provided by ISC includes an
information which Kea servers the libraries can be attached
to. The detailed description of each supported hooks library
also contains this information.
(Trac #5613, git 9d6f8de3d988c42c413a7d628e31854e9c80d8c9)
1423. [bug] tmark
kea-dhcp4 and kea-dhcp6 now retain and emit global, scalar
parameters specified in their configuration.
(Trac #5378, git 4d05122f03d00b10a888c768fe1725cae9d6aea6)
1422. [build] fdupont
Commented out BOOST_ASIO_DISABLE_THREADS in configure to reflect
the current use of threads by boost ASIO in Kea.
(Trac #5615, git f3fc8b1a4257a42a97aaf88a36287bbe33d1f65b)
1421. [build] marcin
Moved libdhcp_ha (High Availability) hooks library from
premium to main Kea repository and changed its license to
MPLv2.0. Future ChangeLog entries for this library will be
tracked in the Kea ChangeLog file.
(Trac #5645, git 19b2553d4869bdd52b63b6f7969052d8a724f78d)
1420. [doc] marcin
Updated list of loggers in the Kea Administrator's Manual.
The updated list contains all loggers, including those
from supported hooks libraries.
(Trac #5622, git bd94afc0af7183452c94f3b5768c6138f79d3b60)
1419. [doc] marcin
Documented "sync-leases" configuration parameter of the HA
hooks library in the Kea Administrator's Manual.
(Trac #5621, git 4ebac3a411aa02d1cc3d74e7eaf3212ad208159a)
1418. [bug] marcin
Corrected bug in the allocation engine which caused occasional
lease allocation failures when a loaded hooks library set the
callout status to non default value, e.g. "skip" rather than
"continue". In such cases, the server reported that it failed
to allocate a lease "after 0 attempts".
(Trac #5638, git f2e9b686ae52e1b06f660e1b522588b1440e2620)
1417. [bug] marcin
Improved logging in the HTTP library both for the server and
the client.
(Trac #5205, git fd0bec610c89084d5a5d43ef032c9875c3e6ad46)
1416. [bug] fdupont
Added support of recent Botan 2.x crypto backend.
Note that Botan 1.[9-11] is still supported but not recommended.
(Trac #5382, git 22651b1935a2397edfbddb9b8873c353c090f18e)
1415. [bug] tmark
kea-dhcp4 and kea-dhcp6 now validate the schema version
of lease and host backends after establishing a connection.
If a schema version does not match the version the server
expects, the server will emit an error log and close
the connection. This applies to MySQL, PostgreSQL, and Cassandra.
(Trac #5629, git 15c34afdba45be609e35284a209ad18ed66605f8)
1414. [bug] tmark
kea-dhcp4 parsing now treats renew-timer and rebind-timer
as optional with no defaults. The logic for sending them
to the client was changed to: send rebind-timer only
when it is less than the lease lifetime; and send renew-timer
only when it less than either the rebind-timer if specified,
or lease lifetime in the absence of rebind-timer.
(Trac #5596, git 38426e16ec04a786e35a65d27cbcb7dbabfe79b5)
1413. [func] fdupont
Removed getAll, get4 and get6 methods using both hardware address
and DUID from host backend (aka host data source) APIs.
This is an *incompatible* change.
(Trac #5563, git db4c34b069f114f93d9f29cdeb02b536a0fbc982)
1412. [func]* marcin
The client classes used by the High Availability hook library
use upper case "HA_" prefix and they are now built-in classes.
This means that those classes do not need to be declared in the
server configuration.
(Trac #5632, git 2d590bfd7d1b0eca377eb99eef83a3083a1d7399)
1411. [bug] fdupont
Fixed warnings about lambda's not using captured variables.
(Trac #5591, git f88a505823d39faec7dc5f647f40e6454e5dfc74)
1410. [bug] marcin
Fixed multiple hanging Control Agent unittests.
(Trac #5576, git 310af68101cba74220652ec2b403520fc5666dc0)
1409. [doc] marcin
Documented in the User's Guide how Kea HA service behaves
when the clock skew between active servers becomes too
high.
(Trac #5603, git ffaff4d2a03600bb4f81d335b49a840e31d03c8c)
1408. [func] tomek
perfdhcp now supports -o option that adds DHCP options.
This may be used to simulate various clients.
(Github #77, git b81dedb7f0a2516130e7bd799d9084c63f0e844c)
1407. [bug] tmark
Corrected an issue where the destruction of loggers
prior to the destruction of the TimerMgr singleton
caused unit tests to segfault.
(Trac #5626, git 9f4e3f9cd8acf8e7d1d3e714d8f904754377c00f)
1406. [func] fdupont
Added pkg-config alternative to configure --with-cql path so
now you can use either pkg-config or cql_config.
(Trac #5488, git 55498ca3455517132533a39002ebfc05d26c7e38)
1405. [bug] tmark
Corrected missing "override" warning in cql_lease_mgr.h
(Trac #5625, git df3068ba0e520df4d96dd38e2de679beb99f2e23)
Kea 1.4.0-beta released on May 18, 2018
1404. [doc] tomek
Hooks package installation instruction added to Kea
User's Guide.
(Trac #5427, git 7bc5e4297e8b2ccb87d5d5d79ae066fe32964841)
1403. [build] tomek
Support for hook packages has been updated. The --with-tierX
flags have been removed. Each hook library is now detected
independently.
(Trac #5619, git aa1f95d699dc664a5660db120ef71edee910a9b3)
1402. [bug] tomek
Fixed a crash that was caused by hook library registering
new hook points. This fixes unit-tests with forensic
logging, but the problem was generic and could cause
other libraries to segfault during unloading or reconfiguration.
(Trac #5577, git 2f9d1aa95c16e12fabc50d581b966f20b6d8a950)
1401. [bug] tmark
Corrected an issue which caused kea-dhcp4 and kea-dhcp6 servers
to unload their hooks libraries upon receipt of the first client
message following a dynamic reconfigure.
(Trac #5564, git 5111f569bd251c2a98a2e6d958e8f6b640a1802d)
1400. [func] tmark
A new hooks library, Stat Cmds, has been added to the open source
distribution. This library provides commands for fetching lease
allocation statistics using lease backend as the source for
lease counts per state. This resolves an issue in deployments,
where multiple Kea servers share a common lease backend, which made
it difficult to obtain accurate lease statistics.
(Trac #5589, git 36f20f1c8b28f629fe2896b817ac0f3c6026fe0e)
1399. [func] tmark
Support for fetching lease allocation statistics by subnet-id
or subnet-id range has been added to the Cassandra backend. This
allows it to be used in conjunction with the Stat Cmds hooks
library commands for fetching shared lease statistics.
(Trac #5588, git 3fcfefdea5ac838936c2109ecbbbc32eabc8fdba)
1398. [bug] fdupont
Fixed bug in configurations where "outbound-interface" parameter
was set to "use-routing", which in some cases would reset outbound
interface index to a negative value and cause the server to fail
to respond to the clients.
(Trac #5515, git 9d8d00f1f127ee606f09f7ff6006f0d142aac976)
1397. [bug] marcin
A bug in http client library was fixed. The IPv6 address specified
in brackets is now supported properly.
(Trac #5620, git fe38c4368853e47bc993d6c3844cdddba5effde5)
1396. [bug] tmark
The PostgreSQL schema was expanded to include two new tables:
lease4-stat and lease6-stat and triggers to update them as leases
are modified. This resolves an issue in deployments, where multiple
Kea servers share a common PostgreSQL lease database, which made
it difficult to obtain accurate lease statistics. Since these statistics
are now tracked by the database, they do not have to be recalculated at
startup or following reconfiguration. This may result in less
processing overhead during these events. The new statistics will be
accessible via a new Hooks library, being developed for Kea 1.4
under #5589.
(Trac #5587, git 36a0160de0df7789eea224954717be05c08638b7)
1395. [bug] tmark
The MySQL schema was expanded to include two new tables:
lease4-stat and lease6-stat and triggers to update them as leases
are modified. This resolves an issue in deployments, where multiple
Kea servers share a common MySQL lease database, which made it difficult
to obtain accurate lease statistics. Since these statistics are now
tracked by the database, they do not have to be recalculated at startup
or following reconfiguration. This may result in less processing overhead
during these events. The new statistics will be accessible via a new Hooks
library, being developed for Kea 1.4 under #5589.
(Trac #5586, git a070c327668c10de3b28f5e249f91d6d16a97ff5)
1394. [doc] marcin
Documented High Availability hook library in the Kea
Administrator Reference Manual.
(Trac #5478, git 3db34400d0331e3d4fc208529eeb18f6abfb6562)
1393. [build] marcin
Install new header files introduced since Kea 1.3 release.
Also, bumped up libraries version numbers for Kea 1.4 beta
release.
(Trac #5590, git 64351229a30832735c5a81ac17ca1521aa2483b2)
1392. [func] fdupont, marcin
Implemented new hook point "leases6_committed" in the DHCPv6
server. It supports new next step status NEXT_STEP_PARK
which causes the server to "park" the client's DHCP packet.
(Trac #5458, git 04d6fb0a0ac5b9dff2a02764cc9265f9a2a05ae8)
1391. [func] tmark
For both kea-dhcp4 and kea-dhcp6, the "ip-address" parameter
in the "relay" element for both subnets and shared networks,
has been replaced with a list form, "ip-addresses". Configuration
parsing will continue to honor the singular form, but it should
be considered deprecated. In addition, an omission in 1.3 that
caused shared network parsing to ignore the "relay' element has
been corrected.
(Trac #5535, git f4601abdb657122a8ba5d7784eded773ec01d171)
1390. [doc] tomek
User's Guide documentation for RADIUS and Host Cache written.
(Trac #5538, git c73337a8ec691874b8ac0b2efcd8708f1a79acbb)
1389. [func] fdupont
dhcp6_srv_configured hook point added.
(Trac #5530, git 3bb521f6ec8b4e2a1e57ec84b17ee12b0ccf0f83)
1388. [build] tmark
Modified configure script to support --with-dhcp-mysql and
--with-dhcp-pgsql but emit a deprecation warning message
encouraging their replacement with --with-mysql and --with-pgsql.
(Trac #5567, git 53761069761ddde44636baa30185322debfe4186)
1387. [func] tmark
perfdhcp no longer requires -r (rate) be specified in order to use
-D<max-drop>, -n<num-request>, -p<test-period> and -t<report> options.
(Trac #5115, git c3ba89c56882cac1080899ad201f0c02056eef38)
1386. [func] fdupont
Extended comment / user-context support to DHCP-DDNS and
Control Agent configuration syntax.
(Trac #5495, git fe79959e3bc3c46ccb89661cb27696671a8508b8)
1385. [func] tomek
lease4-wipe and lease6-wipe are now able to wipe all leases
from all configured subnets if subnet-id specified is 0
or the subnet-id parameter is omitted.
(Trac #5543, git ecaf777dff4b8d1100c2a97c4fb1cf8f8e63566d)
1384. [func] fdupont
Significant improvements to client classification introduced.
The order of classes evaluation has changed from alphabetical
to the order of appearance. New 'member' expression allows
combination of classes. The new 'only-if-required' and
'require-client-class' parameters controlling the scope of
a class have been introduced.
(Trac #5474, git 3f2d93f0731fc1858b20e831a7d1f090ea8841fe)
1383. [func] tmark
kea-dhcp4 and kea-dhcp6 can now be configured to attempt to
reconnect to MySQL backends if connectivity is lost.
(Trac #5556, git b31da6f9a3545a2cac228eb17c59d72b6b4823f2)
1382. [func] fdupont
Added support for generalized UDP Source Port for DHCP Relay
(RFC 8357) for DHCPv4, DHCPv6 and DHCPv4-over-DHCPv6. Note
this required changes to the inter-server protocol used by
our 4o6 implementation, and is therefore not backward
compatible.
(Trac #5404, git 2a6049947ad4caaaa697dba8cb7669a09264f0bc)
1381. [bug] marcin
Corrected a bug in the libkea-asiolink library which caused
the DHCP servers to crash while processing commands over
the unix domain socket on some systems.
(Trac #5580, git cb5276a24436a9e9ce4d1ab4630e7193a4c2d803)
1380. [func] fdupont
Implemented lease6-get-all command in lease_cmds hooks library.
(Trac #5469, git a0bb7188df47a0f8020ff57739c5a6ab5f7e9828)
1379. [func, bug] marcin
The network_state argument is provided to the callouts in
the dhcp4_srv_configured hook point. Also, fixed a couple
of minor bugs in the HTTP client classes.
(Trac #5470, git 93e2b2198c3163afb81d51fdf5ec547602a12415)
1378. [doc] tomek
New parameter subnets-action for network4-del and network6-del
commands is now documented.
(Trac #5441, git 8b2ffabb3d1ba709f319df2b34d0804ee824446b)
1377. [doc] tomek
New parameters for Cassandra are now documented.
(Trac #5484, git 56e7026ea2bfab99dbfa1a047dc920ec2f743540)
1376. [func] razvan
Cassandra backend improvements: get all IPv4 leases, delete
hosts, ability to store fixed DHCPv4 fields (next-server,
server-hostname, boot-file-name) and user contexts in host
reservations. Also, the ability to store MAC address details
in DHCPv6 leases on PostgreSQL has been improved.
(Github #70, git 8cd0c1ae416be88baf69c2243e83a429d6d5c965)
(Trac #5506, git 8cd0c1ae416be88baf69c2243e83a429d6d5c965)
(Trac #5507, git 8cd0c1ae416be88baf69c2243e83a429d6d5c965)
(Trac #5508, git 8cd0c1ae416be88baf69c2243e83a429d6d5c965)
(Trac #4530, git 8cd0c1ae416be88baf69c2243e83a429d6d5c965)
1375. [func] tmark
When encountering errors unpacking vendor specific options,
both kea-dhcp4 and kea-dhcp6 will now log the error, skip
unpacking any remaining options, and then attempt to process
the packet as is. Prior to this the servers would log the issue
and then drop the packet.
(Trac #5551, git 59ef33ee17672c55cee4ec86ff59737b361a3c21)
1374. [func] tmark
kea-dhcp4 and kea-dhcp6 can now be configured to attempt to
reconnect to Postgresql backends if connectivity is lost.
(Trac #5477, git 8e62a058382b2245d418cfbf829776934c638e5e)
1373. [func] marcin
Implemented leases parsing from JSON in libkea-dhcpsrv.
(Trac #5466, git 84c2a2084b0fb7c086fc6b9502f7ff58b708174e)
1372. [func] marcin
Implemented new hook points "dhcp4_srv_configured" and
"leases4_committed" in the DHCPv4 server. The latter supports
new next step status NEXT_STEP_PARK which causes the server
to "park" the client's DHCP packet.
(Trac #5457, git af43f07b0e227ccabcdf07a046a64cebb11bdccf)
1371. [bug] fdupont
Fixed a bug in JSONfeed tool which did not correctly handle
strings and interpret their content.
(Trac #5513, git 231e923a85db7fb8305c7baa4d15f766fdf60942)
1370. [bug] tmark
Fixed a bug which prevented inserting multiple host reservations
where IPv4 address was unspecified or when selected subnet identifier
was not specified (5416). Corrected inconsistent data types for
subnet id columns in both Postgres and MySQL schemas. Now both
schemas support up to MAX UINT32 in all subnet id columns. Exiting
databases may be updated without data migration.
(Trac #5416, #5522, git d1dd0f2e27ffa49515c17cf68d54f162359b6384)
1369. [bug] marcin
Multiple critical performance optimizations in the allocation
engine for shared networks.
(Trac #5437, git 9d8bcd39802795d48c737a05ef3de3634a28ca4e)
1368. [func] tmark
kea-dhcp4 now explicitly logs packets dropped due to a lack
message type as a log type DHCP4_PACKET_DROP_0009. Prior
to this such packets were logged has having an unsupported
message type of 0.
(Trac #5553, git ff97e5ffb5f3478be71aae8130b6eff3208bd69a)
1367. [func] fdupont
Added initial skeleton implementation for Radius hook library.
(Trac #5524, git 832aa23b89eab71875bcbdb1e955eb92fdc0e01a)
1366. [func] fdupont
Implemented FNV hashing function. Cassandra backend no longer
explicitly depends on OpenSSL.
(Trac #5502, git 71de75c3bb099f21fdef0d41806da281d6271287)
1365. [func] fdupont
Both DHCPv4 and DHCPv6 servers can now listen on loopback
interfaces. This capability requires setting socket type to UDP in
DHCPv4. Note the feature has not been thoroughly tested.
(Trac #5390, git f38cbd73581a7a0f8634a63cb17f9b60407e3acc)
1364. [func] fdupont
Extended forensic (aka legal) logging with database capability.
(Trac #5420, git 94bd3cc313e9f2a982ef8f8adf0cf44024c76499)
1363. [func] tmark
Added support for automatically recalculating lease statistics
to the CQL backend.
(Trac #5487, git c807388d581ee1c3e479324f3c399f27feba1c96)
1362. [func] razvan, andrei
A new parameter exit-wait-time has been added to perfdhcp. It is
now possible to tell perfdhcp to wait certain amount of time after
exit conditions are met before actually terminating.
(Github #55, git 0cd1178ae092fa0c2f122d0e16fb673b4074a6e6)
1361. [func] razvan, andrei, tomek
Support for Google Benchmark has been added. To compile
benchmarking support, please use --with-benchmark option.
(Github #36, git d6819971410b460d7742c762844e2e75ba580944)
1360. [build,bug] fdupont
Cassandra build fixes for macOS.
(Trac #5494, git cb0d735628aefd6bca2acc11b73d1f66b45d1c40)
1359. [bug] rcgoodfellow
Fixed bug in kea-admin causing error on lease-dump.
(Github #61, git 2c9454ec56edc8f3cff8a23329f53ced0d172280)
1358. [func] andreipavelQ,tomek
The logging configuration is now applied early, which helps
seeing errors in case the new configuration is faulty.
(Github #41, git d77fbec5a003a69cab207aa741133015f2657878)
1357. [build] andreipavelQ
--with-dhcp-mysql renamed to --with-mysql and
--with-dhcp-pgsql renamed to --with-pgsql. These names were
leftovers from old BIND10 times when Kea was part of bigger
solution that also provided DNS services. Kea is now a stand-alone
software, thus the -dhcp- doesn't make sense in those options any
more.
(Github #40, git 318c9e3d3db9bb938ced27932d8401172529a2ff)
1356. [doc] andreipavelQ
Documentation has been upgraded to DocBook 5.0.
(Github #39, git 9b6705bd6c534128ec18820ff0cbdd72b7fce9e9)
1355. [func] tomek
Lightweight 4over6 options reinstantiated. Definitions for DHCPv6
options 89 through 96 were added back. DHCPv4 v4 Parameters Option
159 has its definition tweaked slightly.
(Trac #5514, git 6a4aac2b3bfffe41460db6d1cd3c55b1430aa50c)
1354. [build] andrei
Support for coverage tests has been improved.
(Github #43, git 1949bb3abf71fb3997044d239eb683095166c39f)
1353. [build,bug] andrei, razvan
Various small changes and bugfixes. Thank you to Andrei Pavel
and Razvan Becheriu for submitting their patch.
(Github #54, git 2efa7494228a1797dff8d9d74107a452c61e2386)
1352. [func] fdupont
It is now possible to specify client classification restrictions
on per pool basis. This capability will be useful for grouping
certain types of devices into specific address and/or prefix
pools.
(Trac #5425, git 5f3a89d6e32e90cd9cbb2347c7b2208c3e1561e0)
1351. [build] andreipavelQ
Compilation parameters unified (every file now includes config.h,
several makefile tweaks).
(Github #38, git 7206aa79c57be7466c4ab3dd558663c6c4f858b7)
1350. [func] fdupont
Several hook points now support next step status DROP. This allows
more flexibility with dropping packets from within hooks.
(Trac #5443, git ff22a906915a34df327174f550f69a396a05bb2c)
1349. [func] marcin
Implemented HTTP client classes in libkea-http.
(Trac #5451, git 94267e252b372650e4235389251b49d6f5501322)
1348. [build] fdupont
Modified configure.ac to include premium module m4 macros, if the
module is present. Prior to this it relied on premium having it's
own configure.ac script.
(Trac #5400, git 38c4f2fb8fc8c8874a0e4671cc295a049acf675f)
1347. [build] fdupont
Added support of boost 1.66.0 ASIO.
(Github #60/Trac #5496, git bc2947de4296bd99b74e50e65f272c7ad5312429)
1346. [func] marcin
Implemented lease4-get-all command in lease_cmds hooks library.
(Trac #5468, git a378ec28489e98df64830d1f26c3bebd20e256b2)
1345. [func] marcin
Implemented "force-create" parameter for lease4-update and
lease6-update commands.
(Trac #5472, git 369245e4c5308a701fd483123f2cb2fd7d3d0966)
1344. [func] andrei, razvan
Support for host reservations stored in Cassandra added. The core
functionality was added. There are some limitations (delete,
client classes, fixed DHCPv4 fields, statistics recount, etc.)
These will be addressed in upcoming tickets.
(Github #37, git e37606fd2d0c02234a55f7445c52a12b2e7a82ec)
1343. [func] fdupont
User-context and comments are now supported in many new scopes:
global, shared-network, subnet, pool, host reservation, option,
option definition, client-class, control-socket, dhcp-ddns,
interfaces, loggers, and for DHCPv6 pd-pool and server-id.
(Trac #5351, git 3405a8fa5d391d96cd15874fd3de3ac63ceb33b6)
1342. [bug] fdupont
Fixed subnets and host reservations returned by config-get and
config-write.
(Trac #5452, git c24d057bed2692eaf3cdb6af889122eb582ffede)
1341. [func] razvan, andrei
Significant update of Cassandra support. A lot of code for
Cassandra Lease Manager has been updated and partially rewritten.
(Github #35, git 41795494720cd9886c1e98d21eaeefd94d674e37)
1340. [func] marcin
Added support for "dhcp-enable" and "dhcp-disable" commands in
the DHCPv4 and DHCPv6 server.
(Trac #5442, git 36dc68ff7aa8b3cfd265c4f982d10248590039bd)
1339. [doc] marcin
Updated User's Guide describing how to selectively disable
legal logging for a subnet.
(Trac #5407, git 469080abd711f8e88a5133f76f4ab31a5549a858)
1338. [func] marcin
Persistent HTTP/1.1 connections and HTTP/1.0 keep-alive
are supported by RESTful API.
(Trac #5448, git 05018f7cc0662d6956b9b7648646e0c17da948ba)
1337. [doc] marcin
Added placeholder section for the libdhcp_ha hooks library.
(Trac #5447, git d939b5b8bc4befb24daf863f2408d97493e4bfbf)
1336. [bug] marcin
DHCPv6 server always sends prefixes with the lifetime of 0 for
the prefix leases that should no longer be used, even if those
prefixes are not included in the Renew/Rebind.
(Trac #5403, git 91bb0855ff7ef86ff72b5a946ae716798d7bebc1)
1335. [bug] marcin
Fixed a bug which prevented inserting multiple host reservations
where IPv4 address was unspecified or when selected subnet
identifier was not specified. This change affects both Postgres
and MySQL backend.
(Trac #5416, git 03fab8f7d5c2e8a5ea735b11ff75652aa31d791d)
Kea 1.3.0 released on October 27, 2017
1334. [bug] marcin
Fixed a bug in the DHCPv6 server whereby a lease with zero
lifetimes could be mistakenly included in the server's
response.
(Trac #5387, git 140e7239096c0d5b9fc82b2c9c461476bf9d5729)
1333. [doc] tmark
Added a discussion of conflict resolution to the DHCP-DDNS chapter
of the Kea admin guide.
(Trac #5275, git ce3fe30524cdc21a9cabeafbdcb2fc3cd2e86cff)
1332. [doc] tomek
Clarified list of supported options, added examples for using
hex notation to specify option values.
(Trac #5068, git c942586172a68a7fac09e366383d996ade7f3840)
1331. [func] marcin
Default "lfc-interval" value is now set to 3600.
(Trac #5341, git dd1af78a49bfb68b88e8215dde65e40a470af81c)
1330. [bug] fdupont
The option length checks were relaxed for the V-I Vendor Class
option.
(Trac #5391, Github #57,
git 8c1ea6684a808e8d3af9ea7eccecd93adc801e8a)
1329. [func] marcin
Added support for "client-id" identifier when querying for
leases in the lease_cmds hooks library. Documentation
updated accordingly.
(Trac #5395, git aceafa67f4fbde55ed6724a7b7551ed251e4ee91)
1328. [doc] vicky
Acknowledgements section updated.
(Trac #5385, git fe0658896f3784cd8f59bd5158244d6975cfe4c1)
1327. [build] marcin
Updated Kea libraries' version numbers and hooks version for
the 1.3.0 release.
(Trac #5375, git 70c0fc164c89716419b6ee42da3ca0d4be938a30)
1326. [func] fdupont
server-hostname and boot-file-name are now allowed in global,
subnet4 and shared network scopes in DHCPv4.
(Trac #5277, git 5a2454ec063530867dca2c46a71e342ccd98a5bb)
1325. [bug] marcin
Fixed a bug whereby a reserved address could be allocated to
a different client when this client explicitly requested
this address.
(Trac #5393, git 0964c66d44516a04ec62c8e70be92f216fe3df5a)
1324. [doc] wlodek
Added examples of configuration for iPXE boot with DHCPv6 Kea server
(Trac #5356, git c68b9b381930d1e44fd5daa1b9d033035e32cff2)
1323. [doc] marcin
Added new section to Kea Hooks Developer's Guide describing how
to implement new control commands within hooks libraries.
(Trac #5331, git b23f36ca4a410ba7bca7fd4a9f40c008c77e3c7c)
1322. [build] marcin
Copy all header files from Kea libraries during "make install".
(Trac #5372, git cb38d39a942351ec04a655a396dd7396ea20548b)
1321. [doc] marcin
Better explained subnet selection within shared networks when
client classification is in use.
(Trac #5367, git 26b4d240c5a1ba73e5b61f45d5a832e52f6472dd)
1320. [doc] marcin
Improved documentation of shared networks within Kea Administrator
Reference Manual.
(Trac #5381, git c4be6a71ed3705c182d7ba4417a06ed8fa59f2b5)
1319. [func] marcin
Added support for DHCPv4 option 54 (dhcp-server-identifier).
(Trac #5376, git aae2d91f101b8c61c0abfb3482de04a8dd074121)
1318. [doc] marcin
Updated Kea Administrator's Manual with the information about
new capability of flex-id hook library to use value derived from
flexible identifier as a client identifier or DUID.
(Trac #5384, git cce58fee4aa0476712209a7ed92fab587258b49b)
1317. [bug] fdupont
The kea-admin script now behaves properly when -4 or -6 is missing
while using lease-dump command.
(Trac #5379, git 53870c07d1864faf2a25bdc4ed6c5cf2b0223f8d)
1316. [bug] marcin
Corrected a bug which caused a returning DHCPv4 client performing
4-way exchange to be assigned a different address from a shared
network than previously allocated.
(Trac #5388, git 601a387ba43d990947ee2e1a05e78851d8133a3c)
1315. [bug] marcin
Created unit test for the case when there are several IPv6 subnets
within a shared network and each subnet specifies the same
DHCP option with a different value. This test verifies the fix
applied with ticket #5364 which address the problem of assigning
options from invalid subnet.
(Trac #5366, git 112addd4619509c464dc051f4885e00dc1f69d26)
1314. [bug] marcin, tomek
Improved unit tests for shared networks and corrected a bug
in the allocation engine which caused wrong subnet id to be
stored in the lease database and wrong subnet be used by the
DHCPv6 server for options assignment.
(Trac #5364, git 07ce52ee4ce65eeeea1890201812ac83a286658f)
1313. [bug] fdupont
Empty output_options structure is no longer returned by config-get
or config-write commands.
(Trac #5267, git f2290503ed899f00c7f2f2b905b90bc360617340)
1312. [func] marcin, tomek
Added new configuration parameter "outbound-interface", which
controls how the outbound interface and source address is
determined for the responses sent by DHCPv4 servers to relayed
clients. The default setting is to use the same interface as
the one over which the query has been received. The alternative
is to use system routing to determine the right interface and
source address.
(Trac #5377, git d08088923ec1ea0d1cb8a947bd520174d874d25e)
1311. [build] fdupont
Improvements in --enable-shell and other parameters passed while
building dist tarball.
(Trac #5210, #5339, #5352,
git e531cda4e10114a8f14bcbf3d7e25b6584230875)
1310. [bug] marcin
Documented "ia_pd" parameter for lease6_renew and lease6_rebind
hook points.
(Trac #5368, git 6842036714f84bf12529e1a43e12ac5a07e2e5c0)
1309. [func] fdupont
Kea-shell script now has an optional --path parameter that allows
using not empty URL path.
(Trac #5361, git 9a31c417d52f1481185b0880a10a4b5f16d8462a)
1308. [func] fdupont
Support for conditional token ifelse(condition, iftrue, iffalse)
was added. It can be used in flex-id, client classification and
possibly other expressions that may appear in the future.
(Trac #5363, git 34c364abd23a1a745da79c10c69b94b8defad08b)
1307. [func] fdupont
When an option is defined with a record type and the array
flag is true the last record field is an array. All standard
options supported by ISC DHCP and using this are now supported
by Kea (so now there is no standard option supported only by
ISC DHCP).
(Trac #5226, git f66951dbda8f62122187ac3a99f0fdcc65b383d8)
1306. [bug]* marcin
Respective Kea daemons now use their own default configuration
files: kea-dhcp4.conf, kea-dhcp6.conf, kea-dhcp-ddns.conf and
kea-ctrl-agent.conf. This change is aimed at eliminating the
issue whereby 'config-write' command overrides configuration
of all servers rather than just a configuration of the daemon
to which this command has been sent.
(Trac #5338, git 252e5e8a75fa42271b0cdb6edad3c152bbf3c515)
1305. [bug] tmark
Corrected logic that was causing kea-dhcp4 to remove DNS entries
when renewing leases with generated FQDN names. Prior to this
the server was incorrectly scheduling DNS removal when configured
to generate the client's FQDN.
(Trac #5369, git 18f57f502f1b9fb5bf7ef5ab995ddda60006fd39)
Kea 1.3.0-beta released on September 29, 2017
1304. [bug,func] fdupont
The DHCPv4 Vendor Specific Information (code 43) option and
private options (codes 224-254) can be redefined at the global
scope or inside a client-class. This allows to support different
definitions following the DHCPv4 Vendor Class Identifier (code 60)
option or when defined as a binary option to accept with problems
option 43 carrying a raw value.
(Trac #5073, git b290b3cbaa926d4e9613f6607c5fcbae2301b266)
1303. [func] tmark
The command handlers in the lease_cmds hook library are now
implemented has hook callouts and registered with the Hooks
manager. Prior to this they were registered as command handlers
with the Command Mgr.
(Trac #5332, git c902bda9f026720f6efbf2e5ad407302aeb5e466)
1302. [func] marcin, tomek
DHCPv6 server supports shared networks. It allows for grouping
multiple subnets and use them interchangeably to allocate
IP addresses and other resources to a client located on the
particular link. This mechanism is useful to extend an
address space for the client belonging to a particular
subnet and/or to segregate clients being on the same link but
belonging to different classes, e.g. cable modem vs router.
(Trac #5307, git 110d0c9e403af28e6810141f978d9bf55c381f14)
1301. [func] fdupont
Added some standard option definitions which are supported
by ISC DHCP but not (yet) by Kea.
(Trac #5227, git 4bef838245f08fca5f2cf037cd3a75278b77f8f9)
1300. [doc] tomek
Documentation for shared networks added.
(Trac #5310, git 41fd3bb7ed2f4cd15db6cbd14713f4474f659c92)
1299. [doc] fdupont, tmark
Added an example stunnel configuration file to demonstrate
using kea-shell through https.
(Trac #5282, git efe044fa90d53398e215d2bf31e00e83353e8774)
1298. [func] marcin, tomek
DHCPv4 server supports shared networks. It allows for grouping
multiple subnets and use them interchangeably to allocate
IP addresses and other resources to a client located on the
particular link. This mechanism is useful to extend an
address space for the client belonging to a particular
subnet and/or to segregate clients being on the same link but
belonging to different classes, e.g. cable modem vs router.
(Trac #5306, git 4f2fca69be32997c718ab2c7f37ac80ed4e41d15)
1297. [func] tmark
Added a hook point, "command-processed", to kea-dhcp4
and kea-dhcp6 servers. This hook point occurs after
a control channel command has been received and
processed.
(Trac #5111, git 043d17b0688d4ab25b12469d27859983cb297d07)
1296. [bug] tmark
Altered the mysql backend logic to disable auto_reconnect and
set session value of wait_timeout to a very large values. This
avoids a segfault in MySQL client library caused by auto-reconnects
occurring when kea server's MySQL connection is idle for longer
than the global MySQL wait_timeout.
(Trac #5354, git 9881ef6d772f27de82c048e198ba0ff9e71b9351)
1295. [bug] tomek
DHCPv4 and DHCPv6 servers are now able to parse shared networks.
A basic shared networks examples added.
(Trac #5357, git 74b824cc80f8be66084308c0bf12c1a71f311915)
1294. [func] marcin
Implemented data structures holding configuration of shared
networks. The new structures are unused until remaining tickets
for shared networks implementation are completed.
(Trac #5305, git 76dd46f7070c141cc89d772d69a897b67bd179a1)
1293. [func] tomek
DHCP4_BUFFER_WAIT, DHCP4_BUFFER_WAIT_INTERRUPTED, DHCP6_BUFFER_WAIT,
and DHCP6_BUFFER_WAIT_INTERRUPTED logging messages are no longer
emitted.
(Trac #5345, git 779040fa399fb2da271569dc315294463e28f852)
1292. [func] tomek
User contexts are now supported for subnets. This adds a new
functionality, but also makes the existing documentation example
correct.
(Trac #5350, git 828ecb6dbdaaedd97d2af79dfa9b7f4845d3a049)
1291. [func] fdupont
The configuration parser now checks for mandatory parameters that
are missing.
(Trac #5124, git af0f3d50a835f64a5f8a47c47ef464b119a49643)
1290. [bug] marcin
Corrected a bug causing illegal memory access while
retrieving server hostname and boot file name fields from
the host reservation database. Many thanks to Juan Settecase
for his assistance in identifying this issue.
(Trac #5340, git 2fdc7efcb862ced3c1054620bf14e75a0db6aed2)
1289. [bug] marcin, tmark
Corrected handling of EAGAIN and EWOULDLBOCK errors in
UnixDomainSocket. This was causing intermittent command
channel write errors in kea-ctrl-agent on some Debian systems.
(Trac #5336, git db251cb66ad77ba28ab44281323ddeb23cf29506)
1288. [func] marcin
Documented subnet_cmds library in the Kea User's Guide. Also moved
several classes from dhcp<4/6> into lib/dhcpsrv to facilitate subnet
command parsing.
(Trac #5315, git d259f330a1690b20eb368f6252f5da2cdb6187de)
1287. [bug] tmark
Logger configuration now correctly uses maxsize and maxver
parameters, allowing log rotation to function properly. Prior to
this these values were not being propagated downward, causing log
rotation to always be disabled. The defaults for maxsize and
maxver are 10Mb and 1 respectively.
(Trac #5324, git 75f148458bdeeed27eb877cc2c3ce3069b152f38)
1286. [func] marcin
Configured subnets are now indexed by subnet identifier and
prefix for faster subnet lookups in the configuration.
(Trac #5314, git 894aeb048b7281f947f87a5d6dc5112fac4a86fb)
1285. [func] tomek
Several new commands implemented in lease_cmds library:
lease4-del, lease6-del, lease4-update, lease6-update,
lease4-wipe and lease6-wipe that allow deleting and updating
leases and also wipe all leases from a specific subnet.
(Trac #5280, #5281, 94ff2448c8cf6e3321f4d1b3666a2e2b736f6c50)
1284. [func] tomek
A new library, lease_cmds, has been implemented. Its intended
purpose is to support commands for lease management. Currently
supported commands are: lease4-add, lease6-add, lease4-get,
lease6-get. Additional commands and documentation are planned.
(Trac #5272, #5279, git 785c2e521b198a03d26bde4a804638bfc19ce91b)
1283. [func] fdupont
An 'always-send' parameter has been added to options
configuration. It allows an option to be always sent, even if
a client didn't request it.
(Trac #5241, git cef2b630c720a442710efc0d1615b7c7bce01e54)
1282. [bug] fdupont
Now all interface service sockets are closed before interface
re-detection. Note if the re-configuration fails they remain
closed.
(Trac #5333, git 8bff2ec336456de51d0d9d3ff011d28a6a61ef66)
1281. [build] tmark
Configure script now correctly recognizes static boost_system
library as well as checks for the presence of static glibc static
libraries when --enable-satic-link is specified.
(Trac #5337, git 42548148cbeaaa285519e121f493d52607f1e8a0)
1280. [build] waltsteverson
Missing header for PD-exclude DHCPv6 option is now installed.
(Github #51, git 36a8e1b8f687a6398af8a10f241e8d19e9de33d8)
1279. [build] waltsteverson
Compilation fixes for Alpine Linux
(Github #50, git 824afa63354e045a5e4f6437246c329d359e04dd)
1278. [doc] jsoref
Many spelling corrections.
(Github #52, git 1dcaef6f8e7901d628c8638fc2f8145ac0279586)
1277. [func]* marcin
Added support to Command Manager to process commands using
callouts implemented within hooks libraries.
(Trac #5330, git 8041d177ed5587101ecb47a09820a7e67e42a066)
1276. [build] tmark
The configure script now configures the build to require the Boost
system library (boost_system) by default. The library must be
installed and you may need to specify "--with-boost-lib-dir=<path>".
Prior to this the default was to attempt to build Boost with headers
only. Building with headers only may still be done, though it is
strongly discouraged, by specifying "--enable-boost-headers-only".
(Trac #5215, git b6f1ee0d1210e35631369fc697c76cc3cf2c4130)
1275. [func] marcin
LibraryHandle object can now be used to register handlers
for the control commands in a hook library.
(Trac #5329, git 966cc24ae5593ebb08d6f02a11dab23463ebad7e)
1274. [func] marcin
It is now possible to manage Control Agent with keactrl.
(Trac #5108, git 53ba9f8197a25abd2c52ee3f5e95bc4e4be0241f)
1273. [doc] marcin
Documented in the User's Guide that the server terminates
when database connection is lost.
(Trac #5320, git 5c8b277e8041b53b27a87b32d162ab41ef8b43d7)
1272. [bug] marcin
Fixed inefficient leases indexing in the memfile lease
manager causing increased CPU utilization during lease
searches.
(Trac #5328, git 23b490414f5575b252c8c42fbe93ad2c57d47953)
1271. [doc] marcin
Documented how to setup secure connection to the Kea
control channel.
(Trac #5304, git a920453bbcf9ffa7200eeddca6323faeff498f16)
1270. [bug] tmark
Added a distribution rule to src/bin/d2/Makefile.am so
d2_parser.yy will now be included in the distribution source
tree. Also added entries for missing headers to asiolink/
Makefile.am.
(Trac #5325, git 199003d7aa9f8d4a7f8daa73f8259e951bc03217)
1269. [func] marcin
Command manager can now handle large responses to control
commands. Prior to this change the size of the response
was limited to 64k. The server now also signals timeout
after 10s if the connection lasts too long.
(Trac #5318, git 8531a65521ea42f01f3bed444b054e92f7bd1a46)
1268. [func] fdupont
Kea now re-detects network interfaces every time configuration is
changed. 're-detect' parameter added to restore old behavior, if
needed.
(Trac #3389, git b2ce84790c33d1580dcfa773d7fcfb65c27addc7)
1267. [bug] fdupont
Unit-tests for libdhcp now ignore ENOPROTOPT when setting
SO_REUSEPORT to improve compatibility with older RedHat versions.
(Trac #5243, git a7b478e1d1f7f0b38055086fe9ac053e4fab2850)
1266. [func] fdupont
It is now possible to define options in DHCPv4 pools.
(Trac #5288, git aa2839caab8d885e5bceca6f506162debd239b3f)
1265. [func] fdupont
Extended classification relay6[nest] syntax to allows counting
relays from the DHCPv6 client side by using negative number,
e.g. relay6[-1] represents the first relay (closest to the
client).
(Trac #5287, git 7d0f7a8372dcf256fea8ac13330f0e3e7ed2e8ef)
1264. [func] marcin
Kea's command manager has been re-implemented to use ASIO.
Simultaneous connections over the control channel are now
possible.
(Trac #5317, git 4139a2f41bb3736615bdfa278746962a16384d0d)
1263. [doc] marcin
Added example configurations of the nginx and Apache2 HTTPS
servers running as reverse proxy for Kea RESTful API.
(Trac #5302, git 48113aba218603afac4d457075458d4988e4082b)
(Trac #5303, git b3113da16eb5c6fa323068f0a57dfa30f42893d2)
1262. [func]* marcin
Renamed "dhcp4-server", "dhcp6-server" and "d2-server" parameters
of the Control Agent configuration to "dhcp4", "dhcp6" and "d2"
respectively.
(Trac #5190, git fc67885022115df76425c6901959cedee63a93b9)
1261. [bug] marcin
Eliminated valgrind errors in libkea-http.
(Trac #5261, git 34addef4a654665c6022f0269d51970c72431ac2)
1260. [bug] fdupont
Corrected logic in prefix delegation that was causing multiple
entries to be written to the lease file when renewing or rebinding
a prefix.
(Trac #5104, git b9ab6ebe7a491c062bc8b0b42afc53f4d6cee011)
1259. [func] marcin
Implemented timeout for the control commands forwarded between
the Control Agent and Kea servers. The enhanced forwarding
mechanism uses asynchronous calls over the unix domain sockets.
It also detects the JSON structure boundaries when receiving it
over the stream sockets.
(Trac #5189, git e48d9399c215406f2dab1601d22d6c932b4af271)
1258. [bug] fdupont
Fixed wrong python package path when kea-shell was configured
without a prefix.
(Trac #5214, git 44908c5fa56bfa7e1113078f43c458687a97388a)
Kea 1.2.0 released on April 28, 2017
1257. [bug] marcin
Improved logging in the hosts manager.
(Trac #5264, git 2fb9fd78e63f5d09810702847ad3e3b3020ea92b)
1256. [bug] tomek
Control Agent now writes proper configuration when using
config-write command.
(Trac #5253, git a1b5da4db6ebfa9635bbe411ec363cdcc4fd1d28)
1255. [bug] marcin
Fixed failing unit tests in libkea-http.
(Trac #5260, git 43394f76efb1634155c04b205dec7361fc21f4f9)
1254. [func] tomek
Various improvements needed for upcoming host commands library:
host data source is now able to delete hosts, hosts can be exported
to JSON format, C++11 code for configure script moved to separate
file, several compilation warnings removed.
(Trac #5208, git 88555d8f23745f3d615448e906796920cc7f44d0)
1253. [func,doc] tomek
Default configuration file has been overhauled significantly. It
now covers many additional options and features. Command channel
is now enabled by default. Thanks to Dan Mahoney for his review.
(Trac #5198, git 280de81cfe957ccab8a28074bdb0a4bc0e45104e)
1252. [bug] tmark
kea-dhcp6 now correctly resets lease state and increments the
assigned statistic when it reissues an expired-reclaimed lease
to the lease's original client, in response to a REQUEST from
said client.
(Trac #5252, git 85bde7adbe6a78238bd5e17fecabfa918755f16c)
1251. [func] tomek
New type of host identifier (flex-id) used in reservations has
by added to MySQL and PostgreSQL schemas.
(Trac #5195, git 37c26cc30b717019fbd6b7349279541edb351382)
1250. [bug] fdupont
Do not unregister timers when running the config-test command.
(Trac #5186, git e891b06940e41b4cfaa324c2ace8fdd761ee6662)
1249. [bug] tmark
The assigned lease statistics were not being probably adjusted
by either kea-dhcp4 or kea-dhcp6 when reclaimed expired leases
were reissued.
(Trac #5247, git 4e5193fb32b14325ccf5824614e58bcceb3e6388)
1248. [bug] marcin
Improved socket connection handling code, corrected numerous
failing and crashing tests for libkea-asiolink, libkea-http
and kea-ctrl-agent on Debian, Fedora and Ubuntu.
(Trac #5217, git 4bcb45f0c88aba3d0f70ca48d9fff6f1d4616bc2)
1247. [bug] marcin
Resolved issues with DHCPv4 host reservations by 'client-id'
when MySQL or PostgreSQL host database backend is in use.
Also, the 'client-id' is used together with other host
identifier types when 'host-reservation-identifiers' parameter
is not specified.
(Trac #5102, git 390d687d0f61635f5562d13860ff6362eee67853)
1246. [func,bug] tomek
Restrictions in filename argument in config-write command have
been removed. It is now possible to use absolute paths.
DHCPv4, DHCPv6, D2 and Agent parsers did not handle flush,
maxsize or maxver parameters in logger configuration correctly.
This is now fixed.
(Trac #5187, git a30ffcc67cfb7370c586d3c85147792e27aab4c7)
1245. [func] fdupont
DHCPv4 domain-search option can now be defined using
comma separated values.
(Trac #5087, git eca0b8c6425bc922587675100f100b1aae54aee2)
1244. [doc] tomek
User's Guide section about Kea shell added.
(Trac #5171, git 3dc4908fe02e86c57ccd5ad2d2f8330655f438be)
1243. [func] tomek
config-reload command implemented. It allows Kea DHCPv4 and DHCPv6
servers to reload its original configuration file. Also,
set-config command was renamed to config-set.
(Trac #5213, git b209c2b577a2f9da71cc918d7a551f8efdc1c4cb)
1242. [func] fdupont
Integer fields in options can now be specified in either
decimal or hexadecimal format.
(Trac #4540, git 4cbf341f4169cf1e1eae0721644797a726d89702)
1241. [func] fdupont
Support for tuple-based options added. DHCPv6 option
bootfile-param (code 60) can now be set in a more convenient
manner.
(Trac #4070, git 30102cacee95b91e6c4666f0c11f06232f19eeb9)
1240. [bug] marcin
Corrected IOFetch unit test failures on Debian.
(Trac #5216, git a7c2946678c43aedfb2e3c37b9730a10067528f3)
1239. [func] marcin
Implemented additional sanity checks when adding host
reservations into the configuration file.
(Trac #5207, git ea42c6f479918235ae4a67a60d08720e2664720c)
Kea 1.2.0-beta released on April 7, 2017
1238. [build] tmark,tomek
Library version numbers bumped for release.
(Trac #5201 git 58c9c5b705d72031c1589c30c542384a9d43e0f3)
1237. [bug] marcin
Fixed hanging Control Agent unit tests.
(Trac #5200, git 65daafd135965f9eb0bd4c3a22085d4bd3c6ffbe)
1236. [build] zeitounator
Improvements in tools/tests_in_valgrind.sh script.
(Github #49, git 272e7babf9ebeab5f78850394d72c9431041e2e9)
1235. [func] MrMarvin
kea-admin now supports -h (and --host) parameter that can specify
MySQL or PostgreSQL database locations other than the default
localhost.
(Github #14, git 4038157a3499ad90956c98a2172c57b173f2b985)
1234. [build] fdupont
Improved installation procedure for kea-shell.
(Trac #5170, git 68a902fb723965ee6f5b7a8272224395917525cc)
1233. [doc] marcin
Documented new component Kea Control Agent in the Administrator's
Manual and the Developer's Guide.
(Trac #5175, git abf7887ad65eb4b221a1fe61ea0c9773b4feaddb)
1232. [func] tomek
host4_identifier and host6_identifier hook points have been added.
Premium: Flexible Identifier (flex-id) hook point has been developed.
It allows users to specify a custom expression that takes any
option, field, characteristic or property of the packet to be
used as identifier and then do reservations based on the evaluated
expression for each incoming packet.
(Trac #5132, git cd497526d5bff7ae55bb41c9264fb33943a0cf62)
1231. [func] marcin
Control agent forwards commands to be handled by other Kea
servers.
(Trac #5078, git 19a50ed1ccafae19ef10d84cba73992cadf49753)
1230. [bug] fdupont
kea-dhcp-ddns now correctly populates the original ID in the TSIG rdata
when doing signed updates. Prior to this the value was set to zero
causing PowerDNS to reject then requests with a bad key error.
(Trac #5071, git cafa3d5c24f0112b0b9384a9c1083fe8a3eeb2bf)
1229. [func] fdupont
A new command: config-test has been implemented in DHCPv4, DHCPv6
and control agent servers. It allows checking whether new
configuration looks correct.
(Trac #5150, git 5f6cf226e848baef8d9af64e16c1dbf617a0a798)
1228. [bug] fdupont
Logging on syslog now uses correctly the given facility. If none
is given the default facility is local0, and with an unrecognized
value user (log4cplus default). The syslog openlog() ident
parameter is the program name.
(Trac #5053, git 532d9f0e459ab1450a83a5015a2dd54745794383)
1227. [func] fdupont, tomek
Additional commands: version-get, build-report have been
implemented for DHCPv4, DHCPv6 and Control Agent
components. Control Agent also now supports shutdown command.
(Trac #102, git 9d2b8326fc032876d74c1768c61c630987c25cc5)
1226. [func] fdupont
Command line option -t support added to libprocess and implemented
for kea-dhcp-ddns and kea-ctrl-agent. It allows configuration sanity
checking. Note that some parameters, such as ip-address, port, and
DNS server addresses for instance for kea-dhcp-ddns are not fully
checked as sockets are not opened or connections are not attempted.
(Trac #5152, git 2231d79ebebd3cdf432cd4a8ac32018d180e27b6)
1225. [func] tomek
Two new commands: config-get (retrieves current configuration)
and config-write (writes current configuration to disk) have been
implemented.
(Trac #5151, git ffb26811736a2ae6f9b5556b9823aa284b7e0aec)
1224. [func] fdupont
toElement(), a crucial functionality for upcoming get-config
and write-config command, has been implemented.
(Trac #5114, git df38c26f957c9ac329718ac9d70ffbcf7b95c4e9)
1223. [func] tomek
Kea-shell, a management client able to connect to REST interface
provided by Control Agent, has been added. Control Agent now
uses bison parser, which provides better sanity checks, improved
comments and file inclusions.
(Trac #5137, git 816dc5ccfa374bd9942a49c7bac475f6d0523caa)
1222. [func] fdupont
Obsolete parameter 'allow-client-update' has been removed
from DHCPv4 and DHCPv6 components.
(Trac #5145, git 01fde297a978e2bd832655ac7276e5aa3a7e8400)
1221. [func] tomek
Control agent is now able to parse the input configuration and
store it in its configuration syntax structure. Upcoming tickets
will take advantage of that information.
(Trac #5134, git 828304f2f408888e4b096418e90e35ba524979d0)
1220. [func] parisioa, fdupont, tomek
DHCPv4 and DHCPv6 parsers have updated to accept database port
parameter. The parameter for Cassandra is now called
"contact-points" (was "contact_points" previously).
(Trac #5061, git d12b6f4a6d80d6bc854f2a8a086e412dc37867bc)
1219. [func] marcin
Control Agent uses libkea-http to process commands over
the RESTful interface.
(Trac #5107, git 88ce715926a46b6b3832630116fc7782adc46c7b)
1218. [func] tmark, tomek
Configuration parsing for D2 has been migrated to bison/flex
and the SimpleParser framework. This includes changes to
libprocess which render the CPL agnostic to the underlying
parsing mechanisms.
(Trac #5110, git feb2cedc0936364a923ab78542a21114533dd0f5)
1217. [func] marcin
Implemented libkea-http library.
(Trac #5077, git cd72284b5b221e620770883db7e166c4d3ba7eb6)
(Trac #5088, git 715d18f961801ffbd798a65b19459178c3a53857)
(Trac #5099, git 7e8df7993f295431e2cb6a13858f746649c4e18d)
1216. [func] fdupont, tomek
Command line option -t implemented for DHCPv4 and DHCPv6. It
allows configuration sanity checking. Note that not all parameters
are completely checked. In particular, service and control channel
sockets are not opened, and hook libraries are not loaded.
(Trac #3770, git 1d12582e270935ee7b72548d9c66753f4eea4ca4)
1215. [doc] tomek
Developer's Guide updated to cover flex/bison parser.
(Trac #5112, git 44139d821c1f4e43dbff22d49101a0854e4f9f5b)
1214. [func] tomek
Bison parser implemented for Control-agent. The code is able
to syntactically parse input configuration, but the output
is not used yet.
(Trac #5076, git d99048aa5b90efa7812a75cdae98a0913470f5a6)
1213. [bug] fdupont
Option string values containing comma can now be specified
correctly by preceding comma with double backslashes (e.g.
"foo\\,bar").
(Trac #5105, git fa79ac2396aa94d7bac91bd12d3593ebaaa9386d)
1212. [doc] andreipavelQ
Many spelling corrections.
(Github #47, git a6a7ca1ced8c63c1e11ef4c572f09272340afdd7)
1211. [func] andreipavelQ
Updated PostgreSQL version reporting to be in line with
MySQL and Cassandra.
(Github #42, git 7ef4a190facadd66775b4a44c696d1c4215616cd)
1210. [doc] andreipavelQ
Doxygen version updated to 1.8.11.
(Github #45, git ce72998382b62269823fa0dcbfa41dfa9c72b69e)
1209. [func] tomek
Relay options are now printed in DHCPv6 when sufficiently detailed
debug logging is requested.
(Trac #5131, git 5bf58b21fcf07f2e2e97275efa1f76cde913b30a)
1208. [func] tomek
Global DHCPv4 and DHCPv6 parsers have been migrated to the
SimpleParser framework. Several parameters (renew-timer,
rebind-timer, preferred-lifetime, valid-lifetime, match-client-id,
next-server, decline-probation-period, dhcp4o6-port,
echo-client-id) now have explicit default values.
(Trac #5019, git f3538dd031e6f29abcd516f425d72c8f929abbb0)
1207. [func] fdupont
Client classes parser migrated to SimpleParser. The 'name'
parameter in 'client-classes' definitions is now mandatory.
(Trac #5098, git e93906e48a6e2b0ff78c5e37dca642646fe47d43)
1206. [func] tomek
'hooks-libraries' parser migrated to SimpleParser. The code will
now refuse a configuration if a hook library fails to load.
(Trac #5031, #5041, git 1bbaf4cbcf6fda59bacdf526a6c762315fdd88a1)
1205. [func] tomek
Parsers for interfaces configuration converted to SimpleParser.
Removed obsolete 'version' parameter in Dhcp6.
(Trac #5020, #5038, git 3d8e48c640e302670c04907468d11faafbe9fe7b)
1204. [func] marcin
Added 'control_command_receive' hook point to Kea Command
Manager.
(Trac #5100, git d0c7cb29a7df3588c540afb4ca56de55f26142e0)
1203. [func] marcin
Implemented TCPAcceptor class in libkea-asiolink. This class
provides means to listen and asynchronously accept new TCP
connections.
(Trac #5094, git 920ba90696ba9d8579a7db5e1efcf955d6654a96)
1202. [func] tomek
Parsers for mac-sources, control-socket, and relay-info converted
to SimpleParser. It is no longer accepted to specify empty
mac-sources. Either specify actual values in mac-sources or
don't specify mac-sources at all.
(Trac #5032, git f1c9dee0936b48be28f890ffd428fbdeb87c12ea)
1201. [func] tmark
kea-dhcp4 and kea-dhcp6 now support the "set-config" command.
The command causes the server to replace its current configuration
with the configuration supplied as the command's argument.
(Trac #5046, git 4afbdcf89c9f83d944f774d05bd401d3f2768d10)
1200. [func] tmark
kea-dhcp4 and kea-dhcp6 now support the Command Channel "libreload"
command. The command causes the server to unload and then load all
currently loaded hook libraries.
(Trac #3238, git d4d8665494e1847b34b66f8ef542851ea6f0213c)
1199. [func] tomek, fdupont
Dhcp4 parser migrated to bison. This yields a number of user
visible changes:
- better comment handling (bash, C, C++ style comments)
- file includes now supported
- better syntax checking
- added advanced.json config example
- removed obsolete 'version' parameter
(Trac #5017, git 1cf853c595a100c86f9b2b3353f1b5964d902147)
1198. [func] marcin
Created kea-ctrl-agent. This application currently doesn't
do anything. Future tickets will add REST API to allow for
managing Kea services.
(Trac #5075, git 1ec7586da5ae1474b52d5a395fb80ee37d6d568e)
1197. [doc] tomek
Configuration examples now set lfc-interval to a default
value of one hour.
(Trac #5072, git cf4362196fa2b7892643d1e40b974bb450a3de7e)
1196. [func] tomek, fdupont
Dhcp6 parser migrated to bison. This yields a number of user
visible changes:
- better comment handling (bash, C, C++ style comments)
- file includes now supported
- better syntax checking
(Trac #5036, git 4c5902da95a5228275cdb151b357864cfa9c31f5)
1195. [build] fdupont
Altered to compile in C++ 2011 standard mode. Also replace (most)
instances of the deprecated std::auto_ptr with std::unique_ptr.
(Trac #5066, git a060d4a983860bf3056d50d9bf7ee4355c8372f2)
1194. [build] marcin
Moved StateModel class from D2 to libkea-util.
(Trac #3175, git 270ec379aec2894104a299cdd1080e24007e25fb)
1193. [doc] stephen
Update Hook Developers documentation to make it clearer where
the Kea include files and libraries are located.
(Trac #5069, git 14a78caaf3af9fe9a0ffe2c8af784eab78e813e0)
1192. [build] marcin
Created libkea-process library and moved the Controllable
Process Layer (CPL) from D2 to this new library.
(Trac #5074, git 4563925f7966e9da2132eb427e742cc3d3feee5d)
1191. [build] tomek
Optional support for premium package added.
(Trac #5027, git 5ff51f28a1f05d941bb117986922a6f410f23c6c)
1190. [func] tomek
User context implemented: an arbitrary user information can
now be defined for address and prefix pools.
(Trac #5023, git 4f81789e19b72c933bcf86e402b417c63bd7bd3f)
1189. [func] fdupont
Owing to API changes, crypto code now requires OpenSSL 1.0.1 or
later.
(Trac #3908, git 4c14fdfd4187a4c8f7b775432082b76782e47663)
1188. [doc] vlegout
Fixed several spelling mistakes.
(Github #32, git d51c005519c4add6fd0c37bcd68b0fbe94941b2d)
1187. [bug] marcin
DHCPv4 server allows for allocating multiple leases for the
same hardware address if a different client identifier is
used for each lease. This facilitates the PXE boot use cases
where a booted machine may request a lease multiple times.
(Trac #5029, git 03defed4d8bb9a997d31dbfcf30ae3f866bd3353)
1186. [func] marcin
Support for DHCPv6 options defined in RFC6603 and RFC7598. Thanks
to Andrei Pavel and Cristian Secareanu of Qualitance for submitting
initial implementation.
(Trac #Github24, git 59b62eb3ddd9db62c04bd47cd8fbdc1af62fbc1b)
1185. [build] marcin
Install Kea headers to be used for building external libraries.
Before this change some required headers were not installed.
(Trac #5055, git a46087b7b7face4a1318658bbdcbf7602c1bb729)
1184. [bug] eest
Fixes in the occasionally failing LFC unit test. This
fix was provided by Patrik Lundin.
(Github #31, git 69a5722bf3b41bf3b2bc0c2bcac966c23c08f62d)
1183. [bug] tmark
kea-dhcp4 now correctly loads declined leases from CSV
lease files. Prior to this, declined leases were being
incorrectly and silently discarded. In addition, both
kea-dhcp4 and kea-dhcp6 will now emit an error log for
each invalid row encountered when loading leases from
CSV files.
(Trac #5058, git 29b088079bed3c5059fdf8a43a4e79cd7f9a4207)
1182. [func] marcin
DHCP servers detect overlapping pool ranges during
configuration.
(Trac #2280, git c8f931e0189c9630f5fba5d2a5553bed4abf36f7)
1181. [func] marcin
Extended DHCPv6 server to allow for specifying DHCP options
on address and prefix pool levels.
(Trac #5022, git e3b2785c79aedbb0c8af7468d61f6d61dafd2282)
Kea 1.1.0 released on September 30, 2016
1180. [doc] stephen
Editing pass through the Kea guide.
(Trac #4484, git 63456fab1b978bd515198b9b9e604f293efd8217)
(Trac #5008, git f09cd12d5b1abc60ccef98df2abc6c41b482a404)
1179. [doc] tomek
Manual pages updated.
(Trac #3515, git 4cf0395e11e724786c4d2a1d48805f1c770f4c99)
1178. [doc] tomek
user_chk hook library is now documented in the User's Guide.
(Trac #3209, git 4a8534d968a21cff3851619fb22d0032a1202c87)
1177. [build] marcin
Updated Kea libraries version numbers for 1.1-final release.
(Trac #5012, git 6e9a224b46def357141a31386fcc912b29dfe16d)
1176. [doc] tomek
Developer's Guide has been updated.
(trac #4299, git ed38076c183394feaef60e7123d0c488c9f6447d)
1175. [bug] marcin
Corrected a bug whereby a client, for which there was no
host reservation specified, did not obtain an IPv6 lease
from a server when PostgreSQL or MySQL host database backend
was in use. In addition, PostgreSQL host database backend
allows for specifying NULL values in certain columns within
host reservation tables.
(Trac #5009, git d3109bb27786867fdc99954ba55367f0ad129e7a)
1174. [bug] tmark
Modified kea-dhcp6 to avoid requesting DNS updates when
existing leases are renewed without changes to the FQDN.
(Trac #5007, git 05ea3a5eb75c06cf9814c63a1a54261bf58a954b)
1173. [bug] xxwolfsrainxx, marcin
MySQL database creation scripts use single quotes for
strings to avoid issues with creation of the database
when MySQL server operates in ANSI_QUOTES mode.
(Github #30, git e40a54a8e24b5f6427edd4afcd5cdc15012b8866)
1172. [bug] andir
Kea build fixes for gcc 6, which uses C++14 by default.
(Github #29, git ad68c3942839618c26d7ff017fbac7df139b5d01)
1171. [doc] marcin
Updated supported operating systems and the prerequisites for
installing and building Kea in the Kea Administrator
Reference Manual.
(Trac #4502, git af847837590ce5b37a300ebe15652fb172585b38)
1170. [doc] marcin
Updated Kea Administrator's Reference Manual sections
regarding host reservations. Added configuration examples
for using host reservations with MySQL and PostgreSQL
databases.
(Trac #3684, git 71d21eac51d20ff5d368b17c437abc45c955a04c)
1169. [doc] marcin
Updated Kea Administrator Reference Manual to explain the
implications of using "kea_verbose" parameter in the keactrl
configuration.
(Trac #3950, git c5f4920fd1994882e1fae398ae29b455401296bd)
1168. [doc] marcin
Corrected location of the Kea repository in the Kea Administrator
Reference Manual.
(Trac #4258, git f081000b892287316e54848ca1f62ca3512d4263)
1167. [func] marcin
DHCP servers utilize client classes defined in host reservations.
(Trac #4765, git 242fbc47b31da404e57be458ac065f811084cca9)
1166. [bug] marcin
Corrected error message produced by the host database access
parser when the database type was not specified.
(Trac #4261, git 028dd49f4fa4843e68e23d11c237e9f4683470ba)
1165. [func] marcin
Hostname option is returned to the client when requested using
Parameter Request List option. Previously this option was only
returned when a client has sent Hostname option to the server.
(Trac #5005, git 96ab8ecaa3d5b2d6cd88d0b16406f433d2cdf841)
1164. [bug] marcin
Corrected an issue whereby DHCPv4 server did not correctly set a
server identifier in response message sent to a client on BSD
systems.
(Trac #5003, git 110c67325072a781d55cf0634f8f5f3385611f97)
1163. [bug] marcin
Corrected swapped DHCPSRV_MEMFILE_GET_EXPIRED{4,6} messages
in the Memfile lease manager.
(Trac #4717, git ce5919d97879c3fda0858894b24418af135ef8f3)
1162. [func] pallotron
Added two enhancements to perfdhcp: optionally using MAC
addresses from a file in new DHCP transactions, and
generation of DHCPv6 relayed messages.
(Github #22, git c5b4a5981cf642ebb9aecb8acc07b87abdccbd91)
1161. [bug] fdupont
Fixed interface manager receive methods which raise a bug on
Fedora 24 / gcc 6.1?
(Trac #4551, git 8d590e434062535e850a60a7892481df845ff390)
Kea 1.1.0-beta released on August 31, 2016
1160. [build] marcin
Bumped up version numbers of Kea libraries and KEA_HOOKS_VERSION
for the Kea 1.1.0 beta release.
(Trac #4632, git 93941523e039a1cc4bb34182a290f9d7b805df34)
1159. [func] marcin
MySQL database schema updated to version 5.0.
(Trac #4562, git 0e40b35e280f0845686bcfdb2efb577c7878ede6)
1158. [func] tomek
It is now possible to specify fixed fields (next-server,
server-hostname and boot-file-name parameters) for client classes.
(Trac #4626, git 89cf54524d8b55cc982ab2146915c0a90fc6efe2)
1157. [func] marcin
Added support for static reservations for fixed fields in
DHCPv4 messages: siaddr, sname and file.
(Trac #4552, git 9b79fe005dd77328ea7c596fc6886f8fb838d1cf)
1156. [bug] tmark
Lease statistics are now recalculated during server startup and
after each successful reconfiguration for Memfile, MySQL, and PostgreSQL
backends. This addresses issues caused by accumulated values being lost
across restarts and reconfigurations making rendering values incorrect.
(Trac #4294 git 0abdcf15f85861ffcb67d50fa4ce3965d25e4a9f)
1155. [func] marcin
Kea can be configured to operate using read-only host database.
This is only supported for MySQL and PostgreSQL databases.
(Trac #4489 git 0d8dc7affb67ad8066b44c6f81532b79a641d50b)
1154. [bug] stephen
Changes to logging to avoid premature destruction of some
objects during program exit. On some systems this caused
one of the unit test programs to crash when it terminated.
(Trac #4494, git 023c2fc3688bcdbccb4b286bea873c8f9c06cd5f)
1153. [func] tomek
Integers can now be used in client classification.
(Trac #4483, git e90cf0ee4007521b86177be6d5fbb970c02c1075)
1152. [doc] marcin
Use of PostgreSQL as a storage for host reservations is now
documented in the Kea Administrator Reference Manual.
(Trac #4282, git f2879919772c10b1ae8c45d0e761ef199cf84061)
1151. [func] tmark
Support for assigning client classes to host reservations has
been added to both the PostgreSQL and MySQL backends.
(Trac #4277, #4213 git 6990ab9d542e984c59ce5a11ff926c3c732a75fc)
1150. [bug] tomek
Extended gcc bug workaround to work on all versions of gcc
from 5.2 up to, but not including 6.0. See ChangeLog entry
1103 or Trac ticket #4243 for details.
(Trac #4553, git 80243d9d246b982d86dd7e0d00597383cae01706)
1149. [bug] marcin
Corrected a bug whereby clients were not assigned reserved
addresses from an external database, as a result of unexpected
closure of a connection to that database.
(Trac #4544, git 7f682112dd5ab9fcd6bfa4e10505c246775f353d)
1148. [func] tomek
The vendor options (124, 125 in DHCPv4 and 16, 17 in DHCPv6) are
now accessible from client classification.
(Trac #4270, #4271, git ef676368f9036625d73f7f34e3fe9b5eeeaee7f1)
1148. [func] fdupont
Added the pkt classification token to extract incoming packet
meta-data (receiving interface name, source and destination
address, length).
(Trac #4272, git 9a3bdfa43cf65ef56a8d63580dd5d7414fc41373)
1147. [func] stephen
-Werror is no longer the default for compilation. Promotion of all
compilation warnings to errors now requires the --with-werror switch
to be specified when running configure.
(Trac #4533, git 874e3a3f5cb10313856284646fcee7cf86e4fcce)
1146. [func] sar
Add the forensic hook library documentation to the admin guide.
(Trac #4511, git 0bb39840a3cbdaf815819f846120c90d9ca038ff)
1145. [func] tmark
The Postgresql backend now supports host reservations for both
DHCPv4 and DHCPv6, with options and IPv6 reservations.
(Trac #4277 git ac1eaa1026987c2d86d57b4aa0dc9a4d093787f0)
1144. [bug] mihu
Response to DHCPINFORM is generally sent to port 68, rather
than port 67. Thanks to Michal Humpula for providing a patch.
(Github #23, git 4216a4bedf8a884df087c68d48c88ee9ffa444dc)
1143. [doc] fdupont
User's Guide has been updated with DHCPv4-over-DHCPv6 support
details.
(Trac #4273, git fe8cb64adeabe00d84ee390b579a8328717ae521)
1142. [doc] sar
Uncomment the example columns in some rows in the table
listing the classification examples.
(None, git dee442a64f57c8d9dd87636f9e39084ed1b11e03)
1141. [func] marcin
Pkt4, Pkt6 and Pkt4o6 objects passed to hooks libraries
return copies of DHCP options to avoid unintended modification
of the options stored in the server configuration.
(Trac #4497, git e50d2ebe998ec3faad8ade22b6971d6584c81044)
1140. [func] marcin
DHCPv6 server supports assigning multiple reserved addresses
and/or prefixes to a single client.
(Trac #4321, git 0bfb2a9093174e4424051c01beeee7637ac95be0)
1139. [doc] tomek
New features of host reservations have been documented: ability
to reserve standard and vendor options in host reservations. Separate
sections for each backend added.
(Trac #4518, git 99a40fead28f4324dfb55f1962a8bf3e85ab70e2)
1138. [build] fdupont
Compilation problem on FreeBSD caused by unused parameter in
certain version of boost headers is now resolved. Also, INSTALL
file has been updated and now lists dependencies.
(Trac #4283, git 7dbd95651c308527f2e42c533fdc0a12aeec5308)
1137. [doc] fdupont
Developer's Guide has been updated with DHCPv4-over-DHCPv6 support
details.
(Trac #4274, git b3eda594e055f03a9a601bacf0c72c3db0ef8e3c)
1136. [doc] tomek
Included full text of MPL 2.0 and Apache licenses.
(Trac #4529, git baefb4b3e2078a0a0f794b42ef52d6b7d53c9dab)
1135. [func] fdupont
Integrated the DHCPv4 service part of DHCPv4-over-DHCPv6 support.
(Trac #4110, git 7d36aebe14db10b0cbac8e6c0e82160b9d5d7ecd)
1134. [func] fdupont
Integrated the DHCPv6 service part of DHCPv4-over-DHCPv6 support.
(Trac #4109, git 8d1f330d9b0a44039a8b9e0b479f8da1743b9504)
1133. [func] razvan
The initial support for CQL (Cassandra) backend added. It is able
to store leases information.
(Github #21, git d3a412d4b090bfd84ec5bc5d7817b1dfcc92602e)
1132. [func] tmark
The Postgresql schema has been updated to support host
reservations and its version number has been bumped to 3.0.
This schema is content equivalent to the MySQL schema version 4.2.
(Trac #4275, git 6f8e646bee9de22c921ed26409f3d1856ebce9e6)
1131. [func] fdupont
Update the DHCPv4-over-DHCPv6 inter-process communication code.
(Trac #4106, git 1ce1cba00af5d81822d5bbe26ddd28b718f51d54)
1130. [func] marcin
DHCPv6 server assigns DHCP options specified for hosts. Host
specific options take precedence over class specific options,
subnet specific options and global options.
(Trac #3573, git c29551e43010a345cfa2efda46389f4433d84650)
1129. [bug] marcin
libdhcp++: Removed unnecessary copies of the container holding
option definitions to improve performance of both DHCPv4 and
DHCPv6 server.
(Trac #4498, git 14716853a92e08c4cc5be75ae85c5e84d6356a1e)
1128. [func] tomek
Subnet selection in DHCPv4 will now work, even if the addresses
configured on interface are not in range of the subnet definition
from the configuration file.
(Trac #4308, git 7c74ecdbb64c69d341d623422216b0a54e6ff519)
1127. [func] marcin
DHCPv4 server assigns DHCP options specified for hosts. Host
specific options take precedence over class specific options,
subnet specific options and global options.
(Trac #3572, git 49f67aaf36dab38b4fcbf59dcad97e4309903b2f)
1126. [func] marcin
Host reservations can be assigned using DHCPv4 client identifier.
(Trac #4317, git 5f14fca1e029b04ad21a417936c2b8889acef10d)
1125. [func] fdupont
Inter-process communication for exchanging packets between
DHCPv4 and DHCPv6 components of DHCPv4-over-DHCPv6 has been
implemented.
(Trac #4106, git 3223bb8280bfd99c225e725de660ae764abe3c87)
1124. [bug] sar
Update the classification document to match the output from
the debug statements.
(Trac NA, git 8b3ea8e26c3e6cd3c46073b635212fd29f031774)
1123. [func] marcin
Extended MySQL host data source to retrieve DHCPv4 and DHCPv6
options associated with hosts from a MySQL database.
(Trac #4281, git b8a306a27d1cae03f6bc5223c30806f5cd1b64f4)
1122. [func] sar
Add debug logging to the classification tokens. This uses
the loggers "kea-dhcp4.eval" and "kea-dhcp6.eval" to capture
details of the classification expression evaluations.
(Trac #4480, git cf14d0d21c69879f21733457a97a6ac0bdb1dae2)
1121. [func] stephen
Make the database connection timeout a configurable parameter with
a default value of five seconds.
(Trac #3164, git 3332ad17523c6fcc1e735e4297169ebb2de95118)
1120. [bug] marcin
Performance improvement in libdhcp++: improved efficiency of the
DHCPv4 Message Type option creation.
(Trac #4495, git 41c43a2a9e34931fc3ebf58c459f10ad08575d19)
1119. [bug] marcin
Performance improvement in hosts reservation: removed
inefficient conversion of the host identifier to text
when logging.
(Trac #4499, git 48c20790480d5ed7bfde0ef7b052dd4a9745607d)
1118. [func] tmark
The "query4" argument, containing the client packet received, has been
added to the DHCPv4 hook points: lease4_select and lease4_renew. The
"query6" argument, containing the client packet received, has been
added to the DHCPv6 hook points: lease6_select and pkt6_send.
(Trac #4481, git c0af94c47bda85eb1caa3a78a46280b63990672a)
1117. [bug] stephen
Adjusted variable type in a MySQL-related file to overcome a
type mismatch problem reported by one particular compiler.
(Trac #4485, git 4c6fb189b5d12ffdf4ab171c9154366e70e6082c)
1116. [func] tomek
DHCPv4 subnet selection can now be selected based on IPv6
information. This is part of ongoing effort to support RFC7341:
DHCPv4-over-DHCPv6.
(Trac #4112, git 3352685981ec8ca9a90f7405ff56cd31af6fb0d9)
1115. [bug] tmark
An explicit call to unload the hook libraries prior to server
exit was added to both kea-dhcp6 and kea-dhcp4. This corrects
an issue where logging components were being destroyed prior
to hook libraries being unloaded.
(Trac #4492, git 2a4792b3551cce2fb9147f33f032ae7e71791d21)
1114. [bug] marcin
perfdhcp: Improved algorithm for dropping timed out transactions.
This prevents growing memory consumption due to storing timed
out transactions when the DHCP server drops many messages.
(Trac #4493, git 9757a93110afb82c5379643f2f48e223d497efae)
1113. [func] tomek
It is now possible to specify parameters for hook libraries.
(Trac #4297, git f45d0b5d297f6ad522eb8b7e6f6a0de1064b8569)
1112. [func] marcin
"host-reservation-identifiers" configuration parameter has been
implemented. It allows for specifying an ordered list of
host identifiers that DHCPv4 and DHCPv6 servers use to
retrieve static host reservations for a client.
(Trac #4303, git 942808400e7116d95acfd53b0dc1ecad1c45c598)
1111. [func] tmark
Schema scripts have been relocated from src/bin/admin/scripts to
src/share/database/scripts and are now shared by both kea-admin
and unit testing.
(Trac #4239, git 131fcf52f2a65cedb53975f99114296366fb0199)
1110. [func] fdupont
Added support for extracting constant length fields from a DHCPv4
packet.
(Trac #4268a, git 5d1397efc05802b72e86785528870b7154307ff0)
1109. [func] sar
Added support for accessing DHCPv6 packet fields message type
and transaction id in a classification expression.
(Trac #4269, git 48be5f5ceaba6b0d0a2b31465e8a5904524e894c)
1108. [bug] pallotron
perfdhcp uses the same transaction id throughout the DORA
exchange to adhere with RFC 2131.
(Github #19, git d260a70d6aa0baecd68131bc35f58f097aa77bcc)
1107. [func] tmark
The DDNS parameter, replace-client-name, has been changed from a boolean
to list of modes, which provides greater flexibility in when the Kea
servers replace or supply DNS names for clients. This is supported both
kea-dhcp4 and kea-dhcp6.
(Trac #4259, git 45e56d7aa0d4a6224a1a28941f6cb11575391222)
1106. [func] marcin
"circuit-id" can be specified as host identifier in host
host reservations. However, the server ignores the reservations
by "circuit-id" at this point.
(Trac #4301, git cf56fc2a2e0e821a17dd95de49a43755745682fb)
1105. [func] sar
Added access to the peer address, link address and option
information added by relays in a DHCPv6 message.
(Trac #4265, git bb00d9d205ee047961ba70417d7ce02c37d80ce7)
1104. [bug] stephen
Made DHCPSRV_MEMFILE_LFC_UNREGISTER_TIMER_FAILED a debug message as the
condition leading to it (trying to unregister a timer that is not
registered) does not have an adverse effect on the operation of Kea.
(Trac #4293, git 06204c5d347d0df359af69974c155d0fa9725b44)
1103. [bug] tmark
Wrapped asio/asio.hpp with logic to suppress optimization when building
under GCC 5.2.0 through 5.3.1 and BOOST_ERROR_CODE_HEADER only is defined.
This avoids an issue in the asio socket layer that was incorrectly
reporting socket read errors causing unit tests to fail and kea-dhcp-ddns
to loop logger calls in the error handler (aka double errors).
(Trac #4243, git 082f846f37cb32964c876b2bff5fcac82d1eaaf0)
1102. [func] marcin
Updated Host Manager API to allow for retrieving host reservations
by any type of host identifier. Previously it was only possible
to retrieve host reservations by hardware address or DUID.
(Trac #4302, git 3979656c918164e3c39e0e8fb78b2862a2b5e95a)
1101. [func] kalmus, marcin
Implemented IPv6 address/prefix reservations in MySQL.
(Trac #4212, git 79481043935789fc6898d4743bede1606f82eb75)
1100. [func] fdupont
Reorganized the DHCPv4 and DHCPv6 services into run() (service
loop), run_one() (receive, call next routine and send) and
processPacket() (internal core processing of an incoming packet).
(Trac #4108,#4266,#4267, git ba24bd770d1a1791f8fdc3df7f2e41f9f0c851ec)
1099. [func] tmark
Both kea-dhcp4 and kea-dhcp6, now log the primary lease events (e.g.
grants, renewals, releases, declines) at the INFO log level to the
lease4_logger and lease6_logger respectively. Prior to this these
events were logged at the DEBUG log level.
(Trac #4316, git 9beca27e3d76d0ccec925125f23074227db08869)
1098. [bug] fdupont
Fixed some minor Coverity-detected issues.
(Trac #4326, git ad1f442ee4382b354dc8be84ba77785e565aa86b)
1097. [bug] marcin
libdhcpsrv: Fixed issues with lease indexing in Memfile
database backend.
(Trac #4339, git a065144663ac716b1fa1c8c224a88aa176da9630)
1096. [bug] fdupont
Fixed Coverity-detected overflows in pkt4::setFile() and setName().
(Trac #4306, git 0b7388891eaab39fe727b076468d672551126796)
1095. [func] marcin
DHCP option values can be specified within host reservations
in the configuration file.
(Trac #4319, git 069dd7c248afcfcb7e4d958f20faa32e946e74ce)
1094. [bug] fdupont
Fixed Coverity-detected exception-handling issues.
(Trac #4307, git 3e1050749d9684144e1bd17552af7e4abf3c0d17)
1093. [func] fdupont
Added support for IP address (IPv4 and IPv6) literals in
classification expressions.
(Trac #4232, git b98cc019b172a4903a2121e910f3cee4eaca2d51)
1092. [func] fdupont
Added relay4[X].exists method in classifications that checks
whether a sub-option is present in theDHCPv4 RAI (Relay Agent
Information, 82) option.
(Trac #4313, git 87397fd75215b69ad79708aaa1d7505aca299fb5)
1091. [bug] fdupont
Protected DHCP server main() routines against errors raised from
logger calls in the error handler (aka double errors).
(Trac #4310, git 6813e1a7520335f6920ff8de5e52ecdb24712910)
1090. [bug] fdupont
Empty option specifications no longer require setting the
csv-format parameter.
(Trac #4291, git 398458f3ad4680fd5f3c032eb6c99d50c2981368)
1089. [func] marcin
The Host class has been extended to store DHCP options to
be assigned to a client.
(Trac #3571, git 9d434f28cc4683eccbcca1ba0d1e45bceb5230d2)
1088. [bug] sar
Always copy the DHCPv4 flags field from a client's request to the
the server's response.
(Trac #4292, git 8b7182abdc7ff47eb9b68451e7507b7e4b9872e0)
1087. [bug] fdupont
Removed obsolete requirement of python3 by --enable-generate-docs
configuration option.
(Trac #4315, git 2c236316d5fbac9906cf48a6e4df1649e7545e67)
1086. [bug] marcin
When lease-database configuration parameter is not
specified the default lease database backend (memfile)
is used.
(Trac #3696, git 0be5e6eb32680a742ddcf427b8181f55c0c98115)
1085. [func] fdupont
The following DHCPv4 options are now supported:
nisplus-domain-name (64),
nisplus-servers (65),
mobile-ip-home-agent (68),
smtp-server (69),
pop-server (70),
nntp-server (71),
www-server (72),
finger-server (73),
irc-server (74),
streettalk-server (75)
streettalk-directory-assistance-server (76)
(Trac #4286, git 5ed03ed5ea48334bbd16a9a8e1676f3b4cc730a0)
1084. [bug] jpopelka
Added missing slashed in path_replacer.sh.
(Github #10, git 8986813825623b19fb220534434d0c13785fc14c)
1083. [func] fdupont
Added a concat function in classification which concatenates two
strings.
(Trac #4233, git eec10b436b928bd5eb3139c2f98ec9a6a818f30e)
1082. [func] fdupont
Added Not, And and Or logical operators, parentheses around
logical expressions and option[code].exist logical predicate
(to check the presence of an empty option).
(Trac #4231, git 8e01dbe2fe2d8c97f89c20f5bb1d03748a2432e0)
1081. [func] tomek
Client classification in DHCPv4 has been enhanced. It is now
possible to access relay sub-options using the expression
relay[123].hex.
(Trac #4264, git c13791e916ceae9a73ca44005581e0e39385a572)
1080. [func] marcin
perfdhcp now accepts -f option for DHCPv4 server testing, which
enables lease renewals at the specified rate.
(Trac #4254, git 8c5630b9ce6d3fba224f0643a7c69e4f7aaefca7)
Kea 1.0.0 released on December 29, 2015
1079. [bug] jpopelka
Fixed compilation issue in MySQL host data source: the
dhcp_identifier_length is now unsigned long. This addresses
a compilation problem on Fedora.
(Github #17, git 8548d1b589df98cc956b4d80d2cb8819ef576717)
1078. [bug] fdupont
Removed warnings emitted during generation of Doxygen documentation.
(Trac #4234, git b67910a3893bc79eb77a48bae6c31214a317bd40)
1077. [bug] marcin
Addressed regression in distcheck after merge of #4224.
Before the changes one of the lease files produced by
'kea-lfc' was not removed after tests running lease file
cleanup. As a result, the distcheck failed discovering
this file being left after distclean.
(Trac #4249, git 04aa9b95bf8c4dd8b555dd78cc8cd57126473800)
1076. [bug] tmark
This change bumps the MySQL schema version from 4.0 to 4.1 and includes
the following changes: added explicit use of InnoDB engine to all MySQL
table create statements, MySQL lease dump output is now sorted by lease
address in ascending order, and the MySQL lease_hwaddr_source table now
contains an entry for HWADDR_SOURCE_UNKNOWN (i.e. source = 0). Our thanks
to Sebastien Couture at Ubity Inc. for reporting the InnoDB engine issue
and submitting a fix for it.
(Github #16, Trac #4237,#4238, git f0fb9f35a394785215573a591c2bcc68ab481436)
1075. [doc] marcin
Changed Kea license from ISC to Mozilla Public License,
v. 2.0.
(Trac #4236, git a0574cdab4deb31e3244fc4e237753a1ad361d96)
1074. [bug] marcin
PID files created by Kea processes are used in shell based
tests to determine if the given process is running. This
solves the problem whereby some unrelated processes could
be reported as running Kea processes in those tests, causing
the tests to fail.
(Trac #4224, git 94edccc50cb374ec4db35f653b869c9f06d356ea)
1073. [doc] tomek
Developer's Guide updated with client classification text
and several clean-ups.
(Trac #4102, git ac33ebf7428ba5935d3302d000bed317716fabfe)
1072. [bug] tmark
The lease6 hardware address source value is now being properly populated.
Prior to this the value stored with each IPv6 lease was always zero.
(Trac #4247, git 27886dadcf9051dc622ee6fde586c27f3d431f8b)
1071. [func] tmark
Assigned unique log message IDs to log messages issued from
MySQL hosts storage operations, eliminating reuse of
lease database message IDs.
(Trac #4216, git f0e37cd6d45537971a730c68187011dce41217cc)
1070. [doc] sar
Correct v6 classification examples to use client-id (1) instead
of server-id (2).
(Trac #4222, git 69dd98d03861d9de72c2ef75c17c8154b0c5088b)
Kea 1.0.0-beta2 released on December 22, 2015
1069. [bug] tomek
Improved handling of incoming packets with invalid client-id
and DUID.
(Trac #4206, git 2c94f80e30abe53ae5b677762fc69e888c92e03f)
1068. [func] marcin
Renamed log message compiler binary from 'message' to
'kea-msg-compiler'.
(Trac #4228, git bbeb5c776c39b9f4132f7f614720db75590ccef9)
Kea 1.0.0-beta released on December 8, 2015
1067. [doc] sar
Remove description of option[xx].text operator from classification
until its use becomes clearer.
(Trac #4218, git 22fe2bf889984078cd86c2a230a038632d21432c)
1066. [func] tomek
Configuration parameters for setting up external hosts storage
are now implemented. This feature is considered experimental
for DHCPv4 and currently not really usable for DHCPv6.
(Trac #3569, git 8896c9c3f77a7836d67e6c33943ac4892b851213)
1065. [func] fdupont,tomek
The DHCPv4 server now stores Relay Agent Information option as
the last one.
(trac #4121, git 2f883d4afb9b27c6c59d993692370685b206b6c2)
1064. [doc] tmark
Added Kea logo to documentation.
(trac #3702, git 7cae813ffe9a7320db5c84ac4beb1c3c0ecabbf7)
1063. [func] marcin
It is possible to disable writing generated DHCPv6 server
identifier in a persistent storage. This also fixes a
failing distcheck.
(trac #4211, git d8f39b7aff9312237d4b6d6de39a7336a25ead4c)
1062. [func] marcin
libeval: options may be referenced by their names in
expressions used for client classification.
(Trac #4204 git 38aebe9566e09daa30796df686cfdd6d0c43fa4d)
1061. [func] kalmus
MySqlHostDataSource class implementation. It provides methods
for adding and extracting Host objects to and from MySQL database.
(Trac #3682, git 275b40fb941a6934c6434715184ae1c39f3fb3f2)
1060. [func] stephen
Incremented KEA_HOOKS_VERSION to 3 for Kea 1.0.
(Trac #4208, git bf6f3d495604942a395b51bbe4c37001b7541242)
1059. [func] nicolas
The client packet is now passed as a new parameter "query4"
to the pkt4_send hook point. Thanks to Nicolas Chaigneau from
Capgemini for providing this patch.
(Github #8, git )
1058. [func] tomek
Two new hook points lease4_recover and lease6_recover have been
implemented. They are called when a declined IPv4 or IPv6 lease
concludes its probation period and is being recovered into
usable state.
(Trac #3988, 3989, git 1930797c48fee7f4006a33cecd6f08b05ae76725)
1057. [func] marcin
It is now possible to specify type and value of a DUID used
as DHCPv6 server identifier.
(trac #3874, git faf52b069cf774d0050d76b4f47b542b2b5105f2)
1056. [doc] sar
Added description of the expression based classification
system to the Kea Admin Guide.
(Trac #4101, git 3ec88e0669470ab406c45d50d0f853f9aeb3bf04)
1055. [func] fdupont
Classify match expressions are evaluated on incoming packets and
requested options are appended when configured by the subnet, a
class or globally.
(Trac #4097, git 752ad11ff4ebe97ec27d098aff706d1999900346)
1054. [func] tmark
Replaced underscores, "_", with hyphens "-", in the parameter
names used in the kea-ddns server's configuration as well as
those in the DDNS messages (NCRs) sent to the server. For
example, "ip_address" is now "ip-address", "change_type" is
now "change-type". This makes JSON element naming consistent
throughout Kea.
(Trac #4202, git 91bf527662060d4b1e294cd53e79b431edf0e910)
1053. [doc] tomek
Support for DHCPDECLINE (v4) and DECLINE (v6) messages is
now described in the Kea User's Guide.
(Trac #3990, git 6b0db91610420f3cce55d9f887d7c73660ece209)
1052. [func] marcin
libeval: expressions involving options can now use textual or
hexadecimal format of the options.
(Trac #4093, git 4cdf0fff1067b3dde6570dc6831e8b1343bc50fe)
1051. [func] tmark
kea-dhcp4 and kea-dhcp6 configuration parsing now supports
the "client-classes" element for defining client classes.
(Trac #4096, git d21fd6925983eb20f82029e3866652398ea5e5fe)
1050. [doc] tmark
Corrected the descriptions of ncr-protocol and ncr-format parameters
in the Kea Admin Guide.
(Trac #4117, git 034c1c95b57768d5abbc7fb40cc57d7cadad21dd)
1049. [build] fdupont
Add a new --enable-generate-parser configuration parameter
(disabled by default) which makes flex and bison to regenerate
parser files.
(trac #4125, git 18321bf85f93b24d720f1ab2d90b4f4da85bc471)
1048. [func] fdupont,tomek
Implement expression parser for client classification.
(Trac #4088, git ac9eb312bfd1c6bf22a868ad789a0c049f33f637)
1047. [func]* stephen
Change the way that hooks libraries are defined in the configuration
file in preparation for allowing the specification of library-specific
parameters in a future version of Kea.
(Trac #3259, git b2986b0b0299e691b13123922129bdbf8575afdb)
1046. [func] tmark
Upon startup Kea servers will now detect memfile lease files
that need upgrading, and will launch in instance of the LFC
to convert them to the most current memfile schema version.
(Trac #3601, git ce4b0e42e8a01bbf3b58fdb1f505bbd6e2fad134)
1045. [func] tmark
Added classes for storing client class definitions to libdhcpsrv.
(Trac #4095, git 1039a942450e2a45a1e1aa9924cae4fdbd1541fe)
1044. [build] fdupont
With the addition of a background thread for timeouts, ensure that
the configuration and process spawning code are thread safe.
(Trac #4060, git 4c130bd7c8d0eb97966e9821bab491bca5321b6c)
1043. [func] fdupont
Implemented support for hex strings in client classification.
(Trac #4091, git 406153af95404adb96296df09ec6033b484586e3)
1042. [doc] fdupont
User Guide: parameters having default values may be omitted in the
option definitions.
(Trac #3927, git c7460e849258ec77cf1215a2baf840d98f1ab77b)
1041. [func] tomek
A new library, libkea-eval has been added. It is not functional
yet, but its purpose is to provide a generic expression
evaluations that will be used in the upcoming client classification.
(Trac #4081, git 28d818a26a5d128e8a51d62b68c0cc817e6e2415)
1040. [func] tmark
When kea servers lose connectivity with MySQL or PostgreSQL backends
they will log an error message and exit with an exit value of 255.
(Trac #3780, git cf94e99698e1d8a1613026bda5e4fc9bb4a68d74)
1039. [doc] marcin
Configuration parameters pertaining to processing expired
leases by the DHCPv4 and DHCPv6 server have been documented.
(Trac #3979, git a2ee99ba313e54a9dcf8a09ed118dbfe612e3d55)
1038. [func]* marcin
DHCPv4 and DHCPv6 servers reclaim expired leases before they
are re-assigned.
(Trac #3977, git 5880e706cb27c19b1b70296ccd8d96e38e82027b)
1037. [func] fdupont
Added a new 'leases-reclaim' command which reclaims expired leases
immediately.
(Trac #3978, git 9d5716e5bd6b151d90591f8497bae689321875c2)
1036. [func] tmark
kea-admin now supports upgrading from Postgres schema version
1.0 to 2.0. Schema 2.0 includes support for lease expiration
and reclamation.
(Trac #3969, git 8fde70c1b63b5a2646688290b1d0cf53f4c964ad)
1035. [doc] fdupont
Modified documentation of DHCP options to show internal format
of records.
(Trac #4071, git c5cffe74ac1bd38e4870ff1c22c36febb46e8c27))
1034. [func] fdupont
Add support for DHCPv4 subnet selection option.
(Trac #4058, git b7072884e8ce74dc64cd74e101d81e5c0763f492)
1033. [bug] stephen
Updated OutputBuffer class to address warnings from Coverity.
(Trac #3443, git 4bf0a14aa7a1303ed6959127c5354687e9f222ba)
1032. [func] marcin
PostgreSQL lease database backend has been extended with new
functions to obtain expired leases and to delete expired
reclaimed leases.
(Trac #3968, git 0bc02588d8553ba9a4fc749115a3e370407d7287)
1031. [build] fdupont
Rewrote the system_messages tool from Python to C++.
(Trac #3516, git a8195310c641027d1822344cafad64e6f695d614)
1030. [bug] marcin
Fixed failing 'reclaimExpiredLeasesTimeout' unit tests on
some virtual machines.
(Trac #4075, git c3a2487f53ecf69edc0a38f574fce17c4332162c)
1029. [func] tomek
A new hook point lease6_decline has been added. It is called when
the DHCPv6 server is about to decline a lease as a result of
processing incoming DECLINE message.
(Trac #3986, git b6e3f1bbe3595aeba769d627d571e2eeee38a397)
1028. [func] marcin
Expired leases are processed periodically according to the
server configuration.
(Trac #3975, git 3bd8891c0b9cb7dc504fa69251610996775cefbf)
1027. [func] tomek
Expired declined IPv6 leases can now be reclaimed (returned to the
available pool) after probation period elapses.
(Trac #3985, git 9aadfa902d898ce1f52b773152a5b34519a9a9fe)
1026. [doc] stephen
Added documentation for the kea-dhcp4.commands and
kea-dhcp6.commands loggers.
(Trac #3952, git 3eb5d3185683e05494c1d84ed7195627fce4b6c1)
1025. [func] tomek
A new hook point lease4_decline has been added. It is called when
the DHCPv4 server is about to decline a lease as a result of
processing incoming DHCPDECLINE message.
(Trac #3986, git 39bde93fe25e4aff52623d4df7fd55c64e0a9c21)
1024. [func]* tomek
Boolean Skip flag in Hooks API has been replaced by enum status.
This is backward incompatible change if you developed hook
library that takes advantage of the skip flag. See Hooks
Developer Guide for easy steps necessary for migration.
(Trac #3499, git 99ca398d4d042a098b5c491368733220db8cdd08)
1023. [func] tmark
kea-admin now supports upgrading from MySQL schema version 3.0
to 4.0. In addition, the lease6 data dump now contains the
text label for lease_hwaddr_source column rather than its
numeric value.
(Trac #3967, git 2e13ac3b0b278faabe338b00ffee8259c13f5342)
1022. [func] fdupont
Added support for the V4 link selection sub-option (RFC 3527). If
present in an incoming packet, the server will allocate an address
in the subnet identified in the option. If this is impossible, no
address will be allocated and the request refused.
(Trac #4057, git 8c02cec5ec8e311a9d23fd582d8e9e8647667abb)
1021. [bug] stephen
Added missing address parameter to ALLOC_ENGINE_V4_REQUEST_OUT_OF_POOL
message.
(Trac #3996, git 680233550747209a1707e8f920179479b980aa2a)
1020. [func] kalmus
A general purpose base class for MySQL connection has been
implemented.
(Trac #3681, git 884d8bb4a55d3d7b1b8f3f01efb312bd8dec399b)
1019. [func] marcin
Added new configuration parameters controlling processing of the
expired leases in the DHCPv4 and DHCPv6 server.
(Trac #3974, git c998d36c40cc46ffe9f888e615bbcfa0a311d40d)
1018. [func] sar
Added support for several options for use by PXE.
From RFC4578 (for DHCPv4) these are: 93 - client-system,
94 - client-ndi, 97 - uuid-guid.
From RFC5970 (for DHCPv6) these are: 59 - bootfile-url,
60 - bootfile-param, 61 - client-arch-type, 62 - nii.
(Trac #3576, git fdcc73afe7e26bd427817fd771567b1c44713b06)
1017. [func] tmark
Lease dump SQL logic, used by kea-admin, is now supplied via stored
procedures rather than external text files. Files of the form
lease_dump_<version>.sh will no longer be installed under
<prefix>/share/kea/scripts.
(Trac #3916, git 09cdd86a5e284250d7657a93a36df2e2705947d2)
1016. [bug] fdupont
Fixed problems when --enable-static-link is specified as a
"configure" option. With this switch present, all Kea
executables (servers, tools, unit tests, etc) are linked
to the static (vs. shared) version of Kea libraries.
However, note that they can still be linked to dynamic
system libraries.
(Trac #4004, git 760a343efbd241f5ed333cfff088124378f69115)
1015. [func] tomek
Expired declined leases can now be reclaimed (returned to the
available pool) after probation period elapses.
(Trac #3984, #3976, git 32a8ec68e0e5ea93991915812158d7628d2b4709)
1014. [func] marcin
Implemented lease4_expire and lease6_expire hooks in libdhcpsrv.
(Trac #3972, git 8a8547aec1caf2a8d1c7ca206f68534f3c03f1d9)
1013. [func] marcin
New mechanism for scheduling lease file cleanup is used in the
DHCPv4 and DHCPv6 servers.
(Trac #3971, git 431d515fc3d64aa82369c8eaf48d03339f12dc69)
1012. [bug] stephen
Replace #include of message_dictionary.h in message_initializer.h
with a declaration of the MessageDictionary class, avoiding the need
to include message_dictionary.h in the set of header files installed.
(Trac #4046, git 9f1801b4326f62632a7c9f0aa939d58f120c10e8)
1011. [func] fdupont
Added definitions and tests for the options from secure DHCPv6.
This protocol is still experimental. The option and other protocol
codes are for testing, they will be updated when IANA assigns
official values.
(Trac #4015, git 95f8c0d0af45807c1f303b9bbbb08f82b3bfc343)
1010. [bug] tmark
Fixed test failures occurring for some tests after
IfaceMgr::closeSockets was called.
(Trac #4067, git 9161867dc6a354659ae8b5115ee437ec76c1771e)
1009. [bug] fdupont
Now libutil blocks all signals when creating a new thread
(so signals are delivered only to the main thread).
(Trac #4065, git a4a8e422e613e4378f0a0641e4c480b73d67ebeb)
1008. [build] fdupont
Removed the included header-only ASIO code. Kea is now built
against the installed copy of Boost. The build by default
attempts to use the header-only error code (ASIO dependency), but
may also use the version in the boost system library. The
location of this library can be specified.
(Trac #4009, git 8c293bc0d1804a512964621f114e64fcba0abcb9)
1007. [func] tomek
DECLINE message in DHCPv6 is now supported. The server is able
to receive it, check its correctness and move the lease to
DECLINED state. Currently there is no way to recover the lease
before 'decline-probation-period' time.
(Trac #3982, git 11e2c4366d8624601172c01e95cff6a8b95833b3)
1006. [bug] marcin
Fixed issues with threads concurrency in the TimerMgr.
(Trac #4047, git 48297af6e0443808a482536b61436a42bc6a5b38)
1005. [func] tomek
DHCPDECLINE message in DHCPv4 is now supported. The server is able
to receive it, check its correctness and move the lease to
DECLINED state. Currently there is no way to recover the lease
before 'decline-probation-period' time.
(Trac #3981, git c14a63c0d3a56ea3e880e874f854adc0077de75e)
1004. [bug] fdupont
Incoming Confirm, Rebind and Information-Request messages are
now more thoroughly checked against presence of client-id
and server-id options.
(Trac #3773, git fd2889b9de45e2822b6713663bee06b75259c6dc)
1003. [build] fdupont
Updated Makefiles to ensure that all required dynamic libraries
are included in the link command line as some systems are unable
handle implied library dependencies.
(Trac #3911, git 4d13f5234da33df03c0989829a0e1c1056e53a4e)
1002. [func] marcin
MySQL lease database backend has been extended with new
functions to obtain expired leases and to delete expired
reclaimed leases.
(Trac #3966, git 419832a6279c70b5db04b1cab10737e31f2c99f9)
1001. [build] fdupont
Fixed critical C++ issues in the Kea code. This does not cover
auto_ptr warnings (just ignore them) or the gtest 1.7.0 bug with
EXPECT_TRUE() and ASSERT_TRUE() macros (we recommend to download
last subversion sources at http://googletest.googlecode.com/svn/trunk
and use the --with-gtest-source configuration argument when
you'd like to build unit tests).
(Trac #4024, git 55afd98fead0c16bb81107dfc1a5f49a5e295aa6)
1000. [func] marcin
Implemented Timer Manager which holds the pool of interval
timers used by the DHCP servers.
(Trac #3970, git bc8503055338da36d07a2b67c64087f645c9a9e3)
999. [func]* tmark
The DHCPv4 server will now honor DHCPRELEASEs for leased addresses
which cannot be matched to subnet. This allows leases to be
released after configuration changes have eliminated their subnet.
Prior to this the server would reject the release and emit a
DHCP4_RELEASE_FAIL_NO_SUBNET log message.
(Trac #2615, git eeebf9f68cf5be6a0f7eefc78832d664361c4990)
998. [func] tomek
'decline-probation-period' parameter has been added to DHCPv4
and DHCPv6 configuration. It can be configured, but is not yet
used, as the DECLINE message support is still pending implementation.
(Trac #3983, git 6b10d119c89685476335f268181c9982f6fa6161)
997. [build] jreed
Removed obsolete Python coverage build options.
(Trac #3483, git a08cbbecbd3b11d0b73f68a40986a353b22ed3be)
996. [func] marcin
Memfile lease database backend has been extended with new
functions to obtain expired leases and to delete expired
reclaimed leases.
(Trac #3965, git dd5b95453528416f22e961e6ebb3051bc2ae788c)
995. [build] fdupont
Removed additional files left over from BIND 10 (headers,
src/lib/{asiodns,testutils,asiolink}).
(Trac #40{28,29,31}, git 78ff0fb0a97731a8b3c055b1cbb4faebcd115f7c)
994. [func]* marcin
DHCPv6 server fully supports RFC 7550.
(Trac #3947, git c06ab97a4e068c4b4b11f4685c56dd402b2385dc)
993. [bug] fdupont
The logging spec file was searched in the build tree when it
was in the source tree so distcheck (where they differ) failed.
(Trac #4026, git 5eb213647d7ac0a707530d57af2c6dbd725ac1b3)
992. [func] fdupont
A 'flush' parameter has been added to logging configuration. It is
now possible to disable automatic immediate flushing to achieve
better logging performance.
(Trac #3752, git 16c4c2b6d95c45864ec3e2b27e0d320e386b2c0b)
991. [build] fdupont
Removed partial function template ordering macros to allow Kea to
build with Boost 1.59 and later. Also removed some
compiler-dependent code.
(Trac #4006, git e06934f211436eea37439128ff6f388709f01101)
990. [bug] tomek
Improved child process signal handling. Improved number of
exception handling routines in DHCPv4 and DHCPv6.
(Trac #4000, git bf5e48f2cf80b5263cc89f445795bc8c5b8f011d)
Kea 0.9.2 released on July 28, 2015
989. [bug] tmark
Fixed a bug in both DHCPv4 and DHCPv6 servers that could cause
them to crash during sever shutdown when DNS updates are enabled.
(Trac #3997, git ce91bdd78f420f64324c573a952ec804bc25e0d8)
988. [bug] fdupont
keactrl no longer returns an error when the "status" command is
issued and the Kea configuration file doesn't exist.
(Trac #3785, git a27d72ef3cb7640a41dca26c8728a9cbd9ad1ca9)
987. [bug] marcin
Fixed textual representation of the options containing an array
of 1 byte long unsigned numbers.
(Trac #3959, git 9045fd9d6d282184cce10a622c0108abab029d5b)
986. [bug] marcin
Fixed the failing lease allocation from the large address and
prefix pools.
(Trac #3958, git c86b6a68725e2f57679598ff4890fc82f4482c20)
985. [bug] marcin
Eliminated extraneous debug-level DHCP6_RESPONSE_DATA entry from the
DHCPv6 server log output. Prior to this the server was logging
each response twice.
(Trac #3949, git 023973cbce44e5fb92a2bc45e69f2786d5152091)
984. [bug] tmark
Replaced used of "kill -0" with "ps -p" in keactrl when
checking of servers are alive. This makes it possible for
non-root users to use keactrl to monitor server status.
(Trac #3954, git f7f22b244343a3dc2d06645a47c2c65a5134326e)
983. [bug] fdupont
Enforce numeric month values in Posix date printing.
(Trac #3944, git fdbe74b0235055057a37c6ce2b0aaf88f0cc7891)
982. [bug] marcin
Fixed the typo in the name of the D2 logger.
(Trac #3951, git 92305b2a1774df1cf1bdfeb93d787fea0ab27f74)
981. [bug] tmark
keactrl now uses PID files to identify and control server instances.
Prior to this it relied on the system command, "ps", which could lead
to it misinterpreting which processes are or are not running.
(Trac #3939, git 93a720ed7ffdffe66bd835cd64f78e4ad601637a)
980. [doc] marcin
Updated Developer's Guide.
(Trac #3484, git 220c337c31a592311363eca981c7f1578abbe15d)
979. [bug] fdupont
Fixed two cases of public variables in a base class being
hidden by variables in a derived class.
(Trac #3920, git bd42a66fb67aab3fe397523c6fdbf14a939587c8)
978. [func] tmark
DHCPv4, DHCPv6, and DHCP_DDNS now all create PID files upon
startup. The PID file pathname is formed from:
<localstatedir>/<conf name>.<binary-name>.pid
If a server's PID file exists and contains the PID of a
live process, it will emit a log message and exit.
(Trac #3769, git cdce632add025aaadbcdc89078f5bd3e19cfb5ca)
977. [doc] tomek
Frequently Asked Questions section added to the Kea User's Guide.
(Trac #3873, #3847, git 95683c9d3c3dd7024269df1904b6cbe5817741a2)
976. [build] tomek
Included missing Doxygen documentation images in the tarball.
(Trac #3928, git 2fb63a18897b93b12a5fc4635d4ac29e0bf82841)
975. [doc] marcin
Updated the list of standard DHCPv4 options in the User's Guide
with the information of whether they are returned by the server
even when they are not requested.
(Trac #3578, git b361b28ce53729a5f2d59f79670a36cf1a4a0352)
974. [bug]* marcin
Corrected invalid format of the DHCPv4 option 5 (name-servers).
The corrected format comprises a list of IPv4 addresses,
rather than a single IPv4 address.
(Trac #3887, git 54d1dbe6138e74c5efacfbaf85b77c87aea9ddf1)
973. [doc] marcin
Added new section to the User's Guide to describe the issues
with unicast responses to the DHCPINFORM messages when ARP
traffic is blocked.
(Trac #3740, git 22bcb060ceca544dfa1779815321155668bf19dc)
972. [doc] marcin
Updated sections of User's Guide concerning creation of
the option definitions and Vendor Specific Information
options for both DHCPv4 and DHCPv6.
(Trac #3846, git 6aebe0867ca9cf6fb09a289d80051125db7fa34b)
971. [func] fdupont
Changed all occurrences of unlink() to the more portable remove()
to avoid problems on operating systems where the former is not
available.
(Trac #3841, git 3752529ed3d72137f6899ef8225a0b231db5b1f0)
970. [bug] fdupont
Refactored some code to suppress cppcheck warnings.
(Trac #3919, git 26be6ac4cefde012ca8ef12607b6beaadca13eed)
Kea 0.9.2-beta released on June 30, 2015
969. [func] tomek
KEA_SOCKET_TEST_DIR environment variable can be used to specify
the directory for opening Unix sockets during tests. That may
be used to avoid path length limitations when running unit-tests
in deeply nested directories.
(Trac #3918, git 9cfd502e8d4605eaf34f8744f90272dc3e8a3e34)
968. [bug] marcin
DHCPv6 server extends the lifetime of the client's lease
in the database when the client sends the Request message.
This prevents premature lease expiration before the client
renews the lease, according to the timers and lifetimes
returned by the server.
(Trac #3913, git 1d64829a3f1a8288dc833ed388d9ffc9fe4cf491)
967. [doc] tomek
Management API section added in the DHCPv6 chapter of the Kea
User's Guide
(Trac #3917, git 21305d2da26090e3fad1ff9fb242a2bbb6b7e56b)
966. [func] fdupont
Include database software details in extended version information.
(Trac #3882, git b0e166c4d8b0383ebd6e2f51d55eed68a2bcafa8)
965. [func] sar
Per IPv6 subnet statistics (subnet[id].assigned-nas,
subnet[id].total-nas, subnet[id].assigned-pds, and
subnet[id].total-pds) has been implemented.
(Trac #3799, git 4aa4808268bbc54290578f60ba60ed33cf344712)
964. [doc] tomek
User's Guide and Developer's Guide updated with statistics and
control channel description.
(Trac #3800, git 7ce8ca560370ec5f9bd4d5199a177b441f08a47e)
963. [func] tmark
DHCPv6 server now supports a control channel, implemented over
a UNIX socket. Currently supported commands are: statistic-get,
statistic-reset, statistic-remove, statistic-get-all,
statistic-reset-all, statistic-remove-all, and shutdown.
(Trac #3797, git f49828612d9030c9f3441acaf4b3a9f60b492a3e)
962. [func] fdupont
Make the parsing of options and vendor options more consistent
between v4 and v6. In addition make the parsing more robust
against malformed packets.
(Trac #3618, git f4066793c5e034386c689fd72d2a91a70ffb6d5f)
961. [func] fdupont
Improved error messages when handling invalid or malformed
configuration file. File and line number are printed, when
available.
(Trac #3697, git 70fc36e164e988c251bdaaee7e27c5f6407e0f4c)
960. [build] fdupont
Get rid of the last bundy pieces of code.
(Trac #3732, git 6b7da42f902fabb6855e54a19ea472c18ba82a93)
959. [build] fdupont
Removed no longer used logging in cc and config libraries.
(Trac #3732, git 8d0324f4786900db953489ebaa9e018b1238543f)
958. [func] tomek
DHCPv4 server now supports control channel, implemented over UNIX
socket. Currently supported commands are: statistic-get,
statistic-reset, statistic-remove, statistic-get-all,
statistic-reset-all, statistic-remove-all, shutdown.
(Trac #3880, git 688658395518f0b97d5384af81ceab5206691ad5)
957. [func] tomek
Per IPv4 subnet statistics (subnet[id].assigned-addresses and
subnet[id].total-addresses) has been implemented.
(Trac #3798, git bab2030f56bbf390959f9f9238a8acc62d583c70)
956. [func] marcin
Improved log messages emitted by the allocation engine,
which now uses a dedicated logger.
(Trac #3852, git 923928774f4f59c887d768cf155b5978e838a6f2)
955. [func] tmark
Added unit tests to kea-admin for testing the lease-dump command
with a PostgreSQL backend. Updated PostgreSQL database installation
instructions in Kea Administrator's guide to include use of kea-admin
tool.
(Trac #3884, git 0772b7df2a89e1019141be1d0ddec30d53c4b919)
954. [func] fdupont
Enhance the versioning information printed by the executables and
make it more consistent across all of the executables. "-v" is for
basic Kea version information, "-V" provides more detailed
versioning and versions for external dynamic libraries, finally
"-W" provides the configure report from the configuration step
during the build of Kea.
(Trac #3513, git 584cf666e101c6cb5c9af76175ddd867ece85764)
(Trac #3859, git 384e6c6225de18fc97d606e4a1972baeef598ba4)
953. [bug] fdupont
Corrected the setting of string characters to values above 127
in HMAC tests.
(Trac #3829, git 54f4ec64e513fea1547631122dc1af8579fae3db)
952. [bug] fdupont
Made some loop indexes an unsigned type to avoid compiler warnings
where the termination condition is comparison with an unsigned
value.
(Trac #3833, git 3db9f1d78f59856b982a1ff84c3b5a1ba7ea39df)
951. [build] fdupont
Removed BUNDY configuration backend.
(Trac #3732, git 96364cbbb15318c8f55d5b287cda0990d3eaae32)
950. [doc] marcin
Updated section about logging in the User Guide. Also,
updated Hooks Developer's Guide with the recommendations for
the developers about use of logging in hooks libraries.
(Trac #3805, git b403de1f335a2fb5098c9abc0858b8137892f868)
949. [func] tmark
kea-admin now supports dumping MySQL and PostgreSQL lease tables
to CSV file, via a new command "lease-dump". This is primarily
intended for use as a diagnostic tool.
(Trac #3802, git 6ec774e8523e7f8415d6cd18c34062489e127847)
948. [bug] fdupont
libdhcpsrv: check if new host reservation tries to use an already
reserved address.
(Trac #3652, git 4f10b78341b197bd321fbf2ec71db7420e40718d)
947. [func] marcin
DHCPv6 server now supports Rapid Commit option.
(Trac #3070, git a6b6156aaa95ab74c69a537e90483f82e9fbe4a2)
946. [doc] tmark
Added documentation for kea-admin "lease-dump" command to the
Kea Administrator's Guide and kea-admin man page.
(Trac #3803, git 54b59b7ef02f6428405794066ea779e9bd4c0b6e)
945. [func] marcin
Improved log messages emitted by the DHCPv6 server. Also,
the server is now using multiple distinct loggers for logging
messages pertaining to different functional parts of the
code, e.g. packet transmission, lease allocation, DDNS etc.
(Trac #3807, git c95ebdaf39c3d8d78d83d53db15824c60078f566)
944. [func] tmark
kea-admin commands lease-init, lease-version, and lease-upgrade
now support PostgreSQL. Note that at this time the PostgreSQL
backend only supports Kea schema version 1.0, so there are no
upgrades available.
(Trac #3883, git 990a0d72fa247e4a12e2608994204c48274e4cd6)
943. [func] sar
Split the DHCP-DDNS logging messages amongst several loggers to
allow the administrator finer control over debugging messages.
Messages pertaining to the name change requests processing include
an ID, currently the DHCID, to identify the transactions.
(Trac #3808, git 4fbe08234049de6ef67bb5cdb244d180a7a4c3a9)
942. [func] tomek
18 new statistics added in DHCPv4 server: generic packet counters,
per packet type counters, parsing failure and packet drops.
(Trac #3794, git a61f40c44910a09699a9a566a5ec35ab758564ba)
941. [bug] marcin
Configuration parser for host reservations returns an error
when an unsupported parameter is specified.
(Trac 3810, git 54ee0f6328a303c366dd8239e768dfc4a23a5d9b)
940. [bug] fdupont
DHCPv4 server drops DHCPRELEASE messages sent from a bad
location (i.e., no subnet can be selected)
(Trac 3504, git f0f13ac74779f76ed7af91bd5dab3d11ba00be79)
939. [bug] fdupont
Small fix in HooksDhcpv4SrvTest.subnet4SelectSimple unit-test.
(Trac 3881, git a21afdffec41fceb61e6760d4108d670b2eabe75)
938. [build] fdupont
Removed Python from the log library (code, message compiler and
documentation)
(Trac #3734, git d24b7c9716c6eb7a3e9dd2cb3fd2d1bfe4e1201f)
937. [bug] fdupont
The log ID LOG_UNRECOGNISED_DIRECTIVE was changed to
LOG_UNRECOGNIZED_DIRECTIVE to follow US English spelling.
(Trac #3762, git 235e3304746352e9341008225f9f2392586a9f66)
936. [bug] fdupont
Added an ASSERT to avoid a crash in HooksDhcpv4SrvTest
subnet4SelectSimple unit test. Fixed out of bounds vector accesses
in perfdhcp (which should not be able to handle links
with long (i.e., more than 6 bytes) link-layer addresses).
(Trac #3868, git c20f47e19d6060605c0611754db7b66b08553caa)
935. [bug] fdupont
Fixed 3 out of bounds accesses on vectors in DHCP++ code.
(Trac #3854, git de263ad0008f3494a85592f78db1ec662b68e689)
934. [bug] fdupont
Renamed the DHCP-DDNS constant INVALID_SOCKET to SOCKET_NOT_VALID
to avoid conflicting with a constant of that name defined on some
operating systems.
(Trac #3861, git 28205225ceed03ff3126e43cd06cedbaa7d8d657)
933. [func]* marcin
DHCPv4 server by default identifies a client using the
client-identifier, if present. The new configuration
parameter 'match-client-id' allows for disabling this
behavior, i.e. 'chaddr' field is used to identify the
client instead.
(Trac #3747, git b9dc6ffd0f3396e9da8e0c83fd82164b8b8af011)
932. [func] kalmus
MySQL schema has been extended with tables that can store
host reservation. This ticket updates database schema only,
the tables are not in use yet.
(Trac #3567, git d2cd5d53b3f31422a342c9bb8946dad9ed1ea032)
931. [func] marcin
Improved log messages emitted by the DHCPv4 server. Also,
the server is now using multiple distinct loggers for logging
messages pertaining to different functional parts of the
code, e.g. packet transmission, lease allocation, DDNS etc.
For complete list of logger names see User Guide.
(Trac #3806, git 7b148c2dd5e2696a541883223ce1efd2de81f143)
930. [func] tomek
Statistics Manager is now implemented. There is a new library
libkea-stats that governs statistics collection. Its usage will
be added in the upcoming tickets.
(Trac #3793, git 68e9554ecabfc2a79731eeec1c706522e4d39332)
929. [build] fdupont
Corrected problem in build system whereby specifying an
installation directory on the "configure" command line that
included a "+" in the name caused the build to fail.
(Trac #3713, git 741ff09b743307bad28ae13db440e5e0f402d319)
928. [build] fdupont
A CONFIG_H_WAS_INCLUDED define has been added to provide
a way in source files to check whether config.h has been included.
(Trac #3812, git cbb135d5f217b0692dcdbc9cfcc04f6a0dbc3922)
927. [bug] tmark
DHCPv4 no longer attempts to update the lease database with the
generated FQDN when processing DHCPDISCOVERs.
(Trac #3779, git 0b413ee8aba1afa1643b216a1e8c35103c6c975b)
926. [bug] marcin
Fixed the crash during the logging deinitialization.
(Trac #3823, git 435b958860ec7b921645bd5923fff96ea4341f19)
925. [func] marcin
libkea-hooks logs when the callouts execution begins or ends
for the particular hook. It also logs the execution time of
individual callouts and the total time for all callouts.
(Trac #3804 git dd1432d7807e7d3b54c87dd4b3155d3110619fbd)
924. [bug] marcin
Removed shell warning about the "missing format character"
in the keactrl usage.
(Trac #3784, git aa683395a4cd75af5340eb8603fe46b7b0dd8f4e)
923. [func] tmark
The DHCPv4 server now logs packets it has either dropped as invalid
or to which it has replied with a NAK to a separate logger,
"kea_dhcp4.bad_packet".
(Trac #3743, git cb91ca851099423e1b6c39cca3f3e2ba29795a51)
922. [build] fdupont
The config.h file should never be included by another include file.
Copy missing header files to the install directory.
(Trac #3782, git ea6e9d166faa54b1f9781bc56d7d8fee6c87b1f9)
921. [func] marcin
libdhcpsrv: Added log traces to the host manager.
(Trac #3699, git 75b75c89db88eb1a81e76f5550f2a5b3155ce42d)
920. [bug] marcin
Corrected issues with logging initialization in hooks
libraries. The dynamically loaded hooks libraries may now
define their own loggers which are configurable using Kea
configuration file.
(Trac #3198, git 8216a6b1a2ed6e2b38919280809ee21fc4107fd6)
Kea 0.9.1 released on March 31, 2015
919. [doc] stephen
Corrected some configuration examples in the documentation.
(Trac #3772, git e9f084525bc1eec1cca635c00f33228bf7fac6a4)
918. [func] tomek,tmark
DHCPv6 server now supports static reservations of hostnames
for clients. Note this resolves #3708 by reducing the number
of calls to selectSubnet to once per client request.
(Trac #3689, git c13c824d9948f7e3f71a65ed43798f3b5c14042c)
917. [bug] marcin
DHCPv4 server may allocate lease for the client which is
using a non-unique identifier (HW address or client id),
if the other identifier is unique.
(Trac #3768, git 0f7a029e2a2a7652d49a0bcd9f49e879fac9136f)
916. [func] sar
Add a log message that indicates when the v4, v6 or
DHCP-DDNS server has completed processing its
configuration and is about to enter the loop to process
messages.
(Trac #3755, git c71c7836804842bae51fe79fd599c57f5b3d007d)
915. [func] tomek, marcin
The DHCPv6 server now supports the Relay-Supplied Options
option, as defined in RFC 6422. The relay can insert options
in the relay forward message that the server will send back
to the client if certain criteria are met.
(Trac #3705, git 4772ee589712f5359ecbd79ebf71fbc7bb68741b)
914. [bug] marcin
DHCPv4 server: corrected the logging message issued when
the server could not allocate or offer the lease for the
client. The corrected message contains the client-id,
hardware address, ciaddr and requested-ip-address.
(Trac #3737, git 4c56e1348c5d50eaa5b3083a0a8c346966e1b603)
913. [bug] sar
Handle recovery properly should the LFC crash while
manipulating files after completing processing.
(Trac #3759, git bb3b4d14119392261a1766da2b406fa46d4c0f21)
912. [doc] sar
Added sections on LFC to the administrators and developers
guides.
(Trac #3720, git 828b801e6a4616de331588076ab9c4c35677595)
911. [func]* marcin
libdhcp++: the C++ objects representing network interfaces
(Iface objects) are now non-copyable. As a result, the API
of the Interface Manager functions returning the pointers
to the Iface objects has changed.
(Trac #3715, git 7415c74e38e13385a75e7200cb23b7d6ca86df7f)
910. [func] marcin
DHCPv4 server supports static reservations of the hostnames
for the clients.
(Trac #3688, git b5c50e2aff64da05b439da8d5fa4913fc8a704ca)
909. [bug] marcin
Removed many cppcheck errors in the code. Also removed the
dhcp-ubench test tool.
(Trac #3736, git 552aea126e968b78292ae80c1c6a03c9ef4dcdcd)
908. [bug] marcin
Handle overflows during time conversions in the MySQL and
PostgreSQL lease database backends.
(Trac #3673, git 27b4e4590fdee507f0e877d7b771dc6c6457a4b5)
907. [doc] tmark
Corrected depictions of kea-admin command line options for
database-name in Kea Administrator Reference. Prior to this
the document showed "-d" as the database name option, when
in fact it is "-n".
(Trac #3742, git ec427e4c9d008abc800f87eda3c0024b35e4c2e2)
906. [doc] tmark
Added description of a restriction on extracting a MAC
address from an IPv6 link-local address to the Kea
Administrator Reference, section 8.8, item "ipv6-link-local".
(Trac #3691, git ca9f5541cb36f815ac614c5c21088d545eafcac6)
905. [func] marcin
DHCPv4 server assigns an address from the dynamic address
pool if the reserved address is in use by another client.
(Trac #3694, git 95b09ff53b941691cba172c933de0682b05a0d85)
904. [bug] marcin
FreeBSD-only change: Disabled unit test expecting the death
of the process when conditional variable was destroyed when
the thread was still waiting for the variable. This is due
invalid behavior of the pthread_cond_destroy on FreeBSD
which should return EBUSY in such case, whereas it returns
success error code.
(Trac #3710, git bdb442402ef023055715baf597c401c9974a7fb2)
903. [bug] stephen
Corrected arithmetical error in the rate control module of
perfdhcp which led to the incorrect calculation of the rate
at which packets should be sent.
(Trac #3729, git bb5bca3d9b68abc4b83abdd204bfb075dda630ac)
902. [bug] marcin
Fixed the bug in the DHCPv4 server whereby the server
reconfiguration (using the SIGHUP signal) failed because
of sockets remaining open since the previous configuration.
(Trac #3730, git 3ceb0cd97cf5e44e8fc151d0a38db553530dd3ed)
Kea 0.9.1beta released on February 18, 2015
901. [bug] tomek
Previously, the DHCPv4 and DHCPv6 servers gave up after
100 failed lease selection attempts. Now both DHCPv4 and
DHCPv6 servers calculate the number of attempts required
to find a lease using the pool capacity.
(Trac #3711, git cb5533a1bf1023faf61c1b8ade6ac8fa425f46c2)
900. [doc] marcin
Documented configuration of the Lease File Cleanup (LFC) in
the Kea Administrator Reference.
(Trac #3672, git da3c676f009785204f9d84ca008890959bffcc18)
899. [func] tomek
reservation-mode parameter has been added to DHCPv6 server.
It controls what host reservation types are allowed and may
improve performance in certain situations. It is also
accepted in the DHCPv4 configuration, but currently not
used.
(Trac #3565, git cfbe13ad05aac23e09357fc78507cf9a82c908e6)
898. [func] marcin
The DHCPv4 server configuration allows for opening multiple
sockets on a single interface with multiple IPv4 addresses
assigned. This facilitates the use case when different relay
agents send messages to different addresses on the interface.
(Trac #3695, git 3116243706a2dbcae3f9b5b3af9d2241a07b9ab2)
897. [bug] fdupont
Removed a double free of the read_buffer_ field of Iface
objects after (spurious) copy (partial as copies are not
yet fixed).
(Trac #3712, git 0b38ff6a6e77eb4182bfd7c0c681bef22ad5f634)
896. [bug] fdupont
Removed exit() in D2 for version command line processing.
This interfered with how the unit-tests were run.
(Trac #3616, git 758a61e277675e89d857a22c3f8e844de307dca6)
895. [doc] tomek
Host reservation for DHCPv4 and DHCPv6 is now documented.
(Trac #3575, git a981e42eb0f39d27795364a6862b3a5e574e540a)
894. [bug] fdupont
Accept empty options or sub options in DHCPv4 messages unpacking
routines.
(Trac #3661, git 42a4854208ec16834c590a9316b9a5306c60a3bb)
893. [func,bug] fdupont
Changed the qualifying-suffix parameter in the dhcp-ddns
configuration element to be mandatory with no default value when
updates are enabled (i.e., the enable-updates mandatory parameter
is true).
(Trac #3632, git 12808651448837c611e4f6a262f7a1eb3deaf8da)
892. [func] sar
A class, LeaseFileStats, has been added to provide simple
statistics for use with lease files. Also added logging
to the kea-lfc process per the design.
See http://kea.isc.org/wiki/LFCDesign for the design.
(Trac #3667, git 7f36e034fe79d85f317d7d07e2fe636d6cdf1f6e)
891. [func] tomek
libdhcpsrv: Allocation Engine now uses statically assigned
addresses when processing DHCPv6 renewals.
(Trac #3677, git 9ce50790c91624937ff2b622e4afff36d5d3cc2d)
890. [func] marcin
It is now possible to specify whether the DHCPv4 server
should use raw sockets or IP/UDP datagram sockets to
receive and send DHCP messages. The configuration format
has been changed for the selection of interfaces on which
the DHCPv4 and DHCPv6 servers should listen. The
configuration files using an old format are incompatible
with the latest version of Kea.
(Trac #3604, git c726bbc4eae0f576f6791c7490bfba8c30a401d9)
889. [bug] marcin
Resolved a bug in the DHCPv4 allocation engine whereby the
client could request and obtain an address reserved for
another client.
(Trac #3690, git 1afa4e24b0fcdd6d3a2e596663ce1102ffe2340d)
888. [func] marcin
DHCPv4 and DHCPv6 servers launch the kea-lfc program, according
to the value of lfc-interval configuration parameter for the
Memfile lease database backend.
(Trac #3669, git c92665ce05d71e9e5cad9a0679018e9e3f7e3be5)
887. [func] sar
A new process, kea-lfc, has been added. It is meant to
be periodically executed by the DHCPv4 and DHCPv6 servers
to remove redundant information from the lease files.
See http://kea.isc.org/wiki/LFCDesign for the design.
(Trac #3664, git cc85938b35e2d4bd00ccb74f1b83d3017ab0e41b)
(Trac #3665, git b1707981f48b13895b50bf27176dede866576292)
(Trac #3687, git 1e92382aaa2fbff08bbf1d6bbf0add195a7b6fae)
886. [func] tomek
libdhcpsrv: Allocation Engine now uses statically assigned
addresses when it allocates leases for the DHCPv6 clients.
(Trac #3563, git b86b24fd011c0617515d62b7091d56fdfd1a7360)
885. [func] tomek
Information-Request (stateless mode) in DHCPv6 is now supported.
(Trac #2949, git 3185d229c39ed4660e9bc98a7f4a9d0dfbe64a04)
884. [func] marcin
The DHCPv6 server configuration now allows for defining a pool
for prefix delegation in which prefixes do not match a
subnet prefix.
(Trac #3647, git 5455d96cbf773e678bd6b1c3e31bfdeb617e6c13)
883. [bug] marcin
libdhcpsrv: Prevent infinite loops in the allocation engine,
when the address pool becomes exhausted.
(Trac #3692, git f1e464558c89a6dc88ab28a25dd14a65fee62578)
882. [func] sar
A utility class has been added which handles writing and
deleting pid files as well as checking if the process with
the given pid is running.
(Trac #3687, git 1e92382aaa2fbff08bbf1d6bbf0add195a7b6fae)
881. [func] kalmus
Extracting hardware/MAC address from the DHCPv6 remote-id
option is now implemented.
(Trac #3552, git 6db5fc158133b3f308c43f1fe2fa54a6f89baae1)
880. [doc] tomek
kea-admin is now described in Kea User's Guide.
(Trac #3644, git fa83c48826e41663d93e56ec7fd6983e9b0b2cd1)
879. [bug] fdupont
Drop DHCPREQUEST message from an unknown client in the
INIT-REBOOT state.
(Trac #3656, git 8e205adc35d8e72d1802d5ee9056e6c4ac78274a)
878. [func] marcin
DHCPv4 and DHCPv6 server now support the lfc-interval
parameter which configures the interval in which the
Memfile lease database backend executes the Lease File
Cleanup (LFC). Note: the LFC is currently no-op and will
be implemented shortly.
(Trac #3668, git 2ce54eeb607d2caa0901125b5d86a373e9e3f165)
877. [func] marcin
DHCPv4 server drops unicast packets sent to the IPv4 address
on which the server is not configured to listen.
(Trac #3547, git 803f1f0f145b0f252ffc3637f758a47e0061de85)
876. [func] tomek
Two new MAC acquisition methods implemented for DHCPv6:
docsis-modem (which extracts MAC address from an option inserted
by a cable modem) and docsis-ctms (which extracts MAC address from
an option inserted by CMTS which acts as a DHCPv6 relay agent).
(Trac #3553, git ad0a3772774bc5f9831a5ba16725a5a22887b8cb)
875. [bug] afidalgo, marcin
The DHCPv4 server no longer appends the trailing dot to the
hostnames sent to the clients in the Hostname option (12).
Appending trailing dot confused some DHCPv4 clients.
Credits to Alexis Fidalgo for submitting a patch.
(Trac #3636, git 450867e6987f4c786ad6c2cc95cabcff601c1b48)
874. [func] marcin
Changes to the Memfile lease database backend to load
leases from multiple files during startup or server
reconfiguration. This change is required by the Lease File
Cleanup feature, which leads to the creation of additional
files holding cleaned up lease information.
(Trac #3671, git 667de2ef9044e97c76b15cacc7285132cdffdfcf)
873. [bug] wlodek
Removed references to non-existing pgsql_test.sh script
from Makefile.
(Trac #3662, git ab69f38dd82cf3c3736588e03c1dc568de3ae6d6)
872. [func] wlodek
Check for required header file errcode.h for PostgreSQL
backend added to configure process.
(Trac #3663, git d666dd9263ba1aaf88bec5b8e5ae3f0cb8e5c1db)
871. [func] kalmus, tomek
DHCPv6 is now able to extract MAC from DUID-LLT and DUID-LL.
(Trac #3548, git f6d9630e2762a0f256a2b7825d74d2bce8fe4c60)
870. [func] fdupont
Cleanup the cryptolink API (e.g., removing spurious 'magic'
zero length parameters).
(Trac #3606, git 55d2df9d78321b3844217055e376ae44ac962d8f)
869. [func] tomek
'mac-sources' configuration parameter added. The DHCPv6 server
can now be configured to use various MAC/Hardware address
sources.
(Trac #3554, git 2e7c32e7c19372f0c97968ef7c8256509d80fdfc)
868. [func] marcin
DHCPv4 server configuration allows for selection of the
address on the interface that server should listen on.
This is specifically useful in the environments with
multiple IPv4 addresses assigned to one interface.
(Trac #3539, git ff71887c605eedc3914bacfd2e551da7bddcc0d6)
867. [func] marcin
libdhcpsrv: Allocation Engine uses statically assigned
addresses when it allocates or renews leases for the
DHCPv4 clients.
(Trac #3564, git 7b192fe314c12e38622742b3b338e997934f862f)
866. [doc] stephen
Corrected documentation concerning the way to configure hooks
libraries.
(Trac #3635, git 42d1c98a2e66ab7fc3e372365edad1f5709df885)
865. [func] marcin
Host reservations can be specified in the DHCPv4 and DHCPv6
servers configuration. The reservations are loaded, but they
are currently unused.
(Trac #3562, git 1ba5ec3b7831ef8126be17b9542d9b89a419e7dd)
(Trac #3628, git 00b49298ec5e5e5c722e5938547c86c954fc76e1)
864. [func] tomek
MySQL backend is now able to store information about hardware
addresses and associated information in DHCPv6.
(Trac #3556, git 08a29d8d2374bc3c6b3799d5dd97f586ee869392)
863. [func] tomek
A new tool called kea-admin added. It allows database maintenance.
Initialization of a new database, version check and upgrade between
version is now supported. Currently the only backend supported is
mysql, but support for memfile and pgsql is planned.
(Trac #3599, git cf22f8d212f2435957f89b51722f8e26e14635f2)
862. [func] dgutier, tomek
Support for client link-layer address option (RFC6939) has
been added.
(Trac #3551, git dabdf965d92085f86d5e96c8dadce0f0a8f7c8e3)
861. [func] marcin
The configuration parameters for a DHCPv4 and DHCPv6 options are now
optional.
(Trac #3467, git 7bf8cef161e6dd00a7f2b2fe8ec04e1958d6db3f)
860. [bug] marcin
Fixed calculation of the Client FQDN option length for the ASCII
domain name encoding.
(Trac #3624, git 5a120d9bf85e27ea5b2674d35af0f2774e4cd2a7)
859. [func] marcin
Implemented Host Manager, which can retrieve host reservations
specified in the server's configuration. Future tickets will
extend Host Manager to retrieve reservations from other sources,
e.g. SQL databases.
(Trac #3561, git faac5e9746dbf82eb04ffef95658e4b4c7d64a4a)
858. [bug] marcin
Added missing "lease-database" entry to the default DHCPv6
server configuration, in kea.conf.
(Trac #3630, git 0f7ff732ea2add45a24e040eae8a0dda27532a31)
857. [func] fdupont
Improve the cryptolink code, for instance use a constant
time comparison.
(Trac #3602, git 0c1f433da650330b40fe1a67bae4716c9184f636)
856. [build] marcinw
callout_manager.h and server_hooks.h headers are now exported,
so statically linked libraries can be tested.
(Github #4, git 00b5f3fa0369c13021bf4fb78c6450e524e4e411)
855. [build] fdupont
Use convenience archives for objects used in a makefile and
its parent makefile: before sources were compiled twice using
the broken subdir-objects option of automake, now objects
are put into a convenience static library (so an archive).
(Trac #3631, git d7954b4234114d8fa41aa51f671d4faa1724b748)
854. [bug] marcin
Corrected a regression on "make distcheck" which appeared after
implementation of #3162 (partial fix).
(Trac #3629, git 9bb6b76a24e4356b30e59631e76e32c3096fb515)
853. [func] tomek
Lease6 now is able to store MAC/hardware address information. Memfile
memfile backend has been updated to store/retrieve that additional
piece of information. Server now tries to use available methods to
obtain MAC/hardware address from incoming packet.
(Trac #3555, git ab76a9e7a9d39cb3cf533729473b63a2d2401ac7)
852. [func] tomek
Pkt6 class is now able to generate client's MAC from source IPv6
link-local address if EUI-64 identifier was used.
(Trac #3549, git d92e76860e6931477b3e60e5be8978302973f88f)
851. [bug] tmark
Corrected a segmentation fault that was occurring under OS-X
during D2 module shutdown.
(Trac #3470, git f7822568abd04c12faa3cde34fadaac238a373d3)
850. [build] fdupont
Moved optional gtest sources to ext/gtest.
(Trac #3162, git 055512758f5c79f29eb375126d496483c9a6d0a1)
849. [bug] tomek
DHCPv6 component now processes incoming vendor-class options
properly (packets are classified as VENDOR_CLASS_[content of the
vendor-class option]).
(Trac #3486, git 62409cd9531b081943b8f3567f7b0dca36b18802)
848. [func] fdupont
Added truncated HMAC support to TSIG, as per RFC 4635.
(Trac #3593, git ae3a9cd1a0d2dc07b7092368149381d69bc2c61a)
847. [build] fdupont
Removed no longer used configuration option --with-shared-memory
and associated files and variables.
(Trac #3614, git adee8c93f7c7c1303390dd63dbeae74a48a34845)
846. [bug] fdupont
Fixed subdir-objects warnings from recent versions of autotools,
e.g., on Apple OSX.
(Trac #3162, git e25c7477f3c35cdaa0f038732f697224bfd44847)
845. [func] marcin
Implemented Host class for storing information about IPv4 and IPv6
reservations for the host.
(Trac #3560, git fb5e1883b01ce6388d1b7a92c61061b493c36713)
844. [bug] tmark, marcin
Fixed multiple issues in the DHCP-DDNS unit tests.
(Trac #3615, git fec824d36121b12e98dd407a0bdf1bc71c8de18d)
843. [bug] marcin
DHCPv4 server sets ciaddr to 0 in DHCPOFFER and DHCPNAK messages to
adhere to section 4.3.1 of RFC2131.
(Trac #3367, git 9f05a29caa960df2b09b7a8c23100da8b40e73d0)
842. [func] marcin
DHCPv4 server logs when the packet sent by the client contains
invalid combination of giaddr/hops before discarding the packet.
(Trac #3537, git 760c652b54dcdfdfbd1a0014da43d3c31e848f02)
841. [func] tomek
Pkt4 and Pkt6 class have a common base now. A lot code duplication
removed. Added getMAC() method that will be used to extract MAC
in DHCPv6.
(Trac #3546, git 6e68af7dfe15e4d461bf068f545d2bdaaa8fcfb0)
840. [func] nicolas
PktFilterInet::send method now sets source IPv4 address
explicitly. This enabled perfdhcp to control its source address
on systems that have more than one address assigned to a given
interface. Thanks to Nicolas Chaigneau from Capgemini for
providing this fix.
(Github #2, git 6ac36ed7a1d97bcf52ffb2aec7cbf116e58e5803)
839. [doc] adam
DHCPv4 examples corrected in Kea ARM. Thanks to Adam Osuchowski
from Silesian University of Technology for providing this fix.
(Github #1, git 15785c0e28190659b037cfcca19f0267ccd9049f)
838. [bug] tomek
Kea components now use the KEA_LOCKFILE_DIR environment variable
to specify the directory of the logging lockfile. Locking can be
disabled completely by setting the variable to 'none'.
(Trac #3591, git d4556e1d21766b94f2f0cda59df15e47e6f2676e)
837. [bug,doc] tomek
Logging configuration examples in kea.conf fixed. Also updated
Kea documentation for logging.
(Trac #3536, git 2cf3f6b9cb3d2ae6fc7b0940b55490f109ddd2f9)
836. [bug] fdupont
Moved duplicated getXXXHashAlgorithm() function to new
xxx_common.h include files in the cryptolink library.
(Trac #3471, git 8cf2ee46b3d7398f4f716435be3d9b19bf3599f5)
835. [build] fdupont
The configure script checks if OpenSSL supports SHA-2, in order
to avoid very old (and likely subject to unfixed security bugs)
OpenSSL versions.
(Trac #3482, git c779a0ef23d2092cf896276dab1fbcb190380374)
834. [bug] marcin
Corrected the definition of the example DHCPv4 and DHCPv6 address
pools in the default kea.conf file.
(Trac #3538, git 8712cc0df77368940d8d3d11811a9ac9504bce12)
833. [func] marcin
Configuration Manager supports two stage configuration. In the
first stage a temporary configuration is created and in the
second stage this configuration is committed. If configuration
fails at the first stage, the temporary configuration is rolled
back and the server continues to use the old configuration.
(Trac #3534, git 4ecee3c0c97fe417b050317356f9093ba3771a15)
Kea 0.9 released on August 29, 2014
832. [bug] jiri
Compilation fix for PostgreSQL on i686. Thanks to Jiri Popelka
from RedHat for providing a patch!
(Trac #3532, git 96a06654f2177444dcea3a0e9f6fa06947855497)
831. [func] marcin
DHCP servers check if the interfaces specified in the configuration,
to be used to receive DHCP messages, are present in the system.
If the interface doesn't exist, an error is reported. In addition,
the SO_REUSEPORT flag is set for IPv6 sockets as multiple multicast
sockets can be bound to the DHCPv6 server port.
(Trac #3512, git 5cbbab2d01c6e1bf6d563ba64d80bc6bc857f73d)
830. [build] jreed
The configure script no longer requires pkg-config.
(Trac #3511, git 99a5a2db8c011b358873d485ac48f7c78ac6374c)
829. [build] wlodek
Lettuce DNS tests removed with all related python code,
most of them will be used in Forge project which can be found
http://kea.isc.org/wiki/IscForge
(Trac #3420, git e51bcbeedbc169050751c1b896726965243667be)
828. [bug] marcin
Corrected the IfaceMgrTest.detectIface unit test that failed on
Linux systems with virtual interfaces present.
(Trac #3527, git 7aa01a6965b6e9fc39ff005803cada7f58f2e628)
827. [build] jiri, tomek
Deprecated AC_PROG_LIBTOOL macro replaced by LT_INIT. Thanks to
Jiri Popelka from RedHat for providing a patch!
(Trac #3525, git 6c0aacf29fae1d0501ca69ff6324df8d4fc8c7ee)
826. [bug] jiri, tomek
Compilation fix for Red Hat running on armv7. Thanks to Jiri
Popelka from RedHat for providing a patch!
(Trac #3526, git eac5a80472dcb78b538c2ed34cc0534f801e5145)
825. [bug] jiri, tomek
Example JSON configuration files permission fix. Thanks to Jiri
Popelka from RedHat for providing a patch!
(Trac #3524, git 822a39ba33870f70787a1f666aed772e06d04d79)
824. [bug] marcin
Kea daemons report configuration summary when the configuration is
applied successfully.
(Trac #3477, git f39d208024f720f72c931016cfa50a54e80f8c61)
823. [build] tomek
query_cmp tool removed from the source code.
(Trac #3509, git f61c800059bd5e5c74e435d7dd97ae561d29151a)
822. [build] tomek
'host' program was removed from examples.
(Trac #3421, git aeea893fb1c52d20258929a62a59ae2e7bd12e3d)
821. [bug] marcin
DHCP servers no longer log an error when Interface Manager fails to
receive a packet as a result of signal being received.
(Trac #3478, git d80c83aef8e103dd483234429d35aeb66149e0b9)
820. [bug] marcin
Corrected the IfaceMgrTest.detectIfaces unit test which reported
false positives for specific network configurations.
(Trac #3517, git 9affa1b2210f5cc9d7a99724e5d5c8979409cefd)
Kea 0.9beta1 released on August 13, 2014
819. [build] marcin
Renamed variables in the configure.ac so as their names do not
refer to BIND10 project. As a result of renaming the B10_CXXFLAGS
to KEA_CXXFLAGS in configure.ac all dependent Makefiles had to
be updated in the tree. The AX_BOOST_FOR_BIND10 macro has been
renamed to AX_BOOST_FOR_KEA.
(Trac #3507, git 6616b1c0ad0a78e11bca9395fafb8efdba8d8b9c)
818. [func] tomek
DHCPv4, DHCPv6 and DDNS components now report their versions.
(Trac #3508, git 3f46c74ffa0ea1197e1fa62cb2f6580931be35f3)
817. [bug] marcin
DHCPv4 and DHCPv6 servers will log an error during an attempt to
open socket on the interface which is down or not configured.
(Trac #3487, git fadc776914aa858ce637aab1513ab3d87631f612)
816. [doc] tomek
AUTHORS file rewritten.
(Trac #3469, git 6ef55abaa1ef79e09ad332c0da28dee7bfed70fe)
815. [func] tomek
Pool definitions in DHCPv4 and DHCPv6 are now lists of
structures. This makes adding new per-pool parameters easier in
the future.
(Trac #3464, git 4bd0c0eda9d86608f8802d28bd360239fe88e905)
814. [func,doc] tomek
It is now possible to specify logging parameters in a
configuration file for DHCPv4, DHCPv6 and DHCP-DDNS components.
(Trac #3427, git 23285903645c36fc35c6866a74c50c74089cd255)
813. [func] tomek
Functions, methods and variables referring to BIND10 were renamed
to Kea. In particular, system variables (B10_LOGGER_ROOT,
B10_LOCKFILE_DIR_FROM_BUILD etc.) were renamed. B10_ prefix was
replaced with KEA_.
(Trac #3417, git 1db8988de6af435fa388dc9c7f909c4a004a01d0)
812. [doc] tomek
DHCPv6 and DDNS sections in Kea Administrator Reference Manual
has been updated. Usage of keactl has been documented.
(Trac #3468, git 3945fc6211bcadb9bece7147039a6b50ebcf936b)
(Trac #3466, git fa9570d19c73cbe7effc75589b7eb855c411f6a3)
811. [doc] tmark
Added documentation of message protocol between DHCP servers and the
DHCP-DDNS process.
(Trac #3505, git 6d9aed2f8fe181714e8260493c6cc06e13d0edd0)
810. [func] stephen
perfdhcp is now installed in sbin as it requires root privilege
to run. The perfdhcp source has been moved to the directory
src/bin/perfdhcp.
(Trac #3481, git d101aed6156a993476fa1164f0b0ec8395f5886c)
809. [func] stephen
sockcreator is no longer built or installed. The code is being
retained in the repository for the moment, but may be deleted at
some point in the future.
(Trac #3480, git 2a55a469dde8fcc053b49e287c30d0906baa91b4)
808. [func] stephen
Reduced number of startup and shutdown messages in the
DHCP-DDNS process by making some of them debug messages.
(Trac #3479, git bca0bae285de9ce904c0afd21af777dac2edb4e6)
807. [func] marcin
DHCPv6 server responds to Confirm messages from clients.
(Trac #3269, git 4f43c309a994e30c07f5aa27057552fb195ec284)
806. [func] marcin
DHCPv4 server processes Requested IP Address option (50).
(Trac #3320, git ad411a177a32bbe6a93f4baf813d985558c99e2f)
805. [func] stephen
Changed all occurrences of "BIND 10" in message files to "Kea".
(Trac #3416, git e88090b57a75424920d9b96efbf50e3554048828)
804. [func] marcin
DHCPv4 server supports DHCPINFORM messages from the clients.
(Trac #3390, git 77f8577b1dbb52bdc6deb8bed3eef6ce7abc33fd)
803. [func] marcin
DHCPv4 server supports responding to directly connected clients on
FreeBSD, NetBSD and OpenBSD using Berkeley Packet Filtering. This
also resolves the problem reported in #3438 that the server doesn't
pick the correct interface to respond to the client and the client
never gets the response from the server.
(Trac #2893, git 9fba39d93b9ece950c4294230984d6315dfa11f6)
802. [doc] tomek, marcin
Developer's Guide updated to Change BIND 10 references to Kea.
Documentation for Keactrl added.
(Trac #3396, git 271450edbc63e9022f877c9aa3d1dc290708f151)
(Trac #3466, git fa9570d19c73cbe7effc75589b7eb855c411f6a3)
801. [build] fdupont
Detect all OS X versions more recent than 10.9 (where
pthread_cond_destroy() doesn't work as documented,
which makes some of unit tests to fail).
(Trac #3473, git d620ef6659598bcc1f4c30241e845348770e264e)
800. [bug] marcin
DHCPv6 server is now usable on FreeBSD, NetBSD and OpenBSD systems.
It can receive messages sent to ff02::1:2 multicast address. Also,
fixed the bug whereby the DHCPv6 server failed to bind the socket
to global unicast address on BSD systems due to invalid scope id
setting.
(Trac #3437, git f4c2fe2fc37a37f1510e138e1f6c4ccd757e1f06)
799. [func] tmark
Configuration parsing for all Kea servers has been enhanced to include
the location of the error within the configuration file presented as
file name, line number, and column within the configuration file.
(Trac #3436, git b927deb2b4579f93ba74d4be8f5a3a4eaa3c6422)
(Trac #3409, git 777dbdb29a641f7d8661f9cc2c22f1cb9fe7eb14)
798. [build] tomek
JSON configuration backend is now the default. BUNDY backend
is now deprecated after #3413 removed the BIND10/Bundy framework.
(Trac #3476, git 727b65f2c62bbd7dc599b2e7956167e2b3c34098)
797. [build] tomek
Removed a lot of remaining BIND10 framework: bind10, bindctl,
cfgmgr, cmdctl, msgq, stats, sysinfo, tests, usermgr from src/bin
directory, also src/lib/python directory. Python3 is not
required anymore, unless documentation generation is enabled.
(Trac #3413, git d7b297ac475193f687d07b0489ac74585d4f3814)
796. [doc] tomek
User's Guide renamed to Kea Administrator Reference Manual,
removed sections specific to BIND10/Bundy framework, rewritten
general and DHCPv4 specific examples.
(Trac #3418, git 73e6019d83760f0500890240e2e187dcd5e1e14c)
795. [func] marcin
Added support to keactrl to start, stop, reconfigure and gather
status of the DHCP-DDNS server.
(Trac #3465, git 6bc61470c9ccee001fe282d0f879bcddac0b8721)
794. [func] fdupont
cryptolink: add OpenSSL crypto backend as an alternative to Botan
by specifying --with-openssl[=PATH] on the "configure" command
line. Add hash support to the cryptolink API and use it in DHCP
DDNS, removing the Botan dependency.
(Trac #2406, git 4b4110dd68706b4171fc6d8a6f4f2a9cd820edac)
793. [func] tmark
DHCP-DDNS: Implemented dynamic reconfiguration of the server,
triggered when the SIGHUP signal is received by the server's
process. Also, server performs a graceful shut down when SIGINT
or SIGTERM signal is received.
(Trac #3407, git f1a224df1e46098748ba60205be09ada4600515f)
792. [func] marcin
Implemented keactrl script used to start, stop, reconfigure Kea
servers and get their status and configuration data. This script
is installed only if the JSON configuration backend is in use.
(Trac #3422, git e1d164c7a9a54a7aacea88c8c57cd2826e06012b)
791. [func] tmark
DHCP-DDNS: Now supports configure.ac parameter: --with-kea-config.
It allows selecting configuration backend and accepts one of two
values: BUNDY, which uses Bundy (former BIND10) framework as Kea
0.8 did, or JSON, which reads configuration from a JSON file.
(Trac #3401, git 8e69209caafc81041229f3d9601599f3d98fc86e)
790. [func] marcin
DHCPv4 server: Implemented dynamic reconfiguration of the server,
triggered when the SIGHUP signal is received by the server's
process. Also, server performs a graceful shut down when SIGINT
or SIGTERM signal is received.
(Trac #3405, git dd0270bd91cf8fc958b8b388950d343d311ee99e)
789. [bug] marcin
DHCPv4 server sends Renewal Time (58) and Rebinding Time (59)
options to the client when the appropriate timers are set
in the configuration. Previously, the timers were ignored.
(Trac #3336, git b3c8a079889411182ade517c85aa4fe5d6b8719a)
788. [func] tomek
DHCPv4 server: New parameter added to configure.ac: --with-kea-config.
It allows selecting configuration backend and accepts one of two
values: BUNDY, which uses Bundy (former BIND10) framework as Kea
0.8 did, or JSON, which reads configuration from a JSON file.
(Trac #3399, git 6e4dd3ae58c091ba0fd64c87fa8d7c268210f99b)
787. [func] marcin
DHCPv6 server: Implemented dynamic reconfiguration of the server,
triggered when the SIGHUP signal is received by the server's
process. Also, server performs a graceful shut down when SIGINT
or SIGTERM signal is received.
(Trac #3406, git 3be60fa6ac521aecae6ae92d26dc03792bc76903)
786. [func] tmark
DHCP-DDNS now supports DDNS updates with TSIG. Please refer to the
Kea Guide for details. Prior to this TSIG keys could be defined but
were not used.
(Trac #3432, git 80fea12a53d1e832d4e7b710ca6ea613300f73ea)
785. [bug] marcin
DHCPv6 server avoids collisions between prefixes that are allocated
as a result of receiving hints from the clients. Previously the
whole prefix (including bits beyond the prefix length) was used to
search existing leases in the lease database. If not found, the
new lease was created for the prefix sent by the client. If another
client sent the same prefix but with different non-significant bits
the prefix was allocated. This led to prefix collisions. Currently,
server ignores bits beyond the prefix length when searching for
existing leases.
(Trac #3246, git 50de7df4195195e981ae9c8c6f1b4100047d5bb5)
784. [func] tmark
DHCP_DDNS's configuration was changed. The unused parameter,
"interface" was deleted. Three new parameters, "ncr_protocol",
"ncr_format", and "dns_server_timeout" were added. Please refer to
Kea Guide for details.
(Trac #3268, git bd60252e679f19b062f61926647f661ab169f21c)
783. [func]* tomek
DHCPv6 server: New parameter added to configure: --with-kea-config.
It allows selecting configuration backend and accepts one of two
values: BUNDY, which uses Bundy (former BIND10 framework as Kea
0.8 did, or JSON, which reads configuration from a JSON file.
(Trac #3400, git 7e9fdfa644b81f72bfa5300b7ddcdb9754400769)
782. [func] tmark
Added sender-ip, sender-port, and max-queue-size parameters to
the dhcp-ddns configuration section of both b10-dhcp4 and b10-dhcp6.
(Trac #3328, git 8d8d0b5eedaab20bf1008dfb3a6913eb006a6e73)
781. [func] marcin
libkea-dhcpsrv: the Memfile lease storage backend returns leases
of a specified type. Previously, it ignored the lease type parameter
and returned all leases for a particular client. Thanks to David
Carlier for helping to implement this ticket.
(Trac #3148, git d2f0edf473716cd747a21d6917e89ba55c148d8e)
780. [func] marcin
libkea-cc: JSON parser stores information about the position
of the data element values in the JSON string. The position
comprises the line number and the offset within this line where
the specific value resides. This functionality is intended to
be used for error logging during configuration parsing.
(Trac #3408, git 115a52a6713340fc589f6f95d73d242931239405)
779. [doc] tmark
Added a section to the developer's guide for Kea's DHCP-DDNS
component, D2.
(Trac #3158, git 7be263c7372b1401a8b4288742854f96b5bec0d6)
bind10-1.2.0 (kea 0.8) released on April 17, 2014
bind10-1.2.0rc1 released on April 8, 2014
778. [func]* marcin
libdhcpsrv: the Memfile lease storage backend now writes
leases into a CSV file. Configuration parsers for b10-dhcp4
and b10-dhcp6 use the new configuration parameters to
control the location of the lease file. It is possible to
disable lease writes to disk using configuration for testing
purposes.
(Trac #3360, git 09e6e71abf8bc693e389ebd262fd149b43c1f1d4)
777. [func] tmark
If b10-dhcp-ddns is configured to listen on an address other than
loopback, it will issue a log message warning the user that this is
insecure and is supported for testing purposes only.
(Trac #3383, git 652aa4de2fa82fdf3de569d01d9f4aa618fc1972)
776. [func] tomek
b10-dhcp4 and b10-dhcp6 now support using PostgreSQL as the backend
for storing lease data. This backend is enabled by specifying
--with-dhcp-pgsql on the "configure" command line. Without this
switch the PostgreSQL backend is not compiled leaving BIND 10 able to
be built on systems without PostgreSQL installed. Thanks to David
Carlier who contributed the initial patches for this work.
(Trac #3080, git 1aae8b1fab3008e62c4f085948b1abadad512447)
775. [func] marcin
b10-dhcp4, b10-dhcp6: added a new parameter to subnet configuration.
This parameter allows subnet ids to be set to arbitrary values or
automatically generated values. Generated subnet ids are renumbered
each time one or more subnets are removed. Setting the ids to
specific values prevents this renumbering.
(Trac #3281, git d90e9a0642fbb16a4e664160b4812f61fb81f1aa)
774. [doc] marcin
Updated information in the BIND 10 Guide about the standards supported
by Kea and its current limitations.
(Trac #3258, git ff52b86206e3a256a02ca6d5cde55040550ba86a)
773. [doc] tmark
Added sections to the BIND 10 guide on configuring and using the
DHCP-DDNS feature of Kea. Chapter 19, describes the new DHCP-DDNS
server and its configuration. Additions to chapters 17 and 18
describe configuring the DHCP servers to work with the new server.
(Trac #3283, git 806eea955c61eba2d7268958a740a8e8ea63bdaf)
772. [bug] tmark
b10-dhcp4 and b10-dhcp6 now both correctly support DDNS updates
when honoring client requested delegation. When DDNS is enabled,
and the client's FQDN indicates they will do the forward updates,
the servers will now post a DDNS update request to b10-dhcp-ddns
for the reverse updates. Prior to this the servers were posting no
DDNS update requests when honoring client delegation.
(Trac #3352, git b1a0f405463723d539b2e6ed2dcdd692d7796b88)
771. [bug] tmark
Ticket #3339 (entry 760) was reverted to fix regression
where components added through bindctl, could not be removed.
(Trac #3374, git c641e2d0569df3ca3e5a93beaf0ecf39db07e402)
770. [bug] tmark
Configuration parsing in b10-dhcp6 and b10-dhcp4 for the "dhcp-ddns"
section of their configurations now supplies hard-coded default values
rather than those from their spec files. This is a temporary solution
to circumvent an issue in the configuration libraries which causes
map-items to behave incorrectly.
(Trac #3358, git 983d8acec3a7ccb1ffef662eac7518aed5f99381)
769. [func] marcin
b10-dhcp6: Implemented support for Rebind message.
(Trac #3232, git 3649413932857470558a6f19e0b0e181b3fc0fda)
768. [bug] tmark
b10-dhcp-ddns now treats a DNS server response code of
NXRRSET as a successful outcome when processing a request
to remove DNS data. This corrects a defect in which
b10-dhcp-ddns would incorrectly fail a request to remove
DNS data when the DNS server's response was NXRRSET.
(Trac #3362, git da3b0d4f364d069ffdb47723545798ac589fae42)
767. [func] tomek
Unit-tests for all DHCP database backends are now shared.
This improves test coverage for memfile and any future
backends that may appear.
(Trac #3359, git 3d6c11630ada9d0681a813cf026f6bb16aabb9fa)
bind10-1.2.0beta1 released on March 6, 2014
766. [func] muks
--disable-dns and --disable-dhcp configure arguments have been
added to conditionally disable the DNS or DHCP components
respectively. This facility can be used to do a DNS or DHCP-only
build of BIND 10. DNS and DHCP components are both enabled by
default.
(Trac #2367, git 81a689b61b1c4abf8a1a4fcbe41cfc96fd11792a)
765. [bug] tomek
b10-dhcp4: Fixed a minor bug in eRouter1.0 class processing. The
server no longer sets giaddr field.
(Trac #3353, git 23c22e9b1141c699f361d45c309e737dfecf6f3f)
764. [bug] tomek
b10-dhcp4: Fixed a bug caused client classification to not work
properly.
(Trac #3343, git 1801400ac874380e7a565d373b4bae96a49e21f7)
763. [func] tmark
b10-dhcp-ddns may now be configured to disable DNS updates in
in a given direction by simply not defining any domains for that
direction in its configuration. This allows it to be configured to
support either forward DNS or reverse DNS only. Prior to this if
a request was received that could not be matched to servers in a
given direction it was failed immediately.
(Trac #3341, git 01f26bce1d9faaddb8be59802f73891ea065b200)
762. [func] tmark
If configured to do so, b10-dhcp6 will now create DHCP-DDNS update
requests and send them to b10-dhcp-ddns for processing.
(Trac# 3329, git 239956696465a13196a2b6bc0f3a61aed21a5de8)
761. [doc] stephen, jreed
Added "man" page for perfdhcp.
(Trac #2307, git ff2f538912c205fbdb1408ee613c09b90de53514)
760. [bug] tmark
When merging a map of configuration elements into another, elements
that are themselves maps will be merged. In particular, this
corrects a defect which caused a configuration commit error to
occur when using bindctl to modify a single a parameter in
dhcp-ddns portion of b10-dhcp4 configuration.
(Trac# 3339, git 3ae0d93d89f3277a566eeb045191a43b2dd9d9b1)
759. [func] tomek
b10-dhcp4, b10-dhcp6: IP address of the relay agent can now be
specified for both IPv4 and IPv6 subnets. That information allows
the server to properly handle a case where relay agent address
does not match subnet. This is mostly useful in shared subnets
and cable networks.
(Trac #3322, git 5de565baea42c9096dff78ed5fbd05982a174469)
758. [bug] tmark
b10-dhcp4 now correctly handles DHO_HOST_OPTION. This corrects
a bug where the server would fail to recognize the option in the
DHCP request and then skip generating the appropriate DHCP-DDNS
update request.
(Trac #2426, git 985d66cba7665a71e17ef70c5d22c767abaad1b6)
757. [func] tmark
b10-dhcp6 now parses parameters which support DHCP-DDNS updates
via the DHCP-DDNS module, b10-dhcp-ddns. These parameters are
part of new configuration element, dhcp-ddns, defined in
dhcp4.spec. These parameters influence when and how DDNS updates
requests are created but communicating them to b10-dhcp-ddns is
not yet supported. That will be provided under separate ticket,
Trac #3222.
(Trac# 3034, git 22c667a66536ff3e3741bc67025d824644ed4e7d)
756. [bug] marcin
b10-dhcp6: server parses DHCPv6 Vendor Class option. Previously
the server failed to parse Vendor Class option having empty opaque
data field because of the invalid definition in libdhcp++. The
DHCPv6 Vendor Class option and DHCPv4 V-I Vendor Class option is
now represented by the new OptionVendorClass. The b10-dhcp4 is
affected by this change such that it uses new class to parse the
DHCPv4 V-I Vendor Class option.
(Trac #3316, git 1e61d7db5b8dc76682aa568cd62bfae0eeff46e3)
755. [func] muks
Add support for the CAA RR type (RFC 6844).
(Trac #2512, git 39162608985e5c904448f308951c73bb9c32da8f)
754. [func] muks
Add support for the TLSA RR type (RFC 6698).
(Trac #2185, git a168170430f6927f28597b2a6debebe31cf39b13)
753. [func] muks
libdns++: the unknown/generic (RFC 3597) RDATA class now uses the
generic lexer in constructors from text.
(Trac #2426, git 0770d2df84e5608371db3a47e0456eb2a340b5f4)
752. [func] tmark
If configured to do so, b10-dhcp4 will now create DHCP-DDNS update
requests and send them to b10-dhcp-ddns for processing.
(Trac# 3329, git 4546dd186782eec5cfcb4ddb61b0a3aa5c700751)
751. [func] muks
The BIND 10 zone loader now supports the $GENERATE directive (a
BIND 9 extension).
(Trac #2430, git b05064f681231fe7f8571253c5786f4ff0f2ca03)
750. [func] tomek
b10-dhcp4, b10-dhcp6: Simple client classification has been
implemented. Incoming packets can be assigned to zero or more
client classes. It is possible to restrict subnet usage to a given
client class. User's Guide and Developer's Guide has been updated.
(Trac #3274, git 1791d19899b92a6ee411199f664bdfc690ec08b2)
749. [bug] tmark
b10-dhcp-ddns now sets the TTL value in RRs that add A, AAAA, or
PTR DNS entries to the lease length provided in instigating
NameChangeRequest. This corrected a bug in which the TTL was
always set to 0.
(Trac# 3299, git dbacf27ece77f3d857da793341c6bd31ef1ea239)
748. [bug] marcin
b10-dhcp4 server picks a subnet, to assign address for a directly
connected client, using IP address of the interface on which the
client's message has been received. If the message is received on
the interface for which there is no suitable subnet, the message
is discarded. Also, the subnet for renewing client which unicasts
its request, is selected using ciaddr.
(Trac #3242, git 9e571cc217d6b1a2fd6fdae1565fcc6fde6d08b1)
747. [bug] marcin
libdhcpsrv: server configuration mechanism allows creating definitions
for standard options for which Kea doesn't provide a definition yet.
Without this, the server administrator couldn't configure options for
which a definition didn't exist.
(Trac# 3309, git 16a6ed6e48a6a950670c4874a2e81b1faf287d99)
746. [func] tomek
IOAddress no longer exposes underlying asio objects. The getAddress()
method has been removed and replaced with several convenience methods.
(Trac #1485, git ecdb62db16b3f3d447db4a9d2a4079d5260431f0)
745. [bug]* muks
b10-auth now returns rcode=REFUSED for all questions with
qtype=RRSIG (i.e., where RRSIGs are queried directly). This is
because RRSIGs are meaningless without being bundled alongside the
RRs they cover.
(Trac #2226, git 68d24e65c9c3dfee38adfbe1c93367b0083f9a58)
744. [func] marcin
b10-dhcp6: Refactored the code which is processing Client FQDN
option. The major user-visible change is that server generates
DDNS NameChangeRequest for the first IPv6 address (instead of all)
acquired by a client. Also, the server generates fully qualified
domain name from acquired IPv6 address, if the client sends an
empty name in Client FQDN option.
(Trac# 3295, git aa1c94a54114e848c64771fde308fc9ac0c00fd0)
743. [func] tmark
b10-dhcp4 now responds with changes in DDNS behavior based upon
configuration parameters specified through its dhcp-ddns configuration
element. The parameters now supported are override-no-update,
override-client-update, replace-client-name, generated-prefix, and
qualifying-suffix.
(Trac# 3282, git 42b1f1e4c4f5aa48b7588233402876f5012c043c)
742. [func] muks
The authoritative server now includes the datasource configuration
when logging some errors with the
AUTH_DATASRC_CLIENTS_BUILDER_RECONFIGURE_ERROR message ID.
(Trac #2756, git 31872754f36c840b4ec0b412a86afe9f38be86e0)
741. [bug] shane
Remove hard-coded (and unnecessary) TSIG key from error message.
This also prevents a crash if the TSIG name is missing.
(Trac #3099, git 0ba8bbabe09756a4627e80aacdbb5050407faaac)
740. [func] muks
When displaying messages about mismatched configuration data types
in entered values (between the supplied value type and expected
schema type), bindctl now includes both the supplied and expected
configuration data types in the returned error. The user has more
information on what caused the error now.
(Trac #3239, git 84d5eda2a6ae0d737aef68d56023fc33fef623e6)
739. [bug] muks
Various minor updates were made to the SSHFP RDATA parser. Mainly,
the SSHFP constructor no longer throws an isc::BadValue exception.
generic::SSHFP::getFingerprintLen() was also renamed to
getFingerprintLength().
(Trac #3287, git 2f26d781704618c6007ba896ad3d9e0c107d04b0)
738. [bug] muks
b10-auth now correctly processes NXDOMAIN results in the root zone
when using a SQLite3 data source.
(Trac #2951, git 13685cc4580660eaf5b041b683a2d2f31fd24de3)
737. [func] muks
b10-auth now additionally logs the source address and port when
DNS messages with unsupported opcodes are received.
(Trac #1516, git 71611831f6d1aaaea09143d4837eddbd1d67fbf4)
736. [bug] wlodek
b10-dhcp6 is now capable to determine if a received
message is addressed to it, using server identifier option.
The messages with non-matching server identifier are dropped.
(Trac #2892, git 3bd69e9b4ab9be231f7c966fd62b95a4e1595901)
735. [doc] stephen
Expanded Developer's Guide to include chapter on logging.
(Trac #2566, git a08d702839d9df6cddefeccab1e7e657377145de)
734. [bug] marcin
libdhcp++: fixed a bug which caused an error when setting boolean
values for an option. Also, bind10-guide has been updated with the
examples how to set the boolean values for an option.
(Trac# 3292, git 7c4c0514ede3cffc52d8c2874cdbdb74ced5f4ac)
733. [bug] marcin
libdhcp++: a function which opens IPv6/UDPv6 sockets for the
DHCPv6 server, gracefully handles errors to bind socket to
a multicast address.
(Trac #3288, git 76ace0c46a5fe0e53a29dad093b817ad6c891f1b)
732. [func] tomek
b10-dhcp4, b10-dhcp6: Support for simplified client classification
added. Incoming packets are now assigned to a client class based
on the content of the packet's user class option (DHCPv4) or vendor
class option (DHCPv6). Two classes (docsis3.0 and eRouter1.0) have
class specific behavior in b10-dhcp4. See DHCPv4 Client
Classification and DHCPv6 Client Classification in BIND10
Developer's Guide for details. This is a first ticket in a series
of planned at least three tickets.
(Trac #3203, git afea612c23143f81a4201e39ba793bc837c5c9f1)
731. [func] tmark
b10-dhcp4 now parses parameters which support DHCP-DDNS updates
via the DHCP-DDNS module, b10-dhcp-ddns. These parameters are
part of new configuration element, dhcp-ddns, defined in
dhcp4.spec. The parameters parse, store and retrieve but do not
yet govern behavior. That will be provided under separate ticket.
(Trac# 3033, git 0ba859834503f2b9b908cd7bc572e0286ca9201f)
730. [bug] tomek
b10-dhcp4, b10-dhcp6: Both servers used to unnecessarily increase
subnet-id values after reconfiguration. The subnet-ids are now reset
to 1 every time a server is reconfigured.
(Trac #3234, git 31e416087685a6dadc3047fdbb0927bbf60095aa)
729. [bug] marcin
b10-dhcp4 discards DHCPv4 messages carrying server identifiers
which don't match server identifiers used by the server.
(Trac #3279, git 805d2b269c6bf3e7be68c13f1da1709d8150a666)
728. [func] marcin
b10-dhcp6: If server fails to open a socket on one interface it
will log a warning and continue to open sockets on other interfaces.
The warning message is communicated from the libdhcp++ via the
error handler function supplied by the DHCPv6 server.
(Trac #3252, git af5eada1bba906697ee92df3fcc25cc0e3979221)
727. [func] muks
RRset::setName() has now been removed.
(Trac #2335, git c918027a387da8514acf7e125fd52c8378113662)
726. [bug]* muks
Don't print trailing newlines in Question::toText() output by
default. This fixes some logging that were split with a line
feed. It is possible to get the old behavior by passing
toText(true). Message::toText() output is unchanged.
(Trac #571, git 7286499d5206c6d2aa8a59a5247c3841a772a43e)
725. [func] tmark
b10-dhcp-ddns D2UpdateMgr now uses the newly implemented
NameAddTransaction and NameRemoveTransaction classes. This allows
it to conduct actual DNS update exchanges based upon queued
NameChangeRequests.
(Trac# 3089, git 9ff948a169e1c1f3ad9e1bad1568375590a3ef42)
724. [bug] marcin
b10-dhcp4: Different server identifiers are used for the packets
being sent through different interfaces. The server uses IPv4 address
assigned to the particular interface as a server identifier. This
guarantees that the unicast packet sent by a relay or a client, to
the address being a server identifier, will reach the server.
(Trac #3231, git c7a229f15089670d2bfde6e9f0530c30ce6f8cf8)
723. [bug] marcin
libdhcp++: Implemented unit tests for the IfaceMgr's routine
which opens IPv6 sockets on detected interfaces. The IfaceMgr
logic performing low level operations on sockets has been
moved to a separate class. By providing a custom implementation
of this class, the unit tests may use fake interfaces with
custom configuration and thus cover wide range of test
scenarios for the function.
(Trac #3251, git 21d2f7ec425f8461b545687104cd76a42da61b2e)
722. [bug] muks
b10-cmdctl now prints a more operator-friendly message when the
address+port that b10-cmdctl listens on is already in use.
(Trac #3227, git 5ec35e37dbb46f66ff0f6a9d9a6a87a393b37934)
721. [func] tmark
Updates the user_chk example hooks shared library with callouts
for packet receive and packet send. Decision outcome now includes
the lease or prefix assigned. The user registry now supports a
default user entry.
(Trac #3207, git 34fddf2e75b80d9e517a8f9c3321aa4878cda795)
720. [func] tmark
Added the initial implementation of the class, NameAddTransaction,
to b10-dhcp-ddns. This class provides a state machine which
implements the logic required to remove forward and reverse DNS
entries as described in RFC 4703, section 5.5. This includes the
ability to construct the necessary DNS requests.
(Trac# 3088, git ca58ac00fce4cb5f46e534d7ffadb2db4e4ffaf3)
719. [func] tomek
b10-dhcp4: Support for sending back client-id (RFC6842) has been
added now. Also a configuration parameter (echo-client-id) has
been added, so it is possible to enable backward compatibility
("echo-client-id false").
(Trac #3210, git 88a4858db206dfcd53a227562198f308f7779a72)
718. [func] dclink, tomek
libdhcp++: Interface detection implemented for FreeBSD, NetBSD,
OpenBSD, Mac OS X and Solaris 11. Thanks to David Carlier for
contributing a patch.
(Trac #2246, git d8045b5e1580a1d0b89a232fd61c10d25a95e769)
717. [bug] marcin
Fixed the bug which incorrectly treated DHCPv4 option codes 224-254 as
standard options, barring them from being used as custom options.
(Trac #2772, git c6158690c389d75686545459618ae0bf16f2cdb8)
716. [func] marcin
perfdhcp: added support for sending DHCPv6 Release messages
at the specified rate and measure performance. The orphan
messages counters are not displayed for individual exchanges
anymore. The following ticket: #3261 has been submitted to
implement global orphan counting for all exchange types.
(Trac #3181, git 684524bc130080e4fa31b65edfd14d58eec37e50)
715. [bug] marcin
libdhcp++: Used the CMSG_SPACE instead of CMSG_LEN macro to calculate
msg_controllen field of the DHCPv6 message. Use of CMSG_LEN causes
sendmsg failures on OpenBSD due to the bug kernel/6080 on OpenBSD.
(Trac #1824, git 39c9499d001a98c8d2f5792563c28a5eb2cc5fcb)
714. [doc] tomek
BIND10 Contributor's Guide added.
(Trac #3109, git 016bfae00460b4f88adbfd07ed26759eb294ef10)
713. [func] tmark
Added DNS update request construction to d2::NameAddTransaction
in b10-dhcp-ddns. The class now generates all DNS update
request variations needed to fulfill its state machine in
compliance with RFC 4703, sections 5.3 and 5.4.
(Trac# 3241, git dceca9554cb9410dd8d12371b68198b797cb6cfb)
712. [func] marcin, dclink
b10-dhcp4: If server fails to open a socket on one interface it
will log a warning and continue to open sockets on other interfaces.
The warning message is communicated from the libdhcp++ via the
error handler function supplied by the DHCPv4 server. Thanks to
David Carlier for providing a patch.
(Trac #2765, git f49c4b8942cdbafb85414a1925ff6ca1d381f498)
711. [func] tmark
Added the initial implementation of the class, NameAddTransaction,
to b10-dhcp-ddns. This class provides the state model logic
described in the DHCP_DDNS design to add or replace forward and
reverse DNS entries for a given FQDN. It does not yet construct
the actual DNS update requests, this will be added under Trac#
3241.
(Trac# 3087, git 8f99da735a9f39d514c40d0a295f751dc8edfbcd)
710. [build] jinmei
Fixed various build time issues for MacOS X 10.9. Those include
some general fixes and improvements:
- (libdns++) masterLoad() functions now use the generic MasterLoader
class as backend, eliminating the restrictions of the previous
versions.
- (libcc) fixed a minor portability bug in the JSON parser. Although
the only known affected system is OS X 10.9 at the moment, that
could potentially cause disruption on other existing and future
systems.
Other notes:
- if built with googletest, gtest 1.7 (and possibly higher) is
required.
- many older versions of Boost don't work. A known workable version
is 1.54.
(Trac #3213, git d4e570f097fe0eb9009b177a4af285cde0c636cc)
709. [bug] marcin
b10-dhcp6: Server crashed when the client sent FQDN option and did
not request FQDN option to be returned.
(Trac #3220, git 0f1ed4205a46eb42ef728ba6b0955c9af384e0be)
708. [bug] dclink, marcin
libdhcpsrv: Fixed a bug in Memfile lease database backend which
caused DHCPv4 server crashes when leases with NULL client id
were present. Thanks to David Carlier for submitting the patch.
(Trac #2940, git a232f3d7d92ebcfb7793dc6b67914299c45c715b)
707. [bug] muks
Using very large numbers (out of bounds) in config values caused
BIND 10 to throw an exception. This has been fixed in a patch
contributed by David Carlier.
(Trac #3114, git 9bd776e36b7f53a6ee2e4d5a2ea79722ba5fe13b)
706. [func] marcin
b10-dhcp4: Server processes the DHCPv4 Client FQDN and Host Name
options sent by a client and generates the response. As a result
of processing, the server generates NameChangeRequests which
represent changes to DNS mappings for a particular lease (addition
or removal of DNS mappings).
Currently all generated NameChangeRequests are dropped. Sending
them to b10-dhcp-ddns will be implemented with the future tickets.
(Trac #3035, git f617e6af8cdf068320d14626ecbe14a73a6da22)
705. [bug]* kean
When commands are piped into bindctl, no longer attempt to query the
user name and password if no default user name and password file is
present, or it contains no valid entries.
(Trac #264, git 4921d7de6b5623c7e85d2baf8bc978686877345b)
704. [func] naokikambe
New statistics items related to IP sockets added into b10-xfrin:
open, openfail, close, connfail, conn, senderr, and recverr.
Their values can be obtained by invoking "Stats show Xfrin" via
bindctl while b10-xfrin is running.
(Trac #2300, git 4655c110afa0ec6f5669bf53245bffe6b30ece4b)
703. [bug] kean
A bug in b10-msgq was fixed where it would remove the socket file if
there was an existing copy of b10-msgq running. It now correctly
detects and reports this without removing the socket file.
(Trac #433, git c18a49b0435c656669e6f87ef65d44dc98e0e726)
702. [func] marcin
perfdhcp: support for sending DHCPv6 Renew messages at the specified
rate and measure performance.
(Trac #3183, git 66f2939830926f4337623b159210103b5a8e2434)
701. [bug] tomek
libdhcp++: Incoming DHCPv6 IAPREFIX option is now parsed properly.
(Trac #3211, git ed43618a2c7b2387d76f99a5a4b1a3e05ac70f5e)
700. [func] tomek, marcin
b10-dhcp4, b10-dhcp6: Support for vendor options has been added. It
is now possible to configure vendor options. Server is able to
parse some CableLabs vendor options and send configured vendor
options in response. The support is not complete.
(Trac #3194, git 243ded15bbed0d35e230d00f4e3ee42c3609616c)
699. [bug] marcin
libdhcp++: Options with defined suboptions are now handled properly.
In particular, Relay Agent Info options is now echoed back properly.
(Trac #3102, git 6f6251bbd761809634aa470f36480d046b4d2a20)
698. [bug] muks
A bug was fixed in the interaction between b10-init and b10-msgq
that caused BIND 10 failures after repeated start/stop of
components.
(Trac #3094, git ed672a898d28d6249ff0c96df12384b0aee403c8
697. [func] tmark
Implements "user_check" hooks shared library which supports subnet
selection based upon the contents of a list of known DHCP lease users
(i.e. clients). Adds the following subdirectories to the bind10 src
directory for maintaining hooks shared libraries:
bind10/src/hooks - base directory for hooks shared libraries;
bind10/src/hooks/dhcp - base directory for all hooks libs
pertaining to DHCP (Kea);
bind10/src/hooks/dhcp/user_check - directory containing the
user_check hooks library.
(Trac #3186, git f36aab92c85498f8511fbbe19fad5e3f787aef68)
696. [func] tomek
b10-dhcp4: It is now possible to specify value of siaddr field
in DHCPv4 responses. It is used to point out to the next
server in the boot process (that typically is TFTP server).
(Trac #3191, git 541922b5300904a5de2eaeddc3666fc4b654ffba)
695. [func] tomek
b10-dhcp6 is now able to listen on global IPv6 unicast addresses.
(Trac #3195, git 72e601f2a57ab70b25d50877c8e49242739d1c9f)
694. [bug] tomek
b10-dhcp6 now handles exceptions better when processing initial
configuration. In particular, errors with socket binding do not
prevent b10-dhcp6 from establishing configuration session anymore.
(Trac #3195, git 72e601f2a57ab70b25d50877c8e49242739d1c9f)
693. [bug] tomek
b10-dhcp6 now handles IPv6 interface enabling correctly.
(Trac #3195, git 72e601f2a57ab70b25d50877c8e49242739d1c9f)
692. [bug] marcin
b10-dhcp4: Fix a bug whereby the Parameter Request List was not parsed
by the server and requested DHCPv4 options were not returned to the
client. Options are not sent back to the client if server failed to
assign a lease.
(Trac #3200, git 50d91e4c069c6de13680bfaaee3c56b68d6e4ab1)
691. [bug] marcin
libdhcp++: Created definitions for standard DHCPv4 options:
tftp-server-name (66) and boot-file-name (67). Also, fixed definition
of DHCPv4 option time-offset (2).
(Trac #3199, git 6e171110c4dd9ae3b1be828b9516efc65c33460b)
690. [bug] tomek
b10-dhcp4: Relay Agent Info option is now echoed back in
DHCPv4 responses.
(Trac #3184, git 287389c049518bff66bdf6a5a49bb8768be02d8e)
689. [func]* marcin
b10-dhcp4 and b10-dhcp6 install callback functions which parse options
in the received DHCP packets.
(Trac #3180, git f73fba3cde9421acbeb9486c615900b0af58fa25)
688. [func] tomek
b10-dhcp6: Prefix Delegation support is now extended to
Renew and Release messages.
(Trac #3153, #3154, git 3207932815f58045acea84ae092e0a5aa7c4bfd7)
687. [func] tomek
b10-dhcp6: Prefix Delegation (IA_PD and IAPREFIX options) is now
supported in Solicit and Request messages.
(Trac #3152, git a0e73dd74658f2deb22fad2c7a1f56d122aa9021)
686. [bug] tomek
b10-dhcp6 now sends back relayed traffic to proper port.
(Trac #3177, git 6b33de4bea92eecb64b6c673bf1b8ae51f8edcf1)
685. [func] tomek
libdhcpsrv: Allocation Engine is now able to handle IPv6 prefixes.
This will be used in Prefix Delegation.
(Trac #3171, git 7d1431b4c887f0c7ee1b26b9b82d3d3b8464b34f)
684. [func] muks, vorner
API support to delete zone data has been added. With this,
DomainTree and RdataSet which form the central zone data
structures of b10-auth allow deletion of names and RR data
respectively.
(Trac #2750, git d3dbe8e1643358d4f88cdbb7a16a32fd384b85b1)
(Trac #2751, git 7430591b4ae4c7052cab86ed17d0221db3b524a8)
683. [bug] stephen
Modifications to fix problems running unit tests if they
are statically linked. This includes provision of an
initialization function that must be called by user-written
hooks libraries if they are loaded by a statically-linked
image.
(Trac #3113, git 3d19eee4dbfabc7cf7ae528351ee9e3a334cae92)
682. [func] naokikambe
New statistics items added into b10-xfrin : ixfr_running,
axfr_running, and soa_in_progress. Their values can be
obtained by invoking "Stats show Xfrin" via bindctl when
b10-xfrin is running.
(Trac #2274, git ca691626a2be16f08754177bb27983a9f4984702)
681. [func] tmark
Added support for prefix delegation configuration to b10-dhcp6
subnets.
(Trac# 3151, git 79a22be33825bafa1a0cdfa24d5cb751ab1ae2d3)
680. [func] marcin
perfdhcp: Added support for requesting IPv6 prefixes using IA_PD
option being sent to the server.
(Trac #3173, git 4cc844f7cc82c8bd749296a2709ef67af8d9ba87)
679. [func] tmark
b10-dhcp-ddns: Finite state machine logic was refactored
into its own class, StateModel.
(Trac# 3156, git 6e9227b1b15448e834d1f60dd655e5633ff9745c)
678. [func] tmark
MySQL backend used by b10-dhcp6 now uses lease type as a
filtering parameter in all IPv6 lease queries.
(Trac# 3147, git 65b6372b783cb1361fd56efe2b3247bfdbdc47ea)
677. [func] tomek
libdhcpsrv: CfgMgr is now able to store IA, TA and PD pools in
Subnet6 structures.
(Trac #3150, git e6f0e89162bac0adae3ce3141437a282d5183162)
676. [bug] muks
We now also allow the short name ("hmac-md5"), along with the long
name ("hmac-md5.sig-alg.reg.int") that was allowed before for
HMAC-MD5, so that it is more convenient to configure TSIG keys
using it.
(Trac #2762, git c543008573eba65567e9c189824322954c6dd43b)
675. [func] vorner
If there's an exception not handled in a Python BIND10 component,
it is now stored in a temporary file and properly logged, instead
of dumping to stderr.
(Trac #3095, git 18cf54ed89dee1dd1847053c5210f0ca220590c2)
674. [func] tomek
Preparatory work for prefix delegation in LeaseMgr. getLease6()
renamed to getLeases6(). It now can return more than one lease.
(Trac #3146, git 05a05d810be754e7a4d8ca181550867febf6dcc6)
673. [func] tomek
libdhcp: Added support for IA_PD and IAPREFIX options. New class
for IAPREFIX (Option6_IAPrefix) has been added.
(Trac #3145, git 3a844e85ecc3067ccd1c01841f4a61366cb278f4)
672. [func] tmark
Added b10-dhcp-ddns transaction base class, NameChangeTransaction.
This class provides the common structure and methods to implement
the state models described in the DHCP_DDNS design, plus
integration with DNSClient and its callback mechanism for
asynchronous IO with the DNS servers.
(Trac #3086, git 079b862c9eb21056fdf957e560b8fe7b218441b6)
671. [func] dclink, tomek
The memfile backend now supports getLease4(hwaddr) and
getLease4(client-id) methods. Thanks to David Carlier for
contributing a patch.
(Trac #2592, git a11683be53db2f9f8f9b71c1d1c163511e0319b3)
670. [func] marcin
libdhcpsrv: Added support to MySQL lease database backend to
store FQDN data for the lease.
(Trac #3084, git 79b7d8ee017b57a81cec5099bc028e1494d7e2e9)
669. [func] tmark
Added main process event loop to D2Process which is the primary
application object in b10-dhcp-ddns. This allows DHCP-DDNS
to queue requests received from clients for processing while
listening for command control events.
(Trac #3075 git e2f9d2e4c1b36f01eb5bfa2c4f8d55cf139c7e02)
668. [func] marcin
libdhcpsrv: Implemented changes to lease allocation engine to
propagate information about client's FQDN.
(Trac #3083, git 37af28303d1cd61f675faea969cd1159df65bf9d)
667. [func] tomek
Additional hooks (buffer4_receive, lease4_renew,
lease4_release, buffer4_send) added to the DHCPv4 server.
(Trac #2983, git fd47f18f898695b98623a63a0a1c68d2e4b37568)
666. [func] vorner
The CmdCtl's command "print_settings" was removed. It served no real
purpose and was just experimental leftover from early development.
(Trac #3028, git 0d22246092ad4822d48f5a52af5f644f5ae2f5e2)
665. [doc] stephen
Added the "Hook's Maintenance Guide" to the BIND 10 developer
documentation.
(Trac #3063, git 5d1ee7b7470fc644b798ac47db1811c829f5ac24)
664. [bug] tmark
Corrects a bug in Hooks processing that was improperly
creating a new callout handle on every call, rather
than maintaining it throughout the context of the
packet being processed.
(Trac #3062, git 28684bcfe5e54ad0421d75d4445a04b75358ce77)
663. [func] marcin
b10-dhcp6: Server processes the DHCPv6 Client FQDN Option
sent by a client and generates the response. The DHCPv6 Client
FQDN Option is represented by the new class in the libdhcp++.
As a result of FQDN Option processing, the server generates
NameChangeRequests which represent changes to DNS mappings for
a particular lease (addition or removal of DNS mappings).
Currently all generated NameChangeRequests are dropped. Sending
them to b10-dhcp-ddns will be implemented with the future tickets.
(Trac #3036, git 209f3964b9f12afbf36f3fa6b62964e03049ec6e)
662. [func] marcin
libdhcp++: Implemented an Option4ClientFqdn class which represents
DHCPv4 Client FQDN Option (code 81) defined in RFC4702. This class
supports the domain name encoding in canonical FQDN format as well
as in deprecated ASCII format.
(Trac# 3082, git 1b434debfbf4a43070eb480fa0975a6eff6429d4)
661. [func] stephen
Copy additional header files to the BIND 10 installation directory
to allow the building of DHCP hooks libraries against an installed
version of BIND 10.
(Trac #3092, git e9beef0b435ba108af9e5979476bd2928808b342)
660. [func] fujiwara
src/lib/cc: Integer size of C++ CC library is changed to int64_t.
b10-auth: The size of statistics counters is changed to uint64_t.
b10-auth sends lower 63 bit of counter values to b10-stats.
(Trac #3015, git e5b3471d579937f19e446f8a380464e0fc059567
and Trac #3016, git ffbcf9833ebd2f1952664cc0498608b988628d53)
659. [func] stephen
Added capability to configure the hooks libraries for the
b10-dhcp4 and b10-dhcp6 servers through the BIND 10
configuration mechanism.
(Trac #2981, git aff6b06b2490fe4fa6568e7575a9a9105cfd7fae)
658. [func]* vorner
The resolver, being experimental, is no longer installed by default.
If you really want to use it, even when it is known to be buggy, use
the ./configure --enable-experimental-resolver option.
(Trac #3064, git f5f07c976d2d42bdf80fea4433202ecf1f260648)
657. [bug] vorner
Due to various problems with older versions of boost and
shared memory, the server rejects to compile with combination
of boost < 1.48 and shared memory enabled. Most users don't
need shared memory, admins of large servers are asked to
upgrade boost.
(Trac #3025, git 598e458c7af7d5bb81131112396e4c5845060ecd)
656. [func] tomek
Additional hooks (buffer6_receive, lease6_renew,
lease6_release, buffer6_send) added to the DHCPv6 server.
(Trac #2984, git 540dd0449121094a56f294c500c2ed811f6016b6)
655. [func] tmark
Added D2UpdateMgr class to b10-dhcp-ddns. This class is
the b10-dhcp-ddns task master, instantiating and supervising
transactions that carry out the DNS updates needed to
fulfill the requests (NameChangeRequests) received from
b10-dhcp-ddns clients (e.g. DHCP servers).
(Trac #3059 git d72675617d6b60e3eb6160305738771f015849ba)
654. [bug] stephen
Always clear "skip" flag before calling any callouts on a hook.
(Trac# 3050, git ff0b9b45869b1d9a4b99e785fbce421e184c2e93)
653. [func] tmark
Added initial implementation of D2QueueMgr to
b10-dhcp-ddns. This class manages the receipt and
queuing of requests received by b10-dhcp-ddns from
its clients (e.g. DHCP servers)
(Trac# 3052, git a970f6c5255e000c053a2dc47926cea7cec2761c)
652. [doc] stephen
Added the "Hook Developer's Guide" to the BIND 10 developer
documentation.
(Trac# 2982, git 26a805c7e49a9ec85ee825f179cda41a2358f4c6)
651. [bug] muks
A race condition when creating cmdctl certificates caused corruption
of these certificates in rare cases. This has now been fixed.
(Trac# 2962, git 09f557d871faef090ed444ebeee7f13e142184a0)
650. [func] muks
The DomainTree rebalancing code has been updated to be more
understandable. This ChangeLog entry is made just to make a note
of this change. The change should not cause any observable
difference whatsoever.
(Trac# 2811, git 7c0bad1643af13dedf9356e9fb3a51264b7481de)
649. [func] muks
The default b10-xfrout also_notify port has been changed from
0 to 53.
(Trac# 2925, git 8acbf043daf590a9f2ad003e715cd4ffb0b3f979)
648. [func] tmark
Moved classes pertaining to sending and receiving
NameChangeRequests from src/bin/d2 into their own library,
libdhcp_ddns, in src/lib/dhcp_ddns. This allows the
classes to be shared between DHDCP-DDNS and its clients,
such as the DHCP servers.
(Trac# 3065, git 3d39bccaf3f0565152ef73ec3e2cd03e77572c56)
647. [func] tmark
Added initial implementation of classes for sending
and receiving NameChangeRequests between DHCP-DDNS
and its clients such as DHCP. This includes both
abstract classes and a derivation which traffics
requests across UDP sockets.
(Trac #3008, git b54530b4539cec4476986442e72c047dddba7b48)
646. [func] stephen
Extended the hooks framework to add a "validate libraries" function.
This will be used to check libraries specified during BIND 10
configuration.
(Trac #3054, git 0f845ed94f462dee85b67f056656b2a197878b04)
645. [func] tomek
Added initial set of hooks (pkt4_receive, subnet4_select,
lease4_select, pkt4_send) to the DHCPv4 server.
(Trac #2994, git be65cfba939a6a7abd3c93931ce35c33d3e8247b)
644. [func] marcin
b10-dhcp4, b10-dhcp6: Implemented selection of the interfaces
that server listens on, using Configuration Manager. It is
possible to specify interface names explicitly or use asterisk
to specify that server should listen on all available interfaces.
Sockets are reopened according to the new configuration as
soon as it is committed.
(Trac #1555, git f48a3bff3fbbd15584d788a264d5966154394f04)
643. [bug] muks
When running some unittests as root that depended on insufficient
file permissions, the tests used to fail because the root user
could still access such files. Such tests are now skipped when
they are run as the root user.
(Trac #3056, git 92ebabdbcf6168666b03d7f7fbb31f899be39322)
642. [func] tomek
Added initial set of hooks (pkt6_receive, subnet6_select,
lease6_select, pkt6_send) to the DHCPv6 server.
(Trac #2995, git d6de376f97313ba40fef989e4a437d184fdf70cc)
641. [func] stephen
Added the hooks framework. This allows shared libraries of
user-written functions to be loaded at run-time and the
functions called during packet processing.
(Trac #2980, git 82c997a72890a12af135ace5b9ee100e41c5534e)
640. [func] marcin
b10-dhcp-ddns: Implemented DNSClient class which implements
asynchronous DNS updates using UDP. The TCP and TSIG support
will be implemented at later time. Nevertheless, class API
accommodates the use of TCP and TSIG.
(Trac #2977, git 5a67a8982baa1fd6b796c063eeb13850c633702c)
639. [bug] muks
Added workaround for build failure on Fedora 19 between GCC 4.8.x
and boost versions less than 1.54. Fedora 19 currently ships
boost-1.53.
(Trac #3039, git 4ef6830ed357ceb859ebb3e5e821a064bd8797bb)
638. [bug]* naokikambe
Per-zone statistics counters are distinguished by zone class,
e.g. IN, CH, and HS. A class name is added onto a zone name in
structure of per-zone statistics.
(Trac #2884, git c0153581c3533ef045a92e68e0464aab00947cbb)
637. [func] tmark
Added initial implementation of NameChangeRequest,
which embodies DNS update requests sent to DHCP-DDNS
by its clients.
(trac3007 git f33bdd59c6a8c8ea883f11578b463277d01c2b70)
636. [func] tmark
Added the initial implementation of configuration parsing for
DHCP-DDNS.
(Trac #2957, git c04fb71fa44c2a458aac57ae54eeb1711c017a49)
635. [func] marcin
b10-dhcp-ddns: Implemented DNS Update message construction.
(Trac #2796, git eac5e751473e238dee1ebf16491634a1fbea25e2)
634. [bug] muks
When processing DDNS updates, we now check the zone more
thoroughly with the received zone data updates to check if it is
valid. If the zone fails validation, we reply with SERVFAIL
rcode. So, while previously we may have allowed more zone data
cases without checking which resulted in invalid zones, such
update requests are now rejected.
(Trac #2759, git d8991bf8ed720a316f7506c1dd9db7de5c57ad4d)
633. [func] jinmei
b10-memmgr: a new BIND 10 module that manages shared memory
segments for DNS zone data. At this point it's runnable but does
nothing really meaningful for end users; it was added to the
master branch for further development.
(Trac #2854, git d05d7aa36d0f8f87b94dba114134b50ca37eabff)
632. [bug] marcin
perfdhcp: Fixed a bug in whereby the application was sporadically
crashing when timed out packets were garbage collected.
(Trac #2979, git 6d42b333f446eccc9d0204bcc04df38fed0c31db)
631. [bug] muks
Applied a patch by Tomas Hozza to fix a couple of compile errors
on Fedora 19 development release.
(Trac #3001, git 6e42b90971b377261c72d51c38bf4a8dc336664a)
630. [bug] muks
If there is a problem loading the backend module for a type of
data source, b10-auth would not serve any zones. This behaviour
has been changed now so that it serves zones from all other usable
data sources that were configured.
(Trac #2947, git 9a3ddf1e2bfa2546bfcc7df6d9b11bfbdb5cf35f)
629. [func] stephen
Added first part of the hooks framework.
(Trac #2794, git d2b107586db7c2deaecba212c891d231d7e54a07)
628. [func] y-aharen
b10-auth: A new statistics item 'qryrecursion' has been introduced.
The counter is for the number of queries (OpCode=Query) with Recursion
Desired (RD) bit on.
(Trac #2796, git 3d291f42cdb186682983aa833a1a67cb9e6a8434)
627. [func] tmark
Logger name for DHCP-DDNS has been changed from "d2_logger" to
"dhcpddns". In addition, its log messages now use two suffixes,
DCTL_ for logs the emanate from the underlying base classes, and
DHCP_DDNS_ for logs which emanate from DHCP-DDNS specific code
(Trac #2978, git 5aec5fb20b0486574226f89bd877267cb9116921)
626. [func] tmark
Created the initial implementation of DHCP-DDNS service
controller class, D2Controller, and the abstract class from
which it derives, DControllerBase. D2Controller manages the
lifecycle and BIND10 integration of the DHCP-DDNS application
process, D2Process. Also note, module name is now
b10-dhcp-ddns.
(Trac #2956, git a41cac582e46213c120b19928e4162535ba5fe76)
625. [bug]* jinmei
b10-xfrin/b10-loadzone: b10-xfrin now refers to the unified
"data_sources" module configuration instead of almost-deprecated
the Auth/database_file configuration (Note: zonemgr still uses the
latter, so a secondary server would still need it for the moment).
Due to this change, b10-xfrin does not auto-generate an initial
zone for the very first transfer anymore; b10-loadzone has been
extended with a new -e option for the initial setup.
(Trac #2946, git 8191aec04c5279c199909f00f0a0b2b8f7bede94)
624. [bug] jinmei
logging: prevented multiple BIND 10 processes from generating
multiple small log files when they dumped logs to files and try
to roll over them simultaneously. This fix relies on a feature of
underling logging library (log4cplus) version 1.1.0 or higher,
so the problem can still happen if BIND 10 is built with an older
version of log4cplus. (But this is expected to happen rarely in
any case unless a verbose debug level is specified).
(Trac #1622, git 5da8f8131b1224c99603852e1574b2a1adace236)
623. [func] tmark
Created the initial, bare-bones implementation of DHCP-DDNS
service process class, D2Process, and the abstract class
from which it derives, DProcessBase. D2Process will provide
the DHCP-DDNS specific event loop and business logic.
(Trac #2955, git dbe4772246039a1257b6492936fda2a8600cd245)
622. [func]* jinmei
b10-xfrin now has tighter control on the choice of IXFR or AXFR
through zones/request_ixfr configuration item. It includes
the new "IXFR only" behavior for some special cases. b10-xfrin
now also uses AXFR whenever necessary, so it is now safe to try
IXFR by default and it's made the default. The previous
use_ixfr configuration item was deprecated and triggers startup
failure if specified; configuration using use_ixfr should be
updated.
(Trac #2911, git 8118f8e4e9c0ad3e7b690bbce265a163e4f8767a)
621. [func] team
libdns++: All Rdata classes now use the generic lexer in
constructors from text. This means that the name fields in such
RRs in a zone file can now be non-absolute (the origin name in that
context will be used), e.g., when loaded by b10-loadzone. Note
that the existing string constructors for these Rdata classes also
use the generic lexer, and they now expect an absolute name (with
the trailing '.') in the name fields.
(Trac #2522, git ea97070cf6b41299351fc29af66fa39c6465d56a)
(Trac #2521, git c6603decaadcd33ccf9aee4a7b22447acec4b7f6)
(See also ChangeLog 594, 564, 545)
620. [bug] jinmei
b10-auth now returns SERVFAIL to queries for a zone that is
configured to be loaded in-memory but isn't due to load time
errors (missing zone file or errors in the zone file, etc).
Such zones were previously treated as non existent and would
result in REFUSED or unintentional match against less specific
zones. The revised behavior is also compatible with BIND 9.
(Trac #2905, git 56ee9810fdfb5f86bd6948e6bf26545ac714edd8)
619. [bug] jinmei
b10-xfrout now uses blocking send for xfr response messages
to prevent abrupt termination of the stream due to a slower
client or narrower network bandwidth.
(Trac #2934, git bde0e94518469557c8b455ccbecc079a38382afd)
618. [func]* marcin
b10-dhcp4: Added the ability for the server to respond to a
directly connected client which does not yet have an IP address.
On Linux, the server will unicast the response to the client's
hardware address and the 'yiaddr' (the client's new IP
address). Sending a response to the unicast address prevents other
(not interested) hosts from receiving the server response. This
capability is not yet implemented on non-Linux Operating Systems
where, in all cases, the server responds to the broadcast
address. The logic conforms to section 4.1 of RFC 2131.
(Trac #2902, git c2d40e3d425f1e51647be6a717c4a97d7ca3c29c)
617. [bug] marcin
b10-dhcp4: Fixed a bug whereby the domain-name option was encoded
as FQDN (using technique described in RFC1035) instead of a string.
Also, created new class which represents an option carrying a single
string value. This class is now used for all standard options of
this kind.
(Trac #2786, git 96b1a7eb31b16bf9b270ad3d82873c0bd86a3530)
616. [doc] stephen
Added description to the DHCP "Database Back-Ends" section of the
BIND 10 Developer's Guide about how to set up a MySQL database for
testing the DHCP MySQL backend.
(Trac #2653, git da3579feea036aa2b7d094b1c260a80a69d2f9aa)
615. [bug] jinmei
b10-auth: Avoid referencing to a freed object when authoritative
server addresses are reconfigured. It caused a crash on a busy
server during initial startup time, and the same crash could also
happen if listen_on parameters are reconfigured at run time.
(Trac #2946, git d5f2a0d0954acd8bc33aabb220fab31652394fcd)
614. [func] tmark
b10-d2: Initial DHCP-DDNS (a.k.a. D2) module implemented.
Currently it does nothing useful, except for providing the
skeleton implementation to be expanded in the future.
(Trac #2954, git 392c5ec5d15cd8c809bc9c6096b9f2bfe7b8c66a)
613. [func] jinmei
datasrc: Error handling in loading zones into memory is now more
consistent and convenient: data source configuration does not fail
due to zones configured to be loaded into memory but not available
in the data source, just like the case of missing zone file for
the MasterFiles type of data source. Also, zones that aren't
loaded into memory due to errors can now be reloaded for b10-auth
using the bindctl Auth loadzone command after fixing the error,
without reconfiguring the entire data source.
(Trac #2851, git a3d4fe8a32003534150ed076ea0bbf80e1fcc43c)
612. [func] tomek
b10-dhcp6: Support for relayed DHCPv6 traffic has been added.
(Trac #2898, git c3f6b67fa16a07f7f7ede24dd85feaa7c157e1cb)
611. [func] naokikambe
Added Xfrin statistics items such as the number of successful
transfers. These are per-zone type counters. Their values can be
obtained with zone names by invoking "Stats show Xfrin" via bindctl
while Xfrin is running.
(Trac #2252, git e1a0ea8ef5c51b9b25afa111fbfe9347afbe5413)
bind10-1.1.0beta2 released on May 10, 2013
610. [bug] muks
When the sqlite3 program is not available on the system (in
PATH), we no longer attempt to run some tests which depend
on it.
(Trac #1909, git f85b274b85b57a094d33ca06dfbe12ae67bb47df)
609. [bug] jinmei
Handled some rare error cases in DNS server classes correctly.
This fix specifically solves occasional crash of b10-auth due to
errors caused by TCP DNS clients. Also, as a result of cleanups
with the fix, b10-auth should now be a little bit faster in
handling UDP queries: in some local experiments it ran about 5%
faster.
(Trac #2903, git 6d3e0f4b36a754248f8a03a29e2c36aef644cdcc)
608. [bug] jinmei
b10-cmdctl: fixed a hangup problem on receiving the shutdown
command from bindctl. Note, however, that cmdctl is defined as
a "needed" module by default, so shutting down cmdctl would cause
shutdown of the entire BIND 10 system anyway, and is therefore
still not very useful in practice.
(Trac #2712, git fa392e8eb391a17d30550d4b290c975710651d98)
607. [bug] jinmei
Worked around some unit test regressions on FreeBSD 9.1 due to
a binary compatibility issue between standard and system
libraries (http://www.freebsd.org/cgi/query-pr.cgi?pr=175453).
While not all tests still pass, main BIND 10 programs should
generally work correctly. Still, there can be odd run time
behavior such as abrupt crash instead of graceful shutdown
when some fatal event happens, so it's generally discouraged to
use BIND 10 on FreeBSD 9.1 RELEASE. According to the above
bug report for FreeBSD, it seems upgrading or downgrading the
FreeBSD version will solve this problem.
(Trac #2887, git 69dfb4544d9ded3c10cffbbfd573ae05fdeb771f)
606. [bug] jinmei
b10-xfrout now correctly stops sending notify requests once it
receives a valid response. It previously handled it as if the
requests are timed out and resent it a few times in a short
period.
(Trac #2879, git 4c45f29f28ae766a9f7dc3142859f1d0000284e1)
605. [bug] tmark
Modified perfdhcp to calculate the times displayed for packet sent
and received as time elapsed since perfdhcp process start time.
Previously these were times since the start of the epoch.
However the large numbers involved caused loss of precision
in the calculation of the test statistics.
(Trac #2785, git e9556924dcd1cf285dc358c47d65ed7c413e02cf)
604. [func] marcin
libdhcp++: abstracted methods which open sockets and send/receive
DHCP4 packets to a separate class. Other classes will be derived
from it to implement OS-specific methods of DHCPv4 packets filtering.
The primary purpose for this change is to add support for Direct
DHCPv4 response to a client which doesn't have an address yet on
different OSes.
(Trac #991, git 33ffc9a750cd3fb34158ef676aab6b05df0302e2)
603. [func] tmark
The directory in which the b10-dhcp4 and b10-dhcp6 server id files has
been changed from the local state directory (set by the "configure"
--localstatedir switch) to the "bind10" subdirectory of it. After an
upgrade, server id files in the former location will be orphaned and
should be manually removed.
(Trac #2770, git a622140d411b3f07a68a1451e19df36118a80650)
602. [bug] tmark
Perfdhcp will now exit gracefully if the command line argument for
IP version (-4 or -6) does not match the command line argument
given for the server. Prior to this perfdhcp would core when given
an IP version of -6 but a valid IPv4 address for server.
(Trac #2784, git 96b66c0c79dccf9a0206a45916b9b23fe9b94f74)
601. [bug]* jinmei, vorner
The "delete record" interface of the database based data source
was extended so that the parameter includes reversed name in
addition to the actual name. This may help the underlying
accessor implementation if reversed names are more convenient
for the delete operation. This was the case for the SQLite3
accessor implementation, and it now performs delete operations
much faster. At a higher level, this means IXFR and DDNS Updates
to the sqlite3 database are no longer so slow on large zones as
they were before.
(Trac #2877, git 33bd949ac7288c61ed0a664b7329b50b36d180e5)
600. [bug] tmark
Changed mysql_lease_mgr to set the SQL mode option to STRICT. This
causes mysql it to treat invalid input data as an error. Rather than
"successfully" inserting a too large value by truncating it, the
insert will fail, and the lease manager will throw an exception.
Also, attempts to create a HWAddr (hardware address) object with
too long an array of data now throw an exception.
(Trac #2387, git cac02e9290600407bd6f3071c6654c1216278616)
599. [func] tomek
libdhcp++: Pkt6 class is now able to parse and build relayed DHCPv6
messages.
(Trac #2827, git 29c3f7f4e82d7e85f0f5fb692345fd55092796b4)
bind10-1.1.0beta1 released on April 4, 2013
598. [func]* jinmei
The separate "static" data source is now deprecated as it can be
served in the more generic "MasterFiles" type of data source.
This means existing configuration may not work after an update.
If "config show data_sources/classes/CH[0]" on bindctl contains a
"static" type of data source, you'll need to update it as follows:
> config set data_sources/classes/CH[0]/type MasterFiles
> config set data_sources/classes/CH[0]/params {"BIND": =>
"<the value of current data_sources/classes/CH[0]/params>"}
> config set data_sources/classes/CH[0]/cache-enable true
> config commit
(Same for CH[1], CH[2], IN[0], etc, if applicable, although it
should be very unlikely in practice. Also note: '=>' above
indicates the next line is actually part of the command. Do
not type in this "arrow").
(Part of Trac #2833, git 0363b4187fe3c1a148ad424af39e12846610d2d7)
597. [func] tmark
b10-dhcp6: Added unit tests for handling requests when no
IPv6 subnets are configured/defined. Testing these conditions
was overlooked during implementation of Trac #2719.
(Trac #2721, git ce7f53b2de60e2411483b4aa31c714763a36da64)
596. [bug] jinmei
Added special handling for the case where b10-auth receives a
NOTIFY message, but zonemgr isn't running. Previously this was
logged as a communications problem at the ERROR level, resulting
in increasing noise when zonemgr is intentionally stopped. Other
than the log level there is no change in externally visible
behavior.
(Trac #2562, git 119eed9938b17cbad3a74c823aa9eddb7cd337c2)
595. [bug] tomek
All DHCP components now gracefully refuse to handle too short
DUIDs and client-id.
(Trac #2723, git a043d8ecda6aff57922fe98a33c7c3f6155d5d64)
594. [func] muks, pselkirk
libdns++: the NSEC, DS, DLV, and AFSDB Rdata classes now use the
generic lexer in constructors from text. This means that the name
fields in such RRs in a zone file can now be non-absolute (the
origin name in that context will be used), e.g., when loaded by
b10-loadzone.
(Trac #2386, git dc0f34afb1eccc574421a802557198e6cd2363fa)
(Trac #2391, git 1450d8d486cba3bee8be46e8001d66898edd370c)
593. [func] jelte
Address + port output and logs is now consistent according to our
coding guidelines, e.g. <address>:<port> in the case of IPv4, and
[<address>]:<port> in the case of IPv6, instead of <address>#<port>
(Trac #1086, git bcefe1e95cdd61ee4a09b20522c3c56b315a1acc)
592. [bug] jinmei
b10-auth and zonemgr now handle some uncommon NOTIFY messages more
gracefully: auth immediately returns a NOTAUTH response if the
server does not have authority for the zone (the behavior
compatible with BIND 9) without bothering zonemgr; zonemgr now
simply skips retransfer if the specified zone is not in its
secondary zone list, instead of producing noisy error logs.
(Trac #1938, git 89d7de8e2f809aef2184b450e7dee1bfec98ad14)
591. [func] vorner
Ported the remaining tests from the old shell/perl based system to
lettuce. Make target `systest' is now gone. Currently, the lettuce
tests are in git only, not part of the release tarball.
(Trac #2624, git df1c5d5232a2ab551cd98b77ae388ad568a683ad)
590. [bug] tmark
Modified "include" statements in DHCP MySQL lease manager code to
fix build problems if MySQL is installed in a non-standard location.
(Trac #2825, git 4813e06cf4e0a9d9f453890557b639715e081eca)
589. [bug] jelte
b10-cmdctl now automatically re-reads the user accounts file when
it is updated.
(Trac #2710, git 16e8be506f32de668699e6954f5de60ca9d14ddf)
588. [bug]* jreed
b10-xfrout: Log message id XFROUT_QUERY_QUOTA_EXCEEDED
changed to XFROUT_QUERY_QUOTA_EXCEEDED.
(git be41be890f1349ae4c870a887f7acd99ba1eaac5)
587. [bug] jelte
When used from python, the dynamic datasource factory now
explicitly loads the logging messages dictionary, so that correct
logging messages does not depend on incidental earlier import
statements. Also, the sqlite3-specific log messages have been moved
from the general datasource library to the sqlite3 datasource
(which also explicitly loads its messages).
(Trac #2746, git 1c004d95a8b715500af448683e4a07e9b66ea926)
586. [func] marcin
libdhcp++: Removed unnecessary calls to the function which
validates option definitions used to create instances of options
being decoded in the received packets. Eliminating these calls
lowered the CPU utilization by the server by approximately 10%.
Also, added the composite search indexes on the container used to
store DHCP leases by Memfile backend. This resulted in the
significant performance rise when using this backend to store
leases.
(Trac #2701, git b96a30b26a045cfaa8ad579b0a8bf84f5ed4e73f)
585. [func] jinmei, muks
The zone data loader now accepts RRs in any order during load.
Before it used to reject adding non-consecutive RRsets. It
expected records for a single owner name and its type to be
grouped together. These restrictions are now removed. It now also
suppresses any duplicate RRs in the zone file when loading them
into memory.
(Trac #2440, git 232307060189c47285121f696d4efb206f632432)
(Trac #2441, git 0860ae366d73314446d4886a093f4e86e94863d4)
584. [bug] jinmei
Fixed build failure with Boost 1.53 (and probably higher) in the
internal utility library. Note that with -Werror it may still
fail, but it's due to a Boost bug that is reportedly fixed in their
development trunk. See https://svn.boost.org/trac/boost/ticket/8080
Until the fix is available in a released Boost version you may need
to specify the --without-werror configure option to build BIND 10.
(Trac #2764, git ca1da8aa5de24358d7d4e7e9a4625347457118cf)
583. [func]* jelte
b10-cmdctl-usermgr has been updated and its options and arguments
have changed; it now defaults to the same accounts file as
b10-cmdctl defaults to. It can now be used to remove users from the
accounts file as well, and it now accepts command-line arguments to
specify the username and password to add or remove, in which case
it will not prompt for them.
Note that using a password on the command line is not recommended,
as this can be viewed by other users.
(Trac #2713, git 9925af3b3f4daa47ba8c2eb66f556b01ed6f0502)
582. [func] naokikambe
New statistics items related unixdomain sockets added into Xfrout :
open, openfail, close, bindfail, acceptfail, accept, senderr, and
recverr. Their values can be obtained by invoking "Stats show Xfrout"
via bindctl while Xfrout is running.
(Trac #2225, git 6df60554683165adacc2d1c3d29aa42a0c9141a1)
581. [func]* y-aharen
Added statistics items in b10-auth based on
http://bind10.isc.org/wiki/StatisticsItems. Qtype counters are
dropped as it requires further spec design discussion.
(Trac #2154, Trac #2155,
git 61d7c3959eb991b22bc1c0ef8f4ecb96b65d9325)
(Trac #2157, git e653adac032f871cbd66cd500c37407a56d14589)
bind10-1.0.0-rc released on February 14, 2013
580. [func]* muks
There is no longer a default user account. The old default account
with username 'root' has been removed. In a fresh installation of
BIND 10, the administrator has to configure a user account using
the b10-cmdctl-usermgr program.
(Trac #2641, git 54e8f4061f92c2f9e5b8564240937515efa6d934)
579. [bug] jinmei
libdatasrc/b10-auth: corrected some corner cases in query handling
of in-memory data source that led to the following invalid/odd
responses from b10-auth:
- duplicate RRs in answer and additional for type ANY query
- incorrect NSEC for no error, no data (NXRRSET) response that
matches a wildcard
(Trac #2585, git abe78fae4ba3aca5eb01806dd4e05607b1241745)
578. [bug] jinmei
b10-auth now returns closest encloser NSEC3 proof to queries for
an empty non terminal derived from an Opt-Out NSEC3 RR, as clarified
in errata 3441 for RFC5155. Previously it regarded such case as
broken zone and returned SERVFAIL.
(Trac #2659, git 24c235cb1b379c6472772d340e21577c3460b742)
577. [func] muks
Added an SQLite3 index on records(rname, rdtype). This decreases
insert performance by ~28% and adds about ~20% to the file size,
but increases zone iteration performance. As it introduces a new
index, a database upgrade would be required.
(Trac #1756, git 9b3c959af13111af1fa248c5010aa33ee7e307ee)
576. [bug] tmark, tomek
b10-dhcp6: Fixed bug when the server aborts operation when
receiving renew and there are no IPv6 subnets configured.
(Trac #2719, git 3132b8b19495470bbfd0f2ba0fe7da443926034b)
575. [bug] marcin
b10-dhcp6: Fixed the bug whereby the subnet for the incoming
packet was selected using only its source address. The subnet
is now selected using either source address or the name of the
server's interface on which the packet has been received.
(Trac #2704, git 1cbacf19a28bdae50bb9bd3767bca0147fde37ed)
574. [func] tmark
b10-dhcp4, b10-dhcp6: Composite key indexes were added to the lease
tables to reduce lease search time. The lease4 table now has two
additional indexes: a) hwaddr/subnet_id and b) client_id/subnet_id.
The lease6 now has the one additional index: iaid/subnet_id/duid.
Adding these indexes significantly improves lease acquisition
performance.
(Trac #2699, #2703, git 54bbed5fcbe237c5a49b515ae4c55148723406ce)
573. [bug] stephen
Fixed problem whereby the DHCP server crashed if it ran out of
addresses. Such a condition now causes a packet to be returned
to the client refusing the allocation of an address.
(Trac #2681, git 87ce14cdb121b37afb5b1931af51bed7f6323dd6)
572. [bug] marcin
perfdhcp: Fixed bug where the command line switches used to
run the perfdhcp where printed as ASCII codes.
(Trac #2700, git b8d6b949eb7f4705e32fbdfd7694ca2e6a6a5cdc)
571. [build] jinmei
The ./configure script can now handle output from python-config
--ldflags that contains a space after -L switches. This fixes
failure reported on some Solaris environments.
(Trac #2661, git e6f86f2f5eec8e6003c13d36804a767a840d96d6)
570. [bug] tmark, marcin, tomek
b10-dhcp4: Address renewal now works properly for DHCPv4 clients
that do not send client ID.
(Trac #2702, git daf2abe68ce9c111334a15c14e440730f3a085e2)
569. [bug] tomek
b10-dhcp4: Fix bug whereby a DHCP packet without a client ID
could crash the MySQL lease database backend.
(Trac #2697, git b5e2be95d21ed750ad7cf5e15de2058aa8bc45f4)
568. [func] muks
Various message IDs have been renamed to remove the word 'ERROR'
from them when they are not logged at ERROR severity level.
(Trac #2672, git 660a0d164feaf055677f375977f7ed327ead893e)
567. [doc] marcin, stephen, tomek
Update DHCP sections of the BIND 10 guide.
(Trac #2657, git 1d0c2004865d1bf322bf78d13630d992e39179fd)
566. [func]* jinmei
libdns++/Python isc.dns: In Python isc.dns, function style
constants for RRType, RRClass, Rcode and Opcode were deprecated
and replaced with straightforward object constants, e.g., from
RRType.AAAA() to RRType.AAAA. This is a backward incompatible
change (see the Trac ticket for a conversion script if needed).
Also, these constants are now more consistent between C++
and Python, and RRType constants for all currently standardized
types are now supported (even if Rdata for these are not yet
available).
(Trac #1866 and #2409, git e5005185351cf73d4a611407c2cfcd163f80e428)
565. [func]* jelte
The main initializer script (formerly known as either 'bind10',
'boss', or 'bob'), has been renamed to b10-init (and Init in
configuration). Configuring which components are run is henceforth
done through '/Init/components', and the sbin/bind10 script is now
simply a shellscript that runs b10-init. Existing configuration is
automatically updated. NOTE: once configuration with this update
has been saved (by committing any new change with bindctl), you
cannot run older versions of BIND 10 anymore with this configuration.
(Trac #1901, git bae3798603affdb276f370c1ac6b33b011a5ed4f)
564. [func] muks
libdns++: the CNAME, DNAME, MX, NS, PTR and SRV Rdata classes now
use the generic lexer in constructors from text. This means that
the name fields in such RRs in a zone file can now be non-absolute
(the origin name in that context will be used), e.g., when loaded
by b10-loadzone. One additional change to the libdns++ API is that
the existing string constructors for these Rdata classes also use
the generic lexer, and they now expect an absolute name (with the
trailing '.') in the name fields.
(Trac #2390, git a01569277cda3f78b1171bbf79f15ecf502e81e2)
(Trac #2656, git 5a0d055137287f81e23fbeedd35236fee274596d)
563. [build] jinmei
Added --disable-rpath configure option to avoid embedding library
paths to binaries. Patch from Adam Tkac.
(Trac #2667, git 1c50c5a6ee7e9675e3ab154f2c7f975ef519fca2)
562. [func]* vorner
The b10-xfrin now performs basic sanity check on just received
zone. It'll reject severely broken zones (such as missing NS
records).
(Trac #2439, git 44699b4b18162581cd1dd39be5fb76ca536012e6)
561. [bug] kambe, jelte
b10-stats-httpd no longer dumps request information to the console,
but uses the bind10 logging system. Additionally, the logging
identifiers have been changed from STATHTTPD_* to STATSHTTPD_*
(Trac #1897, git 93716b025a4755a8a2cbf250a9e4187741dbc9bb)
560. [bug] jinmei
b10-auth now sets the TTL of SOA RR for negative responses to
the minimum of the RR TTL and the minimum TTL of the SOA RDATA
as specified in RFC2308; previously the RR TTL was always used.
The ZoneFinder class was extended partly for implementing this
and partly for allowing further optimization.
(Trac #2309 and #2635, git ee17e979fcde48b59d91c74ac368244169065f3b)
559. [bug] jelte
b10-cmdctl no longer aborts on basic file issues with its https
certificate or private key file. It performs additional checks, and
provides better error logs if these fail. Additionally, bindctl
provides a better error report if it is unable to connect over
https connection. This issue could occur if BIND 10 was installed
with root privileges but then started as a normal user.
(Trac #2595, git 09b1a2f927483b407d70e98f5982f424cc872149)
558. [func] marcin
b10-dhcp4: server now adds configured options to its
responses to a client when client requests them.
A few basic options: Routers, Domain Name, Domain
Name Servers and Subnet Mask are added regardless
if client requested them or not.
(Trac #2591, git aeec2dc1b9c511d17971ac63138576c37e7c5164)
557. [doc] stephen
Update DHCP sections of the BIND 10 guide.
(Trac #2642, git e5faeb5fa84b7218fde486347359504cf692510e)
556. [bug] marcin
Fixed DHCP servers configuration whereby the servers did not
receive a configuration stored in the database on their startup.
Also, the configuration handler function now uses full configuration
instead of partial to configure the server. This guarantees that
dependencies between various configuration parameters are
fulfilled.
(Trac #2637, git 91aa998226f1f91a232f2be59a53c9568c4ece77)
555. [func] marcin
The encapsulated option space name can be specified for
a DHCP option. It comprises sub-options being sent within
an option that encapsulates this option space.
(Trac #2314, git 27e6119093723a1e46a239ec245a8b4b10677635)
554. [func] jinmei
b10-loadzone: improved completion log message and intermediate
reports: It now logs the precise number of loaded RRs on
completion, and intermediate reports show additional information
such as the estimated progress in percentage and estimated time
to complete.
(Trac #2574, git 5b8a824054313bdecb8988b46e55cb2e94cb2d6c)
553. [func] stephen
Values of the parameters to access the DHCP server lease database
can now be set through the BIND 10 configuration mechanism.
(Trac #2559, git 6c6f405188cc02d2358e114c33daff58edabd52a)
552. [bug] shane
Build on Raspberry PI.
The main issue was use of char for reading from input streams,
which is incorrect, as EOF is returned as an int -1, which would
then get cast into a char -1.
A number of other minor issues were also fixed.
(Trac #2571, git 525333e187cc4bbbbde288105c9582c1024caa4a)
551. [bug] shane
Kill msgq if we cannot connect to it on startup.
When the boss process was unable to connect to the msgq, it would
exit. However, it would leave the msgq process running. This has
been fixed, and the msgq is now stopped in this case.
(Trac #2608, git 016925ef2437e0396127e135c937d3a55539d224)
550. [func] tomek
b10-dhcp4: The DHCPv4 server now generates a server identifier
the first time it is run. The identifier is preserved in a file
across server restarts.
b10-dhcp6: The server identifier is now preserved in a file across
server restarts.
(Trac #2597, git fa342a994de5dbefe32996be7eebe58f6304cff7)
549. [func] tomek
b10-dhcp6: It is now possible to specify that a configured subnet
is reachable locally over specified interface (see "interface"
parameter in Subnet6 configuration).
(Trac #2596, git a70f6172194a976b514cd7d67ce097bbca3c2798)
548. [func] vorner
The message queue daemon now appears on the bus. This has two
effects, one is it obeys logging configuration and logs to the
correct place like the rest of the modules. The other is it
appears in bindctl as module (but it doesn't have any commands or
configuration yet).
(Trac #2582, git ced31d8c5a0f2ca930b976d3caecfc24fc04634e)
547. [func]* vorner
The b10-loadzone now performs more thorough sanity check on the
loaded data. Some of the checks are now fatal and zone failing
them will be rejected.
(Trac #2436, git 48d999f1cb59f308f9f30ba2639521d2a5a85baa)
546. [func] marcin
DHCP option definitions can be now created using the
Configuration Manager. The option definition specifies
the option code, name and the types of the data being
carried by the option. The Configuration Manager
reports an error on attempt to override standard DHCP
option definition.
(Trac #2317, git 71e25eb81e58a695cf3bad465c4254b13a50696e)
545. [func] jinmei
libdns++: the SOA Rdata class now uses the generic lexer in
constructors from text. This means that the MNAME and RNAME of an
SOA RR in a zone file can now be non absolute (the origin name
in that context will be used), e.g., when loaded by b10-loadzone.
(Trac #2500, git 019ca218027a218921519f205139b96025df2bb5)
544. [func] tomek
b10-dhcp4: Allocation engine support for IPv4 added. Currently
supported operations are server selection (Discover/Offer),
address assignment (Request/Ack), address renewal (Request/Ack),
and address release (Release). Expired leases can be reused.
Some options (e.g. Router Option) are still hardcoded, so the
DHCPv4 server is not yet usable, although its address allocation
is operational.
(Trac #2320, git 60606cabb1c9584700b1f642bf2af21a35c64573)
543. [func]* jelte
When calling getFullConfig() as a module, , the configuration is now
returned as properly-structured JSON. Previously, the structure had
been flattened, with all data being labelled by fully-qualified
element names.
(Trac #2619, git bed3c88c25ea8f7e951317775e99ebce3340ca22)
542. [func] marcin
Created OptionSpace and OptionSpace6 classes to represent DHCP
option spaces. The option spaces are used to group instances
and definitions of options having unique codes. A special type
of option space is the so-called "vendor specific option space"
which groups sub-options sent within Vendor Encapsulated Options.
The new classes are not used yet but they will be used once
the creation of option spaces by configuration manager is
implemented.
(Trac #2313, git 37a27e19be874725ea3d560065e5591a845daa89)
541. [func] marcin
Added routines to search for configured DHCP options and their
definitions using name of the option space they belong to.
New routines are called internally from the DHCPv4 and DHCPv6
servers code.
(Trac #2315, git 741fe7bc96c70df35d9a79016b0aa1488e9b3ac8)
540. [func] marcin
DHCP Option values can be now specified using a string of
tokens separated with comma sign. Subsequent tokens are used
to set values for corresponding data fields in a particular
DHCP option. The format of the token matches the data type
of the corresponding option field: e.g. "192.168.2.1" for IPv4
address, "5" for integer value etc.
(Trac #2545, git 792c129a0785c73dd28fd96a8f1439fe6534a3f1)
539. [func] stephen
Add logging to the DHCP server library.
(Trac #2524, git b55b8b6686cc80eed41793c53d1779f4de3e9e3c)
538. [bug] muks
Added escaping of special characters (double-quotes, semicolon,
backslash, etc.) in text-like RRType's toText() implementation.
Without this change, some TXT and SPF RDATA were incorrectly
stored in SQLite3 datasource as they were not escaped.
(Trac #2535, git f516fc484544b7e08475947d6945bc87636d4115)
537. [func] tomek
b10-dhcp6: Support for RELEASE message has been added. Clients
are now able to release their non-temporary IPv6 addresses.
(Trac #2326, git 0974318566abe08d0702ddd185156842c6642424)
536. [build] jinmei
Detect a build issue on FreeBSD with g++ 4.2 and Boost installed via
FreeBSD ports at ./configure time. This seems to be a bug of
FreeBSD ports setup and has been reported to the maintainer:
http://www.freebsd.org/cgi/query-pr.cgi?pr=174753
Until it's fixed, you need to build BIND 10 for FreeBSD that has
this problem with specifying --without-werror, with clang++
(development version), or with manually extracted Boost header
files (no compiled Boost library is necessary).
(Trac #1991, git 6b045bcd1f9613e3835551cdebd2616ea8319a36)
535. [bug] jelte
The log4cplus internal logging mechanism has been disabled, and no
output from the log4cplus library itself should be printed to
stderr anymore. This output can be enabled by using the
compile-time option --enable-debug.
(Trac #1081, git db55f102b30e76b72b134cbd77bd183cd01f95c0)
534. [func]* vorner
The b10-msgq now uses the same logging format as the rest
of the system. However, it still doesn't obey the common
configuration, as due to technical issues it is not able
to read it yet.
(git 9e6e821c0a33aab0cd0e70e51059d9a2761f76bb)
bind10-1.0.0-beta released on December 20, 2012
533. [build]* jreed
Changed the package name in configure.ac from bind10-devel
to bind10. This means the default sub-directories for
etc, include, libexec, share, share/doc, and var are changed.
If upgrading from a previous version, you may need to move
and update your configurations or change references for the
old locations.
(git bf53fbd4e92ae835280d49fbfdeeebd33e0ce3f2)
532. [func] marcin
Implemented configuration of DHCPv4 option values using
the configuration manager. In order to set values for the
data fields carried by a particular option, the user
specifies a string of hexadecimal digits that is converted
to binary data and stored in the option buffer. A more
user-friendly way of specifying option content is planned.
(Trac #2544, git fed1aab5a0f813c41637807f8c0c5f8830d71942)
531. [func] tomek
b10-dhcp6: Added support for expired leases. Leases for IPv6
addresses that are past their valid lifetime may be recycled, i.e.
relocated to other clients if needed.
(Trac #2327, git 62a23854f619349d319d02c3a385d9bc55442d5e)
530. [func]* team
b10-loadzone was fully overhauled. It now uses C++-based zone
parser and loader library, performing stricter checks, having
more complete support for master file formats, producing more
helpful logs, is more extendable for various types of data
sources, and yet much faster than the old version. In
functionality the new version should be generally backwards
compatible to the old version, but there are some
incompatibilities: name fields of RDATA (in NS, SOA, etc) must
be absolute for now; due to the stricter checks some input that was
(incorrectly) accepted by the old version may now be rejected;
command line options and arguments are not compatible.
(Trac #2380, git 689b015753a9e219bc90af0a0b818ada26cc5968)
529. [func]* team
The in-memory data source now uses a more complete master
file parser to load textual zone files. As of this change
it supports multi-line RR representation and more complete
support for escaped and quoted strings. It also produces
more helpful log messages when there is an error in the zone
file. It will be enhanced as more specific tasks in the
#2368 meta ticket are completed. The new parser is generally
backward compatible to the previous one, but due to the
tighter checks some input that has been accepted so far
could now be rejected, so it's advisable to check if you
use textual zone files directly loaded to memory.
(Trac #2470, git c4cf36691115c15440b65cac16f1c7fcccc69521)
528. [func] marcin
Implemented definitions for DHCPv4 option definitions identified
by option codes: 1 to 63, 77, 81-82, 90-92, 118-119, 124-125.
These definitions are now used by the DHCPv4 server to parse
options received from a client.
(Trac #2526, git 50a73567e8067fdbe4405b7ece5b08948ef87f98)
527. [bug] jelte
Fixed a bug in the synchronous UDP server code where unexpected
errors from ASIO or the system libraries could cause b10-auth to
stop. In asynchronous mode these errors would be ignored
completely. Both types have been updated to report the problem with
an ERROR log message, drop the packet, and continue service.
(Trac #2494, git db92f30af10e6688a7dc117b254cb821e54a6d95)
526. [bug] stephen
Miscellaneous fixes to DHCP code including rationalisation of
some methods in LeaseMgr and resolving some Doxygen/cppcheck
issues.
(Trac #2546, git 0140368ed066c722e5d11d7f9cf1c01462cf7e13)
525. [func] tomek
b10-dhcp4: DHCPv4 server is now able to parse configuration. It
is possible to specify IPv4 subnets with dynamic pools within
them. Although configuration is accepted, it is not used yet. This
will be implemented shortly.
(Trac #2270, git de29c07129d41c96ee0d5eebdd30a1ea7fb9ac8a)
524. [func] tomek
b10-dhcp6 is now able to handle RENEW messages. Leases are
renewed and REPLY responses are sent back to clients.
(Trac #2325, git 7f6c9d057cc0a7a10f41ce7da9c8565b9ee85246)
523. [bug] muks
Fixed a problem in inmem NSEC3 lookup (for, instance when using a
zone with no non-apex names) which caused exceptions when the zone
origin was not added as an explicit NSEC3 record.
(Trac #2503, git 6fe86386be0e7598633fe35999112c1a6e3b0370)
522. [func]* jelte
Configuration of TSIG keys for b10-xfrin has changed; instead of
specifying the full TSIG key (<name>:<base64>:<algo>) it now expects
just the name, and uses the global TSIG Key Ring like all the other
components (configuration list /tsig_keys/keys).
Note: this is not automatically updated, so if you use TSIG in
xfrin, you need to update your configuration.
(Trac #1351, git e65b7b36f60f14b7abe083da411e6934cdfbae7a)
521. [func] marcin
Implemented definitions for DHCPv6 standard options identified
by codes up to 48. These definitions are now used by the DHCPv6
server to create instances of options being sent to a client.
(Trac #2491, git 0a4faa07777189ed9c25211987a1a9b574015a95)
520. [func] jelte
The system no longer prints initial log messages to stdout
regardless of what logging configuration is present, but it
temporarily stores any log messages until the configuration is
processed. If there is no specific configuration, or if the
configuration cannot be accessed, it will still fall back to stdout.
Note that there are still a few instances where output is printed,
these shall be addressed separately.
Note also that, currently, in case it falls back to stdout (such as
when it cannot connect to b10-cfgmgr), all log messages are always
printed (including debug messages), regardless of whether -v was
used. This shall also be addressed in a future change.
(Trac #2445, git 74a0abe5a6d10b28e4a3e360e87b129c232dea68)
519. [bug] muks
Fixed a problem in inmem NSEC lookup which caused returning an
incorrect NSEC record or (in rare cases) assert failures
when a non-existent domain was queried, which was a sub-domain of
a domain that existed.
(Trac #2504, git 835553eb309d100b062051f7ef18422d2e8e3ae4)
518. [func] stephen
Extend DHCP MySQL backend to handle IPv4 addresses.
(Trac #2404, git ce7db48d3ff5d5aad12b1da5e67ae60073cb2607)
517. [func] stephen
Added IOAddress::toBytes() to get byte representation of address.
Also added convenience methods for V4/V6 address determination.
(Trac #2396, git c23f87e8ac3ea781b38d688f8f7b58539f85e35a)
516. [bug] marcin
Fixed 'make distcheck' failure when running perfdhcp unit tests.
The unit tests used to read files from the folder specified
with the path relative to current folder, thus when the test was
run from a different folder the files could not be found.
(Trac #2479, git 4e8325e1b309f1d388a3055ec1e1df98c377f383)
515. [bug] jinmei
The in-memory data source now accepts an RRSIG provided without
a covered RRset in loading. A subsequent query for its owner name
of the covered type would generally result in NXRRSET; if the
covered RRset is of type NSEC3, the corresponding NSEC3 processing
would result in SERVFAIL.
(Trac #2420, git 6744c100953f6def5500bcb4bfc330b9ffba0f5f)
514. [bug] jelte
b10-msgq now handles socket errors more gracefully when sending data
to clients. It no longer exits with 'broken pipe' errors, and is
also better at resending data on temporary error codes from send().
(Trac #2398, git 9f6b45ee210a253dca608848a58c824ff5e0d234)
513. [func] marcin
Implemented the OptionCustom class for DHCPv4 and DHCPv6.
This class represents an option which has a defined
structure: a set of data fields of specific types and order.
It is used to represent those options that can't be
represented by any other specialized class.
(Trac #2312, git 28d885b457dda970d9aecc5de018ec1120143a10)
512. [func] jelte
Added a new tool b10-certgen, to check and update the self-signed
SSL certificate used by b10-cmdctl. The original certificate
provided has been removed, and a fresh one is generated upon first
build. See the b10-certgen manpage for information on how to update
existing installed certificates.
(Trac #1044, git 510773dd9057ccf6caa8241e74a7a0b34ca971ab)
511. [bug] stephen
Fixed a race condition in the DHCP tests whereby the test program
spawned a subprocess and attempted to read (without waiting) from
the interconnecting pipe before the subprocess had written
anything. The lack of output was being interpreted as a test
failure.
(Trac #2410, git f53e65cdceeb8e6da4723730e4ed0a17e4646579)
510. [func] marcin
DHCP option instances can be created using a collection of strings.
Each string represents a value of a particular data field within
an option. The data field values, given as strings, are validated
against the actual types of option fields specified in the options
definitions.
(Trac #2490, git 56cfd6612fcaeae9acec4a94e1e5f1a88142c44d)
509. [func] muks
Log messages now include the pid of the process that logged the
message.
(Trac #1745, git fc8bbf3d438e8154e7c2bdd322145a7f7854dc6a)
508. [bug] stephen
Split the DHCP library into two directories, each with its own
Makefile. This properly solves the problem whereby a "make"
operation with multiple threads could fail because of the
dependencies between two libraries in the same directory.
(Trac #2475, git 834fa9e8f5097c6fd06845620f68547a97da8ff8)
bind10-devel-20121115 released on November 15, 2012
507. [doc] jelte
Added a chapter about the use of the bindctl command tool to
to the BIND 10 guide.
(Trac #2305, git c4b0294b5bf4a9d32fb18ab62ca572f492788d72)
506. [sec] jinmei
Fixed a use-after-free case in handling DNAME record with the
in-memory data source. This could lead to a crash of b10-auth
if it serves a zone containing a DNAME RR from the in-memory
data source. This bug was introduced at bind10-devel-20120927.
(Trac #2471, git 2b1793ac78f972ddb1ae2fd092a7f539902223ff)
505. [bug] jelte
Fixed a bug in b10-xfrin where a wrong call was made during the
final check of a TSIG-signed transfer, incorrectly rejecting the
transfer.
(Trac #2464, git eac81c0cbebee72f6478bdb5cda915f5470d08e1)
504. [bug]* naokikambe
Fixed an XML format viewed from b10-stats-httpd. Regarding
per-zone counters as zones of Xfrout, a part of the item
values wasn't an exact XML format. A zone name can be
specified in URI as
/bind10/statistics/xml/Xfrout/zones/example.org/xfrreqdone.
XSD and XSL formats are also changed to constant ones due
to these changes.
(Trac #2298, git 512d2d46f3cb431bcdbf8d90af27bff8874ba075)
503. [func] Stephen
Add initial version of a MySQL backend for the DHCP code. This
implements the basic IPv6 lease access functions - add lease, delete
lease and update lease. The backend is enabled by specifying
--with-dhcp-mysql on the "configure" command line: without this
switch, the MySQL code is not compiled, so leaving BIND 10 able to
be built on systems without MySQL installed.
(Trac #2342, git c7defffb89bd0f3fdd7ad2437c78950bcb86ad37)
502. [func] vorner
TTLs can be specified with units as well as number of seconds now.
This allows specifications like "1D3H".
(Trac #2384, git 44c321c37e17347f33ced9d0868af0c891ff422b)
501. [func] tomek
Added DHCPv6 allocation engine, now used in the processing of DHCPv6
messages.
(Trac #2414, git b3526430f02aa3dc3273612524d23137b8f1fe87)
500. [bug] jinmei
Corrected the autoconf example in the examples directory so it can
use the configured path to Boost to check availability of the BIND 10
library. Previously the sample configure script could fail if
Boost is installed in an uncommon place. Also, it now provides a
helper m4 function and example usage for embedding the library
path to executable (using linker options like -Wl,-R) to help
minimize post-build hassles.
(Trac #2356, git 36514ddc884c02a063e166d44319467ce6fb1d8f)
499. [func] team
The b10-auth 'loadzone' command now uses the internal thread
introduced in 495 to (re)load a zone in the background, so that
query processing isn't blocked while loading a zone.
(Trac #2213, git 686594e391c645279cc4a95e0e0020d1c01fba7e)
498. [func] marcin
Implemented DHCPv6 option values configuration using configuration
manager. In order to set values for data fields carried by the
particular option, user specifies the string of hexadecimal digits
that is in turn converted to binary data and stored into option
buffer. More user friendly way of option content specification is
planned.
(Trac #2318, git e75c686cd9c14f4d6c2a242a0a0853314704fee9)
497. [bug] jinmei
Fixed several issues in isc-sysinfo:
- make sure it doesn't report a negative value for free memory
size (this happened on FreeBSD, but can possibly occur on other
BSD variants)
- correctly identifies the SMP support in kernel on FreeBSD
- print more human readable uptime as well as the time in seconds
(Trac #2297, git 59a449f506948e2371ffa87dcd19059388bd1657)
496. [func] tomek
DHCPv6 Allocation Engine implemented. It allows address allocation
from the configured subnets/pools. It currently features a single
allocator: IterativeAllocator, which assigns addresses iteratively.
Other allocators (hashed, random) are planned.
(Trac #2324, git 8aa188a10298e3a55b725db36502a99d2a8d638a)
495. [func] team
b10-auth now handles reconfiguration of data sources in
background using a separate thread. This means even if the new
configuration includes a large amount of data to be loaded into
memory (very large zones and/or a very large number of zones),
the reconfiguration doesn't block query handling.
(Multiple Trac tickets up to #2211)
494. [bug] jinmei
Fixed a problem that shutting down BIND 10 kept some of the
processes alive. It was two-fold: when the main bind10 process
started as a root, started b10-sockcreator with the privilege, and
then dropped the privilege, the bind10 process cannot kill the
sockcreator via signal any more (when it has to), but it kept
sending the signal and didn't stop. Also, when running on Python
3.1 (or older), the sockcreator had some additional file
descriptor open, which prevented it from exiting even after the
bind10 process terminated. Now the bind10 process simply gives up
killing a subprocess if it fails due to lack of permission, and it
makes sure the socket creator is spawned without any unnecessary
FDs open.
(Trac #1858, git 405d85c8a0042ba807a3a123611ff383c4081ee1)
493. [build] jinmei
Fixed build failure with newer versions of clang++. These
versions are stricter regarding "unused variable" and "unused
(driver) arguments" warnings, and cause fatal build error
with -Werror. The affected versions of clang++ include Apple's
customized version 4.1 included in Xcode 4.5.1. So this fix
will solve build errors for Mac OS X that uses newer versions of
Xcode.
(Trac #2340, git 55be177fc4f7537143ab6ef5a728bd44bdf9d783,
3e2a372012e633d017a97029d13894e743199741 and commits before it
with [2340] in the commit log)
492. [func] tomek
libdhcpsrv: The DHCP Configuration Manager is now able to store
information about IPv4 subnets and pools. It is still not possible
to configure that information. Such capability will be implemented
in a near future.
(Trac #2237, git a78e560343b41f0f692c7903c938b2b2b24bf56b)
491. [func] tomek
b10-dhcp6: Configuration for DHCPv6 has been implemented.
Currently it is possible to configure IPv6 subnets and pools
within those subnets, global and per subnet values of renew,
rebind, preferred and valid lifetimes. Configured parameters
are accepted, but are not used yet by the allocation engine yet.
(Trac #2269, git 028bed9014b15facf1a29d3d4a822c9d14fc6411)
490. [func] tomek
libdhcpsrv: An abstract API for lease database has been
implemented. It offers a common interface to all concrete
database backends.
(Trac #2140, git df196f7609757253c4f2f918cd91012bb3af1163)
489. [func] muks
The isc::dns::RRsetList class has been removed. It was now unused
inside the BIND 10 codebase, and the interface was considered
prone to misuse.
(Trac #2266, git 532ac3d0054f6a11b91ee369964f3a84dabc6040)
488. [build] jinmei
On configure, changed the search order for Python executable.
It first tries more specific file names such as "python3.2" before
more generic "python3". This will prevent configure failure on
Mac OS X that installs Python3 via recent versions of Homebrew.
(Trac #2339, git 88db890d8d1c64de49be87f03c24a2021bcf63da)
487. [bug] jinmei
The bind10 process now terminates a component (subprocess) by the
"config remove Boss/components" bindctl command even if the
process crashes immediately before the command is sent to bind10.
Previously this led to an inconsistent state between the
configuration and an internal component list of bind10, and bind10
kept trying to restart the component. A known specific case of
this problem is that b10-ddns could keep failing (due to lack of
dependency modules) and the administrator couldn't stop the
restart via bindctl.
(Trac #2244, git 7565788d06f216ab254008ffdfae16678bcd00e5)
486. [bug]* jinmei
All public header files for libb10-dns++ are now installed.
Template configure.ac and utility AC macros for external projects
using the library are provided under the "examples" directory.
The src/bin/host was moved as part of the examples (and not
installed with other BIND 10 programs any more).
(Trac #1870, git 4973e638d354d8b56dcadf71123ef23c15662021)
485. [bug] jelte
Several bugs have been fixed in bindctl; tab-completion now works
within configuration lists, the problem where sometimes the
completion added a part twice has been solved, and it no longer
suggests the confusing value 'argument' as a completion-hint for
configuration items. Additionally, bindctl no longer crashes upon
input like 'config remove Boss'.
(Trac #2254, git 9047de5e8f973e12e536f7180738e6b515439448)
484. [func] tomek
A new library (libb10-dhcpsrv) has been created. At present, it
only holds the code for the DHCP Configuration Manager. Currently
this object only supports basic configuration storage for the DHCPv6
server, but that capability will be expanded.
(Trac #2238, git 6f29861b92742da34be9ae76968e82222b5bfd7d)
bind10-devel-20120927 released on September 27, 2012
483. [func] marcin
libdhcp++: Added new parameter to define sub-second timeout
for DHCP packet reception. The total timeout is now specified
by two parameters: first specifies integral number of
seconds, second (which defaults to 0) specifies fractional
seconds with microsecond resolution.
(Trac #2231, git 15560cac16e4c52129322e3cb1787e0f47cf7850)
482. [func] team
Memory footprint of the in-memory data source has been
substantially improved. For example, b10-auth now requires much
less memory than BIND 9 named for loading and serving the same
zone in-memory. This is a transparent change in terms of user
operation; there's no need to update or change the configuration
to enable this feature.
Notes: multiple instances of b10-auth still make separate copies
of the memory image. Also, loading zones in memory still suspends
query processing, so manual reloading or reloading after incoming
transfer may cause service disruption for huge zones.
(Multiple Trac tickets, Summarized in Trac #2101)
481. [bug] vorner
The abbreviated form of IP addresses in ACLs is accepted
(eg. "from": ["127.0.0.1", "::1"] now works).
(Trac #2191, git 48b6e91386b46eed383126ad98dddfafc9f7e75e)
480. [doc] vorner
Added documentation about global TSIG key ring to the Guide.
(Trac #2189, git 52177bb31f5fb8e134aecb9fd039c368684ad2df)
479. [func] marcin
Refactored perfdhcp tool to C++, added missing unit tests and removed
the old code. The new code uses libdhcp++ (src/lib/dhcp) for DHCP
packet management, network interface management and packet
transmission.
(Trac #1954, git 8d56105742f3043ed4b561f26241f3e4331f51dc)
(Trac #1955, git 6f914bb2c388eb4dd3e5c55297f8988ab9529b3f)
(Trac #1956, git 6f914bb2c388eb4dd3e5c55297f8988ab9529b3f)
(Trac #1957, git 7fca81716ad3a755bf5744e88c3adeef15b04450)
(Trac #1958, git 94e17184270cda58f55e6da62e845695117fede3)
(Trac #1959, git a8cf043db8f44604c7773e047a9dc2861e58462a)
(Trac #1960, git 6c192e5c0903f349b4d80cf2bb6cd964040ae7da)
478. [func] naokikambe
New statistics items added into b10-xfrout: ixfr_running and
axfr_running. Their values can be obtained by invoking "Stats show
Xfrout" via bindctl while b10-xfrout is running.
(Trac #2222, git 91311bdbfea95f65c5e8bd8294ba08fac12405f1)
477. [bug] jelte
Fixed a problem with b10-msgq on OSX when using a custom Python
installation, that offers an unreliable select.poll() interface.
(Trac #2190, git e0ffa11d49ab949ee5a4ffe7682b0e6906667baa)
476. [bug] vorner
The Xfrin now accepts transfers with some TSIG signatures omitted, as
allowed per RFC2845, section 4.4. This solves a compatibility
issues with Knot and NSD.
(Trac #1357, git 7ca65cb9ec528118f370142d7e7b792fcc31c9cf)
475. [func] naokikambe
Added Xfrout statistics counters: notifyoutv4, notifyoutv6,
xfrrej, and xfrreqdone. These are per-zone type counters.
The value of these counters can be seen with zone name by
invoking "Stats show Xfrout" via bindctl.
(Trac #2158, git e68c127fed52e6034ab5309ddd506da03c37a08a)
474. [func] stephen
DHCP servers now use the BIND 10 logging system for messages.
(Trac #1545, git de69a92613b36bd3944cb061e1b7c611c3c85506)
473. [bug] jelte
TCP connections now time out in b10-auth if no (or not all) query
data is sent by the client. The timeout value defaults to 5000
milliseconds, but is configurable in Auth/tcp_recv_timeout.
(Trac #357, git cdf3f04442f8f131542bd1d4a2228a9d0bed12ff)
472. [build] jreed
All generated documentation is removed from the git repository.
The ./configure --enable-man option is removed. A new option
-enable-generate-docs is added; it checks for required
documentation building dependencies. Dummy documentation is
built and installed if not used. Distributed tarballs will
contain the generated documentation.
(Trac #1687, git 2d4063b1a354f5048ca9dfb195e8e169650f43d0)
471. [bug] vorner
Fixed a problem when b10-loadzone tried to tread semicolon
in string data as start of comment, which caused invalid
data being loaded.
(Trac #2188, git 12efec3477feb62d7cbe36bdcfbfc7aa28a36f57)
470. [func] naokikambe
The stats module now supports partial statistics updates. Each
module can return only statistics data which have been updated since
the last time it sent them to the stats module. The purpose of partial
updates is to reduce the amount of statistics data sent through the
message queue.
(Trac #2179, git d659abdd9f3f369a29830831297f64484ac7b051)
469. [bug] jelte
libdatasrc: the data source client list class now ignores zone
content problems (such as out-of-zone data) in MasterFiles type
zones, instead of aborting the entire configuration. It only logs
an error, and all other zones and datasources are still loaded. The
error log message has been improved to include the zone origin and
source file name. As a result of this change, b10-auth no longer
exits upon encountering such errors during startup.
(Trac #2178, git a75ed413e8a1c8e3702beea4811a46a1bf519bbd)
468. [func]* naokikambe, fujiwara
b10-stats polls the bind10 and b10-auth with new 'getstats' command
to retrieve statistics data. The "poll-interval" parameter in
b10-stats is for configuring the polling interval. All statistics
data collected once are preserved while b10-stats is running.
The "sendstats" command was removed from bind10 and b10-auth. The
"statistics-interval" configuration item was removed from b10-auth.
(Trac #2136, git dcb5ce50b4b4e50d28247d5f8b5cb8d90bda942a)
(Trac #2137, git d53bb65a43f6027b15a6edc08c137951e3ce5e0e)
(Trac #2138, git b34e3313460eebc9c272ca8c1beb27297c195150)
bind10-devel-20120816 released on August 16, 2012
467. [bug] jelte
For configurations, allow named sets to contain lists of items.
(Trac #2114, git 712637513505f7afb8434292ca2a98c3517dffd3)
466. [func] jelte
Allow bindctl to add and remove items to and from lists
and dicts for items of type "any". This is for easier
configurations.
(Trac #2184, git ad2d728d1496a9ff59d622077850eed0638b54eb)
465. [doc] vorner
Improved documentation about ACLs in the Guide.
(Trac #2066, git 76f733925b3f3560cfc2ee96d2a19905b623bfc3)
464. [func] jelte, muks
libdns++: The LabelSequence class has been extended with some new
methods. These are mainly intended for internal development, but
the class is public, so interested users may want to look into the
extensions.
(Trac #2052, git 57c61f2^..dbef0e2)
(Trac #2053, git 1fc2b06b57a008ec602daa2dac79939b3cc6b65d)
(Trac #2086, git 3fac7d5579c5f51b8e952b50db510b45bfa986f3)
(Trac #2087, git 49ad6346f574d00cfbd1d12905915fd0dd6a0bac)
(Trac #2148, git 285c2845ca96e7ef89f9158f1dea8cda147b6566)
463. [func] jinmei
Python isc.dns: the Name, RRType and RRClass classes are now
hashable. So, for example, objects of these classes can be used
as a dictionary key.
(Trac #1883, git 93ec40dd0a1df963c676037cc60c066c748b3030)
462. [build] jreed
BIND 10 now compiles against googletest-1.6.0 versions that are
installed on the system as source code. For such versions, use the
--with-gtest-source configure switch.
(Trac #1999, git 6a26d459a40d7eed8ebcff01835377b3394a78de)
461. [bug] muks
We now set g+w and g+s permissions (mode 02770) during
installation for the BIND 10 local state directory
($prefix/var/bind10-devel/) so that permissions to files
and sub-directories created in that directory are inherited.
(Trac #2171, git ab4d20907abdb3ce972172463dcc73405b3dee79)
460. [bug] muks
SSHFP's algorithm and fingerprint type checks have been relaxed
such that they will accept any values in [0,255]. This is so that
future algorithm and fingerprint types are accommodated.
(Trac #2124, git 49e6644811a7ad09e1326f20dd73ab43116dfd21)
459. [func] tomek
b10-dhcp6: DHCPv6 server component is now integrated into
BIND 10 framework. It can be started from BIND 10 (using bindctl)
and can receive commands. The only supported command for now
is 'Dhcp6 shutdown'.
b10-dhcp4: Command line-switch '-s' to disable msgq was added.
b10-dhcp6: Command line-switch '-s' to disable msgq was added.
(Trac #1708, git e0d7c52a71414f4de1361b09d3c70431c96daa3f)
458. [build]* jinmei
BIND 10 now relies on Boost offset_ptr, which caused some new
portability issues. Such issues are detected at ./configure time.
If ./configure stops due to this, try the following workaround:
- If it's about the use of mutable for a reference with clang++,
upgrade Boost version to 1.44 or higher, or try a different
compiler (e.g. g++ generally seems to be free from this issue)
- If it's about the use of "variadic templates", specify
--without-werror so the warning won't be promoted to an error.
Specifying BOOST_NO_USER_CONFIG in CXXFLAGS may also work
(which would be the case if Boost is installed via pkgsrc)
(Trac #2147, git 30061d1139aad8716e97d6b620c259752fd0a3cd)
457. [build]* muks
BIND 10 library names now have a "b10-" prefix. This is to avoid
clashes with other similarly named libraries on the system.
(Trac #2071, git ac20a00c28069804edc0a36050995df52f601efb)
456. [build] muks
BIND 10 now compiles against log4cplus-1.1.0 (RC releases)
also. Note: some older versions of log4cplus don't work any more;
known oldest workable version is 1.0.4. Thanks to John Lumby for
sending a patch.
(Trac #2169, git 7d7e5269d57451191c0aef1b127d292d3615fe2c)
455. [func]* vorner
The server now uses newer API for data sources. This would be an
internal change, however, the data sources are now configured
differently. Please, migrate your configuration to the top-level
"data_sources" module. Also the bind10 -n and --no-cache
and b10-auth -n options are removed.
(Trac #1976, git 0d4685b3e7603585afde1b587cbfefdfaf6a1bb3)
454. [bug] jelte
b10-cfgmgr now loads its configuration check plugins directly from
the plugin search path, as opposed to importing them from the
general python system module path list; this prevents naming
conflicts with real python modules.
(Trac #2119, git 2f68d7ac5c3c7cc88a3663191113eece32d46a3d)
453. [bug] jelte
b10-auth no longer tries to send DDNS UPDATE messages to b10-ddns if
b10-ddns is not running. Sending an UPDATE to BIND 10 that is not
configured to run DDNS will now result in a response with rcode
NOTIMP instead of SERVFAIL.
(Trac #1986, git bd6b0a5ed3481f78fb4e5cb0b18c7b6e5920f9f8)
452. [func] muks, jelte
isc-sysinfo: An initial implementation of the isc-sysinfo
tool is now available for Linux, OpenBSD, FreeBSD, and Mac
OS X. It gathers and outputs system information which can
be used by future tech support staff. This includes a
generic Python "sysinfo" module.
(Trac #2062, #2121, #2122, #2172,
git 144e80212746f8d55e6a59edcf689fec9f32ae95)
451. [bug] muks, jinmei
libdatasrc: the database-based data source now correctly returns
glue records on (not under) a zone cut, such as in the case where
the NS name of an NS record is identical to its owner name. (Note:
libdatasrc itself doesn't judge what kind of record type can be a
"glue"; it's the caller's responsibility.)
(Trac #1771, git 483f1075942965f0340291e7ff7dae7806df22af)
450. [func] tomek
b10-dhcp4: DHCPv4 server component is now integrated into
BIND 10 framework. It can be started from BIND 10 (using bindctl)
and can receive commands. The only supported command for now
is 'Dhcp4 shutdown'.
(Trac #1651, git 7e16a5a50d3311e63d10a224ec6ebcab5f25f62c)
bind10-devel-20120621 released on June 21, 2012
449. [bug] muks
b10-xfin: fixed a bug where xfrin sent the wrong notification
message to zonemgr on successful zone transfer. This also
solves other reported problems such as too frequent attempts
of zone refreshing (see Trac #1786 and #1834).
(Trac #2023, git b5fbf8a408a047a2552e89ef435a609f5df58d8c)
448. [func] team
b10-ddns is now functional and handles dynamic update requests
per RFC 2136. See BIND 10 guide for configuration and operation
details.
(Multiple Trac tickets)
447. [bug] jinmei
Fixed a bug in b10-xfrout where a helper thread could fall into
an infinite loop if b10-auth stops while the thread is waiting for
forwarded requests from b10-auth.
(Trac #988 and #1833, git 95a03bbefb559615f3f6e529d408b749964d390a)
446. [bug] muks
A number of warnings reported by Python about unclosed file and
socket objects were fixed. Some related code was also made safer.
(Trac #1828, git 464682a2180c672f1ed12d8a56fd0a5ab3eb96ed)
445. [bug]* jinmei
The pre-install check for older SQLite3 DB now refers to the DB
file with the prefix of DESTDIR. This ensures that 'make install'
with specific DESTDIR works regardless of the version of the DB
file installed in the default path.
(Trac #1982, git 380b3e8ec02ef45555c0113ee19329fe80539f71)
444. [bug] jinmei
libdatasrc: fixed ZoneFinder for database-based data sources so
that it handles type DS query correctly, i.e., treating it as
authoritative data even on a delegation point.
(Trac #1912, git 7130da883f823ce837c10cbf6e216a15e1996e5d)
443. [func]* muks
The logger now uses a lockfile named `logger_lockfile' that is
created in the local state directory to mutually separate
individual logging operations from various processes. This is
done so that log messages from different processes don't mix
together in the middle of lines. The `logger_lockfile` is created
with file permission mode 0660. BIND 10's local state directory
should be writable and perhaps have g+s mode bit so that the
`logger_lockfile` can be opened by a group of processes.
(Trac #1704, git ad8d445dd0ba208107eb239405166c5c2070bd8b)
442. [func] tomek
b10-dhcp4, b10-dhcp6: Both DHCP servers now accept -p parameter
that can be used to specify listening port number. This capability
is useful only for testing purposes.
(Trac #1503, git e60af9fa16a6094d2204f27c40a648fae313bdae)
441. [func] tomek
libdhcp++: Stub interface detection (support for interfaces.txt
file) was removed.
(Trac #1281, git 900fc8b420789a8c636bcf20fdaffc60bc1041e0)
bind10-devel-20120517 released on May 17, 2012
440. [func] muks
bindctl: improved some error messages so they will be more
helpful. Those include the one when the zone name is unspecified
or the name is invalid in the b10-auth configuration.
(Trac #1627, git 1a4d0ae65b2c1012611f4c15c5e7a29d65339104)
439. [func] team
The in-memory data source can now load zones from the
sqlite3 data source, so that zones stored in the database
(and updated for example by xfrin) can be served from memory.
(Trac #1789, #1790, #1792, #1793, #1911,
git 93f11d2a96ce4dba9308889bdb9be6be4a765b27)
438. [bug] naokikambe
b10-stats-httpd now sends the system a notification that
it is shutting down if it encounters a fatal error during
startup.
(Trac #1852, git a475ef271d4606f791e5ed88d9b8eb8ed8c90ce6)
437. [build] jinmei
Building BIND 10 may fail on MacOS if Python has been
installed via Homebrew unless --without-werror is specified.
The configure script now includes a URL that explains this
issue when it detects failure that is possibly because of
this problem.
(Trac #1907, git 0d03b06138e080cc0391fb912a5a5e75f0f97cec)
436. [bug] jelte
The --config-file option now works correctly with relative paths if
--data-path is not given.
(Trac #1889, git ce7d1aef2ca88084e4dacef97132337dd3e50d6c)
435. [func] team
The in-memory datasource now supports NSEC-signed zones.
(Trac #1802-#1810, git 2f9aa4a553a05aa1d9eac06f1140d78f0c99408b)
434. [func] tomek
libdhcp++: Linux interface detection refactored. The code is
now cleaner. Tests better support certain versions of ifconfig.
(Trac #1528, git 221f5649496821d19a40863e53e72685524b9ab2)
433. [func] tomek
libdhcp++: Option6 and Pkt6 now follow the same design as
options and packet for DHCPv4. General code refactoring after
end of 2011 year release.
(Trac #1540, git a40b6c665617125eeb8716b12d92d806f0342396)
432. [bug]* muks
BIND 10 now installs its header files in a BIND 10 specific
sub-directory in the install prefix.
(Trac #1930, git fcf2f08db9ebc2198236bfa25cf73286821cba6b)
431. [func]* muks
BIND 10 no longer starts b10-stats-httpd by default.
(Trac #1885, git 5c8bbd7ab648b6b7c48e366e7510dedca5386f6c)
430. [bug] jelte
When displaying configuration data, bindctl no longer treats
optional list items as an error, but shows them as an empty list.
(Trac #1520, git 0f18039bc751a8f498c1f832196e2ecc7b997b2a)
429. [func] jelte
Added an 'execute' component to bindctl, which executes either a set
of commands from a file or a built-in set of commands. Currently,
only 'init_authoritative_server' is provided as a built-in set, but
it is expected that more will be added later.
(Trac #1843, git 551657702a4197ef302c567b5c0eaf2fded3e121)
428. [bug] marcin
perfdhcp: bind to local address to allow reception of
replies from IPv6 DHCP servers.
(Trac #1908, git 597e059afaa4a89e767f8f10d2a4d78223af3940)
427. [bug] jinmei
libdatasrc, b10-xfrin: the zone updater for database-based data
sources now correctly distinguishes NSEC3-related RRs (NSEC3 and
NSEC3-covering RRSIG) from others, and the SQLite3 implementation
now manipulates them in the separate table for the NSEC3 namespace.
As a result b10-xfrin now correctly updates NSEC3-signed zones by
inbound zone transfers.
(Trac #1781, #1788, #1891,
git 672f129700dae33b701bb02069cf276238d66be3)
426. [bug] vorner
The NSEC3 records are now included when transferring a
signed zone out.
(Trac #1782, git 36efa7d10ecc4efd39d2ce4dfffa0cbdeffa74b0)
425. [func]* muks
Don't autostart b10-auth, b10-xfrin, b10-xfrout and b10-zonemgr in
the default configuration.
(Trac #1818, git 31de885ba0409f54d9a1615eff5a4b03ed420393)
424. [bug] jelte
Fixed a bug in bindctl where in some cases, configuration settings
in a named set could disappear, if a child element is modified.
(Trac #1491, git 00a36e752802df3cc683023d256687bf222e256a)
423. [bug] jinmei
The database based zone iterator now correctly resets mixed TTLs
of the same RRset (when that happens) to the lowest one. The
previous implementation could miss lower ones if it appears in a
later part of the RRset.
(part of Trac #1791, git f1f0bc00441057e7050241415ee0367a09c35032)
422. [bug] jinmei
The database based zone iterator now separates RRSIGs of the same
name and type but for different covered types.
(part of Trac #1791, git b4466188150a50872bc3c426242bc7bba4c5f38d)
421. [build] jinmei
Made sure BIND 10 can be built with clang++ 3.1. (It failed on
MacOS 10.7 using Xcode 4.3, but it's more likely to be a matter of
clang version.)
(Trac #1773, git ceaa247d89ac7d97594572bc17f005144c5efb8d)
420. [bug]* jinmei, stephen
Updated the DB schema used in the SQLite3 data source so it can
use SQL indices more effectively. The previous schema had several
issues in this sense and could be very slow for some queries on a
very large zone (especially for negative answers). This change
requires a major version up of the schema; use b10-dbutil to
upgrade existing database files. Note: 'make install' will fail
unless old DB files installed in the standard location have been
upgraded.
(Trac #324, git 8644866497053f91ada4e99abe444d7876ed00ff)
419. [bug] jelte
JSON handler has been improved; escaping now works correctly
(including quotes in strings), and it now rejects more types of
malformed input.
(Trac #1626, git 3b09268518e4e90032218083bcfebf7821be7bd5)
418. [bug] vorner
Fixed crash in bindctl when config unset was called.
(Trac #1715, git 098da24dddad497810aa2787f54126488bb1095c)
417. [bug] jelte
The notify-out code now looks up notify targets in their correct
zones (and no longer just in the zone that the notify is about).
(Trac #1535, git 66300a3c4769a48b765f70e2d0dbf8bbb714435b)
416. [func]* jelte
The implementations of ZoneFinder::find() now throw an OutOfZone
exception when the name argument is not in or below the zone this
zonefinder contains.
(Trac #1535, git 66300a3c4769a48b765f70e2d0dbf8bbb714435b)
bind10-devel-20120329 released on March 29, 2012
415. [doc] jinmei, jreed
BIND 10 Guide updated to now describe the in-memory data source
configurations for b10-auth.
(Trac #1732, git 434d8db8dfcd23a87b8e798e5702e91f0bbbdcf6)
414. [bug] jinmei
b10-auth now correctly handles delegation from an unsigned zone
(defined in the in-memory data source) when the query has DNSSEC
DO bit on. It previously returned SERVFAIL.
(Trac #1836, git 78bb8f4b9676d6345f3fdd1e5cc89039806a9aba)
413. [func] stephen, jelte
Created a new tool b10-dbutil, that can check and upgrade database
schemas, to be used when incompatible changes are introduced in the
backend database schema. Currently it only supports sqlite3 databases.
Note: there's no schema change that requires this utility as of
the March 29th release. While running it shouldn't break
an existing database file, it should be even more advisable not to
run it at the moment.
(Trac #963, git 49ba2cf8ac63246f389ab5e8ea3b3d081dba9adf)
412. [func] jelte
Added a command-line option '--clear-config' to bind10, which causes
the system to create a backup of the existing configuration database
file, and start out with a clean default configuration. This can be
used if the configuration file is corrupted to the point where it
cannot be read anymore, and BIND 10 refuses to start. The name of
the backup file can be found in the logs (CFGMGR_RENAMED_CONFIG_FILE).
(Trac #1443, git 52b36c921ee59ec69deefb6123cbdb1b91dc3bc7)
411. [func] muks
Add a -i/--no-kill command-line argument to bind10, which stops
it from sending SIGTERM and SIGKILL to other b10 processes when
they're shutting down.
(Trac #1819, git 774554f46b20ca5ec2ef6c6d5e608114f14e2102)
410. [bug] jinmei
Python CC library now ensures write operations transmit all given
data (unless an error happens). Previously it didn't check the
size of transmitted data, which could result in partial write on
some systems (notably on OpenBSD) and subsequently cause system
hang up or other broken state. This fix specifically solves start
up failure on OpenBSD.
(Trac #1829, git 5e5a33213b60d89e146cd5e47d65f3f9833a9297)
409. [bug] jelte
Fixed a parser bug in bindctl that could make bindctl crash. Also
improved 'command help' output; argument order is now shown
correctly, and parameter descriptions are shown as well.
(Trac #1172, git bec26c6137c9b0a59a3a8ca0f55a17cfcb8a23de)
408. [bug] stephen, jinmei
b10-auth now filters out duplicate RRsets when building a
response message using the new query handling logic. It's
currently only used with the in-memory data source, but will
also be used for others soon.
(Trac #1688, git b77baca56ffb1b9016698c00ae0a1496d603d197)
407. [build] haikuo
Remove "--enable-boost-threads" switch in configure command. This
thread lock mechanism is useless for bind10 and causes performance
hits.
(Trac #1680, git 9c4d0cadf4adc802cc41a2610dc2c30b25aad728)
406. [bug] muks
On platforms such as OpenBSD where pselect() is not available,
make a wrapper around select() in perfdhcp.
(Trac #1639, git 6ea0b1d62e7b8b6596209291aa6c8b34b8e73191)
405. [bug] jinmei
Make sure disabling Boost threads if the default configuration is
to disable it for the system. This fixes a crash and hang up
problem on OpenBSD, where the use of Boost thread could be
different in different program files depending on the order of
including various header files, and could introduce inconsistent
states between a library and a program. Explicitly forcing the
original default throughout the BIND 10 build environment will
prevent this from happening.
(Trac #1727, git 23f9c3670b544c5f8105958ff148aeba050bc1b4)
404. [bug] naokikambe
The statistic counters are now properly accumulated across multiple
instances of b10-auth (if there are multiple instances), instead of
providing result for random instance.
(Trac #1751, git 3285353a660e881ec2b645e1bc10d94e5020f357)
403. [build]* jelte
The configure option for botan (--with-botan=PATH) is replaced by
--with-botan-config=PATH, which takes a full path to a botan-config
script, instead of the botan 'install' directory. Also, if not
provided, configure will try out config scripts and pkg-config
options until it finds one that works.
(Trac #1640, git 582bcd66dbd8d39f48aef952902f797260280637)
402. [func] jelte
b10-xfrout now has a visible command to send out notifies for
a given zone, callable from bindctl. Xfrout notify <zone> [class]
(Trac #1321, git 0bb258f8610620191d75cfd5d2308b6fc558c280)
401. [func]* jinmei
libdns++: updated the internal implementation of the
MessageRenderer class. This is mostly a transparent change, but
the new version now doesn't allow changing compression mode in the
middle of rendering (which shouldn't be an issue in practice).
On the other hand, name compression performance was significantly
improved: depending on the number of names, micro benchmark tests
showed the new version is several times faster than the previous
version .
(Trac #1603, git 9a2a86f3f47b60ff017ce1a040941d0c145cfe16)
400. [bug] stephen
Fix crash on Max OS X 10.7 by altering logging so as not to allocate
heap storage in the static initialization of logging objects.
(Trac #1698, git a8e53be7039ad50d8587c0972244029ff3533b6e)
399. [func] muks
Add support for the SSHFP RR type (RFC 4255).
(Trac #1136, git ea5ac57d508a17611cfae9d9ea1c238f59d52c51)
398. [func] jelte
The b10-xfrin module now logs more information on successful
incoming transfers. In the case of IXFR, it logs the number of
changesets, and the total number of added and deleted resource
records. For AXFR (or AXFR-style IXFR), it logs the number of
resource records. In both cases, the number of overhead DNS
messages, runtime, amount of wire data, and transfer speed are logged.
(Trac #1280, git 2b01d944b6a137f95d47673ea8367315289c205d)
397. [func] muks
The boss process now gives more helpful description when a
sub-process exits due to a signal.
(Trac #1673, git 1cd0d0e4fc9324bbe7f8593478e2396d06337b1e)
396. [func]* jinmei
libdatasrc: change the return type of ZoneFinder::find() so it can
contain more context of the search, which can be used for
optimizing post find() processing. A new method getAdditional()
is added to it for finding additional RRsets based on the result
of find(). External behavior shouldn't change. The query
handling code of b10-auth now uses the new interface.
(Trac #1607, git 2e940ea65d5b9f371c26352afd9e66719c38a6b9)
395. [bug] jelte
The log message compiler now errors (resulting in build failures) if
duplicate log message identifiers are found in a single message file.
Renamed one duplicate that was found (RESOLVER_SHUTDOWN, renamed to
RESOLVER_SHUTDOWN_RECEIVED).
(Trac #1093, git f537c7e12fb7b25801408f93132ed33410edae76)
(Trac #1741, git b8960ab85c717fe70ad282e0052ac0858c5b57f7)
394. [bug] jelte
b10-auth now catches any exceptions during response building; if any
datasource either throws an exception or causes an exception to be
thrown, the message processing code will now catch it, log a debug
message, and return a SERVFAIL response.
(Trac #1612, git b5740c6b3962a55e46325b3c8b14c9d64cf0d845)
393. [func] jelte
Introduced a new class LabelSequence in libdns++, which provides
lightweight accessor functionality to the Name class, for more
efficient comparison of parts of names.
(Trac #1602, git b33929ed5df7c8f482d095e96e667d4a03180c78)
392. [func]* jinmei
libdns++: revised the (Abstract)MessageRenderer class so that it
has a default internal buffer and the buffer can be temporarily
switched. The constructor interface was modified, and a new
method setBuffer() was added.
(Trac #1697, git 9cabc799f2bf9a3579dae7f1f5d5467c8bb1aa40)
391. [bug]* vorner
The long time unused configuration options of Xfrout "log_name",
"log_file", "log_severity", "log_version" and "log_max_bytes" were
removed, as they had no effect (Xfrout uses the global logging
framework). However, if you have them set, you need to remove
them from the configuration file or the configuration will be
rejected.
(Trac #1090, git ef1eba02e4cf550e48e7318702cff6d67c1ec82e)
bind10-devel-20120301 released on March 1, 2012
390. [bug] vorner
The UDP IPv6 packets are now correctly fragmented for maximum
guaranteed MTU, so they won't get lost because being too large
for some hop.
(Trac #1534, git ff013364643f9bfa736b2d23fec39ac35872d6ad)
389. [func]* vorner
Xfrout now uses the global TSIG keyring, instead of its own. This
means the keys need to be set only once (in tsig_keys/keys).
However, the old configuration of Xfrout/tsig_keys need to be
removed for Xfrout to work.
(Trac #1643, git 5a7953933a49a0ddd4ee1feaddc908cd2285522d)
388. [func] jreed
Use prefix "sockcreator-" for the private temporary directory
used for b10-sockcreator communication.
(git b98523c1260637cb33436964dc18e9763622a242)
387. [build] muks
Accept a --without-werror configure switch so that some builders can
disable the use of -Werror in CFLAGS when building.
(Trac #1671, git 8684a411d7718a71ad9fb616f56b26436c4f03e5)
386. [bug] jelte
Upon initial sqlite3 database creation, the 'diffs' table is now
always created. This already happened most of the time, but there
are a few cases where it was skipped, resulting in potential errors
in xfrout later.
(Trac #1717, git 30d7686cb6e2fa64866c983e0cfb7b8fabedc7a2)
385. [bug] jinmei
libdns++: masterLoad() didn't accept comments placed at the end of
an RR. Due to this the in-memory data source cannot load a master
file for a signed zone even if it's preprocessed with BIND 9's
named-compilezone.
Note: this fix is considered temporary and still only accepts some
limited form of such comments. The main purpose is to allow the
in-memory data source to load any signed or unsigned zone files as
long as they are at least normalized with named-compilezone.
(Trac #1667, git 6f771b28eea25c693fe93a0e2379af924464a562)
384. [func] jinmei, jelte, vorner, haikuo, kevin
b10-auth now supports NSEC3-signed zones in the in-memory data
source.
(Trac #1580, #1581, #1582, #1583, #1584, #1585, #1587, and
other related changes to the in-memory data source)
383. [build] jinmei
Fixed build failure on MacOS 10.7 (Lion) due to the use of
IPV6_PKTINFO; the OS requires a special definition to make it
visible to the compiler.
(Trac #1633, git 19ba70c7cc3da462c70e8c4f74b321b8daad0100)
382. [func] jelte
b10-auth now also experimentally supports statistics counters of
the rcode responses it sends. The counters can be shown as
rcode.<code name>, where code name is the lowercase textual
representation of the rcode (e.g. "noerror", "formerr", etc.).
Same note applies as for opcodes, see changelog entry 364.
(Trac #1613, git e98da500d7b02e11347431a74f2efce5a7d622aa)
381. [bug] jinmei
b10-auth: honor the DNSSEC DO bit in the new query handler.
(Trac #1695, git 61f4da5053c6a79fbc162fb16f195cdf8f94df64)
380. [bug] jinmei
libdns++: miscellaneous bug fixes for the NSECPARAM RDATA
implementation, including incorrect handling for empty salt and
incorrect comparison logic.
(Trac #1638, git 966c129cc3c538841421f1e554167d33ef9bdf25)
379. [bug] jelte
Configuration commands in bindctl now check for list indices if
the 'identifier' argument points to a child element of a list
item. Previously, it was possible to 'get' non-existent values
by leaving out the index, e.g. "config show Auth/listen_on/port,
which should be config show Auth/listen_on[<index>]/port, since
Auth/listen_on is a list. The command without an index will now
show an error. It is still possible to show/set the entire list
("config show Auth/listen_on").
(Trac #1649, git 003ca8597c8d0eb558b1819dbee203fda346ba77)
378. [func] vorner
It is possible to start authoritative server or resolver in multiple
instances, to use more than one core. Configuration is described in
the guide.
(Trac #1596, git 17f7af0d8a42a0a67a2aade5bc269533efeb840a)
377. [bug] jinmei
libdns++: miscellaneous bug fixes for the NSEC and NSEC3 RDATA
implementation, including a crash in NSEC3::toText() for some RR
types, incorrect handling of empty NSEC3 salt, and incorrect
comparison logic in NSEC3::compare().
(Trac #1641, git 28ba8bd71ae4d100cb250fd8d99d80a17a6323a2)
376. [bug] jinmei, vorner
The new query handling module of b10-auth did not handle type DS
query correctly: It didn't look for it in the parent zone, and
it incorrectly returned a DS from the child zone if it
happened to exist there. Both were corrected, and it now also
handles the case of having authority for the child and a grand
ancestor.
(Trac #1570, git 2858b2098a10a8cc2d34bf87463ace0629d3670e)
375. [func] jelte
Modules now inform the system when they are stopping. As a result,
they are removed from the 'active modules' list in bindctl, which
can then inform the user directly when it tries to send them a
command or configuration update. Previously this would result
in a 'not responding' error instead of 'not running'.
(Trac #640, git 17e78fa1bb1227340aa9815e91ed5c50d174425d)
374. [func]* stephen
Alter RRsetPtr and ConstRRsetPtr to point to AbstractRRset (instead
of RRset) to allow for specialised implementations of RRsets in
data sources.
(Trac #1604, git 3071211d2c537150a691120b0a5ce2b18d010239)
373. [bug] jinmei
libdatasrc: the in-memory data source incorrectly rejected loading
a zone containing a CNAME RR with RRSIG and/or NSEC.
(Trac #1551, git 76f823d42af55ce3f30a0d741fc9297c211d8b38)
372. [func] vorner
When the allocation of a socket fails for a different reason than the
socket not being provided by the OS, the b10-auth and b10-resolver
abort, as the system might be in inconsistent state after such error.
(Trac #1543, git 49ac4659f15c443e483922bf9c4f2de982bae25d)
371. [bug] jelte
The new query handling module of b10-auth (currently only used with
the in-memory data source) now correctly includes the DS record (or
the denial of its existence if NSEC is used) when returning a
delegation from a signed zone.
(Trac #1573, git bd7a3ac98177573263950303d4b2ea7400781d0f)
370. [func] jinmei
libdns++: a new class NSEC3Hash was introduced as a utility for
calculating NSEC3 hashes for various purposes. Python binding was
provided, too. Also fixed a small bug in the NSEC3PARAM RDATA
implementation that empty salt in text representation was
rejected.
(Trac #1575, git 2c421b58e810028b303d328e4e2f5b74ea124839)
369. [func] vorner
The SocketRequestor provides more information about what error
happened when it throws, by using subclasses of the original
exception. This way a user not interested in the difference can
still use the original exception, while it can be recognized if
necessary.
(Trac #1542, git 2080e0316a339fa3cadea00e10b1ec4bc322ada0)
368. [func]* jinmei
libdatasrc: the interface of ZoneFinder() was changed: WILDCARD
related result codes were deprecated and removed, and the
corresponding information is now provided via a separate accessor
method on FindResult. Other separate FindResult methods will
also tell the caller whether the zone is signed with NSEC or NSEC3
(when necessary and applicable).
(Trac #1611, git c175c9c06034b4118e0dfdbccd532c2ebd4ba7e8)
367. [bug] jinmei
libdatasrc: in-memory data source could incorrectly reject to load
zones containing RRSIG records. For example, it didn't allow
RRSIG that covers a CNAME RR. This fix also makes sure find()
will return RRsets with RRSIGs if they are signed.
(Trac #1614, git e8241ea5a4adea1b42a60ee7f2c5cfb87301734c)
366. [bug] vorner
Fixed problem where a directory named "io" conflicted with the python3
standard module "io" and caused the installation to fail. The
offending directory has been renamed to "cio".
(Trac #1561, git d81cf24b9e37773ba9a0d5061c779834ff7d62b9)
365. [bug] jinmei
libdatasrc: in-memory datasource incorrectly returned delegation
for DS lookups.
(Trac #1571, git d22e90b5ef94880183cd652e112399b3efb9bd67)
364. [func] jinmei
b10-auth experimentally supports statistics counters of incoming
requests per opcode. The counters can be (e.g.) shown as
opcode.<code name> in the output of the bindctl "Stats show"
command, where <code name> is lower-cased textual representation
of opcodes ("query", "notify", etc).
Note: This is an experimental attempt of supporting more
statistics counters for b10-auth, and the interface and output may
change in future versions.
(Trac #1399, git 07206ec76e2834de35f2e1304a274865f8f8c1a5)
bind10-devel-20120119 released on January 19, 2012
363. [func] jelte
Added dummy DDNS module b10-ddns. Currently it does not
provide any functionality, but it is a skeleton implementation
that will be expanded later.
(Trac #1451, git b0d0bf39fbdc29a7879315f9b8e6d602ef3afb1b)
362. [func]* vorner
Due to the socket creator changes, b10-auth and b10-resolver
are no longer needed to start as root. They are started as
the user they should be running, so they no longer have
the -u flag for switching the user after initialization.
Note: this change broke backward compatibility to boss component
configuration. If your b10-config.db contains "setuid" for
Boss.components, you'll need to remove that entry by hand before
starting BIND 10.
(Trac #1508, #1509, #1510,
git edc5b3c12eb45437361484c843794416ad86bb00)
361. [func] vorner, jelte, jinmei
The socket creator is now used to provide sockets. It means you can
reconfigure the ports and addresses at runtime even when the rest
of the bind10 runs as non root user.
(Trac #805, #1522, git 1830215f884e3b5efda52bd4dbb120bdca863a6a)
360. [bug] vorner
Fixed problem where bindctl crashed when a duplicate non-string
item was added to a list. This error is now properly reported.
(Trac #1515, git a3cf5322a73e8a97b388c6f8025b92957e5d8986)
359. [bug] kevin
Corrected SOA serial check in xfrout. It now compares the SOA
serial of an IXFR query with that of the server based serial
number arithmetic, and replies with a single SOA record of the
server's current version if the former is equal to or newer
than the latter.
(Trac #1462, git ceeb87f6d539c413ebdc66e4cf718e7eb8559c45)
358. [bug] jinmei
b10-resolver ignored default configuration parameters if listen_on
failed (this can easily happen especially for a test environment
where the run time user doesn't have root privilege), and even if
listen_on was updated later the resolver wouldn't work correctly
unless it's fully restarted (for example, all queries would be
rejected due to an empty ACL).
(Trac #1424, git 2cba8cb83cde4f34842898a848c0b1182bc20597)
357. [bug] jinmei
ZoneFinder::find() for database based data sources didn't
correctly identify out-of-zone query name and could return a
confusing result such as NXRRSET. It now returns NXDOMAIN with an
empty RRset. Note: we should rather throw an exception in such a
case, which should be revisited later (see Trac #1536).
(Trac #1430, git b35797ba1a49c78246abc8f2387901f9690b328d)
356. [doc] tomek
BIND 10 Guide updated. It now describes DHCPv4 and DHCPv6
components, including their overview, usage, supported standard
and limitations. libdhcp++ is also described.
(Trac #1367, git 3758ab360efe1cdf616636b76f2e0fb41f2a62a0)
355. [bug] jinmei
Python xfrin.diff module incorrectly combined RRSIGs of different
type covered, possibly merging different TTLs. As a result a
secondary server could store different RRSIGs than those at the
primary server if it gets these records via IXFR.
(Trac #1502, git 57b06f8cb6681f591fa63f25a053eb6f422896ef)
354. [func] tomek
dhcp4: Support for DISCOVER and OFFER implemented. b10-dhcp4 is
now able to offer hardcoded leases to DHCPv4 clients.
dhcp6: Code refactored to use the same approach as dhcp4.
(Trac #1230, git aac05f566c49daad4d3de35550cfaff31c124513)
353. [func] tomek
libdhcp++: Interface detection in Linux implemented. libdhcp++
is now able (on Linux systems) to detect available network
interfaces, its link-layer addresses, flags and configured
IPv4 and IPv6 addresses. Interface detection on other
systems is planned.
(Trac #1237, git 8a040737426aece7cc92a795f2b712d7c3407513)
352. [func] tomek
libdhcp++: Transmission and reception of DHCPv4 packets is now
implemented. Low-level hacks are not implemented for transmission
to hosts that don't have IPv4 address yet, so currently the code
is usable for communication with relays only, not hosts on the
same link.
(Trac #1239, #1240, git f382050248b5b7ed1881b086d89be2d9dd8fe385)
351. [func] fdupont
Alpha version of DHCP benchmarking tool added. "perfdhcp" is able to
test both IPv4 and IPv6 servers: it can time the four-packet exchange
(DORA and SARR) as well as time the initial two-packet exchange (DO
and SA). More information can be obtained by invoking the utility
(in tests/tools/perfdhcp) with the "-h" flag.
(Trac #1450, git 85083a76107ba2236732b45524ce7018eefbaf90)
350. [func]* vorner
The target parameter of ZoneFinder::find is no longer present, as the
interface was awkward. To get all the RRsets of a single domain, use
the new findAll method (the same applies to python version, the method
is named find_all).
(Trac #1483, #1484, git 0020456f8d118c9f3fd6fc585757c822b79a96f6)
349. [bug] dvv
resolver: If an upstream server responds with FORMERR to an EDNS
query, try querying it without EDNS.
(Trac #1386, git 99ad0292af284a246fff20b3702fbd7902c45418)
348. [bug] stephen
By default the logging output stream is now flushed after each write.
This fixes a problem seen on some systems where the log output from
different processes was jumbled up. Flushing can be disabled by
setting the appropriate option in the logging configuration.
(Trac #1405, git 2f0aa20b44604b671e6bde78815db39381e563bf)
347. [bug] jelte
Fixed a bug where adding Zonemgr/secondary_zones without explicitly
setting the class value of the added zone resulted in a cryptic
error in bindctl ("Error: class"). It will now correctly default to
IN if not set. This also adds better checks on the name and class
values, and better errors if they are bad.
(Trac #1414, git 7b122af8489acf0f28f935a19eca2c5509a3677f)
346. [build]* jreed
Renamed libdhcp to libdhcp++.
(Trac #1446, git d394e64f4c44f16027b1e62b4ac34e054b49221d)
345. [func] tomek
dhcp4: Dummy DHCPv4 component implemented. Currently it does
nothing useful, except providing skeleton implementation that can
be expanded in the future.
(Trac #992, git d6e33479365c8f8f62ef2b9aa5548efe6b194601)
344. [func] y-aharen
src/lib/statistics: Added statistics counter library for entire server
items and per zone items. Also, modified b10-auth to use it. It is
also intended to use in the other modules such as b10-resolver.
(Trac #510, git afddaf4c5718c2a0cc31f2eee79c4e0cc625499f)
343. [func] jelte
Added IXFR-out system tests, based on the first two test sets of
http://bind10.isc.org/wiki/IxfrSystemTests.
(Trac #1314, git 1655bed624866a766311a01214597db01b4c7cec)
342. [bug] stephen
In the resolver, a FORMERR received from an upstream nameserver
now results in a SERVFAIL being returned as a response to the original
query. Additional debug messages added to distinguish between
different errors in packets received from upstream nameservers.
(Trac #1383, git 9b2b249d23576c999a65d8c338e008cabe45f0c9)
341. [func] tomek
libdhcp++: Support for handling both IPv4 and IPv6 added.
Also added support for binding IPv4 sockets.
(Trac #1238, git 86a4ce45115dab4d3978c36dd2dbe07edcac02ac)
340. [build] jelte
Fixed several linker issues related to recent gcc versions, botan
and gtest.
(Trac #1442, git 91fb141bfb3aadfdf96f13e157a26636f6e9f9e3)
339. [bug] jinmei
libxfr, used by b10-auth to share TCP sockets with b10-xfrout,
incorrectly propagated ASIO specific exceptions to the application
if the given file name was too long. This could lead to
unexpected shut down of b10-auth.
(Trac #1387, git a5e9d9176e9c60ef20c0f5ef59eeb6838ed47ab2)
338. [bug] jinmei
b10-xfrin didn't check SOA serials of SOA and IXFR responses,
which resulted in unnecessary transfer or unexpected IXFR
timeouts (these issues were not overlooked but deferred to be
fixed until #1278 was completed). Validation on responses to SOA
queries were tightened, too.
(Trac #1299, git 6ff03bb9d631023175df99248e8cc0cda586c30a)
337. [func] tomek
libdhcp++: Support for DHCPv4 option that can store a single
address or a list of IPv4 addresses added. Support for END option
added.
(Trac #1350, git cc20ff993da1ddb1c6e8a98370438b45a2be9e0a)
336. [func] jelte
libdns++ (and its python wrapper) now includes a class Serial, for
SOA SERIAL comparison and addition. Operations on instances of this
class follow the specification from RFC 1982.
Rdata::SOA::getSerial() now returns values of this type (and not
uint32_t).
(Trac #1278, git 2ae72d76c74f61a67590722c73ebbf631388acbd)
335. [bug]* jelte
The DataSourceClientContainer class that dynamically loads
datasource backend libraries no longer provides just a .so file name
to its call to dlopen(), but passes it an absolute path. This means
that it is no longer an system implementation detail that depends on
[DY]LD_LIBRARY_PATH which file is chosen, should there be multiple
options (for instance, when test-running a new build while a
different version is installed).
These loadable libraries are also no longer installed in the default
library path, but in a subdirectory of the libexec directory of the
target ($prefix/libexec/[version]/backends).
This also removes the need to handle b10-xfin and b10-xfrout as
'special' hardcoded components, and they are now started as regular
components as dictated by the configuration of the boss process.
(Trac #1292, git 83ce13c2d85068a1bec015361e4ef8c35590a5d0)
334. [bug] jinmei
b10-xfrout could potentially create an overflow response message
(exceeding the 64KB max) or could create unnecessarily small
messages. The former was actually unlikely to happen due to the
effect of name compression, and the latter was marginal and at least
shouldn't cause an interoperability problem, but these were still
potential problems and were fixed.
(Trac #1389, git 3fdce88046bdad392bd89ea656ec4ac3c858ca2f)
333. [bug] dvv
Solaris needs "-z now" to force non-lazy binding and prevent
g++ static initialization code from deadlocking.
(Trac #1439, git c789138250b33b6b08262425a08a2a0469d90433)
332. [bug] vorner
C++ exceptions in the isc.dns.Rdata wrapper are now converted
to python ones instead of just aborting the interpreter.
(Trac #1407, git 5b64e839be2906b8950f5b1e42a3fadd72fca033)
bind10-devel-20111128 released on November 28, 2011
331. [bug] shane
Fixed a bug in data source library where a zone with more labels
than an out-of-bailiwick name server would cause an exception to
be raised.
(Trac #1430, git 81f62344db074bc5eea3aaf3682122fdec6451ad)
330. [bug] jelte
Fixed a bug in b10-auth where it would sometimes fail because it
tried to check for queued msgq messages before the session was
fully running.
(git c35d0dde3e835fc5f0a78fcfcc8b76c74bc727ca)
329. [doc] vorner, jreed
Document the bind10 run control configuration in guide and
manual page.
(Trac #1341, git c1171699a2b501321ab54207ad26e5da2b092d63)
328. [func] jelte
b10-auth now passes IXFR requests on to b10-xfrout, and no longer
responds to them with NOTIMPL.
(Trac #1390, git ab3f90da16d31fc6833d869686e07729d9b8c135)
327. [func] jinmei
b10-xfrout now supports IXFR. (Right now there is no user
configurable parameter about this feature; b10-xfrout will
always respond to IXFR requests according to RFC1995).
(Trac #1371 and #1372, git 80c131f5b0763753d199b0fb9b51f10990bcd92b)
326. [build]* jinmei
Added a check script for the SQLite3 schema version. It will be
run at the beginning of 'make install', and if it detects an old
version of schema, installation will stop. You'll then need to
upgrade the database file by following the error message.
(Trac #1404, git a435f3ac50667bcb76dca44b7b5d152f45432b57)
325. [func] jinmei
Python isc.datasrc: added interfaces for difference management:
DataSourceClient.get_updater() now has the 'journaling' parameter
to enable storing diffs to the data source, and a new class
ZoneJournalReader was introduced to retrieve them, which can be
created by the new DataSourceClient.get_journal_reader() method.
(Trac #1333, git 3e19362bc1ba7dc67a87768e2b172c48b32417f5,
git 39def1d39c9543fc485eceaa5d390062edb97676)
324. [bug] jinmei
Fixed reference leak in the isc.log Python module. Most of all
BIND 10 Python programs had memory leak (even though the pace of
leak may be slow) due to this bug.
(Trac #1359, git 164d651a0e4c1059c71f56b52ea87ac72b7f6c77)
323. [bug] jinmei
b10-xfrout incorrectly skipped adding TSIG RRs to some
intermediate responses (when TSIG is to be used for the
responses). While RFC2845 optionally allows to skip intermediate
TSIGs (as long as the digest for the skipped part was included
in a later TSIG), the underlying TSIG API doesn't support this
mode of signing.
(Trac #1370, git 76fb414ea5257b639ba58ee336fae9a68998b30d)
322. [func] jinmei
datasrc: Added C++ API for retrieving difference of two versions
of a zone. A new ZoneJournalReader class was introduced for this
purpose, and a corresponding factory method was added to
DataSourceClient.
(Trac #1332, git c1138d13b2692fa3a4f2ae1454052c866d24e654)
321. [func]* jinmei
b10-xfrin now installs IXFR differences into the underlying data
source (if it supports journaling) so that the stored differences
can be used for subsequent IXFR-out transactions.
Note: this is a backward incompatibility change for older sqlite3
database files. They need to be upgraded to have a "diffs" table.
(Trac #1376, git 1219d81b49e51adece77dc57b5902fa1c6be1407)
320. [func]* vorner
The --brittle switch was removed from the bind10 executable.
It didn't work after change #316 (Trac #213) and the same
effect can be accomplished by declaring all components as core.
(Trac #1340, git f9224368908dd7ba16875b0d36329cf1161193f0)
319. [func] naokikambe
b10-stats-httpd was updated. In addition of the access to all
statistics items of all modules, the specified item or the items
of the specified module name can be accessed. For example, the
URI requested by using the feature is showed as
"/bind10/statistics/xml/Auth" or
"/bind10/statistics/xml/Auth/queries.tcp". The list of all possible
module names and all possible item names can be showed in the
root document, whose URI is "/bind10/statistics/xml". This change
is not only for the XML documents but also is for the XSD and
XSL documents.
(Trac #917, git b34bf286c064d44746ec0b79e38a6177d01e6956)
318. [func] stephen
Add C++ API for accessing zone difference information in
database-based data sources.
(Trac #1330, git 78770f52c7f1e7268d99e8bfa8c61e889813bb33)
317. [func] vorner
datasrc: the getUpdater method of DataSourceClient supports an
optional 'journaling' parameter to indicate the generated updater
to store diffs. The database based derived class implements this
extension.
(Trac #1331, git 713160c9bed3d991a00b2ea5e7e3e7714d79625d)
316. [func]* vorner
The configuration of what parts of the system run is more
flexible now. Everything that should run must have an
entry in Boss/components.
(Trac #213, git 08e1873a3593b4fa06754654d22d99771aa388a6)
315. [func] tomek
libdhcp: Support for DHCPv4 packet manipulation is now implemented.
All fixed fields are now supported. Generic support for DHCPv4
options is available (both parsing and assembly). There is no code
that uses this new functionality yet, so it is not usable directly
at this time. This code will be used by upcoming b10-dhcp4 daemon.
(Trac #1228, git 31d5a4f66b18cca838ca1182b9f13034066427a7)
314. [bug] jelte
b10-xfrin would previously initiate incoming transfers upon
receiving NOTIFY messages from any address (if the zone was
known to b10-xfrin, and using the configured address). It now
only starts a transfer if the source address from the NOTIFY
packet matches the configured master address and port. This was
really already fixed in release bind10-devel-20111014, but there
were some deferred cleanups to add.
(Trac #1298, git 1177bfe30e17a76bea6b6447e14ae9be9e1ca8c2)
313. [func] jinmei
datasrc: Added C++ API for adding zone differences to database
based data sources. It's intended to be used for the support for
IXFR-in and dynamic update (so they can subsequently be retrieved
for IXFR-out). The addRecordDiff method of the DatabaseAccessor
defines the interface, and a concrete implementation for SQLite3
was provided.
(Trac #1329, git 1aa233fab1d74dc776899df61181806679d14013)
312. [func] jelte
Added an initial framework for doing system tests using the
cucumber-based BDD tool Lettuce. A number of general steps are
included, for instance running bind10 with specific
configurations, sending queries, and inspecting query answers. A
few very basic tests are included as well.
(Trac #1290, git 6b75c128bcdcefd85c18ccb6def59e9acedd4437)
311. [bug] jelte
Fixed a bug in bindctl where tab-completion for names that
contain a hyphen resulted in unexpected behaviour, such as
appending the already-typed part again.
(Trac #1345, git f80ab7879cc29f875c40dde6b44e3796ac98d6da)
310. [bug] jelte
Fixed a bug where bindctl could not set a value that is optional
and has no default, resulting in the error that the setting
itself was unknown. bindctl now correctly sees the setting and
is able to set it.
(Trac #1344, git 0e776c32330aee466073771600390ce74b959b38)
309. [bug] jelte
Fixed a bug in bindctl where the removal of elements from a set
with default values was not stored, unless the set had been
modified in another way already.
(Trac #1343, git 25c802dd1c30580b94345e83eeb6a168ab329a33)
308. [build] jelte
The configure script will now use pkg-config for finding
information about the Botan library. If pkg-config is unavailable,
or unaware of Botan, it will fall back to botan-config. It will
also use botan-config when a specific botan library directory is
given using the '--with-botan=' flag
(Trac #1194, git dc491833cf75ac1481ba1475795b0f266545013d)
307. [func] vorner
When zone transfer in fails with IXFR, it is retried with AXFR
automatically.
(Trac #1279, git cd3588c9020d0310f949bfd053c4d3a4bd84ef88)
306. [bug] stephen
Boss process now waits for the configuration manager to initialize
itself before continuing with startup. This fixes a race condition
whereby the Boss could start the configuration manager and then
immediately start components that depended on that component being
fully initialized.
(Trac #1271, git 607cbae949553adac7e2a684fa25bda804658f61)
305. [bug] jinmei
Python isc.dns, isc.datasrc, xfrin, xfrout: fixed reference leak
in Message.get_question(), Message.get_section(),
RRset.get_rdata(), and DataSourceClient.get_updater().
The leak caused severe memory leak in b10-xfrin, and (although no
one reported it) should have caused less visible leak in
b10-xfrout. b10-xfrin had its own leak, which was also fixed.
(Trac #1028, git a72886e643864bb6f86ab47b115a55e0c7f7fcad)
304. [bug] jelte
The run_bind10.sh test script now no longer runs processes from
an installed version of BIND 10, but will correctly use the
build tree paths.
(Trac #1246, git 1d43b46ab58077daaaf5cae3c6aa3e0eb76eb5d8)
303. [bug] jinmei
Changed the installation path for the UNIX domain file used
for the communication between b10-auth and b10-xfrout to a
"@PACKAGE@" subdirectory (e.g. from /usr/local/var to
/usr/local/var/bind10-devel). This should be transparent change
because this file is automatically created and cleaned up, but
if the old file somehow remains, it can now be safely removed.
(Trac #869, git 96e22f4284307b1d5f15e03837559711bb4f580c)
302. [bug] jelte
msgq no longer crashes if the remote end is closed while msgq
tries to send data. It will now simply drop the message and close
the connection itself.
(Trac #1180, git 6e68b97b050e40e073f736d84b62b3e193dd870a)
301. [func] stephen
Add system test for IXFR over TCP.
(Trac #1213, git 68ee3818bcbecebf3e6789e81ea79d551a4ff3e8)
300. [func]* tomek
libdhcp: DHCP packet library was implemented. Currently it handles
packet reception, option parsing, option generation and output
packet building. Generic and specialized classes for several
DHCPv6 options (IA_NA, IAADDR, address-list) are available. A
simple code was added that leverages libdhcp. It is a skeleton
DHCPv6 server. It receives incoming SOLICIT and REQUEST messages
and responds with proper ADVERTISE and REPLY. Note that since
LeaseManager is not implemented, server assigns the same
hardcoded lease for every client. This change removes existing
DHCPv6 echo server as it was only a proof of concept code.
(Trac #1186, git 67ea6de047d4dbd63c25fe7f03f5d5cc2452ad7d)
299. [build] jreed
Do not install the libfake_session, libtestutils, or libbench
libraries. They are used by tests within the source tree.
Convert all test-related makefiles to build test code at
regular make time to better work with test-driven development.
This reverts some of #1901. (The tests are ran using "make
check".)
(Trac #1286, git cee641fd3d12341d6bfce5a6fbd913e3aebc1e8e)
bind10-devel-20111014 released on October 14, 2011
298. [doc] jreed
Shorten README. Include plain text format of the Guide.
(git d1897d3, git 337198f)
297. [func] dvv
Implement the SPF rrtype according to RFC4408.
(Trac #1140, git 146934075349f94ee27f23bf9ff01711b94e369e)
296. [build] jreed
Do not install the unittest libraries. At this time, they
are not useful without source tree (and they may or may
not have googletest support). Also, convert several makefiles
to build tests at "check" time and not build time.
(Trac #1091, git 2adf4a90ad79754d52126e7988769580d20501c3)
295. [bug] jinmei
__init__.py for isc.dns was installed in the wrong directory,
which would now make xfrin fail to start. It was also bad
in that it replaced any existing __init__.py in th public
site-packages directory. After applying this fix You may want to
check if the wrong init file is in the wrong place, in which
case it should be removed.
(Trac #1285, git af3b17472694f58b3d6a56d0baf64601b0f6a6a1)
294. [func] jelte, jinmei, vorner
b10-xfrin now supports incoming IXFR. See BIND 10 Guide for
how to configure it and operational notes.
(Trac #1212, multiple git merges)
293. [func]* tomek
b10-dhcp6: Implemented DHCPv6 echo server. It joins DHCPv6
multicast groups and listens to incoming DHCPv6 client messages.
Received messages are then echoed back to clients. This
functionality is limited, but it can be used to test out client
resiliency to unexpected messages. Note that network interface
detection routines are not implemented yet, so interface name
and its address must be specified in interfaces.txt.
(Trac #878, git 3b1a604abf5709bfda7271fa94213f7d823de69d)
292. [func] dvv
Implement the DLV rrtype according to RFC4431.
(Trac #1144, git d267c0511a07c41cd92e3b0b9ee9bf693743a7cf)
291. [func] naokikambe
Statistics items are specified by each module's spec file.
Stats module can read these through the config manager. Stats
module and stats httpd report statistics data and statistics
schema by each module via both bindctl and HTTP/XML.
(Trac #928, #929, #930, #1175,
git 054699635affd9c9ecbe7a108d880829f3ba229e)
290. [func] jinmei
libdns++/pydnspp: added an option parameter to the "from wire"
methods of the Message class. One option is defined,
PRESERVE_ORDER, which specifies the parser to handle each RR
separately, preserving the order, and constructs RRsets in the
message sections so that each RRset contains only one RR.
(Trac #1258, git c874cb056e2a5e656165f3c160e1b34ccfe8b302)
289. [func]* jinmei
b10-xfrout: ACLs for xfrout can now be configured per zone basis.
A per zone ACL is part of a more general zone configuration. A
quick example for configuring an ACL for zone "example.com" that
rejects any transfer request for that zone is as follows:
> config add Xfrout/zone_config
> config set Xfrout/zone_config[0]/origin "example.com"
> config add Xfrout/zone_config[0]/transfer_acl
> config set Xfrout/zone_config[0]/transfer_acl[0] {"action": "REJECT"}
The previous global ACL (query_acl) was renamed to transfer_acl,
which now works as the default ACL. Note: backward compatibility
is not provided, so an existing configuration using query_acl
needs to be updated by hand.
Note: the per zone configuration framework is a temporary
workaround. It will eventually be redesigned as a system wide
configuration.
(Trac #1165, git 698176eccd5d55759fe9448b2c249717c932ac31)
288. [bug] stephen
Fixed problem whereby the order in which component files appeared in
rdataclass.cc was system dependent, leading to problems on some
systems where data types were used before the header file in which
they were declared was included.
(Trac #1202, git 4a605525cda67bea8c43ca8b3eae6e6749797450)
287. [bug]* jinmei
Python script files for log messages (xxx_messages.py) should have
been installed under the "isc" package. This fix itself should
be a transparent change without affecting existing configurations
or other operational practices, but you may want to clean up the
python files from the common directly (such as "site-packages").
(Trac #1101, git 0eb576518f81c3758c7dbaa2522bd8302b1836b3)
286. [func] ocean
libdns++: Implement the HINFO rrtype support according to RFC1034,
and RFC1035.
(Trac #1112, git 12d62d54d33fbb1572a1aa3089b0d547d02924aa)
285. [bug] jelte
sqlite3 data source: fixed a race condition on initial startup,
when the database has not been initialized yet, and multiple
processes are trying to do so, resulting in one of them failing.
(Trac #326, git 5de6f9658f745e05361242042afd518b444d7466)
284. [bug] jerry
b10-zonemgr: zonemgr will not terminate on empty zones, it will
log a warning and try to do zone transfer for them.
(Trac #1153, git 0a39659638fc68f60b95b102968d7d0ad75443ea)
283. [bug] zhanglikun
Make stats and boss processes wait for answer messages from each
other in block mode to avoid orphan answer messages, add an internal
command "getstats" to boss process for getting statistics data from
boss.
(Trac #519, git 67d8e93028e014f644868fede3570abb28e5fb43)
282. [func] ocean
libdns++: Implement the NAPTR rrtype according to RFC2915,
RFC2168 and RFC3403.
(Trac #1130, git 01d8d0f13289ecdf9996d6d5d26ac0d43e30549c)
bind10-devel-20110819 released on August 19, 2011
281. [func] jelte
Added a new type for configuration data: "named set". This allows for
similar configuration as the current "list" type, but with strings
instead of indices as identifiers. The intended use is for instance
/foo/zones/example.org/bar instead of /foo/zones[2]/bar. Currently
this new type is not in use yet.
(Trac #926, git 06aeefc4787c82db7f5443651f099c5af47bd4d6)
280. [func] jerry
libdns++: Implement the MINFO rrtype according to RFC1035.
(Trac #1113, git 7a9a19d6431df02d48a7bc9de44f08d9450d3a37)
279. [func] jerry
libdns++: Implement the AFSDB rrtype according to RFC1183.
(Trac #1114, git ce052cd92cd128ea3db5a8f154bd151956c2920c)
278. [doc] jelte
Add logging configuration documentation to the guide.
(Trac #1011, git 2cc500af0929c1f268aeb6f8480bc428af70f4c4)
277. [func] jerry
libdns++: Implement the SRV rrtype according to RFC2782.
(Trac #1128, git 5fd94aa027828c50e63ae1073d9d6708e0a9c223)
276. [func] stephen
Although the top-level loggers are named after the program (e.g.
b10-auth, b10-resolver), allow the logger configuration to omit the
"b10-" prefix and use just the module name.
(Trac #1003, git a01cd4ac5a68a1749593600c0f338620511cae2d)
275. [func] jinmei
Added support for TSIG key matching in ACLs. The xfrout ACL can
now refer to TSIG key names using the "key" attribute. For
example, the following specifies an ACL that allows zone transfer
if and only if the request is signed with a TSIG of a key name
"key.example":
> config set Xfrout/query_acl[0] {"action": "ACCEPT", \
"key": "key.example"}
(Trac #1104, git 9b2e89cabb6191db86f88ee717f7abc4171fa979)
274. [bug] naokikambe
add unittests for functions xml_handler, xsd_handler and xsl_handler
respectively to make sure their behaviors are correct, regardless of
whether type which xml.etree.ElementTree.tostring() after Python3.2
returns is str or byte.
(Trac #1021, git 486bf91e0ecc5fbecfe637e1e75ebe373d42509b)
273. [func] vorner
It is possible to specify ACL for the xfrout module. It is in the ACL
configuration key and has the usual ACL syntax. It currently supports
only the source address. Default ACL accepts everything.
(Trac #772, git 50070c824270d5da1db0b716db73b726d458e9f7)
272. [func] jinmei
libdns++/pydnspp: TSIG signing now handles truncated DNS messages
(i.e. with TC bit on) with TSIG correctly.
(Trac #910, 8e00f359e81c3cb03c5075710ead0f87f87e3220)
271. [func] stephen
Default logging for unit tests changed to severity DEBUG (level 99)
with the output routed to /dev/null. This can be altered by setting
the B10_LOGGER_XXX environment variables.
(Trac #1024, git 72a0beb8dfe85b303f546d09986461886fe7a3d8)
270. [func] jinmei
Added python bindings for ACLs using the DNS request as the
context. They are accessible via the isc.acl.dns module.
(Trac #983, git c24553e21fe01121a42e2136d0a1230d75812b27)
269. [bug] y-aharen
Modified IntervalTimerTest not to rely on the accuracy of the timer.
This fix addresses occasional failure of build tests.
(Trac #1016, git 090c4c5abac33b2b28d7bdcf3039005a014f9c5b)
268. [func] stephen
Add environment variable to allow redirection of logging output during
unit tests.
(Trac #1071, git 05164f9d61006869233b498d248486b4307ea8b6)
bind10-devel-20110705 released on July 05, 2011
267. [func] tomek
Added a dummy module for DHCP6. This module does not actually
do anything at this point, and BIND 10 has no option for
starting it yet. It is included as a base for further
development.
(Trac #990, git 4a590df96a1b1d373e87f1f56edaceccb95f267d)
266. [func] Multiple developers
Convert various error messages, debugging and other output
to the new logging interface, including for b10-resolver,
the resolver library, the CC library, b10-auth, b10-cfgmgr,
b10-xfrin, and b10-xfrout. This includes a lot of new
documentation describing the new log messages.
(Trac #738, #739, #742, #746, #759, #761, #762)
265. [func]* jinmei
b10-resolver: Introduced ACL on incoming queries. By default the
resolver accepts queries from ::1 and 127.0.0.1 and rejects all
others. The ACL can be configured with bindctl via the
"Resolver/query_acl" parameter. For example, to accept queries
from 192.0.2.0/24 (in addition to the default list), do this:
> config add Resolver/query_acl
> config set Resolver/query_acl[2]/action "ACCEPT"
> config set Resolver/query_acl[2]/from "192.0.2.0/24"
> config commit
(Trac #999, git e0744372924442ec75809d3964e917680c57a2ce,
also based on other ACL related work done by stephen and vorner)
264. [bug] jerry
b10-xfrout: fixed a busy loop in its notify-out subthread. Due to
the loop, the thread previously woke up every 0.5 seconds throughout
most of the lifetime of b10-xfrout, wasting the corresponding CPU
time.
(Trac #1001, git fb993ba8c52dca4a3a261e319ed095e5af8db15a)
263. [func] jelte
Logging configuration can now also accept a * as a first-level
name (e.g. '*', or '*.cache'), indicating that every module
should use that configuration, unless overridden by an explicit
logging configuration for that module
(Trac #1004, git 0fad7d4a8557741f953eda9fed1d351a3d9dc5ef)
262. [func] stephen
Add some initial documentation about the logging framework.
Provide BIND 10 Messages Manual in HTML and DocBook? XML formats.
This provides all the log message descriptions in a single document.
A developer tool, tools/system_messages.py (available in git repo),
was written to generate this.
(Trac #1012, git 502100d7b9cd9d2300e78826a3bddd024ef38a74)
261. [func] stephen
Add new-style logging messages to b10-auth.
(Trac #738, git c021505a1a0d6ecb15a8fd1592b94baff6d115f4)
260. [func] stephen
Remove comma between message identification and the message
text in the new-style logging messages.
(Trac #1031, git 1c7930a7ba19706d388e4f8dcf2a55a886b74cd2)
259. [bug] stephen
Logging now correctly initialized in b10-auth. Also, fixed
bug whereby querying for "version.bind txt ch" would cause
b10-auth to crash if BIND 10 was started with the "-v" switch.
(Trac #1022, #1023, git 926a65fa08617be677a93e9e388df0f229b01067)
258. [build] jelte
Now builds and runs with Python 3.2
(Trac #710, git dae1d2e24f993e1eef9ab429326652f40a006dfb)
257. [bug] y-aharen
Fixed a bug an instance of IntervalTimerImpl may be destructed
while deadline_timer is holding the handler. This fix addresses
occasional failure of IntervalTimerTest.destructIntervalTimer.
(Trac #957, git e59c215e14b5718f62699ec32514453b983ff603)
256. [bug] jerry
src/bin/xfrin: update xfrin to check TSIG before other part of
incoming message.
(Trac #955, git 261450e93af0b0406178e9ef121f81e721e0855c)
255. [func] zhang likun
src/lib/cache: remove empty code in lib/cache and the corresponding
suppression rule in src/cppcheck-suppress.lst.
(Trac #639, git 4f714bac4547d0a025afd314c309ca5cb603e212)
254. [bug] jinmei
b10-xfrout: failed to send notifies over IPv6 correctly.
(Trac #964, git 3255c92714737bb461fb67012376788530f16e40)
253. [func] jelte
Add configuration options for logging through the virtual module
Logging.
(Trac #736, git 9fa2a95177265905408c51d13c96e752b14a0824)
252. [func] stephen
Add syslog as destination for logging.
(Trac #976, git 31a30f5485859fd3df2839fc309d836e3206546e)
251. [bug]* jinmei
Make sure bindctl private files are non readable to anyone except
the owner or users in the same group. Note that if BIND 10 is run
with changing the user, this change means that the file owner or
group will have to be adjusted. Also note that this change is
only effective for a fresh install; if these files already exist,
their permissions must be adjusted by hand (if necessary).
(Trac #870, git 461fc3cb6ebabc9f3fa5213749956467a14ebfd4)
250. [bug] ocean
src/lib/util/encode, in some conditions, the DecodeNormalizer's
iterator may reach the end() and when later being dereferenced
it will cause crash on some platform.
(Trac #838, git 83e33ec80c0c6485d8b116b13045b3488071770f)
249. [func] jerry
xfrout: add support for TSIG verification.
(Trac #816, git 3b2040e2af2f8139c1c319a2cbc429035d93f217)
248. [func] stephen
Add file and stderr as destinations for logging.
(Trac #555, git 38b3546867425bd64dbc5920111a843a3330646b)
247. [func] jelte
Upstream queries from the resolver now set EDNS0 buffer size.
(Trac #834, git 48e10c2530fe52c9bde6197db07674a851aa0f5d)
246. [func] stephen
Implement logging using log4cplus (http://log4cplus.sourceforge.net)
(Trac #899, git 31d3f525dc01638aecae460cb4bc2040c9e4df10)
245. [func] vorner
Authoritative server can now sign the answers using TSIG
(configured in tsig_keys/keys, list of strings like
"name:<base64-secret>:sha1-hmac"). It doesn't use them for
ACL yet, only verifies them and signs if the request is signed.
(Trac #875, git fe5e7003544e4e8f18efa7b466a65f336d8c8e4d)
244. [func] stephen
In unit tests, allow the choice of whether unhandled exceptions are
caught in the unit test program (and details printed) or allowed to
propagate to the default exception handler. See the bind10-dev thread
https://lists.isc.org/pipermail/bind10-dev/2011-January/001867.html
for more details.
(Trac #542, git 1aa773d84cd6431aa1483eb34a7f4204949a610f)
243. [func]* feng
Add optional hmac algorithm SHA224/384/512.
(Trac #782, git 77d792c9d7c1a3f95d3e6a8b721ac79002cd7db1)
bind10-devel-20110519 released on May 19, 2011
242. [func] jinmei
xfrin: added support for TSIG verify. This change completes TSIG
support in b10-xfrin.
(Trac #914, git 78502c021478d97672232015b7df06a7d52e531b)
241. [func] jinmei
pydnspp: added python extension for the TSIG API introduced in
change 235.
(Trac #905, git 081891b38f05f9a186814ab7d1cd5c572b8f777f)
(Trac #915, git 0555ab65d0e43d03b2d40c95d833dd050eea6c23)
240. [func]* jelte
Updated configuration options to Xfrin, so that you can specify
a master address, port, and TSIG key per zone. Still only one per
zone at this point, and TSIG keys are (currently) only specified
by their full string representation. This replaces the
Xfrin/master_addr, Xfrin/master_port, and short-lived
Xfrin/tsig_key configurations with a Xfrin/zones list.
(Trac #811, git 88504d121c5e08fff947b92e698a54d24d14c375)
239. [bug] jerry
src/bin/xfrout: If a zone doesn't have notify slaves (only has
one apex ns record - the primary master name server) will cause
b10-xfrout uses 100% of CPU.
(Trac #684, git d11b5e89203a5340d4e5ca51c4c02db17c33dc1f)
238. [func] zhang likun
Implement the simplest forwarder, which pass everything through
except QID, port number. The response will not be cached.
(Trac #598_new, git 8e28187a582820857ef2dae9b13637a3881f13ba)
237. [bug] naokikambe
Resolved that the stats module wasn't configurable in bindctl in
spite of its having configuration items. The configuration part
was removed from the original spec file "stats.spec" and was
placed in a new spec file "stats-schema.spec". Because it means
definitions of statistics items. The command part is still
there. Thus stats module currently has no its own configuration,
and the items in "stats-schema.spec" are neither visible nor
configurable through bindctl. "stats-schema.spec" is shared with
stats module and stats-httpd module, and maybe with other
statistical modules in future. "stats.spec" has own configuration
and commands of stats module, if it requires.
(Trac #719, git a234b20dc6617392deb8a1e00eb0eed0ff353c0a)
236. [func] jelte
C++ client side of configuration now uses BIND 10 logging system.
It also has improved error handling when communicating with the
rest of the system.
(Trac #743, git 86632c12308c3ed099d75eb828f740c526dd7ec0)
235. [func] jinmei
libdns++: added support for TSIG signing and verification. It can
be done using a newly introduced TSIGContext class.
Note: we temporarily disabled support for truncated signature
and modified some part of the code introduced in #226 accordingly.
We plan to fix this pretty soon.
(Trac #812, git ebe0c4b1e66d359227bdd1bd47395fee7b957f14)
(Trac #871, git 7c54055c0e47c7a0e36fcfab4b47ff180c0ca8c8)
(Trac #813, git ffa2f0672084c1f16e5784cdcdd55822f119feaa)
(Trac #893, git 5aaa6c0f628ed7c2093ecdbac93a2c8cf6c94349)
234. [func] jerry
src/bin/xfrin: update xfrin to use TSIG. Currently it only supports
sending a signed TSIG request or SOA request.
(Trac #815, git a892818fb13a1839c82104523cb6cb359c970e88)
233. [func] stephen
Added new-style logging statements to the NSAS code.
(Trac #745, git ceef68cd1223ae14d8412adbe18af2812ade8c2d)
232. [func] stephen
To facilitate the writing of extended descriptions in
message files, altered the message file format. The message
is now flagged with a "%" as the first non-blank character
in the line and the lines in the extended description are
no longer preceded by a "+".
(Trac #900, git b395258c708b49a5da8d0cffcb48d83294354ba3)
231. [func]* vorner
The logging interface changed slightly. We use
logger.foo(MESSAGE_ID).arg(bar); instead of logger.foo(MESSAGE_ID,
bar); internally. The message definitions use '%1,%2,...'
instead of '%s,%d', which allows us to cope better with
mismatched placeholders and allows reordering of them in
case of translation.
(Trac #901, git 4903410e45670b30d7283f5d69dc28c2069237d6)
230. [bug] naokikambe
Removed too repeated verbose messages in two cases of:
- when auth sends statistics data to stats
- when stats receives statistics data from other modules
(Trac #620, git 0ecb807011196eac01f281d40bc7c9d44565b364)
229. [doc] jreed
Add manual page for b10-host.
(git a437d4e26b81bb07181ff35a625c540703eee845)
228. [func]* jreed
The host tool is renamed to b10-host. While the utility is
a work in progress, it is expected to now be shipped with
tarballs. Its initial goal was to be a host(1) clone,
rewritten in C++ from scratch and using BIND 10's libdns++.
It now supports the -a (any), -c class, -d (verbose) switches
and has improved output.
(Trac #872, git d846851699d5c76937533adf9ff9d948dfd593ca)
227. [build] jreed
Add missing libdns++ rdata files for the distribution (this
fixes distcheck error). Change three generated libdns++
headers to "nodist" so they aren't included in the distribution
(they were mistakenly included in last tarball).
226. [func]* jelte
Introduced an API for cryptographic operations. Currently it only
supports HMAC, intended for use with TSIG. The current
implementation uses Botan as the backend library.
This introduces a new dependency, on Botan. Currently only Botan
1.8.x works; older or newer versions don't.
(Trac #781, git 9df42279a47eb617f586144dce8cce680598558a)
225. [func] naokikambe
Added the HTTP/XML interface (b10-stats-httpd) to the
statistics feature in BIND 10. b10-stats-httpd is a standalone
HTTP server and it requests statistics data to the stats
daemon (b10-stats) and sends it to HTTP clients in XML
format. Items of the data collected via b10-stats-httpd
are almost equivalent to ones which are collected via
bindctl. Since it also can send XSL (Extensible Stylesheet
Language) document and XSD (XML Schema definition) document,
XML document is human-friendly to view through web browsers
and its data types are strictly defined.
(Trac #547, git 1cbd51919237a6e65983be46e4f5a63d1877b1d3)
224. [bug] jinmei
b10-auth, src/lib/datasrc: inconsistency between the hot spot
cache and actual data source could cause a crash while query
processing. The crash could happen, e.g., when an sqlite3 DB file
is being updated after a zone transfer while b10-auth handles a
query using the corresponding sqlite3 data source.
(Trac #851, git 2463b96680bb3e9a76e50c38a4d7f1d38d810643)
223. [bug] feng
If ip address or port isn't usable for name server, name
server process won't exist and give end user chance to
reconfigure them.
(Trac #775, git 572ac2cf62e18f7eb69d670b890e2a3443bfd6e7)
222. [bug]* jerry
src/lib/zonemgr: Fix a bug that xfrin not checking for new
copy of zone on startup. Imposes some random jitters to
avoid many zones need to do refresh at the same time. This
removed the Zonemgr/jitter_scope setting and introduced
Zonemgr/refresh_jitter and Zonemgr/reload_jitter.
(Trac #387, git 1241ddcffa16285d0a7bb01d6a8526e19fbb70cb)
221. [func]* jerry
src/lib/util: Create C++ utility library.
(Trac #749, git 084d1285d038d31067f8cdbb058d626acf03566d)
220. [func] stephen
Added the 'badpacket' program for testing; it sends a set of
(potentially) bad packets to a nameserver and prints the responses.
(Trac #703, git 1b666838b6c0fe265522b30971e878d9f0d21fde)
219. [func] ocean
src/lib: move some dns related code out of asiolink library to
asiodns library
(Trac #751, git 262ac6c6fc61224d54705ed4c700dadb606fcb1c)
218. [func] jinmei
src/lib/dns: added support for RP RDATA.
(Trac #806, git 4e47d5f6b692c63c907af6681a75024450884a88)
217. [bug] jerry
src/lib/dns/python: Use a signed version of larger size of
integer and perform more strict range checks with
PyArg_ParseTuple() in case of overflows.
(Trac #363, git ce281e646be9f0f273229d94ccd75bf7e08d17cf)
216. [func] vorner
The BIND10_XFROUT_SOCKET_FILE environment variable can be
used to specify which socket should be used for communication
between b10-auth and b10-xfrout. Mostly for testing reasons.
(Trac #615, git 28b01ad5bf72472c824a7b8fc4a8dc394e22e462)
215. [func] vorner
A new process, b10-sockcreator, is added, which will create
sockets for the rest of the system. It is the only part
which will need to keep the root privileges. However, only
the process exists, nothing can talk to it yet.
(Trac #366, git b509cbb77d31e388df68dfe52709d6edef93df3f)
214. [func]* vorner
Zone manager no longer thinks it is secondary master for
all zones in the database. They are listed in
Zonemgr/secondary_zones configuration variable (in the form
[{"name": "example.com", "class": "IN"}]).
(Trac #670, git 7c1e4d5e1e28e556b1d10a8df8d9486971a3f052)
213. [bug] naokikambe
Solved incorrect datetime of "bind10.boot_time" and also
added a new command "sendstats" for Bob. This command is
to send statistics data to the stats daemon immediately.
The solved problem is that statistics data doesn't surely
reach to the daemon because Bob sent statistics data to
the daemon while it is starting. So the daemon invokes the
command for Bob after it starts up. This command is also
useful for resending statistics data via bindctl manually.
(Trac #521, git 1c269cbdc76f5dc2baeb43387c4d7ccc6dc863d2)
212. [bug] naokikambe
Fixed that the ModuleCCSession object may group_unsubscribe in the
closed CC session in being deleted.
(Trac #698, git 0355bddc92f6df66ef50b920edd6ec3b27920d61)
211. [func] shane
Implement "--brittle" option, which causes the server to exit
if any of BIND 10's processes dies.
(Trac #788, git 88c0d241fe05e5ea91b10f046f307177cc2f5bc5)
210. [bug] jerry
src/bin/auth: fixed a bug where type ANY queries don't provide
additional glue records for ANSWER section.
(Trac #699, git 510924ebc57def8085cc0e5413deda990b2abeee)
bind10-devel-20110322 released on March 22, 2011
209. [func] jelte
Resolver now uses the NSAS when looking for a nameserver to
query for any specific zone. This also includes keeping track of
the RTT for that nameserver.
(Trac #495, git 76022a7e9f3ff339f0f9f10049aa85e5784d72c5)
208. [bug]* jelte
Resolver now answers REFUSED on queries that are not for class IN.
This includes the various CH TXT queries, which will be added
later.
(git 012f9e78dc611c72ea213f9bd6743172e1a2ca20)
207. [func] jelte
Resolver now starts listening on localhost:53 if no configuration
is set.
(Trac #471, git 1960b5becbba05570b9c7adf5129e64338659f07)
206. [func] shane
Add the ability to list the running BIND 10 processes using the
command channel. To try this, use "Boss show_processes".
(Trac #648, git 451bbb67c2b5d544db2f7deca4315165245d2b3b)
205. [bug] jinmei
b10-auth, src/lib/datasrc: fixed a bug where b10-auth could return
an empty additional section for delegation even if some glue is
crucial when it fails to find some other glue records in its data
source.
(Trac #646, git 6070acd1c5b2f7a61574eda4035b93b40aab3e2b)
204. [bug] jinmei
b10-auth, src/lib/datasrc: class ANY queries were not handled
correctly in the generic data source (mainly for sqlite3). It
could crash b10-auth in the worst case, and could result in
incorrect responses in some other cases.
(Trac #80, git c65637dd41c8d94399bd3e3cee965b694b633339)
203. [bug] zhang likun
Fix resolver cache memory leak: when cache is destructed, rrset
and message entries in it are not destructed properly.
(Trac #643, git aba4c4067da0dc63c97c6356dc3137651755ffce)
202. [func] vorner
It is possible to specify a different directory where we look for
configuration files (by -p) and different configuration file to
use (-c). Also, it is possible to specify the port on which
cmdctl should listen (--cmdctl-port).
(Trac #615, git 5514dd78f2d61a222f3069fc94723ca33fb3200b)
201. [bug] jerry
src/bin/bindctl: bindctl doesn't show traceback on shutdown.
(Trac #588, git 662e99ef050d98e86614c4443326568a0b5be437)
200. [bug] Jelte
Fixed a bug where incoming TCP connections were not closed.
(Trac #589, git 1d88daaa24e8b1ab27f28be876f40a144241e93b)
199. [func] ocean
Cache negative responses (NXDOMAIN/NODATA) from authoritative
server for recursive resolver.
(Trac #493, git f8fb852bc6aef292555063590c361f01cf29e5ca)
198. [bug] jinmei
b10-auth, src/lib/datasrc: fixed a bug where hot spot cache failed
to reuse cached SOA for negative responses. Due to this bug
b10-auth returned SERVFAIL when it was expected to return a
negative response immediately after a specific SOA query for
the zone.
(Trac #626, git 721a53160c15e8218f6798309befe940b9597ba0)
197. [bug] zhang likun
Remove expired message and rrset entries when looking up them
in cache, touch or remove the rrset entry in cache properly
when doing lookup or update.
(Trac #661, git 9efbe64fe3ff22bb5fba46de409ae058f199c8a7)
196. [bug] jinmei
b10-auth, src/lib/datasrc: the backend of the in-memory data
source could not handle the root name. As a result b10-auth could
not work as a root server when using the in-memory data source.
(Trac #683, git 420ec42bd913fb83da37b26b75faae49c7957c46)
195. [func] stephen
Resolver will now re-try a query over TCP if a response to a UDP
query has the TC bit set.
(Trac #499, git 4c05048ba059b79efeab53498737abe94d37ee07)
194. [bug] vorner
Solved a 100% CPU usage problem after switching addresses in b10-auth
(and possibly, but unconfirmed, in b10-resolver). It was caused by
repeated reads/accepts on closed socket (the bug was in the code for a
long time, recent changes made it show).
(Trac #657, git e0863720a874d75923ea66adcfbf5b2948efb10a)
193. [func]* jreed
Listen on the IPv6 (::) and IPv4 (0.0.0.0) wildcard addresses
for b10-auth. This returns to previous behavior prior to
change #184. Document the listen_on configuration in manual.
(Trac #649, git 65a77d8fde64d464c75917a1ab9b6b3f02640ca6)
192. [func]* jreed
Listen on standard domain port 53 for b10-auth and
b10-resolver.
(Trac #617, #618, git 137a6934a14cf0c5b5c065e910b8b364beb0973f)
191. [func] jinmei
Imported system test framework of BIND 9. It can be run by
'make systest' at the top source directory. Notes: currently it
doesn't work when built in a separate tree. It also requires
perl, an inherited dependency from the original framework.
Also, mainly for the purpose of tests, a new option "--pid-file"
was added to BoB, with which the boss process will dump its PID
to the specified file.
(Trac #606, git 6ac000df85625f5921e8895a1aafff5e4be3ba9c)
190. [func] jelte
Resolver now sets random qids on outgoing queries using
the boost::mt19937 prng.
(Trac #583, git 5222b51a047d8f2352bc9f92fd022baf1681ed81)
189. [bug] jreed
Do not install the log message compiler.
(Trac #634, git eb6441aca464980d00e3ff827cbf4195c5a7afc5)
188. [bug] zhang likun
Make the rrset trust level ranking algorithm used by
isc::cache::MessageEntry::getRRsetTrustLevel() follow RFC2181
section 5.4.1.
(Trac #595 git 19197b5bc9f2955bd6a8ca48a2d04472ed696e81)
187. [bug] zhang likun
Fix the assert error in class isc::cache::RRsetCache by adding the
check for empty pointer and test case for it.
(Trac #638, git 54e61304131965c4a1d88c9151f8697dcbb3ce12)
186. [bug] jelte
b10-resolver could stop with an assertion failure on certain kinds
of messages (there was a problem in error message creation). This
fixes that.
(Trac #607, git 25a5f4ec755bc09b54410fcdff22691283147f32)
185. [bug] vorner
Tests use port from private range (53210), lowering chance of
a conflict with something else (eg. running bind 10).
(Trac #523, git 301da7d26d41e64d87c0cf72727f3347aa61fb40)
184. [func]* vorner
Listening address and port configuration of b10-auth is the same as
for b10-resolver now. That means, it is configured through bindctl
at runtime, in the Auth/listen_on list, not through command line
arguments.
(Trac #575, #576, git f06ce638877acf6f8e1994962bf2dbfbab029edf)
183. [bug] jerry
src/bin/xfrout: Enable parallel sessions between xfrout server and
multi-Auth. The session needs to be created only on the first time
or if an error occur.
(Trac #419, git 1d60afb59e9606f312caef352ecb2fe488c4e751)
182. [func] jinmei
Support cppcheck for static code check on C++ code. If cppcheck
is available, 'make cppcheck' on the top source directory will run
the checker and should cleanly complete with an exit code of 0
(at least with cppcheck 1.47).
Note: the suppression list isn't included in the final
distributions. It should be created by hand or retrieved from
the git repository.
(Trac #613, git b973f67520682b63ef38b1451d309be9f4f4b218)
181. [func] feng
Add stop interface into dns server, so we can stop each running
server individually. With it, user can reconfigure her running server
with different ip address or port.
(Trac #388, git 6df94e2db856c1adc020f658cc77da5edc967555)
180. [build] jreed
Fix custom DESTDIR for make install. Patch from Jan Engelhardt.
(Trac #629, git 5ac67ede03892a5eacf42ce3ace1e4e376164c9f)
bind10-devel-20110224 released on February 24, 2011
179. [func] vorner
It is possible to start and stop resolver and authoritative
server without restart of the whole system. Change of the
configuration (Boss/start_auth and Boss/start_resolver) is
enough.
(Trac #565, git 0ac0b4602fa30852b0d86cc3c0b4730deb1a58fe)
178. [func] jelte
Resolver now makes (limited) use of the cache
(Trac #491, git 8b41f77f0099ddc7ca7d34d39ad8c39bb1a8363c)
177. [func] stephen
The upstream fetch code in asiolink is now protocol agnostic to
allow for the addition of fallback to TCP if a fetch response
indicates truncation.
(Trac #554, git 9739cbce2eaffc7e80640db58a8513295cf684de)
176. [func] likun
src/lib/cache: Rename one interface: from lookupClosestRRset()
to lookupDeepestNS(), and remove one parameter of it.
(Trac #492, git ecbfb7cf929d62a018dd4cdc7a841add3d5a35ae)
175. [bug] jerry
src/bin/xfrout: Xfrout use the case-sensitive mode to compress
names in an AXFR massage.
(Trac #253, git 004e382616150f8a2362e94d3458b59bb2710182)
174. [bug]* jinmei
src/lib/dns: revised dnssectime functions so that they don't rely
on the time_t type (whose size varies on different systems, which
can lead to subtle bugs like some form of "year 2038 problem").
Also handled 32-bit wrap around issues more explicitly, with more
detailed tests. The function API has been changed, but the effect
should be minimal because these functions are mostly private.
(Trac #61, git 09ece8cdd41c0f025e8b897b4883885d88d4ba5d)
173. [bug] jerry
python/isc/notify: A notify_out test fails without network
connectivity, encapsulate the socket behavior using a mock
socket class to fix it.
(Trac #346, git 319debfb957641f311102739a15059f8453c54ce)
172. [func] jelte
Improved the bindctl cli in various ways, mainly concerning
list and map item addressing, the correct display of actual values,
and internal help.
(Trac #384, git e5fb3bc1ed5f3c0aec6eb40a16c63f3d0fc6a7b2)
171. [func] vorner
b10-auth, src/lib/datasrc: in memory data source now works as a
complete data source for authoritative DNS servers and b10-auth
uses it. It still misses major features, however, including
DNSSEC support and zone transfer.
(Last Trac #553, but many more,
git 6f031a09a248e7684723c000f3e8cc981dcdb349)
170. [bug] jinmei
Tightened validity checks in the NSEC3 constructors, both "from
"text" and "from wire". Specifically, wire data containing
invalid type bitmaps or invalid lengths of salt or hash is now
correctly rejected.
(Trac #117, git 9c690982f24fef19c747a72f43c4298333a58f48)
169. [func] jelte
Added a basic implementation for a resolver cache (though not
used yet).
(Trac #449, git 8aa3b2246ae095bbe7f855fd11656ae3bdb98986)
168. [bug] vorner
Boss no longer has the -f argument, which was undocumented and
stayed as a relict of previous versions, currently causing only
strange behaviour.
(Trac #572, git 17f237478961005707d649a661cc72a4a0d612d4)
167. [bug] naokikambe
Fixed failure of termination of msgq_test.py with python3
coverage (3.3.1).
(Trac #573, git 0e6a18e12f61cc482e07078776234f32605312e5)
166. [func] jelte
The resolver now sends back a SERVFAIL when there is a client
timeout (timeout_client config setting), but it will not stop
resolving (until there is a lookup timeout or a result).
(Trac #497 and #489, git af0e5cd93bebb27cb5c4457f7759d12c8bf953a6)
165. [func] jelte
The resolver now handles CNAMEs, it will follow them, and include
them in the answer. The maximum length of CNAME chains that is
supported is 16.
(Trac #497, git af0e5cd93bebb27cb5c4457f7759d12c8bf953a6)
164. [bug] y-aharen
IntervalTimer: Modified the interface to accept interval in
milliseconds. It shortens the time of the tests of IntervalTimer.
(Trac #452, git c9f6acc81e24c4b8f0eb351123dc7b43f64e0914)
163. [func] vorner
The pimpl design pattern is used in UDPServer, with a shared
pointer. This makes it smaller to copy (which is done a lot as a
side effect of being coroutine) and speeds applications of this
class (notably b10-auth) up by around 10%.
(Trac #537, git 94cb95b1d508541201fc064302ba836164d3cbe6)
162. [func] stephen
Added C++ logging, allowing logging at different severities.
Code specifies the message to be logged via a symbol, and the
logging code picks up the message from an in-built dictionary.
The contents of the dictionary can be replaced at run-time by
locale-specific messages. A message compiler program is provided
to create message header files and supply the default messages.
(Trac #438, git 7b1606cea7af15dc71f5ec1d70d958b00aa98af7)
161. [func] stephen
Added ResponseScrubber class to examine response from
a server and to remove out-of-bailiwick RRsets. Also
does cross-section checks to ensure consistency.
(Trac #496, git b9296ca023cc9e76cda48a7eeebb0119166592c5)
160. [func] jelte
Updated the resolver to take 3 different timeout values;
timeout_query for outstanding queries we sent while resolving
timeout_client for sending an answer back to the client
timeout_lookup for stopping the resolving
(currently 2 and 3 have the same final effect)
(Trac #489, git 578ea7f4ba94dc0d8a3d39231dad2be118e125a2)
159. [func] smann
The resolver now has a configurable set of root servers to start
resolving at (called root_addresses). By default these are not
(yet) filled in. If empty, a hardcoded address for f-root will be
used right now.
(Trac #483, git a07e078b4feeb01949133fc88c9939254c38aa7c)
158. [func] jelte
The Resolver module will now do (very limited) resolving, if not
set to forwarding mode (i.e. if the configuration option
forward_addresses is left empty). It only supports referrals that
contain glue addresses at this point, and does no other processing
of authoritative answers.
(Trac #484, git 7b84de4c0e11f4a070e038ca4f093486e55622af)
157. [bug] vorner
One frozen process no longer freezes the whole b10-msgq. It caused the
whole system to stop working.
(Trac #420, git 93697f58e4d912fa87bc7f9a591c1febc9e0d139)
156. [func] stephen
Added ResponseClassifier class to examine response from
a server and classify it into one of several categories.
(Trac #487, git 18491370576e7438c7893f8551bbb8647001be9c)
bind10-devel-20110120 released on January 20, 2011
155. [doc] jreed
Miscellaneous documentation improvements for man pages and
the guide, including auth, resolver, stats, xfrout, and
zonemgr. (git c14c4741b754a1eb226d3bdc3a7abbc4c5d727c0)
154. [bug] jinmei
b10-xfrin/b10-zonemgr: Fixed a bug where these programs didn't
receive command responses from CC sessions. Eventually the
receive buffer became full, and many other components that rely
on CC channels would stall (as noted in #420 and #513). This is
an urgent care fix due to the severity of the problem; we'll need
to revisit it for cleaner fix later.
(Trac #516, git 62c72fcdf4617e4841e901408f1e7961255b8194)
153. [bug] jelte
b10-cfgmgr: Fixed a bug where configuration updates sometimes
lost previous settings in the configuration manager.
(Trac #427, git 2df894155657754151e0860e2ca9cdbed7317c70)
152. [func]* jinmei
b10-auth: Added new configuration variable "statistics-interval"
to allow the user to change the timer interval for periodic
statistics updates. The update can also be disabled by setting
the value to 0. Disabling statistics updates will also work as
a temporary workaround of a known issue that b10-auth can block in
sending statistics and stop responding to queries as a result.
(Trac #513, git 285c5ee3d5582ed6df02d1aa00387f92a74e3695)
151. [bug] smann
lib/log/dummylog.h:
lib/log/dummylog.cc: Modify dlog so that it takes an optional
2nd argument of type bool (true or false). This flag, if
set, will cause the message to be printed whether or not
-v is chosen.
(Trac #432, git 880220478c3e8702d56d761b1e0b21b77d08ee5a)
150. [bug] jelte
b10-cfgmgr: No longer save the configuration on exit. Configuration
is already saved if it is changed successfully, so writing it on
exit (and hence, when nothing has changed too) is unnecessary and
may even cause problems.
(Trac #435, git fd7baa38c08d54d5b5f84930c1684c436d2776dc)
149. [bug] jelte
bindctl: Check if the user session has disappeared (either by a
timeout or by a server restart), and reauthenticate if so. This
fixes the 'cmdctl not running' problem.
(Trac #431, git b929be82fec5f92e115d8985552f84b4fdd385b9)
148. [func] jelte
bindctl: Command results are now pretty-printed (i.e. printed in
a more readable form). Empty results are no longer printed at all
(used to print '{}'), and the message
'send the command to cmd-ctrl' has also been removed.
(git 3954c628c13ec90722a2d8816f52a380e0065bae)
147. [bug] jinmei
python/isc/config: Fixed a bug that importing custom configuration
(in b10-config.db) of a remote module didn't work.
(Trac #478, git ea4a481003d80caf2bff8d0187790efd526d72ca)
146. [func] jelte
Command arguments were not validated internally against their
specifications. This change fixes that (on the C++ side, Python
side depends on an as yet planned addition). Note: this is only
an added internal check, the cli already checks format.
(Trac #473, git 5474eba181cb2fdd80e2b2200e072cd0a13a4e52)
145. [func]* jinmei
b10-auth: added a new command 'loadzone' for (re)loading a
specific zone. The command syntax is generic but it is currently
only feasible for class IN in memory data source. To reload a
zone "example.com" via bindctl, execute the command as follows:
> Auth loadzone origin = example.com
(Trac #467 git 4f7e1f46da1046de527ab129a88f6aad3dba7562
from 1d7d3918661ba1c6a8b1e40d8fcbc5640a84df12)
144. [build] jinmei
Introduced a workaround for clang++ build on FreeBSD (and probably
some other OSes). If building BIND 10 fails with clang++ due to
a link error about "__dso_handle", try again from the configure
script with CXX_LIBTOOL_LDFLAGS=-L/usr/lib (the path actually
doesn't matter; the important part is the -L flag). This
workaround is not automatically enabled as it's difficult to
detect the need for it dynamically, and must be enabled via the
variable by hand.
(Trac #474, git cfde436fbd7ddf3f49cbbd153999656e8ca2a298)
143. [build] jinmei
Fixed build problems with clang++ in unit tests due to recent
changes. No behavior change. (Trac #448, svn r4133)
142. [func] jinmei
b10-auth: updated query benchmark so that it can test in memory
data source. Also fixed a bug that the output buffer isn't
cleared after query processing, resulting in misleading results
or program crash. This is a regression due to change #135.
(Trac #465, svn r4103)
141. [bug] jinmei
b10-auth: Fixed a bug that the authoritative server includes
trailing garbage data in responses. This is a regression due to
change #135. (Trac #462, svn r4081)
140. [func] y-aharen
src/bin/auth: Added a feature to count queries and send counter
values to statistics periodically. To support it, added wrapping
class of asio::deadline_timer to use as interval timer.
The counters can be seen using the "Stats show" command from
bindctl. The result would look like:
... "auth.queries.tcp": 1, "auth.queries.udp": 1 ...
Using the "Auth sendstats" command you can make b10-auth send the
counters to b10-stats immediately.
(Trac #347, svn r4026)
139. [build] jreed
Introduced configure option and make targets for generating
Python code coverage report. This adds new make targets:
report-python-coverage and clean-python-coverage. The C++
code coverage targets were renamed to clean-cpp-coverage
and report-cpp-coverage. (Trac #362, svn r4023)
138. [func]* jinmei
b10-auth: added a configuration interface to support in memory
data sources. For example, the following command to bindctl
will configure a memory data source containing the "example.com"
zone with the zone file named "example.com.zone":
> config set Auth/datasources/ [{"type": "memory", "zones": \
[{"origin": "example.com", "file": "example.com.zone"}]}]
By default, the memory data source is disabled; it must be
configured explicitly. To disable it again, specify a null list
for Auth/datasources:
> config set Auth/datasources/ []
Notes: it's currently for class IN only. The zone files are not
actually loaded into memory yet (which will soon be implemented).
This is an experimental feature and the syntax may change in
future versions.
(Trac #446, svn r3998)
137. [bug] jreed
Fix run_*.sh scripts that are used for development testing
so they use a msgq socket file in the build tree.
(Trac #226, svn r3989)
136. [bug] jelte
bindctl (and the configuration manager in general) now no longer
accepts 'unknown' data; i.e. data for modules that it does not know
about, or configuration items that are not specified in the .spec
files.
(Trac #202, svn r3967)
135. [func] each
Add b10-resolver. This is an example recursive server that
currently does forwarding only and no caching.
(Trac #327, svn r3903)
134. [func] vorner
b10-resolver supports timeouts and retries in forwarder mode.
(Trac #401, svn r3660)
133. [func] vorner
New temporary logging function available in isc::log. It is used by
b10-resolver.
(Trac #393, r3602)
132. [func] vorner
The b10-resolver is configured through config manager.
It has "listen_on" and "forward_addresses" options.
(Trac #389, r3448)
131. [func] jerry
src/lib/datasrc: Introduced two template classes RBTree and RBNode
to provide the generic map with domain name as key and anything as
the value. Because of some unresolved design issue, the new classes
are only intended to be used by memory zone and zone table.
(Trac #397, svn r3890)
130. [func] jerry
src/lib/datasrc: Introduced a new class MemoryDataSrc to provide
the general interface for memory data source. For the initial
implementation, we don't make it a derived class of AbstractDataSrc
because the interface is so different (we'll eventually
consider this as part of the generalization work).
(Trac #422, svn r3866)
129. [func] jinmei
src/lib/dns: Added new functions masterLoad() for loading master
zone files. The initial implementation can only parse a limited
form of master files, but BIND 9's named-compilezone can convert
any valid zone file into the acceptable form.
(Trac #423, svn r3857)
128. [build] vorner
Test for query name = '.', type = DS to authoritative nameserver
for root zone was added.
(Trac #85, svn r3836)
127. [bug] stephen
During normal operation process termination and resurrection messages
are now output regardless of the state of the verbose flag.
(Trac #229, svn r3828)
126. [func] ocean
The Nameserver Address Store (NSAS) component has been added. It takes
care of choosing an IP address of a nameserver when a zone needs to be
contacted.
(Trac #356, Trac #408, svn r3823)
bind10-devel-20101201 released on December 01, 2010
125. [func] jelte
Added support for addressing individual list items in bindctl
configuration commands; If you have an element that is a list, you
can use foo[X] integer
(starting at 0)
(Trac #405, svn r3739)
124. [bug] jreed
Fix some wrong version reporting. Now also show the version
for the component and BIND 10 suite. (Trac #302, svn r3696)
123. [bug] jelte
src/bin/bindctl printed values had the form of python literals
(e.g. 'True'), while the input requires valid JSON (e.g. 'true').
Output changed to JSON format for consistency. (svn r3694)
122. [func] stephen
src/bin/bind10: Added configuration options to Boss to determine
whether to start the authoritative server, recursive server (or
both). A dummy program has been provided for test purposes.
(Trac #412, svn r3676)
121. [func] jinmei
src/lib/dns: Added support for TSIG RDATA. At this moment this is
not much of real use, however, because no protocol support was
added yet. It will soon be added. (Trac #372, svn r3649)
120. [func] jinmei
src/lib/dns: introduced two new classes, TSIGKey and TSIGKeyRing,
to manage TSIG keys. (Trac #381, svn r3622)
119. [bug] jinmei
The master file parser of the python datasrc module incorrectly
regarded a domain name beginning with a decimal number as a TTL
specification. This confused b10-loadzone and had it reject to
load a zone file that contains such a name.
Note: this fix is incomplete and the loadzone would still be
confused if the owner name is a syntactically indistinguishable
from a TTL specification. This is part of a more general issue
and will be addressed in Trac #413. (Trac #411, svn r3599)
118. [func] jinmei
src/lib/dns: changed the interface of
AbstractRRset::getRdataIterator() so that the internal
cursor would point to the first RDATA automatically. This
will be a more intuitive and less error prone behavior.
This is a backward compatible change. (Trac #410, r3595)
117. [func] jinmei
src/lib/datasrc: added new zone and zone table classes for the
support of in memory data source. This is an intermediate step to
the bigger feature, and is not yet actually usable in practice.
(Trac #399, svn r3590)
116. [bug] jerry
src/bin/xfrout: Xfrout and Auth will communicate by long tcp
connection, Auth needs to make a new connection only on the first
time or if an error occurred.
(Trac #299, svn r3482)
115. [func]* jinmei
src/lib/dns: Changed DNS message flags and section names from
separate classes to simpler enums, considering the balance between
type safety and usability. API has been changed accordingly.
More documentation and tests were provided with these changes.
(Trac #358, r3439)
114. [build] jinmei
Supported clang++. Note: Boost >= 1.44 is required.
(Trac #365, svn r3383)
113. [func]* zhanglikun
Folder name 'utils'(the folder in /src/lib/python/isc/) has been
renamed to 'util'. Programs that used 'import isc.utils.process'
now need to use 'import isc.util.process'. The folder
/src/lib/python/isc/Util is removed since it isn't used by any
program. (Trac #364, r3382)
112. [func] zhang likun
Add one mixin class to override the naive serve_forever() provided
in python library socketserver. Instead of polling for shutdown
every poll_interval seconds, one socketpair is used to wake up
the waiting server. (Trac #352, svn r3366)
111. [bug]* Vaner
Make sure process xfrin/xfrout/zonemgr/cmdctl can be stopped
properly when user enter "ctrl+c" or 'Boss shutdown' command
through bindctl. The ZonemgrRefresh.run_timer and
NotifyOut.dispatcher spawn a thread themselves.
(Trac #335, svn r3273)
110. [func] Vaner
Added isc.net.check module to check ip addresses and ports for
correctness and isc.net.addr to hold IP address. The bind10, xfrin
and cmdctl programs are modified to use it.
(Trac #353, svn r3240)
109. [func] naokikambe
Added the initial version of the stats module for the statistics
feature of BIND 10, which supports the restricted features and
items and reports via bindctl command. (Trac #191, r3218)
Added the document of the stats module, which is about how stats
module collects the data (Trac #170, [wiki:StatsModule])
108. [func] jerry
src/bin/zonemgr: Provide customizable configurations for
lowerbound_refresh, lowerbound_retry, max_transfer_timeout and
jitter_scope. (Trac #340, r3205)
107. [func] likun
Remove the parameter 'db_file' for command 'retransfer' of
xfrin module. xfrin.spec will not be generated by script.
(Trac #329, r3171)
106. [bug] likun
When xfrin can't connect with one zone's master, it should tell
the bad news to zonemgr, so that zonemgr can reset the timer for
that zone. (Trac #329, r3170)
105. [bug] Vaner
Python processes: they no longer take 100% CPU while idle
due to a busy loop in reading command session in a nonblocking way.
(Trac #349, svn r3153), (Trac #382, svn r3294)
104. [bug] jerry
bin/zonemgr: zonemgr should be attempting to refresh expired zones.
(Trac #336, r3139)
103. [bug] jerry
lib/python/isc/log: Fixed an issue with python logging,
python log shouldn't die with OSError. (Trac #267, r3137)
102. [build] jinmei
Disable threads in ASIO to minimize build time dependency.
(Trac #345, r3100)
101. [func] jinmei
src/lib/dns: Completed Opcode and Rcode implementation with more
tests and documentation. API is mostly the same but the
validation was a bit tightened. (Trac #351, svn r3056)
100. [func] Vaner
Python processes: support naming of python processes so
they're not all called python3.
(Trac #322, svn r3052)
99. [func]* jinmei
Introduced a separate EDNS class to encapsulate EDNS related
information more cleanly. The related APIs are changed a bit,
although it won't affect most of higher level applications.
(Trac #311, svn r3020)
98. [build] jinmei
The ./configure script now tries to search some common include
paths for boost header files to minimize the need for explicit
configuration with --with-boost-include. (Trac #323, svn r3006)
97. [func] jinmei
Added a micro benchmark test for query processing of b10-auth.
(Trac #308, svn r2982)
96. [bug] jinmei
Fixed two small issues with configure: Do not set CXXFLAGS so that
it can be customized; Make sure --disable-static works.
(Trac #325, r2976)
bind10-devel-20100917 released on September 17, 2010
95. [doc, bug] jreed
Add b10-zonemgr manual page. Update other docs to introduce
this secondary manager.
bin/xfrout and bin/zonemgr: Fixed some stderr output.
(Trac #341, svn r2951)
(Trac #342, svn r2949)
94. [bug] jelte
bin/xfrout: Fixed a problem in xfrout where only 2 or 3 RRs
were used per DNS message in the xfrout stream.
(Trac #334, r2931)
93. [bug] jinmei
lib/datasrc: A DS query could crash the library (and therefore,
e.g. the authoritative server) if some RR of the same apex name
is stored in the hot spot cache. (Trac #307, svn r2923)
92. [func]* jelte
libdns_python (the python wrappers for libdns++) has been renamed
to pydnspp (Python DNS++). Programs and libraries that used
'import libdns_python' now need to use 'import pydnspp'.
(Trac #314, r2902)
91. [func]* jinmei
lib/cc: Use const pointers and const member functions for the API
as much as possible for safer operations. Basically this does not
change the observable behavior, but some of the API were changed
in a backward incompatible manner. This change also involves more
copies, but at this moment the overhead is deemed acceptable.
(Trac #310, r2803)
90. [build] jinmei
(Darwin/Mac OS X specific) Specify DYLD_LIBRARY_PATH for tests and
experimental run under the source tree. Without this loadable
python modules refer to installation paths, which may confuse the
operation due to version mismatch or even trigger run time errors
due to missing libraries. (Trac #313, r2782)
89. [build] jinmei
Generate b10-config.db for tests at build time so that the source
tree does not have to be writable. (Trac #315, r2776)
88. [func] jelte
Blocking reads on the msgq command channel now have a timeout
(defaults to 4 seconds, modifiable as needed by modules).
Because of this, modules will no longer block indefinitely
if they are waiting for a message that is not sent for whatever
reason. (Trac #296, r2761)
87. [func] zhanglikun
lib/python/isc/notifyout: Add the feature of notify-out, when
zone axfr/ixfr finishing, the server will notify its slaves.
(Trac #289, svn r2737)
86. [func] jerry
bin/zonemgr: Added zone manager module. The zone manager is one
of the co-operating processes of BIND 10, which keeps track of
timers and other information necessary for BIND 10 to act as a
slave. (Trac #215, svn r2737)
85. [build]* jinmei
Build programs using dynamic link by default. A new configure
option --enable-static-link is provided to force static link for
executable programs. Statically linked programs can be run on a
debugger more easily and would be convenient for developers.
(Trac #309, svn r2723)
bind10-devel-20100812 released on August 12, 2010
84. [bug] jinmei, jerry
This is a quick fix patch for the issue: AXFR fails half the
time because of connection problems. xfrout client will make
a new connection every time. (Trac #299, svn r2697)
83. [build]* jreed
The configure --with-boost-lib option is removed. It was not
used since the build included ASIO. (svn r2684)
82. [func] jinmei
bin/auth: Added -u option to change the effective process user
of the authoritative server after invocation. The same option to
the boss process will be propagated to b10-auth, too.
(Trac #268, svn r2675)
81. [func] jinmei
Added a C++ framework for micro benchmark tests. A supplemental
library functions to build query data for the tests were also
provided. (Trac #241, svn r2664)
80. [bug] jelte
bindctl no longer accepts configuration changes for unknown or
non-running modules (for the latter, this is until we have a
way to verify those options, at which point it'll be allowed
again).
(Trac #99, r2657)
79. [func] feng, jinmei
Refactored the ASIO link interfaces to move incoming XFR and
NOTIFY processing to the auth server class. Wrapper classes for
ASIO specific concepts were also provided, so that other BIND 10
modules can (eventually) use the interface without including the
ASIO header file directly. On top of these changes, AXFR and
NOTIFY processing was massively improved in terms of message
validation and protocol conformance. Detailed tests were provided
to confirm the behavior.
Note: Right now, NOTIFY doesn't actually trigger subsequent zone
transfer due to security reasons. (Trac #221, r2565)
78. [bug] jinmei
lib/dns: Fixed miscellaneous bugs in the base32 (hex) and hex
(base16) implementation, including incorrect padding handling,
parser failure in decoding with a SunStudio build, missing
validation on the length of encoded hex string. Test cases were
more detailed to identify these bugs and confirm the fix. Also
renamed the incorrect term of "base32" to "base32hex". This
changed the API, but they are not intended to be used outside
libdns++, so we don't consider it a backward incompatible change.
(Trac #256, r2549)
77. [func] zhanglikun
Make error message be more friendly when running cmdctl and it's
already running (listening on same port)(Trac #277, r2540)
76. [bug] jelte
Fixed a bug in the handling of 'remote' config modules (i.e.
modules that peek at the configuration of other modules), where
they answered 'unknown command' to commands for those other
modules. (Trac #278, r2506)
75. [bug] jinmei
Fixed a bug in the sqlite3 data source where temporary strings
could be referenced after destruction. It caused various lookup
failures with SunStudio build. (Trac #288, r2494)
74. [func]* jinmei
Refactored the cc::Session class by introducing an abstract base
class. Test code can use their own derived mock class so that
tests can be done without establishing a real CC session. This
change also modified some public APIs, mainly in the config
module. (Trac #275, r2459)
73. [bug] jelte
Fixed a bug where in bindctl, locally changed settings were
reset when the list of running modules is updated. (Trac #285,
r2452)
72. [build] jinmei
Added -R when linking python wrapper modules to libpython when
possible. This helps build BIND 10 on platforms that install
libpython whose path is unknown to run-time loader. NetBSD is a
known such platform. (Trac #148, r2427)
71. [func] each
Add "-a" (address) option to bind10 to specify an address for
the auth server to listen on.
70. [func] each
Added a hot-spot cache to libdatasrc to speed up access to
repeatedly-queried data and reduce the number of queries to
the underlying database; this should substantially improve
performance. Also added a "-n" ("no cache") option to
bind10 and b10-auth to disable the cache if needed.
(Trac #192, svn r2383)
bind10-devel-20100701 released on July 1, 2010
69. [func]* jelte
Added python wrappers for libdns++ (isc::dns), and libxfr. This
removes the dependency on Boost.Python. The wrappers don't
completely implement all functionality, but the high-level API
is wrapped, and current modules use it now.
(Trac #181, svn r2361)
68. [func] zhanglikun
Add options -c (--certificate-chain) to bindctl. Override class
HTTPSConnection to support server certificate validation.
Add support to cmdctl.spec file, now there are three configurable
items for cmdctl: 'key_file', 'cert_file' and 'accounts_file',
all of them can be changed in runtime.
(Trac #127, svn r2357)
67. [func] zhanglikun
Make bindctl's command parser only do minimal check.
Parameter value can be a sequence of non-space characters,
or a string surrounded by quotation marks (these marks can
be a part of the value string in escaped form). Make error
message be more friendly. (If there is some error in
parameter's value, the parameter name will be provided).
Refactor function login_to_cmdctl() in class BindCmdInterpreter:
avoid using Exception to catch all exceptions.
(Trac #220, svn r2356)
66. [bug] each
Check for duplicate RRsets before inserting data into a message
section; this, among other things, will prevent multiple copies
of the same CNAME from showing up when there's a loop. (Trac #69,
svn r2350)
65. [func] shentingting
Various loadzone improvements: allow optional comment for
$TTL, allow optional origin and comment for $INCLUDE, allow
optional comment for $ORIGIN, support BIND9 extension of
time units for TTLs, and fix bug to not use class as part
of label name when records don't have a label but do have
a class. Added verbose options to exactly what is happening
with loadzone. Added loadzone test suite of different file
formats to load.
(Trac #197, #199, #244, #161, #198, #174, #175, svn r2340)
64. [func] jerry
Added python logging framework. It is for testing and
experimenting with logging ideas. Currently, it supports
three channels (file, syslog and stderr) and five levels
(debug, info, warning, error and critical).
(Trac #176, svn r2338)
63. [func] shane
Added initial support for setuid(), using the "-u" flag. This will
be replaced in the future, but for now provides a reasonable
starting point.
(Trac #180, svn r2330)
62. [func] jelte
bin/xfrin: Use the database_file as configured in Auth to transfers
bin/xfrout: Use the database_file as configured in Auth to transfers
61. [bug] jelte
bin/auth: Enable b10-auth to be launched in source tree
(i.e. use a zone database file relative to that)
60. [build] jinmei
Supported SunStudio C++ compiler. Note: gtest still doesn't work.
(Trac #251, svn r2310)
59. [bug] jinmei
lib/datasrc, bin/auth: The authoritative server could return a
SERVFAIL with a partial answer if it finds a data source broken
while looking for an answer. This can happen, for example, if a
zone that doesn't have an NS RR is configured and loaded as a
sqlite3 data source. (Trac #249, r2286)
58. [bug] jinmei
Worked around an interaction issue between ASIO and standard C++
library headers. Without this ASIO didn't work: sometimes the
application crashes, sometimes it blocked in the ASIO module.
(Trac #248, svn r2187, r2190)
57. [func] jinmei
lib/datasrc: used a simpler version of Name::split (change 31) for
better readability. No behavior change. (Trac #200, svn r2159)
56. [func]* jinmei
lib/dns: renamed the library name to libdns++ to avoid confusion
with the same name of library of BIND 9.
(Trac #190, svn r2153)
55. [bug] shane
bin/xfrout: xfrout exception on Ctrl-C now no longer generates
exception for 'Interrupted system call'
(Trac #136, svn r2147)
54. [bug] zhanglikun
bin/xfrout: Enable b10-xfrout can be launched in source
code tree.
(Trac #224, svn r2103)
53. [bug] zhanglikun
bin/bindctl: Generate a unique session ID by using
socket.gethostname() instead of socket.gethostbyname(),
since the latter one could make bindctl stall if its own
host name can't be resolved.
(Trac #228, svn r2096)
52. [func] zhanglikun
bin/xfrout: When xfrout is launched, check whether the
socket file is being used by one running xfrout process,
if it is, exit from python. If the file isn't a socket file
or nobody is listening, it will be removed. If it can't
be removed, exit from python.
(Trac #151, svn r2091)
bind10-devel-20100602 released on June 2, 2010
51. [build] jelte
lib/python: Add bind10_config.py module for paths and
possibly other configure-time variables. Allow some components
to find spec files in build tree when ran from source.
(Trac #223)
50. [bug] zhanglikun
bin/xfrin: a regression in xfrin: it can't communicate with
a remote server. (Trac #218, svn r2038)
49. [func]* jelte
Use unix domain sockets for msgq. For b10-msgq, the command
line options --msgq-port and -m were removed. For bind10,
the -msgq-port option was removed, and the -m command line
option was changed to be a filename (instead of port number).
(Trac #183, svn r2009)
48. [func] jelte
bin/auth: Use asio's io_service for the msgq handling.
(svn r2007)
47. [func] zhanglikun
bin/cmdctl: Add value/type check for commands sent to
cmdctl. (Trac #201, svn r1959)
46. [func] zhanglikun
lib/cc: Fix real type data encoding/decoding. (Trac #193,
svn r1959)
45. [func] zhanglikun
bin/bind10: Pass verbose option to more modules. (Trac
#205, svn r1957)
44. [build] jreed
Install headers for libdns and libexception. (Trac #68,
svn r1941)
43. [func] jelte
lib/cc: Message queuing on cc channel. (Trac #58, svn r1870)
42. [func] jelte
lib/python/isc/config: Make temporary file with python
tempfile module instead of manual with fixed name. (Trac
#184, svn r1859)
41. [func] jelte
Module descriptions in spec files. (Trac #90, svn r1856)
40. [build] jreed
Report detected features and configure settings at end of
configure output. (svn r1836)
39. [func]* each
Renamed libauth to libdatasrc.
38. [bug] zhanglikun
Send command 'shutdown' to Xfrin and Xfrout when boss receive SIGINT.
Remove unused socket file when Xfrout process exits. Make sure Xfrout
exit by itself when it receives SIGINT, instead of being killed by the
signal SIGTERM or SIGKILL sent from boss.
(Trac #135, #151, #134, svn r1797)
37. [build] jinmei
Check for the availability of python-config. (Trac #159,
svn r1794)
36. [func] shane
bin/bind10: Miscellaneous code cleanups and improvements.
(Trac #40, svn r2012)
35. [bug] jinmei
bin/bindctl: fixed a bug that it didn't accept IPv6 addresses as
command arguments. (Trac #219, svn r2022)
34. [bug] jinmei
bin/xfrin: fixed several small bugs with many additional unit
tests. Fixes include: IPv6 transport support, resource leak,
and non IN class support. (Trac #185, svn r2000)
33. [bug] each
bin/auth: output now prepended with "[b10-auth]" (Trac
#109, svn r1985)
32. [func]* each
bin/auth: removed custom query-processing code, changed
boost::asio code to use plain asio instead, and added asio
headers to the source tree. This allows building without
using an external boost library. (Trac #163, svn r1983)
31. [func] jinmei
lib/dns: added a separate signature for Name::split() as a
convenient wrapper for common usage. (Trac #49, svn r1903)
30. [bug] jinmei
lib/dns: parameter validation of Name::split() was not sufficient,
and invalid parameters could cause integer overflow and make the
library crash. (Trac #177, svn r1806)
bind10-devel-20100421 released on April 21, 2010
29. [build] jreed
Enable Python unit tests for "make check". (svn r1762)
28. [bug] jreed
Fix msgq CC test so it can find its module. (svn r1751)
27. [build] jelte
Add missing copyright license statements to various source
files. (svn r1750)
26. [func] jelte
Use PACKAGE_STRING (name + version) from config.h instead
of hard-coded value in CH TXT version.bind replies (Trac
#114, svn r1749)
25. [func]* jreed
Renamed msgq to b10-msgq. (Trac #25, svn r1747, r1748)
24. [func] jinmei
Support case-sensitive name compression in MessageRenderer.
(Trac #142, svn r1704)
23. [func] jinmei
Support a simple name with possible compression. (svn r1701)
22. [func] zhanglikun
b10-xfrout for AXFR-out support added. (svn r1629, r1630)
21. [bug] zhanglikun
Make log message more readable when xfrin failed. (svn
r1697)
20. [bug] jinmei
Keep stderr for child processes if -v is specified. (svn
r1690, r1698)
19. [bug] jinmei
Allow bind10 boss to pass environment variables from parent.
(svn r1689)
18. [bug] jinmei
Xfrin warn if bind10_dns load failed. (svn r1688)
17. [bug] jinmei
Use sqlite3_ds.load() in xfrin module and catch Sqlite3DSError
explicitly. (svn r1684)
16. [func]* zhanglikun
Removed print_message and print_settings configuration
commands from Xfrin. (Trac #136, svn r1682)
15. [func]* jinmei
Changed zone loader/updater so trailing dot is not required.
(svn r1681)
14. [bug] shane
Change shutdown to actually SIGKILL properly. (svn r1675)
13. [bug] jinmei
Don't ignore other RRs than SOA even if the second SOA is
found. (svn r1674)
12. [build] jreed
Fix tests and testdata so can be used from a read-only
source directory.
11. [build] jreed
Make sure python tests scripts are included in tarball.
(svn r1648)
10. [build] jinmei
Improve python detection for configure. (svn r1622)
9. [build] jinmei
Automake the python binding of libdns. (svn r1617)
8. [bug] zhanglikun
Fix log errors which may cause xfrin module to crash. (svn
r1613)
7. [func] zhanglikun
New API for inserting zone data to sqlite3 database for
AXFR-in. (svn r1612, r1613)
6. [bug] jreed
More code review, miscellaneous cleanups, style guidelines,
and new and improved unit tests added.
5. [doc] jreed
Manual page cleanups and improvements.
4. [bug] jinmei
NSEC RDATA fixes for buffer overrun lookups, incorrect
boundary checks, spec-non-conformant behaviors. (svn r1611)
3. [bug] jelte
Remove a re-raise of an exception that should only have
been included in an error answer on the cc channel. (svn
r1601)
2. [bug] mgraff
Removed unnecessary sleep() from ccsession.cc. (svn r1528)
1. [build]* jreed
The configure --with-boostlib option changed to --with-boost-lib.
bind10-devel-20100319 released on March 19, 2010
For complete code revision history, see
http://gitlab.isc.org/isc-projects/kea
Specific git changesets can be accessed at:
http://gitlab.isc.org/isc-projects/kea/commit/rrr
or after cloning the original git repository by executing:
% git diff rrrr^ rrrr
Prior to gitlab, we used Trac for bug tickets. Those tickets
can be accessed at: http://oldkea.isc.org/ticket/nnnn
LEGEND
[bug] General bug fix. This is generally a backward compatible change,
unless it's deemed to be impossible or very hard to keep
compatibility to fix the bug.
[build] Compilation and installation infrastructure change.
[doc] Update to documentation. This shouldn't change run time behavior.
[func] new feature. In some cases this may be a backward incompatible
change, which would require a bump of major version.
[sec] Security hole fix. This is no different than a general bug
fix except that it will be handled as confidential and will cause
security patch releases.
[perf] Performance related change.
*: Backward incompatible or operational change.
Reference in New Issue View Git Blame Copy Permalink