content-type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
X-RT-Original-Encoding: ISO-8859-1
Content-Length: 1532

Hello all,

I would like to introduce new db interface for BIND - dynamic_db.

This interface allows to write db modules for BIND9 and authoritative
zones can be served via this module.

Main difference from current interfaces (dlopen DLZ/DLZ/SDB) is that
dynamic_db interface doesn't actually create new interface, it only
allows to load module which implements full-featured dns/db.h interface.
Advantage is that module which uses dynamic_db can implement same
features as current rbtdb (for example dynamic_db module can serve
DNSSEC-signed zones). If I understand DLZ/SDB interface cannot be used
to serve DNSSEC-signed zones. Disadvantage is that dynamic_db module
needs to be more sophisticated than DLZ/SDB module.

dynamic_db module is configured in named.conf and it's configuration is
pretty extensible, this is an example:

dynamic-db "my_db_name" {
        library "ldap.so";
        arg "uri ldap://ldap.example.com";
        arg "base cn=dns, dc=example, dc=com";
        arg "auth_method none";
        arg "cache_ttl 300";
};

As you can see there is basically no limitation for arguments number and
format.

There is already one module which uses this interface, called
bind-dyndb-ldap:

https://fedorahosted.org/bind-dyndb-ldap
http://git.fedorahosted.org/git/?p=bind-dyndb-ldap.git

This module is currently used by FreeIPA project to store all zones in
LDAP database.

Would it be possible to merge the dynamic_db interface to upstream,
please? Proposed patch is attached.

Comments are welcomed.

Regards, Adam