vendor/bind/8.2.3.t5b-20000823

487 files changed, 0 insertions, 185216 deletions

diff --git a/contrib/bind/CHANGES b/contrib/bind/CHANGES
deleted file mode 100644
index d7c11445510ac..0000000000000
--- a/contrib/bind/CHANGES
+++ /dev/null
@@ -1,2871 +0,0 @@
-	--- 8.2.3-T5B (RC3) released ---
-
-1006.	[port]		Windows/NT does not have fchown().
-
-1005.	[bug]		RD was sometimes left set, inappropriately.
-
-1004.	[bug]		cached NXT's were corrupted.
-
-1003.	[bug]		correction to #997.
-
-1002.	[bug]		file descriptor leak in res_nclose().
-
-1001.	[port]		some builds were too fast.
-
-	--- 8.2.3-T4B (RC2) released ---
-
-1000.	[bug]		#996 was wrongly implemented; replacement fix.
-
-	--- 8.2.3-T3B released ---
-
- 999.	[support]	named now makes an effort to create its files with
-			ownership as specified by -u and -g command options.
-
- 998.	[support]	show version number in NOTIFY log messages.
-
- 997.	[support]	forwarders are now used in order by measured RTT.
-
- 996.	[protocol]	if answering ixfr with full zone, used qtype axfr.
-
- 995.	[bug]		"dig -b" was broken due to missing switch "break;"
-
- 994.	[bug]		named-xfer did not handle empty question sections.
-
- 993.	[bug]		TSIG AXFR was completely broken in DiG.
-
- 992.	[bug]		OPTION_USE_IXFR and OPTION_MAINTAIN_IXFR_BASE had
-			non-single-bit flag values in src/bin/named/ns_defs.h.
-
- 991.	[protocol]	send A6 glue records in xfr.
-
- 990.	[bug]		we could loose track of a bottom of zone cut is the
-			write buffer filled up at just the correct moment.
-
- 989.	[bug]		apply to "fetch-glue no;" to notify processing.  need
-			to add A records that would be found this way w/
-			also-notify.
-
- 988.	[support]	report expired zones when detected in maintainence
-			pass.
-
- 987.	[feature]	"ndc reconfig -noexpired" skip attempts to load
-			expired zoned when reconfiguring.
-
- 986.	[bug]		pushlev only needs to be called for axfr/zxfr not ixfr.
-
-	--- 8.2.3-T2B released ---
-
- 985.	[support]	remove "view" command from nslookup (it used mktemp()).
-
- 984.	[bug]		always restart processing query from scratch if we
-			have chased a CNAME as we might still have the answer
-			in the cache once the CNAME has been resolved.
-
- 983.	[support]	"notify from non-master server" is now debug, not info.
-
- 982.	[bug]		rollback the compression pointers array when a
-			RRset/RR does not fit.
-
- 981.	[port]		decunix: typedef (u_)int#m_t
-
- 980.	[bug]		mishandled memget failure w/ TCP connections.
-
- 979.	[bug]		we were failing to call ns_stopxfrs() before calling
-			purge_zone() in some cases.
-
- 978.	[port]		sco50: setsockopt(SO_REUSEADDR) fails on unix domain
-			sockets
-
- 977.	[bug]		we should be returning notimpl for update forwarding
-			rather than refused.  a client receiving refused
-			should terminate the update attempt.  notimpl should
-			just cause the client to skip to the next server.
-
- 976.	[bug]		some stats weren't getting incremented, & added a few.
-
- 975.	[support]	SLAVE_FORWARD is now redundant and has been removed.
-
- 974.	[port]		ultrix with vendor's y2k patch explicitly desupported.
-
- 973.	[bug]		some field names added in #935 conflicted with macros.
-
- 972.	[support]	restore heartbeat notifies.
-
- 971.	[bug]		out of order updates in log.
-
- 970.	[port]		solaris: add ipv6 interface scanning support.
-
- 969.	[bug]		post process a zone load to remove any non-glue at
-			or below bottom of zone.
-
- 968.	[bug]		TSIGs failed to verify if the key name was compressed.
-
- 967.	[bug]		zones signed by the BIND 9 signer failed to load.
-
-	--- 8.2.3-T1A released ---
-
- 966.	[bug]		nslookup and dig misprinted root zone in $ORIGIN.
-
- 965.	[feature]	dig's command line input buffer was rather small.
-
- 964.	[bug]		make res_nsearch() behave like res_search() of olde.
-
- 963.	[bug]		res_debug::do_section() can no longer spin all VM.
-
- 962.	[bug]		another almost-complete rewrite of IXFR from kjd (462)
-
- 961.	[bug]		acl "none" now fails to match but doesn't end search.
-
- 960.	[bug]		more hesiod library fixes from danny.
-
- 959.	[doc]		christos fixed several man page typos and brainos.
-
- 958.	[bug]		getnameinfo() should accept experimental/multicast.
-
- 957.	[port]		ultrix again.  "cd" now presumed to be silent again.
-
- 956.	[bug]		multiline was not being cleared correctly.
-
- 955.	[bug]		explicit TTL on SOA records were being replaced with
-			soa minimum.
-
- 954.	[bug]		cannot load a signed root zone.
-
- 953.	[bug]		memory overrun in set_zone_ixfr_file().
-
- 952.	[bug]		errs was not being correctly adjusted if the included
-			master file did not exist in db_load().
-
- 951.	[bug]		contrib/dns_signer/signer: write_trim_name
-			array bounds write error.
-
- 950.	[bug]		hesiod: ctx->res was not being initalised.
-
- 949.	[port]		aix32: add prand_conf.h and define WCOREDUMP
-
- 948.	[bug]		fixed logic error in a number of expressions causing
-			res_ninit() not to be called when it should be.
-
- 947.	[bug]		sanity check in dst_read_key() wasn't.
-
- 946.	[port]		freebsd: threaded library support.
-
- 945.	[bug]		wrong file name logged in ixfr_have_log().
-
- 944.	[doc]		add forwarders to zone types  master/slave/stub in 
-			named.conf man page.
-
- 943.	[bug]		raise CNAME and OTHER / multiple CNAME logging to 
-			warning.
-
- 942.	[bug]		bad referrals logged for forwarders.
-
- 941.	[bug]		lame server detection wasn't checking for SOA record.
-
- 940.	[clarity]	unapproved -> denied in log messages.
-
- 939.	[bug]		reload_master and purgeandload should write the zone
-			if it has been updated.
-
- 938.	[bug]		update and ixfr logs could get corrupted.  fseek()
-			before ftell() on fopen(, "a+") file.
-
- 937.	[support]	allow parallel makes to work.
-
- 936.	[protocol]	add preliminary A6 glue recognition in ns_req.
-
- 935.	[cleanup]	res_nsend() segmented into multiple functions for
-			readability.  also fixed two file descriptor leaks.
-			CAN_RECONNECT is gone, keep one socket per nameserver.
-
- 934.	[bug]		Perror and Aerror where incorrect if DEBUG is not
-			defined.
-
- 933.	[port]		cygwin port added
-
- 932.	[port]		sco42 does not have unix domain sockets or gethostid.
-
- 931.	[bug]		eventlib was not handling unix domain sockets
-			correctly.
-
- 930.	[bug]		we wern't using all the potential compression pointers
-			in the question section.
-
- 929.	[bug]		we were accepting updates (adds) with illegal ttls.
-
- 928.	[bug]		if we manage to get a illegal ttl stored, print it
-			unsigened.
-
- 927.	[port]		hpux: (11.* 10.30) Makefile.set.gcc
-
- 926.	[port]		hpux10: gcc needs -D_HPUX_SOURCE and -fPIC
-
- 925.	[protocol]	when a slave loads it should notify others (RFC 1996).
-
- 924.	[port]		sunos solaris: #define NEED_SECURE_DIRECTORY to
-			secure the directory containing unix domain socket
-			rather than the socket itself.
-
- 923.	[support]	shutup "make clean" about missing threaded directories.
-
- 922.	[bug]		removing an cached zone file then performing a 
-			"ndc reload zone" should force a zone transfer.
-
- 921.	[bug]		nsupdate: listuprec was not being initalised.
-
- 920.	[port]		aix4: Makefile.set.gcc
- 			aix4: __P was being defined by <net/radix.h>
-
- 919	[port]		linux: remove one level of symbolic linkage when
-			performing make links on port/linux/include
-
- 918.	[bug]		update prerequisite could match w/ wildcard.
-
- 917.	[port]		irix: make the current IRIX release (6.5) work by
-			not patching res_debug.c. see INSTALL if you have
-			problems with 6.3.
-
- 916.	[bug]		removing / changing a zone type could result in
-			Z_NOTIFY being cleared / tested against the wrong zone.
-
- 915.	[bug]		evNewWaitList() was not maintaining the prev chain.
-
- 914.	[bug]		signal EWOULDBLOCK if EV_POLL'ing with no timers.
-
- 913.	[bug]		input could get lost on the server side of a ctl sock.
-
- 912.	[bug]		nsupdate now allows explicit 0 TTL's on added RR's.
-
- 911.	[bug]		gethostbyname() should not return duplicate addresses.
-
- 910.	[bug]		address-sorting logic was exiting early.
-
- 909.	[bug]		dig wasn't respecting the +ti and +ret arguments.
-
- 908.	[contrib]	Tony Stoneley sent us an updated misc/makezones.
-
- 907.	[port]		winnt fixes from Larry at Nortel.
-
- 906.	[bug]		res_findzonecut() failed if the NS referred to a CNAME.
-
- 905.	[doc]		Minor fix to doc/man/Makefile for getnameinfo
-
- 904.	[bug]		bin/host wasn't looking up MX records if no
-			-t flags were passed to it.
-
-	--- 8.2.2-P6 released ---
-
- 903.	[bug]		divide by zero bug when querying for SIG records from
-			a secure zone.
-
- 902.	[support]	don't attempt to set q_fzone if we won't be using it.
-
- 901.	[support]	delay notify timer setting until all zones have been
-			loaded.
-
- 900.	[port]		hpux10 fix call to bison; sco call bison consistenly.
-
- 899.	[bug]		dynamically allocate buffer used to display RR rather
-			than uses a fixed sized one. grow as needed.
-
- 898.	[bug]		if truncation caused no RR's to appear in the answer we
-			mis-classified the answer on a NODATA.
-
- 897.	[support]	descriptors used by named should not be inherited by
-			named-xfer.
-
- 896.	[contrib]	add contrib/adm/adm-nxt, an exploit for the NXT bug
-			in 8.2 and 8.2.1.  as before, we do not recommend its
-			use, and we do recommend that you run the latest BIND.
-
-	--- 8.2.2-P5 released ---
-
- 895.	[port]		minor NT build and documentation improvements.
-
- 894.	[bug]		incorrect "key" statements in named.conf weren't
-			handled properly.
-
-	--- 8.2.2-P4 released ---
-
- 893.	[bug]		DNSSEC logic in bin/host broke -t any
-
- 892.	[bug]		multiple SOA on AXFR bug
-
-	--- 8.2.2-P3 released ---
-
- 891.	[bug]		options { also-notify { ... }; }; resulted in wrong
-			pointer being memput with the wrong size on reload.
-
- 890.	[port]		A/UX portability improved.
-
- 889.	[port]		added IPv6 portability for OpenBSD, NetBSD, FreeBSD.
-
-	--- 8.2.2-P2 released (internal release) ---
-
- 888.	[support]	add default: all tag to top src/Makefile so that "make"
-			will work properly in some OS'.
-
- 887.	[bug]		"dig ... axfr" was printing spurious "TSIG ok" msgs.
-
- 886.	[support]	top-level Makefile now included in all tarballs.
-
- 885.	[support]	IXFR improvements.
-
- 884.	[bug]		some deprecated NXT RR forms weren't ignored properly.
-
- 883.	[support]	"host" command can now try to verify dnssec signatures.
-
- 882.	[contrib]	dns_signer/ had some last minute problems (by author).
-
- 881.	[bug]		possible sprintf() overflow prevented.
-
- 880.	[support]	minor tweak to bin/dig/dig.c TSIG code to clarify
-			whether res_nsend or res_nsendsigned is being used.
-
- 879.	[support]	add "noesw" target to top-level Makefile (for PL1).
-
- 878.	[port]		aix4 HAS_INET6_STRUCTS was not being set based on the
-			existance of _IN6_ADDR_STRUCT.
-
- 877.	[port]		freebsd + KAME need a different Makefile.set
-			see INSTALL notes.
-
- 876.	[port]		IPv6 probe for MPE/IX, NetBSD.
-
- 875.	[bug]		bad NAPTR RRs could be loaded from zone files.
-
- 874.	[port]		update irix_patch in irix port.
-
- 873.	[port]		add SRC/tools to sco's make [std]links.
-
-	--- 8.2.2-REL released ---
-
- 872.	[bug]		named-xfer could free() a string twice.
-
- 871.	[port]		linux support for broken IPv6.
-
- 870.	[port]		more NT fixes and improvements from larry at bay.
-
- 869.	[bug]		disable client side IXFR (in named-xfer) for now.
-
- 868.	[bug]		updated named-bootconf to handle case insensitive parts
-			of named.boot.  added stubs support.  class was not
-			being reset.
-
- 867.	[support]	updated INSTALL notes.
-
- 866.	[port]		More NT  fixes from larry at bay.
-
- 865.	[port]		add #include <limits.h> to next's port_before.h
-
- 864.	[port]		change solaris' Makefile.set files to use yacc and lex.
-			also clean up install and binary paths.
-
- 863.	[bug]		lib/isc/ctl_srvr.c needed fcntl.h #included
-
-	--- 8.2.2-T8B (RC2) released ---
-
- 862.	[port]		another NT infusion from larry over at bay.
-
- 861.	[support]	improve support for tsig'd updates.
-
- 860.	[port]		add IPv6 probing to: decunix hpux irix lynxos mpe
-			netbsd qnx rhapsody sco50
-
- 859.	[bug]		set control sockets to close-on-exec;
-			potential file descriptor leaks in ctl_srvr.
-
- 858.	[bug]		make ns_samename() and use it instead of strcasecmp().
-
- 857.	[bug]		unset update-log can lead to debugging msg mishaps.
-
-	--- 8.2.2-T7B (RC1) released ---
-
- 856.	[bug]		IXFR finally works and is reenabled.
-
- 855.	[port]		more win/nt changes from bay.
-
- 854.	[bug]		/etc/hosts lines longer than 8K can crash gethostent().
-
- 853.	[bug]		another linked list bug shaken out of ns_update.
-
- 852.	[bug]		compiled in pathname for nslookup help file was wrong.
-
- 851.	[bug]		ns_update had an off by 2 bug when checking names in
-			SRV records causing unexpected failures.
-
- 850.	[bug]		empty updates triggered an overambitious INSIST().
-
-	--- 8.2.2-T6B released ---
-
- 849.	[support]	print rcode on failed UPDATE messages.
-
- 848.	[port]		paths.h and port_before.h tweaks from SCO for unixware7.
-
- 847.	[port]		add SRC/irix_patch to make links in IRIX
-
- 846.	[support]	restore some diagnotics lost when #634 was done.
-
- 845.	[support]	WATSQ patch from Ted Rule of Flextech Television.
-
- 844.	[support]	added src/DNSSEC with a note about BIND-8.1.2 interop.
-
- 843.	[bug]		IXFR fixes.
-
- 842.	[bug]		pointer arithmetic on (void *) not ANSI C.
-
- 841.	[port]		sco50: make install: libport.a not longer exists.
-
- 840.	[bug]		turning on touch_timer() in ctl_clnt.c found a bug.
-
- 839.	[contrib]	new version of contrib/host (from author).
-
- 838.	[support]	improve error reporting; remove lint.
-
- 837.	[bug]		bin/host/host.c was not RFC2317 compliant.
-
- 836.	[port]		hpux portability and speed improvements.
-
- 835.	[port]		some shell's "cd" produce output - fix in port/systype.
-
-	--- 8.2.2-T5A released ---
-
- 834.	[support]	massive changes to dynupd API.
-
- 833.	[port]		more Win/NT.
-
- 832.	[feature]	boolean: treat-cr-as-space.  If yes, BIND will treat
-			'\r' the same as it treats ' ' and '\t' in zone files.
-
- 831.	[bugs]		DNSSEC/CAIRN workshop results (in addition to #826):
-			- invalid size passed into b64_ntop in SIG parser
-			- Invalid TSIG keys are now logged and ignored 
-			  instead of panicing.
-			- trusted-keys didn't work if a trailing dot
-			  was present
-			- a DST problem that occurs when one of the
-			  multiprecision integers begins with a 0 byte.
-			- TSIG signed truncated responses were mishandled.
-			- minor RFC2535 changes.
-
- 830.	[doc]		Minor updates to INSTALL
-
- 829.	[support]	we need to cache SOA NXDOMAIN queries if only for a
-			clock tick.
-
- 828.	[support]	multiple zone warning clearer.
-
- 827.	[bug]		the ctl interface was clearing already-cleared timers.
-
- 826.	[contrib]	various improvements to contrib/dns_signer (from TIS).
-
- 825.	[support]	change __NAMESER and __RES to 19991006.
-
- 824.	[port]		sco50 needed #define __BIND_RES_TEXT in port_after.h 
-
- 823.	[bug]		named-xfer missed a SIG text format change
-
- 822.	[bug]		TSIG signed truncated responses crashed the server
-
- 821.	[bug]		potential reference after free bugs.
-
- 820.	[port]		ultrix finally works again.
-
- 819.	[bug]		removed test for missing glue from nslookup() 
-			as it got false matches.  There is no simple
-			test for missing glue.
-
- 818.	[bug]		back out #790, there was no memory leak.
-
- 817.	[port]		Solaris needed #define BSD_COMP in port_before.h.
-
-	--- 8.2.2-T4B released ---
-
- 816.	[bug]		you could not raise the number of available file
-			descriptors after the first call to res_send() and
-			make use of them.
-
- 815.	[feature]	report version via command line option (-v).
-
- 814.	[feature]	getipnodebyname, getipnodebyaddr and freehostent added.
-			These are RFC 2553 newcomers to the RFC 2133 set.
-
- 813.	[support]	better diagnostics when trying to clean up old
-			unix control socket.
-
- 812.	[bug]		uninitalised variable.
-
- 811.	[port]		sco50 make links was not linking resolv.h.diffs
-
- 810.	[bug]		zone transfer did not transfer all DNSSEC records
-			at delegation points. 
-
- 809.	[support]	res_[n]sendupdate has died before it could be used.
-
- 808.	[bug]		res_send() wasn't checking for EINTR after select().
-
- 807.	[support]	it's now possible to send TSIG'd updates.
-
- 806.	[support]	ns_parserr() was uncompressing from the wrong base
-			in a certain corner case trod on by res_findzonecut().
-
- 805.	[bug]		only set SO_LINGER if required by the OS,
-			#define DO_SO_LINGER to do so.
-
- 804.	[bug]		another swath of IXFR fixes.
-
- 803.	[port]		Compaq Tru64 UNIX 4.0B with ZK3's experimental IPv6 kit
-			installed will at least build, but hasn't been tested.
-
- 802.	[support]	we no longer cache NXDOMAIN if the QTYPE was SOA.
-
- 801.	[bug]		our negative caching logic would log spurious errors
-			if the response had an empty question section.
-
- 800.	[bug]		#764 was too aggressive in one case.
-
- 799.	[port]		ultrix is a still-moving target.
-
- 798.	[support]	QRYLOG now logs the QCLASS
-
- 797.	[bug]		closing a thread which had called get*by*() would
-			leak memory.
-
- 796.	[support]	deallocate_on_exit now frees memory allocated by irs.
-
- 795.	[port]		solaris 2.4 SO_REUSEADDR generates errors on
-			unix domain sockets.
-
- 794.	[bug]		ixfr_have_log() was logging wrong file name.
-
- 793.	[bug]		clean_cache() was not alway removing complete RRsets.
-
- 792.	[bug]		deallocate-on-exit caused references to freed memory.
-
- 791.	[support]	MEMCLUSTER_DEBUG had an array size error.
-
- 790.	[bug]		fix minor memory leak in ixfr code.
-
- 789.	[bug]		#669 was too aggressive. more than cached data was
-			removed.
-
- 788.	[bugs]		improvements to tsig and dnssec.
-
- 787.	[port]		win/nt lint.
-
- 786.	[port]		IRIX and emul_ioctl().
-
- 785.	[bug]		#780 broke A record update support.
-
- 784.	[bugs]		still trying to get IXFR working again.
-
-	--- 8.2.2-T3B released ---
-
- 783.	[support]	make res_send() more friendly to the java scheduler.
-
- 782.	[support]	dangling cnames aren't errors, stop logging them.
-
- 781.	[support]	add -n option to ndc command, to run nonstandard named.
-
- 780.	[bug]		UPDATE did not support the AAAA RR.
-
- 779.	[bug]		miscellaneous IXFR fixes.
-
- 778.	[support]	don't complain to syslog about negative caching RRs.
-
-	--- 8.2.2-T2B released ---
-
- 777.	[bug]		getword() didn't increment lineno at EOF.
-
- 776.	[bug]		the NOERROR_NODATA cookie overlapped a valid rcode.
-
- 775.	[protocol]	we weren't sending properly formated FORMERR responses.
-
- 774.	[bug]		UPDATE did not support the SRV RR.
-
- 773.	[bug]		named-xfer was calling inet_ntoa in one printf.
-
- 772.	[typo]		Typo in ns_parser.y on maybe_zero_port: line.
-
- 771.	[lint]		UNLINK now performs a INIT_LINK so explicit INIT_LINK's
-			are nolonger needed after UNLINK.
-
- 770.	[protocol]	dynamic update prerequisites were inappropiately
-			matching wildcards, at variance with RFC 2136.
-
- 769.	[bug]		ordering of CNAMES was driven by original query type.
-
- 768.	[support]	MINROOTS is now a configuration option "min-roots".
-
- 767.	[clarity]	adjust XFR log messages to be more clear about cause.
-
- 766.	[support]	add "serial-queries" option to dynamify MAXQSERIAL.
-
- 765.	[feature]	added evInitID() and evTestID() for NOTIFY work.
-
- 764.	[bug]		DNSSEC changed the semantics of match() without
-			changing all the call sites that cared about it.
-
- 763.	[bug]		NOTIFY events caused by dynamic update weren't being
-			deferred, and multiple NOTIFY events weren't being
-			coalesced.
-
- 762.	[support]	don't rotate log file versions on server startup.
-
- 761.	[port]		named-xfer's openlog() was unconditionally using the
-			LOG_CONS option.  now it does what named does.
-
-	--- 8.2.2-T1A released ---
-
- 760.	[port]		preliminary win/nt from baynetworks (thanks!)
-
- 759.	[support]	new compile time option BIND_IXFR, defaults to "off",
-			since our testing has shown up some problems with it.
-
- 758.	[feature]	new "ndc reconfig" command only finds new/gone zones,
-			doesn't stat() master files or qserial() slave SOA's.
-
- 757.	[support]	FORCED_RELOAD is no longer optional.
-
- 756.	[support]	fixed output format of hmac keys; removed DST chaff.
-
- 755.	[feature]	"also-notify" is now a global option.
-
- 754.	[bug]		the control socket was not checked for event lib
-			compatability.
-
- 753.	[feature]	"ndc help" now returns one line command summaries.
-
- 752.	[feature]	"ndc trace" now takes an optional "level" argument.
-
- 751.	[support]	debugging output could segfault in ns_print.c::addstr.
-
- 750.	[port]		A/UX 3.1.1.
-
- 749.	[port]		#9 has now been done for all Makefiles.
-
- 748.	[feature]	"transfer-source" is now a global option.
-
- 747.	[support]	SORT_RESPONSE is no longer a compile time option, since
-			the behaviour can be turned off at runtime with the
-			"rrset_order fixed;" option.
-
- 746.	[bug]		don't bother rescanning the interfaces if setuid!=root.
-
- 745.	[protocol]	IXFR transmission was just plain wrong in some cases.
-
- 744.	[support]	allow the calling location of strings to be recorded.
-
- 743.	[feature]	$GENERATE now supports more record types, and options.
-
- 742.	[port]		port/sco50 was using /usr/local/etc for its ndc socket.
-
- 741.	[port]		HPUX needed __BIND_RES_TEXT.
-
- 740.	[bug]		#634 had the unfortunate side effect of disabling IXFR.
-
- 739.	[port]		probe for IPv6 structures, solaris openbsd freebsd
-
- 738.	[bug]	 	invalidate pointers back into linked list when element
-			is removed.
-
- 737.	[port]		solaris: expr is sensitive to LC_COLLATE
-
- 736.	[bug]		potential single file descriptor leak opening
-			/dev/random.
-
- 735.	[bug]		memory leak: having rrset-order set and reconfiguring
-			the server results in a memory leak.
-
- 734.	[port]		linux only fills in as many entries as will fill the
-			buffer with SIOCGIFCONF.
-
- 733.	[bug]		RD is not being set on first message to first forwarder
-			resulting in false "Lame Server" reports and degraded
-			service.
-
- 732.	[bug]		errors reading keys from master files could cause the
-			the server to drop core.
-
- 731.	[bug]		highestFD was not reflecting the highest value the
-			library could cope with.
-
- 730.	[port]		rand() does not modify the LSB on BSD based systems.
-
- 729.	[bug]		allow-query responses were dependent upon cache
-			contents.
-
- 728.	[bug]		it wasn't possible to specify the flags of trusted keys
-			in hex, which was inconvenient since dig prints hex.
-
- 727.	[bug]		TSIG keys weren't properly shared with named-xfer if
-			the zone named contained a slash (/).
-
- 726.	[bug]		TSIG keys weren't reloaded correctly with 'ndc reload'.
-
- 725.	[bug]		only the first key in an acl was matched correctly.
-
- 724.	[bug]		"ndc restart" needed a short delay before checking
-			for the health of a newly started name server.
-
- 723.	[bug]		TSIG signed zone transfer failed on especially
-			large zones.
-
- 722.	[doc]		the example named.conf file had invalid TSIG usage.
-
- 721.	[bug]		duplicate records were tripping the cname-and-otherdata
-			test, which wasn't necessary since they'll be ignored.
-
- 720.	[port]		solaris doesn't have gethostid() the way we build.
-
- 719.	[lint]		lots of lint fixed by bob and paul.
-
- 718.	[bug]		multiple CNAME support was not cycling the cnames in 
-			an RRset properly.
-
- 717.	[bug]		wrong /bin/ps flags in solaris prand_conf.h.  minor
-			tweak to ports/prand_conf/prand_conf.c to ensure proper
-			flags in future ports.
-
- 716.	[bug]		log files are now closed/reopened on a size basis.
-
- 715.	[clarity]	root servers don't need to be primed.
-
- 714.	[typo]		extra "q" in a message in ns_maint.c.
-
-	--- 8.2.1 released ---
-
- 713.	[bug]		don't loop on untimely eof within config file.
-
- 712.	[port]		hp-ux signals; aix bit types.
-
- 711.	[perf]		don't call find_zone() four times from within qnew().
-
-	--- 8.2.1-t7b released ---
-
- 710.	[bug]		can fetch zone from own address if port is different.
-
- 709.	[bug]		make sure zones are properly reinited when they die.
-
- 708.	[bug]		end marker or sizeof, but not both please.
-
-	--- 8.2.1-t7a released ---
-
- 707.	[port]		AIX, HPUX, SunOS.
-
- 706.	[feature]	zone forwarding can now be applied to master, slave
-			and stub zones as well as forward zones.
-
- 705.	[bug]		some zone options were not being copied.
-
- 704.	[bug]		very obscure problem fixed in res_update().
-
- 703.	[bug]		single-zone reload was stomping freed memory.
-
-	--- 8.2.1-t6b released ---
-
- 702.	[port]		solaris vs. enum; linux vs. IPv6.
-
- 701.	[bug]		NOTIFY rejection logic still wasn't correct.
-
- 700.	[bug]		complete #697
-
-	--- 8.2.1-t5b (rc2) released ---
-
- 699.	[bug]		if getting the ixfr change log fails send a axfr style
-			response.
-
- 698.	[bug]		res_notify() was rejecting valid NOTIFY messages.
-			re-organise code so that logged messages are more
-			appropriate.
-
- 697.	[port]		linux.
-			some versions define _GNU_SOURCE in features.h
-			some version require the compiler to set the byte order
-			when probing for IPv6 structures.
-
- 696.	[bug]		don't use NULL file pointer if IXFR transaction log
-			cannot be opened due to permission errors.
-
- 695.	[lint]		another considerable amount of lint was removed.
-
- 694.	[bug]		only the last two forwarders would be used.
-
- 693.	[bug]		nsfwdadd() needed to continue outer loop.
-
- 692.	[bug]		RD was not being cleared by ns_forw().  this could
-			cause DNS storms between lame servers.
-
- 691.	[bug]		We still had some leftover named-xfer ixfr tmp files.
-
- 690.	[bug]		return IXFR in question section of AXFR style IXFR
-			response.
-
- 689.	[bug]		we now return "up to date" response to IXFR queries
-			when required.
-
- 688.	[bug]		UDP IXFR now tells the client to use TCP.
-
- 687.	[bug]		IXFR was incorrectly reporting errors on DNSSEC RRs.
-
- 686.	[port]		hpux Makefile.set improvement (+O2 -> +ESlit).
-
- 685.	[feature]	mark recursive queries in query log.
-
- 684.	[bug]		named-xfer now ignores out-of-class glue.
-
-	--- 8.2.1-t4b (RC1) released ---
-
- 683.	[lint]		considerable lint was removed.
-
- 682.	[perf]		another round of performance tweaks from HP (thanks!).
-
- 681.	[bug]		SIG wasn't being ignored when generating NOTIFY msgs.
-
- 680.	[feature]	delay parent reload as long as we can after removing
-			child zone to save multiple parent reloads.
-
- 679.	[port]		port probe now recognizes SCO 5.0.5.
-
- 678.	[doc]		not all man pages were being installed.
-
- 677.	[feature]	lost feature "allow-recursion" added back in.
-
- 676.	[bug]		"100" was too small for ndc message sizes.
-
- 675.	[bug]		we weren't storing a (needed) extra copy of the zname.
-
- 674.	[bug]		SIGTERM wasn't working the first time it was sent.
-
-	--- 8.2.1-t3b released ---
-
- 673.	[bug]		nslookup wasn't accepting _ at the beginning of names.
-
- 672.	[bug]		ndc was only passing the verb across the command
-			channel and not the arguements.  Reload of a single
-			zone "really" works now.
-
- 671.	[feature]	you can reload multiple zones with a single ndc reload
-			command. e.g. ndc reload zone1 zone2 ...
-
- 670.	[bug]		db_load did not work unless a RR had the class defined.
-
- 669.	[bug]		the cache is now purged when a forwarder is {re}loaded.
-
- 668.	[bug]		complete #652.
-
- 667.	[bug]		allow-query wasn't being allowed for stub zones.
-
- 666.	[usability]	only try to chown()/chmod() a control socket when the
-			owner or permissions _change_ between reloads.
-
- 665.	[bug]		"options topology" is now possible to set.
-
- 664.	[security]	add important solaris-related security note to README.
-
- 663.	[bug]		"ndc -q" now turns off initial header and EOF printing.
-
-	--- 8.2.1-t2b released ---
-
- 662.	[usability]	src/conf/ added, containing some of ISC's config files.
-
- 661.	[protocol]	we weren't sending AAAA RR's as AXFR glue.
-
- 660.	[port]		IRIX.
-
- 659.	[contrib]	author-submitted changes to dnssigner, new cider2named.
-
- 658.	[protocol]	print better messages wrt TSIG.  add p_rcode().
-			remove _res_resultcodes[].  improve key handling.
-
- 657.	[port]		apply cpp to /usr/include/netinet/in.h to work out if
-			struct sockaddr_in6 and struct in6_addr/inaddr6 are
-			defined.
-
- 656.	[bug]		Classless IN-ADDR support was broken.
-
- 655.	[bug]		major overhaul of IXFR code.
-
- 654.	[bug]		dynamic update of non top of zone SOA now ZONEERR. 
-
- 653.	[feature]	check-names now applied dynamic updates as if
-			the zone was being loaded.  REFUSED returned.
-
- 652.	[port/bug]	many operating systems allow more descriptors than
-			their default FD_SETSIZE has room for.  we catch this
-			now, both by asking the operating system not to do this
-			and by treating as invalid any out-of-range descriptor.
-
- 651.	[protocol]	any soft failures in res_send() will now cause the
-			final return value to be TRY_AGAIN.  previously the
-			last server response received was the one returned.
-
- 650.	[doc]		resolver.5 man page clarified and corrected; res_init()
-			made to do what the man page now says it does.
-
- 649.	[port]		make header files c++ compatible.
-
- 648.	[bug]		multiple options definitions of allow-query /
-			allow-transfer / sortlist / blackist / topology
-			are not allowed.  warn rather than silently applying
-			the last definition.
-
- 647.	[bug]		options max-ixfr-log-size was not being applied.
-
- 646.	[feature]	memcluster debugging support improved.
-			-DRECORD_MEMCLUSTER to enable.
-
- 645.	[bug]		memory leaks
-
- 644.	[bug]		res_update() could not delete the first CNAME
-			in a chain.
-			
- 643.	[bug]		res_update() did not correctly handle labels
-			with periods.
-
- 642.	[port]		SCO 5.0 portability improved.
-
- 641.	[feature]	$TTL now takes TTLs of the form 1w6d7h32m20s.
-
- 640.	[bug]		was returning NODATA rather than NXDOMAIN after a
-			dynamic update removed the last RR from a childless
-			node.
-
- 639.	[bug]		another fix for "rrset_order fixed".
-
-	--- 8.2.1-t1a released ---
-
- 638.	[bug]		ixfr was still creating the wrong file names sometimes.
-
- 637.	[bug]		bin/dnsquery/dnsquery.c wasn't init'ing the resolver
-			correctly befloew calling gethostbyname().
-
- 636.	[port]		inet_ntoa() had to go back to being non-const for now.
-
- 635.	[bug]		AXFR wasn't forcing an autoincrement of SOA.SERIAL
-			following a batch of UPDATE requests.
-
- 634.	[feature]	check all master soa's and use best serial, rather
-			than trying them in order and grabbing the first
-			one who answers with one better than the local one.
-
- 633.	[port]		SunOS 4.1.4 has a broken recvfrom() with non-blocking
-			sockets.
-
- 632.	[bug]		res_mkupdate() signed/unsigned stupidity.
-
- 631.	[bug]		HMAC-MD5 fixes
-
- 630.	[bug]		NSTATS output was spaceless.
-
- 629.	[misc]		improvements to TSIG error logging.
-
- 628.	[bug]		"rrset_order fixed" was LIFO rather than FIFO.
-
- 627.	[bug]		TSIG signed zone transfers broken.
-
- 626.	[bug]		multiple CNAME support was broken.
-
- 625.	[bug]		key names are really domains so they need to be
-			made canonical.
-
- 624.	[bug]		ns_name_pton() accepted domains of the form
-			"example.." when it should have rejected them.
-
- 623.	[feature]	it is occasionally useful to know the local address
-			used to perform a zone transfer. this is now logged.
-
- 622.	[bug]		missing check for malloc() failures in strndup().
-
- 621.	[bug]		various things were wrong with nslookup's "ls -d" cmd.
-
- 620.	[feature]	forwarders are now retried like queries to the
-			delegated nameservers.  forward only should be
-			more robust as a result.
-
- 619.	[protocol]	don't refresh TTL's from delegation information.
-
- 618.	[feature]	ndc is now quiet and verbose when it should be.
-
- 617.	[bug]		SOA counters now have minima as well as maxima.
-
- 616.	[bug]		needs were not always processed in a timely fashion.
-
- 615.	[bug]		ns_shutdown() memput() the wrong amount of memory
-			when freeing the zones array.
-
- 614.	[feature]	ndc can now reload single zones including the root
-			zone.
-
- 613.	[bug]		check for old unix domain socket / fifo prior to
-			attempting to establish control channel. error
-			message no longer just noise.
-
- 612.	[port]		Solaris UNIX domain sockets return different error
-			codes and also may use FIFOs.
-
- 611.	[bug]		extend control timeout to 10 minutes. reloads can
-			take a long time.
-
- 610.	[bug]		when reloading via the control channel we were
-			reporting that we were about to reload after the
-			reload was performed. Ensure message is set prior
-			to reloading.
-
- 609.	[bug]		zoneTypeString() could be called with NULL pointer.
-
- 608.	[bug]		set various pointers to NULL after associated
-			memory has been released to prevent accidental use.
-
- 607.	[bug]		finddata() was returning SIG's inappropriately.
-
- 606.	[bug]		fix two memory leaks in db_sec.c.
-
- 605.	[feature]	better error reporting from named-xfer.
-
- 604.	[bug]		fix a bug in the handling of $TTL's absence.
-
- 603.	[port]		add contributed/untested rhapsody port.
-
- 602.	[bug]		multiple "type hint" zones are now supported.
-
- 601.	[bug]		z_ftime wasn't being reset when fopen() failed.
-
- 600.	[bug]		gen_res_get() was initializing the wrong variable.
-
- 599.	[bug]		"ndc reload" exercised an uninitialized variable.
-
- 598.	[bug]		"nslookup reports danger" was reported ambiguously.
-
- 597.	[bug]		we weren't priming the cache in forward-only mode.
-
- 596.	[bugs]		many small bugs in DNSSEC handling were fixed.
-
- 595.	[bug]		nsupdate failed to support quite a few rr types:
-			sig,key,nxt,eid,numloc,srv,atma,naptr,kx,cert
-
- 594.	[proto]		BADID removed per I-D.
-
- 593.	[bug]		mk_update() didn't support SIG.
-
- 592.	[bug]		lcl_pr and lcl_ho were using uninitialized bufsizes.
-
- 591.	[port]		linux.
-
- 590.	[port]		irix.
-
- 589.	[doc]		hesiod(3) man page contrib'd in 1996 finally put in.
-
- 588.	[bug]		too many lame servers at once was fatal.
-
-	--- 8.2 released ---
-
- 587.	[perf]		uses about 5% less memory than 8.1.2 now.
-
- 586.	[perf]		faster at tcp, therefore less blocking on udp.
-
- 585.	[misc]		various releng lint.
-
- 584.	[bug]		IXFR wasn't doing DNSSEC RRtypes.
-
- 583.	[bug]		dnskeygen now fully qualifies its names; better usage.
-
- 582.	[port]		irix needed some patches applied during the build.
-
- 581.	[bug]		match_order() could dump core after "ndc reload".
-
- 580.	[bug]		ip_match_is_none() could dump core.
-
- 579.	[bug]		state names were off by one in src/lib/isc/ctl_srvr.c.
-
- 578.	[misc]		try without "transfer-source" if axfr connect() fails.
-
- 577.	[contrib]	sqlbind-8.
-
- 576.	[bug]		insecure updates weren't supported.
-
- 575.	[doc]		better documentation of key, trusted-key, zone pubkey.
-
- 574.	[bug]		was freeing freed memory on exit.
-
- 573.	[port]		nextstep.
-
- 572.	[misc]		centralize the name hashing logic (widen in some cases)
-
- 571.	[perf]		the new db_marshal() code was taking too much memory.
-
- 570.	[perf]		the lame server storage was taking too much memory.
-
- 569.	[bug]		src/lib/isc/ctl_srvr.c had an incomplete assertion.
-
- 568.	[doc]		Brent Baccala contributed an nsupdate man page.
-
- 567.	[port]		mpe, nextstep.
-
- 566.	[protocol]	upgrade to tsig draft 08.
-
- 565.	[lint]		use right relative paths for dnssafe includes in dst.
-
- 564.	[bug]		default security level for update rr's wasn't set.
-
- 563.	[bug]		debugging output in dprint_key_info() could panic us.
-
- 562.	[perf]		8.2-t6b used 30% more memory on root name servers than
-			8.1.2 did.  most of that was db_marshal hash tables.
-
-	--- 8.2-T6B released ---
-
- 561.	[bug]		DST more graceful in handling unsupported algorithms.
-
- 560.	[feature]	lame server ttl now a configuration option.  Re-enable
-			lame server negative caching.
-
- 559.	[bug]		sysquery() was still using the child's name when it
-			switched to using the parent's NS list causing false
-			lame server reports.
-
- 558.	[bug]		disable lame server negative caching for the present.
-
- 557.	[bug]		undersized tcp messages are now detected early.
-
- 556.	[bug]		DNSSEC fine tuning.
-
- 555.	[bug]		the named.conf lexer was depending on two characters
-			worth of putback buffer, ansi c guarantees one char.
-
- 554.	[port]		port to "next" contributed by jack bryans.
-
- 553.	[contrib]	added "snoof", another script kiddie toy.
-
- 552.	[bug]		allow-query didn't interact well with external cnames.
-
- 551.	[bug]		validate_zone could crash the server.
-
- 550.	[lint]		ns_maint was using ns_log_default, not ns_log_in_xfer.
-
- 549.	[port]		netbsd and openbsd improved.  prand_conf improved.
-
- 548.	[bug]		ns_resp was using the wrong logging category.
-
- 547.	[bug]		dig was reinit'ing its resolver flags incorrectly.
-
- 546.	[bug]		nsupdate didn't handle HINFO,ISDN,TXT,X25 correctly.
-
- 545.	[feature]	added dnssafe back in.
-
- 544.	[feature]	removed DES encryption support.
-
- 543.	[port]		cleaned cylink of non used definitons in headerfiles.
-
- 542.	[bug]		include/dst no longer needed
-
- 541.	[bug]		CERT records are allowed to have alg == 0.
-
- 540.	[doc]		Removed outdated doc/secure, updated dnssigner
-			documentation, updated dnskeygen.1
-
- 539.	[bug]		db_dump() was misparsing CERT records.
-
- 538.	[feature]	The KEY set is along with SOA, NS, A, AAAA records.
-
- 537.	[bug]		Multiple signatures are handled correctly.
-
- 536.	[bug]		SIG record expiration should be checked when the
-			SIG is verified.
-
- 535.	[bug]		Queries for SIG records of non-authoritative
-			names should not look in the cache or cache the
-			results.
-
- 534.	[bug]		DNSSEC SIG records are dropped when they don't
-			sign any data correctly.
-
- 533.	[bug]		SIG and NXT records are correctly handled when
-			received in responses by named
-
- 532.	[bug]		dynamic update data is now always considered
-			insecure, rather than having no security status.
-
- 531.	[bug]		dynamic update can again remove all data associated
-			with a name (type ANY, class ANY).
-
- 530.	[lint]		downgraded "ctl: unexpected eof" from error to debug.
-
- 529.	[port]		unixware 7 port received.
-
- 528.	[bug]		timeouts could make ctl_srvr dump core.
-
- 527.	[bug]		we were not reliably reaping our children.
-
- 526.	[bug]		Cached CNAMES pointing to servers returning Type 3/4
-			NXDOMAIN are translated to Type 3 NODATA responses.
-
- 525.	[bug]		nscount could be short if we had to recurse after
-			following a cname and we got a negative response.
-			NS rrset got split between AU and AD sections.
-
- 524.	[protocol]	RFC 2308 support added.
-
- 523.	[feature]	mark lame servers as such and don't use them for NTTL.
-
- 522.	[port]		solaris 7 is now known to work.
-
- 521.	[port]		sunos4 should be supported now.
-
- 520.	[bug]		inet_pton() was allowing some bad ipv6 addresses in.
-
- 519.	[bug]		refuse duplicate also-notify's; optimize logging.
-
- 518.	[port]		hpux portability fixes.
-
- 517.	[contrib]	dnswalk wasn't copying with 8.* "dig" output.
-
- 516.	[port]		MPE portability fix.
-
-	--- 8.2-T5B released ---
-
- 515.	[security]	lib/dnssafe code removed; now a separate patch.
-
- 514.	[port]		freebsd patches.
-
- 513.	[bug]		memory leak in res_mkupdate().
-
- 512.	[bug]		$GENERATE could use an unset ttl.
-
- 511.	[bug]		$TTL warning test was wrong.
-
- 510.	[port]		bugs and things found by the netbsd folks.
-
- 509.	[bug]		The labels field in the SIG record may be less than
-			the number of labels in the domain name if the
-			owner of the SIG is a wildcard.
-
- 508.	[bug]		rrset ordering contained an off-by-one error
-
- 507.	[bug]		NXT set processing was not distinguishing
-			between the upper and lower sets at delegation
-			points.
-
- 506.	[contrib]	more script-kiddie toys, this time contrib/adm.
-
- 505.	[bug]		the ixfr changes to named-xfer destabilized stubs.
-
- 504.	[port]		some IRIX problems fixed.
-
- 503.	[bug]		ixfr wasn't correctly setting up its qsp.
-
-	--- 8.2-T4A released ---
-
- 502.	[bug]		some config file parsing was still using malloc().
-
- 501.	[feature]	named sets the AD bit in the header when returning
-			authenticated data
-
- 500.	[bug]		dst_verify_data returns the documented error codes
-
- 499.	[bug]		verify_set now verifies the correct data
-
- 498.	[bug]		ixfr was not completely finished.
-
- 497.	[bug]		don't put zone 0 on the free list.
-
- 496.	[bug]		Losing all but last RR of RRset.
-
- 495.	[port]		random portability noise.
-
- 494.	[bug]		sysquery() should not let nlookup() change its data.
-
- 493.	[feature]	add "options ... rrset_order ... cyclic|random|etc".
-			this allows round robin to be turned off selectively,
-			or replaced with pseudorandom ordering, or whatever.
-
- 492.	[bug]		src/bin/named/db_sec.c was memputting objects twice.
-
- 491.	[feature]	add IRP (Information Retrieval Protocol) and daemon.
-			this is functionally similar to solaris "nscd".
-
- 490.	[bug]		lib/isc/ctl_srvr.c couldn't overlap read and write.
-			(also: add session context set/get.)
-
- 489.	[bug]		"cname and other data" was more complex than thought.
-
- 488.	[port]		some netbsd portability stuff.  (still not working?)
-
- 487.	[port]		digital unix 3.2 wasn't working (4.0d was though).
-
- 486.	[feature]	add "sortlist", which may yet be merged/renamed into
-			the "topology" verb.
-
- 485.	[bug]		do not complain about default TTLs unless a master.
-
- 484.	[contrib]	add contrib/z0ne, a useful tool for crackers.
-
- 483.	[contrib]	add contrib/query-loc[-*] to look up LOC RR's.
-
- 482.	[bug]		all RR's must now be of the same class as the zone.
-
- 481.	[bug]		outbound zone transfers are killed on any UPDATE.
-
-	--- 8.2-T3A released ---
-
- 480.	[bug]		ns_update was corrupting TXT records
- 
- 479.	[bug]		res_mkupdate was not handling WKS, HINFO, TXT,
-			X25, ISDN, NSAP and LOC records.
-
- 478.	[bug]		name_pack could leave a bad compression pointer.
-
- 477.	[port]		improved support for FreeBSD 3.0.
-
- 476.	[bug]		BSDI contributed some fixes to the /etc/group parsing.
-
- 475.	[bug]		another memory leak in hesiod_resolve().
-
- 474.	[bug]		SRV RR names were being compressed on output.
-
- 473.	[feature]	IXFR is no longer optional and has been cleaned up.
-
- 472.	[bug]		IXFR was disabling USE_PID_FILE.
-
- 471.	[feature]	add support for CERT records.
-
- 470.	[bug]		rrset_db_upgrade was updating the wrong cache.
-
- 469.	[performance]	use a free list for unused zones.
-
- 468.	[feature]	add getaddrinfo, courtesy of WIDE.
-
- 467.	[lint]		include/dst/dst.h moved to include/isc/dst.h.
-
- 466.	[bug]		fix core dump introduced with tsig glue.
-
-	--- 8.2-T2A released ---
-
- 465.	[bug]		ref counting bug in ns_xfr.
-
- 464.	[bug]		correct cut&pasteo in IXFR config syntax.
-
- 463.	[lint]		clean psf files after top level "make tar".
-
-	--- 8.2-T1A released ---
-
- 462.	[feature]	we now use randomized query id's.
-
- 461.	[feature]	new option "version" added.
-
- 460.	[feature]	add initial IXFR support from Check Point Technologies.
-
- 459.	[bug]		res_update() was putting debugging info on stderr.
-
- 458.	[doc]		add named.conf(5), improve doc/html.
-
- 457.	[feature]	named-bootconf is now written in /bin/sh and it is
-			now installed in ${DESTSBIN}.
-
- 456.	[bug]		res->defdname[] wasn't always properly \0 terminated.
-
- 455.	[bug]		_PATH_MEMSTATS was never being used.
-
- 454.	[doc]		the html docs weren't clear about logging having to
-			be specified first in the named.conf file.
-
- 453.	[feature]	add zone type "forward" for selective forwarding
-			(sometimes called "split horizon" or "fake root").
-
- 452.	[bug]		lib/irs/* was generally not coping with
-			oversized lines and files not ending in \n.
-
- 451.	[port]		BSD/OS 2.* is now a separate port.
-
- 450.	[Feature]	added DNS key generator in bin/dnskeygen.
-
- 449.	[contrib]	added DNS zone signer in contrib/dns_signer.
-
- 448.	[doc]		sample named.conf and html documentation include
-			examples of DNSSEC / TSIG configurations.
-
- 447.	[feature]	named verifies TSIG records on incoming messages, and
-			generates TSIG records on outgoing messages.
-
- 446.	[feature]	res_nsendsigned, res_nfindprimary, res_nsendupdate
-			provide TSIG aware resolver functions.
-
- 445.	[feature]	ns_sign and ns_verify generate/authenticate TSIG
-			signatures on DNS messages.  ns_sign_tcp,
-			ns_sign_tcp_init, ns_verify_tcp, and
-			ns_verify_tcp_init are used for tcp transfers.
-
- 444.	[feature]	acls can now include shared key names.
-
- 443.	[feature]	added DNSSEC verification of zone data on load and
-			partial verification of signed data received over
-			the wire.
-
- 442.	[feature]	lib/dst (TIS digital signature toolkit), lib/dnssafe,
-			and lib/cylink added to provide functionality
-			needed for DNSSEC and transaction signatures.
-			
- 441.	[bug]		fixed memory leak in hesoid support.
-
- 440.	[bug]		support for res in lib irs was a mess.  _res now
-			controls the behaviour of get*by*() again.
-
- 439.	[bug]		fix *END_RESULT macros in port/solaris/port_before.h.
-
- 438.	[feature]	permit the install user and group to be overridden.
-
- 437.	[feature]	TCP truncation now reports IP address of the server.
-
- 436.	[bug]		memory leaks in nsupdate.
-
- 435.	[doc]		updated resolver.3
-
- 434.	[bug]		named.run was not always being created when ndc trace
-			was run.
-
- 433.	[bug]		req_notify required the slave zone to have been loaded.
-			this may not be the case when a zone has expired or
-			is being established over a dial on demand link.
-
- 432.	[feature]	blackhole queries from these nets. do not use these
-			nets to resolve queries.
-
- 431.	[feature]	loop breaking with UDP based well known services.
-
- 430.	[bug]		memory leaks in dispatch_message.
-
- 429.	[feature]	fast retries on host/net unreachable.
-
- 428.	[bug]		CNAME and other data is now a hard error.
-
- 427.	[feature]	support very large numbers of virtual interfaces.
-
- 426.	[bug]		bring named closer into line with the data ranking
-			in RFC 2181, Section 5.4.1.
-
- 425.	[bug]		removed spurious debug statment that generated a lot
-			false bug reports.
-
- 424.	[bug]		closed file descriptor leaks in ns_update.
-
- 423.	[feature]	loc_ntoa() can now accept NULL like other _ntoa's.
-
- 422.	[feature]	you can now specify a port on the master statement
-			to allow transfers from a non standard port.
-
- 421.	[feature]	warn when the root hints do not match reality.
-
- 420.	[misc]		added support for bcc (bounds checking compiler).
-
- 419.	[feature]	bring negative caching into RFC 2308 compliance.
-
- 418.	[bug]		expire now behaviour now as per RFC 1034/1035.
-
- 417.	[bug]		updates and zone transfers weren't locking eachother.
-
- 416.	[port]		support added for HPUX B.11.*
-
- 415.	[feature]	ndc is a C program now, uses new "controls" subsystem.
-
- 414.	[feature]	"controls" element of named.conf now live and working.
-
- 413.	[feature]	octal and hexadecimal numbers now parsed in named.conf.
-
- 412.	[bug]		we now support 2**24-1 (16M) zones. (need namespaces!)
-
- 411.	[bug]		fix *END_RESULT macros in port/bsdos/port_before.h
-
- 410.	[feature]	added support for dial on demand links between
-			servers. 
-
- 409.	[port]		remove aggregious use of snprintf().
-
- 408.	[feature]	add -b option to dig to set srcaddr of tcp connects.
-
- 407.	[feature]	added $GENERATE to generate sets of RR's that only
-			differ by an interator.
-
- 406.	[doc]		added manpage for inet_cidr_ntop() inet_cidr_pton().
-
- 405.	[bug]		res_nsend() closed sockets unnecessarily on timeout. 
-			handle change NS list and RES_STAYOPEN generically.
-
- 404.	[bug]		inet_addr/inet_aton/inet_network accepted illegal
-			inputs as legal. Also enforce octal input.
-
- 403.	[bug]		inet_cidr_ntop() was not producing correct output for
-			all possible inputs.
-
- 402.	[bug]		fix retry/retransmit logic in face of network errors.
-
- 401.	[doc]		the "transfer-source" zone option wasn't documented.
-
- 400.	[bug]		bin/host was dumping core - converted to use getopt.
-
- 399.	[port]		use time() rather than gettimeofday() in dig.
-
- 398.	[bug]		named could exit silently on assertion failures,
-			now assertion failures are logged using INSIST.
-
- 397.	[port]		add an AIX 3.2 port (requires GNU utilities).
-
- 396.	[bug]		dig and nslookup allowed sscanf/sprintf overflows.
-
- 395.	[bug]		dig and nslookup were unable to deal with 64KB answers.
-
- 394.	[feature]	add RES_NOCHECKNAME and "options no-check-names" (in
-			resolv.conf) to turn off modern host/mail name checks.
-
- 393.	[bug]		lib/isc/tree.c was missing a critical \ (#if DEBUG).
-
- 392.	[bug]		inet_aton() wasn't requiring nonterminal octets to
-			be in the range of octets, i.e., 1.300.1.1.
-
- 391.	[bug]		fix bug in MAX_XFERS_RUNNING logic.
-
- 390.	[bug]		ns_update() was capable of renaming an open file.
-
- 389.	[feature]	libbind.a now has a "ctl" subsystem, which is planned
-			to replace signals as a the communication path between
-			"ndc" and "named".  preliminary support is in "named".
-
- 388.	[feature]	preliminary/nonfunctional/nonstandard ZXFR support.
-
- 387.	[feature]	inet_cidr_pton() and inet_cidr_ntop() added.
-
- 386.	[bug]		inet_net_pton() was not parsing hex correctly.
-
- 385.	[feature]	three new options for the RES_OPTIONS environment var
-			or for the "options" directive in /etc/resolv.conf:
-				attempts:NN	default res.retry
-				timeout:NN	default res.retrans
-				rotate		use ALL listed nameservers
-
- 384.	[feature]	there is now a nearly-thread-safe resolver API, with
-			the old non-thread-safe API being a set of stubs on
-			top of this.  it is possible to program without _res.
-			note: the documentation has not been updated.  also
-			note: IRS is a thread-ready API, get*by*() is not.
-			(see ../contrib/manyhosts for an example application.)
-
- 383.	[contrib]	bsdi contributed an /etc/services.db hack, which is
-			currently conditionalized for bsd/os but would work
-			on any modern BSD-derived system (DB, snprintf, etc).
-
- 382.	[port]		bsd/os 4.0 defines its own pselect(), which differs
-			from the one we simulated.  we now simulate the right
-			one, and use the right one.
-
- 381.	[contrib]	added contrib/srv, the beginnings of SRV client side.
-
-	--- 8.1.2 released ---
-
- 380.	[bug]		Replaying the dynamic update log could trigger an
-			INSIST.
-
- 379.	[port]		Updated IRIX port.
-
- 378.	[bug]		The declaration for res_freeupdrec() in resolv.h
-			didn't use __P().
-
- 377.	[func]		The server now sets SO_SNDBUF on UDP sockets.
-
- 376.	[port]		The malloc() implementation on many systems didn't
-			like memcluster.c's 4KB block allocations, sometimes
-			causing huge amounts of memory to be wasted.
-			memcluster.c now allocates bigger chunks and makes
-			its own 4KB blocks.
-
- 375.	[bug]		If more than (sizeof u_long) gets occurred for a
-			particular memory bucket, an INSIST about puts < gets
-			might have been erroneously trigged.  Now total
-			gets and outstanding gets are counted.
-
- 374.	[port]		SCO 3.2v4.2 doesn't have initgroups(), so we do not
-			want to define CAN_CHANGE_ID.
-
- 373.	[port]		Updated LynxOS port.
-
- 372.	[port]		Updated SCO 3.2v5.0.x port.
-
- 371.	[bug]		"make install" could fail on some Linux systems
-			because src/port/linux/include/net/Makefile didn't
-			cope with an empty HFILES variable.
-
- 370.	[bug]		Trying to update an expired slave zone would cause
-			the server to panic.
-
- 369.	[bug]		The Makefile for named-xfer didn't try to create
-			${DESTDIR}${DESTEXEC} if it didn't exist.
-
- 368.	[bug]		Interface scanning could get confused on BSD-like
-			systems if the sa_len of the address was less than
-			sizeof (struct sockaddr).
-
- 367.	[func]		The default value for the host-statistics option has
-			been changed to "no".
-
-	--- 8.1.2-T3B released ---
-
- 366.	[bug]		Z_AUTH was set on the cache zone do_reload().
-
- 365.	[security]	Missing bounds checking in inverse query handling
-			allowed an attacker to overwrite the server's stack.
-
- 364.	[port]		Added support for HP MPE.
-
- 363.	[bug]		named-xfer automatically restarts the transfer if the
-			SOA changes during the transfer.  There was no limit
-			on the number of restarts, resulting in a lot of
-			wasted effort if the SOA was constantly changing.
-			The number of restarts is now limited.
-
- 362.	[security]	Requesting a zone transfer for a domain name which
-			had a resource record of a certain format would
-			cause the server to abort().
-
- 361.	[bug]		named-xfer tries to close files named might have
-			had open.  On Solaris, sysconf(_SC_OPEN_MAX) can
-			return RLIM_INFINITY, and if it did named-xfer
-			would try to close all those files.  named-xfer
-			now applies an upper limit of FD_SETSIZE.
-
- 360.	[port]		Solaris 2.5 systems needed <sys/resource.h> to
-			be included in port_after.h to get rlim_t.
-
-	--- 8.1.2-T3A released ---
-
- 359.	[func]		IRS group support is now controlled by the
-			WANT_IRS_GR define in port_before.h.
-
- 358.	[port]		Updated IRIX port.
-
- 357.	[port]		Added support for QNX.
-
- 356.	[func]		Added -u (set user id), -g (set group id), and
-			-t (chroot) command line options to 'named'.
-
- 355.	[func]		If getnetconf() fails because it can't create the
-			socket used to get the interface list, the server
-			will log an error if it is doing a periodic interface
-			scan, and panic otherwise.  Previous versions of the
-			server always panicked.
-
- 354.	[security]	Bounds checking in named-xfer, dig, host, and nslookup
-			had problems similar to those in item 293.  Added a
-			few more bounds checks to the server.
-
- 353.	[port]		Paths are no longer overridden in port_after.h, and
-			are now generated from the various DEST paths in
-			Makefile.set.
-
- 352.	[bug]		Because of problems with setting an infinite rlim_max
-			for RLIMIT_NOFILE on some systems, previous versions
-			of the server implemented "limit files unlimited" by
-			setting the limit to the value returned by
-			sysconf(_SC_OPEN_MAX).  The server will now use
-			RLIM_INFINITY on systems which allow it.
-
- 351.	[port]		Updated HP/UX 10.x port.
-
- 350.	[bug]		errno could be changed by certain signal handlers.
-			These signal handlers now save errno on entry
-			and restore it on exit.  This changes eliminates the
-			need for the SPURIOUS_ECHILD #define.
-
- 349.	[bug]		hesiod.h wasn't installed.
-
- 348.	[port]		Added support for LynxOS.
-
- 347.	[bug]		res_update() leaked the zone section it allocated.
-			This leak no longer occurs on normal returns, but
-			still occurs when there is an abnormal return.  This
-			will be addressed in a future fix.
-
- 346.	[bug]		Fix 303 fixed one thing and broke another, resulting
-			in a nonfunctional grscan().
-
- 345.	[bug]		Fix 328 was bad, causing the root zone to be purged
-			every time a toplevel domain was reloaded.
-
- 344.	[bug]		The priming fix in change 330 erroneously called
-			unsched() twice, causing a core dump if priming
-			failed.  The priming fix could also erroneously
-			query [0.0.0.0].0.
-
- 343.	[bug]		The REQUIRE() in free_rrecp() was wrong, and was
-			triggered by an unapproved update.
-
- 342.	[port]		Added support for SCO UNIX 3.2v5.0.4.
-
-	--- 8.1.2-T2A released ---
-
- 341.	[port]		The LOG_CONS option to openlog() does not work as
-			documented on some systems.  The server will now use
-			LOG_CONS only if USE_LOG_CONS is defined by the
-			port.  Currently the bsdos, decunix, freebsd, linux,
-			and netbsd ports define USE_LOG_CONS.
-
- 340.	[bug]		The pid file was updated before the configuration
-			file had been read.
-
- 339.	[port]		#define HAVE_GETRUSAGE for Solaris >= 2.5.
-
- 338.	[func]		'host' can now print AAAA records.
-
- 337.	[bug]		rm_datum() erroneously set dp->d_next to NULL
-			when savedpp wasn't NULL.  Given a dynamic update
-			operation that deleted more than one RR, this bug
-			would cause all but one of the RRs to be leaked, and
-			would prevent correct rollback if the update failed.
-
- 336.	[bug]		Make sure 's' isn't negative in res_send().  This
-			shouldn't happen, but there have been some reports
-			suggesting it can happen.
-
- 335.	[lint]		Cleaned up more gcc warnings.
-
- 334.	[port]		Added support for HP-UX 9.x.
-
- 333.	[bug]		db_glue.c didn't compile if DEBUG wasn't defined.
-
- 332.	[bug]		named-bootconf.pl didn't convert secondary lines
-			that didn't contain a filename correctly.
-
- 331.	[bug]		If the server was configured with forwarders (but
-			not in forward-only mode), and a query ran out of
-			forwarders and had no nameservers, then the server
-			would erroneously forward the request to [0.0.0.0].0.
-
- 330.	[bug]		If priming of the root servers failed, recovery could
-			take a long time.  If using forwarders to prime
-			and the query expired, the first forwarder would
-			always be skipped on subsequent attempts.  The server
-			complained about priming problems in forward-only mode,
-			even though it doesn't matter.
-
- 329.	[port]		Some versions of Linux apparently need SPURIOUS_ECHILD.
-
- 328.	[bug]		purge_zone() didn't recurse if given the root zone,
-			causing old data and new data for the root zone to be
-			merged.
-
- 327.	[func]		Add log_check() and log_check_channel().
-
- 326.	[func]		Add r_prev field to ns_updrec in <arpa/nameser.h>.
-
- 325.	[bug]		Rollback of a failed dynamic update was done in FIFO
-			order instead of LIFO order.
-
- 324.	[bug]		evTryAccept() closed the wrong fd if getsockname()
-			failed.
-
- 323.	[bug]		eventlib didn't clear bits that had been serviced
-			or deselected out of ctx->{rd,wr,ex}Last.
-
- 322.	[bug]		evDestroy() destroyed the files list before destroying
-			the streams list.  If there were any active streams,
-			this would cause a double destroy of the streams'
-			file objects, very likely triggering an 'insist'.
-
- 321.	[bug]		The correct error code for a failed asynchronous
-			connect was not reported.  It now is, at least on
-			systems that have the SO_ERROR socket option.
-
- 320.	[func]		Allow multiple pending accepts.  evTryAccept() now
-			reports the errno if an error was queued.
-
- 319.	[bug]		The toplevel Makefile passed MARGS before $settings,
-			which prevented overriding a port's Makefile.set
-			from the command line.
-
- 318.	[bug]		The Solaris port_after.h checked for SUNOS_2_5_1
-			instead of SUNOS_5_5_1.
-
- 317.	[unused]	[This change number was allocated but not used.]
-
- 316.	[bug]		evTryAccept() didn't append to the done list correctly
-			if connLast wasn't NULL.
-
- 315.	[bug]		The dynamic update code was incorrectly converted to
-			clean up ns_updrec structures using the new clustered
-			memory allocator, and this would cause an 'insist' to
-			be triggered some time after a dynamic update had
-			been processed.  Instead of freeing the ns_updrec
-			fields directly in ns_update.c, res_freeupdrec() was
-			added to the resolver.
-
- 314.	[bug]		Adding and then deleting an RR in a single dynamic
-			update request would crash the server.
-
- 313.	[bug]		The nameserver would only try zone transfers from
-			the master that answered its SOA query.  If a master
-			for some reason can answer the SOA but not the AXFR,
-			the other masters (if any) should be tried.
-
- 312.	[security]	Bounds checking in the resolver and dynamic update
-			code had problems similar to those in item 293.
-			Added more checks to ns_resp.c.
-
- 311.	[bug]		The s_wbuf in the qstream structure was leaked in
-			certain zone transfer failures.
-
- 310.	[bug]		If the server ran out of memory in ns_xfr(), the
-			subsequent connection cleanup could modify the
-			z_numxfrs field of zone 0 instead of the zone being
-			transferred, causing an 'insist' to be triggered later.
-
- 309.	[bug]		NAMELEN() could return a negative length.
-
- 308.	[func]		Don't log ECONNRESET in stream_getlen().
-
- 307.	[bug]		include/isc/assertions.h and include/isc/list.h
-			weren't installed.
-
- 306.	[bug]		Timewarping into the future would cause repeating
-			timers to generate an event for every interval between
-			the previous time and the new time.  Repeating timers
-			are now rescheduled based on the last event time, not
-			their due time.  Idle timers now use the last event
-			time to compute the idle interval instead of the due
-			time.
-
- 305.	[bug]		The BOUNDS_CHECK() for the 5 32-bit integers in the
-			SOA RR was wrong.
-
- 304.	[bug]		lib/isc/assertions.c and lib/isc/memcluster.c did not
-			follow the port_{before/after}.h convention.
-			memcluster.c #included eventlib.h but did not need it.
-
-	--- 8.1.2-T1A released ---
-
- 303.	[bug]		'bp' in grscan() in lib/irs/lcl_gr.c was incorrectly
-			validated, potentially causing corrupt data to be read.
-
- 302.	[port]		#define HAVE_GETRUSAGE for Solaris >= 2.5.1.
-
- 301.	[port]		Added support for Solaris 2.6.
-
- 300.	[bug]		The space for the pathname of named-xfer in the
-			options block leaked.
-
- 299.	[bug]		<irs.h> wasn't in the include directory, and wasn't
-			included before "port_after.h".
-
- 298.	[func]		Added "deallocate-on-exit" and "memstatistics-file"
-			options.  If deallocate-on-exit is "yes", the server
-			will painstakingly deallocate every object it
-			allocated.  This is slower than letting the OS clean
-			things up, but is helpful in detecting memory leaks.
-
- 297.	[port]		GNU libc 2.0 doesn't have <nlist.h> so in the
-			Linux port we now provide a stub nlist.h that
-			includes the real nlist.h if GNU libc < 2.0 and
-			does nothing if >= 2.0.
-
- 296.	[bug]		"make stdlinks" didn't "mkdir /var/obj" if /var/obj
-			didn't exist.
-
- 295.	[bug]		Specifying a query-source with and address and port
-			that the server was listening to didn't work.
-
- 294.	[security]	The server was willing to answer queries on its
-			forwarding sockets.
-
- 293.	[security]	rrextract() did insufficient bounds checking which
-			could cause it to crash the server by reading from
-			an invalid memory location.
-
- 292.	[bug]		The server sometimes leaked the flushset (ns_resp.c).
-
- 291.	[bug]		The server did not detect oversized UDP packets,
-			causing useless retries.
-
- 290.	[bug]		free_listen_info_list() leaked the IP matching lists;
-			the leak occurred when the config file was reloaded.
-
- 289.	[bug]		[This bug number was allocated for something that
-			turned out not to be a bug.]
-
- 288.	[func]		Add new list and assertion code to the ISC library.
-
- 287.	[bug]		"dig +sort" doesn't do anything, but was mentioned
-			in dig's usage message, as well as in the man page.
-
- 286.	[bug]		Some systems have a default FD_SETSIZE much smaller
-			than the number of files that can be opened.  This
-			could cause problems in the resolver and eventlib.
-			FD_SETSIZE may now be set in
-			port/*/include/fd_setsize.h.
-
- 285.	[bug]		If OS probing failed to match any of the supported
-			ports, the build would try to continue with BSD 4.4
-			settings, with poor results in most situations.  An
-			error message is now printed if probing fails.
-
- 284.	[func]		The interface list is now doubly-linked.
-
- 283.	[bug]		The server would panic if binding to an interface that
-			it had discovered failed.  Simply not listening to
-			the interface is a better solution.
-
- 282.	[bug]		The nslookup Makefile didn't prefix DESTHELP with
-			DESTDIR when setting DEFS.
-
- 281.	[bug]		A socket() called in ns_main.c used PF_INET instead
-			of AF_INET.
-
- 280.	[bug]		The sample named.conf used "clean-interval" instead of
-			"cleaning-interval".
-
- 279.	[bug]		Some panic() messages in the IP matching code in
-			ns_config.c were wrong.
-
- 278.	[bug]		Setting an interval to zero (e.g. interface-interval)
-			eventually caused random timer destruction.
-
- 277.	[bug]		ns_panic() used "args" twice, but only called
-			va_start() and va_end() once.
-
- 276.	[bug]		nslookup's "ls" command always listed all records
-			instead of behaving the way its man page describes.
-
- 275.	[bug]		add_related_additional() leaked memory if the name
-			was already in the related array.
-
- 274.	[bug]		If a timer was cleared while in executing its callback,
-			and a new non-repeating timer was created afterwards
-			(but still in the callback), the new timer was
-			erroneously destroyed when the callback completed.
-
- 273.	[func]		Added transfer-source and host-statistics options.
-
- 272.	[func]		The zone number is now unsigned, allowing up to
-			65536 zones instead of the previous limit of 32768.
-
- 271.	[func]		Added evDefer().
-
- 270.	[bug]		The meaning of the count returned by select() varies
-			somewhat by operating system.  Under certain
-			circumstances, this confused eventlib's accounting and
-			caused the server to spin.
-
- 269.	[func]		Added evLastEventTime().
-
- 268.	[bug]		Connections weren't cleaned up when the eventlib
-			context was destroyed.
-
- 267.	[func]		Added evTimeRW() and evUntimeRW() to control idle timer
-			usage in the eventlib streams module.
-	
- 266.	[func]		Added file descriptor table to ev_files.c to improve
-			performance of evSelect() and evDeselect().
-
- 265.	[func]		Added evHold(), evUnhold(), and evTryAccept().
-
- 264.	[func]		Double-link many eventlib lists to allow faster
-			removal of list elements.
-
- 263.	[bug]		Remember the previous non-blocking status of
-			sockets given to evListen().
-
- 262.	[func]		Added idle timers to eventlib.
-
- 261.	[func]		Added clustered memory allocator to eventlib; eventlib
-			and named now use this allocator.
-
- 260.	[func]		The value of FD_SETSIZE that eventlib uses can be
-			set by changing include/fd_setsize.h.
-
- 259.	[bug]		Notification of hosts on the also-notify list stopped
-			after the first successful notification.
-
-	--- 8.1.1 released ---
-
- 258.	[bug]		Setting SO_SNDLOWAT to 0 in ns_xfr() wasn't doing
-			what it was intended to do, and could trigger a
-			kernel bug on various systems derived from BSD 4.4.
-
- 257.	[bug]		In lib/irs/dns_ho.c, variable needsort was used in
-			addrsort() before it was initialized.
-
- 256.	[func]		Ignore ECHILD from select() if SPURIOUS_ECHILD is
-			defined.
-
- 255.	[bug]		The contents of libport.a needed to be in libbind.a.
-			libport.a has been removed.
-
- 254.	[install]	Install library and .h files under /usr/local/bind
-			instead of /usr/local.  When the include files were
-			in /usr/local/include, some compilers would
-			automatically use them.  The clients would typically
-			not link with -lbind, causing unresolved symbols at
-			link time.
-
- 253.	[port]		Removed change 216.
-
- 252.	[port]		Added port for UnixWare 2.0.x.
-
- 251.	[doc]		Added a documentation on installing to non-default
-			locations.
-
- 250.	[bug]		The Makefiles for the binaries didn't create the
-			installation target directories if they didn't exist.
-
- 249.	[bug]		Change HAS_SA_LEN to HAVE_SA_LEN in the AIX 4 port.
-
- 248.	[security]	The server now caches only those response records
-			that are within the current query domain.
-
- 247.	[bug]		Forwarding of dynamic update requests sent to a
-			slave for the zone is broken.  This will be fixed
-			in a future release, but in the meantime the server
-			will simply refuse the request.  Cleaned up the
-			way some update code indicated that the request should
-			be refused.
-
-	--- 8.1.1-T2B released ---
-
- 246.	[bug]		process_prereq() could core dump if the name being
-			processed wasn't known.
-
- 245.	[bug]		It was possible to evSelectFD the same event bits
-			on the same fd more than once.
-
- 244.	[bug]		eventlib didn't decrement fdCount correctly if the
-			eventmask matched in multiple descriptor sets.
-
- 243.	[lint]		Improved comment in stale().
-
- 242.	[port]		Added port for OpenBSD.
-
- 241.	[bug]		evConnect() didn't evDeselect() the fd if connect()
-			failed, which would cause us to call select() with
-			a mask that included a closed file.  select() would
-			then return EBADF and trigger an 'insist'.
-
- 240.	[bug]		evCancelConn() closed the fd.
-
- 239.	[port]		SunOS doesn't supply RAND_MAX.
-
- 238.	[bug]		fakeaddr() called inet_aton() which wasn't strict
-			enough.  inet_pton() is now used.
-
- 237.	[port]		Added UnixWare 2.1.2 port.
-
- 236.	[bug]		The buffer in res_querydomain could overflow.
-
- 235.	[bug]		Fixed memory allocation problems in lib/irs/nis_gr.c.
-
- 234.	[bug]		evDeselectFD didn't restore the fd's previous
-			nonblocking status correctly.
-
- 233.	[func]		Define SPURIOUS_ECHILD in Solaris port.  Don't
-			complain about getting ECHILD from recvfrom() if
-			SPURIOUS_ECHILD is defined.
-
- 232.	[func]		named-bootconf.pl now supplies a commented out
-			query-source directive and instructions to use it
-			if there's a firewall involved.
-
- 231.	[bug]		Changed a few strdup() calls in rrextract() into
-			savestr() calls.  This prevents "related" checking
-			from being turned off if the server runs out of
-			memory.
-
- 230.	[bug]		If the query control structure was reset in ns_resp.c,
-			we leaked the memory used for the previous
-			qp->q_domain.
-
- 229.	[func]		Added the "dump-file" and "statistics-file" options.
-
- 228.	[bug]		named.conf called "statistics-interval"
-			"stats-interval".
-
- 227.	[func]		demoted "zones changed" and "zones shrunk" messages
-			in tryxfer() to debug level 3.
-
-	--- 8.1.1-T1A released ---
-
- 226.	[bug]		evCancelConn trashed the connections list if the
-			first element was removed.  This could cause a
-			seg fault or trigger an 'insist'.
-
- 225.	[bug]		In the "cannot redefine listen-on for port ..."
-			error message, the port was not converted to host
-			byte order before being printed.
-
- 224.	[port]		Added port for AIX 4.
-
- 223.	[bug]		The dynamic update routine findzone() didn't match
-			class, so if you had two zones with the same name
-			but different classes (e.g. IN and HS), then
-			the wrong allow-update ACL could be used, and the
-			wrong zone could be updated.
-
- 222.	[bug]		If a dynamic master zone was updated and then was made
-			non-dynamic by removing the allow-update ACL or
-			changing it to "none" before the zone had been dumped, 
-			then the master file would not reflect the update.
-
- 221.	[func]		added 'also-notify'.
-
- 220.	[func]		revised HAVE_GETRUSAGE ifdefs in ns_config.c.  The
-			"cannot set resource limits on this system" message
-			on systems without HAVE_GETRUSAGE will now be logged
-			once per options block, and the message severity is
-			now "info" instead of "warning".
-
- 219.	[bug]		If the root name was encoded in a message using a
-			compression pointer, dn_expand() would erroneously
-			return "." as the name instead of "".
-
- 218.	[bug]		when gethostans() in dns_ho.c encountered a CNAME
-			while processing a PTR query, it erroneously required
-			that the CNAME target pass the res_hnok() test (i.e.
-			that it be an RFC 952 hostname).
-
- 217.	[bug]		dnsquery didn't work because it tried to use the
-			obsolete and broken p_query() call instead of
-			fp_nquery().
-
- 216.	[port]		set SH=bash in port/freebsd/Makefile.set.
-
- 215.	[port]		#define ts_sec and ts_nsec to tv_sec and tv_nsec
-			respectively in port/freebsd/include/port_before.h.
-
- 214.	[bug]		the clarification TTL changes (see change 145 below)
-			set the SOA minimum field to zero if the MSB was set.
-			The server now leaves the SOA RR alone, but sets
-			z_minimum to zero if the MSB is set.
-
- 213.	[bug]		if the SOA refresh or retry fields of a slave zone
-			were 0, an 'insist' would be triggered when zone
-			maintenance was performed.  The server still leaves
-			the SOA RR alone, but now imposes a minimum value for
-			z_refresh and z_retry.
-
- 212.	[func]		added the clean-interval, interface-interval, and
-			statistics-interval options.
-
- 211.	[func]		scan for new or deleted interfaces periodically.
-
- 210.	[func]		the _PATH_DUMPFILE default is now "named_dump.db".
-
- 209.	[bug]		<isc/eventlib.h> and <isc/logging.h> were #included
-			after port_after.h.  They are now #included before
-			it, since they #include system header files.
-			ns_lexer.h was #including <stdio.h> and ns_parseutil.h.
-			Now it #includes neither one.  These changes required
-			that the definition of struct timespec be moved from
-			port_after.h to port_before.h in the ULTRIX, SunOS,
-			and A/UX ports.
-
- 208.	[port]		removed HAVE_GETRUSAGE from the Solaris port, since
-			Solaris only has it if a Berkeley compatibility
-			package is installed.
-
- 207.	[bug]		abortxfer() always used SIGKILL, which didn't give
-			named-xfer a chance to clean up after itself.  Now
-			abortxfer() does a SIGTERM first.  If the SIGTERM isn't
-			successful, it will use SIGKILL.
-
- 206.	[bug]		If two zones with the same name but different classes
-			(e.g. IN and HS) were defined, then a zone transfer
-			of whichever zone loaded first would work normally,
-			but a zone transfer of the second would give only the
-			NS and SOA RRs.
-
- 205.	[bug]		certain operating systems (notably Solaris) return
-			error codes the server didn't expect, and thus
-			treated as fatal to the interface.  More error codes
-			are now recognized.  The server will now log
-			unrecognized errors, but will not delete the
-			interface.  Certain error results from recvfrom() and
-			accept() now panic the server.
-
- 204.	[bug]		stub zone transfers would fail if there were no
-			NS records in the SOA response.  The stub logic
-			now works as intended and has more error checking.
-
- 203.	[bug]		we logged a failure of bind() in opensocket_d()
-			twice.
-
- 202.	[port]		Linux defines AF_INET6 as 10, so we use that value
-			in port/linux/include/port_after.h.
-
- 201.	[bug]		library Makefiles want to press on if linking of
-			an individual module fails.  The 'ld' rule was
-			set up to do this, but the subsequent 'mv' rule
-			was not, causing the make to stop if the 'ld' failed.
-			Now the 'mv' is done only if the 'ld' succeeds.
-
- 200.	[bug]		the value of timeout.tv_sec was printed in SendRequest
-			(bin/nslookup/send.c).  select() on some systems 
-			(such as Linux)	modifies the value of the timeout, so
-			printing it is useless since it will always be 0.
-
- 199.	[func]		if s is too big for FD_SETSIZE in res_send, complain
-			and try another nameserver.
-
- 198.	[bug]		sysnotify() was too strict in requiring an NS RR
-			for the server named in the SOA MNAME field.  RFCs
-			1996 and 2136 say the NS RR is optional.
-
- 197.	[bug]		The parser erroneously freed zone_name if a zone
-			redefinition was attempted.  This would cause the
-			server to dump core if a zone appeared more than
-			once in a configuration file.
-
- 196.	[bug]		Makefiles below port/*/include had "fi \" followed
-			by "done" on the next line.  This made bash 2.0
-			unhappy.  The "fi" is now followed by a ";".
-
- 195.	[port]		ULTRIX's sh doesn't like an empty "for x in ..." list,
-			and that was causing "make install" to fail in
-			the src/port/ultrix/include/rpc directory.
-
- 194.	[port]		add SH variable to toplevel Makefile, document the
-			need to use SH=bash on systems where /bin/sh is
-			derived from "ash".
-
- 193.	[bug]		named-bootconf.pl could repeat end-of-line comments
-
- 192.	[bug]		ndc was being installed in DESTBIN instead of
-			DESTSBIN.
-
- 191.	[bug]		block delivery of all other signals when in SIGTERM
-			handler in named-xfer.
-
- 190.	[bug]		named-bootconf.pl didn't handle non-masked xfrnets
-			correctly if the network was class B or class C.
-
-	--- 8.1-REL released ---
-
- 189.	[port]		update to the port/sco50 directory rcvd from author.
-
- 188.	[func]		to avoid potentially confusing log messages, don't
-			set Z_DYNAMIC if "allow-update { none; };" is
-			specified in the config file.
-
- 187.	[bug]		a panic() in new_ip_match_mask() erroneously
-			referred to the function as "new_ip_match_pattern".
-
- 186.	[bug]		transfers-in couldn't be set higher than the default.
-			It may now be set as high as 20.
-
- 185.	[doc]		add a stub example to named.conf.
-
- 184.	[bug]		the usage message was out-of-date.
-
- 183.	[port]		some systems don't define AF_INET6, so we
-			define it if necessary in all port_after.h
-			
-	--- 8.1-T5B released ---
-
- 182.	[bug]		fix the way bindname is allocated in hesiod_to_bind().
-
- 181.	[bug]		MAXHOSTNAMELEN wasn't defined on Solaris.
-
- 180.	[bug]		a check for zptr != NULL in res_update was wrong.  It
-			should have been zptr == NULL.
-
- 179.	[bug]		sq_remove() and sq_done() were calling ns_freexfr()
-			when any stream was removed, resulting in a panic
-			when the server was reloaded.  ns_freexfr() is now
-			only called when a zone transfer stream is removed.
-
-	--- 8.1-T4B released ---
-
- 178.	[bug]		if the server was reloaded and then a zone was
-			deleted and the server reloaded again, all within
-			a short period of time, then pending NOTIFY messages
-			would cause the server to panic when they ran.
-
- 177.	[lint]		replaced BUFSIZ with a more appropriate size in
-			several places.
-
- 176.	[func]		change MAXDATA to 2*MAXDNAME + 5*INT32SZ.
-
- 175.	[security]	libirs now limits hostnames to MAXHOSTNAMELEN
-			characters.
-
- 174.	[bug]		we called ns_refreshtime() instead of ns_retrytime()
-			in the Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL case in
-			zone_maint().
-
- 173.	[bug]		the server didn't clear the Z_NEED_RELOAD flag in
-			zoneinit().
-
- 172.	[bug]		if a server was a slave for a zone, and an outbound
-			transfer ever hung or terminated unusually, regular
-			zone maintenance would cease for the zone.
-
- 171.	[port]		work around a bug in the Digital UNIX 4.0B SIOCGIFCONF
-			ioctl.
-
- 170.	[func]		the message logged when a zone is loaded now
-			indicates the class of the zone.
-
- 169.	[func]		the message logged when a zone is removed now
-			indicates both the type and class of the zone.
-
- 168.	[bug]		if a zone's type changed from master to slave on a
-			server reload, the server erroneously deleted the
-			new zone data as part of cleaning up the old zone
-			data.
-
- 167.	[func]		when converting from wire format to printable format,
-			represent special characters ".;\@$ by escaping them
-			with \ instead of converting them to \DDD.
-
- 166.	[bug]		when a slave zone expired, it was not scheduled for
-			immedidate maintenance.
-
- 165.	[port]		added port for SCO OSE 5.0.2, renamed port for
-			SCO UNIX 3.2v4.2.
-
- 164.	[func]		created the "response-checks" logging category.
-
- 163.	[port]		don't define AF_INET6 in nameser_compat.h.
-
- 162.	[bug]		the server panicked if a dynamic update request
-			was sent for a dynamic zone which had not loaded
-			because of syntax errors in the master file.  The
-			server now returns NOTAUTH.
-
- 161.	[bug]		debugging messages in process_prereq() referred to
-			process_updates() instead of process_prereq().
-
- 160.	[bug]		hp was not reset after a realloc() in named-xfer.c
-
- 159.	[bug]		named-bootconf.pl didn't translate stub zones.
-
- 158.	[lint]		cast a number of "no effect" statements to void so
-			that gcc doesn't complain when invoked with
-			-Wall -W -Wno-unused
-
- 157.	[lint]		a number of uses of the %lu printf() format were
-			converted to %u; the corresponding casts to u_long
-			were removed.
-
- 156.	[lint]		converted z_deferupdcnt and z_updatecnt from int to
-			u_int32_t.
-
- 155.	[func]		maint_interval is now gone; SOA sanity checking
-			related to it is gone too.
-
- 154.	[bug]		in named-xfer, unsigned 32-bit integers were
-			sometimes stored in signed 32-bit variables and then
-			printed using a cast to u_long and printf() format
-			%lu.  This would cause problems on 64-bit systems if
-			the MSB of the 32-bit integer was set.  The variable
-			declarations have been changed to u_int32_t, and the
-			printf format is now %u.
-
- 153.	[bug]		log_open_stream() had two syslogs that said the
-			failing function was log_vwrite() instead of
-			log_open_stream().
-
- 152.	[lint]		made class, type, and dlen in rrextract() and
-			named-xfer.c/print_output() u_int16_t.
-
- 151.	[bug]		the server was incrementing nssSentFErr in the
-			formerr: code in ns_resp.c even though it wasn't
-			sending FORMERR to anyone.
-
- 150.	[func]		in "check-names response fail" mode, instead of
-			just dropping a failing response, we now send
-			REFUSED to the client and drop the query.
-
- 149.	[bug]		if there wasn't a space between the SOA minimum value
-			and a following ')' in a master file, the server
-			would generate an error when it tried to parse the
-			minimum value, causing the zone load to fail.
-
- 148.	[func]		the list of supported syslog facilities has been
-			increased; the following facilities may now be used,
-			provided they're available on the system 'named' is
-			being built on: kern, user, mail, daemon, auth,
-			syslog, lpr, news, uucp, cron, authpriv, ftp,
-			local[0-7].
-
- 147.	[bug]		the maybe_syslog_facility, logging_opt,
-			channel_severity, address_name, key_ref, key_stmt,
-			acl_stmt, zone_stmt, optional_class, and size_spec
-			rules in the parser either leaked memory or could
-			leak memory.
-
- 146.	[func]		if an RR set in a reply differed from an RR set in
-			the cache only in the TTL, we would not update the
-			TTL of the RR set in the cache.  We now update this
-			TTL to that of the reply RR set if the reply RR set's
-			TTL is greater.
-
- 145.	[func]		follow the direction of the clarification draft and
-			treat TTLs as unsigned 32-bit integers, with a
-			maximum value of 2^31 - 1.  TTLs greater than the
-			maximum will be converted to 0.  A warning will
-			be issued if this conversion occurs while loading
-			a master zone or during inbound zone transfer.
-
- 144.	[func]		"dig version.bind. txt chaos" now returns only
-			the version number (e.g. "8.1-T4B").
-
- 143.	[lint]		fixed various mismatches between printf() format
-			string components and their corresponding
-			arguments.
-
- 142.	[lint]		SendRequest_close() in nslookup/send.c had a return
-			type of int instead of void.
-
- 141.	[port]		converted bcopy() to memcpy() or memmove() as
-			appropriate.
-
- 140.	[bug]		certain buffer size checking comparisons in
-			rdata_expand() weren't working because they were
-			checking to see if an unsigned value was < 0.
-
- 139.	[func]		convert a few address comparisons from == to using
-			ina_equal().
-
- 138.	[bug]		an address comparison used in marking a server as
-			bad was done incorrectly in ns_resp.c because the
-			comparison used = instead of ==.
-
- 137.	[lint]		cleaned up warnings caused by assignment used as
-			truth-value in various source files.
-
- 136.	[func]		changed eventlib-related INSIST statements into
-			INSIST_ERR, so that we can print out strerror(errno).
-
- 135.	[lint]		replaced _getshort() with ns_get16() and _getlong()
-			with ns_get32() in various source files.
-
- 134.	[lint]		findzone() and rdata_expand() were used before
-			they were declared in ns_update.c, and were not
-			declared static.
-
- 133.	[lint]		merge_logs() was not declared in ns_func.h.
-
- 132.	[lint]		Linux port_after.h didn't declare daemon().  We now
-			do so, but only if GNU libc < 2.0.
-
- 131.	[lint]		set_boolean_option() was not declared in ns_func.h.
-
- 130.	[lint]		yyparse() was not declared in ns_parser.y.
-
- 129.	[lint]		ns_lexer.h didn't declare lexer_end_file().
-
- 128.	[lint]		db_dump.c, db_lookup.c, db_update.c, db_glue.c,
-			db_save.c, ns_ncache.c, ns_req.c, ns_stats.c, and
-			ns_xfr.c didn't #include <string.h>
-
- 127.	[lint]		logging.c, ev_connects.c, ns_maint.c, ns_glue.c,
-			ns_update.c, dig/dig.c, nslookup/list.c,
-			nslookup/send.c, host/host.c, and
-			dnsquery/dnsquery.c didn't #include <unistd.h>.
-
- 126.	[lint]		res_update.c, heap.c, db_load.c, db_save.c, db_glue.c,
-			ns_lexer.c, ns_forw.c, ns_maint.c, ns_req.c,
-			ns_stats.c, ns_xfr.c, ns_glue.c, ns_config.c,
-			ns_update.c, host/host.c, nslookup/list.c, and
-			nslookup/getinfo.c didn't #include <stdlib.h>.
-
- 125.	[lint]		res_mkupdate.c, ns_update.c, nsupdate.c, ns_print.c,
-			didn't #include <ctype.h>.
-
- 124.	[port]		replaced bcmp() with memcmp().
-
- 123.	[func]		while not required, it's nice to preserve the order
-			of RRs as received when ROUND_ROBIN isn't on, so
-			we now do so.
-
- 122.	[bug]		under certain improbable conditions, the server
-			could erroneously set a maintenance timer for a
-			master zone.  When the timer went off, it would
-			trigger the INSIST() in zone_maint().
-
- 121.	[port]		replaced bzero() with memset().
-
- 120.	[func]		added multiple-cnames option.
-
- 119.	[bug]		the timeout: code in ns_resp.c didn't clean up TCP
-			connections.
-
- 118.	[port]		added port for IRIX 5.3, 6.2, 6.4
-
- 117.	[bug]		removed declaration of getnum_error from db_load.c,
-			since it is now declared in ns_glob.h.
-
- 116.	[bug]		GNU libc 2.0 doesn't have a <net/route.h>, so in the
-			Linux port we now provide a stub net/route.h that
-			includes the real <net/route.h> if GNU libc < 2.0 and
-			does nothing if >= 2.0.
-
- 115.	[func]		on Linux systems, avoid an often unnecessary 'ranlib'
-			and the subsequent relinking of all binaries by using
-			the 's' flag of 'ar'.
-
- 114.	[bug]		'make install' didn't work on HP/UX because the
-			path to the install script was wrong in many cases.
-
- 113.	[bug]		named-xfer didn't clean up properly when sent SIGTERM.
-
- 112.	[bug]		named-xfer didn't clean up properly if an error
-			occured in print_output().
-
- 111.	[func]		added "max-transfer-time-in" option.  The server
-			used to allow a maximum of 2 hours for an inbound
-			zone transfer to complete.  This time can now be
-			set globally or on a per-zone basis.  The parameter
-			is the number of minutes a transfer can take.
-
- 110.	[func]		moved declaration of d_ns in struct databuf to improve
-			structure alignment.
-
- 109.	[bug]		addname() in ns_print.c didn't write an "@" for RRs
-			that contained a domain name which was the same as
-			the zone origin (it wrote nothing).
-
- 108.	[bug]		the server didn't check for EINTR in readable() and
-			writable() in ev_streams.c.
-
- 107.	[bug]		check for both EWOULDBLOCK and EAGAIN after certain
-			system calls instead of using PORT_WOULDBLK.  This
-			fixes partial zone transfer problems reported on
-			Sun systems.
-
- 106.	[bug]		db_load() couldn't read SOAs with ( ) that were only
-			one line.
-
- 105.	[bug]		fixed typo in Linux Makefile.set MANROFF definition.
-
- 104.	[func]		move various rrset debugging messages, rm_datum, and
-			nsfree messages to debug level 3.  Moved a few rrset
-			debugging messages to debug level 2.
-
- 103.	[bug]		d_rcnt could overflow; to prevent this it has been
-			increased to 32 bits.  d_mark was made unsigned and
-			decreased to 12 bits.
-
- 102.	[func]		added macro DRCNTDEC to	go along with DRCNTINC.
-
- 101.	[bug]		clean_cache() didn't count deleted RRs, so it
-			always reported "Cleaned cache of 0 RRs".
-
- 100.	[bug]		heap_for_each() didn't return a status, and didn't
-			check for a NULL context or a NULL action.
-			heap_element() didn't set errno to EINVAL when
-			given invalid arguments.
-
-  99.	[bug]		the category rule in the parser leaked memory.
-
-  98.	[bug]		"notify" was not recognized as a valid category
-			name.
-
-  97.	[security]	zone access control wasn't applied correctly to
-			names that didn't exist, allowing an attacker to
-			determine whether or not a given name exists in a
-			zone.
-
-  96.	[bug]		we didn't recognize certain non-fatal errno values
-			when recvfrom() failed; this would result in us
-			dropping an interface unnecessarily.
-
-	--- 8.1-T3B released ---
-
-  95.	[bug]		named-bootconf.pl didn't process xfrnets correctly
-			(if no netmask was specifed, it assumed a mask of
-			255.255.255.255 instead of the natural netmask for
-			the class of the address).
-
-  94.	[bug]		named-bootconf.pl didn't handle lines ending in a
-			comment.
-
-  93.	[bug]		if rename() failed in merge_logs(), we would return
-			garbage instead of -1.
-
-  92.	[bug]		writemsg() in named-xfer.c was returning a random
-			value instead of the number of bytes written.
-
-  91.	[bug]		schedretry() could set retry times in the past
-			because it was relying on 'tt' which hadn't been
-			updated.  It now calls gettime(&tt).
-
-  90.	[bug]		'tt' might not have been current when clean_cache()
-			was called.
-
-  89.	[bug]		ns_lexer.h didn't #include <ctype.h>
-
-  88.	[cleanup]	removed some relics of the early days of BIND 8's
-			new logging system from the parser and ns_config.c.
-
-  87.	[bug]		when writing to a TCP socket, the server didn't
-			handle errors from the write() correctly.  Under the
-			right circumstances, this will cause the server to
-			spin.  The most common trigger would be a large
-			outbound zone transfer where the far end died.
-
-  86.	[cleanup]	fixed comment in dig.c that messed up font-lock mode
-			in emacs.
-
-  85.	[bug]		inet_lnaof, inet_makeaddr, inet_netof, and
-			inet_network were missing from lib/inet.
-
-  84.	[func]		improved log_channel creation and use by making the
-			type more opaque.  The logging API provides a more
-			complete set of services.  Added the LOG_CHANNEL_OFF
-			flag.
-
-  83.	[func]		removed statistics_channel; it wasn't being used.
-
-  82.	[lint]		a few handler functions were declared as
-			void (*)() instead of void (*)(void).  All now have
-			the latter declaration.
-
-  81.	[port]		added port for A/UX 3.1.1.
-
-  80.	[port]		added port for SCO UNIX 3.2v4.2.
-
-  79.	[bug]		when processsing slave zones during a config file
-			reload, in the "backup file changed" (or missing)
-			case we were calling purge_zone() and do_reload()
-			even if we had never successfully transferred and
-			loaded the zone.
-
-  78.	[cleanup]	moved writemsg() to named-xfer.c.
-
-  77.	[cleanup]	removed doupdate() from ns_resp.c.
-
-  76.	[bug]		writev() in lib/bsd would keep going if there was
-			a partial write; this could cause incorrect output.
-
-  75.	[func]		added readv() to lib/bsd.
-
-  74.	[bug]		if evConnect() failed in tcp_send() we were aborting
-			the server instead of just returning an error.
-
-  73.	[port]		automatically fix getgrgid() declaration in ULTRIX
-			4.5 grp.h.
-
-  72.	[func]		make port/*/Makefile invoke SUBDIR make in
-			include.  Add/modify include and include/sys
-			Makefiles.
-
-  71.	[port]		added utimes() to lib/bsd.
-
-  70.	[doc]		README broken up into INSTALL, TODO, port/README.
-			Added more info about many topics.
-
-  69.	[bug]		NOTIFY didn't handle an unknown NS target.  E.g.
-			if we had "test.domain NS unknown.name" and
-			"unknown.name" was not known, NOTIFY wasn't doing an
-			"A" query for "unknown.name".
-
-  68.	[lint]		tweaks to ERR() and OK() in eventlib_p.h.
-
-  67.	[bug]		'ch' in main() was a char instead of an int.
-
-  66.	[bug]		in bin/named/Makefile, pathnames wasn't getting
-			linked with ${LIBBIND}, ${LIBPORT}, and ${SYSLIBS}.
-
-  65.	[port]		automatically fix timespec in BSD/OS 2.1 includes.
-
-  64.	[func]		lib/isc/heap.c now includes port_before.h and
-			port_after.h.  Fix 58 (below) has been undone;
-			with port_after.h we'll now use __ansi_realloc()
-			from Fix 59.
-
-  63.	[bug]		STRIP and PS were missing from MARGS in bin/Makefile.
-
-  62.	[func]		RRs in the additional data section must relate to
-			RRs in the answer and authority sections.  Only
-			certain RR types are allowed in the authority and
-			additional data sections.
-
-  61.	[bug]		Dynamic update didn't understand SRV records.
-
-  60.	[bug]		SRV records weren't decoded properly.
-
-	--- 8.1-T3A released ---
-
-  59.	[bug]		The IRS library also wanted an ANSI C realloc().
-			port/sunos now provides __ansi_realloc().
-
-  58.	[bug]		SunOS didn't like heap.c doing realloc() on a NULL
-			pointer (in ANSI C that is equivalent to malloc()),
-			so we malloc() instead.
-
-  57.	[bug]		interface discovery complained about bogus
-			interfaces on ULTRIX, SunOS, and HP/UX because
-			SIOCGIFCONF_ADDR wasn't defined in their port_after.h.
-
-  56.	[API]		created lib/nameser/ns_name.c and moved a lot of the
-			functionality from lib/resolv/res_comp.c into it.
-			functions older than 8.1 were stubbed out, but new
-			functions from 8.1 were just renamed/removed.
-
-  55.	[bug]		findzone in ns_update wasn't ignoring z_nil zones.
-
-  54.	[bug]		if the named-xfer exec() failed, a misleading message
-			was printed.
-
-  53.	[bug]		interface discovery didn't work on NetBSD because
-			HAVE_SA_LEN wasn't defined in port_after.h.
-
-  52.	[func]		log the host we got a NOTIFY message from
-
-  51.	[bug]		we weren't sending out NOTIFY messages if the SOA
-			was changed as the result of a dynamic update.
-
-  50.	[bug]		req_notify() wasn't calling sched_zone_maint() after
-			it called qserial_query().
-
-  49.	[bug]		initial_{data,stack,core}_size and initial_num_files
-			weren't in an #ifdef HAVE_GETRUSAGE block.
-
-  48.	[func]		use sysconf(_SC_OPEN_MAX) instead of getdtablesize()
-			in all cases when USE_POSIX is defined.
-
-  47.	[bug]		printupdatelog() was printing the post-update serial
-			number in the zone section instead of the pre-update
-			serial number.
-
-  46.	[bug]		zp->z_serial wasn't being updated if a dynamic update
-			changed the zone serial number.
-			
-  45.	[bug]		the SEQ_GT test in db_update was backwards.
-
-  44.	[func]		merge_logs() didn't work because a 'break' wasn't
-			removed when class and type lookups were converted
-			to sym_ston.
-
-  43.	[func]		evResetTimer() added to eventlib.
-
-  42.	[bug]		incr_serial() doesn't need to call schedule_dump().
-
-  41.	[bug]		reset_retrytimer() could clear a timer that had
-			already been cleared.
-
-  40.	[bug]		some zone data structures weren't freed if the zone
-			was removed.
-
-  39.	[func]		The eventlib timers module now uses a heap to
-			implement the timer queue.
-
-  38.	[bug]		dynamic zones weren't dumped if they were removed
-			from the configuration file.
-
-  37.	[func]		created the "load" logging category.
-
-  36.	[func]		find_zone now uses a hash table instead of a linear
-			search.
-
-  35.	[bug]		we weren't scheduling a retry for dumps or soa serial
-			increments that failed.
-
-  34.	[func]		instead of doing all NOTIFY messages five seconds after
-			loading completes, we now spread them out over up
-			to fifteen minutes (the maximum delay depends on how
-			many zones there are).
-
-  33.	[func]		if there are too many qserials running, we'll try
-			again in five to thirty seconds.
-
-  32.	[bug]		z_dumptime wasn't getting set to zero after a
-			zone dump.
-
-  31.	[func]		Each zone now has a maintenance timer.  sched_maint()
-			is gone.  The new programming rule: if you change
-			zp->z_time, it's your reponsibility to ensure
-			sched_zone_maint(zp) gets called.
-
-  30.	[func]		short circuit PrintTimers evPrintfs if not debugging
-			at a level where PrintTimers would print something.
-
-  29.	[bug]		if a log message with a non-default category was
-			logged to a default category channel which had
-			print-category on, "default" was printed instead
-			of the category name.
-
-  28.	[func]		the performance of the main loop has been improved.
-
-  27.	[bug]		NOTIFY messages weren't being delayed after a
-			zone load.
-
-  26.	[bug]		the eventlib category wasn't working if the channel
-			wasn't the default debugging channel.
-
-  25.	[func]		added the "maintenance" logging category.
-
-  24.	[func]		periodic statistics dumps are now done using an
-			eventlib timer instead of in ns_maint().
-
-  23.	[bug]		names which have multiple CNAME records are illegal,
-			but the server was allowing them.
-
-  22.	[func]		convert to POSIX signals from eventlib signal handling;
-			the eventlib API no longer provides signal support.
-
-  21.	[func]		converted assert() to INSIST() so that the logging
-			system (category "insist") will be used if a
-			consistency check fails.
-
-  20.	[bug]		the server could exit when it shouldn't, and without
-			leaving a message or a core file, because it wasn't
-			handling SIGPIPE.
-
-  19.	[port]		Solaris has trouble if the size of the buffer used for
-			IP_OPTIONS processing isn't 40 bytes.
-
-  18.	[bug]		library Makefiles we were using 'ld' instead
-			of ${LD}.  Added LD_LIBFLAGS.
-
-  17.	[bug]		on at least one OS, ctime() can return NULL and
-			this can cause problems.  We now call checked_ctime()
-			in ns_glue.c, which returns "<unknown time>\n" if
-			ctime() fails.
-
-  16.	[bug]		some signal handlers were calling library routines
-			which POSIX does not designate as safe for use by
-			signal handlers.
-
-  15.	[func]		finished conversion to new options scheme of
-			name checking and inbound zone transfer parameters.
-
-  14.	[func]		added os_change_directory().
-
-  13.	[bug]		write_open() in ns_config.c wasn't checking if the
-			file was regular before unlinking.
-
-  12.	[func]		added "os" logging category.
-
-  11.	[bug]		named-bootconf.pl used the deprecated channel name
-			"default" instead of "default_syslog".
-
-  10.	[bug]		named-bootconf.pl didn't understand continuation lines.
-
-   9.	[bug]		remove -p from mkdep command in Makefiles for
-			bin/named and bin/nslookup.
-
-   8.	[bug]		add CDEBUG to Makefiles that link using ${CC}.
-
-   7.	[bug]		timestamp and level were printed twice for file
-			channels in lib/isc/logging.c.
-
-   6.	[bug]		off by one with on level_text subscript in
-			lib/isc/logging.c.
-
-   5.	[bug]		broken channels sometimes weren't marked as broken
-			in lib/isc/logging.c.
-
-   4.	[bug]		didn't set foundname=0 after try_again: in ns_resp.c.
-
-   3.	[bug]		update_pid_file() didn't put a newline after the pid.
-
-   2.	[func]		minor log message tweaks in ns_config.c.
-
-   1.	[bug]		zone names needed to be canonicalized in the parser.
-	
-	--- 8.1-T2B released ---
diff --git a/contrib/bind/DNSSEC b/contrib/bind/DNSSEC
deleted file mode 100644
index 9230f8620d73c..0000000000000
--- a/contrib/bind/DNSSEC
+++ /dev/null
@@ -1,39 +0,0 @@
-$Id: DNSSEC,v 8.2 1999/10/12 18:23:27 ogud Exp $
-
-DNSSEC Notes:
-
-This file contains description of two interoperabilty problems related
-to DNSSEC that only affect sites using DNSSEC.
-
-1. All versions of bind-8 older than 8.2.2 
-
-Between versions 8.2.1 and 8.2.2 the printed format of SIG records
-changed. As a result, using a signer, named and named-xfer of
-differrent versions will cause parsing errors on signed zonefiles.
-Included is an AWK program that converts old signed zone files to new 
-new format, see contrib/dns_signer/add_labels.awk 
-Usage: awk -f <path>/contrib/dns_signer/add_labels.awk <signed_zone >fixed_zone
-
-2. BIND-8.1 BIND-8.1.1 BIND-8.1.2 Interoperability
-
-If you wish to use BIND-8.1.x as a master server (either primary or
-secondary) for DNSSEC signed zone you MUST apply the following patch
-to the file src/bin/named/db_load.c. It fixes a bug that rejects
-valid RSA signatures on load. 
-You can patch the file by running following command from this directory 
-	patch -d bin/named   <DNSSEC 
-
---- db_load.c.old	Mon Oct 11 15:21:24 1999
-+++ db_load.c	Mon Oct 11 15:21:38 1999
-@@ -1123,9 +1123,6 @@
- 				ERRTO("Signature too short");
- 			if (siglen > (NS_MD5RSA_MAX_BITS + 7) / 8)
- 				ERRTO("Signature too long");
--			/* We rely on  cp  from parse */
--			if (*cp == 0)
--				ERRTO("Signature starts with zeroes");
- 			break;
- 
- 		case NS_ALG_EXPIRE_ONLY:
-
-
diff --git a/contrib/bind/INSTALL b/contrib/bind/INSTALL
deleted file mode 100644
index 6307f2b7af9a4..0000000000000
--- a/contrib/bind/INSTALL
+++ /dev/null
@@ -1,317 +0,0 @@
-Systems it is known to compile and run on:
-
-	BSD/OS 3.1, 4.0.1
-	FreeBSD 3.3, 3.4
-	RH Linux 5.2 (don't use "make links" when building, though)
-	Debian GNU/Linux 2.2.9 ("unreleased")
-	Digital UNIX 3.2C, 4.0, 5.0
-	NetBSD/i386 1.3.2, 1.4
-	SunOS 5.6 (Solaris 2.6), SunOS 5.7 (Solaris 7)
-	SCO UnixWare 7.0, 7.0.1, 7.1
-	IRIX 6.5
-
-Systems it has been known in the past to compile and run on:
-
-	AIX 4.x
-	A/UX 3.1.1
-	Digital ULTRIX 4.5 (without Compaq's Y2K kit installed)
-	HP MPE
-	HP-UX 9.x, 10.20
-	IRIX 5.3, 6.2, 6.4
-	LynxOS
-	FreeBSD 3.1, 3.2
-	NetBSD 1.2, 1.3
-	OpenBSD 2.1
-	QNX
-	SCO UNIX 3.2v4.2, SCO OSE 5.0.4, UnixWare 2.0.x, 2.1.2
-	SunOS 4.1.4
-	SunOS 5.5 (Solaris 2.5)
-
-	See port/README for information on porting BIND 8 to other systems.
-
-
-Building
-
-	If you do not have an ANSI/ISO C compiler, give up or get GCC.  The
-	one exception is the ULTRIX compiler, which isn't full ANSI C but it
-	has function prototypes and BIND works around the rest.  BIND 8 also
-	wants a C library that's ANSI/ISO standard, although it can work
-	around some common failings.
-
-	If you do not have yacc, get byacc or GNU bison.  If you do not have
-	lex, get GNU flex.  For information on where to get GNU software, see
-	http://www.fsf.org/order/ftp.html.
-
-	If you want to build outside the source pool, then
-
-		make DST=/your/destination/here SRC=`pwd` links
-		cd /your/destination/here
-
-	If you want to use DST=/var/obj/bind, you can simply type
-
-		make stdlinks
-
-	Next, make sure you have no stale trash laying about
-
-		make clean
-
-	Then, update the Makefile dependencies:
-
-		make depend
-
-	NOTE: "make depend" is a NO-OP for these platforms: AIX, HPUX and NeXT.
-
-	Finally,
-
-		make all
-
-	
-Installation
-
-	To install, type
-
-		make install
-
-	This will copy binaries to the appropriate locations for your system,
-	and install the BIND 8 library and header files under /usr/local/bind.
-
-	The following variables can be used to change where things get
-	installed:
-
-		DESTDIR			prefix used in front of all other
-					DEST variables.  The default is the
-					empty prefix. (for non-root installs;
-					not equivalent to autoconf's --prefix)
-
-		DESTLIB			libraries
-		DESTINC			include files
-		DESTBIN			ordinary binaries (e.g. dig, nslookup)
-		DESTSBIN		system binaries (e.g. named)
-		DESTEXEC		helper binaries (e.g. named-xfer)
-		DESTHELP		place to put nslookup's help file
-		DESTMAN			man file location
-		DESTETC			configuration file
-		DESTRUN			PID file location and "ndc" control
-					channel location.  This cannot be the
-					same directory as DESTSBIN.
-
-	These variables should be specified in the Makefile.set for your
-	port (e.g. if you use Solaris, in src/port/solaris/Makefile.set).
-
-	Before doing 'make install', you must
-
-		rm .settings
-
-	in the top level source directory because the build system caches
-	these variables.
-
-
-Using BIND 8 Library Routines
-
-	Until a method to update the system's libraries is available,
-	applications wishing to use BIND 8 library routines must include
-	BIND 8 .h files, and must link with libbind.a.  E.g.
-
-		cc -I/usr/local/bind/include -c sample.c 
-		cc -o sample -L/usr/local/bind/lib sample.o -lbind
-
-	The default locations for libbind.a and .h files in BIND 8.1.1
-	and BIND 8.1.2 are different from those used in BIND 8.1-REL.  If
-	you did a 'make install' for BIND 8.1-REL, then you should delete
-	the files it installed.  They are:
-
-		/usr/local/lib/libbind.a
-		/usr/local/include/arpa/inet.h
-		/usr/local/include/arpa/nameser.h
-		/usr/local/include/arpa/nameser_compat.h
-		/usr/local/include/netdb.h
-		/usr/local/include/resolv.h
-		/usr/local/include/sys/bitypes.h	(if it exists)
-		/usr/local/include/sys/cdefs.h		(if it exists)
-
-
-Operating System Notes
-
-	AIX
-
-		Build problems have been reported with the AIX "make".
-		We recommend using GNU "make" instead.
-	
-	FreeBSD, NetBSD, OpenBSD and BSDI
-		The kit should compile even if you have intalled the KAME
-		IPv6 kit.
-
-	IRIX
-		build problems have been reported w/ IRIX 6.3, res_debug.c
-		and #include <stdlib.h>.  You may need to comment out
-		the #include <stdlib.h> and declare
-		"void *malloc(size_t size)" to get named to compile on 6.3.
-
-	Linux
-
-		"make links" and "make stdlinks" cause problems on
-		some Linux kernels because there are too many levels of
-		symbolic links.
-
-	QNX
-
-		Read src/port/qnx/README before trying to build.
-
-	SCO 5.0.x
-
-		To build using gcc, copy "port/sco50/Makefile.set.gcc" to
-		"port/sco50/Makefile.set".  To go back to using SCO's
-		compilers, copy "port/sco50/Makefile.set.sco" to
-		"port/sco50/Makefile.set".
-
-	Solaris
-
-		We've tested with Sun's compilers, yacc, and lex, and also
-		with gcc, byacc, and flex.  By default, the build will try
-		to use gcc.  If you want to use the Sun compilers, simply
-		copy "port/solaris/Makefile.set.sun" to
-		"port/solaris/Makefile.set".  To go back to using gcc, copy
-		"port/solaris/Makefile.set.gcc" to "port/solaris/Makefile.set".
-
-		If you're using a Solaris release earlier than 2.5 and you have
-		a large number of interfaces on your system, you many need
-		use a script to "limit descriptors N" (where 'N' is a
-		suitably large number) before execing "named".  On Solaris
-		2.5 and later, the server will do this itself.
-
-	SunOS 4.1.4
-
-		An ANSI/ISO C compiler is required; we used gcc 2.7.2.1.
-
-	NeXT
-
-		Read src/port/next/README.FIRST before trying to build.
-
-	Certain older versions of FreeBSD, NetBSD and BSD/OS
-
-		These systems have a /bin/sh based on "ash", which doesn't
-		handle POSIX-style quoting correctly.  Using "bash" will fix
-		the problem.  Either run make with "SH=bash" on the command
-		line, or edit src/Makefile and change "SH=sh" to "SH=bash".
-
-FD_SETSIZE
-
-	The highest numbered file descriptor that the server and the resolver
-	can utilize is determined by the FD_SETSIZE value of the system.  Some
-	systems set FD_SETSIZE much smaller than the actual number of files
-	that can be opened.  On such systems, create an "fd_setsize.h" file
-	that sets FD_SETSIZE appropriately in the port's include directory.
-
-
-User and Group ID
-
-	Specifying "-u" followed by a username or numeric user id on the
-	"named" command line will cause the server to give up all
-	privileges and become that user after the initial load of the
-	configuation file is complete.  "-g" may be used similarly to set
-	the group id.  If "-u" is specified but "-g" is not, the group
-	used will be the given user's primary group.
-
-	Here are some hints:
-
-		Because the server will have no privileges after changing
-		its user id, you must restart the server if you change the
-		interfaces and ports that the server is listening on, or if
-		you add an interface.
-
-		If you log to files, you should create all of the log files
-		in advance (e.g. with "touch"), and make sure they are owned
-		by the user and group "named" will be running as.
-
-		You'll have to edit "ndc" to get it to start the server
-		with the appropriate flags.
-
-	Note: this feature is still experimental.
-
-
-Chroot
-
-	"-t" followed by a directory path on the "named" command line will
-	cause the server to chroot() to that directory before it starts
-	loading the configuration file.
-
-	Setting up a chrooted area varies somewhat by operating system.  Some
-	experimentation may be necessary.  Here are some hints:
-
-		Don't forget to install named-xfer.
-
-		Either don't use shared libraries when you build, or do
-		whatever is required on your OS to allow shared libraries
-		to be used after a chroot().
-
-		syslog() is often troublesome after chrooting.  Use the
-		"logging" statement and log to a file instead.
-
-		/dev/null should be in the chroot directory hierarchy.  You
-		can usually find out the mknod parameters for a null device by
-		looking in /dev/MAKEDEV.
-
-		You'll have to edit "ndc" to get it to start the server
-		with the appropriate flags, and to use the right pid file.
-
-	Note: this feature is still experimental.
-
-
-Using the Server
-
-	Note that /etc/named.boot is long gone.  You need to make yourself an
-	/etc/named.conf (note, that ends in "conf" rather than "boot") file.
-	This file looks a lot like a C program or a modern gated.conf file;
-	there are lots of {curly braces} and it takes some getting used to.
-	You may get a lot more help from the example file (which is
-	bin/named/named.conf) than from the documentation (see ../doc/html).
-	You can convert your named.boot file to a named.conf file if you have
-	Perl; see bin/named/named-bootconf.pl.
-
-	All the files that used to be created in /var/tmp, e.g. named.run,
-	will now be created in the directory specified in the options
-	statement.  If debugging is turned on using the "-d" flag on server
-	startup, then named.run will be created in the current directory.
-
-
-Known Dynamic DNS Bugs
-
-	If the server is master for a zone and authoritative for a child of
-	that zone, then a dynamic update to the parent will destroy the
-	delegation to the child when the parent zone is written to disk.
-	This problem will be fixed in a future release.  The only workaround
-	is to not be authoritative for child zones of a dynamic zone.
-
-	Slave servers do not forward update requests to the primary master
-	correctly.  This will be fixed in a future release.  In the meantime,
-	slaves will refuse dynamic updates.
-
-
-Shared Libraries
-
-	Absolutely no support exists for editing the system's shared
-	libraries to update the resolver.  If you want to do that you
-	probably want to look at BIND Version 4 (see http://www.isc.org/isc/)
-	or wait a while or help out a lot.  This means you probably do not
-	want to install the library or include files into /usr/lib or
-	/usr/include, and this kit helpfully puts everything into
-	/usr/local/lib and /usr/local/include for that reason among others.
-
-
-Notes about contrib and doc
-
-	The BIND 8 "doc" package includes HTML documentation as	well as all
-	the RFC's, Internet Drafts, and "man" pages we can think of.  You may
-	need to install the doc/tmac files in your nroff/troff support
-	directory since we use the newer BSD "mandoc" system for our "man"
-	pages.
-
-	The BIND 8 "contrib" package is full of junk that you may want to
-	take a look at.  Feel free to send us more junk for future releases.
-
-
-Bugs
-
-	Please report bugs to
-
-		bind-bugs@isc.org
diff --git a/contrib/bind/LICENSE b/contrib/bind/LICENSE
deleted file mode 100644
index 36174cd66f490..0000000000000
--- a/contrib/bind/LICENSE
+++ /dev/null
@@ -1,22 +0,0 @@
-## Copyright (c) 1993-1999 by Internet Software Consortium.
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-   Internet Software Consortium
-   950 Charter Street
-   Redwood City, CA 94063
-   Tel: 1-888-868-1001 (toll free in U.S.)
-   Tel: 1-650-779-7091
-   Fax: 1-650-779-7055
-   Email: info@isc.org
diff --git a/contrib/bind/Makefile b/contrib/bind/Makefile
deleted file mode 100644
index 5df7fdcb88da2..0000000000000
--- a/contrib/bind/Makefile
+++ /dev/null
@@ -1,68 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium.
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.51 1999/11/06 03:24:02 vixie Exp $
-
-TOP=
-SUBDIRS= include port lib bin
-
-SH=sh
-
-default: all
-
-all clean depend install distclean:: FRC
-	@set -e; \
-	version=`cat ${TOP}Version`; \
-	systype=`${SH} ${TOP}port/systype ${TOP}.systype`; \
-	if [ $$systype = "unknown" ]; then \
-		echo "There is no BIND port for this system in this kit."; \
-	else \
-		settings=`${SH} ${TOP}port/settings ${TOP}.settings \
-			< ${TOP}port/$$systype/Makefile.set`; \
-		PATH=`pwd`/port/$$systype/bin:$$PATH; export PATH; \
-		for x in ${SUBDIRS}; do \
-			( cd $$x; pwd; \
-			  eval "${MAKE} $$settings ${MARGS} SYSTYPE=$$systype \
-				VER=$$version \
-				$@"; \
-			); \
-		done \
-	fi
-
-clean distclean::
-	rm -f .systype .settings
-
-links: FRC
-	@set -e; mkdir ${DST}; cd ${DST}; pwd; ln -s ${SRC} SRC; \
-	ln -s SRC/Version .; cp SRC/Makefile .; chmod +w Makefile; \
-	systype=`${SH} SRC/port/systype`; \
-	for x in ${SUBDIRS} ; do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		  cp SRC/Makefile Makefile; chmod +w Makefile; \
-		  ${MAKE} ${MARGS} SYSTYPE=$$systype links; \
-		); \
-	done
-
-stdlinks: FRC
-	if [ ! -d /var/obj ]; then \
-		mkdir /var/obj; \
-	fi
-	${MAKE} ${MARGS} SRC=`pwd` DST=/var/obj/bind links
-
-uplinks: FRC
-	@set -e; systype=`${SH} ${TOP}port/systype`; pwd=`pwd`; \
-	${MAKE} ${MARGS} SRC=../`basename $$pwd` "DST=../$$systype" links
-
-FRC:
diff --git a/contrib/bind/OPTIONS b/contrib/bind/OPTIONS
deleted file mode 100644
index 8255244a02bb0..0000000000000
--- a/contrib/bind/OPTIONS
+++ /dev/null
@@ -1,412 +0,0 @@
-OPTIONS
-    Original: Paul Vixie, 28Mar92
-    Revised: $Id: OPTIONS,v 8.6 1996/05/21 07:32:31 vixie Exp $
-
-Options available in this version of BIND are controlled by conf/options.h,
-rather than by $(DEFS) in the Makefile.  The options are:
-
-DEBUG (origin: U C Berkeley)
-	enables the -d command line option, and allows SIGUSR1 to increment
-and SIGUSR2 to clear the internal variable "debug", which in turn controls
-hundreds of fprintf()'s out to /usr/tmp/named.run.
-	you probably want this.  it makes the binary bigger but not slower (or
-at least not much slower), but SIGUSR[12] are the only way you'll track down
-misconfigured name servers that hose you down with billions of bogus requests.
-	you may need this, it is on by default.
-
-ALLOW_T_UNSPEC (origin: MIT Project Athena)
-	enables the "unspec" RR type for ancient Athena software that does not
-know about TXT RR's.
-	you probably do not care about this, it is off by default.
-
-ALLOW_UPDATES (origin: Mike Schwartz, University of Washington)
-	enables "dynamic updates", described in "doc/DynamicUpdate".  this lets
-you update named's in-memory database on the fly if you have the right client.
-there is absolutely no security around this; if you enable it, anyone who can
-reach your server can update your database.
-	this code doesn't compile any more and will be removed shortly.
-
-INVQ (origin: U C Berkeley, with #ifdef's by Paul Vixie)
-	enables "inverse queries", which in all of the internet only one
-client ever uses: ancient nslookup.  if you build named with INVQ defined,
-you get the time-honored behaviour of supporting this whole class of queries
-for no real purpose other than to waste a few hundred kilobytes of your
-memory and about 3% of named's total CPU time.  if you build with INVQ
-undefined, old nslookups will not be able to reach your server in their
-startup phase, and you will have to use the "server" command after it fails
-over to some other server, or use "nslookup - 0" to get in from the shell.
-	if you need to support old nslookups try "options fake-iquery"
-instead of enabling this option.
-	you probably do not want this.
-
-DSTORAGE (origin: U C Berkeley, with #ifdef's by Paul Vixie)
-	enables a malloc-debugger that checks for overruns on both ends of
-each allocated block of memory.  used when debugging since C has no bounds
-or type checking.
-	you probably do not want this, it is off by default.
-
-DMALLOC (origin: Paul Vixie of Digital)
-	enables a malloc-debugger that traces all allocated blocks of memory
-such that SIGIOT's output (see STATS option) includes a list of all mallocs
-in the program, how many times each has been called, how many blocks of memory
-allocated by that malloc are not yet free, and how many bytes they use up.
-under each one will be a list of each free/realloc that has deallocated a block
-of that malloc's memory, and how many times it has done so.
-	this is extremely helpful for finding memory leaks.  as such, you
-probably do not want this unless you are debugging named.
-	you probably do not need this, it is off by default.
-
-XFRNETS (origin: Paul Vixie of Digital)
-	enables the "xfrnets" command in named.boot.  this has the same
-syntax as "forwarders" and "sortlist" -- that is, a list of dotted quads.
-each one is a network (16.0.0.0 and 130.180.0.0 are examples) or a host.
-if you put any xfrnets commands into your named.boot, then zone transfers
-will only be honored if they come from inside one of the specified
-networks.  this is very useful if you want to keep people outside from
-being able to trivially map your entire network, but it doesn't stop them
-from iterating so it's more annoying than secure.
-	this feature was once called "tcplist" out of ignorance on my part,
-but with advice from phil almquist i decided to rename it "xfrnets" and make
-it only control zone transfers -- previously it controlled all TCP connections
-which made certain TCP-only resolvers unable to use our servers.  the "tcplist"
-syntax still works; it is a synonym for "xfrnets".
-	it is also nice if you want to keep the outside world from making your
-nameserver fork and swap trying to do unauthorized zone transfers. if you have 
-large zone files or use BIND for TXT records you will find this useful.
-	you probably want this, it is on by default.
-
-PID_FIX (origin: Don Lewis of Harris)
-	tells named that if it starts up but can't keep going because another
-nameserver is already running (and sitting on the server port), it should
-put the /etc/named.pid (/var/run/named.pid) file back the way it found it.
-	you probably want this, it is on by default.
-
-FWD_LOOP (origin: Don Lewis of Harris)
-	tells named that if you list any of your own IP addresses in a
-"forwarders" command in your named.boot file, you should be scolded.
-	you probably want this, it is on by default.
-
-NO_GLUE (origin: Don Lewis of Harris, and Andrew Partan of UUNET)
-	tells named-xfer that incoming zone transfers should be checked
-for "glue" that comes from a zone outside the zone being transfered, and
-comment this garbage out in the zone file so that when named reads in the
-zone file after named-xfer exits, the garbage will not be entered into the
-memory-resident database.
-	also tells named that when it is performing an outgoing zone
-transfer, it should not send any of these "glue" records.
-	you definitely want this, it is on by default.
-
-BOGUSNS (origin: Piet Beertema of EUNet)
-	enables the "bogusns" command in named.boot.  this has the same
-syntax as forwarders and sortlist.  any NS RR's that come in whose addresses
-are on the list of "bogusns" addresses will be ignored.  this is the last
-resort when someone is bogusly advertising themselves as a root server.
-	just in case, though you won't use it often.
-	you probably want this, it is on by default.
-
-QRYLOG (origin: Bryan Beecher of UMich)
-	enables "query logging", such that SIGWINCH toggles tracing of all
-incoming queries.  the trace is sent to syslog, and is huge, but when you
-need this you will need it bad and it does not slow named down or make it
-larger.
-	If you define QRYLOG you may also start up named in query logging
-mode by using the -q flag.  If you do so you will probably want to analyze
-the logs produced, the dnsstats and lamers scrips (in the contrib/umich
-and contrib/lamers directories) will do it for you.
-	you probably want this, it is on by default.
-
-LOGFAC (origin: various people)
-	If you start up named with the -q flag you will be logging
-large amounts of data, and probably will not want them logged to the
-default logging facility, which is LOG_DAEMON.  You will want to
-redefine LOGFAC, presumably to LOC_LOCALn (0 <= n <= 7).  Remember to
-modify /etc/syslog.conf appropriately.
-	This only works on a system with a modern syslogd.
-	as such, it is on by default.
-
-YPKLUDGE (origin: Piet Beertema of EUNet)
-	certain versions of NIS/YP are capable of using the DNS for names
-that cannot be found in the YP servers.  of these, certain versions can't
-tell the difference between a dotted quad and a domain name, and they send
-queries to the DNS for dotted quads as if they were domain names.  if your
-named does not do anything special with these queries, they will end up
-getting forwarded to other servers, effectively hosing all of you down with
-endless useless network traffic.  YPKLUDGE enables some checking in named
-that lets it catch these bogus queries and send back immediate errors.
-	If you run "ypserv -i" you definitely want this, as a malconfigured
-NIS server can cause DNS "flood" queries otherwise. Trust me.
-	this is off by default.
-
-TRACEROOT (origin: pma@cnd.hp.com and Bryan Beecher of UMich)
-	enables some checking in named for bogus root nameservers.  This
-code has been in use at U-M for years, so it is pretty well tested, plus we
-have never been burned by the "bogus root NS scares" that have plagued the
-DNS off and on.
-	this feature people will very much want to use, it is on by default.
-
-LOCALDOM (origin: Berkeley)
-	if set, the "domain" directive is recognized in the named.boot file.
-this causes us to retry queries with the specified domain appended to the
-name if the first lookup fails.  this is a very bad idea since a given name
-server will often be used by clients in more than one domain -- a name server
-should _not_ make any presumptions as to the "home domain" of a requestor.
-	you almost certainly do not want this, it is off by default.
-
-SLAVE_FORWARD (origin: pma@sdd.hp.com)
-	if set, "slave" servers behave in an arguably more-correct way.  this
-is an experimental addition to BIND 4.9 that causes slaves to time out queries
-in 60/N seconds where N is the number of forwarders defined.  previously a
-query would time out almost immediately, which caused a lot of unnecessary
-network traffic.
-	you probably want this, it is on by default.
-
-FORCED_RELOAD (origin: pma@sdd.hp.com)
-	if set, then when a HUP signal is received, all secondary zones are
-scheduled for serial-number comparison with the primaries.  this has the effect
-that if you HUP your server, it will refresh any zones which have changed,
-even if those zones' refresh times have not been reached.
-	you probably want this, it is on by default.
-
-WANT_PIDFILE (origin: berkeley, parameterized by arc@sgi)
-	if set, a file called named.pid will be created in /etc or /var/run
-when the name server has started.  this file can be used to send signals to
-BIND, as in "kill -HUP `cat /etc/named.pid`".
-	unless you are only on an SGI (where killall(1M) makes the pid file 
-unnecessary); 
-	you probably want this, it is on by default.
-
-DOTTED_SERIAL (origin: berkeley; parameterized by vixie)
-	if set, allows a somewhat arcane n.m syntax in the serial number
-field of an SOA.  this is officially deprecated for 4.9; you should use
-straight integer values and find an encoding that does not depend on 
-scaled-integer pseudodecimals.  i suggest YYYYMMDDnn where YYYY is the
-four-digit year, MM is the two-digit month, DD is the two-digit day-of-month,
-and nn is a daily version number in case you change your serial number more
-than once in a day.  this encoding will overflow in the year 4294 gregorian.
-	you almost certainly do not want this, but if you have old zone files
-lying around and you don't want to think your way through converting their
-serial numbers, this deprecated behaviour is available.
-	graciously, it is on by default.
-
-SENSIBLE_DOTS (origin: kagotani@cs.titech.ac.jp; parameterized by vixie)
-	if set, changes the semantics of an "n.m" serial number from
-		n*10^(3+int(0.9+log10(m))) + m
-to
-		n*10000+m
-	if you are using DOTTED_SERIAL in spite of its deprecated status,
-and you are interested in a more predictable and sensible interpretation of
-dotted numbers, then you probably want this.
-	it is off by default.
-
-VALIDATE (origin: USC/ISI)
-	enables a validation procedure to provide some security in an
-otherwise insecure environment. Any RRs are accepted from a server only if
-the server is authoritative over that domain. We consider a server
-authoritative (for validation purposes) for even the sub-domains that it has
-delegated to others. RRs are validated against the data we have in cache
-already. Invalid records are neither cached nor returned.
-	it is off by default because it is hopeless, and the code will all
-be ripped out of BIND in the near future.
-
-NCACHE (origin: USC/ISI)
-	enables negative caching. We cache only authoritative NXDOMAIN or
-authoritative NOERROR with zero RR count. Non-authoritative NXDOMAIN answers
-now contain NS records in the authority section. Non-authoritative NOERROR
-responses have no authority or additional records to differentiate them from
-referrals. They are cached for NTTL secs (currently 10 minutes) and are timed
-out when the ttl expires.
-	you probably want this, it is on by default.
-
-RESOLVSORT (origin: marka@syd.dms.csiro.au)
-	enable sorting of addresses returned by gethostbyname. Sorting order
-is specified by address/netmask pairs. This enables a host to override the
-sortlist specified in the nameserver.
-	you probably want this, it is on by default.
-
-STUBS (origin: marka@syd.dms.csiro.au)
-	enable transfer and loading of NS records only for a zone.
-still experimental. it won't hurt to enable it, but it may not work perfectly 
-so using it could lead to some confusion.  
-	you probably don't care, it is on by default.
-
-SUNSECURITY (origin: rossc@ucc.su.oz.au)
-  	enable checking of PTR records in gethostbyaddr() to detect
-spoofing.  Forced on SunOS 4 shared library as rlogin etc. depend on this.
-	you should probably not set this by hand.
-
-SECURE_ZONES (origin: gshapiro@guest.wpi.edu)
-	enables support for secure zones.  This restricts access to
-information in the zone according to the information found in the
-secure_zone TXT RR found in the zone.  If none is found, the zone is
-world-readable.  For information on the format of the secure_zone TXT
-RR, see the Name Server Operations Guide for BIND.
-	you probably want this, it is on by default.
-
-ROUND_ROBIN (origin: Marshall Rose of TPC.INT)
-	if set, causes the databuf list in a namebuf to be rotated by one
-slot after each access to it.  this has the effect that if multiple RR's
-of a given type are present, they will be given in "round robin" order 
-instead of always being given in the same order.
-	you probably want this, it is on by default.
-
-ADDAUTH (origin: marka@syd.dms.csiro.au)
-	if set, cause NS and glue A records to be returned with authoritative
-answers.  this causes slightly larger replies but less DNS traffic overall.
-	unless you have Mac's with an older version of Mac/TCP;
-	you probably want this, it is on by default.
-
-RFC1535 (origin: paul@vix.com)
-	if set, the resolver's default "search" list will be just the entire
-"domain" name rather than the sliding window it had before 4.9.2.  this will
-make the default search list shorter, so folks who are saying "domain a.b.c"
-and relying on the implicit "search a.b.c a.b c" will miss "a.b" and "c".
-	this option is on for compatibility with RFC 1535.  
-	you should NOT turn it off, it is on by default.
-
-GEN_AXFR (origin: mark@comp.vuw.ac.nz, tytso@ATHENA.MIT.EDU, gdmr@dcs.ed.ac.uk)
-	if set, allows specification of zones in classes other than "IN" in
-the named.boot file. Allows an optional "/class" on the "primary" and
-"secondary" directives.  Also fixes zone transfers so only data in the class
-requested is transfered.
-	you probably want this, it is on by default.
-
-DATUMREFCNT (origin: mark andrews)
-	you want this.  it will not be optional in future releases.
-
-LAME_DELEGATION (origin: don lewis; reworked by bryan beecher and don lewis)
-	this will detect the condition where some other server has told you 
-that a given set of servers is authoritative for some domain, and at least 
-one of those "delegated" servers disagrees (i.e., answers non-authoritatively).
-	you probably want this, it is on by default.
-
-LAME_LOGGING (origin: don lewis)
-	enable logging of lame delegations and set the log level
-	you may want this, it is on by default.
-
-RETURNSOA (origin: mark andrews)
-	This allows negative caching to work. Without this, older
-pre-4.9.3 nameservers will not accept -ve cached anwsers.  We actually
-store the SOA record from the authority section rather that what was
-requested because it is the existence of the NXDOMAIN that matters not
-the type of data. The zone of the SOA record is tagged to the end of
-the SOA record to allow it to be reconstructed.
-	You probably DO NOT WANT THIS, it's experimental and dangerous.
-	it is off by default.
-
-CLEANCACHE (origin: mark andrews)
-	Bind consumes memory without bound without this option. This
-patch allows bind to periodically remove any stale entries in the
-cache.  Bind's memory usage should stabilize after approximately 1 day of
-operation, as most TTL's are <= 1 day. Without this option stale entries
-are only removed when they are looked up.
-	You probably want this, it is on by default.
-
-PURGE_ZONE (origin: mark andrews)
-	Various junk below a zone tends to hang around and corrupt future
-zone data if a zone grows deeper.  PURGE_ZONE will remove all traces of or
-data which could be part of zone before loading a new one.
-	You probably want this, it is on by default.
-
-STATS (origin: Paul Vixie)
-	Named's internal statistics can take a fair amount of memory and
-if you aren't interested in looking at these numbers you should disable
-the feature. Future versions may require this.
-	You probably want this, it is on by default.
-
-RENICE (origin: bp@deins.informatik.uni-dortmund.de)
-	if set, the process priority of the AXFR subprocesses is changed to
-"normal". If you are planning to raise the priority of the main nameserver
-process, you will use this.
-	You probably want this, it is on by default.
-
-GETSER_LOGGING (origin: Paul Vixie)
-	if set, errors that occur during the fetch of serial numbers for zone
-transfer consideration will be syslog()'d.  this can lead to a lot of logging,
-but is very helpful if you don't know why a zone isn't transfering.
-	You may not want this, but it is on by default.
-
-SHORT_FNAMES (origin: pma@sdd.hp.com)
-	on systems whose file names can only be 14 characters long, the temp
-files created by named-xfer need to be constructed somewhat differently.  this
-should probably become the default since it is harmless.
-	you probably don't care one way or the other, it is off by default.
-
-XSTATS (origin: Benoit.Grange@inria.fr)
-	if set, the name server keeps more STATS about requests
-received, and logs to syslog total counters from time to time. If you
-aren't interested in looking at these numbers you should not enable
-the feature. Requires STATS.
-	You may want this, but it is off by default.
-
-BIND_NOTIFY (origin: paul@vix.com)
-	experimental at this time; an internet draft is circulating.  this
-option informs slaves ("secondary" servers in BIND's erroneous terminology)
-instantly when the master (primary, or another slave) loads a new zone.  it
-works fine and seems to cause no problems with slaves that don't support it,
-but it does not implement the current internet draft (it lacks some necessary
-delays) and causes a lot of extra syslog traffic, especially at startup.  if
-you don't mind running code that will absolutely NOT be compatible with the
-eventual standard when the RFC is released, go ahead and turn this on.
-	vendors should not enable this in versions shipped to customers.
-	You will want this when it becomes compliant, it is off by default.
-
-LOC_RR (origin: ckd@kei.com)
-	incorporates support for the (RFC 1876) LOC RR type.
-	You may want this, it is on by default.
-
-SORT_RESPONSE (legacy)
-	should responses be sorted in what the server considers an optimal
-order for the client?  this is on by default but it does very little good.
-
-## ++Copyright++ 1989
-## -
-## Copyright (c) 1989
-##    The Regents of the University of California.  All rights reserved.
-## 
-## Redistribution and use in source and binary forms, with or without
-## modification, are permitted provided that the following conditions
-## are met:
-## 1. Redistributions of source code must retain the above copyright
-##    notice, this list of conditions and the following disclaimer.
-## 2. Redistributions in binary form must reproduce the above copyright
-##    notice, this list of conditions and the following disclaimer in the
-##    documentation and/or other materials provided with the distribution.
-## 3. All advertising materials mentioning features or use of this software
-##    must display the following acknowledgement:
-## 	This product includes software developed by the University of
-## 	California, Berkeley and its contributors.
-## 4. Neither the name of the University nor the names of its contributors
-##    may be used to endorse or promote products derived from this software
-##    without specific prior written permission.
-## 
-## THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-## ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-## IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-## ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-## FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-## DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-## OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-## HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-## LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-## OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-## SUCH DAMAGE.
-## -
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-## -
-## --Copyright--
diff --git a/contrib/bind/README b/contrib/bind/README
deleted file mode 100644
index 65f966467c059..0000000000000
--- a/contrib/bind/README
+++ /dev/null
@@ -1,213 +0,0 @@
-This is the source portion of BIND version 8.2.3-T2B.  Its companions 
-are "doc" and "contrib" so you are probably not missing anything.
-
-See the CHANGES file for a detailed listing of all changes.  See the INSTALL
-file for information on building and installing BIND.
-
-See the SUPPORT file for information on obtaining commercial support for ISC
-artifacts including BIND, INN, and DHCP.
-
-SECURITY NOTE:
-
-	Solaris and other pre-4.4BSD kernels do not respect ownership or
-	protections on UNIX-domain sockets.  This means that the default
-	path for the NDC control socket (/var/run/ndc) is such that any
-	user (root or other) on such systems can issue any NDC command
-	except "start" and "restart".  The short term fix for this is to
-	override the default path and put such control sockets into root-
-	owned directories which do not permit non-root to r/w/x through them.
-	The medium term fix is for BIND to enforce this requirement internally.
-	The long term fix is for all kernels to upgrade to 4.4BSD semantics.
-
-BIND 8.2.2 patchlevel 5 Highlights
-
-	Bug in named-xfer (from patchlevel 4).
-	Portability to IPv6 versions of FreeBSD, OpenBSD, NetBSD.
-	Portability improvements (A/UX, AIX, IRIX, NetBSD, SCO, MPE/IX, NT).
-	"also-notify" option could cause memory allocation errors.
-	IXFR improvements (though client-side is still disabled).
-	Contributed software upgraded (including TIS's "dns_signer").
-	Several latent denial-of-service bugs fixed (from audits, not abuse).
-	New "make noesw" top-level target for removing encumbered components.
-
-BIND 8.2.2 Highlights
-
-	Interoperability with MS-Win2K has been improved.                     
-	Server-side IXFR is now known to work even under high load.                 
-	Support for Windows/NT (thanks to BayNetworks).
-	More fixes, especially to DNSSEC, TSIG, IXFR, and selective forwarding.
-	More portability improvements and lint removal (A/UX 3.1.1, SCO 5.0).
-	Better NOTIFY behaviour, especially with large update volume.
-	Better UPDATE handling, including SRV RR support and RFC compliance.
-	Fix for "ndc reload ZONENAME" (specific zone reload) problems.
-	Fix for round robin when multiple CNAMEs are in use.
-	New "min-roots" (MINROOTS) and "serial-queries" (MAXQSERIAL) options.
-	Log files are no longer auto-rotated every time the server starts up.
-	New "ndc reconfig" command only finds new/deleted zones, no stat()ing.
-	New global options for "transfer-source" and "also-notify".
-	$GENERATE now supports more record types, and options.
-
-
-BIND 8.2.1 Highlights
-
-	Bug fixes, especially to DNSSEC, TSIG, IXFR, and selective forwarding.
-	Portability improvements and lint removal.
-	Use best SOA rather than first-better when selecting an AXFR master.
-	$TTL now accepts symbolic time values (such as "$TTL 1h30m").
-	"ndc reload" now accepts a zone argument, for single-zone reloads.
-	ndc is better behaved; is verbose or quiet when appropriate.
-	event and error reporting improvements.
-
-BIND 8.2 Highlights
-
-	RFC 2308 (Negative Caching)
-	RFC 2181 (DNS Clarifications)
-	RFC 2065 (DNS Security)
-	TSIG (Transaction SIGnatures)
-	support for multiple virtual name servers
-	NDC uses a "control channel" now (no more signals)
-	"Split DNS" via zone type "forward".
-
-	Many bug fixes
-	Documentation improvements
-	Performance enhancements
-
-
-BIND 8.1.2 Highlights
-
-	Security fixes for a number of problems including:
-
-		An attacker could overwrite the stack if inverse query support
-		was enabled.
-
-		A number of denial of service attacks where malformed packets
-		could cause the server to crash.
-
-		The server was willing to answer queries on its forwarding
-		sockets.
-
-	Several memory leaks have been plugged.
-
-	The server no longer panics if a periodic interface scan fails due
-	to no file descriptors being available.
-
-	Updates to a number of ports.  New ports for QNX, LynxOS, HP-UX 9.x,
-	and HP MPE.
-
-	"files unlimited" now works as expected on systems where setting
-	an infinite rlim_max for RLIMIT_NOFILE works.
-
-	Adding and deleting the same record in the same dynamic update no
-	longer crashes the server.
-
-	If a dynamic update fails, rollback is now done in LIFO order instead
-	of FIFO order.
-
-	Better behavior when priming of the root servers fails.
-
-	purge_zone() didn't work correctly for the root zone, allowing
-	old data to persist after loading the zone.
-
-	Improved handling of oversized UDP packets.
-
-	All hosts on the also-notify list are now notified.
-
-	The meaning of the count returned by select() varies somewhat by
-	operating system, and this could cause previous releases of the
-	server to spin.
-
-	Per-host statistics may be disabled by specifying 'host-statistics no'
-	in named.conf.
-
-	The maximum number of zones has been increased from 32768 to 65536.
-
-	query-source may specify an address and port that the server is
-	already listening on.  BIND 8.1.1 required that either the address
-	or port be wild.  E.g., you can now say:
-
-		listen-on port 53 { 10.0.0.1; };
-		query-source address 10.0.0.1 port 53;
-
-	The value of FD_SETSIZE to use may be specified.
-
-	Experimental -u (set user id), -g (set group id), and -t (chroot)
-	command line options.  See the INSTALL file for details.
-
-
-BIND 8 Features
-
-	-> DNS Dynamic Updates (RFC 2136)
-
-	-> DNS Change Notification (RFC 1996)
-
-	-> Completely new configuration syntax
-
-	-> Flexible, categorized logging system
-
-	-> IP-address-based access control for queries, zone transfers, and
-	   updates that may be specified on a zone-by-zone basis
-
-	-> More efficient zone transfers
-
-	-> Improved performance for servers with thousands of zones
-
-	-> The server no longer forks for outbound zone transfers
-
-	-> Many bug fixes
-
-
-File and Directory Overview
-
-	CHANGES				history of added features and
-					fixed bugs
-
-	INSTALL				how to build and install
-
-	README				this file
-						
-	TODO				features planned but not yet written
-
-	Version				the version number of this release
-
-	bin/*				source for executables, including
-					the nameserver
-
-	include/*			public .h files
-
-	lib/*				the resolver and various BIND
-					support libraries
-
-	port/*				ports to various operating systems
-	
-
-Kits, Questions, Comments, and Bug Reports
-
-    <URL:ftp://ftp.isc.org/isc/bind/src/cur>        current non-test release
-    <URL:ftp://ftp.isc.org/isc/bind/src/testing>    latest public test kit
-
-    <URL:usenet:comp.protocols.dns.bind>            using BIND
-    <URL:usenet:comp.protocols.dns.ops>             DNS operations in general
-    <URL:usenet:comp.protocols.dns.std>             DNS standards in general
-
-    <URL:mailto:bind-users-request@vix.com>         gw'd to u:c.p.d.bind
-    <URL:mailto:namedroppers-request@internic.net>  gw'd to u:c.p.d.std
-    <URL:mailto:bind-workers-request@vix.com>       code warriors only please
-
-    <URL:http://www.isc.org/bind.html>		    the BIND home page
-    <URL:mailto:bind-bugs@isc.org>		    bug reports
-
-
-To Support the Effort
-
-	Note that BIND is supported by the Internet Software Consortium, and
-	although it is free for use and redistribution and incorporation into
-	vendor products and export and anything else you can think of, it
-	costs money to produce.  That money comes from ISPs, hardware and
-	software vendors, companies who make extensive use of the software,
-	and generally kind hearted folk such as yourself.
-
-	The Internet Software Consortium has also commissioned a DHCP server
-	implementation, has taken over official support/release of the INN
-	system, and has supported the Kerberos Version 5 effort at MIT.  You
-	can learn more about the ISC's goals and accomplishments from the web
-	page at <URL:http://www.isc.org/>.
diff --git a/contrib/bind/SUPPORT b/contrib/bind/SUPPORT
deleted file mode 100644
index 51729187ef910..0000000000000
--- a/contrib/bind/SUPPORT
+++ /dev/null
@@ -1,9 +0,0 @@
-The Internet Software Consortium offers, through certified providers, support,
-training, and consulting for BIND and DHCP.  These programs are documented on
-our web page at:
-
-	http://www.isc.org/support.html
-
-Discussion about programs to meet your needs is welcome at sales@isc.org. 
-Please forward your questions there or call us at +1 650 779-7018 to speak
-with the Director of Client Services.
diff --git a/contrib/bind/TODO b/contrib/bind/TODO
deleted file mode 100644
index 634d03a630826..0000000000000
--- a/contrib/bind/TODO
+++ /dev/null
@@ -1,27 +0,0 @@
-These are not in priority order.
-
-->	"make" should work in any subdirectory as it does in the top level.
-
-->	"make distclean" should remove .depend files, "make clean" shouldn't.
-
-->	NT port
-
-->	DNS Security (RFC 2065)
-
-->	IXFR
-
-->	Enhanced forwarding
-
-->	Command protocol
-
-->	IPv6 transport
-
-->	named-xfer elimination
-
-->	asynchronous resolver
-
-->	new database -- DB 2.0?
-
-->	move man pages from doc/man/* into src/.
-
-->	fix dynamic DNS delegation loss problem
diff --git a/contrib/bind/Version b/contrib/bind/Version
deleted file mode 100644
index f8403c5ec22bd..0000000000000
--- a/contrib/bind/Version
+++ /dev/null
@@ -1 +0,0 @@
-8.2.3-T5B
diff --git a/contrib/bind/bin/Makefile b/contrib/bind/bin/Makefile
deleted file mode 100644
index ffe01a30daf75..0000000000000
--- a/contrib/bind/bin/Makefile
+++ /dev/null
@@ -1,93 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.27 1999/08/08 17:13:24 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ..
-O=o
-A=a
-INCL = ${TOP}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBPORT = ${TOP}/port/libport.${A}
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LEX = lex -I
-YACC = yacc
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-AR= ar cru
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-
-MARGS =	"SYSTYPE=${SYSTYPE}" "SHELL=${SHELL}" "A=${A}" "O=${O}" \
-	"CC=${CC}" "LEX=${LEX}" "YACC=${YACC}" "CDEBUG=${CDEBUG}" \
-	"SYSLIBS=${SYSLIBS}" "LDFLAGS=${LDFLAGS}" \
-	"DESTDIR=${DESTDIR}" "DESTMAN=${DESTMAN}" \
-	"DESTBIN=${DESTBIN}" "DESTSBIN=${DESTSBIN}" "DESTEXEC=${DESTEXEC}" \
-	"DESTLIB=${DESTLIB}" "DESTINC=${DESTINC}" "DESTETC=${DESTETC}" \
-	"DESTRUN=${DESTRUN}" "DESTHELP=${DESTHELP}" \
-	"RANLIB=${RANLIB}" "AR=${AR}" "ARPREF=${ARPREF}" "ARSUFF=${ARSUFF}" \
-	"INCL=../${INCL}" "PORTINCL=../${PORTINCL}" "EXE=${EXE}" \
-	"LIBBIND=../${LIBBIND}" "LIBPORT=../${LIBPORT}" \
-	"INSTALL=${INSTALL}" "CPPFLAGS=${CPPFLAGS}" "TOP=../${TOP}" \
-	"VER=${VER}" "STRIP=${STRIP}" "PS=${PS}" "INSTALL_LIB=${INSTALL_LIB}" \
-	"INSTALL_EXEC=${INSTALL_EXEC}" "BOUNDS=${BOUNDS}"
-
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-SUBDIRS = addr nslookup dig dnsquery host named named-xfer ndc nsupdate \
-	mkservdb irpd dnskeygen named-bootconf
-
-all: ${SUBDIRS}
-
-${SUBDIRS}: FRC
-	@(cd $@; pwd; ${MAKE} ${MARGS})
-
-install depend tags clean distclean::
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-distclean:: clean
-
-clean::
-	rm -f *.BAK *.CKP *~ *.orig
-
-links: FRC
-	@set -e; \
-	for x in $(SUBDIRS); do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		  cp SRC/Makefile Makefile; chmod +w Makefile; \
-		  $(MAKE) $(MARGS) links; \
-		); \
-	done
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/addr/Makefile b/contrib/bind/bin/addr/Makefile
deleted file mode 100644
index 18dd281c77eda..0000000000000
--- a/contrib/bind/bin/addr/Makefile
+++ /dev/null
@@ -1,84 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.25 1999/08/08 17:51:00 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= addr
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags *.[ch]
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/addr/addr.c b/contrib/bind/bin/addr/addr.c
deleted file mode 100644
index a6933918c8675..0000000000000
--- a/contrib/bind/bin/addr/addr.c
+++ /dev/null
@@ -1,177 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: addr.c,v 8.8 1999/10/13 16:38:55 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <ctype.h>
-#include <string.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <unistd.h>
-#include "port_after.h"
-
-static const char *prog = "addr";
-
-#define BIGGEST_ADDRESS IN6ADDRSZ
-
-static void
-usage() {
-	fprintf(stderr,
-		"usage:  %s [-4] [-6] [-n hexstring] [-p address]\n",
-		prog);
-	exit(1);
-}
-
-/* Warning: this scribbles on `dst' even if it's going to return `0'. */
-static int
-hexstring(src, dst, len)
-	const char *src;
-	u_char *dst;
-	int len;
-{
-	static const char xdigits[] = "0123456789abcdef";
-	u_char *ptr = dst, *end = dst + len;
-	u_int val;
-	int ch, digits;
-
-	val = 0;
-	digits = 0;
-	memset(dst, 0, len);
-	while ((ch = *src++) != '\0') {
-		if (ch == '0' && (*src == 'x' || *src == 'X')) {
-			src++;
-			continue;
-		}
-		if (isascii(ch) && (isspace(ch) || ispunct(ch))) {
-			if (digits > 0) {
-				if (ptr == end)
-					return (0);
-				*ptr++ = (u_char) (val & 0xff);
-				val = 0;
-				digits = 0;
-			}
-			digits = 0;
-			continue;
-		}
-		if (!isascii(ch) || !isxdigit(ch))
-			return (0);
-		if (isupper(ch))
-			ch = tolower(ch);
-		/* Clock it in using little endian arithmetic. */
-		val <<= 4;
-		val |= (strchr(xdigits, ch) - xdigits);
-		if (++digits == 2) {
-			if (ptr == end)
-				return (0);
-			*ptr++ = (u_char) (val & 0xff);
-			digits = 0;
-			val = 0;
-		}
-	}
-	if (digits > 0) {
-		if (ptr == end)
-			return (0);
-		*ptr++ = (u_char) (val & 0xff);
-	}
-	return ((ptr - dst) == len);
-}
-
-static void
-display(input, af, addr, len)
-	const char *input;
-	int af;
-	const u_char *addr;
-	int len;
-{
-	static int before = 0;
-	char p[sizeof "xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:255.255.255.255"];
-	int i;
-
-	if (before)
-		putchar('\n');
-	else
-		before++;
-
-	printf("Input: \"%s\"\n", input);
-	printf("Network: [af%d len%d]", af, len);
-	for (i = 0; i < len; i++)
-		printf(" %02x", addr[i]);
-	putchar('\n');
-	printf("Presentation: \"%s\"\n", inet_ntop(af, addr, p, sizeof p));
-}
-
-int
-main(argc, argv)
-	int argc;
-	char *argv[];
-{
-	u_char addr[BIGGEST_ADDRESS];
-	int optchr, af, len, some;
-
-	prog = argv[0];
-	af = AF_INET;
-	len = INADDRSZ;
-	some = 0;
-	while ((optchr = getopt(argc, argv, "46n:p:")) != -1) {
-		switch (optchr) {
-		case '4':
-			af = AF_INET;
-			len = INADDRSZ;
-			break;
-		case '6':
-			af = AF_INET6;
-			len = IN6ADDRSZ;
-			break;
-		case 'n':
-			if (!hexstring(optarg, addr, len)) {
-				fprintf(stderr, "bad hex string: \"%s\"\n",
-					optarg);
-				usage();
-				/* NOTREACHED */
-			}
-			display(optarg, af, addr, len);
-			some++;
-			break;
-		case 'p':
-			if (inet_pton(af, optarg, addr) <= 0) {
-				fprintf(stderr, "bad address: \"%s\"\n",
-					optarg);
-				usage();
-				/* NOTREACHED */
-			}
-			display(optarg, af, addr, len);
-			some++;
-			break;
-		default:
-			usage();
-			/* NOTREACHED */
-		}
-	}
-	if (!some)
-		usage();
-	exit(0);
-	/* NOTREACHED */
-}
diff --git a/contrib/bind/bin/dig/Makefile b/contrib/bind/bin/dig/Makefile
deleted file mode 100644
index 250df9643b775..0000000000000
--- a/contrib/bind/bin/dig/Makefile
+++ /dev/null
@@ -1,88 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.25 1999/08/08 17:51:01 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-NSLOOKUP_OBJS= \
-	../nslookup/subr.${O} ../nslookup/send.${O} \
-	../nslookup/list.${O} ../nslookup/debug.${O}
-
-PROG= dig
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O} 
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${NSLOOKUP_OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${NSLOOKUP_OBJS} ${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags *.[ch]
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/dig/dig.c b/contrib/bind/bin/dig/dig.c
deleted file mode 100644
index 8d5f5be4f473a..0000000000000
--- a/contrib/bind/bin/dig/dig.c
+++ /dev/null
@@ -1,1656 +0,0 @@
-#ifndef lint
-static const char rcsid[] = "$Id: dig.c,v 8.41 2000/04/20 07:36:04 vixie Exp $";
-#endif
-
-/*
- * Copyright (c) 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*********************** Notes for the BIND 4.9 release (Paul Vixie, DEC)
- *	dig 2.0 was written by copying sections of libresolv.a and nslookup
- *	and modifying them to be more useful for a general lookup utility.
- *	as of BIND 4.9, the changes needed to support dig have mostly been
- *	incorporated into libresolv.a and nslookup; dig now links against
- *	some of nslookup's .o files rather than #including them or maintaining
- *	local copies of them.
- *
- *	while merging dig back into the BIND release, i made a number of
- *	structural changes.  for one thing, i put all of dig's private
- *	library routines into this file rather than maintaining them in
- *	separate, #included, files.  i don't like to #include ".c" files.
- *	i removed all calls to "bcopy", replacing them with structure
- *	assignments.  i removed all "extern"'s of standard functions,
- *	replacing them with #include's of standard header files.  this
- *	version of dig is probably as portable as the rest of BIND.
- *
- *	i had to remove the query-time and packet-count statistics since
- *	the current libresolv.a is a lot harder to modify to maintain these
- *	than the 4.8 one (used in the original dig) was.  for consolation,
- *	i added a "usage" message with extensive help text.
- *
- *	to save my (limited, albeit) sanity, i ran "indent" over the source.
- *	i also added the standard berkeley/DEC copyrights, since this file now
- *	contains a fair amount of non-USC code.  note that the berkeley and
- *	DEC copyrights do not prohibit redistribution, with or without fee;
- *	we add them only to protect ourselves (you have to claim copyright
- *	in order to disclaim liability and warranty).
- *
- *	Paul Vixie, Palo Alto, CA, April 1993
- ****************************************************************************
-
- ******************************************************************
- *      DiG -- Domain Information Groper                          *
- *                                                                *
- *        dig.c - Version 2.1 (7/12/94) ("BIND takeover")         *
- *                                                                *
- *        Developed by: Steve Hotz & Paul Mockapetris             *
- *        USC Information Sciences Institute (USC-ISI)            *
- *        Marina del Rey, California                              *
- *        1989                                                    *
- *                                                                *
- *        dig.c -                                                 *
- *           Version 2.0 (9/1/90)                                 *
- *               o renamed difftime() difftv() to avoid           *
- *                 clash with ANSI C                              *
- *               o fixed incorrect # args to strcmp,gettimeofday  *
- *               o incorrect length specified to strncmp          *
- *               o fixed broken -sticky -envsa -envset functions  *
- *               o print options/flags redefined & modified       *
- *                                                                *
- *           Version 2.0.beta (5/9/90)                            *
- *               o output format - helpful to `doc`               *
- *               o minor cleanup                                  *
- *               o release to beta testers                        *
- *                                                                *
- *           Version 1.1.beta (10/26/89)                          *
- *               o hanging zone transer (when REFUSED) fixed      *
- *               o trailing dot added to domain names in RDATA    *
- *               o ISI internal                                   *
- *                                                                *
- *           Version 1.0.tmp  (8/27/89)                           *
- *               o Error in prnttime() fixed                      *
- *               o no longer dumps core on large pkts             *
- *               o zone transfer (axfr) added                     *
- *               o -x added for inverse queries                   *
- *                               (i.e. "dig -x 128.9.0.32")       *
- *               o give address of default server                 *
- *               o accept broadcast to server @255.255.255.255    *
- *                                                                *
- *           Version 1.0  (3/27/89)                               *
- *               o original release                               *
- *                                                                *
- *     DiG is Public Domain, and may be used for any purpose as   *
- *     long as this notice is not removed.                        *
- ******************************************************************/
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-#include <sys/wait.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <isc/dst.h>
-
-#include <ctype.h> 
-#include <errno.h>
-#include <fcntl.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <setjmp.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include "port_after.h"
-
-#include "../nslookup/res.h"
-
-/* Global. */
-
-#define VERSION 83
-#define VSTRING "8.3"
-
-#define PRF_DEF		0x2ff9
-#define PRF_MIN		0xA930
-#define PRF_ZONE        0x24f9
-
-#ifndef MAXHOSTNAMELEN
-#define MAXHOSTNAMELEN 256
-#endif
-
-#define SAVEENV "DiG.env"
-#define DIG_MAXARGS 30
-
-static int		eecode = 0;
-static FILE *		qfp;
-static int		sockFD;
-static char		*defsrv, *srvmsg;
-static char		defbuf[40] = "default -- ";
-static char		srvbuf[60];
-static char		myhostname[MAXHOSTNAMELEN];
-static struct sockaddr_in myaddress;
-static u_int32_t	ixfr_serial;
-
-/* stuff for nslookup modules */
-struct __res_state  res;
-FILE		*filePtr;
-jmp_buf		env;
-HostInfo	*defaultPtr = NULL;
-HostInfo	curHostInfo, defaultRec;
-int		curHostValid = FALSE;
-int		queryType, queryClass;
-extern int	StringToClass(), StringToType();	/* subr.c */
-#if defined(BSD) && BSD >= 199006 && !defined(RISCOS_BSD)
-FILE		*yyin = NULL;
-void		yyrestart(FILE *f) { }
-#endif
-char		*pager = NULL;
-/* end of nslookup stuff */
-
-/* Forward. */
-
-static void		Usage(void);
-static int		SetOption(const char *);
-static void		res_re_init(void);
-static int		xstrtonum(char *);
-static int		printZone(ns_type, const char *,
-				  const struct sockaddr_in *, ns_tsig_key *);
-static int		print_axfr(FILE *output, const u_char *msg,
-				   size_t msglen);
-static struct timeval	difftv(struct timeval, struct timeval);
-static void		prnttime(struct timeval);
-static void		stackarg(char *, char **);
-
-/* Public. */
-
-int
-main(int argc, char **argv) {
-	struct hostent *hp;
-	short port = htons(NAMESERVER_PORT);
-	/* Wierd stuff for SPARC alignment, hurts nothing else. */
-	union {
-		HEADER header_;
-		u_char packet_[PACKETSZ];
-	} packet_;
-#define header (packet_.header_)
-#define	packet (packet_.packet_)
-	u_char answer[64*1024];
-	int n;
-	char doping[90];
-	char pingstr[50];
-	char *afile;
-	char *addrc, *addrend, *addrbegin;
-
-	time_t exectime;
-	struct timeval tv1, tv2, start_time, end_time, query_time;
-
-	char *srv;
-	int anyflag = 0;
-	int sticky = 0;
-	int tmp; 
-	int qtypeSet;
-	int addrflag = 0;
-	ns_type xfr = ns_t_invalid;
-        int bytes_out, bytes_in;
-
-	char cmd[512];
-	char domain[MAXDNAME];
-        char msg[120], *msgptr;
-	char **vtmp;
-	char *args[DIG_MAXARGS];
-	char **ax;
-	int once = 1, dofile = 0; /* batch -vs- interactive control */
-	char fileq[384];
-	int  fp;
-	int wait=0, delay;
-	int envset=0, envsave=0;
-	struct __res_state res_x, res_t;
-	char *pp;
-
-	ns_tsig_key key;
-	char *keyfile = NULL, *keyname = NULL;
-
-	res_ninit(&res);
-	res.pfcode = PRF_DEF;
-	qtypeSet = 0;
-	memset(domain, 0, sizeof domain);
-	gethostname(myhostname, (sizeof myhostname));
-#ifdef HAVE_SA_LEN
-	myaddress.sin_len = sizeof(struct sockaddr_in);
-#endif
-	myaddress.sin_family = AF_INET;
-	myaddress.sin_addr.s_addr = INADDR_ANY;
-	myaddress.sin_port = 0; /*INPORT_ANY*/;
-	defsrv = strcat(defbuf, inet_ntoa(res.nsaddr.sin_addr));
-	res_x = res;
-
-/*
- * If LOCALDEF in environment, should point to file
- * containing local favourite defaults.  Also look for file
- * DiG.env (i.e. SAVEENV) in local directory.
- */
-
-	if ((((afile = (char *) getenv("LOCALDEF")) != (char *) NULL) &&
-	     ((fp = open(afile, O_RDONLY)) > 0)) ||
-	    ((fp = open(SAVEENV, O_RDONLY)) > 0)) {
-		read(fp, (char *)&res_x, (sizeof res_x));
-		close(fp);
-		res = res_x;
-	}
-/*
- * Check for batch-mode DiG; also pre-scan for 'help'.
- */
-	vtmp = argv;
-	ax = args;
-	while (*vtmp != NULL) {
-		if (strcmp(*vtmp, "-h") == 0 ||
-		    strcmp(*vtmp, "-help") == 0 ||
-		    strcmp(*vtmp, "-usage") == 0 ||
-		    strcmp(*vtmp, "help") == 0) {
-			Usage();
-			exit(0);
-		}
-
-		if (strcmp(*vtmp, "-f") == 0) {
-			dofile++; once=0;
-			if ((qfp = fopen(*++vtmp, "r")) == NULL) {
-				fflush(stdout);
-				perror("file open");
-				fflush(stderr);
-				exit(10);
-			}
-		} else {
-			if (ax - args == DIG_MAXARGS) {
-				fprintf(stderr, "dig: too many arguments\n");
-				exit(10);
-			}
-			*ax++ = *vtmp;
-		}
-		vtmp++;
-	}
-
-	res.id = 1;
-	gettimeofday(&tv1, NULL);
-
-/*
- * Main section: once if cmd-line query
- *               while !EOF if batch mode
- */
-	*fileq = '\0';
-	while ((dofile && fgets(fileq, sizeof fileq, qfp) != NULL) || 
-	       (!dofile && once--)) 
-	{
-		if (*fileq == '\n' || *fileq == '#' || *fileq==';') {
-			printf("%s", fileq);	/* echo but otherwise ignore */
-			continue;		/* blank lines and comments  */
-		}
-
-/*
- * "Sticky" requests that before current parsing args
- * return to current "working" environment (X******).
- */
-		if (sticky) {
-			printf(";; (using sticky settings)\n");
-			res = res_x;
-		}
-
-/*
- * Concat cmd-line and file args.
- */
-		stackarg(fileq, ax);
-
-		/* defaults */
-		queryType = ns_t_ns;
-		queryClass = ns_c_in;
-		xfr = ns_t_invalid;
-		*pingstr = 0;
-		srv = NULL;
-
-		sprintf(cmd, "\n; <<>> DiG %s <<>> ", VSTRING);
-		argv = args;
-		argc = ax - args;
-/*
- * More cmd-line options than anyone should ever have to
- * deal with ....
- */
-		while (*(++argv) != NULL && **argv != '\0') { 
-			strcat(cmd, *argv);
-			strcat(cmd, " ");
-			if (**argv == '@') {
-				srv = (*argv+1);
-				continue;
-			}
-			if (**argv == '%')
-				continue;
-			if (**argv == '+') {
-				SetOption(*argv+1);
-				continue;
-			}
-			if (**argv == '=') {
-				ixfr_serial = strtoul(*argv+1, NULL, 0);
-				continue;
-			}
-			if (strncmp(*argv, "-nost", 5) == 0) {
-				sticky = 0;
-				continue;
-			} else if (strncmp(*argv, "-st", 3) == 0) {
-				sticky++;
-				continue;
-			} else if (strncmp(*argv, "-envsa", 6) == 0) {
-				envsave++;
-				continue;
-			} else if (strncmp(*argv, "-envse", 6) == 0) {
-				envset++;
-				continue;
-			}
-
-			if (**argv == '-') {
-				switch (argv[0][1]) { 
-				case 'T':
-					wait = atoi(*++argv);
-					break;
-				case 'c': 
-					if ((tmp = atoi(*++argv))
-					    || *argv[0]=='0') {
-						queryClass = tmp;
-					} else if ((tmp = StringToClass(*argv,
-								       0, NULL)
-						   ) != 0) {
-						queryClass = tmp;
-					} else {
-						printf(
-						  "; invalid class specified\n"
-						       );
-					}
-					break;
-				case 't': 
-					if ((tmp = atoi(*++argv))
-					    || *argv[0]=='0') {
-						queryType = tmp;
-						qtypeSet++;
-					} else if ((tmp = StringToType(*argv,
-								      0, NULL)
-						   ) != 0) {
-						queryType = tmp;
-						qtypeSet++;
-					} else {
-						printf(
-						   "; invalid type specified\n"
-						       );
-						}
-					break;
-				case 'x':
-					if (!qtypeSet) {
-						queryType = T_ANY;
-						qtypeSet++;
-					}
-					if (!(addrc = *++argv)) {
-						printf(
-						       "; no arg for -x?\n"
-						       );
-						break;
-					}
-					addrend = addrc + strlen(addrc);
-					if (*addrend == '.')
-						*addrend = '\0';
-					*domain = '\0';
-					while ((addrbegin = strrchr(addrc,'.'))) {
-						strcat(domain, addrbegin+1);
-						strcat(domain, ".");
-						*addrbegin = '\0';
-					}
-					strcat(domain, addrc);
-					strcat(domain, ".in-addr.arpa.");
-					break;
-				case 'p':
-					if (argv[0][2] != '\0')
-						port = ntohs(atoi(argv[0]+2));
-					else
-						port = htons(atoi(*++argv));
-					break;
-				case 'P':
-					if (argv[0][2] != '\0')
-						strcpy(pingstr, argv[0]+2);
-					else
-						strcpy(pingstr, "ping -s");
-					break;
-				case 'n':
-					if (argv[0][2] != '\0')
-						res.ndots = atoi(argv[0]+2);
-					else
-						res.ndots = atoi(*++argv);
-					break;
-				case 'b': {
-					char *a, *p;
-
-					if (argv[0][2] != '\0')
-						a = argv[0]+2;
-					else
-						a = *++argv;
-					if ((p = strchr(a, ':')) != NULL) {
-						*p++ = '\0';
-						myaddress.sin_port =
-							ntohs(atoi(p));
-					}
-					if (!inet_aton(a,&myaddress.sin_addr)){
-						fprintf(stderr,
-							";; bad -b addr\n");
-						exit(1);
-					}
-				    }
-				    break;
-				case 'k':
-					/* -k keydir:keyname */
-					
-					if (argv[0][2] != '\0')
-						keyfile = argv[0]+2;
-					else
-						keyfile = *++argv;
-
-					keyname = strchr(keyfile, ':');
-					if (keyname == NULL) {
-						fprintf(stderr,
-			     "key option argument should be keydir:keyname\n");
-						exit(1);
-					}
-					*keyname++='\0';
-					break;
-				} /* switch - */
-				continue;
-			} /* if '-'   */
-
-			if ((tmp = StringToType(*argv, -1, NULL)) != -1) { 
-				if ((T_ANY == tmp) && anyflag++) {  
-					queryClass = C_ANY; 	
-					continue; 
-				}
-				if (ns_t_xfr_p(tmp) &&
-				    (tmp == ns_t_axfr ||
-				     (res.options & RES_USEVC) != 0)
-				     ) {
-					res.pfcode = PRF_ZONE;
-					xfr = (ns_type)tmp;
-				} else {
-					queryType = tmp; 
-					qtypeSet++;
-				}
-			} else if ((tmp = StringToClass(*argv, -1, NULL))
-				   != -1) { 
-				queryClass = tmp; 
-			} else {
-				memset(domain, 0, sizeof domain);
-				sprintf(domain,"%s",*argv);
-			}
-		} /* while argv remains */
-
-		/* process key options */
-		if (keyfile) {
-#ifdef PARSE_KEYFILE
-			int i, n1;
-			char buf[BUFSIZ], *p;
-			FILE *fp = NULL;
-			int file_major, file_minor, alg;
-
-			fp = fopen(keyfile, "r");
-			if (fp == NULL) {
-				perror(keyfile);
-				exit(1);
-			}
-			/* Now read the header info from the file. */
-			i = fread(buf, 1, BUFSIZ, fp);
-			if (i < 5) {
-				fclose(fp);
-	                	exit(1);
-	        	}
-			fclose(fp);
-	
-			p = buf;
-	
-			n=strlen(p);		/* get length of strings */
-			n1=strlen("Private-key-format: v");
-			if (n1 > n ||
-			    strncmp(buf, "Private-key-format: v", n1)) {
-				fprintf(stderr, "Invalid key file format\n");
-				exit(1);	/* not a match */
-			}
-			p+=n1;		/* advance pointer */
-			sscanf((char *)p, "%d.%d", &file_major, &file_minor);
-			/* should do some error checking with these someday */
-			while (*p++!='\n');	/* skip to end of line */
-	
-	        	n=strlen(p);		/* get length of strings */
-	        	n1=strlen("Algorithm: ");
-	        	if (n1 > n || strncmp(p, "Algorithm: ", n1)) {
-				fprintf(stderr, "Invalid key file format\n");
-	                	exit(1);	/* not a match */
-			}
-			p+=n1;		/* advance pointer */
-			if (sscanf((char *)p, "%d", &alg)!=1) {
-				fprintf(stderr, "Invalid key file format\n");
-				exit(1);
-			}
-			while (*p++!='\n');	/* skip to end of line */
-	
-	        	n=strlen(p);		/* get length of strings */
-	        	n1=strlen("Key: ");
-	        	if (n1 > n || strncmp(p, "Key: ", n1)) {
-				fprintf(stderr, "Invalid key file format\n");
-				exit(1);	/* not a match */
-			}
-			p+=n1;		/* advance pointer */
-			pp=p;
-			while (*pp++!='\n');	/* skip to end of line,
-						 * terminate it */
-			*--pp='\0';
-	
-			key.data=malloc(1024*sizeof(char));
-			key.len=b64_pton(p, key.data, 1024);
-	
-			strcpy(key.name, keyname);
-			strcpy(key.alg, "HMAC-MD5.SIG-ALG.REG.INT");
-#else
-			/* use the dst* routines to parse the key files
-			 * 
-			 * This requires that both the .key and the .private
-			 * files exist in your cwd, so the keyfile parmeter
-			 * here is assumed to be a path in which the
-			 * K*.{key,private} files exist.
-			 */
-			DST_KEY *dst_key;
-			char cwd[PATH_MAX+1];
-	
-			if (getcwd(cwd, PATH_MAX)==NULL) {
-				perror("unable to get current directory");
-				exit(1);
-			}
-			if (chdir(keyfile)<0) {
-				fprintf(stderr,
-					"unable to chdir to %s: %s\n", keyfile,
-					strerror(errno));
-				exit(1);
-			}
-	
-			dst_init();
-			dst_key = dst_read_key(keyname,
-					       0 /* not used for priv keys */,
-					       KEY_HMAC_MD5, DST_PRIVATE);
-			if (!dst_key) {
-				fprintf(stderr,
-					"dst_read_key: error reading key\n");
-				exit(1);
-			}
-			key.data=malloc(1024*sizeof(char));
-			dst_key_to_buffer(dst_key, key.data, 1024);
-			key.len=dst_key->dk_key_size;
-	
-			strcpy(key.name, keyname);
-			strcpy(key.alg, "HMAC-MD5.SIG-ALG.REG.INT");
-	
-			if (chdir(cwd)<0) {
-				fprintf(stderr, "unable to chdir to %s: %s\n",
-					cwd, strerror(errno));
-				exit(1);
-			}
-#endif
-		}
-
-		if (res.pfcode & 0x80000)
-			printf("; pfcode: %08lx, options: %08lx\n",
-			       res.pfcode, res.options);
-	  
-/*
- * Current env. (after this parse) is to become the
- * new "working" environmnet. Used in conj. with sticky.
- */
-		if (envset) {
-			res_x = res;
-			envset = 0;
-		}
-
-/*
- * Current env. (after this parse) is to become the
- * new default saved environmnet. Save in user specified
- * file if exists else is SAVEENV (== "DiG.env").
- */
-		if (envsave) {
-			afile = (char *) getenv("LOCALDEF");
-			if ((afile &&
-			     ((fp = open(afile,
-					 O_WRONLY|O_CREAT|O_TRUNC,
-					 S_IREAD|S_IWRITE)) > 0))
-			    ||
-			    ((fp = open(SAVEENV,
-					O_WRONLY|O_CREAT|O_TRUNC,
-					S_IREAD|S_IWRITE)) > 0)) {
-				write(fp, (char *)&res, (sizeof res));
-				close(fp);
-			}
-			envsave = 0;
-		}
-
-		if (res.pfcode & RES_PRF_CMD)
-			printf("%s\n", cmd);
-
-		addrflag = anyflag = 0;
-
-/*
- * Find address of server to query. If not dot-notation, then
- * try to resolve domain-name (if so, save and turn off print 
- * options, this domain-query is not the one we want. Restore
- * user options when done.
- * Things get a bit wierd since we need to use resolver to be
- * able to "put the resolver to work".
- */
-
-		srvbuf[0] = 0;
-		srvmsg = defsrv;
-		if (srv != NULL) {
-			struct in_addr addr;
-
-			if (inet_aton(srv, &addr)) {
-				res.nscount = 1;
-				res.nsaddr.sin_addr = addr;
-				srvmsg = strcat(srvbuf, srv);
-			} else {
-				res_t = res;
-				res_ninit(&res);
-				res.pfcode = 0;
-				res.options = RES_DEFAULT;
-				hp = gethostbyname(srv);
-				res = res_t;
-				if (hp == NULL
-				    || hp->h_addr_list == NULL
-				    || *hp->h_addr_list == NULL) {
-					fflush(stdout);
-					fprintf(stderr,
-		"; Bad server: %s -- using default server and timer opts\n",
-						srv);
-					fflush(stderr);
-					srvmsg = defsrv;
-					srv = NULL;
-				} else {
-					u_int32_t **addr;
-
-					res.nscount = 0;
-					for (addr = (u_int32_t**)hp->h_addr_list;
-					     *addr && (res.nscount < MAXNS);
-					     addr++) {
-						res.nsaddr_list[
-							res.nscount++
-						].sin_addr.s_addr = **addr;
-					}
-
-					srvmsg = strcat(srvbuf,srv);
-					strcat(srvbuf, "  ");
-					strcat(srvmsg,
-					       inet_ntoa(res.nsaddr.sin_addr));
-				}
-			}
-			printf("; (%d server%s found)\n",
-			       res.nscount, (res.nscount==1)?"":"s");
-			res.id += res.retry;
-		}
-
-		{
-			int i;
-
-			for (i = 0;  i < res.nscount;  i++) {
-				res.nsaddr_list[i].sin_family = AF_INET;
-				res.nsaddr_list[i].sin_port = port;
-			}
-			res.id += res.retry;
-		}
-
-		if (ns_t_xfr_p(xfr)) {
-			int i;
-
-			for (i = 0; i < res.nscount; i++) {
-				int x;
-
-				if (keyfile)
-					x = printZone(xfr, domain,
-						      &res.nsaddr_list[i],
-						      &key);
-				else
-					x = printZone(xfr, domain,
-						      &res.nsaddr_list[i],
-						      NULL);
-				if (res.pfcode & RES_PRF_STATS) {
-					exectime = time(NULL);
-					printf(";; FROM: %s to SERVER: %s\n",
-					       myhostname,
-					       inet_ntoa(res.nsaddr_list[i]
-							 .sin_addr));
-					printf(";; WHEN: %s", ctime(&exectime));
-				}
-				if (!x)
-					break;	/* success */
-			}
-			fflush(stdout);
-			continue;
-		}
-
-		if (*domain && !qtypeSet) {
-			queryType = T_A;
-			qtypeSet++;
-		}
-		
-		bytes_out = n = res_nmkquery(&res, QUERY, domain,
-					     queryClass, queryType,
-					     NULL, 0, NULL,
-					     packet, sizeof packet);
-		if (n < 0) {
-			fflush(stderr);
-			printf(";; res_nmkquery: buffer too small\n\n");
-			continue;
-		}
-		if (queryType == T_IXFR) {
-			HEADER *hp = (HEADER *) packet;
-			u_char *cpp = packet + bytes_out;
-
-			hp->nscount = htons(1+ntohs(hp->nscount));
-			n = dn_comp(domain, cpp,
-				    (sizeof packet) - (cpp - packet),
-				    NULL, NULL);
-			cpp += n;
-			PUTSHORT(T_SOA, cpp); /* type */
-			PUTSHORT(C_IN, cpp);  /* class */
-			PUTLONG(0, cpp);      /* ttl */
-			PUTSHORT(22, cpp);    /* dlen */
-			*cpp++ = 0;           /* mname */
-			*cpp++ = 0;           /* rname */
-			PUTLONG(ixfr_serial, cpp);
-			PUTLONG(0xDEAD, cpp); /* Refresh */
-			PUTLONG(0xBEEF, cpp); /* Retry */
-			PUTLONG(0xABCD, cpp); /* Expire */
-			PUTLONG(0x1776, cpp); /* Min TTL */
-			bytes_out = n = cpp - packet;
-		};	
-
-		eecode = 0;
-		if (res.pfcode & RES_PRF_HEAD1)
-			fp_resstat(&res, stdout);
-		(void) gettimeofday(&start_time, NULL);
-		if (keyfile)
-			n = res_nsendsigned(&res, packet, n, &key, answer, sizeof answer);
-		else
-			n = res_nsend(&res, packet, n, answer, sizeof answer);
-		if ((bytes_in = n) < 0) {
-			fflush(stdout);
-			n = 0 - n;
-			msg[0]=0;
-			if (keyfile)
-				strcat(msg,";; res_nsendsigned to server ");
-			else
-				strcat(msg,";; res_nsend to server ");
-			strcat(msg,srvmsg);
-			perror(msg);
-			fflush(stderr);
-
-			if (!dofile) {
-				if (eecode)
-					exit(eecode);
-				else
-					exit(9);
-			}
-		}
-		(void) gettimeofday(&end_time, NULL);
-
-		if (res.pfcode & RES_PRF_STATS) {
-			time_t t;
-
-			query_time = difftv(start_time, end_time);
-			printf(";; Total query time: ");
-			prnttime(query_time);
-			putchar('\n');
-			exectime = time(NULL);
-			printf(";; FROM: %s to SERVER: %s\n",
-			       myhostname, srvmsg);
-			printf(";; WHEN: %s", ctime(&exectime));
-			printf(";; MSG SIZE  sent: %d  rcvd: %d\n",
-			       bytes_out, bytes_in);
-		}
-	  
-		fflush(stdout);
-/*
- *   Argh ... not particularly elegant. Should put in *real* ping code.
- *   Would necessitate root priviledges for icmp port though!
- */
-		if (*pingstr) {
-			sprintf(doping,"%s %s 56 3 | tail -3",pingstr,
-				(srv==NULL)?(defsrv+10):srv);
-			system(doping);
-		}
-		putchar('\n');
-
-/*
- * Fairly crude method and low overhead method of keeping two
- * batches started at different sites somewhat synchronized.
- */
-		gettimeofday(&tv2, NULL);
-		delay = (int)(tv2.tv_sec - tv1.tv_sec);
-		if (delay < wait) {
-			sleep(wait - delay);
-		}
-	}
-	return (eecode);
-}
-
-/* Private. */
-
-static void
-Usage() {
-	fputs("\
-usage:  dig [@server] [domain] [q-type] [q-class] {q-opt} {d-opt} [%comment]\n\
-where:	server,\n\
-	domain	are names in the Domain Name System\n\
-	q-class	is one of (in,any,...) [default: in]\n\
-	q-type	is one of (a,any,mx,ns,soa,hinfo,axfr,txt,...) [default: a]\n\
-", stderr);
-	fputs("\
-	q-opt	is one of:\n\
-		-x dot-notation-address	(shortcut to in-addr.arpa lookups)\n\
-		-f file			(batch mode input file name)\n\
-		-T time			(batch mode time delay, per query)\n\
-		-p port			(nameserver is on this port) [53]\n\
-		-b addr[:port]		(bind to this tcp address) [*]\n\
-		-P[ping-string]		(see man page)\n\
-		-t query-type		(synonym for q-type)\n\
-		-c query-class		(synonym for q-class)\n\
-		-k keydir:keyname	(sign the query with this TSIG key)\n\
-		-envsav,-envset		(see man page)\n\
-		-[no]stick		(see man page)\n\
-", stderr);
-	fputs("\
-	d-opt	is of the form ``+keyword=value'' where keyword is one of:\n\
-		[no]debug [no]d2 [no]recurse retry=# time=# [no]ko [no]vc\n\
-		[no]defname [no]search domain=NAME [no]ignore [no]primary\n\
-		[no]aaonly [no]cmd [no]stats [no]Header [no]header\n\
-		[no]ttlid [no]cl [no]qr [no]reply [no]ques [no]answer\n\
-		[no]author [no]addit pfdef pfmin pfset=# pfand=# pfor=#\n\
-", stderr);
-	fputs("\
-notes:	defname and search don't work; use fully-qualified names.\n\
-	this is DiG version " VSTRING "\n\
-	$Id: dig.c,v 8.41 2000/04/20 07:36:04 vixie Exp $\n\
-", stderr);
-}
-
-static int
-SetOption(const char *string) {
-	char option[NAME_LEN], type[NAME_LEN], *ptr;
-	int i;
-
-	i = pickString(string, option, sizeof option);
-	if (i == 0) {
-		fprintf(stderr, ";*** Invalid option: %s\n",  string);
-
-		/* this is ugly, but fixing the caller to behave
-		   properly with an error return value would require a major
-		   cleanup. */
-		exit(9);
-	} 
-   
-	if (strncmp(option, "aa", 2) == 0) {	/* aaonly */
-		res.options |= RES_AAONLY;
-	} else if (strncmp(option, "noaa", 4) == 0) {
-		res.options &= ~RES_AAONLY;
-	} else if (strncmp(option, "deb", 3) == 0) {	/* debug */
-		res.options |= RES_DEBUG;
-	} else if (strncmp(option, "nodeb", 5) == 0) {
-		res.options &= ~(RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "ko", 2) == 0) {	/* keepopen */
-		res.options |= (RES_STAYOPEN | RES_USEVC);
-	} else if (strncmp(option, "noko", 4) == 0) {
-		res.options &= ~RES_STAYOPEN;
-	} else if (strncmp(option, "d2", 2) == 0) {	/* d2 (more debug) */
-		res.options |= (RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "nod2", 4) == 0) {
-		res.options &= ~RES_DEBUG2;
-	} else if (strncmp(option, "def", 3) == 0) {	/* defname */
-		res.options |= RES_DEFNAMES;
-	} else if (strncmp(option, "nodef", 5) == 0) {
-		res.options &= ~RES_DEFNAMES;
-	} else if (strncmp(option, "sea", 3) == 0) {	/* search list */
-		res.options |= RES_DNSRCH;
-	} else if (strncmp(option, "nosea", 5) == 0) {
-		res.options &= ~RES_DNSRCH;
-	} else if (strncmp(option, "do", 2) == 0) {	/* domain */
-		ptr = strchr(option, '=');
-		if (ptr != NULL) {
-			i = pickString(++ptr, res.defdname, sizeof res.defdname);
-			if (i == 0) { /* value's too long or non-existant. This actually
-					 shouldn't happen due to pickString()
-					 above */
-				fprintf(stderr, "*** Invalid domain: %s\n", ptr) ;
-				exit(9); /* see comment at previous call to exit()*/
-			}
-		}
-	} else if (strncmp(option, "ti", 2) == 0) {      /* timeout */
-		ptr = strchr(option, '=');
-		if (ptr != NULL)
-			sscanf(++ptr, "%d", &res.retrans);
-	} else if (strncmp(option, "ret", 3) == 0) {    /* retry */
-		ptr = strchr(option, '=');
-		if (ptr != NULL)
-			sscanf(++ptr, "%d", &res.retry);
-	} else if (strncmp(option, "i", 1) == 0) {	/* ignore */
-		res.options |= RES_IGNTC;
-	} else if (strncmp(option, "noi", 3) == 0) {
-		res.options &= ~RES_IGNTC;
-	} else if (strncmp(option, "pr", 2) == 0) {	/* primary */
-		res.options |= RES_PRIMARY;
-	} else if (strncmp(option, "nop", 3) == 0) {
-		res.options &= ~RES_PRIMARY;
-	} else if (strncmp(option, "rec", 3) == 0) {	/* recurse */
-		res.options |= RES_RECURSE;
-	} else if (strncmp(option, "norec", 5) == 0) {
-		res.options &= ~RES_RECURSE;
-	} else if (strncmp(option, "v", 1) == 0) {	/* vc */
-		res.options |= RES_USEVC;
-	} else if (strncmp(option, "nov", 3) == 0) {
-		res.options &= ~RES_USEVC;
-	} else if (strncmp(option, "pfset", 5) == 0) {
-		ptr = strchr(option, '=');
-		if (ptr != NULL)
-			res.pfcode = xstrtonum(++ptr);
-	} else if (strncmp(option, "pfand", 5) == 0) {
-		ptr = strchr(option, '=');
-		if (ptr != NULL)
-			res.pfcode = res.pfcode & xstrtonum(++ptr);
-	} else if (strncmp(option, "pfor", 4) == 0) {
-		ptr = strchr(option, '=');
-		if (ptr != NULL)
-			res.pfcode |= xstrtonum(++ptr);
-	} else if (strncmp(option, "pfmin", 5) == 0) {
-		res.pfcode = PRF_MIN;
-	} else if (strncmp(option, "pfdef", 5) == 0) {
-		res.pfcode = PRF_DEF;
-	} else if (strncmp(option, "an", 2) == 0) {  /* answer section */
-		res.pfcode |= RES_PRF_ANS;
-	} else if (strncmp(option, "noan", 4) == 0) {
-		res.pfcode &= ~RES_PRF_ANS;
-	} else if (strncmp(option, "qu", 2) == 0) {  /* question section */
-		res.pfcode |= RES_PRF_QUES;
-	} else if (strncmp(option, "noqu", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_QUES;
-	} else if (strncmp(option, "au", 2) == 0) {  /* authority section */
-		res.pfcode |= RES_PRF_AUTH;
-	} else if (strncmp(option, "noau", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_AUTH;
-	} else if (strncmp(option, "ad", 2) == 0) {  /* addition section */
-		res.pfcode |= RES_PRF_ADD;
-	} else if (strncmp(option, "noad", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_ADD;
-	} else if (strncmp(option, "tt", 2) == 0) {  /* TTL & ID */
-		res.pfcode |= RES_PRF_TTLID;
-	} else if (strncmp(option, "nott", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_TTLID;
-	} else if (strncmp(option, "he", 2) == 0) {  /* head flags stats */
-		res.pfcode |= RES_PRF_HEAD2;
-	} else if (strncmp(option, "nohe", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_HEAD2;
-	} else if (strncmp(option, "H", 1) == 0) {  /* header all */
-		res.pfcode |= RES_PRF_HEADX;
-	} else if (strncmp(option, "noH", 3) == 0) {  
-		res.pfcode &= ~(RES_PRF_HEADX);
-	} else if (strncmp(option, "qr", 2) == 0) {  /* query */
-		res.pfcode |= RES_PRF_QUERY;
-	} else if (strncmp(option, "noqr", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_QUERY;
-	} else if (strncmp(option, "rep", 3) == 0) {  /* reply */
-		res.pfcode |= RES_PRF_REPLY;
-	} else if (strncmp(option, "norep", 5) == 0) {  
-		res.pfcode &= ~RES_PRF_REPLY;
-	} else if (strncmp(option, "cm", 2) == 0) {  /* command line */
-		res.pfcode |= RES_PRF_CMD;
-	} else if (strncmp(option, "nocm", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_CMD;
-	} else if (strncmp(option, "cl", 2) == 0) {  /* class mnemonic */
-		res.pfcode |= RES_PRF_CLASS;
-	} else if (strncmp(option, "nocl", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_CLASS;
-	} else if (strncmp(option, "st", 2) == 0) {  /* stats*/
-		res.pfcode |= RES_PRF_STATS;
-	} else if (strncmp(option, "nost", 4) == 0) {  
-		res.pfcode &= ~RES_PRF_STATS;
-	} else {
-		fprintf(stderr, "; *** Invalid option: %s\n",  option);
-		return (ERROR);
-	}
-	res_re_init();
-	return (SUCCESS);
-}
-
-/*
- * Force a reinitialization when the domain is changed.
- */
-static void
-res_re_init() {
-	static char localdomain[] = "LOCALDOMAIN";
-	u_long pfcode = res.pfcode, options = res.options;
-	unsigned ndots = res.ndots;
-	int retrans = res.retrans, retry = res.retry;
-	char *buf;
-
-	/*
-	 * This is ugly but putenv() is more portable than setenv().
-	 */
-	buf = malloc((sizeof localdomain) + strlen(res.defdname) +10/*fuzz*/);
-	sprintf(buf, "%s=%s", localdomain, res.defdname);
-	putenv(buf);	/* keeps the argument, so we won't free it */
-	res_ninit(&res);
-	res.pfcode = pfcode;
-	res.options = options;
-	res.ndots = ndots;
-	res.retrans = retrans;
-	res.retry = retry;
-}
-
-/*
- * convert char string (decimal, octal, or hex) to integer
- */
-static int
-xstrtonum(char *p) {
-	int v = 0;
-	int i;
-	int b = 10;
-	int flag = 0;
-	while (*p != 0) {
-		if (!flag++)
-			if (*p == '0') {
-				b = 8; p++;
-				continue;
-			}
-		if (isupper(*p))
-			*p = tolower(*p);
-		if (*p == 'x') {
-			b = 16; p++;
-			continue;
-		}
-		if (isdigit(*p)) {
-			i = *p - '0';
-		} else if (isxdigit(*p)) {
-			i = *p - 'a' + 10;
-		} else {
-			fprintf(stderr,
-				"; *** Bad char in numeric string..ignored\n");
-			i = -1;
-		}
-		if (i >= b) {
-			fprintf(stderr,
-				"; *** Bad char in numeric string..ignored\n");
-			i = -1;
-		}
-		if (i >= 0)
-			v = v * b + i;
-		p++;
-	}
-	return (v);
-}
-
-typedef union {
-	HEADER qb1;
-	u_char qb2[PACKETSZ];
-} querybuf;
-
-static int
-printZone(ns_type xfr, const char *zone, const struct sockaddr_in *sin,
-	  ns_tsig_key *key)
-{
-	static u_char *answer = NULL;
-	static int answerLen = 0;
-
-	querybuf buf;
-	HEADER *headerPtr;
-	int msglen, amtToRead, numRead, result = 0, sockFD, len;
-	int count, type, class, rlen, done, n;
-	int numAnswers = 0, numRecords = 0, soacnt = 0;
-	u_char *cp, tmp[NS_INT16SZ];
-	char dname[2][NS_MAXDNAME], file[NAME_LEN];
-	enum { NO_ERRORS, ERR_READING_LEN, ERR_READING_MSG, ERR_PRINTING }
-		error = NO_ERRORS;
-	pid_t zpid;
-	u_char *newmsg;
-	int newmsglen;
-	ns_tcp_tsig_state tsig_state;
-	int tsig_ret, tsig_required, tsig_present;
-
-	switch (xfr) {
-	case ns_t_axfr:
-	case ns_t_zxfr:
-		break;
-	default:
-		fprintf(stderr, ";; %s - transfer type not supported\n",
-			p_type(xfr));
-		return (ERROR);
-	}
-
-	/*
-	 *  Create a query packet for the requested zone name.
-	 */
-	msglen = res_nmkquery(&res, ns_o_query, zone,
-			      queryClass, ns_t_axfr, NULL,
-			      0, 0, buf.qb2, sizeof buf);
-	if (msglen < 0) {
-		if (res.options & RES_DEBUG)
-			fprintf(stderr, ";; res_nmkquery failed\n");
-		return (ERROR);
-	}
-
-	/*
-	 * Sign the message if a key was sent
-	 */
-	if (key == NULL) {
-		newmsg = (u_char *)&buf;
-		newmsglen = msglen;
-	} else {
-		DST_KEY *dstkey;
-		int bufsize, siglen;
-		u_char sig[64];
-		int ret;
-		
-		/* ns_sign() also calls dst_init(), but there is no harm
-		 * doing it twice
-		 */
-		dst_init();
-		
-		bufsize = msglen + 1024;
-		newmsg = (u_char *) malloc(bufsize);
-		if (newmsg == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-		memcpy(newmsg, (u_char *)&buf, msglen);
-		newmsglen = msglen;
-		
-		if (strcmp(key->alg, NS_TSIG_ALG_HMAC_MD5) != 0)
-			dstkey = NULL;
-		else
-			dstkey = dst_buffer_to_key(key->name, KEY_HMAC_MD5,
-							NS_KEY_TYPE_AUTH_ONLY,
-							NS_KEY_PROT_ANY,
-							key->data, key->len);
-		if (dstkey == NULL) {
-			errno = EINVAL;
-			if (key)
-				free(newmsg);
-			return (-1);
-		}
-		
-		siglen = sizeof(sig);
-/* newmsglen++; */
-		ret = ns_sign(newmsg, &newmsglen, bufsize, NOERROR, dstkey, NULL, 0,
-		      sig, &siglen, 0);
-		if (ret < 0) {
-			if (key)
-				free (newmsg);
-			if (ret == NS_TSIG_ERROR_NO_SPACE)
-				errno  = EMSGSIZE;
-			else if (ret == -1)
-				errno  = EINVAL;
-			return (ret);
-		}
-		ns_verify_tcp_init(dstkey, sig, siglen, &tsig_state);
-	}
-
-	/*
-	 *  Set up a virtual circuit to the server.
-	 */
-	if ((sockFD = socket(sin->sin_family, SOCK_STREAM, 0)) < 0) {
-		int e = errno;
-
-		perror(";; socket");
-		return (e);
-	}
-	if (bind(sockFD, (struct sockaddr *)&myaddress, sizeof myaddress) < 0){
-		int e = errno;
-
-		fprintf(stderr, ";; bind(%s:%u): %s\n",
-			inet_ntoa(myaddress.sin_addr),
-			ntohs(myaddress.sin_port),
-			strerror(e));
-		(void) close(sockFD);
-		sockFD = -1;
-		return (e);
-	}
-	if (connect(sockFD, (struct sockaddr *)sin, sizeof *sin) < 0) {
-		int e = errno;
-
-		perror(";; connect");
-		(void) close(sockFD);
-		sockFD = -1;
-		return (e);
-	}
-
-	/*
-	 * Send length & message for zone transfer
-	 */
-
-	ns_put16(newmsglen, tmp);
-        if (write(sockFD, (char *)tmp, NS_INT16SZ) != NS_INT16SZ ||
-            write(sockFD, (char *)newmsg, newmsglen) != newmsglen) {
-		int e = errno;
-		if (key)
-			free (newmsg);
-		perror(";; write");
-		(void) close(sockFD);
-		sockFD = -1;
-		return (e);
-	}
-
-	/*
-	 * If we're compressing, push a gzip into the pipeline.
-	 */
-	if (xfr == ns_t_zxfr) {
-		enum { rd = 0, wr = 1 };
-		int z[2];
-
-		if (pipe(z) < 0) {
-			int e = errno;
-			if (key)
-				free (newmsg);
-
-			perror(";; pipe");
-			(void) close(sockFD);
-			sockFD = -1;
-			return (e);
-		}
-		zpid = vfork();
-		if (zpid < 0) {
-			int e = errno;
-			if (key)
-				free (newmsg);
-
-			perror(";; fork");
-			(void) close(sockFD);
-			sockFD = -1;
-			return (e);
-		} else if (zpid == 0) {
-			/* Child. */
-			(void) close(z[rd]);
-			(void) dup2(sockFD, STDIN_FILENO);
-			(void) close(sockFD);
-			(void) dup2(z[wr], STDOUT_FILENO);
-			(void) close(z[wr]);
-			execlp("gzip", "gzip", "-d", "-v", NULL);
-			perror(";; child: execlp(gunzip)");
-			_exit(1);
-		}
-		/* Parent. */
-		(void) close(z[wr]);
-		(void) dup2(z[rd], sockFD);
-		(void) close(z[rd]);
-	}
-
-	dname[0][0] = '\0';
-	for (done = 0; !done; (void)NULL) {
-		/*
-		 * Read the length of the response.
-		 */
-
-		cp = tmp;
-		amtToRead = INT16SZ;
-		while (amtToRead > 0 &&
-		   (numRead = read(sockFD, cp, amtToRead)) > 0) {
-			cp += numRead;
-			amtToRead -= numRead;
-		}
-		if (numRead <= 0) {
-			error = ERR_READING_LEN;
-			break;
-		}
-
-		len = ns_get16(tmp);
-		if (len == 0)
-			break;	/* nothing left to read */
-
-		/*
-		 * The server sent too much data to fit the existing buffer --
-		 * allocate a new one.
-		 */
-		if (len > answerLen) {
-			if (answerLen != 0)
-				free(answer);
-			answerLen = len;
-			answer = (u_char *)Malloc(answerLen);
-		}
-
-		/*
-		 * Read the response.
-		 */
-
-		amtToRead = len;
-		cp = answer;
-		while (amtToRead > 0 &&
-		       (numRead = read(sockFD, cp, amtToRead)) > 0) {
-			cp += numRead;
-			amtToRead -= numRead;
-		}
-		if (numRead <= 0) {
-			error = ERR_READING_MSG;
-			break;
-		}
-
-		result = print_axfr(stdout, answer, len);
-		if (result != 0) {
-			error = ERR_PRINTING;
-			break;
-		}
-		numRecords += htons(((HEADER *)answer)->ancount);
-		numAnswers++;
-
-		/* Header. */
-		cp = answer + HFIXEDSZ;
-		/* Question. */
-		for (count = ntohs(((HEADER *)answer)->qdcount);	
-		     count > 0;
-		     count--) {
-			n = dn_skipname(cp, answer + len);
-			if (n < 0) {
-				error = ERR_PRINTING;
-				done++;
-				break;
-			}
-			cp += n + QFIXEDSZ;
-			if (cp > answer + len) {
-				error = ERR_PRINTING;
-				done++;
-				break;
-			}
-		}
-		/* Answer. */
-		for (count = ntohs(((HEADER *)answer)->ancount);
-		     count > 0 && !done;
-		     count--) {
-			n = dn_expand(answer, answer + len, cp,
-				      dname[soacnt], sizeof dname[0]);
-			if (n < 0) {
-				error = ERR_PRINTING;
-				done++;
-				break;
-			}
-			cp += n;
-			if (cp + 3 * INT16SZ + INT32SZ > answer + len) {
-				error = ERR_PRINTING;
-				done++;
-				break;
-			}
-			GETSHORT(type, cp);
-			GETSHORT(class, cp);
-			cp += INT32SZ;	/* ttl */
-			GETSHORT(rlen, cp);
-			cp += rlen;
-			if (cp > answer + len) {
-				error = ERR_PRINTING;
-				done++;
-				break;
-			}
-			if (type == T_SOA && soacnt++ &&
-			    ns_samename(dname[0], dname[1]) == 1) {
-				done++;
-				break;
-			}
-		}
-
-		/*
-		 * Verify the TSIG
-		 */
-
-		if (key) {
-			if (ns_find_tsig(answer, answer + len) != NULL)
-				tsig_present = 1;
-			else
-				tsig_present = 0;
-			if (numAnswers == 1 || soacnt > 1)
-				tsig_required = 1;
-			else
-				tsig_required = 0;
-			tsig_ret = ns_verify_tcp(answer, &len, &tsig_state,
-						 tsig_required);
-			if (tsig_ret == 0) {
-				if (tsig_present)
-					printf("; TSIG ok\n");
-			}
-			else
-				printf("; TSIG invalid\n");
-		}
-
-	}
-
-	printf(";; Received %d answer%s (%d record%s).\n",
-	       numAnswers, (numAnswers != 1) ? "s" : "",
-	       numRecords, (numRecords != 1) ? "s" : "");
-
-	(void) close(sockFD);
-	sockFD = -1;
-
-	/*
-	 * If we were uncompressing, reap the uncompressor.
-	 */
-	if (xfr == ns_t_zxfr) {
-		pid_t pid;
-		int status;
-
-		pid = wait(&status);
-		if (pid < 0) {
-			int e = errno;
-
-			perror(";; wait");
-			return (e);
-		}
-		if (pid != zpid) {
-			fprintf(stderr, ";; wrong pid (%lu != %lu)\n",
-				(u_long)pid, (u_long)zpid);
-			return (ERROR);
-		}
-		printf(";; pid %lu: exit %d, signal %d, core %c\n",
-		       pid, WEXITSTATUS(status),
-		       WIFSIGNALED(status) ? WTERMSIG(status) : 0,
-		       WCOREDUMP(status) ? 't' : 'f');
-	}
-
-	/* XXX This should probably happen sooner than here */
-	if (key)
-		free (newmsg);
-
-	switch (error) {
-	case NO_ERRORS:
-		return (0);
-
-	case ERR_READING_LEN:
-		return (EMSGSIZE);
-
-	case ERR_PRINTING:
-		return (result);
-
-	case ERR_READING_MSG:
-		return (EMSGSIZE);
-
-	default:
-		return (EFAULT);
-	}
-}
-
-static int
-print_axfr(FILE *file, const u_char *msg, size_t msglen) {
-	ns_msg handle;
-
-	if (ns_initparse(msg, msglen, &handle) < 0) {
-		fprintf(file, ";; ns_initparse: %s\n", strerror(errno));
-		return (ns_r_formerr);
-	}
-	if (ns_msg_getflag(handle, ns_f_rcode) != ns_r_noerror)
-		return (ns_msg_getflag(handle, ns_f_rcode));
-
-	/*
-	 * We are looking for info from answer resource records.
-	 * If there aren't any, return with an error. We assume
-	 * there aren't any question records.
-	 */
-	if (ns_msg_count(handle, ns_s_an) == 0)
-		return (NO_INFO);
-
-#ifdef PROTOCOLDEBUG
-	printf(";;; (message of %d octets has %d answers)\n",
-	       msglen, ns_msg_count(handle, ns_s_an));
-#endif
-	for (;;) {
-		static char origin[NS_MAXDNAME], name_ctx[NS_MAXDNAME];
-		const char *name;
-		char buf[2048];		/* XXX need to malloc/realloc. */
-		ns_rr rr;
-
-		if (ns_parserr(&handle, ns_s_an, -1, &rr)) {
-			if (errno != ENODEV) {
-				fprintf(file, ";; ns_parserr: %s\n",
-					strerror(errno));
-				return (FORMERR);
-			}
-			break;
-		}
-		name = ns_rr_name(rr);
-		if (origin[0] == '\0' && name[0] != '\0') {
-			if (strcmp(name, ".") != 0)
-				strcpy(origin, name);
-			fprintf(file, "$ORIGIN %s.\n", origin);
-			if (strcmp(name, ".") == 0)
-				strcpy(origin, name);
-			strcpy(name_ctx, "@");
-		}
-		if (ns_sprintrr(&handle, &rr, name_ctx, origin,
-				buf, sizeof buf) < 0) {
-			fprintf(file, ";; ns_sprintrr: %s\n", strerror(errno));
-			return (FORMERR);
-		}
-		strcpy(name_ctx, name);
-		fputs(buf, file);
-		fputc('\n', file);
-	}
-	return (SUCCESS);
-}
-
-static struct timeval
-difftv(struct timeval a, struct timeval b) {
-	static struct timeval diff;
-
-	diff.tv_sec = b.tv_sec - a.tv_sec;
-	if ((diff.tv_usec = b.tv_usec - a.tv_usec) < 0) {
-		diff.tv_sec--;
-		diff.tv_usec += 1000000;
-	}
-	return (diff);
-}
-
-static void
-prnttime(struct timeval t) {
-	printf("%lu msec", (u_long)(t.tv_sec * 1000 + (t.tv_usec / 1000)));
-}
-
-/*
- * Take arguments appearing in simple string (from file or command line)
- * place in char**.
- */
-static void
-stackarg(char *l, char **y) {
-	int done = 0;
-
-	while (!done) {
-		switch (*l) {
-		case '\t':
-		case ' ':
-			l++;
-			break;
-		case '\0':
-		case '\n':
-			done++;
-			*y = NULL;
-			break;
-		default:
-			*y++ = l;
-			while (!isspace(*l))
-				l++;
-			if (*l == '\n')
-				done++;
-			*l++ = '\0';
-			*y = NULL;
-		}
-	}
-}
diff --git a/contrib/bind/bin/dnskeygen/Makefile b/contrib/bind/bin/dnskeygen/Makefile
deleted file mode 100644
index bea85117a768f..0000000000000
--- a/contrib/bind/bin/dnskeygen/Makefile
+++ /dev/null
@@ -1,85 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 1.5 1999/08/08 17:51:01 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-AR= ar cru
-INSTALL= install
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-PS=ps
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= dnskeygen
-SRCS= dnskeygen.c
-OBJS= dnskeygen.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTEXEC}:
-	mkdir -p ${DESTDIR}${DESTEXEC}
-
-install: ${DESTDIR}${DESTEXEC} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTEXEC}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags ${SRCS} *.h
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/dnskeygen/dnskeygen.c b/contrib/bind/bin/dnskeygen/dnskeygen.c
deleted file mode 100644
index c30eae748f70b..0000000000000
--- a/contrib/bind/bin/dnskeygen/dnskeygen.c
+++ /dev/null
@@ -1,318 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: dnskeygen.c,v 1.9 1999/10/13 16:38:59 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Portions Copyright (c) 1995-1999 by TISLabs at Network Associates, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND NETWORK ASSOCIATES
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <stdio.h>
-#include <ctype.h>
-#include <stdlib.h>
-#include <unistd.h>
-#include <string.h>
-#include "arpa/nameser.h"
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#define PRINT_SUPPORTED 2
-
-static void usage(char *str, int full);
-
-static short dsa_sizes[] = {512, 576, 640, 704, 768, 832, 896, 960, 1024, 0};
-static char *prog;
-
-int
-main(int argc, char **argv) {
-	DST_KEY *pubkey;
-	char	*name=NULL;
-	int      ch;
-	char	 str[128];
-	int	 alg = 0;
-	int	 zone_key = 0, user_key = 0, end_key = 0, key_type = 0;
-	int	 size = -1, exp = 0;
-	int	 no_auth = 0, no_conf = 0;
-	int	 sign_val = 0, flags = 0, protocol = -1;
-	int      i, err = 0, n;
-	extern char *optarg;
-	char   array[1024];
-
-	dst_init();
-	if ((prog = strrchr(argv[0],'/')) == NULL)
-		prog = strdup(argv[0]);
-	else
-		prog = strdup(++prog);
-
-/* process input arguments */
-	while ((ch = getopt(argc, argv, "achiuzn:s:p:D:H:R:F"))!= -1) {
-	    switch (ch) {
-		case 'a':
-			no_auth = NS_KEY_NO_AUTH;
-			break;
-		case 'c':
-			no_conf = NS_KEY_NO_CONF;
-			break;
-		case 'F':
-			exp=1;
-			break;
-		case 'n':
-			if (optarg)
-				name = strdup(optarg);
-			else
-				usage("-n not followed by name", 0);
-			i = strlen(name);
-			if (name[i-1] != '.') {
-				printf("** Adding dot to the name to make it"
-				       " fully qualified domain name**\n");
-				free(name);
-				name = malloc(i+2);
-				strcpy(name, optarg);
-				strcat(name, ".");
-			}
-			break;
-		case 'p':
-			if (optarg && isdigit(optarg[0]))
-				protocol = atoi(optarg);
-			else
-				usage("-p flag not followed by a number", 0);
-			break;
-		case 's':
-			/* Default: not signatory key */
-			if (optarg && isdigit(optarg[0]))
-				sign_val = (int) atoi(optarg);
-			else
-				usage("-s flag requires a value",0);
-			break;
-		case 'h':
-			end_key = NS_KEY_NAME_ENTITY;
-			key_type++;
-			break;
-		case 'u' :
-			user_key = NS_KEY_NAME_USER;
-			key_type++;
-			break ;
-		case 'z':
-			zone_key = NS_KEY_NAME_ZONE;
-			key_type++;
-			break;
-		case 'H':
-			if (optarg && isdigit(optarg[0]))
-				size = (int) atoi(optarg);
-			else
-				usage("-H flag requires a size",0);
-			if (alg != 0) 
-				usage("Only ONE alg can be specified", 1);
-			alg = KEY_HMAC_MD5;
-			if (!dst_check_algorithm(alg)) 
-				usage("Algorithm HMAC-MD5 not available", 
-				      PRINT_SUPPORTED);
-			break;
-		case 'R':
-			if (optarg && isdigit(optarg[0]))
-				size = (int) atoi(optarg);
-			else
-				usage("-R flag requires a size",0);
-			if (alg != 0) 
-				usage("Only ONE alg can be specified", 1);
-			alg = NS_ALG_MD5RSA;
-			if (!dst_check_algorithm(alg)) 
-				usage("Algorithm RSA not available", 
-				      PRINT_SUPPORTED);
-			break;
-		case 'D':
-			if (optarg && isdigit(optarg[0]))
-				size = (int) atoi(optarg);
-			else
-				usage("-D flag requires a size", 0);
-			if (alg != 0) 
-				usage("Only ONE alg can be specified", 1);
-			alg = NS_ALG_DSS;
-			if (dst_check_algorithm(alg) == 0) 
-				usage("Algorithm DSS not available",
-				      PRINT_SUPPORTED);
-			break;
-		default:
-		       err++;
-		} /* switch */
-	}	/* while (getopt) */
-
-	/*
-	 * Command line parsed make sure required parameters are present
-	 */
-	if (name == NULL)
-		usage("No key name specified -n <name>", 1);
-
-	if (alg == 0)
-		usage("No algorithm specififed -{DHR}", 1);
-
-	if (key_type == 0)
-		usage("Key type -{zhu} must be specified", 1);
-	else if (key_type > 1)
-		usage("Only one key type -{zhu} must be specified", 1);
-
-	if (alg == NS_ALG_DSS)
-		no_conf = NS_KEY_NO_CONF; /* dss keys can not encrypt */
-
-	if (protocol == -1) {
-		if (zone_key || end_key)
-			protocol = NS_KEY_PROT_DNSSEC;
-		else
-			protocol = NS_KEY_PROT_EMAIL;
-	}
-	if (protocol < 0 || protocol > 255)
-		usage("Protocol value out of range [0..255]", 0);
-
-	if (sign_val < 0 || sign_val > 15) {
-		sprintf(str, "%s: Signatory value %d out of range[0..15]\n",
-			prog, sign_val);
-		usage(str, 0);
-	}
-	/* if any of bits 321 is set bit 0 can not be set*/
-	if (sign_val & 0xe)
-		sign_val &= 0xe;
-
-	/* if a zone key make sure at least one of the signer flags is set  */
-	if ((protocol == NS_KEY_PROT_DNSSEC) && (sign_val == 0))
-		sign_val = 0x01;
-
-	if (no_auth && no_conf) { /* null key specified */
-		if (sign_val > 0)
-			sign_val = 0x0; /* null key can not sign */
-		if (size > 0)
-			size = 0;       /* null key must have size 0 */
-	}
-
-	if (size > 0) {
-		if (alg == NS_ALG_MD5RSA){
-			if (size < 512 || size > 4096)
-				usage("Size out of range", 1);
-		}
-		else if (exp)
-			usage("-F can only be specified with -R", 0);
-		if (alg == NS_ALG_DSS) {
-			for (i = 0; dsa_sizes[i]; i++)
-				if (size <= dsa_sizes[i])
-					break;
-			if (size != dsa_sizes[i])
-				usage("Invalid DSS key size", 1);
-		}
-	}
-	else if (size < 0)
-		usage("No size specified", 0);
-
-	if (err)
-		usage("errors encountered/unknown flag", 1);
-
-	flags = no_conf | no_auth | end_key | user_key | zone_key | sign_val;
-
-/* process defaults */
-#ifdef WARN_NONZONE_SIGNER
-	if (signer && (user_key | end_key))
-		printf("Warning: User/End  key is allowed to sign\n");
-#endif
-
-	/* create a public/private key pair */
-	if (alg == NS_ALG_MD5RSA)
-		printf("Generating %d bit RSA Key for %s\n\n",size, name);
-	else if (alg == NS_ALG_DSS)
-		printf("Generating %d bit DSS Key for %s\n\n",size, name);
-	else if (alg == KEY_HMAC_MD5) 
-		printf("Generating %d bit HMAC-MD5 Key for %s\n\n",
-		       size, name);
-
-	/* Make the key
-	 * dst_generate_key_pair will place result in files that it
-	 * knows about K<name><foot>.public and K<name><foot>.private
-	 */
-	pubkey = dst_generate_key(name, size, exp, flags, protocol, alg);
-
-	if (pubkey == NULL) {
-		printf("Failed generating key for %s\n", name);
-		exit(12);
-	}
-
-	if (dst_write_key(pubkey, DST_PRIVATE) < 0) {
-		printf ("Failed to write private key for %s %d %d\n",
-			name, pubkey->dk_id, pubkey->dk_alg);
-		exit(12); 
-	}
-
-	if (dst_write_key(pubkey, DST_PUBLIC) <= 0) {
-		if (access(name, F_OK))
-			printf("Not allowed to overwrite existing file\n");
-		else
-			printf("Failed to write public key for %s %d %d\n",
-			       name, pubkey->dk_id, pubkey->dk_alg);
-		exit(12);
-	}
-
-	printf("Generated %d bit Key for %s id=%d alg=%d flags=%d\n\n",
-	       size, name, pubkey->dk_id, pubkey->dk_alg,
-	       pubkey->dk_flags);
-	exit(0);
-}
-
-static void
-usage(char *str, int flag){
-	int i;
-	printf ("\nNo key generated\n");
-	if (*str != '\0')
-		printf("Usage:%s: %s\n",prog, str);
-	printf("Usage:%s -{DHR} <size> [-F] -{zhu} [-ac]  [-p <no>]"
-	       " [-s <no>] -n name\n", prog);
-	if (flag == 0)
-		exit(2);
-	printf("\t-D generate DSA/DSS KEY: size must be one of following:\n");
-	printf("\t\t");
-	for(i = 0; dsa_sizes[i] > 0; i++)
-		printf(" %d,", dsa_sizes[i]);
-	printf("\n");
-	printf("\t-H generate HMAC-MD5 KEY: size in the range [1..512]:\n");
-	printf("\t-R generate RSA KEY: size in the range [512..4096]\n");
-	printf("\t-F RSA KEYS only: use large exponent\n");
-
-	printf("\t-z Zone key \n");
-	printf("\t-h Host/Entity key \n");
-	printf("\t-u User key \n");
-
-	printf("\t-a Key CANNOT be used for authentication\n");
-	printf("\t-c Key CANNOT be used for encryption\n");
-
-	printf("\t-p Set protocol field to <no>\n");
-	printf("\t\t default: 2 (email) for Host keys, 3 (dnssec) for all others\n");
-	printf("\t-s Strength value this key signs DNS records with\n");
-	printf("\t\t default: 1 for Zone keys, 0 for all others\n");
-	printf("\t-n name: the owner of the key\n");
-
-	if (flag == PRINT_SUPPORTED) {
-		printf("Available algorithms are:");
-		if (dst_check_algorithm(NS_ALG_MD5RSA) == 1) 
-			printf(" RSA");
-		if (dst_check_algorithm(NS_ALG_DSS) == 1) 
-			printf(" DSS");
-		if (dst_check_algorithm(KEY_HMAC_MD5) == 1) 
-			printf(" HMAC-MD5");
-		printf("\n");
-	}
-
-	exit (-3);
-}
-
-
diff --git a/contrib/bind/bin/dnsquery/Makefile b/contrib/bind/bin/dnsquery/Makefile
deleted file mode 100644
index a6437029836cc..0000000000000
--- a/contrib/bind/bin/dnsquery/Makefile
+++ /dev/null
@@ -1,84 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.24 1999/08/08 17:51:01 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= dnsquery
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags *.[ch]
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/host/Makefile b/contrib/bind/bin/host/Makefile
deleted file mode 100644
index f121ab7730e76..0000000000000
--- a/contrib/bind/bin/host/Makefile
+++ /dev/null
@@ -1,84 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.24 1999/08/08 17:51:01 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= host
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags *.[ch]
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/host/host.c b/contrib/bind/bin/host/host.c
deleted file mode 100644
index 1a66b8b754df0..0000000000000
--- a/contrib/bind/bin/host/host.c
+++ /dev/null
@@ -1,1954 +0,0 @@
-#ifndef lint
-static const char rcsid[] = "$Id: host.c,v 8.36 2000/01/25 00:20:21 cyarnell Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char copyright[] =
-"@(#) Copyright (c) 1986 Regents of the University of California.\n\
- Portions Copyright (c) 1993 Digital Equipment Corporation.\n\
- Portions Copyright (c) 1996-1999 Internet Software Consortium.\n\
- All rights reserved.\n";
-#endif /* not lint */
-
-/*
- * Actually, this program is from Rutgers University, however it is 
- * based on nslookup and other pieces of named tools, so it needs
- * the above copyright notices.
- */
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <memory.h>
-#include <errno.h>
-#include <sys/stat.h>
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-/* Global. */
-
-#define SIG_RDATA_BY_NAME	18
-#define NS_HEADERDATA_SIZE 10
-
-#define NUMNS		8
-#define NUMNSADDR	16
-#define NUMMX		50
-#define NUMRR		127   /* max rr's per node to verify signatures for */
-
-#define SUCCESS		0
-#define TIME_OUT	-1
-#define NO_INFO 	-2
-#define ERROR 		-3
-#define NONAUTH 	-4
-
-#define MY_PACKETSZ    64*1024  /* need this to hold tcp answers */
-
-typedef union {
-	HEADER	qb1;
-	u_char	qb2[MY_PACKETSZ];
-} querybuf;
-
-#define SD_RR        1
-#define SD_SIG       2
-#define SD_BADSIG    4
-
-typedef struct {
-	u_char data[MY_PACKETSZ];
-	size_t len;
-} rrstruct;
-
-static char		chase_domain[NS_MAXDNAME];
-static int		chase_class;
-static int		chase_type;
-static char		chase_sigorigttl[NS_INT32SZ];
-static rrstruct		chase_rr[NUMRR];
-static int		chase_rr_num;
-static char		chase_lastgoodkey[NS_MAXDNAME];
-static char		chase_signer[NS_MAXDNAME];
-static u_char		chase_sigrdata[MY_PACKETSZ];
-static size_t		chase_sigrdata_len;
-static u_char		chase_signature[MY_PACKETSZ];
-static size_t		chase_signature_len;
-static int		chase_step;
-static int		sigchase;
-
-static char		cnamebuf[NS_MAXDNAME];
-static u_char		hostbuf[NS_MAXDNAME];
-
-static int		sockFD;
-static FILE		*filePtr;
-
-static struct __res_state  res, orig;
-static char		*cname = NULL;
-static const char	*progname = "amnesia";
-static int		getclass = ns_c_in, verbose = 0, list = 0;
-static int		server_specified = 0;
-static int		gettype = 0;
-static char		getdomain[NS_MAXDNAME];
-
-/* Forward. */
-
-static int		parsetype(const char *s);
-static int		parseclass(const char *s);
-static void		printanswer(const struct hostent *hp);
-static void		hperror(int errnum);
-static int		addrinfo(struct in_addr addr);
-static int		gethostinfo(char *name);
-static int		getdomaininfo(const char *name, const char *domain);
-static int		getinfo(const char *name, const char *domain,
-				int type);
-static int		printinfo(const querybuf *answer, const u_char *eom,
-				  int filter, int isls);
-static const u_char *	pr_rr(const u_char *cp, const u_char *msg, FILE *file,
-			      int filter);
-static const char *	pr_type(int type);
-static const char *	pr_class(int class);
-static const u_char *	pr_cdname(const u_char *cp, const u_char *msg,
-				  char *name, int namelen);
-static int		ListHosts(char *namePtr, int queryType);
-static const char *	DecodeError(int result);
-
-static void
-usage(const char *msg) {
-	fprintf(stderr, "%s: usage error (%s)\n", progname, msg);
-	fprintf(stderr, "\
-Usage: %s [-adlrwv] [-t querytype] [-c class] host [server]\n\
-\t-a is equivalent to '-v -t *'\n\
-\t-c class to look for non-Internet data\n\
-\t-d to turn on debugging output\n\
-\t-l to turn on 'list mode'\n\
-\t-r to disable recursive processing\n\
-\t-s recursively chase signature found in answers\n\
-\t-t querytype to look for a specific type of information\n\
-\t-v for verbose output\n\
-\t-w to wait forever until reply\n\
-", progname);
-	exit(1);
-}
-
-/* Public. */
-
-int
-main(int argc, char **argv) {
-	struct in_addr addr;
-	struct hostent *hp;
-	char *s;
-	int inverse = 0, waitmode = 0;
-	int ncnames, ch;
-	int nkeychains, i;
-
-	dst_init();
-
-	if ((progname = strrchr(argv[0], '/')) == NULL)
-		progname = argv[0];
-	else
-		progname++;
-	res_ninit(&res);
-	res.retrans = 5;
-	while ((ch = getopt(argc, argv, "ac:dlrst:vw")) != -1) {
-		switch (ch) {
-		case 'a':
-			verbose = 1;
-			gettype = ns_t_any;
-			break;
-		case 'c':
-			getclass = parseclass(optarg);
-			break;
-		case 'd':
-			res.options |= RES_DEBUG;
-			break;
-		case 'l':
-			list = 1;
-			break;
-		case 'r':
-			res.options &= ~RES_RECURSE;
-			break;
-		case 's':
-			sigchase = 1;
-			break;
-		case 't':
-			gettype = parsetype(optarg);
-			break;
-		case 'v':
-			verbose = 1;
-			break;
-		case 'w':
-			res.retry = 1;
-			res.retrans = 15;
-			waitmode = 1;
-			break;
-		default:
-			usage("unrecogized switch");
-			/*NOTREACHED*/
-		}
-	}
-	if ((gettype == 0) && (sigchase)) {
-		if (verbose)
-			printf ("Forcing `-t a' for signature trace.\n");
-		gettype = ns_t_a;
-	}
-	argc -= optind;
-	argv += optind;
-	if (argc < 1)
-		usage("missing host argument");
-	strncpy(getdomain, *argv++, NS_MAXDNAME);
-	getdomain[NS_MAXDNAME-1] = 0;
-	argc--;
-	if (argc > 1)
-		usage("extra undefined arguments");
-	if (argc == 1) {
-		s = *argv++;
-		argc--;
-		server_specified++;
-		
-		if (!inet_aton(s, &addr)) {
-			hp = gethostbyname(s);
-			if (hp == NULL) {
-				fprintf(stderr,
-					"Error in looking up server name:\n");
-				hperror(res.res_h_errno);
-				exit(1);
-			}
-			memcpy(&res.nsaddr.sin_addr, hp->h_addr, NS_INADDRSZ);
-			printf("Using domain server:\n");
-			printanswer(hp);
-		} else {
-			res.nsaddr.sin_family = AF_INET;
-			res.nsaddr.sin_addr = addr;
-			res.nsaddr.sin_port = htons(NAMESERVER_PORT);
-			printf("Using domain server %s:\n",
-			       inet_ntoa(res.nsaddr.sin_addr));
-		}
-		res.nscount = 1;
-		res.retry = 2;
-	}
-	if (strcmp(getdomain, ".") == 0 || !inet_aton(getdomain, &addr))
-		addr.s_addr = INADDR_NONE;
-	hp = NULL;
-	res.res_h_errno = TRY_AGAIN;
-/*
- * We handle default domains ourselves, thank you.
- */
-	res.options &= ~RES_DEFNAMES;
-
-        if (list)
-		exit(ListHosts(getdomain, gettype ? gettype : ns_t_a));
-	ncnames = 5; nkeychains = 18;
-	while (hp == NULL && res.res_h_errno == TRY_AGAIN) {
-		if (addr.s_addr == INADDR_NONE) {
-			cname = NULL;
-			hp = (struct hostent *)gethostinfo(getdomain);
-			getdomain[0] = 0; /* clear this query */
-			if (sigchase && (chase_step & SD_RR)) {
-				if (nkeychains-- == 0) {
-					printf("Too many sig/key chains. Loop?\n");
-					exit(1);
-				}
-				if (chase_step & SD_SIG) {
-					/* start new query, for KEY */
-					strcpy (getdomain, chase_signer);
-					strcat (getdomain, ".");
-					gettype = ns_t_key;
-				} else if (!(chase_step & SD_BADSIG)) { 
-					/* start new query, for SIG */
-					strcpy (getdomain, chase_domain);
-					strcat (getdomain, ".");
-					gettype = ns_t_sig;
-				} else if (hp && !(chase_step & SD_SIG) && 
-					   (chase_step & SD_BADSIG)) {
-					printf ("%s for %s not found, last verified key %s\n",
-						chase_step & SD_SIG ? "Key" : "Signature",
-						chase_step & SD_SIG ? chase_signer : chase_domain, 
-						chase_domain, 
-						chase_lastgoodkey ? chase_lastgoodkey : "None");
-				}
-			}
-			if (!getdomain[0] && cname) {
-				if (ncnames-- == 0) {
-					printf("Too many cnames.  Loop?\n");
-					exit(1);
-				}
-				strcpy(getdomain, cname);
-				strcat(getdomain, ".");
-			}
-			if (getdomain[0]) {
-				if (chase_step & SD_SIG) {
-					printf ("Locating key for %s\n", getdomain);
-				} else if (chase_step & SD_SIG) {
-					printf ("Locating signature for %s record(s) on %s\n",
-						sym_ntos(__p_type_syms, chase_type, NULL),
-						getdomain);
-				}
-				hp = NULL;
-				res.res_h_errno = TRY_AGAIN;
-				continue;
-			}
-		} else {
-			if (addrinfo(addr) == 0)
-				hp = NULL;
-			else
-				hp = (struct hostent *)1;	/* XXX */
-		}
-		if (!waitmode)
-			break;
-	}
-
-	if (hp == NULL) {
-		hperror(res.res_h_errno);
-		exit(1);
-	}
-
-	exit(0);
-}
-
-/* Private. */
-
-static int
-parsetype(const char *s) {
-	int type, success;
-
-	type = sym_ston(__p_type_syms, s, &success);
-	if (success)
-		return (type);
-	if (strcmp(s, "*") == 0)
-		return (ns_t_any);
-	if (atoi(s))
-		return (atoi(s));
-	fprintf(stderr, "Invalid query type: %s\n", s);
-	exit(2);
-	/*NOTREACHED*/
-}
-
-static int
-parseclass(const char *s) {
-	int class, success;
-
-	class = sym_ston(__p_class_syms, s, &success);
-	if (success)
-		return (class);
-	if (atoi(s))
-		return (atoi(s));
-	fprintf(stderr, "Invalid query class: %s\n", s);
-	exit(2);
-	/*NOTREACHED*/
-}
-
-static void
-printanswer(const struct hostent *hp) {
-	struct in_addr **hptr;
-	char **cp;
-
-	printf("Name: %s\n", hp->h_name);
-	printf("Address:");
-	for (hptr = (struct in_addr **)hp->h_addr_list; *hptr; hptr++)
-		printf(" %s", inet_ntoa(**hptr));
-	printf("\nAliases:");
-	for (cp = hp->h_aliases; cp && *cp && **cp; cp++)
-		printf(" %s", *cp);
-	printf("\n\n");
-}
-
-static void
-hperror(int errnum) {
-	switch(errnum) {
-	case HOST_NOT_FOUND:
-		fprintf(stderr, "Host not found.\n");
-		break;
-	case TRY_AGAIN:
-		fprintf(stderr, "Host not found, try again.\n");
-		break;
-	case NO_RECOVERY:
-		fprintf(stderr, "No recovery, Host not found.\n");
-		break;
-	case NO_ADDRESS:
-		fprintf(stderr,
-			"There is an entry for this host, but it doesn't have "
-			);
-		switch (gettype) {
-		case ns_t_a:
-			fprintf(stderr, "an Internet address.\n");
-			break;
-		case ns_t_ns:
-			fprintf(stderr, "a Name Server.\n");
-			break;
-		case ns_t_md:
-			fprintf(stderr, "a Mail Destination.\n");
-			break;
-		case ns_t_mf:
-			fprintf(stderr, "a Mail Forwarder.\n");
-			break;
-		case ns_t_cname:
-			fprintf(stderr, "a Canonical Name.\n");
-			break;
-		case ns_t_soa:
-			fprintf(stderr, "a Start of Authority record.\n");
-			break;
-		case ns_t_mb:
-			fprintf(stderr, "a Mailbox Domain Name.\n");
-			break;
-		case ns_t_mg:
-			fprintf(stderr, "a Mail Group Member.\n");
-			break;
-		case ns_t_mr:
-			fprintf(stderr, "a Mail Rename Name.\n");
-			break;
-		case ns_t_null:
-			fprintf(stderr, "a Null Resource record.\n");
-			break;
-		case ns_t_wks:
-			fprintf(stderr, "any Well Known Service information.\n");
-			break;
-		case ns_t_ptr:
-			fprintf(stderr, "a Pointer record.\n");
-			break;
-		case ns_t_hinfo:
-			fprintf(stderr, "any Host Information.\n");
-			break;
-		case ns_t_minfo:
-			fprintf(stderr, "any Mailbox Information.\n");
-			break;
-		case ns_t_mx:
-			fprintf(stderr, "a Mail Exchanger record.\n");
-			break;
-		case ns_t_txt:
-			fprintf(stderr, "a Text record.\n");
-			break;
-		case ns_t_rp:
-			fprintf(stderr, "a Responsible Person.\n");
-			break;
-		case ns_t_srv:
-			fprintf(stderr, "a Server Selector.\n");
-			break;
-		case ns_t_naptr:
-			fprintf(stderr, "a URN Naming Authority.\n");
-			break;
-		default:
-			fprintf(stderr, "the information you requested.\n");
-			break;
-		}
-		break;
-	}
-}
-
-static int
-addrinfo(struct in_addr addr) {
-	u_int32_t ha = ntohl(addr.s_addr);
-	char name[NS_MAXDNAME];
-
-	sprintf(name, "%u.%u.%u.%u.IN-ADDR.ARPA.",
-		(ha) & 0xff,
-		(ha >> 8) & 0xff,
-		(ha >> 16) & 0xff,
-		(ha >> 24) & 0xff);
-	return (getinfo(name, NULL, ns_t_ptr));
-}
-
-static int
-gethostinfo(char *name) {
-	char *cp, **domain;
-	char tmp[NS_MAXDNAME];
-	const char *tp;
-	int hp, nDomain;
-	int asis = 0;
-	u_int n;
-
-	if (strcmp(name, ".") == 0)
-		return (getdomaininfo(name, NULL));
-	for (cp = name, n = 0; *cp; cp++)
-		if (*cp == '.')
-			n++;
-	if (n && cp[-1] == '.') {
-		if (cp[-1] == '.')
-			cp[-1] = 0;
-		hp = getdomaininfo(name, (char *)NULL);
-		if (cp[-1] == 0)
-			cp[-1] = '.';
-		return (hp);
-	}
-	if (n == 0 && (tp = res_hostalias(&res, name, tmp, sizeof tmp))) {
-	        if (verbose)
-		    printf("Aliased to \"%s\"\n", tp);
-		res.options |= RES_DEFNAMES;	  
-		return (getdomaininfo(tp, (char *)NULL));
-	}
-	if (n >= res.ndots) {
-		asis = 1;
-		if (verbose)
-		    printf("Trying null domain\n");
-		hp = getdomaininfo(name, (char*)NULL);
-		if (hp)
-			return (hp);
-	}
-	for (domain = res.dnsrch; *domain; domain++) {
-		if (verbose)
-			printf("Trying domain \"%s\"\n", *domain);
-		hp = getdomaininfo(name, *domain);
-		if (hp)
-			return (hp);
-	}
-	if (res.res_h_errno != HOST_NOT_FOUND || (res.options & RES_DNSRCH) == 0)
-		return (0);
-	if (!asis)
-		return (0);
-	if (verbose)
-		printf("Trying null domain\n");
-	return (getdomaininfo(name, (char *)NULL));
-}
-
-static int
-getdomaininfo(const char *name, const char *domain) {
-	int val1, val2;
-
-	if (gettype)
-		return (getinfo(name, domain, gettype));
-	else {
-		val1 = getinfo(name, domain, gettype=ns_t_a);
-		if (cname || verbose)
-			return (val1);
-		val2 = getinfo(name, domain, gettype=ns_t_mx);
-		return (val1 || val2);
-	}
-}
-
-static int
-getinfo(const char *name, const char *domain, int type) {
-	HEADER *hp;
-	u_char *eom, *bp, *cp;
-	querybuf buf, answer;
-	int n, n1, i, j, nmx, ancount, nscount, arcount, qdcount, buflen;
-	u_short pref, class;
-	char host[NS_MAXDNAME];
-
-	if (domain == NULL)
-		sprintf(host, "%.*s", NS_MAXDNAME, name);
-	else
-		sprintf(host, "%.*s.%.*s",
-			NS_MAXDNAME, name, NS_MAXDNAME, domain);
-
-	n = res_nmkquery(&res, QUERY, host, getclass, type, NULL, 0, NULL,
-			 buf.qb2, sizeof buf);
-	if (n < 0) {
-		if (res.options & RES_DEBUG)
-			printf("res_nmkquery failed\n");
-		res.res_h_errno = NO_RECOVERY;
-		return (0);
-	}
-	n = res_nsend(&res, buf.qb2, n, answer.qb2, sizeof answer);
-	if (n < 0) {
-		if (res.options & RES_DEBUG)
-			printf("res_nsend failed\n");
-		res.res_h_errno = TRY_AGAIN;
-		return (0);
-	}
-	eom = answer.qb2 + n;
-	return (printinfo(&answer, eom, ns_t_any, 0));
-}
-
-static int
-printinfo(const querybuf *answer, const u_char *eom, int filter, int isls) {
-	int n, n1, i, j, nmx, ancount, nscount, arcount, qdcount, buflen, savesigchase;
-	u_short pref, class;
-	const u_char *bp, *cp;
-	const HEADER *hp;
-
-	/*
-	 * Find first satisfactory answer.
-	 */
-	hp = (HEADER *) answer;
-	ancount = ntohs(hp->ancount);
-	qdcount = ntohs(hp->qdcount);
-	nscount = ntohs(hp->nscount);
-	arcount = ntohs(hp->arcount);
-	if (res.options & RES_DEBUG || (verbose && isls == 0))
-		printf("rcode = %d (%s), ancount=%d\n", 
-		       hp->rcode, DecodeError(hp->rcode), ancount);
-	if (hp->rcode != NOERROR || (ancount+nscount+arcount) == 0) {
-		switch (hp->rcode) {
-		case NXDOMAIN:
-			res.res_h_errno = HOST_NOT_FOUND;
-			return (0);
-		case SERVFAIL:
-			res.res_h_errno = TRY_AGAIN;
-			return (0);
-			case NOERROR:
-				res.res_h_errno = NO_DATA;
-				return (0);
-			case FORMERR:
-			case NOTIMP:
-			case REFUSED:
-				res.res_h_errno = NO_RECOVERY;
-				return (0);
-		}
-		return (0);
-	}
-	bp = hostbuf;
-	nmx = 0;
-	buflen = sizeof(hostbuf);
-	cp = answer->qb2 + HFIXEDSZ;
-	if (qdcount > 0) {
-		while (qdcount-- > 0) {
-			n = dn_skipname(cp, eom);
-			if (n < 0) {
-				printf("Form error.\n");
-				return (0);
-			}
-			cp += n + QFIXEDSZ;
-			if (cp > eom) {
-				printf("Form error.\n");
-				return (0);
-			}
-		}
-	}
-	if (ancount) {
-		if (!hp->aa)
-			if (verbose && isls == 0)
-				printf(
-				 "The following answer is not authoritative:\n"
-				       );
-		if (!hp->ad)
-		    if (verbose && isls == 0)
-			printf("The following answer is not verified as authentic by the server:\n");
-		while (--ancount >= 0 && cp && cp < eom)
-			cp = pr_rr(cp, answer->qb2, stdout, filter);
-	}
-	if (!verbose)
-		return (1);
-
-	/* don't chase signatures for non-answer stuff */
-
-	savesigchase = sigchase;
-	sigchase = 0;
-
-	if (nscount) {
-		printf("For authoritative answers, see:\n");
-		while (--nscount >= 0 && cp && cp < eom)
-			cp = (u_char *)pr_rr(cp, answer->qb2, stdout, filter);
-	}
-	if (arcount) {
-		printf("Additional information:\n");
-		while (--arcount >= 0 && cp && cp < eom)
-			cp = (u_char *)pr_rr(cp, answer->qb2, stdout, filter);
-	}
-
-	/* restore sigchase value */
-	
-	sigchase = savesigchase;
-
-	return (1);
-}
-
-void print_hex_field (u_int8_t field[], int length, int width, char *pref)
-{
-	/* Prints an arbitrary bit field, from one address for some number of
-		bytes.  Output is formatted via the width, and includes the raw
-		hex value and (if printable) the printed value underneath.  "pref"
-		is a string used to start each line, e.g., "   " to indent.
-
-		This is very useful in gdb to see what's in a memory field.
-	*/
-	int		i, start, stop;
-
-	start=0;
-	do
-	{
-		stop=(start+width)<length?(start+width):length;
-		printf (pref);
- 		for (i = start; i < stop; i++)
-			printf ("%02x ", (u_char) field[i]);
-		printf ("\n");
-
-		printf (pref);
-		for (i = start; i < stop; i++)
-			if (isprint(field[i]))
-				printf (" %c ", (u_char) field[i]);
-			else
-				printf ("   ");
-			printf ("\n");
-
-		start = stop;
-	} while (start < length);
-}
-
-void memswap (void *s1, void *s2, size_t n)
-{
-	void *tmp;
-
-	tmp = malloc(n);
-	if (!tmp) {
-		printf ("Out of memory\n");
-		exit (1);
-	}
-		
-	memcpy(tmp, s1, n);
-	memcpy(s1, s2, n);
-	memcpy(s2, tmp, n);
-
-	free (tmp);
-}
-
-void print_hex (u_int8_t field[], int length)
-{
-	/* Prints the hex values of a field...not as pretty as the print_hex_field.
-	*/
-	int		i, start, stop;
-
-	start=0;
-	do
-	{
-		stop=length;
- 		for (i = start; i < stop; i++)
-			printf ("%02x ", (u_char) field[i]);
-		start = stop;
-		if (start < length) printf ("\n");
-	} while (start < length);
-}
-
-/*
- * Print resource record fields in human readable form.
- */
-static const u_char *
-pr_rr(const u_char *cp, const u_char *msg, FILE *file, int filter) {
-	int type, class, dlen, n, c, proto, ttl;
-	struct in_addr inaddr;
-	u_char in6addr[NS_IN6ADDRSZ];
-	const u_char *savecp = cp;
-	const u_char *cp1;
-	struct protoent *protop;
-	struct servent *servp;
-	char punc = ' ';
-	int doprint;
-	char name[NS_MAXDNAME];
-	char thisdomain[NS_MAXDNAME];
-	char tmpbuf[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-	u_char canonrr[MY_PACKETSZ];
-	size_t canonrr_len = 0;
-
-	if ((cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name))) == NULL)
-		return (NULL);			/* compression error */
-	strcpy(thisdomain, name);
-
-	type = ns_get16(cp);
-	cp += INT16SZ;
-
-	class = ns_get16(cp);
-	cp += INT16SZ;
-
-	ttl = ns_get32(cp);
-	cp += INT32SZ;
-
-	if (filter == type || filter == ns_t_any ||
-	    (filter == ns_t_a && (type == ns_t_ptr || type == ns_t_ns)))
-		doprint = 1;
-	else
-		doprint = 0;
-
-	if (doprint) {
-		if (verbose)
-			fprintf(file, "%s\t%d%s\t%s",
-				name, ttl, pr_class(class), pr_type(type));
-		else
-			fprintf(file, "%s%s %s",
-				name, pr_class(class), pr_type(type));
-		if (verbose)
-			punc = '\t';
-		else
-			punc = ' ';
-	}
-	dlen = ns_get16(cp);
-	cp += INT16SZ;
-	cp1 = cp;
-
-	/*
-	 * Print type specific data, if appropriate.
-	 */
-	switch (type) {
-	case ns_t_a:
-		memcpy(&inaddr, cp, NS_INADDRSZ);
-	        if (doprint)
-			fprintf(file,"%c%s", punc, inet_ntoa(inaddr));
-		cp += dlen;
-		break;
-	case ns_t_aaaa:
-		memcpy(in6addr, cp, NS_IN6ADDRSZ);
-	        if (doprint) {
-			if (inet_ntop(AF_INET6, in6addr, tmpbuf,
-				      sizeof tmpbuf) != NULL)
-				fprintf(file,"%c%s", punc, tmpbuf);
-			else
-				fprintf(file,"%c???", punc);
-		}
-		cp += dlen;
-		break;
-	case ns_t_cname:
-		if (dn_expand(msg, msg + 512, cp, cnamebuf, 
-			      sizeof(cnamebuf)) >= 0)
-			cname = cnamebuf;				
-	case ns_t_mb:
-	case ns_t_mg:
-	case ns_t_mr:
-	case ns_t_ns:
-	case ns_t_ptr:
-	{
-		const u_char *startrdata = cp;
-		u_char cdname[NS_MAXCDNAME];
-
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof name);
-		if (doprint)
-			fprintf(file, "%c%s", punc, name);
-
-		/* Extract DNSSEC canonical RR. */
-
-		n = ns_name_unpack(msg, msg+MY_PACKETSZ, startrdata,
-				   cdname, sizeof cdname);
-		if (n >= 0)
-			n = ns_name_ntol(cdname, cdname, sizeof cdname);
-		if (n >= 0) {
-			/* Copy header. */
-			memcpy(canonrr, cp1 - NS_HEADERDATA_SIZE, NS_HEADERDATA_SIZE);
-			/* Overwrite length field. */
-			ns_put16(n, canonrr + NS_HEADERDATA_SIZE - NS_INT16SZ);
-			/* Copy unpacked name. */
-			memcpy(canonrr + NS_HEADERDATA_SIZE, cdname, n);
-			canonrr_len = NS_HEADERDATA_SIZE + n;
-		}
-		break;
-	}
-
-	case ns_t_hinfo:
-	case ns_t_isdn:
-		{
-			const u_char *cp2 = cp + dlen;
-			n = *cp++;
-			if (n != 0) {
-				if (doprint)
-					fprintf(file,"%c%.*s", punc, n, cp);
-				cp += n;
-			}
-			if ((cp < cp2) && (n = *cp++)) {
-				if (doprint)
-					fprintf(file,"%c%.*s", punc, n, cp);
-				cp += n;
-			} else if (type == ns_t_hinfo)
-				if (doprint)
-					fprintf(file,
-					  "\n; *** Warning *** OS-type missing"
-						);
-		}
-		break;
-
-	case ns_t_soa:
-	{
-		const u_char *startname = cp;
-		u_char cdname[NS_MAXCDNAME];
-
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof name);
-		if (doprint)
-			fprintf(file, "\t%s", name);
-
-		n = ns_name_unpack(msg, msg + 512, startname,
-				   cdname, sizeof cdname);
-		if (n >= 0)
-			n = ns_name_ntol(cdname, cdname, sizeof cdname);
-		if (n >= 0) {
-			/* Copy header. */
-			memcpy(canonrr, cp1 - NS_HEADERDATA_SIZE, NS_HEADERDATA_SIZE);
-			/* Copy expanded name. */
-			memcpy(canonrr + NS_HEADERDATA_SIZE, cdname, n);
-			canonrr_len = NS_HEADERDATA_SIZE + n;
-		}
-
-		startname = cp;
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof name);
-		if (doprint)
-			fprintf(file, " %s", name);
-
-		n = ns_name_unpack(msg, msg + 512, startname,
-				   cdname, sizeof cdname);
-		if (n >= 0)
-			n = ns_name_ntol(cdname, cdname, sizeof cdname);
-		if (n >= 0) {
-			/* Copy expanded name. */
-			memcpy(canonrr + canonrr_len, cdname, n);
-			canonrr_len += n;
-			/* Copy rest of SOA. */
-			memcpy(canonrr + canonrr_len, cp, 5 * INT32SZ);
-			canonrr_len += 5 * INT32SZ;
-			/* Overwrite length field. */
-			ns_put16(canonrr_len - NS_HEADERDATA_SIZE,
-				 canonrr + NS_HEADERDATA_SIZE - NS_INT16SZ);
-		}
-
-		if (doprint)
-			fprintf(file, "(\n\t\t\t%ld\t;serial (version)",
-				ns_get32(cp));
-		cp += INT32SZ;
-		if (doprint)
-			fprintf(file, "\n\t\t\t%ld\t;refresh period",
-				ns_get32(cp));
-		cp += INT32SZ;
-		if (doprint)
-			fprintf(file,
-				"\n\t\t\t%ld\t;retry refresh this often",
-				ns_get32(cp));
-		cp += INT32SZ;
-		if (doprint)
-			fprintf(file, "\n\t\t\t%ld\t;expiration period",
-				ns_get32(cp));
-		cp += INT32SZ;
-		if (doprint)
-			fprintf(file, "\n\t\t\t%ld\t;minimum TTL\n\t\t\t)",
-				ns_get32(cp));
-		cp += INT32SZ;
-		break;
-	}
-	case ns_t_mx:
-	case ns_t_afsdb:
-	case ns_t_rt:
-	{
-		const u_char *startrdata = cp;
-		u_char cdname[NS_MAXCDNAME];
-
-		if (doprint) {
-			if (type == ns_t_mx && !verbose)
-				fprintf(file," (pri=%d) by ", ns_get16(cp));
-			else if (verbose)
-				fprintf(file,"\t%d ", ns_get16(cp));
-			else
-				fprintf(file," ");
-		}
-		cp += sizeof(u_short);
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file, "%s", name);
-
-		n = ns_name_unpack(msg, msg+512, startrdata + sizeof(u_short),
-				   cdname, sizeof cdname);
-		if (n >= 0)
-			n = ns_name_ntol(cdname, cdname, sizeof cdname);
-		if (n >= 0) {
-			/* Copy header. */
-			memcpy(canonrr, cp1 - NS_HEADERDATA_SIZE,
-			       NS_HEADERDATA_SIZE);
-			/* Overwrite length field. */
-			ns_put16(sizeof(u_short) + n,
-				 canonrr + NS_HEADERDATA_SIZE - NS_INT16SZ);
-			/* Copy u_short. */
-			memcpy(canonrr + NS_HEADERDATA_SIZE, startrdata,
-			       sizeof(u_short));
-			/* Copy expanded name. */
-			memcpy(canonrr + NS_HEADERDATA_SIZE + sizeof(u_short),
-			       cdname, n);
-			canonrr_len = NS_HEADERDATA_SIZE + sizeof(u_short) + n;
-		}
-		break;
-	}
-
-	case ns_t_srv:
-		if (doprint)
-			fprintf(file," %d", ns_get16(cp));
-		cp += sizeof(u_short);
-		if (doprint)
-			fprintf(file," %d", ns_get16(cp));
-		cp += sizeof(u_short);
-		if (doprint)
-			fprintf(file," %d", ns_get16(cp));
-		cp += sizeof(u_short);
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file,"%s",name);
-		break;
-
-	case ns_t_naptr:
-		/* order */
-		if (doprint)
-			fprintf(file, " %d", ns_get16(cp));
-		cp += sizeof(u_short);
-		/* preference */
-		if (doprint)
-			fprintf(file, " %d", ns_get16(cp));
-		cp += NS_INT16SZ;
-		/* Flags */
-		n = *cp++;
-		if (doprint) {
-			if (n)
-				fprintf(file, "%c%.*s", punc, n, cp);
-			else 
-				fprintf(file, "%c\"\"",punc);
-		}
-		cp += n;
-		/* Service */
-		n = *cp++;
-		if (doprint) {
-			if (n)
-				fprintf(file, "%c%.*s", punc, n, cp);
-			else 
-				fprintf(file,"%c\"\"",punc);
-		}
-		cp += n;
-		/* Regexp  */
-		n = *cp++;
-		if (doprint) {
-			if (n)
-				fprintf(file, "%c%.*s", punc, n, cp);
-			else 
-				fprintf(file, "%c\"\"",punc);
-		}
-		cp += n;
-		/* replacement  */
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file, "%s", name);
-		break;
-
-	case ns_t_minfo:
-	case ns_t_rp:
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof name);
-		if (doprint) {
-			if (type == ns_t_rp) {
-				char *p;
-
-				p = strchr(name, '.');
-				if (p != NULL)
-					*p = '@';
-			}
-			fprintf(file, "%c%s", punc, name);
-		}
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file, " %s", name);
-		break;
-
-	case ns_t_x25:
-		n = *cp++;
-		if (n != 0) {
-			if (doprint)
-				fprintf(file, "%c%.*s", punc, n, cp);
-			cp += n;
-		}
-		break;
-
-	case ns_t_txt:
-		{
-			int n, j;
-			const u_char *end = cp + dlen;
-		 
-			while (cp < end) {
-				if (doprint)
-					(void) fputs(" \"", file);
-				n = *cp++;
-				if (n != 0)
-					for (j = n; j > 0 && cp < end ; j --) {
-						if (doprint) {
-							if (*cp == '\n' ||
-							    *cp == '"' ||
-							    *cp == '\\')
-								putc('\\',
-								     file);
-							putc(*cp, file);
-						}
-						cp++;
-					}
-				if (doprint)
-					putc('"', file);
-			}
-		}
-		break;
-
-	case ns_t_wks:
-		if (dlen < INT32SZ + 1)
-			break;
-		memcpy(&inaddr, cp, INADDRSZ);
-		cp += INT32SZ;
-		proto = *cp++;
-		protop = getprotobynumber(proto);
-		if (doprint) {
-			if (protop)
-				fprintf(file, "%c%s %s", punc,
-					inet_ntoa(inaddr), protop->p_name);
-			else
-				fprintf(file, "%c%s %d", punc,
-					inet_ntoa(inaddr), proto);
-		}
-		n = 0;
-		while (cp < cp1 + dlen) {
-			c = *cp++;
-			do {
- 				if (c & 0200) {
-					servp = NULL;
-					if (protop)
-						servp = getservbyport(htons(n),
-								      protop->
-								       p_name);
-					if (doprint) {
-						if (servp)
-							fprintf(file, " %s",
-								servp->s_name);
-						else
-							fprintf(file, " %d",
-								n);
-					}
-				}
-				c <<= 1;
-			} while (++n & 07);
-		}
-		break;
-	case ns_t_nxt:
-	{
-		const u_char *startrdata = cp;
-		u_char cdname[NS_MAXCDNAME];
-		size_t bitmaplen;
-
-		cp = (u_char *) pr_cdname(cp, msg, name, sizeof name);
-		if (doprint)
-			fprintf(file, "%c%s", punc, name);
-		bitmaplen = dlen - (cp - startrdata);
-
-		/* extract dnssec canonical rr */
-
-		n = ns_name_unpack(msg, msg+MY_PACKETSZ, startrdata,
-				   cdname, sizeof cdname);
-		if (n >= 0)
-			n = ns_name_ntol(cdname, cdname, sizeof cdname);
-		if (n >= 0) {
-			/* Copy header. */
-			memcpy(canonrr, cp1 - NS_HEADERDATA_SIZE,
-			       NS_HEADERDATA_SIZE);
-			/* Overwrite length field. */
-			ns_put16(n + bitmaplen, 
-				 canonrr + NS_HEADERDATA_SIZE - NS_INT16SZ);
-			/* Copy expanded name. */
-			memcpy(canonrr + NS_HEADERDATA_SIZE, cdname, n);
-			/* Copy type bit map. */
-			memcpy(canonrr + NS_HEADERDATA_SIZE + n, cp,
-			       bitmaplen);
-			canonrr_len = NS_HEADERDATA_SIZE + n + bitmaplen;
-		}
-		cp += bitmaplen;
-		break;
-	}
-	case ns_t_sig:
-	{
-		int tc;
-		const u_char *origttl;
-
-		/* type covered */
-		tc = ns_get16(cp);
-		if (doprint && verbose)
-			fprintf(file, "%c%s", punc, sym_ntos(__p_type_syms, tc, NULL));
-		cp += sizeof(u_short);
-		/* algorithm */
-		if (doprint && verbose)
-			fprintf(file, " %d", *cp);
-		cp++;
-		/* labels */
-		if (doprint && verbose)
-			fprintf(file, " %d", *cp);
-		cp++;
-		/* original ttl */
-		origttl = cp;
-		if (doprint && verbose)
-			fprintf(file, " %d", ns_get32(cp));
-		cp += INT32SZ;
-		/* signature expiration */
-		if (doprint && verbose)
-			fprintf(file, " %d", ns_get32(cp));
-		cp += INT32SZ;
-		/* time signed */
-		if (doprint && verbose)
-			fprintf(file, " %d", ns_get32(cp));
-		cp += INT32SZ;
-		/* key footprint */
-		if (doprint && verbose)
-			fprintf(file, " %d", ns_get16(cp));
-		cp += sizeof(u_short);
-		/* signer's name */
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint && verbose)
-			fprintf(file, " %s", name);
-		else if (doprint && !verbose)
-			fprintf (file, " %s for type %s", name, 
-				 sym_ntos(__p_type_syms, tc, NULL));
-		/* signature */
-		{
-			char str[MY_PACKETSZ];
-			size_t len = cp1-cp+dlen;
-			
-			b64_ntop (cp, len, str, MY_PACKETSZ-1);
-
-			if (sigchase && !(chase_step & SD_SIG) && 
-			    strcmp (chase_domain, thisdomain) == 0 && 
-			    chase_class == class & chase_type == tc)
-			{
-				u_char cdname[NS_MAXCDNAME];
-
-				if (doprint && !verbose)
-					fprintf(file, " (chasing key)");
-				
-				strcpy(chase_signer, name);
-
-				memcpy(&chase_sigorigttl[0], origttl, 
-				       NS_INT32SZ);
-
-				n = ns_name_ntol(cp1 + SIG_RDATA_BY_NAME, 
-						 cdname, sizeof cdname);
-				if (n >= 0) {
-					memcpy(chase_sigrdata, cp1,
-					       SIG_RDATA_BY_NAME);
-					memcpy(chase_sigrdata + SIG_RDATA_BY_NAME,
-					       cdname, n);
-					chase_sigrdata_len += SIG_RDATA_BY_NAME + n;
-					memcpy(chase_signature, cp, len);
-					chase_signature_len = len;
-
-					chase_step |= SD_SIG;
-				}
-			} else if (sigchase) {
-				chase_step |= SD_BADSIG;
-			}
-
-			cp += len;
-			if (doprint && verbose)
-				fprintf (file, " %s", str);
-		}
-		break;
-	}
-	case ns_t_key:
-		/* flags */
-		if (doprint && verbose)
-			fprintf(file, "%c%d", punc, ns_get16(cp));
-		cp += sizeof(u_short);
-		/* protocol */
-		if (doprint && verbose)
-			fprintf(file, " %d", *cp);
-		cp++;
-		/* algorithm */
-		n = *cp;
-		if (doprint && verbose)
-			fprintf(file, " %d", *cp);
-		cp++;
-		switch (n) {
-		case 1: /* MD5/RSA */
-		{
-			char str[MY_PACKETSZ];
-			size_t len = cp1-cp+dlen;
-
-			b64_ntop (cp, len, str, MY_PACKETSZ-1);
-			cp += len;
-			
-			if (doprint && verbose)
-				fprintf (file, " %s", str);
-			break;
-		}
-		
-		default:
-			fprintf (stderr, "Unknown algorithm %d\n", n);
-			cp = cp1 + dlen;
-			break;
-		}
-		
-		if (sigchase && (chase_step & (SD_SIG|SD_RR)) && 
-		    strcmp (getdomain, name) == 0 && 
-		    getclass == class & gettype == type)
-		{
-			DST_KEY *dstkey;
-			int rc, len, i, j;
-			
-			/* convert dnskey to dstkey */
-		
-			dstkey = dst_dnskey_to_key (name, cp1, dlen);
-		
-			/* fix ttl in rr */
-			
-			for (i = 0; i < NUMRR && chase_rr[i].len; i++)
-			{
-				len = dn_skipname(chase_rr[i].data, 
-						  chase_rr[i].data + 
-						  chase_rr[i].len);
-				if (len>=0) 
-					memcpy(chase_rr[i].data + len + NS_INT16SZ +
-					       NS_INT16SZ,
-					       &chase_sigorigttl, INT32SZ);
-			}
-
-			/* sort rr's (qsort() is too slow) */
-			
-			for (i = 0; i < NUMRR && chase_rr[i].len; i++)
-				for (j = i + 1; i < NUMRR && chase_rr[j].len; j++)
-					if (memcmp(chase_rr[i].data, chase_rr[j].data, MY_PACKETSZ) > 0)
-						memswap(&chase_rr[i], &chase_rr[j], sizeof(rrstruct));
-			
-			/* append rr's to sigrdata */
-
-			for (i = 0; i < NUMRR && chase_rr[i].len; i++)
-			{
-				memcpy (chase_sigrdata + chase_sigrdata_len, 
-					chase_rr[i].data, chase_rr[i].len);
-				chase_sigrdata_len += chase_rr[i].len;
-			}
-
-			/* print rr-data and signature */
-
-			if (verbose) {
-				print_hex_field(chase_sigrdata,
-						chase_sigrdata_len,
-						21,"DATA: ");
-				print_hex_field(chase_signature,
-						chase_signature_len,
-						21,"SIG: ");
-			}
-			
-			/* do the works */
-
-			if (dstkey)
-				rc = dst_verify_data(SIG_MODE_ALL, dstkey, NULL,
-						     chase_sigrdata, 
-						     chase_sigrdata_len,
-						     chase_signature, 
-						     chase_signature_len);
-			else
-				rc = 1;
-
-			dst_free_key(dstkey);
-
-			if (verbose)
-			{
-				fprintf(file, "\nVerification %s", rc == 0 ? 
-					"was SUCCESSFULL" :
-					"FAILED");
-			}
-			else
-			{
-				fprintf (file, 
-					 " that %s verify our %s "
-					 "record(s) on %s", 
-					 rc == 0 ? "successfully" :
-					 "DOES NOT", 
-					 sym_ntos(__p_type_syms, chase_type, 
-						  NULL),
-					 chase_domain);
-			}
-
-			if (rc == 0)
-			{
-				strcpy (chase_lastgoodkey, name);
-			}
-			else
-			{
-				/* don't trace further after a failure */
-				sigchase = 0; 
-			}
-
-			chase_step = 0;
-			chase_signature_len = 0;
-			chase_sigrdata_len = 0;
-			memset(chase_sigorigttl, 0, NS_INT32SZ);
-			memset(chase_rr, 0, sizeof(chase_rr));
-			chase_rr_num = 0;
-		}
-		break;
-
-	default:
-		if (doprint)
-			fprintf(file, "%c???", punc);
-		cp += dlen;
-		break;
-	}
-	if (cp != cp1 + dlen)
-		fprintf(file, "packet size error (%p != %p)\n",
-			cp, cp1 + dlen);
-
-	if (sigchase && !(chase_step & SD_SIG) && 
-	    strcmp (getdomain, thisdomain) == 0 && getclass == class && 
-	    gettype == type && type != ns_t_sig)
-	{
-		u_char cdname[NS_MAXCDNAME];
-
-		if (doprint && !verbose)
-			fprintf (file, " (chasing signature)", sigchase-1);
-
-		/* unpack rr */
-
-		n = ns_name_unpack(msg, msg + MY_PACKETSZ, savecp,
-				   cdname, sizeof cdname);
-		if (n >= 0)
-			n = ns_name_ntol(cdname, cdname, sizeof cdname);
-		if (n >= 0) {
-			memcpy(chase_rr[chase_rr_num].data, cdname, n);
-			memcpy(chase_rr[chase_rr_num].data + n,
-			       canonrr_len ? canonrr : cp1 - NS_HEADERDATA_SIZE,
-			       canonrr_len ? canonrr_len : dlen + NS_HEADERDATA_SIZE);
-			chase_rr[chase_rr_num].len = 
-				n + (canonrr_len != 0 ? canonrr_len : 
-				     dlen + NS_HEADERDATA_SIZE);
-			
-			strcpy(chase_domain, getdomain);
-			chase_class = class;
-			chase_type = type;
-			chase_step |= SD_RR;
-			chase_rr_num++;
-		}
-	}
-
-	if (doprint)
-		fprintf(file, "\n");
-
-	return (cp);
-}
-
-/*
- * Return a string for the type.  A few get special treatment when
- * not in verbose mode, to make the program more chatty and easier to
- * understand.
- */
-static const char *
-pr_type(int type) {
-	if (!verbose) switch (type) {
-	case ns_t_a:
-		return ("has address");
-	case ns_t_cname:
-		return ("is a nickname for");
-	case ns_t_mx:
-		return ("mail is handled");
-	case ns_t_txt:
-		return ("descriptive text");
-	case ns_t_sig:
-                return ("has a signature signed by");
-	case ns_t_key:
-                return ("has a key");
-	case ns_t_nxt:
-		return ("next valid name");
-	case ns_t_afsdb:
-		return ("DCE or AFS service from");
-	}
-	if (verbose)
-		return (sym_ntos(__p_type_syms, type, NULL));
-	else
-		return (sym_ntop(__p_type_syms, type, NULL));
-}
-
-/*
- * Return a mnemonic for class
- */
-static const char *
-pr_class(int class) {
-	static char spacestr[20];
-
-	if (!verbose) switch (class) {
-	case ns_c_in:		/* internet class */
-		return ("");
-	case ns_c_hs:		/* hesiod class */
-		return ("");
-	}
-
-	spacestr[0] = ' ';
-	strcpy(&spacestr[1], p_class(class));
-	return (spacestr);
-}
-
-static const u_char *
-pr_cdname(const u_char *cp, const u_char *msg, char *name, int namelen) {
-	int n = dn_expand(msg, msg + MY_PACKETSZ, cp, name, namelen - 2);
-
-	if (n < 0)
-		return (NULL);
-	if (name[0] == '\0') {
-		name[0] = '.';
-		name[1] = '\0';
-	}
-	return (cp + n);
-}
-
-static int
-ListHosts(char *namePtr, int queryType) {
-	querybuf buf, answer;
-	struct sockaddr_in sin;
-	const HEADER *headerPtr;
-	const struct hostent *hp;
-	enum { NO_ERRORS, ERR_READING_LEN, ERR_READING_MSG, ERR_PRINTING }
-		error = NO_ERRORS;
-
-	int msglen, amtToRead, numRead, i, len, dlen, type, nscount, n;
-	int numAnswers = 0, soacnt = 0, result = 0;
-	u_char tmp[NS_INT16SZ];
-	char name[NS_MAXDNAME], dname[2][NS_MAXDNAME], domain[NS_MAXDNAME];
-	u_char *cp, *nmp, *eom;
-
-	/* Names and addresses of name servers to try. */
-	char nsname[NUMNS][NS_MAXDNAME];
-	int nshaveaddr[NUMNS];
-	struct in_addr nsipaddr[NUMNSADDR];
-	int numns, numnsaddr, thisns;
-
-	/*
-	 * Normalize to not have trailing dot.  We do string compares below
-	 * of info from name server, and it won't have trailing dots.
-	 */
-	i = strlen(namePtr);
-	if (namePtr[i-1] == '.')
-		namePtr[i-1] = 0;
-
-	if (server_specified) {
-		memcpy(&nsipaddr[0], &res.nsaddr.sin_addr, NS_INADDRSZ);
-		numnsaddr = 1;
-	} else {
-		/*
-		 * First we have to find out where to look.  This needs a NS
-		 * query, possibly followed by looking up addresses for some
-		 * of the names.
-		 */
-		msglen = res_nmkquery(&res, ns_o_query, namePtr,
-				      ns_c_in, ns_t_ns,
-				      NULL, 0, NULL,
-				      buf.qb2, sizeof buf);
-		if (msglen < 0) {
-			printf("res_nmkquery failed\n");
-			return (ERROR);
-		}
-
-		msglen = res_nsend(&res, buf.qb2, msglen,
-				   answer.qb2, sizeof answer);
-		if (msglen < 0) {
-			printf("Cannot find nameserver -- try again later\n");
-			return (ERROR);
-		}
-		if (res.options & RES_DEBUG || verbose)
-			printf("rcode = %d (%s), ancount=%d\n", 
-			       answer.qb1.rcode, DecodeError(answer.qb1.rcode),
-			       ntohs(answer.qb1.ancount));
-
-		/*
-		 * Analyze response to our NS lookup.
-		 */
-
-		nscount = ntohs(answer.qb1.ancount) +
-			  ntohs(answer.qb1.nscount) +
-			  ntohs(answer.qb1.arcount);
-
-		if (answer.qb1.rcode != NOERROR || nscount == 0) {
-			switch (answer.qb1.rcode) {
-			case NXDOMAIN:
-				/* Check if it's an authoritive answer */
-				if (answer.qb1.aa)
-					printf("No such domain\n");
-				else
-					printf("Unable to get information about domain -- try again later.\n");
-				break;
-			case SERVFAIL:
-				printf("Unable to get information about that domain -- try again later.\n");
-				break;
-			case NOERROR:
-				printf("That domain exists, but seems to be a leaf node.\n");
-				break;
-			case FORMERR:
-			case NOTIMP:
-			case REFUSED:
-				printf("Unrecoverable error looking up domain name.\n");
-				break;
-			}
-			return (0);
-		}
-
-		cp = answer.qb2 + HFIXEDSZ;
-		eom = answer.qb2 + msglen;
-		if (ntohs(answer.qb1.qdcount) > 0) {
-			n = dn_skipname(cp, eom);
-			if (n < 0) {
-				printf("Form error.\n");
-				return (ERROR);
-			}
-			cp += n + QFIXEDSZ;
-			if (cp > eom) {
-				printf("Form error.\n");
-				return (ERROR);
-			}
-		}
-
-		numns = 0;
-		numnsaddr = 0;
-
-		/*
-		 * Look at response from NS lookup for NS and A records.
-		 */
-
-		for ((void)NULL; nscount; nscount--) {
-			cp += dn_expand(answer.qb2, answer.qb2 + msglen, cp,
-					domain, sizeof(domain));
-			if (cp + 3 * INT16SZ + INT32SZ > eom) {
-				printf("Form error.\n");
-				return (ERROR);
-			}
-			type = ns_get16(cp);
-			cp += INT16SZ + INT16SZ + INT32SZ;
-			dlen = ns_get16(cp);
-			cp += INT16SZ;
-			if (cp + dlen > eom) {
-				printf("Form error.\n");
-				return (ERROR);
-			}
-			if (type == ns_t_ns) {
-				if (dn_expand(answer.qb2, eom,
-					      cp, name, sizeof(name)) >= 0) {
-					if (numns < NUMNS &&
-					    ns_samename((char *)domain, 
-							namePtr) == 1) {
-						for (i = 0; i < numns; i++)
-							if (ns_samename(
-								     nsname[i],
-								   (char *)name
-								       ) == 1)
-								/* duplicate */
-								break;
-						if (i >= numns) {
-							strncpy(nsname[numns],
-								(char *)name,
-								sizeof(name));
-							nshaveaddr[numns] = 0;
-							numns++;
-						}
-					}
-				}
-			} else if (type == ns_t_a) {
-				if (numnsaddr < NUMNSADDR)
-					for (i = 0; i < numns; i++) {
-						if (ns_samename(nsname[i],
-							       (char *)domain)
-						    == 1) {
-							nshaveaddr[i]++;
-							memcpy(
-							  &nsipaddr[numnsaddr],
-							  cp, NS_INADDRSZ);
-							numnsaddr++;
-							break;
-						}
-					}
-			}
-			cp += dlen;
-		}
-
-		/*
-		 * Usually we'll get addresses for all the servers in the
-		 * additional info section.  But in case we don't, look up
-		 * their addresses.
-		 */
-
-		for (i = 0; i < numns; i++) {
-			if (nshaveaddr[i] == 0) {
-				struct in_addr **hptr;
-				int numaddrs = 0;
-
-				hp = gethostbyname(nsname[i]);
-				if (hp) {
-					for (hptr = (struct in_addr **)
-					     	hp->h_addr_list;
-					     *hptr != NULL;
-					     hptr++)
-						if (numnsaddr < NUMNSADDR) {
-							memcpy(
-							  &nsipaddr[numnsaddr],
-							  *hptr, NS_INADDRSZ);
-							numnsaddr++;
-							numaddrs++;
-						}
-				}
-				if (res.options & RES_DEBUG || verbose)
-					printf(
-				  "Found %d addresses for %s by extra query\n",
-					       numaddrs, nsname[i]);
-			} else if (res.options & RES_DEBUG || verbose)
-				printf("Found %d addresses for %s\n",
-				       nshaveaddr[i], nsname[i]);
-		}
-	}
-	/*
-	 * Now nsipaddr has numnsaddr addresses for name servers that
-	 * serve the requested domain.  Now try to find one that will
-	 * accept a zone transfer.
-	 */
-	thisns = 0;
-
- again:
-	numAnswers = 0;
-	soacnt = 0;
-
-	/*
-	 * Create a query packet for the requested domain name.
-	 */
-	msglen = res_nmkquery(&res, QUERY, namePtr, getclass, ns_t_axfr, NULL,
-			      0, NULL, buf.qb2, sizeof buf);
-	if (msglen < 0) {
-		if (res.options & RES_DEBUG)
-			fprintf(stderr, "ListHosts: Res_mkquery failed\n");
-		return (ERROR);
-	}
-
-	memset(&sin, 0, sizeof sin);
-	sin.sin_family = AF_INET;
-	sin.sin_port =  htons(NAMESERVER_PORT);
-
-	/*
-	 * Set up a virtual circuit to the server.
-	 */
-
-	for ((void)NULL; thisns < numnsaddr; thisns++) {
-		if ((sockFD = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
-			perror("ListHosts");
-			return (ERROR);
-		}
-		memcpy(&sin.sin_addr, &nsipaddr[thisns], NS_INADDRSZ);
-		if (res.options & RES_DEBUG || verbose)
-			printf("Trying %s\n", inet_ntoa(sin.sin_addr));
-		if (connect(sockFD, (struct sockaddr *)&sin, sizeof(sin)) >= 0)
-			break;
-		if (verbose)
-			perror("Connection failed, trying next server");
-		close(sockFD);
-		sockFD = -1;
-	}	
-	if (thisns >= numnsaddr) {
-		printf("No server for that domain responded\n");
-		if (!verbose)
-			perror("Error from the last server was");
-		return (ERROR);
-	}
-
-	/*
-	 * Send length & message for zone transfer 
-	 */
-
-	ns_put16(msglen, tmp);
-        if (write(sockFD, (char *)tmp, INT16SZ) != INT16SZ ||
-	    write(sockFD, (char *)buf.qb2, msglen) != msglen) {
-		perror("ListHosts");
-		(void) close(sockFD);
-		sockFD = -1;
-		return (ERROR);
-	}
-
-	filePtr = stdout;
-
-	for (;;) {
-		/*
-		 * Read the length of the response.
-		 */
-		cp = buf.qb2;
-		amtToRead = INT16SZ;
-		while (amtToRead > 0 &&
-		       (numRead = read(sockFD, cp, amtToRead)) > 0) {
-			cp += numRead;
-			amtToRead -= numRead;
-		}
-		if (numRead <= 0) {
-			error = ERR_READING_LEN;
-			break;
-		}	
-
-		if ((len = ns_get16(buf.qb2)) == 0)
-			break;	/* Protocol violation. */
-
-		/*
-		 * Read the response.
-		 */
-
-		amtToRead = len;
-		cp = buf.qb2;
-		while (amtToRead > 0 &&
-		       (numRead = read(sockFD, cp, amtToRead)) > 0) {
-			cp += numRead;
-			amtToRead -= numRead;
-		}
-		if (numRead <= 0) {
-			error = ERR_READING_MSG;
-			break;
-		}
-
-		i = buf.qb1.rcode;
-		if (i != NOERROR || ntohs(buf.qb1.ancount) == 0) {
-			if (thisns + 1 < numnsaddr &&
-			    (i == SERVFAIL || i == NOTIMP || i == REFUSED)) {
-				if (res.options & RES_DEBUG || verbose)
-					printf(
-				     "Server failed, trying next server: %s\n",
-					       i != NOERROR
-					       ? DecodeError(i)
-					       : "Premature end of data");
-				(void) close(sockFD);
-				sockFD = -1;
-				thisns++;
-				goto again;
-			}
-			printf("Server failed: %s\n", i != NOERROR
-			       ? DecodeError(i) : "Premature end of data");
-			break;
-		}
-
-		result = printinfo(&buf, cp, queryType, 1);
-		if (! result) {
-			error = ERR_PRINTING;
-			break;
-		}
-		numAnswers++;
-		cp = buf.qb2 + HFIXEDSZ;
-		if (ntohs(buf.qb1.qdcount) > 0) {
-			n = dn_skipname(cp, buf.qb2 + len);
-			if (n < 0) {
-				error = ERR_PRINTING;
-				break;
-			}
-			cp += n + QFIXEDSZ;
-		}
-		nmp = cp;
-		n = dn_skipname(cp, buf.qb2 + len);
-		if (n < 0) {
-			error = ERR_PRINTING;
-			break;
-		}
-		cp += n;
-		if (cp + INT16SZ > buf.qb2 + len) {
-			error = ERR_PRINTING;
-			break;
-		}
-		if ((ns_get16(cp) == ns_t_soa)) {
-			(void) dn_expand(buf.qb2, buf.qb2 + len, nmp,
-					 dname[soacnt], sizeof dname[0]);
-			if (soacnt) {
-				if (ns_samename(dname[0], dname[1]) == 1)
-					break;
-			} else
-				soacnt++;
-		}
-        }
-
-	(void) close(sockFD);
-	sockFD = -1;
-
-	switch (error) {
-	case NO_ERRORS:
-		return (SUCCESS);
-
-	case ERR_READING_LEN:
-		return (ERROR);
-
-	case ERR_PRINTING:
-		fprintf(stderr,"*** Error during listing of %s: %s\n", 
-				namePtr, DecodeError(result));
-		return (result);
-
-	case ERR_READING_MSG:
-		headerPtr = (HEADER *) &buf;
-		fprintf(stderr,"ListHosts: error receiving zone transfer:\n");
-		fprintf(stderr,
-	       "  result: %s, answers = %d, authority = %d, additional = %d\n",
-			p_rcode(headerPtr->rcode), 
-		    	ntohs(headerPtr->ancount), ntohs(headerPtr->nscount), 
-			ntohs(headerPtr->arcount));
-		return (ERROR);
-	default:
-		return (ERROR);
-	}
-}
-
-static const char *
-DecodeError(int result) {
-	switch(result) {
-	case NOERROR: 	return ("Success");
-	case FORMERR:	return ("Format error");
-	case SERVFAIL:	return ("Server failed");
-	case NXDOMAIN:	return ("Non-existent domain");
-	case NOTIMP:	return ("Not implemented");
-	case REFUSED:	return ("Query refused");
-	case NO_INFO: 	return ("No information");
-	case ERROR: 	return ("Unspecified error");
-	case TIME_OUT: 	return ("Timed out");
-	case NONAUTH: 	return ("Non-authoritative answer");
-	default:	return ("BAD ERROR VALUE");
-	}
-	/* NOTREACHED */
-}
diff --git a/contrib/bind/bin/irpd/Makefile b/contrib/bind/bin/irpd/Makefile
deleted file mode 100644
index 4d2c0fca3f4f4..0000000000000
--- a/contrib/bind/bin/irpd/Makefile
+++ /dev/null
@@ -1,98 +0,0 @@
-## Copyright (c) 1996, 1997 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 1.4 2000/05/09 07:02:22 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-YACC = yacc -d
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-DESTETC= /etc
-DESTRUN= /var/run
-AR= ar cru
-INSTALL= install
-STRIP=-s
-
-PS=ps
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL} -I${TOP}/lib/irs ${DEFS}
-
-VER= LOCAL-`date +%y%m%d.%H%M%S`
-HOSTNAMECMD= hostname || uname -n
-
-PROG=	irpd
-HDRS=	
-SRCS=	irpd.c
-OBJS=	irpd.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: irpd.${O} tmp_version.${O} ${LIBBIND}
-	${CC} ${CDEBUG} ${LDFLAGS} -o ${PROG}${EXE} ${OBJS} tmp_version.${O} \
-		${LIBBIND} ${SYSLIBS}
-
-tmp_version.${O}: tmp_version.c
-
-tmp_version.c: version.c Makefile ../Makefile ${SRCS} ${HDRS}
-	(u=$${USER-root} d=`pwd` h=`${HOSTNAMECMD}` t=`date`; \
-	sed -e "s|%WHEN%|$${t}|" -e "s|%VERSION%|"${VER}"|" \
-	    -e "s|%WHOANDWHERE%|$${u}@$${h}:$${d}|" \
-	    < version.c > tmp_version.c); sleep 1
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-	rm -f tmp_version.c tmp_version.${O}
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} -I${TOP}/lib/irs ${DEFS} ${SRCS}
-
-${DESTDIR}${DESTSBIN}:
-	mkdir -p ${DESTDIR}${DESTSBIN}
-
-install: ${DESTDIR}${DESTSBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c -m 755 ${PROG}${EXE} ${DESTDIR}${DESTSBIN}/${PROG}${EXE}
-
-links: FRC
-	@ln -s SRC/*.[chy] SRC/test .; rm -f ns_parser.[ch]
-
-tags: FRC
-	ctags ${SRCS} *.h
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/irpd/irpd.c b/contrib/bind/bin/irpd/irpd.c
deleted file mode 100644
index 4a94d2c01a729..0000000000000
--- a/contrib/bind/bin/irpd/irpd.c
+++ /dev/null
@@ -1,2259 +0,0 @@
-/*
- * Copyright(c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Notes. */
-
-#if 0
-
-I have to use an AF_INET. Ctl_server should probably take a AF arugment.
-
-The server has no way to issue any other greeting than HELLO. E.g., would
-like to be able to drop connection on greeting if client is not comming
-from 127.0.0.1.
-
-Need to fix client to handle response with body.
-
-should add iovec with body to the struct ctl_sess?
-
-should we close connections on some errors (like marshalling errors)?
-
-getnetbyname falls back to /etc/networks when named not running. Does not
-seem to be so for getnetbyaddr
-
-#endif
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irpd.c,v 1.8 2000/02/04 08:28:27 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <assert.h>
-#include <ctype.h>
-#include <ctype.h>
-#include <errno.h>
-#include <grp.h>
-#include <netdb.h>
-#include <pwd.h>
-#include <pwd.h>
-#include <resolv.h>
-#include <stdarg.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <unistd.h>
-#include <utmp.h>
-
-#ifdef EMPTY
-/* Digital UNIX utmp.h defines this. */
-#undef EMPTY
-#endif
-
-#include <isc/ctl.h>
-#include <isc/assertions.h>
-#include <isc/list.h>
-#include <isc/memcluster.h>
-#include <isc/logging.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/irpmarshall.h>
-#include <irs_data.h>
-
-#include "port_after.h"
-
-/* Macros. */
-
-#define ALLDIGITS(s) (strspn((s), "0123456789") == strlen((s)))
-
-#ifndef MAXHOSTNAMELEN
-#define MAXHOSTNAMELEN 256
-#endif
-
-#define MAXNETNAMELEN 256
-
-#if !defined(SUN_LEN)
-#define SUN_LEN(su) \
-	(sizeof (*(su)) - sizeof ((su)->sun_path) + strlen((su)->sun_path))
-#endif
-
-/*
- * This macro is used to initialize a specified field of a net_data struct.
- * If the initialization fails then an error response code is sent with a
- * description of which field failed to be initialized.
- *
- * This is only meant for use at the start of the various verb functions.
- */
-
-#define ND_INIT(nd, field, sess, respcode)				     \
-	do{ if ((nd)->field == 0) {					     \
-		(nd)->field = (*(nd)->irs->field ## _map)(nd->irs);	     \
-	        if ((nd)->field == 0) {					     \
-		    char *msg = "net_data " #field " initialization failed"; \
-		    ctl_response(sess, respcode, msg, CTL_EXIT, NULL,	     \
-			         NULL, NULL, NULL, 0);			     \
-		    return;						     \
-                }							     \
-	    }								     \
- 	} while (0)
-
-/* Data structures. */
-
-struct arg_s  {
-	struct iovec *		iov;
-	int			iovlen;
-};
-
-struct response_buff {
-	char *			buff;
-	size_t			bufflen;
-};
-
-struct client_ctx {
-	struct net_data *	net_data;
-};
-
-/* Forwards. */
-
-static struct response_buff *newbuffer(u_int length);
-static void release_buffer(struct response_buff *b);
-static struct arg_s *split_string(const char *string);
-static void free_args(struct arg_s *args);
-static int is_all_digits(char *p);
-static struct client_ctx *make_cli_ctx(void);
-static struct net_data *get_net_data(struct ctl_sess *sess);
-
-static void irpd_gethostbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			       const struct ctl_verb *verb, const char *rest,
-			       u_int respflags, void *respctx, void *uctx);
-static void irpd_gethostbyname2(struct ctl_sctx *ctx, struct ctl_sess *sess,
-				const struct ctl_verb *verb, const char *rest,
-				u_int respflags, void *respctx, void *uctx);
-static void irpd_gethostbyaddr(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			       const struct ctl_verb *verb, const char *rest,
-			       u_int respflags, void *respctx, void *uctx);
-static void irpd_gethostent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			    const struct ctl_verb *verb, const char *rest,
-			    u_int respflags, void *respctx, void *uctx);
-static void irpd_sethostent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			    const struct ctl_verb *verb, const char *rest,
-			    u_int respflags, void *respctx, void *uctx);
-static void irpd_getpwnam(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_getpwuid(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_getpwent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_setpwent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_getnetbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			      const struct ctl_verb *verb, const char *rest,
-			      u_int respflags, void *respctx, void *uctx);
-static void irpd_getnetbyaddr(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			      const struct ctl_verb *verb, const char *rest,
-			      u_int respflags, void *respctx, void *uctx);
-static void irpd_getnetent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			   const struct ctl_verb *verb, const char *rest,
-			   u_int respflags, void *respctx, void *uctx);
-static void irpd_setnetent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			   const struct ctl_verb *verb, const char *rest,
-			   u_int respflags, void *respctx, void *uctx);
-static void irpd_getgrnam(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_getgrgid(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_getgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_setgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  const struct ctl_verb *verb, const char *rest,
-			  u_int respflags, void *respctx, void *uctx);
-static void irpd_getservbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			       const struct ctl_verb *verb, const char *rest,
-			       u_int respflags, void *respctx, void *uctx);
-static void irpd_getservbyport(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			       const struct ctl_verb *verb, const char *rest,
-			       u_int respflags, void *respctx, void *uctx);
-static void irpd_getservent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			    const struct ctl_verb *verb, const char *rest,
-			    u_int respflags, void *respctx, void *uctx);
-static void irpd_setservent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			    const struct ctl_verb *verb, const char *rest,
-			    u_int respflags, void *respctx, void *uctx);
-static void irpd_getprotobyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-				const struct ctl_verb *verb, const char *rest,
-				u_int respflags, void *respctx, void *uctx);
-static void irpd_getprotobynumber(struct ctl_sctx *ctx, struct ctl_sess *sess,
-				  const struct ctl_verb *verb, const char *rest,
-				  u_int respflags, void *respctx, void *uctx);
-static void irpd_getprotoent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			     const struct ctl_verb *verb, const char *rest,
-			     u_int respflags, void *respctx, void *uctx);
-static void irpd_setprotoent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			     const struct ctl_verb *verb, const char *rest,
-			     u_int respflags, void *respctx, void *uctx);
-static void irpd_getnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			     const struct ctl_verb *verb, const char *rest,
-			     u_int respflags, void *respctx, void *uctx);
-static void irpd_innetgr(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			 const struct ctl_verb *verb, const char *rest,
-			 u_int respflags, void *respctx, void *uctx);
-static void irpd_setnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			     const struct ctl_verb *verb, const char *rest,
-			     u_int respflags, void *respctx, void *uctx);
-static void irpd_endnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			     const struct ctl_verb *verb, const char *rest,
-			     u_int respflags, void *respctx, void *uctx);
-static void irpd_quit(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		      const struct ctl_verb *verb, const char *rest,
-		      u_int respflags, void *respctx, void *uctx);
-static void irpd_help(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		      const struct ctl_verb *verb, const char *rest,
-		      u_int respflags, void *respctx, void *uctx);
-static void irpd_accept(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			const struct ctl_verb *verb, const char *rest,
-			u_int respflags, void *respctx, void *uctx);
-static void irpd_abort(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		       const struct ctl_verb *verb, const char *rest,
-		       u_int respflags, void *respctx, void *uctx);
-
-static void irpd_done(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		      void *param);
-static void response_done(struct ctl_sctx *ctx, struct ctl_sess *sess,
-			  void *uap);
-static void logger(enum ctl_severity, const char *fmt, ...);
-
-/* Constants. */
-
-static const u_int hello_code = IRPD_WELCOME_CODE;
-static const char hello_msg[] = "Welcome to IRPD (v 1)";
-static const u_int unkncode = 500;
-static const u_int timeoutcode = 501;
-static const u_int irpd_quit_ok = 201;
-static const u_int timeout = IRPD_TIMEOUT;
-
-/* Globals. */
-
-static int main_needs_exit = 0;
-static evContext ev;
-
-struct ctl_verb verbs [] = {
-	{ "gethostbyname", irpd_gethostbyname },
-	{ "gethostbyname2", irpd_gethostbyname2 },
-	{ "gethostbyaddr", irpd_gethostbyaddr },
-	{ "gethostent", irpd_gethostent },
-	{ "sethostent", irpd_sethostent },
-#ifdef WANT_IRS_PW
-	{ "getpwnam", irpd_getpwnam },
-	{ "getpwuid", irpd_getpwuid },
-	{ "getpwent", irpd_getpwent },
-	{ "setpwent", irpd_setpwent },
-#endif
-	{ "getnetbyname", irpd_getnetbyname },
-	{ "getnetbyaddr", irpd_getnetbyaddr },
-	{ "getnetent", irpd_getnetent },
-	{ "setnetent", irpd_setnetent },
-#ifdef WANT_IRS_GR
-	{ "getgrnam", irpd_getgrnam },
-	{ "getgrgid", irpd_getgrgid },
-	{ "getgrent", irpd_getgrent },
-	{ "setgrent", irpd_setgrent },
-#endif
-	{ "getservbyname", irpd_getservbyname },
-	{ "getservbyport", irpd_getservbyport },
-	{ "getservent", irpd_getservent },
-	{ "setservent", irpd_setservent },
-
-	{ "getprotobyname", irpd_getprotobyname },
-	{ "getprotobynumber", irpd_getprotobynumber },
-	{ "getprotoent", irpd_getprotoent },
-	{ "setprotoent", irpd_setprotoent },
-
-	{ "getnetgrent", irpd_getnetgrent },
-	{ "innetgr", irpd_innetgr },
-	{ "setnetgrent", irpd_setnetgrent },
-	{ "endnetgrent", irpd_endnetgrent },
-	{ "quit", irpd_quit },
-	{ "help", irpd_help },
-
-	{ "", irpd_accept },	/* For connection setups. */
-
-	/* abort is a verb expected by the ctl library. Is called when the
-	 * client drops the connection unexpectedly.
-	 */
-	{ "abort", irpd_abort },
-
-	{ NULL, NULL }
-};
-
-/*
- * An empty string causes the library to use the compiled in
- * defaults and to ignore any external files.
- */
-char *conffile = "";			
-
-/* Public. */
-
-int
-main(int argc, char **argv) {
-	struct ctl_sctx *ctx;
-	struct sockaddr *addr;
-#ifndef NO_SOCKADDR_UN
-	struct sockaddr_un uaddr;
-#endif
-	struct sockaddr_in iaddr;
-	log_channel chan;
-	short port = IRPD_PORT;
-	char *prog = argv[0];
-	char *sockname = IRPD_PATH;
-	char *p;
-	int ch;
-	size_t socksize;
-
-	addr = (struct sockaddr *)&iaddr;
-	socksize = sizeof iaddr;
-
-	openlog("iprd", LOG_CONS|LOG_PID, LOG_DAEMON);
-	while ((ch = getopt(argc, argv, "u:p:c:")) != -1) {
-		switch(ch) {
-		case 'c':
-			conffile = optarg;
-			break;
-
-		case 'p':
-			port = strtol(optarg, &p, 10);
-			if (*p != '\0') {
-				/* junk in argument */
-				syslog(LOG_ERR, "port option not a number");
-				exit(1);
-			}
-			break;
-
-#ifndef NO_SOCKADDR_UN
-		case 'u':
-			sockname = optarg;
-			addr = (struct sockaddr *)&uaddr;
-			socksize = sizeof uaddr;
-			break;
-#endif
-
-		case 'h':
-		case '?':
-		default:
-			fprintf(stderr, "%s [ -c config-file ]\n", prog);
-			exit(1);
-		}
-	}
-	argc -= optind;
-	argv += optind;
-
-	memset(&iaddr, 0, sizeof iaddr);
-
-#ifdef HAVE_SA_LEN
-	iaddr.sin_len = sizeof iaddr;
-#endif
-	iaddr.sin_family = AF_INET;
-	iaddr.sin_port = htons(IRPD_PORT);
-	iaddr.sin_addr.s_addr = htonl(INADDR_ANY);
-
-#ifndef NO_SOCKADDR_UN
-	memset(&uaddr, 0, sizeof uaddr);
-	if (addr == (struct sockaddr *)&uaddr) {
-		uaddr.sun_family = AF_UNIX;
-		strncpy(uaddr.sun_path, sockname, sizeof uaddr.sun_path);
-#ifdef HAVE_SA_LEN
-		uaddr.sun_len = SUN_LEN(&uaddr);
-#endif
-
-		socksize = SUN_LEN(&uaddr);
-
-		/* XXX what if this file is not currently a socket? */
-		unlink(sockname);
-	}
-#endif
-
-	evCreate(&ev);
-
-	ctx = ctl_server(ev, addr, socksize, verbs,
-			 unkncode, timeoutcode, /* IRPD_TIMEOUT */ 30, 5,
-			 IRPD_MAXSESS, logger, NULL);
-	
-	INSIST(ctx != NULL);
-
-	while (!main_needs_exit) {
-		evEvent event;
-
-		INSIST_ERR(evGetNext(ev, &event, EV_WAIT) != -1);
-		INSIST_ERR(evDispatch(ev, event) != -1);
-	}
-
-	return (0);
-}
-
-
-/*
- * static void
- * simple_response(struct ctl_sess *sess, u_int code, char *msg);
- *	Send back a simple, one-line response to the client.
- */
-static void
-simple_response(struct ctl_sess *sess, u_int code, char *msg) {
-	struct response_buff *b = newbuffer(strlen(msg) + 1);
-
-	if (b == 0)
-		return;
-	strcpy(b->buff, msg);
-	ctl_response(sess, code, b->buff, 0, 0,	 response_done, b, NULL, 0);
-}
-
-/*
- * static void
- * send_hostent(struct ctl_sess *sess, struct hostent *ho);
- *	Send a hostent struct over the wire. If HO is NULL, then
- *	a "No such host" is sent instead.
- */
-static void
-send_hostent(struct ctl_sess *sess, struct hostent *ho) {
-	if (ho == NULL)
-		simple_response(sess, IRPD_GETHOST_NONE, "No such host");
-	else {
-		size_t need;
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_ho(ho, &b->buff, &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETHOST_ERROR,
-					"Internal error");
-			logger(ctl_warning,
-			       "Cannot marshall host data for %s\n",
-			       ho->h_name);
-			release_buffer(b);
-		} else {
-			strcat(b->buff, "\r\n");
-
-			ctl_response(sess, IRPD_GETHOST_OK, "Host found",
-				     0, 0, response_done,
-				     b, b->buff, strlen(b->buff));
-		}
-	}
-}
-
-/*
- * static void
- * do_gethostbyname2(struct ctl_sess *sess, struct net_data *nd,
- *		     const char *hostname, int af);
- *	Look up the given HOSTNAME by Address-Family
- *	and then send the results to the client connected to
- *	SESS.
- */
-static void
-do_gethostbyname2(struct ctl_sess *sess, struct net_data *nd,
-		  const char *hostname, int af)
-{
-	struct hostent *ho;
-
-	ho = gethostbyname2_p(hostname, af, nd);
-	send_hostent(sess, ho);
-}
-
-/*
- * static void
- * irpd_gethostbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		      const struct ctl_verb *verb, const char *rest,
- *		      u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETHOSTBYNAME verb.
- */
-static void
-irpd_gethostbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		   const struct ctl_verb *verb, const char *rest,
-		   u_int respflags, void *respctx, void *uctx)
-{
-	char hname[MAXHOSTNAMELEN];
-	struct arg_s *args;
-	int i;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ho, sess, IRPD_GETHOST_ERROR);
-	
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETHOST_ERROR,
-				"Incorrect usage: GETHOSTBYNAME hostname");
-	} else {
-		if (args->iov[0].iov_len >= sizeof hname) {
-			simple_response(sess, IRPD_GETHOST_ERROR,
-					"GETHOSTBYNAME: name too long");
-		} else {
-			strncpy(hname, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			hname[args->iov[0].iov_len] = '\0';
-			do_gethostbyname2(sess, netdata, hname, AF_INET);
-		}
-	}
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_gethostbyname2(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		       const struct ctl_verb *verb, const char *rest,
- *		       u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETHOSTBYNAME2 verb.
- */
-static void
-irpd_gethostbyname2(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		    const struct ctl_verb *verb, const char *rest,
-		    u_int respflags, void *respctx, void *uctx)
-{
-	char hname[MAXHOSTNAMELEN];
-	struct arg_s *args;
-	int i;
-	int af;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ho, sess, IRPD_GETHOST_ERROR);
-	
-	args = split_string(rest);
-	if (args->iovlen != 3) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETHOST_ERROR,
-				"Incorrect usage: GETHOSTBYNAME2 hostname AF");
-	} else if (args->iov[0].iov_len >= sizeof hname) {
-		simple_response(sess, IRPD_GETHOST_ERROR,
-				"GETHOSTBYNAME2: name too long");
-	} else {
-		if (strncasecmp(args->iov[1].iov_base, "af_inet6", 8) == 0)
-			af = AF_INET6;
-		else if (strncasecmp(args->iov[1].iov_base, "af_inet", 7) == 0)
-			af = AF_INET;
-		else {
-			simple_response(sess, IRPD_GETHOST_ERROR,
-					"Unknown address family");
-			goto untimely;
-		}
-
-		strncpy(hname, args->iov[0].iov_base,
-			args->iov[0].iov_len);
-		hname[args->iov[0].iov_len] = '\0';
-		do_gethostbyname2(sess, netdata, hname, af);
-	}
-
- untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_gethostbyaddr(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		      const struct ctl_verb *verb, const char *rest,
- *		      u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETHOSTBYADDR verb.
- */
-static void
-irpd_gethostbyaddr(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		   const struct ctl_verb *verb, const char *rest,
-		   u_int respflags, void *respctx, void *uctx)
-{
-	struct hostent *ho;
-	char haddr[MAXHOSTNAMELEN];
-	char tmpaddr[NS_IN6ADDRSZ];
-	struct arg_s *args;
-	int i;
-	int af;
-	int addrlen;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ho, sess, IRPD_GETHOST_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 3) {
-		simple_response(sess, IRPD_GETHOST_ERROR,
-				"GETHOSTBYADDR addr afamily");
-	} else {
-		if (args->iov[0].iov_len >= sizeof haddr) {
-			simple_response(sess, IRPD_GETHOST_ERROR,
-					"Address too long");
-		} else {
-			strncpy(haddr, args->iov[1].iov_base,
-				args->iov[1].iov_len);
-			haddr[args->iov[1].iov_len] = '\0';
-			if (strcasecmp(haddr, "af_inet") == 0) {
-				af = AF_INET;
-				addrlen = NS_INADDRSZ;
-			} else if (strcasecmp(haddr, "af_inet6") == 0) {
-				af = AF_INET6;
-				addrlen = NS_IN6ADDRSZ;
-			} else {
-				simple_response(sess, IRPD_GETHOST_ERROR,
-					      "Unknown address family");
-				goto untimely;
-			}
-
-			strncpy(haddr, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			haddr[args->iov[0].iov_len] = '\0';
-
-			if (inet_pton(af, haddr, tmpaddr) != 1) {
-				simple_response(sess, IRPD_GETHOST_ERROR,
-					     "Invalid address");
-				goto untimely;
-			}
-
-			ho = gethostbyaddr_p(tmpaddr, addrlen, af, netdata);
-			send_hostent(sess, ho);
-		}
-	}
-
- untimely:
-	free_args(args);
-}
-
-
-/*
- * static void
- * irpd_gethostent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		   const struct ctl_verb *verb, const char *rest,
- *		   u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETHOSTENT verb
- */
-static void
-irpd_gethostent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		const struct ctl_verb *verb, const char *rest,
-		u_int respflags, void *respctx, void *uctx)
-{
-	struct hostent *ho;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ho, sess, IRPD_GETHOST_ERROR);
-
-	ho = gethostent_p(netdata);
-
-	send_hostent(sess, ho);
-}
-
-/*
- * static void
- * irpd_sethostent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		   const struct ctl_verb *verb, const char *rest,
- *		   u_int respflags, void *respctx, void *uctx);
- *	Implementation of the SETHOSTENT verb
- */
-static void
-irpd_sethostent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		const struct ctl_verb *verb, const char *rest,
-		u_int respflags, void *respctx, void *uctx)
-{
-	struct hostent *ho;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ho, sess, IRPD_GETHOST_ERROR);
-
-	sethostent_p(1, netdata);	/* always stayopen */
-	simple_response(sess, IRPD_GETHOST_SETOK, "ok");
-}
-
-#ifdef WANT_IRS_PW
-/*
- * static void
- * send_pwent(struct ctl_sess *sess, struct passwd *pw);
- *	Send PW over the wire, or, if PW is NULL, a "No such
- *	user" response.
- */
-static void
-send_pwent(struct ctl_sess *sess, struct passwd *pw) {
-	if (pw == NULL) {
-		simple_response(sess, IRPD_GETUSER_NONE,
-				"No such user");
-	} else {
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_pw(pw, &b->buff,
-				    &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETUSER_ERROR,
-					"Internal error");
-			logger(ctl_warning, "Cant marshall pw\n");
-			return;
-		}
-
-		strcat(b->buff, "\r\n");
-
-		ctl_response(sess, IRPD_GETUSER_OK, "User found", 0, 0,
-			     response_done, b, b->buff, strlen(b->buff));
-	}
-}
-
-/*
- * static void
- * irpd_getpwnam(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETPWNAM verb
- */
-static void
-irpd_getpwnam(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct passwd *pw;
-	char username[64];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pw, sess, IRPD_GETUSER_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETUSER_ERROR,
-				"GETPWNAM username");
-	} else {
-		if (args->iov[0].iov_len >= sizeof username) {
-			simple_response(sess, IRPD_GETUSER_ERROR,
-					"Name too long");
-		} else {
-			strncpy(username, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			username[args->iov[0].iov_len] = '\0';
-
-			pw = getpwnam_p(username, netdata);
-			send_pwent(sess, pw);
-		}
-	}
-
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getpwuid(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETPWUID verb.
- */
-static void
-irpd_getpwuid(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct passwd *pw;
-	char userid[64];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pw, sess, IRPD_GETUSER_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETUSER_ERROR,
-				"GETPWUID uid");
-	} else {
-		if (args->iov[0].iov_len >= sizeof userid) {
-			simple_response(sess, IRPD_GETUSER_ERROR,
-					"Name too long");
-		} else {
-			strncpy(userid, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			userid[args->iov[0].iov_len] = '\0';
-
-			if (!ALLDIGITS(userid)) {
-				simple_response(sess, IRPD_GETUSER_ERROR,
-						"Not a uid");
-			} else {
-				uid_t uid;
-				long lval;
-
-				lval = strtol(userid, 0, 10);
-				uid = (uid_t)lval;
-				if ((long)uid != lval) {
-					/* value was too big */
-					simple_response(sess,
-							IRPD_GETUSER_ERROR,
-							"Not a valid uid");
-					goto untimely;
-				}
-
-				pw = getpwuid_p(uid, netdata);
-				send_pwent(sess, pw);
-			}
-		}
-	}
-
-  untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getpwent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implemtnation of the GETPWENT verb. 
- */
-static void
-irpd_getpwent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct passwd *pw;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pw, sess, IRPD_GETUSER_ERROR);
-
-	pw = getpwent_p(netdata);
-	send_pwent(sess, pw);
-}
-
-/*
- * static void
- * irpd_setpwent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implemtnation of the SETPWENT verb.
- */
-static void
-irpd_setpwent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct passwd *pw;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pw, sess, IRPD_GETUSER_ERROR);
-
-	setpwent_p(netdata);
-	simple_response(sess, IRPD_GETUSER_SETOK, "ok");
-}
-#endif /* WANT_IRS_PW */
-
-/*
- * static void
- * send_nwent(struct ctl_sess *sess, struct nwent *ne);
- *	Sends a nwent structure over the wire, or "No such
- *	network" if NE is NULL.
- */
-static void
-send_nwent(struct ctl_sess *sess, struct nwent *nw) {
-	if (nw == NULL) {
-		simple_response(sess, IRPD_GETNET_NONE, "No such net");
-	} else {
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_nw(nw, &b->buff,
-				    &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETNET_ERROR,
-					"Internal error");
-			logger(ctl_warning, "Cant marshall nw\n");
-			return;
-		}
-
-		strcat(b->buff, "\r\n");
-
-		ctl_response(sess, IRPD_GETNET_OK, "Network found", 0, 0,
-			     response_done, b, b->buff, strlen(b->buff));
-	}
-}
-
-/*
- * static void
- * send_netent(struct ctl_sess *sess, struct netent *ne);
- *	Sends a NETENT structure over the wire, or "No such
- *	Network" error if NE is NULL.
- */
-static void
-send_netent(struct ctl_sess *sess, struct netent *ne) {
-	if (ne == NULL) {
-		simple_response(sess, IRPD_GETNET_NONE, "No such net");
-	} else {
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_ne(ne, &b->buff,
-				    &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETNET_ERROR,
-					"Internal error");
-			logger(ctl_warning, "Cant marshall ne\n");
-			return;
-		}
-
-		strcat(b->buff, "\r\n");
-
-		ctl_response(sess, IRPD_GETNET_OK, "Network found", 0, 0,
-			     response_done, b, b->buff, strlen(b->buff));
-	}
-}
-
-/*
- * static void
- * irpd_getnetbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		     const struct ctl_verb *verb, const char *rest,
- *		     u_int respflags, void *respctx, void *uctx);
- *	Implementation of GETNETBYNAME verb.
- */
-static void
-irpd_getnetbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		  const struct ctl_verb *verb, const char *rest,
-		  u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct netent *ne;
-	struct nwent *nw;
-	char netname[MAXNETNAMELEN];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, nw, sess, IRPD_GETNET_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETNET_ERROR,
-				"GETNETBYNAME name");
-	} else {
-		if (args->iov[0].iov_len >= sizeof netname) {
-			simple_response(sess, IRPD_GETNET_ERROR,
-					"Name too long");
-		} else {
-			strncpy(netname, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			netname[args->iov[0].iov_len] = '\0';
-
-			ne = getnetbyname_p(netname, netdata);
-
-			/* The public interface only gives us a struct
-			   netent, and we need a struct nwent that irs uses
-			   internally, so we go dig it out ourselves. Yuk
-			*/
-			nw = NULL;
-			if (ne != NULL) {
-				/* Puke. */
-				INSIST(netdata->nw_last == ne);
-				nw = netdata->nww_last;
-			}
-
-			send_nwent(sess, nw);
-		}
-	}
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getnetbyaddr(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		     const struct ctl_verb *verb, const char *rest,
- *		     u_int respflags, void *respctx, void *uctx);
- */
-static void
-irpd_getnetbyaddr(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		  const struct ctl_verb *verb, const char *rest,
-		  u_int respflags, void *respctx, void *uctx)
-{
-	struct netent *ne;
-	struct nwent *nw;
-	char haddr[MAXHOSTNAMELEN];
-	long tmpaddr;
-	struct arg_s *args;
-	int i;
-	int af;
-	int addrlen;
-	int bits;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, nw, sess, IRPD_GETUSER_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 3) {
-		simple_response(sess, IRPD_GETNET_ERROR,
-				"GETNETBYADDR addr afamily");
-	} else {
-		if (args->iov[0].iov_len >= sizeof haddr) {
-			simple_response(sess, IRPD_GETNET_ERROR,
-					"Address too long");
-		} else {
-			strncpy(haddr, args->iov[1].iov_base,
-				args->iov[1].iov_len);
-			haddr[args->iov[1].iov_len] = '\0';
-			if (strcasecmp(haddr, "af_inet") == 0) {
-				af = AF_INET;
-				addrlen = NS_INADDRSZ;
-			} else if (strcasecmp(haddr, "af_inet6") == 0) {
-				af = AF_INET6;
-				addrlen = NS_IN6ADDRSZ;
-
-				/* XXX the interface we use(getnetbyaddr)
-				 * can't handle AF_INET6, so for now we
-				 * bail.
-				 */
-				simple_response(sess, IRPD_GETNET_ERROR,
-						"AF_INET6 unsupported");
-				goto untimely;
-			} else {
-				simple_response(sess, IRPD_GETNET_ERROR,
-					      "Unknown address family");
-				goto untimely;
-			}
-
-			strncpy(haddr, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			haddr[args->iov[0].iov_len] = '\0';
-
-			bits = inet_net_pton(af, haddr,
-					     &tmpaddr, sizeof tmpaddr);
-			if (bits < 0) {
-				simple_response(sess, IRPD_GETNET_ERROR,
-						"Invalid address");
-				goto untimely;
-			}
-
-			ne = getnetbyaddr_p(tmpaddr, af, netdata);
-
-			/* The public interface only gives us a struct
-			   netent, and we need a struct nwent that irs uses
-			   internally, so we go dig it out ourselves. Yuk
-			*/
-			nw = NULL;
-			if (ne != NULL) {
-				/* Puke puke */
-				INSIST(netdata->nw_last == ne);
-				nw = netdata->nww_last;
-			}
-
-			send_nwent(sess, nw);
-		}
-	}
-
-  untimely:
-	free_args(args);
-}
-
-
-/*
- * static void
- * irpd_getnetent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		  const struct ctl_verb *verb, const char *rest,
- *		  u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETNETENT verb.
- */
-static void
-irpd_getnetent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	       const struct ctl_verb *verb, const char *rest,
-	       u_int respflags, void *respctx, void *uctx)
-{
-	struct netent *ne;
-	struct nwent *nw;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, nw, sess, IRPD_GETNET_ERROR);
-
-	ne = getnetent_p(netdata);
-	nw = NULL;
-	if (ne != NULL) {
-		/* triple puke */
-		INSIST(netdata->nw_last == ne);
-		nw = netdata->nww_last;
-	}
-	send_nwent(sess, nw);
-}
-
-/*
- * static void
- * irpd_setnetent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		  const struct ctl_verb *verb, const char *rest,
- *		  u_int respflags, void *respctx, void *uctx);
- *	Implementation of the SETNETENT verb.
- */
-static void
-irpd_setnetent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	       const struct ctl_verb *verb, const char *rest,
-	       u_int respflags, void *respctx, void *uctx)
-{
-	struct netent *ne;
-	struct nwent *nw;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, nw, sess, IRPD_GETNET_ERROR);
-
-	setnetent_p(1, netdata);	/* always stayopen */
-	simple_response(sess, IRPD_GETNET_SETOK, "ok");
-}
-
-#ifdef WANT_IRS_GR
-/*
- * static void
- * send_grent(struct ctl_sess *sess, struct group *gr);
- *	Marshall GR and send as body of response. If GR is NULL
- *	then a "No such group" response is sent instead.
- */
-static void
-send_grent(struct ctl_sess *sess, struct group *gr) {
-	if (gr == NULL) {
-		simple_response(sess, IRPD_GETGROUP_NONE,
-				"No such user");
-	} else {
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_gr(gr, &b->buff, &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETGROUP_ERROR,
-					"Internal error");
-			logger(ctl_warning, "Cant marshall gr\n");
-			return;
-		}
-
-		strcat(b->buff, "\r\n");
-
-		ctl_response(sess, IRPD_GETGROUP_OK, "Group found", 0, 0,
-			     response_done, b, b->buff, strlen(b->buff));
-	}
-}
-
-/*
- * static void
- * irpd_getgrnam(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETGRNAM verb.
- */
-static void
-irpd_getgrnam(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct group *gr;
-	char groupname[64];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, gr, sess, IRPD_GETGROUP_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETGROUP_ERROR,
-				"GETGRNAM groupname");
-	} else {
-		if (args->iov[0].iov_len >= sizeof groupname) {
-			simple_response(sess, IRPD_GETGROUP_ERROR,
-					"Name too long");
-		} else {
-			strncpy(groupname, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			groupname[args->iov[0].iov_len] = '\0';
-
-			gr = getgrnam_p(groupname, netdata);
-			send_grent(sess, gr);
-		}
-	}
-
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getgrgid(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implentation of the GETGRGID verb.
- */
-static void
-irpd_getgrgid(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct group *gr;
-	char groupid[64];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, gr, sess, IRPD_GETGROUP_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETGROUP_ERROR,
-				"GETGRUID gid");
-	} else {
-		if (args->iov[0].iov_len >= sizeof groupid) {
-			simple_response(sess, IRPD_GETGROUP_ERROR,
-					"Name too long");
-		} else {
-			strncpy(groupid, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			groupid[args->iov[0].iov_len] = '\0';
-
-			if (!ALLDIGITS(groupid)) {
-				simple_response(sess, IRPD_GETGROUP_ERROR,
-						"Not a gid");
-			} else {
-				gid_t gid;
-				long lval;
-
-				lval = strtol(groupid, 0, 10);
-				gid = (gid_t)lval;
-				if ((long)gid != lval) {
-					/* value was too big */
-					simple_response(sess,
-							IRPD_GETGROUP_ERROR,
-							"Not a valid gid");
-					goto untimely;
-				}
-
-				gr = getgrgid_p(gid, netdata);
-				send_grent(sess, gr);
-			}
-		}
-	}
-
-  untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implementation of the GETGRENT verb.
- */
-static void
-irpd_getgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct group *gr;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, gr, sess, IRPD_GETGROUP_ERROR);
-
-	gr = getgrent_p(netdata);
-	send_grent(sess, gr);
-}
-
-/*
- * static void
- * irpd_setgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		 const struct ctl_verb *verb, const char *rest,
- *		 u_int respflags, void *respctx, void *uctx);
- *	Implementation of the SETGRENT verb.
- */
-static void
-irpd_setgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	struct group *gr;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, gr, sess, IRPD_GETGROUP_ERROR);
-
-	setgrent_p(netdata);
-	simple_response(sess, IRPD_GETGROUP_SETOK, "ok");
-}
-#endif /* WANT_IRS_GR */
-
-static void
-send_servent(struct ctl_sess *sess, struct servent *serv) {
-	if (serv == NULL) {
-		simple_response(sess, IRPD_GETSERVICE_NONE,
-				"No such service");
-	} else {
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_sv(serv, &b->buff,
-				    &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETSERVICE_ERROR,
-					"Internal error");
-			logger(ctl_warning, "Cant marshall servent\n");
-			return;
-		}
-
-		strcat(b->buff, "\r\n");
-
-		ctl_response(sess, IRPD_GETSERVICE_OK, "Service found", 0, 0,
-			     response_done, b, b->buff, strlen(b->buff));
-	}
-}
-
-static void
-irpd_getservbyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		   const struct ctl_verb *verb, const char *rest,
-		   u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct servent *serv;
-	char servicename[64];
-	char protoname[10];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, sv, sess, IRPD_GETSERVICE_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 3) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETSERVICE_ERROR,
-				"GETSERVNAM servicename protocol");
-	} else {
-		if (args->iov[0].iov_len >= sizeof servicename) {
-			simple_response(sess, IRPD_GETSERVICE_ERROR,
-					"Invalid service name");
-		} else if (args->iov[1].iov_len >= sizeof protoname) {
-			simple_response(sess, IRPD_GETSERVICE_ERROR,
-					"Invalid protocol name");
-		} else {
-			strncpy(servicename, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			servicename[args->iov[0].iov_len] = '\0';
-
-			strncpy(protoname, args->iov[1].iov_base,
-				args->iov[1].iov_len);
-			protoname[args->iov[1].iov_len] = '\0';
-
-			serv = getservbyname_p(servicename, protoname,
-					       netdata);
-			send_servent(sess, serv);
-		}
-	}
-
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getservbyport(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		      const struct ctl_verb *verb, const char *rest,
- *		      u_int respflags, void *respctx, void *uctx);
- *	Handle the GETSERVBYPORT verb.
- */
-static void
-irpd_getservbyport(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		   const struct ctl_verb *verb, const char *rest,
-		   u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct servent *sv;
-	char portnum[64];
-	char protoname[10];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, sv, sess, IRPD_GETSERVICE_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 3) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETSERVICE_ERROR,
-				"GETSERVBYPORT port protocol");
-	} else {
-		if (args->iov[0].iov_len >= sizeof portnum) {
-			simple_response(sess, IRPD_GETSERVICE_ERROR,
-					"Invalid port");
-		} else if (args->iov[1].iov_len > sizeof protoname - 1) {
-			simple_response(sess, IRPD_GETSERVICE_ERROR,
-					"Invalid protocol");
-		} else {
-			strncpy(portnum, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			portnum[args->iov[0].iov_len] = '\0';
-
-			strncpy(protoname, args->iov[1].iov_base,
-				args->iov[1].iov_len);
-			protoname[args->iov[1].iov_len] = '\0';
-
-			if (!ALLDIGITS(portnum)) {
-				simple_response(sess, IRPD_GETSERVICE_ERROR,
-						"Not a port number");
-			} else {
-				short port;
-				long lval;
-
-				lval = strtol(portnum, 0, 10);
-				port = (short)lval;
-				if ((long)port != lval) {
-					/* value was too big */
-					simple_response(sess,
-							IRPD_GETSERVICE_ERROR,
-							"Not a valid port");
-					goto untimely;
-				}
-				port = htons(port);
-
-				sv = getservbyport_p(port, protoname, netdata);
-				send_servent(sess, sv);
-			}
-		}
-	}
-
-  untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getservent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		   const struct ctl_verb *verb, const char *rest,
- *		   u_int respflags, void *respctx, void *uctx);
- *	Handle the GETSERVENT verb.
- */
-static void
-irpd_getservent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	       const struct ctl_verb *verb, const char *rest,
-	       u_int respflags, void *respctx, void *uctx)
-{
-	struct servent *sv;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, sv, sess, IRPD_GETSERVICE_ERROR);
-
-	sv = getservent_p(netdata);
-	send_servent(sess, sv);
-}
-
-/*
- * static void
- * irpd_setservent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		   const struct ctl_verb *verb, const char *rest,
- *		   u_int respflags, void *respctx, void *uctx);
- *	Handle the SETSERVENT verb.
- */
-static void
-irpd_setservent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	       const struct ctl_verb *verb, const char *rest,
-	       u_int respflags, void *respctx, void *uctx)
-{
-	struct servent *sv;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, sv, sess, IRPD_GETSERVICE_ERROR);
-
-	setservent_p(1, netdata);	/* always stay open */
-	simple_response(sess, IRPD_GETSERVICE_SETOK, "ok");
-}
-
-/*
- * static void
- * send_prent(struct ctl_sess *sess, struct protoent *pr);
- *	Send the PR structure over the wire. If PR is NULL, then
- *	the response "No such protocol" is sent instead.
- */
-static void
-send_prent(struct ctl_sess *sess, struct protoent *pr) {
-	if (pr == NULL) {
-		simple_response(sess, IRPD_GETPROTO_NONE,
-				"No such protocol");
-	} else {
-		struct response_buff *b = newbuffer(0);
-
-		if (irp_marshall_pr(pr, &b->buff,
-				    &b->bufflen) != 0) {
-			simple_response(sess, IRPD_GETPROTO_ERROR,
-					"Internal error");
-			logger(ctl_warning, "Cant marshall pr\n");
-			return;
-		}
-
-		strcat(b->buff, "\r\n");
-
-		ctl_response(sess, IRPD_GETPROTO_OK, "Protocol found", 0, 0,
-			     response_done, b, b->buff, strlen(b->buff));
-	}
-}
-
-/*
- * static void
- * irpd_getprotobyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		       const struct ctl_verb *verb, const char *rest,
- *		       u_int respflags, void *respctx, void *uctx);
- *	Handle the GETPROTOBYNAME verb.
- */
-static void
-irpd_getprotobyname(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		    const struct ctl_verb *verb, const char *rest,
-		    u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct protoent *pr;
-	char protoname[64];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pr, sess, IRPD_GETPROTO_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETPROTO_ERROR,
-				"GETPROTOBYNAME protocol");
-	} else {
-		if (args->iov[0].iov_len >= sizeof protoname) {
-			simple_response(sess, IRPD_GETPROTO_ERROR,
-					"Name too long");
-		} else {
-			strncpy(protoname, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			protoname[args->iov[0].iov_len] = '\0';
-
-			pr = getprotobyname_p(protoname, netdata);
-			send_prent(sess, pr);
-		}
-	}
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getprotobynumber(struct ctl_sctx *ctx,
- *			 struct ctl_sess *sess, const struct ctl_verb *verb,
- *			 const char *rest, u_int respflags, void *respctx,
- *			 void *uctx);
- *	Handle the GETPROTOBYNUMBER verb.
- */
-static void
-irpd_getprotobynumber(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		      const struct ctl_verb *verb, const char *rest,
-		      u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct protoent *pr;
-	char protonum[64];
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pr, sess, IRPD_GETPROTO_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETPROTO_ERROR,
-				"GETPROTOBYNUMBER protocol");
-	} else {
-		if (args->iov[0].iov_len >= sizeof protonum) {
-			simple_response(sess, IRPD_GETGROUP_ERROR,
-					"Name too long");
-		} else {
-			strncpy(protonum, args->iov[0].iov_base,
-				args->iov[0].iov_len);
-			protonum[args->iov[0].iov_len] = '\0';
-
-			if (!ALLDIGITS(protonum)) {
-				simple_response(sess, IRPD_GETPROTO_ERROR,
-						"Not a protocol number");
-			} else {
-				int proto;
-				long lval;
-
-				lval = strtol(protonum, 0, 10);
-				proto = (int)lval;
-				if ((long)proto != lval) {
-					/* value was too big */
-					simple_response(sess,
-							IRPD_GETPROTO_ERROR,
-							"Not a valid proto");
-					goto untimely;
-				}
-
-				pr = getprotobynumber_p(proto, netdata);
-				send_prent(sess, pr);
-			}
-		}
-	}
-
-  untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_getprotoent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		    const struct ctl_verb *verb, const char *rest,
- *		    u_int respflags, void *respctx, void *uctx);
- *	Handle the GETPROTOENT verb.
- */
-static void
-irpd_getprotoent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		const struct ctl_verb *verb, const char *rest,
-		u_int respflags, void *respctx, void *uctx)
-{
-	struct protoent *pr;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pr, sess, IRPD_GETPROTO_ERROR);
-
-	pr = getprotoent_p(netdata);
-	send_prent(sess, pr);
-}
-
-/*
- * static void
- * irpd_setprotoent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		    const struct ctl_verb *verb, const char *rest,
- *		    u_int respflags, void *respctx, void *uctx);
- *	Handle the SETPROTOENT verb.
- */
-static void
-irpd_setprotoent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		const struct ctl_verb *verb, const char *rest,
-		u_int respflags, void *respctx, void *uctx)
-{
-	struct protoent *pr;
-	size_t need;
-	size_t need_total = 0;
-	struct response_buff *b;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, pr, sess, IRPD_GETPROTO_ERROR);
-
-	setprotoent_p(1, netdata);	/* always stay open */
-	simple_response(sess, IRPD_GETPROTO_SETOK, "ok");
-}
-
-/*
- * static void
- * send_pwent(struct ctl_sess *sess, struct passwd *pw);
- *	Send PW over the wire, or, if PW is NULL, a "No such
- *	user" response.
- */
-static void
-send_ngent(struct ctl_sess *sess, char *host, char *user, char *domain) {
-	struct response_buff *b = newbuffer(0);
-
-	if (irp_marshall_ng(host, user, domain, &b->buff,
-			    &b->bufflen) != 0) {
-		simple_response(sess, IRPD_GETNETGR_ERROR,
-				"Internal error");
-		logger(ctl_warning, "Cant marshall ng\n");
-		return;
-	}
-	
-	strcat(b->buff, "\r\n");
-	
-	ctl_response(sess, IRPD_GETNETGR_OK, "Netgroup entry", 0, 0,
-		     response_done, b, b->buff, strlen(b->buff));
-}
-
-/*
- * static void
- * irpd_getnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		    const struct ctl_verb *verb, const char *rest,
- *		    u_int respflags, void *respctx, void *uctx);
- *	Handle the GETNETGRENT verb. 
- */
-static void
-irpd_getnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		 const struct ctl_verb *verb, const char *rest,
-		 u_int respflags, void *respctx, void *uctx)
-{
-	char netgroupname[64];
-	struct response_buff *b = NULL;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ng, sess, IRPD_GETNETGR_ERROR);
-
-	if (rest != NULL && strlen(rest) > 0) {
-		simple_response(sess, IRPD_GETNETGR_ERROR,
-				"GETNETGRENT");
-	} else {
-		char *host, *user, *domain;
-		
-		if (getnetgrent_p(&host, &user, &domain, netdata) == 1) {
-			send_ngent(sess, host, user, domain);
-		} else {
-			simple_response(sess, IRPD_GETNETGR_NOMORE,
-					"No more");
-		}
-	}
-}
-
-/*
- * static void
- * irpd_innetgr(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		const struct ctl_verb *verb, const char *rest,
- *		u_int respflags, void *respctx, void *uctx);
- *	Handle the INNETGR verb.
- */
-static void
-irpd_innetgr(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		 const struct ctl_verb *verb, const char *rest,
-		 u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct response_buff *b;
-	size_t need;
-	struct net_data *netdata = get_net_data(sess);
-	char *host;
-	char *user;
-	char *domain;
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ng, sess, IRPD_GETNETGR_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 3) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETNETGR_ERROR,
-				"INNETGR netgroup ngentry");
-	} else {
-		char *grptmp = memget(args->iov[0].iov_len + 1);
-		char *ngtmp = memget(args->iov[1].iov_len + 1);
-
-		strncpy(grptmp, args->iov[0].iov_base, args->iov[0].iov_len);
-		strncpy(ngtmp, args->iov[1].iov_base, args->iov[1].iov_len);
-
-		grptmp[args->iov[0].iov_len] = '\0';
-		ngtmp[args->iov[1].iov_len] = '\0';
-		
-		if (irp_unmarshall_ng(&host, &user, &domain, ngtmp) != 0) {
-			simple_response(sess, IRPD_GETNETGR_ERROR,
-					"ngentry must be (host,user,domain)");
-		} else {
-			if (innetgr_p(grptmp, host, user, domain,
-				      netdata) == 1) {
-				simple_response(sess, IRPD_GETNETGR_MATCHES,
-						"INNETGR matches");
-			} else {
-				simple_response(sess, IRPD_GETNETGR_NOMATCH,
-						"INNETGR does not match");
-			}
-		}
-
-		memput(grptmp, args->iov[0].iov_len + 1);
-		memput(ngtmp, args->iov[1].iov_len + 1);
-	}
-	
-  untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_setnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		    const struct ctl_verb *verb, const char *rest,
- *		    u_int respflags, void *respctx, void *uctx);
- *	Handle the SETNETGRENT verb.
- */
-static void
-irpd_setnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		 const struct ctl_verb *verb, const char *rest,
-		 u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ng, sess, IRPD_GETNETGR_ERROR);
-
-	args = split_string(rest);
-	if (args->iovlen != 2) {	/* len includes NULL at end */
-		simple_response(sess, IRPD_GETNETGR_ERROR,
-				"setnetgrent netgroup");
-	} else {
-		setnetgrent_p(rest, netdata);
-		simple_response(sess, IRPD_GETNETGR_SETOK,
-				"setnetgrent ok");
-	}
-	
-  untimely:
-	free_args(args);
-}
-
-/*
- * static void
- * irpd_endnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *		    const struct ctl_verb *verb, const char *rest,
- *		    u_int respflags, void *respctx, void *uctx);
- *	Handle the ENDNETGRENT verb.
- */
-static void
-irpd_endnetgrent(struct ctl_sctx *ctx, struct ctl_sess *sess,
-		 const struct ctl_verb *verb, const char *rest,
-		 u_int respflags, void *respctx, void *uctx)
-{
-	struct arg_s *args;
-	struct net_data *netdata = get_net_data(sess);
-	
-	INSIST(netdata != NULL);
-
-	ND_INIT(netdata, ng, sess, IRPD_GETNETGR_ERROR);
-
-	if (rest != NULL && strlen (rest) > 0) {
-		simple_response(sess, IRPD_GETNETGR_ERROR,
-				"endnetgrent netgroup");
-	} else {
-		endnetgrent_p(netdata);
-		simple_response(sess, IRPD_GETNETGR_SETOK,
-				"endnetgrent ok");
-	}
-}
-
-/*
- * static void
- * irpd_done(struct ctl_sctx *ctx, struct ctl_sess *sess, void *param)
- *	Callback for when QUIT respnse is sent out.
- */
-static void
-irpd_done(struct ctl_sctx *ctx, struct ctl_sess *sess, void *param) {
-	struct net_data *netdata = get_net_data(sess);
-
-	INSIST(netdata != NULL);
-	
-	net_data_destroy(netdata);
-}
-	
-/*
- * static void
- * irpd_quit(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *	     const struct ctl_verb *verb, const char *rest,
- *	     u_int respflags, void *respctx, void *uctx);
- *	Handle the QUIT verb.
- */
-static void
-irpd_quit(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	ctl_response(sess, irpd_quit_ok, "See ya!", CTL_EXIT, NULL,
-		     0 , NULL, NULL, 0);
-}
-
-/*
- * static void
- * irpd_help(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *	     const struct ctl_verb *verb, const char *rest,
- *	     u_int respflags, void *respctx, void *uctx);
- *	Handle the HELP verb.
- */
-static void
-irpd_help(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	/* XXX	should make this do something better (like include required
-	 *	arguments.
-	 */
-	ctl_sendhelp(sess, 231);
-}
-
-/*
- * static void
- * irpd_accept(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *	       const struct ctl_verb *verb, const char *rest,
- *	       u_int respflags, void *respctx, void *uctx);
- *	Handle a new connection.
- */
-static void
-irpd_accept(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	struct sockaddr *sa = respctx;
-	char raddr[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-	int reject = 1;
-	int response;
-	char *respmsg = NULL;
-
-	if (sa->sa_family == AF_UNIX) {
-		syslog (LOG_INFO, "New AF_UNIX connection");
-		reject = 0;
-	} else if (sa->sa_family == AF_INET) {
-		struct sockaddr_in *sin = respctx;
-		static long localhost;
-		static long zero;
-
-		if (localhost == 0) {
-			/* yes, this could be done with simple arithmetic... */
-			inet_pton(AF_INET, "127.0.0.1", &localhost);
-		}
-
-		inet_ntop(AF_INET, &sin->sin_addr, raddr, sizeof raddr);
-
-		/* we reject INET connections that are not from the local
-		 * machine.
-		 */
-		if (sin->sin_addr.s_addr == zero ||
-		    sin->sin_addr.s_addr == localhost) {
-			reject = 0;
-			syslog(LOG_INFO, "New connection from %s", raddr);
-		} else {
-			syslog(LOG_INFO, "New connection from %s (reject)",
-			       raddr);
-			respmsg = "Connections from off host not permitted";
-		}
-	} else if (sa->sa_family == AF_INET6) {
-		/* XXX should do something intelligent here. */
-		respmsg = "IPv6 connections not implemented yet.";
-		syslog(LOG_ERR, "Cannot handle AF_INET6 connections yet");
-	} else {
-		syslog (LOG_ERR, "Unknown peer type: %d", sa->sa_family);
-		respmsg = "What are you???";
-	}
-
-	if (reject) {
-		response = IRPD_NOT_WELCOME_CODE;
-		if (respmsg == NULL) {
-			respmsg = "Go away!";
-		}
-		/* XXX can we be sure that stacked up commands will not be
-		 * processed before the control connection is closed???
-		 */
-	} else {
-		void *ctx = make_cli_ctx();
-
-		if (ctx == NULL) {
-			response = IRPD_NOT_WELCOME_CODE;
-			respmsg = "Internal error (client context)";
-		} else {
-			response = IRPD_WELCOME_CODE;
-			if (respmsg == NULL) {
-				respmsg = "Welcome to IRPD (v 1)";
-			}
-			ctl_setcsctx(sess, ctx);
-		}
-	}
-	ctl_response(sess, response, respmsg, (reject ? CTL_EXIT : 0), NULL,
-		     0, NULL, NULL, 0);
-}
-
-/*
- * static void
- * irpd_abort(struct ctl_sctx *ctx, struct ctl_sess *sess,
- *	      const struct ctl_verb *verb, const char *rest,
- *	      u_int respflags, void *respctx, void *uctx);
- *	Handle a dropped connection.
- */
-static void
-irpd_abort(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	struct net_data *netdata = get_net_data(sess);
-	
-	if (netdata != NULL)
-		net_data_destroy(netdata);
-}
-
-/*
- * void
- * response_done(struct ctl_sctx *ctx, struct ctl_sess *sess, void *uap)
- *	UAP is the response_buffer passed through to
- *	ctl_response.
- */
-static void
-response_done(struct ctl_sctx *ctx, struct ctl_sess *sess, void *uap) {
-	release_buffer(uap);
-}
-
-/*
- * static void
- * logger(enum ctl_severity sev, const char *fmt, ...);
- *	Logging routine called by the ctl_* functions. For now we
- *	just spit everything to stderr.
- */
-
-static void
-logger(enum ctl_severity sev, const char *fmt, ...) {
-	char buffer[1024];
-	va_list ap;
-	int level;
-
-	if (sev == ctl_debug)
-		return;
-
-	if (sev == ctl_warning)
-		level = LOG_WARNING;
-	else if (sev == ctl_error)
-		level = LOG_ERR;
-	else {
-		syslog(LOG_CRIT, "Invalid severity: %d", (int)sev);
-		exit(1);
-	}
-
-	va_start(ap, fmt);
-
-#if 0
-	fprintf(stderr, "irpd: ");
-	vfprintf(stderr, fmt, ap);
-#else
-	if (vsprintf(buffer, fmt, ap) > (sizeof (buffer) - 1)) {
-		syslog(LOG_CRIT, "Buffer overrun in logger");
-		abort();
-	}
-	syslog(level, "%s", buffer);
-#endif
-	va_end(ap);
-}
-
-/*
- * static struct response_buff *
- * newbuffer(u_int length);
- *	Create a structure to hold an allocated buffer. We do
- *	this so we can get the size to deallocate later.
- * Returns:
- *	Pointer to the structure
- */
-static struct response_buff *
-newbuffer(u_int length) {
-	struct response_buff *h;
-
-	h = memget(sizeof *h);
-	if (h == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-
-	h->buff = NULL;
-	h->bufflen = length;
-
-	if (length > 0) {
-		h->buff = memget(h->bufflen);
-		if (h->buff == NULL) {
-			memput(h, sizeof *h);
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(h->buff, 0, h->bufflen);
-	}
-
-	return (h);
-}
-
-/*
- * static void
- * release_buffer(struct response_buff *b);
- *	Free up a buffer allocated with newbuffer.
- */
-static void
-release_buffer(struct response_buff *b) {
-	memset(b->buff, 0, b->bufflen);
-	memput(b->buff, b->bufflen);
-
-	memset(b, 0, sizeof *b);
-	memput(b, sizeof *b);
-}
-
-/*
- * static struct arg_s *
- * split_string(const char *string);
- *	Create an array of iovecs(last one having NULL fields)
- *	pointing into STRING at the non-whitespace sections. The
- *	iovecs are stashed inside a structure so we can get the
- *	size back later at deallocation time. Iovecs are used to avoid
- *	modifying the argument with added nulls.
- * Returns:
- *	Pointer to the wrapper structure. Must be given to free_args()
- *	when done
- */
-static struct arg_s *
-split_string(const char *string) {
-	struct iovec *iovs;
-	const char *p;
-	int i, c, iswh;
-	struct arg_s *a;
-
-	/* count + 1 of the number of runs of non-whitespace. */
-	for (iswh = 1, i = 1, p = string ; p != NULL && *p ; p++) {
-		if (iswh && !isspace(*p)) {
-			iswh = 0;
-			i++;
-		} else if (!iswh && isspace(*p)) {
-			iswh = 1;
-		}
-	}
-
-	iovs = memget(sizeof (struct iovec) * i);
-	if (iovs == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-
-	a = memget(sizeof *a);
-	if (a == NULL) {
-		errno = ENOMEM;
-		memput(iovs, sizeof (struct iovec) * i);
-		return (NULL);
-	}
-	a->iov = iovs;
-	a->iovlen = i;
-
-	for (c = 0, p = string ; p != NULL && *p ; c++) {
-		while (isspace(*p)) {
-			p++;
-		}
-
-		if (*p == '\0')
-			break;
-
-		iovs[c].iov_base = (void *)p;
-
-		while (*p && !isspace(*p)) {
-			p++;
-		}
-		iovs[c].iov_len = p - (char *)iovs[c].iov_base;
-	}
-	INSIST(c == i - 1);
-	iovs[c].iov_base = NULL;
-	iovs[c].iov_len = 0;
-
-	return (a);
-}
-
-/*
- * static void
- * free_args(struct arg_s *args);
- *	Free up the argument structure created with
- *	split_string().
- */
-
-static void
-free_args(struct arg_s *args) {
-	memput(args->iov, sizeof (struct iovec) * args->iovlen);
-	memput(args, sizeof *args);
-}
-
-static struct client_ctx *
-make_cli_ctx(void) {
-	struct client_ctx *p = memget (sizeof *p);
-
-	if (p == NULL)
-		return (NULL);
-	
-	p->net_data = net_data_create(conffile);
-
-	return (p);
-}
-
-static void
-release_cli_ctx(struct client_ctx *ctx) {
-	INSIST(ctx != NULL);
-	INSIST(ctx->net_data != NULL);
-
-	net_data_destroy(ctx->net_data);
-	memput(ctx, sizeof *ctx);
-}
-		
-static struct net_data *
-get_net_data(struct ctl_sess *sess) {
-	struct client_ctx *ctx = ctl_getcsctx(sess);
-
-	INSIST(ctx != NULL);
-	INSIST(ctx->net_data != NULL);
-
-	return (ctx->net_data);
-}
diff --git a/contrib/bind/bin/irpd/irs-irpd.conf b/contrib/bind/bin/irpd/irs-irpd.conf
deleted file mode 100644
index 07385d33c4f3c..0000000000000
--- a/contrib/bind/bin/irpd/irs-irpd.conf
+++ /dev/null
@@ -1,11 +0,0 @@
-# Private irs config file for irpd so that it doesn't get configured to 
-# talk to itself. 
-passwd          local
-group           local
-services        local
-protocols       local
-hosts           dns     continue
-hosts           local
-networks        dns	continue
-networks        local
-netgroup        local
diff --git a/contrib/bind/bin/irpd/version.c b/contrib/bind/bin/irpd/version.c
deleted file mode 100644
index cc42c0bac4d39..0000000000000
--- a/contrib/bind/bin/irpd/version.c
+++ /dev/null
@@ -1,25 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-char sccsid[] = "@(#)named %VERSION% %WHEN% %WHOANDWHERE%";
-char rcsid[] = "$Id: version.c,v 1.1 1999/01/18 07:47:17 vixie Exp $";
-#endif /* not lint */
-
-char Version[] = "named %VERSION% %WHEN%\n\t%WHOANDWHERE%";
-char ShortVersion[] = "%VERSION%";
-
diff --git a/contrib/bind/bin/mkservdb/Makefile b/contrib/bind/bin/mkservdb/Makefile
deleted file mode 100644
index 47af23627ab52..0000000000000
--- a/contrib/bind/bin/mkservdb/Makefile
+++ /dev/null
@@ -1,83 +0,0 @@
-## Copyright (c) 1998,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 1.6 1999/08/08 17:51:01 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= mkservdb
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags *.[ch]
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/mkservdb/mkservdb.c b/contrib/bind/bin/mkservdb/mkservdb.c
deleted file mode 100644
index 5647ec70eb9ea..0000000000000
--- a/contrib/bind/bin/mkservdb/mkservdb.c
+++ /dev/null
@@ -1,169 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: mkservdb.c,v 1.6 1999/10/13 16:39:00 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <ctype.h>
-#ifdef IRS_LCL_SV_DB
-#include <db.h>
-#endif
-#include <fcntl.h>
-#include <limits.h>
-#include <netdb.h>
-#include <pwd.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include "../../include/irs.h"
-#include "../../lib/irs/irs_p.h"
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-#ifndef IRS_LCL_SV_DB
-main(int argc, char **argv) {
-	fprintf(stderr, "%s: not supported on this architecture\n", argv[0]);
-	exit(1);
-}
-
-#else
-
-#define	_PATH_SERVICES_DB_TMP	_PATH_SERVICES_DB ".new"
-
-struct servent *getnextent(FILE *);
-
-main(int argc, char **argv) {
-	DB *db;
-	DBT key;
-	DBT data;
-	char *filename = _PATH_SERVICES;
-	char *tmpdatabase = _PATH_SERVICES_DB_TMP;
-	char *database = _PATH_SERVICES_DB;
-	char dbuf[1024];
-	char kbuf[512];
-	u_short *ports;
-	struct lcl_sv lcl_sv;
-	struct servent *sv;
-	int n, r;
-	char *p;
-
-	unlink(tmpdatabase);
-
-	if (argc > 1)
-		filename = argv[1];
-
-	lcl_sv.fp = fopen(filename, "r");
-	if (lcl_sv.fp == NULL)
-		err(1, "%s", filename);
-
-	db = dbopen(tmpdatabase, O_CREAT|O_RDWR, 0444, DB_BTREE, NULL);
-	if (db == NULL)
-		err(1, "%s", tmpdatabase);
-
-	while ((sv = irs_lclsv_fnxt(&lcl_sv)) != NULL) {
-		if (sv->s_proto == NULL)
-			continue;
-
-		key.data = kbuf;
-		data.data = dbuf;
-
-		/* Note that (sizeof "/") == 2. */
-		if (strlen(sv->s_name) + sizeof "/" + strlen(sv->s_proto)
-		    > sizeof kbuf)
-			continue;
-		key.size = SPRINTF((kbuf, "%s/%s", sv->s_name, sv->s_proto))+1;
-
-		((u_short *)dbuf)[0] = sv->s_port;
-		p = dbuf;
-		p += sizeof(u_short);
-		if (sv->s_aliases)
-		for (n = 0; sv->s_aliases[n]; ++n) {
-			strcpy(p, sv->s_aliases[n]);
-			p += strlen(p) + 1;
-		}
-		data.size = p - dbuf;
-
-		if ((r = db->put(db, &key, &data, R_NOOVERWRITE)))
-			if (r < 0)
-				errx(1, "failed to write %s", key.data);
-			else
-				warnx("will not overwrite %s", key.data);
-		for (n = 0; sv->s_aliases[n]; ++n) {
-			if (strlen(sv->s_aliases[n]) + sizeof "/"
-			    + strlen(sv->s_proto) > sizeof kbuf)
-				continue;
-			key.size = SPRINTF((kbuf, "%s/%s",
-					    sv->s_aliases[n], sv->s_proto))+1;
-			if ((r = db->put(db, &key, &data, R_NOOVERWRITE)))
-				if (r < 0)
-					errx(1, "failed to write %s",
-					     key.data);
-				else
-					warnx("will not overwrite %s",
-					      key.data);
-		}
-
-		ports = (u_short *)kbuf;
-		ports[0] = 0;
-		ports[1] = sv->s_port;
-		strcpy((char *)(ports+2), sv->s_proto);
-		key.size = sizeof(u_short) * 2 + strlen((char *)(ports+2)) + 1;
-
-		if (strlen(sv->s_name) + sizeof "/" + strlen(sv->s_proto)
-		    > sizeof dbuf)
-			continue;
-		p = dbuf;
-		p += SPRINTF((p, "%s/%s", sv->s_name, sv->s_proto)) + 1;
-		if (sv->s_aliases != NULL)
-			for (n = 0; sv->s_aliases[n] != NULL; n++)
-				if ((p + strlen(sv->s_aliases[n]) + 1) - dbuf
-				    <= sizeof dbuf) {
-					strcpy(p, sv->s_aliases[n]);
-					p += strlen(p) + 1;
-				}
-		data.size = p - dbuf;
-
-		if ((r = db->put(db, &key, &data, R_NOOVERWRITE)))
-			if (r < 0)
-				errx(1, "failed to write %d/%s",
-				     ntohs(sv->s_port), sv->s_proto); 
-			else
-				warnx("will not overwrite %d/%s",
-				      ntohs(sv->s_port), sv->s_proto); 
-	}
-	db->close(db);
-	if (rename(tmpdatabase, database))
-		err(1, "rename %s -> %s", tmpdatabase, database);
-	exit(0);
-}
-
-#endif
diff --git a/contrib/bind/bin/named-bootconf/Grot/named-bootconf.pl b/contrib/bind/bin/named-bootconf/Grot/named-bootconf.pl
deleted file mode 100644
index ce1b368d2d704..0000000000000
--- a/contrib/bind/bin/named-bootconf/Grot/named-bootconf.pl
+++ /dev/null
@@ -1,324 +0,0 @@
-#!/usr/bin/perl
-
-## Copyright (c) 1996-1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-## $Id: named-bootconf.pl,v 1.2 1999/01/08 19:27:35 vixie Exp $
-
-# This is a filter.  Input is a named.boot.  Output is a named.conf.
-
-$new_config = "";
-
-$have_options = 0;
-%options = ();
-%options_comments = ();
-@topology = ();
-@topology_comments = ();
-@bogus = ();
-@bogus_comments = ();
-@transfer_acl = ();
-@transfer_comments = ();
-$logging = "";
-
-while(<>) {
-    next if /^$/;
-
-    # skip comment-only lines
-    if (/^\s*;+\s*(.*)$/) {
-	$new_config .= "// $1\n";
-	next;
-    }
-
-    # handle continued lines
-    while (/\\$/) {
-	s/\\$/ /;
-        $_ .= <>;
-    }
-    
-    chop;
-    
-    # deal with lines ending in a coment
-    if (s/\s*;+\s*(.*)$//) {
-	$comment = "// $1";
-    } else {
-	$comment = "";
-    }
-
-    ($directive, @rest) = split;
-
-    $class = "";
-    if ($directive =~ /^(.*)\/(.*)$/) {
-	$directive = $1;
-	$class = $2;
-    }
-    
-    if ($directive eq "primary") {
-	$zname = shift(@rest);
-	&maybe_print_comment("","\n");
-	$new_config .= "zone \"$zname\" ";
-	if ($class ne "") {
-	    $new_config .= "$class ";
-	}
-	$new_config .= "{\n";
-	$new_config .= "\ttype master;\n";
-	$filename = shift(@rest);
-	$new_config .= "\tfile \"$filename\";\n";
-	$new_config .= "};\n\n";
-    } elsif ($directive eq "secondary" || $directive eq "stub") {
-	if ($directive eq "secondary") {
-	    $type = "slave";
-	} else {
-	    $type = "stub";
-	}
-	$zname = shift(@rest);
-	&maybe_print_comment("","\n");
-	$new_config .= "zone \"$zname\" ";
-	if ($class ne "") {
-	    $new_config .= "$class ";
-	}
-	$new_config .= "{\n";
-	$new_config .= "\ttype $type;\n";
-	$filename = pop(@rest);
-	if ($filename =~ /^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$/) {
-	    push(@rest, $filename);
-	    $filename = "";
-	} else {
-	    $new_config .= "\tfile \"$filename\";\n";
-	}
-	$new_config .= "\tmasters {\n";
-	foreach $master (@rest) {
-	    $new_config .= "\t\t$master;\n";
-	}
-	$new_config .= "\t};\n";
-	$new_config .= "};\n\n";
-    } elsif ($directive eq "cache") {
-    	$zname = shift(@rest);
-	&maybe_print_comment("","\n");
-	$new_config .= "zone \"$zname\" {\n";
-	$new_config .= "\ttype hint;\n";
-	$filename = shift(@rest);
-	$new_config .= "\tfile \"$filename\";\n";
-	$new_config .= "};\n\n";
-    } elsif ($directive eq "directory") {
-	$options{"directory"} = "\"$rest[0]\"";
-	$options_comments{"directory"} = $comment;
-	$have_options = 1;
-    } elsif ($directive eq "check-names") {
-	$type = shift(@rest);
-	if ($type eq "primary") {
-	    $type = "master";
-	} elsif ($type eq "secondary") {
-	    $type = "slave";
-	}
-	$action = shift(@rest);
-	$options{"check-names $type"} = $action;
-	$options_comments{"check-names $type"} = $comment;
-	$have_options = 1;
-    } elsif ($directive eq "forwarders") {
-	$options{"forwarders"}="{\n";
-	foreach $forwarder (@rest) {
-	    $options{"forwarders"} .= "\t\t$forwarder;\n";
-	}
-	$options{"forwarders"} .= "\t}";
-	$options_comments{"forwarders"} = $comment;
-	$have_options = 1;
-    } elsif ($directive eq "slave") {
-	&handle_options("forward-only");
-    } elsif ($directive eq "options") {
-	&handle_options(@rest);
-    } elsif ($directive eq "limit") {
-	&handle_limit(@rest);
-    } elsif ($directive eq "include") {
-	$new_config .= 
-	    "// make sure your include is still in the right place\n";
-	$comment = "\t" . $comment;
-	$new_config .= "include \"$rest[0]\";$comment\n\n";
-    } elsif ($directive eq "xfrnets" || $directive eq "tcplist") {
-	if ($comment ne "") {
-	    $comment = "\t$comment";
-	}
-	foreach $elt (@rest) {
-	    push(@transfer_acl, $elt);
-	    push(@transfer_comments, $comment);
-	}
-	$have_options = 1;
-    } elsif ($directive eq "sortlist") {
-	if ($comment ne "") {
-	    $comment = "\t$comment";
-	}
-	foreach $elt (@rest) {
-	    push(@topology, $elt);
-	    push(@topology_comments, $comment);
-	}
-    } elsif ($directive eq "bogusns") {
-	if ($comment ne "") {
-	    $comment = "\t$comment";
-	}
-	foreach $elt (@rest) {
-	    push(@bogus, $elt);
-	    push(@bogus_comments, $comment);
-	}
-    } elsif ($directive eq "max-fetch") {
-	$options{"transfers-in"}=$rest[0];
-	$options_comments{"transfers-in"}=$comment;
-	$have_options = 1;
-    } else {
-	$new_config .= "// NOTE: unconverted directive '$directive @rest'\n\n";
-    }
-}
-
-print "// generated by named-bootconf.pl\n\n";
-if ($have_options) {
-    print "options {\n";
-    foreach $option (sort(keys(%options))) {
-	print "\t$option $options{$option};";
-	if ($options_comments{$option} ne "") {
-	    print "\t$options_comments{$option}";
-	}
-	print "\n";
-    }
-    if (@transfer_acl > 0) {
-	print "\tallow-transfer {\n";
-	for ($i = 0; $i <= $#transfer_acl; $i++) {
-	    &print_maybe_masked("\t\t", $transfer_acl[$i],
-				$transfer_comments[$i]);
-	}
-	print "\t};\n";
-    }
-    print "\t/*
-\t * If there is a firewall between you and nameservers you want
-\t * to talk to, you might need to uncomment the query-source
-\t * directive below.  Previous versions of BIND always asked
-\t * questions using port 53, but BIND 8.1 uses an unprivileged
-\t * port by default.
-\t */
-\t// query-source address * port 53;
-";
-
-    print "};\n\n";
-}
-if ($logging ne "") {
-    print "logging {\n$logging};\n\n";
-}
-if (@topology > 0) {
-    print "// Note: the following will be supported in a future release.\n";
-    print "/*\n";
-    print "host { any; } {\n\ttopology {\n";
-    for ($i = 0; $i <= $#topology; $i++) {
-	&print_maybe_masked("\t\t", $topology[$i],
-			    $topology_comments[$i]);
-    }
-    print "\t};\n};\n";
-    print "*/\n";
-    print "\n";
-}
-if (@bogus > 0) {
-    for ($i = 0; $i <= $#bogus; $i++) {
-	print "server $bogus[$i] { bogus yes; };$bogus_comments[$i]\n";
-    }
-    print "\n";
-}
-print $new_config;
-
-exit 0;
-
-sub maybe_print_comment {
-    $prefix = shift;
-    $suffix = shift;
-    if ($comment ne "") {
-	$new_config .= sprintf("%s%s%s", $prefix, $comment, $suffix);
-    }
-}
-
-sub handle_options {
-    foreach $option (@_) {
-	if ($option eq "forward-only") {
-	    $options{"forward"}="only";
-	    $options_comments{"forward"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "no-recursion") {
-	    $options{"recursion"}="no";
-	    $options_comments{"recursion"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "no-fetch-glue") {
-	    $options{"fetch-glue"}="no";
-	    $options_comments{"fetch-glue"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "fake-iquery") {
-	    $options{"fake-iquery"}="yes";
-	    $options_comments{"fake-iquery"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "query-log") {
-	    if ($comment ne "") {
-		$logging .= "\t$comment\n";
-	    }
-	    $logging .= "\tcategory queries { default_syslog; };\n";
-	} else {
-	    $options{"// NOTE: unconverted option '$option'"}="";
-	    $options_comments{"// NOTE: unconverted option '$option'"}=
-		$comment;
-	    $have_options = 1;
-	}
-    }
-}
-
-sub handle_limit {
-    $limit = shift;
-    if ($limit eq "datasize" || $limit eq "transfers-in"
-	|| $limit eq "transfers-per-ns" || $limit eq "files") {
-	$options{$limit}=$_[0];
-	$options_comments{$limit}=$comment;
-	$have_options = 1;
-    } else {
-	$options{"// NOTE: unconverted limit '$limit @_'"}="";
-	$options_comments{"// NOTE: unconverted limit '$limit @_'"}=$comment;
-	$have_options = 1;
-    }
-}
-
-sub print_maybe_masked {
-    # this assumes a contiguous netmask starting at the MSB
-    $prefix = shift;
-    $elt = shift;
-    $elt_comment = shift;
-    if ($elt =~ /^(.*)&(.*)$/) {
-	$address = $1;
-	$mask = $2;
-	($m1,$m2,$m3,$m4) = split(/\./, $mask);
-	$mask_val = ($m1 << 24) + ($m2 << 16) +($m3 << 8) + $m4;
-	$zero_bits = 0;
-	while (($mask_val % 2) == 0) {
-	    $mask_val /= 2;
-	    $zero_bits++;
-	}
-	$mask_bits = 32 - $zero_bits;
-    } else {
-	$address = $elt;
-	($a1,$a2,$a3,$a4) = split(/\./, $address);
-	if ($a1 < 128) {
-	    $mask_bits = 8;
-	} elsif ($a1 < 192) {
-	    $mask_bits = 16;
-	} else {
-	    $mask_bits = 24;
-	}
-    }
-	
-    print "$prefix$address";
-    if ($mask_bits != 32) {
-	print "/$mask_bits";
-    }
-    print ";$elt_comment\n";
-}
diff --git a/contrib/bind/bin/named-bootconf/Makefile b/contrib/bind/bin/named-bootconf/Makefile
deleted file mode 100644
index 4c1a0df41702a..0000000000000
--- a/contrib/bind/bin/named-bootconf/Makefile
+++ /dev/null
@@ -1,76 +0,0 @@
-## Copyright (c) 1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 1.1 1999/01/07 02:09:37 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= named-bootconf
-
-all: ${PROG}
-
-${PROG}: ${PROG}.sh Makefile
-	cp ${PROG}.sh ${PROG}
-	chmod +x ${PROG}
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend:
-
-${DESTDIR}${DESTSBIN}:
-	mkdir -p ${DESTDIR}${DESTSBIN}
-
-install: ${DESTDIR}${DESTSBIN} ${PROG}
-	${INSTALL} -c -m 755 ${PROG} ${DESTDIR}${DESTSBIN}/${PROG}
-
-links: FRC
-	@set -e; ln -s SRC/*.sh .
-
-tags:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/named-bootconf/named-bootconf.sh b/contrib/bind/bin/named-bootconf/named-bootconf.sh
deleted file mode 100644
index c1dfaad8c9a81..0000000000000
--- a/contrib/bind/bin/named-bootconf/named-bootconf.sh
+++ /dev/null
@@ -1,306 +0,0 @@
-#!/bin/sh
-#
-# $NetBSD: named-bootconf.sh,v 1.5 1998/12/15 01:00:53 tron Exp $
-#
-# Copyright (c) 1995, 1998 The NetBSD Foundation, Inc.
-# All rights reserved.
-#
-# This code is derived from software contributed to The NetBSD Foundation
-# by Matthias Scheler.
-#
-# Redistribution and use in source and binary forms, with or without
-# modification, are permitted provided that the following conditions
-# are met:
-# 1. Redistributions of source code must retain the above copyright
-#    notice, this list of conditions and the following disclaimer.
-# 2. Redistributions in binary form must reproduce the above copyright
-#    notice, this list of conditions and the following disclaimer in the
-#    documentation and/or other materials provided with the distribution.
-# 3. All advertising materials mentioning features or use of this software
-#    must display the following acknowledgement:
-#	This product includes software developed by the NetBSD
-#	Foundation, Inc. and its contributors.
-# 4. Neither the name of The NetBSD Foundation nor the names of its
-#    contributors may be used to endorse or promote products derived
-#    from this software without specific prior written permission.
-#
-# THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
-# ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
-# TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
-# PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
-# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
-# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
-# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
-# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
-# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
-# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
-# POSSIBILITY OF SUCH DAMAGE.
-
-## Copyright (c) 1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-if [ ${OPTIONFILE-X} = X ]; then
-	OPTIONFILE=/tmp/.options.`date +%s`.$$
-	ZONEFILE=/tmp/.zones.`date +%s`.$$
-	COMMENTFILE=/tmp/.comments.`date +%s`.$$
-	export OPTIONFILE ZONEFILE COMMENTFILE
-	touch $OPTIONFILE $ZONEFILE $COMMENTFILE
-	DUMP=1
-else
-	DUMP=0
-fi
-
-while read CMD ARGS; do
-	class=
-	CMD=`echo "${CMD}" | tr '[A-Z]' '[a-z]'`
-	case $CMD in
-	\; )
-		echo \# $ARGS >>$COMMENTFILE
-		;;
-	cache )
-		set - X $ARGS
-		shift
-		if [ $# -eq 2 ]; then
-			(echo ""
-			cat $COMMENTFILE
-			echo "zone \"$1\" {"
-			echo "	type hint;"
-			echo "	file \"$2\";"
-			echo "};") >>$ZONEFILE
-			rm -f $COMMENTFILE
-			touch $COMMENTFILE
-		fi
-		;;
-	directory )
-		set - X $ARGS
-		shift
-		if [ $# -eq 1 ]; then
-			(cat $COMMENTFILE
-			echo "	directory \"$1\";") >>$OPTIONFILE
-			rm -f $COMMENTFILE
-			touch $COMMENTFILE
-
-			DIRECTORY=$1
-			export DIRECTORY
-		fi
-		;; 
-	forwarders )
-		(cat $COMMENTFILE
-		echo "	forwarders {"
-		for ARG in $ARGS; do
-			echo "		$ARG;"
-		done
-		echo "	};") >>$OPTIONFILE
-		rm -f $COMMENTFILE
-		touch $COMMENTFILE
-		;;
-	include )
-		if [ "$ARGS" != "" ]; then
-			(cd ${DIRECTORY-.}; cat $ARGS) | $0
-		fi
-		;;
-	limit )
-		ARGS=`echo "${ARGS}" | tr '[A-Z]' '[a-z]'`
-		set - X $ARGS
-		shift
-		if [ $# -eq 2 ]; then
-			cat $COMMENTFILE >>$OPTIONFILE
-			case $1 in
-			datasize | files | transfers-in | transfers-per-ns )
-				echo "	$1 $2;" >>$OPTIONFILE
-				;;
-			esac
-			rm -f $COMMENTFILE
-			touch $COMMENTFILE
-		fi
-		;;
-	options )
-		ARGS=`echo "${ARGS}" | tr '[A-Z]' '[a-z]'`
-		cat $COMMENTFILE >>$OPTIONFILE
-		for ARG in $ARGS; do
-			case $ARG in
-			fake-iquery )
-				echo "	fake-iquery yes;" >>$OPTIONFILE
-				;;
-			forward-only )
-				echo "	forward only;" >>$OPTIONFILE
-				;;
-			no-fetch-glue )
-				echo "	fetch-glue no;" >>$OPTIONFILE
-				;;
-			no-recursion )
-				echo "	recursion no;" >>$OPTIONFILE
-				;;
-			esac
-		done
-		rm -f $COMMENTFILE
-		touch $COMMENTFILE
-		;;
-	primary|primary/* )
-		case $CMD in
-		primary/chaos )
-			class="chaos "
-			;;
-		primary/hs )
-			class="hesiod "
-			;;
-		esac
-		set - X $ARGS
-		shift
-		if [ $# -eq 2 ]; then
-			(echo ""
-			cat $COMMENTFILE
-			echo "zone \"$1\" ${class}{"
-			echo "	type master;"
-			echo "	file \"$2\";"
-			echo "};") >>$ZONEFILE
-			rm -f $COMMENTFILE
-			touch $COMMENTFILE
-		fi
-		;;
-	secondary|secondary/* )
-		case $CMD in
-		secondary/chaos )
-			class="chaos "
-			;;
-		secondary/hs )
-			class="hesiod "
-			;;
-		esac
-		set - X $ARGS
-		shift
-		if [ $# -gt 2 ]; then
-			ZONE=$1
-			shift
-			PRIMARIES=$1
-			while [ $# -gt 2 ]; do
-				shift
-				PRIMARIES="$PRIMARIES $1"
-			done
-			(echo ""
-			cat $COMMENTFILE
-			echo "zone \"$ZONE\" ${class}{"
-			echo "	type slave;"
-			echo "	file \"$2\";"
-			echo "	masters {"
-			for PRIMARY in $PRIMARIES; do
-				echo "		$PRIMARY;"
-			done
-			echo "	};"
-			echo "};") >>$ZONEFILE
-			rm -f $COMMENTFILE
-			touch $COMMENTFILE
-		fi
-		;;
-	stub|stub/* )
-		case $CMD in
-		stub/chaos )
-			class="chaos "
-			;;
-		stub/hs )
-			class="hesiod "
-			;;
-		esac
-		set - X $ARGS
-		shift
-		if [ $# -gt 2 ]; then
-			ZONE=$1
-			shift
-			PRIMARIES=$1
-			while [ $# -gt 2 ]; do
-				shift
-				PRIMARIES="$PRIMARIES $1"
-			done
-			(echo ""
-			cat $COMMENTFILE
-			echo "zone \"$ZONE\" ${class}{"
-			echo "	type stub;"
-			echo "	file \"$2\";"
-			echo "	masters {"
-			for PRIMARY in $PRIMARIES; do
-				echo "		$PRIMARY;"
-			done
-			echo "	};"
-			echo "};") >>$ZONEFILE
-			rm -f $COMMENTFILE
-			touch $COMMENTFILE
-		fi
-		;;
-	slave )
-		cat $COMMENTFILE >>$OPTIONFILE
-		echo "	forward only;" >>$OPTIONFILE
-		rm -f $COMMENTFILE
-		touch $COMMENTFILE
-		;;
-	sortlist )
-		(cat $COMMENTFILE
-		echo "	topology {"
-		for ARG in $ARGS; do
-			case $ARG in
-			*.0.0.0 )
-				echo "		$ARG/8;"
-				;;
-			*.0.0 )
-				echo "		$ARG/16;"
-				;;
-			*.0 )
-				echo "		$ARG/24;"
-				;;
-			* )
-				echo "		$ARG;"
-				;;
-			esac
-		done
-		echo "	};") >>$OPTIONFILE
-		rm -f $COMMENTFILE
-		touch $COMMENTFILE
-		;;
-	tcplist | xfrnets )
-		(cat $COMMENTFILE
-		echo "	allow-transfer {"
-		for ARG in $ARGS; do
-			case $ARG in
-			*.0.0.0 )
-				echo "		$ARG/8;"
-				;;
-			*.0.0 )
-				echo "		$ARG/16;"
-				;;
-			*.0 )
-				echo "		$ARG/24;"
-				;;
-			* )
-				echo "		$ARG;"
-				;;
-			esac
-		done
-		echo "	};") >>$OPTIONFILE
-		rm -f $COMMENTFILE
-		touch $COMMENTFILE
-		;;
-	esac
-done
-
-if [ $DUMP -eq 1 ]; then
-	echo ""
-	echo "options {"
-	cat $OPTIONFILE
-	echo "};"
-	cat $ZONEFILE $COMMENTFILE
-
-	rm -f $OPTIONFILE $ZONEFILE $COMMENTFILE
-fi
-
-exit 0
diff --git a/contrib/bind/bin/named-xfer/Makefile b/contrib/bind/bin/named-xfer/Makefile
deleted file mode 100644
index 76d9684905a82..0000000000000
--- a/contrib/bind/bin/named-xfer/Makefile
+++ /dev/null
@@ -1,89 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.29 1999/08/08 17:51:02 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-AR= ar cru
-INSTALL= install
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-PS=ps
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-NAMED_OBJS= \
-	../named/db_glue.${O} ../named/ns_glue.${O} ../named/tmp_version.${O}
-
-PROG= named-xfer
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${NAMED_OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} ${NAMED_OBJS} \
-		${LIBBIND} ${SYSLIBS}
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTEXEC}:
-	mkdir -p ${DESTDIR}${DESTEXEC}
-
-install: ${DESTDIR}${DESTEXEC} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTEXEC}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags ${SRCS} *.h
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/named-xfer/named-xfer.c b/contrib/bind/bin/named-xfer/named-xfer.c
deleted file mode 100644
index 59fff9f980afe..0000000000000
--- a/contrib/bind/bin/named-xfer/named-xfer.c
+++ /dev/null
@@ -1,3195 +0,0 @@
-/*
- * The original version of named-xfer by Kevin Dunlap.
- * Completed and integrated with named by David Waitzman
- *	(dwaitzman@bbn.com) 3/14/88.
- * Modified by M. Karels and O. Kure 10-88.
- * Modified extensively since then by just about everybody.
- */
-
-/*
- * Copyright (c) 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1998 by MetaInfo, Incorporated.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of MetaInfo Incorporated not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND METAINFO INCORPORATED DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL METAINFO INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-#if !defined(lint) && !defined(SABER)
-char copyright[] =
-"@(#) Copyright (c) 1988, 1990 The Regents of the University of California.\n\
- portions Copyright (c) 1993 Digital Equipment Corporation\n\
- portions Copyright (c) 1998 MetaInfo, Inc.\n\
- portions Copyright (c) 1995, 1996 Internet Software Consorium\n\
- All rights reserved.\n";
-#endif /* not lint */
-
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)named-xfer.c	4.18 (Berkeley) 3/7/91";
-static const char rcsid[] = "$Id: named-xfer.c,v 8.93 2000/04/20 07:33:47 vixie Exp $";
-#endif /* not lint */
-
-#include "port_before.h"
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <netdb.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <limits.h>
-#include <ctype.h>
-#include <errno.h>
-#include <math.h>
-#include <resolv.h>
-#include <signal.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <unistd.h>
-#include <stdarg.h>
-
-#include <isc/eventlib.h>
-#include <isc/list.h>
-#include <isc/logging.h>
-/* This still uses malloc/free, but the tsig routines allocate memory with
- * memget, and we free it with memput.
- */
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-
-#define MAIN_PROGRAM
-#include "../named/named.h"
-#undef MAIN_PROGRAM
-
-#define MAX_XFER_RESTARTS 2
-
-#define ENABLE_IXFR 1
-
-# ifdef SHORT_FNAMES
-extern long pathconf __P((const char *path, int name));	/* XXX */
-# endif
-
-
-static	struct zoneinfo	zone;		/* zone information */
-
-static	char		*ddtfilename = NULL,
-			*ddtfile = NULL;
-
-static char   *tmpname = NULL, 
-			*tmpiname = NULL, 	  /* temporary file name for ixfr transaction file */
-			*domain;	/* domain being xfered */
-
-static	int		quiet = 0,
-			read_interrupted = 0,
-			curclass,
-			domain_len;		/* strlen(domain) */
-
-static	FILE		*fp = NULL,
-			*dbfp = NULL,
-			*ixfp = NULL;
-
-static	char		*ProgName;
-
-static	void		usage(const char *),
-			tsig_init(const char *);
-static	int		getzone(struct zoneinfo *, u_int32_t, int),
-			print_output(struct zoneinfo *, u_int32_t, 
-				     u_char *, int, u_char *, int),
-			netread(int, char *, int, int),
-			writemsg(int, const u_char *, int);
-static int		ixfr_log(const u_char *msg, int len, int *delete,
-				 FILE *file, struct sockaddr_in *sin,
-				 char *domain, u_int32_t *serial_no, int *);
-static	SIG_FN		read_alarm(void);
-static	SIG_FN		term_handler(void);
-static	const char	*soa_zinfo(struct zoneinfo *, u_char *, u_char*),
-			*tsig_rcode(int);
-
-struct zoneinfo		zp_start, zp_finish;
-
-static int		restarts = 0;
-static int		check_serial = 0;
-static int		xfr_qtype = T_AXFR;
-
-FILE			*ddt = NULL;
-int 			servermethode[NSMAX];
-char			*soa_buf;
-
-typedef struct _tsig_node {
-	struct in_addr addr;
-	DST_KEY *dst_key;
-	LINK(struct _tsig_node) link;
-} tsig_node;
-
-LIST(tsig_node)		tsig_list;
-
-/*
- * Debugging printf.
- */
-void
-dprintf(int level, const char *format, ...) {
-	va_list ap;
-
-	va_start(ap, format);
-	if (ddt != NULL && debug >= level)
-		(void) vfprintf(ddt, format, ap);
-	va_end(ap);
-}
-
-static int
-init_xfer_logging() {
-	log_channel chan;
-
-	if (log_new_context(ns_log_max_category, NULL, &log_ctx) < 0) {
-		perror("log_new_context");
-		return (0);
-	}
-	log_option(log_ctx, LOG_OPTION_DEBUG, debug);
-	log_option(log_ctx, LOG_OPTION_LEVEL, debug);
-
-	log_ctx_valid = 1;
-
-	chan = log_new_syslog_channel(0, 0, LOG_DAEMON);
-	if (chan == NULL)
-		return (0);
-	if (log_add_channel(log_ctx, ns_log_default, chan) < 0) {
-		perror("log_add_channel syslog");
-		return (0);
-	}
-
-	if (debug) {
-		unsigned int flags = LOG_USE_CONTEXT_LEVEL|LOG_REQUIRE_DEBUG;
-
-		chan = log_new_file_channel(flags, 0, NULL, ddt, 0, ULONG_MAX);
-		if (chan == NULL)
-			return (0);
-		if (log_add_channel(log_ctx, ns_log_default, chan) < 0) {
-			perror("log_add_channel debug");
-			return (0);
-		}
-	}
-
-	return (1);
-}
-
-void cleanup_for_exit(void) {
-#ifdef DEBUG
-	if (!debug)
-#endif
-	{
-		(void) unlink(tmpname);
-		if (tmpiname != NULL)
-			(void) unlink(tmpiname);
-	}
-	if(tmpiname)
-		free(tmpiname);
-	tmpiname = NULL;
-	if (ddtfilename != NULL) {
-		free(ddtfilename);
-		if (ddtfilename == ddtfile)
-			ddtfile = NULL;
-		ddtfilename = NULL;
-	}
-	if(tmpname)
-		free(tmpname);
-	tmpname = NULL;
-	if(ddtfile)
-		free(ddtfile);
-	ddtfile = NULL;
-}
-
-	
-int
-main(int argc, char *argv[]) {
-	struct zoneinfo *zp;
-	struct hostent *hp;
-	struct in_addr axfr_src;
- 	char *dbfile = NULL, *tracefile = NULL, *tm = NULL, *tsigfile = NULL;
- 	char *ixfrfile = NULL;
-	u_int32_t new_serial_no = 0;
-	int dbfd, ddtd, result, c, fd, ixfd;
-	u_int32_t serial_no = 0;
-	u_int port = htons(NAMESERVER_PORT);
-	struct stat statbuf;
-	int stub_only = 0;
-	int class = C_IN;
-	int n;
-	long num_files;
-
-#ifdef _AUX_SOURCE
-	set42sig();
-#endif
-	memset(&axfr_src, 0, sizeof axfr_src);
-	ProgName = strrchr(argv[0], '/');
-	if (ProgName != NULL)
-		ProgName++;
-	else
-		ProgName = argv[0];
-
-	(void) umask(022);
-
-	ddtfilename = (char *)malloc(strlen(_PATH_TMPXFER) + 1);
-	strcpy(ddtfilename, _PATH_TMPXFER);
-	ddtfile = ddtfilename;
-
-#ifdef RENICE
-	nice(-40);	/* this is the recommended procedure to        */
-	nice(20);	/*   reset the priority of the current process */
-	nice(0);	/*   to "normal" (== 0) - see nice(3)          */
-#endif
-
-	n = LOG_PID;
-#ifdef LOG_PERROR
-	n |= LOG_PERROR;
-#endif
-#if defined(LOG_CONS) && defined(USE_LOG_CONS)
-	n |= LOG_CONS;
-#endif
-#ifdef SYSLOG_42BSD
-	openlog(ProgName, n);
-#else
-	openlog(ProgName, n, LOG_DAEMON);
-#endif
-	while ((c = getopt(argc, argv, "C:d:l:s:t:z:f:i:p:P:qx:ST:Z")) != -1)
-		switch (c) {
-		case 'C':
-			class = get_class(optarg);
-			break;
-		case 'd':
-#ifdef DEBUG
-			debug = atoi(optarg);
-#endif
-			break;
-		case 'l':
-			ddtfile = (char *)malloc(strlen(optarg) +
-						 sizeof(".XXXXXX") + 1);
-			if (!ddtfile)
-				panic("malloc(ddtfile)", NULL);
-#ifdef SHORT_FNAMES
-			filenamecpy(ddtfile, optarg);
-#else
-			(void) strcpy(ddtfile, optarg);
-#endif /* SHORT_FNAMES */
-			(void) strcat(ddtfile, ".XXXXXX");
-			break;
-		case 's':
-			serial_no = strtoul(optarg, (char **)NULL, 10);
-			check_serial++;
-			break;
-		case 't':
-			tracefile = optarg;
-			break;
-		case 'z':		/* zone == domain */
-			domain = optarg;
-			domain_len = strlen(domain);
-			while ((domain_len > 0) && 
-					(domain[domain_len-1] == '.'))
-				domain[--domain_len] = '\0';
-			break;
-		case 'f':
-			dbfile = optarg;
-			tmpname = (char *)malloc((unsigned)strlen(optarg) +
-						 sizeof(".XXXXXX") + 1);
-			if (!tmpname)
-				panic("malloc(tmpname)", NULL);
-#ifdef SHORT_FNAMES
-			filenamecpy(tmpname, optarg);
-#else
-			(void) strcpy(tmpname, optarg);
-#endif /* SHORT_FNAMES */
-			break;
-		case 'i':
-#if ENABLE_IXFR
-			ixfrfile = optarg;
-			tmpiname = (char *) malloc(strlen(optarg) +
-						  sizeof(".XXXXXX") + 1);
-			if (!tmpiname)
-				panic("malloc(tmpiname)", NULL);
-#ifdef SHORT_FNAMES
-			filenamecpy(tmpiname, optarg);
-#else
-			(void) strcpy(tmpiname, optarg);
-#endif /* SHORT_FNAMES */
-#endif /* ENABLE_IXFR */
-			break;
-		case 'p':
-			port = htons((u_int16_t)atoi(optarg));
-			break;
-		case 'P':
-			port = (u_int16_t)atoi(optarg);
-			break;
-		case 'S':
-			stub_only = 1;
-			break;
-		case 'q':
-			quiet++;
-			break;
-		case 'x':
-			if (!inet_aton(optarg, &axfr_src))
-				panic("bad -x addr: %s", optarg);
-			break;
-		case 'T':
-			tsigfile = optarg;
-			break;
-		case 'Z':
-			xfr_qtype = ns_t_zxfr;
-			break;
-		case '?':
-		default:
-			usage("unrecognized argument");
-			/* NOTREACHED */
-		}
-	if (!domain || ((!dbfile) && (!ixfrfile)) || optind >= argc) {
-		if (!domain)
-			usage("no domain");
-		if (!dbfile)
-			usage("no dbfile");
-		if (optind >= argc)
-			usage("not enough arguments");
-		/* NOTREACHED */
-	}
-	if (stat(dbfile, &statbuf) != -1 &&
-	    !S_ISREG(statbuf.st_mode) &&
-	    !S_ISFIFO(statbuf.st_mode))
-		usage("dbfile must be a regular file or FIFO");
-	if (ixfrfile && (stat(ixfrfile, &statbuf) != -1 &&
-			!S_ISREG(statbuf.st_mode) &&
-			!S_ISFIFO(statbuf.st_mode)))
-		usage("ixfrfile must be a regular file or FIFO");
-	if (tsigfile && stat(tsigfile, &statbuf) != -1 &&
-	    !S_ISREG(statbuf.st_mode) &&
-	    !S_ISFIFO(statbuf.st_mode))
-		usage("tsigfile must be a regular file or FIFO");
-	if (tracefile && (fp = fopen(tracefile, "w")) == NULL)
-		perror(tracefile);
-	(void) strcat(tmpname, ".XXXXXX");
-	/* tmpname is now something like "/etc/named/named.bu.db.XXXXXX" */
-	if ((dbfd = mkstemp(tmpname)) == -1) {
-		perror(tmpname);
-		if (!quiet)
-			syslog(LOG_ERR, "can't make tmpfile (%s): %s\n",
-			       tmpname, strerror(errno));
-		exit(XFER_FAIL);
-	}
-#ifdef HAVE_FCHMOD	/* XXX */
-	if (fchmod(dbfd, 0644) == -1)
-#else
-	if (chmod(tmpname, 0644) == -1)
-#endif
-	{
-		perror(tmpname);
-		if (!quiet)
-			syslog(LOG_ERR, "can't [f]chmod tmpfile (%s): %s\n",
-			       tmpname, strerror(errno));
-		exit(XFER_FAIL);
-	}
-	if ((dbfp = fdopen(dbfd, "r+")) == NULL) {
-		perror(tmpname);
-		if (!quiet)
-			syslog(LOG_ERR, "can't fdopen tmpfile (%s)", tmpname);
-		exit(XFER_FAIL);
-	}
-	if (ixfrfile) {
-		(void) strcat(tmpiname, ".XXXXXX");
-		if ((ixfd = mkstemp(tmpiname)) == -1) {
-			perror(tmpiname);
-			if (!quiet)
-				syslog(LOG_ERR,
-				       "can't make tmpifile (%s): %s\n",
-				       tmpiname, strerror(errno));
-			(void) fclose(dbfp);
-			(void) close(dbfd);
-			exit(XFER_FAIL);
-		}
-#ifdef HAVE_FCHMOD    /* XXX */
-		if (fchmod(ixfd, 0644) == -1)
-#else
-		if (chmod(tmpiname, 0644) == -1)
-#endif
-		{
-			perror(tmpiname);
-			if (!quiet)
-				syslog(LOG_ERR,
-				       "can't [f]chmod tmpifile (%s): %s\n",
-				       tmpiname, strerror(errno));
-			(void) fclose(dbfp);
-			(void) close(dbfd);
-			(void) close(ixfd);
-			exit(XFER_FAIL);
-		}
-		close(ixfd);
-	}
-#ifdef DEBUG
-	if (debug) {
-		/* ddtfile is now something like "/usr/tmp/xfer.ddt.XXXXXX" */
-		if ((ddtd = mkstemp(ddtfile)) == -1) {
-			perror(ddtfile);
-			debug = 0;
-		}
-#ifdef HAVE_FCHMOD
-		else if (fchmod(ddtd, 0644) == -1)
-#else
-		else if (chmod(ddtfile, 0644) == -1)
-#endif
-		{
-			perror(ddtfile);
-			debug = 0;
-		} else if ((ddt = fdopen(ddtd, "w")) == NULL) {
-			perror(ddtfile);
-			debug = 0;
-		} else
-			setvbuf(ddt, NULL, _IOLBF, 0);
-	}
-#endif
-	if (!init_xfer_logging()) {
-		cleanup_for_exit();
-		perror("init_xfer_logging");
-	}
-
-	/*
-	 * Ignore many types of signals that named (assumed to be our parent)
-	 * considers important- if not, the user controlling named with
-	 * signals usually kills us.
-	 */
-	(void) signal(SIGHUP, SIG_IGN);
-#ifdef SIGSYS
-	(void) signal(SIGSYS, SIG_IGN);
-#endif
-#ifdef DEBUG
-	if (debug == 0)
-#endif
-	{
-		(void) signal(SIGINT, SIG_IGN);
-		(void) signal(SIGQUIT, SIG_IGN);
-	}
-	(void) signal(SIGILL, SIG_IGN);
-
-#if defined(SIGUSR1) && defined(SIGUSR2)
-	(void) signal(SIGUSR1, SIG_IGN);
-	(void) signal(SIGUSR2, SIG_IGN);
-#else	/* SIGUSR1&&SIGUSR2 */
-	(void) signal(SIGEMT, SIG_IGN);
-	(void) signal(SIGFPE, SIG_IGN);
-#endif /* SIGUSR1&&SIGUSR2 */
-
-	if (dbfile)
-		dprintf(1, "domain `%s'; file `%s'; serial %u\n",
-			domain, dbfile, serial_no);
-
-	if (ixfrfile) 
-		dprintf(1, "domain `%s'; ixfrfile `%s'; serial %u\n",
-			domain, ixfrfile, serial_no);
-
-	buildservicelist();
-	buildprotolist();
-
-	tsig_init(tsigfile);
-
-	/* init zone data */
- 
-	zp = &zone;
-	if (stub_only)
-		zp->z_type = Z_STUB;
-	else
-		zp->z_type = Z_SECONDARY;
-	zp->z_class = class;
-	zp->z_origin = domain;
-	zp->z_source = dbfile;
-	zp->z_axfr_src = axfr_src;
-	zp->z_addrcnt = 0;
-	dprintf(1, "zone found (%d): \"%s\", source = %s\n",
-		zp->z_type,
-		(zp->z_origin[0] == '\0') ? "." : zp->z_origin,
-		zp->z_source);
-
-	for (; optind != argc; optind++) {
-		int tmpsupportixfr;
-
-		tm = argv[optind];
-		tmpsupportixfr = ISNOTIXFR;
-		if ((optind+1) != argc) {
-			if (strcasecmp("ixfr", argv[optind+1]) == 0) {
-#if ENABLE_IXFR
-				tmpsupportixfr = ISIXFR;	
-				servermethode[zp->z_addrcnt] = tmpsupportixfr;
-#endif
-				optind++;
-			} else if (strcasecmp("axfr", argv[optind+1]) == 0) {
-				tmpsupportixfr = ISNOTIXFR;
-				optind++;
-			}
-		}
-		if (!inet_aton(tm, &zp->z_addr[zp->z_addrcnt])) {
-			if (strcmp("-ixfr",tm)==0) {
-#if ENABLE_IXFR
-				tmpsupportixfr = ISIXFR;	
-				servermethode[zp->z_addrcnt-1] = tmpsupportixfr;
-#endif
-				continue;
-			} else
-				if (strcmp("-axfr",tm)==0) {
-					tmpsupportixfr = ISNOTIXFR;
-					continue;
-				}
-			hp = gethostbyname(tm);
-			if (hp == NULL) {
-				syslog(LOG_NOTICE,
-				       "uninterpretable server (%s) for %s\n",
-				       tm, zp->z_origin);
-				continue;
-			}
-			memcpy(&zp->z_addr[zp->z_addrcnt],
-			       hp->h_addr,
-			       INADDRSZ);
-			dprintf(1, "Arg: \"%s\" %s\n", tm,((tmpsupportixfr) ? "IXFR":"AXFR"));
-		}
-		if (++zp->z_addrcnt >= NSMAX) {
-			zp->z_addrcnt = NSMAX;
-			dprintf(1, "NSMAX reached\n");
-			break;
-		}
-	}
-	dprintf(1, "addrcnt = %d\n", zp->z_addrcnt);
-
-	res_ninit(&res);
-	res.options &= ~(RES_DEFNAMES | RES_DNSRCH | RES_RECURSE);
-	result = getzone(zp, serial_no, port);
-	(void) fclose(dbfp);
-	(void) close(dbfd);
-	
-	if (ixfp)
-		(void) my_fclose(ixfp);
-	else
-		close(ixfd);
-
-	switch (result) {
-
-	case XFER_SUCCESSAXFR:			/* ok exit */
-		if (tmpiname != NULL)
-			unlink(tmpiname);
-		if (ixfrfile) {
-			/*
-			 * An IXFR was requested but we performed an
-			 * AXFR.  Rename the temporary file to the IXFR
-			 * name, named will rename it again to the dbname.
-			 */
-			if (movefile(tmpname, ixfrfile) == -1) {
-				perror("movefile");
-#ifdef DEBUG
-				if (debug)
-					(void) unlink(ddtfile);
-#endif
-				if (!quiet)
-					syslog(LOG_ERR,
-					       "rename %s to %s: %s",
-					       tmpname, ixfrfile, strerror(errno));
-				cleanup_for_exit();
-				exit(XFER_FAIL);
-			};
-			exit(XFER_SUCCESSAXFRIXFRFILE);	
-		}
-		if (movefile(tmpname, dbfile) == -1) {
-			perror("movefile");
-			if (!quiet)
-			    syslog(LOG_ERR, "movefile %s to %s: %m",
-				   tmpname, dbfile);
-			cleanup_for_exit();
-			exit(XFER_FAIL);
-		}
-		exit(XFER_SUCCESSAXFR);
-
-	case XFER_SUCCESSIXFR:
-		unlink(tmpname);
-		if (movefile(tmpiname, ixfrfile) == -1) {
-			perror("movefile");
-			if (!quiet)
-				syslog(LOG_ERR, "movefile %s to %s: %m",
-				       tmpiname, ixfrfile);
-			cleanup_for_exit();
-			exit(XFER_FAIL);
-		}
-		cleanup_for_exit();
-		exit(XFER_SUCCESSIXFR);
-
-	case XFER_UPTODATE:		/* the zone was already uptodate */
-		(void) unlink(tmpname);
-		if (tmpiname != NULL)
-			(void) unlink(tmpiname);
-		cleanup_for_exit();
-		exit(XFER_UPTODATE);
-
-	default:
-		result = XFER_FAIL;
-		/* fall through */
-	case XFER_TIMEOUT:
-	case XFER_FAIL:
-		(void) unlink(tmpname);
-		cleanup_for_exit();
-		exit(result);	/* error or timeout */
-	}
-	/*NOTREACHED*/
-	return (0);		/* Make gcc happy. */
-}
- 
-static char *UsageText[] = {
-	"\t-z zone_to_transfer\n",
-	"\t-f db_file\n",
-	"\t[-i ixfr_file]\n",
-	"\t[-s serial_no]\n",
-	"\t[-d debug_level]\n",
-	"\t[-l debug_log_file]\n",
-	"\t[-t trace_file]\n",
-	"\t[-p port]\n",
-	"\t[-S] [-Z]\n",
-	"\t[-C class]\n",
-	"\t[-x axfr-src]\n",
-	"\t[-T tsig_info_file]\n",
-	"\tservers [-ixfr|-axfr]...\n",
-	NULL
-};
-
-static void
-usage(const char *msg) {
-	char * const *line;
-
-	fprintf(stderr, "Usage error: %s\n", msg);
-	fprintf(stderr, "Usage: %s\n", ProgName);
-	for (line = UsageText;  *line;  line++)
-		fputs(*line, stderr);
-	exit(XFER_FAIL);
-}
-
-static void
-tsig_init(const char *file) {
-	char buf[1024];
-	int n;
-	FILE *fp;
-	char *s;
-
-	if (file == NULL)
-		return;
-	fp = fopen(file, "r");
-	if (fp == NULL)
-		return;
-	dst_init();
-	INIT_LIST(tsig_list);
-	while (1) {
-		tsig_node *n = malloc(sizeof(tsig_node));
-		int alg, secret_len;
-		char *address, *name;
-		char *cp;
-		u_char secret[128];
-
-		s = fgets(buf, sizeof(buf), fp);
-		if (s == NULL)
-			break;
-		buf[strlen(buf)-1] = 0;
-		inet_aton(buf, &n->addr);
-
-		fgets(buf, sizeof(buf), fp);
-		buf[strlen(buf)-1] = 0;
-		name = strdup(buf);
-
-		fscanf(fp, "%d", &alg);
-		fgets(buf, sizeof(buf), fp);
-
-		fgets(buf, sizeof(buf), fp);
-		buf[strlen(buf)-1] = 0;
-		cp = buf;
-		while (isspace(*cp))
-			cp++;
-
-		secret_len = b64_pton(cp, secret, sizeof(secret));
-		n->dst_key = dst_buffer_to_key(name, alg, 0, 0,
-					       secret, secret_len);
-
-		free(name);
-		APPEND(tsig_list, n, link);
-	}
-	fclose(fp);
-	unlink(file);
-}
-
-#define DEF_DNAME	'\001'		/* '\0' means the root domain */
-/* XXX: The following variables should probably all be "static" */
-u_int32_t	minimum_ttl = 0;
-int	soa_cnt = 0, scdsoa = 0, methode = ISNOTIXFR;
-int     delete_soa = 1;
-u_int32_t final_serial = 0;
-int	ixfr_soa = 0;
-int	ns_cnt = 0;
-int	query_type = 0;
-int	prev_comment = 0;	/* was previous record a comment? */
-char	zone_top[MAXDNAME];	/* the top of the zone */
-char	prev_origin[MAXDNAME];	/* from most recent $ORIGIN line */
-char	prev_dname[MAXDNAME] = { DEF_DNAME }; /* from previous record */
-char	prev_ns_dname[MAXDNAME] = { DEF_DNAME }; /* from most recent NS record */
-
-static int
-getzone(struct zoneinfo *zp, u_int32_t serial_no, int port) {
-	HEADER *hp;
-	u_int len;
-	u_int32_t serial;
-	int s, n, l, error = 0;
-	int was_ixfr = 0;
-	u_int cnt;
- 	u_char *cp, *nmp, *eom, *tmp ;
-	u_char *buf = NULL, *cpp = NULL;
-	u_char *bp;
-	u_int bufsize = 0;
-	char name[MAXDNAME], name2[MAXDNAME];
-	struct sockaddr_in sin;
-	struct sockaddr_in local;
-	int locallen;
-#ifdef POSIX_SIGNALS
-	struct sigaction sv, osv;
-#else
-	struct sigvec sv, osv;
-#endif
-	int qdcount, ancount, aucount, arcount, class, type;
-	int first_serial;
-	const char *badsoa_msg = "Nil";
-	struct sockaddr_in my_addr;
-	char my_addr_text[30];
-	int alen, ret, tsig_req;
-	DST_KEY *tsig_key;
-	ns_tcp_tsig_state tsig_state;
-	int tsig_signed = 0;
-	u_char sig[64];
-	int siglen;
-	int ixfr_first = 1;
-	int loop_cnt = 0;
-	time_t timesigned;
-	u_int32_t query_serial = serial_no;
-
-#ifdef DEBUG
-	if (debug) {
-		(void)fprintf(ddt,"getzone() %s ", zp->z_origin);
-		switch (zp->z_type) {
-		case Z_STUB:
-			fprintf(ddt,"stub\n");
-			break;
-		case Z_SECONDARY:
-			fprintf(ddt,"secondary\n");
-			break;
-		default:
-			fprintf(ddt,"unknown type\n");
-		}
-	}
-#endif
-#ifdef POSIX_SIGNALS
-	memset(&sv, 0, sizeof sv);
-	sv.sa_handler = (SIG_FN (*)()) read_alarm;
-	/* SA_ONSTACK isn't recommended for strict POSIX code */
-	/* is it absolutely necessary? */
-	/* sv.sa_flags = SA_ONSTACK; */
-	sigfillset(&sv.sa_mask);
-	(void) sigaction(SIGALRM, &sv, &osv);
-	memset(&sv, 0, sizeof sv);
-	sv.sa_handler = (SIG_FN (*)()) term_handler;
-	sigfillset(&sv.sa_mask);
-	(void) sigaction(SIGTERM, &sv, &osv);
-#else
-	memset(&sv, 0, sizeof sv);
-	sv.sv_handler = read_alarm;
-	sv.sv_mask = ~0;
-	(void) sigvec(SIGALRM, &sv, &osv);
-	memset(&sv, 0, sizeof sv);
-	sv.sv_handler = term_handler;
-	sv.sv_mask = ~0;
-	(void) sigvec(SIGTERM, &sv, &osv);
-#endif
-
-	strcpy(zone_top, zp->z_origin);
-	if ((l = strlen(zone_top)) != 0 && zone_top[l - 1] == '.')
-		zone_top[l - 1] = '\0';
-	strcpy(prev_origin, zone_top);
-	for (cnt = 0; cnt < zp->z_addrcnt; cnt++) {
-		methode = servermethode[cnt];
-		sin.sin_addr = zp->z_addr[cnt];
-		dprintf(3, "address [%s] %s\n",
-			inet_ntoa(sin.sin_addr),
-			(methode == ISIXFR) ? "IXFR":"AXFR");
-
-	}
-	for (cnt = 0; cnt < zp->z_addrcnt; cnt++) {
-		methode = ISNOTIXFR;
-		curclass = zp->z_class;
-		/*
-		 * If we have been given a serial number and a ixfr log
-		 * file name then set methode.
-		 */
-		if (check_serial && tmpiname != NULL)
-			methode = servermethode[cnt];
-		error = 0;
-		if (buf == NULL) {
-			if ((buf = (u_char *)malloc(2 * PACKETSZ)) == NULL) {
-				syslog(LOG_INFO, "malloc(%u) failed",
-				       2 * PACKETSZ);
-				error++;
-				break;
-			}
-			bufsize = 2 * PACKETSZ;
-		}
- try_again:
-		if ((s = socket(AF_INET, SOCK_STREAM, PF_UNSPEC)) < 0) {
-			syslog(LOG_INFO, "socket: %m");
-			error++;
-			break;
-		}	
-		if (zp->z_axfr_src.s_addr != 0) {
-			memset(&sin, 0, sizeof sin);
-			sin.sin_family = AF_INET;
-			sin.sin_port = 0;		/* "ANY" */
-			sin.sin_addr = zp->z_axfr_src;
-			dprintf(2, "binding to address [%s]\n",
-				inet_ntoa(sin.sin_addr));
-			if (bind(s, (struct sockaddr *)&sin, sizeof sin) < 0)
-				syslog(LOG_INFO, "warning: bind(%s) failed",
-				       inet_ntoa(zp->z_axfr_src));
-		}
-		memset(&sin, 0, sizeof sin);
-		sin.sin_family = AF_INET;
-		sin.sin_port = port;
-		sin.sin_addr = zp->z_addr[cnt];
-		dprintf(2, "connecting to server #%d [%s].%d\n",
-			cnt+1, inet_ntoa(sin.sin_addr), ntohs(sin.sin_port));
-		if (connect(s, (struct sockaddr *)&sin, sizeof(sin)) < 0) {
-			if (zp->z_axfr_src.s_addr != 0) {
-				dprintf(2, "connect failed, trying w/o -x");
-				zp->z_axfr_src.s_addr = 0;
-				(void) my_close(s);
-				goto try_again;
-			}
-			if (!quiet)
-				syslog(LOG_INFO,
-				       "connect(%s) for zone %s failed: %s",
-				       inet_ntoa(sin.sin_addr), zp->z_origin, strerror(errno));
-			error++;
-			(void) my_close(s);
-			continue;
-		}	
-		if (methode == ISIXFR && was_ixfr == 0) {
-			hp = (HEADER *) buf;
-			cpp = buf;
-			n = res_nmkquery(&res, QUERY, zp->z_origin, curclass,
-				 T_IXFR, NULL, 0, NULL, buf, bufsize);
-			dprintf(1, "len = %d\n", n);
-			if (n < 0) {
-				if (!quiet)
-					syslog(LOG_INFO,
-					    "zone %s: dn_comp for ixfr failed",
-						zp->z_origin);
-					(void) my_close(s);
-#ifdef POSIX_SIGNALS
-					sigaction(SIGALRM,
-						  &osv,
-						 (struct sigaction*)0);
-#else
-					sigvec(SIGALRM,
-						       &osv,
-						   (struct sigvec *)0);
-#endif
-					return (XFER_FAIL);
-			}
-			hp->nscount = htons(1+ntohs(hp->nscount));
-			cpp += n;
-			n = dn_comp(zp->z_origin, cpp, bufsize-(cpp-buf),
-				    NULL, NULL);
-			if (n > 0)
-				cpp += n;
-			PUTSHORT(T_SOA, cpp); /* type */
-			PUTSHORT(C_IN, cpp);  /* class */
-			PUTLONG(0, cpp);      /* ttl */
-			PUTSHORT(22, cpp);    /* dlen */
-			*cpp++ = 0;           /* mname */
-			*cpp++ = 0;           /* rname */
-			PUTLONG(serial_no, cpp);
-			PUTLONG(0xDEAD, cpp); /* Refresh */
-			PUTLONG(0xBEEF, cpp); /* Retry */
-			PUTLONG(0xABCD, cpp); /* Expire */
-			PUTLONG(0x1776, cpp); /* Min TTL */
-			n = cpp-buf;
-			dprintf(1, "len = %d\n", cpp-buf);
-			if (debug)
-				res_pquery(&res, buf, n, ddt);
-		}
-		else {
-		n = res_nmkquery(&res, QUERY, zp->z_origin, curclass,
-				 T_SOA, NULL, 0, NULL, buf, bufsize);
-		if (n < 0) {
-			if (!quiet)
-				syslog(LOG_INFO,
-				       "zone %s: res_nmkquery T_SOA failed",
-				       zp->z_origin);
-			(void) my_close(s);
-#ifdef POSIX_SIGNALS
-			(void) sigaction(SIGALRM, &osv, (struct sigaction *)0);
-#else
-			(void) sigvec(SIGALRM, &osv, (struct sigvec *)0);
-#endif
-			return (XFER_FAIL);
-		}
-		}
-		/*
-		 * Append TSIG to SOA query if desired
-		 */
-		tsig_key = tsig_key_from_addr(sin.sin_addr);
-		if (tsig_key != NULL) {
-			siglen = sizeof(sig);
-			ret = ns_sign(buf, &n, bufsize, NOERROR, tsig_key,
-				      NULL, 0, sig, &siglen, timesigned);
-			if (ret == 0)
-				tsig_signed = 1;
-		}
-
-		/*
-		 * Send length & message for SOA query
-		 */
-		if (writemsg(s, buf, n) < 0) {
-			syslog(LOG_INFO, "writemsg: %m");
-			error++;
-			(void) my_close(s);
-			continue;	
-		}
-		/*
-		 * Get out your butterfly net and catch the SOA
-		 */
-		
-		if (netread(s, (char *)buf, INT16SZ, 
-			(soa_cnt == 0) ?400 :XFER_TIMER) < 0) {
-			(void) my_close(s);
-			error++;
-			continue;
-		}
-		if ((len = ns_get16(buf)) == 0) {
-			(void) my_close(s);
-			continue;
-		}
-		if (len > bufsize) {
-			if ((buf = (u_char *)realloc(buf, len)) == NULL) {
-				syslog(LOG_INFO,
-		       "malloc(%u) failed for SOA from server [%s], zone %s\n",
-				       len,
-				       inet_ntoa(sin.sin_addr),
-				       zp->z_origin);
-				(void) my_close(s);
-				continue;
-			}
-			bufsize = len;
-		}
-		if (netread(s, (char *)buf, len, XFER_TIMER) < 0) {
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		/*
-		 * Verify the TSIG if expected
-		 */
-		if (tsig_signed != 0) {
-			ret = ns_verify(buf, (int *)&len, tsig_key, sig, siglen,
-					NULL, NULL, &timesigned, 0);
-			if (ret != 0) {
-				syslog(LOG_NOTICE,
-		"SOA TSIG verification from server [%s], zone %s: %s (%d)\n",
-				       inet_ntoa(sin.sin_addr), zp->z_origin,
-				       tsig_rcode(ret), ret);
-				error++;
-				continue;
-			}
-		}
-		
-#ifdef DEBUG
-		if (debug >= 3) {
-			(void)fprintf(ddt,"len = %d\n", len);
-			res_pquery(&res, buf, len, ddt);
-		}
-#endif
-		if (((methode == ISIXFR) && (ixfp == NULL)) && was_ixfr == 0) {
-			delete_soa = 1;	
-			ixfr_soa = 0;
-			if ((ixfp = fopen(tmpiname, "w+")) == NULL) {
-				perror(tmpiname);
-				if (!quiet)
-					syslog(LOG_ERR,
-					       "can't fdopen ixfr log (%s)",
-					       tmpname);
-				exit(XFER_FAIL);
-			}
-		}
-
-		hp = (HEADER *) buf;
-		qdcount = ntohs(hp->qdcount);
-		ancount = ntohs(hp->ancount);
-		aucount = ntohs(hp->nscount);
-		arcount = ntohs(hp->arcount);
-		/*
-		 * close socket if any of these apply:
-		 *  1) rcode != NOERROR
-		 *  2) not an authority response
-		 *  3) not an answer to our question
-		 *  4) both the number of answers and authority count < 1)
-		 */
-		if (hp->rcode != NOERROR || !hp->aa || qdcount != 1 ||
-		    (ancount < 1 && aucount < 1)) {
-#ifndef SYSLOG_42BSD
-			syslog(LOG_NOTICE,
-       "[%s] %s for %s, SOA query got rcode %d, aa %d, ancount %d, aucount %d",
-			       inet_ntoa(sin.sin_addr),
-			       (hp->aa
-				? (qdcount==1 ?"no SOA found" :"bad response")
-				: "not authoritative"),
-			       zp->z_origin[0] != '\0' ? zp->z_origin : ".",
-			       hp->rcode, hp->aa, ancount, aucount);
-#endif
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		zp_start = *zp;
-		if ((int)len < HFIXEDSZ + QFIXEDSZ) {
-			badsoa_msg = "too short";
- badsoa:
-			syslog(LOG_INFO,
-			       "malformed SOA from [%s], zone %s: %s",
-			       inet_ntoa(sin.sin_addr), zp->z_origin,
-			       badsoa_msg);
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		/*
-		 * Step through response.
-		 */
-		tmp = buf + HFIXEDSZ;
-		eom = buf + len;
-		/* Query Section. */
-		if (qdcount > 1) {
-			badsoa_msg = "question error";
-			goto badsoa;
-		}
-		if (qdcount < 1)
-			goto no_question;
-		n = dn_expand(buf, eom, tmp, name2, sizeof name2);
-		if (n < 0) {
-			badsoa_msg = "qname error";
-			goto badsoa;
-		}
-		tmp += n;
-		if (tmp + 2 * INT16SZ > eom) {
-			badsoa_msg = "query error";
-			goto badsoa;
-		}
-		NS_GET16(type, tmp);
-		NS_GET16(class, tmp);
-		if (class != curclass || 
-			((type != T_SOA) && (type != T_IXFR) && (type != T_AXFR)) ||
-		    ns_samename(zp->z_origin, name2) != 1) 
-		{
-			syslog(LOG_INFO,
-			"wrong query in resp from [%s], zone %s: [%s %s %s]\n",
-			       inet_ntoa(sin.sin_addr), zp->z_origin,
-			       name2, p_class(class), p_type(type));
-			error++;
-			(void) my_close(s);
-			continue;
-		}
- no_question:
-		/* ... Answer Section.
-		 * We may have to loop a little, to bypass SIG SOA's in
-		 * the response.
-		 */
-		loop_cnt = 0;
-		do {
-			u_char *cp4;
-			u_short type, class, dlen;
-			u_int32_t ttl;
-			n = dn_expand(buf, eom, tmp, name2, sizeof name2);
-			if (n < 0) {
-				badsoa_msg = "aname error";
-				goto badsoa;
-			}
-			tmp += n;
-
-			/* Are type, class, and ttl OK? */
-			cp4 = tmp;	/* Leave tmp pointing to type field */
-			if (eom - cp4 < 3 * INT16SZ + INT32SZ) {
-				badsoa_msg = "zinfo too short";
-				goto badsoa;
-			}
-			NS_GET16(type, cp4);
-			NS_GET16(class, cp4);
-			NS_GET32(ttl, cp4);
-			NS_GET16(dlen, cp4);
-			if (cp4 + dlen > eom) {
-				badsoa_msg = "zinfo dlen too big";
-				goto badsoa;
-			}
-			if (type == T_SOA) {
-			  if (was_ixfr)  {
-				methode = ISNOTIXFR;
-				break;
-			  }
-			  if ((methode == ISIXFR) && (loop_cnt == 0)) {
-				bp = tmp;
-			  	soa_cnt++;
-				badsoa_msg = soa_zinfo(&zp_finish, tmp, eom);
-				if (badsoa_msg)
-					goto badsoa;
-				if (ixfp)
-					  if (ixfr_log(buf, len, &delete_soa, ixfp,
-						 &sin, domain, &serial_no,
-						 &ixfr_first) < 0) {
-						 error++;
-						 break;
-					  }
-			  } else { 
-				if (methode == ISIXFR) {
-					check_serial = 0;
-			 		soa_cnt++;
-					break;
-				}
-				break;
-			   }
-			}
-			if ((loop_cnt >= 1) && (soa_cnt < 2)) {
-					dprintf(1,
-				      	"server %s %d rejected IXFR and responded with AXFR\n",
-					       inet_ntoa(sin.sin_addr), soa_cnt);
-					methode = ISNOTIXFR;
-					check_serial = 0;
-					was_ixfr++;
-					tmp = bp;
-				break;
-			}
-			/* Skip to next record, if any.  */
-			dprintf(1, "skipping %s %s RR in response\n",
-				name2, p_type(type));
-			tmp = cp4 + dlen;
-			loop_cnt++;
-			if (loop_cnt >= ancount) {
-				tmp = bp;
-				check_serial = 0;
-				break;
-			}
-		} while (1);
-
-		if (ns_samename(zp->z_origin, name2) != 1) {
-			syslog(LOG_INFO,
-		       "wrong answer in resp from [%s], zone %s: [%s %s %s]\n",
-			       inet_ntoa(sin.sin_addr), zp->z_origin,
-			       name2, p_class(class), p_type(type));
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		badsoa_msg = soa_zinfo(&zp_start, tmp, eom);
-		if (badsoa_msg)
-			goto badsoa;
-		if (methode == ISNOTIXFR) {
-		if (SEQ_GT(zp_start.z_serial, serial_no) || !check_serial) {
-			const char *l, *nl, *t;
-
-			if (soa_cnt)  {
-				goto axfr_response;
-			}
-			dprintf(1, "need update, serial %u\n",
-				zp_start.z_serial);
-			soa_cnt = 0;
-			hp = (HEADER *) buf;
-			ns_cnt = 0;
-			gettime(&tt);
-			locallen = sizeof local;
-			if (getsockname(s, (struct sockaddr *)&local,
-					&locallen) < 0) {
-				memset(&local, 0, sizeof local);
-			}
-			for (l = Version; l; l = nl) {
-				size_t len;
-				if ((nl = strchr(l, '\n')) != NULL) {
-					len = nl - l;
-					nl = nl + 1;
-				} else {
-					len = strlen(l);
-					nl = NULL;
-				}
-				while (isspace((unsigned char) *l))
-					l++;
-				if (*l)
-					fprintf(dbfp, "; BIND version %.*s\n",
-						(int)len, l);
-			}
-			fprintf(dbfp, check_serial?
-				"; zone '%s'   last serial %u\n":
-				"; zone '%s'   first transfer\n",
-				domain, serial_no);
-			t = strdup(inet_ntoa(sin.sin_addr));
-			fprintf(dbfp, "; from %s:%d (local %s) using %s at %s",
-				t, ntohs(sin.sin_port),
-				inet_ntoa(local.sin_addr),
-				(methode == ISIXFR) ? "IXFR":"AXFR", 
-				ctimel(tt.tv_sec));
-			free((void *)t);
-			for (;;) {
-				if ((soa_cnt == 0) || (zp->z_type == Z_STUB)) {
-					if (zp->z_type == Z_STUB) {
-						if (soa_cnt == 1 &&
-						    ns_cnt == 0)
-							query_type = T_NS;
-						else
-							query_type = T_SOA;
-					} else if (methode == ISIXFR)
-						query_type = T_IXFR;
-					else
-						query_type = xfr_qtype;
-					n = res_nmkquery(&res, QUERY,
-							 zp->z_origin,
-							 curclass, query_type,
-							 NULL, 0,
-							 NULL, buf, bufsize);
-					syslog(LOG_INFO,
-					       "send %s query %d to %s",
-				      (query_type == T_IXFR) ? "IXFR" :
-				      (query_type == T_AXFR) ? "AXFR" :
-				      (query_type == ns_t_zxfr) ? "ZXFR" :
-				      (query_type == T_SOA) ? "SOA" : "NS",
-					       cnt, inet_ntoa(sin.sin_addr));
-					dprintf(1,
-					"send %s query to %s\n",
-					(query_type == T_IXFR) ? "IXFR" :
-					(query_type == T_AXFR) ? "AXFR" :
-					(query_type == ns_t_zxfr) ? "ZXFR" :
-					(query_type == T_SOA) ? "SOA" : "NS",
-						inet_ntoa(sin.sin_addr));
-					dprintf(1,"bufsize = %d\n", bufsize);
-					if (n < 0) {
-						if (!quiet) {
-						    if (zp->z_type == Z_STUB)
-							syslog(LOG_INFO,
-						       (query_type == T_SOA)
-					? "zone %s: res_nmkquery T_SOA failed"
-					: "zone %s: res_nmkquery T_NS failed",
-							       zp->z_origin);
-						    else
-							syslog(LOG_INFO,
-					     "zone %s: res_nmkquery %s failed",
-						       zp->z_origin,
-						       p_type(query_type));
-						}
-						(void) my_close(s);
-#ifdef POSIX_SIGNALS
-						sigaction(SIGALRM, &osv,
-							(struct sigaction *)0);
-#else
-						sigvec(SIGALRM, &osv,
-						       (struct sigvec *)0);
-#endif
-						return (XFER_FAIL);
-					}
-					cpp = buf + n;
-					/*
-					 * Append TSIG to AXFR query if desired
-					 */
-					if (tsig_signed != 0) {
-						siglen = sizeof(sig);
-						ns_sign(buf, &n, bufsize,
-							NOERROR, tsig_key,
-							NULL, 0, sig, &siglen,
-							timesigned);
-						cpp = buf + n;
-						ns_verify_tcp_init(tsig_key,
-								   sig, siglen,
-								   &tsig_state);
-					}
-					/*
-					 * Send length & msg for zone transfer
-					 */
-					if (writemsg(s, buf, cpp - buf) < 0) {
-						syslog(LOG_INFO,
-						       "writemsg: %m");
-						error++;
-						(void) my_close(s);
-						break;	
-					}
-				}
-/*XXX ZXFR*/
-receive:
-				/*
-				 * Receive length & response
-				 */
-				if (netread(s, (char *)buf, INT16SZ,
-					    (soa_cnt == 0) ?300 :XFER_TIMER)
-				    < 0) {
-					error++;
-					break;
-				}
-				if ((len = ns_get16(buf)) == 0)
-					break;
-				if (len > bufsize) {
-					buf = (u_char *)realloc(buf, len);
-					if (buf == NULL) {
-						syslog(LOG_INFO,
-		   	 "malloc(%u) failed for packet from server [%s], zone %s\n",
-						       len,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-						error++;
-						break;
-					}
-					bufsize = len;
-				}
-				hp = (HEADER *)buf;
-				eom = buf + len;
-				if (netread(s, (char *)buf, len, XFER_TIMER)
-				    < 0) {
-					error++;
-					break;
-				}
-#ifdef DEBUG
-				if (debug >= 3) {
-					(void)fprintf(ddt,"len = %d\n", len);
-					res_pquery(&res, buf, len, ddt);
-				}
-				if (fp)
-					res_pquery(&res, buf, len, fp);
-#endif
-				/*
-				 * Verify the TSIG if expected
-				 */
-				if (tsig_signed != 0) {
-					tsig_req = (soa_cnt == 0);
-					ret = ns_verify_tcp(buf, (int *)&len,
-							    &tsig_state,
-							    tsig_req);
-					eom = buf + len;
-
-					if (ret != 0) {
-						syslog(LOG_NOTICE,
-		"TSIG verification from server [%s], zone %s: %s (%d)\n",
-							inet_ntoa(sin.sin_addr),
-							zp->z_origin,
-							tsig_rcode(ret), ret);
-						error++;
-						break;
-					}
-				}
-				if (len < HFIXEDSZ) {
- badrec:
-					error++;
-					alen = sizeof my_addr;
-					if (getsockname(s, (struct sockaddr *)
-							&my_addr, &alen) < 0)
-						sprintf(my_addr_text,
-							"[errno %d]", errno);
-					else
-						sprintf(my_addr_text,
-							"[%s].%u",
-							inet_ntoa(my_addr.
-								  sin_addr),
-							ntohs(my_addr.sin_port)
-							);
-					if ((hp->rcode == REFUSED) &&
-					    (len >= HFIXEDSZ)) {
-						syslog(LOG_INFO,
-				  "[%s] transfer refused from [%s], zone %s\n",
-						       my_addr_text,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-					} else {
-						syslog(LOG_INFO,
-				  "[%s] record too short from [%s], zone %s\n",
-						       my_addr_text,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-					}
-					break;
-				}
-axfr_response:
-				if (query_type == T_IXFR) 
-					if (hp->rcode != NOERROR) {
-					    dprintf(1,
-					    "server %s did not support IXFR\n",
-						    inet_ntoa(sin.sin_addr));
-						methode = ISNOTIXFR;
-						continue;
-					};
-				cp = buf + HFIXEDSZ;
-				if (ntohs(hp->qdcount) == 1) {
-					if ((query_type == T_IXFR) && (methode == ISIXFR)) {
-							dprintf(1,
-				      "server %s rejected IXFR and responded with AXFR\n",
-						       inet_ntoa(sin.sin_addr));
-							methode = ISNOTIXFR;
-					}
-					n = dn_skipname(cp, eom);
-					if ((n  == -1) ||
-					    ((n + QFIXEDSZ) >= (eom - cp)))
-						goto badrec;
-					cp += n + QFIXEDSZ;
-				}
-				nmp = cp;
-				if ((n = dn_skipname(cp, eom)) == -1)
-					goto badrec;
-				tmp = cp + n;
-				if (zp->z_type == Z_STUB) {
-					ancount = ntohs(hp->ancount);
-					n = 0;
-					for (cnt = 0;
-					     cnt < (u_int)ancount;
-					     cnt++) {
-						n = print_output(zp,
-								 serial_no,
-								 buf, len, cp,
-								 was_ixfr);
-						if (n < 0)
-							break;
-						cp += n;
-					}
-					/*
-					 * If we've processed the answer
-					 * section and didn't get any useful
-					 * answers, bail out.
-					 */
-					if (query_type == T_SOA &&
-					    soa_cnt == 0) {
-						syslog(LOG_ERR,
-						    "stubs: no SOA in answer");
-						error++;
-						break;
-					}
-					if (query_type == T_NS &&
-					    ns_cnt == 0) {
-						syslog(LOG_ERR,
-						     "stubs: no NS in answer");
-						error++;
-						break;
-					}
-					if (n >= 0 && hp->nscount) {
-						ancount = ntohs(hp->nscount);
-						for (cnt = 0;
-						     cnt < (u_int)ancount;
-						     cnt++) {
-							n = print_output(zp,
-								     serial_no,
-									 buf,
-									 len,
-									 cp,
-								     was_ixfr);
-							if (n < 0)
-								break;
-							cp += n;
-						}
-					}
-					ancount = ntohs(hp->arcount);
-					for (cnt = 0;
-					     n > 0 && cnt < (u_int)ancount;
-					     cnt++) {
-						n = print_output(zp, serial_no,
-								 buf, len, cp,
-								 was_ixfr);
-						cp += n;
-					}
-					if (n < 0) {
-						syslog(LOG_INFO,
-			      "print_output: unparseable answer (%d), zone %s",
-						       hp->rcode,
-						       zp->z_origin);
-						error++;
-						break;
-					}
-					if (cp != eom) {
-						syslog(LOG_INFO,
-				"print_output: short answer (%d, %d), zone %s",
-						       cp - buf, eom - buf,
-						       zp->z_origin);
-						error++;
-						break;
-					}
-				} else {
-					ancount = ntohs(hp->ancount);
-					if (query_type == T_IXFR &&
-					    methode == ISIXFR) {
-						if (ixfr_log(buf, len,
-							     &delete_soa, ixfp,
-							     &sin, domain,
-							     &serial_no,
-							     &ixfr_first) < 0){
-								error++;
-								break;
-							}
-					}
-					for (n = cnt = 0;
-					     cnt < (u_int)ancount;
-					     cnt++) {
-						n = print_output(zp, serial_no,
-								 buf, len, cp,
-								 was_ixfr);
-						if (n < 0)
-							break;
-						cp += n;
-					}
-					if (n < 0) {
-						syslog(LOG_INFO,
-			"print_output: unparseable answer (%d), zone %s",
-						       hp->rcode,
-						       zp->z_origin);
-						error++;
-						break;
-					}
-					if (cp != eom) {
-						syslog(LOG_INFO,
-				"print_output: short answer (%d, %d), zone %s",
-						       cp - buf, eom - buf,
-						       zp->z_origin);
-						error++;
-						break;
-					}
-				}
-				if ((soa_cnt >= 2) && (methode == ISNOTIXFR))
-					break;
-				if ((soa_cnt == -1) && (methode == ISIXFR))
-					break;
-			}
-			(void) my_close(s);
-			if (error == 0) {
-#ifdef POSIX_SIGNALS
-				(void) sigaction(SIGALRM, &osv,
-						 (struct sigaction *)0);
-#else
-				(void) sigvec(SIGALRM, &osv,
-					      (struct sigvec *)0);
-#endif
-				if (ixfp) {
-					(void) fclose(ixfp);
-					ixfp = NULL;
-				}
-				return (XFER_SUCCESSAXFR);
-			}
-			if (ixfp) {
-				(void) fclose(ixfp);
-				ixfp = NULL;
-			}
-			dprintf(2, "error receiving zone transfer\n");
-		} else if (zp_start.z_serial == serial_no) {
-			(void) my_close(s);
-			dprintf(1, "zone up-to-date, serial %u\n",
-				zp_start.z_serial);
-			if (ixfp) {
-				(void) unlink (tmpiname);
-				(void) fclose(ixfp);
-				ixfp = NULL;
-			}
-			return (XFER_UPTODATE);
-		} else {
-			(void) my_close(s);
-			if (!quiet)
-				syslog(LOG_NOTICE,
-		      "serial from [%s], zone %s: %u lower than current: %u\n",
-				       inet_ntoa(sin.sin_addr), zp->z_origin,
-				       zp_start.z_serial, serial_no);
-			return (XFER_FAIL);
-		}
-		} else {
-			if (zp_finish.z_serial == query_serial) {
-				(void) my_close(s);
-				dprintf(1, "zone up-to-date, serial %u\n",
-					zp_start.z_serial);
-				if (ixfp) {
-					(void) unlink (tmpiname);
-					(void) fclose(ixfp);
-					ixfp = NULL;
-				}
-				return (XFER_UPTODATE);
-			}
-			if (SEQ_GT(query_serial, zp_finish.z_serial)) {
-				if (!quiet)
-				syslog(LOG_NOTICE,
-		             "serial from [%s], zone %s: %u lower than current: %u\n",
-				       inet_ntoa(sin.sin_addr), zp->z_origin,
-				       zp_finish.z_serial, query_serial);
-				dprintf(1, 
-		             "serial from [%s], zone %s: %u lower than current: %u\n",
-					inet_ntoa(sin.sin_addr), zp->z_origin,
-					zp_finish.z_serial, query_serial);
-				if (ixfp) {
-					(void) fclose(ixfp);
-					ixfp = NULL;
-					(void) unlink (tmpiname);
-				}
-				if (was_ixfr == 0) {
-					was_ixfr++;
-					n = res_nmkquery(&res, QUERY,
-							 zp->z_origin,
-							 curclass, T_AXFR,
-							 NULL, 0,
-							 NULL, buf, bufsize);
-					if (n < 0) {
-						if (!quiet)
-							syslog(LOG_INFO,
-		    		               "zone %s: res_nmkquery T_SOA failed",
-							       zp->z_origin);
-						(void) my_close(s);
-#ifdef POSIX_SIGNALS
-						(void) sigaction(SIGALRM, &osv,
-							(struct sigaction *)0);
-#else
-						(void) sigvec(SIGALRM, &osv,
-							   (struct sigvec *)0);
-#endif
-						return (XFER_FAIL);
-					}
-					/*
-					 * Append TSIG to SOA query if desired
-					 */
-					tsig_key = tsig_key_from_addr(sin.sin_addr);
-					if (tsig_key != NULL) {
-						siglen = sizeof(sig);
-						ret = ns_sign(buf, &n, bufsize,
-							      NOERROR,
-							      tsig_key, NULL,
-							      0, sig, &siglen,
-							      timesigned);
-						if (ret == 0)
-							tsig_signed = 1;
-					}
-
-				/*
-				 * Send length & message for AXFR query
-				 */
-					if (writemsg(s, buf, n) < 0)
-						syslog(LOG_INFO,
-						       "writemsg: %m");
-					else {
-						methode = ISNOTIXFR;
-						check_serial = 0;
-						soa_cnt = 0;
-						was_ixfr = 0;
-						goto receive;
-					}
-				}
-				(void) my_close(s);
-				return (XFER_FAIL);
-			}
-			if (ancount == 1) {
-				methode = ISNOTIXFR;
-				check_serial = 0;
-				soa_cnt = 0;
-				goto axfr_response;
-			}
-			dprintf(1, "We have an IXFR\n");
-			while (SEQ_GT(zp_finish.z_serial, serial_no)) {
-				/*
-				 * Receive length & response
-				 */
-				if (netread(s, (char *)buf, INT16SZ,
-					    (soa_cnt == 0) ?300 :XFER_TIMER)
-				    < 0) {
-					error++;
-					break;
-				}
-				if ((len = ns_get16(buf)) == 0)
-					break;
-				if (len > bufsize) {
-					buf = (u_char *)realloc(buf, len);
-					if (buf == NULL) {
-						syslog(LOG_INFO,
-		   	 "malloc(%u) failed for packet from server [%s], zone %s\n",
-						       len,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-						error++;
-						break;
-					}
-					bufsize = len;
-				}
-				hp = (HEADER *)buf;
-				eom = buf + len;
-				if (netread(s, (char *)buf, len, XFER_TIMER)
-				    < 0) {
-					error++;
-					break;
-				}
-#ifdef DEBUG
-				if (debug >= 3) {
-					(void)fprintf(ddt,"len = %d\n", len);
-					res_pquery(&res, buf, len, ddt);
-				}
-				if (fp)
-					res_pquery(&res, buf, len, fp);
-#endif
-				/*
-				 * Verify the TSIG if expected
-				 */
-				if (tsig_signed != 0) {
-					tsig_req = (soa_cnt == 0);
-					ret = ns_verify_tcp(buf, (int *)&len,
-							    &tsig_state,
-							    tsig_req);
-					eom = buf + len;
-
-					if (ret != 0) {
-						syslog(LOG_NOTICE,
-		"TSIG verification from server [%s], zone %s: %s (%d)\n",
-							inet_ntoa(sin.sin_addr),
-							zp->z_origin,
-							tsig_rcode(ret), ret);
-						error++;
-						break;
-					}
-				}
-				if (len < HFIXEDSZ) {
-					error++;
-					alen = sizeof my_addr;
-					if (getsockname(s, (struct sockaddr *)
-							&my_addr, &alen) < 0)
-						sprintf(my_addr_text, "[errno %d]", errno);
-					else
-						sprintf(my_addr_text, "[%s].%u",
-							inet_ntoa(my_addr.  sin_addr),
-							ntohs(my_addr.sin_port));
-					if ((hp->rcode == REFUSED) &&
-					    (len >= HFIXEDSZ)) {
-						syslog(LOG_INFO,
-				  			"[%s] transfer refused from [%s], zone %s\n",
-						       my_addr_text,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-					} else {
-						syslog(LOG_INFO,
-				  "[%s] record too short from [%s], zone %s\n",
-						       my_addr_text,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-					}
-					break;
-				}
-				if (ixfp)
-				  if (ixfr_log(buf, len, &delete_soa, ixfp,
-						 &sin, domain, &serial_no,
-						 &ixfr_first) < 0) {
-							error++;
-							break;
-				  }
-			}
-			(void) my_close(s);
-			if (!error) {
-				fprintf(ixfp, "update:\t{add} ");
-				if (soa_buf)
-				  fputs(soa_buf, ixfp);
-				fprintf(ixfp, "[END_DELTA]\n");
-				return (XFER_SUCCESSIXFR);
-			}
-		}
-	}
-#ifdef POSIX_SIGNALS
-	(void) sigaction(SIGALRM, &osv, (struct sigaction *)0);
-#else
-	(void) sigvec(SIGALRM, &osv, (struct sigvec *)0);
-#endif
-	if (ixfp) {
-			(void) unlink (tmpiname);
-			(void) my_fclose(ixfp);
-			ixfp = 0;
-	}
-	if (!error)
-		return (XFER_TIMEOUT);
-	return (XFER_FAIL);
-}
-
-static SIG_FN
-term_handler() {
-	cleanup_for_exit();
-	_exit(XFER_FAIL);  /* not safe to call exit() from a signal handler */
-}
-
-/*
- * Set flag saying to read was interrupted
- * used for a read timer
- */
-static SIG_FN
-read_alarm() {
-	read_interrupted = 1;
-}
- 
-static int
-netread(int fd, char *buf, int len, int timeout) {
-	static const char setitimerStr[] = "setitimer: %m";
-	struct itimerval ival, zeroival;
-	struct sockaddr_in sa;
-	int n, salen;
-#if defined(NETREAD_BROKEN)
-	int retries = 0;
-#endif
-
-	memset(&zeroival, 0, sizeof zeroival);
-	ival = zeroival;
-	ival.it_value.tv_sec = timeout;
-	while (len > 0) {
-#ifndef WINNT
-		if (setitimer(ITIMER_REAL, &ival, NULL) < 0) {
-			syslog(LOG_INFO, setitimerStr);
-			return (-1);
-		}
-#endif 
-		errno = 0;
-		salen = sizeof sa;
-		n = recvfrom(fd, buf, len, 0, (struct sockaddr *)&sa, &salen);
-		if (n == 0 && errno == 0) {
-#if defined(NETREAD_BROKEN)
-			if (++retries < 42)	/* doug adams */
-				continue;
-#endif
-			syslog(LOG_INFO, "premature EOF, fetching \"%s\"",
-			       domain);
-			return (-1);
-		}
-		if (n < 0) {
-			if (errno == 0) {
-#if defined(NETREAD_BROKEN)
-				if (++retries < 42)	/* doug adams */
-					continue;
-#endif
-				syslog(LOG_INFO,
-				       "recv(len=%d): n=%d && !errno",
-				       len, n);
-				return (-1);
-			}
-			if (errno == EINTR) {
-				if (!read_interrupted) {
-					/* It wasn't a timeout; ignore it. */
-					continue;
-				}
-				errno = ETIMEDOUT;
-			}
-			syslog(LOG_INFO, "recv(len=%d): %m", len);
-			return (-1);
-		}
-		buf += n;
-		len -= n;
-	}
-#ifndef WINNT
-	if (setitimer(ITIMER_REAL, &zeroival, NULL) < 0) {
-		syslog(LOG_INFO, setitimerStr);
-		return (-1);
-	}
-#endif
-	return (0);
-}
-
-/*
- * Write a counted buffer to a file descriptor preceded by a length word.
- */
-static int
-writemsg(int rfd, const u_char *msg, int msglen) {
-	struct iovec iov[2];
-	u_char len[INT16SZ];
-	int ret;
-
-	__putshort(msglen, len);
-	iov[0].iov_base = (char *)len;
-	iov[0].iov_len = INT16SZ;
-	iov[1].iov_base = (char *)msg;
-	iov[1].iov_len = msglen;
-	ret = writev(rfd, iov, 2);
-	if (ret != INT16SZ + msglen) {
-		syslog(LOG_DEBUG, "writemsg(%d,%#x,%d) failed: %s",
-		       rfd, msg, msglen, strerror(errno));
-		return (-1);
-	}
-	return (ret);
-}
-
-static const char *
-soa_zinfo(struct zoneinfo *zp, u_char *cp, u_char *eom) {
-	int n, type, class;
-	u_int32_t ttl;
-	u_int16_t dlen;
-	u_char *rdatap;
-
-	/* Are type, class, and ttl OK? */
-	if (eom - cp < 3 * INT16SZ + INT32SZ)
-		return ("zinfo too short");
-	NS_GET16(type, cp);
-	NS_GET16(class, cp);
-	NS_GET32(ttl, cp);
-	NS_GET16(dlen, cp);
-	rdatap = cp;
-	if (type != T_SOA || class != curclass)
-		return ("zinfo wrong typ/cla/ttl");
-	/* Skip master name and contact name, we can't validate them. */
-	if ((n = dn_skipname(cp, eom)) == -1)
-		return ("zinfo mname");
-	cp += n;
-	if ((n = dn_skipname(cp, eom)) == -1)
-		return ("zinfo hname");
-	cp += n;
-	/* Grab the data fields. */
-	if (eom - cp < 5 * INT32SZ)
-		return ("zinfo dlen");
-	NS_GET32(zp->z_serial, cp);
-	NS_GET32(zp->z_refresh, cp);
-	NS_GET32(zp->z_retry, cp);
-	NS_GET32(zp->z_expire, cp);
-	NS_GET32(zp->z_minimum, cp);
-	if (cp != rdatap + dlen)
-		return ("bad soa dlen");
-	return (NULL);
-}
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			hp->rcode = FORMERR; \
-			return (-1); \
-		} \
-	} while (0)
-
-/*
- * Parse the message, determine if it should be printed, and if so, print it
- * in .db file form.  Does minimal error checking on the message content.
- *
- * XXX why aren't we using ns_sprintrr() ?
- */
-static int
-print_output(struct zoneinfo *zp, u_int32_t serial_no, u_char *msg,
-	     int msglen, u_char *rrp, int was_ixfr) {
-	u_char *cp;
-	HEADER *hp = (HEADER *) msg;
-	u_int32_t addr, ttl, tmpnum;
-	int i, j, tab, result, n1, n;
-	u_int class, type, dlen;
-	char data[MAXDATA];
-	u_char *cp1, *cp2, *temp_ptr, *eom, *rr_type_ptr;
-	u_char *cdata, *rdatap;
-	char *origin, dname[MAXDNAME];
-	const char *proto;
-	const char *ignore = "";
-	const char *badsoa_msg;
-	int escaped = 0;
-
-	eom = msg + msglen;
-	cp = rrp;
-	n = dn_expand(msg, msg + msglen, cp, dname, sizeof dname);
-	if (n < 0) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	cp += n;
-	BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-	rr_type_ptr = cp;
-	NS_GET16(type, cp);
-	NS_GET16(class, cp);
-	NS_GET32(ttl, cp);
-	/*
-	 * Following the Clarification draft's direction, we treat TTLs with
-	 * the MSB set as if they were 0.
-	 */
-	if (ttl > MAXIMUM_TTL) {
-		syslog(LOG_INFO, "%s: TTL > %u, converted to 0", dname,
-		       MAXIMUM_TTL);
-		ttl = 0;
-	}
-	NS_GET16(dlen, cp);
-	BOUNDS_CHECK(cp, dlen);
-	rdatap = cp;
-
-	origin = dname;
-	while (*origin) {
-		if (!escaped && *origin == '.') {
-			origin++;	/* skip over '.' */
-			break;
-		}
-		escaped = (*origin++ == '\\') && !escaped;
-	}
-	dprintf(3, "print_output: dname %s type %d class %d ttl %u\n",
-		dname, type, class, ttl);
-	/*
-	 * Convert the resource record data into the internal database format.
-	 * CP points to the raw resource record.
-	 * After this switch:
-	 *	CP has been updated to point past the RR.
-	 *	CP1 points to the internal database version.
- 	 *	N is the length of the internal database version.
-	 */
-	switch (type) {
-	case T_A:
-	case T_WKS:
-	case T_HINFO:
-	case T_TXT:
-	case T_X25:
-	case T_ISDN:
-	case T_LOC:
-	case T_NSAP:
-	case T_AAAA:
-	case T_KEY:
-	case ns_t_cert:
-		cp1 = cp;
-		n = dlen;
-		cp += n;
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		n = dn_expand(msg, msg + msglen, cp, data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = (u_char *)data;
-		n = strlen(data) + 1;
-		break;
-
-	case T_MINFO:
-	case T_SOA:
-	case T_RP:
-		n = dn_expand(msg, msg + msglen, cp, data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		n = strlen(data) + 1;
-		cp1 = (u_char *)data + n;
-		n1 = sizeof data - n;
-		if (type == T_SOA)
-			n1 -= 5 * INT32SZ;
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *) cp1) + 1;
-		if (type == T_SOA) {
-			BOUNDS_CHECK(cp, 5 * INT32SZ);
-			temp_ptr = cp + 4 * INT32SZ;
-			NS_GET32(minimum_ttl, temp_ptr);
-			/*
-			 * Following the Clarification draft's direction,
-			 * we treat TTLs with the MSB set as if they were 0.
-			 */
-			if (minimum_ttl > MAXIMUM_TTL) {
-				syslog(LOG_INFO,
-			       "%s: SOA minimum TTL > %u, converted to 0",
-				       dname, MAXIMUM_TTL);
-				minimum_ttl = 0;
-			}
-			n = 5 * INT32SZ;
-			memcpy(cp1, cp, n);
-			cp += n;
-			cp1 += n;
-		}
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_NAPTR:
-		/* Grab weight and port. */
-		BOUNDS_CHECK(cp, INT16SZ*2);
-		memcpy(data, cp, INT16SZ*2);
-		cp1 = (u_char *)data + INT16SZ*2;
-		cp += INT16SZ*2;
-
-		/* Flags */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		memcpy(cp1, cp, n);
-		cp += n; cp1 += n;
-
-		/* Service */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		memcpy(cp1, cp, n);
-		cp += n; cp1 += n;
-
-		/* Regexp */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		memcpy(cp1, cp, n);
-		cp += n; cp1 += n;
-
-		/* Replacement */
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1,
-			      sizeof data - ((char *)cp1 - data));
-		if (n < 0)
-			return (-1);
-		cp += n;
-
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		memcpy(data, cp, INT16SZ);
-		cp1 = (u_char *)data + INT16SZ;
-		cp += INT16SZ;
-
-		if (type == T_SRV) {
-			BOUNDS_CHECK(cp, INT16SZ*2);
-			memcpy(cp1, cp, INT16SZ*2);
-			cp1 += INT16SZ*2;
-			cp += INT16SZ*2;
-		}
-
-		/* get name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1,
-			      sizeof data - (cp1 - (u_char *)data));
-		if (n < 0)
-			return (-1);
-		cp += n;
-
-		/* compute end of data */
-		cp1 += strlen((char *) cp1) + 1;
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_PX:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		memcpy(data, cp, INT16SZ);
-		cp1 = (u_char *)data + INT16SZ;
-		cp += INT16SZ;
-
-		/* get MAP822 name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, sizeof data - INT16SZ);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		cp1 += (n = (strlen((char *) cp1) + 1));
-		n1 = sizeof data - n;
-
-		/* get MAPX400 name */
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1, n1);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		cp1 += strlen((char *) cp1) + 1;
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_SIG:
-	 /* CP is the raw resource record as it arrived.
-	  * CP1, after this switch, points to the internal database version. */
-		cp1 = (u_char *)data;
-
-		/* first just copy over the type_covered, algorithm, */
-		/* labels, orig ttl, two timestamps, and the footprint */
-		BOUNDS_CHECK(cp, NS_SIG_SIGNER);
-		memcpy(cp1, cp, NS_SIG_SIGNER);
-		cp  += NS_SIG_SIGNER;
-		cp1 += NS_SIG_SIGNER;
-
-		/* then the signer's name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, (sizeof data) - 18);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		cp1 += strlen((char*)cp1)+1;
-
-		/* finally, we copy over the variable-length signature.
-		   Its size is the total data length, minus what we copied. */
-		n = dlen - (NS_SIG_SIGNER + n);
-		if (n > ((int)(sizeof data) - (int)(cp1 - (u_char *)data))) {
-			hp->rcode = FORMERR;
-			return (-1);  /* out of room! */
-		}
-		memcpy(cp1, cp, n);
-		cp += n;
-		cp1 += n;
-		
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_NXT:
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = (u_char *)data + strlen(data) + 1;
-		n  = dlen - n;
-		if (n > ((int)(sizeof data) - (int)(cp1 - (u_char *)data))) {
-			hp->rcode = FORMERR;
-			return (-1);  /* out of room! */
-		}
-		if (n > 0) { /* Actually, n should never be less than 4 */ 
-			memcpy(cp1, cp, n);
-			cp += n;
-		} else {  
-			hp->rcode = FORMERR; 
-			return (-1);
-		}
-		n += cp1 - (u_char *)data;
-		cp1 = (u_char *)data; 
-		break;
-
-	default:
-		syslog(LOG_INFO, "\"%s %s %s\" - unknown type (%d)",
-		       dname, p_class(class), p_type(type), type);
-		hp->rcode = NOTIMP;
-		return (-1);
-	}
-
-	if (n > MAXDATA) {
-		dprintf(1, "update type %d: %d bytes is too much data\n",
-			type, n);
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	if (cp != rdatap + dlen) {
-		dprintf(1,
-		    "encoded rdata length is %u, but actual length was %u\n",
-			dlen, (u_int)(cp - rdatap));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-	cdata = cp1;
-	result = cp - rrp;
-
-	/*
-	 * Special handling for SOA records.
-	 */
-
-	if (type == T_SOA) {
-		if (ns_samename(dname, zp->z_origin) != 1) {
-			syslog(LOG_INFO,
-			 "wrong zone name in XFR (wanted \"%s\", got \"%s\")",
-			       zp->z_origin, dname);
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (soa_cnt == 0) {
-			badsoa_msg = soa_zinfo(&zp_start, rr_type_ptr, eom);
-			if (badsoa_msg) {
-				syslog(LOG_INFO,
-				       "malformed SOA for zone %s: %s",
-				       zp->z_origin, badsoa_msg);
-				hp->rcode = FORMERR;
-				return (-1);
-			}
-			if (SEQ_GT(zp_start.z_serial, serial_no) ||
-			    !check_serial) {
-				soa_cnt++;
-			} else {
-				syslog(LOG_INFO,
-			       "serial went backwards after transfer started");
-				return (-1);
-			}
-		} else if (soa_cnt == 1) {
-			badsoa_msg = soa_zinfo(&zp_finish, rr_type_ptr, eom);
-			if (badsoa_msg) {
-				syslog(LOG_INFO,
-				       "malformed SOA for zone %s: %s",
-				       zp->z_origin, badsoa_msg);
-				hp->rcode = FORMERR;
-				return (-1);
-			}
-			if (zp_start.z_serial == zp_finish.z_serial) {
-				methode = ISNOTIXFR;
-			} else if (zp_finish.z_serial != serial_no) {
-				syslog(LOG_INFO,
-			       "Unexpected serial number for zone %s: %u",
-					zp->z_origin, zp_finish.z_serial);
-			}
-			soa_cnt++;
-			if (methode == ISIXFR)
-				return (result);
-		} else {
-			badsoa_msg = soa_zinfo(&zp_finish, rr_type_ptr, eom);
-			if (badsoa_msg) {
-				syslog(LOG_INFO,
-				       "malformed SOA for zone %s: %s",
-				       zp->z_origin, badsoa_msg);
-				hp->rcode = FORMERR;
-				return (-1);
-			}
-			if (methode == ISIXFR) {
-				if (zp_start.z_serial == zp_finish.z_serial) {
-					if (scdsoa) {
-						soa_cnt = -1;
-						return (result);
-					} else {
-						scdsoa = 1;
-						soa_cnt++;
-					};
-				} else 
-					soa_cnt++;
-			} else {
-				dprintf(2, "SOA, serial %u\n",
-					zp_finish.z_serial);
-				if (zp_start.z_serial != zp_finish.z_serial) {
-					dprintf(1, "serial changed, restart\n");
-					restarts++;
-					if (restarts > MAX_XFER_RESTARTS) {
-						syslog(LOG_INFO,
-				      "too many transfer restarts for zone %s",
-						       zp->z_origin);
-						hp->rcode = FORMERR;
-						return (-1);
-					}
-					soa_cnt = 0;
-					ns_cnt = 0;
-					minimum_ttl = 0;
-					strcpy(prev_origin, zp->z_origin);
-					prev_dname[0] = DEF_DNAME;
-					/*
-					 * Flush buffer, truncate file
-					 * and seek to beginning to restart.
-					 */
-					fflush(dbfp);
-					if (ftruncate(fileno(dbfp), 0) != 0) {
-						if (!quiet)
-							syslog(LOG_INFO,
-							  "ftruncate %s: %m\n",
-							       tmpname);
-						return (-1);
-					}
-					fseek(dbfp, 0L, 0);
-					return (result);
-				}
-				soa_cnt++;
-				return (result);
-			}
-		}	
-		if ((soa_cnt == 2) && (was_ixfr == 0))	
-			return (result);
-
-	}
-
-	if (zp->z_type == Z_STUB) {
-		if (query_type == T_NS && type == T_NS)
-			ns_cnt++;
-		/*
-		 * If we're processing a response to an SOA query, we don't
-		 * want to print anything from the response except for the SOA.
-		 * We do want to check everything in the packet, which is
-		 * why we do this check now instead of earlier.
-		 */
-		if (query_type == T_SOA && type != T_SOA)
-			return (result);
-	}
-
-	if ((!soa_cnt || soa_cnt > 2) && methode == ISNOTIXFR) {
-		char *gripe;
-
-		if (!soa_cnt)
-			gripe = "got RR before first SOA";
-		else
-			gripe = "got RR after second SOA";
-		syslog(LOG_INFO, "%s in zone %s", gripe, zp->z_origin);
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-	/*
-	 * If they are trying to tell us info about something that is
-	 * not in the zone that we are transfering, then ignore it!
-	 * They don't have the authority to tell us this info.
-	 *
-	 * We have to do a bit of checking here - the name that we are
-	 * checking is is fully qualified & may be in a subdomain of the
-	 * zone in question.  We also need to ignore any final dots.
-	 *
-	 * If a domain has both NS records and non-NS records, (for
-	 * example, NS and MX records), then we should ignore the non-NS
-	 * records (except that we should not ignore glue A records).
-	 * XXX: It is difficult to do this properly, so we just compare
-	 * the current dname with that in the most recent NS record.
-	 * This defends against the most common error case,
-	 * where the remote server sends MX records soon after the
-	 * NS records for a particular domain.  If sent earlier, we lose. XXX
-	 */
-	if (!ns_samedomain(dname, domain)) {
-		(void) fprintf(dbfp, "; Ignoring info about %s, not in zone %s.\n",
-			dname, domain);
-		ignore = "; ";
-	} else if (type != T_NS && type != T_A &&
-		   ns_samename(zone_top, dname) != 1 &&
-		   ns_samename(prev_ns_dname, dname) == 1)
-	{
-		(void) fprintf(dbfp, "; Ignoring extra info about %s, invalid after NS delegation.\n",
-			dname);
-		ignore = "; ";
-	} else if (class != zp->z_class) {
-		(void) fprintf(dbfp, "; Ignoring info about %s, not class %s\n",
-		dname, p_class(zp->z_class));
-		ignore = "; ";
-	}
-
-	/*
-	 * If the current record is not being ignored, but the
-	 * previous record was ignored, then we invalidate information
-	 * that might have been altered by ignored records.
-	 * (This means that we sometimes output unnecessary $ORIGIN
-	 * lines, but that is harmless.)
-	 * 
-	 * Also update prev_comment now.
-	 */
-	if (prev_comment && ignore[0] == '\0') {
-		prev_dname[0] = DEF_DNAME;
-		prev_origin[0] = DEF_DNAME;
-	}
-	prev_comment = (ignore[0] != '\0');
-
-	/*
-	 * set prev_ns_dname if necessary
-	 */
-	if (type == T_NS) {
-		(void) strcpy(prev_ns_dname, dname);
-	}
-
-	/*
-	 * If the origin has changed, print the new origin
-	 */
-	if (ns_samename(prev_origin, origin) != 1) {
-		(void) strcpy(prev_origin, origin);
-		(void) fprintf(dbfp, "%s$ORIGIN %s.\n", ignore, origin);
-	}
-	tab = 0;
-
-	if (ns_samename(prev_dname, dname) != 1) {
-		/*
-		 * set the prev_dname to be the current dname, then cut off all
-		 * characters of dname after (and including) the first '.'
-		 */
-		char *cutp;
-
-		(void) strcpy(prev_dname, dname);
-		escaped = 0;
-		cutp = dname;
-		while (*cutp) {
-			if (!escaped && *cutp == '.')
-				break;
-			escaped = (*cutp++ == '\\') && !escaped;
-		}
-		*cutp = '\0';
-
-		if (dname[0] == 0) {
-			if (origin[0] == 0)
-				(void) fprintf(dbfp, "%s.\t", ignore);
-			else
-				(void) fprintf(dbfp, "%s.%s.\t",
-					ignore, origin);	/* ??? */
-		} else {
-			char *backslash;
-			backslash = (*dname == '@' || *dname == '$') ?
-				"\\" : "";
-			(void) fprintf(dbfp, "%s%s%s\t", ignore,
-				       backslash, dname);
-		}
-		if (strlen(dname) < (size_t)8)
-			tab = 1;
-	} else {
-		(void) fprintf(dbfp, "%s\t", ignore);
-		tab = 1;
-	}
-
-	(void) fprintf(dbfp, "%d\t", (int) ttl);
-
-	(void) fprintf(dbfp, "%s\t%s\t", p_class(class), p_type(type));
-	cp = cdata;
-
-	/*
-	 * Print type specific data
-	 */
-	switch (type) {
-
-	case T_A:
-		switch (class) {
-		case C_IN:
-		case C_HS:
-			fputs(inet_ntoa(ina_get(cp)), dbfp);
-			break;
-		}
-		(void) fprintf(dbfp, "\n");
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_PTR:
-		if (cp[0] == '\0')
-			(void) fprintf(dbfp, ".\n");
-		else
-			(void) fprintf(dbfp, "%s.\n", cp);
-		break;
-
-	case T_NS:
-		cp = cdata;
-		if (cp[0] == '\0')
-			(void) fprintf(dbfp, ".\t");
-		else
-			(void) fprintf(dbfp, "%s.", cp);
-		(void) fprintf(dbfp, "\n");
-		break;
-
-	case T_HINFO:
-	case T_ISDN:
-		cp2 = cp + n;
-		for (i = 0; i < 2; i++) {
-			if (i != 0)
-				(void) putc(' ', dbfp);
-			n = *cp++;
-			cp1 = cp + n;
-			if (cp1 > cp2)
-				cp1 = cp2;
-			(void) putc('"', dbfp);
-			j = 0;
-			while (cp < cp1) {
-				if (*cp == '\0') {
-					cp = cp1;
-					break;
-				}
-				if (strchr("\n\"\\", *cp))
-					(void) putc('\\', dbfp);
-				(void) putc(*cp++, dbfp);
-				j++;
-			}
-			if (j == 0 && (type != T_ISDN || i == 0))
-				(void) putc('?', dbfp);
-			(void) putc('"', dbfp);
-		}
-		(void) putc('\n', dbfp);
-		break;
-
-	case T_SOA:
-		(void) fprintf(dbfp, "%s.", cp);
-		cp += strlen((char *) cp) + 1;
-		(void) fprintf(dbfp, " %s. (\n", cp);
-		cp += strlen((char *) cp) + 1;
-		NS_GET32(tmpnum, cp);
-		(void) fprintf(dbfp, "%s\t\t%u", ignore, tmpnum);
-		NS_GET32(tmpnum, cp);
-		(void) fprintf(dbfp, " %u", tmpnum);
-		NS_GET32(tmpnum, cp);
-		(void) fprintf(dbfp, " %u", tmpnum);
-		NS_GET32(tmpnum, cp);
-		(void) fprintf(dbfp, " %u", tmpnum);
-		NS_GET32(tmpnum, cp);
-		(void) fprintf(dbfp, " %u )\n", tmpnum);
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-		NS_GET16(tmpnum, cp);
-		(void) fprintf(dbfp, "%u", tmpnum);
-		(void) fprintf(dbfp, " %s.\n", cp);
-		break;
-
-	case T_PX:
-		NS_GET16(tmpnum, cp);
-		(void) fprintf(dbfp, "%u", tmpnum);
-		(void) fprintf(dbfp, " %s.", cp);
-		cp += strlen((char *) cp) + 1;
-		(void) fprintf(dbfp, " %s.\n", cp);
-		break;
-
-	case T_TXT:
-	case T_X25:
-		cp1 = cp + n;
-		while (cp < cp1) {
-			(void) putc('"', dbfp);
-			if ((i = *cp++) != 0) {
-				for (j = i; j > 0 && cp < cp1; j--) {
-					if (strchr("\n\"\\", *cp))
-						(void) putc('\\', dbfp);
-					(void) putc(*cp++, dbfp);
-				}
-			}
-			(void) putc('"', dbfp);
-			if (cp < cp1)
-				(void) putc(' ', dbfp);
-		}
-		(void) putc('\n', dbfp);
-		break;
-
-	case T_NSAP:
-		fprintf(dbfp, "%s\n", inet_nsap_ntoa(n, cp, NULL));
-		break;
-
-	case T_AAAA: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		fprintf(dbfp, "%s\n", inet_ntop(AF_INET6, cp, t, sizeof t));
-		break;
-	    }
-
-	case T_LOC: {
-		char t[255];
-
-		(void) fprintf(dbfp, "%s\n", loc_ntoa(cp, t));
-		break;
-	    }
-
-	case T_NAPTR: {
-		u_int32_t order, preference;
-
-		/* Order */
-		NS_GET16(order, cp);
-		fprintf(dbfp, "%u", order);
-
-		/* Preference */
-		NS_GET16(preference, cp);
-		fprintf(dbfp, " %u", preference);
-
-		/* Flags */
-		if ((n = *cp++) != 0) {
-			fprintf(dbfp, " \"%.*s\"", (int)n, cp);
-			cp += n;
-		}
-
-		/* Service */
-		if ((n = *cp++) != 0) {
-			fprintf(dbfp, " \"%.*s\"", (int)n, cp);
-			cp += n;
-		}
-
-		/* Regexp */
-		if ((n = *cp++) != 0) {
-			fprintf(dbfp, " \"%.*s\"", (int)n, cp);
-			cp += n;
-		}
-
-		/* Replacement */
-		fprintf(dbfp, " %s.\n", cp);
-
-		break;
-	    }
-	case T_SRV: {
-		u_int priority, weight, port;
-
-		NS_GET16(priority, cp);
-		NS_GET16(weight, cp);
-		NS_GET16(port, cp);
-		fprintf(dbfp, "\t%u %u %u %s.\n",
-			priority, weight, port, cp);
-		break;
-	    }
-
-	case T_WKS:
-		fputs(inet_ntoa(ina_get(cp)), dbfp);
-		cp += INADDRSZ;
-		fputc(' ', dbfp);
-		proto = protocolname(*cp);
-		cp += sizeof(char);
-		(void) fprintf(dbfp, "%s ", proto);
-		i = 0;
-		while (cp < cdata + n) {
-			j = *cp++;
-			do {
-				if (j & 0200)
-					(void) fprintf(dbfp, " %s",
-						       servicename(i, proto));
-				j <<= 1;
-			} while (++i & 07);
-		}
-		(void) fprintf(dbfp, "\n");
-		break;
-
-	case T_MINFO:
-	case T_RP:
-		(void) fprintf(dbfp, "%s.", cp);
-		cp += strlen((char *) cp) + 1;
-		(void) fprintf(dbfp, " %s.\n", cp);
-		break;
-
-	case T_KEY: {
-		char databuf[16+NS_MD5RSA_MAX_BASE64];  /* 16 for slop */
-		u_int keyflags;
-
-		/* get & format key flags */
-		keyflags = ns_get16(cp);
-		(void) fprintf(dbfp, "0x%04x ", keyflags);
-		cp += INT16SZ;
-
-		/* protocol id */
-		(void) fprintf(dbfp, " %u", *cp++);
-
-		/* algorithm id */
-		(void) fprintf(dbfp, " %u ", *cp++);
-
-		/* key itself (which may have zero length) */
-		n = b64_ntop(cp, (cp1 + n) - cp, databuf, sizeof databuf);
-		if (n < 0)
-			fprintf(dbfp, "; BAD BASE64\n");
-		else
-			fprintf(dbfp, "%s\n", databuf);
-		break;
-	    }
-
-	case T_SIG: {
-		char databuf[16+NS_MD5RSA_MAX_BASE64];  /* 16 for slop */
-
-		/* get & format rr type which signature covers */
-		(void) fprintf(dbfp,"%s", p_type(ns_get16((u_char*)cp)));
-		cp += INT16SZ;
-
-		/* algorithm id */
-		(void) fprintf(dbfp," %d",*cp++);
-
-		/* labels (# of labels in name) */
-		(void) fprintf(dbfp," %d",*cp++);
-
-		/* orig time to live (TTL)) */
-		(void) fprintf(dbfp," %u", (u_int32_t)ns_get32((u_char*)cp));
-		cp += INT32SZ;
-
-		/* expiration time */
-		(void) fprintf(dbfp," %s", p_secstodate(ns_get32((u_char*)cp)));
-		cp += INT32SZ;
-
-		/* time signed */
-		(void) fprintf(dbfp," %s", p_secstodate(ns_get32((u_char*)cp)));
-		cp += INT32SZ;
-		
-		/* Key footprint */
-		(void) fprintf(dbfp," %d", ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		
-		/* signer's name */
-		(void) fprintf(dbfp, " %s. ", cp);
-		cp += strlen((char *) cp) + 1;
-
-		/* signature itself */
-		n = b64_ntop(cp, (cdata + n) - cp, databuf, sizeof databuf);
-		if (n < 0)
-			fprintf (dbfp, "; BAD BASE64\n");
-		else
-			fprintf (dbfp, "%s\n", databuf);
-		break;
-	   }
-
-	case T_NXT:
-		fprintf(dbfp, "%s.", (char *)cp);
-		i = strlen((char *)cp)+1;
-		cp += i;
-		n -= i;
-		for (i=0; i < n*NS_NXT_BITS; i++) 
-			if (NS_NXT_BIT_ISSET (i, cp))
-				fprintf(dbfp, " %s", p_type(i));
-		fprintf(dbfp,"\n");
-		break;
-
-	case ns_t_cert: {
-		int databufsize = n * 4 / 3 + 4;
-		char *databuf = malloc(databufsize);
-
-		if (databuf == NULL)
-			panic("cert malloc failed", NULL);
-
-		/* Object id */
-		(void) fprintf(dbfp,"%d ", ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		
-		/* Key tag */
-		(void) fprintf(dbfp,"%d ", ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		
-		/* Algorithm id */
-		(void) fprintf(dbfp,"%d ", (u_char)*cp);
-		cp += 1;
-		
-		n = b64_ntop(cp, n - 2 * INT16SZ - 1, databuf, databufsize);
-		if (n < 0)
-			panic ("cert b64_ntop failed", NULL);
-		fprintf (dbfp, "%s\n", databuf);
-		free(databuf);
-		break;
-	}
-
-	default:
-		cp1 = cp + n;
-		while (cp < cp1)
-			fprintf(dbfp, "0x%02.2X ", *cp++ & 0xFF);
-		(void) fprintf(dbfp, "???\n");
-	}
-	if (ferror(dbfp)) {
-		syslog(LOG_ERR, "%s: %m", tmpname);
-		cleanup_for_exit();
-		exit(XFER_FAIL);
-	}
-	return (result);
-}
-
-#ifdef SHORT_FNAMES
-/*
-** This routine handles creating temporary files with mkstemp
-** in the presence of a 14 char filename system.  Pathconf()
-** does not work over NFS.
-*/
-filenamecpy(char *ddtfile, char *optarg) {
-	int namelen, extra, len;
-	char *dirname, *filename;
-
-	/* determine the length of filename allowed */
-	if((dirname = strrchr(optarg, '/')) == NULL){
-		filename = optarg;
-	} else {
-		*dirname++ = '\0';
-		filename = dirname;
-	}
-	namelen = pathconf(dirname == NULL? "." : optarg, _PC_NAME_MAX);
-	if(namelen <= 0)
-		namelen = 255;  /* length could not be determined */
-	if(dirname != NULL)
-		*--dirname = '/';
-
-	/* copy a shorter name if it will be longer than allowed */
-	extra = (strlen(filename)+strlen(".XXXXXX")) - namelen;
-	if(extra > 0){
-		len = strlen(optarg) - extra;
-		(void) strncpy(ddtfile, optarg, len);
-		ddtfile[len] = '\0';
-	} else
-		(void) strcpy(ddtfile, optarg);
-}
-#endif /* SHORT_FNAMES */
-
-DST_KEY *
-tsig_key_from_addr(struct in_addr addr) {
-	tsig_node *n;
-	for (n = HEAD(tsig_list); n != NULL; n = NEXT(n, link))
-		if (memcpy(&addr, &n->addr, sizeof(struct in_addr)))
-			return n->dst_key;
-	return NULL;
-}
-
-static u_int32_t 
-do_section(ns_msg *handle, ns_sect section, int pflag, FILE *file, int *delete) {
-	int n, sflag, rrnum;
-	char buf[2048];	/* XXX need to malloc */
-	ns_opcode opcode;
-	ns_rr rr;
-	const unsigned char *cp;
-	const unsigned char *eom;
-	u_int32_t serial;
-	time_t now;
-
-	time(&now);
-
-	/*
-	 * Print answer records.
-	 */
-	sflag = (_res.pfcode & pflag);
-	if (_res.pfcode && !sflag)
-		return (-1);
-
-	opcode = (ns_opcode)ns_msg_getflag(*handle, ns_f_opcode);
-	rrnum = 0;
-	serial = -1;
-	for (;;) {
-		if (ns_parserr(handle, section, rrnum, &rr)) {
-			if (errno != ENODEV) {
-				fprintf(file, ";; ns_parserr: %s\n",
-					strerror(errno));
-				return (-1);
-			} else if (rrnum > 0 && sflag != 0 &&
-				 (_res.pfcode & RES_PRF_HEAD1))
-				putc('\n', file);
-			return (serial);
-		}
-		if (rrnum == 0 && sflag != 0 && (_res.pfcode & RES_PRF_HEAD1))
-			fprintf(file, ";; %s SECTION:\n",
-				p_section(section, opcode));
-		if (section == ns_s_qd)
-			fprintf(file, ";;\t%s, type = %s, class = %s\n",
-				ns_rr_name(rr),
-				p_type(ns_rr_type(rr)),
-				p_class(ns_rr_class(rr)));
-		else {
-			int print_record = 1;
-			if (rr.type == ns_t_soa) {
-			print_record = 0;
-				*delete = !*delete;
-				cp = ns_rr_rdata(rr);
-				eom = cp + ns_rr_rdlen(rr);
-				if ((n = dn_skipname(cp, eom)) < 0) {
-					rrnum++;
-					continue;
-				}
-				cp += n;
-				if ((n = dn_skipname(cp, eom)) < 0) {
-					rrnum++;
-					continue;
-				}
-				cp += n;
-				NS_GET32(serial, cp);
-				switch (++ixfr_soa) {
-				case 1:
-					final_serial = serial;
-					if (soa_buf == NULL) {
-						if ((soa_buf = (char *)malloc(2 * PACKETSZ)) == NULL) {
-							syslog(LOG_INFO, "malloc(%u) failed", 2 * PACKETSZ);
-							return(-1);
-						}
-						n = ns_sprintrr(handle, &rr, NULL, NULL,
-								soa_buf, 2*PACKETSZ);
-						if (n < 0) {
-							fprintf(file, ";; ns_sprintrr: %s\n",
-								strerror(errno));
-							return (-1);
-						}
-					}
-					print_record = 0;
-					break;
-				case 2:
-						fprintf(file,
-				"zone:\torigin %s class %s serial %u\n",
-						ns_rr_name(rr),
-						p_class(ns_rr_class(rr)),
-						serial);
-					print_record = 0;
-					break;
-				default:
-					print_record = 0;
-					break;
-				}
-
-			}
-
-			if (print_record) {
-				if (rr.type != ns_t_soa) {
-				fprintf(file, "update:\t{%s} ",
-					*delete ? "delete" : "add");
-
-				n = ns_sprintrr(handle, &rr, NULL, NULL,
-						buf, sizeof buf);
-				if (n < 0) {
-					fprintf(file, ";; ns_sprintrr: %s\n",
-						strerror(errno));
-					return(-1);
-				}
-				fputs(buf, file);
-					fputc('\n', file);
-					}
-			}
-
-		}
-		rrnum++;
-	}
-	return (serial);
-}
-
-static int
-ixfr_log(const u_char *msg, int len, int  *delete, FILE *file,
-	 struct sockaddr_in *sin, char *domain, u_int32_t *serial_no,
-	 int *first_rr)
-{
-	ns_msg handle;
-	ns_type type;
-	ns_class class;
-	ns_opcode opcode;
-	ns_rcode rcode;
-	u_int id, n;
-	char time[25];
-	ns_rr rr;
-	char *cp;
-	HEADER *hp;
-
- 	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		dprintf(1, "ixfr_log() failed\n");
- 		return (-1);
-	}	
-
-	if (ns_initparse(msg, len, &handle) < 0) {
-		fprintf(file, ";; ns_initparse: %s\n", strerror(errno));
-		dprintf(1, "ixfr_log() failed\n");
-		return (-1);
-	}
-	opcode = (ns_opcode) ns_msg_getflag(handle, ns_f_opcode);
-	rcode = (ns_rcode) ns_msg_getflag(handle, ns_f_rcode);
-	id = ns_msg_id(handle);
-
-	if (ns_parserr(&handle, ns_s_an, 0, &rr))
-	{
-
-		(void) fprintf(file,"ns_parserr() failed");
-		dprintf(1, "ixfr_log() failed\n");
-		return (-1);
-	}
-	type = (ns_type)rr.type;
-	class = (ns_class)rr.rr_class;
-
-	if (*first_rr == 1) {
-		gettime(&tt);
-		(void) fprintf(file,"%s", LogSignature);
-		sprintf(time, "at %lu", (u_long)tt.tv_sec);
-		fprintf(file,
-	       "[IXFR_UPDATE] id %u from [%s].%d %s (named-xfer pid %ld):\n",
-			id, inet_ntoa(sin->sin_addr),
-			ntohs(sin->sin_port), time, (long)getpid());
-		(*first_rr)++;
-	}
-	*serial_no = do_section(&handle, ns_s_an, RES_PRF_ANS, file, delete);
-	return (1);
-}
-
-static const char *
-tsig_rcode(int rcode) {
-	static char buffer[64];
-
-	switch (rcode) {
-	case ns_r_badkey:
-	case ns_r_badsig:
-	case ns_r_badtime:
-		sprintf(buffer, "message had %s set", p_rcode(rcode));
-		return (buffer);
-	case -ns_r_badkey:
-	case -ns_r_badsig:
-	case -ns_r_badtime:
-		return (p_rcode(-rcode));
-	case NS_TSIG_ERROR_NO_TSIG:
-		return ("no TSIG present");
-	default:
-		break;
-	}
-	return ("FORMERR");
-}
-
diff --git a/contrib/bind/bin/named/Makefile b/contrib/bind/bin/named/Makefile
deleted file mode 100644
index 03f533d51eb49..0000000000000
--- a/contrib/bind/bin/named/Makefile
+++ /dev/null
@@ -1,132 +0,0 @@
-## Copyright (c) 1996-2000 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.49 2000/05/09 07:02:22 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-YACC = yacc -d
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-DESTETC= /etc
-DESTRUN= /var/run
-AR= ar cru
-INSTALL= install
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-PS=ps
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL} ${DEFS}
-
-VER= LOCAL-`date +%y%m%d.%H%M%S`
-HOSTNAMECMD= hostname || uname -n
-
-PROG=	named
-HDRS=	db_defs.h db_glob.h ns_defs.h ns_glob.h named.h pathnames.h
-SRCS=	db_dump.c db_load.c db_lookup.c db_save.c db_update.c \
-	db_glue.c db_ixfr.c db_sec.c db_tsig.c \
-	ns_parser.c ns_lexer.c ns_parseutil.c ns_ctl.c \
-	ns_forw.c ns_init.c ns_main.c ns_maint.c ns_req.c \
-	ns_resp.c ns_stats.c ns_ncache.c ns_xfr.c ns_glue.c \
-	ns_udp.c ns_config.c ns_update.c ns_ixfr.c ns_signal.c \
-	ns_sort.c ns_notify.c
-OBJS=	db_dump.${O} db_load.${O} db_lookup.${O} db_save.${O} db_update.${O} \
-	db_glue.${O} db_ixfr.${O} db_sec.${O} db_tsig.${O} \
-	ns_parser.${O} ns_lexer.${O} ns_parseutil.${O} ns_ctl.${O} \
-	ns_forw.${O} ns_init.${O} ns_main.${O} ns_maint.${O} ns_req.${O} \
-	ns_resp.${O} ns_stats.${O} ns_ncache.${O} ns_xfr.${O} ns_glue.${O} \
-	ns_udp.${O} ns_config.${O} ns_update.${O} ns_ixfr.${O} ns_signal.${O} \
-	ns_sort.${O} ns_notify.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: pathnames.h ${OBJS} ${LIBBIND} Makefile tmp_version.${O}
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		tmp_version.${O} ${LIBBIND} ${SYSLIBS}
-
-ns_parser.c ns_parser.h: ns_parser.y
-	${YACC} ns_parser.y
-	mv y.tab.c ns_parser.c
-	mv y.tab.h ns_parser.h
-
-tmp_version.${O}: tmp_version.c
-
-tmp_version.c: version.c Makefile ../Makefile ${SRCS} ${HDRS}
-	(u=$${USER-root} d=`pwd` h=`${HOSTNAMECMD}` t=`date`; \
-	sed -e "s|%WHEN%|$${t}|" -e "s|%VERSION%|"${VER}"|" \
-	    -e "s|%WHOANDWHERE%|$${u}@$${h}:$${d}|" \
-	    < version.c > tmp_version.c); sleep 1
-
-pathnames.h: ${TOP}/.settings Makefile pathtemplate.h
-	rm -f pathnames.h
-	sed -e "s|%DESTSBIN%|${DESTSBIN}|" \
-	    -e "s|%DESTEXEC%|${DESTEXEC}|" \
-	    -e "s|%DESTETC%|${DESTETC}|" \
-	    -e "s|%DESTRUN%|${DESTRUN}|" \
-	    < pathtemplate.h > pathnames.h
-
-ns_signal.${O}: ns_signal.c
-	${CC} ${CPPFLAGS} ${CFLAGS} -c $*.c
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-	rm -f ns_parser.c ns_parser.h
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-	rm -f tmp_version.c tmp_version.${O}
-	rm -f pathnames.h y.tab.h y.tab.c
-
-depend: ${SRCS} pathnames.h
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${DEFS} ${SRCS}
-
-${DESTDIR}${DESTSBIN}:
-	mkdir -p ${DESTDIR}${DESTSBIN}
-
-install: ${DESTDIR}${DESTSBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTSBIN}/${PROG}${EXE}
-
-links: FRC
-	@ln -s SRC/*.[chy] SRC/test .; rm -f ns_parser.[ch]
-
-tags: FRC
-	ctags ${SRCS} *.h
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/named/db_defs.h b/contrib/bind/bin/named/db_defs.h
deleted file mode 100644
index 6fad285ed9540..0000000000000
--- a/contrib/bind/bin/named/db_defs.h
+++ /dev/null
@@ -1,313 +0,0 @@
-/*
- *	from db.h	4.16 (Berkeley) 6/1/90
- *	$Id: db_defs.h,v 8.38 2000/04/21 06:54:01 vixie Exp $
- */
-
-/*
- * Copyright (c) 1985, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Global definitions for data base routines.
- */
-
-	/* max length of data in RR data field */
-#define MAXDATA		(2*MAXDNAME + 5*INT32SZ)
-
-	/* max length of data in a TXT RR segment */
-#define MAXCHARSTRING 255
-
-#define DB_ROOT_TIMBUF	3600
-#define TIMBUF		300
-
-#define	DICT_INDEXBITS	24
-#define	DICT_MAXLENGTH	127
-#define	DICT_INSERT_P	0x0001
-
-/* Average hash chain depths. */
-#define	AVGCH_MARSHAL	5
-#define	AVGCH_NLOOKUP	3
-
-/* Nonstandard maximum class to force better packing. */
-#define	ZONE_BITS	24
-#define	CLASS_BITS	8
-#define	ZONE_MAX	((1<<ZONE_BITS)-1)
-#define	CLASS_MAX	((1<<CLASS_BITS)-1)
-
-/*
- * Hash table structures.
- */
-struct databuf {
-	struct databuf	*d_next;	/* linked list */
-	struct nameser	*d_ns;		/* NS from whence this came */
-	u_int32_t	d_ttl;		/* time to live */
-					/* if d_zone == DB_Z_CACHE, then
-					 * d_ttl is actually the time when
-					 * the record will expire.
-					 * otherwise (for authoritative
-					 * primary and secondary zones),
-					 * d_ttl is the time to live.
-					 */
-	unsigned	d_zone :ZONE_BITS; /* zone number or 0 for the cache */
-	unsigned	d_class :CLASS_BITS; /* class number (nonstandard limit) */
-	unsigned	d_flags :4;	/* DB_F_{??????} */
-	unsigned	d_secure :2;	/* DB_S_{??????} */
-	unsigned	d_cred :3;	/* DB_C_{??????} */
-	unsigned	d_clev :6;
-	unsigned	d_rcode :4;	/* rcode for negative caching */
-	unsigned	d_mark :3;	/* place to mark data */
-	int16_t		d_type;		/* type number */
-	int16_t		d_size;		/* size of data area */
-	u_int32_t	d_rcnt;
-	u_int16_t	d_nstime;	/* NS response time, milliseconds */
-	u_char		d_data[sizeof(void*)]; /* dynamic (padded) */
-};
-#define DATASIZE(n) (sizeof(struct databuf) - sizeof(void*) + n)
-
-#ifdef BIND_UPDATE
-/*
- * d_mark definitions
- */
-#define D_MARK_DELETED  0x01
-#define D_MARK_ADDED	0x02
-#define D_MARK_FOUND	0x04
-#endif
-
-/*
- * d_flags definitions
- */
-#define DB_F_HINT	0x01		/* databuf belongs to fcachetab */
-#define DB_F_ACTIVE	0x02		/* databuf is linked into a cache */
-#define DB_F_FREE	0x04		/* databuf has been freed */
-#define DB_F_LAME	0x08		/* databuf may refer to lame server */
-
-/*
- * d_cred definitions
- */
-#define	DB_C_ZONE	4		/* authoritative zone - best */
-#define	DB_C_AUTH	3		/* authoritative answer */
-#define	DB_C_ANSWER	2		/* non-authoritative answer */
-#define	DB_C_ADDITIONAL	1		/* additional data */
-#define	DB_C_CACHE	0		/* cache - worst */
-
-/*
- * d_secure definitions
- */
-#define	DB_S_SECURE	2		/* secure (verified) data */
-#define	DB_S_INSECURE	1		/* insecure data */
-#define	DB_S_FAILED	0		/* data that failed a security check */
-
-struct namebuf {
-	u_int		n_hashval;	/* hash value of _n_name */
-	struct namebuf	*n_next;	/* linked list */
-	struct databuf	*n_data;	/* data records */
-	struct namebuf	*n_parent;	/* parent domain */
-	struct hashbuf	*n_hash;	/* hash table for children */
-	char		_n_name[sizeof(void*)];	/* Counted str (dynamic). */
-};
-#define	NAMESIZE(n)	(sizeof(struct namebuf) - sizeof(void*) + 1 + n + 1)
-#define	NAMELEN(nb)	(((u_char *)((nb)._n_name))[0])
-#define	NAME(nb)	((nb)._n_name + 1)
-
-struct hashbuf {
-	int		h_size;		/* size of hash table */
-	int		h_cnt;		/* number of entries */
-	struct namebuf	*h_tab[1];	/* allocated as needed */
-};
-#define HASHSIZE(s) (sizeof(struct hashbuf) + (s-1) * sizeof(struct namebuf *))
-
-#define HASHSHIFT	3
-#define HASHMASK	0x1f
-#define HASHROTATE(v) \
-	(((v) << HASHSHIFT) | ((v) >> ((sizeof(v) * 8) - HASHSHIFT)))
-#define HASHLOWER(c)	((isascii(c) && isupper(c)) ? tolower(c) : (c))
-#define HASHIMILATE(v,c) ((v) = (HASHROTATE(v)) + (HASHLOWER(c) & HASHMASK))
-
-#define TSIG_BUF_SIZE 640
-#define TSIG_SIG_SIZE 20
-
-struct tsig_record {
-	u_int8_t	sig[TSIG_SIG_SIZE];
-	struct dst_key	*key;
-	int		siglen;
-};
-
-struct sig_record {
-	u_int16_t sig_type_n;
-	u_int8_t sig_alg_n, sig_labels_n;
-	u_int32_t sig_ottl_n, sig_exp_n, sig_time_n;
-	u_int16_t sig_keyid_n;
-};
-
-/* This is the wire format size of "struct sig_record", i.e., no padding. */
-#define SIG_HDR_SIZE 18
-
-struct dnode {
-	struct databuf	*dp;
-	struct dnode	*dn_next;
-	int		line;
-	char		*file;
-};
-
-typedef struct dnode * dlist;
-
-struct db_rrset {
-	dlist		rr_list;
-	dlist		rr_sigs;
-	char		*rr_name;
-	int16_t		rr_class;
-	int16_t		rr_type;
-	struct db_rrset *rr_next;
-};
-#define DBHASHSIZE(s) (sizeof(struct hashbuf) + \
-		       (s-1) * sizeof(struct db_rrset *))
-
-#define SIG_COVERS(dp) (ns_get16(dp->d_data))
-
-/*
- * Flags to updatedb
- */
-#define DB_NODATA	0x01	/* data should not exist */
-#define DB_MEXIST	0x02	/* data must exist */
-#define DB_DELETE	0x04	/* delete data if it exists */
-#define DB_NOTAUTH	0x08	/* must not update authoritative data */
-#define DB_NOHINTS      0x10	/* don't reflect update in fcachetab */
-#define DB_PRIMING	0x20	/* is this update the result of priming? */
-#define DB_MERGE	0x40    /* make no control on rr in db_update (for ixfr) */
-#define DB_REPLACE	0x80	/* replace data if it exists */
-
-#define DB_Z_CACHE	0	/* cache-zone-only db_dump() */
-#define DB_Z_ALL	65535	/* normal db_dump() */
-#define	DB_Z_SPECIAL(z)	((z) == DB_Z_CACHE || (z) == DB_Z_ALL)
-
-/*
- * Error return codes
- */
-#define OK		0
-#define NONAME		(-1)
-#define NOCLASS		(-2)
-#define NOTYPE		(-3)
-#define NODATA		(-4)
-#define DATAEXISTS	(-5)
-#define NODBFILE	(-6)
-#define TOOMANYZONES	(-7)
-#define GOODDB		(-8)
-#define NEWDB		(-9)
-#define AUTH		(-10)
-#ifdef BIND_UPDATE
-#define SERIAL		(-11)
-#endif
-#define CNAMEANDOTHER	(-12)
-#define DNSSECFAIL	(-13)	/* db_set_update */
-
-/*
- * getnum() options
- */
-#define GETNUM_NONE	0x00	/* placeholder */
-#define GETNUM_SERIAL	0x01	/* treat as serial number */
-#define GETNUM_SCALED	0x02	/* permit "k", "m" suffixes, scale result */
-
-/*
- * db_load() options
- */
-#define ISNOTIXFR	0
-#define ISIXFR		1
-#define ISAXFRIXFR	2
-
-/*
- * Database access abstractions.
- */
-#define	foreach_rr(dp, np, ty, cl, zn) \
-	for ((dp) = (np)->n_data; (dp) != NULL; (dp) = (dp)->d_next) \
-		if (!match(dp, (cl), (ty))) \
-			continue; \
-		else if (((zn) == DB_Z_CACHE) \
-			 ? stale(dp) \
-			 : (zn) != (dp)->d_zone) \
-			continue; \
-		else if ((dp)->d_rcode) \
-			continue; \
-		else \
-			/* Caller code follows in sequence. */
-
-#define DRCNTINC(x) \
-	do { \
-		if (++((x)->d_rcnt) == 0) \
-			ns_panic(ns_log_db, 1, "++d_rcnt == 0"); \
-	} while (0)
-
-#define DRCNTDEC(x) \
-	do { \
-		if (((x)->d_rcnt)-- == 0) \
-			ns_panic(ns_log_db, 1, "d_rcnt-- == 0"); \
-	} while (0)
-
-#define ISVALIDGLUE(xdp) ((xdp)->d_type == T_NS || (xdp)->d_type == T_A \
-                         || (xdp)->d_type == T_AAAA || (xdp)->d_type == ns_t_a6)
-
diff --git a/contrib/bind/bin/named/db_dict.c b/contrib/bind/bin/named/db_dict.c
deleted file mode 100644
index a0b89216fd658..0000000000000
--- a/contrib/bind/bin/named/db_dict.c
+++ /dev/null
@@ -1,111 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char rcsid[] = "$Id: db_dict.c,v 8.1 1997/09/26 17:55:40 halley Exp $";
-#endif /* not lint */
-
-/*
- * Portions Copyright (c) 1997 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/uio.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <assert.h>
-#include <errno.h>
-#include <stdlib.h>
-#include <string.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-#define	DICT_BLOCKBITS	8
-#define	DICT_BLOCKSHIFT	16
-#define	DICT_BLOCKMAX	(1 << DICT_BLOCKBITS)
-#define	DICT_OFFSETBITS	16
-#define	DICT_OFFSETSHIFT 0
-#define	DICT_OFFSETMAX	(1 << DICT_OFFSETBITS)
-
-#define	DICT_CONSUMED(Length) ((Length) + 1)
-#define	DICT_INDEX(Block,Offset) (((Block) << DICT_BLOCKSHIFT) | \
-				  ((Offset) << DICT_OFFSETSHIFT))
-
-static int		dict_new(const char *, int);
-
-static char *		blocks[DICT_BLOCKMAX];
-static int		offsets[DICT_BLOCKMAX];
-static int		cur_block = 0;
-static int		cur_offset = -1;
-
-int
-dict_lookup(const char *text, int length, int flags) {
-	int block, offset, ret;
-
-	/* XXX this is a proof of concept, some kind of hash is needed. */
-	for (block = 0; block <= cur_block; block++) {
-		const char *cur = &blocks[block][0];
-		const char *end = &blocks[block][offsets[block]];
-
-		while (cur < end) {
-			int xlength = *cur;
-
-			if (xlength == length &&
-			    memcmp(cur+1, text, length) == 0)
-				return (DICT_INDEX(block, offset));
-			cur += DICT_CONSUMED(length);
-		}
-	}
-	if ((flags & DICT_INSERT_P) != 0)
-		return (dict_new(text, length));
-	return (-ENOENT);
-}
-
-static int
-dict_new(const char *text, int length) {
-	int ret;
-
-	if (length < 0 || length > DICT_MAXLENGTH)
-		return (-E2BIG);
-	if (cur_offset + DICT_CONSUMED(length) >= DICT_OFFSETMAX) {
-		if (cur_block + 1 == DICT_BLOCKMAX)
-			return (-ENOSPC);
-		cur_block++;
-		blocks[cur_block] = memget(DICT_OFFSETMAX);
-		if (blocks[cur_block] == NULL)
-			return (-ENOMEM);
-		cur_offset = 0;
-	}
-	assert(cur_offset >= 0);
-	assert(cur_offset + DICT_CONSUMED(length) < DICT_OFFSETMAX);
-	ret = DICT_INDEX(cur_block, cur_offset);
-	blocks[cur_block][cur_offset] = length;
-	memcpy(&blocks[cur_block][cur_offset+1], text, length);
-	cur_offset += DICT_CONSUMED(length);
-	offsets[cur_block] = cur_offset;
-	return (ret);
-}
diff --git a/contrib/bind/bin/named/db_dump.c b/contrib/bind/bin/named/db_dump.c
deleted file mode 100644
index 10acb8c11aa71..0000000000000
--- a/contrib/bind/bin/named/db_dump.c
+++ /dev/null
@@ -1,677 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)db_dump.c	4.33 (Berkeley) 3/3/91";
-static const char rcsid[] = "$Id: db_dump.c,v 8.43 2000/04/21 06:54:01 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static const char	*MkCredStr(int);
-
-/*
- * Dump current data base in a format similar to RFC 883.
- */
-
-void
-doadump()
-{
-	FILE *fp;
-
-	ns_notice(ns_log_db, "dumping nameserver data");
-
-	if ((fp = write_open(server_options->dump_filename)) == NULL)
-		return;
-	gettime(&tt);
-	fprintf(fp, "; Dumped at %s", ctimel(tt.tv_sec));
-	if (zones != NULL && nzones != 0)
-		zt_dump(fp);
-	if (fwddata != NULL && fwddata_count != 0)
-		fwd_dump(fp);
-	fputs(
-"; Note: Cr=(auth,answer,addtnl,cache) tag only shown for non-auth RR's\n",
-	      fp);
-	fputs(
-"; Note: NT=milliseconds for any A RR which we've used as a nameserver\n",
-	      fp);
-	fprintf(fp, "; --- Cache & Data ---\n");
-	if (hashtab != NULL)
-		(void) db_dump(hashtab, fp, DB_Z_ALL, "");
-	fprintf(fp, "; --- Hints ---\n");
-	if (fcachetab != NULL)
-		(void) db_dump(fcachetab, fp, DB_Z_ALL, "");
-	(void) my_fclose(fp);
-	ns_notice(ns_log_db, "finished dumping nameserver data");
-}
-
-int
-zt_dump(FILE *fp) {
-	struct zoneinfo *zp;
-
-	fprintf(fp, ";; ++zone table++\n");
-	for (zp = &zones[0]; zp < &zones[nzones]; zp++) {
-		char *pre, buf[64];
-		u_int cnt;
-
-		if (!zp->z_origin)
-			continue;
-
-		fprintf(fp, "; %s (type %d, class %d, source %s)\n",
-			zp->z_origin
-			  ? (*zp->z_origin ? zp->z_origin : ".")
-			  : "Nil",
-			zp->z_type, zp->z_class,
-			zp->z_source ? zp->z_source : "Nil");
-		fprintf(fp, ";\ttime=%lu, lastupdate=%lu, serial=%u,\n",
-			(u_long)zp->z_time, (u_long)zp->z_lastupdate,
-			zp->z_serial);
-		fprintf(fp, ";\trefresh=%u, retry=%u, expire=%u, minimum=%u\n",
-			zp->z_refresh, zp->z_retry,
-			zp->z_expire, zp->z_minimum);
-		fprintf(fp, ";\tftime=%lu, xaddrcnt=%d, state=%04x, pid=%d\n",
-			(u_long)zp->z_ftime, zp->z_xaddrcnt,
-			zp->z_flags, (int)zp->z_xferpid);
-		sprintf(buf, ";\tz_addr[%d]: ", zp->z_addrcnt);
-		pre = buf;
-		for (cnt = 0;  cnt < zp->z_addrcnt;  cnt++) {
-			fprintf(fp, "%s[%s]", pre, inet_ntoa(zp->z_addr[cnt]));
-			pre = ", ";
-		}
-		if (zp->z_addrcnt)
-			fputc('\n', fp);
-		if (zp->z_axfr_src.s_addr != 0)
-			fprintf(fp, ";\tupdate source [%s]\n",
-				inet_ntoa(zp->z_axfr_src));
-	}
-	fprintf(fp, ";; --zone table--\n");
-	return (0);
-}
-int
-fwd_dump(FILE *fp) {
-	int i;
-	fprintf(fp, ";; ++forwarders table++\n");
-	for (i=0;i<fwddata_count;i++) {
-		fprintf(fp,"; %s rtt=%d\n",
-			inet_ntoa(fwddata[i]->fwdaddr.sin_addr),
-			fwddata[i]->nsdata->d_nstime);
-	}
-	fprintf(fp, ";; --forwarders table--\n");
-	return (0);
-}
-
-int
-db_dump(struct hashbuf *htp, FILE *fp, int zone, char *origin) {
-	struct databuf *dp = NULL;
-	struct namebuf *np;
-	struct namebuf **npp, **nppend;
-	char dname[MAXDNAME];
-	u_int32_t n;
-	int j, i, found_data, tab, printed_origin;
-	u_char *cp, *end;
-	const char *proto, *sep;
-	int16_t type;
-	u_int16_t keyflags;
-	u_char *sigdata, *certdata;
-	u_char *savecp;
-	char temp_base64[NS_MD5RSA_MAX_BASE64];
-
-	found_data = 0;
-	printed_origin = 0;
-	npp = htp->h_tab;
-	nppend = npp + htp->h_size;
-	while (npp < nppend) {
-	    for (np = *npp++; np != NULL; np = np->n_next) {
-		if (np->n_data == NULL)
-			continue;
-		/* Blecch - can't tell if there is data here for the
-		 * right zone, so can't print name yet
-		 */
-		found_data = 0;
-		/* we want a snapshot in time... */
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			/* Is the data for this zone? */
-			if (zone != DB_Z_ALL && dp->d_zone != zone)
-			    continue;
-			/* XXX why are we not calling stale() here? */
-			if (dp->d_zone == DB_Z_CACHE &&
-			    dp->d_ttl <= (u_int32_t)tt.tv_sec &&
-			    (dp->d_flags & DB_F_HINT) == 0)
-				continue;
-			if (!printed_origin) {
-			    fprintf(fp, "$ORIGIN %s.\n", origin);
-			    printed_origin++;
-			}
-			tab = 0;
-			if (dp->d_rcode == NXDOMAIN ||
-			    dp->d_rcode == NOERROR_NODATA) {
-				fputc(';', fp);
-			} else if (found_data == 0 || found_data == 1) {
-			    found_data = 2;
-			}
-			if (found_data == 0 || found_data == 2) {
-			    if (NAME(*np)[0] == '\0') {
-				if (origin[0] == '\0')
-				    fprintf(fp, ".\t");
-				else
-				    fprintf(fp, ".%s.\t", origin); /* ??? */
-			    } else
-				fprintf(fp, "%s\t", NAME(*np));
-			    if (NAMELEN(*np) < (unsigned)8)
-				tab = 1;
-			    found_data++;
-			} else {
-			    (void) putc('\t', fp);
-			    tab = 1;
-			}
-			if (dp->d_zone == DB_Z_CACHE) {
-			    if (dp->d_flags & DB_F_HINT &&
-				(int32_t)(dp->d_ttl - tt.tv_sec)
-				    < DB_ROOT_TIMBUF)
-				    fprintf(fp, "%d\t", DB_ROOT_TIMBUF);
-			    else
-				    fprintf(fp, "%d\t",
-					(int)(dp->d_ttl - tt.tv_sec));
-			} else if (dp->d_ttl != USE_MINIMUM)
-				fprintf(fp, "%u\t", dp->d_ttl);
-			else
-				fprintf(fp, "%u\t",
-				        zones[dp->d_zone].z_minimum);
-			fprintf(fp, "%s\t%s\t",
-				p_class(dp->d_class),
-				p_type(dp->d_type));
-			cp = (u_char *)dp->d_data;
-			sep = "\t;";
-			type = dp->d_type;
-			if (dp->d_rcode == NXDOMAIN ||
-			    dp->d_rcode == NOERROR_NODATA) {
-#ifdef RETURNSOA
-				if (dp->d_size == 0) {
-#endif
-
-				fprintf(fp, "%s%s-$",
-					(dp->d_rcode == NXDOMAIN)
-						?"NXDOMAIN" :"NODATA",
-					sep);
-				goto eoln;
-#ifdef RETURNSOA
-				} else {
-					type = T_SOA;
-				}
-#endif
-			}
-			/*
-			 * Print type specific data
-			 */
-			/* XXX why are we not using ns_sprintrr() here? */
-			switch (type) {
-			case T_A:
-				switch (dp->d_class) {
-				case C_IN:
-				case C_HS:
-					fputs(inet_ntoa(ina_get(cp)), fp);
-					break;
-				}
-				if (dp->d_nstime) {
-					fprintf(fp, "%sNT=%d",
-						sep, dp->d_nstime);
-					sep = " ";
-				}
-				break;
-			case T_CNAME:
-			case T_MB:
-			case T_MG:
-			case T_MR:
-			case T_PTR:
-				fprintf(fp, "%s.", cp);
-				break;
-
-			case T_NS:
-				cp = (u_char *)dp->d_data;
-				if (cp[0] == '\0')
-					fprintf(fp, ".\t");
-				else
-					fprintf(fp, "%s.", cp);
-				break;
-
-			case T_HINFO:
-			case T_ISDN: {
-				char buf[256];
-
-				if ((n = *cp++) != '\0') {
-					memcpy(buf, cp, n); buf[n] = '\0';
-					fprintf(fp, "\"%.*s\"", (int)n, buf);
- 					cp += n;
-				} else
-					fprintf(fp, "\"\"");
-				if ((n = *cp++) != '\0') {
-					memcpy(buf, cp, n); buf[n] = '\0';
-					fprintf(fp, " \"%.*s\"", (int)n, buf);
-				} else
-					fprintf(fp, " \"\"");
-				break;
-			}
-
-			case T_SOA:
-				fprintf(fp, "%s.", cp);
-				cp += strlen((char *)cp) + 1;
-				fprintf(fp, " %s. (\n", cp);
-#if defined(RETURNSOA)
-				if (dp->d_rcode)
-					fputs(";", fp);
-#endif
-				cp += strlen((char *)cp) + 1;
-				NS_GET32(n, cp);
-				fprintf(fp, "\t\t%u", n);
-				NS_GET32(n, cp);
-				fprintf(fp, " %u", n);
-				NS_GET32(n, cp);
-				fprintf(fp, " %u", n);
-				NS_GET32(n, cp);
-				fprintf(fp, " %u", n);
-				NS_GET32(n, cp);
-				fprintf(fp, " %u )", n);
-#if defined(RETURNSOA)
-				if (dp->d_rcode) {
-					fprintf(fp,";%s.;%s%s-$",cp,
-						(dp->d_rcode == NXDOMAIN) ?
-						"NXDOMAIN" : "NODATA",
-						sep);
-				}
-#endif
-				break;
-
-			case T_MX:
-			case T_AFSDB:
-			case T_RT:
-				NS_GET16(n, cp);
-				fprintf(fp, "%u", n);
-				fprintf(fp, " %s.", cp);
-				break;
-
-			case T_PX:
-				NS_GET16(n, cp);
-				fprintf(fp, "%u", n);
-				fprintf(fp, " %s.", cp);
-				cp += strlen((char *)cp) + 1;
-				fprintf(fp, " %s.", cp);
-				break;
-
-			case T_X25:
-				if ((n = *cp++) != '\0')
-					fprintf(fp, " \"%.*s\"", (int)n, cp);
-				else
-					fprintf(fp, " \"\"");
-				break;
-
-			case T_TXT:
-				end = (u_char *)dp->d_data + dp->d_size;
-				while (cp < end) {
-					(void) putc('"', fp);
-					if ((n = *cp++) != '\0') {
-						for (j = n ; j > 0 && cp < end ; j--) {
-							if (*cp == '\n' || *cp == '"' || *cp == '\\')
-								(void) putc('\\', fp);
-							(void) putc(*cp++, fp);
-						}
-					}
-					(void) putc('"', fp);
-					if (cp < end)
-						(void) putc(' ', fp);
-				}
-				break;
-
-			case T_NSAP:
-				(void) fputs(inet_nsap_ntoa(dp->d_size,
-							    dp->d_data, NULL),
-					     fp);
-				break;
-
-			case T_AAAA: {
-				char t[sizeof
-				"ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"
-				      ];
-
-				(void) fputs(inet_ntop(AF_INET6, dp->d_data,
-						       t, sizeof t),
-					     fp);
-				break;
-			}
-
-			case T_LOC: {
-				char t[256];
-
-				(void) fputs(loc_ntoa(dp->d_data, t), fp);
- 				break;
-			}
-
-			case T_NAPTR: {
-				u_int32_t order, preference;
-
-				NS_GET16(order, cp);
-				fprintf(fp, "%u", order);
- 
-				NS_GET16(preference, cp);
-				fprintf(fp, "%u", preference);
-
-				if ((n = *cp++) != 0) {
-					fprintf(fp, "\"%.*s\"", (int)n, cp);
-					cp += n;
-				}
-				if ((n = *cp++) != 0) {
-					fprintf(fp, "\"%.*s\"", (int)n, cp);
-					cp += n;
-				}
-				if ((n = *cp++) != 0) {
-					fprintf(fp, " \"%.*s\"", (int)n, cp);
-					cp += n;
-				}
-				fprintf(fp, " %s.", cp);
-
-				break;
-			}
-
-			case T_SRV: {
-				u_int priority, weight, port;
-
-				NS_GET16(priority, cp);
-				NS_GET16(weight, cp);
-				NS_GET16(port, cp);
-				fprintf(fp, "\t%u %u %u %s.",
-					priority, weight, port, cp);
-				break;
-			}
-
-			case T_WKS:
-				fputs(inet_ntoa(ina_get(cp)), fp);
-				cp += INADDRSZ;
-				proto = protocolname(*cp);
-				cp += sizeof(char); 
-				fprintf(fp, " %s ", proto);
-				i = 0;
-				while(cp < (u_char *)dp->d_data + dp->d_size) {
-					j = *cp++;
-					do {
-					    if (j & 0200)
-						fprintf(fp, " %s",
-							servicename(i, proto));
-					    j <<= 1;
-					} while (++i & 07);
-				} 
-				break;
-
-			case T_MINFO:
-			case T_RP:
-				fprintf(fp, "%s.", cp);
-				cp += strlen((char *)cp) + 1;
-				fprintf(fp, " %s.", cp);
-				break;
-
-			case T_KEY:
-				savecp = cp;  /* save the beginning */
-			/*>>> Flags (unsigned_16) */
-				NS_GET16(keyflags,cp);
-				fprintf(fp, "0x%04x ", keyflags);
-			/*>>> Protocol (8-bit decimal) */
-				fprintf(fp, "%3u ", *cp++);
-			/*>>> Algorithm id (8-bit decimal) */
-				fprintf(fp, "%3u ", *cp++);
-				
-			/*>>> Public-Key Data (multidigit BASE64) */
-			/*    containing ExponentLen, Exponent, and Modulus */
-				i = b64_ntop(cp, dp->d_size - (cp - savecp),
-					     temp_base64,
-					     sizeof temp_base64);
-				if (i < 0)
-					fprintf(fp, "; BAD BASE64");
-				else
-					fprintf(fp, "%s", temp_base64);
-				break;
-
-			case T_SIG:
-				sigdata = cp;
-				/* RRtype (char *) */
-				NS_GET16(n,cp);
-				fprintf(fp, "%s ", p_type(n));
-				/* Algorithm id (8-bit decimal) */
-				fprintf(fp, "%d ", *cp++);
-				/* Labels (8-bit decimal) */
-				fprintf(fp, "%d ", *cp++);
-				/* OTTL (u_long) */
-				NS_GET32(n, cp);
-				fprintf(fp, "%u ", n);
-				/* Texp (u_long) */
-				NS_GET32(n, cp);
-				fprintf(fp, "%s ", p_secstodate (n));
-				/* Tsig (u_long) */
-				NS_GET32(n, cp);
-				fprintf(fp, "%s ", p_secstodate (n));
-				/* Kfootprint (unsigned_16) */
-				NS_GET16(n, cp);
-				fprintf(fp, "%u ", n);
-				/* Signer's Name (char *)  */
-				fprintf(fp, "%s ", cp);
-				cp += strlen((char *)cp) + 1;
-				/* Signature (base64 of any length) */
-				i = b64_ntop(cp, dp->d_size - (cp - sigdata),
-					     temp_base64,
-					     sizeof temp_base64);
-				if (i < 0)
-					fprintf(fp, "; BAD BASE64");
-				else
-					fprintf(fp, "%s", temp_base64);
-				break;
-
-			case T_NXT:
-				fprintf(fp, "%s.", cp);
-				n = strlen ((char *)cp) + 1;
-				cp += n;
-				i = 8 * (dp->d_size - n);  /* How many bits? */
-				for (n = 0; n < (u_int32_t)i; n++) {
-					if (NS_NXT_BIT_ISSET(n, cp)) 
-						fprintf(fp," %s", p_type(n));
-				}
-				break;
-
-			case ns_t_cert:
-				certdata = cp;
-				NS_GET16(n,cp);
-				fprintf(fp, "%d ", n); /* cert type */
-
-				NS_GET16(n,cp);
-				fprintf(fp, "%d %d ", n, *cp++); /* tag & alg */
-
-				/* Certificate (base64 of any length) */
-				i = b64_ntop(cp,
-					     dp->d_size - (cp - certdata),
-					     temp_base64, sizeof(temp_base64));
-				if (i < 0)
-					fprintf(fp, "; BAD BASE64");
-				else
-					fprintf(fp, "%s", temp_base64);
-				break;
-
-			default:
-				fprintf(fp, "%s?d_type=%d?",
-					sep, dp->d_type);
-				sep = " ";
-			}
-			if (dp->d_cred < DB_C_ZONE) {
-				fprintf(fp, "%sCr=%s",
-					sep, MkCredStr(dp->d_cred));
-				sep = " ";
-			} else {
-				fprintf(fp, "%sCl=%d",
-					sep, dp->d_clev);
-				sep = " ";
-			}
-			if ((dp->d_flags & DB_F_LAME) != 0) {
-				time_t when;
-				getname(np, dname, sizeof(dname));
-				when = db_lame_find(dname, dp);
-				if (when != 0 && when > tt.tv_sec) {
-					fprintf(fp, "%sLAME=%d",
-						sep, when - tt.tv_sec);
-					sep = " ";
-				}
-			}
-
- eoln:
-			if (dp->d_ns != NULL){
-				fprintf(fp, "%s[%s]",
-					sep, inet_ntoa(dp->d_ns->addr));
-				sep = " ";
-			}
-			putc('\n', fp);
-		}
-	    }
-	}
-	if (ferror(fp))
-		return (NODBFILE);
-
-	npp = htp->h_tab;
-	nppend = npp + htp->h_size;
-	while (npp < nppend) {
-		for (np = *npp++; np != NULL; np = np->n_next) {
-			if (np->n_hash == NULL)
-				continue;
-			getname(np, dname, sizeof(dname));
-			if (db_dump(np->n_hash, fp, zone, dname) == NODBFILE)
-				return (NODBFILE);
-		}
-	}
-	return (OK);
-}
-
-static const char *
-MkCredStr(int cred) {
-	static char badness[20];
-
-	switch (cred) {
-	case DB_C_ZONE:		return "zone";
-	case DB_C_AUTH:		return "auth";
-	case DB_C_ANSWER:	return "answer";
-	case DB_C_ADDITIONAL:	return "addtnl";
-	case DB_C_CACHE:	return "cache";
-	default:		break;
-	}
-	sprintf(badness, "?%d?", cred);
-	return (badness);
-}
diff --git a/contrib/bind/bin/named/db_func.h b/contrib/bind/bin/named/db_func.h
deleted file mode 100644
index cb83beb1ea510..0000000000000
--- a/contrib/bind/bin/named/db_func.h
+++ /dev/null
@@ -1,213 +0,0 @@
-/*
- * Copyright (c) 1985, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-/* db_proc.h - prototypes for functions in db_*.c
- *
- * $Id: db_func.h,v 8.42 2000/04/21 06:54:02 vixie Exp $
- */
-
-/* ++from db_update.c++ */
-extern int		db_update(const char *name,
-				  struct databuf *odp,
-				  struct databuf *newdp,
-				  struct databuf **savedpp,
-				  int flags,
-				  struct hashbuf *htp,
-				  struct sockaddr_in from),
-			db_cmp(const struct databuf *, const struct databuf *),
-			findMyZone(struct namebuf *np, int class);
-void			fixttl(struct databuf *dp);
-/* --from db_update.c-- */
-
-/* ++from db_save.c++ */
-extern struct namebuf	*savename(const char *, int);
-extern struct databuf	*savedata(int, int, u_int32_t, u_char *, int);
-extern struct hashbuf	*savehash(struct hashbuf *);
-/* --from db_save.c-- */
-
-/* ++from db_dump.c++ */
-extern int		db_dump(struct hashbuf *, FILE *, int, char *),
-			zt_dump(FILE *);
-extern void		doadump(void);
-/* --from db_dump.c-- */
-
-/* ++from db_load.c++ */
-extern int		makename_ok(char *name, const char *origin, int class,
-				    struct zoneinfo *zp,
-				    enum transport transport,
-				    enum context context,
-				    const char *owner, const char *filename,
-				    int lineno, int size);
-extern void		endline(FILE *);
-extern int		getword(char *, size_t, FILE *, int),
-			getttl(FILE *, const char *, int, u_int32_t *, int *),
-			getnum(FILE *, const char *, int),
-			db_load(const char *, const char *, struct zoneinfo *,
-				const char *, int);
-extern int 		getnonblank(FILE *, const char *),
-			getservices(int, char *, FILE *, const char *);
-extern char		getprotocol(FILE *, const char *);
-extern int		makename(char *, const char *, int);
-extern void		db_err(int, char *, int, const char *, int);
-extern int		parse_sec_rdata(char *inp, int inp_len, int inp_full,
-					u_char *data, int data_len,
-					FILE *fp, struct zoneinfo *zp, 
-					char *domain,  u_int32_t ttl, 
-					int type, enum context context,
-					enum transport transport,
-					char **errmsg);
-/* --from db_load.c-- */
-
-/* ++from db_glue.c++ */
-extern void		buildservicelist(void),
-			destroyservicelist(void),
-			buildprotolist(void),
-			destroyprotolist(void),
-			getname(struct namebuf *, char *, int);
-extern int		servicenumber(const char *),
-			protocolnumber(const char *),
-			get_class(const char *);
-extern u_int		nhash(const char *);
-extern const char	*protocolname(int),
-			*servicename(u_int16_t, const char *);
-#ifndef BSD
-extern int		getdtablesize(void);
-#endif
-extern struct databuf	*rm_datum(struct databuf *,
-				  struct namebuf *,
-				  struct databuf *,
-				  struct databuf **);
-extern struct namebuf	*rm_name(struct namebuf *, 
-				 struct namebuf **,
-				 struct namebuf *);
-extern void		rm_hash(struct hashbuf *);
-extern void		db_freedata(struct databuf *);
-extern void		db_lame_add(char *zone, char *server, time_t when);
-extern time_t		db_lame_find(char *zone, struct databuf *dp);
-extern void 		db_lame_clean(void);
-extern void 		db_lame_destroy(void);
-/* --from db_glue.c-- */
-
-/* ++from db_lookup.c++ */
-extern struct namebuf	*nlookup(const char *, struct hashbuf **,
-				 const char **, int);
-extern struct namebuf	*np_parent __P((struct namebuf *));
-extern int		match(struct databuf *, int, int),
-			nxtmatch(const char *, struct databuf *,
-				 struct databuf *),
-			rrmatch(const char *, struct databuf *,
-				struct databuf *);
-/* --from db_lookup.c-- */
-
-/* ++from db_ixfr.c++ */
-extern ns_deltalist *	ixfr_get_change_list(struct zoneinfo *, u_int32_t,
-					     u_int32_t);
-int			ixfr_have_log(struct zoneinfo *, u_int32_t,
-				      u_int32_t);
-/* --from db_ixfr.c++ */
-
-/* ++from db_sec.c++ */
-int			add_trusted_key(const char *name, const int flags,
-					const int proto, const int alg,
-					const char *str);
-int			db_set_update(char *name, struct databuf *dp,
-				      void **state, int flags,
-				      struct hashbuf **htp,
-				      struct sockaddr_in from,
-				      int *rrcount, int line,
-				      const char *file);
-/* --from db_sec.c-- */
-/* ++from db_tsig.c++ */
-char *			tsig_alg_name(int value);
-int			tsig_alg_value(char *name);
-struct dst_key *	tsig_key_from_addr(struct in_addr addr);
-struct tsig_record *	new_tsig(struct dst_key *key, u_char *sig, int siglen);
-void			free_tsig(struct tsig_record *tsig);
-/* --from db_tsig.c-- */
diff --git a/contrib/bind/bin/named/db_glob.h b/contrib/bind/bin/named/db_glob.h
deleted file mode 100644
index cfd7abb3696ba..0000000000000
--- a/contrib/bind/bin/named/db_glob.h
+++ /dev/null
@@ -1,104 +0,0 @@
-/*
- *	from db.h	4.16 (Berkeley) 6/1/90
- *	$Id: db_glob.h,v 8.14 2000/04/21 06:54:02 vixie Exp $
- */
-
-/*
- * Copyright (c) 1985, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Global variables for data base routines.
- */
-
-	/* ONE_WEEK maximum ttl */
-DECL	u_int		max_cache_ttl	INIT(7*24*60*60);
-
-	/* no minimum ttl */
-DECL	u_int		min_cache_ttl	INIT(0);
-
-	/* current line number */
-DECL	int		lineno		INIT(0);
-
-	/* root hash table */
-DECL	struct hashbuf	*hashtab	INIT(NULL);
-
-	/* hash table of cache read from file */
-DECL	struct hashbuf	*fcachetab	INIT(NULL);
-
-	/* state of ns_reload() and ns_reconfig(). */
-DECL	int		reloading	INIT(0);
-DECL	int		reconfiging	INIT(0);
-DECL	int		noexpired	INIT(0);
-
-DECL	const int hashsizes[]
-#ifdef MAIN_PROGRAM
-	= { 2, 11, 113, 337, 977, 2053, 4073, 8011, 16001, 99887, 0 }
-#endif
-	;
diff --git a/contrib/bind/bin/named/db_glue.c b/contrib/bind/bin/named/db_glue.c
deleted file mode 100644
index 8c484654af69f..0000000000000
--- a/contrib/bind/bin/named/db_glue.c
+++ /dev/null
@@ -1,656 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)db_glue.c	4.4 (Berkeley) 6/1/90";
-static const char rcsid[] = "$Id: db_glue.c,v 8.40 2000/04/21 06:54:02 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1988
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/uio.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-struct valuelist {
-	struct valuelist *	next;
-	struct valuelist *	prev;
-	char *			name;
-	char *			proto;
-	int			port;
-};
-static struct valuelist *servicelist, *protolist;
-
-void
-buildservicelist() {
-	struct servent *sp;
-	struct valuelist *slp;
-
-#ifdef MAYBE_HESIOD
-	setservent(0);
-#else
-	setservent(1);
-#endif
-	while ((sp = getservent()) != NULL) {
-		slp = (struct valuelist *)memget(sizeof(struct valuelist));
-		if (!slp)
-			panic("memget(servent)", NULL);
-		slp->name = savestr(sp->s_name, 1);
-		slp->proto = savestr(sp->s_proto, 1);
-		slp->port = ntohs((u_int16_t)sp->s_port);  /* host byt order */
-		slp->next = servicelist;
-		slp->prev = NULL;
-		if (servicelist)
-			servicelist->prev = slp;
-		servicelist = slp;
-	}
-	endservent();
-}
-
-void
-destroyservicelist() {
-	struct valuelist *slp, *slp_next;
-
-	for (slp = servicelist; slp != NULL; slp = slp_next) {
-		slp_next = slp->next;
-		freestr(slp->name);
-		freestr(slp->proto);
-		memput(slp, sizeof *slp);
-	}
-	servicelist = NULL;
-}
-
-void
-buildprotolist() {
-	struct protoent *pp;
-	struct valuelist *slp;
-
-#ifdef MAYBE_HESIOD
-	setprotoent(0);
-#else
-	setprotoent(1);
-#endif
-	while ((pp = getprotoent()) != NULL) {
-		slp = (struct valuelist *)memget(sizeof(struct valuelist));
-		if (!slp)
-			panic("memget(protoent)", NULL);
-		slp->name = savestr(pp->p_name, 1);
-		slp->port = pp->p_proto;	/* host byte order */
-		slp->next = protolist;
-		slp->prev = NULL;
-		if (protolist)
-			protolist->prev = slp;
-		protolist = slp;
-	}
-	endprotoent();
-}
-
-void
-destroyprotolist() {
-	struct valuelist *plp, *plp_next;
-
-	for (plp = protolist; plp != NULL; plp = plp_next) {
-		plp_next = plp->next;
-		freestr(plp->name);
-		memput(plp, sizeof *plp);
-	}
-	protolist = NULL;
-}
-
-static int
-findservice(const char *s, struct valuelist **list) {
-	struct valuelist *lp = *list;
-	int n;
-
-	for (; lp != NULL; lp = lp->next)
-		if (strcasecmp(lp->name, s) == 0) {
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			return (lp->port);	/* host byte order */
-		}
-	if (sscanf(s, "%d", &n) != 1 || n <= 0)
-		n = -1;
-	return (n);
-}
-
-/*
- * Convert service name or (ascii) number to int.
- */
-int
-servicenumber(const char *p) {
-	return (findservice(p, &servicelist));
-}
-
-/*
- * Convert protocol name or (ascii) number to int.
- */
-int
-protocolnumber(const char *p) {
-	return (findservice(p, &protolist));
-}
-
-static struct servent *
-cgetservbyport(u_int16_t port, const char *proto) {	/* Host byte order. */
-	struct valuelist **list = &servicelist;
-	struct valuelist *lp = *list;
-	static struct servent serv;
-
-	port = ntohs(port);
-	for (; lp != NULL; lp = lp->next) {
-		if (port != (u_int16_t)lp->port)	/* Host byte order. */
-			continue;
-		if (strcasecmp(lp->proto, proto) == 0) {
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			serv.s_name = lp->name;
-			serv.s_port = htons((u_int16_t)lp->port);
-			serv.s_proto = lp->proto;
-			return (&serv);
-		}
-	}
-	return (0);
-}
-
-static struct protoent *
-cgetprotobynumber(int proto) {				/* Host byte order. */
-	struct valuelist **list = &protolist;
-	struct valuelist *lp = *list;
-	static struct protoent prot;
-
-	for (; lp != NULL; lp = lp->next)
-		if (lp->port == proto) {		/* Host byte order. */
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			prot.p_name = lp->name;
-			prot.p_proto = lp->port;	/* Host byte order. */
-			return (&prot);
-		}
-	return (0);
-}
-
-const char *
-protocolname(int num) {
-	static char number[8];
-	struct protoent *pp;
-
-	pp = cgetprotobynumber(num);
-	if (pp == 0)  {
-		(void) sprintf(number, "%d", num);
-		return (number);
-	}
-	return (pp->p_name);
-}
-
-const char *
-servicename(u_int16_t port, const char *proto) {	/* Host byte order. */
-	static char number[8];
-	struct servent *ss;
-
-	ss = cgetservbyport(htons(port), proto);
-	if (ss == 0)  {
-		(void) sprintf(number, "%d", port);
-		return (number);
-	}
-	return (ss->s_name);
-}
-
-static struct map map_class[] = {
-	{ "in",		C_IN },
-	{ "chaos",	C_CHAOS },
-	{ "hs",		C_HS },
-	{ NULL,		0 }
-};
-
-int
-get_class(const char *class) {
-	const struct map *mp;
-
-	if (isdigit(*class))
-		return (atoi(class));
-	for (mp = map_class; mp->token != NULL; mp++)
-		if (strcasecmp(class, mp->token) == 0)
-			return (mp->val);
-	return (C_IN);
-}
-
-/* rm_datum(dp, np, pdp, savedpp)
- *	remove datum 'dp' from name 'np'.  pdp is previous data pointer.
- *	if savedpp is not NULL, and compiled with BIND_UPDATE, save 
- *      datum dp there rather than freeing the memory (caller will take
- *      care of freeing it)
- * return value:
- *	"next" field from removed datum, suitable for relinking
- */
-struct databuf *
-rm_datum(struct databuf *dp, struct namebuf *np, struct databuf *pdp,
-	 struct databuf **savedpp) {
-	struct databuf *ndp = dp->d_next;
-
-	ns_debug(ns_log_db, 3, "rm_datum(%lx, %lx, %lx, %lx) -> %lx",
-		 (u_long)dp, (u_long)np->n_data, (u_long)pdp, 
-		 (u_long)savedpp, (u_long)ndp);
-	if ((dp->d_flags & DB_F_ACTIVE) == 0)
-		panic("rm_datum: DB_F_ACTIVE not set", NULL);
-	if (pdp == NULL)
-		np->n_data = ndp;
-	else
-		pdp->d_next = ndp;
-#ifdef BIND_UPDATE
-	if (savedpp != NULL) {
-		/* mark deleted or pending deletion */
-		dp->d_mark |= D_MARK_DELETED; 
-		dp->d_next = *savedpp;
-		*savedpp = dp;
-	} else
-		dp->d_next = NULL;
-#else
-	dp->d_next = NULL;
-#endif
-	dp->d_flags &= ~DB_F_ACTIVE;
-	DRCNTDEC(dp);
-	if (dp->d_rcnt) {
-#ifdef DEBUG
-		int32_t ii;
-#endif
-
-		switch(dp->d_type) {
-		case T_NS:
-			ns_debug(ns_log_db, 3, "rm_datum: %s rcnt = %d",
-				 dp->d_data, dp->d_rcnt);
-			break;
-#ifdef DEBUG
-		case T_A:
-			memcpy(&ii, dp->d_data, sizeof ii);
-			ns_debug(ns_log_db, 3,
-				 "rm_datum: %08.8X rcnt = %d",
-				 ii, dp->d_rcnt);
-			break;
-#endif
-		default:
-			ns_debug(ns_log_db, 3,
-				 "rm_datum: rcnt = %d", dp->d_rcnt);
-		}
-	} else
-#ifdef BIND_UPDATE
-		if (savedpp == NULL)
-#endif
-		        db_freedata(dp);
-	return (ndp);
-}
-
-/* rm_name(np, he, pnp)
- *	remove name 'np' from parent 'pp'.  pnp is previous name pointer.
- * return value:
- *	"next" field from removed name, suitable for relinking.
- */
-struct namebuf *
-rm_name(struct namebuf *np, struct namebuf **pp, struct namebuf *pnp) {
-	struct namebuf *nnp = np->n_next;
-	const char *msg;
-
-	/* verify */
-	if ( (np->n_data && (msg = "data"))
-	  || (np->n_hash && (msg = "hash"))
-	    ) {
-		ns_panic(ns_log_db, 1, "rm_name(%#x(%s)): non-nil %s pointer",
-			 np, NAME(*np), msg);
-	}
-
-	/* unlink */
-	if (pnp)
-		pnp->n_next = nnp;
-	else
-		*pp = nnp;
-
-	/* deallocate */
-	memput(np, NAMESIZE(NAMELEN(*np)));
-
-	/* done */
-	return (nnp);
-}
-
-void
-rm_hash(struct hashbuf *htp) {
-	REQUIRE(htp != NULL);
-	REQUIRE(htp->h_cnt == 0);
-
-	memput(htp, HASHSIZE(htp->h_size));
-}
-
-/*
- * Get the domain name of 'np' and put in 'buf'.  Bounds checking is done.
- */
-void
-getname(struct namebuf *np, char *buf, int buflen) {
-	char *cp;
-	int i;
-
-	cp = buf;
-	while (np != NULL) {
-		i = (int) NAMELEN(*np);
-		if (i + 1 >= buflen) {
-			*cp = '\0';
-			ns_info(ns_log_db, 
-				"domain name too long: %s...", buf);
-			strcpy(buf, "Name_Too_Long");
-			return;
-		}
-		if (cp != buf)
-			*cp++ = '.';
-		memcpy(cp, NAME(*np), i);
-		cp += i;
-		buflen -= i + 1;
-		np = np->n_parent;
-	}
-	*cp = '\0';
-}
-
-/* u_int
- * nhash(name)
- *	compute hash for this name and return it; ignore case differences
- * note:
- *	this logic is intended to produce the same result as nlookup()'s.
- */
-u_int
-nhash(const char *name) {
-	u_char ch;
-	u_int hval;
-
-	hval = 0;
-	while ((ch = (u_char)*name++) != (u_char)'\0')
-		HASHIMILATE(hval, ch);
-	return (hval);
-}
-
-void
-db_freedata(struct databuf *dp) {
-	int bytes = DATASIZE(dp->d_size);
-
-	if (dp->d_rcnt != 0)
-		panic("db_freedata: d_rcnt != 0", NULL);
-	if ((dp->d_flags & (DB_F_ACTIVE|DB_F_FREE)) != 0)
-		panic("db_freedata: %s set",
-		      (dp->d_flags & DB_F_FREE) != 0 ? "DB_F_FREE" :
-		      "DB_F_ACTIVE");
-	if (dp->d_next != NULL)
-		panic("db_free: d_next != NULL", NULL);
-	dp->d_flags |= DB_F_FREE;
-	memput(dp, bytes);
-}
-
-struct lame_hash {
-	struct lame_hash	*next;
-	char			*zone;
-	char			*server;
-	time_t			when;
-	unsigned int		hval;
-} **lame_hash = NULL;
-
-static int lame_hash_size = 0;
-static int lame_hash_cnt = 0;
-
-void
-db_lame_add(char *zone, char *server, time_t when) {
-	unsigned int hval = nhash(zone);
-	struct lame_hash *last, *this;
-	struct lame_hash **new;
-	int n;
-	int newsize;
-
-	db_lame_clean();
-
-	/* grow / initalise hash table */
-	if (lame_hash_cnt >= lame_hash_size) {
-		if (lame_hash_size == 0)
-			newsize = hashsizes[0];
-		else {
-			for (n = 0; (newsize = hashsizes[n++]) != 0; (void)NULL)
-				if (lame_hash_size == newsize) {
-					newsize = hashsizes[n];
-					break;
-				}
-			if (newsize == 0)
-				newsize = lame_hash_size * 2 + 1;
-		}
-		new = memget(newsize * sizeof this);
-		if (new == NULL)
-			return;
-		memset(new, 0, newsize * sizeof this);
-		for (n = 0 ; n < lame_hash_size; n++) {
-			this = lame_hash[n];
-			while (this) {
-				last = this;
-				this = this->next;
-				last->next = new[hval%newsize];
-				new[hval%newsize] = last;
-			}
-		}
-		if (lame_hash != NULL)
-			memput(lame_hash, lame_hash_size * sizeof this);
-		lame_hash = new;
-		lame_hash_size = newsize;
-	}
-
-	last = NULL;
-	this = lame_hash[hval%lame_hash_size];
-	while (this) {
-		if ((ns_samename(this->server, server) == 1) &&
-		    (ns_samename(this->zone, zone) == 1)) {
-			this->when = when;
-			return;
-		}
-		last = this;
-		this = this->next;
-	}
-	this = memget(sizeof *this);
-	if (this == NULL)
-		return;
-	this->server = savestr(server, 0);
-	this->zone = savestr(zone, 0);
-	if (this->server == NULL || this->zone == NULL) {
-		if (this->server != NULL)
-			freestr(this->server);
-		if (this->zone != NULL)
-			freestr(this->zone);
-		memput(this, sizeof *this);
-		return;
-	}
-	this->when = when;
-	this->hval = hval;
-	this->next = NULL;
-	if (last != NULL)
-		last->next = this;
-	else
-		lame_hash[hval%lame_hash_size] = this;
-	lame_hash_cnt++;
-}
-
-time_t 
-db_lame_find(char *zone, struct databuf *dp) {
-	unsigned int hval = nhash(zone);
-	struct lame_hash *this;
-
-	if (lame_hash_size == 0) {
-		/* db_lame_destroy() must have been called. */
-		dp->d_flags &= ~DB_F_LAME;
-		return (0);
-	}
-
-	db_lame_clean();	/* Remove expired record so that we can
-			 	 * clear DB_F_LAME when there are no
-				 * additions. */
-
-	this = lame_hash[hval % lame_hash_size];
-	while (this) {
-		if ((ns_samename(this->server, (char*)dp->d_data) == 1) &&
-		    (ns_samename(this->zone, zone) == 1))
-			return (this->when);
-		this = this->next;
-	}
-	dp->d_flags &= ~DB_F_LAME;
-	return (0);
-}
-
-void
-db_lame_clean(void) {
-	int i;
-	struct lame_hash *last, *this;
-
-	for (i = 0 ; i < lame_hash_size; i++) {
-		last = NULL;
-		this = lame_hash[i];
-		while (this != NULL) {
-			if (this->when < tt.tv_sec) {
-				freestr(this->zone);
-				freestr(this->server);
-				if (last != NULL) {
-					last->next = this->next;
-					memput(this, sizeof *this);
-					this = last->next;
-				} else {
-					lame_hash[i] = this->next;
-					memput(this, sizeof *this);
-					this = lame_hash[i];
-				}
-				lame_hash_cnt--;
-			} else {
-				last = this;
-				this = this->next;
-			}
-		}
-	}
-}
-
-void
-db_lame_destroy(void) {
-	int i;
-	struct lame_hash *last, *this;
-
-	if (lame_hash_size == 0)
-		return;
-
-	for (i = 0 ; i < lame_hash_size; i++) {
-		this = lame_hash[i];
-		while (this != NULL) {
-			last = this;
-			this = this->next;
-			freestr(last->zone);
-			freestr(last->server);
-			memput(last, sizeof *this);
-		}
-	}
-	memput(lame_hash, lame_hash_size * sizeof this);
-	lame_hash_cnt = 0;
-	lame_hash_size = 0;
-	lame_hash = NULL;
-}
diff --git a/contrib/bind/bin/named/db_ixfr.c b/contrib/bind/bin/named/db_ixfr.c
deleted file mode 100644
index 7a50618f2ff91..0000000000000
--- a/contrib/bind/bin/named/db_ixfr.c
+++ /dev/null
@@ -1,925 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char     rcsid[] = "$Id: db_ixfr.c,v 8.20 2000/02/29 05:15:03 vixie Exp $";
-#endif
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-/*
- * Manage ixfr transaction log
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-#define DBIXFR_ERROR		(-1)
-#define DBIXFR_FOUND_RR		2
-#define DBIXFR_END		3
-
-static int ixfr_getdelta(struct zoneinfo *, FILE *, const char *, char *,
-			 ns_updque *, u_int32_t *, u_int32_t *);
-
-ns_deltalist *
-ixfr_get_change_list(struct zoneinfo *zp,
-		     u_int32_t from_serial, u_int32_t to_serial)
-{
-	FILE *		fp = NULL;
-	u_int32_t	old_serial, new_serial;
-	char		origin[MAXDNAME];
-	ns_deltalist *dlhead = NULL;
-	int		ret;
-	ns_updrec	*uprec;
-	ns_delta *dl;
-
-	if (SEQ_GT(from_serial, to_serial))
-		return (NULL);
-
-	dlhead = memget(sizeof(*dlhead));
-	if (dlhead == NULL)
-		return (NULL);
-	INIT_LIST(*dlhead);
-
-	if ((fp = fopen(zp->z_ixfr_base, "r")) == NULL) {
-		ns_warning(ns_log_db, "%s: %s",
-			   zp->z_ixfr_base, strerror(errno));
-		goto cleanup;
-	}
-	strcpy(origin, zp->z_origin);
-	lineno = 1;
-	old_serial = new_serial = 0;
-
-	for (;;) {
-		dl = memget(sizeof *dl);
-		if (dl == NULL) {
-				ns_warning(ns_log_db,
-					   "ixfr_get_change_list: out of memory");
-				goto cleanup;
-		}
-		INIT_LINK(dl, d_link);
-		INIT_LIST(dl->d_changes);
-		ret = ixfr_getdelta(zp, fp, zp->z_ixfr_base, origin, &dl->d_changes,
-				    &old_serial, &new_serial);
-		switch (ret) {
-		case DBIXFR_ERROR:
-			ns_warning(ns_log_db, "Logical error in %s: unlinking", 
-				   zp->z_ixfr_base);
-			unlink(zp->z_ixfr_base);
-			goto cleanup;
-
-		case DBIXFR_FOUND_RR:
-				ns_debug(ns_log_default, 4, "ixfr_getdelta DBIXFR_FOUND_RR (%s)",
-					zp->z_origin);
-			if (EMPTY(*dlhead)) {
-				/* skip updates prior to the one we want */
-				uprec = HEAD(dl->d_changes);
-				INSIST(uprec != NULL);
-				if ((uprec->r_zone < from_serial) || 	
-					(uprec->r_zone > to_serial))  
-				{
-					while ((uprec = HEAD(dl->d_changes)) != NULL) {
-						UNLINK(dl->d_changes, uprec, r_link);
-
-						if (uprec->r_dp != NULL)
-							db_freedata(uprec->r_dp);
-						uprec->r_dp = NULL;
-						res_freeupdrec(uprec);
-					}
-					memput(dl, sizeof *dl);
-					break;
-				}
-				else if (uprec->r_zone > from_serial) {
-					/* missed the boat */
-					ns_debug(ns_log_default, 3, 
-			    "ixfr_getdelta first SOA is %d, asked for %d (%s)",
-						 uprec->r_zone,
-						 from_serial,
-						 zp->z_origin);
-					goto cleanup;
-				}
-			}
-			ns_debug(ns_log_default, 4,
-				 "adding to change list (%s)",
-				 zp->z_origin);
-			APPEND(*dlhead, dl, d_link);
-			break;
-
-		case DBIXFR_END:
-			ns_debug(ns_log_default, 4,
-				 "ixfr_getdelta DBIXFR_END (%s)",
-				 zp->z_origin);
-			(void) my_fclose(fp);
-			memput(dl, sizeof *dl);
-			return (dlhead);
-
-		default:
-			(void) my_fclose(fp);
-			if (dl != NULL)
-				memput(dl, sizeof *dl);
-			return (NULL);
-		}
-	}
-
- cleanup:
-	if (fp != NULL)
-		(void) my_fclose(fp);
-
-	while ((dl = HEAD(*dlhead)) != NULL) {
-		UNLINK(*dlhead, dl, d_link);
-		while ((uprec = HEAD(dl->d_changes)) != NULL) {
-			UNLINK(dl->d_changes, uprec, r_link);
-
-			if (uprec->r_dp != NULL)
-				db_freedata(uprec->r_dp);
-			uprec->r_dp = NULL;
-			res_freeupdrec(uprec);
-		}
-		memput(dl, sizeof *dl);
-	}
-	memput(dlhead, sizeof *dlhead);
-	return (NULL);
-}
-
-/*
- * int ixfr_have_log(struct zoneinfo *zp,u_int32_t from_serial,
- *                   u_int32_t to_serial)
- * 
- * verify that ixfr transaction log contains changes  
- * from from_serial to to_serial
- * 
- * returns: 
- *         0 = serial number is up to date
- *         1 = transmission is possible 
- *        -1 = error while opening the ixfr transaction log
- *        -2 = error in parameters
- *        -3 = logical error in the history file 
- */
-int
-ixfr_have_log(struct zoneinfo *zp, u_int32_t from_serial, u_int32_t to_serial)
-{
-	FILE           *fp;
-	u_int32_t       old_serial = 0, new_serial = 0;
-	u_int32_t       last_serial = 0;
-	u_int32_t       first_serial = 0;
-	char            buf[BUFSIZ];
-	char           *cp;
-	struct stat     st;
-	int             nonempty_lineno = -1, prev_pktdone = 0, cont = 0,
-			inside_next = 0;
-	int             err;
-	int             first = 0;
-	int             rval = 0;
-	int             id, rcode = NOERROR;
-	if (SEQ_GT(from_serial, to_serial))
-		return (-2);
-	if (from_serial == to_serial)
-		return (0);
-	/* If there is no log file, just return. */
-	if (zp->z_ixfr_base == NULL || zp->z_updatelog == NULL)
-		return (-1);
-	if (zp->z_serial_ixfr_start > 0) {
-		if (from_serial >= zp->z_serial_ixfr_start)
-			return (1);
-	}
-	if (stat(zp->z_ixfr_base, &st) < 0) {
-		if (errno != ENOENT)
-			ns_error(ns_log_db,
-				 "unexpected stat(%s) failure: %s",
-				 zp->z_ixfr_base, strerror(errno));
-		return (-1);
-	}
-	if ((fp = fopen(zp->z_ixfr_base, "r")) == NULL) {
-		ns_warning(ns_log_db, "%s: %s",
-			   zp->z_ixfr_base, strerror(errno));
-		return (-1);
-	}
-	if (fgets(buf, sizeof(buf), fp) == NULL) {
-		ns_error(ns_log_update, "fgets() from %s failed: %s",
-			 zp->z_ixfr_base, strerror(errno));
-		fclose(fp);
-		return (-1);
-	}
-	if (strcmp(buf, LogSignature) != 0) {
-		ns_error(ns_log_update, "invalid log file %s",
-			 zp->z_ixfr_base);
-		fclose(fp);
-		return (-3);
-	}
-	lineno = 1;
-	first = 1;
-	for (;;) {
-		if (getword(buf, sizeof buf, fp, 0)) {
-			nonempty_lineno = lineno;
-		} else {
-			if (lineno == (nonempty_lineno + 1))
-				continue;
-			inside_next = 0;
-			prev_pktdone = 1;
-			cont = 1;
-		}
-		if (!strcasecmp(buf, "[DYNAMIC_UPDATE]") ||
-		    !strcasecmp(buf, "[IXFR_UPDATE]")) {
-			err = 0;
-			rcode = NOERROR;
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (cp == NULL || !sscanf((char *) cp, "id %d", &id))
-				id = -1;
-			inside_next = 1;
-			prev_pktdone = 1;
-			cont = 1;
-		} else if (!strcasecmp(buf, "serial")) {
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (sscanf((char *) cp, "%u", &old_serial)) {
-				if (first == 1) {
-					first = 0;
-					first_serial = old_serial;
-				}
-				last_serial = old_serial;
-				if (from_serial >= old_serial) {
-				    rval = 1;
-				}
-			}
-			prev_pktdone = 1;
-			cont = 1;
-		} else if (!strcasecmp(buf, "[INCR_SERIAL]")) {
-			/* XXXRTH not enough error checking here */
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (cp == NULL ||
-			    sscanf((char *) cp, "from %u to %u",
-				    &old_serial, &new_serial) != 2) {
-			    rval = -3;
-				break;
-			} else if (from_serial >= old_serial) {
-				if (first == 1) {
-					first = 0;
-					first_serial = old_serial;
-				}
-				last_serial = old_serial;
-				rval = 1;
-			}
-		}
-		if (prev_pktdone) {
-			prev_pktdone = 0;
-			if (feof(fp))
-				break;
-		}
-	}
-	fclose(fp);
-	if (last_serial +1 < zp->z_serial) {
-		ns_warning(ns_log_db,
-			   "%s: File Deleted. Found gap between serial:"
-			   " %d and current serial: %d", 
-			   zp->z_ixfr_base, last_serial, zp->z_serial);
-		(void) unlink(zp->z_ixfr_base);
-		rval = -3;
-	} 
-	if (from_serial < first_serial || from_serial > last_serial)
-		rval = -3;
-	if (rval == 1)
-		zp->z_serial_ixfr_start = first_serial;
-	return (rval);
-}
-
-/* from db_load.c */
-
-static struct map m_section[] = {
-	{"zone", S_ZONE},
-	{"prereq", S_PREREQ},
-	{"update", S_UPDATE},
-	{"reserved", S_ADDT},
-};
-#define M_SECTION_CNT (sizeof(m_section) / sizeof(struct map))
-
-/* from ns_req.c */
-
-static struct map m_opcode[] = {
-	{"nxdomain", NXDOMAIN},
-	{"yxdomain", YXDOMAIN},
-	{"nxrrset", NXRRSET},
-	{"yxrrset", YXRRSET},
-	{"delete", DELETE},
-	{"add", ADD},
-};
-#define M_OPCODE_CNT (sizeof(m_opcode) / sizeof(struct map))
-
-/* XXXRTH workaround map difficulties */
-#define M_CLASS_CNT m_class_cnt
-#define M_TYPE_CNT m_type_cnt
-
-/*
- * read a line from the history of a zone.
- * 
- * returns:
- * 
- *         DBIXFR_ERROR = an error occured 
- *         DBIXFR_FOUND_RR = a rr encountered 
- *         DBIXFR_END = end of file
- */
-static int
-ixfr_getdelta(struct zoneinfo *zp, FILE *fp, const char *filename, char *origin,
-	   ns_updque *listuprec, u_int32_t *old_serial,
-	   u_int32_t *new_serial)
-{
-	static int      read_soa, read_ns, rrcount;
-
-	char            data[MAXDATA], dnbuf[MAXDNAME], sclass[3];
-	const char     *errtype = "Database";
-	char           *dname, *cp, *cp1;
-	char            buf[MAXDATA];
-	u_int32_t       serial, ttl;
-	int             nonempty_lineno = -1, prev_pktdone = 0, cont = 0,
-			inside_next = 0;
-	int             id;
-	int             i, c, section, opcode, matches, zonenum, err, multiline;
-	int             type, class;
-	u_int32_t       n;
-	enum transport  transport;
-	struct map     *mp;
-	int             zonelist[MAXDNAME];
-	struct databuf *dp;
-	struct in_addr  ina;
-	struct sockaddr_in empty_from;
-	int             datasize;
-	ns_updrec *	rrecp;
-	u_long		l;
-
-#define    ERRTO(msg)  if (1) { errtype = msg; goto err; } else (void)NULL
-
-	err = 0;
-	transport = primary_trans;
-	lineno = 1;
-	for (;;) {
-		if (!getword(buf, sizeof buf, fp, 0)) {
-			if (lineno == (nonempty_lineno + 1) && !(feof(fp))) {
-				/*
-				 * End of a nonempty line inside an update
-				 * packet or not inside an update packet.
-				 */
-				continue;
-			}
-			/*
-			 * Empty line or EOF.
-			 */
-			if (feof(fp))
-				break;
-			inside_next = 0;
-			cont = 1;
-		} else {
-			nonempty_lineno = lineno;
-		}
-
-		if (!strcasecmp(buf, "[DYNAMIC_UPDATE]") ||
-		    !strcasecmp(buf, "[IXFR_UPDATE]")) {
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (cp == NULL || !sscanf((char *) cp, "id %d", &id))
-				id = -1;
-			inside_next = 1;
-			cont = 1;
-		} else if (!strcasecmp(buf, "[INCR_SERIAL]")) {
-			/* XXXRTH not enough error checking here */
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (cp == NULL ||
-			    sscanf((char *) cp, "from %u to %u",
-				    old_serial, new_serial) != 2) {
-				ns_error(ns_log_update,
-					 "incr_serial problem with %s",
-					 zp->z_updatelog);
-			} else {
-				serial = get_serial(zp);
-			}
-			cont = 1;
-		} else if (!strcasecmp(buf, "[END_DELTA]")) {
-			prev_pktdone = 1;
-			cont = 1;
-			lineno++;
-		}
-		if (prev_pktdone) {
-			if (!EMPTY(*listuprec)) {
-				n++;
-				return (DBIXFR_FOUND_RR);
-			}
-			prev_pktdone = 0;
-		}
-		if (cont) {
-			cont = 0;
-			continue;
-		}
-		if (!inside_next)
-			continue;
-		/*
-		 * inside the same update packet, continue accumulating
-		 * records.
-		 */
-		section = -1;
-		n = strlen(buf);
-		if (buf[n - 1] == ':')
-			buf[--n] = '\0';
-		for (mp = m_section; mp < m_section + M_SECTION_CNT; mp++)
-			if (!strcasecmp(buf, mp->token)) {
-				section = mp->val;
-				break;
-			}
-		ttl = 0;
-		type = -1;
-		class = zp->z_class;
-		n = 0;
-		data[0] = '\0';
-		switch (section) {
-		case S_ZONE:
-			cp = fgets(buf, sizeof buf, fp);
-			if (!cp)
-				*buf = '\0';
-			n = sscanf(cp, "origin %s class %s serial %ul",
-				   origin, sclass, &serial);
-			if (n != 3 || ns_samename(origin, zp->z_origin) != 1)
-				err++;
-			if (cp)
-				lineno++;
-			if (!err && inside_next) {
-				int             success;
-
-				dname = origin;
-				type = T_SOA;
-				class = sym_ston(__p_class_syms, sclass,
-						 &success);
-				if (!success) {
-					err++;
-					break;
-				}
-				matches = findzone(dname, class, 0,
-						   zonelist, MAXDNAME);
-				if (matches)
-					zonenum = zonelist[0];
-				else
-					err++;
-			}
-			break;
-		case S_PREREQ:
-		case S_UPDATE:
-			/* Operation code. */
-			if (!getword(buf, sizeof buf, fp, 0)) {
-				err++;
-				break;
-			}
-			opcode = -1;
-			if (buf[0] == '{') {
-				n = strlen(buf);
-				for (i = 0; (u_int32_t) i < n; i++)
-					buf[i] = buf[i + 1];
-				if (buf[n - 2] == '}')
-					buf[n - 2] = '\0';
-			}
-			for (mp = m_opcode; mp < m_opcode + M_OPCODE_CNT; mp++)
-				if (!strcasecmp(buf, mp->token)) {
-					opcode = mp->val;
-					break;
-				}
-			if (opcode == -1) {
-				err++;
-				break;
-			}
-			/* Owner's domain name. */
-			if (!getword((char *) dnbuf, sizeof dnbuf, fp, 0)) {
-				err++;
-				break;
-			}
-			n = strlen((char *) dnbuf) - 1;
-			if (dnbuf[n] == '.')
-				dnbuf[n] = '\0';
-			dname = dnbuf;
-			ttl = 0;
-			type = -1;
-			class = zp->z_class;
-			n = 0;
-			data[0] = '\0';
-			(void) getword(buf, sizeof buf, fp, 1);
-			if (isdigit(buf[0])) {    /* ttl */
-				if (ns_parse_ttl(buf, &l) < 0) {
-					err++;
-					break;
-				}
-				ttl = l;
-				(void) getword(buf, sizeof buf, fp, 1);
-			}
-			/* possibly class */
-			if (buf[0] != '\0') {
-				int             success;
-				int             maybe_class;
-
-				maybe_class = sym_ston(__p_class_syms,
-						       buf, &success);
-				if (success) {
-					class = maybe_class;
-					(void) getword(buf, sizeof buf, fp, 1);
-				}
-			}
-			/* possibly type */
-			if (buf[0] != '\0') {
-				int             success;
-				int             maybe_type;
-
-				maybe_type = sym_ston(__p_type_syms,
-						      buf, &success);
-
-				if (success) {
-					type = maybe_type;
-					(void) getword(buf, sizeof buf, fp, 1);
-				}
-			}
-			if (buf[0] != '\0')    /* possibly rdata */
-			/*
-			 * Convert the ascii data 'buf' to the proper
-			 * format based on the type and pack into
-			 * 'data'.
-			 * 
-			 * XXX - same as in db_load(), consolidation
-			 * needed
-			 */
-			switch (type) {
-			case T_A:
-				if (!inet_aton(buf, &ina)) {
-					err++;
-					break;
-				}
-				n = ntohl(ina.s_addr);
-				cp = data;
-				PUTLONG(n, cp);
-				n = INT32SZ;
-				break;
-			case T_HINFO:
-			case T_ISDN:
-				n = strlen(buf);
-				data[0] = n;
-				memcpy(data + 1, buf, n);
-				n++;
-				if (!getword(buf, sizeof buf, fp, 0)) {
-					i = 0;
-				} else {
-					endline(fp);
-					i = strlen(buf);
-				}
-				data[n] = i;
-				n++;
-				memcpy(data + n + 1, buf, i);
-				n += i;
-				break;
-			case T_SOA:
-			case T_MINFO:
-			case T_RP:
-				(void) strcpy(data, buf);
-				cp = data + strlen(data) + 1;
-				if (!getword((char *) cp,
-					     sizeof data - (cp - data),
-					     fp, 1)) {
-					err++;
-					break;
-				}
-				cp += strlen((char *) cp) + 1;
-				if (type != T_SOA) {
-					n = cp - data;
-					break;
-				}
-				if (class != zp->z_class ||
-				    ns_samename(dname, zp->z_origin) != 1) {
-					err++;
-					break;
-				}
-				c = getnonblank(fp, zp->z_updatelog);
-				if (c == '(') {
-					multiline = 1;
-				} else {
-					multiline = 0;
-					ungetc(c, fp);
-				}
-				n = getnum(fp, zp->z_updatelog, GETNUM_SERIAL);
-				if (getnum_error) {
-					err++;
-					break;
-				}
-				if (opcode == ADD && i == 0)
-					*new_serial = n;
-				PUTLONG(n, cp);
-				for (i = 0; i < 4; i++) {
-					if (!getword(buf, sizeof buf, fp, 1)) {
-						err++;
-						break;
-					}
-					if (ns_parse_ttl(buf, &l) < 0) {
-						err++;
-						break;
-					}
-					n = l;
-					PUTLONG(n, cp);
-				}
-				if (multiline &&
-				    getnonblank(fp, zp->z_updatelog) != ')')
-				{
-					err++;
-					break;
-				}
-				endline(fp);
-				n = cp - data;
-				break;
-			case T_WKS:
-				if (!inet_aton(buf, &ina)) {
-					err++;
-					break;
-				}
-				n = ntohl(ina.s_addr);
-				cp = data;
-				PUTLONG(n, cp);
-				*cp = (char) getprotocol(fp, zp->z_updatelog);
-				n = INT32SZ + sizeof(char);
-				n = getservices((int) n, data,
-						fp, zp->z_updatelog);
-				break;
-			case T_NS:
-			case T_CNAME:
-			case T_MB:
-			case T_MG:
-			case T_MR:
-			case T_PTR:
-				(void) strcpy(data, buf);
-				if (makename(data, origin,
-					     sizeof(data)) == -1) {
-					err++;
-					break;
-				}
-				n = strlen(data) + 1;
-				break;
-			case T_MX:
-			case T_AFSDB:
-			case T_RT:
-				n = 0;
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				cp = data;
-				PUTSHORT((u_int16_t) n, cp);
-				if (!getword(buf, sizeof(buf), fp, 1)) {
-					err++;
-					break;
-				}
-				(void) strcpy((char *) cp, buf);
-				if (makename((char *) cp, origin,
-					     sizeof(data) - (cp - data)) == -1)
-				{
-					err++;
-					break;
-				}
-				/* advance pointer to end of data */
-				cp += strlen((char *) cp) + 1;
-				/* now save length */
-				n = (cp - data);
-				break;
-			case T_PX:
-				n = 0;
-				data[0] = '\0';
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				cp = data;
-				PUTSHORT((u_int16_t) n, cp);
-				for (i = 0; i < 2; i++) {
-					if (!getword(buf, sizeof(buf), fp, 0))
-					{
-						err++;
-						break;
-					}
-					(void) strcpy((char *) cp, buf);
-					cp += strlen((char *) cp) + 1;
-				}
-				n = cp - data;
-				break;
-			case T_TXT:
-			case T_X25:
-				i = strlen(buf);
-				cp = data;
-				datasize = sizeof data;
-				cp1 = buf;
-				while (i > MAXCHARSTRING) {
-					if (datasize <= MAXCHARSTRING) {
-						ns_error(ns_log_update,
-							 "record too big");
-						return (-1);
-					}
-					datasize -= MAXCHARSTRING;
-					*cp++ = (char)MAXCHARSTRING;
-					memcpy(cp, cp1, MAXCHARSTRING);
-					cp += MAXCHARSTRING;
-					cp1 += MAXCHARSTRING;
-					i -= MAXCHARSTRING;
-				}
-				if (datasize < i + 1) {
-					ns_error(ns_log_update,
-						 "record too big");
-					return (-1);
-				}
-				*cp++ = i;
-				memcpy(cp, cp1, i);
-				cp += i;
-				n = cp - data;
-				endline(fp);
-				/* XXXVIX: segmented texts 4.9.5 */
-				break;
-			case T_NSAP:
-				n = inet_nsap_addr(buf, (u_char *) data,
-						   sizeof data);
-				endline(fp);
-				break;
-			case T_LOC:
-				cp = buf + (n = strlen(buf));
-				*cp = ' ';
-				cp++;
-				while ((i = getc(fp), *cp = i, i != EOF)
-				       && *cp != '\n' && (n < MAXDATA))
-				{
-					cp++;
-					n++;
-				}
-				if (*cp == '\n')
-					ungetc(*cp, fp);
-				*cp = '\0';
-				n = loc_aton(buf, (u_char *) data);
-				if (n == 0) {
-					err++;
-					break;
-				}
-				endline(fp);
-				break;
-			case ns_t_sig: 
-			case ns_t_nxt:
-			case ns_t_key:
-			case ns_t_cert:{
-				char *errmsg = NULL;
-
-				n  = parse_sec_rdata(buf, sizeof(buf), 1,
-						     (u_char *) data,
-						     sizeof(data),
-						     fp, zp, dname, ttl,
-						     type, domain_ctx,
-						     transport, &errmsg);
-				if (errmsg) {
-					err++;
-					endline(fp);
-					n = 0;
-				}
-				break;
-			}
-			default:
-				err++;
-			}
-			if (section == S_PREREQ) {
-				ttl = 0;
-				if (opcode == NXDOMAIN) {
-					class = C_NONE;
-					type = T_ANY;
-					n = 0;
-				} else if (opcode == YXDOMAIN) {
-					class = C_ANY;
-					type = T_ANY;
-					n = 0;
-				} else if (opcode == NXRRSET) {
-					class = C_NONE;
-					n = 0;
-				} else if (opcode == YXRRSET) {
-					if (n == 0)
-					class = C_ANY;
-				}
-			} else {/* section == S_UPDATE */
-				if (opcode == DELETE) {
-					if (n == 0) {
-						class = C_ANY;
-						if (type == -1)
-						type = T_ANY;
-					} else {
-						class = zp->z_class;
-					}
-				}
-			}
-			break;
-		case S_ADDT:
-		default:
-			ns_debug(ns_log_update, 1,
-				 "cannot interpret section: %d", section);
-			inside_next = 0;
-			err++;
-		}
-		if (err) {
-			inside_next = 0;
-			ns_debug(ns_log_update, 1,
-			"merge of update id %d failed due to error at line %d",
-				 id, lineno);
-			return (DBIXFR_ERROR);
-		}
-		rrecp = res_mkupdrec(section, dname, class, type, ttl);
-		if (section != S_ZONE) {
-			dp = savedata(class, type, ttl, (u_char *) data, n);
-			dp->d_zone = zonenum;
-			dp->d_cred = DB_C_ZONE;
-			dp->d_clev = nlabels(zp->z_origin);
-			rrecp->r_dp = dp;
-			rrecp->r_opcode = opcode;
-		} else {
-			rrecp->r_zone = zonenum;
-			rrecp->r_opcode = opcode;
-		}
-
-		/* remove add/delete pairs */
-		if (section == S_UPDATE) {
-			ns_updrec *arp;
-			int foundmatch;
-
-			arp = TAIL(*listuprec);
-			foundmatch = 0;
-			while (arp) {
-				if (arp->r_section == S_UPDATE &&
-				    ((arp->r_opcode == DELETE &&
-				      opcode == ADD) ||
-				     (opcode == DELETE &&
-				      arp->r_opcode == ADD)) &&
-				     arp->r_dp->d_type == dp->d_type &&
-				     arp->r_dp->d_class == dp->d_class &&
-				     arp->r_dp->d_ttl == dp->d_ttl &&
-				     ns_samename(arp->r_dname, dname) == 1 &&
-				     db_cmp(arp->r_dp, dp) == 0) {
-					db_freedata(dp);
-					db_freedata(arp->r_dp);
-					UNLINK(*listuprec, arp, r_link);
-					res_freeupdrec(arp);
-					res_freeupdrec(rrecp);
-					foundmatch = 1;
-					break;
-				}
-				arp = PREV(arp, r_link);
-			}
-			if (foundmatch)
-				continue;
-		}
-
-		APPEND(*listuprec, rrecp, r_link);
-		/* Override zone number with current zone serial number */
-		rrecp->r_zone = serial;
-	}   
-
-	if (err)
-		return (DBIXFR_ERROR);
-
-	return (DBIXFR_END);
-}
-
diff --git a/contrib/bind/bin/named/db_load.c b/contrib/bind/bin/named/db_load.c
deleted file mode 100644
index 2d6a6e5a652e1..0000000000000
--- a/contrib/bind/bin/named/db_load.c
+++ /dev/null
@@ -1,2614 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)db_load.c	4.38 (Berkeley) 3/2/91";
-static const char rcsid[] = "$Id: db_load.c,v 8.103 2000/04/21 06:54:02 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Load zone from ASCII file on local host.  Format similar to RFC 883.
- */
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-/* Forward. */
-
-static int        	gettoken(FILE *, const char *);
-static int		getcharstring(char *, char *, int, int, int, FILE *,
-				      const char *);
-static int		genname(char *, int, const char *, char *, int);
-static int		getmlword(char *, size_t, FILE *, int);
-static int		getallwords(char *, size_t, FILE *, int);
-static u_int32_t	wordtouint32(char *);
-static void		fixup_soa(const char *fn, struct zoneinfo *zp);
-static int		get_nxt_types(u_char *, FILE *, const char *);
-
-static int		parse_sig_rr(char *, int, u_char *, int, FILE *,  
-				     struct zoneinfo *, char *, u_int32_t ,
-				     enum context , enum transport , char **);
-static int		parse_key_rr(char *, int, u_char *, int, FILE *, 
-				     struct zoneinfo *, char *, enum context, 
-				     enum transport, char **);
-
-static int		parse_cert_rr(char *, int, u_char *, int, FILE *, char **);
-static int		parse_nxt_rr(char *, int, u_char *, int, FILE *,
-				     struct zoneinfo *, char *, enum context,
-				     enum transport, char **);
-
-
-static int		wordtouint32_error = 0;
-static int		empty_token = 0;
-static int		getmlword_nesting = 0;
-
-/* Global. */
-
-static int clev;	/* a zone deeper in a hierarchy has more credibility */
-
-/*
- * Parser token values
- */
-#define CURRENT		1
-#define DOT		2
-#define AT		3
-#define DNAME		4
-#define INCLUDE		5
-#define ORIGIN		6
-#define GENERATE	7
-#define DEFAULTTTL	8
-#define ERRTOK		9
-
-#define MAKENAME_OK(N) \
-	do { \
-		if (!makename_ok(N, origin, class, zp, \
-		   		 transport, context, \
-				 domain, filename, lineno, \
-				 data_size - ((u_char*)N - data))) { \
-			errs++; \
-			sprintf(buf, "bad name \"%s\"", N); \
-		        goto err; \
-		} \
-	} while (0)
-
-#define MAKENAME_OKZP(N, SI) \
-	do { \
-		if (!makename_ok(N, zp->z_origin, zp->z_class, zp, \
-		   		 transport, context, \
-				 domain, zp->z_source, lineno, \
-				 SI - ((u_char*)N - data))) { \
-			errs++; \
-			sprintf(buf, "bad name \"%s\"", N); \
-		        goto err; \
-		} \
-	} while (0)
-
-#define RANGE(x, min, max) \
-	(((x) > (max)) ? (max) : (((x) < (min)) ? (min) : (x)))
-
-/* Public. */
-
-/* int
- * db_load(filename, in_origin, zp, def_domain, isixfr)
- *	load a database from `filename' into zone `zp'.  append `in_origin'
- *	to all nonterminal domain names in the file.  `def_domain' is the
- *	default domain for include files or NULL for zone base files.
- * returns:
- *	-1 = can't open file
- *	0 = success
- *	>0 = number of errors encountered
- */
-int
-db_load(const char *filename, const char *in_origin,
-	struct zoneinfo *zp, const char *def_domain, int isixfr)
-{
-	static int read_soa, read_ns, rrcount;
-	static u_int32_t default_ttl, default_warn;
-	static struct filenames {
-		struct filenames *next;
-		char 		 *name;
-	} *filenames, *fn;
-
-	const char *errtype = "Database";
-	char *cp;
-	char domain[MAXDNAME], origin[MAXDNAME], tmporigin[MAXDNAME];
-	char buf[MAXDATA];
-	char genlhs[MAXDNAME], genrhs[MAXDNAME];
-	u_char data[MAXDATA];
-	int data_size = sizeof(data);
-	int c, someclass, class, type, dbflags, dataflags, multiline = 0;
-	int slineno, i, errs, didinclude, ininclude, escape, success;
-	u_int32_t ttl, n, serial;
-	u_long tmplong;
-	struct databuf *dp;
-	FILE *fp;
-	struct stat sb;
-	struct in_addr ina;
-	enum transport transport;
-	enum context context;
-	struct sockaddr_in empty_from;
-	int genstart, genend, genstep;
-	char *thisfile;
-	void *state = NULL;
-
-	empty_from.sin_family = AF_INET;
-	empty_from.sin_addr.s_addr = htonl(INADDR_ANY);
-	empty_from.sin_port = htons(0);
-
-/*
- * We use an 'if' inside of the 'do' below because otherwise the Solaris
- * compiler detects that the 'while' is never executed because of the 'goto'
- * and complains.
- */
-#define	ERRTO(msg)  do { if (1) { errtype = msg; goto err; } } while (0)
-#define	ERRTOZ(msg)  do { if (1) { errtype = msg; buf[0] = '\0'; goto err; } } while (0)
-
-	switch (zp->z_type) {
-	case Z_PRIMARY:
-		/* Any updates should be saved before we attempt to reload. */
-		INSIST((zp->z_flags & (Z_NEED_DUMP|Z_NEED_SOAUPDATE)) == 0);
-	case Z_HINT:
-		transport = primary_trans;
-		break;
-	case Z_SECONDARY:
-	case Z_STUB:
-		transport = secondary_trans;
-		break;
-	case Z_CACHE:
-		transport = response_trans;
-		break;
-	default:
-		transport = response_trans; /*guessing*/
-		break;
-	}
-	errs = 0;
-	didinclude = 0;
-	ininclude = (def_domain != NULL);
-	if (!ininclude) {
-		rrcount = 0;
-		read_soa = 0;
-		read_ns = 0;
-		default_ttl = USE_MINIMUM;
-		default_warn = 1;
-		clev = nlabels(in_origin);
-		filenames = NULL;
-		zp->z_minimum = USE_MINIMUM;
-	}
-	ttl = default_ttl;
-
-	ns_debug(ns_log_load, 1, "db_load(%s, %s, %d, %s, %s)",
-		 filename, in_origin, zp - zones,
-		 def_domain ? def_domain : "Nil", isixfr ? "IXFR" : "Normal");
-
-	fn = (struct filenames *)memget(sizeof *filenames);
-	if (fn == NULL)
-		ns_panic(ns_log_db, 0, "db_load: memget failed");
-	thisfile = fn->name = savestr(filename, 1);
-	fn->next = filenames;
-	filenames = fn;
-
-	strcpy(origin, in_origin);
-	if ((fp = fopen(filename, "r")) == NULL) {
-		ns_warning(ns_log_load, "db_load could not open: %s: %s",
-			   filename, strerror(errno));
-		zp->z_ftime = 0;
-		return (-1);
-	}
-	if (zp->z_type == Z_HINT) {
-		dbflags = DB_NODATA | DB_NOHINTS;
-		dataflags = DB_F_HINT;
-#ifdef STUBS
-	} else if (zp->z_type == Z_STUB && clev == 0) {
-		dbflags = DB_NODATA | DB_NOHINTS;
-		dataflags = DB_F_HINT;
-#endif
-	} else {
-		dbflags = DB_NODATA;
-		dataflags = 0;
-	}
-	gettime(&tt);
-	if (fstat(fileno(fp), &sb) < 0) {
-		ns_warning(ns_log_load, "fstat failed: %s: %s",
-			   filename, strerror(errno));
-		sb.st_mtime = (int)tt.tv_sec;
-	}
-	slineno = lineno;
-	lineno = 1;
-	if (def_domain)
-		strcpy(domain, def_domain);
-	else
-		domain[0] = '\0';
-	class = zp->z_class;
-	zp->z_flags &= ~(Z_INCLUDE|Z_DB_BAD);
- 	while ((c = gettoken(fp, filename)) != EOF) {
-		switch (c) {
-		case INCLUDE:
-			if (isixfr) {
-				c = ERRTOK;
-				break;
-			}
-			if (!getword(buf, sizeof buf, fp, 0))
-				/* file name*/
-				break;
-			if (!getword(tmporigin, sizeof(tmporigin), fp, 1))
-				strcpy(tmporigin, origin);
-			else {
-				if (makename(tmporigin, origin,
-					     sizeof(tmporigin)) == -1)
-					ERRTO("$INCLUDE makename failed");
-				endline(fp);
-			}
-			didinclude = 1;
-			i = db_load(buf, tmporigin, zp, domain, ISNOTIXFR);
-			errs += (i == -1) ? 1 : i;
-			continue;
-
-		case ORIGIN:
-			(void) strcpy(buf, origin);
-			if (!getword(origin, sizeof(origin), fp, 1))
-				break;
-			ns_debug(ns_log_load, 3, "db_load: origin %s, buf %s",
-				 origin, buf);
-			if (makename(origin, buf, sizeof(origin)) == -1)
-				ERRTO("$ORIGIN makename failed");
-			ns_debug(ns_log_load, 3, "db_load: origin now %s",
-				 origin);
-			continue;
-
-		case GENERATE:
-			if (!getword(buf, sizeof(buf), fp, 0))
-				ERRTOZ("$GENERATE missing RANGE");
-			n = sscanf(buf, "%d-%d/%d", &genstart, &genend,
-							&genstep);
-			if (n != 2 && n != 3)
-			    	ERRTO("$GENERATE invalid range");
-			if (n == 2)
-				genstep = 1;
-			if ((genend < genstart) || (genstart < 0) ||
-			    (genstep < 0))
-			    	ERRTO("$GENERATE invalid range");
-			if (!getword(genlhs, sizeof(genlhs), fp, 2))
-				ERRTOZ("$GENERATE missing LHS");
-			if (!getword(buf, sizeof(buf), fp, 0))
-				ERRTOZ("GENERATE missing TYPE");
-			type = sym_ston(__p_type_syms, buf, &success);
-			if (success == 0 || type == ns_t_any) {
-				ns_info(ns_log_load,
-					"%s: Line %d: $GENERATE unknown type: %s.",
-					filename, lineno, buf);
-				errs++;
-				endline(fp);
-				continue;
-			}
-			switch (type) {
-			case ns_t_ns:
-			case ns_t_ptr:
-			case ns_t_cname:
-			case ns_t_a:
-			case ns_t_aaaa:
-				break;
-			default:
-				ERRTO("$GENERATE unsupported type");
-			}
-			if (!getword(genrhs, sizeof(genrhs), fp, 2))
-				ERRTOZ("$GENERATE missing RHS");
-			for (i = genstart; i <= genend; i += genstep) {
-				if (genname(genlhs, i, origin, domain,
-						sizeof domain) == -1)
-					ERRTOZ("$GENERATE genname LHS failed");
-				context = ns_ownercontext(type, transport);
-				if (!ns_nameok(NULL, domain, class, zp, transport,
-					       context, domain, inaddr_any)) {
-					strcpy(buf, domain);
-					ERRTO("$GENERATE owner name error");
-				}
-				switch (type) {
-				case ns_t_ns:
-				case ns_t_ptr:
-				case ns_t_cname:
-					if (genname(genrhs, i, origin, (char *)data,
-							sizeof data) == -1)
-						ERRTOZ("$GENERATE genname RHS failed");
-					switch (type) {
-					case ns_t_ns:
-						context = hostname_ctx;
-						break;
-					case ns_t_ptr:
-						context = ns_ptrcontext(domain);
-						break;
-					case ns_t_cname:
-						context = domain_ctx;
-						break;
-					}
-					if (!ns_nameok(NULL, (char *)data, class, zp,
-							   transport, context,
-							   domain, inaddr_any)) {
-						strncpy(buf, domain, sizeof(buf));
-						buf[sizeof(buf)-1] = '\0';
-						ERRTO("$GENERATE name error");
-					}
-					n = strlen((char *)data) + 1;
-					break;
-				case ns_t_a:
-				case ns_t_aaaa:
-					if (genname(genrhs, i, NULL, (char *)data,
-							sizeof data) == -1)
-						ERRTOZ("$GENERATE genname RHS failed");
-					strncpy(buf, (char*)data, sizeof(buf));
-					buf[sizeof(buf)-1] = '\0';
-					switch (type) {
-					case ns_t_a:
-						if (!inet_aton(buf, &ina))
-							ERRTO("IP Address");
-						(void) ina_put(ina, data);
-						n = NS_INT32SZ;
-						break;
-					case ns_t_aaaa:
-						if (inet_pton(AF_INET6, buf, data) <= 0)
-							ERRTO("IPv6 Address");
-						n = NS_IN6ADDRSZ;
-						break;
-					}
-					break;
-				default:
-					   ERRTOZ("$GENERATE unsupported context");
-				}
-				dp = savedata(class, type, (u_int32_t)ttl,
-					      (u_char *)data, (int)n);
-				dp->d_zone = zp - zones;
-				dp->d_flags = dataflags;
-				dp->d_cred = DB_C_ZONE;
-				dp->d_clev = clev;
-				c = db_set_update(domain, dp, &state, dbflags,
-						  (dataflags & DB_F_HINT) != 0 ?
-					          &fcachetab : &hashtab,
-						  empty_from, &rrcount, lineno,
-						  filename);
-				if (c != OK) {
-					if (c == CNAMEANDOTHER)
-						errs++;
-				}
-			}
-			endline(fp);
-			continue;
-
-		case DNAME:
-			if (!getword(domain, sizeof(domain), fp, 1))
-				break;
-			if (makename(domain, origin, sizeof(domain)) == -1)
-				ERRTO("ownername makename failed");
-			goto gotdomain;
-
-		case DEFAULTTTL:
-			if (getttl(fp, filename, lineno, &n,
-				   &multiline) <= 0 || n > MAXIMUM_TTL) {
-				ERRTO("$TTL bad TTL value");
-			}
-			ttl = default_ttl = n;
-			continue;
-
-		case AT:
-			(void) strcpy(domain, origin);
-			goto gotdomain;
-
-		case DOT:
-			domain[0] = '\0';
-			/* FALLTHROUGH */
-		case CURRENT:
-		gotdomain:
-			if (!getword(buf, sizeof buf, fp, 0)) {
-				if (c == CURRENT)
-					continue;
-				break;
-			}
-			if (ns_parse_ttl(buf, &tmplong) < 0) {
-				if (zp->z_type == z_master &&
-				    default_warn &&
-				    (default_ttl == USE_MINIMUM)) {
-					ns_warning(ns_log_load,
-					   "Zone \"%s\" (file %s): %s",
-						zp->z_origin, filename,
-			"No default TTL set using SOA minimum instead");
-					default_warn = 0;
-				}
-				ttl = (u_int32_t)default_ttl;
-			} else {
-				ttl = tmplong;
-				if (ttl > MAXIMUM_TTL) {
-					ns_info(ns_log_load,
-				      "%s: Line %d: TTL > %u; converted to 0",
-						filename, lineno, MAXIMUM_TTL);
-					ttl = 0;
-				}
-				if (zp->z_type == Z_CACHE) {
-					/*
-					 * This allows the cache entry to age
-					 * while sitting on disk (powered off).
-					 */
-					if (ttl > max_cache_ttl)
-						ttl = max_cache_ttl;
-					ttl += sb.st_mtime;
-				}
-				if (!getword(buf, sizeof buf, fp, 0))
-					break;
-			}
-
-			/* Parse class (IN, etc) */
-			someclass = sym_ston(__p_class_syms, buf, &success);
-			if (success && someclass != zp->z_class) {
-				ns_info(ns_log_load,
-					"%s: Line %d: wrong class: %s.",
-					filename, lineno,
-					p_class(someclass));
-				errs++;
-				break;
-			}
-			if (success && someclass != C_ANY) {
-				class = someclass;
-				(void) getword(buf, sizeof buf, fp, 0);
-			}
-
-			/* Parse RR type (A, MX, etc) */
-			type = sym_ston(__p_type_syms, buf, &success);
-			if (success == 0 || type == ns_t_any) {
-				ns_info(ns_log_load,
-					"%s: Line %d: Unknown type: %s.",
-					filename, lineno, buf);
-				errs++;
-				break;
-			}
-			if (ttl == USE_MINIMUM) 
-				ttl = zp->z_minimum;
-			context = ns_ownercontext(type, transport);
-			if (!ns_nameok(NULL, domain, class, zp, transport, context,
-				       domain, inaddr_any)) {
-				errs++;
-				ns_notice(ns_log_load,
-					  "%s:%d: owner name error",
-					  filename, lineno);
-				break;
-			}
-			context = domain_ctx;
-			switch (type) {
-			case ns_t_key:
-			case ns_t_sig:
-			case ns_t_nxt:
-			case ns_t_cert:
-				/*
-				 * Don't do anything here for these types --
-				 * they read their own input separately later.
-				 */
-				goto dont_get_word;
-
-			case ns_t_soa:
-			case ns_t_minfo:
-			case ns_t_rp:
-			case ns_t_ns:
-			case ns_t_cname:
-			case ns_t_mb:
-			case ns_t_mg:
-			case ns_t_mr:
-			case ns_t_ptr:
-				escape = 1;
-				break;
-			default:
-				escape = 0;
-			}
-			if (!getword(buf, sizeof buf, fp, escape))
-				break;
-			ns_debug(ns_log_load, 3,
-				 "d='%s', c=%d, t=%d, ttl=%u, data='%s'",
-				 domain, class, type, ttl, buf);
-			/*
-			 * Convert the ascii data 'buf' to the proper format
-			 * based on the type and pack into 'data'.
-			 */
-		dont_get_word:
-			switch (type) {
-			case ns_t_a:
-				if (!inet_aton(buf, &ina))
-					ERRTO("IP Address");
-				(void) ina_put(ina, data);
-				n = NS_INT32SZ;
-				break;
-
-			case ns_t_soa:
-				context = hostname_ctx;
-				goto soa_rp_minfo;
-			case ns_t_rp:
-			case ns_t_minfo:
-				context = mailname_ctx;
-				/* FALLTHROUGH */
-			soa_rp_minfo:
-				(void) strcpy((char *)data, buf);
-			       
-			        MAKENAME_OK((char *)data);
-				cp = (char *)(data + strlen((char *)data) + 1);
-				if (!getword(cp,
-					     (sizeof data) -
-					     (cp - (char*)data),
-					     fp, 1))
-					ERRTO("Domain Name");
-				if (type == ns_t_rp)
-					context = domain_ctx;
-				else
-					context = mailname_ctx;
-				MAKENAME_OK(cp);
-				cp += strlen((char *)cp) + 1;
-				if (type != ns_t_soa) {
-					n = cp - (char *)data;
-					break;
-				}
-				if (ns_samename(zp->z_origin, domain) != 1) {
-					errs++;
-					ns_error(ns_log_load,
-				"%s:%d: SOA for \"%s\" not at zone top \"%s\"",
-						 filename, lineno, domain,
-						 zp->z_origin);
-				}
-				c = getnonblank(fp, filename);
-				if (c == '(') {
-					multiline = 1;
-				} else {
-					multiline = 0;
-					ungetc(c, fp);
-				}
-				serial = zp->z_serial;
-				zp->z_serial = getnum(fp, filename,
-						      GETNUM_SERIAL);
-				if (getnum_error)
-					errs++;
-				n = (u_int32_t) zp->z_serial;
-				PUTLONG(n, cp);
-				if (serial != 0 &&
-				    SEQ_GT(serial, zp->z_serial)) {
-					ns_notice(ns_log_load,
-			 "%s:%d: WARNING: new serial number < old (%lu < %lu)",
-						  filename , lineno,
-						  zp->z_serial, serial);
-				}
-				if (getttl(fp, filename, lineno, &n,
-					   &multiline) <= 0) {
-					errs++;
-					n = INIT_REFRESH;
-				}
-				PUTLONG(n, cp);
-				zp->z_refresh = RANGE(n, MIN_REFRESH,
-						      MAX_REFRESH);
-				if (zp->z_type == Z_SECONDARY
-#if defined(STUBS)
-				    || zp->z_type == Z_STUB
-#endif
-				    ) {
-					ns_refreshtime(zp, MIN(sb.st_mtime,
-							       tt.tv_sec));
-					sched_zone_maint(zp);
-				}
-#ifdef BIND_UPDATE
-                                if ((zp->z_type == Z_PRIMARY) &&
-				    (zp->z_flags & Z_DYNAMIC))
-                                        if ((u_int32_t)zp->z_soaincrintvl >
-					    zp->z_refresh/3) {
-                                                ns_info(ns_log_load,
-		    "zone soa update time truncated to 1/3rd of refresh time");
-                                                zp->z_soaincrintvl =
-							zp->z_refresh / 3;
-                                        }
-#endif
-
-				if (getttl(fp, filename, lineno, &n,
-					   &multiline) <= 0) {
-					errs++;
-					n = INIT_REFRESH;
-				}
-				PUTLONG(n, cp);
-				zp->z_retry = RANGE(n, MIN_RETRY, MAX_RETRY);
-				if (getttl(fp, filename, lineno,
-					   &n, &multiline) <= 0) {
-					errs++;
-					n = INIT_REFRESH;
-				}
-				PUTLONG(n, cp);
-				zp->z_expire = RANGE(n, zp->z_refresh,
-						     MAX_EXPIRE);
-				if (getttl(fp, filename, lineno, &n,
-					   &multiline) <= 0) {
-					errs++;
-					n = 120;
-				}
-				PUTLONG(n, cp);
-				if (n > MAXIMUM_TTL) {
-					ns_info(ns_log_load,
-			   "%s: Line %d: SOA minimum TTL > %u; converted to 0",
-						filename, lineno, MAXIMUM_TTL);
-					zp->z_minimum = 0;
-				} else
-					zp->z_minimum = n;
-				if (ttl == USE_MINIMUM)
-					ttl = n;
-				n = cp - (char *)data;
-				if (multiline) {
-					buf[0] = getnonblank(fp, filename);
-					buf[1] = '\0';
-					if (buf[0] != ')')
-						ERRTO("SOA \")\"");
-					multiline = 0;
-					endline(fp);
-				}
-                                read_soa++;
-				if (zp->z_type == Z_PRIMARY)
-					fixup_soa(filename, zp);
-				break;
-
-			case ns_t_wks:
-				/* Address */
-				if (!inet_aton(buf, &ina))
-					ERRTO("WKS IP Address");
-				(void) ina_put(ina, data);
-				/* Protocol */
-				data[INADDRSZ] = getprotocol(fp, filename);
-				/* Services */
-				n = getservices(NS_INT32SZ + sizeof(char),
-						(char *)data, fp, filename);
-				break;
-
-			case ns_t_ns:
-				if (ns_samename(zp->z_origin, domain) == 1)
-					read_ns++;
-				context = hostname_ctx;
-				goto cname_etc;
-			case ns_t_cname:
-			case ns_t_mb:
-			case ns_t_mg:
-			case ns_t_mr:
-				context = domain_ctx;
-				goto cname_etc;
-			case ns_t_ptr:
-				context = ns_ptrcontext(domain);
-			cname_etc:
-				(void) strcpy((char *)data, buf);
-				MAKENAME_OK((char *)data);
-				n = strlen((char *)data) + 1;
-				break;
-
-			case ns_t_naptr:
-			/* Order Preference Flags Service Replacement Regexp */
-				n = 0;
-				cp = buf;
-				/* Order */
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				if (cp == buf || n > 65535)
-					ERRTO("NAPTR Order");
-				cp = (char *)data;
-				PUTSHORT((u_int16_t)n, cp);
-
-				/* Preference */
-				n = getnum(fp, filename, GETNUM_NONE);
-				if (getnum_error || n > 65536)
-					ERRTO("NAPTR Preference");
-				PUTSHORT((u_int16_t)n, cp);
-
-                                /* Flags */
-                                if (!getword(buf, sizeof buf, fp, 0))
-					ERRTO("NAPTR Flags");
-                                n = strlen(buf);
-				if (n > 255)
-					ERRTO("NAPTR Flags too big");
-                                *cp++ = n;
-                                memcpy(cp, buf, (int)n);
-                                cp += n;
-
-                                /* Service Classes */
-                                if (!getword(buf, sizeof buf, fp, 0))
-					ERRTO("NAPTR Service Classes");
-                                n = strlen(buf);
-				if (n > 255)
-					ERRTO("NAPTR Service Classes too big");
-                                *cp++ = n;
-                                memcpy(cp, buf, (int)n);
-                                cp += n;
-
-                                /* Pattern */
-                                if (!getword(buf, sizeof buf, fp, 0))
-					ERRTO("NAPTR Pattern");
-                                n = strlen(buf);
-				if (n > 255)
-					ERRTO("NAPTR Pattern too big");
-                                *cp++ = n;
-                                memcpy(cp, buf, (int)n);
-                                cp += n;
-
-				/* Replacement */
-				if (!getword(buf, sizeof buf, fp, 1))
-					ERRTO("NAPTR Replacement");
-				n = strlen(buf);
-				if (n > data_size - ((u_char *)cp - data))
-					ERRTO("NAPTR Replacement too big");
-				(void) strcpy((char *)cp, buf);
-				context = domain_ctx;
-				MAKENAME_OK(cp);
-				/* advance pointer to end of data */
-				cp += strlen((char *)cp) +1;
-
-				/* now save length */
-				n = (cp - (char *)data);
-				break;
-
-
-			case ns_t_mx:
-			case ns_t_afsdb:
-			case ns_t_rt:
-			case ns_t_srv:
-				n = 0;
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				if ((cp == buf) || (n > 65535))
-					ERRTO("Priority");
-				cp = (char *)data;
-				PUTSHORT((u_int16_t)n, cp);
-
-				if (type == ns_t_srv) {
-					n = getnum(fp, filename, GETNUM_NONE);
-					if (getnum_error || n > 65536)
-						ERRTO("SRV RR");
-					PUTSHORT((u_int16_t)n, cp);
-
-					n = getnum(fp, filename, GETNUM_NONE);
-					if (getnum_error || n > 65536)
-						ERRTO("SRV RR");
-					PUTSHORT((u_int16_t)n, cp);
-				}
-
-				if (!getword(buf, sizeof buf, fp, 1))
-					ERRTO("Domain Name");
-				(void) strcpy((char *)cp, buf);
-				context = hostname_ctx;
-				MAKENAME_OK(cp);
-				/* advance pointer to end of data */
-				cp += strlen((char *)cp) +1;
-
-				/* now save length */
-				n = (cp - (char *)data);
-				break;
-
-			case ns_t_px:
-				context = domain_ctx;
-				n = 0;
-				data[0] = '\0';
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				if ((cp == buf) || (n > 65535))
-					ERRTO("PX Priority");
-				cp = (char *)data;
-				PUTSHORT((u_int16_t)n, cp);
-
-				if (!getword(buf, sizeof buf, fp, 0))
-					ERRTO("PX Domain1");
-				(void) strcpy((char *)cp, buf);
-				MAKENAME_OK(cp);
-				/* advance pointer to next field */
-				cp += strlen((char *)cp) + 1;
-				if (!getword(buf, sizeof buf, fp, 0))
-					ERRTO("PX Domain2");
-				(void) strcpy((char *)cp, buf);
-				MAKENAME_OK(cp);
-				/* advance pointer to end of data */
-				cp += strlen((char *)cp) + 1;
-
-				/* now save length */
-				n = (cp - (char *)data);
-				break;
-
-			case ns_t_hinfo:
-				n = getcharstring(buf, (char *)data, type,
-						  2, 2, fp, filename);
-				if (n == 0)
-					ERRTO("HINFO RR");
-				break;
-
-			case ns_t_isdn:
-				n = getcharstring(buf, (char *)data, type,
-						  1, 2, fp, filename);
-				if (n == 0)
-					ERRTO("ISDN RR");
-				break;
-
- 			case ns_t_txt:
-				n = getcharstring(buf, (char *)data, type,
-						  1, 0, fp, filename);
-				if (n == 0)
-					ERRTO("TXT RR");
-				break;
-
-
-			case ns_t_x25:
-				n = getcharstring(buf, (char *)data, type,
-						  1, 1, fp, filename);
-				if (n == 0)
-					ERRTO("X25 RR");
-				break;
-
-			case ns_t_nsap:
-				n = inet_nsap_addr(buf, (u_char *)data,
-						   sizeof data);
-				if (n == 0)
-					ERRTO("NSAP RR");
-				endline(fp);
-				break;
-
-			case ns_t_aaaa:
-				if (inet_pton(AF_INET6, buf, data) <= 0)
-					ERRTO("IPv4 Address");
-				n = NS_IN6ADDRSZ;
-				endline(fp);
-				break;
-
-			case ns_t_nxt:
-			case ns_t_key: 
-			case ns_t_cert:
-		        case ns_t_sig: {
-				char *errmsg = NULL;
-				int ret;
-				if (ttl == USE_MINIMUM)	/* no ttl set */
-					ttl = 0;
-				ret = parse_sec_rdata(buf, sizeof(buf), 0,
-							  data, sizeof(data),
-							  fp, zp, domain, ttl,
-							  type, domain_ctx,
-							  transport, &errmsg);
-				if (ret < 0) {
-					errtype = errmsg;
-					goto err;
-				}
-				else
-					n = ret;
-				break;
-			}
-
-
-			case ns_t_loc:
-                                cp = buf + (n = strlen(buf));
-				*cp = ' ';
-				cp++;
-				n++;
-				while ((i = getc(fp), *cp = i, i != EOF)
-                                       && *cp != '\n'
-                                       && (n < MAXDATA)) {
-					cp++; n++;
-                                }
-                                if (*cp == '\n') /* leave \n for getword */
-					ungetc(*cp, fp);
-                                *cp = '\0';
-				/* now process the whole line */
-				n = loc_aton(buf, (u_char *)data);
-				if (n == 0)
-					goto err;
-				endline(fp);
-				break;
-
-
-			default:
-				goto err;
-			}
-			/*
-			 * Ignore data outside the zone.
-			 */
-			if (zp->z_type != Z_CACHE &&
-			    !ns_samedomain(domain, zp->z_origin))
-			{
-				ns_info(ns_log_load,
-			    "%s:%d: data \"%s\" outside zone \"%s\" (ignored)",
-					filename, lineno, domain,
-					zp->z_origin);
-				continue;
-			}
-			if (ttl == USE_MINIMUM)	/* no ttl set */
-				ttl = 0;
-			dp = savedata(class, type, (u_int32_t)ttl,
-				      (u_char *)data, (int)n);
-			dp->d_zone = zp - zones;
-			dp->d_flags = dataflags;
-			dp->d_cred = DB_C_ZONE;
-			dp->d_clev = clev;
-			c = db_set_update(domain, dp, &state, dbflags,
-					  (dataflags & DB_F_HINT) != 0 ?
-					  &fcachetab : &hashtab, 
-					  empty_from, &rrcount, lineno,
-					  filename);
-			if (c == CNAMEANDOTHER)
-				errs++;
-			continue;
-
-		case ERRTOK:
-			break;
-		}
- err:
-		errs++;
-		ns_notice(ns_log_load, "%s:%d: %s error near (%s)",
-			  filename, empty_token ? (lineno - 1) : lineno,
-			  errtype, buf);
-		if (!empty_token)
-			endline(fp);
-	}
-	c = db_set_update(NULL, NULL, &state, dbflags,
-			  (dataflags & DB_F_HINT) ? &fcachetab : &hashtab,
-			  empty_from, &rrcount, lineno, filename);
-	if (c != OK) {
-		if (c == CNAMEANDOTHER)
-			errs++;
-	}
-
-	(void) my_fclose(fp);
-	lineno = slineno;
-	if (!ininclude) {
-		if (didinclude) {
-			zp->z_flags |= Z_INCLUDE;
-			zp->z_ftime = 0;
-		} else
-			zp->z_ftime = sb.st_mtime;
-		zp->z_lastupdate = sb.st_mtime;
-		if (zp->z_type != Z_CACHE && zp->z_type != Z_HINT) {
-			const char *msg = NULL;
-
-			if (read_soa == 0)
-				msg = "no SOA RR found";
-			else if (read_soa != 1)
-				msg = "multiple SOA RRs found";
-			else if (read_ns == 0)
-				msg = "no NS RRs found at zone top";
-			else if (!rrcount)
-				msg = "no relevant RRs found";
-			if (msg != NULL) {
-				errs++;
-				ns_warning(ns_log_load,
-					   "Zone \"%s\" (file %s): %s",
-					   zp->z_origin, filename, msg);
-			}
-		}
-		errs += purge_nonglue(zp->z_origin, 
-				      (dataflags & DB_F_HINT) ? fcachetab :
-				      hashtab, zp->z_class);
-		while (filenames) {
-			fn = filenames;
-			filenames = filenames->next;
-			freestr(fn->name);
-			memput(fn, sizeof *fn);
-		}
-		if (errs != 0)
-			ns_warning(ns_log_load,
-		   "%s zone \"%s\" (%s) rejected due to errors (serial %u)",
-				   zoneTypeString(zp->z_type), zp->z_origin,
-				   p_class(zp->z_class), zp->z_serial);
-		else
-			ns_info(ns_log_load,
-				"%s zone \"%s\" (%s) loaded (serial %u)",
-				zoneTypeString(zp->z_type), zp->z_origin,
-				p_class(zp->z_class), zp->z_serial);
-	}
-	if (errs != 0) {
-		zp->z_flags |= Z_DB_BAD;
-		zp->z_ftime = 0;
-	}
-#ifdef BIND_NOTIFY
-	if (errs == 0 && (!ininclude) &&
-	    (zp->z_type == z_master || zp->z_type == z_slave))
-		ns_notify(zp->z_origin, zp->z_class, ns_t_soa);
-#endif
-	return (errs);
-}
-
-void
-db_err(int err, char *domain, int type, const char *filename, int lineno) {
-	if (filename != NULL && err == CNAMEANDOTHER)
-		ns_warning(ns_log_load, "%s:%d:%s: CNAME and OTHER data error",
-			   filename, lineno, domain);
-	if (err != DATAEXISTS)
-		ns_debug(ns_log_load, 1, "update failed %s %d", 
-			 domain, type);
-}
-
-static int
-gettoken(FILE *fp, const char *src) {
-	int c;
-	char op[32];
-
-	for (;;) {
-		c = getc(fp);
- top:
-		switch (c) {
-		case EOF:
-			return (EOF);
-
-		case '$':
-			if (getword(op, sizeof op, fp, 0)) {
-				if (!strcasecmp("include", op))
-					return (INCLUDE);
-				if (!strcasecmp("origin", op))
-					return (ORIGIN);
-				if (!strcasecmp("generate", op))
-					return (GENERATE);
-				if (!strcasecmp("ttl", op))
-					return (DEFAULTTTL);
-			}
-			ns_notice(ns_log_db,
-				  "%s:%d: Unknown $ option: $%s", 
-				  src, lineno, op);
-			return (ERRTOK);
-
-		case ';':
-			while ((c = getc(fp)) != EOF && c != '\n')
-				;
-			goto top;
-
-		case ' ':
-		case '\t':
-			return (CURRENT);
-
-		case '.':
-			return (DOT);
-
-		case '@':
-			return (AT);
-
-		case '\n':
-			lineno++;
-			continue;
-
-		case '\r':
-			if (NS_OPTION_P(OPTION_TREAT_CR_AS_SPACE) != 0)
-				return (CURRENT);
-
-		default:
-			(void) ungetc(c, fp);
-			return (DNAME);
-		}
-	}
-}
-
-/* int
- * getword(buf, size, fp, preserve)
- *	get next word, skipping blanks & comments.
- *	'\' '\n' outside of "quotes" is considered a blank.
- * parameters:
- *	buf - destination
- *	size - of destination
- *	fp - file to read from
- *	preserve - should we preserve \ before \\ and \.?
- *   if preserve == 2, then keep all \
- * return value:
- *	0 = no word; perhaps EOL or EOF; lineno was incremented.
- *	1 = word was read
- */
-int
-getword(char *buf, size_t size, FILE *fp, int preserve) {
-	char *cp = buf;
-	int c, spaceok, once;
-
-	empty_token = 0;	/* XXX global side effect. */
-	once = 0;
-	while ((c = getc(fp)) != EOF) {
-		once++;
-		if (c == ';') {
-			/* Comment.  Skip to end of line. */
-			while ((c = getc(fp)) != EOF && c != '\n')
-				(void)NULL;
-			c = '\n';
-		}
-		if (c == '\n') {
-			/*
-			 * Unescaped newline.  It's a terminator unless we're
-			 * already midway into a token.
-			 */
-			if (cp != buf)
-				ungetc(c, fp);
-			else
-				lineno++;
-			break;
-		}
-		if (c == '"') {
-			/* "Quoted string."  Gather the whole string here. */
-			while ((c = getc(fp)) != EOF && c!='"' && c!='\n') {
-				if (c == '\\') {
-					if ((c = getc(fp)) == EOF)
-						c = '\\';
-					if (preserve)
-						switch (c) {
-						default:
-							if (preserve == 1)
-								break;
-						case '\\':
-						case '.':
-						case '0':
-						case '1':
-						case '2':
-						case '3':
-						case '4':
-						case '5':
-						case '6':
-						case '7':
-						case '8':
-						case '9':
-							if (cp >= buf+size-1)
-								break;
-							*cp++ = '\\';
-						}
-					if (c == '\n')
-						lineno++;
-				}
-				if (cp >= buf+size-1)
-					break;
-				*cp++ = c;
-			}
-			/*
-			 * Newline string terminators are
-			 * not token terminators.
-			 */
-			if (c == '\n') {
-				lineno++;
-				break;
-			}
-			/* Sample following character, check for terminator. */
-			if ((c = getc(fp)) != EOF)
-				ungetc(c, fp);
-			if (c == EOF || isspace(c)) {
-				*cp = '\0';
-				return (1);
-			}
-			continue;
-		}
-		spaceok = 0;
-		if (c == '\\') {
-			/* Do escape processing. */
-			if ((c = getc(fp)) == EOF)
-				c = '\\';
-			if (preserve)
-				switch (c) {
-				default:
-					if (preserve == 1)
-						break;
-				case '\\':
-				case '.':
-				case '0':
-				case '1':
-				case '2':
-				case '3':
-				case '4':
-				case '5':
-				case '6':
-				case '7':
-				case '8':
-				case '9':
-					if (cp >= buf+size-1)
-						break;
-					*cp++ = '\\';
-				}
-			if (c == ' ' || c == '\t')
-				spaceok++;
-		}
-		if (isspace(c) && !spaceok) {
-			/* Blank of some kind.  Skip run. */
-			while (isspace(c = getc(fp)) && c != '\n')
-				(void)NULL;
-			ungetc(c, fp);
-			/* Blank means terminator if the token is nonempty. */
-			if (cp != buf)		/* Trailing whitespace */
-				break;
-			continue;		/* Leading whitespace */
-		}
-		if (cp >= buf + size - 1)
-			break;
-		*cp++ = (char)c;
-	}
-	*cp = '\0';
-	if (cp == buf)
-		empty_token = 1;
-	if (!once)
-		lineno++;
-	return (cp != buf);
-}
-
-/*
- * int
- * getttl(fp, fn, ln, ttl, multiline)
- *	read a word from the file and parse it as a TTL.
- * return:
- *	1 ttl found
- *	0 word not read (EOF or EOL?)
- *	-1 word read but it wasn't a ttl
- * side effects:
- *	*ttl is written if the return value is to be 1.
- */
-int
-getttl(FILE *fp, const char *fn, int lineno, u_int32_t *ttl, int *multiline) {
-	char buf[MAXDATA];
-	u_long tmp;
-	int ch;
-	int len;
-
-	while (!feof(fp) && !getword(buf, sizeof buf, fp, 0) && *multiline)
-		(void)NULL;
-	len = strlen(buf);
-	if (*multiline && len && buf[len-1] == ')') {
-		buf[len-1] = '\0';
-		*multiline = 0;
-	}
-	if (ns_parse_ttl(buf, &tmp) < 0) {
-		ns_notice(ns_log_db, "%s:%d: expected a TTL, got \"%s\"",
-			  fn, lineno, buf);
-		return (-1);
-	}
-	if (*multiline) {
-		ch = getnonblank(fp, fn);
-		if (ch == EOF)
-			return (-1);
-		if (ch == ';')
-			endline(fp);
-		else
-			ungetc(ch, fp);
-	}
-	*ttl = (u_int32_t)tmp;
-	return (1);
-}
-
-/* Get multiline words.  Same parameters as getword.  Handles any
-   number of leading ('s or )'s in the words it sees.
-   FIXME:  We kludge recognition of ( and ) for multiline input.
-   Each paren must appear at the start of a (blank-separated) word,
-   which is particularly counter-intuitive for ).  Good enough for now,
-   until Paul rewrites the parser.  (gnu@toad.com, oct96)
-*/
-static int
-getmlword(char *buf, size_t size, FILE *fp, int preserve) {
-	char *p;
-	
-	do {
-		while (!getword (buf, size, fp, preserve)) {
-			/* No more words on this line.  See if doing the
-			   multiline thing. */
-			if (!getmlword_nesting) {	/* Nope... */
-				ungetc('\n', fp);	/* Push back newline */
-				lineno--;		/* Unbump the lineno */
-				empty_token = 0;	/* Undo this botch */
-				return 0;
-			}
-			if (feof(fp) || ferror(fp))
-				return 0;	/* Error, no terminating ')' */
-			/* Continue reading til we get a word... */
-		}
-		while ('(' == *buf) {
-			/* Word starts with paren.  Multiline mode.
-			   Move the rest of the word down over the paren.  */
-			getmlword_nesting++;
-			p = buf;
-			while (0 != (p[0]=p[1]))  p++;
-		}
-		while (')' == *buf) {
-			getmlword_nesting--;
-			p = buf;
-			while (0 != (p[0]=p[1]))  p++;
-		}
-	} while (buf[0] == 0);	/* loop til we get a non-( non-) word */
-
-	return 1;		/* Got a word... */
-}
-
-/* Get all the remaining words on a line, concatenated into one big
-   long (not too long!) string, with the whitespace squeezed out.
-   This routine, like getword(), does not swallow the newline if words seen.
-   This routine, unlike getword(), never swallows the newline if no words.
-   Parameters are the same as getword().  Result is:
-	 0	got no words at all
-	 1 	got one or more words
-	-1	got too many words, they don't all fit; or missing close paren
-*/
-static int
-getallwords(char *buf, size_t size, FILE *fp, int preserve) {
-	char *runningbuf  = buf;
-	int runningsize = size;
-	int len;
-
-	while (runningsize > 0) {
-		if (!getmlword (runningbuf, runningsize, fp, preserve)) {
-			return runningbuf!=buf;		/* 1 or 0 */
-		}
-		len = strlen(runningbuf);
-		runningbuf += len;
-		runningsize -= len;
-	}
-	return -1;			/* Error, String too long */
-}
-
-int
-getnum(FILE *fp, const char *src, int opt) {
-	int c, n;
-	int seendigit = 0;
-	int seendecimal = 0;
-	int m = 0;
-	int allow_dots = 0;
-
-	getnum_error = 0;
-#ifdef DOTTED_SERIAL
-	if (opt & GETNUM_SERIAL)
-		allow_dots++;
-#endif
-	for (n = 0; (c = getc(fp)) != EOF; ) {
-		if (isspace(c)) {
-			if (c == '\n')
-				lineno++;
-			if (seendigit)
-				break;
-			continue;
-		}
-		if (c == ';') {
-			while ((c = getc(fp)) != EOF && c != '\n')
-				;
-			if (c == '\n')
-				lineno++;
-			if (seendigit)
-				break;
-			continue;
-		}
-		if (getnum_error)
-			continue;
-		if (!isdigit(c)) {
-			if (c == ')' && seendigit) {
-				(void) ungetc(c, fp);
-				break;
-			}
-			if (seendigit && (opt & GETNUM_SCALED) &&
-			    strchr("KkMmGg", c) != NULL) {
-				switch (c) {
-				case 'K': case 'k':
-					n *= 1024;
-					break;
-				case 'M': case 'm':
-					n *= (1024 * 1024);
-					break;
-				case 'G': case 'g':
-					n *= (1024 * 1024 * 1024);
-					break;
-				}
-				break;
-			}
-			if (seendecimal || c != '.' || !allow_dots) {
-				ns_notice(ns_log_db,
-					  "%s:%d: expected a number",
-					  src, lineno);
-				getnum_error = 1;
-			} else {
-				if (!seendigit)
-					n = 1;
-#ifdef SENSIBLE_DOTS
-				n *= 10000;
-#else
-				n *= 1000;
-#endif
-				seendigit = 1;
-				seendecimal = 1;
-			}
-			continue;
-		}
-#ifdef SENSIBLE_DOTS
-		if (seendecimal)
-			m = m * 10 + (c - '0');
-		else
-			n = n * 10 + (c - '0');
-#else
-		n = n * 10 + (c - '0');
-#endif
-		seendigit = 1;
-	}
-	if (getnum_error)
-		return (0);
-	if (m > 9999) {
-		ns_info(ns_log_db, 
-			"%s:%d: number after the decimal point exceeds 9999", 
-			src, lineno);
-		getnum_error = 1;
-		return (0);
-	}
-	if (seendecimal) {
-		ns_info(ns_log_db,
-			"%s:%d: decimal serial number interpreted as %d",
-			src, lineno, n+m);
-	}
-	return (n + m);
-}
-
-#ifndef BIND_UPDATE
-static
-#endif
-int
-getnonblank(FILE *fp, const char *src) {
-	int c;
-
-	while ((c = getc(fp)) != EOF) {
-		if (isspace(c)) {
-			if (c == '\n')
-				lineno++;
-			continue;
-		}
-		if (c == ';') {
-			while ((c = getc(fp)) != EOF && c != '\n')
-				;
-			if (c == '\n')
-				lineno++;
-			continue;
-		}
-		return (c);
-	}
-	ns_info(ns_log_db, "%s:%d: unexpected EOF", src, lineno);
-	return (EOF);
-}
-
-/*
- * Replace all single "$"'s in "name" with "it".
- * ${delta} will add delta to "it" before printing.
- * ${delta,width} will change print width as well, zero fill is implied
- * ${delta,width,radix} will change radix as well, can be d, o, x, X.
- * i.e. ${0,2,X} will produce a two digit hex (upper case) with zero fill.
- * Append "origin" to name if required and validate result with makename.
- * To get a "$" or "{" in the output use \ before it.
- * Return 0 on no error or -1 on error.
- * Resulting name stored in "buf".
- */
-
-static int
-genname(char *name, int it, const char *origin, char *buf, int size) {
-	char *bp = buf;
-	char *eom = buf + size;
-	char *cp;
-	char numbuf[32];
-	char fmt[32];
-	int delta = 0;
-	int width;
-
-	while (*name) {
-		if (*name == '$') {
-			if (*(++name) == '$') {
-				/* should be deprecated.  how? */
-				if (bp >= eom)
-					return (-1);
-				*bp++ = *name++;
-			} else {
-				strcpy(fmt, "%d");
-				if (*name == '{') {
-					switch (sscanf(name, "{%d,%d,%1[doxX]}", &delta, &width, numbuf)) {
-					case 1:
-						break;
-					case 2:
-						sprintf(fmt, "%%0%dd", width);
-						break;
-					case 3:
-						sprintf(fmt, "%%0%d%c", width, numbuf[0]);
-						break;
-					default:
-						return (-1);
-					}
-					while (*name && *name++ != '}') {
-						continue;
-					}
-				}
-				sprintf(numbuf, fmt, it + delta);
-				cp = numbuf;
-				while (*cp) {
-					if (bp >= eom)
-						return (-1);
-					*bp++ = *cp++;
-				}
-			}
-		} else if (*name == '\\') {
-			if (*(++name) == '\0') {
-				if (bp >= eom)
-					return (-1);
-				*bp++ = '\\';
-			} else {
-				switch (*name) {
-				case '\\':
-				case '.':
-				case '0':
-				case '1':
-				case '2':
-				case '3':
-				case '4':
-				case '5':
-				case '6':
-				case '7':
-				case '8':
-				case '9':
-					if (bp >= eom)
-						return (-1);
-					*bp++ = '\\';
-				default:
-					if (bp >= eom)
-						return (-1);
-					*bp++ = *name++;
-				}
-			}
-		} else {
-			if (bp >= eom)
-				return (-1);
-			*bp++ = *name++;
-		}
-	}
-	if (bp >= eom)
-		return (-1);
-	*bp = '\0';
-	return (origin == NULL ? 0 : makename(buf, origin, size));
-}
-
-
-/*
- * Take name and fix it according to following rules:
- * "." means root.
- * "@" means current origin.
- * "name." means no changes.
- * "name" means append origin.
- */
-int
-makename(char *name, const char *origin, int size) {
-	int n;
-	u_char domain[MAXCDNAME];
-
-	switch (ns_name_pton(name, domain, sizeof(domain))) {
-	case -1:
-		return (-1);
-	case 1:		/* FULLY QUALIFIED */
-		break;
-	case 0: 	/* UNQUALIFIED */
-		if (strcmp(name, "@") == 0) /* must test raw name */
-			domain[0] = 0;
-		if ((n = dn_skipname(domain, domain+sizeof(domain))) == -1)
-			return (-1);
-		/* step back over root, append origin */
-		switch (ns_name_pton(origin, domain+n-1, sizeof(domain)-n+1)) {
-		case -1:
-			return (-1);
-		case 0:
-		case 1:
-			break;
-		}
-		break;
-	}
-	if (ns_name_ntop(domain, name, size) == -1)
-		return (-1);
-	if (name[0] == '.')	/* root */
-		name[0] = '\0';
-	return (0);
-}
-
-int
-makename_ok(char *name, const char *origin, int class, struct zoneinfo *zp,
-	    enum transport transport, enum context context,
-	    const char *owner, const char *filename, int lineno, int size)
-{
-	int ret = 1;
-
-	if (makename(name, origin, size) == -1) {
-		ns_info(ns_log_db, "%s:%d: makename failed",
-			filename, lineno);
-		return (0);
-	}
-	if (!ns_nameok(NULL, name, class, zp, transport, context, owner,
-		       inaddr_any)) {
-		ns_info(ns_log_db, "%s:%d: database naming error",
-			filename, lineno);
-		ret = 0;
-	}
-	return (ret);
-}
-
-void
-endline(FILE *fp) {
-	int c;
-
-	while ((c = getc(fp)) != '\0') {
-		if (c == '\n') {
-			(void) ungetc(c,fp);
-			break;
-		} else if (c == EOF) {
-			break;
-		}
-	}
-}
-
-#define MAXPORT 1024
-#define MAXLEN 24
-
-#ifndef BIND_UPDATE
-static
-#endif
-char
-getprotocol(FILE *fp, const char *src) {
-	int k;
-	char b[MAXLEN];
-
-	(void) getword(b, sizeof(b), fp, 0);
-		
-	k = protocolnumber(b);
-	if (k == -1)
-		ns_info(ns_log_db, "%s:%d: unknown protocol: %s.",
-			src, lineno, b);
-	return ((char) k);
-}
-
-#ifndef BIND_UPDATE
-static
-#endif
-int
-getservices(int offset, char *data, FILE *fp, const char *src) {
-	int j, ch, k, maxl, bracket;
-	char bm[MAXPORT/8];
-	char b[MAXLEN];
-
-	for (j = 0; j < MAXPORT/8; j++)
-		bm[j] = 0;
-	maxl = 0;
-	bracket = 0;
-	while (getword(b, sizeof(b), fp, 0) || bracket) {
-		if (feof(fp) || ferror(fp))
-			break;
-		if (strlen(b) == 0)
-			continue;
-		if (b[0] == '(') {
-			bracket++;
- 			continue;
-		}
-		if (b[0] == ')') {
-			bracket = 0;
-			while ((ch = getc(fp)) != EOF && ch != '\n')
-				(void)NULL;
-			if (ch == '\n')
-				lineno++;
-			break;
-		}
-		k = servicenumber(b);
-		if (k == -1) {
-			ns_info(ns_log_db,
-				"%s:%d: Unknown service '%s'",
-				src, lineno, b);
-			continue;
-		}
-		if ((k < MAXPORT) && (k)) {
-			bm[k/8] |= (0x80>>(k%8));
-			if (k > maxl)
-				maxl = k;
-		} else {
-			ns_info(ns_log_db,
-				"%s:%d: port no. (%d) too big",
-				src, lineno, k);
-		}
-	}
-	if (bracket)
-		ns_info(ns_log_db, "%s:%d: missing close paren",
-			src, lineno);
-	maxl = maxl/8+1;
-	memcpy(data+offset, bm, maxl);
-	return (maxl+offset);
-}
-
-/*
- * Converts a word to a u_int32_t.  Error if any non-numeric
- * characters in the word, except leading or trailing white space.
- */
-static u_int32_t
-wordtouint32(buf)
-	char *buf;
-{
-	u_long result;
-	u_int32_t res2;
-	char *bufend;
-
-	wordtouint32_error = 0;
-	result = strtoul(buf, &bufend, 0);
-	if (bufend == buf)
-		wordtouint32_error = 1;
-	else
-		while ('\0' != *bufend) {
-			if (isspace(*bufend))
-				bufend++;
-			else {
-				wordtouint32_error = 1;
-				break;
-			}
-		}
-	/* Check for truncation between u_long and u_int32_t */
-	res2 = result;
-	if (res2 != result)		
-		wordtouint32_error = 1;
-	return (res2);
-}
-
-static int
-getcharstring(char *buf, char *data, int type,
-	      int minfields, int maxfields,
-	      FILE *fp, const char *src)
-{
-	int nfield = 0, done = 0, n = 0, i;
-	char *b = buf;
-
-	do {
-		nfield++;
-		i = strlen(buf);
-#ifdef ALLOW_LONG_TXT_RDATA
-		b = buf;
-		if (type == ns_t_txt || type == ns_t_x25) {
-			while (i > MAXCHARSTRING
-			       && n + MAXCHARSTRING + 1 < MAXDATA) {
-				data[n] = (char)MAXCHARSTRING;
-				memmove(data + n + 1, b, MAXCHARSTRING);
-				n += MAXCHARSTRING + 1;
-				b += MAXCHARSTRING;
-				i -= MAXCHARSTRING;
-			}
-		}
-#endif /* ALLOW_LONG_TXT_RDATA */
-		if (i > MAXCHARSTRING) {
-			ns_info(ns_log_db,
-				"%s:%d: RDATA field %d too long",
-				src, lineno -1, nfield);
-			return (0);
-		}
-		if (n + i + 1 > MAXDATA) {
-			ns_info(ns_log_db,
-				"%s:%d: total RDATA too long",
-				src, lineno -1);
-			return (0);
-		}
-		data[n] = i;
-		memmove(data + n + 1, b, (int)i);
-		n += i + 1;
-		done = (maxfields && nfield >= maxfields);
-	} while (!done && getword(buf, MAXDATA, fp, 0));
-
-	if (nfield < minfields) {
-		ns_info(ns_log_db,
-			"%s:%d: expected %d RDATA fields, only saw %d",
-			src, lineno -1, minfields, nfield);
-		return (0);
-	}
-
-	if (done)
-		endline(fp);
-
-	return (n);
-}
-
-
-/* 
- * get_nxt_types(): Read the list of types in the NXT record.
- *
- * Data is the array where the bit flags are stored; it must
- * contain at least ns_t_any/NS_NXT_BITS bytes. 
- * FP is the input FILE *.
- * Filename is the sourcefile 
- *
- * The result is how many bytes are significant in the result.
- * ogud@tis.com 1995
- */
-static int
-get_nxt_types(u_char *data, FILE *fp, const char *filename) {
-	char b[MAXLABEL];	/* Not quite the right size, but good enough */
-	int maxtype=0;
-	int success;
-	int type;
-	int errs = 0;
-
-	memset(data, 0, NS_NXT_MAX/NS_NXT_BITS+1);
-
-	while (getmlword(b, sizeof(b), fp, 0)) {
-		if (feof(fp) || ferror(fp))
-			break;
-		if (strlen(b) == 0 || b[0] == '\n')
-			continue;
-
-		/* Parse RR type (A, MX, etc) */
-		type = sym_ston(__p_type_syms, (char *)b, &success);
-		if ((!success) || type == ns_t_any) {
-			errs++;
-			ns_info(ns_log_db,
-				"%s: Line %d: Unknown type: %s in NXT record.",
-				filename, lineno, b);
-			continue;
-		}
-		NS_NXT_BIT_SET(type, data);
-		if (type > maxtype)
-			maxtype = type;
-	}
-	if (errs)
-		return (0);
-	else
-		return (maxtype/NS_NXT_BITS+1);
-}
-
-/* sanity checks PRIMARY ONLY */
-static void
-fixup_soa(const char *fn, struct zoneinfo *zp) {
-	/* Sanity: give enough time for the zone to transfer (retry). */
-	if (zp->z_expire < (zp->z_refresh + zp->z_retry))
-		ns_notice(ns_log_db,
- "%s: WARNING SOA expire value is less than SOA refresh+retry (%u < %u+%u)",
-			  fn, zp->z_expire, zp->z_refresh, zp->z_retry);
-
-	/* Sanity. */
-	if (zp->z_expire < (zp->z_refresh  + 10 * zp->z_retry))
-		ns_warning(ns_log_db,
-"%s: WARNING SOA expire value is less than refresh + 10 * retry \
-(%u < (%u + 10 * %u))",
-			   fn, zp->z_expire, zp->z_refresh, zp->z_retry);
-
-	/*
-	 * Sanity: most hardware/telco faults are detected and fixed within
- 	 * a week, secondaries should continue to operate for this time.
-	 * (minimum of 4 days for long weekends)
-	 */
-	if (zp->z_expire < (7 * 24 * 3600))
-		ns_warning(ns_log_db,
-		      "%s: WARNING SOA expire value is less than 7 days (%u)",
-			   fn, zp->z_expire);
-
-	/*
-	 * Sanity: maximum down time if we havn't talked for six months 
-	 * war must have broken out.
-	 */
-	if (zp->z_expire > ( 183 * 24 * 3600))
-		ns_warning(ns_log_db,
-	         "%s: WARNING SOA expire value is greater than 6 months (%u)",
-			   fn, zp->z_expire);
-
-	/* Sanity. */
-	if (zp->z_refresh < (zp->z_retry * 2))
-		ns_warning(ns_log_db,
-        "%s: WARNING SOA refresh value is less than 2 * retry (%u < %u * 2)",
-			   fn, zp->z_refresh, zp->z_retry);
-}
-
-/* this function reads in the sig record rdata from the input file and
- * returns the following codes
- *  > 0     length of the recrod
- * ERR_EOF  end of file
- *
- */
-
-static int
-parse_sig_rr(char *buf, int buf_len, u_char *data, int data_size,
-	     FILE *fp, struct zoneinfo *zp, char *domain, u_int32_t ttl, 
-	     enum context domain_ctx, enum transport transport, char **errmsg)
-{
-/* The SIG record looks like this in the db file:
-   Name Cl SIG RRtype Algid [OTTL] Texp Tsig Kfoot Signer Sig
-  
-   where:  Name and Cl are as usual
-   SIG     is a keyword
-   RRtype  is a char string
-   ALGid   is  8 bit u_int
-   Labels  is  8 bit u_int
-   OTTL    is 32 bit u_int (optionally present)
-   Texp    is YYYYMMDDHHMMSS
-   Tsig    is YYYYMMDDHHMMSS
-   Kfoot   is 16-bit unsigned decimal integer
-   Signer  is a char string
-   Sig     is 64 to 319 base-64 digits
-   A missing OTTL is detected by the magnitude of the Texp value
-   that follows it, which is larger than any u_int.
-   The Labels field in the binary RR does not appear in the
-   text RR.
-  
-   It's too crazy to run these pages of SIG code at the right
-   margin.  I'm exdenting them for readability.
-*/
-	u_int32_t sig_type;
-	int dateerror;
-	int siglen, success;
-	u_char *cp;
-	u_int32_t al, la, n;
-	u_int32_t signtime, exptime, timetilexp;
-	u_int32_t origTTL;
-	enum context context;
-	time_t now;
-	char *errtype = "SIG error";
-	int i, my_buf_size = MAXDATA, errs = 0;
-
-	
-                /* The TTL gets checked against the Original TTL,
-                   and bounded by the signature expiration time, which 
-                   are both under the signature.  We can't let TTL drift
-                   based on the SOA record.  If defaulted, fix it now. 
-                   (It's not clear to me why USE_MINIMUM isn't eliminated
-                   before putting ALL RR's into the database.  -gnu@toad.com) */
-	if (ttl == USE_MINIMUM)
-		ttl = zp->z_minimum;
-
-	i = 0;
-	data[i] = '\0';
-	
-	getmlword_nesting = 0; /* KLUDGE err recovery */
-	
-	/* RRtype (char *)
-	 * if old style inp will contain the next token
-	 *copy that into buffer, otherwise read from file
-	 */
-	if (buf && buf_len == 0) 
-		if (!getmlword((char*)buf, my_buf_size, fp, 0))
-			ERRTO("SIG record doesn't specify type");
-	sig_type = sym_ston(__p_type_syms, buf, &success);
-	if (!success || sig_type == ns_t_any) {
-		/*
-		 * We'll also accept a numeric RR type,
-		 * for signing RR types that this version
-		 * of named doesn't yet understand.
-		 * In the ns_t_any case, we rely on wordtouint32
-		 * to fail when scanning the string "ANY".
-		 */
-		sig_type = wordtouint32 (buf);
-		if (wordtouint32_error || sig_type > 0xFFFF)
-			ERRTO("Unknown RR type in SIG record");
-	}
-	cp = &data[i];
-	PUTSHORT((u_int16_t)sig_type, cp);
-	i += 2;
-	
-	/* Algorithm id (8-bit decimal) */
-	if (!getmlword(buf, my_buf_size, fp, 0))
-		ERRTO("Missing algorithm ID");
-	al = wordtouint32(buf);
-	if (0 == al || wordtouint32_error || 255 <= al)
-		ERRTO("Bad algorithm number");
-	data[i] = (u_char) al;
-	i++;
-	
-	/*
-	 * Labels (8-bit decimal)
-	 */
-	if (!getmlword(buf, my_buf_size, fp, 0))
-		ERRTO("Missing label count");
-	la = wordtouint32(buf);
-	if (wordtouint32_error || 255 <= la ||
-	    (0 == la && *domain != '\0'))
-		ERRTO("Bad label count number");
-	data[i] = (u_char) la;
-	i++;
-	
-	/*
-	 * OTTL (optional u_int32_t) and
-	 * Texp (u_int32_t date)
-	 */
-	if (!getmlword(buf, my_buf_size, fp, 0))
-		ERRTO("OTTL and expiration time missing");
-	/*
-	 * See if OTTL is missing and this is a date.
-	 * This relies on good, silent error checking
-	 * in ns_datetosecs.
-	 */
-	exptime = ns_datetosecs(buf, &dateerror);
-	if (!dateerror) {
-		/* Output TTL as OTTL */
-		origTTL = ttl;
-		cp = &data[i];
-		PUTLONG (origTTL, cp);
-		i += 4;
-	} else {
-		/* Parse and output OTTL; scan TEXP */
-		origTTL = wordtouint32(buf);
-		if (0 >= origTTL || wordtouint32_error ||
-		    (origTTL > 0x7fffffff))
-			ERRTO("Original TTL value bad");
-		cp = &data[i];
-		PUTLONG(origTTL, cp);
-		i += 4;
-		if (!getmlword(buf, my_buf_size, fp, 0))
-			ERRTO("Expiration time missing");
-		exptime = ns_datetosecs(buf, &dateerror);
-	}
-	if (dateerror || exptime > 0x7fffffff || exptime <= 0)
-		ERRTO("Invalid expiration time");
-	cp = &data[i];
-	PUTLONG(exptime, cp);
-	i += 4;
-	
-	/* Tsig (u_int32_t) */
-	if (!getmlword(buf, my_buf_size, fp, 0))
-		ERRTO("Missing signature time");
-	signtime = ns_datetosecs(buf, &dateerror);
-	if (0 == signtime || dateerror)
-		ERRTO("Invalid signature time");
-	cp = &data[i];
-	PUTLONG(signtime, cp);
-	i += 4;
-	
-	/* Kfootprint (unsigned_16) */
-	if (!getmlword(buf, my_buf_size, fp, 0))
-		ERRTO("Missing key footprint");
-	n = wordtouint32(buf);
-	if (wordtouint32_error || n >= 0x0ffff)
-		ERRTO("Invalid key footprint");
-	cp = &data[i];
-	PUTSHORT((u_int16_t)n, cp);
-	i += 2;
-
-	/* Signer's Name */
-	if (!getmlword((char*)buf, my_buf_size, fp, 0))
-		ERRTO("Missing signer's name");
-	cp = &data[i];
-	strcpy((char *)cp, buf);
-	context = domain_ctx;
-	MAKENAME_OKZP((char *)cp, data_size);
-	i += strlen((char *)cp) + 1;
-
-	/*
-	 * Signature (base64 of any length)
-	 * We don't care what algorithm it uses or what
-	 * the internal structure of the BASE64 data is.
-	 */
-	if (!getallwords(buf, my_buf_size, fp, 0)) {
-		siglen = 0;
-	} else {
-		cp = &data[i];
-		siglen = b64_pton(buf, (u_char*)cp, data_size - i);
-		if (siglen < 0)
-			ERRTO("Signature block bad");
-	}
-	
-	/* set total length and we're done! */
-	n = i + siglen;
-	
-	/*
-	 * Check signature time, expiration, and adjust TTL.  Note
-	 * that all time values are in GMT (UTC), *not* local time.
-	 */
-	
-	now = time (0); /* need to find a better place for this  XXX ogud */
-	/* Don't let bogus name servers increase the signed TTL */
-	if (ttl > origTTL)
-		ERRTO("TTL is greater than signed original TTL");
-	
-	/* Don't let bogus signers "sign" in the future.  */
-	if (signtime > (u_int32_t)now)
-		ERRTO("signature time is in the future");
-	
-	/* Ignore received SIG RR's that are already expired.  */
-	if (exptime <= (u_int32_t)now)
-		ERRTO("expiration time is in the past");
-	
-	/* Lop off the TTL at the expiration time.  */
-	timetilexp = exptime - now;
-	if (timetilexp < ttl) {
-		ns_debug(ns_log_load, 1,
-			 "shrinking expiring %s SIG TTL from %d to %d",
-			 p_secstodate(exptime), ttl, timetilexp);
-		ttl = timetilexp;
-	}
-
-	/*
-	 * Check algorithm-ID and key structure, for
-	 * the algorithm-ID's that we know about.
-	 */
-	switch (al) {
-	case NS_ALG_MD5RSA:
-		if (siglen == 0)
-			ERRTO("No key for RSA algorithm");
-		if (siglen < 1)
-			ERRTO("Signature too short");
-		if (siglen > (NS_MD5RSA_MAX_BITS + 7) / 8)
-			ERRTO("Signature too long");
-		break;
-		
-	case NS_ALG_DH:
-		if (siglen < 1)
-			ERRTO("DH Signature too short");
-		break; /* need more tests here */
-		
-	case NS_ALG_DSA:
-		if (siglen < NS_DSA_SIG_SIZE)
-			ERRTO("DSS Signature too short");
-		else if (siglen > NS_DSA_SIG_SIZE)
-			ERRTO("DSS Signature too long ");
-		break; /* need more tests here */
-		
-	case NS_ALG_EXPIRE_ONLY:
-		if (siglen != 0)
-			ERRTO(
-				"Signature supplied to expire-only algorithm");
-		break;
-	case NS_ALG_PRIVATE_OID:
-		if (siglen == 0)
-			ERRTO("No ObjectID in key");
-		break;
-	default:
-		ERRTO("UNKOWN SIG algorithm");
-	}
-
-	/* Should we complain about algorithm-ID's that we	
-	   don't understand?  It may help debug some obscure
-	   cases, but in general we should accept any RR whether
-	   we could cryptographically process it or not; it
-	   may be being published for some newer DNS clients
-	   to validate themselves.  */
-	
-	endline(fp);  /* flush the rest of the line */
-	
-	return (n);
- err:
-	*errmsg = errtype;
-	return (-1);
-}
-
-static int
-parse_nxt_rr(char *buf, int buf_len, u_char *data, int data_size,
-	     FILE *fp, struct zoneinfo *zp, char *domain, enum context context,
-	     enum transport transport, char **errmsg)
-{
-	
-	/* The NXT record looks like:
-	   Name Cl NXT nextname RRT1 RRT2 MX A SOA ...
-	  
-	   where:  Name and Cl are as usual
-	   NXT     is a keyword
-	   nextname is the next valid name in the zone after "Name".
-	   All   names between the two are  known to be nonexistent.
-	   RRT's... are a series of RR type  names, which indicate that
-	   RR's of these types are published for "Name", and
-	   	that no RR's of any other types are published for "Name".
-
-	   When a NXT record is cryptographically signed, it proves the
-	   nonexistence of an RR (actually a whole set of RR's). 
-	*/
-	int n, errs = 0, i;
-	u_char *cp;
-/*	char *origin = zp->z_origin;
-	int class    = zp->z_class; */
-	*errmsg = "NXT name error";
-
-	(void) strcpy((char *)data, buf);
-	MAKENAME_OKZP((char *)data, data_size);
-	n = strlen((char *)data) + 1;
-	cp = n + data;
-	i = get_nxt_types(cp, fp, zp->z_source);
-	if( i > 0)
-		return (n + i);
-	*errmsg = "NXT type error";
- err:
-	return (-1);
-}
-
-
-static int
-parse_cert_rr(char *buf, int buf_len, u_char *data, int data_size, 
-	      FILE *fp, char **errmsg)
-{
-	/* Cert record looks like:
-	 *   Type Key_tag Alg Cert
-	 *   Type: certification type number (16)
-	 *   Key_tag: tag of corresponding KEY RR (16)
-	 *   Alg: algorithm of the KEY RR (8)
-	 *   Cert: base64 enocded block
-	 */
-	u_char *cp;
-	u_int32_t cert_type, key_tag, alg;
-	char *errtype = "CERT parse error";
-	int certlen, i, n, success;
-	
-	i = 0;
-	cp = &data[i];
-	cert_type = sym_ston(__p_cert_syms, buf, &success);
-	if (!success) {
-		cert_type = wordtouint32(buf);
-		if (wordtouint32_error || cert_type > 0xFFFF)
-			ERRTO("CERT type out of range");
-	}
-	PUTSHORT((u_int16_t)cert_type, cp);
-	i += INT16SZ;
-	
-	if (!getmlword((char*)buf, buf_len, fp, 0))
-		ERRTO("CERT doesn't specify type");
-	
-	key_tag = wordtouint32(buf);
-	if (wordtouint32_error || key_tag > 0xFFFF)
-		ERRTO("CERT KEY tag out of range");
-	
-	PUTSHORT((u_int16_t)key_tag, cp);
-	i += INT16SZ;
-	
-	if (!getmlword(buf, buf_len, fp, 0))
-		ERRTO("CERT missing algorithm ID");
-	
-	alg = sym_ston(__p_key_syms, buf, &success);
-	if (!success) {
-		alg = wordtouint32(buf);
-		if (wordtouint32_error || alg > 0xFF)
-			ERRTO("CERT KEY alg out of range");
-	}
-	
-	data[i++] = (u_char)alg;
-	
-	if (!getallwords(buf, buf_len, fp, 0)) {
-		certlen = 0;
-	}
-	else {
-		cp = &data[i];
-		certlen = b64_pton(buf, (u_char*)cp, sizeof(data) - i);
-		if (certlen < 0)
-			ERRTO("CERT blob has encoding error");
-	}
-				/* set total length */
-	n = i + certlen;
-	return (n);
- err:
-	*errmsg = errtype;
-	return (-1);
-	
-}
-
-static int
-parse_key_rr(char *buf, int buf_len, u_char *data, int data_size,
-	     FILE *fp, struct zoneinfo *zp, char *domain, enum context context,
-	     enum transport transport, char **errmsg)
-{
-	/* The KEY record looks like this in the db file:
-	 *	Name  Cl KEY Flags  Proto  Algid  PublicKeyData
-	 * where:
-	 *	Name,Cl per usual
-	 *	KEY	RR type
-	 *	Flags	4 digit hex value (unsigned_16)
-	 *	Proto	8 bit u_int
-	 *	Algid	8 bit u_int
-	 *	PublicKeyData
-	 *		a string of base64 digits,
-	 *		skipping any embedded whitespace.
-	 */
-	u_int32_t al, pr;
-	int nk, klen,i, n;
-	u_int32_t keyflags;
-	char *errtype = "KEY error";
-	u_char *cp, *expstart;
-	u_int expbytes, modbytes;
-
-	i = n = 0;
-	data[i] = '\0';
-	cp = data;
-	getmlword_nesting = 0; /* KLUDGE err recov. */
-
-	/*>>> Flags (unsigned_16)  */
-	keyflags = wordtouint32(buf);
-	if (wordtouint32_error || 0xFFFF < keyflags)
-		ERRTO("KEY flags error");
-	if (keyflags & NS_KEY_RESERVED_BITMASK)
-		ERRTO("KEY Reserved Flag Bit");
-	PUTSHORT(keyflags, cp);
-	
-	/*>>> Protocol (8-bit decimal) */
-	if (!getmlword((char*)buf, buf_len, fp, 0))
-		ERRTO("KEY Protocol Field");
-	pr = wordtouint32(buf);
-	if (wordtouint32_error || 255 < pr)
-		ERRTO("KEY Protocol Field");
-	*cp++ = (u_char) pr;
-	
-	/*>>> Algorithm id (8-bit decimal) */
-	if (!getmlword((char*)buf, buf_len, fp, 0))
-		ERRTO("KEY Algorithm ID");
-	al = wordtouint32(buf);
-	if (wordtouint32_error || 0 == al || 255 == al || 255 < al)
-		ERRTO("KEY Algorithm ID");
-	*cp++ = (u_char) al;
-	
-	/*>>> Extended KEY flag field in bytes 5 and 6 */
-	if (NS_KEY_EXTENDED_FLAGS & keyflags) {
-		u_int32_t keyflags2;
-		
-		if (!getmlword((char*)buf, buf_len, fp, 0))
-			ERRTO("KEY Flags Field");
-		keyflags2 = wordtouint32(buf);
-		if (wordtouint32_error || 0xFFFF < keyflags2)
-			ERRTO("Extended key flags error");
-		if (keyflags2 & NS_KEY_RESERVED_BITMASK2)
-			ERRTO("KEY Reserved Flag2 Bit");
-		PUTSHORT(keyflags2, cp);
-	}
-	
-	/*>>> Public Key data is in BASE64.
-	 *	We don't care what algorithm it uses or what
-	 *	the internal structure of the BASE64 data is.
-	 */
-	if (!getallwords(buf, MAXDATA, fp, 0))
-		klen = 0;
-	else {
-		/* Convert from BASE64 to binary. */
-		klen = b64_pton(buf, (u_char*)cp, 
-				data_size - (cp - data));
-		if (klen < 0)
-			ERRTO("KEY Public Key");
-	}
-	
-				/* set total length */
-	n = klen + (cp - data);
-	
-	/*
-	 * Now check for valid key flags & algs & etc, from the RFC.
-	 */
-	
-	if (NS_KEY_TYPE_NO_KEY == (keyflags & NS_KEY_TYPEMASK))
-		nk = 1;		/* No-key */
-	else
-		nk = 0;		/* have a key */
-	
-	if ((keyflags & (NS_KEY_NAME_TYPE | NS_KEY_TYPEMASK)) ==
-	    (NS_KEY_NAME_ZONE | NS_KEY_TYPE_CONF_ONLY))
-		/* Zone key must have Auth bit set. */
-		ERRTO("KEY Zone Key Auth. bit");
-	
-	if (al == 0 && nk == 0)
-		ERRTO("KEY Algorithm");
-	if (al != 0 && pr == 0)
-		ERRTO("KEY Protocols");
-
-	if (nk == 1 && klen != 0)
-		ERRTO("KEY No-Key Flags Set");
-	
-	if (nk == 0 && klen == 0)
-		ERRTO("KEY Type Spec'd");
-	
-	/* 
-	 *  Check algorithm-ID and key structure, for the algorithm-ID's 
-	 * that we know about. 
-	 */
-	switch (al) {
-	case NS_ALG_MD5RSA:
-		if (klen == 0)
-			break;
-		expstart = cp;
-		expbytes = *expstart++;
-		if (expbytes == 0)
-			GETSHORT(expbytes, expstart);
-		
-		if (expbytes < 1)
-			ERRTO("Exponent too short");
-		if (expbytes > (NS_MD5RSA_MAX_BITS + 7) / 8)
-			ERRTO("Exponent too long");
-		if (*expstart == 0)
-			ERRTO("Exponent w/ 0");
-		
-		modbytes = klen - (expbytes + (expstart - cp));
-		if (modbytes < (NS_MD5RSA_MIN_BITS + 7) / 8)
-			ERRTO("Modulus too short");
-		if (modbytes > (NS_MD5RSA_MAX_BITS + 7) / 8)
-			ERRTO("Modulus too long");
-		if (*(expstart+expbytes) == 0)
-			ERRTO("Modulus starts w/ 0");
-		break;
-		
-	case NS_ALG_DH: {
-		u_char *dh_cp;
-		u_int16_t dh_len, plen, glen, ulen;
-		
-		dh_cp = (u_char *)cp;
-		GETSHORT(plen, dh_cp);
-		if(plen < 16)
-			ERRTO("DH short plen");
-		dh_len = 2 + plen;
-		if(dh_len > klen)
-			ERRTO("DH plen > klen");
-		
-		GETSHORT(glen, dh_cp);
-		if(glen <= 0 || glen > plen)
-			ERRTO("DH glen bad");
-		dh_len = 2 + glen;
-		if(dh_len > klen)
-			ERRTO("DH glen > klen");
-		
-		GETSHORT(ulen, dh_cp);
-		if(ulen <= 0 || ulen > plen)
-			ERRTO("DH ulen bad");
-		dh_len = 2 + ulen;
-		if(dh_len > klen)
-			ERRTO("DH ulen > klen");
-		else if (dh_len < klen)
-			ERRTO("DH *len < klen");
-		break;
-	}
-	
-	case NS_ALG_DSA: {
-		u_int8_t t;
-		
-		if ( klen == 0)
-			break;
-		t = *cp;
-		if (t > 8)
-			ERRTO("DSA T value");
-		if (klen != (1 + 20 + 3 *(64+8*t)))
-			ERRTO("DSA length");
-		break;
-	}
-	
-	case NS_ALG_PRIVATE_OID:
-		if (klen == 0)
-			ERRTO("No ObjectID in key");
-		break;
-	default:
-		ERRTO("Unknown Key algorithm");
-	}
-	
-	endline(fp);  /* flush the rest of the line */
-	return (n);
- err:
-	*errmsg = errtype;
-	return (-1);
-} /*T_KEY*/
-		 
-/*
- * function to invoke DNSSEC specific parsing routines.
- * this is simpler than copying these complicated blocks into the
- * multiple souce files that read files (ixfr, nsupdate etc..).
- * this code should be in a library rather than in this file but
- * what the heck for now (ogud@tislabs.com)
- */
-int
-parse_sec_rdata(char *buf, int buf_len, int buf_full, u_char *data,
-		int data_size, FILE *fp, struct zoneinfo *zp,
-		char *domain, u_int32_t ttl, int type, enum context context,
-		enum transport transport, char **errmsg)
-{
-	int ret = -1;
-
-	getmlword_nesting = 0; /* KLUDGE err recov. */
-	if (!buf_full && buf && buf_len != 0) /* check if any data in buf */
-		if (!getmlword(buf, buf_len, fp, 1)) {
-			*errmsg = "unexpected end of input";
-			goto err;
-		}
-
-	switch (type) {
-	case ns_t_sig:
-		ret = parse_sig_rr(buf, buf_len, data, data_size, fp, zp, 
-				   domain, ttl, context, transport, errmsg);
-		break;
-	case ns_t_key:
-		ret = parse_key_rr(buf, buf_len, data, data_size, fp, zp,
-				   domain, context, transport, errmsg);
-		break;
-	case ns_t_nxt:
-		ret = parse_nxt_rr(buf, buf_len, data, data_size, fp, zp,
-				   domain, context, transport, errmsg);
-		break;
-	case ns_t_cert:
-		ret = parse_cert_rr(buf, buf_len, data, data_size, fp, errmsg);
-		break;
-	default:
-		ret = -1;
-		*errmsg = "parse_sec_rdata():Unsupported SEC type type";
-		goto err;
-	}
-	return (ret);
- err:
-	endline(fp);
-	return (ret);
-}
-
diff --git a/contrib/bind/bin/named/db_lookup.c b/contrib/bind/bin/named/db_lookup.c
deleted file mode 100644
index 00b3d8db4eab0..0000000000000
--- a/contrib/bind/bin/named/db_lookup.c
+++ /dev/null
@@ -1,341 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)db_lookup.c	4.18 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: db_lookup.c,v 8.26 2000/04/21 06:54:03 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Table lookup routines.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <stdio.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-/* 
- * Lookup 'name' and return a pointer to the namebuf;
- * NULL otherwise. If 'insert', insert name into tables.
- * Wildcard lookups are handled.
- */
-struct namebuf *
-nlookup(const char *name, struct hashbuf **htpp,
-	const char **fname, int insert)
-{
-	struct namebuf *np;
-	const char *cp;
-	int c;
-	u_int hval;
-	struct hashbuf *htp;
-	struct namebuf *parent = NULL;
-	int escaped = 0;
-
-	htp = *htpp;
-	hval = 0;
-	*fname = "???";
-	for (cp = name; (c = *cp++) != 0; (void)NULL) {
-		if (!escaped && (c == '.')) {
-			parent = np = nlookup(cp, htpp, fname, insert);
-			if (np == NULL)
-				return (NULL);
-			if (*fname != cp)
-				return (np);
-			if ((htp = np->n_hash) == NULL) {
-				if (!insert) {
-					if (ns_wildcard(NAME(*np)))
-						*fname = name;
-					return (np);
-				}
-				htp = savehash((struct hashbuf *)NULL);
-				np->n_hash = htp;
-			}
-			*htpp = htp;
-			break;
-		}
-
-		HASHIMILATE(hval, c);
-		if (escaped)
-			escaped = 0;
-		else if (c == '\\')
-			escaped = 1;
-	}
-	cp--;
-	/*
-	 * Lookup this label in current hash table.
-	 */
-	for (np = htp->h_tab[hval % htp->h_size];
-	     np != NULL;
-	     np = np->n_next) {
-		if (np->n_hashval == hval &&
-		    ((size_t)NAMELEN(*np) == (size_t)(cp - name)) && 
-		    (strncasecmp(name, NAME(*np), cp - name) == 0)) {
-			*fname = name;
-			return (np);
-		}
-	}
-	if (!insert) {
-		/*
-		 * Look for wildcard in this hash table.
-		 * Don't use a cached "*" name as a wildcard,
-		 * only authoritative.
-		 */
-		hval = ('*' & HASHMASK) % htp->h_size;
-		for (np = htp->h_tab[hval]; np != NULL; np = np->n_next) {
-			if (ns_wildcard(NAME(*np)) &&
-			    np->n_data && np->n_data->d_zone != 0) {
-				*fname = name;
-				return (np);
-			}
-		}
-		return (parent);
-	}
-	np = savename(name, cp - name);
-	np->n_parent = parent;
-	np->n_hashval = hval;
-	hval %= htp->h_size;
-	np->n_next = htp->h_tab[hval];
-	htp->h_tab[hval] = np;
-	/* Increase hash table size. */
-	if (++htp->h_cnt > (htp->h_size * AVGCH_NLOOKUP)) {
-		*htpp = savehash(htp);
-		if (parent == NULL) {
-			if (htp == hashtab) {
-				hashtab = *htpp;
-			} else {
-				fcachetab = *htpp;
-		        }
-		}
-		else
-			parent->n_hash = *htpp;
-		htp = *htpp;
-	}
-	*fname = name;
-	return (np);
-}
-
-/* struct namebuf *
- * np_parent(struct namebuf *np)
- *	Find the "parent" namebuf of np.
- *	This is tricky since the parent of "com" is "" and both are stored
- *	in the same hashbuf.
- * See also:
- *	the AXFR wart description in ns_axfr.c
- */
-struct namebuf *
-np_parent(struct namebuf *np) {
-	struct hashbuf *htp;
-	struct namebuf *np2;
-
-	if (np->n_parent != NULL || NAME(*np)[0] == '\0')
-		return (np->n_parent);
-
-	/* Try to figure out if np is pointing into the cache or hints. */
-	/* Try the cache first. */
-	htp = hashtab;
- try_again:
-	/* Search the hash chain that np should be part of. */
-	for (np2 = htp->h_tab[np->n_hashval % htp->h_size];
-	     np2 != NULL;
-	     np2 = np2->n_next)
-	{
-		if (np == np2) {	/* found it! */
-			/* "" hashes into the first bucket */
-			for (np = htp->h_tab[0]; np != NULL; np = np->n_next) {
-				if (NAME(*np)[0] == '\0')
-					/* found the root namebuf */
-					return (np);
-			}
-			/* there are no RR's with a owner name of "." yet */
-			return (NULL);
-		}
-	}
-	/* Try the hints. */
-	if (htp == hashtab) {
-		htp = fcachetab;
-		goto try_again;
-	}
-	ns_debug(ns_log_db, 1, "np_parent(0x%lx) couldn't find namebuf",
-		 (u_long)np);
-	return (NULL);  /* XXX shouldn't happen */
-}
-
-/* int
- * match(dp, class, type)
- *	Does data record `dp' match the class and type?
- * return value:
- *	boolean
- */
-int
-match(struct databuf *dp, int class, int type) {
-	if (dp->d_class != class && class != C_ANY)
-		return (0);
-	if (dp->d_type != type && dp->d_type != T_SIG && type != T_ANY)
-		return (0);
-	if (type != T_SIG && dp->d_type == T_SIG && SIG_COVERS(dp) != type)
-		return (0);
-	return (1);
-}
-
-/* static int
- * nxtlower(name, dp)
- *	Is the NXT/SIG NXT record 'lower'?
- * return value:
- *	boolean
- */
-static int
-nxtlower(const char *name, struct databuf *dp) {
-	/* An NXT is a lower NXT iff the SOA bit is set in the bitmap */
-	if (dp->d_type == T_NXT) {
-		u_char *nxtbitmap = dp->d_data + strlen((char *)dp->d_data) + 1;
-		return (NS_NXT_BIT_ISSET(T_SOA, nxtbitmap) ? 1 : 0);
-	}
-	/* If it's not an NXT, it's a SIG NXT.  An NXT record must be signed
-	 * by the zone, so the signer name must be the same as the owner.
-	 */
-	return (ns_samename(name, (char *)dp->d_data + SIG_HDR_SIZE) != 1 ? 0 : 1);
-}   
-
-/* int
- * nxtmatch(name, dp1, dp2)
- *	Do NXT/SIG NXT records `dp1' and `dp2' belong to the same NXT set?
- * return value:
- *	boolean
- */
-int
-nxtmatch(const char *name, struct databuf *dp1, struct databuf *dp2) {
-        int dp1_lower, dp2_lower;
-	int type1, type2;
-
-	if (dp1->d_type == ns_t_sig)
-		type1 = SIG_COVERS(dp1);
-	else
-		type1 = dp1->d_type;
-	if (dp2->d_type == ns_t_sig)
-		type2 = SIG_COVERS(dp2);
-	else
-		type2 = dp2->d_type;
-
-	if (type1 != ns_t_nxt || type2 != ns_t_nxt)
-		return (0);
-        dp1_lower = nxtlower(name, dp1);
-        dp2_lower = nxtlower(name, dp2);
-        return (dp1_lower == dp2_lower); 
-}
-
-/* int
- * rrmatch(name, dp1, dp2)
- *	Do data records `dp1' and `dp2' match in class and type?
- *	If both are NXTs, do they belong in the same NXT set?
- *	If both are SIGs, do the covered types match?
- *	If both are SIG NXTs, do the covered NXTs belong in the same set?
- *	Why is DNSSEC so confusing?
- * return value:
- *	boolean
- */
-int
-rrmatch(const char *name, struct databuf *dp1, struct databuf *dp2) {
-	if (dp1->d_class != dp2->d_class &&
-	    dp1->d_class != C_ANY && dp2->d_class != C_ANY)
-		return(0);
-	if (dp1->d_type != dp2->d_type &&
-	    dp1->d_type != T_ANY && dp2->d_type != T_ANY)
-		return(0);
-	if (dp1->d_type == T_NXT)
-		return(nxtmatch(name, dp1, dp2));
-	if (dp1->d_type != T_SIG)
-		return(1);
-	if (SIG_COVERS(dp1) == SIG_COVERS(dp2)) {
-		if (SIG_COVERS(dp1) == ns_t_nxt)
-			return(nxtmatch(name, dp1, dp2));
-		else
-			return(1);
-	}
-	return(0);
-}
diff --git a/contrib/bind/bin/named/db_save.c b/contrib/bind/bin/named/db_save.c
deleted file mode 100644
index 1fe0e73ff82f1..0000000000000
--- a/contrib/bind/bin/named/db_save.c
+++ /dev/null
@@ -1,211 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)db_save.c	4.16 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: db_save.c,v 8.27 2000/04/21 06:54:03 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Buffer allocation and deallocation routines.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-/*
- * Allocate a name buffer & save name.
- */
-struct namebuf *
-savename(const char *name, int len) {
-	struct namebuf *np;
-
-	/*
-	 * Note that MAXLABEL * 4 < 256, so a single length byte is enough.
-	 * Also, we use MAXLABEL * 4 because each label character can
-	 * expand into up to four characters when rendered in canonical
-	 * form.
-	 */
-	INSIST(len >= 0 && len <= (MAXLABEL * 4));
-	np = (struct namebuf *) memget(NAMESIZE(len));
-	if (np == NULL)
-		panic("savename: memget", NULL);
-	memset(np, 0, NAMESIZE(len));
-	NAMELEN(*np) = (unsigned)len;
-	memcpy(NAME(*np), name, len);
-	NAME(*np)[len] = '\0';
-	return (np);
-}
-
-/*
- * Allocate a data buffer & save data.
- */
-struct databuf *
-savedata(class, type, ttl, data, size)
-	int class, type;
-	u_int32_t ttl;
-	u_char *data;
-	int size;
-{
-	struct databuf *dp;
-	int bytes = DATASIZE(size);
-
-	dp = (struct databuf *)memget(bytes);
-	if (dp == NULL)
-		panic("savedata: memget", NULL);
-	if (class > CLASS_MAX)
-		panic("savedata: bad class", NULL);
-	memset(dp, 0, bytes);
-	dp->d_next = NULL;
-	dp->d_type = type;
-	dp->d_class = class;
-	dp->d_ttl = ttl;
-	dp->d_size = size;
-	dp->d_mark = 0;
-	dp->d_flags = 0;
-	dp->d_cred = 0;
-	dp->d_clev = 0;
-	dp->d_secure = DB_S_INSECURE;
-	dp->d_rcode = NOERROR;
-	dp->d_ns = NULL;
-	dp->d_nstime = 0;
-	memcpy(dp->d_data, data, dp->d_size);
-	return (dp);
-}
-
-/*
- * Allocate a data buffer & save data.
- */
-struct hashbuf *
-savehash(oldhtp)
-	struct hashbuf *oldhtp;
-{
-	struct hashbuf *htp;
-	struct namebuf *np, *nnp, **hp;
-	int n, newsize;
-
-	if (oldhtp == NULL)
-		newsize = hashsizes[0];
-	else {
-		for (n = 0; (newsize = hashsizes[n++]) != 0; (void)NULL)
-			if (oldhtp->h_size == newsize) {
-				newsize = hashsizes[n];
-				break;
-			}
-		if (newsize == 0)
-			newsize = oldhtp->h_size * 2 + 1;
-	}
-	ns_debug(ns_log_db, 4, "savehash GROWING to %d", newsize);
-	htp = (struct hashbuf *) memget(HASHSIZE(newsize));
-	if (htp == NULL)
-		ns_panic(ns_log_db, 0, "savehash: %s", strerror(errno));
-	htp->h_size = newsize;
-	memset(htp->h_tab, 0, newsize * sizeof(struct namebuf *));
-	if (oldhtp == NULL) {
-		htp->h_cnt = 0;
-		return (htp);
-	}
-	ns_debug(ns_log_db, 4, "savehash(%#lx) cnt=%d, sz=%d, newsz=%d",
-		 (u_long)oldhtp, oldhtp->h_cnt, oldhtp->h_size, newsize);
-	htp->h_cnt = oldhtp->h_cnt;
-	for (n = 0; n < oldhtp->h_size; n++) {
-		for (np = oldhtp->h_tab[n]; np != NULL; np = nnp) {
-			nnp = np->n_next;
-			hp = &htp->h_tab[np->n_hashval % htp->h_size];
-			np->n_next = *hp;
-			*hp = np;
-		}
-	}
-	oldhtp->h_cnt = 0;	/* Keep rm_hash() happy. */
-	rm_hash(oldhtp);
-	return (htp);
-}
diff --git a/contrib/bind/bin/named/db_sec.c b/contrib/bind/bin/named/db_sec.c
deleted file mode 100644
index 2ed4a4cc840a1..0000000000000
--- a/contrib/bind/bin/named/db_sec.c
+++ /dev/null
@@ -1,1097 +0,0 @@
-
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: db_sec.c,v 8.31 2000/04/21 06:54:04 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-#include <isc/tree.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-struct zpubkey {
-	struct dst_key *zpk_key; /* Should be DST_KEY */
-	char *zpk_name;
-	struct zpubkey *zpk_next;
-};
-
-typedef struct zpubkey *zpubkey_list;
-
-static int nxt_match_rrset(struct databuf *dp, struct db_rrset *rrset);
-
-/*
- * A converted databuf is a stripped down databuf after converting the 
- * data to wire format.
- */
-struct converted_databuf {
-	struct converted_databuf *cd_next;
-	u_char *cd_data;
-	int cd_size, cd_alloc;
-};
-
-/* All of the trusted keys and zone keys */
-static tree *trusted_keys = NULL;
-
-static int
-compare_pubkey (struct zpubkey *zpk1, struct zpubkey *zpk2) {
-	char ta[NS_MAXDNAME], tb[NS_MAXDNAME];
-
-	if (ns_makecanon(zpk1->zpk_name, ta, sizeof ta) < 0 ||
-	    ns_makecanon(zpk2->zpk_name, tb, sizeof tb) < 0)
-                return (-1);
-        return (strcasecmp(ta, tb));
-}
-
-static struct zpubkey *
-tree_srch_pubkey (const char *name) {
-	struct zpubkey tkey, *key;
-
-	tkey.zpk_name = (char *) name;
-	if (trusted_keys == NULL) {
-		tree_init(&trusted_keys);
-		return (NULL);
-	}
-	key = (struct zpubkey *)tree_srch(&trusted_keys, compare_pubkey,
-					  &tkey);
-	return (key);
-}
-
-static DST_KEY *
-find_public_key (const char *name, u_int16_t key_id) {
-	struct namebuf *knp;
-	struct hashbuf *htp;
-	struct databuf *dp;
-	const char *fname;
-	DST_KEY *key;
-
-	ns_debug(ns_log_default, 5, "find_public_key(%s, %d)", name, key_id);
-
-	htp = hashtab;
-	knp = nlookup (name, &htp, &fname, 0);
-	if (fname != name)
-		/* The name doesn't exist, so there's no key */
-		return (NULL);
-
-	for (dp = knp->n_data; dp != NULL; dp = dp->d_next) {
-		if (dp->d_type != ns_t_key || dp->d_secure < DB_S_SECURE)
-			continue;
-		key = dst_dnskey_to_key(name, dp->d_data, dp->d_size);
-		/* XXX what about multiple keys with same footprint? */
-		if (key) {
-			if (key->dk_id == ntohs(key_id))
-				return (key);
-			else
-				dst_free_key(key);
-		}
-	}
-	return (NULL);
-}
-
-
-static DST_KEY *
-find_trusted_key (const char *name, u_int16_t key_id) {
-	struct zpubkey *zpk;
-	zpubkey_list keylist = tree_srch_pubkey (name);
-
-	ns_debug(ns_log_default, 5, "find_trusted_key(%s, %d)", name, key_id);
-
-	for (zpk = keylist; zpk; zpk = zpk->zpk_next)
-		if (zpk->zpk_key->dk_id == ntohs(key_id))
-			return (zpk->zpk_key);
-
-	return (NULL);
-}
-
-int
-add_trusted_key (const char *name, const int flags, const int proto,
-		 const int alg, const char *str)
-{
-	zpubkey_list keylist;
-	struct zpubkey *zpk;
-	u_char buf[1024];
-	int n;
-
-	keylist = tree_srch_pubkey (name);
-
-	zpk = (struct zpubkey *) memget (sizeof (struct zpubkey));
-	if (zpk == NULL)
-		ns_panic(ns_log_default, 1,
-			 "add_trusted_key: memget failed(%s)", name);
-	n = b64_pton(str, buf, sizeof(buf));
-	if (n < 0)
-		goto failure;
-	zpk->zpk_key = dst_buffer_to_key(name, alg, flags, proto, buf, n);
-	if (zpk->zpk_key == NULL) {
-		ns_warning(ns_log_default,
-			   "add_trusted_key: dst_buffer_to_key(%s) failed",
-			   name);
-		goto failure;
-	}
-	zpk->zpk_name = zpk->zpk_key->dk_key_name;
-	zpk->zpk_next = NULL;
-
-	if (keylist == NULL) {
-		if (tree_add (&trusted_keys, compare_pubkey, zpk, NULL) == NULL)
-			goto failure;
-	}
-	else {
-		struct zpubkey *tkey = keylist;
-		while (tkey->zpk_next)
-			tkey = tkey->zpk_next;
-		tkey->zpk_next = zpk;
-	}
-
-	return (1);
- failure:
-	memput(zpk, sizeof (struct zpubkey));
-	return (0);
-}
-
-/* Can the signer sign records for this name?  This is a heuristic. */
-static int
-can_sign(const char *name, const char *signer) {
-	return (ns_samedomain(name, signer) &&
-		dn_count_labels(name) - dn_count_labels(signer) <= 2);
-}
-
-static int
-rrset_set_security(struct db_rrset *rrset, int slev) {
-	struct dnode *dnp;
-
-	for (dnp = rrset->rr_list; dnp != NULL; dnp = dnp->dn_next)
-		dnp->dp->d_secure = slev;
-	for (dnp = rrset->rr_sigs; dnp != NULL; dnp = dnp->dn_next)
-		dnp->dp->d_secure = slev;
-	return (slev);
-}
-
-static int
-convert_databuf(struct databuf *dp, struct converted_databuf *cdp) {
-	u_char *bp = cdp->cd_data;
-	u_char *cp = dp->d_data;
-	u_char *eob = cdp->cd_data + cdp->cd_alloc;
-	int len;
-	u_char buf[MAXDNAME];
-
-	switch (dp->d_type) {
-	    case ns_t_soa:
-	    case ns_t_minfo:
-	    case ns_t_rp:
-		if (eob - bp < strlen((char *)cp) + 1)
-			return (-1);
-		if (ns_name_pton((char *)cp, buf, sizeof buf) < 0)
-			return (-1);
-		len = ns_name_ntol(buf, bp, eob - bp);
-		if (len < 0)
-			return (-1);
-		bp += len;
-		cp += strlen((char *)cp) + 1;
-
-		if (eob - bp < strlen((char *)cp) + 1)
-			return (-1);
-		if (ns_name_pton((char *)cp, buf, sizeof buf) < 0)
-			return (-1);
-		len = ns_name_ntol(buf, bp, eob - bp);
-		if (len < 0)
-			return (-1);
-		bp += len;
-		cp += strlen((char *)cp) + 1;
-
-		if (dp->d_type == ns_t_soa) {
-			if (eob - bp < 5 * INT32SZ)
-				return (-1);
-			memcpy(bp, cp, 5 * INT32SZ);
-			bp += (5 * INT32SZ);
-			cp += (5 * INT32SZ);
-		}
-
-		break;
-
-	    case ns_t_ns:
-	    case ns_t_cname:
-	    case ns_t_mb:
-	    case ns_t_mg:
-	    case ns_t_mr:
-	    case ns_t_ptr:
-	    case ns_t_nxt:
-		if (eob - bp < strlen((char *)cp) + 1)
-			return (-1);
-		if (ns_name_pton((char *)cp, buf, sizeof buf) < 0)
-			return (-1);
-		len = ns_name_ntol(buf, bp, eob - bp);
-		if (len < 0)
-			return (-1);
-		bp += len;
-		cp += (len = strlen((char *)cp) + 1);
-
-		if (dp->d_type == ns_t_nxt) {
-			if (eob - bp < dp->d_size - len)
-				return (-1);
-			memcpy(bp, cp, dp->d_size - len);
-			bp += (dp->d_size - len);
-			cp += (dp->d_size - len);
-		}
-		break;
-
-	    case ns_t_srv:
-		if (eob - bp < 2 * INT16SZ)
-			return (-1);
-		memcpy(bp, cp, 2 * INT16SZ);
-		bp += (2 * INT16SZ);
-		cp += (2 * INT16SZ);
-		/* no break */
-	    case ns_t_rt:
-	    case ns_t_mx:
-	    case ns_t_afsdb:
-	    case ns_t_px:
-		if (eob - bp < INT16SZ)
-			return (-1);
-		memcpy (bp, cp, INT16SZ);
-		bp += INT16SZ;
-		cp += INT16SZ;
-
-		if (eob - bp < strlen((char *)cp) + 1)
-			return (-1);
-		if (ns_name_pton((char *)cp, buf, sizeof buf) < 0)
-			return (-1);
-		len = ns_name_ntol(buf, bp, eob - bp);
-		if (len < 0)
-			return (-1);
-		bp += len;
-		cp += strlen((char *)cp) + 1;
-
-		if (dp->d_type == ns_t_px) {
-			if (eob - bp < strlen((char *)cp) + 1)
-				return (-1);
-			if (ns_name_pton((char *)cp, buf, sizeof buf) < 0)
-				return (-1);
-			len = ns_name_ntol(buf, bp, eob - bp);
-			if (len < 0)
-				return (-1);
-			bp += len;
-			cp += strlen((char *)cp) + 1;
-		}
-		break;
-
-	    default:
-		if (eob - bp < dp->d_size)
-			return (-1);
-		memcpy(bp, cp, dp->d_size);
-		bp += dp->d_size;
-	}
-	cdp->cd_size = bp - cdp->cd_data;
-	return (cdp->cd_size);
-}
-
-static int
-digest_rr(char *envelope, int elen, struct converted_databuf *cdp,
-	  char *buffer, int blen)
-{
-	char *bp = buffer, *eob = buffer + blen;
-
-	if (eob - bp < elen)
-		return (-1);
-	memcpy (bp, envelope, elen);
-	bp += elen;
-
-	if (eob - bp < INT16SZ)
-		return (-1);
-	PUTSHORT(cdp->cd_size, bp);
-
-	if (eob - bp < cdp->cd_size)
-		return (-1);
-	memcpy (bp, cdp->cd_data, cdp->cd_size);
-	bp += cdp->cd_size;
-
-	return (bp - buffer);
-}
-
-/* Sorts the converted databuf in the list */
-static void
-insert_converted_databuf(struct converted_databuf *cdp,
-			struct converted_databuf **clist)
-{
-	struct converted_databuf *tcdp, *next;
-	int t;
-
-#define compare_cdatabuf(c1, c2, t) \
-	(t = memcmp(c1->cd_data, c2->cd_data, MIN(c1->cd_size, c2->cd_size)), \
-	 t == 0 ? c1->cd_size - c2->cd_size : t)
-
-	if (*clist == NULL) {
-		*clist = cdp;
-		return;
-	}
-
-	tcdp = *clist;
-	if (compare_cdatabuf(cdp, tcdp, t) < 0) {
-		cdp->cd_next = tcdp;
-		*clist = cdp;
-		return;
-	}
-
-	next = tcdp->cd_next;
-	while (next) {
-		if (compare_cdatabuf(cdp, next, t) < 0) {
-			cdp->cd_next = next;
-			tcdp->cd_next = cdp;
-			return;
-		}
-		tcdp = next;
-		next = next->cd_next;
-	}
-	tcdp->cd_next = cdp;
-#undef compare_cdatabuf
-}
-
-static void
-free_clist(struct converted_databuf *clist) {
-	struct converted_databuf *cdp;
-
-	while (clist != NULL) {
-		cdp = clist;
-		clist = clist->cd_next;
-		memput(cdp->cd_data, cdp->cd_alloc);
-		memput(cdp, sizeof(struct converted_databuf));
-	}
-}
-
-/* Removes all empty nodes from an rrset's SIG list. */
-static void
-rrset_trim_sigs(struct db_rrset *rrset) {
-	struct dnode *dnp, *odnp, *ndnp;
-
-	odnp = NULL;
-	dnp = rrset->rr_sigs;
-	while (dnp != NULL) {
-		if (dnp->dp != NULL) {
-			odnp = dnp;
-			dnp = dnp->dn_next;
-		}
-		else {
-			if (odnp != NULL)
-				odnp->dn_next = dnp->dn_next;
-			else
-				rrset->rr_sigs = dnp->dn_next;
-			ndnp = dnp->dn_next;
-			memput(dnp, sizeof(struct dnode));
-			dnp = ndnp;
-		}
-	}
-}
-
-int
-verify_set(struct db_rrset *rrset) {
-	DST_KEY *key = NULL;
-	struct sig_record *sigdata;
-	struct dnode *sigdn;
-	struct databuf *sigdp;
-	time_t now;
-	char *signer;
-	u_char name_n[MAXDNAME];
-	u_char *sig, *eom;
-	int trustedkey = 0, siglen, labels, len = 0, ret;
-	u_char *buffer = NULL, *bp;
-	u_char envelope[MAXDNAME+32], *ep;
-	struct dnode *dnp;
-	int bufsize = 2048; /* Large enough for MAXDNAME + SIG_HDR_SIZE */
-	struct converted_databuf *clist = NULL, *cdp;
-	int dnssec_failed = 0, dnssec_succeeded = 0;
-	int return_value;
-	int i;
-
-	if (rrset == NULL || rrset->rr_name == NULL) {
-		ns_warning (ns_log_default, "verify_set: missing rrset/name");
-		return (rrset_set_security(rrset, DB_S_FAILED));
-	}
-
-	if (rrset->rr_sigs == NULL)
-		return (rrset_set_security(rrset, DB_S_INSECURE));
-
-	ns_debug(ns_log_default, 5, "verify_set(%s, %s, %s)", rrset->rr_name,
-		 p_type(rrset->rr_type), p_class(rrset->rr_class));
-
-	now = time(NULL);
-
-	for (sigdn = rrset->rr_sigs; sigdn != NULL; sigdn = sigdn->dn_next) {
-		u_int32_t namefield;
-		struct sig_record sigrec;
-
-		sigdp = sigdn->dp;
-
-		eom = sigdp->d_data + sigdp->d_size;
-		if (sigdp->d_size < SIG_HDR_SIZE) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-		memcpy(&sigrec, sigdp->d_data, SIG_HDR_SIZE);
-		sigdata = &sigrec;
-		signer = (char *)sigdp->d_data + SIG_HDR_SIZE;
-		sig = (u_char *)signer + strlen(signer) + 1;
-		siglen = eom - sig;
-
-		/*
-		 * Don't verify a set if the SIG inception time is in
-		 * the future.  This should be fixed before 2038 (BEW)
-		 */
-		if (ntohl(sigdata->sig_time_n) > now)
-			continue;
-
-		/* An expired set is dropped, but the data is not. */
-		if (ntohl(sigdata->sig_exp_n) < now) {
-			db_freedata(sigdp);
-			sigdn->dp = NULL;
-			continue;
-		}
-
-		/* Cleanup from the last iteration if we continue'd */
-		if (trustedkey == 0 && key != NULL)
-			dst_free_key(key);
-
-		key = find_trusted_key(signer, sigdata->sig_keyid_n);
-
-		if (key == NULL) {
-			trustedkey = 0;
-			key = find_public_key(signer, sigdata->sig_keyid_n);
-		}
-		else    
-			trustedkey = 1;
-
-		/* if we don't have the key, either
-		 *   - the data should be considered insecure
-		 *   - the sig is not a dnssec signature
-		 */
-		if (key == NULL)
-			continue;
-
-		/* Can a key with this name sign the data? */
-		if (!can_sign(rrset->rr_name, signer))
-			continue;
-
-		/* Check the protocol and flags of the key */
-		if (key->dk_proto != NS_KEY_PROT_DNSSEC &&
-		    key->dk_proto != NS_KEY_PROT_ANY)
-			continue;
-		if (key->dk_flags & NS_KEY_NO_AUTH)
-			continue;
-		namefield = key->dk_flags & NS_KEY_NAME_TYPE;
-		if (namefield == NS_KEY_NAME_USER ||
-		    namefield == NS_KEY_NAME_RESERVED)
-			continue;
-		if (namefield == NS_KEY_NAME_ENTITY &&
-		    (key->dk_flags & NS_KEY_SIGNATORYMASK == 0))
-			continue;
-
-		/*
-		 * If we're still here, we have a non-null key that's either
-		 * a zone key or an entity key with signing authority.
-		 */
-
-		if (buffer == NULL) {
-			bp = buffer = memget(bufsize);
-			if (bp == NULL) {
-				return_value = DB_S_FAILED;
-				goto end;
-			}
-		}
-		else
-			bp = buffer;
-
-
-		/* Digest the fixed portion of the SIG record */
-		memcpy(bp, (char *) sigdata, SIG_HDR_SIZE);
-		bp += SIG_HDR_SIZE;
-
-		/* Digest the signer's name, canonicalized */
-		if (ns_name_pton(signer, name_n, sizeof name_n) < 0) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-		i = ns_name_ntol(name_n, (u_char *)bp, bufsize - SIG_HDR_SIZE);
-		if (i < 0) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-		bp += i;
-
-		/* create the dns record envelope:
-		 *     <name><type><class><Original TTL>
-		 */
-		if (ns_name_pton(rrset->rr_name, name_n, sizeof name_n) < 0 ||
-		    ns_name_ntol(name_n, (u_char *)envelope, sizeof envelope) < 0) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-
-		labels = dn_count_labels(rrset->rr_name);
-		if (labels > sigdata->sig_labels_n) {
-			ep = envelope;
-			for (i=0; i < (labels - 1 - sigdata->sig_labels_n); i++)
-				ep += (*ep+1);
-			i = dn_skipname(ep, envelope + sizeof envelope);
-			if (i < 0) {
-				return_value = DB_S_FAILED;
-				goto end;
-			}
-			envelope[0] = '\001';
-			envelope[1] = '*';
-			memmove(envelope + 2, ep, i);
-		}
-		i = dn_skipname(envelope, envelope + sizeof envelope);
-		if (i < 0) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-		ep = envelope + i;
-		PUTSHORT (rrset->rr_type, ep);
-		PUTSHORT (rrset->rr_class, ep);
-		if (envelope + sizeof(envelope) - ep < INT32SZ) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-		memcpy (ep, &sigdata->sig_ottl_n, INT32SZ);
-		ep += INT32SZ;
-
-		if (clist == NULL) {
-			for (dnp = rrset->rr_list;
-			     dnp != NULL;
-			     dnp = dnp->dn_next)
-			{
-				struct databuf *dp = dnp->dp;
-
-				cdp = memget(sizeof(struct converted_databuf));
-				if (cdp == NULL) {
-					return_value = DB_S_FAILED;
-					goto end;
-				}
-				memset(cdp, 0, sizeof(*cdp));
-				/* Should be large enough... */
-				cdp->cd_alloc = dp->d_size + 8;
-				cdp->cd_data = memget(cdp->cd_alloc);
-				if (cdp->cd_data == NULL) {
-					memput(cdp, sizeof(*cdp));
-					return_value = DB_S_FAILED;
-					goto end;
-				}
-				while (convert_databuf(dp, cdp) < 0) {
-					memput(cdp->cd_data, cdp->cd_alloc);
-					cdp->cd_alloc *= 2;
-					cdp->cd_data = memget(cdp->cd_alloc);
-					if (cdp->cd_data == NULL) {
-						memput(cdp, sizeof(*cdp));
-						return_value = DB_S_FAILED;
-						goto end;
-					}
-				}
-				insert_converted_databuf(cdp, &clist);
-			}
-		}
-
-		for (cdp = clist; cdp != NULL; cdp = cdp->cd_next) {
-			len = digest_rr((char *)envelope, ep-envelope, cdp,
-					(char *)bp, bufsize - (bp - buffer));
-			while (len < 0) {
-				u_char *newbuf;
-
-				/* Double the buffer size */
-				newbuf = memget(bufsize*2);
-				if (newbuf == NULL) {
-					return_value = DB_S_FAILED;
-					goto end;
-				}
-				memcpy(newbuf, buffer, bp - buffer);
-				bp = (bp - buffer) + newbuf;
-				memput(buffer, bufsize);
-				buffer = newbuf;
-				bufsize *= 2;
-
-				len = digest_rr((char *)envelope, ep-envelope,
-						cdp, (char *)bp,
-						bufsize - (bp - buffer));
-			}
-			bp += len;
-		}
-
-		if (len < 0) {
-			return_value = DB_S_FAILED;
-			goto end;
-		}
-
-		ret = dst_verify_data(SIG_MODE_ALL, key, NULL, buffer,
-				      bp - buffer, sig, siglen);
-
-		if (ret < 0) {
-			dnssec_failed++;
-			db_freedata(sigdp);
-			sigdn->dp = NULL;
-		}
-		else
-			dnssec_succeeded++;
-	}
-
-end:
-	if (dnssec_failed > 0)
-		rrset_trim_sigs(rrset);
-	if (trustedkey == 0 && key != NULL)
-		dst_free_key(key);
-
-	if (dnssec_failed > 0 && dnssec_succeeded == 0) {
-		ns_warning (ns_log_default,
-			    "verify_set(%s, %s, %s) failed",
-			    rrset->rr_name, p_type(rrset->rr_type),
-			    p_class(rrset->rr_class));
-		return_value = DB_S_FAILED;
-	}
-	else if (dnssec_succeeded > 0)
-		return_value = DB_S_SECURE;
-	else
-		return_value = DB_S_INSECURE;
-	free_clist(clist);
-	if (buffer != NULL)
-		memput(buffer, bufsize);
-	return (rrset_set_security(rrset, return_value));
-}
-
-static void
-rrset_free_partial(struct db_rrset *rrset, int free_data, struct dnode *start) {
-	struct dnode *dnp;
-	int found_start = 0;
-
-	ns_debug(ns_log_default, 5, "rrset_free(%s)", rrset->rr_name);
-
-	if (start == NULL)
-		found_start = 1;
-
-	while (rrset->rr_list) {
-		dnp = rrset->rr_list;
-		if (dnp == start)
-			found_start = 1;
-		rrset->rr_list = rrset->rr_list->dn_next;
-		if (dnp->dp != NULL && free_data == 1 && found_start == 1)
-			db_freedata(dnp->dp);
-		memput(dnp, sizeof(struct dnode));
-	}
-	while (rrset->rr_sigs) {
-		dnp = rrset->rr_sigs;
-		if (dnp == start)
-			found_start = 1;
-		rrset->rr_sigs = rrset->rr_sigs->dn_next;
-		if (dnp->dp != NULL && free_data == 1 && found_start == 1)
-			db_freedata(dnp->dp);
-		memput(dnp, sizeof(struct dnode));
-	}
-}
-
-static void
-rrset_free(struct db_rrset *rrset, int free_data) {
-	rrset_free_partial(rrset, free_data, NULL);
-}
-
-/*
- * This is called when we have an rrset with SIGs and no other data.
- * Returns 1 if we either found the necessary data or if the SIG can be added
- * with no other data.  0 indicates that the SIG cannot be added.
- */
-static int
-attach_data(struct db_rrset *rrset) {
-	int type, class;
-	struct databuf *dp, *newdp, *sigdp;
-	struct dnode *dnp;
-	struct namebuf *np;
-	struct hashbuf *htp;
-	char *signer;
-	const char *fname;
-	char *name = rrset->rr_name;
-
-	sigdp = rrset->rr_sigs->dp;
-
-	type = SIG_COVERS(sigdp);
-	class = sigdp->d_class;
-	signer = (char *)(sigdp + SIG_HDR_SIZE);
-
-	/* First, see if the signer can sign data for the name.  If not,
-	 * it's not a DNSSEC signature, so we can insert it with no
-	 * corresponding data.
-	 */
-	if (!can_sign(name, signer))
-		return (1);
-
-	htp = hashtab;
-	np = nlookup (name, &htp, &fname, 0);
-	if (fname != name)
-		return (0);
-
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (dp->d_type == type && dp->d_class == class) {
-			newdp = savedata(class, type, dp->d_ttl, dp->d_data,
-					 dp->d_size);
-			dnp = (struct dnode *) memget (sizeof (struct dnode));
-			if (dnp == NULL)
-				ns_panic(ns_log_default, 1,
-					 "attach_data: memget failed");
-			dnp->dp = newdp;
-			dnp->dn_next = rrset->rr_list;
-			rrset->rr_list = dnp;
-		}
-	}
-	if (rrset->rr_list != NULL)
-		return (1);
-	else
-		return (0);
-}
-
-static int
-rrset_db_update(struct db_rrset *rrset, int flags, struct hashbuf **htpp,
-		struct sockaddr_in from, int *rrcount)
-{
-	struct dnode *dnp;
-	struct databuf *dp;
-	int ret;
-
-	/* If we have any unattached SIG records that are DNSSEC signatures,
-	 * don't cache them unless we already have the corresponding data.
-	 * If we do cache unattached SIGs, we run into problems later if we
-	 * have a SIG X and get a query for type X.
-	 */ 
-	if (rrset->rr_list == NULL) {
-		if (attach_data(rrset) == 0) {
-			rrset_free(rrset, 1);
-			return (OK);
-		}
-
-		if (rrset->rr_list != NULL &&
-		    verify_set(rrset) == DB_S_FAILED)
-		{
-			rrset_free(rrset, 1);
-			return (OK);
-		}
-	}
-
-	for (dnp = rrset->rr_list; dnp != NULL; dnp = dnp->dn_next) {
-		dp = dnp->dp;
-		ret = db_update(rrset->rr_name, dp, dp, NULL,
-				flags, (*htpp), from);
-		if (ret != OK) {
-			/* XXX Probably should do rollback.  */
-			db_err(ret, rrset->rr_name, dp->d_type,
-			       dnp->file, dnp->line);
-			if (ret != DATAEXISTS) {
-				rrset_free_partial(rrset, 1, dnp);
-				return (ret);
-			}
-			db_freedata(dp);
-		}
-		if (rrcount != NULL)
-			(*rrcount)++;
-		dnp->dp = NULL;
-	}
-	for (dnp = rrset->rr_sigs; dnp != NULL; dnp = dnp->dn_next) {
-		dp = dnp->dp;
-		if (dp == NULL) /* verifyset() can remove sigs */
-			continue;
-		ret = db_update(rrset->rr_name, dp, dp, NULL,
-				flags, (*htpp), from);
-		if (ret != OK) {
-			/* XXX Probably should do rollback.  */
-			db_err(ret, rrset->rr_name, dp->d_type,
-			       dnp->file, dnp->line);
-			if (ret != DATAEXISTS) {
-				rrset_free_partial(rrset, 1, dnp);
-				return (ret);
-			}
-			db_freedata(dp);
-		}
-		if (rrcount != NULL)
-			(*rrcount)++;
-		dnp->dp = NULL;
-	}
-	rrset_free(rrset, 0);
-	return (OK);
-}
-
-static int
-rr_in_set(struct databuf *rr, struct dnode *set) {
-	struct dnode *dnp;
-
-	if (set == NULL)
-		return (0);
-
-	for(dnp = set; dnp != NULL; dnp = dnp->dn_next) {
-		if (dnp->dp->d_size == rr->d_size &&
-		    memcmp(dnp->dp->d_data, rr->d_data, dnp->dp->d_size) == 0)
-			return (1);
-	}
-	return (0);
-}
-
-static int
-add_to_rrset_list(struct db_rrset **rrsets, char *name, struct databuf *dp,
-		  int line, const char *file)
-{
-	struct db_rrset *rrset = *rrsets;
-	struct dnode *dnp;
-
-	while (rrset != NULL) {
-		if (rrset->rr_type != ns_t_nxt || dp->d_type != ns_t_nxt) {
-			if (dp->d_type == ns_t_sig) {
-				if (SIG_COVERS(dp) == rrset->rr_type)
-					break;
-			} else {
-				if (dp->d_type == rrset->rr_type)
-					break;
-			}
-		}
-		else if (nxt_match_rrset(dp, rrset))
-			break;
-		rrset = rrset->rr_next;
-	}
-
-	if (rrset != NULL) {
-		if ((dp->d_type == ns_t_sig && rr_in_set(dp, rrset->rr_sigs)) ||
-		    (dp->d_type != ns_t_sig && rr_in_set(dp, rrset->rr_list)))
-		{
-			db_freedata(dp);
-			return (DATAEXISTS);
-		}
-	} else {
-		rrset = (struct db_rrset *) memget(sizeof(struct db_rrset));
-		if (rrset == NULL)
-			 ns_panic(ns_log_default, 1,
-				  "add_to_rrset_list: memget failed(%s)", name);
-		memset(rrset, 0, sizeof(struct db_rrset));
-		rrset->rr_name = savestr(name, 1);
-		rrset->rr_class = dp->d_class;
-		if (dp->d_type == ns_t_sig)
-			rrset->rr_type = SIG_COVERS(dp);
-		else
-			rrset->rr_type = dp->d_type;
-		rrset->rr_next = *rrsets;
-		*rrsets = rrset;
-	}
-
-	dnp = (struct dnode *) memget(sizeof(struct dnode));
-	if (dnp == NULL)
-		ns_panic(ns_log_default, 1,
-			 "add_to_rrset_list: memget failed(%s)", name);
-	memset(dnp, 0, sizeof(struct dnode));
-	dnp->dp = dp;
-	if (dp->d_type == ns_t_sig) {
-		if (rrset->rr_sigs != NULL) {
-			struct dnode *fdnp;
-
-			/* Preserve the order of the RRs */
-			/* Add this one to the end of the list */
-			for (fdnp = rrset->rr_sigs;
-			     fdnp->dn_next != NULL;
-			     fdnp = fdnp->dn_next)
-				/* NULL */ ;
-			fdnp->dn_next = dnp;
-		} else
-			rrset->rr_sigs = dnp;
-	} else {
-		if (rrset->rr_list != NULL) {
-			struct dnode *fdnp;
-
-			/* Preserve the order of the RRs */
-			/* Add this one to the end of the list */
-			for (fdnp = rrset->rr_list;
-			     fdnp->dn_next != NULL;
-			     fdnp = fdnp->dn_next)
-				/* NULL */ ;
-			fdnp->dn_next = dnp;
-		} else
-			rrset->rr_list = dnp;
-	}
-	dnp->file = (char *) file;
-	dnp->line = line;
-	return (0);
-}
-
-static int
-update_rrset_list(struct db_rrset **rrsets, int flags, struct hashbuf **htpp,
-		  struct sockaddr_in from, int *rrcount)
-{
-	struct db_rrset *rrset = *rrsets, *next = NULL, *last = NULL;
-	int result = 0, tresult, cnameandother = 0;
-
-	while (rrset != NULL) {
-		if (rrset->rr_type == ns_t_key)
-			break;
-		last = rrset;
-		rrset = rrset->rr_next;
-	}
-
-	if (rrset != NULL && last != NULL) {
-		last->rr_next = rrset->rr_next;
-		rrset->rr_next = *rrsets;
-		*rrsets = rrset;
-	}
-
-	rrset = *rrsets;
-
-	while (rrset != NULL) {
-		if (verify_set(rrset) > DB_S_FAILED) {
-			ns_debug(ns_log_default, 10,
-				 "update_rrset_list(%s, %s): set verified",
-				  rrset->rr_name, p_type(rrset->rr_type));
-			tresult = rrset_db_update(rrset, flags, htpp,
-						  from, rrcount);
-			if (tresult == CNAMEANDOTHER)
-				cnameandother++;
-			if (tresult != OK)
-				result = tresult;
-		}
-		else {
-			rrset_free(rrset, 1);
-			result = DNSSECFAIL;
-		}
-		freestr(rrset->rr_name);
-		next = rrset->rr_next;
-		memput(rrset, sizeof(struct db_rrset));
-		rrset = next;
-	}
-	*rrsets = NULL;
-	if (cnameandother != 0)
-		return (CNAMEANDOTHER);
-	return (result);
-}
-
-int
-db_set_update(char *name, struct databuf *dp, void **state,
-	      int flags, struct hashbuf **htpp, struct sockaddr_in from,
-	      int *rrcount, int line, const char *file)
-{
-	struct db_rrset **rrsets;
-	struct db_rrset *rrset;
-	int result = 0;
-
-	ns_debug(ns_log_default, 5, "db_set_update(%s)",
-		 (name == NULL) ? "<NULL>" : (*name == 0) ? "." : name);
-
-	if (state == NULL)
-		ns_panic(ns_log_default, 1,
-			 "Called db_set_update with state == NULL");
-
-	rrsets = (struct db_rrset **) state;
-
-	if (*rrsets != NULL) {
-		rrset = *rrsets;
-		if (rrset->rr_name != NULL && dp != NULL &&
-		    name != NULL && ns_samename(name, rrset->rr_name) == 1 &&
-		    dp->d_class == rrset->rr_class)
-			return (add_to_rrset_list(rrsets, name, dp,
-						  line, file));
-	}
-
-	if (*rrsets != NULL)
-		result = update_rrset_list(rrsets, flags, htpp, from, rrcount);
-
-	if (dp != NULL) {
-		ns_debug(ns_log_default, 10,
-			 "db_set_update(%s), creating new list", name);
-
-		(void) add_to_rrset_list(rrsets, name, dp, line, file);
-	}
-	return (result);
-}
-
-static int
-nxt_match_rrset(struct databuf *dp, struct db_rrset *rrset) {
-	if (rrset->rr_list != NULL)
-		return (nxtmatch(rrset->rr_name, dp, rrset->rr_list->dp));
-	else
-		return (nxtmatch(rrset->rr_name, dp, rrset->rr_sigs->dp));
-}
diff --git a/contrib/bind/bin/named/db_tsig.c b/contrib/bind/bin/named/db_tsig.c
deleted file mode 100644
index e8e81f970352c..0000000000000
--- a/contrib/bind/bin/named/db_tsig.c
+++ /dev/null
@@ -1,158 +0,0 @@
-
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: db_tsig.c,v 8.6 2000/04/21 06:54:04 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-#include <isc/tree.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-typedef struct {
-	DST_KEY *key;
-	void *ctx;
-} tsig_axfr_state;
-
-#define TSIG_ALG_MD5 "HMAC-MD5.SIG-ALG.REG.INT"
-#define TSIG_ALG_MD5_SHORT "hmac-md5"
-
-char *
-tsig_alg_name(int value) {
-	if (value == KEY_HMAC_MD5)
-		return(TSIG_ALG_MD5);
-	else
-		return(NULL);
-}
-
-int
-tsig_alg_value(char *name) {
-	if (ns_samename(name, TSIG_ALG_MD5) == 1 ||
-	    strcasecmp(name, TSIG_ALG_MD5_SHORT) == 0)
-		return (KEY_HMAC_MD5);
-	else
-		return (-1);
-}
-
-DST_KEY *
-tsig_key_from_addr(struct in_addr addr) {
-	server_info si = si = find_server(addr);
-	if (si == NULL || si->key_list == NULL || si->key_list->first == NULL)
-		return(NULL);
-	return(si->key_list->first->key);
-}
-
-struct tsig_record *
-new_tsig(DST_KEY *key, u_char *sig, int siglen) {
-	struct tsig_record *tsig;
-
-	if (siglen > TSIG_SIG_SIZE)
-		return(NULL);
-	tsig = memget(sizeof(struct tsig_record));
-	if (tsig == NULL)
-		return(NULL);
-	tsig->key = key;
-	tsig->siglen = siglen;
-	memcpy(tsig->sig, sig, siglen);
-	return(tsig);
-}
-
-void
-free_tsig(struct tsig_record *tsig) {
-	if (tsig == NULL)
-		return;
-	memput(tsig, sizeof(struct tsig_record));
-}
diff --git a/contrib/bind/bin/named/db_update.c b/contrib/bind/bin/named/db_update.c
deleted file mode 100644
index 3bd9838b222f3..0000000000000
--- a/contrib/bind/bin/named/db_update.c
+++ /dev/null
@@ -1,989 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)db_update.c	4.28 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: db_update.c,v 8.42 2000/04/21 06:54:04 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-/* int
- * isRefByNS(name, htp)
- *	recurse through all of `htp' looking for NS RR's that refer to `name'.
- * returns:
- *	nonzero if at least one such NS RR exists
- * cautions:
- *	this is very expensive; probably you only want to use on fcachetab.
- */
-static int
-isRefByNS(const char *name, struct hashbuf *htp) {
-	struct namebuf *np;
-	struct databuf *dp;
-
-	for (np = htp->h_tab[0]; np != NULL; np = np->n_next) {
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if ((dp->d_class == C_ANY ||
-			     dp->d_class == C_IN ||
-			     dp->d_class == C_HS) &&
-			    dp->d_type == T_NS &&
-			    !dp->d_rcode &&
-			    ns_samename(name, (char *)dp->d_data) == 1) {
-				return (1);
-			}
-		}
-		if (np->n_hash && isRefByNS(name, np->n_hash))
-			return (1);
-	}
-	return (0);
-}
-
-
-/* int
- * findMyZone(struct namebuf *np, int class)
- *	surf the zone cuts and find this zone the hard way
- * return value:
- *	zone number or DB_Z_CACHE if it's outside a zone
- * interesting cases:
- *	    DEC.COM SOA (primary)
- *	CRL.DEC.COM NS  (in primary)
- *		if you start at CRL.. here, you find the DEC.COM zone
- *		if you start at NS.CRL.. here, you're in the cache
- *	    DEC.COM SOA (primary)
- *	CRL.DEC.COM NS  (in primary)
- *	CRL.DEC.COM SOA (secondary)
- *	CRL.DEC.COM NS  (in secondary)
- *		if you start at CRL.. here, you find the CRL.DEC.COM zone
- *		if you start at NS.CRL.. here, you're in the CRL.. zone
- */
-int
-findMyZone(struct namebuf *np, int class) {
-	for ((void)NULL; np; np = np_parent(np)) {
-		struct databuf *dp;
-
-		/* if we encounter an SOA, we're in its zone (which can be
-		 * the cache or an authoritative zone, depending).
-		 */
-		for (dp = np->n_data; dp; dp = dp->d_next)
-			if (match(dp, class, T_SOA) && dp->d_type == T_SOA)
-				return (dp->d_zone);
-
-		/* if we find an NS at some node without having seen an SOA
-		 * (above), then we're out in the cache somewhere.
-		 */
-		for (dp = np->n_data; dp; dp = dp->d_next)
-			if (match(dp, class, T_NS) && dp->d_type == T_NS)
-				return (DB_Z_CACHE);
-	}
-
-	/* The cache has not yet been primed. */
-	return (DB_Z_CACHE);
-}
-
-/* int
- * db_update(name, odp, newdp, savedpp, flags, htp, from)
- *	update data base node at `name'.  `flags' controls the action.
- * side effects:
- *	inverse query tables modified, if we're using them.
- * return value:
- *	OK - success
- *	NONAME - name doesn't exist
- *	AUTH - you can't do that
- *	DATAEXISTS - there's something there and DB_NODATA was specified
- *	NODATA - there's no data, and (DB_DELETE or DB_MEXIST) was spec'd
- *
- *	Policy: How to add data if one more RR is -ve data
- *
- *	NEND	NOERROR_NODATA
- *	NXD	NXDOMAIN
- *
- *				match
- *				old
- *			Data	NEND	NXD
- *		Data	Merge	Data	Data
- *	new	NEND	NEND	NEND	NEND
- *		NXD	NXD	NXD	NXD
- *
- *			     no match
- *				old
- *			Data	NEND	NXD
- *		Data	Merge	Merge	Data
- *	new	NEND	Merge	Merge	NEND
- *		NXD	NXD	NXD	NXD
- *
- */
-/* XXX:	this code calls nlookup, which can create namebuf's.  if this code
- *	has to exit with a fatal error, it should scan from the new np upward
- *	and for each node which has no children and no data it should remove
- *	the namebuf.  design notes: (1) there's no harm in doing this even if
- *	success occurred; (2) stopping on the first nonremovable np is optimal;
- *	the code for removal should be taken out of clean_cache() and made
- *	general enough for this use, and for clean_cache()'s continued use.
- *							vix, 21jul94
- */
-int
-db_update(const char *name,
-	  struct databuf *odp, struct databuf *newdp, 
-	  struct databuf **savedpp,
-	  int flags, struct hashbuf *htp, struct sockaddr_in from)
-{
-	struct databuf *dp, *pdp;
-	struct namebuf *np;
-	int zn, isHintNS;
-	int check_ttl = 0;
-	int deleted_something = 0;
-	const char *fname;
-#ifdef BIND_UPDATE
-	int found_other_ns = 0;
-	struct databuf *tmpdp;
-#endif
-
-	ns_debug(ns_log_db, 3, "db_update(%s, %#x, %#x, %#x, 0%o, %#x)%s",
-		 name, odp, newdp, savedpp, flags, htp,
-		 (odp && (odp->d_flags&DB_F_HINT)) ? " hint" : "");
-	np = nlookup(name, &htp, &fname, newdp != NULL);
-	if (np == NULL || fname != name)
-		return (NONAME);
-	
-	if (newdp && zones[newdp->d_zone].z_type == Z_PRIMARY)
-		check_ttl = 1;
-
-	/* don't let nonauthoritative updates write in authority zones */
-	if (newdp && ((zn = findMyZone(np, newdp->d_class)) != DB_Z_CACHE) &&
-#ifdef STUBS
-			    (zones[zn].z_type != Z_STUB) &&
-#endif
-			    (flags & DB_NOTAUTH)) {
-		int foundRR = 0;
-
-		/*
-		 * Don't generate the warning if the update
-		 * would have been harmless (identical data).
-		 */
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!db_cmp(dp, newdp)) {
-				foundRR++;
-				break;
-			}
-		}
-		if (!foundRR)
-			ns_debug(ns_log_db, 5,
-				 "[%s].%d update? to auth zone \"%s\" (%s)",
-				 inet_ntoa(from.sin_addr),
-				 ntohs(from.sin_port),
-				 zones[zn].z_origin,
-				 name);
-		return (AUTH);
-	}
-
-	if (newdp && zn && !(flags & DB_NOTAUTH)) {
-		if (nlabels(zones[zn].z_origin) > newdp->d_clev) {
-			ns_debug(ns_log_db, 5,
-				 "attempted update child zone %s, %s",
-				 zones[zn].z_origin, name);
-			return (AUTH);
-		}
-	}
-
-	/* some special checks for root NS' A RR's */
-	isHintNS = isRefByNS(name, fcachetab);
-#ifdef DEPRECATED
-	if (newdp && isHintNS && newdp->d_type == T_A) {
-		/* upgrade credibility of additional data for rootsrv addrs */
-		if (newdp->d_cred == DB_C_ADDITIONAL) {
-			ns_debug(ns_log_db, 3,
-				 "upgrading credibility for A RR (%s)",
-				   name);
-			/* XXX:	should copy NS RR's, but we really just want
-			 *	to prevent deprecation later so this will do.
-			 */
-			newdp->d_cred = DB_C_ANSWER;
-			newdp->d_clev = 0;
-		}
-	}
-#endif
-
-        /* Reflect certain updates in hint cache also... */
-	/* Don't stick data we are authoritative for in hints. */
-        if (!(flags & DB_NOHINTS) &&
-	    (flags & DB_PRIMING) &&
-	    (odp != NULL) &&
-	    (htp != fcachetab) &&
-	    (DB_Z_SPECIAL(odp->d_zone)) &&
-	    !(odp->d_flags & DB_F_HINT) &&
-	    (!newdp || !newdp->d_rcode) &&
-            ((name[0] == '\0' && odp->d_type == T_NS) ||
-	     (odp->d_type == T_A && isHintNS)
-	     )
-	    )
-        {
-		ns_debug(ns_log_db, 3, "db_update: hint '%s' %u",
-			 name, odp->d_ttl);
-		dp = savedata(odp->d_class, odp->d_type, odp->d_ttl,
-			      odp->d_data, odp->d_size);
-		dp->d_zone = DB_Z_CACHE;
-		dp->d_flags = DB_F_HINT;
-		dp->d_cred = DB_C_CACHE;
-		dp->d_secure = odp->d_secure; /* BEW - this should be ok */
-		dp->d_clev = 0;
-		if (db_update(name,
-			      dp, dp, NULL,
-			      (flags|DB_NOHINTS),
-			      fcachetab, from)
-		    != OK) {
-			ns_debug(ns_log_db, 3,
-				 "db_update: hint %#x freed", dp);
-			db_freedata(dp);
-		}
-        }
-
-	if (odp != NULL) {
-		int foundRR = 0;
-
-		pdp = NULL;
-		for (dp = np->n_data; dp != NULL; ) {
-			if (!rrmatch(name, dp, odp)) {
-				/* {class,type} doesn't match.  these are
-				 * the aggregation cases.
-				 */
-				/* Check that CNAMEs are only accompanied by
-				 * Secure DNS RR's (KEY, SIG, and NXT).
-				 */
-				if (((dp->d_type == T_CNAME &&
-				      odp->d_type != T_KEY &&
-				      odp->d_type != T_SIG &&
-				      odp->d_type != T_NXT) ||
-				     (odp->d_type == T_CNAME &&
-				      dp->d_type != T_KEY &&
-				      dp->d_type != T_SIG &&
-				      dp->d_type != T_NXT)) &&
-				    odp->d_class == dp->d_class &&
-				    /* XXXRTH d_mark removed in 4.9.5,
-				       but still here for dynamic
-				       update */
-				    odp->d_mark == dp->d_mark &&
-				    !dp->d_rcode &&
-				    !odp->d_rcode &&
-#ifdef BIND_UPDATE
-			 /* updating a CNAME with another CNAME is permitted */
-				    (dp->d_type != T_CNAME ||
-				     odp->d_type != T_CNAME) &&
-#endif
-				    zones[odp->d_zone].z_type != Z_CACHE) {
-					ns_info(ns_log_db,
-				     "%s has CNAME and other data (invalid)",
-						name);
-					if (zones[odp->d_zone].z_type ==
-							Z_PRIMARY)
-						return (CNAMEANDOTHER);
-					goto skip;
-				}
-				if (!newdp || newdp->d_class != dp->d_class)
-					goto skip;
-
-				/* if the new data is authorative 
-				 * remove any data for this domain with
-				 * the same class that isn't as credable
-				 */
-				if (newdp->d_cred == DB_C_ZONE && 
-				    newdp->d_cred > dp->d_cred)
-					/* better credibility and the old datum
-					 * was not from a zone file.  remove
-					 * the old datum.
-					 */
-					goto delete;
-
-#if 0	/* caught by findMyZone() now. */
-				/* if we have authoritative data for a
-				 * node, don't add in other data.
-				 */
-				if (dp->d_cred == DB_C_ZONE &&
-				    newdp->d_cred < dp->d_cred)
-					return (AUTH);
-#endif
-
-				/* if the new data is authoritative
-				 * but isn't as credible, reject it.
-				 */
-				if (newdp->d_cred == DB_C_ZONE && 
-				    dp->d_cred == DB_C_ZONE) {
-					/* Both records are from a zone file.
-					 * If their credibility levels differ,
-					 * we're dealing with a zone cut.  The
-					 * record with lower clev is from the
-					 * upper zone's file and is therefore 
-					 * glue.
-					 */
-
-					/* BEW/OG: we see no reason to override
-					 * these rules with new security based
-					 * rules.
-					 */
-					if (newdp->d_clev < dp->d_clev) {
-					    if (!ISVALIDGLUE(newdp)) {
-						ns_info(ns_log_db,
-		"domain %s %s record in zone %s should be in zone %s, ignored",
-						 name, p_type(newdp->d_type),
-						 zones[newdp->d_zone].z_origin,
-						 zones[dp->d_zone].z_origin);
-					    }
-					    return (AUTH);
-					}
-					if (newdp->d_clev > dp->d_clev) {
-					    if (!ISVALIDGLUE(dp)) {
-						ns_info(ns_log_db,
-		"domain %s %s record in zone %s should be in zone %s, deleted",
-						 name, p_type(dp->d_type),
-						 zones[dp->d_zone].z_origin,
-						 zones[newdp->d_zone].z_origin);
-					    }
-					    goto delete;
-					}
-				}
-
-				/* process NXDOMAIN */
-				/* policy */
-				if (newdp->d_rcode == NXDOMAIN) {
-					if (dp->d_cred < DB_C_AUTH &&
-					    newdp->d_secure >= dp->d_secure)
-						goto delete;
-					else
-						return (DATAEXISTS);
-				}
-
-				if (dp->d_rcode == NXDOMAIN)
-					goto delete;
-
-				/* process NOERROR_NODATA */
-				/* NO PROCESSING REQUIRED */
-
-				goto skip;
-			} /*if {class,type} did not match*/
-
-			/*
-			 * {type,class} did match.  This is the replace case.
-			 */
-			ns_debug(ns_log_db, 5,
-			   "db_update: flags = %#x, sizes = %d, %d (cmp %d)",
-				 flags, odp->d_size, dp->d_size,
-				 db_cmp(dp, odp));
-			if (newdp) {
-				ns_debug(ns_log_db, 4,
-"credibility for %s is %d(%d)(sec %d) from [%s].%d, is %d(%d)(sec %d) in cache",
-					 *name ? name : ".",
-					 newdp->d_cred,
-					 newdp->d_clev,
-					 newdp->d_secure,
-					 inet_ntoa(from.sin_addr),
-					 ntohs(from.sin_port),
-					 dp->d_cred,
-					 dp->d_secure,
-					 dp->d_clev);
-				if ((newdp->d_secure > dp->d_secure) ||
-				    (newdp->d_secure == dp->d_secure &&
-				    (newdp->d_cred > dp->d_cred)))
-				{
-					/* better credibility / security.
-					 * remove the old datum.
-					 */
-					goto delete;
-				}
-				if ((newdp->d_secure < dp->d_secure) ||
-				    (newdp->d_secure == dp->d_secure &&
-				    (newdp->d_cred < dp->d_cred)))
-				{
-					/* credibility / security is worse.
-					 * ignore it.
-					 */
-					return (AUTH);
-				}
-				/* BEW/OG: from above, we know the security
-				 * levels are the same.
-				 */
-				if (newdp->d_cred == DB_C_ZONE &&
-				    dp->d_cred == DB_C_ZONE ) {
-					/* Both records are from a zone file.
-					 * If their credibility levels differ,
-					 * we're dealing with a zone cut.  The
-					 * record with lower clev is from the
-					 * upper zone's file and is therefore 
-					 * glue.
-					 */
-
-					/* XXX - Tricky situation here is you
-					 * have 2 zones a.b.c and sub.a.b.c
-					 * being served by the same server.
-					 * named will send NS records for
-					 * sub.a.b.c during zone transfer of
-					 * a.b.c zone.  If we're secondary for
-					 * both zones, and we reload zone
-					 * a.b.c, we'll get the NS records
-					 * (and possibly A records to go with
-					 * them?) for sub.a.b.c as part of the
-					 * a.b.c zone transfer.  But we've
-					 * already got a more credible record
-					 * from the sub.a.b.c zone.  So we want
-					 * to ignore the new record, but we
-					 * shouldn't syslog because there's
-					 * nothing the user can do to prevent
-					 * the situation.  Perhaps we should
-					 * only complain when we are primary?
-	 				 */
-
-					if (newdp->d_clev < dp->d_clev) {
-					    if (!ISVALIDGLUE(newdp)) {
-						ns_info(ns_log_db,
-		"domain %s %s record in zone %s should be in zone %s, ignored",
-						 name, p_type(newdp->d_type),
-						 zones[newdp->d_zone].z_origin,
-						 zones[dp->d_zone].z_origin);
-					    }
-					    return (AUTH);
-					}
-					if (newdp->d_clev > dp->d_clev) {
-					    if (!ISVALIDGLUE(dp)) {
-						ns_info(ns_log_db,
-		"domain %s %s record in zone %s should be in zone %s, deleted",
-						 name, p_type(dp->d_type),
-						 zones[dp->d_zone].z_origin,
-						 zones[newdp->d_zone].z_origin);
-					    }
-					    goto delete;
-					}
-				}
-
-				/* credibility is the same.
-				 * let it aggregate in the normal way.
-				 */
-
-				/*
-				 * if the new or old RR is -ve, delete old.
-				 */
-				if (dp->d_rcode || newdp->d_rcode) {
-					/* XXX: how can a zone rr be neg? */
-					if (dp->d_cred != DB_C_ZONE)
-						goto delete;
-					else
-						return (DATAEXISTS);
-				}
-
-				/*
-				 *  Some RR types should not be aggregated.
-				 */
-				if (dp->d_type == T_SOA) {
-#ifdef BIND_UPDATE
-				        u_int32_t dp_ser, ndp_ser;
-					u_char *dp_cp, *ndp_cp;
-
-					dp_cp = findsoaserial(dp->d_data);
-					ndp_cp = findsoaserial(newdp->d_data);
-					GETLONG(dp_ser, dp_cp);
-					GETLONG(ndp_ser, ndp_cp);
-					
-					if (SEQ_GT(ndp_ser, dp_ser))
-					        goto delete;
-					else
-					        return (SERIAL);
-#else
-					goto delete;
-#endif /*BIND_UPDATE*/
-				}
-				if (dp->d_type == T_WKS &&
-				    !memcmp(dp->d_data, newdp->d_data,
-					    INT32SZ + sizeof(u_char)))
-					goto delete;
-				if (dp->d_type == T_CNAME &&
-				    !NS_OPTION_P(OPTION_MULTIPLE_CNAMES) &&
-				    db_cmp(dp, odp) != 0)
-					if ((flags & DB_REPLACE) == 0 &&
-					     zones[dp->d_zone].z_type ==
-							Z_PRIMARY) {
-						ns_warning(ns_log_db,
-						      "%s has multiple CNAMES",
-							   name);
-						return (CNAMEANDOTHER);
-					} else
-						goto delete;
-#if 0
-/* BEW - this _seriously_ breaks DNSSEC.  Is it necessary for dynamic update? */
-#ifdef BIND_UPDATE
-                                if (dp->d_type == T_SIG)
-                                        /* 
-					 * Type covered has already been
-					 * checked.
-					 */
-                                        goto delete;
-#endif
-#endif
-				if (dp->d_type == T_NXT) {
-					goto delete;
-				}
-				if (dp->d_type == T_SIG &&
-				    SIG_COVERS(dp) == T_NXT) {
-					struct sig_record *sr1, *sr2;
-
-					sr1 = (struct sig_record *) dp->d_data;
-					sr2 = (struct sig_record *)
-								newdp->d_data;
-					if (sr1->sig_alg_n == sr2->sig_alg_n)
-						goto delete;
-				}
-				if (check_ttl) {
-					if (newdp->d_ttl != dp->d_ttl) 
-					ns_warning(ns_log_db,
-					"%s %s %s differing ttls: corrected",
-						name[0]?name:".", 
-						p_class(dp->d_class),
-						p_type(dp->d_type));
-					if (newdp->d_ttl > dp->d_ttl) {
-						newdp->d_ttl = dp->d_ttl;
-					} else {
-						dp->d_ttl = newdp->d_ttl;
-					} 
-				}
-			}
-			if ((flags & DB_NODATA) && !db_cmp(dp, odp)) {
-				/* Refresh ttl if cache entry. */
-				if (dp->d_zone == DB_Z_CACHE) {
-					if (odp->d_zone != DB_Z_CACHE) {
-						/* Changing cache->auth. */
-						dp->d_zone = odp->d_zone;
-						dp->d_ttl = odp->d_ttl;
-						ns_debug(ns_log_db, 4,
-				  "db_update: cache entry now in auth zone");
-						return (DATAEXISTS);
-					}
-					fixttl(odp);
-					if (odp->d_ttl > dp->d_ttl)
-						dp->d_ttl = odp->d_ttl;
-					ns_debug(ns_log_db, 3,
-					       "db_update: new ttl %u +%lu",
-						 dp->d_ttl,
-						(u_long)(dp->d_ttl - tt.tv_sec)
-						);
-				}
-				return (DATAEXISTS);
-			}
-			/*
-			 * If the old databuf has some data, check that the
-			 * data matches that in the new databuf.
-			 */
-			if (odp->d_size > 0)
-				if (db_cmp(dp, odp))
-					goto skip;
-			if (odp->d_clev < dp->d_clev)
-				goto skip;
-			if ((odp->d_secure < dp->d_secure) ||
-			    ((odp->d_secure == dp->d_secure) &&
-			     (odp->d_cred < dp->d_cred)))
-				goto skip;
-#ifdef BIND_UPDATE
-			if (ns_samename(name, zones[dp->d_zone].z_origin) == 1
-			    && newdp == NULL) {
-				/* do not delete SOA or NS records as a set */
-				/* XXXRTH isn't testing d_size unnecessary? */
-				if ((odp->d_size == 0) &&
-				    (odp->d_class == C_ANY) &&
-				    (odp->d_type == T_ANY ||
-				     odp->d_type == T_SOA ||
-				     odp->d_type == T_NS) &&
-				    (dp->d_type == T_SOA ||
-				     dp->d_type == T_NS))
-					goto skip;
-				/* XXXRTH I added this to prevent SOA deletion
-				   I'm using the same style of comparison as
-				   the other code in this section.  Do we
-				   really need to look at dp->d_type here?
-				   We're in the "match" section... */
-				if ((odp->d_type == T_SOA) && 
-				    (dp->d_type == T_SOA))
-					goto skip;
-				/* do not delete the last NS record
-				   for the zone */
-				if ((odp->d_type == T_NS) &&
-				    (dp->d_type == T_NS)) {
-					found_other_ns = 0;
-					for (tmpdp = np->n_data;
-					     tmpdp && !found_other_ns;
-					     tmpdp = tmpdp->d_next)
-						if ((tmpdp->d_type == T_NS) &&
-						    (tmpdp != dp))
-							found_other_ns = 1;
-					if (!found_other_ns) {
-						ns_debug(ns_log_db, 3,
-		     "cannot delete last remaining NS record for zone %s",
-							 name);
-						goto skip;
-					}
-				}
-			}
-#endif
-
-			foundRR = 1;
-			if (flags & DB_DELETE) {
- delete:		       
-#ifdef BIND_UPDATE
-			/*
-			 * XXX	assume here that savedpp!=NULL iff. db_update
-			 *	has been called by the dyanmic update code.
-			 *	Maybe a new flag is more appropriate?
-			 */
-                                if (savedpp != NULL)
-					foundRR = 1;
-#endif
-				deleted_something = 1;
-				dp = rm_datum(dp, np, pdp, savedpp);
-			} else {
- skip:				pdp = dp;
-				dp = dp->d_next;
-			}
-		}
-                if (!foundRR) {
-			if (flags & DB_DELETE)
-				return (NODATA);
-			if (flags & DB_MEXIST)
-				return (NODATA);
-		}
-	}
-	if (newdp == NULL) {
-		if (deleted_something) {
-			while (np->n_data == NULL && np->n_hash == NULL) {
-				np = purge_node(htp, np);
-				if (np == NULL)
-					break;
-			}
-		}
-		return (OK);
-	}
-	/* XXX:	empty nodes bypass credibility checks above; should check
-	 *	response source address here if flags&NOTAUTH.
-	 */
-	fixttl(newdp);
-	ns_debug(ns_log_db, 3, "db_update: adding%s %#x",
-		 (newdp->d_flags&DB_F_HINT) ? " hint":"", newdp);
-
-	if (NS_OPTION_P(OPTION_HOSTSTATS) &&
-	    newdp->d_zone == DB_Z_CACHE &&
-	    (newdp->d_flags & DB_F_HINT) == 0)
-		newdp->d_ns = nameserFind(from.sin_addr, NS_F_INSERT);
-
-	/* Add to end of list, generally preserving order */
-	newdp->d_next = NULL;
-	if ((dp = np->n_data) == NULL)  {
-		DRCNTINC(newdp);
-		if (newdp->d_flags & DB_F_ACTIVE)
-			panic("db_update: DB_F_ACTIVE set", NULL);
-		newdp->d_flags |= DB_F_ACTIVE;
-		np->n_data = newdp;
-		return (OK);
-	}
-	while (dp->d_next != NULL) {
-		if ((flags & DB_NODATA) && !db_cmp(dp, newdp))
-			return (DATAEXISTS);
-		dp = dp->d_next;
-	}
-	if ((flags & DB_NODATA) && !db_cmp(dp, newdp))
-		return (DATAEXISTS);
-	DRCNTINC(newdp);
-	if (newdp->d_flags & DB_F_ACTIVE)
-		panic("db_update: DB_F_ACTIVE set", NULL);
-	newdp->d_flags |= DB_F_ACTIVE;	
-	dp->d_next = newdp;
-	return (OK);
-}
-
-void
-fixttl(struct databuf *dp) {
-	if (dp->d_zone == DB_Z_CACHE && (dp->d_flags & DB_F_HINT) == 0) {
-		if (dp->d_ttl <= (u_int32_t)tt.tv_sec)
-			return;
-		else if (dp->d_ttl < (u_int32_t)tt.tv_sec+min_cache_ttl)
-			dp->d_ttl = (u_int32_t)tt.tv_sec+min_cache_ttl;
-		else if (dp->d_ttl > (u_int32_t)tt.tv_sec+max_cache_ttl)
-			dp->d_ttl = (u_int32_t)tt.tv_sec+max_cache_ttl;
-	}
-}
-
-/*
- * Compare type, class and data from databufs for equivalence.
- * All domain names in RR's must be compared case-insensitively.
- * Return 0 if equivalent, nonzero otherwise.
- */
-int
-db_cmp(const struct databuf *dp1, const struct databuf *dp2) {
-	const u_char *cp1, *cp2;
-	int len, len2;
-
- 	/* XXXDYNUP- should be changed to 
-	   if (!match(dp1, dp2->d_type, dp2->d_class) */
-	if (dp1->d_type != dp2->d_type || dp1->d_class != dp2->d_class)
-		return (1);
-	/* XXXDYNUP - should be changed to (dp1->d_size != dp2->d_size &&
-	   dp1->d_size != 0 && dp2->d_size != 0) */
-	if (dp1->d_size != dp2->d_size)
-		return (1);
- 	/* d_mark is only used for dynamic updates currently */
-#ifndef BIND_UPDATE
-	if (dp1->d_mark != dp2->d_mark)
-		return (1);		/* old and new RR's are distinct */
-#endif
-	if (dp1->d_rcode && dp2->d_rcode)
-		return ((dp1->d_rcode == dp1->d_rcode)?0:1);
-	if (dp1->d_rcode || dp2->d_rcode)
-		return (1);
-
-	switch (dp1->d_type) {
-
-	case T_A:
-	case T_WKS:
-	case T_NULL:
-	case T_NSAP:
-	case T_AAAA:
-	case T_LOC:
-	case T_KEY:
-		/* Only binary data */
-		return (memcmp(dp1->d_data, dp2->d_data, dp1->d_size));
-
-	case T_NS:
-	case T_CNAME:
-	case T_PTR:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-		/* Only a domain name */
-		if (ns_samename((char *)dp1->d_data, (char *)dp2->d_data) == 1)
-			return (0);
-		else
-			return (1);
-
-	case T_SIG:
-		/* Binary data, a domain name, more binary data */
-		if (dp1->d_size < NS_SIG_SIGNER)
-			return (1);
-		if (memcmp(dp1->d_data, dp2->d_data, NS_SIG_SIGNER))
-			return (1);
-		len = NS_SIG_SIGNER +
-			strlen((char *)dp1->d_data + NS_SIG_SIGNER);
-		if (ns_samename((char *)dp1->d_data + NS_SIG_SIGNER,
-				(char *)dp2->d_data + NS_SIG_SIGNER) != 1)
-			return (1);
-		return (memcmp(dp1->d_data + len,
-			       dp2->d_data + len,
-			       dp1->d_size - len));
-
-	case T_NXT:
-		/* First a domain name, then binary data */
-		if (ns_samename((char *)dp1->d_data, (char *)dp2->d_data) != 1)
-			return (1);
-		len = strlen((char *)dp1->d_data)+1;
-		return (memcmp(dp1->d_data + len,
-			       dp2->d_data + len,
-			       dp1->d_size - len));
-
-	case T_HINFO:
-	case T_ISDN:
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-		len = *cp1;
-		len2 = *cp2;
-		if (len != len2)
-                      return (1);
-		if (strncasecmp((char *)++cp1, (char *)++cp2, len))
-			return (1);
-		cp1 += len;
-		cp2 += len;
-		len = *cp1;
-		len2 = *cp2;
-		if (len != len2)
-                      return (1);
-		return (strncasecmp((char *)++cp1, (char *)++cp2, len));
-
-	case T_SOA:
-	case T_MINFO:
-	case T_RP:
-		if (ns_samename((char *)dp1->d_data, (char *)dp2->d_data) != 1)
-			return (1);
-		cp1 = dp1->d_data + strlen((char *)dp1->d_data) + 1;
-		cp2 = dp2->d_data + strlen((char *)dp2->d_data) + 1;
-		if (ns_samename((char *)cp1, (char *)cp2) != 1)
-			return (1);
-		if (dp1->d_type != T_SOA)
-			return (0);
-		cp1 += strlen((char *)cp1) + 1;
-		cp2 += strlen((char *)cp2) + 1;
-		return (memcmp(cp1, cp2, INT32SZ * 5));
-	
-	case T_NAPTR: {
-		int t1,t2;
-
-		if (dp1->d_size != dp2->d_size)
-			return (1);
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-
-		/* Order */
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)	
-			return (1);
-
-		/* Preference */
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)	
-			return (1);
-
-		/* Flags */
-		t1 = *cp1++; t2 = *cp2++;
-		if (t1 != t2 || memcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1; cp2 += t2;
-
-		/* Services */
-		t1 = *cp1++; t2 = *cp2++;
-		if (t1 != t2 || memcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1; cp2 += t2;
-
-		/* Regexp */
-		t1 = *cp1++; t2 = *cp2++;
-		if (t1 != t2 || memcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1; cp2 += t2;
-
-		/* Replacement */
-		t1 = strlen((char *)cp1); t2 = strlen((char *)cp2);
-		if (t1 != t2 || memcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1 + 1; cp2 += t2 + 1;
-
-		/* they all checked out! */
-		return (0);
-	    }
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)	/* cmp prio */
-			return (1);
-		if (dp1->d_type == T_SRV) {
-			if (*cp1++ != *cp2++ || *cp1++ != *cp2++) /* weight */
-				return (1);
-			if (*cp1++ != *cp2++ || *cp1++ != *cp2++) /* port */
-				return (1);
-		}
-		if (ns_samename((char *)cp1, (char *)cp2) != 1)
-			return (1);
-		return (0);
-
-	case T_PX:
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)       /* cmp prio */
-			return (1);
-		if (ns_samename((char *)cp1, (char *)cp2) != 1)
-			return (1);
-		cp1 += strlen((char *)cp1) + 1;
-		cp2 += strlen((char *)cp2) + 1;
-		if (ns_samename((char *)cp1, (char *)cp2) != 1)
-			return (1);
-		return (0);
-	
-	case T_TXT:
-	case T_X25:
-		if (dp1->d_size != dp2->d_size)
-			return (1);
-		return (memcmp(dp1->d_data, dp2->d_data, dp1->d_size));
-
-	default:
-		return (1);
-	}
-}
diff --git a/contrib/bind/bin/named/named-bootconf.pl b/contrib/bind/bin/named/named-bootconf.pl
deleted file mode 100755
index ce474c4f47a4e..0000000000000
--- a/contrib/bind/bin/named/named-bootconf.pl
+++ /dev/null
@@ -1,324 +0,0 @@
-#!/usr/bin/perl
-
-## Copyright (c) 1996, 1997 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-## $Id: named-bootconf.pl,v 8.16 1998/02/13 19:48:25 halley Exp $
-
-# This is a filter.  Input is a named.boot.  Output is a named.conf.
-
-$new_config = "";
-
-$have_options = 0;
-%options = ();
-%options_comments = ();
-@topology = ();
-@topology_comments = ();
-@bogus = ();
-@bogus_comments = ();
-@transfer_acl = ();
-@transfer_comments = ();
-$logging = "";
-
-while(<>) {
-    next if /^$/;
-
-    # skip comment-only lines
-    if (/^\s*;+\s*(.*)$/) {
-	$new_config .= "// $1\n";
-	next;
-    }
-
-    # handle continued lines
-    while (/\\$/) {
-	s/\\$/ /;
-        $_ .= <>;
-    }
-    
-    chop;
-    
-    # deal with lines ending in a coment
-    if (s/\s*;+\s*(.*)$//) {
-	$comment = "// $1";
-    } else {
-	$comment = "";
-    }
-
-    ($directive, @rest) = split;
-
-    $class = "";
-    if ($directive =~ /^(.*)\/(.*)$/) {
-	$directive = $1;
-	$class = $2;
-    }
-    
-    if ($directive eq "primary") {
-	$zname = shift(@rest);
-	&maybe_print_comment("","\n");
-	$new_config .= "zone \"$zname\" ";
-	if ($class ne "") {
-	    $new_config .= "$class ";
-	}
-	$new_config .= "{\n";
-	$new_config .= "\ttype master;\n";
-	$filename = shift(@rest);
-	$new_config .= "\tfile \"$filename\";\n";
-	$new_config .= "};\n\n";
-    } elsif ($directive eq "secondary" || $directive eq "stub") {
-	if ($directive eq "secondary") {
-	    $type = "slave";
-	} else {
-	    $type = "stub";
-	}
-	$zname = shift(@rest);
-	&maybe_print_comment("","\n");
-	$new_config .= "zone \"$zname\" ";
-	if ($class ne "") {
-	    $new_config .= "$class ";
-	}
-	$new_config .= "{\n";
-	$new_config .= "\ttype $type;\n";
-	$filename = pop(@rest);
-	if ($filename =~ /^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+$/) {
-	    push(@rest, $filename);
-	    $filename = "";
-	} else {
-	    $new_config .= "\tfile \"$filename\";\n";
-	}
-	$new_config .= "\tmasters {\n";
-	foreach $master (@rest) {
-	    $new_config .= "\t\t$master;\n";
-	}
-	$new_config .= "\t};\n";
-	$new_config .= "};\n\n";
-    } elsif ($directive eq "cache") {
-    	$zname = shift(@rest);
-	&maybe_print_comment("","\n");
-	$new_config .= "zone \"$zname\" {\n";
-	$new_config .= "\ttype hint;\n";
-	$filename = shift(@rest);
-	$new_config .= "\tfile \"$filename\";\n";
-	$new_config .= "};\n\n";
-    } elsif ($directive eq "directory") {
-	$options{"directory"} = "\"$rest[0]\"";
-	$options_comments{"directory"} = $comment;
-	$have_options = 1;
-    } elsif ($directive eq "check-names") {
-	$type = shift(@rest);
-	if ($type eq "primary") {
-	    $type = "master";
-	} elsif ($type eq "secondary") {
-	    $type = "slave";
-	}
-	$action = shift(@rest);
-	$options{"check-names $type"} = $action;
-	$options_comments{"check-names $type"} = $comment;
-	$have_options = 1;
-    } elsif ($directive eq "forwarders") {
-	$options{"forwarders"}="{\n";
-	foreach $forwarder (@rest) {
-	    $options{"forwarders"} .= "\t\t$forwarder;\n";
-	}
-	$options{"forwarders"} .= "\t}";
-	$options_comments{"forwarders"} = $comment;
-	$have_options = 1;
-    } elsif ($directive eq "slave") {
-	&handle_options("forward-only");
-    } elsif ($directive eq "options") {
-	&handle_options(@rest);
-    } elsif ($directive eq "limit") {
-	&handle_limit(@rest);
-    } elsif ($directive eq "include") {
-	$new_config .= 
-	    "// make sure your include is still in the right place\n";
-	$comment = "\t" . $comment;
-	$new_config .= "include \"$rest[0]\";$comment\n\n";
-    } elsif ($directive eq "xfrnets" || $directive eq "tcplist") {
-	if ($comment ne "") {
-	    $comment = "\t$comment";
-	}
-	foreach $elt (@rest) {
-	    push(@transfer_acl, $elt);
-	    push(@transfer_comments, $comment);
-	}
-	$have_options = 1;
-    } elsif ($directive eq "sortlist") {
-	if ($comment ne "") {
-	    $comment = "\t$comment";
-	}
-	foreach $elt (@rest) {
-	    push(@topology, $elt);
-	    push(@topology_comments, $comment);
-	}
-    } elsif ($directive eq "bogusns") {
-	if ($comment ne "") {
-	    $comment = "\t$comment";
-	}
-	foreach $elt (@rest) {
-	    push(@bogus, $elt);
-	    push(@bogus_comments, $comment);
-	}
-    } elsif ($directive eq "max-fetch") {
-	$options{"transfers-in"}=$rest[0];
-	$options_comments{"transfers-in"}=$comment;
-	$have_options = 1;
-    } else {
-	$new_config .= "// NOTE: unconverted directive '$directive @rest'\n\n";
-    }
-}
-
-print "// generated by named-bootconf.pl\n\n";
-if ($have_options) {
-    print "options {\n";
-    foreach $option (sort(keys(%options))) {
-	print "\t$option $options{$option};";
-	if ($options_comments{$option} ne "") {
-	    print "\t$options_comments{$option}";
-	}
-	print "\n";
-    }
-    if (@transfer_acl > 0) {
-	print "\tallow-transfer {\n";
-	for ($i = 0; $i <= $#transfer_acl; $i++) {
-	    &print_maybe_masked("\t\t", $transfer_acl[$i],
-				$transfer_comments[$i]);
-	}
-	print "\t};\n";
-    }
-    print "\t/*
-\t * If there is a firewall between you and nameservers you want
-\t * to talk to, you might need to uncomment the query-source
-\t * directive below.  Previous versions of BIND always asked
-\t * questions using port 53, but BIND 8.1 uses an unprivileged
-\t * port by default.
-\t */
-\t// query-source address * port 53;
-";
-
-    print "};\n\n";
-}
-if ($logging ne "") {
-    print "logging {\n$logging};\n\n";
-}
-if (@topology > 0) {
-    print "// Note: the following will be supported in a future release.\n";
-    print "/*\n";
-    print "host { any; } {\n\ttopology {\n";
-    for ($i = 0; $i <= $#topology; $i++) {
-	&print_maybe_masked("\t\t", $topology[$i],
-			    $topology_comments[$i]);
-    }
-    print "\t};\n};\n";
-    print "*/\n";
-    print "\n";
-}
-if (@bogus > 0) {
-    for ($i = 0; $i <= $#bogus; $i++) {
-	print "server $bogus[$i] { bogus yes; };$bogus_comments[$i]\n";
-    }
-    print "\n";
-}
-print $new_config;
-
-exit 0;
-
-sub maybe_print_comment {
-    $prefix = shift;
-    $suffix = shift;
-    if ($comment ne "") {
-	$new_config .= sprintf("%s%s%s", $prefix, $comment, $suffix);
-    }
-}
-
-sub handle_options {
-    foreach $option (@_) {
-	if ($option eq "forward-only") {
-	    $options{"forward"}="only";
-	    $options_comments{"forward"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "no-recursion") {
-	    $options{"recursion"}="no";
-	    $options_comments{"recursion"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "no-fetch-glue") {
-	    $options{"fetch-glue"}="no";
-	    $options_comments{"fetch-glue"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "fake-iquery") {
-	    $options{"fake-iquery"}="yes";
-	    $options_comments{"fake-iquery"}=$comment;
-	    $have_options = 1;
-	} elsif ($option eq "query-log") {
-	    if ($comment ne "") {
-		$logging .= "\t$comment\n";
-	    }
-	    $logging .= "\tcategory queries { default_syslog; };\n";
-	} else {
-	    $options{"// NOTE: unconverted option '$option'"}="";
-	    $options_comments{"// NOTE: unconverted option '$option'"}=
-		$comment;
-	    $have_options = 1;
-	}
-    }
-}
-
-sub handle_limit {
-    $limit = shift;
-    if ($limit eq "datasize" || $limit eq "transfers-in"
-	|| $limit eq "transfers-per-ns" || $limit eq "files") {
-	$options{$limit}=$_[0];
-	$options_comments{$limit}=$comment;
-	$have_options = 1;
-    } else {
-	$options{"// NOTE: unconverted limit '$limit @_'"}="";
-	$options_comments{"// NOTE: unconverted limit '$limit @_'"}=$comment;
-	$have_options = 1;
-    }
-}
-
-sub print_maybe_masked {
-    # this assumes a contiguous netmask starting at the MSB
-    $prefix = shift;
-    $elt = shift;
-    $elt_comment = shift;
-    if ($elt =~ /^(.*)&(.*)$/) {
-	$address = $1;
-	$mask = $2;
-	($m1,$m2,$m3,$m4) = split(/\./, $mask);
-	$mask_val = ($m1 << 24) + ($m2 << 16) +($m3 << 8) + $m4;
-	$zero_bits = 0;
-	while (($mask_val % 2) == 0) {
-	    $mask_val /= 2;
-	    $zero_bits++;
-	}
-	$mask_bits = 32 - $zero_bits;
-    } else {
-	$address = $elt;
-	($a1,$a2,$a3,$a4) = split(/\./, $address);
-	if ($a1 < 128) {
-	    $mask_bits = 8;
-	} elsif ($a1 < 192) {
-	    $mask_bits = 16;
-	} else {
-	    $mask_bits = 24;
-	}
-    }
-	
-    print "$prefix$address";
-    if ($mask_bits != 32) {
-	print "/$mask_bits";
-    }
-    print ";$elt_comment\n";
-}
diff --git a/contrib/bind/bin/named/named.conf b/contrib/bind/bin/named/named.conf
deleted file mode 100644
index d423b343df2c2..0000000000000
--- a/contrib/bind/bin/named/named.conf
+++ /dev/null
@@ -1,456 +0,0 @@
-/*
- * This is a worthless, nonrunnable example of a named.conf file that has
- * every conceivable syntax element in use.  We use it to test the parser.
- * It could also be used as a conceptual template for users of new features.
- */
-
-/*
- * C-style comments are OK
- */
-
-// So are C++-style comments
-
-# So are shell-style comments
-
-// watch out for ";" -- it's important!
-
-options {
-	directory ".";			// use current directory
-	named-xfer "/usr/libexec/named-xfer";	// _PATH_XFER
-	dump-file "named_dump.db";  	// _PATH_DUMPFILE
-	pid-file "/var/run/named.pid";  // _PATH_PIDFILE
-	statistics-file "named.stats";  // _PATH_STATS
-	memstatistics-file "named.memstats";	// _PATH_MEMSTATS
-	check-names master fail;
-	check-names slave warn;
-	check-names response ignore;
-	host-statistics no;
-	deallocate-on-exit no;		// Painstakingly deallocate all
-					// objects when exiting instead of
-					// letting the OS clean up for us.
-					// Useful a memory leak is suspected.
-					// Final statistics are written to the
-					// memstatistics-file.
-	datasize default;
-	stacksize default;
-	coresize default;
-	files unlimited;
-	recursion yes;
-	fetch-glue yes;
-	fake-iquery no;
-	notify yes;			// send NOTIFY messages.  You can set
-					// notify on a zone-by-zone
-					// basis in the "zone" statement
-					// see (below)
-	max-serial-queries 4;		// number of parallel SOA queries
-					// we can have outstanding for master
-					// zone change testing purposes
-	auth-nxdomain yes;		// always set AA on NXDOMAIN.
-					// don't set this to 'no' unless
-					// you know what you're doing -- older
-					// servers won't like it.
-	multiple-cnames no;		// if yes, then a name my have more
-					// than one CNAME RR.  This use
-					// is non-standard and is not
-					// recommended, but it is available
-					// because previous releases supported
-					// it and it was used by large sites
-					// for load balancing.
-	allow-query { any; };
-	allow-transfer { any; };
-	transfers-in 10;		// DEFAULT_XFERS_RUNNING, cannot be
-					// set > than MAX_XFERS_RUNNING (20)
-	transfers-per-ns 2;		// DEFAULT_XFERS_PER_NS
-	transfers-out 0;		// not implemented
-	max-transfer-time-in 120;	// MAX_XFER_TIME; the default number
-					// of minutes an inbound zone transfer
-					// may run.  May be set on a per-zone
-					// basis.
-	/*
-	 * The "transfer-format" option specifies the way outbound zone
-	 * transfers (i.e. from us to them) are formatted.  Two values are
-	 * allowed:
-	 *
-	 *	one-answer		Each RR gets its own DNS message.
-	 *				This format is not very efficient,
-	 *				but is widely understood.  All
-	 *				versions of BIND prior to 8.1 generate
-	 *				this format for outbound zone 
-	 *				and require it on inbound transfers.
-	 *
-	 *	many-answers		As many RRs as will fit are put into
-	 *				each DNS message.  This format is
-	 *				the most efficient, but is only known
-	 *				to work with BIND 8.  Patches to
-	 *				BIND 4.9.5 named-xfer that enable it
-	 *				to understand 'many-answers' will be
-	 *				available.
-	 *
-	 * If you are going to be doing zone transfers to older servers, you
-	 * shouldn't use 'many-answers'.  'transfer-format' may also be set
-	 * on a host-by-host basis using the 'server' statement (see below).
-	 */
-	transfer-format one-answer;
-	query-source address * port *;
-	/*
-	 * The "forward" option is only meaningful if you've defined
-	 * forwarders.  "first" gives the normal BIND
-	 * forwarding behavior, i.e. ask the forwarders first, and if that
-	 * doesn't work then do the full lookup.  You can also say
-	 * "forward only;" which is what used to be specified with
-	 * "slave" or "options forward-only".  "only" will never attempt
-	 * a full lookup; only the forwarders will be used.
-	 */
-	forward first;
-	forwarders { };			// default is no forwarders
-	/*
-	 * Here's a forwarders example that isn't trivial
-	 */
-	/*
-	forwarders {
-		1.2.3.4;
-		5.6.7.8;
-	};
-	*/
-	topology { localhost; localnets; };	// prefer local nameservers
-	/*
-	 * Here's a more complicated topology example; it's commented out
-	 * because only one topology block is allowed.
-	 *
-	topology {
-		10/8;			// prefer network 10.0.0.0
-					// netmask 255.0.0.0 most
-		!1.2.3/24;		// don't like 1.2.3.0 netmask
-					// 255.255.255.0 at all
-		{ 1.2/16; 3/8; };	// like 1.2.0.0 netmask 255.255.0.0
-					// and 3.0.0.0 netmask 255.0.0.0
-					// equally well, but less than 10/8
-	};
-	*/
-
-	listen-on port 53 { any; };	// listen for queries on port 53 on
-					// any interface on the system
-					// (i.e. all interfaces).  The
-					// "port 53" is optional; if you
-					// don't specify a port, port 53
-					// is assumed.
-	/*
-	 * Multiple listen-on statements are allowed.  Here's a more
-	 * complicated example:
-	 */
-	/*
-	listen-on { 5.6.7.8; };		// listen on port 53 on interface
-					// 5.6.7.8
-	listen-on port 1234 {		// listen on port 1234 on any
-		!1.2.3.4;		// interface on network 1.2.3
-		1.2.3/24;		// netmask 255.255.255.0, except for
-	};				// interface 1.2.3.4.
-	*/
-
-	/*
-	 * Interval Timers
-	 */
-	cleaning-interval 60;		// clean the cache of expired RRs
-					// every 'cleaning-interval' minutes
-	interface-interval 60;		// scan for new or deleted interfaces
-					// every 'interface-interval' minutes
-	statistics-interval 60;		// log statistics every 
-					// 'statistics-interval' minutes
-	/*
-	 * IXFR options
-     */
-    maintain-ixfr-base no;   // If yes, keep transaction log file for IXFR
-    max-ixfr-log-size 20;	 // Not implemented, maximum size the 
-	                         // IXFR transaction log file to grow
-};
-
-/*
- * Control listeners, for "ndc".  Every nameserver needs at least one.
- */
-controls {
-	inet * port 52 allow { any; };			// a bad idea
-	unix "/var/run/ndc" perm 0600 owner 0 group 0;	// the default
-};
-
-zone "master.demo.zone" {
-	type master;			// what used to be called "primary" 
-	file "master.demo.zone";
-	check-names fail;
-	allow-update { none; };
-	allow-transfer { any; };
-	allow-query { any; };
-	// notify yes;			// send NOTIFY messages for this
-					// zone?  The global option is used
-					// if "notify" is not specified
-					// here.
-	also-notify { };		// don't notify any nameservers other
-					// than those on the NS list for this
-					// zone
-};
-
-zone "slave.demo.zone" {
-	type slave;			// what used to be called "secondary" 
-	file "slave.demo.zone";
-	ixfr-base  "slave.demo.zone.ixfr";  // File name for IXFR transaction log file
-	masters {
-		1.2.3.4;		// where to zone transfer from
-		5.6.7.8;
-	};
-	transfer-source 10.0.0.53;	// fixes multihoming problems
-	check-names warn;
-	allow-update { none; };
-	allow-transfer { any; };
-	allow-query { any; };
-	max-transfer-time-in 120;	// if not set, global option is used.
-	also-notify { };		// don't notify any nameservers other
-					// than those on the NS list for this
-					// zone
-};
-
-zone "stub.demo.zone" {
-	type stub;			// stub zones are like slave zones,
-					// except that only the NS records
-					// are transferred.
-	file "stub.demo.zone";
-	masters {
-		1.2.3.4;		// where to zone transfer from
-		5.6.7.8;
-	};
-	check-names warn;
-	allow-update { none; };
-	allow-transfer { any; };
-	allow-query { any; };
-	max-transfer-time-in 120;	// if not set, global option is used.
-};
-
-zone "." {
-	type hint;			// used to be specified w/ "cache"
-	file "cache.db";	
-	pubkey 257 255 1 "AQP2fHpZ4VMpKo/jc9Fod821uyfY5p8j5h/Am0V/KpBTMZjdXmp9QJe6yFRoIIzkaNCgTIftASdpXGgCwFB2j2KXP/rick6gvEer5VcDEkLR5Q==";
-};
-
-trusted-keys {                          
-	. 257 255 1 "AQP2fHpZ4VMpKo/jc9Fod821uyfY5p8j5h/Am0V/KpBTMZjdXmp9QJe6yFRoIIzkaNCgTIftASdpXGgCwFB2j2KXP/rick6gvEer5VcDEkLR5Q==";
-};       
-
-
-acl can_query { !1.2.3/24; any; };	// network 1.2.3.0 mask 255.255.255.0
-					// is disallowed; rest are OK
-acl can_axfr { 1.2.3.4; can_query; };	// host 1.2.3.4 and any host allowed
-					// by can_query are OK
-
-zone "non-default-acl.demo.zone" {
-	type master;
-	file "foo";
-	allow-query { can_query; };
-	allow-transfer { can_axfr; };
-	allow-update {
-		1.2.3.4;
-		5.6.7.8;
-	};
-};
-
-key sample_key {			// for TSIG
-	algorithm hmac-md5;		// hmac-md5 is the supported algorithm
-	secret "abcdefgh";		// base 64 encoded secret
-};
-
-key key2 {
-	algorithm hmac-md5;
-	secret "87654321";
-};
-
-acl key_acl { key sample_key; };	// a request signed with sample_key
-
-server 1.2.3.4 {
-	bogus no;			// if yes, we won't query or listen
-					// to this server
-	transfer-format one-answer;	// set transfer format for this
-					// server (see the description of
-					// 'transfer-format' above)
-					// if not specified, the global option
-					// will be used
-	transfers 0;			// not implemented
-	keys { sample_key; key2; };	// for TSIG; sign requests to this
-					// server with this key
-	support-ixfr yes;      // for IXFR supported by server
-					// if yes, the listed server talks IXFR 
-};
-
-logging {
-	/*
-	 * All log output goes to one or more "channels"; you can make as
-	 * many of them as you want.
-	 */
-
-	channel syslog_errors {		// this channel will send errors or
-		syslog user;		// or worse to syslog (user facility)
-		severity error;
-	};
-
-	/*
-	 * Channels have a severity level.  Messages at severity levels 
-	 * greater than or equal to the channel's level will be logged on
-	 * the channel.  In order of decreasing severity, the levels are:
-	 *
-	 * 	critical		a fatal error
-	 *	error
-	 *	warning			
-	 *	notice			a normal, but significant event
-	 *	info			an informational message
-	 *	debug 1			the least detailed debugging info
-	 *	...
-	 *	debug 99		the most detailed debugging info
-	 */
-
-	/*
-	 * Here are the built-in channels:
-	 *
-	 * 	channel default_syslog {
-	 *		syslog daemon;
-	 *		severity info;
-	 *	};
-	 *
-	 *	channel default_debug {
-	 *		file "named.run";	// note: stderr is used instead
-	 *					// of "named.run" if the server
-	 *					// is started with the "-f"
-	 *					// option.
-	 *		severity dynamic;	// this means log debugging
-	 *					// at whatever debugging level
-	 *					// the server is at, and don't
-	 *					// log anything if not
-	 *					// debugging.
-	 *	};
-	 *
-	 *	channel null {			// this is the bit bucket;
-	 *		file "/dev/null";	// any logging to this channel
-	 *					// is discarded.
-	 *	};
-	 *
-	 *	channel default_stderr {	// writes to stderr
-	 *		file "<stderr>";	// this is illustrative only;
-	 *					// there's currently no way
-	 *					// of saying "stderr" in the
-	 *					// configuration language.
-	 *					// i.e. don't try this at home.
-	 *		severity info;
-	 *	};
-	 *
-	 *	default_stderr only works before the server daemonizes (i.e.
-	 *	during initial startup) or when it is running in foreground
-	 *	mode (-f command line option).
-	 */
-
-	/*
-	 * There are many categories, so you can send the logs
-	 * you want to see wherever you want, without seeing logs you
-	 * don't want.  Right now the categories are
-	 *
-	 *	default			the catch-all.  many things still
-	 *				aren't classified into categories, and
-	 *				they all end up here.  also, if you
-	 *				don't specify any channels for a
-	 *				category, the default category is used
-	 *				instead.
-	 *	config			high-level configuration file
-	 *				processing
-	 *	parser			low-level configuration file processing
-	 *	queries			what used to be called "query logging"
-	 *	lame-servers		messages like "Lame server on ..."
-	 *	statistics
-	 *	panic			if the server has to shut itself
-	 *				down due to an internal problem, it
-	 *				logs the problem here (as well as
-	 *				in the problem's native category)
-	 *	update			dynamic update
-	 *	ncache			negative caching
-	 *	xfer-in			zone transfers we're receiving
-	 *	xfer-out		zone transfers we're sending
-	 *	db			all database operations
-	 *	eventlib		debugging info from the event system
-	 *				(see below)
-	 *	packet			dumps of packets received and sent
-	 *				(see below)
-	 *	notify			the NOTIFY protocol
-	 *	cname			messages like "XX points to a CNAME"
-	 *	security		approved/unapproved requests
-	 *	os			operating system problems
-	 *	insist			consistency check failures
-	 *	maintenance		periodic maintenance
-	 *	load			zone loading
-	 *	response-checks		messages like
-	 *				"Malformed response ..."
-	 *				"wrong ans. name ..."
-	 *				"unrelated additional info ..."
-	 *				"invalid RR type ..."
-	 *				"bad referral ..."
-	 */
-
-	category parser {
-		syslog_errors;		// you can log to as many channels
-		default_syslog;		// as you want
-	};
-
-	category lame-servers { null; };	// don't log these at all
-
-	channel moderate_debug {			
-		severity debug 3;		// level 3 debugging to file
-		file "foo";			// foo
-		print-time yes;			// timestamp log entries
-		print-category yes;		// print category name
-		print-severity yes;		// print severity level
-		/*
-		 * Note that debugging must have been turned on either
-		 * on the command line or with a signal to get debugging
-		 * output (non-debugging output will still be written to
-		 * this channel).
-		 */
-	};
-
-	/*
-	 * If you don't want to see "zone XXXX loaded" messages but do
-	 * want to see any problems, you could do the following.
-	 */
-	channel no_info_messages {
-		syslog;
-		severity notice;
-	};
-
-	category load { no_info_messages; };
-
-	/*
-	 * You can also define category "default"; it gets used when no
-	 * "category" statement has been given for a category.
-	 */
-	category default {
-		default_syslog;
-		moderate_debug;
-	};
-
-	/*
-	 * If you don't define category default yourself, the default
-	 * default category will be used.  It is
-	 *
-	 * 	category default { default_syslog; default_debug; };
-	 */
-
-	/*
-	 * If you don't define category panic yourself, the default
-	 * panic category will be used.  It is
-	 *
-	 * 	category panic { default_syslog; default_stderr; };
-	 */
-
-	/*
-	 * Two categories, 'packet' and 'eventlib', are special.  Only one
-	 * channel may be assigned to each of them, and it must be a
-	 * file channel.  If you don't define them  yourself, they default to
-	 *
- 	 *	category eventlib { default_debug; };
-	 *
-	 *	category packet { default_debug; };
-	 */
-};
-
-include "filename";			// can't do within a statement
diff --git a/contrib/bind/bin/named/named.h b/contrib/bind/bin/named/named.h
deleted file mode 100644
index e9e95fa5f1652..0000000000000
--- a/contrib/bind/bin/named/named.h
+++ /dev/null
@@ -1,63 +0,0 @@
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: named.h,v 8.27 2000/04/21 06:54:04 vixie Exp $
- */
-
-/* Options. Change them at your peril. */
-#define DEBUG
-#define ADDAUTH
-#define STUBS
-#define RETURNSOA
-#define BOGUSNS
-#define TRACEROOT
-#define XFRNETS
-#define QRYLOG
-#define YPKLUDGE
-#define	RENICE
-#define BIND_IXFR
-#define BIND_NOTIFY
-#define BIND_UPDATE
-#define WANT_PIDFILE
-#define FWD_LOOP
-#define DOTTED_SERIAL
-#define SENSIBLE_DOTS
-#define ROUND_ROBIN
-#define DNS_SECURITY
-#undef RSAREF
-#undef BSAFE
-#define ALLOW_LONG_TXT_RDATA
-#define STRICT_RFC2308
-#undef BIND_ZXFR
-
-#include <isc/assertions.h>
-#include <isc/list.h>
-#include <isc/ctl.h>
-
-#include <res_update.h>
-
-#include "pathnames.h"
-
-#include "ns_defs.h"
-#include "db_defs.h"
-
-#include "ns_glob.h"
-#include "db_glob.h"
-
-#include "ns_func.h"
-#include "db_func.h"
diff --git a/contrib/bind/bin/named/ns_config.c b/contrib/bind/bin/named/ns_config.c
deleted file mode 100644
index 670e288eeae93..0000000000000
--- a/contrib/bind/bin/named/ns_config.c
+++ /dev/null
@@ -1,3126 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_config.c,v 8.114 2000/04/23 02:18:58 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/stat.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <limits.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-#include <fcntl.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#ifdef HAVE_GETRUSAGE		/* XXX */
-#include <sys/resource.h>
-#endif
-
-#include "named.h"
-#include "ns_parseutil.h"
-
-/* Private. */
-
-static int tmpnum = 0;
-static int config_initialized = 0;
-
-static int need_logging_free = 0;
-static int default_logging_installed;
-
-static int options_installed = 0;
-static int logging_installed = 0;
-static int default_options_installed;
-static int initial_configuration = 1;
-
-static char **logging_categories;
-static char *current_pid_filename = NULL;
-
-#define ZONE_SYM_TABLE_SIZE 4973
-static symbol_table zone_symbol_table;
-
-/* Zones */
-
-void
-free_zone_timerinfo(struct zoneinfo *zp) {
-	if (zp->z_timerinfo != NULL) {
-		freestr(zp->z_timerinfo->name);
-		memput(zp->z_timerinfo, sizeof *zp->z_timerinfo);
-		zp->z_timerinfo = NULL;
-	} else
-		ns_error(ns_log_config, "timer for zone '%s' had no timerinfo",
-			 zp->z_origin);
-}
-
-void
-free_zone_contents(struct zoneinfo *zp, int undefine_sym) {
-	INSIST(zp != NULL);
-
-	if (undefine_sym)
-		undefine_symbol(zone_symbol_table, zp->z_origin, zp->z_class);
-	if (zp->z_flags & Z_TIMER_SET) {
-		free_zone_timerinfo(zp);
-		if (evClearTimer(ev, zp->z_timer) < 0)
-			ns_error(ns_log_config,
-			 "evClearTimer for zone '%s' failed in ns_init: %s",
-				 zp->z_origin,
-				 strerror(errno));
-	}
-	if (zp->z_origin != NULL)
-		freestr(zp->z_origin);
-	zp->z_origin = NULL;
-	if (zp->z_source != NULL)
-		freestr(zp->z_source);
-	zp->z_source = NULL;
-	if (zp->z_ixfr_base != NULL)
-		freestr(zp->z_ixfr_base);
-	zp->z_ixfr_base = NULL;
-	if (zp->z_ixfr_tmp != NULL)
-		freestr(zp->z_ixfr_tmp);
-	zp->z_ixfr_tmp = NULL;
-	if (zp->z_update_acl != NULL)
-		free_ip_match_list(zp->z_update_acl);
-	zp->z_update_acl = NULL;
-	if (zp->z_query_acl != NULL)
-		free_ip_match_list(zp->z_query_acl);
-	zp->z_query_acl = NULL;
-	if (zp->z_transfer_acl != NULL)
-		free_ip_match_list(zp->z_transfer_acl);
-	zp->z_transfer_acl = NULL;
-#ifdef BIND_UPDATE
-	if (zp->z_updatelog != NULL)
-		freestr(zp->z_updatelog);
-	zp->z_updatelog = NULL;
-#endif /* BIND_UPDATE */
-#ifdef BIND_NOTIFY
-	if (zp->z_also_notify != NULL)
-		memput(zp->z_also_notify,
-		       zp->z_notify_count * sizeof *zp->z_also_notify);
-	zp->z_also_notify = NULL;
-#endif
-	block_signals();
-	if (LINKED(zp, z_reloadlink))
-		UNLINK(reloadingzones, zp, z_reloadlink);
-	unblock_signals();
-}
-
-static void
-release_zone(struct zoneinfo *zp) {
-	INSIST(zp != NULL);
-
-	free_zone_contents(zp, 0);
-	memput(zp, sizeof *zp);
-}
-
-struct zoneinfo *
-find_zone(const char *name, int class) {
-	struct zoneinfo *zp;
-	symbol_value value;
-
-	ns_debug(ns_log_config, 3, "find_zone(%s, %d)",
-		 *name ? name : ".", class);
-	if (lookup_symbol(zone_symbol_table, name, class, &value)) {
-		INSIST(value.integer >= 0 && value.integer < nzones);
-		ns_debug(ns_log_config, 3, "find_zone: existing zone %d",
-			 value.integer);
-		zp = &zones[value.integer];
-		return (zp);
-	}
-	ns_debug(ns_log_config, 3, "find_zone: unknown zone");
-	return (NULL);
-}
-
-static struct zoneinfo *
-new_zone(int class, int type) {
-	struct zoneinfo *zp;
-
-	if (EMPTY(freezones))
-		make_new_zones();
-
-	zp = HEAD(freezones);
-	UNLINK(freezones, zp, z_freelink);
-	return (zp);
-}
-
-/*
- * Check out a zoneinfo structure and return non-zero if it's OK.
- */
-static int
-validate_zone(struct zoneinfo *zp) {
-	char filename[MAXPATHLEN+1];
-
-	/* Check name */
-	if (!res_dnok(zp->z_origin)) {
-		ns_error(ns_log_config, "invalid zone name '%s'",
-			 zp->z_origin);
-		return (0);
-	}
-
-	/* Check class */
-	if (zp->z_class == C_ANY || zp->z_class == C_NONE) {
-		ns_error(ns_log_config, "invalid class %d for zone '%s'",
-			 zp->z_class, zp->z_origin);
-		return (0);
-	}
-
-	/* Check type. */
-	if (zp->z_type == 0) {
-		ns_error(ns_log_config, "no type specified for zone '%s'",
-			 zp->z_origin);
-		return (0);
-	}
-	if (zp->z_type == z_cache && ns_samename(zp->z_origin, "") != 1) {
-		ns_error(ns_log_config,
-			 "only the root zone may be a cache zone (zone '%s')",
-			 zp->z_origin);
-		return (0);
-	}
-	if (zp->z_type == z_hint && ns_samename(zp->z_origin, "") != 1) {
-		ns_error(ns_log_config,
-			 "only the root zone may be a hint zone (zone '%s')",
-			 zp->z_origin);
-		return (0);
-	}
-
-	/* Check filename. */
-	if (zp->z_type == z_master && zp->z_source == NULL) {
-		ns_error(ns_log_config,
-			 "'file' statement missing for master zone %s",
-			 zp->z_origin);
-		return (0);
-	}
-	/*
-	 * XXX  We should run filename through an OS-specific
-	 *      validator here.
-	 */
-	if (zp->z_source != NULL && 
-	    strlen(zp->z_source) > MAXPATHLEN) {
-		ns_error(ns_log_config, "filename too long for zone '%s'",
-			 zp->z_origin);
-		return (0);
-	}
-
-	if (zp->z_ixfr_base != NULL && strlen(zp->z_ixfr_base) > MAXPATHLEN) {
-		ns_error(ns_log_config, "ixfr filename too long for zone '%s'",
-			 zp->z_origin);
-		return (0);
-	}
-	if (zp->z_ixfr_tmp != NULL && strlen(zp->z_ixfr_tmp) > MAXPATHLEN) {
-		ns_error(ns_log_config, "tmp ixfr filename too long for zone '%s'",
-			 zp->z_origin);
-		return (0);
-	}
-
-	/* Check masters */
-	if (zp->z_addrcnt != 0) {
-		if (zp->z_type == z_master || zp->z_type == z_hint ||
-		    zp->z_type == z_cache) {
-			ns_error(ns_log_config,
-				"'masters' statement present for %s zone '%s'",
-				 (zp->z_type == z_master) ? "master" :
-				 (zp->z_type == z_hint) ? "hint" : "cache",
-				 zp->z_origin);
-			return (0);
-		}
-	} else {
-		if (zp->z_type == z_slave || zp->z_type == z_stub) {
-			ns_error(ns_log_config,
-			  "no 'masters' statement for non-master zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-
-	/* Check allow-update and allow-transfer. */
-	if (zp->z_update_acl || zp->z_transfer_acl) {
-		if (zp->z_type != z_master && zp->z_type != z_slave) {
-			ns_error(ns_log_config,
-	   "'allow-{update,transfer}' option for non-{master,slave} zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-
-	/* Check allow-query. */
-	if (zp->z_query_acl) {
-		if (zp->z_type != z_master &&
-		    zp->z_type != z_slave &&
-		    zp->z_type != z_stub) {
-			ns_error(ns_log_config,
-		  "'allow-query' option for non-{master,slave,stub} zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-
-#ifdef BIND_NOTIFY
-	/* Check notify */
-	if (zp->z_notify != znotify_use_default) {
-		if (zp->z_type != z_master && zp->z_type != z_slave) {
-			ns_error(ns_log_config,
-			"'notify' given for non-master, non-slave zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-
-	/* Check also-notify */
-	if (zp->z_notify_count != 0) {
-		if (zp->z_type != z_master && zp->z_type != z_slave) {
-			ns_error(ns_log_config,
-		 "'also-notify' given for non-master, non-slave zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-#endif
-
-#ifdef BIND_UPDATE
-	/* XXX need more checking here */
-	if (!zp->z_updatelog && zp->z_source) {
-		/* XXX OS-specific filename validation here */
-		if ((strlen(zp->z_source) + (sizeof ".log" - 1)) >
-		    MAXPATHLEN) {
-			ns_error(ns_log_config,
-			  "filename too long for dynamic zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-		/* this sprintf() is now safe */
-		sprintf(filename, "%s.log", zp->z_source);
-		zp->z_updatelog = savestr(filename, 1);
-	}
-
-	/* Check forward */
-	if (zp->z_optset & OPTION_FORWARD_ONLY) {
-		if (zp->z_type == z_hint) {
-			ns_error(ns_log_config,
-				 "'forward' given for hint zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-	/* Check forwarders */
-	if (zp->z_fwdtab) {
-		if (zp->z_type == z_hint) {
-			ns_error(ns_log_config,
-				 "'forwarders' given for hint zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-	}
-
-	if (zp->z_type == z_master) {
-		if (!zp->z_soaincrintvl)
-			zp->z_soaincrintvl = SOAINCRINTVL;
-		if (!zp->z_dumpintvl)
-			zp->z_dumpintvl = DUMPINTVL;
-		if (!zp->z_deferupdcnt)
-			zp->z_deferupdcnt = DEFERUPDCNT;
-	}
-#endif /* BIND_UPDATE */
-
-	if (!zp->z_ixfr_base && zp->z_source) {
-		/* XXX OS-specific filename validation here */
-		if ((strlen(zp->z_source) + (sizeof ".ixfr" - 1)) >
-		    MAXPATHLEN) {
-			ns_error(ns_log_config,
-			  "filename too long for dynamic zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-		/* this sprintf() is now safe */
-		sprintf(filename, "%s.ixfr", zp->z_source);
-		zp->z_ixfr_base = savestr(filename, 1);
-	}
-	if (!zp->z_ixfr_tmp && zp->z_source) {
-		/* XXX OS-specific filename validation here */
-		if ((strlen(zp->z_source) + (sizeof ".ixfr.tmp" - 1)) >
-		    MAXPATHLEN) {
-			ns_error(ns_log_config,
-			  "filename too long for dynamic zone '%s'",
-				 zp->z_origin);
-			return (0);
-		}
-		/* this sprintf() is now safe */
-		sprintf(filename, "%s.ixfr.tmp", zp->z_source);
-		zp->z_ixfr_tmp = savestr(filename, 1);
-	}
-
-	return (1);
-}
-
-/*
- * Start building a new zoneinfo structure.  Returns an opaque
- * zone_config suitable for use by the parser.
- */
-zone_config
-begin_zone(char *name, int class) {
-	zone_config zh;
-	struct zoneinfo *zp;
-
-	/*
-	 * require: name is canonical, class is a valid class
-	 */
-
-	ns_debug(ns_log_config, 3, "begin_zone('%s', %d)",
-		 (*name == '\0') ? "." : name, class);
-
-	zp = (struct zoneinfo *)memget(sizeof (struct zoneinfo));
-	if (zp == NULL)
-		panic("memget failed in begin_zone", NULL);
-	memset(zp, 0, sizeof (struct zoneinfo));
-	zp->z_origin = name;
-	zp->z_class = class;
-	zp->z_checknames = not_set;
-	if (server_options->flags & OPTION_MAINTAIN_IXFR_BASE)
-		 zp->z_maintain_ixfr_base = 1;
-	else
-		 zp->z_maintain_ixfr_base = 0;	
-	zp->z_max_log_size_ixfr = server_options->max_log_size_ixfr;
-	zh.opaque = zp;
-	return (zh);
-}
-
-/*
- * Merge new configuration information into an existing zone.  The
- * new zoneinfo must be valid.
- */
-static void
-update_zone_info(struct zoneinfo *zp, struct zoneinfo *new_zp) {
-	char buf[MAXPATHLEN+1];
-	int i;
-
-	INSIST(zp != NULL);
-	INSIST(new_zp != NULL);
-
-	ns_debug(ns_log_config, 1, "update_zone_info('%s', %d)",
-		 (*new_zp->z_origin == '\0') ? "." : new_zp->z_origin,
-		 new_zp->z_type);
-
-#ifdef BIND_UPDATE
-	/*
-	 * A dynamic master zone that's becoming non-dynamic may need to be
-	 * dumped before we start the update.
-	 */
-	if ((zp->z_flags & Z_DYNAMIC) && !(new_zp->z_flags & Z_DYNAMIC) &&
-	    ((zp->z_flags & Z_NEED_SOAUPDATE) ||
-	     (zp->z_flags & Z_NEED_DUMP)))
-		(void) zonedump(zp, ISNOTIXFR);
-#endif
-
-	/*
-	 * First do the simple stuff, making sure to free
-	 * any data that was dynamically allocated.
-	 */
-	if (zp->z_origin != NULL)
-		freestr(zp->z_origin);
-	zp->z_origin = new_zp->z_origin;
-	new_zp->z_origin = NULL;
-	zp->z_maintain_ixfr_base = new_zp->z_maintain_ixfr_base;
-	zp->z_max_log_size_ixfr = new_zp->z_max_log_size_ixfr;
-	zp->z_class = new_zp->z_class;
-	zp->z_type = new_zp->z_type;
-	zp->z_checknames = new_zp->z_checknames;
-	for (i = 0; i < new_zp->z_addrcnt; i++)
-		zp->z_addr[i] = new_zp->z_addr[i];
-	zp->z_addrcnt = new_zp->z_addrcnt;
-	if (zp->z_update_acl)
-		free_ip_match_list(zp->z_update_acl);
-	zp->z_update_acl = new_zp->z_update_acl;
-	new_zp->z_update_acl = NULL;
-	if (zp->z_query_acl)
-		free_ip_match_list(zp->z_query_acl);
-	zp->z_query_acl = new_zp->z_query_acl;
-	new_zp->z_query_acl = NULL;
-	zp->z_axfr_src = new_zp->z_axfr_src;
-	if (zp->z_transfer_acl)
-		free_ip_match_list(zp->z_transfer_acl);
-	zp->z_transfer_acl = new_zp->z_transfer_acl;
-	new_zp->z_transfer_acl = NULL;
-	zp->z_max_transfer_time_in = new_zp->z_max_transfer_time_in;
-#ifdef BIND_NOTIFY
-	zp->z_notify = new_zp->z_notify;
-	if (zp->z_also_notify) 
-		memput(zp->z_also_notify,
-		       zp->z_notify_count * sizeof *zp->z_also_notify);
-	zp->z_also_notify = new_zp->z_also_notify;
-	zp->z_notify_count = new_zp->z_notify_count;
-	new_zp->z_also_notify = NULL;
-	new_zp->z_notify_count = 0;
-#endif
-	if ((new_zp->z_flags & Z_FORWARD_SET) != 0)
-		zp->z_flags |= Z_FORWARD_SET;
-	else
-		zp->z_flags &= ~Z_FORWARD_SET;
-	if (zp->z_fwdtab != NULL)
-		free_forwarders(zp->z_fwdtab);
-	zp->z_fwdtab = new_zp->z_fwdtab;
-	new_zp->z_fwdtab = NULL;
-
-	zp->z_dialup = new_zp->z_dialup;
-	zp->z_options = new_zp->z_options;
-	zp->z_optset = new_zp->z_optset;
-
-#ifdef BIND_UPDATE
-	if (new_zp->z_flags & Z_DYNAMIC)
-		zp->z_flags |= Z_DYNAMIC;
-	else
-		zp->z_flags &= ~Z_DYNAMIC;
-	zp->z_soaincrintvl = new_zp->z_soaincrintvl;
-	zp->z_dumpintvl = new_zp->z_dumpintvl;
-	zp->z_deferupdcnt = new_zp->z_deferupdcnt;
-	if (zp->z_updatelog)
-		freestr(zp->z_updatelog);
-	zp->z_updatelog = new_zp->z_updatelog;
-	new_zp->z_updatelog = NULL;
-#endif /* BIND_UPDATE */
-	zp->z_port = new_zp->z_port;
-
-	/*
-	 * Now deal with files.
-	 */
-	switch (zp->z_type) {
-	case z_cache:
-		ns_panic(ns_log_config, 1, "impossible condition");
-		break;
-	case z_hint:
-		ns_debug(ns_log_config, 1, "source = %s", new_zp->z_source);
-		zp->z_refresh = 0;	/* No dumping. */
-		if (zp->z_source != NULL &&
-		    strcmp(new_zp->z_source, zp->z_source) == 0 &&
-		    (reconfiging || !zonefile_changed_p(zp))) {
-			ns_debug(ns_log_config, 1, "cache is up to date");
-			break;
-		}
-
-		/* File has changed, or hasn't been loaded yet. */
-		if (zp->z_source) {
-			freestr(zp->z_source);
-			ns_stopxfrs(zp);
-			purge_zone(zp->z_origin, fcachetab, zp->z_class);
-		}
-		zp->z_source = new_zp->z_source;
-		new_zp->z_source = NULL;
-
-		if (zp->z_ixfr_base)
-			freestr(zp->z_ixfr_base);
-		zp->z_ixfr_base = new_zp->z_ixfr_base;
-		new_zp->z_ixfr_base = NULL;	
-
-		if (zp->z_ixfr_tmp)
-			freestr(zp->z_ixfr_tmp);
-		zp->z_ixfr_tmp = new_zp->z_ixfr_tmp;
-		new_zp->z_ixfr_tmp = NULL;	
-
-		ns_debug(ns_log_config, 1, "reloading hint zone");
-		(void) db_load(zp->z_source, zp->z_origin, zp, NULL,
-			       ISNOTIXFR);
-		break;
-
-	case z_master:
-		ns_debug(ns_log_config, 1, "source = %s", new_zp->z_source);
-		/*
-		 * If we've loaded this file, and the file hasn't changed
-		 * then there's no need to reload.
-		 */
-		if (zp->z_source != NULL &&
-		    strcmp(new_zp->z_source, zp->z_source) == 0 &&
-		    (reconfiging || !zonefile_changed_p(zp))) {
-			ns_debug(ns_log_config, 1, "zone is up to date");
-			break;
-		}
-#ifdef BIND_UPDATE
-		if (zp->z_source && (zp->z_flags & Z_DYNAMIC))
-			ns_warning(ns_log_config,
-			  "source file of dynamic zone '%s' has changed",
-				   zp->z_origin);
-
-	primary_reload:
-#endif /* BIND_UPDATE */
-		if (zp->z_source != NULL)
-			freestr(zp->z_source);
-		zp->z_source = new_zp->z_source;
-		new_zp->z_source = NULL;
-
-		if (zp->z_ixfr_base != NULL)
-			freestr(zp->z_ixfr_base);
-		zp->z_ixfr_base = new_zp->z_ixfr_base;
-		new_zp->z_ixfr_base = NULL;
-
-		if (zp->z_ixfr_tmp != NULL)
-			freestr(zp->z_ixfr_tmp);
-		zp->z_ixfr_tmp = new_zp->z_ixfr_tmp;
-		new_zp->z_ixfr_tmp = NULL;
-
-		if (reload_master(zp) == 1) {
-			/*
-			 * Note that going to primary_reload
-			 * unconditionally reloads the zone.
-			 */
-			new_zp->z_source = savestr(zp->z_source, 1);
-			new_zp->z_ixfr_base = savestr(zp->z_ixfr_base, 1);
-			new_zp->z_ixfr_tmp = savestr(zp->z_ixfr_tmp, 1);
-			goto primary_reload;
-		}
-		break;
-
-	case z_slave:
-#ifdef STUBS
-	case z_stub:
-#endif
-		ns_debug(ns_log_config, 1, "addrcnt = %d", zp->z_addrcnt);
-		if (!new_zp->z_source) {
-			/*
-			 * We will always transfer this zone again
-			 * after a reload.
-			 */
-			sprintf(buf, "NsTmp%ld.%d", (long)getpid(), tmpnum++);
-			new_zp->z_source = savestr(buf, 1);
-			zp->z_flags |= Z_TMP_FILE;
-		} else
-			zp->z_flags &= ~Z_TMP_FILE;
-		/*
-		 * If we had a backup file name, and it was changed,
-		 * free old zone and start over.  If we don't have
-		 * current zone contents, try again now in case
-		 * we have a new server on the list.
-		 */
-		if (zp->z_source != NULL &&
-		    (strcmp(new_zp->z_source, zp->z_source) != 0 ||
-		     ((!reconfiging) && zonefile_changed_p(zp)))) {
-			ns_debug(ns_log_config, 1,
-				 "backup file changed or missing");
-			freestr(zp->z_source);
-			zp->z_source = NULL;
-			zp->z_serial = 0;	/* force xfer */
-			ns_stopxfrs(zp);
-			/*
-			 * We only need to reload if we have ever
-			 * successfully transferred the zone.
-			 */
-			if ((zp->z_flags & Z_AUTH) != 0) {
-				zp->z_flags &= ~Z_AUTH;
-				/*
-				 * Purge old data and mark the parent for
-				 * reloading so that NS records are present
-				 * during the zone transfer.
-				 */
-				do_reload(zp->z_origin, zp->z_type,
-					  zp->z_class, 1);
-			}
-		}
-		if (zp->z_source == NULL) {
-			zp->z_source = new_zp->z_source;
-			new_zp->z_source = NULL;
-		}
-
-		if (zp->z_ixfr_base != NULL)
-			freestr(zp->z_ixfr_base);
-		zp->z_ixfr_base = new_zp->z_ixfr_base;
-		new_zp->z_ixfr_base = NULL;
-
-		if (zp->z_ixfr_tmp != NULL)
-			freestr(zp->z_ixfr_tmp);
-		zp->z_ixfr_tmp = new_zp->z_ixfr_tmp;
-		new_zp->z_ixfr_tmp = NULL;
-
-		if ((!noexpired || ((zp->z_flags & Z_EXPIRED) == 0)) &&
-		    ((zp->z_flags & Z_AUTH) == 0))
-			zoneinit(zp);
-		else {
-			/* 
-			** Force secondary to try transfer soon
-			** after SIGHUP.
-			*/
-			if ((zp->z_flags & (Z_QSERIAL|Z_XFER_RUNNING)) == 0 &&
-			    reloading && !reconfiging) {
-				qserial_retrytime(zp, tt.tv_sec);
-				sched_zone_maint(zp);
-			}
-		}
-		break;
-	case z_forward:
-		/*
-		 * We don't know if the forwarder's list has changed
-		 * so just purge the cache.  In the future we may want
-		 * see if the forwarders list has changed and only
-		 * do this then.
-		 */
-		clean_cache_from(zp->z_origin, hashtab);
-		break;
-	}
-	if ((zp->z_flags & Z_FOUND) != 0 &&	/* already found? */
-	    (zp - zones) != DB_Z_CACHE)	/* cache never sets Z_FOUND */
-		ns_error(ns_log_config, "Zone \"%s\" declared more than once",
-			 zp->z_origin);
-	zp->z_flags |= Z_FOUND;
-	ns_debug(ns_log_config, 1,
-		 "zone[%d] type %d: '%s' z_time %lu, z_refresh %u",
-		 zp-zones, zp->z_type,
-		 *(zp->z_origin) == '\0' ? "." : zp->z_origin,
-		 (u_long)zp->z_time, zp->z_refresh);
-}
-
-/*
- * Finish constructing a new zone.  If valid, the constructed zone is
- * merged into the zone database.  The zone_config used is invalid after
- * end_zone() completes.
- */
-void
-end_zone(zone_config zh, int should_install) {
-	struct zoneinfo *zp, *new_zp;
-	char *zname;
-	symbol_value value;
-
-	new_zp = zh.opaque;
-	INSIST(new_zp != NULL);
-
-	zname = (new_zp->z_origin[0] == '\0') ? "." : new_zp->z_origin;
-	ns_debug(ns_log_config, 3, "end_zone('%s', %d)", zname,
-		 should_install);
-
-	if (!should_install) {
-		release_zone(new_zp);
-		return;
-	}
-	if (!validate_zone(new_zp)) {
-		ns_error(ns_log_config,
-			 "zone '%s' did not validate, skipping", zname);
-		release_zone(new_zp);
-		return;
-	}
-	zp = find_zone(new_zp->z_origin, new_zp->z_class);
-	if (zp != NULL && zp->z_type != new_zp->z_type) {
-		remove_zone(zp, "redefined");
-		zp = NULL;
-	}
-	if (zp == NULL) {
-		zp = new_zone(new_zp->z_class, new_zp->z_type);
-		INSIST(zp != NULL);
-		value.integer = (zp - zones);
-		define_symbol(zone_symbol_table, savestr(new_zp->z_origin, 1),
-			      new_zp->z_class, value, SYMBOL_FREE_KEY);
-	}
-	ns_debug(ns_log_config, 5, "zone '%s', type = %d, class = %d", zname,
-		 new_zp->z_type, new_zp->z_class);
-	if (new_zp->z_source != NULL)
-		ns_debug(ns_log_config, 5, "  file = %s", new_zp->z_source);
-	ns_debug(ns_log_config, 5, "  checknames = %d", new_zp->z_checknames);
-	if (new_zp->z_addrcnt != 0) {
-		int i;
-
-		ns_debug(ns_log_config, 5, "  masters:");
-		for (i = 0; i < new_zp->z_addrcnt; i++)
-			ns_debug(ns_log_config, 5, "    %s",
-				 inet_ntoa(new_zp->z_addr[i]));
-	}
-
-	update_zone_info(zp, new_zp);
-	release_zone(new_zp);
-	zh.opaque = NULL;
-}
-
-int
-set_zone_type(zone_config zh, int type) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if type already set for this zone */
-	if (zp->z_type != 0)
-		return (0);
-	zp->z_type = type;
-	return (1);
-}
-
-int
-set_zone_filename(zone_config zh, char *filename) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if filename already set for this zone */
-	if (zp->z_source != NULL)
-		return (0);
-	zp->z_source = filename;
-	return (1);
-}
-
-int
-set_zone_checknames(zone_config zh, enum severity s) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if checknames already set for this zone */
-	if (zp->z_checknames != not_set)
-		return (0);
-	zp->z_checknames = s;
-	return (1);
-}
-
-int
-set_zone_ixfr_file(zone_config zh, char *filename) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if filename already set for this zone */
-	if (zp->z_ixfr_base != NULL)
-		return (0);
-	zp->z_ixfr_base = filename;
-	if (zp->z_ixfr_tmp == NULL) {
-		int len = strlen(zp->z_ixfr_base) + (sizeof ".tmp");
-		char *str = (char *) memget(len);
-
-		sprintf(str, "%s.tmp", zp->z_ixfr_base);
-		zp->z_ixfr_tmp = savestr(str, 1);
-		memput(str, len);
-	}
-
-	return (1);
-}
-
-int
-set_zone_ixfr_tmp(zone_config zh, char *filename) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if filename already set for this zone */
-	if (zp->z_ixfr_tmp != NULL)
-		return (0);
-	zp->z_ixfr_tmp = filename;
-	return (1);
-}
-
-int
-set_zone_dialup(zone_config zh, int value) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	if (value) {
-		zp->z_dialup = zdialup_yes;
-#ifdef BIND_NOTIFY
-		zp->z_notify = znotify_yes;
-#endif
-	} else
-		zp->z_dialup = zdialup_no;
-
-	return (1);
-}
-
-int
-set_zone_notify(zone_config zh, int value) {
-#ifdef BIND_NOTIFY
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	if (value)
-		zp->z_notify = znotify_yes;
-	else
-		zp->z_notify = znotify_no;
-#endif
-	return (1);
-}
-
-int
-set_zone_maintain_ixfr_base(zone_config zh, int value) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-	zp->z_maintain_ixfr_base = value;
-
-	return (1);
-}
-
-int
-set_zone_update_acl(zone_config zh, ip_match_list iml) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if update_acl already set for this zone */
-	if (zp->z_update_acl != NULL)
-		return (0);
-	zp->z_update_acl = iml;
-#ifdef BIND_UPDATE
-	if (!ip_match_is_none(iml))
-		zp->z_flags |= Z_DYNAMIC;
-	else
-		ns_debug(ns_log_config, 3, "update acl is none for '%s'",
-			 zp->z_origin);
-#endif
-	return (1);
-}
-
-int
-set_zone_query_acl(zone_config zh, ip_match_list iml) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if checknames already set for this zone */
-	if (zp->z_query_acl != NULL)
-		return (0);
-	zp->z_query_acl = iml;
-	return (1);
-}
-
-int
-set_zone_master_port(zone_config zh, u_short port) {
-	struct zoneinfo *zp = zh.opaque;
-
-	zp->z_port = port;
-	return (1);
-}
-
-int
-set_zone_transfer_source(zone_config zh, struct in_addr ina) {
-	struct zoneinfo *zp = zh.opaque;
-
-	zp->z_axfr_src = ina;
-	return (1);
-}
-
-int
-set_zone_transfer_acl(zone_config zh, ip_match_list iml) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if checknames already set for this zone */
-	if (zp->z_transfer_acl != NULL)
-		return (0);
-	zp->z_transfer_acl = iml;
-	return (1);
-}
-
-int
-set_zone_transfer_time_in(zone_config zh, long max_time) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Fail if checknames already set for this zone */
-	if (zp->z_max_transfer_time_in)
-		return (0);
-	zp->z_max_transfer_time_in = max_time;
-	return (1);
-}
-
-int
-set_zone_max_log_size_ixfr(zone_config zh, int size) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	zp->z_max_log_size_ixfr = size;
-	return (0);
-}
-
-int
-set_zone_pubkey(zone_config zh, const int flags, const int proto,
-		const int alg, const char *str)
-{
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	INSIST(zp != NULL && zp->z_origin != NULL);
-	return (add_trusted_key(zp->z_origin, flags, proto, alg, str));
-}
-
-int
-set_trusted_key(const char *name, const int flags, const int proto,
-		const int alg, const char *str) {
-	INSIST(name != NULL);
-	return (add_trusted_key(name, flags, proto, alg, str));
-}
-
-int
-add_zone_master(zone_config zh, struct in_addr address) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	zp->z_addr[zp->z_addrcnt] = address;
-	zp->z_addrcnt++;
-	if (zp->z_addrcnt >= NSMAX) {
-		ns_warning(ns_log_config, "NSMAX reached for zone '%s'",
-			   zp->z_origin);
-		zp->z_addrcnt = NSMAX - 1;
-	}
-	return (1);
-}
-
-int
-add_zone_notify(zone_config zh, struct in_addr address) {
-#ifdef BIND_NOTIFY
-	struct zoneinfo *zp;
-	int i;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	/* Check for duplicates. */
-
-	for (i = 0; i < zp->z_notify_count; i++) {
-		if (memcmp(zp->z_also_notify + i,
-			   &address, sizeof address) == 0) {
-			ns_warning(ns_log_config,
-		    "duplicate also-notify address ignored [%s] for zone '%s'",
-				inet_ntoa(address), zp->z_origin);
-			return (1);
-		}
-	}
-	i = 0;
-
-	if (zp->z_also_notify == NULL) {
-		zp->z_also_notify = memget(sizeof *zp->z_also_notify);
-		if (zp->z_also_notify == NULL)
-			i = 1;
-	} else {
-		register size_t size;
-		register struct in_addr *an_tmp;
-		size = zp->z_notify_count * sizeof *zp->z_also_notify;
-		an_tmp = memget(size + sizeof *zp->z_also_notify);
-		if (an_tmp == NULL) {
-			i = 1;
-		} else {
-			memcpy(an_tmp, zp->z_also_notify, size);
-			memput(zp->z_also_notify, size);
-			zp->z_also_notify = an_tmp;
-		}
-	}
-	if (i == 0) {
-		zp->z_also_notify[zp->z_notify_count] = address;
-		zp->z_notify_count++;
-	} else {
-		ns_warning(ns_log_config, "also-notify add failed (memget) [%s] for zone '%s'",
-			inet_ntoa(address), zp->z_origin);
-	}
-#endif
-	return (1);
-}
-
-/* Options */
-
-options
-new_options() {
-	options op;
-
-	op = (options)memget(sizeof (struct options));
-	if (op == NULL)
-		panic("memget failed in new_options()", NULL);
-
-	op->version = savestr(ShortVersion, 1);
-	op->directory = savestr(".", 1);
-	op->pid_filename = savestr(_PATH_PIDFILE, 1);
-	op->named_xfer = savestr(_PATH_XFER, 1);
-	op->dump_filename = savestr(_PATH_DUMPFILE, 1);
-	op->stats_filename = savestr(_PATH_STATS, 1);
-	op->memstats_filename = savestr(_PATH_MEMSTATS, 1);
-	op->flags = DEFAULT_OPTION_FLAGS;
-	op->transfers_in = DEFAULT_XFERS_RUNNING;
-	op->transfers_per_ns = DEFAULT_XFERS_PER_NS;
-	op->transfers_out = 0;
-	op->serial_queries = MAXQSERIAL;
-	op->transfer_format = axfr_one_answer;
-	op->max_transfer_time_in = MAX_XFER_TIME;
-	memset(&op->query_source, 0, sizeof op->query_source);
-	op->query_source.sin_family = AF_INET;
-	op->query_source.sin_addr.s_addr = htonl(INADDR_ANY);
-	op->query_source.sin_port = htons(0);		/* INPORT_ANY */
-	op->axfr_src.s_addr = 0;
-#ifdef BIND_NOTIFY
-	op->notify_count = 0;
-	op->also_notify = NULL;
-#endif
-	op->blackhole_acl = NULL;
-	op->query_acl = NULL;
-	op->transfer_acl = NULL;
-	op->recursion_acl = NULL;
-	op->sortlist = NULL;
-	op->topology = NULL;
-	op->data_size = 0UL;	/* use system default */
-	op->stack_size = 0UL;	/* use system default */
-	op->core_size = 0UL;	/* use system default */
-	op->files = ULONG_MAX;  /* unlimited */
-	op->check_names[primary_trans] = fail;
-	op->check_names[secondary_trans] = warn;
-	op->check_names[response_trans] = ignore;
-	op->listen_list = NULL;
-	op->fwdtab = NULL;
-	/* XXX init forwarding */
-	op->clean_interval = 3600;
-	op->interface_interval = 3600;
-	op->stats_interval = 3600;
-	op->ordering = NULL;
-	op->max_ncache_ttl = DEFAULT_MAX_NCACHE_TTL;
-	op->lame_ttl = NTTL;
-	op->heartbeat_interval = 3600;
-	op->max_log_size_ixfr = 20;
-	op->minroots = MINROOTS;
-	return (op);
-}
-
-void
-free_options(options op) {
-	INSIST(op != NULL);
-
-	if (op->version)
-		freestr(op->version);
-	if (op->directory)
-		freestr(op->directory);
-	if (op->pid_filename)
-		freestr(op->pid_filename);
-	if (op->named_xfer)
-		freestr(op->named_xfer);
-	if (op->dump_filename)
-		freestr(op->dump_filename);
-	if (op->stats_filename)
-		freestr(op->stats_filename);
-	if (op->memstats_filename)
-		freestr(op->memstats_filename);
-#ifdef BIND_NOTIFY
-	if (op->also_notify)
-		free_also_notify(op);
-#endif
-	if (op->blackhole_acl)
-		free_ip_match_list(op->blackhole_acl);
-	if (op->query_acl)
-		free_ip_match_list(op->query_acl);
-	if (op->recursion_acl)
-		free_ip_match_list(op->recursion_acl);
-	if (op->transfer_acl)
-		free_ip_match_list(op->transfer_acl);
-	if (op->sortlist)
-		free_ip_match_list(op->sortlist);
-	if (op->ordering)
-		free_rrset_order_list(op->ordering);
-	if (op->topology)
-		free_ip_match_list(op->topology);
-	if (op->listen_list)
-		free_listen_info_list(op->listen_list);
-	if (op->fwdtab)
-		free_forwarders(op->fwdtab);
-	memput(op, sizeof *op);
-}
-
-static void
-set_boolean_option(u_int *op_flags, int bool_opt, int value) {
-	INSIST(op_flags != NULL);
-
-	switch (bool_opt) {
-	case OPTION_NORECURSE:
-	case OPTION_NOFETCHGLUE:
-	case OPTION_FORWARD_ONLY:
-	case OPTION_FAKE_IQUERY:
-	case OPTION_NONOTIFY:
-	case OPTION_NONAUTH_NXDOMAIN:
-	case OPTION_MULTIPLE_CNAMES:
-	case OPTION_USE_IXFR:
-	case OPTION_MAINTAIN_IXFR_BASE:
-	case OPTION_HOSTSTATS:
-	case OPTION_DEALLOC_ON_EXIT:
-	case OPTION_USE_ID_POOL:
-	case OPTION_NORFC2308_TYPE1:
-	case OPTION_NODIALUP:
-	case OPTION_TREAT_CR_AS_SPACE:
-		if (value)
-			*op_flags |= bool_opt;
-		else
-			*op_flags &= ~bool_opt;
-		break;
-	default:
-		panic("unexpected option in set_boolean_option", NULL);
-	}
-}
-
-void
-set_global_boolean_option(options op, int bool_opt, int value) {
-
-	INSIST(op != NULL);
-
-	set_boolean_option(&op->flags, bool_opt, value);
-}
-
-void
-set_zone_boolean_option(zone_config zh, int bool_opt, int value) {
-	struct zoneinfo *zp;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	set_boolean_option(&zp->z_options, bool_opt, value);
-
-	/* Flag that zone option overrides corresponding global option */
-	zp->z_optset |= bool_opt;
-}
-
-#ifdef HAVE_GETRUSAGE
-enum limit { Datasize, Stacksize, Coresize, Files };
-
-static struct rlimit initial_data_size;
-static struct rlimit initial_stack_size;
-static struct rlimit initial_core_size;
-static struct rlimit initial_num_files;
-
-static void
-get_initial_limits() {
-	int fdlimit = evHighestFD(ev) + 1;
-
-# ifdef RLIMIT_DATA
-	if (getrlimit(RLIMIT_DATA, &initial_data_size) < 0)
-		ns_warning(ns_log_config, "getrlimit(DATA): %s",
-			   strerror(errno));
-# endif
-# ifdef RLIMIT_STACK
-	if (getrlimit(RLIMIT_STACK, &initial_stack_size) < 0)
-		ns_warning(ns_log_config, "getrlimit(STACK): %s",
-			   strerror(errno));
-# endif
-# ifdef RLIMIT_CORE
-	if (getrlimit(RLIMIT_CORE, &initial_core_size) < 0)
-		ns_warning(ns_log_config, "getrlimit(CORE): %s",
-			   strerror(errno));
-# endif
-# ifdef RLIMIT_NOFILE
-	if (getrlimit(RLIMIT_NOFILE, &initial_num_files) < 0)
-		ns_warning(ns_log_config, "getrlimit(NOFILE): %s",
-			   strerror(errno));
-	else if (initial_num_files.rlim_cur > fdlimit) {
-		initial_num_files.rlim_cur = fdlimit;
-		if (initial_num_files.rlim_cur > initial_num_files.rlim_max)
-			initial_num_files.rlim_max = fdlimit;
-		if (setrlimit(RLIMIT_NOFILE, &initial_num_files) < 0) {
-			ns_warning(ns_log_config, "setrlimit(files): %s",
-				   strerror(errno));
-		} else {
-			ns_warning(ns_log_config,
-				   "limit files set to fdlimit (%d)",
-				   fdlimit);
-		}
-	}
-# endif
-}
-
-static void
-ns_rlimit(enum limit limit, u_long limit_value) {
-	struct rlimit limits, old_limits;
-	int rlimit = -1;
-	int fdlimit = evHighestFD(ev) + 1;
-	char *name;
-	rlimit_type value;
-
-	if (limit_value == ULONG_MAX) {
-#ifndef RLIMIT_FILE_INFINITY
-		if (limit == Files)
-			value = MIN((rlimit_type)evHighestFD(ev) + 1,
-				    initial_num_files.rlim_max);
-		else
-#endif
-			value = (rlimit_type)RLIM_INFINITY;
-	} else
-		value = (rlimit_type)limit_value;
-
-	limits.rlim_cur = limits.rlim_max = value;
-	switch (limit) {
-	case Datasize:
-#ifdef RLIMIT_DATA
-		rlimit = RLIMIT_DATA;
-#endif
-		name = "max data size";
-		if (value == 0)
-			limits = initial_data_size;
-		break;
-	case Stacksize:
-#ifdef RLIMIT_STACK
-		rlimit = RLIMIT_STACK;
-#endif
-		name = "max stack size";
-		if (value == 0)
-			limits = initial_stack_size;
-		break;
-	case Coresize:
-#ifdef RLIMIT_CORE
-		rlimit = RLIMIT_CORE;
-#endif
-		name = "max core size";
-		if (value == 0)
-			limits = initial_core_size;
-		break;
-	case Files:
-#ifdef RLIMIT_NOFILE
-		rlimit = RLIMIT_NOFILE;
-#endif
-		name = "max number of open files";
-		if (value == 0)
-			limits = initial_num_files;
-		if (value > fdlimit)
-			limits.rlim_cur = limits.rlim_max = value = fdlimit;
-		break;
-	default:
-		name = NULL;	/* Make gcc happy. */
-		panic("impossible condition in ns_rlimit()", NULL);
-	}
-	if (rlimit == -1) {
-		ns_warning(ns_log_config,
-		  "limit \"%s\" not supported on this system - ignored",
-			   name);
-		return;
-	}
-	if (getrlimit(rlimit, &old_limits) < 0) {
-		ns_warning(ns_log_config, "getrlimit(%s): %s", name,
-			   strerror(errno));
-	}
-	if (user_id != 0 && limits.rlim_max == RLIM_INFINITY)
-		limits.rlim_cur = limits.rlim_max = old_limits.rlim_max;
-	if (setrlimit(rlimit, &limits) < 0) {
-		ns_warning(ns_log_config, "setrlimit(%s): %s", name,
-			   strerror(errno));
-		return;
-	} else {
-		if (value == 0)
-			ns_debug(ns_log_config, 3, "%s is default", name);
-		else if (value == RLIM_INFINITY)
-			ns_debug(ns_log_config, 3, "%s is unlimited", name);
-		else
-#ifdef RLIMIT_LONGLONG
-			ns_debug(ns_log_config, 3, "%s is %llu", name,
-				 (unsigned long long)value);
-#else
-			ns_debug(ns_log_config, 3, "%s is %lu", name, value);
-#endif
-	}
-}
-#endif /* HAVE_GETRUSAGE */
-
-listen_info_list
-new_listen_info_list() {
-	listen_info_list ll;
-
-	ll = (listen_info_list)memget(sizeof (struct listen_info_list));
-	if (ll == NULL)
-		panic("memget failed in new_listen_info_list()", NULL);
-	ll->first = NULL;
-	ll->last = NULL;
-	return (ll);
-}
-
-void
-free_listen_info_list(listen_info_list ll) {
-	listen_info li, next_li;
-
-	INSIST(ll != NULL);
-	for (li = ll->first; li != NULL; li = next_li) {
-		next_li = li->next;
-		free_ip_match_list(li->list);
-		memput(li, sizeof *li);
-	}
-	memput(ll, sizeof *ll);
-}
-
-void
-add_listen_on(options op, u_short port, ip_match_list iml) {
-	listen_info_list ll;
-	listen_info ni;
-
-	INSIST(op != NULL);
-
-	if (op->listen_list == NULL)
-		op->listen_list = new_listen_info_list();
-	ll = op->listen_list;
-	ni = (listen_info)memget(sizeof (struct listen_info));
-	if (ni == NULL)
-		panic("memget failed in add_listen_on", NULL);
-	ni->port = port;
-	ni->list = iml;
-	ni->next = NULL;
-	if (ll->last != NULL)
-		ll->last->next = ni;
-	ll->last = ni;
-	if (ll->first == NULL)
-		ll->first = ni;
-}
-
-FILE *
-write_open(char *filename) {
-	FILE *stream;
-	int fd;
-	struct stat sb;
-	int regular;
-
-	if (stat(filename, &sb) < 0) {
-		if (errno != ENOENT) {
-			ns_error(ns_log_os,
-				 "write_open: stat of %s failed: %s",
-				 filename, strerror(errno));
-			return (NULL);
-		}
-		regular = 1;
-	} else
-		regular = (sb.st_mode & S_IFREG);
-
-	if (!regular) {
-		ns_error(ns_log_os, "write_open: %s isn't a regular file",
-			 filename);
-		return (NULL);
-	}
-		
-	(void)unlink(filename);
-	fd = open(filename, O_WRONLY|O_CREAT|O_EXCL,
-		  S_IRUSR|S_IWUSR|S_IRGRP|S_IWGRP|S_IROTH|S_IWOTH);
-	if (fd < 0)
-		return (NULL);
-	(void) fchown(fd, user_id, group_id);
-	stream = fdopen(fd, "w");
-	if (stream == NULL)
-		(void)close(fd);
-	return (stream);
-}
-
-void
-update_pid_file() {
-	FILE *fp;
-
-	REQUIRE(server_options != NULL);
-	REQUIRE(server_options->pid_filename != NULL);
-
-	/* XXX */ ns_debug(ns_log_default, 1, "update_pid_file()");
-	if (current_pid_filename != NULL) {
-		(void)unlink(current_pid_filename);
-		freestr(current_pid_filename);
-		current_pid_filename = NULL;
-	}
-	current_pid_filename = savestr(server_options->pid_filename, 0);
-	if (current_pid_filename == NULL) {
-		ns_error(ns_log_config,
-			 "savestr() failed in update_pid_file()");
-		return;
-	}
-	fp = write_open(current_pid_filename);
-	if (fp != NULL) {
-		(void) fprintf(fp, "%ld\n", (long)getpid());
-		(void) fclose(fp);
-	} else
-		ns_error(ns_log_config, "couldn't create pid file '%s'",
-			 server_options->pid_filename);
-}
-
-/*
- * XXX This function will eventually be public and will be relocated to
- *     the UNIX OS support library.
- */
-
-static int
-os_change_directory(const char *name) {
-	struct stat sb;
-
-	if (name == NULL ||
-	    *name == '\0') {
-		errno = EINVAL;
-		return (0);
-	}
-
-	if (chdir(name) < 0)
-		return (0);
-
-	if (stat(name, &sb) < 0) {
-		ns_error(ns_log_os, "stat(%s) failed: %s", name,
-			 strerror(errno));
-		return (1);
-	}
-	if (sb.st_mode & S_IWOTH)
-		ns_warning(ns_log_os, "directory %s is world-writable", name);
-
-	return (1);
-}
-
-static void
-periodic_getnetconf(evContext ctx, void *uap, struct timespec due,
-		    struct timespec inter)
-{
-	getnetconf(1);
-}
-
-static void
-set_interval_timer(int which_timer, int interval) {
-	evTimerID *tid = NULL;
-	evTimerFunc func = NULL;
-
-	switch (which_timer) {
-	case CLEAN_TIMER:
-		tid = &clean_timer;
-		func = ns_cleancache;
-		break;
-	case INTERFACE_TIMER:
-		tid = &interface_timer;
-		func = periodic_getnetconf;
-		break;
-	case STATS_TIMER:
-		tid = &stats_timer;
-		func = ns_logstats;
-		break;
-	case HEARTBEAT_TIMER:
-		tid = &heartbeat_timer;
-		func = ns_heartbeat;
-		break;
-	default:
-		ns_panic(ns_log_config, 1,
-			 "set_interval_timer: unknown timer %d", which_timer);
-	}
-	if ((active_timers & which_timer) != 0) {
-		if (interval > 0) {
-			if (evResetTimer(ev, *tid, func, NULL, 
-					 evAddTime(evNowTime(), 
-						   evConsTime(interval, 0)),
-					 evConsTime(interval, 0)) < 0)
-				ns_error(ns_log_config,
-				 "evResetTimer %d interval %d failed: %s",
-					 which_timer, interval,
-					 strerror(errno));
-		} else {
-			if (evClearTimer(ev, *tid) < 0)
-				ns_error(ns_log_config,
-					 "evClearTimer %d failed: %s",
-					 which_timer, strerror(errno));
-			else
-				active_timers &= ~which_timer;
-		}
-	} else if (interval > 0) {
-		if (evSetTimer(ev, func, NULL, 
-			       evAddTime(evNowTime(), 
-					 evConsTime(interval, 0)),
-			       evConsTime(interval, 0), tid) < 0)
-			ns_error(ns_log_config,
-				 "evSetTimer %d interval %d failed: %s",
-				 which_timer, interval, strerror(errno));
-		else
-			active_timers |= which_timer;
-	}
-}
-
-/*
- * Set all named global options based on the global options structure
- * generated by the parser.
- */
-void
-set_options(options op, int is_default) {
-	INSIST(op != NULL);
-
-	if (op->listen_list == NULL) {
-		ip_match_list iml;
-		ip_match_element ime;
-		struct in_addr address;
-
-		op->listen_list = new_listen_info_list();
-
-		address.s_addr = htonl(INADDR_ANY);
-		iml = new_ip_match_list();
-		ime = new_ip_match_pattern(address, 0);
-		add_to_ip_match_list(iml, ime);
-		add_listen_on(op, htons(NS_DEFAULTPORT), iml);
-	}
-	if (op->topology == NULL) {
-		ip_match_list iml;
-		ip_match_element ime;
-
-		/* default topology is { localhost; localnets; } */
-		iml = new_ip_match_list();
-		ime = new_ip_match_localhost();
-		add_to_ip_match_list(iml, ime);
-		ime = new_ip_match_localnets();
-		add_to_ip_match_list(iml, ime);
-		op->topology = iml;
-	}
-	if (server_options != NULL)
-		free_options(server_options);
-	server_options = op;
-
-	/* XXX should validate pid filename */
-	INSIST(op->pid_filename != NULL);
-
-	if (op->directory && !os_change_directory(op->directory))
-		ns_panic(ns_log_config, 0, "can't change directory to %s: %s",
-			 op->directory, strerror(errno));
-
-	/* XXX currently a value of 0 means "use default"; it would be
-	   better if the options block had a "attributes updated" vector
-	   (like the way X deals with GC updates) */
-
-	if (!op->transfers_in)
-		op->transfers_in = DEFAULT_XFERS_RUNNING;
-	else if (op->transfers_in > MAX_XFERS_RUNNING) {
-		ns_warning(ns_log_config,
-		   "the maximum number of concurrent inbound transfers is %d",
-			   MAX_XFERS_RUNNING);
-		op->transfers_in = MAX_XFERS_RUNNING;
-	}
-
-	if (!op->transfers_per_ns)
-		op->transfers_per_ns = DEFAULT_XFERS_PER_NS;
-
-	if (!op->max_transfer_time_in)
-		op->max_transfer_time_in = MAX_XFER_TIME;
-
-	/* XXX currently transfers_out is not used */
-
-	if (!op->max_ncache_ttl)
-		op->max_ncache_ttl = DEFAULT_MAX_NCACHE_TTL;
-	else if (op->max_ncache_ttl > max_cache_ttl)
-		op->max_ncache_ttl = max_cache_ttl;
-	
-	if (op->lame_ttl > (3 * NTTL))
-		op->lame_ttl = 3 * NTTL;
-
-	/*
-	 * Limits
-	 */
-
-#ifdef HAVE_GETRUSAGE
-	ns_rlimit(Datasize, op->data_size);
-	ns_rlimit(Stacksize, op->stack_size);
-	ns_rlimit(Coresize, op->core_size);
-	ns_rlimit(Files, op->files);
-#else
-	ns_info(ns_log_config, "cannot set resource limits on this system");
-#endif
-
-	/*
-	 * Timers
-	 */
-	set_interval_timer(CLEAN_TIMER, server_options->clean_interval);
-	set_interval_timer(INTERFACE_TIMER,
-			   server_options->interface_interval);
-	set_interval_timer(STATS_TIMER, server_options->stats_interval);
-	set_interval_timer(HEARTBEAT_TIMER,
-			   server_options->heartbeat_interval);
-
-	options_installed = 1;
-	default_options_installed = is_default;
-}
-
-void 
-use_default_options() {
-	set_options(new_options(), 1);	
-}
-
-/*
- * rrset order types
- */
-static struct res_sym order_table [] = {
-	{ unknown_order, " unknown " }, /* can't match */
-	{ fixed_order, "fixed" },
-	{ cyclic_order, "cyclic" },
-	{ random_order, "random" },
-	{ unknown_order, NULL }
-};
-
-/*
- * Return the print name of the ordering value.
- */
-const char *
-p_order(int order) {
-	return (__sym_ntos(order_table, order, (int *)0));
-}
-
-/*
- * Lookup the ordering by name and return the matching enum value.
- */
-enum ordering
-lookup_ordering(const char *name) {
-	int i;
-
-	for (i = 0; order_table[i].name != NULL; i++)
-		if (strcasecmp(name,order_table[i].name) == 0)
-			return ((enum ordering)order_table[i].number);
-	return (unknown_order);
-}
-
-/*
- * rrset-order Lists
- */
-rrset_order_list
-new_rrset_order_list() {
-	rrset_order_list rol ;
-
-	rol = (rrset_order_list)memget(sizeof (struct rrset_order_list));
-	if (rol == NULL)
-		panic("memget failed in new_rrset_order_list", NULL);
-	rol->first = NULL;
-	rol->last = NULL;
-	
-	return (rol);
-}
-
-void
-free_rrset_order_list(rrset_order_list rol) {
-	rrset_order_element roe, next_element;
-
-	for (roe = rol->first; roe != NULL; roe = next_element) {
-		next_element = roe->next;
-		freestr(roe->name);
-		memput(roe, sizeof (*roe));
-	}
-	memput(rol, sizeof (*rol));
-}
-
-
-void
-add_to_rrset_order_list(rrset_order_list rol, rrset_order_element roe) {
-	INSIST(rol != NULL);
-	INSIST(roe != NULL);
-
-	if (rol->last != NULL)
-		rol->last->next = roe;
-	roe->next = NULL;
-	rol->last = roe;
-	if (rol->first == NULL)
-		rol->first = roe;
-}
-
-/* XXX this isn't being used yet, but it probably should be. Where? */
-void
-dprint_rrset_order_list(int category, rrset_order_list rol, int indent,
-			char *allow, char *deny) {
-	rrset_order_element roe ;
-	char spaces[40+1];
-
-	INSIST(rol != NULL);
-
-	if (indent > 40)
-		indent = 40;
-	if (indent)
-		memset(spaces, ' ', indent);
-	spaces[indent] = '\0';
-
-	for (roe = rol->first; roe != NULL; roe = roe->next) {
-		ns_debug(category, 7, "%sclass %s type %s name %s order %s",
-			 spaces, p_class(roe->class), p_type(roe->type),
-			 roe->name, p_order(roe->order));
-	}
-}
-
-
-rrset_order_element
-new_rrset_order_element(int class, int type, char *name, enum ordering order)
-{
-	rrset_order_element roe;
-	int i ;
-	
-	roe = (rrset_order_element)memget(sizeof (struct rrset_order_element));
-	if (roe == NULL)
-		panic("memget failed in new_rrset_order_element", NULL);
-	roe->class = class ;
-	roe->type = type ;
-	roe->name = name;
-	roe->order = order;
-
-	i = strlen(roe->name) - 1;
-	INSIST (i >= 0);
-	if (roe->name[i - 1] == '.') {
-		/* We compare from right to left so we don't need a dot on
-		   the end. */
-		roe->name[i - 1] = '\0' ;
-	}
-	
-	return roe ;
-}
-
-	
-/*
- * IP Matching Lists
- */
-
-ip_match_list
-new_ip_match_list() {
-	ip_match_list iml;
-
-	iml = (ip_match_list)memget(sizeof (struct ip_match_list));
-	if (iml == NULL)
-		panic("memget failed in new_ip_match_list", NULL);
-	iml->first = NULL;
-	iml->last = NULL;
-	return (iml);
-}
-
-void
-free_ip_match_list(ip_match_list iml) {
-	ip_match_element ime, next_element;
-
-	for (ime = iml->first; ime != NULL; ime = next_element) {
-		next_element = ime->next;
-		memput(ime, sizeof *ime);
-	}
-	memput(iml, sizeof *iml);
-}	
-
-ip_match_element
-new_ip_match_pattern(struct in_addr address, u_int mask_bits) {
-	ip_match_element ime;
-	u_int32_t mask;
-
-	ime = (ip_match_element)memget(sizeof (struct ip_match_element));
-	if (ime == NULL)
-		panic("memget failed in new_ip_match_pattern", NULL);
-	ime->type = ip_match_pattern;
-	ime->flags = 0;
-	ime->u.direct.address = address;
-	if (mask_bits == 0)
-		/* can't shift >= the size of a type in bits, so 
-		   we deal with an empty mask here */
-		mask = 0;
-	else {
-		/* set the 'mask_bits' most significant bits */
-		mask = 0xffffffffU;
-		mask >>= (32 - mask_bits);
-		mask <<= (32 - mask_bits);
-	}
-	mask = ntohl(mask);
-	ime->u.direct.mask.s_addr = mask;
-	ime->next = NULL;
-	if (!ina_onnet(ime->u.direct.address, ime->u.direct.address,
-		       ime->u.direct.mask)) {
-		memput(ime, sizeof *ime);
-		ime = NULL;
-	}
-	return (ime);
-}
-
-ip_match_element
-new_ip_match_mask(struct in_addr address, struct in_addr mask) {
-	ip_match_element ime;
-
-	ime = (ip_match_element)memget(sizeof (struct ip_match_element));
-	if (ime == NULL)
-		panic("memget failed in new_ip_match_pattern", NULL);
-	ime->type = ip_match_pattern;
-	ime->flags = 0;
-	ime->u.direct.address = address;
-	ime->u.direct.mask = mask;
-	ime->next = NULL;
-	if (!ina_onnet(ime->u.direct.address, ime->u.direct.address,
-		       ime->u.direct.mask)) {
-		memput(ime, sizeof *ime);
-		ime = NULL;
-	}
-	return (ime);
-}
-
-ip_match_element
-new_ip_match_indirect(ip_match_list iml) {
-	ip_match_element ime;
-
-	INSIST(iml != NULL);
-
-	ime = (ip_match_element)memget(sizeof (struct ip_match_element));
-	if (ime == NULL)
-		panic("memget failed in new_ip_match_indirect", NULL);
-	ime->type = ip_match_indirect;
-	ime->flags = 0;
-	ime->u.indirect.list = iml;
-	ime->next = NULL;
-	return (ime);
-}
-
-ip_match_element
-new_ip_match_key(DST_KEY *dst_key) {
-	ip_match_element ime;
-
-	ime = (ip_match_element)memget(sizeof (struct ip_match_element));
-	if (ime == NULL)
-		panic("memget failed in new_ip_match_key", NULL);
-	ime->type = ip_match_key;
-	ime->flags = 0;
-	ime->u.key.key = dst_key;
-	return (ime);
-}
-
-ip_match_element
-new_ip_match_localhost() {
-	ip_match_element ime;
-
-	ime = (ip_match_element)memget(sizeof (struct ip_match_element));
-	if (ime == NULL)
-		panic("memget failed in new_ip_match_localhost", NULL);
-	ime->type = ip_match_localhost;
-	ime->flags = 0;
-	ime->u.indirect.list = NULL;
-	ime->next = NULL;
-	return (ime);
-}
-
-ip_match_element
-new_ip_match_localnets() {
-	ip_match_element ime;
-
-	ime = (ip_match_element)memget(sizeof (struct ip_match_element));
-	if (ime == NULL)
-		panic("memget failed in new_ip_match_localnets", NULL);
-	ime->type = ip_match_localnets;
-	ime->flags = 0;
-	ime->u.indirect.list = NULL;
-	ime->next = NULL;
-	return (ime);
-}
-
-void
-ip_match_negate(ip_match_element ime) {
-	if (ime->flags & IP_MATCH_NEGATE)
-		ime->flags &= ~IP_MATCH_NEGATE;
-	else
-		ime->flags |= IP_MATCH_NEGATE;
-}
-
-void
-add_to_ip_match_list(ip_match_list iml, ip_match_element ime) {
-	INSIST(iml != NULL);
-	INSIST(ime != NULL);
-
-	if (iml->last != NULL)
-		iml->last->next = ime;
-	ime->next = NULL;
-	iml->last = ime;
-	if (iml->first == NULL)
-		iml->first = ime;
-}
-
-void
-dprint_ip_match_list(int category, ip_match_list iml, int indent,
-		     char *allow, char *deny) {
-	ip_match_element ime;
-	char spaces[40+1];
-	char addr_text[sizeof "255.255.255.255"];
-	char mask_text[sizeof "255.255.255.255"];
-
-	INSIST(iml != NULL);
-
-	if (indent > 40)
-		indent = 40;
-	if (indent)
-		memset(spaces, ' ', indent);
-	spaces[indent] = '\0';
-
-	for (ime = iml->first; ime != NULL; ime = ime->next) {
-		switch (ime->type) {
-		case ip_match_pattern:
-			memset(addr_text, 0, sizeof addr_text);
-			strncpy(addr_text, inet_ntoa(ime->u.direct.address),
-				((sizeof addr_text) - 1));
-			memset(mask_text, 0, sizeof mask_text);
-			strncpy(mask_text, inet_ntoa(ime->u.direct.mask),
-				((sizeof mask_text) - 1));
-			ns_debug(category, 7, "%s%saddr: %s, mask: %s",
-				 spaces,
-				 (ime->flags & IP_MATCH_NEGATE) ? deny : allow,
-				 addr_text, mask_text);
-			break;
-		case ip_match_localhost:
-			ns_debug(category, 7, "%s%slocalhost", spaces,
-				 (ime->flags & IP_MATCH_NEGATE) ?
-				 deny : allow);
-			break;
-		case ip_match_localnets:
-			ns_debug(category, 7, "%s%slocalnets", spaces,
-				 (ime->flags & IP_MATCH_NEGATE) ?
-				 deny : allow);
-			break;
-		case ip_match_indirect:
-			ns_debug(category, 7, "%s%sindirect list %p", spaces,
-				 (ime->flags & IP_MATCH_NEGATE) ? deny : allow,
-				 ime->u.indirect.list);
-			if (ime->u.indirect.list != NULL)
-				dprint_ip_match_list(category,
-						     ime->u.indirect.list,
-						     indent+2, allow, deny);
-			break;
-		case ip_match_key:
-			ns_debug(category, 7, "%s%skey %s", spaces,
-				 (ime->flags & IP_MATCH_NEGATE) ? deny : allow,
-				 ime->u.key.key->dk_key_name);
-			break;
-		default:
-			panic("unexpected ime type in dprint_ip_match_list()",
-			      NULL);
-		}
-	}
-}
-
-int
-ip_match_addr_or_key(ip_match_list iml, struct in_addr address,
-		     DST_KEY *key)
-{
-	ip_match_element ime;
-	int ret;
-	int indirect;
-
-	INSIST(iml != NULL);
-	for (ime = iml->first; ime != NULL; ime = ime->next) {
-		switch (ime->type) {
-		case ip_match_pattern:
-			indirect = 0;
-			break;
-		case ip_match_indirect:
-			indirect = 1;
-			break;
-		case ip_match_localhost:
-			ime->u.indirect.list = local_addresses;
-			indirect = 1;
-			break;
-		case ip_match_localnets:
-			ime->u.indirect.list = local_networks;
-			indirect = 1;
-			break;
-		case ip_match_key:
-			if (key == NULL) {
-				indirect = 0;
-				break;
-			}
-			else {
-				if (ns_samename(ime->u.key.key->dk_key_name,
-					        key->dk_key_name) == 1)
-					return (1);
-				else
-					continue;
-			}
-		default:
-			panic("unexpected ime type in ip_match_addr_or_key()",
-			      NULL);
-		}
-		if (indirect) {
-			ret = ip_match_addr_or_key(ime->u.indirect.list,
-						   address, key);
-			if (ret > 0) {
-				if (ime->flags & IP_MATCH_NEGATE)
-					ret = (ret) ? 0 : 1;
-				return (ret);
-			}
-		} else {
-			if (ina_onnet(address, ime->u.direct.address,
-				      ime->u.direct.mask)) {
-				if (ime->flags & IP_MATCH_NEGATE)
-					return (0);
-				else
-					return (1);
-			}
-		}
-	}
-	return (-1);
-}
-
-int
-ip_match_address(ip_match_list iml, struct in_addr address) {
-	return ip_match_addr_or_key(iml, address, NULL);
-}
-
-int
-ip_addr_or_key_allowed(ip_match_list iml, struct in_addr address,
-		       DST_KEY *key)
-{
-	int ret;
-
-	if (iml == NULL)
-		return (0);
-	ret = ip_match_addr_or_key(iml, address, key);
-	if (ret < 0)
-		ret = 0;
-	return (ret);
-}
-
-int
-ip_address_allowed(ip_match_list iml, struct in_addr address) {
-	return(ip_addr_or_key_allowed(iml, address, NULL));
-}
-
-int
-ip_match_network(ip_match_list iml, struct in_addr address,
-		 struct in_addr mask) {
-	ip_match_element ime;
-	int ret;
-	int indirect;
-
-	INSIST(iml != NULL);
-	for (ime = iml->first; ime != NULL; ime = ime->next) {
-		switch (ime->type) {
-		case ip_match_pattern:
-			indirect = 0;
-			break;
-		case ip_match_indirect:
-			indirect = 1;
-			break;
-		case ip_match_localhost:
-			ime->u.indirect.list = local_addresses;
-			indirect = 1;
-			break;
-		case ip_match_localnets:
-			ime->u.indirect.list = local_networks;
-			indirect = 1;
-			break;
-		case ip_match_key:
-			indirect = 0;
-			break;
-		default:
-			indirect = 0;	/* Make gcc happy. */
-			panic("unexpected ime type in ip_match_network()",
-			      NULL);
-		}
-		if (indirect) {
-			ret = ip_match_network(ime->u.indirect.list,
-					       address, mask);
-			if (ret >= 0) {
-				if (ime->flags & IP_MATCH_NEGATE)
-					ret = (ret) ? 0 : 1;
-				return (ret);
-			}
-		} else {
-			if (address.s_addr == ime->u.direct.address.s_addr &&
-			    mask.s_addr == ime->u.direct.mask.s_addr) {
-				if (ime->flags & IP_MATCH_NEGATE)
-					return (0);
-				else
-					return (1);
-			}
-		}
-	}
-	return (-1);
-}
-
-int
-distance_of_address(ip_match_list iml, struct in_addr address) {
-	ip_match_element ime;
-	int ret;
-	int indirect;
-	int distance;
-
-	INSIST(iml != NULL);
-	for (distance = 1, ime = iml->first;
-	     ime != NULL; ime = ime->next, distance++) {
-		switch (ime->type) {
-		case ip_match_pattern:
-			indirect = 0;
-			break;
-		case ip_match_indirect:
-			indirect = 1;
-			break;
-		case ip_match_localhost:
-			ime->u.indirect.list = local_addresses;
-			indirect = 1;
-			break;
-		case ip_match_localnets:
-			ime->u.indirect.list = local_networks;
-			indirect = 1;
-			break;
-		case ip_match_key:
-			indirect = 0;
-			return (-1);
-		default:
-			indirect = 0;	/* Make gcc happy. */
-			panic("unexpected ime type in distance_of_address()",
-			      NULL);
-		}
-		if (indirect) {
-			ret = ip_match_address(ime->u.indirect.list, address);
-			if (ret >= 0) {
-				if (ime->flags & IP_MATCH_NEGATE)
-					ret = (ret) ? 0 : 1;
-				if (distance > MAX_TOPOLOGY_DISTANCE)
-					distance = MAX_TOPOLOGY_DISTANCE;
-				if (ret)
-					return (distance);
-				else
-					return (MAX_TOPOLOGY_DISTANCE);
-			}
-		} else {
-			if (ina_onnet(address, ime->u.direct.address,
-				      ime->u.direct.mask)) {
-				if (distance > MAX_TOPOLOGY_DISTANCE)
-					distance = MAX_TOPOLOGY_DISTANCE;
-				if (ime->flags & IP_MATCH_NEGATE)
-					return (MAX_TOPOLOGY_DISTANCE);
-				else
-					return (distance);
-			}
-		}
-	}
-	return (UNKNOWN_TOPOLOGY_DISTANCE);
-}
-
-int
-ip_match_is_none(ip_match_list iml) {
-	ip_match_element ime;
-
-	if ((iml == NULL) || (iml->first == NULL))
-		return (1);
-	ime = iml->first;
-	if (ime->type == ip_match_indirect) {
-		if (ime->flags & IP_MATCH_NEGATE)
-			return (0);
-		iml = ime->u.indirect.list;
-		if ((iml == NULL) || (iml->first == NULL))
-			return (0);
-		ime = iml->first;
-	}
-	if (ime->type == ip_match_pattern) {
-		if ((ime->flags & IP_MATCH_NEGATE) &&
-		    ime->u.direct.address.s_addr == 0 && 
-		    ime->u.direct.mask.s_addr == 0)
-			return (1);
-	}
-	return (0);
-}
-
-/*
- * find_forwarder finds the fwddata structure for an address,
- * allocating one if we can't find one already existing.
- */
-
-static struct fwddata *
-find_forwarder(struct in_addr address)
-{
-	struct fwddata *fdp;
-	struct databuf *ns, *nsdata;
-	register int i;
-
-	for (i=0;i<fwddata_count; i++) {
-		fdp=fwddata[i];
-		if (memcmp(&fdp->fwdaddr.sin_addr,&address,sizeof(address))==0) {
-			fdp->ref_count++;
-			return fdp;
-		}
-	}
-
-	fdp = (struct fwddata *)memget(sizeof(struct fwddata));
-	if (!fdp)
-		panic("memget failed in find_forwarder", NULL);
-	fdp->fwdaddr.sin_family = AF_INET;
-	fdp->fwdaddr.sin_addr = address;
-	fdp->fwdaddr.sin_port = ns_port;
-	ns = fdp->ns = (struct databuf *)memget(sizeof(*ns));
-	if (!ns)
-		panic("memget failed in find_forwarder", NULL);
-	memset(ns,0,sizeof(*ns));
-	nsdata = fdp->nsdata = (struct databuf *)memget(sizeof(*nsdata));
-	if (!nsdata)
-		panic("memget failed in find_forwarder", NULL);
-	memset(nsdata,0,sizeof(*nsdata));
-	ns->d_type = T_NS; 
-	ns->d_class = C_IN;
-	ns->d_rcnt=1;
-	nsdata->d_type = T_A;
-	nsdata->d_class = C_IN;
-	nsdata->d_nstime = 1 + (int)(25.0*rand()/(RAND_MAX + 1.0));
-	nsdata->d_rcnt=1;
-	fdp->ref_count=1;
-	
-	i=0;
-	if (fwddata == NULL) {
-		fwddata = memget(sizeof *fwddata);
-		if (fwddata == NULL)
-			i = 1;
-	} else {
-		register size_t size;
-		register struct fwddata **an_tmp;
-		size = fwddata_count * sizeof *fwddata;
-		an_tmp = memget(size + sizeof *fwddata);
-		if (an_tmp == NULL) {
-			i = 1;
-		} else {
-			memcpy(an_tmp, fwddata, size);
-			memput(fwddata, size);
-			fwddata = an_tmp;
-		}
-	}
-
-	if (i == 0) {
-		fwddata[fwddata_count] = fdp;
-		fwddata_count++;
-	} else {
-		ns_warning(ns_log_config,
-		     "forwarder add failed (memget) [%s]",
-			inet_ntoa(address));
-	}
-
-	return fdp;
-}
-/*
- * Forwarder glue
- *
- * XXX  This will go away when the rest of bind understands 
- *      forward zones.
- */
-
-static void
-add_forwarder(struct fwdinfo **fipp, struct in_addr address) {
-	struct fwdinfo *fip = *fipp, *ftp = NULL;
-	struct fwddata *fdp;
-
-#ifdef FWD_LOOP
-	if (aIsUs(address)) {
-		ns_error(ns_log_config, "forwarder '%s' ignored, my address",
-			 inet_ntoa(address));
-		return;
-	}
-#endif /* FWD_LOOP */
-
-	/* On multiple forwarder lines, move to end of the list. */
-	while (fip != NULL && fip->next != NULL)
-		fip = fip->next;
-
-	fdp = find_forwarder(address);
-	ftp = (struct fwdinfo *)memget(sizeof(struct fwdinfo));
-	if (!ftp)
-		panic("memget failed in add_forwarder", NULL);
-	ftp->fwddata = fdp;
-	ftp->next = NULL;
-	if (fip == NULL)
-		*fipp = ftp;		/* First time only */
-	else
-		fip->next = ftp;
-}
-
-void
-free_also_notify(options op) {
-#ifdef BIND_NOTIFY
-	memput(op->also_notify, op->notify_count * sizeof *op->also_notify);
-	op->also_notify = NULL;
-	op->notify_count = 0;
-#endif
-}
-
-int
-add_global_also_notify(options op, struct in_addr address) {
-#ifdef BIND_NOTIFY
-	int i;
-
-	INSIST(op != NULL);
-
-	ns_debug(ns_log_config, 2, "adding global notify %s",
-		 inet_ntoa(address));
-
-	/* Check for duplicates. */
-
-	for (i = 0; i < op->notify_count; i++) {
-		if (memcmp(op->also_notify + i,
-			   &address, sizeof address) == 0) {
-			ns_warning(ns_log_config,
-			   "duplicate global also-notify address ignored [%s]",
-				inet_ntoa(address));
-			return (1);
-		}
-	}
-	i = 0;
-
-	if (op->also_notify == NULL) {
-		op->also_notify = memget(sizeof *op->also_notify);
-		if (op->also_notify == NULL)
-			i = 1;
-	} else {
-		register size_t size;
-		register struct in_addr *an_tmp;
-		size = op->notify_count * sizeof *op->also_notify;
-		an_tmp = memget(size + sizeof *op->also_notify);
-		if (an_tmp == NULL) {
-			i = 1;
-		} else {
-			memcpy(an_tmp, op->also_notify, size);
-			memput(op->also_notify, size);
-			op->also_notify = an_tmp;
-		}
-	}
-	if (i == 0) {
-		op->also_notify[op->notify_count] = address;
-		op->notify_count++;
-	} else {
-		ns_warning(ns_log_config,
-		     "global also-notify add failed (memget) [%s]",
-			inet_ntoa(address));
-	}
-#endif
-	return (1);
-}
-
-void
-add_global_forwarder(options op, struct in_addr address) {
-
-	INSIST(op != NULL);
-
-	ns_debug(ns_log_config, 2, "adding default forwarder %s",
-		 inet_ntoa(address));
-
-	add_forwarder(&op->fwdtab, address);
-}
-
-void
-set_zone_forward(zone_config zh) {
-	struct zoneinfo *zp;
-	zp = zh.opaque;
-
-	zp->z_flags |= Z_FORWARD_SET;
-	set_zone_boolean_option(zh, OPTION_FORWARD_ONLY, 0);
-}
-
-void
-add_zone_forwarder(zone_config zh, struct in_addr address) {
-	struct zoneinfo *zp;
-	char *zname;
-
-	zp = zh.opaque;
-	INSIST(zp != NULL);
-
-	zname = (zp->z_origin[0] == '\0') ? "." : zp->z_origin;
-	ns_debug(ns_log_config, 2, "adding forwarder %s for zone zone '%s'",
-		 inet_ntoa(address), zname);
-
-	zp->z_flags |= Z_FORWARD_SET;
-
-	add_forwarder(&zp->z_fwdtab, address);
-}
-
-void
-free_forwarders(struct fwdinfo *fwdtab) {
-	struct fwdinfo *ftp, *fnext;
-
-	for (ftp = fwdtab; ftp != NULL; ftp = fnext) {
-		fnext = ftp->next;
-		if (!--ftp->fwddata->ref_count) {
-			memput(ftp->fwddata->ns, sizeof *ftp->fwddata->ns);
-			memput(ftp->fwddata->nsdata,
-					sizeof *ftp->fwddata->nsdata);
-			memput(ftp->fwddata,sizeof *ftp->fwddata);
-		}
-		memput(ftp, sizeof *ftp);
-	}
-	fwdtab = NULL;
-}
-
-/*
- * Servers 
- */
-
-static server_info
-new_server(struct in_addr address) {
-	server_info si;
-
-	si = (server_info)memget(sizeof (struct server_info));
-	if (si == NULL)
-		panic("memget failed in new_server()", NULL);
-	si->address = address;
-	si->flags = 0U;
-	si->transfers = 0;
-	si->transfer_format = axfr_use_default;
-	si->key_list = NULL;
-	si->next = NULL;
-	if (server_options->flags & OPTION_MAINTAIN_IXFR_BASE)
-		si->flags |= SERVER_INFO_SUPPORT_IXFR;
-	else
-		si->flags &= ~SERVER_INFO_SUPPORT_IXFR;	
-	return (si);
-}
-
-static void
-free_server(server_info si) {
-	/* Don't free key; it'll be done when the auth table is freed. */
-	memput(si, sizeof *si);
-}
-
-server_info
-find_server(struct in_addr address) {
-	server_info si;
-
-	for (si = nameserver_info; si != NULL; si = si->next)
-		if (si->address.s_addr == address.s_addr)
-			break;
-	return (si);
-}
-
-static void
-add_server(server_info si) {
-	ip_match_element ime;
-
-	si->next = nameserver_info;
-	nameserver_info = si;
-
-	/*
-	 * To ease transition, we'll add bogus nameservers to an
-	 * ip matching list.  This will probably be redone when the
-	 * merging of nameserver data structures occurs.
-	 */
-	if (si->flags & SERVER_INFO_BOGUS) {
-		ime = new_ip_match_pattern(si->address, 32);
-		INSIST(ime != NULL);
-		add_to_ip_match_list(bogus_nameservers, ime);
-	}
-	ns_debug(ns_log_config, 3, "server %s: flags %08x transfers %d",
-		 inet_ntoa(si->address), si->flags, si->transfers);
-	if (si->key_list != NULL)
-		dprint_key_info_list(si->key_list);
-}
-
-static void
-free_nameserver_info() {
-	server_info si_next, si;
-	
-	for (si = nameserver_info; si != NULL; si = si_next) {
-		si_next = si->next;
-		free_server(si);
-	}
-	nameserver_info = NULL;
-	if (bogus_nameservers != NULL) {
-		free_ip_match_list(bogus_nameservers);
-		bogus_nameservers = NULL;
-	}
-}
-
-static void
-free_secretkey_info() {
-	if (secretkey_info != NULL) {
-		free_key_info_list(secretkey_info);
-		secretkey_info = NULL;
-	}
-}
-
-server_config
-begin_server(struct in_addr address) {
-	server_config sc;
-	
-	sc.opaque = new_server(address);
-	return (sc);
-}
-
-void
-end_server(server_config sc, int should_install) {
-	server_info si;
-
-	si = sc.opaque;
-
-	INSIST(si != NULL);
-	
-	if (should_install)
-		add_server(si);
-	else
-		free_server(si);
-	sc.opaque = NULL;
-}
-
-void
-set_server_option(server_config sc, int bool_opt, int value) {
-	server_info si;
-
-	si = sc.opaque;
-
-	INSIST(si != NULL);
-
-	switch (bool_opt) {
-	case SERVER_INFO_BOGUS:
-	case SERVER_INFO_SUPPORT_IXFR:
-		if (value)
-			si->flags |= bool_opt;
-		else
-			si->flags &= ~bool_opt;
-		break;
-	default:
-		panic("unexpected option in set_server_option", NULL);
-	}
-}
-
-void
-set_server_transfers(server_config sc, int transfers) {
-	server_info si;
-
-	si = sc.opaque;
-
-	INSIST(si != NULL);
-
-	if (transfers < 0)
-		transfers = 0;
-	si->transfers = transfers;
-}
-
-void
-set_server_transfer_format(server_config sc,
-			   enum axfr_format transfer_format) {
-	server_info si;
-
-	si = sc.opaque;
-
-	INSIST(si != NULL);
-
-	si->transfer_format = transfer_format;
-}
-
-void
-add_server_key_info(server_config sc, DST_KEY *dst_key) {
-	server_info si;
-
-	si = sc.opaque;
-
-	INSIST(si != NULL);
-
-	if (si->key_list == NULL)
-		si->key_list = new_key_info_list();
-	add_to_key_info_list(si->key_list, dst_key);
-}
-
-/*
- * Keys
- */
-
-DST_KEY *
-new_key_info(char *name, char *algorithm, char *secret) {
-	DST_KEY *dst_key;
-	int alg, blen;
-	u_char buffer[1024];
-
-	INSIST(name != NULL);
-	INSIST(algorithm != NULL);
-	INSIST(secret != NULL);
-	alg = tsig_alg_value(algorithm);
-	if (alg == -1) {
-		ns_warning(ns_log_config, "Unsupported TSIG algorithm %s",
-			 algorithm);
-		return (NULL);
-	}
-
-	blen = b64_pton(secret, buffer, sizeof(buffer));
-	if (blen < 0) {
-		ns_warning(ns_log_config, "Invalid TSIG secret \"%s\"", secret);
-		return (NULL);
-	}
-	dst_key = dst_buffer_to_key(name, alg,
-				    NS_KEY_TYPE_AUTH_ONLY|NS_KEY_NAME_ENTITY,
-				    NS_KEY_PROT_ANY, buffer, blen);
-	if (dst_key == NULL)
-		ns_warning(ns_log_config,
-			   "dst_buffer_to_key failed in new_key_info");
-	return (dst_key);
-}
-
-void
-free_key_info(DST_KEY *dst_key) {
-	INSIST(dst_key != NULL);
-	dst_free_key(dst_key);
-}
-
-DST_KEY *
-find_key(char *name, char *algorithm) {
-	key_list_element ke;
-
-	if (secretkey_info == NULL)
-		return (NULL);
-
-	for (ke = secretkey_info->first; ke != NULL; ke = ke->next) {
-		DST_KEY *dst_key = ke->key;
-
-		if (ns_samename(name, dst_key->dk_key_name) != 1)
-			continue;
-		if (algorithm == NULL ||
-		    dst_key->dk_alg == tsig_alg_value(algorithm))
-			break;
-	}
-	if (ke == NULL)
-		return (NULL);
-	return (ke->key);
-}
-
-void
-dprint_key_info(DST_KEY *dst_key) {
-	INSIST(dst_key != NULL);
-	ns_debug(ns_log_config, 7, "key %s", dst_key->dk_key_name);
-	ns_debug(ns_log_config, 7, "  algorithm %d", dst_key->dk_alg);
-}
-
-key_info_list
-new_key_info_list() {
-	key_info_list kil;
-
-	kil = (key_info_list)memget(sizeof (struct key_info_list));
-	if (kil == NULL)
-		panic("memget failed in new_key_info_list()", NULL);
-	kil->first = NULL;
-	kil->last = NULL;
-	return (kil);
-}
-
-void
-free_key_info_list(key_info_list kil) {
-	key_list_element kle, kle_next;
-
-	INSIST(kil != NULL);
-	for (kle = kil->first; kle != NULL; kle = kle_next) {
-		kle_next = kle->next;
-		/* note we do NOT free kle->info */
-		memput(kle, sizeof *kle);
-	}
-	memput(kil, sizeof *kil);
-}
-
-void
-add_to_key_info_list(key_info_list kil, DST_KEY *dst_key) {
-	key_list_element kle;
-
-	INSIST(kil != NULL);
-	INSIST(dst_key != NULL);
-
-	kle = (key_list_element)memget(sizeof (struct key_list_element));
-	if (kle == NULL)
-		panic("memget failed in add_to_key_info_list()", NULL);
-	kle->key = dst_key;
-	if (kil->last != NULL)
-		kil->last->next = kle;
-	kle->next = NULL;
-	kil->last = kle;
-	if (kil->first == NULL)
-		kil->first = kle;
-}
-
-void
-dprint_key_info_list(key_info_list kil) {
-	key_list_element kle;
-
-	INSIST(kil != NULL);
-
-	for (kle = kil->first; kle != NULL; kle = kle->next)
-		dprint_key_info(kle->key);
-}
-
-/*
- * Logging.
- */
-
-log_config
-begin_logging() {
-	log_config log_cfg;
-	log_context lc;
-
-	log_cfg = (log_config)memget(sizeof (struct log_config));
-	if (log_cfg == NULL)
-		ns_panic(ns_log_config, 0,
-			 "memget failed creating log_config");
-	if (log_new_context(ns_log_max_category, logging_categories, &lc) < 0)
-		ns_panic(ns_log_config, 0,
-			 "log_new_context() failed: %s", strerror(errno));
-	log_cfg->log_ctx = lc;
-	log_cfg->eventlib_channel = NULL;
-	log_cfg->packet_channel = NULL;
-	log_cfg->default_debug_active = 0;
-	return (log_cfg);
-}
-
-void
-add_log_channel(log_config log_cfg, int category, log_channel chan) {
-	log_channel_type type;
-
-	INSIST(log_cfg != NULL);
-	
-	type = log_get_channel_type(chan);
-	if (category == ns_log_eventlib) {
-		if (type != log_file && type != log_null) {
-			ns_error(ns_log_config,
-	 "must specify a file or null channel for the eventlib category");
-			return;
-		}
-		if (log_cfg->eventlib_channel != NULL) {
-			ns_error(ns_log_config,
-	 "only one channel allowed for the eventlib category");
-			return;
-		}
-		log_cfg->eventlib_channel = chan;
-	}
-	if (category == ns_log_packet) {
-		if (type != log_file && type != log_null) {
-			ns_error(ns_log_config,
-	 "must specify a file or null channel for the packet category");
-			return;
-		}
-		if (log_cfg->packet_channel != NULL) {
-			ns_error(ns_log_config,
-	 "only one channel allowed for the packet category");
-			return;
-		}
-		log_cfg->packet_channel = chan;
-	}
-
-	if (log_add_channel(log_cfg->log_ctx, category, chan) < 0) {
-		ns_error(ns_log_config, "log_add_channel() failed");
-		return;
-	}
-
-	if (chan == debug_channel)
-		log_cfg->default_debug_active = 1;
-}
-
-void
-open_special_channels() {
-	int using_null = 0;
-
-	if (log_open_stream(eventlib_channel) == NULL) {
-		eventlib_channel = null_channel;
-		using_null = 1;
-	}
-	if (log_open_stream(packet_channel) == NULL) {
-		packet_channel = null_channel;
-		using_null = 1;
-	}
-
-	if (using_null &&
-	    log_open_stream(null_channel) == NULL)
-		ns_panic(ns_log_config, 1, "couldn't open null channel");
-}
-
-void
-set_logging(log_config log_cfg, int is_default) {
-	log_context lc;
-
-	INSIST(log_cfg != NULL);
-	lc = log_cfg->log_ctx;
-
-	/*
-	 * Add the default category if it's not in the context already.
-	 */
-	if (!log_category_is_active(lc, ns_log_default)) {
-		add_log_channel(log_cfg, ns_log_default, debug_channel);
-		add_log_channel(log_cfg, ns_log_default, syslog_channel);
-	}
-
-	/*
-	 * Add the panic category if it's not in the context already.
-	 */
-	if (!log_category_is_active(lc, ns_log_panic)) {
-		add_log_channel(log_cfg, ns_log_panic, stderr_channel);
-		add_log_channel(log_cfg, ns_log_panic, syslog_channel);
-	}
-
-	/*
-	 * Add the eventlib category if it's not in the context already.
-	 */
-	if (!log_category_is_active(lc, ns_log_eventlib))
-		add_log_channel(log_cfg, ns_log_eventlib, debug_channel);
-
-	/*
-	 * Add the packet category if it's not in the context already.
-	 */
-	if (!log_category_is_active(lc, ns_log_packet))
-		add_log_channel(log_cfg, ns_log_packet, debug_channel);
-
-#ifdef DEBUG
-	/*
-	 * Preserve debugging state.
-	 */
-	log_option(lc, LOG_OPTION_DEBUG, debug);
-	log_option(lc, LOG_OPTION_LEVEL, debug);
-#endif
-
-	/*
-	 * Special case for query-log, so we can co-exist with the command
-	 * line option and SIGWINCH.
-	 */
-	if (log_category_is_active(lc, ns_log_queries))
-		qrylog = 1;
-
-	/*
-	 * Cleanup the old context.
-	 */
-	if (need_logging_free)
-		log_free_context(log_ctx);
-
-	/*
-	 * The default file channels will never have their reference counts
-	 * drop to zero, and so they will not be closed by the logging system
-	 * when log_free_context() is called.  We don't want to keep files
-	 * open unnecessarily, and we want them to behave like user-created
-	 * channels, so we close them here.
-	 */
-	if (log_get_stream(debug_channel) != stderr)
-		(void)log_close_stream(debug_channel);
-	(void)log_close_stream(null_channel);
-
-	/*
-	 * Install the new context.
-	 */
-	log_ctx = lc;
-	eventlib_channel = log_cfg->eventlib_channel;
-	packet_channel = log_cfg->packet_channel;
-
-#ifdef DEBUG
-	if (debug) {
-		open_special_channels();
-		evSetDebug(ev, debug, log_get_stream(eventlib_channel));
-	}
-#endif
-
-	log_ctx_valid = 1;
-	need_logging_free = 1;
-	logging_installed = 1;
-	default_logging_installed = is_default;
-}
-
-void
-end_logging(log_config log_cfg, int should_install) {
-	if (should_install)
-		set_logging(log_cfg, 0);
-	else
-		log_free_context(log_cfg->log_ctx);
-	memput(log_cfg, sizeof (struct log_config));
-}
-
-void
-use_default_logging() {
-	log_config log_cfg;
-
-	log_cfg = begin_logging();
-	set_logging(log_cfg, 1);
-	memput(log_cfg, sizeof (struct log_config));
-}
-
-static void
-init_default_log_channels() {
-	u_int flags;
-	char *name;
-	FILE *stream;
-
-	syslog_channel = log_new_syslog_channel(0, log_info, LOG_DAEMON);
-	if (syslog_channel == NULL || log_inc_references(syslog_channel) < 0)
-		ns_panic(ns_log_config, 0, "couldn't create syslog_channel");
-
-	flags = LOG_USE_CONTEXT_LEVEL|LOG_REQUIRE_DEBUG;
-	if (foreground) {
-		name = NULL;
-		stream = stderr;
-	} else {
-		name = _PATH_DEBUG;
-		stream = NULL;
-	}
-	debug_channel = log_new_file_channel(flags, log_info, name, stream,
-					     0, ULONG_MAX);
-	if (debug_channel == NULL || log_inc_references(debug_channel) < 0)
-		ns_panic(ns_log_config, 0, "couldn't create debug_channel");
-	log_set_file_owner(debug_channel, user_id, group_id);
-
-	stderr_channel = log_new_file_channel(0, log_info, NULL, stderr,
-					      0, ULONG_MAX);
-	if (stderr_channel == NULL || log_inc_references(stderr_channel) < 0)
-		ns_panic(ns_log_config, 0, "couldn't create stderr_channel");
-	log_set_file_owner(stderr_channel, user_id, group_id);
-
-	null_channel = log_new_file_channel(LOG_CHANNEL_OFF, log_info,
-					    _PATH_DEVNULL, NULL, 0, ULONG_MAX);
-	if (null_channel == NULL || log_inc_references(null_channel) < 0)
-		ns_panic(ns_log_config, 0, "couldn't create null_channel");
-	log_set_file_owner(null_channel, user_id, group_id);
-}
-
-static void
-shutdown_default_log_channels() {
-	log_free_channel(syslog_channel);
-	log_free_channel(debug_channel);
-	log_free_channel(stderr_channel);
-	log_free_channel(null_channel);
-}
-
-void 
-init_logging() {
-	int size;
-	const struct ns_sym *s;
-	char category_name[256];
-
-	size = ns_log_max_category * (sizeof (char *));
-
-	logging_categories = (char **)memget(size);
-	if (logging_categories == NULL)
-		ns_panic(ns_log_config, 0, "memget failed in init_logging");
-	memset(logging_categories, 0, size);
-	for (s = category_constants; s != NULL && s->name != NULL; s++) {
-		sprintf(category_name, "%s: ", s->name);
-		logging_categories[s->number] = savestr(category_name, 1);
-	}
-
-	init_default_log_channels();
-	use_default_logging();
-}
-
-void 
-shutdown_logging() {
-	int size;
-	const struct ns_sym *s;
-
-	evSetDebug(ev, 0, NULL);
-	shutdown_default_log_channels();
-	log_free_context(log_ctx);
-
-	for (s = category_constants; s != NULL && s->name != NULL; s++)
-		freestr(logging_categories[s->number]);
-	size = ns_log_max_category * (sizeof (char *));
-	memput(logging_categories, size);
-	logging_categories = NULL;
-}
-
-/*
- * Main Loader
- */
-
-void
-init_configuration() {
-	/*
-	 * Remember initial limits for use if "default" is specified in
-	 * a config file.
-	 */
-#ifdef HAVE_GETRUSAGE
-	get_initial_limits();
-#endif
-	zone_symbol_table = new_symbol_table(ZONE_SYM_TABLE_SIZE, NULL);
-	use_default_options();
-	parser_initialize();
-	ns_ctl_initialize();
-	config_initialized = 1;
-}
-
-void
-shutdown_configuration() {
-	REQUIRE(config_initialized);
-
-	ns_ctl_shutdown();
-	if (server_options != NULL) {
-		free_options(server_options);
-		server_options = NULL;
-	}
-	if (current_pid_filename != NULL)
-		freestr(current_pid_filename);
-	free_nameserver_info();
-	free_secretkey_info();
-	free_symbol_table(zone_symbol_table);
-	parser_shutdown();
-	config_initialized = 0;
-}
-
-void
-load_configuration(const char *filename) {
-	REQUIRE(config_initialized);
-
-	ns_debug(ns_log_config, 3, "load configuration %s", filename);
-
-	loading = 1;
-
-	/*
-	 * Clean up any previous configuration and initialize
-	 * global data structures we'll be updating.
-	 */
-	free_nameserver_info();
-	free_secretkey_info();
-	bogus_nameservers = new_ip_match_list();
-
-	options_installed = 0;
-	logging_installed = 0;
-
-	parse_configuration(filename);
-
-	/*
-	 * If the user didn't specify logging or options, but they previously
-	 * had specified one or both of them, then we need to
-	 * re-establish the default environment.  We have to be careful
-	 * about when we install default options because the parser
-	 * must respect limits (e.g. data-size, number of open files)
-	 * specified in the options file.  In the ordinary case where the
-	 * options section isn't changing on a zone reload, it would be bad
-	 * to lower these limits temporarily, because we might not survive
-	 * to the point where they get raised back again.  The logging case
-	 * has similar motivation -- we don't want to override the existing
-	 * logging scheme (perhaps causing log messages to go somewhere 
-	 * unexpected) when the user hasn't expressed a desire for a new
-	 * scheme.
-	 */
-	if (!logging_installed)
-		use_default_logging();
-	if (!options_installed && !default_options_installed) {
-		use_default_options();
-		ns_warning(ns_log_config, "re-establishing default options");
-	}
-
-	update_pid_file();
-
-	/* Init or reinit the interface/port list and associated sockets. */
-	getnetconf(0);
-	opensocket_f();
-
-	initial_configuration = 0;
-	loading = 0;
-	/* release queued notifies */
-	notify_afterload();
-}
diff --git a/contrib/bind/bin/named/ns_ctl.c b/contrib/bind/bin/named/ns_ctl.c
deleted file mode 100644
index 66cb8625b4fb3..0000000000000
--- a/contrib/bind/bin/named/ns_ctl.c
+++ /dev/null
@@ -1,937 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_ctl.c,v 8.34 2000/04/21 06:54:05 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1997-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Extern. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <limits.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-#include <fcntl.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-/* Defs. */
-
-#define CONTROL_FOUND	0x0001	/* for mark and sweep. */
-#define	MAX_STR_LEN	500
-
-struct control {
-	LINK(struct control) link;
-	enum { t_dead, t_inet, t_unix } type;
-	struct ctl_sctx *sctx;
-	u_int flags;
-	union {
-		struct {
-			struct sockaddr_in in;
-			ip_match_list allow;
-		} v_inet;
-#ifndef NO_SOCKADDR_UN
-		struct {
-			struct sockaddr_un un;
-			mode_t mode;
-			uid_t owner;
-			gid_t group;
-		} v_unix;
-#endif
-	} var;
-};
-
-/* Forward. */
-
-static struct ctl_sctx *mksrvr(control, const struct sockaddr *, size_t);
-static control		new_control(void);
-static void		free_control(controls *, control);
-static void		free_controls(controls *);
-static int		match_control(control, control);
-static control		find_control(controls, control);
-static void		propagate_changes(const control, control);
-static void		install(control);
-static void		install_inet(control);
-static void		install_unix(control);
-static void		logger(enum ctl_severity, const char *fmt, ...);
-static void		verb_connect(struct ctl_sctx *, struct ctl_sess *,
-				     const struct ctl_verb *,
-				     const char *, u_int, void *, void *);
-static void		verb_getpid(struct ctl_sctx *, struct ctl_sess *,
-				    const struct ctl_verb *,
-				    const char *, u_int, void *, void *);
-static void		getpid_closure(struct ctl_sctx *, struct ctl_sess *,
-				       void *);
-static void		verb_status(struct ctl_sctx *, struct ctl_sess *,
-				    const struct ctl_verb *,
-				    const char *, u_int, void *, void *);
-static void		status_closure(struct ctl_sctx *, struct ctl_sess *,
-				       void *);
-static void		verb_stop(struct ctl_sctx *, struct ctl_sess *,
-				  const struct ctl_verb *,
-				  const char *, u_int, void *, void *);
-static void		verb_exec(struct ctl_sctx *, struct ctl_sess *,
-				  const struct ctl_verb *,
-				  const char *, u_int, void *, void *);
-static void		verb_reload(struct ctl_sctx *, struct ctl_sess *,
-				    const struct ctl_verb *,
-				    const char *, u_int, void *, void *);
-static void		verb_reconfig(struct ctl_sctx *, struct ctl_sess *,
-				      const struct ctl_verb *,
-				      const char *, u_int, void *, void *);
-static void		verb_dumpdb(struct ctl_sctx *, struct ctl_sess *,
-				    const struct ctl_verb *,
-				    const char *, u_int, void *, void *);
-static void		verb_stats(struct ctl_sctx *, struct ctl_sess *,
-				   const struct ctl_verb *,
-				   const char *, u_int, void *, void *);
-static void		verb_trace(struct ctl_sctx *, struct ctl_sess *,
-				   const struct ctl_verb *,
-				   const char *, u_int, void *, void *);
-static void		trace_closure(struct ctl_sctx *, struct ctl_sess *,
-				       void *);
-static void		verb_notrace(struct ctl_sctx *, struct ctl_sess *,
-				     const struct ctl_verb *,
-				     const char *, u_int, void *, void *);
-static void		verb_querylog(struct ctl_sctx *, struct ctl_sess *,
-				      const struct ctl_verb *,
-				      const char *, u_int, void *, void *);
-static void		verb_help(struct ctl_sctx *, struct ctl_sess *,
-				  const struct ctl_verb *,
-				  const char *, u_int, void *, void *);
-static void		verb_quit(struct ctl_sctx *, struct ctl_sess *,
-				  const struct ctl_verb *,
-				  const char *, u_int, void *, void *);
-
-/* Private data. */
-
-static controls server_controls;
-
-static struct ctl_verb verbs[] = {
-	{ "",		verb_connect,	""},
-	{ "getpid",	verb_getpid,	"getpid"},
-	{ "status",	verb_status,	"status"},
-	{ "stop",	verb_stop,	"stop"},
-	{ "exec",	verb_exec,	"exec"},
-	{ "reload",	verb_reload,	"reload [zone] ..."},
-	{ "reconfig",	verb_reconfig,	"reconfig [-noexpired] (just sees new/gone zones)"},
-	{ "dumpdb",	verb_dumpdb,	"dumpdb"},
-	{ "stats",	verb_stats,	"stats"},
-	{ "trace",	verb_trace,	"trace [level]"},
-	{ "notrace",	verb_notrace,	"notrace"},
-	{ "querylog",	verb_querylog,	"querylog"},
-	{ "qrylog",	verb_querylog,	"qrylog"},
-	{ "help",	verb_help,	"help"},
-	{ "quit",	verb_quit,	"quit"},
-	{ NULL,		NULL,		NULL}
-};
-
-/* Public functions. */
-
-void
-ns_ctl_initialize(void) {
-	INIT_LIST(server_controls);
-}
-
-void
-ns_ctl_shutdown(void) {
-	if (!EMPTY(server_controls))
-		free_controls(&server_controls);
-}
-
-void
-ns_ctl_defaults(controls *list) {
-#ifdef NO_SOCKADDR_UN
-	struct in_addr saddr;
-	ip_match_list iml;
-	ip_match_element ime;
-
-	/*
-	 * If the operating system does not support local domain sockets, 
-	 * connect with ndc on 127.0.0.1, port 101, and only allow
-	 * connections from 127.0.0.1.
-	 */
-	saddr.s_addr = htonl (INADDR_LOOPBACK);
-	iml = new_ip_match_list();
-	ime = new_ip_match_pattern(saddr, 32);
-	add_to_ip_match_list(iml, ime);
-
-	ns_ctl_add(list, ns_ctl_new_inet(saddr, htons (101), iml));
-#else
-#ifdef NEED_SECURE_DIRECTORY
-	ns_ctl_add(list, ns_ctl_new_unix(_PATH_NDCSOCK, 0700, 0, 0));
-#else
-	ns_ctl_add(list, ns_ctl_new_unix(_PATH_NDCSOCK, 0600, 0, 0));
-#endif
-#endif /*NO_SOCKADDR_UN*/
-}
-
-void
-ns_ctl_add(controls *list, control new) {
-	if (!find_control(*list, new))
-		APPEND(*list, new, link);
-}
-
-control
-ns_ctl_new_inet(struct in_addr saddr, u_int sport, ip_match_list allow) {
-	control new = new_control();
-
-	INIT_LINK(new, link);
-	new->type = t_inet;
-	memset(&new->var.v_inet.in, 0, sizeof new->var.v_inet.in);
-	new->var.v_inet.in.sin_family = AF_INET;
-	new->var.v_inet.in.sin_addr = saddr;
-	new->var.v_inet.in.sin_port = sport;
-	new->var.v_inet.allow = allow;
-	return (new);
-}
-
-#ifndef NO_SOCKADDR_UN
-control
-ns_ctl_new_unix(char *path, mode_t mode, uid_t owner, gid_t group) {
-	control new = new_control();
-
-	INIT_LINK(new, link);
-	new->type = t_unix;
-	memset(&new->var.v_unix.un, 0, sizeof new->var.v_unix.un);
-	new->var.v_unix.un.sun_family = AF_UNIX;
-	strncpy(new->var.v_unix.un.sun_path, path,
-		sizeof new->var.v_unix.un.sun_path - 1);
-	new->var.v_unix.mode = mode;
-	new->var.v_unix.owner = owner;
-	new->var.v_unix.group = group;
-	return (new);
-}
-#endif
-
-void
-ns_ctl_install(controls *new) {
-	control ctl, old, next;
-
-	/* Find all the controls which aren't new or deleted. */
-	for (ctl = HEAD(server_controls); ctl != NULL; ctl = NEXT(ctl, link))
-		ctl->flags &= ~CONTROL_FOUND;
-	for (ctl = HEAD(*new); ctl != NULL; ctl = next) {
-		next = NEXT(ctl, link);
-		old = find_control(server_controls, ctl);
-		if (old != NULL) {
-			old->flags |= CONTROL_FOUND;
-			propagate_changes(ctl, old);
-			if (old->sctx == NULL)
-				free_control(&server_controls, old);
-			free_control(new, ctl);
-		}
-	}
-
-	/* Destroy any old controls which weren't found. */
-	for (ctl = HEAD(server_controls); ctl != NULL; ctl = next) {
-		next = NEXT(ctl, link);
-		if ((ctl->flags & CONTROL_FOUND) == 0)
-			free_control(&server_controls, ctl);
-	}
-
-	/* Add any new controls which were found. */
-	for (ctl = HEAD(*new); ctl != NULL; ctl = next) {
-		next = NEXT(ctl, link);
-		APPEND(server_controls, ctl, link);
-		install(ctl);
-		if (ctl->sctx == NULL)
-			free_control(&server_controls, ctl);
-	}
-}
-
-/* Private functions. */
-
-static struct ctl_sctx *
-mksrvr(control ctl, const struct sockaddr *sa, size_t salen) {
-	return (ctl_server(ev, sa, salen, verbs, 500, 222,
-			   600, 5, 10, logger, ctl));
-}
-
-static control
-new_control(void) {
-	control new = memget(sizeof *new);
-
-	if (new == NULL)
-		panic("memget failed in new_control()", NULL);
-	new->type = t_dead;
-	new->sctx = NULL;
-	return (new);
-}
-
-static void
-free_control(controls *list, control this) {
-	int was_live = 0;
-	struct stat sb;
-
-	if (this->sctx != NULL) {
-		ctl_endserver(this->sctx);
-		this->sctx = NULL;
-		was_live = 1;
-	}
-	switch (this->type) {
-	case t_inet:
-		if (this->var.v_inet.allow != NULL) {
-			free_ip_match_list(this->var.v_inet.allow);
-			this->var.v_inet.allow = NULL;
-		}
-		break;
-#ifndef NO_SOCKADDR_UN
-	case t_unix:
-		/* XXX Race condition. */
-		if (was_live &&
-		    stat(this->var.v_unix.un.sun_path, &sb) == 0 &&
-		    (S_ISSOCK(sb.st_mode) || S_ISFIFO(sb.st_mode))) {
-			/* XXX Race condition. */
-			unlink(this->var.v_unix.un.sun_path);
-		}
-		break;
-#endif
-	default:
-		panic("impossible type in free_control", NULL);
-		/* NOTREACHED */
-	}
-	UNLINK(*list, this, link);
-	memput(this, sizeof *this);
-}
-
-static void
-free_controls(controls *list) {
-	control ctl, next;
-
-	for (ctl = HEAD(*list); ctl != NULL; ctl = next) {
-		next = NEXT(ctl, link);
-		free_control(list, ctl);
-	}
-	INIT_LIST(*list);
-}
-
-static int
-match_control(control l, control r) {
-	int match = 1;
-
-	if (l->type != r->type)
-		match = 0;
-	else
-		switch (l->type) {
-		case t_inet:
-			if (l->var.v_inet.in.sin_family !=
-			    r->var.v_inet.in.sin_family ||
-			    l->var.v_inet.in.sin_port !=
-			    r->var.v_inet.in.sin_port ||
-			    l->var.v_inet.in.sin_addr.s_addr !=
-			    r->var.v_inet.in.sin_addr.s_addr)
-				match = 0;
-			break;
-#ifndef NO_SOCKADDR_UN
-		case t_unix:
-			if (l->var.v_unix.un.sun_family !=
-			    r->var.v_unix.un.sun_family ||
-			    strcmp(l->var.v_unix.un.sun_path,
-				   r->var.v_unix.un.sun_path) != 0)
-				match = 0;
-			break;
-#endif
-		default:
-			panic("impossible type in match_control", NULL);
-			/* NOTREACHED */
-		}
-	ns_debug(ns_log_config, 20, "match_control(): %d", match);
-	return (match);
-}
-
-static control
-find_control(controls list, control new) {
-	control ctl;
-
-	for (ctl = HEAD(list); ctl != NULL; ctl = NEXT(ctl, link))
-		if (match_control(ctl, new))
-			return (ctl);
-	return (NULL);
-}
-
-static void
-propagate_changes(const control diff, control base) {
-	int need_install = 0;
-
-	switch (base->type) {
-	case t_inet:
-		if (base->var.v_inet.allow != NULL)
-			free_ip_match_list(base->var.v_inet.allow);
-		base->var.v_inet.allow = diff->var.v_inet.allow;
-		diff->var.v_inet.allow = NULL;
-		need_install++;
-		break;
-#ifndef NO_SOCKADDR_UN
-	case t_unix:
-		if (base->var.v_unix.mode != diff->var.v_unix.mode) {
-			base->var.v_unix.mode = diff->var.v_unix.mode;
-			need_install++;
-		}
-		if (base->var.v_unix.owner != diff->var.v_unix.owner) {
-			base->var.v_unix.owner = diff->var.v_unix.owner;
-			need_install++;
-		}
-		if (base->var.v_unix.group != diff->var.v_unix.group) {
-			base->var.v_unix.group = diff->var.v_unix.group;
-			need_install++;
-		}
-		break;
-#endif
-	default:
-		panic("impossible type in ns_ctl::propagate_changes", NULL);
-		/* NOTREACHED */
-	}
-	if (need_install)
-		install(base);
-}
-
-static void
-install(control ctl) {
-	switch (ctl->type) {
-	case t_inet:
-		install_inet(ctl);
-		break;
-#ifndef NO_SOCKADDR_UN
-	case t_unix:
-		install_unix(ctl);
-		break;
-#endif
-	default:
-		panic("impossible type in ns_ctl::install", NULL);
-		/* NOTREACHED */
-	}
-}
-
-static void
-install_inet(control ctl) {
-	if (ctl->sctx == NULL) {
-		ctl->sctx = mksrvr(ctl,
-				   (struct sockaddr *)&ctl->var.v_inet.in,
-				   sizeof ctl->var.v_inet.in);
-	}
-}
-
-#ifndef NO_SOCKADDR_UN
-/*
- * Unattach an old unix domain socket if it exists.
- */
-static void
-unattach(control ctl) {
-	int s;
-	struct stat sb;
-
-	s = socket(AF_UNIX, SOCK_STREAM, 0);
-	if (s < 0) {
-		ns_warning(ns_log_config,
-			   "unix control \"%s\" socket failed: %s",
-			   ctl->var.v_unix.un.sun_path,
-			   strerror(errno));
-		return;
-	}
-
-	if (stat(ctl->var.v_unix.un.sun_path, &sb) < 0) {
-		switch (errno) {
-		case ENOENT:	/* We exited cleanly last time */
-			break;
-		default:
-			ns_warning(ns_log_config,
-				   "unix control \"%s\" stat failed: %s",
-				   ctl->var.v_unix.un.sun_path,
-				   strerror(errno));
-			break;
-		}
-		goto cleanup;
-	}
-
-	if (!(S_ISSOCK(sb.st_mode) || S_ISFIFO(sb.st_mode))) {
-		ns_warning(ns_log_config, "unix control \"%s\" not socket",
-			   ctl->var.v_unix.un.sun_path);
-		goto cleanup;
-	}
-
-	if (connect(s, (struct sockaddr *)&ctl->var.v_unix.un,
-		    sizeof ctl->var.v_unix.un) < 0) {
-		switch (errno) {
-		case ECONNREFUSED:
-		case ECONNRESET:
-			if (unlink(ctl->var.v_unix.un.sun_path) < 0)
-				ns_warning(ns_log_config,
-			      "unix control \"%s\" unlink failed: %s",
-					   ctl->var.v_unix.un.sun_path,
-					   strerror(errno));
-			break;
-		default:
-			ns_warning(ns_log_config,
-				   "unix control \"%s\" connect failed: %s",
-				   ctl->var.v_unix.un.sun_path,
-				   strerror(errno));
-			break;
-		}
-	}
-  cleanup:
-	close(s);
-}
-
-static void
-install_unix(control ctl) {
-	char *path;
-#ifdef NEED_SECURE_DIRECTORY
-	char *slash;
-
-	path = savestr(ctl->var.v_unix.un.sun_path, 1);
-
-	slash = strrchr(path, '/');
-	if (slash != NULL) {
-		if (slash != path)
-			*slash = '\0';
-		else {
-			freestr(path);
-			path = savestr("/", 1);
-		}
-	} else {
-		freestr(path);
-		path = savestr(".", 1);
-	}
-	if (mkdir(path, ctl->var.v_unix.mode) < 0) {
-		if (errno != EEXIST) {
-			ns_warning(ns_log_config,
-				   "unix control \"%s\" mkdir failed: %s",
-				   path, strerror(errno));
-		}
-	}
-#else
-	path = ctl->var.v_unix.un.sun_path;
-#endif
-
-	if (ctl->sctx == NULL) {
-		unattach(ctl);
-		ctl->sctx = mksrvr(ctl,
-				   (struct sockaddr *)&ctl->var.v_unix.un,
-				   sizeof ctl->var.v_unix.un);
-	}
-	if (ctl->sctx != NULL) {
-		/* XXX Race condition. */
-		if (chmod(path, ctl->var.v_unix.mode) < 0) {
-			ns_warning(ns_log_config, "chmod(\"%s\", 0%03o): %s",
-				   ctl->var.v_unix.un.sun_path,
-				   ctl->var.v_unix.mode,
-				   strerror(errno));
-		}
-		if (chown(path, ctl->var.v_unix.owner,
-			  ctl->var.v_unix.group) < 0) {
-			ns_warning(ns_log_config, "chown(\"%s\", %d, %d): %s",
-				   ctl->var.v_unix.un.sun_path,
-				   ctl->var.v_unix.owner,
-				   ctl->var.v_unix.group,
-				   strerror(errno));
-		}
-	}
-#ifdef NEED_SECURE_DIRECTORY
-	freestr(path);
-#endif
-}
-#endif
-
-static void
-logger(enum ctl_severity ctlsev, const char *format, ...) {
-	va_list args;
-	int logsev;
-
-	switch (ctlsev) {
-	case ctl_debug:		logsev = log_debug(5);	break;
-	case ctl_warning:	logsev = log_warning;	break;
-	case ctl_error:		logsev = log_error;	break;
-	default:		panic("invalid ctlsev in logger", NULL);
-	}
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, ns_log_control, logsev, format, args);
-	va_end(args);
-}
-
-static void
-verb_connect(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	     const struct ctl_verb *verb, const char *rest,
-	     u_int respflags, void *respctx, void *uctx)
-{
-	const struct sockaddr *sa = (struct sockaddr *)respctx;
-	control nsctl = (control)uctx;
-
-	if (sa->sa_family == AF_INET) {
-		const struct sockaddr_in *in = (struct sockaddr_in *)sa;
-		const ip_match_list acl = nsctl->var.v_inet.allow;
-
-		if (!ip_address_allowed(acl, in->sin_addr)) {
-			ctl_response(sess, 502, "Permission denied.",
-				     CTL_EXIT, NULL, NULL, NULL, NULL, 0);
-			return;
-		}
-	}
-	ctl_response(sess, 220, server_options->version, 0, NULL, NULL, NULL,
-		     NULL, 0);
-}
-
-static void
-verb_getpid(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	    const struct ctl_verb *verb, const char *rest,
-	    u_int respflags, void *respctx, void *uctx)
-{
-	char *msg = memget(MAX_STR_LEN);
-
-	if (msg == NULL) {
-		ctl_response(sess, 503, "(out of memory)", 0,
-			     NULL, NULL, NULL, NULL, 0);
-		return;
-	}
-	sprintf(msg, "my pid is <%ld>", (long)getpid());
-	ctl_response(sess, 250, msg, 0, NULL, getpid_closure, msg, NULL, 0);
-}
-
-static void
-getpid_closure(struct ctl_sctx *sctx, struct ctl_sess *sess, void *uap) {
-	char *msg = uap;
-
-	memput(msg, MAX_STR_LEN);
-}
-
-enum state {
-	e_version = 0,
-	e_nzones,
-	e_debug,
-	e_xfersrun,
-	e_xfersdfr,
-	e_qserials,
-	e_qrylog,
-	e_priming,
-	e_loading,
-	e_finito
-};
-
-struct pvt_status {
-	enum state	state;
-	char		text[MAX_STR_LEN];
-};
-
-static void
-verb_status(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	    const struct ctl_verb *verb, const char *rest,
-	    u_int respflags, void *respctx, void *uctx)
-{
-	struct pvt_status *pvt = ctl_getcsctx(sess);
-
-	if (pvt == NULL) {
-		pvt = memget(sizeof *pvt);
-		if (pvt == NULL) {
-			ctl_response(sess, 505, "(out of memory)",
-				     0, NULL, NULL, NULL, NULL, 0);
-			return;
-		}
-		pvt->state = e_version;
-		(void)ctl_setcsctx(sess, pvt);
-	}
-	switch (pvt->state++) {
-	case e_version:
-		strncpy(pvt->text, Version, sizeof pvt->text);
-		pvt->text[sizeof pvt->text - 1] = '\0';
-		break;
-	case e_nzones:
-		sprintf(pvt->text, "number of zones allocated: %d", nzones);
-		break;
-	case e_debug:
-		sprintf(pvt->text, "debug level: %d", debug);
-		break;
-	case e_xfersrun:
-		sprintf(pvt->text, "xfers running: %d", xfers_running);
-		break;
-	case e_xfersdfr:
-		sprintf(pvt->text, "xfers deferred: %d", xfers_deferred);
-		break;
-	case e_qserials:
-		sprintf(pvt->text, "soa queries in progress: %d",
-			qserials_running);
-		break;
-	case e_qrylog:
-		sprintf(pvt->text, "query logging is %s",
-			qrylog ? "ON" : "OFF");
-		break;
-	case e_priming:
-		sprintf(pvt->text, "server is %s priming",
-			priming ? "STILL" : "DONE");
-		break;
-	case e_loading:
-		sprintf(pvt->text, "server %s loading its configuration",
-			loading ? "IS" : "IS NOT");
-		break;
-	case e_finito:
-		return;
-	}
-	ctl_response(sess, 250, pvt->text,
-		     (pvt->state == e_finito) ? 0 : CTL_MORE,
-		     NULL, status_closure, NULL, NULL, 0);
-}
-
-static void
-status_closure(struct ctl_sctx *sctx, struct ctl_sess *sess, void *uap) {
-	struct pvt_status *pvt = ctl_getcsctx(sess);
-
-	memput(pvt, sizeof *pvt);
-	ctl_setcsctx(sess, NULL);
-}
-
-static void
-verb_stop(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	ns_need(main_need_exit);
-	ctl_response(sess, 250, "Shutdown initiated.", 0, NULL, NULL, NULL,
-		     NULL, 0);
-}
-
-static void
-verb_exec(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	struct stat sb;
-
-	if (rest != NULL && *rest != '\0') {
-		if (stat(rest, &sb) < 0) {
-			ctl_response(sess, 503, strerror(errno),
-				     0, NULL, NULL, NULL, NULL, 0);
-			return;
-		}
-		saved_argv[0] = savestr(rest, 1);	/* Never strfreed. */
-	}
-
-	if (stat(saved_argv[0], &sb) < 0) {
-		const char *save = strerror(errno);
-
-		ns_warning(ns_log_default, "can't exec, %s: %s",
-			   saved_argv[0], save);
-		ctl_response(sess, 502, save, 0, NULL, NULL, NULL,
-			     NULL, 0);
-	} else {
-		ns_need(main_need_restart);
-		ctl_response(sess, 250, "Restart initiated.", 0, NULL,
-			     NULL, NULL, NULL, 0);
-	}
-}
-
-static void
-verb_reload(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	    const struct ctl_verb *verb, const char *rest,
-	    u_int respflags, void *respctx, void *uctx)
-{
-	static const char spaces[] = " \t";
-	struct zoneinfo *zp;
-	char *tmp = NULL, *x;
-	const char *msg;
-	int class, code, success;
-
-	/* If there are no args, this is a classic reload of the config. */
-	if (rest == NULL || *rest == '\0') {
-		ns_need(main_need_reload);
-		code = 250;
-		msg = "Reload initiated.";
-		goto respond;
-	}
-
-	/* Look for optional zclass argument.  Default is "in". */
-	tmp = savestr(rest, 1);
-	x = tmp + strcspn(tmp, spaces);
-	if (*x != '\0') {
-		*x++ = '\0';
-		x += strspn(x, spaces);
-	}
-	if (x == NULL || *x == '\0')
-		x = "in";
-	class = sym_ston(__p_class_syms, x, &success);
-	if (!success) {
-		code = 507;
-		msg = "unrecognized class";
-		goto respond;
-	}
-
-	/* Look for the zone, and do the right thing to it. */
-	zp = find_zone(tmp, class);
-	if (zp == NULL) {
-		code = 506;
-		msg = "Zone not found.";
-		goto respond;
-	}
-	switch (zp->z_type) {
-	case z_master:
-		ns_stopxfrs(zp);
-		/*FALLTHROUGH*/
-	case z_hint:
-		block_signals();
-		code = 251;
-		msg = deferred_reload_unsafe(zp);
-		unblock_signals();
-		break;
-	case z_slave:
-	case z_stub:
-		ns_stopxfrs(zp);
-		if (zonefile_changed_p(zp))
-			zp->z_serial = 0;	/* force xfer */
-		addxfer(zp);
-		code = 251;
-		msg = "Slave transfer queued.";
-		goto respond;
-	case z_forward:
-	case z_cache:
-	default:
-		msg = "Non reloadable zone.";
-		code = 507;
-		break;
-	}
-
- respond:
-	ctl_response(sess, code, msg, 0, NULL, NULL, NULL, NULL, 0);
-	if (tmp != NULL)
-		freestr(tmp);
-}
-
-static void
-verb_reconfig(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	if (strcmp(rest, "-noexpired") != 0)
-		ns_need(main_need_reconfig);
-	else
-		ns_need(main_need_noexpired);
-	ctl_response(sess, 250, "Reconfig initiated.",
-		     0, NULL, NULL, NULL, NULL, 0);
-}
-
-static void
-verb_dumpdb(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	    const struct ctl_verb *verb, const char *rest,
-	    u_int respflags, void *respctx, void *uctx)
-{
-	ns_need(main_need_dump);
-	ctl_response(sess, 250, "Database dump initiated.", 0, NULL,
-		     NULL, NULL, NULL, 0);
-}
-
-static void
-verb_stats(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	   const struct ctl_verb *verb, const char *rest,
-	   u_int respflags, void *respctx, void *uctx)
-{
-	ns_need(main_need_statsdump);
-	ctl_response(sess, 250, "Statistics dump initiated.",
-		     0, NULL, NULL, NULL, NULL, 0);
-}
-
-static void
-verb_trace(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	   const struct ctl_verb *verb, const char *rest,
-	   u_int respflags, void *respctx, void *uctx)
-{
-	int i = atoi(rest);
-	char *msg = memget(MAX_STR_LEN);
-
-	if (msg == NULL) {
-		ctl_response(sess, 503, "(out of memory)", 0,
-			     NULL, NULL, NULL, NULL, 0);
-		return;
-	}
-	if (i > 0) 
-		desired_debug = i;
-	else
-		desired_debug++;
-	ns_need(main_need_debug);
-	sprintf(msg, "Debug level: %d", desired_debug);
-	ctl_response(sess, 250, msg, 0, NULL, trace_closure, msg, NULL, 0);
-}
-
-static void
-trace_closure(struct ctl_sctx *sctx, struct ctl_sess *sess, void *uap) {
-	char *msg = uap;
-
-	memput(msg, MAX_STR_LEN);
-}
-
-static void
-verb_notrace(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	     const struct ctl_verb *verb, const char *rest,
-	     u_int respflags, void *respctx, void *uctx)
-{
-	desired_debug = 0;
-	ns_need(main_need_debug);
-	ctl_response(sess, 250, "Debugging turned off.",
-		     0, NULL, NULL, NULL, NULL, 0);
-}
-
-static void
-verb_querylog(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	      const struct ctl_verb *verb, const char *rest,
-	      u_int respflags, void *respctx, void *uctx)
-{
-	static const char	on[] = "Query logging is now on.",
-				off[] = "Query logging is now off.";
-
-	toggle_qrylog();
-	ctl_response(sess, 250, qrylog ? on : off,
-		     0, NULL, NULL, NULL, NULL, 0);
-}
-
-static void
-verb_help(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	ctl_sendhelp(sess, 214);
-}
-
-static void
-verb_quit(struct ctl_sctx *ctl, struct ctl_sess *sess,
-	  const struct ctl_verb *verb, const char *rest,
-	  u_int respflags, void *respctx, void *uctx)
-{
-	ctl_response(sess, 221, "End of control session.", CTL_EXIT, NULL,
-		     NULL, NULL, NULL, 0);
-}
diff --git a/contrib/bind/bin/named/ns_defs.h b/contrib/bind/bin/named/ns_defs.h
deleted file mode 100644
index 56b50fed20d9f..0000000000000
--- a/contrib/bind/bin/named/ns_defs.h
+++ /dev/null
@@ -1,901 +0,0 @@
-/*
- *	from ns.h	4.33 (Berkeley) 8/23/90
- *	$Id: ns_defs.h,v 8.96 2000/04/21 06:54:06 vixie Exp $
- */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-/*
- * Global definitions for the name server.
- */
-
-/*
- * Effort has been expended here to make all structure members 32 bits or
- * larger land on 32-bit boundaries; smaller structure members have been
- * deliberately shuffled and smaller integer sizes chosen where possible
- * to make sure this happens.  This is all meant to avoid structure member
- * padding which can cost a _lot_ of memory when you have hundreds of 
- * thousands of entries in your cache.
- */
-
-/*
- * Timeout time should be around 1 minute or so.  Using the
- * the current simplistic backoff strategy, the sequence
- * retrys after 4, 8, and 16 seconds.  With 3 servers, this
- * dies out in a little more than a minute.
- * (sequence RETRYBASE, 2*RETRYBASE, 4*RETRYBASE... for MAXRETRY)
- */
-#define	NEWZONES	64	/* must be a power of two. */
-#define MINROOTS	2	/* min number of root hints */
-#define NSMAX		16	/* max number of NS addrs to try ([0..255]) */
-#define RETRYBASE	4 	/* base time between retries */
-#define	MAXCLASS	255	/* XXX - may belong elsewhere */
-#define MAXRETRY	3	/* max number of retries per addr */
-#define MAXCNAMES	8	/* max # of CNAMES tried per addr */
-#define MAXQUERIES	20	/* max # of queries to be made */
-#define	MAXQSERIAL	4	/* max # of outstanding QSERIAL's */
-				/* (prevent "recursive" loops) */
-#define	INIT_REFRESH	600	/* retry time for initial secondary */
-				/* contact (10 minutes) */
-#define MIN_REFRESH	2	/* never refresh more frequently than once */
-				/* every MIN_REFRESH seconds */
-#define MIN_RETRY	1	/* never retry more frequently than once */
-				/* every MIN_RETRY seconds */
-#define MAX_REFRESH	2419200	/* perform a refresh query at least */
-				/* every 4 weeks*/
-#define MAX_RETRY	1209600	/* perform a retry after no more than 2 weeks */
-#define MAX_EXPIRE	31536000 /* expire a zone if we have not talked to */
-				/* the primary in 1 year */
-#define NADDRECS	20	/* max addt'l rr's per resp */
-
-#define XFER_TIMER	120	/* named-xfer's connect timeout */
-#define MAX_XFER_TIME	60*60*2	/* default max seconds for an xfer */
-#define XFER_TIME_FUDGE	10	/* MAX_XFER_TIME fudge */
-#define MAX_XFERS_RUNNING 20	/* max value of transfers_in */
-#define DEFAULT_XFERS_RUNNING 10  /* default value of transfers_in */
-#define DEFAULT_XFERS_PER_NS 2	  /* default # of xfers per peer nameserver */
-#define	XFER_BUFSIZE	(16*1024) /* arbitrary but bigger than most MTU's */
-
-				  /* maximum time to cache negative answers */
-#define DEFAULT_MAX_NCACHE_TTL (3*60*60)
-
-#define ALPHA    0.7	/* How much to preserve of old response time */
-#define	BETA	 1.2	/* How much to penalize response time on failure */
-#define	GAMMA	 0.98	/* How much to decay unused response times */
-
-	/* What maintainance operations need to be performed sometime soon? */
-typedef enum need {
-	main_need_zreload = 0,	/* ns_zreload() needed. */
-	main_need_reload,	/* ns_reload() needed. */
-	main_need_reconfig,	/* ns_reconfig() needed. */
-	main_need_endxfer,	/* endxfer() needed. */
-	main_need_zoneload,	/* loadxfer() needed. */
-	main_need_dump,		/* doadump() needed. */
-	main_need_statsdump,	/* ns_stats() needed. */
-	main_need_exit,		/* exit() needed. */
-	main_need_qrylog,	/* toggle_qrylog() needed. */
-	main_need_debug,	/* use_desired_debug() needed. */
-	main_need_restart,	/* exec() needed. */
-	main_need_reap,		/* need to reap dead children */
-	main_need_noexpired,	/* ns_reconfig() needed w/ noexpired set */
-	main_need_num,		/* number of needs, used for array bound. */
-	main_need_tick		/* tick every second to poll for cleanup (NT)*/
-} main_need;
-
-	/* What global options are set? */
-#define	OPTION_NORECURSE	0x0001	/* Don't recurse even if asked. */
-#define	OPTION_NOFETCHGLUE	0x0002	/* Don't fetch missing glue. */
-#define	OPTION_FORWARD_ONLY	0x0004	/* Don't use NS RR's, just forward. */
-#define	OPTION_FAKE_IQUERY	0x0008	/* Fake up bogus response to IQUERY. */
-#ifdef BIND_NOTIFY
-#define	OPTION_NONOTIFY		0x0010	/* Turn off notify */
-#endif
-#define	OPTION_NONAUTH_NXDOMAIN	0x0020	/* Generate non-auth NXDOMAINs? */
-#define	OPTION_MULTIPLE_CNAMES	0x0040	/* Allow a name to have multiple
-					 * CNAME RRs */
-#define OPTION_HOSTSTATS	0x0080	/* Maintain per-host statistics? */
-#define OPTION_DEALLOC_ON_EXIT	0x0100	/* Deallocate everything on exit? */
-#define OPTION_NODIALUP		0x0200	/* Turn off dialup support */
-#define OPTION_NORFC2308_TYPE1	0x0400	/* Prevent type1 respones (RFC 2308)
-					 * to cached negative respones */
-#define	OPTION_USE_ID_POOL	0x0800	/* Use the memory hogging query ID */
-#define	OPTION_TREAT_CR_AS_SPACE 0x1000 /* Treat CR in zone files as space */
-#define OPTION_USE_IXFR		0x2000	/* Use by delault ixfr in zone transfer */
-#define OPTION_MAINTAIN_IXFR_BASE 0x4000 /* Part of IXFR file name logic. */
-
-#define	DEFAULT_OPTION_FLAGS	(OPTION_NODIALUP|OPTION_NONAUTH_NXDOMAIN|\
-				 OPTION_USE_ID_POOL|OPTION_NORFC2308_TYPE1)
-
-#ifdef BIND_UPDATE
-#define SOAINCRINTVL 300 /* default value for the time after which
-			  * the zone serial number must be incremented
-			  * after a successful update has occurred */
-#define DUMPINTVL 3600   /* default interval at which to dump changed zones
-			  * randomized, not exact */
-#define DEFERUPDCNT	100	/* default number of updates that can happen
-				 * before the zone serial number will be
-				 * incremented */
-#define UPDATE_TIMER XFER_TIMER
-#endif /* BIND_UPDATE */
-
-#define	USE_MINIMUM	0xffffffff
-#define	MAXIMUM_TTL	0x7fffffff
-
-#define CLEAN_TIMER		0x01
-#define INTERFACE_TIMER		0x02
-#define STATS_TIMER		0x04
-#define HEARTBEAT_TIMER		0x08
-
-	/* IP address accessor, network byte order. */
-#define	ina_ulong(ina)	(ina.s_addr)
-
-	/* IP address accessor, host byte order, read only. */
-#define	ina_hlong(ina)	ntohl(ina.s_addr)
-
-	/* IP address equality. */
-	/* XXX: assumes that network byte order won't affect equality. */
-#define	ina_equal(a, b)	(ina_ulong(a) == ina_ulong(b))
-
-	/* IP address equality with a mask. */
-#define	ina_onnet(h, n, m) ((ina_ulong(h) & ina_ulong(m)) == ina_ulong(n))
-
-	/* Sequence space arithmetic. */
-#define SEQ_GT(a,b)	((int32_t)((a)-(b)) > 0)
-
-#define	NS_OPTION_P(option) ((server_options == NULL) ? \
-		(panic(panic_msg_no_options, NULL), 0) : \
-		((server_options->flags & option) != 0))
-
-#define	NS_ZOPTION_P(zp, option) \
-		(((zp) != NULL && (((zp)->z_optset & option) != 0)) ? \
-		(((zp)->z_options & option) != 0) : NS_OPTION_P(option))
-
-#define	NS_ZFWDTAB(zp)	(((zp) == NULL) ? \
-		server_options->fwdtab : (zp)->z_fwdtab)
-
-#define	NS_INCRSTAT(addr, which) \
-	do { \
-		if ((int)which >= (int)nssLast) \
-			ns_panic(ns_log_insist, 1, panic_msg_bad_which, \
-				 __FILE__, __LINE__, #which); \
-		else { \
-			if (NS_OPTION_P(OPTION_HOSTSTATS)) { \
-				struct nameser *ns = \
-					nameserFind(addr, NS_F_INSERT); \
-				if (ns != NULL) \
-					ns->stats[(int)which]++; \
-			} \
-			globalStats[(int)which]++; \
-		} \
-	} while (0)
-
-enum severity { ignore, warn, fail, not_set };
-
-#ifdef BIND_NOTIFY
-enum znotify { znotify_use_default=0, znotify_yes, znotify_no };
-#endif
-
-enum zdialup { zdialup_use_default=0, zdialup_yes, zdialup_no };
-
-enum axfr_format { axfr_use_default=0, axfr_one_answer, axfr_many_answers };
-
-struct ip_match_direct {
-	struct in_addr address;
-	struct in_addr mask;
-};
-
-struct ip_match_indirect {
-	struct ip_match_list *list;
-};
-
-struct ip_match_key {
-	struct dst_key *key;
-};
-
-typedef enum { ip_match_pattern, ip_match_indirect, ip_match_localhost,
-	       ip_match_localnets, ip_match_key } ip_match_type;
-
-typedef struct ip_match_element {
-	ip_match_type type;
-	u_int flags;
-	union {
-		struct ip_match_direct direct;
-		struct ip_match_indirect indirect;
-		struct ip_match_key key;
-	} u;
-	struct ip_match_element *next;
-} *ip_match_element;
-
-/* Flags for ip_match_element */
-#define IP_MATCH_NEGATE			0x01	/* match means deny access */
-
-typedef struct ip_match_list {
-	ip_match_element first;
-	ip_match_element last;
-} *ip_match_list;
-
-typedef struct ztimer_info {
-	char *name;
-	int class;
-	int type;
-} *ztimer_info;
-
-/*
- * These fields are ordered to maintain word-alignment;
- * be careful about changing them.
- */
-struct zoneinfo {
-	char		*z_origin;	/* root domain name of zone */
-	time_t		z_time;		/* time for next refresh */
-	time_t		z_lastupdate;	/* time of last soa serial increment */
-	u_int32_t	z_refresh;	/* refresh interval */
-	u_int32_t	z_retry;	/* refresh retry interval */
-	u_int32_t	z_expire;	/* expiration time for cached info */
-	u_int32_t	z_minimum;	/* minimum TTL value */
-	u_int32_t	z_serial;	/* changes if zone modified */
-	char		*z_source;	/* source location of data */
-	time_t		z_ftime;	/* modification time of source file */
-	struct in_addr	z_axfr_src;	/* bind() the axfr socket to this */
-	struct in_addr	z_addr[NSMAX];	/* list of master servers for zone */
-	u_char		z_addrcnt;	/* number of entries in z_addr[] */
-	struct in_addr	z_xaddr[NSMAX];	/* list of master servers for xfer */
-	u_char		z_xaddrcnt;	/* number of entries in z_xaddr[] */
-	u_char		z_type;		/* type of zone; see below */
-	u_int32_t	z_flags;	/* state bits; see below */
-	pid_t		z_xferpid;	/* xfer child pid */
-	u_int		z_options;	/* options set specific to this zone */
-	u_int		z_optset;	/* which opts override global opts */
-	int		z_class;	/* class of zone */
-	int		z_numxfrs;	/* Ref count of concurrent xfrs. */
-	enum severity	z_checknames;	/* How to handle non-RFC-compliant names */
-#ifdef BIND_UPDATE
-	time_t		z_dumptime;	/* randomized time for next zone dump
-					 * if Z_NEED_DUMP is set */
-	u_int32_t	z_dumpintvl;	/* time interval between zone dumps */
-	time_t		z_soaincrintvl; /* interval for updating soa serial */
-	time_t		z_soaincrtime;	/* time for soa increment */
-	u_int32_t	z_deferupdcnt;  /* max number of updates before SOA
-					 * serial number incremented */
-	u_int32_t	z_updatecnt;    /* number of update requests processed
-					 * since the last SOA serial update */
-	char 		*z_updatelog;	/* log file for updates */
-#endif	
-	ip_match_list 	z_update_acl;  	/* list of who can issue dynamic
-					   updates */
-	ip_match_list	z_query_acl;	/* sites we'll answer questions for */
-	ip_match_list	z_transfer_acl;	/* sites that may get a zone transfer
-					   from us */
-	long		z_max_transfer_time_in;	/* max num seconds for AXFR */
-#ifdef BIND_NOTIFY
-	enum znotify	z_notify;	/* Notify mode */
-	struct in_addr *z_also_notify; /* More nameservers to notify */
-	int		z_notify_count;
-#endif
-	enum zdialup	z_dialup;	/* secondaries over a dialup link */
-	char            *z_ixfr_base;	/* where to find the history of the zone */
-	char            *z_ixfr_tmp;    /* tmp file for the ixfr */
-	int		    z_maintain_ixfr_base;
-	long		z_max_log_size_ixfr;
-	u_int32_t	z_serial_ixfr_start;	
-	evTimerID	z_timer;	/* maintenance timer */
-	ztimer_info	z_timerinfo;	/* UAP associated with timer */
-	time_t		z_nextmaint;	/* time of next maintenance */
-	u_int16_t	z_port;		/* perform AXFR to this port */
-	struct fwdinfo	*z_fwdtab;	/* zone-specific forwarders */
-	LINK(struct zoneinfo) z_freelink; /* if it's on the free list. */
-	LINK(struct zoneinfo) z_reloadlink; /* if it's on the reload list. */
-};
-
-	/* zone types (z_type) */
-enum zonetype { z_nil, z_master, z_slave, z_hint, z_stub, z_forward,
-		z_cache, z_any };
-#define	Z_NIL		z_nil		/* XXX */
-#define Z_MASTER	z_master	/* XXX */
-#define Z_PRIMARY	z_master	/* XXX */
-#define Z_SLAVE		z_slave		/* XXX */
-#define Z_SECONDARY	z_slave		/* XXX */
-#define Z_HINT		z_hint		/* XXX */
-#define Z_CACHE		z_cache		/* XXX */
-#define Z_STUB		z_stub		/* XXX */
-#define Z_FORWARD	z_forward	/* XXX */
-#define Z_ANY		z_any		/* XXX*2 */
-
-	/* zone state bits (32 bits) */
-#define	Z_AUTH		0x00000001	/* zone is authoritative */
-#define	Z_NEED_XFER	0x00000002	/* waiting to do xfer */
-#define	Z_XFER_RUNNING	0x00000004	/* asynch. xfer is running */
-#define	Z_NEED_RELOAD	0x00000008	/* waiting to do reload */
-#define	Z_SYSLOGGED	0x00000010	/* have logged timeout */
-#define	Z_QSERIAL	0x00000020	/* sysquery()'ing for serial number */
-#define	Z_FOUND		0x00000040	/* found in boot file when reloading */
-#define	Z_INCLUDE	0x00000080	/* set if include used in file */
-#define	Z_DB_BAD	0x00000100	/* errors when loading file */
-#define	Z_TMP_FILE	0x00000200	/* backup file for xfer is temporary */
-#ifdef BIND_UPDATE
-#define	Z_DYNAMIC	0x00000400	/* allow dynamic updates */
-#define	Z_NEED_DUMP	0x00000800	/* zone has changed, needs a dump */
-#define	Z_NEED_SOAUPDATE 0x00001000	/* soa serial number needs increment */
-#endif /* BIND_UPDATE */
-#define	Z_XFER_ABORTED	0x00002000	/* zone transfer has been aborted */
-#define	Z_XFER_GONE	0x00004000	/* zone transfer process is gone */
-#define	Z_TIMER_SET	0x00008000	/* z_timer contains a valid id */
-#ifdef BIND_NOTIFY
-#define	Z_NOTIFY	0x00010000	/* has an outbound notify executing */
-#endif
-#define	Z_NEED_QSERIAL  0x00020000	/* we need to re-call qserial() */
-#define	Z_PARENT_RELOAD	0x00040000	/* we need to reload this as parent */
-#define Z_FORWARD_SET	0x00080000	/* has forwarders been set */
-#define Z_EXPIRED	0x00100000	/* expire timer has gone off */
-
-	/* named_xfer exit codes */
-#define	XFER_UPTODATE	0		/* zone is up-to-date */
-#define	XFER_SUCCESS	1		/* performed transfer successfully */
-#define	XFER_TIMEOUT	2		/* no server reachable/xfer timeout */
-#define	XFER_FAIL	3		/* other failure, has been logged */
-#define XFER_SUCCESSAXFR 4              /* named-xfr recived a xfr */
-#define XFER_SUCCESSIXFR 5              /* named-xfr recived a ixfr */
-#define XFER_SUCCESSAXFRIXFRFILE 6      /* named-xfr received AXFR for IXFR */
-#define XFER_ISAXFR     -1              /* the last XFR is AXFR */
-#define XFER_ISIXFR     -2              /* the last XFR is IXFR */
-#define XFER_ISAXFRIXFR	-3		/* the last XFR is AXFR but we must create IXFR base */
-
-struct qserv {
-	struct sockaddr_in
-			ns_addr;	/* address of NS */
-	struct databuf	*ns;		/* databuf for NS record */
-	struct databuf	*nsdata;	/* databuf for server address */
-	struct timeval	stime;		/* time first query started */
-	unsigned int	forwarder:1;	/* this entry is for a forwarder */
-	unsigned int	nretry:31;	/* # of times addr retried */
-	u_int32_t	serial;		/* valid if Q_ZSERIAL */
-};
-
-/*
- * Structure for recording info on forwarded or generated queries.
- */
-struct qinfo {
-	u_int16_t	q_id;		/* id of query */
-	u_int16_t	q_nsid;		/* id of forwarded query */
-	struct sockaddr_in
-			q_from;		/* requestor's address */
-	u_char		*q_msg,		/* the message */
-			*q_cmsg;	/* the cname message */
-	int16_t		q_msglen,	/* len of message */
-			q_msgsize,	/* allocated size of message */
-			q_cmsglen,	/* len of cname message */
-			q_cmsgsize;	/* allocated size of cname message */
-	int16_t		q_dfd;		/* UDP file descriptor */
-	time_t		q_time;		/* time to retry */
-	time_t		q_expire;	/* time to expire */
-	struct qinfo	*q_next;	/* rexmit list (sorted by time) */
-	struct qinfo	*q_link;	/* storage list (random order) */
-	struct databuf	*q_usedns[NSMAX]; /* databuf for NS that we've tried */
-	struct qserv	q_addr[NSMAX];	/* addresses of NS's */
-#ifdef notyet
-	struct nameser	*q_ns[NSMAX];	/* name servers */
-#endif
-	u_char		q_naddr;	/* number of addr's in q_addr */
-	u_char		q_curaddr;	/* last addr sent to */
-	u_char		q_nusedns;	/* number of elements in q_usedns[] */
-	u_int8_t	q_flags;	/* see below */
-	int16_t		q_cname;	/* # of cnames found */
-	int16_t		q_nqueries;	/* # of queries required */
-	struct qstream	*q_stream;	/* TCP stream, null if UDP */
-	struct zoneinfo	*q_zquery;	/* Zone query is about (Q_ZSERIAL) */
-	struct zoneinfo	*q_fzone;	/* Forwarding zone, if any */
-	char		*q_domain;	/* domain of most enclosing zone cut */
-	char		*q_name;	/* domain of query */
-	u_int16_t	q_class;	/* class of query */
-	u_int16_t	q_type;		/* type of query */
-#ifdef BIND_NOTIFY
-	int		q_notifyzone;	/* zone which needs another znotify()
-					 * when the reply to this comes in.
-					 */
-#endif
-	struct tsig_record *q_tsig;	/* forwarded query's TSIG record */
-	struct tsig_record *q_nstsig;	/* forwarded query's TSIG record */
-};
-
-	/* q_flags bits (8 bits) */
-#define	Q_SYSTEM	0x01		/* is a system query */
-#define	Q_PRIMING	0x02		/* generated during priming phase */
-#define	Q_ZSERIAL	0x04		/* getting zone serial for xfer test */
-#define	Q_USEVC		0x08		/* forward using tcp not udp */
-
-#define Q_NEXTADDR(qp,n) (&(qp)->q_addr[n].ns_addr)
-
-#define	RETRY_TIMEOUT	45
-
-/*
- * Return codes from ns_forw:
- */
-#define	FW_OK		0
-#define	FW_DUP		1
-#define	FW_NOSERVER	2
-#define	FW_SERVFAIL	3
-
-typedef void (*sq_closure)(struct qstream *qs);
-
-#ifdef BIND_UPDATE
-struct fdlist {
-	int		fd;
-	struct fdlist	*next;
-};
-#endif
-
-
-typedef struct ns_delta {
-		LINK(struct ns_delta)   d_link;
-		ns_updque               d_changes;
-} ns_delta;
-
-typedef LIST(ns_delta) ns_deltalist;
-
-typedef struct _interface {
-	int			dfd,		/* Datagram file descriptor */
-				sfd;		/* Stream file descriptor. */
-	time_t			gen;		/* Generation number. */
-	struct in_addr		addr;		/* Interface address. */
-	u_int16_t		port;		/* Interface port. */
-	u_int16_t		flags;		/* Valid bits for evXXXXID. */
-	evFileID		evID_d;		/* Datagram read-event. */
-	evConnID		evID_s;		/* Stream listen-event. */
-	LINK(struct _interface)	link;
-} interface;
-
-#define INTERFACE_FILE_VALID	0x01
-#define INTERFACE_CONN_VALID	0x02
-#define INTERFACE_FORWARDING	0x04
-
-struct qstream {
-	int		s_rfd;		/* stream file descriptor */
-	int		s_size;		/* expected amount of data to rcv */
-	int		s_bufsize;	/* amount of data received in s_buf */
-	u_char		*s_buf;		/* buffer of received data */
-	u_char		*s_wbuf;	/* send buffer */
-	u_char		*s_wbuf_send;	/* next sendable byte of send buffer */
-	u_char		*s_wbuf_free;	/* next free byte of send buffer */
-	u_char		*s_wbuf_end;	/* byte after end of send buffer */
-	sq_closure	s_wbuf_closure;	/* callback for writable descriptor */
-	struct qstream	*s_next;	/* next stream */
-	struct sockaddr_in
-			s_from;		/* address query came from */
-	interface	*s_ifp;		/* interface query came from */
-	time_t		s_time;		/* time stamp of last transaction */
-	int		s_refcnt;	/* number of outstanding queries */
-	u_char		s_temp[HFIXEDSZ];
-#ifdef BIND_UPDATE
-	int		s_opcode;	/* type of request */
-	int		s_linkcnt;	/* number of client connections using
-					 * this connection to forward updates
-					 * to the primary */
-	struct fdlist	*s_fds;		/* linked list of connections to the
-					 * primaries that have been used by
-					 * the server to forward this client's
-					 * update requests */
-#endif
-	evStreamID	evID_r;		/* read event. */
-	evFileID	evID_w;		/* writable event handle. */
-	evConnID	evID_c;		/* connect event handle */
-	u_int		flags;		/* see below */
-	struct qstream_xfr {
-		enum { s_x_base, s_x_firstsoa, s_x_zone,
- 		       s_x_lastsoa, s_x_done, s_x_adding,
-		       s_x_deleting, s_x_addsoa, s_x_deletesoa }
-				state;		/* state of transfer. */
-		u_char		*msg,		/* current assembly message. */
-				*cp,		/* where are we in msg? */
-				*eom,		/* end of msg. */
-				*ptrs[128];	/* ptrs for dn_comp(). */
-		int		class,		/* class of an XFR. */
-				type,		/* type of XFR. */
-				id,		/* id of an XFR. */
-				opcode;		/* opcode of an XFR. */
-		u_int		zone;		/* zone being XFR'd. */
-		union {
-			struct namebuf	*axfr;	/* top np of an AXFR. */
-			ns_deltalist *ixfr;	/* top udp of an IXFR. */
-		}		top;
- 		int             ixfr_zone;
-	        u_int32_t	serial;	/* serial number requested in IXFR */
-		ns_tcp_tsig_state *tsig_state;	/* used by ns_sign_tcp */
-		int		tsig_skip;	/* skip calling ns_sign_tcp
-						 * during the next flush */
-		struct qs_x_lev {		/* decompose the recursion. */
-			enum {sxl_ns, sxl_all, sxl_sub}
-					state;	/* what's this level doing? */
-			int		flags;	/* see below (SXL_*). */
-			char		dname[MAXDNAME];
-			struct namebuf	*np,	/* this node. */
-					*nnp,	/* next node to process. */
-					**npp,	/* subs. */
-					**npe;	/* end of subs. */
-			struct databuf	*dp;	/* current rr. */
-			struct qs_x_lev	*next;	/* link. */
-		}		*lev;	/* LIFO. */
-		enum axfr_format transfer_format;
-	} xfr;
-};
-#define SXL_GLUING	0x01
-#define SXL_ZONECUT	0x02
-
-	/* flags */
-#define STREAM_MALLOC		0x01
-#define STREAM_WRITE_EV		0x02
-#define STREAM_READ_EV		0x04
-#define STREAM_CONNECT_EV	0x08
-#define STREAM_DONE_CLOSE	0x10
-#define STREAM_AXFR		0x20
-#define STREAM_AXFRIXFR		0x40
-
-#define ALLOW_NETS	0x0001
-#define	ALLOW_HOSTS	0x0002
-#define	ALLOW_ALL	(ALLOW_NETS | ALLOW_HOSTS)
-
-struct fwddata {
-	struct sockaddr_in
-			fwdaddr;	/* address of NS */
-	struct databuf	*ns;		/* databuf for NS record */
-	struct databuf	*nsdata;	/* databuf for server address */
-	int		ref_count;	/* how many users of this */
-};
-
-struct fwdinfo {
-	struct fwdinfo	*next;
-	struct fwddata  *fwddata;
-};
-
-enum nameserStats {	nssRcvdR,	/* sent us an answer */
-			nssRcvdNXD,	/* sent us a negative response */
-			nssRcvdFwdR,	/* sent us a response we had to fwd */
-			nssRcvdDupR,	/* sent us an extra answer */
-			nssRcvdFail,	/* sent us a SERVFAIL */
-			nssRcvdFErr,	/* sent us a FORMERR */
-			nssRcvdErr,	/* sent us some other error */
-			nssRcvdAXFR,	/* sent us an AXFR */
-			nssRcvdLDel,	/* sent us a lame delegation */
-			nssRcvdOpts,	/* sent us some IP options */
-			nssSentSysQ,	/* sent them a sysquery */
-			nssSentAns,	/* sent them an answer */
-			nssSentFwdQ,	/* fwdd a query to them */
-			nssSentDupQ,	/* sent them a retry */
-			nssSendtoErr,	/* error in sendto */
-			nssRcvdQ,	/* sent us a query */
-			nssRcvdIQ,	/* sent us an inverse query */
-			nssRcvdFwdQ,	/* sent us a query we had to fwd */
-			nssRcvdDupQ,	/* sent us a retry */
-			nssRcvdTCP,	/* sent us a query using TCP */
-			nssSentFwdR,	/* fwdd a response to them */
-			nssSentFail,	/* sent them a SERVFAIL */
-			nssSentFErr,	/* sent them a FORMERR */
-			nssSentNaAns,   /* sent them a non autoritative answer */
-			nssSentNXD,	/* sent them a negative response */
-			nssRcvdUQ,	/* sent us an unapproved query */
-			nssRcvdURQ,	/* sent us an unapproved recursive query */
-			nssRcvdUXFR,	/* sent us an unapproved AXFR or IXFR */
-			nssRcvdUUpd,	/* sent us an unapproved update */
-			nssLast };
-
-struct nameser {
-	struct in_addr	addr;		/* key */
-	u_long		stats[nssLast];	/* statistics */
-#ifdef notyet
-	u_int32_t	rtt;		/* round trip time */
-	/* XXX - need to add more stuff from "struct qserv", and use our rtt */
-	u_int16_t	flags;		/* see below */
-#endif
-	u_int8_t	xfers;		/* #/xfers running right now */
-};
-		
-enum transport { primary_trans, secondary_trans, response_trans, update_trans,
-		 num_trans };
-
-/* types used by the parser or config routines */
-
-typedef struct zone_config {
-	void *opaque;
-} zone_config;
-
-typedef struct listen_info {
-	u_short port;
-	ip_match_list list;
-	struct listen_info *next;
-} *listen_info;
-
-typedef struct listen_info_list {
-	listen_info first;
-	listen_info last;
-} *listen_info_list;
-
-#ifndef RLIMIT_TYPE
-#define RLIMIT_TYPE u_long
-#endif
-typedef RLIMIT_TYPE rlimit_type;
-
-struct control;
-typedef struct control *control;
-typedef LIST(struct control) controls;
-
-enum ordering { unknown_order, fixed_order, cyclic_order, random_order };
-
-#define DEFAULT_ORDERING cyclic_order
-
-typedef struct rrset_order_element {
-	int class;
-	int type;
-	char *name;
-	enum ordering order;
-	struct rrset_order_element *next;
-} *rrset_order_element ;
-
-typedef struct rrset_order_list {
-	rrset_order_element first;
-	rrset_order_element last;
-} *rrset_order_list;
-
-
-typedef struct options {
-	u_int flags;
-	char *version;
-	char *directory;
-	char *dump_filename;
-	char *pid_filename;
-	char *stats_filename;
-	char *memstats_filename;
-	char *named_xfer;
-	int transfers_in;
-	int transfers_per_ns;
-	int transfers_out;
-	int serial_queries;
- 	int max_log_size_ixfr;
-	enum axfr_format transfer_format;
-	long max_transfer_time_in;
-	struct sockaddr_in query_source;
-	struct in_addr axfr_src;
-#ifdef BIND_NOTIFY
-	int notify_count;
-	struct in_addr *also_notify;
-#endif
-	ip_match_list query_acl;
-	ip_match_list recursion_acl;
-	ip_match_list transfer_acl;
-	ip_match_list blackhole_acl;
-	ip_match_list topology;
-	ip_match_list sortlist;
-	enum severity check_names[num_trans];
-	u_long data_size;
-	u_long stack_size;
-	u_long core_size;
-	u_long files;
-	listen_info_list listen_list;
-	struct fwdinfo *fwdtab;
-	/* XXX need to add forward option */
-	int clean_interval;
-	int interface_interval;
-	int stats_interval;
-	rrset_order_list ordering;
-	int heartbeat_interval;
-	u_int max_ncache_ttl;
-	u_int lame_ttl;
-	int minroots;
-} *options;
-
-typedef struct key_list_element {
-	struct dst_key *key;
-	struct key_list_element *next;
-} *key_list_element;
-
-typedef struct key_info_list {
-	key_list_element first;
-	key_list_element last;
-} *key_info_list;
-
-typedef struct topology_config {
-	void *opaque;
-} topology_config;
-
-#define UNKNOWN_TOPOLOGY_DISTANCE	9998
-#define MAX_TOPOLOGY_DISTANCE		9999
-
-typedef struct topology_distance {
-	ip_match_list patterns;
-	struct topology_distance *next;
-} *topology_distance;
-
-typedef struct topology_context {
-	topology_distance first;
-	topology_distance last;
-} *topology_context;
-
-typedef struct acl_table_entry {
-	char *name;
-	ip_match_list list;
-	struct acl_table_entry *next;
-} *acl_table_entry;
-
-typedef struct server_config {
-	void *opaque;
-} server_config;
-
-#define SERVER_INFO_BOGUS	0x01
-#define SERVER_INFO_SUPPORT_IXFR	0x02
-
-typedef struct server_info {
-	struct in_addr address;
-	u_int flags;
-	int transfers;
-	enum axfr_format transfer_format;
-	key_info_list key_list;
-	/* could move statistics to here, too */
-	struct server_info *next;
-} *server_info;
-
-/*
- * enum <--> name translation
- */
-
-struct ns_sym {
-	int	number;		/* Identifying number, like ns_log_default */
-	char *	name;		/* Its symbolic name, like "default" */
-};
-
-/*
- * Logging options
- */
-
-typedef enum ns_logging_categories {
-	ns_log_default = 0,
-	ns_log_config,
-	ns_log_parser,
-	ns_log_queries,
-	ns_log_lame_servers,
-	ns_log_statistics,
-	ns_log_panic,
-	ns_log_update,
-	ns_log_ncache,
-	ns_log_xfer_in,
-	ns_log_xfer_out,
-	ns_log_db,
-	ns_log_eventlib,
-	ns_log_packet,
-#ifdef BIND_NOTIFY
-	ns_log_notify,
-#endif
-	ns_log_cname,
-	ns_log_security,
-	ns_log_os,
-	ns_log_insist,
-	ns_log_maint,
-	ns_log_load,
-	ns_log_resp_checks,
-	ns_log_control,
-	ns_log_max_category
-} ns_logging_categories;
-
-typedef struct log_config {
-	log_context log_ctx;
-	log_channel eventlib_channel;
-	log_channel packet_channel;
-	int	    default_debug_active;
-} *log_config;
-
-struct map {
-	char *			token;
-	int			val;
-};
-
-#define NOERROR_NODATA   15	/* only used internally by the server, used for
-				 * -ve $ing non-existence of records. 15 is not
-				 * a code used as yet anyway.
-				 */
-
-#define NTTL		600 /* ttl for negative data: 10 minutes? */
-
-#define VQEXPIRY	900 /* a VQ entry expires in 15*60 = 900 seconds */
-
-#ifdef BIND_UPDATE
-enum req_action { Finish, Refuse, Return };
-#endif
-
-#ifdef INIT
-	error "INIT already defined, check system include files"
-#endif
-#ifdef DECL
-	error "DECL already defined, check system include files"
-#endif
-
-#ifdef MAIN_PROGRAM
-#define INIT(x) = x
-#define	DECL
-#else
-#define INIT(x)
-#define DECL extern
-#endif
diff --git a/contrib/bind/bin/named/ns_forw.c b/contrib/bind/bin/named/ns_forw.c
deleted file mode 100644
index beb919c147133..0000000000000
--- a/contrib/bind/bin/named/ns_forw.c
+++ /dev/null
@@ -1,1272 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_forw.c	4.32 (Berkeley) 3/3/91";
-static const char rcsid[] = "$Id: ns_forw.c,v 8.75 2000/05/09 07:12:58 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-struct complaint {
-	u_long		tag1, tag2;
-	time_t		expire;
-	struct complaint *next;
-};
-
-static struct complaint *complaints = NULL;
-static int retry_timer_set = 0;
-
-/*
- * Forward the query to get the answer since its not in the database.
- * Returns FW_OK if a request struct is allocated and the query sent.
- * Returns FW_DUP if this is a duplicate of a pending request. 
- * Returns FW_NOSERVER if there were no addresses for the nameservers.
- * Returns FW_SERVFAIL on memory allocation error or if asked to do something
- *	dangerous, such as fwd to ourselves or fwd to the host that asked us.
- *
- * (no action is taken on errors and qpp is not filled in.)
- */
-int
-ns_forw(struct databuf *nsp[], u_char *msg, int msglen,
-	struct sockaddr_in from, struct qstream *qsp, int dfd,
-	struct qinfo **qpp, const char *dname, int class, int type,
-	struct namebuf *np, int use_tcp, struct tsig_record *in_tsig)
-{
-	struct qinfo *qp;
-	char tmpdomain[MAXDNAME];
-	struct sockaddr_in *nsa;
-	HEADER *hp;
-	u_int16_t id;
-	int sendto_errno = 0;
-	int n, has_tsig, oldqlen;
-	u_char *oldqbuf;
-	u_char *smsg;
-	int smsglen, smsgsize, siglen;
-	u_char sig[TSIG_SIG_SIZE];
-	DST_KEY *key;
-
-	ns_debug(ns_log_default, 3, "ns_forw()");
-
-	hp = (HEADER *) msg;
-	id = hp->id;
-	/* Look at them all */
-	for (qp = nsqhead; qp != NULL; qp = qp->q_link) {
-		if (qp->q_id == id &&
-		    memcmp(&qp->q_from, &from, sizeof qp->q_from) == 0 &&
-		    ((qp->q_cmsglen == 0 && qp->q_msglen == msglen &&
-		      memcmp(qp->q_msg + 2, msg + 2, msglen - 2) == 0) ||
-		     (qp->q_cmsglen == msglen &&
-		      memcmp(qp->q_cmsg + 2, msg + 2, msglen - 2) == 0)
-		     )) {
-			ns_debug(ns_log_default, 3, "forw: dropped DUP id=%d",
-				 ntohs(id));
-			nameserIncr(from.sin_addr, nssRcvdDupQ);
-			return (FW_DUP);
-		}
-	}
-
-	qp = qnew(dname, class, type, 1);
-	getname(np, tmpdomain, sizeof tmpdomain);
-	qp->q_domain = savestr(tmpdomain, 1);
-	qp->q_from = from;	/* nslookup wants to know this */
-	if (NS_ZFWDTAB(qp->q_fzone))
-		nsfwdadd(qp, NS_ZFWDTAB(qp->q_fzone));
-	if (NS_ZOPTION_P(qp->q_fzone, OPTION_FORWARD_ONLY))
-		n = 0;
-	else
-		n = nslookup(nsp, qp, dname, "ns_forw");
-	if (n < 0) {
-		if (n == -1)
-			ns_debug(ns_log_default, 2,
-				 "forw: nslookup reports danger");
-		ns_freeqry(qp);
-		return (FW_SERVFAIL);
-	}
-	if (n == 0 && !NS_ZFWDTAB(qp->q_fzone)) {
-		ns_debug(ns_log_default, 2, "forw: no nameservers found");
-		ns_freeqry(qp);
-		return (FW_NOSERVER);
-	}
-	qp->q_stream = qsp;
-	qp->q_curaddr = 0;
-	qp->q_dfd = dfd;
-	qp->q_id = id;
-	qp->q_expire = tt.tv_sec + RETRY_TIMEOUT*2;
-	if (in_tsig != NULL)
-		qp->q_tsig = new_tsig(in_tsig->key, in_tsig->sig,
-				      in_tsig->siglen);
-	if (use_tcp)
-		qp->q_flags |= Q_USEVC;
-	hp->id = qp->q_nsid = htons(nsid_next());
-	hp->ancount = htons(0);
-	hp->nscount = htons(0);
-	hp->arcount = htons(0);
-	if ((qp->q_msg = (u_char *)memget((unsigned)msglen)) == NULL) {
-		ns_notice(ns_log_default, "forw: memget: %s",
-			  strerror(errno));
-		ns_freeqry(qp);
-		return (FW_SERVFAIL);
-	}
-	qp->q_msgsize = msglen;
-	memcpy(qp->q_msg, msg, qp->q_msglen = msglen);
-	hp = (HEADER *) qp->q_msg;
-	hp->rd = (qp->q_addr[0].forwarder ? 1 : 0);
-	qp->q_addr[0].stime = tt;
-
-	schedretry(qp, retrytime(qp));
-
-	nsa = Q_NEXTADDR(qp, 0);
-	ns_debug(ns_log_default, 1,
-		"forw: forw -> [%s].%d ds=%d nsid=%d id=%d %dms retry %dsec",
-		inet_ntoa(nsa->sin_addr),
-		ntohs(nsa->sin_port), ds,
-		ntohs(qp->q_nsid), ntohs(qp->q_id),
-		(qp->q_addr[0].nsdata != NULL)
-			? qp->q_addr[0].nsdata->d_nstime
-			: -1,
-		(int)(qp->q_time - tt.tv_sec));
-
-#ifdef DEBUG
-	if (debug >= 10)
-		res_pquery(&res, msg, msglen, log_get_stream(packet_channel));
-#endif
-	key = tsig_key_from_addr(nsa->sin_addr);
-	if (key != NULL) {
-		smsgsize = qp->q_msglen + TSIG_BUF_SIZE;
-		smsg = memget(smsgsize);
-		if (smsg == NULL)
-			ns_panic(ns_log_default, 1, "ns_forw: memget failed");
-		smsglen = qp->q_msglen;
-		siglen = sizeof(sig);
-		memcpy(smsg, qp->q_msg, qp->q_msglen);
-		n = ns_sign(smsg, &smsglen, smsgsize, NOERROR, key, NULL, 0,
-			    sig, &siglen, 0);
-		if (n == 0) {
-			oldqbuf = qp->q_msg;
-			oldqlen = qp->q_msglen;
-			qp->q_msglen = smsglen;
-			qp->q_msg = smsg;
-			hp = (HEADER *) qp->q_msg;
-			has_tsig = 1;
-			qp->q_nstsig = new_tsig(key, sig, siglen);
-		}
-		else {
-			has_tsig = 0;
-			free_tsig(qp->q_nstsig);
-			qp->q_nstsig = NULL;
-			INSIST(0);
-		}
-	}
-	else {
-		has_tsig = 0;
-		free_tsig(qp->q_nstsig);
-		qp->q_nstsig = NULL;
-	}
-
-	if (qp->q_flags & Q_USEVC) {
-		if (tcp_send(qp) != NOERROR) {
-			if (!haveComplained(ina_ulong(nsa->sin_addr),
-					    (u_long)tcpsendStr))
-				ns_info(ns_log_default,
-					"ns_forw: tcp_send(%s) failed: %s",
-					sin_ntoa(*nsa), strerror(errno));
-		}
-	} else if (sendto(ds, (char *)qp->q_msg, qp->q_msglen, 0,
-		   (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0) {
-		sendto_errno  = errno;
-		if (!haveComplained(ina_ulong(nsa->sin_addr),
-				    (u_long)sendtoStr))
-			ns_info(ns_log_default, "ns_forw: sendto(%s): %s",
-				sin_ntoa(*nsa), strerror(errno));
-		nameserIncr(nsa->sin_addr, nssSendtoErr);
-	}
-	if (has_tsig == 1) {
-		memput(qp->q_msg, smsgsize);
-		qp->q_msg = oldqbuf;
-		qp->q_msglen = oldqlen;
-		hp = (HEADER *) qp->q_msg;
-	}
-
-	nameserIncr(from.sin_addr, nssRcvdFwdQ);
-	nameserIncr(nsa->sin_addr, nssSentFwdQ);
-	if (qpp)
-		*qpp = qp;
-	hp->rd = 1;
-	switch (sendto_errno)  {
-	case ENETDOWN:
-	case ENETUNREACH:
-	case EHOSTDOWN:
-	case EHOSTUNREACH:
-		unsched(qp);
-		schedretry(qp, (time_t) 0);
-	}
-	return (0);
-}
-
-/* haveComplained(tag1, tag2)
- *	check to see if we have complained about (tag1,tag2) recently
- * returns:
- *	boolean: have we complained recently?
- * side-effects:
- *	outdated complaint records removed from our static list
- * author:
- *	Paul Vixie (DECWRL) April 1991
- */
-int
-haveComplained(u_long tag1, u_long tag2) {
-	struct complaint *cur, *next, *prev;
-	int r = 0;
-
-	for (cur = complaints, prev = NULL;
-	     cur != NULL;
-	     prev = cur, cur = next) {
-		next = cur->next;
-		if (tt.tv_sec > cur->expire) {
-			if (prev)
-				prev->next = next;
-			else
-				complaints = next;
-			memput(cur, sizeof *cur);
-			cur = prev;
-		} else if (tag1 == cur->tag1 && tag2 == cur->tag2)
-			r++;
-	}
-	if (!r) {
-		cur = (struct complaint *)memget(sizeof(struct complaint));
-		if (cur) {
-			cur->tag1 = tag1;
-			cur->tag2 = tag2;
-			cur->expire = tt.tv_sec + INIT_REFRESH;	/* "10:00" */
-			cur->next = NULL;
-			if (prev)
-				prev->next = cur;
-			else
-				complaints = cur;
-		}
-	}
-	return (r);
-}
-
-void
-freeComplaints(void) {
-	struct complaint *cur, *next;
-
-	for (cur = complaints; cur != NULL; cur = next) {
-		next = cur->next;
-		memput(cur, sizeof *cur);
-	}
-	complaints = NULL;
-}
-
-/* void
- * nslookupComplain(sysloginfo, queryname, complaint, dname, a_rr)
- *	Issue a complaint about a dangerous situation found by nslookup().
- * params:
- *	sysloginfo is a string identifying the complainant.
- *	queryname is the domain name associated with the problem.
- *	complaint is a string describing what is wrong.
- *	dname and a_rr are the problematic other name server.
- */
-static void
-nslookupComplain(const char *sysloginfo, const char *queryname,
-		 const char *complaint, const char *dname,
-		 const struct databuf *a_rr, const struct databuf *nsdp)
-{
-	char *a, *ns;
-	const char *a_type;
-	int print_a;
-
-	ns_debug(ns_log_default, 2, "NS '%s' %s", dname, complaint);
-	if (sysloginfo && queryname && !haveComplained((u_long)queryname,
-						       (u_long)complaint)) {
-		a = ns = (char *)NULL;
-		print_a = (a_rr->d_type == T_A);
-		a_type = p_type(a_rr->d_type);
-		if (a_rr->d_rcode) {
-			print_a = 0;
-			switch(a_rr->d_rcode) {
-			case NXDOMAIN:
-				a_type = "NXDOMAIN";
-				break;
-			case NOERROR_NODATA:
-				a_type = "NODATA";
-				break;
-			}
-		}
-		if (NS_OPTION_P(OPTION_HOSTSTATS)) {
-			char nsbuf[20], abuf[20];
-
-			if (nsdp != NULL) {
-				if (nsdp->d_ns != NULL) {
-					strcpy(nsbuf,
-					       inet_ntoa(nsdp->d_ns->addr));
-					ns = nsbuf;
-				} else {
-					ns = zones[nsdp->d_zone].z_origin;
-				}
-			}
-			if (a_rr->d_ns != NULL) {
-				strcpy(abuf, inet_ntoa(a_rr->d_ns->addr));
-				a = abuf;
-			} else {
-				a = zones[a_rr->d_zone].z_origin;
-			}
-		}
-		if (a != NULL || ns != NULL)
-			ns_info(ns_log_default, 
-			       "%s: query(%s) %s (%s:%s) learnt (%s=%s:NS=%s)",
-				sysloginfo, queryname,
-				complaint, dname,
-				print_a ?
-				    inet_ntoa(ina_get(a_rr->d_data)) : "",
-				a_type,
-				a ? a : "<Not Available>",
-				ns ? ns : "<Not Available>" );
-		else
-			ns_info(ns_log_default, "%s: query(%s) %s (%s:%s)",
-				sysloginfo, queryname,
-				complaint, dname,
-				print_a ?
-				inet_ntoa(ina_get(a_rr->d_data)) : "");
-	}
-}
-
-/*
- * nslookup(nsp, qp, syslogdname, sysloginfo)
- *	Lookup the address for each nameserver in `nsp' and add it to
- * 	the list saved in the qinfo structure pointed to by `qp'.
- *	Omits information about nameservers that we shouldn't ask.
- *	Detects the following dangerous operations:
- *		One of the A records for one of the nameservers in nsp
- *		refers to the address of one of our own interfaces;
- *		One of the A records refers to the nameserver port on
- *		the host that asked us this question.
- * returns: the number of addresses added, or -1 if a dangerous operation
- *	is detected.
- * side effects:
- *	logs if a dangerous situation is detected and
- *	(syslogdname && sysloginfo)
- */
-int
-nslookup(struct databuf *nsp[], struct qinfo *qp,
-	 const char *syslogdname, const char *sysloginfo)
-{
-	struct namebuf *np;
-	struct databuf *dp, *nsdp;
-	struct qserv *qs;
-	int n;
-	u_int i;
-	struct hashbuf *tmphtp;
-	char *dname;
-	const char *fname;
-	int oldn, naddr, class, found_arr, potential_ns, lame_ns;
-	time_t curtime;
-
-	ns_debug(ns_log_default, 3, "nslookup(nsp=%#x, qp=%#x, \"%s\")",
-		nsp, qp, syslogdname);
-
-	lame_ns = potential_ns = 0;
-	naddr = n = qp->q_naddr;
-	curtime = (u_long) tt.tv_sec;
-	while ((nsdp = *nsp++) != NULL && n < NSMAX) {
-		class = nsdp->d_class;
-		dname = (char *)nsdp->d_data;
-		ns_debug(ns_log_default, 3,
-			 "nslookup: NS \"%s\" c=%d t=%d (flags 0x%lu)",
-			 dname, class, nsdp->d_type, (u_long)nsdp->d_flags);
-
-		/* don't put in servers we have tried */
-		for (i = 0; i < qp->q_nusedns; i++) {
-			if (qp->q_usedns[i] == nsdp) {
-				ns_debug(ns_log_default, 2,
-					 "skipping used NS w/name %s",
-					 nsdp->d_data);
-				goto skipserver;
-			}
-		}
-
-		/* skip lame servers */
-		if ((nsdp->d_flags & DB_F_LAME) != 0) {
-			time_t when;
-			when = db_lame_find(qp->q_domain, nsdp);
-			if (when != 0 && when > tt.tv_sec) {
-				ns_debug(ns_log_default, 3,
-					 "skipping lame NS");
-				lame_ns++;
-				goto skipserver;
-			}
-		}
-
-		tmphtp = ((nsdp->d_flags & DB_F_HINT) ?fcachetab :hashtab);
-		np = nlookup(dname, &tmphtp, &fname, 0);
-		if (np == NULL) {
-			ns_debug(ns_log_default, 3, "%s: not found %s %#x",
-				 dname, fname, np);
-			found_arr = 0;
-			goto need_sysquery;
-		}
-		if (fname != dname) {
-			found_arr = 0;
-			goto need_sysquery;
-		}
-		found_arr = 0;
-		oldn = n;
-
-		/* look for name server addresses */
-		(void)delete_stale(np);
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			struct in_addr nsa;
-
-			if (dp->d_type == T_CNAME && dp->d_class == class) {
-				static const char *complaint =
-				        "NS points to CNAME";
-				if (dp->d_rcode)
-					continue;
-				nslookupComplain(sysloginfo, syslogdname,
-						complaint, dname, dp, nsdp);
-				goto skipserver;
-			}
-			if (dp->d_type != T_A || dp->d_class != class)
-				continue;
-			if (dp->d_rcode) {
-				/* Negative caching element. */
-				goto skipserver;
-			}
-			if (ina_hlong(ina_get(dp->d_data)) == INADDR_ANY) {
-				static const char *complaint =
-					"Bogus (0.0.0.0) A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#ifdef INADDR_LOOPBACK
-			if (ina_hlong(ina_get(dp->d_data))==INADDR_LOOPBACK) {
-				static const char *complaint =
-					"Bogus LOOPBACK A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#endif
-#ifdef INADDR_BROADCAST
-			if (ina_hlong(ina_get(dp->d_data))==INADDR_BROADCAST){
-				static const char *complaint = 
-					"Bogus BROADCAST A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#endif
-#ifdef IN_MULTICAST
-			if (IN_MULTICAST(ina_hlong(ina_get(dp->d_data)))) {
-				static const char *complaint =
-					"Bogus MULTICAST A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#endif
-			/*
-			 * Don't use records that may become invalid to
-			 * reference later when we do the rtt computation.
-			 * Never delete our safety-belt information!
-			 */
-			if ((dp->d_zone == DB_Z_CACHE) &&
-			    (dp->d_ttl < (u_int32_t)curtime) &&
-			    !(dp->d_flags & DB_F_HINT) )
-		        {
-				ns_debug(ns_log_default, 1,
-					 "nslookup: stale '%s'",
-					 NAME(*np));
-				n = oldn;
-				found_arr = 0;
-				goto need_sysquery;
-			}
-
-			found_arr++;
-			nsa = ina_get(dp->d_data);
-			/* don't put in duplicates */
-			qs = qp->q_addr;
-			for (i = 0; i < (u_int)n; i++, qs++)
-				if (ina_equal(qs->ns_addr.sin_addr, nsa))
-					goto skipaddr;
-			qs->ns_addr.sin_family = AF_INET;
-			qs->ns_addr.sin_port = ns_port;
-			qs->ns_addr.sin_addr = nsa;
-			qs->ns = nsdp;
-			qs->nsdata = dp;
-			qs->forwarder = 0;
-			qs->nretry = 0;
-			/*
-			 * If this A RR has no RTT, initialize its RTT to a
-			 * small random value.
-			 */
-			if (dp->d_nstime == 0)
-				dp->d_nstime = 1 +
-					(int)(25.0*rand()/(RAND_MAX + 1.0));
-			/*
-			 * if we are being asked to fwd a query whose
-			 * nameserver list includes our own name/address(es),
-			 * then we have detected a lame delegation and rather
-			 * than melt down the network and hose down the other
-			 * servers (who will hose us in return), we'll return
-			 * -1 here which will cause SERVFAIL to be sent to
-			 * the client's resolver which will hopefully then
-			 * shut up.
-			 *
-			 * (originally done in nsContainsUs by vix@dec mar92;
-			 * moved into nslookup by apb@und jan1993)
-			 *
-			 * try to limp along instead of denying service
-			 * gdonl mar96
-			 */
-			if (aIsUs(nsa)) {
-			    static char *complaint = "contains our address";
-			    nslookupComplain(sysloginfo, syslogdname,
-					     complaint, dname, dp, nsdp);
-			    continue;
-			}
-			/*
-			 * If we want to forward to a host that asked us
-			 * this question then either we or they are sick
-			 * (unless they asked from some port other than
-			 * their nameserver port).  (apb@und jan1993)
-			 *
-			 * try to limp along instead of denying service
-			 * gdonl mar96
-			 */
-			if (memcmp(&qp->q_from, &qs->ns_addr,
-				   sizeof(qp->q_from)) == 0)
-			{
-			    static char *complaint = "forwarding loop";
-			    nslookupComplain(sysloginfo, syslogdname,
-					     complaint, dname, dp, nsdp);
-			    continue;
-			}
-#ifdef BOGUSNS
-			/*
-			 * Don't forward queries to bogus servers.  Note
-			 * that this is unlike the previous tests, which
-			 * are fatal to the query.  Here we just skip the
-			 * server, which is only fatal if it's the last
-			 * server.  Note also that we antialias here -- all
-			 * A RR's of a server are considered the same server,
-			 * and if any of them is bogus we skip the whole
-			 * server.  Those of you using multiple A RR's to
-			 * load-balance your servers will (rightfully) lose
-			 * here.  But (unfortunately) only if they are bogus.
-			 */
-			if (ip_match_address(bogus_nameservers, nsa) > 0)
-				goto skipserver;
-#endif
-			if (server_options->blackhole_acl != NULL && 
-			    ip_match_address(server_options->blackhole_acl,
-					     nsa) == 1)
-				continue;
-
-			n++;
-			if (n >= NSMAX)
-				break;
- skipaddr:
-			(void)NULL;
-		}
-		ns_debug(ns_log_default, 8, "nslookup: %d ns addrs", n);
- need_sysquery:
-		if (found_arr == 0) {
-			potential_ns++;
-			if (!(qp->q_flags & Q_SYSTEM))
-				(void) sysquery(dname, class, T_A, NULL, 0,
-						ns_port, QUERY);
-		}
- skipserver:
-		(void)NULL;
-	}
- out:
-	ns_debug(ns_log_default, 3, "nslookup: %d ns addrs total", n);
-	qp->q_naddr = n;
-	if (n == 0 && potential_ns == 0 && !NS_ZFWDTAB(qp->q_fzone)) {
-		static char *complaint = "No possible A RRs";
-		if (lame_ns != 0)
-			complaint = "All possible A RR's lame";
-		if (sysloginfo && syslogdname &&
-		    !haveComplained((u_long)syslogdname, (u_long)complaint))
-		{
-			ns_info(ns_log_default, "%s: query(%s) %s",
-				sysloginfo, syslogdname, complaint);
-		}
-		return ((lame_ns == 0) ? -1 : -2);
-	}
-	/* Update the refcounts before the sort. */
-	for (i = naddr; i < (u_int)n; i++) {
-		DRCNTINC(qp->q_addr[i].nsdata);
-		DRCNTINC(qp->q_addr[i].ns);
-	}
-	/* Just sort the NS RR's we added, since the forwarders may
-	 * be ahead of us (naddr > 0)
-	 */
-	if (n > naddr) {
-		qsort((char *)(qp->q_addr+naddr), n-naddr, sizeof(struct qserv),
-		      (int (*)(const void *, const void *))qcomp);
-	}
-	return (n - naddr);
-}
-
-/*
- * qcomp - compare two NS addresses, and return a negative, zero, or
- *	   positive value depending on whether the first NS address is
- *	   "better than", "equally good as", or "inferior to" the second
- *	   NS address.
- *
- * How "goodness" is defined (for the purposes of this routine):
- *  - If the estimated round trip times differ by an amount deemed significant
- *    then the one with the smaller estimate is preferred; else
- *  - If we can determine which one is topologically closer then the
- *    closer one is preferred; else
- *  - The one with the smaller estimated round trip time is preferred
- *    (zero is returned if the two estimates are identical).
- *
- * How "topological closeness" is defined (for the purposes of this routine):
- *    Ideally, named could consult some magic map of the Internet and
- *    determine the length of the path to an arbitrary destination.  Sadly,
- *    no such magic map exists.  However, named does have a little bit of
- *    topological information in the form of the sortlist (which includes
- *    the directly connected subnet(s), the directly connected net(s), and
- *    any additional nets that the administrator has added using the "sortlist"
- *    directive in the bootfile.  Thus, if only one of the addresses matches
- *    something in the sortlist then it is considered to be topologically
- *    closer.  If both match, but match different entries in the sortlist,
- *    then the one that matches the entry closer to the beginning of the
- *    sorlist is considered to be topologically closer.  In all other cases,
- *    topological closeness is ignored because it's either indeterminate or
- *    equal.
- *
- * How times are compared:
- *    Both times are rounded to the closest multiple of the NOISE constant
- *    defined below and then compared.  If the rounded values are equal
- *    then the difference in the times is deemed insignificant.  Rounding
- *    is used instead of merely taking the absolute value of the difference
- *    because doing the latter would make the ordering defined by this
- *    routine be incomplete in the mathematical sense (e.g. A > B and
- *    B > C would not imply A > C).  The mathematics are important in
- *    practice to avoid core dumps in qsort().
- *
- * XXX: this doesn't solve the European root nameserver problem very well.
- * XXX: we should detect and mark as inferior nameservers that give bogus
- *      answers
- *
- * (this was originally vixie's stuff but almquist fixed fatal bugs in it
- * and wrote the above documentation)
- */
-
-/*
- * RTT delta deemed to be significant, in milliseconds.  With the current
- * definition of RTTROUND it must be a power of 2.
- */
-#define NOISE 64
-
-#define RTTROUND(rtt) (((rtt) + (NOISE >> 1)) & ~(NOISE - 1))
-
-int
-qcomp(struct qserv *qs1, struct qserv *qs2) {
-	u_int rtt1, rtt2, rttr1, rttr2;
-
-	if (qs1->nsdata == NULL || qs2->nsdata == NULL) {
-		rtt1 = 0;
-		rttr1 = 0;
-		rtt2 = 0;
-		rttr2 = 0;
-	} else {
-		rtt1 = qs1->nsdata->d_nstime;
-		rttr1 = RTTROUND(rtt1);
-		rtt2 = qs2->nsdata->d_nstime;
-		rttr2 = RTTROUND(rtt2);
-	}
-
-#ifdef DEBUG
-	if (debug >= 10) {
-		char t[sizeof "255.255.255.255"];
-
-		strcpy(t, inet_ntoa(qs1->ns_addr.sin_addr));
-		ns_debug(ns_log_default, 10,
-			 "qcomp(%s, %s) %lu (%lu) - %lu (%lu) = %lu",
-			 t, inet_ntoa(qs2->ns_addr.sin_addr),
-			 rtt1, rttr1, rtt2, rttr2, rtt1 - rtt2);
-	}
-#endif
-	if (rttr1 == rttr2) {
-		int pos1, pos2, pdiff;
-
-		pos1 = distance_of_address(server_options->topology,
-					   qs1->ns_addr.sin_addr);
-		pos2 = distance_of_address(server_options->topology,
-					   qs2->ns_addr.sin_addr);
-		pdiff = pos1 - pos2;
-		ns_debug(ns_log_default, 10, "\tpos1=%d, pos2=%d", pos1, pos2);
-		if (pdiff != 0)
-			return (pdiff);
-	}
-	return (rtt1 - rtt2);
-}
-#undef RTTROUND
-
-/*
- * Arrange that forwarded query (qp) is retried after t seconds.
- * Query list will be sorted after z_time is updated.
- */
-void
-schedretry(struct qinfo *qp, time_t t) {
-	struct qinfo *qp1, *qp2;
-
-	ns_debug(ns_log_default, 4, "schedretry(%#x, %ld sec)", qp, (long)t);
-	if (qp->q_time)
-		ns_debug(ns_log_default, 4,
-			 "WARNING: schedretry(%#lx, %ld) q_time already %ld",
-			 (u_long)qp, (long)t, (long)qp->q_time);
-	gettime(&tt);
-	t += (u_long) tt.tv_sec;
-	qp->q_time = t;
-
-	if ((qp1 = retryqp) == NULL) {
-		retryqp = qp;
-		qp->q_next = NULL;
-		goto done;
-	}
-	if (t < qp1->q_time) {
-		qp->q_next = qp1;
-		retryqp = qp;
-		goto done;
-	}
-	while ((qp2 = qp1->q_next) != NULL && qp2->q_time < t)
-		qp1 = qp2;
-	qp1->q_next = qp;
-	qp->q_next = qp2;
- done:
-	reset_retrytimer();
-}
-
-/*
- * Unsched is called to remove a forwarded query entry.
- */
-void
-unsched(struct qinfo *qp) {
-	struct qinfo *np;
-
-	ns_debug(ns_log_default, 3, "unsched(%#lx, %d)",
-		 (u_long)qp, ntohs(qp->q_id));
-	if (retryqp == qp) {
-		retryqp = qp->q_next;
-	} else {
-		for (np = retryqp; np->q_next != NULL; np = np->q_next) {
-			if (np->q_next != qp)
-				continue;
-			np->q_next = qp->q_next;	/* dequeue */
-			break;
-		}
-	}
-	qp->q_next = NULL;		/* sanity check */
-	qp->q_time = 0;
-	reset_retrytimer();
-}
-
-void
-reset_retrytimer() {
-	static evTimerID id;
-
-	if (retry_timer_set) {
-		(void) evClearTimer(ev, id);
-		retry_timer_set = 0;
-	}
-
-	if (retryqp) {
-		evSetTimer(ev, retrytimer, NULL,
-			   evConsTime(retryqp->q_time, 0),
-			   evConsTime(0, 0), &id);
-		retry_timer_set = 1;
-	} else
-		memset(&id, 0, sizeof id);
-}
-
-void
-retrytimer(evContext ctx, void *uap, struct timespec due,
-	   struct timespec ival) {
-	retry_timer_set = 0;
-	retry(retryqp);
-}
-
-/*
- * Retry is called to retransmit query 'qp'.
- */
-void
-retry(struct qinfo *qp) {
-	int n, has_tsig, oldqlen;
-	HEADER *hp;
-	struct sockaddr_in *nsa;
-	int sendto_errno = 0;
-	u_char *oldqbuf;
-	u_char *smsg;
-	int smsglen, smsgsize, siglen;
-	u_char sig[TSIG_SIG_SIZE];
-	DST_KEY *key;
-
-	ns_debug(ns_log_default, 3, "retry(%#lx) id=%d", (u_long)qp,
-		 ntohs(qp->q_id));
-
-	if (qp->q_msg == NULL) {
-		qremove(qp);
-		return;
-	}
-
-	if (qp->q_expire < tt.tv_sec) {
-		ns_debug(ns_log_default, 1,
-		     "retry(%#lx): expired @ %lu (%d secs before now (%lu))",
-			 (u_long)qp, (u_long)qp->q_expire,
-			 (int)(tt.tv_sec - qp->q_expire),
-			 (u_long)tt.tv_sec);
-		goto fail;
-	}
-
-	/* Try next address. */
-	n = qp->q_curaddr;
-	if (qp->q_naddr > 0) {
-		++qp->q_addr[n].nretry;
-		do {
-			if (++n >= (int)qp->q_naddr)
-				n = 0;
-			if ((qp->q_flags & Q_ZSERIAL) != 0 &&
-			    qp->q_addr[n].serial != 0)
-				continue;
-			if (qp->q_addr[n].nretry < MAXRETRY)
-				goto found;
-		} while (n != qp->q_curaddr);
-		if ((qp->q_flags & Q_ZSERIAL) != 0) {
-			qremove(qp);
-			return;
-		}
-	}
- fail:
-	/*
-	 * Give up. Can't reach destination.
-	 */
-	hp = (HEADER *)(qp->q_cmsg ? qp->q_cmsg : qp->q_msg);
-	if ((qp->q_flags & Q_PRIMING) != 0) {
-		/* Can't give up priming */
-		if (qp->q_expire < tt.tv_sec) {
-			/*
-			 * The query has expired.  Reset it and retry from
-			 * the beginning.
-			 */
-			hp->rcode = NOERROR;
-			hp->qr = hp->aa = 0;
-			for (n = 0; n < (int)qp->q_naddr; n++)
-				qp->q_addr[n].nretry = 0;
-			n = 0;
-			qp->q_expire = tt.tv_sec + RETRY_TIMEOUT*2;
-			goto found;
-		}
-		/*
-		 * The query hasn't expired yet; it probably ran out
-		 * of servers or forwarders.  Wait up to 60 seconds
-		 * past the expire time.
-		 */
-		unsched(qp);
-		schedretry(qp, (time_t)(qp->q_expire - tt.tv_sec + 60));
-		return;
-	}
-	ns_debug(ns_log_default, 5, "give up");
-	if ((qp->q_flags & Q_SYSTEM) == 0) {
-		n = ((HEADER *)qp->q_cmsg ? qp->q_cmsglen : qp->q_msglen);
-		hp->id = qp->q_id;
-		hp->qr = 1;
-		hp->ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-		hp->rd = 1;
-		hp->rcode = SERVFAIL;
-#ifdef DEBUG
-		if (debug >= 10)
-			res_pquery(&res, qp->q_msg, n,
-				   log_get_stream(packet_channel));
-#endif
-		if (send_msg((u_char *)hp, n, qp)) {
-			ns_debug(ns_log_default, 1,
-				 "gave up retry(%#lx) nsid=%d id=%d",
-				 (u_long)qp,
-				 ntohs(qp->q_nsid), ntohs(qp->q_id));
-		}
-		if (NS_OPTION_P(OPTION_HOSTSTATS))
-			nameserIncr(qp->q_from.sin_addr, nssSentFail);
-	}
-	qremove(qp);
-	return;
-
- found:
-	if (qp->q_addr[n].nretry == 0)
-		qp->q_addr[n].stime = tt;
-	qp->q_curaddr = n;
-	hp = (HEADER *)qp->q_msg;
-	hp->rd = (qp->q_addr[n].forwarder ? 1 : 0);
-	nsa = Q_NEXTADDR(qp, n);
-	ns_debug(ns_log_default, 1,
-		 "%s(addr=%d n=%d) -> [%s].%d ds=%d nsid=%d id=%d %dms",
-		 (qp->q_addr[n].forwarder ? "reforw" : "resend"),
-		 n, qp->q_addr[n].nretry,
-		 inet_ntoa(nsa->sin_addr),
-		 ntohs(nsa->sin_port), ds,
-		 ntohs(qp->q_nsid), ntohs(qp->q_id),
-		 (qp->q_addr[n].nsdata != 0)
-		 ? qp->q_addr[n].nsdata->d_nstime
-		 : (-1));
-#ifdef DEBUG
-	if (debug >= 10)
-		res_pquery(&res, qp->q_msg, qp->q_msglen,
-			  log_get_stream(packet_channel));
-#endif
-	key = tsig_key_from_addr(nsa->sin_addr);
-	if (key != NULL) {
-		smsgsize = qp->q_msglen + TSIG_BUF_SIZE;
-		smsg = memget(smsgsize);
-		smsglen = qp->q_msglen;
-		siglen = sizeof(sig);
-		memcpy(smsg, qp->q_msg, qp->q_msglen);
-		n = ns_sign(smsg, &smsglen, smsgsize, NOERROR, key, NULL, 0,
-			    sig, &siglen, 0);
-		if (n == 0) {
-			oldqbuf = qp->q_msg;
-			oldqlen = qp->q_msglen;
-			qp->q_msglen = smsglen;
-			qp->q_msg = smsg;
-			has_tsig = 1;
-			qp->q_nstsig = new_tsig(key, sig, siglen);
-		}
-		else {
-			has_tsig = 0;
-			free_tsig(qp->q_nstsig);
-			qp->q_nstsig = NULL;
-			INSIST(0);
-		}
-	} else {
-		has_tsig = 0;
-		free_tsig(qp->q_nstsig);
-		qp->q_nstsig = NULL;
-	}
-
-	if (qp->q_flags & Q_USEVC) {
-		if (tcp_send(qp) != NOERROR)
-			ns_debug(ns_log_default, 3,
-				 "error resending tcp msg: %s",
-				 strerror(errno));
-	} else if (sendto(ds, (char*)qp->q_msg, qp->q_msglen, 0,
-		   (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0)
-	{
-		sendto_errno = errno;
-		ns_debug(ns_log_default, 3, "error resending msg: %s",
-			 strerror(errno));
-	}
-	if (has_tsig == 1) {
-		memput(qp->q_msg, smsgsize);
-		qp->q_msg = oldqbuf;
-		qp->q_msglen = oldqlen;
-	}
-	hp->rd = 1;	/* leave set to 1 for dup detection */
-	nameserIncr(nsa->sin_addr, nssSentDupQ);
-	unsched(qp);
-	switch (sendto_errno) {
-	case ENETDOWN:
-	case ENETUNREACH:
-	case EHOSTDOWN:
-	case EHOSTUNREACH:
-		schedretry(qp, (time_t) 0);
-		return;
-	}
-	schedretry(qp, retrytime(qp));
-}
-
-/*
- * Compute retry time for the next server for a query.
- * Use a minimum time of RETRYBASE (4 sec.) or twice the estimated
- * service time; * back off exponentially on retries, but place a 45-sec.
- * ceiling on retry times for now.  (This is because we don't hold a reference
- * on servers or their addresses, and we have to finish before they time out.)
- */
-time_t
-retrytime(struct qinfo *qp) {
-	time_t t, u, v;
-	struct qserv *ns = &qp->q_addr[qp->q_curaddr];
-
-	if (ns->nsdata != NULL)
-		t = (time_t) MAX(RETRYBASE, 2 * ns->nsdata->d_nstime / 1000);
-	else
-		t = (time_t) RETRYBASE;
-	u = t << ns->nretry;
-	v = MIN(u, RETRY_TIMEOUT);	/* max. retry timeout for now */
-	ns_debug(ns_log_default, 3,
-		 "retrytime: nstime%ldms t%ld nretry%ld u%ld : v%ld",
-		 ns->nsdata ? (long)(ns->nsdata->d_nstime / 1000) : (long)-1,
-		 (long)t, (long)ns->nretry, (long)u, (long)v);
-	return (v);
-}
-
-void
-qflush() {
-	while (nsqhead)
-		qremove(nsqhead);
-	nsqhead = NULL;
-	priming = 0;
-}
-
-void
-qremove(struct qinfo *qp) {
-	ns_debug(ns_log_default, 3, "qremove(%#lx)", (u_long)qp);
-	
-	if ((qp->q_flags & Q_ZSERIAL) != 0)
-		qserial_answer(qp);
-	unsched(qp);
-	ns_freeqry(qp);
-}
-
-struct qinfo *
-qfindid(u_int16_t id) {
-	struct qinfo *qp;
-
-	for (qp = nsqhead; qp != NULL; qp = qp->q_link)
-		if (qp->q_nsid == id)
-			break;
-	ns_debug(ns_log_default, 3, "qfindid(%d) -> %#lx", ntohs(id),
-		 (u_long)qp);
-	return (qp);
-}
-
-struct qinfo *
-qnew(const char *name, int class, int type, int forward) {
-	struct qinfo *qp;
-	const char *s;
-	int escape = 0;
-
-	qp = (struct qinfo *)memget(sizeof *qp);
-	if (qp == NULL)
-		ns_panic(ns_log_default, 1, "qnew: memget failed");
-	memset(qp, 0, sizeof *qp);
-	ns_debug(ns_log_default, 5, "qnew(%#lx)", (u_long)qp);
-#ifdef BIND_NOTIFY
-	qp->q_notifyzone = DB_Z_CACHE;
-#endif
-	qp->q_link = nsqhead;
-	nsqhead = qp;
-	qp->q_name = savestr(name, 1);
-	qp->q_class = (u_int16_t)class;
-	qp->q_type = (u_int16_t)type;
-	qp->q_flags = 0;
-	s = name;
-	qp->q_fzone = NULL;
-	for (;forward;) {		/* find forwarding zone, if any */
-		if ((qp->q_fzone = find_zone(s, class)) != NULL &&
-		    (qp->q_fzone->z_flags & Z_FORWARD_SET) != 0)
-			break;
-		qp->q_fzone = NULL;
-		if (*s == '\0')
-			break;
-		while (*s != '\0' && (escape || *s != '.')) {
-			escape = escape ? 0 : (*s == '\\');
-			s++;
-		}
-		if (*s != '\0')
-			s++;
-	}
-	return (qp);
-}
-
-void
-ns_freeqns(struct qinfo *qp, char *where) {
-	static const char freed[] = "freed", busy[] = "busy";
-	const char *result;
-	struct databuf *dp;
-	int i;
-
-	for (i = 0 ; i < (int)qp->q_naddr ; i++) {
-		dp = qp->q_addr[i].ns;
-		if (dp) {
-			DRCNTDEC(dp);
-			result = (dp->d_rcnt) ? busy : freed;
-			ns_debug(ns_log_default, 3, "%s: ns %s rcnt %d (%s)",
-				 where, dp->d_data, dp->d_rcnt, result);
-			if (result == freed)
-				db_freedata(dp);
-		}
-		dp = qp->q_addr[i].nsdata;
-		if (dp) {
-			DRCNTDEC(dp);
-			result = (dp->d_rcnt) ? busy : freed;
-			ns_debug(ns_log_default, 3,
-				 "%s: nsdata %s rcnt %d (%s)",
-				 where, inet_ntoa(ina_get(dp->d_data)),
-				 dp->d_rcnt, result);
-			if (result == freed)
-				db_freedata(dp);
-		}
-	}
-}
-
-void
-ns_freeqry(struct qinfo *qp) {
-	struct qinfo *np;
-
-	ns_debug(ns_log_default, 3, "ns_freeqry(%#lx)", (u_long)qp);
-	if (qp->q_next)
-		ns_debug(ns_log_default, 1,
-			 "WARNING: ns_freeqry of linked ptr %#lx", (u_long)qp);
-	if (qp->q_msg != NULL)
-		memput(qp->q_msg, qp->q_msgsize);
- 	if (qp->q_cmsg != NULL)
-		memput(qp->q_cmsg, qp->q_cmsgsize);
-	if (qp->q_domain != NULL)
-		freestr(qp->q_domain);
-	if (qp->q_name != NULL)
-		freestr(qp->q_name);
-	if (qp->q_tsig != NULL)
-		memput(qp->q_tsig, sizeof(struct tsig_record));
-	if (qp->q_nstsig != NULL)
-		memput(qp->q_nstsig, sizeof(struct tsig_record));
-	ns_freeqns(qp, "ns_freeqry");
-	if (nsqhead == qp)
-		nsqhead = qp->q_link;
-	else {
-		for(np = nsqhead;
-		    np->q_link != NULL;
-		    np = np->q_link) {
-			if (np->q_link != qp)
-				continue;
-			np->q_link = qp->q_link;	/* dequeue */
-			break;
-		}
-	}
-	memput(qp, sizeof *qp);
-}
-
-void
-nsfwdadd(struct qinfo *qp, struct fwdinfo *fwd) {
-	int i, n;
-	struct qserv *qs;
-
-	n = qp->q_naddr;
-	while (fwd != NULL && n < NSMAX) {
-		qs = qp->q_addr;
-		for (i = 0; i < (u_int)n; i++, qs++)
-			if (ina_equal(qs->ns_addr.sin_addr,
-				      fwd->fwddata->fwdaddr.sin_addr))
-				goto nextfwd;
-		qs->ns_addr = fwd->fwddata->fwdaddr;
-		qs->ns = fwd->fwddata->ns;
-		qs->nsdata = fwd->fwddata->nsdata;
-		qs->forwarder = 1;
-		qs->nretry = 0;
-		n++;
- nextfwd:
-		fwd = fwd->next;
-	}
-	qp->q_naddr = n;
-
-	/* Update the refcounts before the sort. */
-	for (i = 0; i < (u_int)n; i++) {
-		DRCNTINC(qp->q_addr[i].nsdata);
-		DRCNTINC(qp->q_addr[i].ns);
-	}
-	if (n > 1) {
-		qsort((char *)qp->q_addr, n, sizeof(struct qserv),
-		      (int (*)(const void *, const void *))qcomp);
-	}
-}
diff --git a/contrib/bind/bin/named/ns_func.h b/contrib/bind/bin/named/ns_func.h
deleted file mode 100644
index 760266d3ff719..0000000000000
--- a/contrib/bind/bin/named/ns_func.h
+++ /dev/null
@@ -1,503 +0,0 @@
-/*
- * Copyright (c) 1985, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-/* ns_func.h - declarations for ns_*.c's externally visible functions
- *
- * $Id: ns_func.h,v 8.96 2000/04/21 06:54:06 vixie Exp $
- */
-
-/* ++from ns_glue.c++ */
-extern struct in_addr	ina_get(const u_char *data);
-extern const char	*sin_ntoa(struct sockaddr_in);
-extern int		ns_wouldlog(int category, int level);
-extern void		ns_debug(int, int, const char *, ...),
-			ns_info(int, const char *, ...),
-			ns_notice(int, const char *, ...),
-			ns_warning(int, const char *, ...),
-			ns_error(int, const char *, ...),
-			ns_panic(int, int, const char *, ...),
-			ns_assertion_failed(char *file, int line,
-					    assertion_type type, char *cond,
-					    int print_errno);
-extern void		panic(const char *, const void *),
-			gettime(struct timeval *);
-extern int		nlabels(const char *),
-			my_close(int),
-			my_fclose(FILE *);
-extern void		__freestr(char *);
-extern char		*__newstr(size_t, int),
-			*__savestr(const char *, int),
-			*checked_ctime(const time_t *t),
-			*ctimel(long);
-extern void		__freestr_record(char *, char *, int);
-extern char		*__newstr_record(size_t, int, char *, int);
-extern char		*__savestr_record(const char *, int, char *, int);
-extern u_char		*ina_put(struct in_addr ina, u_char *data),
-			*savebuf(const u_char *, size_t, int);
-extern void		dprintf(int level, const char *format, ...);
-#ifdef DEBUG_STRINGS
-extern char		*debug_newstr(size_t, int, const char *, int),
-			*debug_savestr(const char *, int, const char *, int);
-extern void		debug_freestr(char *, const char *, int);
-#define newstr(l, n) debug_newstr((l), (n), __FILE__, __LINE__)
-#define savestr(s, n) debug_savestr((s), (n), __FILE__, __LINE__)
-#define freestr(s) debug_freestr((s), __FILE__, __LINE__)
-#else
-#ifdef RECORD_STRINGS
-#define newstr(l, n) __newstr_record((l), (n), __FILE__, __LINE__)
-#define savestr(s, n) __savestr_record((s), (n), __FILE__, __LINE__)
-#define freestr(s) __freestr_record((s), __FILE__, __LINE__)
-#else
-#define newstr(l, n) __newstr((l), (n))
-#define savestr(s, n) __savestr((s), (n))
-#define freestr(s) __freestr((s))
-#endif
-#endif /* DEBUG_STRINGS */
-int movefile(const char *, const char *);
-/* --from ns_glue.c-- */
-
-/* ++from ns_notify.c++ */
-#ifdef BIND_NOTIFY
-void			ns_notify(const char *, ns_class, ns_type);
-void			notify_afterload(void);
-void			ns_unnotify(void);
-void			ns_stopnotify(const char *, ns_class);
-#endif
-/* --from ns_notify.c-- */
-
-/* ++from ns_resp.c++ */
-extern void		ns_resp(u_char *, int, struct sockaddr_in,
-				struct qstream *),
-			prime_cache(void),
-			delete_all(struct namebuf *, int, int);
-extern int		delete_stale(struct namebuf *);
-extern struct qinfo	*sysquery(const char *, int, int,
-				  struct in_addr *, int, u_int16_t, int);
-extern int		doupdate(u_char *, u_char *, struct databuf **,
-				 int, int, int, u_int, struct sockaddr_in),
-			send_msg(u_char *, int, struct qinfo *),
-			findns(struct namebuf **, int,
-			       struct databuf **, int *, int),
-			finddata(struct namebuf *, int, int, HEADER *,
-				 char **, int *, int *),
-			add_data(struct namebuf *,
-				 struct databuf **,
-				 u_char *, int, int *),
-			trunc_adjust(u_char *, int, int);
-/* --from ns_resp.c-- */
-
-/* ++from ns_req.c++ */
-extern void		ns_req(u_char *, int, int,
-			       struct qstream *,
-			       struct sockaddr_in,
-			       int),
-			free_addinfo(void),
-			free_nsp(struct databuf **);
-extern int		stale(struct databuf *),
-			make_rr(const char *, struct databuf *,
-				u_char *, int, int,
-				u_char **, u_char **, int),
-			doaddinfo(HEADER *, u_char *, int),
-			doaddauth(HEADER *, u_char *, int,
-				  struct namebuf *,
-				  struct databuf *);
-#ifdef BIND_NOTIFY
-extern int		findZonePri(const struct zoneinfo *,
-				    const struct sockaddr_in);
-#endif
-/* --from ns_req.c-- */
-
-/* ++from ns_xfr.c++ */
-void			ns_xfr(struct qstream *qsp, struct namebuf *znp,
-			       int zone, int class, int type,
-			       int id, int opcode, u_int32_t serial_ixfr, 
-				   struct tsig_record *in_tsig),
-			ns_stopxfrs(struct zoneinfo *),
-			ns_freexfr(struct qstream *),
-			sx_newmsg(struct qstream *qsp),
-			sx_sendlev(struct qstream *qsp),
-			sx_sendsoa(struct qstream *qsp);
-/* --from ns_xfr.c-- */
-
-/* ++from ns_ctl.c++ */
-void			ns_ctl_initialize(void);
-void			ns_ctl_shutdown(void);
-void			ns_ctl_defaults(controls *);
-void			ns_ctl_add(controls *, control);
-control			ns_ctl_new_inet(struct in_addr, u_int, ip_match_list);
-#ifndef WINNT
-control			ns_ctl_new_unix(char *, mode_t, uid_t, gid_t);
-#endif
-void			ns_ctl_install(controls *);
-/* --from ns_ctl.c-- */
-
-/* ++from ns_ixfr.c++ */
-void			sx_send_ixfr(struct qstream *qsp);
-/* --from ns_ixfr.c-- */
-
-/* ++from ns_forw.c++ */
-extern time_t		retrytime(struct qinfo *);
-extern int		ns_forw(struct databuf *nsp[],
-				u_char *msg,
-				int msglen,
-				struct sockaddr_in from,
-				struct qstream *qsp,
-				int dfd,
-				struct qinfo **qpp,
-				const char *dname,
-				int class,
-				int type,
-				struct namebuf *np,
-				int use_tcp,
-				struct tsig_record *in_tsig),
-			haveComplained(u_long, u_long),
-			nslookup(struct databuf *nsp[],
-				 struct qinfo *qp,
-				 const char *syslogdname,
-				 const char *sysloginfo),
-			qcomp(struct qserv *, struct qserv *);
-extern void		schedretry(struct qinfo *, time_t),
-			unsched(struct qinfo *),
-			reset_retrytimer(void),
-			retrytimer(evContext ctx, void *uap,
-				   struct timespec due, struct timespec ival),
-			retry(struct qinfo *),
-			qflush(void),
-			qremove(struct qinfo *),
-                        ns_freeqns(struct qinfo *, char *),
-			ns_freeqry(struct qinfo *),
-			freeComplaints(void),
-			nsfwdadd(struct qinfo *, struct fwdinfo *);
-extern struct qinfo	*qfindid(u_int16_t),
-			*qnew(const char *, int, int, int);
-/* --from ns_forw.c-- */
-
-/* ++from ns_main.c++ */
-extern struct in_addr	net_mask(struct in_addr);
-extern void		sq_remove(struct qstream *),
-			sq_flushw(struct qstream *),
-			sq_flush(struct qstream *allbut),
-			dq_remove_gen(time_t gen),
-			dq_remove_all(),
-			sq_done(struct qstream *),
-			ns_setproctitle(char *, int),
-			getnetconf(int),
-			nsid_init(void),
-			ns_setoption(int option),
-			writestream(struct qstream *, const u_char *, int),
-			ns_need_unsafe(enum need),
-			ns_need(enum need),
-			opensocket_f(void),
-			nsid_hash(u_char *, size_t);
-extern u_int16_t	nsid_next(void);
-extern int		sq_openw(struct qstream *, int),
-			sq_writeh(struct qstream *, sq_closure),
-			sq_write(struct qstream *, const u_char *, int),
-			tcp_send(struct qinfo *),
-			aIsUs(struct in_addr);
-/* --from ns_main.c-- */
-
-/* ++from ns_maint.c++ */
-extern void		zone_maint(struct zoneinfo *),
-			sched_zone_maint(struct zoneinfo *),
-			ns_cleancache(evContext ctx, void *uap,
-				      struct timespec due,
-				      struct timespec inter),
-			clean_cache_from(char *dname, struct hashbuf *htp),
-			remove_zone(struct zoneinfo *, const char *),
-			purge_zone(const char *, struct hashbuf *, int),
-			loadxfer(void),
-			qserial_retrytime(struct zoneinfo *, time_t),
-			qserial_query(struct zoneinfo *),
-			qserial_answer(struct qinfo *),
-#ifdef DEBUG
-			printzoneinfo(int, int, int),
-#endif
-			endxfer(void),
-			addxfer(struct zoneinfo *),
-			ns_zreload(void),
-			ns_reload(void),
-			ns_reconfig(void),
-			ns_noexpired(void);
-#if 0
-extern int		reload_all_unsafe(void);
-#endif
-extern int		zonefile_changed_p(struct zoneinfo *);
-int			reload_master(struct zoneinfo *);
-extern const char *	deferred_reload_unsafe(struct zoneinfo *);
-extern struct namebuf *	purge_node(struct hashbuf *htp, struct namebuf *np);
-extern int		clean_cache(struct hashbuf *, int);
-extern void		reapchild(void);
-extern const char *	zoneTypeString(unsigned int);
-extern void		ns_heartbeat(evContext ctx, void *uap,
-				     struct timespec, struct timespec);
-extern void		make_new_zones(void);
-extern void		free_zone(struct zoneinfo *);
-extern struct zoneinfo *find_auth_zone(const char *, ns_class);
-extern int		purge_nonglue(const char *dname, struct hashbuf *htp,
-				      int class);
-/* --from ns_maint.c-- */
-
-/* ++from ns_sort.c++ */
-extern void		sort_response(u_char *, u_char *, int,
-				      struct sockaddr_in *);
-/* --from ns_sort.c-- */
-
-/* ++from ns_init.c++ */
-extern void		ns_refreshtime(struct zoneinfo *, time_t);
-extern void		ns_retrytime(struct zoneinfo *, time_t);
-extern void		ns_init(const char *);
-extern void		purgeandload(struct zoneinfo *zp);
-extern enum context	ns_ptrcontext(const char *owner);
-extern enum context	ns_ownercontext(int type, enum transport);
-extern int		ns_nameok(const struct qinfo *qry, const char *name,
-				  int class, struct zoneinfo *zp,
-				  enum transport, enum context,
-				  const char *owner,
-				  struct in_addr source);
-extern int		ns_wildcard(const char *name);
-extern void		zoneinit(struct zoneinfo *);
-extern void		do_reload(const char *, int, int, int);
-extern void		ns_shutdown(void);
-/* --from ns_init.c-- */
-
-/* ++from ns_ncache.c++ */
-extern void		cache_n_resp(u_char *, int, struct sockaddr_in,
-				     const char *, int, int);
-/* --from ns_ncache.c-- */
-
-/* ++from ns_udp.c++ */
-extern void		ns_udp(void);
-/* --from ns_udp.c-- */
-
-/* ++from ns_stats.c++ */
-extern void		ns_stats(void),
-			ns_freestats(void);
-extern void		ns_logstats(evContext ctx, void *uap,
-				    struct timespec, struct timespec);
-extern void		qtypeIncr(int qtype);
-extern struct nameser	*nameserFind(struct in_addr addr, int flags);
-#define NS_F_INSERT	0x0001
-#define nameserIncr(a,w) NS_INCRSTAT(a,w)	/* XXX should change name. */
-/* --from ns_stats.c-- */
-
-/* ++from ns_update.c++ */
-void			free_rrecp(ns_updque *, int rcode, struct sockaddr_in);
-int			findzone(const char *, int, int, int *, int);
-u_char *		findsoaserial(u_char *data);
-u_int32_t		get_serial_unchecked(struct zoneinfo *zp);
-u_int32_t		get_serial(struct zoneinfo *zp);
-void			set_serial(struct zoneinfo *zp, u_int32_t serial);
-int			schedule_soa_update(struct zoneinfo *, int);
-int			schedule_dump(struct zoneinfo *);
-int			incr_serial(struct zoneinfo *zp);
-int			merge_logs(struct zoneinfo *zp, char *logname);
-int			zonedump(struct zoneinfo *zp, int isixfr);
-void			dynamic_about_to_exit(void);
-enum req_action		req_update(HEADER *hp, u_char *cp, u_char *eom,
-				   u_char *msg, struct qstream *qsp,
-				   int dfd, struct sockaddr_in from,
-				   struct tsig_record *in_tsig);
-void			rdata_dump(struct databuf *dp, FILE *fp);
-/* --from ns_update.c-- */
-
-/* ++from ns_config.c++ */
-void			free_zone_timerinfo(struct zoneinfo *);
-void			free_zone_contents(struct zoneinfo *, int);
-struct zoneinfo *	find_zone(const char *, int);
-zone_config		begin_zone(char *, int);
-void			end_zone(zone_config, int);
-int			set_zone_type(zone_config, int);
-int			set_zone_filename(zone_config, char *);
-int 			set_zone_checknames(zone_config, enum severity);
-#ifdef BIND_NOTIFY
-int			set_zone_notify(zone_config, int value);
-#endif
-int			set_zone_maintain_ixfr_base(zone_config, int value);
-int			set_zone_update_acl(zone_config, ip_match_list);
-int			set_zone_query_acl(zone_config, ip_match_list);
-int			set_zone_transfer_acl(zone_config, ip_match_list);
-int			set_zone_transfer_source(zone_config, struct in_addr);
-int			set_zone_pubkey(zone_config, const int, const int,
-					const int, const char *);
-int 			set_zone_transfer_time_in(zone_config, long);
-int			add_zone_master(zone_config, struct in_addr);
-#ifdef BIND_NOTIFY
-int			add_zone_notify(zone_config, struct in_addr);
-#endif
-void			set_zone_forward(zone_config);
-void			add_zone_forwarder(zone_config, struct in_addr);
-void			set_zone_boolean_option(zone_config, int, int);
-options			new_options(void);
-void			free_options(options);
-void			free_rrset_order_list(rrset_order_list);
-void			set_global_boolean_option(options, int, int);
-listen_info_list	new_listen_info_list(void);
-void			free_listen_info_list(listen_info_list);
-void			add_listen_on(options, u_short, ip_match_list);
-FILE *			write_open(char *filename);
-void			update_pid_file(void);
-void			set_options(options, int);
-void			use_default_options(void);
-enum ordering		lookup_ordering(const char *);
-rrset_order_list	new_rrset_order_list(void);
-rrset_order_element	new_rrset_order_element(int, int, char *, enum ordering);
-ip_match_list		new_ip_match_list(void);
-void			free_ip_match_list(ip_match_list);
-ip_match_element	new_ip_match_pattern(struct in_addr, u_int);
-ip_match_element	new_ip_match_mask(struct in_addr, struct in_addr);
-ip_match_element	new_ip_match_indirect(ip_match_list);
-ip_match_element	new_ip_match_key(struct dst_key *dst_key);
-ip_match_element	new_ip_match_localhost(void);
-ip_match_element	new_ip_match_localnets(void);
-void			ip_match_negate(ip_match_element);
-void			add_to_ip_match_list(ip_match_list, ip_match_element);
-void			dprint_ip_match_list(int, ip_match_list, int, char *,
-					     char *);
-int			ip_match_address(ip_match_list, struct in_addr);
-int			ip_match_addr_or_key(ip_match_list, struct in_addr,
-					     struct dst_key *key);
-int			ip_address_allowed(ip_match_list, struct in_addr);
-int			ip_addr_or_key_allowed(ip_match_list iml,
-					       struct in_addr,
-					       struct dst_key *key);
-int			ip_match_network(ip_match_list, struct in_addr,
-					 struct in_addr);
-int			ip_match_key_name(ip_match_list iml, char *name);
-int			distance_of_address(ip_match_list, struct in_addr);
-int			ip_match_is_none(ip_match_list);
-#ifdef BIND_NOTIFY
-void			free_also_notify(options);
-int			add_global_also_notify(options, struct in_addr);
-#endif
-void			add_global_forwarder(options, struct in_addr);
-void			free_forwarders(struct fwdinfo *);
-server_info		find_server(struct in_addr);
-server_config		begin_server(struct in_addr);
-void			end_server(server_config, int);
-void			set_server_option(server_config, int, int);
-void			set_server_transfers(server_config, int);
-void			set_server_transfer_format(server_config,
-						   enum axfr_format);
-void			add_server_key_info(server_config, struct dst_key *);
-struct dst_key		*new_key_info(char *, char *, char *);
-void			free_key_info(struct dst_key *);
-struct dst_key		*find_key(char *name, char *algorithm);
-void			dprint_key_info(struct dst_key *);
-key_info_list		new_key_info_list(void);
-void			free_key_info_list(key_info_list);
-void			add_to_key_info_list(key_info_list, struct dst_key *);
-void			dprint_key_info_list(key_info_list);
-log_config		begin_logging(void);
-void			add_log_channel(log_config, int, log_channel);
-void			open_special_channels(void);
-void			set_logging(log_config, int);
-void			end_logging(log_config, int);
-void			use_default_logging(void);
-void			init_logging(void);
-void			shutdown_logging(void);
-void			init_configuration(void);
-void			shutdown_configuration(void);
-void			load_configuration(const char *);
-/* --from ns_config.c-- */
-/* ++from parser.y++ */
-ip_match_list		lookup_acl(char *);
-void			define_acl(char *, ip_match_list);
-struct dst_key		*lookup_key(char *);
-void			define_key(char *, struct dst_key *);
-void			parse_configuration(const char *);
-void			parser_initialize(void);
-void			parser_shutdown(void);
-/* --from parser.y-- */
-/* ++from ns_signal.c++ */
-void                    init_signals(void);
-void			block_signals(void);
-void			unblock_signals(void);
-/* --from ns_signal.c-- */
diff --git a/contrib/bind/bin/named/ns_glob.h b/contrib/bind/bin/named/ns_glob.h
deleted file mode 100644
index af0ea30270b52..0000000000000
--- a/contrib/bind/bin/named/ns_glob.h
+++ /dev/null
@@ -1,342 +0,0 @@
-/*
- *	from ns.h	4.33 (Berkeley) 8/23/90
- *	$Id: ns_glob.h,v 8.54 2000/04/21 06:54:07 vixie Exp $
- */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Global variables for the name server.
- */
-
-	/* original argv[] from main() */
-DECL	char			**saved_argv;
-
-#ifdef DEBUG
-DECL	int			debug		INIT(0);
-DECL	int			desired_debug	INIT(0);
-#endif
-
-	/* global event context */
-DECL	evContext		ev;
-
-	/* global resolver context. */
-DECL	struct __res_state	res;
-
-	/* list of open streams */
-DECL	struct qstream		*streamq;
-
-	/* often set to the current time */
-DECL	struct timeval		tt;
-
-	/* head of allocated queries */
-DECL	struct qinfo		*nsqhead;
-
-	/* datagram socket for sysquery() and ns_forw(). */
-DECL	int			ds		INIT(-1);
-
-	/* event ID for reads of "ds". */
-DECL	evFileID		ds_evID;
-
-#ifdef QRYLOG
-	/* is query logging turned on? */
-DECL	int			qrylog;
-#endif /*QRYLOG*/
-
-	/* port to which we send queries */
-DECL	u_int16_t		ns_port;
-
-	/* Source addr of our internal resolver. */
-DECL	struct sockaddr_in	source_addr;	/* INITs to <INADDR_ANY, 0>. */
-
-	/* Used by ns_stats */
-DECL	time_t			boottime;
-
-DECL	time_t			resettime;
-
-	/* next query to retry */
-DECL	struct qinfo		*retryqp;
-
-	/* default configuration file */
-DECL	char			*conffile;
-
-	/* default debug output file */
-DECL	char			*debugfile;
-
-	/* zone information */
-DECL	struct zoneinfo		*zones;
-
-	/* number of zones allocated */
-DECL	int			nzones;
-
-	/* free list of unused zones[] elements. */
-DECL	LIST(struct zoneinfo)	freezones;
-
-	/* list of zones that have a reload pending. */
-DECL	LIST(struct zoneinfo)	reloadingzones;
-
-	/* set if we need a priming */
-DECL	int			needs_prime_cache;
-
-	/* is cache being primed */
-DECL	int			priming;
-
-	/* ptrs to dnames in msg for dn_comp */
-DECL	u_char			*dnptrs[40];
-
-	/* end pointer for dnptrs */
-DECL	u_char			**dnptrs_end
-				INIT(dnptrs + sizeof dnptrs / sizeof(u_char*));
-
-	/* data about all forwarders */
-DECL    struct fwddata          **fwddata;
-	/* how many forwarders are there in fwddata? */
-DECL	int			fwddata_count;
-
-	/* number of names in addinfo */
-DECL	int			addcount;
-
-	/* name of cache file */
-DECL	const char		*cache_file;
-
-#ifdef BIND_UPDATE
-DECL	const char *		LogSignature	INIT(";BIND LOG V8\n");
-DECL	const char *		DumpSignature	INIT(";BIND DUMP V8\n");
-DECL	const char *		DumpSuffix	INIT(".dumptmp");
-#endif
-
-DECL	const char		sendtoStr[]	INIT("sendto");
-DECL	const char		tcpsendStr[]	INIT("tcp_send");
-
-	/* defined in version.c, can't use DECL/INIT */
-extern	char			Version[];
-extern	char			ShortVersion[];
-
-	/* If getnum() has an error, here will be the result. */
-DECL	int			getnum_error		INIT(0);
-
-enum context { domain_ctx, owner_ctx, mailname_ctx, hostname_ctx };
-DECL	const char		*context_strings[]
-#ifdef MAIN_PROGRAM
-	= { "domain", "owner", "mail", "host", NULL }
-#endif
-;
-
-DECL	const char		*transport_strings[]
-#ifdef MAIN_PROGRAM
-	= { "primary", "secondary", "response", NULL }
-#endif
-;
-
-DECL	const char		*severity_strings[]
-#ifdef MAIN_PROGRAM
-	= { "ignore", "warn", "fail", "not_set", NULL }
-#endif
-;
-
-DECL	struct in_addr		inaddr_any;		/* Inits to 0.0.0.0 */
-
-DECL	options			server_options		INIT(NULL);
-
-DECL	server_info		nameserver_info		INIT(NULL);
-DECL	key_info_list		secretkey_info		INIT(NULL);
-
-DECL	int			main_needs_exit		INIT(0);
-DECL	ip_match_list		bogus_nameservers	INIT(NULL);
-
-DECL	log_context 		log_ctx;
-DECL	int			log_ctx_valid		INIT(0);
-
-DECL	log_channel		syslog_channel		INIT(NULL);
-DECL	log_channel		debug_channel		INIT(NULL);
-DECL	log_channel		stderr_channel		INIT(NULL);
-DECL	log_channel		eventlib_channel	INIT(NULL);
-DECL	log_channel		packet_channel		INIT(NULL);
-DECL	log_channel		null_channel		INIT(NULL);
-
-DECL	ip_match_list		local_addresses		INIT(NULL);
-DECL	ip_match_list		local_networks		INIT(NULL);
-
-	/* are we running in no-fork mode? */
-DECL	int			foreground		INIT(0);
-
-DECL	const struct ns_sym	logging_constants[]
-#ifdef MAIN_PROGRAM
-= {
-	{ log_info,	"info" },
-	{ log_notice,	"notice" },
-	{ log_warning,	"warning" },
-	{ log_error,	"error" },
-	{ log_critical,	"critical" },
-	{ 0,		NULL }
-}
-#endif
-;
-
-DECL	const struct ns_sym	syslog_constants[]
-#ifdef MAIN_PROGRAM
-= {
-	{ LOG_KERN,	"kern" },
-	{ LOG_USER,	"user" },
-	{ LOG_MAIL,	"mail" },
-	{ LOG_DAEMON,	"daemon" },
-	{ LOG_AUTH,	"auth" },
-	{ LOG_SYSLOG,	"syslog" },
-	{ LOG_LPR,	"lpr" },
-#ifdef LOG_NEWS
-	{ LOG_NEWS,	"news" },
-#endif
-#ifdef LOG_UUCP
-	{ LOG_UUCP,	"uucp" },
-#endif
-#ifdef LOG_CRON
-	{ LOG_CRON,	"cron" },
-#endif
-#ifdef LOG_AUTHPRIV
-	{ LOG_AUTHPRIV,	"authpriv" },
-#endif
-#ifdef LOG_FTP
-	{ LOG_FTP,	"ftp" },
-#endif
-	{ LOG_LOCAL0,	"local0"}, 
-	{ LOG_LOCAL1,	"local1"}, 
-	{ LOG_LOCAL2,	"local2"}, 
-	{ LOG_LOCAL3,	"local3"}, 
-	{ LOG_LOCAL4,	"local4"}, 
-	{ LOG_LOCAL5,	"local5"}, 
-	{ LOG_LOCAL6,	"local6"}, 
-	{ LOG_LOCAL7,	"local7"}, 
-	{ 0,		NULL }
-}
-#endif
-;
-
-DECL	const struct ns_sym	category_constants[]
-#ifdef MAIN_PROGRAM
-= {
-	{ ns_log_default,	"default" },
-	{ ns_log_config,	"config" },
-	{ ns_log_parser,	"parser" },
-	{ ns_log_queries,	"queries" },
-	{ ns_log_lame_servers,	"lame-servers" },
-	{ ns_log_statistics,	"statistics" },
-	{ ns_log_panic,		"panic" },
-	{ ns_log_update,	"update" },
-	{ ns_log_ncache,	"ncache" },
-	{ ns_log_xfer_in,	"xfer-in" },
-	{ ns_log_xfer_out,	"xfer-out" },
-	{ ns_log_db,		"db" },
-	{ ns_log_eventlib,	"eventlib" },
-	{ ns_log_packet,	"packet" },
-#ifdef BIND_NOTIFY
-	{ ns_log_notify,	"notify" },
-#endif
-	{ ns_log_cname,		"cname" },
-	{ ns_log_security,	"security" },
-	{ ns_log_os,		"os" },
-	{ ns_log_insist,	"insist" },
-	{ ns_log_maint,		"maintenance" },
-	{ ns_log_load,		"load" },
-	{ ns_log_resp_checks,	"response-checks" },
-	{ ns_log_control,	"control" },
-	{ 0,			NULL }
-}
-#endif
-;
-
-DECL	const char panic_msg_no_options[]
-	INIT("no server_options in NS_OPTION_P");
-
-DECL	const char panic_msg_insist_failed[]
-	INIT("%s:%d: insist '%s' failed: %s");
-
-DECL	const char panic_msg_bad_which[]
-	INIT("%s:%d: INCRSTATS(%s): bad \"which\"");
-
-DECL	u_long			globalStats[nssLast];
-
-DECL	evTimerID		clean_timer;
-DECL	evTimerID		interface_timer;
-DECL	evTimerID		stats_timer;
-DECL	evTimerID		heartbeat_timer;
-DECL	int			active_timers		INIT(0);
-
-DECL	uid_t			user_id;
-DECL	char *			user_name		INIT(NULL);
-DECL	gid_t			group_id;
-DECL	char *			group_name		INIT(NULL);
-DECL	char *			chroot_dir		INIT(NULL);
-
-DECL	int			loading			INIT(0);
-
-DECL	int			xfers_running		INIT(0);
-DECL	int			xfers_deferred		INIT(0);
-DECL	int			qserials_running	INIT(0);
diff --git a/contrib/bind/bin/named/ns_glue.c b/contrib/bind/bin/named/ns_glue.c
deleted file mode 100644
index 9c40ddee19e12..0000000000000
--- a/contrib/bind/bin/named/ns_glue.c
+++ /dev/null
@@ -1,463 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_glue.c,v 8.16 2000/04/21 06:50:18 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium, Inc.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/uio.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <signal.h>
-#include <stdarg.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <stdarg.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-/*
- * IP address from unaligned octets.
- */
-struct in_addr
-ina_get(const u_char *data) {
-	struct in_addr ret;
-	u_int32_t i;
-
-	GETLONG(i, data);
-	ina_ulong(ret) = htonl(i);
-	return (ret);
-}
-
-/*
- * IP address to unaligned octets.
- */
-u_char *
-ina_put(struct in_addr ina, u_char *data) {
-	PUTLONG(ntohl(ina_ulong(ina)), data);
-	return (data);
-}
-
-/*
- * IP address to presentation format.
- */
-const char *
-sin_ntoa(struct sockaddr_in sin) {
-	static char ret[sizeof "[111.222.333.444].55555"];
-
-	sprintf(ret, "[%s].%u", inet_ntoa(sin.sin_addr), ntohs(sin.sin_port));
-	return (ret);
-}
-
-/*
- * Logging Support
- */
-
-int
-ns_wouldlog(int category, int level) {
-	if (log_ctx_valid)
-		return (log_check(log_ctx, category, level));
-	return (0);
-}
-
-void
-ns_debug(int category, int level, const char *format, ...) {
-	va_list args;
-
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, category, log_debug(level), format, args);
-	va_end(args);
-}
-
-void
-ns_info(int category, const char *format, ...) {
-	va_list args;
-
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, category, log_info, format, args);
-	va_end(args);
-}
-
-void
-ns_notice(int category, const char *format, ...) {
-	va_list args;
-
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, category, log_notice, format, args);
-	va_end(args);
-}
-
-void
-ns_warning(int category, const char *format, ...) {
-	va_list args;
-
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, category, log_warning, format, args);
-	va_end(args);
-}
-
-void
-ns_error(int category, const char *format, ...) {
-	va_list args;
-
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, category, log_error, format, args);
-	va_end(args);
-}
-
-void
-ns_panic(int category, int dump_core, const char *format, ...) {
-	va_list args;
-
-	if (!log_ctx_valid)
-		return;
-	va_start(args, format);
-	log_vwrite(log_ctx, category, log_critical, format, args);
-	va_end(args);
-	va_start(args, format);
-	log_vwrite(log_ctx, ns_log_panic, log_critical, format, args);
-	va_end(args);
-	if (dump_core)
-		abort();
-	else
-		exit(1);
-}
-
-void
-ns_assertion_failed(char *file, int line, assertion_type type, char *cond,
-		    int print_errno)
-{
-	ns_panic(ns_log_insist, 1, "%s:%d: %s(%s)%s%s failed.",
-		file, line, assertion_type_to_text(type), cond,
-		(print_errno) ? ": " : "",
-		(print_errno) ? strerror(errno) : "");
-}
-
-/*
- * XXX This is for compatibility and should eventually be removed.
- */
-void
-panic(const char *msg, const void *arg) {
-	ns_panic(ns_log_default, 1, msg, arg);
-}
-
-/*
- * How many labels in this name?
- * Note: the root label is not included in the count.
- */
-int
-nlabels(const char *dname) {
-	int count, i, found, escaped;
-	const char *tmpdname, *end_tmpdname;
-	int tmpdnamelen, c;
-	
-	INSIST(dname != NULL);
-	
-	count = 0;
-	tmpdname = dname;
-	tmpdnamelen = strlen(tmpdname);
-	/* 
-	 * Ignore a trailing label separator (i.e. an unescaped dot)
-	 * in 'tmpdname'.
-	 */
-	if (tmpdnamelen && tmpdname[tmpdnamelen-1] == '.') {
-		escaped = 0;
-		/* note this loop doesn't get executed if tmpdnamelen==1 */
-		for (i = tmpdnamelen - 2; i >= 0; i--)
-			if (tmpdname[i] == '\\') {
-				if (escaped)
-					escaped = 0;
-				else
-					escaped = 1;
-			} else
-				break;
-		if (!escaped)
-			tmpdnamelen--;
-	}
-	
-	end_tmpdname = tmpdname + tmpdnamelen;
-	
-	while(tmpdname != end_tmpdname) {
-		count++;
-		/*
-		 * Strip off the first label if we're not already at
-		 * the root label.
-		 */
-		for (escaped = found = 0;
-		     (tmpdname != end_tmpdname) && !found;
-		     tmpdname++) {
-			c = *tmpdname;
-			if (!escaped && (c == '.'))
-				found = 1;
-			
-			if (escaped)
-				escaped = 0;
-			else if (c == '\\')
-				escaped = 1;
-		}
-	}
-	
-	ns_debug(ns_log_default, 12, "nlabels of \"%s\" -> %d", dname, count);
-	return (count);
-}
-
-/*
- * Get current system time and put it in a global.
- */
-void
-gettime(struct timeval *ttp) {
-	if (gettimeofday(ttp, NULL) < 0)
-		ns_error(ns_log_default, "gettimeofday: %s", strerror(errno));
-}
-
-/*
- * This is useful for tracking down lost file descriptors.
- */
-int
-my_close(int fd) {
-	int s;
-
-	do {
-		errno = 0;
-		s = close(fd);
-	} while (s < 0 && errno == EINTR);
-
-	if (s < 0 && errno != EBADF)
-		ns_info(ns_log_default, "close(%d) failed: %s", fd,
-		       strerror(errno));
-	else
-		ns_debug(ns_log_default, 3, "close(%d) succeeded", fd);
-	return (s);
-}
-
-/*
- * This is useful for tracking down lost file descriptors.
- */
-int
-my_fclose(FILE *fp) {
-	int fd = fileno(fp),
-	    s = fclose(fp);
-
-	if (s < 0)
-		ns_info(ns_log_default, "fclose(%d) failed: %s", fd,
-			strerror(errno));
-	else
-		ns_debug(ns_log_default, 3, "fclose(%d) succeeded", fd);
-	return (s);
-}
-
-/*
- * Save a counted buffer and return a pointer to it.
- */
-u_char *
-savebuf(const u_char *buf, size_t len, int needpanic) {
-	u_char *bp = (u_char *)memget(len);
-
-	if (bp == NULL) {
-		if (needpanic)
-			panic("savebuf: memget failed (%s)", strerror(errno));
-		else
-			return (NULL);
-	}
-	memcpy(bp, buf, len);
-	return (bp);
-}
-
-char *
-__newstr(size_t len, int needpanic) {
-	return (__newstr_record(len, needpanic, __FILE__, __LINE__));
-}
-
-char *
-__savestr(const char *str, int needpanic) {
-	return (__savestr_record(str, needpanic, __FILE__, __LINE__));
-}
-
-void
-__freestr(char *str) {
-	__freestr_record(str, __FILE__, __LINE__);
-}
-
-#ifdef DEBUG_STRINGS
-char *
-debug_newstr(size_t len, int needpanic, const char *file, int line) {
-	size_t size;
-
-	size = len + 3;	/* 2 length bytes + NUL. */
-	printf("%s:%d: newstr %d\n", file, line, size);
-	return (__newstr_record(len, needpanic, file, line));
-}
-
-char *
-debug_savestr(const char *str, int needpanic, const char *file, int line) {
-	size_t len;
-
-	len = strlen(str);
-	len += 3;	/* 2 length bytes + NUL. */
-	printf("%s:%d: savestr %d %s\n", file, line, len, str);
-	return (__savestr_record(str, needpanic, file, line));
-}
-
-void
-debug_freestr(char *str, const char *file, int line) {
-	u_char *buf, *bp;
-	size_t len;
-
-	buf = (u_char *)str - 2/*Len*/;
-	bp = buf;
-	NS_GET16(len, bp);
-	len += 3;	/* 2 length bytes + NUL. */
-	printf("%s:%d: freestr %d %s\n", file, line, len, str);
-	__freestr_record(str, file, line);
-	return;
-}
-#endif /* DEBUG_STRINGS */
-
-/*
- * Return a counted string buffer big enough for a string of length 'len'.
- */
-char *
-__newstr_record(size_t len, int needpanic, char *file, int line) {
-	u_char *buf, *bp;
-
-	REQUIRE(len <= 65536);
-
-	buf = (u_char *)__memget_record(2/*Len*/ + len + 1/*Nul*/, file, line);
-	if (buf == NULL) {
-		if (needpanic)
-			panic("savestr: memget failed (%s)", strerror(errno));
-		else
-			return (NULL);
-	}
-	bp = buf;
-	NS_PUT16(len, bp);
-	return ((char *)bp);
-}
-
-/*
- * Save a NUL terminated string and return a pointer to it.
- */
-char *
-__savestr_record(const char *str, int needpanic, char *file, int line) {
-	char *buf;
-	size_t len;
-
-	len = strlen(str);
-	if (len > 65536) {
-		if (needpanic)
-			ns_panic(ns_log_default, 1,
-				 "savestr: string too long");
-		else
-			return (NULL);
-	}
-	buf = __newstr_record(len, needpanic, file, line);
-	memcpy(buf, str, len + 1);
-	return (buf);
-}
-
-void
-__freestr_record(char *str, char *file, int line) {
-	u_char *buf, *bp;
-	size_t len;
-
-	buf = (u_char *)str - 2/*Len*/;
-	bp = buf;
-	NS_GET16(len, bp);
-	__memput_record(buf, 2/*Len*/ + len + 1/*Nul*/, file, line);
-}
-
-char *
-checked_ctime(const time_t *t) {
-	char *ctime_result;
-
-	ctime_result = ctime(t);
-	if (ctime_result == NULL) {
-		ns_error(ns_log_default, "ctime() returned NULL!");
-		ctime_result = "<unknown time>\n";
-	}
-
-	return (ctime_result);
-}
-
-/*
- * Since the fields in a "struct timeval" are longs, and the argument to ctime
- * is a pointer to a time_t (which might not be a long), here's a bridge.
- */
-char *
-ctimel(long l) {
-	time_t t = (time_t)l;
-
-	return (checked_ctime(&t));
-}
-
-/*
- * rename() is lame (can't overwrite an existing file) on some systems.
- * use movefile() instead, and let lame OS ports do what they need to.
- */
-#ifndef HAVE_MOVEFILE
-int
-movefile(const char *oldname, const char *newname) {
-	return (rename(oldname, newname));
-}
-#endif
-
-#ifdef ultrix
-/*
- * Some library routines in libc need to be able to see the res_send
- * and res_close symbols with out __ prefix otherwise we get multiply
- * defined symbol errors when linking named.
- */
-
-#undef res_send
-int res_send(const u_char *buf, int buflen, u_char *ans, int anssiz) {
-	return __res_send(buf, buflen, ans, anssiz);
-}
-#undef _res_close
-void _res_close(void) {
-	__res_close();
-}
-#endif
diff --git a/contrib/bind/bin/named/ns_init.c b/contrib/bind/bin/named/ns_init.c
deleted file mode 100644
index 66242a479c53a..0000000000000
--- a/contrib/bind/bin/named/ns_init.c
+++ /dev/null
@@ -1,579 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_init.c	4.38 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: ns_init.c,v 8.68 2000/04/21 06:54:07 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/stat.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-#ifdef DEBUG
-static void		content_zone(int, int);
-#endif
-
-/*
- * Set new refresh time for zone.  Use a random number in the last half of
- * the refresh limit; we want it to be substantially correct while still
- * preventing slave synchronization.
- */
-void
-ns_refreshtime(struct zoneinfo *zp, time_t timebase) {
-	u_long refresh = (zp->z_refresh > 0) ? zp->z_refresh : INIT_REFRESH;
-	time_t half = (refresh + 1) / 2;
-
-	zp->z_time = timebase + half + (rand() % half);
-}
-
-/*
- * Set new retry time for zone.
- */
-void
-ns_retrytime(struct zoneinfo *zp, time_t timebase) {
-	zp->z_time = timebase + zp->z_retry;
-}
-
-/*
- * Read configuration file and save it as internal state.
- */
-void
-ns_init(const char *conffile) {
-	struct zoneinfo *zp;
-	static int loads = 0;			/* number of times loaded */
-
-	ns_debug(ns_log_config, 1, "ns_init(%s)", conffile);
-	gettime(&tt);
-
-	if (loads == 0) {
-		/* Init zone data. */
-		zones = NULL;
-		INIT_LIST(freezones);
-		INIT_LIST(reloadingzones);
-		nzones = 0;
-		make_new_zones();
-
-		/* Init cache. */
-		zones[0].z_type = z_cache;
-		zones[0].z_origin = savestr("", 1);
-
-		/* Allocate cache hash table, formerly the root hash table. */
-		hashtab = savehash((struct hashbuf *)NULL);
-
-		/* Allocate root-hints/file-cache hash table. */
-		fcachetab = savehash((struct hashbuf *)NULL);
-
-		/* Init other misc stuff. */
-		dst_init();
-		init_configuration();
-	} else {
-		/* Mark previous zones as not yet found in boot file. */
-		block_signals();
-		for (zp = &zones[1]; zp < &zones[nzones]; zp++)
-			if (zp->z_type != z_nil) {
-				zp->z_flags &= ~Z_FOUND;
-				if (LINKED(zp, z_reloadlink))
-					UNLINK(reloadingzones, zp,
-					       z_reloadlink);
-			}
-		unblock_signals();
-	}
-
-#ifdef DEBUG
-	if (debug >= 3) {
-		ns_debug(ns_log_config, 3, "content of zones before loading");
-		content_zone(nzones - 1, 3);
-	}
-#endif
-
-	load_configuration(conffile);
-
-	/* Erase all old zones that were not found. */
-	for (zp = &zones[0]; zp < &zones[nzones]; zp++) {
-		if (zp->z_type == z_cache)
-			continue;
-		if (zp->z_type != z_nil && (zp->z_flags & Z_FOUND) == 0)
-			remove_zone(zp, "removed");
-	}
-	/* Reload parent zones of zones removed */
-	for (zp = &zones[0]; zp < &zones[nzones]; zp++) {
-		if (zp->z_type == z_cache)
-			continue;
-		if (zp->z_type != z_nil &&
-		    (zp->z_flags & Z_PARENT_RELOAD) != 0) {
-			zp->z_flags &= ~Z_PARENT_RELOAD;
-			purgeandload(zp);
-		}
-	}
-
-#ifdef DEBUG
-	if (debug >= 2) {
-		ns_debug(ns_log_config, 2, "content of zones after loading");
-		content_zone(nzones-1, 2);
-	}
-#endif
-
-	ns_debug(ns_log_config, 1, "exit ns_init()");
-	loads++;
-}
-
-void
-zoneinit(struct zoneinfo *zp) {
-	struct stat sb;
-	int result;
-
-	/*
-	 * Try to load zone from backup file,
-	 * if one was specified and it exists.
-	 * If not, or if the data are out of date,
-	 * we will refresh the zone from a primary
-	 * immediately.
-	 */
-	if (zp->z_source == NULL)
-		return;
-	result = stat(zp->z_source, &sb);
-	if (result != -1) {
-		ns_stopxfrs(zp);
-		purge_zone(zp->z_origin, hashtab, zp->z_class);
-	}
-	if (result == -1 ||
-	    db_load(zp->z_source, zp->z_origin, zp, NULL, ISNOTIXFR))
-	{
-		/*
-		 * Set zone to be refreshed immediately.
-		 */
-		zp->z_refresh = INIT_REFRESH;
-		zp->z_retry = INIT_REFRESH;
-		if ((zp->z_flags & (Z_QSERIAL|Z_XFER_RUNNING)) == 0) {
-			zp->z_time = tt.tv_sec;
-			sched_zone_maint(zp);
-		}
-	} else {
-		zp->z_flags |= Z_AUTH;
-		zp->z_flags &= ~(Z_NEED_RELOAD|Z_EXPIRED);
-		ns_refreshtime(zp, tt.tv_sec);
-		sched_zone_maint(zp);
-	}
-}
-
-/*
- * Purge the zone and reload all parent zones.  This needs to be done when
- * we unload a zone, since the child zone will have stomped the parent's
- * delegation to that child when it was first loaded.
- */
-void
-do_reload(const char *domain, int type, int class, int mark) {
-	struct zoneinfo *zp;
-
-	ns_debug(ns_log_config, 1, "do_reload: %s %d %d %d", 
-		 *domain ? domain : ".", type, class, mark);
-
-	/*
-	 * Check if the zone has changed type.  If so, we might not need to
-	 * do any purging or parent reloading.
-	 *
-	 * If the new zone is a master zone, then it will have purged the
-	 * old data and loaded, so we don't need to do anything.
-	 *
-	 * If the new zone is a slave or stub zone and has successfully loaded,
-	 * then we don't need to do anything either.
-	 *
-	 * NOTE: we take care not to match ourselves.
-	 */
-	zp = find_zone(domain, class);
-	if (zp != NULL &&
-	    (type != z_master && zp->z_type == z_master) ||
-	    (type != z_slave && zp->z_type == z_slave && zp->z_serial != 0) ||
-	    (type != z_stub && zp->z_type == z_stub && zp->z_serial != 0))
-		return;
-
-	/*
-	 * Clean up any leftover data.
-	 */
-	ns_stopxfrs(zp);
-	purge_zone(domain, hashtab, class);
-
-	/*
-	 * Reload
-	 */
-	while (*domain) {
-		const char *s;
-		int escaped;
-
-		/*
-		 * XXX this is presentation level hair and belongs elsewhere.
-		 */
-		escaped = 0;
-		for (s = domain; *s != '\0'; s++) {
-			if (!escaped) {
-				if (*s == '.')
-					break;
-				else if (*s == '\\')
-					escaped = 1;
-			} else
-				escaped = 0;
-		}
-
-		if (*s != '\0')
-			domain = s + 1;	/* skip label and its separator */
-		else
-			domain = "";	/* root zone */
-
-		zp = find_zone(domain, class);
-		if (zp != NULL) {
-			ns_debug(ns_log_config, 1, "do_reload: matched %s",
-				 *domain ? domain : ".");
-			if (mark)
-				zp->z_flags |= Z_PARENT_RELOAD;
-			else
-				purgeandload(zp);
-			break;
-		}
-	}
-}
-
-void
-purgeandload(struct zoneinfo *zp) {
-
-#ifdef BIND_UPDATE
-	/*
-	 * A dynamic zone might have changed, so we
-	 * need to dump it before removing it.
-	 */
-	if (zp->z_type == Z_PRIMARY &&
-	    (zp->z_flags & Z_DYNAMIC) != 0 &&
-	    ((zp->z_flags & Z_NEED_SOAUPDATE) != 0 ||
-	     (zp->z_flags & Z_NEED_DUMP) != 0))
-		(void) zonedump(zp, ISNOTIXFR);
-#endif
-	ns_stopxfrs(zp);
-
-	if (zp->z_type == Z_HINT)
-		purge_zone(zp->z_origin, fcachetab, zp->z_class);
-	else
-		purge_zone(zp->z_origin, hashtab, zp->z_class);
-
-	zp->z_flags &= ~Z_AUTH;
-
-	switch (zp->z_type) {
-	case Z_SECONDARY:
-	case Z_STUB:
-		zoneinit(zp);
-		break;
-	case Z_PRIMARY:
-		if (db_load(zp->z_source, zp->z_origin, zp, 0, ISNOTIXFR) == 0)
-			zp->z_flags |= Z_AUTH;
-		break;
-	case Z_HINT:
-	case Z_CACHE:
-		(void)db_load(zp->z_source, zp->z_origin, zp, 0, ISNOTIXFR);
-		break;
-	}
-}
-
-#ifdef DEBUG
-/* prints out the content of zones */
-static void
-content_zone(int end, int level) {
-	int i;
-
-	for (i = 0;  i <= end;  i++) {
-		printzoneinfo(i, ns_log_config, level);
-	}
-}
-#endif
-
-enum context
-ns_ptrcontext(owner)
-	const char *owner;
-{
-	if (ns_samedomain(owner, "in-addr.arpa") ||
-	    ns_samedomain(owner, "ip6.int"))
-		return (hostname_ctx);
-	return (domain_ctx);
-}
-
-enum context
-ns_ownercontext(type, transport)
-	int type;
-	enum transport transport;
-{
-	enum context context = domain_ctx;
-
-	switch (type) {
-	case T_A:
-	case T_WKS:
-	case T_MX:
-		switch (transport) {
-		case update_trans:
-		case primary_trans:
-		case secondary_trans:
-			context = owner_ctx;
-			break;
-		case response_trans:
-			context = hostname_ctx;
-			break;
-		default:
-			panic("impossible condition in ns_ownercontext()", 
-			      NULL);
-		}
-		break;
-	case T_MB:
-	case T_MG:
-		context = mailname_ctx;
-		break;
-	default:
-		/* Nothing to do. */
-		break;
-	}
-	return (context);
-}
-
-int
-ns_nameok(const struct qinfo *qry, const char *name, int class,
-	  struct zoneinfo *zp, enum transport transport,
-	  enum context context,
-	  const char *owner,
-	  struct in_addr source)
-{
-	enum severity severity = not_set;
-	int ok = 1;
-
-	if (zp != NULL)
-		severity = zp->z_checknames;
-	if (severity == not_set)
-		severity = server_options->check_names[transport];
-
-	if (severity == ignore)
-		return (1);
-	switch (context) {
-	case domain_ctx:
-		ok = (class != C_IN) || res_dnok(name);
-		break;
-	case owner_ctx:
-		ok = (class != C_IN) || res_ownok(name);
-		break;
-	case mailname_ctx:
-		ok = res_mailok(name);
-		break;
-	case hostname_ctx:
-		ok = res_hnok(name);
-		break;
-	default:
-		ns_panic(ns_log_default, 1,
-			 "unexpected context %d in ns_nameok", (int)context);
-	}
-	if (!ok) {
-		char *q, *s, *o;
-
-		if (source.s_addr == INADDR_ANY)
-			s = savestr(transport_strings[transport], 0);
-		else {
-			s = newstr(strlen(transport_strings[transport]) +
-				   sizeof " from [000.000.000.000] for [000.000.000.000]", 0);
-			if (s)
-				if ( (transport == response_trans) &&
-					(qry != NULL) ) {
-
-				if ( qry->q_flags & Q_PRIMING ) {
-				   sprintf(s, "%s from [%s] for priming",
-					transport_strings[transport],
-					inet_ntoa(source));
-				} else if ( qry->q_flags & Q_ZSERIAL ) {
-				   sprintf(s, "%s from [%s] for soacheck",
-					transport_strings[transport],
-					inet_ntoa(source));
-				} else if ( qry->q_flags & Q_SYSTEM ) {
-				   sprintf(s, "%s from [%s] for sysquery",
-					transport_strings[transport],
-					inet_ntoa(source));
-				} else {
-				   q=strdup(inet_ntoa(qry->q_from.sin_addr));
-				   sprintf(s, "%s from [%s] for [%s]",
-					transport_strings[transport],
-					inet_ntoa(source),
-					q != NULL ? q : "memget failed");
-				   free(q);
-				}
-
-				} else {
-					sprintf(s, "%s from [%s]",
-						transport_strings[transport],
-						inet_ntoa(source));
-				}
-		}
-		if (ns_samename(owner, name) == 1)
-			o = savestr("", 0);
-		else {
-			const char *t = (*owner == '\0') ? "." : owner;
-
-			o = newstr(strlen(t) + sizeof " (owner \"\")", 0);
-			if (o)
-				sprintf(o, " (owner \"%s\")", t);
-		}
-		/*
-		 * We use log_write directly here to avoid duplicating
-		 * the message formatting and arguments.
-		 */
-		log_write(log_ctx, ns_log_default, 
-			  (transport != response_trans) ||
-			  (o == NULL) || (s == NULL) ||
-			  ( (qry != NULL) &&
-				(qry->q_flags & (Q_PRIMING|Q_ZSERIAL)) ) ?
-			  log_warning : log_info,
-			  "%s name \"%s\"%s %s (%s) is invalid - %s",
-			  context_strings[context],
-			  name, o != NULL ? o : "[memget failed]",
-			  p_class(class),
-			  s != NULL ? s : "[memget failed]",
-			  (severity == fail) ?
-			  "rejecting" : "proceeding anyway");
-		if (severity == warn)
-			ok = 1;
-		if (s != NULL)
-			freestr(s);
-		if (o != NULL)
-			freestr(o);
-	}
-	return (ok);
-}
-
-int
-ns_wildcard(const char *name) {
-	if (*name != '*')
-		return (0);
-	return (*++name == '\0');
-}
-
-void
-ns_shutdown() {
-	struct zoneinfo *zp;
-
-#ifdef BIND_NOTIFY
-	ns_unnotify();
-#endif
-	/* Erase zones. */
-	for (zp = &zones[0]; zp < &zones[nzones]; zp++) {
-		if (zp->z_type) {
-			if (zp->z_type != z_hint && zp->z_type != z_cache) {
-				ns_stopxfrs(zp);
-				purge_zone(zp->z_origin, hashtab, zp->z_class);
-			} else if (zp->z_type == z_hint)
-				purge_zone(zp->z_origin, fcachetab,
-					   zp->z_class);
-			free_zone_contents(zp, 1);
-		}
-	}
-
-	/* Erase the cache. */
-	clean_cache(hashtab, 1);
-	hashtab->h_cnt = 0;		/* ??? */
-	rm_hash(hashtab);
-	hashtab = NULL;
-	clean_cache(fcachetab, 1);
-	fcachetab->h_cnt = 0;		/* ??? */
-	rm_hash(fcachetab);
-	fcachetab = NULL;
-
-	if (zones != NULL)
-		memput(zones, nzones * sizeof *zones);
-	zones = NULL;
-
-	freeComplaints();
-	shutdown_configuration();
-}
diff --git a/contrib/bind/bin/named/ns_ixfr.c b/contrib/bind/bin/named/ns_ixfr.c
deleted file mode 100644
index 693dc6f30751e..0000000000000
--- a/contrib/bind/bin/named/ns_ixfr.c
+++ /dev/null
@@ -1,612 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_ixfr.c,v 8.19 2000/04/18 20:47:27 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static void	sx_new_ixfrmsg(struct qstream * qsp);
-void		sx_send_ixfr(struct qstream * qsp);
-
-static int	sx_flush(struct qstream * qsp),
-		sx_addrr(struct qstream * qsp,
-			 const char *dname,
-			 struct databuf * dp);
-
-/*
- * u_char * sx_new_ixfrmsg(msg) init the header of a message, reset the
- * compression pointers, and reset the write pointer to the first byte
- * following the header.
- */
-static void
-sx_new_ixfrmsg(struct qstream *qsp) {
-	HEADER *	hp = (HEADER *) qsp->xfr.msg;
-
-	memset(hp, 0, HFIXEDSZ);
-	hp->id = htons(qsp->xfr.id);
-	hp->opcode = qsp->xfr.opcode;
-	hp->qr = 1;
-	hp->aa = 1;
-	hp->rcode = NOERROR;
-
-	qsp->xfr.ptrs[0] = qsp->xfr.msg;
-	qsp->xfr.ptrs[1] = NULL;
-
-	qsp->xfr.cp = qsp->xfr.msg + HFIXEDSZ;
-	if (qsp->xfr.ixfr_zone == 0) {
-		int		count, n;
-		int		buflen;
-		struct namebuf *np;
-		struct hashbuf *htp;
-		struct zoneinfo *zp;
-		struct databuf *dp;
-		const char *	fname;
-		u_char **	edp = qsp->xfr.ptrs +
-				      sizeof qsp->xfr.ptrs / sizeof(u_char *);
-
-		qsp->xfr.ixfr_zone = qsp->xfr.zone;
-		zp = &zones[qsp->xfr.zone];
-		n = dn_comp(zp->z_origin, qsp->xfr.cp,
-		   XFER_BUFSIZE - (qsp->xfr.cp - qsp->xfr.msg), NULL, NULL);
-		qsp->xfr.cp += n;
-		PUTSHORT((u_int16_t) T_IXFR, qsp->xfr.cp);
-		PUTSHORT((u_int16_t) zp->z_class, qsp->xfr.cp);
-		hp->qdcount = htons(ntohs(hp->qdcount) + 1);
-		count = qsp->xfr.cp - qsp->xfr.msg;
-		htp = hashtab;
-		np = nlookup(zp->z_origin, &htp, &fname, 0);
-		buflen = XFER_BUFSIZE;
-		foreach_rr(dp, np, T_SOA, qsp->xfr.class, qsp->xfr.zone) {
-			n = make_rr(zp->z_origin, dp, qsp->xfr.cp, qsp->xfr.eom - qsp->xfr.cp, 0, qsp->xfr.ptrs, edp, 0);
-			qsp->xfr.cp += n;
-			hp->ancount = htons(ntohs(hp->ancount) + 1);
-		}
-	}
-}
-
-/*
- * int
- * sx_flush(qsp)
- *	flush the intermediate buffer out to the stream IO system.
- * return:
- *	passed through from sq_write().
- */
-static int
-sx_flush(struct qstream *qsp) {
-	int ret;
-
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(qsp->xfr.msg, qsp->xfr.cp - qsp->xfr.msg,
-			  log_get_stream(packet_channel));
-#endif
-	if (qsp->xfr.tsig_state != NULL && qsp->xfr.tsig_skip == 0) {
-		int msglen = qsp->xfr.cp - qsp->xfr.msg;
-
-		ns_sign_tcp(qsp->xfr.msg, &msglen, qsp->xfr.eom - qsp->xfr.msg,
-			    NOERROR, qsp->xfr.tsig_state,
-			    qsp->xfr.state == s_x_done);
-
-		if (qsp->xfr.state == s_x_done) {
-			memput(qsp->xfr.tsig_state, sizeof(ns_tcp_tsig_state));
-			qsp->xfr.tsig_state = NULL;
-		}
-		qsp->xfr.cp = qsp->xfr.msg + msglen;
-	
-	}
-	if (qsp->xfr.cp - qsp->xfr.msg > 0)
-		ret = sq_write(qsp, qsp->xfr.msg, qsp->xfr.cp - qsp->xfr.msg);
-	else {
-		ns_debug(ns_log_default, 3, " Flush negative number *********");
-		ret = -1;
-	}
-	if (ret >= 0) {
-		qsp->xfr.cp = NULL;
-		qsp->xfr.tsig_skip = 0;
-	}
-	else
-		qsp->xfr.tsig_skip = 1;
-	return (ret);
-}
-/*
- * int sx_addrr(qsp, name, dp) add name/dp's RR to the current assembly
- * message.  if it won't fit, write current message out, renew the message,
- * and then RR should fit. return: -1 = the sq_write() failed so we could not
- * queue the full message. 0 = one way or another, everything is fine. side
- * effects: on success, the ANCOUNT is incremented and the pointers are
- * advanced.
- */
-static int
-sx_addrr(struct qstream *qsp, const char *dname, struct databuf *dp) {
-	HEADER *hp = (HEADER *) qsp->xfr.msg;
-	u_char **edp = qsp->xfr.ptrs + sizeof qsp->xfr.ptrs / sizeof(u_char *);
-	int n;
-
-	if (qsp->xfr.cp != NULL) {
-		if (qsp->xfr.transfer_format == axfr_one_answer &&
-		    sx_flush(qsp) < 0)
-			return (-1);
-	}
-	if (qsp->xfr.cp == NULL)
-		sx_new_ixfrmsg(qsp);
-	n = make_rr(dname, dp, qsp->xfr.cp, qsp->xfr.eom - qsp->xfr.cp,
-		    0, qsp->xfr.ptrs, edp, 0);
-	if (n < 0) {
-		if (sx_flush(qsp) < 0)
-			return (-1);
-		if (qsp->xfr.cp == NULL)
-			sx_new_ixfrmsg(qsp);
-		n = make_rr(dname, dp, qsp->xfr.cp, qsp->xfr.eom - qsp->xfr.cp,
-			    0, qsp->xfr.ptrs, edp, 0);
-		INSIST(n >= 0);
-	}
-	hp->ancount = htons(ntohs(hp->ancount) + 1);
-	qsp->xfr.cp += n;
-	return (0);
-}
-
-void
-sx_send_ixfr(struct qstream *qsp) {
-	char *		cp;
-	u_int32_t	serial = 0;
-	struct zoneinfo *zp = NULL;
-	struct databuf *soa_dp;
-	struct databuf *old_soadp;
-	ns_delta *dp;
-	ns_updrec *rp;
-	ns_updrec *trp;
-	int		foundsoa;
-
-	zp = &zones[qsp->xfr.zone];
-	soa_dp = (struct databuf *) findzonesoa(zp);
-	if (soa_dp == NULL) {
-		/* XXX should be more graceful */
-		ns_panic(ns_log_update, 1,
-			 "sx_send_ixfr: unable to locate soa");
-	}
-	old_soadp = memget(DATASIZE(soa_dp->d_size));
-	memcpy(old_soadp, soa_dp, DATASIZE(soa_dp->d_size));
-
- again:
-	switch (qsp->xfr.state) {
-	case s_x_firstsoa:
-		ns_debug(ns_log_default, 3,
-			 "IXFR: s_x_firstsoa (%s)", zp->z_origin);
-		/*
-		 * The current SOA has been emited already.
-		 * It would be cleaner if the first one was emited here...
-		 *
-		 * if (sx_addrr(qsp, zp->z_origin, soa_dp) < 0)
-		 *	goto cleanup;
-		 */
-		qsp->xfr.state = s_x_deletesoa;
-		/* FALLTHROUGH */
-	case s_x_deletesoa:
-		ns_debug(ns_log_default, 3,
-			 "IXFR: s_x_deletesoa (%s)", zp->z_origin);
-		dp = NULL;
-		if (qsp->xfr.top.ixfr != NULL && !EMPTY(*qsp->xfr.top.ixfr))
-			dp = HEAD(*qsp->xfr.top.ixfr);
-		if (dp != NULL) {
-			foundsoa = 0;
-
-			rp = HEAD(dp->d_changes);
-			while (rp != NULL) {
-				if (rp->r_opcode == DELETE &&
-				    rp->r_dp != NULL &&
-				    rp->r_dp->d_type == T_SOA) {
-					if (sx_addrr(qsp, rp->r_dname,
-						     rp->r_dp) < 0)
-						goto cleanup;
-					db_freedata(rp->r_dp);
-					rp->r_dp = NULL;
-					foundsoa = 1;
-					break;
-				}
-				rp = NEXT(rp, r_link);
-			} 
-
-			if (!foundsoa) {
-				cp = (char *)findsoaserial(old_soadp->d_data);
-				PUTLONG(HEAD(dp->d_changes)->r_zone, cp);
-
-				if (sx_addrr(qsp, zp->z_origin, old_soadp) < 0)
-					goto cleanup;
-			}
-		}
-		qsp->xfr.state = s_x_deleting;
-		/* FALLTHROUGH */
-	case s_x_deleting:
-		ns_debug(ns_log_default, 3,
-			 "IXFR: s_x_deleting (%s)", zp->z_origin);
-		dp = NULL;
-		if (qsp->xfr.top.ixfr != NULL && !EMPTY(*qsp->xfr.top.ixfr))
-			dp = HEAD(*qsp->xfr.top.ixfr);
-		if (dp != NULL) {
-			rp = HEAD(dp->d_changes);
-			while (rp != NULL) {
-				if (rp->r_opcode == DELETE &&
-				    rp->r_dp != NULL) {
-					/*
-					 * Drop any SOA deletes
-					 */
-					if (rp->r_dp->d_type != T_SOA &&
-					    sx_addrr(qsp, rp->r_dname,
-						     rp->r_dp) < 0)
-						goto cleanup;
-					db_freedata(rp->r_dp);
-					rp->r_dp = NULL;
-				}
-				rp = NEXT(rp, r_link);
-			}
-		}
-		qsp->xfr.state = s_x_addsoa;
-		/* FALLTHROUGH */
-	case s_x_addsoa:
-		ns_debug(ns_log_default, 3,
-			 "IXFR: s_x_addsoa (%s)", zp->z_origin);
-		dp = NULL;
-		if (qsp->xfr.top.ixfr != NULL && !EMPTY(*qsp->xfr.top.ixfr))
-			dp = HEAD(*qsp->xfr.top.ixfr);
-		if (dp != NULL) {
-			foundsoa = 0;
-			rp = HEAD(dp->d_changes);
-			while (rp != NULL) {
-				if (rp->r_opcode == ADD &&
-				    rp->r_dp != NULL &&
-				    rp->r_dp->d_type == T_SOA) {
-					if (sx_addrr(qsp, rp->r_dname,
-						     rp->r_dp) < 0)
-						goto cleanup;
-					db_freedata(rp->r_dp);
-					rp->r_dp = NULL;
-					foundsoa = 1;
-					break;
-				}
-				rp = NEXT(rp, r_link);
-			}
-
-			if (!foundsoa) {
-				cp = (char *)findsoaserial(old_soadp->d_data);
-				if (NEXT(dp, d_link) != NULL) {
-					PUTLONG(HEAD(dp->d_changes)->r_zone, cp);
-					if (sx_addrr(qsp, zp->z_origin,
-						     old_soadp) < 0)
-						goto cleanup;
-				} else {
-					if (sx_addrr(qsp, zp->z_origin,
-						     soa_dp) < 0)
-						goto cleanup;
-				}
-			}
-		}
-		qsp->xfr.state = s_x_adding;
-		/* FALLTHROUGH */
-	case s_x_adding:
-		ns_debug(ns_log_default, 3,
-			 "IXFR: s_x_adding (%s)", zp->z_origin);
-		dp = NULL;
-		if (qsp->xfr.top.ixfr != NULL && !EMPTY(*qsp->xfr.top.ixfr)) {
-			dp = HEAD(*qsp->xfr.top.ixfr);
-			if (dp != NULL) {
-				/* see s_x_deleting */
-				rp = HEAD(dp->d_changes);
-				while (rp != NULL) {
-					if (rp->r_opcode == ADD &&
-					    rp->r_dp != NULL &&
-					    rp->r_dp->d_type != T_SOA) {
-						if (sx_addrr(qsp, rp->r_dname,
-							     rp->r_dp) < 0)
-							goto cleanup;
-						db_freedata(rp->r_dp);
-						rp->r_dp = NULL;
-					}
-					rp = NEXT(rp, r_link);
-				}
-
-				/* move to next update */
-				UNLINK(*qsp->xfr.top.ixfr, dp, d_link);
-
-				/* clean up old update */
-				while ((rp = HEAD(dp->d_changes)) != NULL) {
-					UNLINK(dp->d_changes, rp, r_link);
-					if (rp->r_dp != NULL) {
-						db_freedata(rp->r_dp);
-						rp->r_dp = NULL;
-					}
-					res_freeupdrec(rp);
-				}
-				memput(dp, sizeof (*dp));
-				if (HEAD(*qsp->xfr.top.ixfr) != NULL) {
-					qsp->xfr.state = s_x_deletesoa;
-					goto again;
-				}
-			}
-		}
-		qsp->xfr.state = s_x_lastsoa;
-		/* FALLTHROUGH */
-	case s_x_lastsoa:
-		ns_debug(ns_log_default, 3,
-			 "IXFR: s_x_lastsoa (%s)", zp->z_origin);
-		if (qsp->xfr.ixfr_zone != 0)
-			sx_addrr(qsp, zp->z_origin, soa_dp);
-		break;
-	}
-	ns_debug(ns_log_default, 3, "IXFR: flushing %s", zp->z_origin);
-	qsp->xfr.state = s_x_done;
-	sx_flush(qsp);
-	sq_writeh(qsp, sq_flushw);
- cleanup:
-	if (qsp->xfr.top.ixfr != NULL) {
-		if(!EMPTY(*qsp->xfr.top.ixfr)) {
-			while ((dp = HEAD(*qsp->xfr.top.ixfr)) != NULL)  {
-				UNLINK(*qsp->xfr.top.ixfr, dp, d_link);
-				while ((rp = HEAD(dp->d_changes)) != NULL) {
-					UNLINK(dp->d_changes, rp, r_link);
-					if (rp->r_dp != NULL)
-						db_freedata(rp->r_dp);
-					rp->r_dp = NULL;
-					res_freeupdrec(rp);
-				} 
-				memput(dp, sizeof *dp);
-			}
-		}
-		memput(qsp->xfr.top.ixfr, sizeof *qsp->xfr.top.ixfr);
-		qsp->xfr.top.ixfr = NULL;
-	}
-	memput(old_soadp, DATASIZE(old_soadp->d_size));
-}
-
-
-#ifndef MAXBSIZE
-#define MAXBSIZE 8192
-#endif
-
-
-/*
- * int ixfr_log_maint(struct zoneinfo *zp, int fast_trim)
- *
- * zp - pointer to the zone information
- * fast_trim  - is used to denote that this is not called on the regular
- *              maintaince cycle.
- * 		
- */
-int ixfr_log_maint(struct zoneinfo *zp, int fast_trim) {
-	int fd, rcount, wcount;
-	int found = 0;
-	int error = 0;
-	long seek = 0;
-	FILE *to_fp, *from_fp, *db_fp;
-	static char   *tmpname;
-	struct stat db_sb;
-	struct stat sb;
-	static char buf[MAXBSIZE];
-
-	ns_debug(ns_log_default, 3, "ixfr_log_maint(%s)", zp->z_origin);
-
-	/* find out how big the zone db file is */
-	if ((db_fp = fopen(zp->z_source, "r")) == NULL) {
-		ns_warning(ns_log_db, "%s: %s",
-			   zp->z_source, strerror(errno));
-	 	return (-1);
-	}
-	if (fstat(fileno(db_fp), &db_sb) < 0) {
-		ns_warning(ns_log_db, "%s: %s",
-			   zp->z_source, strerror(errno));
-		(void) my_fclose(db_fp);
-		return (-1);
-	}
-	(void) my_fclose(db_fp);
-	ns_debug(ns_log_default, 3, "%s, size %d blk %d", 
-	     zp->z_source, db_sb.st_size, 
-	     db_sb.st_size);
-
-	/* open up the zone ixfr log */
-	if ((from_fp = fopen(zp->z_ixfr_base, "r")) == NULL) {
-		ns_warning(ns_log_db, "%s: %s",
-			   zp->z_ixfr_base, strerror(errno));
-	 	return (-1);
-	}
-
-	if (fstat(fileno(from_fp), &sb) < 0) {
-		ns_warning(ns_log_db, "%s: %s",
-			   zp->z_ixfr_base, strerror(errno));
-		(void) my_fclose(from_fp);
-		return (-1);
-	}
-	ns_debug(ns_log_default, 3, "%s, size %d max %d\n", 
-	     zp->z_ixfr_base, 
-	     sb.st_size, 
-	     zp->z_max_log_size_ixfr);
-	if (zp->z_max_log_size_ixfr) {
-		if (sb.st_size > zp->z_max_log_size_ixfr)
-			seek = (signed)sb.st_size -
-				(signed)(zp->z_max_log_size_ixfr + 
-				(zp->z_max_log_size_ixfr * .10) );
-		else
-			seek = 0;
-	} else {
-		if (sb.st_size > (db_sb.st_size * .50))
-			seek = (signed)sb.st_size - (signed)((db_sb.st_size * .50)
-			 + ((db_sb.st_size * zp->z_max_log_size_ixfr) *.10));
-		else 
-			 seek = 0;
-	}
-	ns_debug(ns_log_default, 3, "seek: %d", seek);
-	if (seek < 1)
-	{
-		ns_debug(ns_log_default, 3, "%s does not need to be reduced", 
-			zp->z_ixfr_base);
-		(void) my_fclose(from_fp);
-		return (-1);
-	}
-
-	if ((fast_trim) && seek < (zp->z_max_log_size_ixfr + 100000)) {
-		(void) my_fclose(from_fp);
-		return (0);
-	}
-
-	tmpname = memget(strlen(zp->z_ixfr_base) + sizeof(".XXXXXX") + 1);
-	if (!tmpname) {
-		ns_warning(ns_log_default, "memget failed");
-			return (-1);
-	}
-#ifdef SHORT_FNAMES
-	filenamecpy(tmpname, zp->z_ixfr_base);
-#else
-	(void) strcpy(tmpname, zp->z_ixfr_base);
-#endif /* SHORT_FNAMES */
-
-	(void) strcat(tmpname, ".XXXXXX");
-	if ((fd = mkstemp(tmpname)) == -1) {
-		ns_warning(ns_log_db, "can't make tmpfile (%s): %s", 
-				strerror(errno));
-		memput(tmpname, (strlen(zp->z_ixfr_base) + sizeof(".XXXXXX") + 1));
-	 	return (-1);
-	}
-	if ((to_fp = fdopen(fd, "r+")) == NULL) {
-		ns_warning(ns_log_db, "%s: %s",
-			   tmpname, strerror(errno));
-		(void) unlink(tmpname);
-		memput(tmpname, (strlen(zp->z_ixfr_base) + sizeof(".XXXXXX") + 1));
-		(void) close(fd);
-	 	return (-1);
-	}
-
-	if (fgets(buf, sizeof(buf), from_fp) == NULL) {
-		ns_error(ns_log_update, "fgets() from %s failed: %s",
-			 zp->z_ixfr_base, strerror(errno));
-		error++;
-		goto clean_up;
-	}
-	if (strcmp(buf, LogSignature) != 0) {
-		ns_error(ns_log_update, "invalid log file %s",
-			 zp->z_ixfr_base);
-		error++;
-		goto clean_up;
-	}
-
-	if (fseek( from_fp, seek, 0) < 0) {
-		error++;
-		goto clean_up;
-	}
-
-	found = 0;
-	for (;;) {
-		if (getword(buf, sizeof buf, from_fp, 0)) {
-			if (strcasecmp(buf, "[END_DELTA]") == 0) {
-				if (!(fgets(buf, 2, from_fp) == NULL)) /* eat <cr><lf> */
-					found = 1;
-				break;
-			} 
-		}
-		if (feof(from_fp))
-			break;
-	}
-	if (found) {
-		ns_debug(ns_log_default, 1, "ixfr_log_maint(): found [END_DELTA]");
-	
-		fprintf(to_fp, "%s", LogSignature);
-
-		while ((rcount = fread(buf, sizeof(char), MAXBSIZE, from_fp)) > 0) {
-			wcount = fwrite(buf, sizeof(char), rcount, to_fp);
-			if (rcount != wcount || wcount == -1) {
-					ns_warning(ns_log_default, "ixfr_log_maint: error in writting copy");
-					break;
-			}
-		}
-		if (rcount < 0)
-			ns_warning(ns_log_default,
-				   "ixfr_log_maint: error in reading copy");
-	}
-	clean_up:
-	(void) my_fclose(to_fp);
-	(void) close(fd);
-	(void) my_fclose(from_fp);
-	if (error == 0) {
-		if (rename(tmpname, zp->z_ixfr_base) == -1) {
-			ns_warning(ns_log_default, "can not rename %s to %s :%s",
-				   tmpname, zp->z_ixfr_base, strerror(errno));
-		}
-		if ((from_fp = fopen(zp->z_ixfr_base, "r")) == NULL) {
-			ns_warning(ns_log_db, "%s: %s",
-				   zp->z_ixfr_base, strerror(errno));
-			return (-1);
-		}
-		if (fstat(fileno(from_fp), &sb) < 0) {
-			ns_warning(ns_log_db, "%s: %s",
-				   zp->z_ixfr_base, strerror(errno));
-			(void) my_fclose(from_fp);
-			return (-1);
-		}
-		if (sb.st_size <= 0)
-			(void) unlink(zp->z_ixfr_base);
-		else if (chmod(zp->z_ixfr_base, 0644) < 0)
-				ns_error(ns_log_update,
-					"chmod(%s,%o) failed, pressing on: %s",
-					 zp->z_source, sb.st_mode,
-					 strerror(errno));
-	}
-	(void) unlink(tmpname);
-	memput(tmpname, (strlen(zp->z_ixfr_base) + sizeof(".XXXXXX") + 1));
-	(void) my_fclose(from_fp);
-
-	zp->z_serial_ixfr_start = 0; /* signal to read for lowest serial number */	
-
-	ns_debug(ns_log_default, 3, "%s, size %d max %d\n", 
-	     zp->z_ixfr_base, 
-	     sb.st_size, 
-	     zp->z_max_log_size_ixfr);
-
-	if (error)
-	 	return(-1);
-	else
-	    return (0);
-}
-
diff --git a/contrib/bind/bin/named/ns_lexer.c b/contrib/bind/bin/named/ns_lexer.c
deleted file mode 100644
index 7110fe4989080..0000000000000
--- a/contrib/bind/bin/named/ns_lexer.c
+++ /dev/null
@@ -1,809 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_lexer.c,v 8.20 2000/04/21 06:54:07 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <ctype.h>
-#include <time.h>
-#include <stdarg.h>
-#include <syslog.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-#include "ns_parser.h"
-#include "ns_parseutil.h"
-#include "ns_lexer.h"
-
-typedef enum lexer_state {
-		scan, number, identifier, ipv4, quoted_string
-} LexerState;
-
-#define LEX_EOF			0x01
-#define LEXER_MAX_PUSHBACK	2
-
-typedef struct lexer_file_context {
-	const char *	name;
-	FILE *		stream;
-	int		line_number;
-	LexerState	state;
-	u_int		flags;
-        int		warnings;
-        int		errors;
-	u_int		pushback_count;
-	char		pushback[LEXER_MAX_PUSHBACK];
-	struct lexer_file_context *
-			next;
-} *LexerFileContext;
-
-LexerFileContext current_file = NULL;
-
-#define LEX_LAST_WAS_DOT	0x01
-#define LEX_CONSECUTIVE_DOTS	0x02
-
-typedef struct lexer_identifier {
-	char buffer[LEX_MAX_IDENT_SIZE+1];
-	int index;
-	int num_dots;
-	unsigned int flags;
-} *LexerIdentifier;
-
-static LexerIdentifier id;
-
-static char special_chars[256];
-
-#define whitespace(c) ((c) == ' ' || (c) == '\t' || (c) == '\n')
-#define domain_char(c) (isalnum((c)) || (c) == '.' || (c) == '-')
-#define special_char(c) (special_chars[(c)] == 1)
-#define identifier_char(c) (!whitespace(c) && !special_char(c))
-
-static int last_token;
-static YYSTYPE last_yylval;
-
-static int lexer_initialized = 0;
-
-/*
- * Problem Reporting
- */
-
-static char *
-token_to_text(int token, YYSTYPE lval) {
-	static char buffer[LEX_MAX_IDENT_SIZE+50];
-
-	if (token < 128) {
-		if (token == 0)
-			strcpy(buffer, "<end of file>");
-		else
-			sprintf(buffer, "'%c'", token);
-	} else {
-		switch (token) {
-		case L_EOS:
-			strcpy(buffer, ";");
-			break;
-		case L_STRING:
-			sprintf(buffer, "'%s'", lval.cp);
-			break;
-		case L_QSTRING:
-			sprintf(buffer, "\"%s\"", lval.cp);
-			break;
-		case L_IPADDR:
-			sprintf(buffer, "%s", inet_ntoa(lval.ip_addr));
-			break;
-		case L_NUMBER:
-			sprintf(buffer, "%ld", lval.num);
-			break;	
-		case L_END_INCLUDE:
-			sprintf(buffer, "<end of include>");
-			break;
-		default:
-			sprintf(buffer, "%s", lval.cp);
-		}
-	}
-
-	return (buffer);
-}
-
-static char where[MAXPATHLEN + 100];
-static char message[20480];
-
-static void
-parser_complain(int is_warning, int print_last_token, const char *format,
-		va_list args)
-{
-	LexerFileContext lf;
-	int severity;
-
-	if (is_warning) {
-		severity = log_warning;
-	} else {
-		severity = log_error;
-	}
-
-	INSIST(current_file != NULL);
-	if (current_file->next != NULL) {
-		for (lf = current_file; lf != NULL; lf = lf->next) {
-			log_write(log_ctx, ns_log_parser, severity,
-				  "%s '%s' line %d", 
-				  (lf == current_file) ? 
-				  "In" : "included from",
-				  lf->name, lf->line_number);
-		}
-	}
-	sprintf(where, "%s:%d: ", current_file->name,
-		current_file->line_number);
-	vsprintf(message, format, args);
-	if (print_last_token)
-		log_write(log_ctx, ns_log_parser, severity, "%s%s near %s",
-			  where, message,
-			  token_to_text(last_token, last_yylval));
-	else
-		log_write(log_ctx, ns_log_parser, severity,
-			  "%s%s", where, message);
-}
-
-int
-parser_warning(int print_last_token, const char *format, ...) {
-	va_list args;
-
-	va_start(args, format);
-	parser_complain(1, print_last_token, format, args);
-	va_end(args);
-	current_file->warnings++;
-	return (1);
-}
-
-int
-parser_error(int print_last_token, const char *format, ...) {
-	va_list args;
-
-	va_start(args, format);
-	parser_complain(0, print_last_token, format, args);
-	va_end(args);
-	current_file->errors++;
-	return (1);
-}
-
-void
-yyerror(const char *message) {
-	parser_error(1, message);
-}
-
-/*
- * Keywords
- */
-
-struct keyword {
-        char *name;
-	int token;
-};
-
-/*
- * "keywords" is an array of the keywords which are the fixed syntactic
- * elements of the configuration file.  Each keyword has a string version
- * of the keyword and a token id, which should be an identifier which
- * matches that in a %token statement inside the parser.y file.
- */
-static struct keyword keywords[] = {
-	{"acl", T_ACL}, 
-	{"address", T_ADDRESS},
-	{"algorithm", T_ALGID},
-	{"allow", T_ALLOW},
-	{"allow-query", T_ALLOW_QUERY}, 
-	{"allow-recursion", T_ALLOW_RECURSION},
-	{"allow-transfer", T_ALLOW_TRANSFER},
-	{"allow-update", T_ALLOW_UPDATE},
-#ifdef BIND_NOTIFY
-	{"also-notify", T_ALSO_NOTIFY},
-#endif
-	{"auth-nxdomain", T_AUTH_NXDOMAIN},
-	{"blackhole", T_BLACKHOLE},
-	{"bogus", T_BOGUS},
-	{"category", T_CATEGORY},
-	{"class", T_CLASS},
-	{"channel", T_CHANNEL},
-	{"check-names", T_CHECK_NAMES},
-	{"cleaning-interval", T_CLEAN_INTERVAL},
-	{"controls", T_CONTROLS},
-	{"coresize", T_CORESIZE},
-	{"datasize", T_DATASIZE},
-	{"deallocate-on-exit", T_DEALLOC_ON_EXIT},
-	{"debug", T_DEBUG},
-	{"default", T_DEFAULT},
-	{"dialup", T_DIALUP},
-	{"directory", T_DIRECTORY}, 
-	{"dump-file", T_DUMP_FILE},
-	{"dynamic", T_DYNAMIC},
-	{"fail", T_FAIL},
-	{"fake-iquery", T_FAKE_IQUERY},
-	{"false", T_FALSE},
-	{"fetch-glue", T_FETCH_GLUE},
-	{"file", T_FILE}, 
-	{"files", T_FILES}, 
-	{"first", T_FIRST}, 
-	{"forward", T_FORWARD},
-	{"forwarders", T_FORWARDERS},
-	{"group", T_GROUP},
-	{"has-old-clients", T_HAS_OLD_CLIENTS},
-	{"heartbeat-interval", T_HEARTBEAT},
-	{"hint", T_HINT},
-	{"host-statistics", T_HOSTSTATS},
-	{"if-no-answer", T_IF_NO_ANSWER},
-	{"if-no-domain", T_IF_NO_DOMAIN},
-	{"ignore", T_IGNORE},
-	{"include", T_INCLUDE},
-	{"inet", T_INET},
-	{"interface-interval", T_INTERFACE_INTERVAL},
-	{"ixfr-base", T_FILE_IXFR},
-	{"ixfr-tmp-file", T_IXFR_TMP},
-	{"key", T_SEC_KEY},
-	{"keys", T_KEYS},
-	{"lame-ttl", T_LAME_TTL},
-	{"listen-on", T_LISTEN_ON},
-	{"logging", T_LOGGING},
-	{"maintain-ixfr-base", T_MAINTAIN_IXFR_BASE},
-	{"many-answers", T_MANY_ANSWERS},
-	{"master", T_MASTER},
-	{"masters", T_MASTERS},
-	{"max-ixfr-log-size", T_MAX_LOG_SIZE_IXFR},
-	{"max-ncache-ttl", T_MAX_NCACHE_TTL},
-	{"max-transfer-time-in", T_MAX_TRANSFER_TIME_IN},
-	{"memstatistics-file", T_MEMSTATS_FILE},
-	{"min-roots", T_MIN_ROOTS},
-	{"multiple-cnames", T_MULTIPLE_CNAMES},
-	{"name", T_NAME},
-	{"named-xfer", T_NAMED_XFER},
-	{"no", T_NO},
-#ifdef BIND_NOTIFY
-	{"notify", T_NOTIFY},
-#endif
-	{"null", T_NULL_OUTPUT},
-	{"one-answer", T_ONE_ANSWER},
-	{"only", T_ONLY},
-	{"order", T_ORDER},
-	{"options", T_OPTIONS},
-	{"owner", T_OWNER},
-	{"perm", T_PERM},
-	{"pid-file", T_PIDFILE},
-	{"port", T_PORT},
-	{"print-category", T_PRINT_CATEGORY},
-	{"print-severity", T_PRINT_SEVERITY},
-	{"print-time", T_PRINT_TIME},
-	{"pubkey", T_PUBKEY},
-	{"query-source", T_QUERY_SOURCE},
-	{"rfc2308-type1", T_RFC2308_TYPE1},
-	{"rrset-order", T_RRSET_ORDER},
-	{"recursion", T_RECURSION},
-	{"response", T_RESPONSE},
-	{"secret", T_SECRET},
-	{"serial-queries", T_SERIAL_QUERIES},
-	{"server", T_SERVER}, 
-	{"severity", T_SEVERITY}, 
-	{"size", T_SIZE}, 
-	{"slave", T_SLAVE},
-	{"sortlist", T_SORTLIST},
-	{"stacksize", T_STACKSIZE},
-	{"statistics-file", T_STATS_FILE},
-	{"statistics-interval", T_STATS_INTERVAL},
-	{"stub", T_STUB},
-	{"support-ixfr", T_SUPPORT_IXFR},
-	{"syslog", T_SYSLOG}, 
-	{"topology", T_TOPOLOGY},
-	{"transfer-format", T_TRANSFER_FORMAT}, 
-	{"transfer-source", T_TRANSFER_SOURCE},
-	{"transfers", T_TRANSFERS}, 
-	{"transfers-in", T_TRANSFERS_IN}, 
-	{"transfers-out", T_TRANSFERS_OUT}, 
-	{"transfers-per-ns", T_TRANSFERS_PER_NS}, 
-	{"treat-cr-as-space", T_TREAT_CR_AS_SPACE},
-	{"true", T_TRUE}, 
-	{"trusted-keys", T_TRUSTED_KEYS},
-	{"type", T_TYPE},
-	{"unix", T_UNIX},
-	{"unlimited", T_UNLIMITED},
-	{"use-id-pool", T_USE_ID_POOL},
-	{"use-ixfr", T_USE_IXFR},
-	{"version", T_VERSION},
-	{"versions", T_VERSIONS}, 
-	{"warn", T_WARN},
-	{"yes", T_YES}, 
-	{"zone", T_ZONE},
-	{(char *) NULL, 0},
-};
-
-/*
- * The table size should be a prime chosen to minimize collisions.
- */
-#define KEYWORD_TABLE_SIZE 461
-
-static symbol_table keyword_table = NULL;
-
-static void
-init_keywords() {
-	struct keyword *k;
-	symbol_value value;
-
-	if (keyword_table != NULL)
-		free_symbol_table(keyword_table);
-	keyword_table = new_symbol_table(KEYWORD_TABLE_SIZE, NULL);
-	for (k = keywords; k->name != NULL; k++) {
-		value.integer = k->token;
-		define_symbol(keyword_table, k->name, 0, value, 0);
-	}
-	dprint_symbol_table(99, keyword_table);
-}
-
-/*
- * File Contexts
- */
-
-void
-lexer_begin_file(const char *filename, FILE *stream) {
-	LexerFileContext lf;
-
-	if (stream == NULL) {
-		stream = fopen(filename, "r");
-		if (stream == NULL) {
-			parser_error(0, "couldn't open include file '%s'",
-				     filename);
-			return;
-		}
-	}
-	lf = (LexerFileContext)memget(sizeof (struct lexer_file_context));
-	if (lf == NULL)
-		panic("memget failed in lexer_begin_file", NULL);
-	INSIST(stream != NULL);
-	lf->stream = stream;
-	lf->name = filename;  /* note copy by reference */
-	lf->line_number = 1;
-	lf->state = scan;
-	lf->flags = 0;
-	lf->warnings = 0;
-	lf->errors = 0;
-	lf->pushback_count = 0;
-	lf->next = current_file;
-	current_file = lf;
-}
-
-void
-lexer_end_file(void) {
-	LexerFileContext lf;
-
-	INSIST(current_file != NULL);
-	lf = current_file;
-	current_file = lf->next;
-	fclose(lf->stream);
-	memput(lf, sizeof *lf);
-}
-
-/*
- * Character Input
- */
-
-#define LEXER_GETC(c, cf) \
-	do { \
-		if ((cf)->pushback_count > 0) { \
-			(cf)->pushback_count--; \
-			(c) = (cf)->pushback[(cf)->pushback_count]; \
-		} else \
-			(c) = getc((cf)->stream); \
-	} while (0);
-
-#define LEXER_UNGETC(c, cf) \
-	do { \
-		INSIST((cf)->pushback_count < LEXER_MAX_PUSHBACK); \
-		(cf)->pushback[(cf)->pushback_count++] = (c); \
-	} while (0);
-
-static void
-scan_to_comment_end(int c_plus_plus_style) {
-	int c;
-	int done = 0;
-	int prev_was_star = 0;
-
-	while (!done) {
-		LEXER_GETC(c, current_file);
-		switch (c) {
-		case EOF:
-			if (!c_plus_plus_style)
-				parser_error(0, "EOF in comment");
-			current_file->flags |= LEX_EOF;
-			done = 1;
-			break;
-		case '*':
-			prev_was_star = 1;
-			break;
-		case '/':
-			if (prev_was_star && !c_plus_plus_style)
-				done = 1;
-			prev_was_star = 0;
-			break;
-		case '\n':
-			if (c_plus_plus_style) {
-				/* don't consume the newline because
-				   we want it to be a delimiter for
-				   anything before the comment
-				   started */
-				LEXER_UNGETC(c, current_file);
-				done = 1;
-			} else {
-				current_file->line_number++;
-			}
-			prev_was_star = 0;
-			break;
-		default:
-			prev_was_star = 0;
-		}
-	}
-}
-
-int
-get_next_char(int comment_ok) {
-	int c, nc;
-
-	if (current_file->flags & LEX_EOF)
-		return (EOF);
-
-	LEXER_GETC(c, current_file);
-
-	if (comment_ok) {
-		while (c == '/' || c == '#') {
-			if (c == '#') {
-				scan_to_comment_end(1);
-				if (current_file->flags & LEX_EOF)
-					return (EOF);
-				LEXER_GETC(c, current_file);
-			} else {
-				LEXER_GETC(nc, current_file);
-				switch (nc) {
-				case EOF:
-					current_file->flags |= LEX_EOF;
-					return ('/');
-				case '*':
-				case '/':
-					scan_to_comment_end((nc == '/'));
-					if (current_file->flags & LEX_EOF)
-						return (EOF);
-					LEXER_GETC(c, current_file);
-					break;
-				default:
-					LEXER_UNGETC(nc, current_file);
-					return ('/');
-				}
-			}
-		}
-	}
-
-	if (c == EOF)
-		current_file->flags |= LEX_EOF;
-	else if (c == '\n')
-		current_file->line_number++;
-	return (c);
-}
-
-void
-put_back_char(int c) {
-	if (c == EOF)
-		current_file->flags |= LEX_EOF;
-	else {
-		LEXER_UNGETC(c, current_file);
-		if (c == '\n')
-			current_file->line_number--;
-	}
-}
-
-
-/*
- * Identifiers
- */
-
-static void
-clear_identifier(LexerIdentifier id) {
-	INSIST(id != NULL);
-	id->index = 0;
-	id->num_dots = 0;
-	id->flags = 0;
-}
-
-static char *
-dup_identifier(LexerIdentifier id) {
-	char *duplicate;
-
-	INSIST(id != NULL);
-	duplicate = savestr(id->buffer, 1);
-	return (duplicate);
-}
-
-static void
-finish_identifier(LexerIdentifier id) {
-	INSIST(id != NULL && id->index < LEX_MAX_IDENT_SIZE);
-	id->buffer[id->index] = '\0';
-}
-
-static void
-add_to_identifier(LexerIdentifier id, int c) {
-	INSIST(id != NULL);
-	id->buffer[id->index] = c;
-	id->index++;
-	if (id->index >= LEX_MAX_IDENT_SIZE) {
-		parser_error(0, "identifier too long");
-		current_file->state = scan;
-		/* discard chars until we hit a non-identifier char */
-		while (c != EOF && identifier_char(c)) {
-			c = get_next_char(1);
-		}
-		put_back_char(c);
-		clear_identifier(id);
-	} else {
-		if (c == '.') {
-			if (id->flags & LEX_LAST_WAS_DOT)
-				id->flags |= LEX_CONSECUTIVE_DOTS;
-			id->flags |= LEX_LAST_WAS_DOT;
-			id->num_dots++;
-		} else {
-			id->flags &= ~LEX_LAST_WAS_DOT;
-		}
-	}
-}
-
-/*
- * yylex() -- return the next token from the current input stream
- */
-int
-yylex() {
-	int c;
-	int comment_ok = 1;
-	int token = -1;
-	symbol_value value;
-
-	while (token < 0) {
-		c = get_next_char(comment_ok);
-		switch(current_file->state) {
-		case scan:
-			if (c == EOF) {
-				if (current_file->next == NULL)
-					/*
-					 * We don't want to call
-					 * lexer_end_file() here because we
-					 * want to keep the toplevel file
-					 * context to log errors against.
-					 */
-					token = 0;
-				else {
-					lexer_end_file();
-					token = L_END_INCLUDE;
-				}
-				break;
-			}
-			if (whitespace(c))
-				break;
-			if (identifier_char(c)) {
-				if (isdigit(c))
-					current_file->state = number;
-				else
-					current_file->state = identifier;
-				clear_identifier(id);
-				add_to_identifier(id, c);
-			} else
-				if (special_char(c)) {
-					if (c == ';') {
-						token = L_EOS; 
-						break;
-					}
-					if (c == '"') {
-						clear_identifier(id);
-						current_file->state =
-							quoted_string;
-						comment_ok = 0;
-						break;
-					}
-					token = c;
-				} else {
-					parser_error(0,
-						     "invalid character '%c'",
-						     c);
-				}
-			break;
-
-		case number:
-			if (c != EOF && identifier_char(c)) {
-				if (!isdigit(c))
-					current_file->state =
-						(c == '.') ? ipv4 : identifier;
-				add_to_identifier(id, c);
-			} else {
-				put_back_char(c);
-				current_file->state = scan;
-				finish_identifier(id);
-				yylval.num = strtol(id->buffer, (char**)0, 0);
-				token = L_NUMBER;
-			}
-			break;
-
-		case identifier:
-			if (c != EOF && identifier_char(c)) {
-				add_to_identifier(id, c);
-			} else {
-				put_back_char(c);
-				current_file->state = scan;
-				finish_identifier(id);
-				/* is it a keyword? */
-				if (lookup_symbol(keyword_table, id->buffer,
-						  0, &value)) {
-					yylval.cp = id->buffer;
-					token = value.integer;
-				} else {
-					yylval.cp = dup_identifier(id);
-					token = L_STRING;
-				}
-			}
-			break;
-
-		case ipv4:
-			if (c != EOF && identifier_char(c)) {
-				if (!isdigit(c)) {
-					if (c != '.' ||
-					    (id->flags & LEX_CONSECUTIVE_DOTS))
-						current_file->state =
-							identifier;
-				}
-				add_to_identifier(id, c);
-			} else {
-				put_back_char(c);
-				if (id->num_dots > 3 ||
-				    (id->flags & LEX_LAST_WAS_DOT))
-					current_file->state = identifier;
-				else {
-					if (id->num_dots == 1) {
-						add_to_identifier(id, '.');
-						add_to_identifier(id, '0');
-						add_to_identifier(id, '.');
-						add_to_identifier(id, '0');
-					} else if (id->num_dots == 2) {
-						add_to_identifier(id, '.');
-						add_to_identifier(id, '0');
-					}
-					current_file->state = scan;
-					finish_identifier(id);
-					token = L_IPADDR;
-					if (inet_aton(id->buffer,
-						      &(yylval.ip_addr))==0) {
-						yylval.cp = dup_identifier(id);
-						token = L_STRING;
-					}
-				}
-			}
-			break;
-
-		case quoted_string:
-			if (c == EOF) {
-				parser_error(0, "EOF in quoted string");
-				return 0;
-			} else {
-				if (c == '"') {
-					comment_ok = 1;
-					current_file->state = scan;
-					finish_identifier(id);
-					yylval.cp = dup_identifier(id);
-					token = L_QSTRING;
-				} else {
-					/* XXX add backslash escapes here */
-					add_to_identifier(id, c);
-				}
-			}
-			break;
-			
-		default:
-			panic("unhandled state in yylex", NULL);
-		}
-	}
-
-	last_token = token;
-	last_yylval = yylval;
-	return (token);
-}
-
-/*
- * Initialization
- */
-
-symbol_table constants;
-
-static void
-import_constants(const struct ns_sym *s, int type) {
-	symbol_value value;
-	for ((void)NULL; s != NULL && s->name != NULL; s++) {
-		value.integer = s->number;
-		define_symbol(constants, s->name, type, value, 0);
-	}
-}	
-
-static void
-import_res_constants(const struct res_sym *r, int type) {
-	symbol_value value;
-	for ((void)NULL; r != NULL && r->name != NULL; r++) {
-		value.integer = r->number;
-		define_symbol(constants, r->name, type, value, 0);
-	}
-}	
-
-#define CONSTANTS_TABLE_SIZE 397	/* should be prime */
-
-static void
-import_all_constants() {
-	constants = new_symbol_table(CONSTANTS_TABLE_SIZE, NULL);
-	import_res_constants(__p_class_syms, SYM_CLASS);
-	import_constants(category_constants, SYM_CATEGORY);
-	import_constants(logging_constants, SYM_LOGGING);
-	import_constants(syslog_constants, SYM_SYSLOG);
-}
-
-void
-lexer_initialize() {
-	memset(special_chars, 0, sizeof special_chars);
-	special_chars[';'] = 1;
-	special_chars['{'] = 1;
-	special_chars['}'] = 1;
-	special_chars['!'] = 1;
-	special_chars['/'] = 1;
-	special_chars['"'] = 1;
-	special_chars['*'] = 1;
-	id = (LexerIdentifier)memget(sizeof (struct lexer_identifier));
-	if (id == NULL)
-		panic("memget failed in lexer_initialize", NULL);
-	init_keywords();
-	import_all_constants();
-	lexer_initialized = 1;
-}
-
-void
-lexer_setup(void) {
-	REQUIRE(lexer_initialized);
-
-	current_file = NULL;    /* XXX should we INSIST(current_file==NULL)? */
-	INSIST(id != NULL);
-}
-
-void
-lexer_shutdown(void) {
-	REQUIRE(lexer_initialized);
-
-	free_symbol_table(keyword_table);
-	free_symbol_table(constants);
-	memput(id, sizeof (struct lexer_identifier));
-	id = NULL;
-	lexer_initialized = 0;
-}
diff --git a/contrib/bind/bin/named/ns_lexer.h b/contrib/bind/bin/named/ns_lexer.h
deleted file mode 100644
index 7a22b8e3ff73b..0000000000000
--- a/contrib/bind/bin/named/ns_lexer.h
+++ /dev/null
@@ -1,45 +0,0 @@
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef _NS_LEXER_H
-#define _NS_LEXER_H
-
-/*
- * Note: <stdio.h> and "ns_parseutil.h" must be included
- * before this file is included.
- */
-
-#define LEX_MAX_IDENT_SIZE 1024
-
-#define SYM_CLASS	0x01
-#define SYM_CATEGORY	0x02
-#define SYM_LOGGING	0x04
-#define SYM_SYSLOG	0x08
-
-int	parser_warning(int, const char *, ...);
-int	parser_error(int, const char *, ...);
-void	yyerror(const char *);
-void	lexer_begin_file(const char *, FILE *);
-void	lexer_end_file(void);
-int	yylex(void);
-void	lexer_initialize(void);
-void	lexer_setup(void);
-void	lexer_shutdown(void);
-
-extern symbol_table constants;
-
-#endif /* !_NS_LEXER_H */
diff --git a/contrib/bind/bin/named/ns_main.c b/contrib/bind/bin/named/ns_main.c
deleted file mode 100644
index 199190fef32cb..0000000000000
--- a/contrib/bind/bin/named/ns_main.c
+++ /dev/null
@@ -1,2759 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_main.c	4.55 (Berkeley) 7/1/91";
-static const char rcsid[] = "$Id: ns_main.c,v 8.125 2000/04/21 06:54:08 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1989, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(lint) && !defined(SABER)
-char copyright[] =
-"@(#) Copyright (c) 1986, 1989, 1990 The Regents of the University of California.\n"
-"portions Copyright (c) 1993 Digital Equipment Corporation\n"
-"portions Copyright (c) 1995-1999 Internet Software Consortium\n"
-"portions Copyright (c) 1999 Check Point Software Technologies\n"
-"All rights reserved.\n";
-#endif /* not lint */
-
-/*
- * Internet Name server (see RCF1035 & others).
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/wait.h>
-#include <sys/ioctl.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-#ifdef SVR4	/* XXX */
-# include <sys/sockio.h>
-#else
-# include <sys/mbuf.h>
-#endif
-
-#include <netinet/in.h>
-#include <net/route.h>
-#include <net/if.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <grp.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <signal.h>
-#include <netdb.h>
-#include <pwd.h>
-#include <resolv.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-#include <isc/list.h>
-
-#include "port_after.h"
-
-#ifdef HAVE_GETRUSAGE		/* XXX */
-#include <sys/resource.h>
-#endif
-
-#define MAIN_PROGRAM
-#include "named.h"
-#undef MAIN_PROGRAM
-
-				/* list of interfaces */
-static	LIST(struct _interface)	iflist;
-static	int 			iflist_initialized = 0;
-static	int			iflist_dont_rescan = 0;
-
-static	const int		drbufsize = 32 * 1024,	/* UDP rcv buf size */
-				dsbufsize = 48 * 1024,	/* UDP snd buf size */
-				sbufsize = 16 * 1024,	/* TCP snd buf size */ 
-#ifdef BROKEN_RECVFROM
-				nudptrans = 1,
-#else
-				nudptrans = 20,		/* #/udps per select */
-#endif
-				listenmax = 50;
-
-static	u_int16_t		nsid_state;
-static	u_int16_t               *nsid_pool;  /* optional query id pool */
-static	u_int16_t               *nsid_vtable;  /* optional shuffle table */
-static	u_int32_t               nsid_hash_state;
-static	u_int16_t               nsid_a1, nsid_a2, nsid_a3;
-static	u_int16_t               nsid_c1, nsid_c2, nsid_c3;
-static	u_int16_t               nsid_state2;
-static	int                     nsid_algorithm;
-
-typedef void (*handler)(void);
-static	int			needs = 0;
-static	handler			handlers[main_need_num];
-
-static	struct qstream		*sq_add(void);
-static	int			opensocket_d(interface *),
-				opensocket_s(interface *);
-static	void			sq_query(struct qstream *),
-				dq_remove(interface *);
-static	int			sq_dowrite(struct qstream *);
-static	void			use_desired_debug(void);
-static	void			stream_write(evContext, void *, int, int);
-
-static	interface *		if_find(struct in_addr, u_int16_t port);
-
-static	int			sq_here(struct qstream *);
-
-static void			deallocate_everything(void),
-				stream_accept(evContext, void *, int,
-					      const void *, int,
-					      const void *, int),
-				stream_getlen(evContext, void *, int, int),
-				stream_getmsg(evContext, void *, int, int),
-				datagram_read(evContext, void *, int, int),
-				dispatch_message(u_char *, int, int,
-						 struct qstream *,
-						 struct sockaddr_in, int,
-						 interface *);
-static void			stream_send(evContext, void *, int,
-					       const void *, int,
-					       const void *, int);
-static int			only_digits(const char *);
-
-static void			init_needs(void),
-				handle_need(void);
-
-#ifndef HAVE_CUSTOM
-static void			custom_init(void),
-				custom_shutdown(void);
-#endif
-
-static void
-usage() {
-	fprintf(stderr,
-"Usage: named [-d #] [-q] [-r] [-v] [-f] [-p port] [[-b|-c] configfile]\n");
-#ifdef CAN_CHANGE_ID
-	fprintf(stderr,
-"             [-u (username|uid)] [-g (groupname|gid)]\n");
-#endif
-#ifdef HAVE_CHROOT
-	fprintf(stderr,
-"             [-t directory]\n");
-#endif
-	exit(1);
-}
-
-static char bad_p_option[] =
-"-p remote/local obsolete; use 'listen-on' in config file to specify local";
-
-static char bad_directory[] = "chdir failed for directory '%s': %s";
-
-/*ARGSUSED*/
-int
-main(int argc, char *argv[], char *envp[]) {
-	int n;
-	char *p;
-	int ch;
-	struct passwd *pw;
-	struct group *gr;
-
-#ifdef _AUX_SOURCE
-	set42sig();
-#endif
-	debugfile = savestr(_PATH_DEBUG, 1);
-
-	user_id = getuid();
-	group_id = getgid();
-
-	ns_port = htons(NAMESERVER_PORT);
-	desired_debug = debug;
-
-	/* BSD has a better random number generator but it's not clear
-	 * that we need it here.
-	 */
-	gettime(&tt);
-	srand(((unsigned)getpid()) + (unsigned)tt.tv_usec);
-
-	(void) umask(022);
-
-	/* Save argv[] before getopt() destroys it -- needed for execvp(). */
-	saved_argv = malloc(sizeof(char *) * (argc + 1));
-	INSIST(saved_argv != NULL);
-	for (n = 0; n < argc; n++) {
-		saved_argv[n] = strdup(argv[n]);
-		INSIST(saved_argv[n] != NULL);
-	}
-	saved_argv[argc] = NULL;
-	/* XXX we need to free() this for clean shutdowns. */
-
-	while ((ch = getopt(argc, argv, "b:c:d:g:p:t:u:vw:qrf")) != -1) {
-		switch (ch) {
-		case 'b':
-		case 'c':
-			if (conffile != NULL)
-				freestr(conffile);
-			conffile = savestr(optarg, 1);
-			break;
-
-		case 'd':
-			desired_debug = atoi(optarg);
-			if (desired_debug <= 0)
-				desired_debug = 1;
-			break;
-
-		case 'p':
-			/* use nonstandard port number.
-			 * usage: -p remote/local
-			 * remote is the port number to which
-			 * we send queries.  local is the port
-			 * on which we listen for queries.
-			 * local defaults to same as remote.
-			 */
-			ns_port = htons((u_int16_t) atoi(optarg));
-			p = strchr(optarg, '/');
-			if (p) {
-				syslog(LOG_WARNING, bad_p_option);
-				fprintf(stderr, bad_p_option);
-				fputc('\n', stderr);
-			}
-			break;
-
-		case 'w':
-			if (chdir(optarg) < 0) {
-				syslog(LOG_CRIT, bad_directory, optarg,
-				       strerror(errno));
-				fprintf(stderr, bad_directory, optarg,
-					strerror(errno));
-				fputc('\n', stderr);
-				exit(1);
-			}
-			break;
-#ifdef QRYLOG
-		case 'q':
-			qrylog = 1;
-			break;
-#endif
-
-		case 'r':
-			ns_setoption(OPTION_NORECURSE);
-			break;
-
-		case 'f':
-			foreground = 1;
-			break;
-
-		case 't':
-			chroot_dir = savestr(optarg, 1);
-			break;
-
-		case 'v':
-			fprintf(stdout, "%s\n", Version);
-			exit(0);
-
-#ifdef CAN_CHANGE_ID
-		case 'u':
-			user_name = savestr(optarg, 1);
-			if (only_digits(user_name))
-				user_id = atoi(user_name);
-			else {
-				pw = getpwnam(user_name);
-				if (pw == NULL) {
-					fprintf(stderr,
-						"user \"%s\" unknown\n",
-						user_name);
-					exit(1);
-				}
-				user_id = pw->pw_uid;
-				if (group_name == NULL) {
-					char name[256];
-					
-					sprintf(name, "%lu",
-						(u_long)pw->pw_gid);
-					group_name = savestr(name, 1);
-					group_id = pw->pw_gid;
-				}
-			}
-			break;
-
-		case 'g':
-			if (group_name != NULL)
-				freestr(group_name);
-			group_name = savestr(optarg, 1);
-			if (only_digits(group_name))
-				group_id = atoi(group_name);
-			else {
-				gr = getgrnam(group_name);
-				if (gr == NULL) {
-					fprintf(stderr,
-						"group \"%s\" unknown\n",
-						group_name);
-					exit(1);
-				}
-				group_id = gr->gr_gid;
-			}
-			break;
-#endif /* CAN_CHANGE_ID */
-
-		case '?':
-		default:
-			usage();
-		}
-	}
-	argc -= optind;
-	argv += optind;
-
-	if (argc) {
-		if (conffile != NULL)
-			freestr(conffile);
-		conffile = savestr(*argv, 1);
-		argc--, argv++;
-	}
-	if (argc)
-		usage();
-
-	if (conffile == NULL)
-		conffile = savestr(_PATH_CONF, 1);
-
-	/*
-	 * Make sure we don't inherit any open descriptors
-	 * other than those that daemon() can deal with.
-	 */
-	for (n = sysconf(_SC_OPEN_MAX) - 1; n >= 0; n--)
-		if (n != STDIN_FILENO &&
-		    n != STDOUT_FILENO &&
-		    n != STDERR_FILENO)
-			(void) close(n);
-
-	/*
-	 * Chroot if desired.
-	 */
-	if (chroot_dir != NULL) {
-#ifdef HAVE_CHROOT
-		if (chroot(chroot_dir) < 0) {
-			fprintf(stderr, "chroot %s failed: %s\n", chroot_dir,
-				strerror(errno));
-			exit(1);
-		}
-		if (chdir("/") < 0) {
-			fprintf(stderr, "chdir(\"/\") failed: %s\n",
-				strerror(errno));
-			exit(1);
-		}
-#else
-		fprintf(stderr, "warning: chroot() not available\n");
-		freestr(chroot_dir);
-		chroot_dir = NULL;
-#endif
-	}
-
-	/* Establish global event context. */
-	evCreate(&ev);
-
-	/* Establish global resolver context. */
-	res_ninit(&res);
-	res.options &= ~(RES_DEFNAMES | RES_DNSRCH | RES_RECURSE);
-
-	/*
-	 * Set up logging.
-	 */
-	n = LOG_PID;
-#ifdef LOG_NOWAIT
-	n |= LOG_NOWAIT;
-#endif
-#ifdef LOG_NDELAY
-	n |= LOG_NDELAY;
-#endif
-#if defined(LOG_CONS) && defined(USE_LOG_CONS)
-	n |= LOG_CONS;
-#endif
-#ifdef SYSLOG_42BSD
-	openlog("named", n);
-#else
-	openlog("named", n, LOG_DAEMON);
-#endif
-
-	init_logging();
-	set_assertion_failure_callback(ns_assertion_failed);
-
-#ifdef DEBUG
-	use_desired_debug();
-#endif
-
-	/* Perform system-dependent initialization */
-	custom_init();
-
-	init_needs();
-	init_signals();
-
-	ns_notice(ns_log_default, "starting.  %s", Version);
-
-	/*
-	 * Initialize and load database.
-	 */
-	gettime(&tt);
-	buildservicelist();
-	buildprotolist();
-	ns_init(conffile);
-	time(&boottime);
-	resettime = boottime;
-
-	nsid_init();
-
-	/*
-	 * Fork and go into background now that
-	 * we've done any slow initialization
-	 * and are ready to answer queries.
-	 */
-
-	if (foreground == 0) {
-		if (daemon(1, 0))
-			ns_panic(ns_log_default, 1, "daemon: %s",
-				 strerror(errno));
-		update_pid_file();
-	}
-
-	/* Check that udp checksums are on. */
-	ns_udp();
-
-	/*
-	 * We waited until now to log this because we wanted logging to
-	 * be set up the way the user prefers.
-	 */
-	if (chroot_dir != NULL)
-		ns_info(ns_log_security, "chrooted to %s", chroot_dir);
-
-#ifdef CAN_CHANGE_ID
-	/*
-	 * Set user and group if desired.
-	 */
-	if (group_name != NULL) {
-		if (setgid(group_id) < 0)
-			ns_panic(ns_log_security, 1, "setgid(%s): %s",
-				 group_name, strerror(errno));
-		ns_info(ns_log_security, "group = %s", group_name);
-	}
-	if (user_name != NULL) {
-		if (getuid() == 0 && initgroups(user_name, group_id) < 0)
-			ns_panic(ns_log_security, 1, "initgroups(%s, %d): %s",
-				 user_name, (int)group_id, strerror(errno));
-		endgrent();
-		endpwent();
-		if (setuid(user_id) < 0)
-			ns_panic(ns_log_security, 1, "setuid(%s): %s",
-				 user_name, strerror(errno));
-		ns_info(ns_log_security, "user = %s", user_name);
-		if (user_id != 0)
-			iflist_dont_rescan++;
-	}
-#endif /* CAN_CHANGE_ID */
-
-	ns_notice(ns_log_default, "Ready to answer queries.");
-	gettime(&tt);
-	prime_cache();
-	while (!main_needs_exit) {
-		evEvent event;
-
-		ns_debug(ns_log_default, 15, "main loop");
-		if (needs != 0) {
-			/* Drain outstanding events; handlers ~block~. */
-			while (evGetNext(ev, &event, EV_POLL) != -1)
-				INSIST_ERR(evDispatch(ev, event) != -1);
-			INSIST_ERR(errno == EINTR || errno == EWOULDBLOCK);
-			handle_need();
-		} else if (evGetNext(ev, &event, EV_WAIT) != -1) {
-			INSIST_ERR(evDispatch(ev, event) != -1);
-		} else {
-			INSIST_ERR(errno == EINTR);
-		}
-	}
-	ns_info(ns_log_default, "named shutting down");
-#ifdef BIND_UPDATE
-	dynamic_about_to_exit();
-#endif
-	if (server_options && server_options->pid_filename)
-		(void)unlink(server_options->pid_filename);
-	ns_logstats(ev, NULL, evNowTime(), evConsTime(0, 0));
-
-	if (NS_OPTION_P(OPTION_DEALLOC_ON_EXIT))
-		deallocate_everything();
-	else
-		shutdown_configuration();
-
-	/* Cleanup for system-dependent stuff */
-	custom_shutdown();
-	
-	return (0);
-}
-
-#ifndef IP_OPT_BUF_SIZE
-/* arbitrary size */
-#define IP_OPT_BUF_SIZE 50
-#endif
-
-static void
-stream_accept(evContext lev, void *uap, int rfd,
-	      const void *lav, int lalen,
-	      const void *rav, int ralen)
-{
-	interface *ifp = uap;
-	struct qstream *sp;
-	struct iovec iov;
-	int len, n;
-	const int on = 1;
-#ifdef IP_OPTIONS	/* XXX */
-	u_char ip_opts[IP_OPT_BUF_SIZE];
-#endif
-	const struct sockaddr_in *la, *ra;
-
-	la = (const struct sockaddr_in *)lav;
-	ra = (const struct sockaddr_in *)rav;
-
-	INSIST(ifp != NULL);
-
-	if (rfd < 0) {
-		switch (errno) {
-		case EINTR:
-		case EAGAIN:
-#if (EWOULDBLOCK != EAGAIN)
-		case EWOULDBLOCK:
-#endif
-		case ECONNABORTED:
-#ifdef EPROTO
-		case EPROTO:
-#endif
-		case EHOSTUNREACH:
-		case EHOSTDOWN:
-		case ENETUNREACH:
-		case ENETDOWN:
-		case ECONNREFUSED:
-#ifdef ENONET
-		case ENONET:
-#endif
-			/*
-			 * These errors are expected and harmless, so
-			 * we ignore them.
-			 */
-			return;
-		case EBADF:
-		case ENOTSOCK:
-		case EFAULT:
-			/*
-			 * If one these happens, we're broken.
-			 */
-			ns_panic(ns_log_default, 1, "accept: %s",
-				 strerror(errno));
-		case EMFILE:
-			/*
-			 * If we're out of file descriptors, find the least
-			 * busy fd and close it.  Then we'll return to the
-			 * eventlib which will call us right back.
-			 */
-			if (streamq) {
-				struct qstream *nextsp;
-				struct qstream *candidate = NULL;
-				time_t lasttime, maxctime = 0;
-				
-				for (sp = streamq; sp; sp = nextsp) {
-					nextsp = sp->s_next;
-					if (sp->s_refcnt)
-						continue;
-					gettime(&tt);
-					lasttime = tt.tv_sec - sp->s_time;
-					if (lasttime >= VQEXPIRY)
-						sq_remove(sp);
-					else if (lasttime > maxctime) {
-						candidate = sp;
-						maxctime = lasttime;
-					}
-				}
-				if (candidate)
-					sq_remove(candidate);
-				return;
-			}
-			/* fall through */
-		default:
-			/*
-			 * Either we got an error we didn't expect, or we
-			 * got EMFILE and didn't have anything left to close.
-			 * Log it and press on.
-			 */
-			ns_info(ns_log_default, "accept: %s", strerror(errno));
-			return;
-		}
-	}
-
-	/* Condition the socket. */
-
-#ifndef CANNOT_SET_SNDBUF
-	if (setsockopt(rfd, SOL_SOCKET, SO_SNDBUF,
-		      (char*)&sbufsize, sizeof sbufsize) < 0) {
-		ns_info(ns_log_default, "setsockopt(rfd, SO_SNDBUF, %d): %s",
-			sbufsize, strerror(errno));
-		(void) close(rfd);
-		return;
-	}
-#endif
-	if (setsockopt(rfd, SOL_SOCKET, SO_KEEPALIVE,
-		       (char *)&on, sizeof on) < 0) {
-		ns_info(ns_log_default, "setsockopt(rfd, KEEPALIVE): %s",
-			strerror(errno));
-		(void) close(rfd);
-		return;
-	}
-
-	if ((n = fcntl(rfd, F_GETFL, 0)) == -1) {
-		ns_info(ns_log_default, "fcntl(rfd, F_GETFL): %s",
-			strerror(errno));
-		(void) close(rfd);
-		return;
-	}
-	if (fcntl(rfd, F_SETFL, n|PORT_NONBLOCK) == -1) {
-		ns_info(ns_log_default, "fcntl(rfd, NONBLOCK): %s",
-			strerror(errno));
-		(void) close(rfd);
-		return;
-	}
-
-	/*
-	 * We don't like IP options.  Turn them off if the connection came in
-	 * with any.  log this event since it usually indicates a security
-	 * problem.
-	 */
-#if defined(IP_OPTIONS)		/* XXX */
-	len = sizeof ip_opts;
-	if (getsockopt(rfd, IPPROTO_IP, IP_OPTIONS,
-		       (char *)ip_opts, &len) < 0) {
-		ns_info(ns_log_default, "getsockopt(rfd, IP_OPTIONS): %s",
-			strerror(errno));
-		(void) close(rfd);
-		return;
-	}
-	if (len != 0) {
-		nameserIncr(ra->sin_addr, nssRcvdOpts);
-		if (!haveComplained(ina_ulong(ra->sin_addr),
-				    (u_long)"rcvd ip options")) {
-			ns_info(ns_log_default,
-				"rcvd IP_OPTIONS from %s (ignored)",
-				sin_ntoa(*ra));
-		}
-		if (setsockopt(rfd, IPPROTO_IP, IP_OPTIONS, NULL, 0) < 0) {
-			ns_info(ns_log_default, "setsockopt(!IP_OPTIONS): %s",
-				strerror(errno));
-			(void) close(rfd);
-		}
-	}
-#endif
-
-	/* Create and populate a qsp for this socket. */
-	if ((sp = sq_add()) == NULL) {
-		(void) close(rfd);
-		return;
-	}
-	sp->s_rfd = rfd;	/* stream file descriptor */
-	gettime(&tt);
-	sp->s_time = tt.tv_sec;	/* last transaction time */
-	sp->s_from = *ra;	/* address to respond to */
-	sp->s_ifp = ifp;
-	INSIST(sizeof sp->s_temp >= INT16SZ);
-	iov = evConsIovec(sp->s_temp, INT16SZ);
-	INSIST_ERR(evRead(lev, rfd, &iov, 1, stream_getlen, sp, &sp->evID_r)
-		   != -1);
-	sp->flags |= STREAM_READ_EV;
-#ifdef DEBUG
-	if (debug)
-		ns_info(ns_log_default, "IP/TCP connection from %s (fd %d)",
-			sin_ntoa(sp->s_from), rfd);
-#endif
-}
-
-int
-tcp_send(struct qinfo *qp) {
-	struct qstream *sp;
-	int on = 1;
-	
-	ns_debug(ns_log_default, 1, "tcp_send");
-	if ((sp = sq_add()) == NULL) {
-		return (SERVFAIL);
-	}
-	if ((sp->s_rfd = socket(AF_INET, SOCK_STREAM, PF_UNSPEC)) == -1) {
-		sq_remove(sp);
-		return (SERVFAIL);
-	}
-	if (sp->s_rfd > evHighestFD(ev)) {
-		sq_remove(sp);
-		return (SERVFAIL);
-	}
-	if (fcntl(sp->s_rfd, F_SETFD, 1) < 0) {
-		sq_remove(sp);
-		return (SERVFAIL);
-	}
-	if (sq_openw(sp, qp->q_msglen + INT16SZ) == -1) {
-		sq_remove(sp);
-		return (SERVFAIL);
-	}
-	if (sq_write(sp, qp->q_msg, qp->q_msglen) == -1) {
-		sq_remove(sp);
-		return (SERVFAIL);
-	}
-
-	if (setsockopt(sp->s_rfd, SOL_SOCKET, SO_KEEPALIVE,
-		(char*)&on, sizeof(on)) < 0)
-			ns_info(ns_log_default,
-				"tcp_send: setsockopt(rfd, SO_KEEPALIVE): %s",
-				strerror(errno));
-	gettime(&tt);
-	sp->s_size = -1;
-	sp->s_time = tt.tv_sec;	/* last transaction time */
-	sp->s_refcnt = 1;
-	sp->flags |= STREAM_DONE_CLOSE;
-	sp->s_from = qp->q_addr[qp->q_curaddr].ns_addr;
-	if (evConnect(ev, sp->s_rfd, &sp->s_from, sizeof(sp->s_from),
-		      stream_send, sp, &sp->evID_c) == -1) {
-		sq_remove(sp);
-		return (SERVFAIL);
-	}
-	sp->flags |= STREAM_CONNECT_EV;
-	return (NOERROR);
-}
-
-static void
-stream_send(evContext lev, void *uap, int fd, const void *la, int lalen,
-	    const void *ra, int ralen) {
-	struct qstream *sp = uap;
-
-	ns_debug(ns_log_default, 1, "stream_send");
-
-	sp->flags &= ~STREAM_CONNECT_EV;
-
-	if (fd == -1) {
-		/* connect failed */
-		sq_remove(sp);
-		return;
-	}
-	if (evSelectFD(ev, sp->s_rfd, EV_WRITE,
-		       stream_write, sp, &sp->evID_w) < 0) {
-		sq_remove(sp);
-		return;
-	}
-	sp->flags |= STREAM_WRITE_EV;
-}
-
-static void
-stream_write(evContext ctx, void *uap, int fd, int evmask) {
-	struct qstream *sp = uap;
-	struct iovec iov;
-
-	ns_debug(ns_log_default, 1, "stream_write");
-	INSIST(evmask & EV_WRITE);
-	INSIST(fd == sp->s_rfd);
-	if (sq_dowrite(sp) < 0) {
-		sq_remove(sp);
-		return;
-	}
-	if (sp->s_wbuf_free != sp->s_wbuf_send)
-		return;
-
-	if (sp->s_wbuf) {
-		memput(sp->s_wbuf, sp->s_wbuf_end - sp->s_wbuf);
-		sp->s_wbuf_send = sp->s_wbuf_free = NULL;
-		sp->s_wbuf_end = sp->s_wbuf = NULL;
-	}
-	(void) evDeselectFD(ev, sp->evID_w);
-	sp->flags &= ~STREAM_WRITE_EV;
-	sp->s_refcnt = 0;
-	iov = evConsIovec(sp->s_temp, INT16SZ);
-	INSIST_ERR(evRead(ctx, fd, &iov, 1, stream_getlen, sp, &sp->evID_r) !=
-		   -1);
-	sp->flags |= STREAM_READ_EV;
-}
-
-static void
-stream_getlen(evContext lev, void *uap, int fd, int bytes) {
-	struct qstream *sp = uap;
-	struct iovec iov;
-
-	sp->flags &= ~STREAM_READ_EV;
-	if (bytes != INT16SZ) {
-		/*
-		 * bytes == 0 is normal EOF; see if something unusual 
-		 * happened.
-		 */
-		if (bytes < 0) {
-			/*
-			 * ECONNRESET happens frequently and is not worth
-			 * logging.
-			 */
-			if (errno != ECONNRESET)
-				ns_info(ns_log_default,
-					"stream_getlen(%s): %s",
-					sin_ntoa(sp->s_from), strerror(errno));
-		} else if (bytes != 0)
-			ns_error(ns_log_default,
-				 "stream_getlen(%s): unexpected byte count %d",
-				sin_ntoa(sp->s_from), bytes);
-		sq_remove(sp);
-		return;
-	}
-
-	/*
-	 * Unpack the size, allocate memory for the query.  This is
-	 * tricky since in a low memory situation with possibly very
-	 * large (64KB) queries, we want to make sure we can read at
-	 * least the header since we need it to send back a SERVFAIL
-	 * (owing to the out-of-memory condition).
-	 */
-	sp->s_size = ns_get16(sp->s_temp);
-	ns_debug(ns_log_default, 5, "stream message: %d bytes", sp->s_size);
-	if (sp->s_size < HFIXEDSZ) {
-		ns_error(ns_log_default,
-			 "stream_getlen(%s): request too small",
-			 sin_ntoa(sp->s_from));
-		sq_remove(sp);
-		return;
-	}
-
-	if (!(sp->flags & STREAM_MALLOC)) {
-		sp->s_bufsize = 64*1024-1; /* maximum tcp message size */
-		sp->s_buf = (u_char *)memget(sp->s_bufsize);
-		if (sp->s_buf != NULL)
-			sp->flags |= STREAM_MALLOC;
-		else {
-			sp->s_buf = sp->s_temp;
-			sp->s_bufsize = HFIXEDSZ;
-		}
-	}
-
-	iov = evConsIovec(sp->s_buf, (sp->s_size <= sp->s_bufsize) ?
-				     sp->s_size : sp->s_bufsize);
-	if (evRead(lev, sp->s_rfd, &iov, 1, stream_getmsg, sp, &sp->evID_r)
-	    == -1)
-		ns_panic(ns_log_default, 1, "evRead(fd %d): %s",
-			 (void *)sp->s_rfd, strerror(errno));
-	sp->flags |= STREAM_READ_EV;
-}
-
-static void
-stream_getmsg(evContext lev, void *uap, int fd, int bytes) {
-	struct qstream *sp = uap;
-
-	sp->flags &= ~STREAM_READ_EV;
-	if (bytes == -1) {
-		ns_info(ns_log_default, "stream_getmsg(%s): %s",
-			sin_ntoa(sp->s_from), strerror(errno));
-		sq_remove(sp);
-		return;
-	}
-
-	gettime(&tt);
-	sp->s_time = tt.tv_sec;
-
-	if (ns_wouldlog(ns_log_default,5)) {
-		ns_debug(ns_log_default, 5, "sp %#x rfd %d size %d time %d next %#x",
-			sp, sp->s_rfd, sp->s_size, sp->s_time, sp->s_next);
-		ns_debug(ns_log_default, 5, "\tbufsize %d bytes %d", sp->s_bufsize,
-			 bytes);
-	}
-
-	/*
-	 * Do we have enough memory for the query?  If not, and if we have a
-	 * query id, then we will send a SERVFAIL error back to the client.
-	 */
-	if (bytes != sp->s_size) {
-		HEADER *hp = (HEADER *)sp->s_buf;
-
-		hp->qr = 1;
-		hp->ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-		hp->ancount = htons(0);
-		hp->qdcount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = SERVFAIL;
-		writestream(sp, sp->s_buf, HFIXEDSZ);
-		sp->flags |= STREAM_DONE_CLOSE;
-		return;
-	}
-
-	nameserIncr(sp->s_from.sin_addr, nssRcvdTCP);
-	sq_query(sp);
-	dispatch_message(sp->s_buf, bytes, sp->s_bufsize, sp, sp->s_from, -1,
-			 sp->s_ifp);
-}
-
-static void
-datagram_read(evContext lev, void *uap, int fd, int evmask) {
-	interface *ifp = uap;
-	struct sockaddr_in from;
-	int from_len = sizeof from;
-	int n, nudp;
-	union {
-		HEADER h;			/* Force alignment of 'buf'. */
-		u_char buf[PACKETSZ+1];
-	} u;
-
-	tt = evTimeVal(evNowTime());
-	nudp = 0;
-
- more:
-	n = recvfrom(fd, (char *)u.buf, sizeof u.buf, 0,
-		     (struct sockaddr *)&from, &from_len);
-
-	if (n < 0) {
-		switch (errno) {
-		case EINTR:
-		case EAGAIN:
-#if (EWOULDBLOCK != EAGAIN)
-		case EWOULDBLOCK:
-#endif
-		case EHOSTUNREACH:
-		case EHOSTDOWN:
-		case ENETUNREACH:
-		case ENETDOWN:
-		case ECONNREFUSED:
-#ifdef ENONET
-		case ENONET:
-#endif
-			/*
-			 * These errors are expected and harmless, so we
-			 * ignore them.
-			 */
-			return;
-		default:
-			/*
-			 * An error we don't expect.  Log it and press
-			 * on.
-			 */
-			ns_info(ns_log_default, "recvfrom: %s",
-				strerror(errno));
-			return;
-		}
-	}
-
-	/* Handle bogosity on systems that need it. */
-	if (n == 0)
-		return;
-
-	if (ns_wouldlog(ns_log_default, 1)) {
-		ns_debug(ns_log_default, 1, "datagram from %s, fd %d, len %d",
-			 sin_ntoa(from), fd, n);
-	}
-
-	if (n > PACKETSZ) {
-		/*
-		 * The message is too big.  It's probably a response to
-		 * one of our questions, so we truncate it and press on.
-		 */
-		n = trunc_adjust(u.buf, PACKETSZ, PACKETSZ);
-		ns_debug(ns_log_default, 1, "truncated oversize UDP packet");
-	}
-
-	dispatch_message(u.buf, n, PACKETSZ, NULL, from, fd, ifp);
-	if (++nudp < nudptrans)
-		goto more;
-}
-
-static void
-dispatch_message(u_char *msg, int msglen, int buflen, struct qstream *qsp,
-		 struct sockaddr_in from, int dfd, interface *ifp)
-{
-	HEADER *hp = (HEADER *)msg;
-
-	if (msglen < HFIXEDSZ) {
-		ns_debug(ns_log_default, 1, "dropping undersize message");
-		if (qsp) {
-			qsp->flags |= STREAM_DONE_CLOSE;
-			sq_done(qsp);
-		}
-		return;
-	}
-
-	if (server_options->blackhole_acl != NULL && 
-	    ip_match_address(server_options->blackhole_acl,
-			     from.sin_addr) == 1) {
-		ns_debug(ns_log_default, 1,
-			 "dropping blackholed %s from %s",
-			 hp->qr ? "response" : "query",
-			 sin_ntoa(from));
-		if (qsp) {
-			qsp->flags |= STREAM_DONE_CLOSE;
-			sq_done(qsp);
-		}
-		return;
-	}
-
-	/* Drop UDP packets from port zero.  They are invariable forged. */
-	if (qsp == NULL && ntohs(from.sin_port) == 0) {
-		ns_notice(ns_log_security,
-			  "dropping source port zero packet from %s",
-			  sin_ntoa(from));
-		return;
-	}
-
-	if (hp->qr) {
-		ns_resp(msg, msglen, from, qsp);
-		if (qsp)
-			sq_done(qsp);
-		/* Now is a safe time for housekeeping. */
-		if (needs_prime_cache)
-			prime_cache();
-	} else if (ifp != NULL)
-		ns_req(msg, msglen, buflen, qsp, from, dfd);
-	else {
-		ns_notice(ns_log_security,
-			  "refused query on non-query socket from %s",
-			  sin_ntoa(from));
-		if (qsp) {
-			qsp->flags |= STREAM_DONE_CLOSE;
-			sq_done(qsp);
-		}
-		/* XXX Send refusal here. */
-	}
-}
-
-void
-getnetconf(int periodic_scan) {
-	struct ifconf ifc;
-	struct ifreq ifreq;
-	struct in_addr ina;
-	interface *ifp;
-	char *buf, *cp, *cplim;
-	static int bufsiz = 4095;
-	time_t my_generation = time(NULL);
-	int s, cpsize, n;
-	int found;
-	listen_info li;
-	ip_match_element ime;
-	u_char *mask_ptr;
-	struct in_addr mask;
-
-	if (iflist_initialized) {
-		if (iflist_dont_rescan)
-			return;
-	} else {
-		INIT_LIST(iflist);
-		iflist_initialized = 1;
-	}
-
-	ns_debug(ns_log_default, 1, "getnetconf(generation %lu)",
-		 (u_long)my_generation);
-
-	/* Get interface list from system. */
-	if ((s = socket(AF_INET, SOCK_DGRAM, 0)) < 0) {
-		if (!periodic_scan)
-			ns_panic(ns_log_default, 1, "socket(SOCK_RAW): %s",
-				 strerror(errno));
-		ns_error(ns_log_default, "socket(SOCK_RAW): %s",
-			 strerror(errno));
-		return;
-	}
-
-	if (local_addresses != NULL)
-		free_ip_match_list(local_addresses);
-	local_addresses = new_ip_match_list();
-	if (local_networks != NULL)
-		free_ip_match_list(local_networks);
-	local_networks = new_ip_match_list();
-
-	for (;;) {
-		buf = memget(bufsiz);
-		if (!buf)
-			ns_panic(ns_log_default, 1,
-				"memget(interface)", NULL);
-		ifc.ifc_len = bufsiz;
-		ifc.ifc_buf = buf;
-#ifdef IRIX_EMUL_IOCTL_SIOCGIFCONF
-		/*
-		 * This is a fix for IRIX OS in which the call to ioctl with
-		 * the flag SIOCGIFCONF may not return an entry for all the
-		 * interfaces like most flavors of Unix.
-		 */
-		if (emul_ioctl(&ifc) >= 0)
-			break;
-#else
-		if ((n = ioctl(s, SIOCGIFCONF, (char *)&ifc)) != -1) {
-			/*
-			 * Some OS's just return what will fit rather
-			 * than set EINVAL if the buffer is too small
-			 * to fit all the interfaces in.  If 
-			 * ifc.ifc_len is too near to the end of the
-			 * buffer we will grow it just in case and
-			 * retry.
-			 */
-			if (ifc.ifc_len + 2 * sizeof(ifreq) < bufsiz)
-				break;
-		}
-#endif
-		if ((n == -1) && errno != EINVAL)
-			ns_panic(ns_log_default, 1,
-				"get interface configuration: %s",
-				strerror(errno));
-
-		if (bufsiz > 1000000)
-			ns_panic(ns_log_default, 1,
-				"get interface configuration: maximum buffer size exceeded");
-		memput(buf, bufsiz);
-		bufsiz += 4096;
-	}
-
-	ns_debug(ns_log_default, 2, "getnetconf: SIOCGIFCONF: ifc_len = %d",
-		 ifc.ifc_len);
-
-	/* Parse system's interface list and open some sockets. */
-	cplim = buf + ifc.ifc_len;    /* skip over if's with big ifr_addr's */
-	for (cp = buf; cp < cplim; cp += cpsize) {
-		memcpy(&ifreq, cp, sizeof ifreq);
-#ifdef HAVE_SA_LEN
-#ifdef FIX_ZERO_SA_LEN
-		if (ifreq.ifr_addr.sa_len == 0)
-			ifreq.ifr_addr.sa_len = 16;
-#endif
-#ifdef HAVE_MINIMUM_IFREQ
-		ns_debug(ns_log_default, 2, "%s sa_len = %d",
-			 ifreq.ifr_name, (int)ifreq.ifr_addr.sa_len);
-		cpsize = sizeof ifreq;
-		if (ifreq.ifr_addr.sa_len > sizeof (struct sockaddr))
-			cpsize += (int)ifreq.ifr_addr.sa_len -
-				(int)(sizeof (struct sockaddr));
-#else
-		cpsize = sizeof ifreq.ifr_name + ifreq.ifr_addr.sa_len;
-#endif /* HAVE_MINIMUM_IFREQ */
-#elif defined SIOCGIFCONF_ADDR
-		cpsize = sizeof ifreq;
-#else
-		cpsize = sizeof ifreq.ifr_name;
-		if (ioctl(s, SIOCGIFADDR, (char *)&ifreq) < 0) {
-			ns_notice(ns_log_default,
-				  "get interface addr (%s): %s",
-				  ifreq.ifr_name, strerror(errno));
-			continue;
-		}
-#endif
-		if (ifreq.ifr_addr.sa_family != AF_INET) {
-			ns_debug(ns_log_default, 2, 
-				 "getnetconf: %s AF %d != INET",
-				 ifreq.ifr_name, ifreq.ifr_addr.sa_family);
-			continue;
-		}
-		ina = ina_get((u_char *)&((struct sockaddr_in *)
-					   &ifreq.ifr_addr)->sin_addr);
-		ns_debug(ns_log_default, 1,
-			 "getnetconf: considering %s [%s]",
-			 ifreq.ifr_name, inet_ntoa(ina));
-		/*
-		 * Don't test IFF_UP, packets may still be received at this
-		 * address if any other interface is up.
-		 */
-		if (ina_hlong(ina) == INADDR_ANY) {
-			ns_debug(ns_log_default, 2,
-				 "getnetconf: INADDR_ANY, ignoring.");
-			continue;
-		}
-
-		INSIST(server_options != NULL);
-		INSIST(server_options->listen_list != NULL);
-
-		found=0;
-		for (li = server_options->listen_list->first;
-		     li != NULL;
-		     li = li->next) {
-			if (ip_match_address(li->list, ina) > 0) {
-				found++;
-				/* 
-				 * Look for an already existing source
-				 * interface address/port pair.
-				 * This happens mostly when reinitializing.
-				 * Also, if the machine has multiple point to
-				 * point interfaces, then the local address
-				 * may appear more than once.
-				 */
-				ifp = if_find(ina, li->port);
-				if (ifp != NULL) {
-					ns_debug(ns_log_default, 1,
-					  "dup interface addr [%s].%u (%s)",
-						 inet_ntoa(ina),
-						 ntohs(li->port),
-						 ifreq.ifr_name);
-					ifp->gen = my_generation;
-					continue;
-				}
-
-				ifp = (interface *)memget(sizeof *ifp);
-				if (!ifp)
-					ns_panic(ns_log_default, 1,
-						 "memget(interface)", NULL);
-				memset(ifp, 0, sizeof *ifp);
-				APPEND(iflist, ifp, link);
-				ifp->addr = ina;
-				ifp->port = li->port;
-				ifp->gen = my_generation;
-				ifp->flags = 0;
-				ifp->dfd = -1;
-				ifp->sfd = -1;
-				if (opensocket_d(ifp) < 0 ||
-				    opensocket_s(ifp) < 0) {
-					dq_remove(ifp);
-					found = 0;
-					break;
-				}
-				ns_info(ns_log_default,
-					"listening on [%s].%u (%s)",
-					inet_ntoa(ina), ntohs(li->port),
-					ifreq.ifr_name);
-			}
-		}
-		if (!found)
-			ns_debug(ns_log_default, 1,
-				 "not listening on addr [%s] (%s)",
-				 inet_ntoa(ina), ifreq.ifr_name);
-
-		/*
-		 * Add this interface's address to the list of local
-		 * addresses if we haven't added it already.
-		 */
-		if (ip_match_address(local_addresses, ina) < 0) {
-			ime = new_ip_match_pattern(ina, 32);
-			add_to_ip_match_list(local_addresses, ime);
-		}
-
-		/*
-		 * Get interface flags.
-		 */
-		if (ioctl(s, SIOCGIFFLAGS, (char *)&ifreq) < 0) {
-			ns_notice(ns_log_default, "get interface flags: %s",
-				  strerror(errno));
-			continue;
-		}
-
-		if ((ifreq.ifr_flags & IFF_POINTOPOINT)) {
-			/*
-			 * The local network for a PPP link is just the
-			 * two ends of the link, so for each endpoint we
-			 * add a pattern that will only match the endpoint.
-			 */
-			if (ioctl(s, SIOCGIFDSTADDR, (char *)&ifreq) < 0) {
-				ns_notice(ns_log_default, "get dst addr: %s",
-					  strerror(errno));
-				continue;
-			}
-
-			mask.s_addr = htonl(INADDR_BROADCAST);
-
-			/*
-			 * Our end.
-			 *
-			 * Only add it if we haven't seen it before.
-			 */
-			if (ip_match_network(local_networks, ina, mask) < 0) {
-				ime = new_ip_match_pattern(ina, 32);
-				add_to_ip_match_list(local_networks, ime);
-			}
-
-			/*
-			 * The other end.
-			 */
-			ina = ((struct sockaddr_in *)
-			       &ifreq.ifr_addr)->sin_addr;
-			/*
-			 * Only add it if we haven't seen it before.
-			 */
-			if (ip_match_network(local_networks, ina, mask) < 0) {
-				ime = new_ip_match_pattern(ina, 32);
-				add_to_ip_match_list(local_networks, ime);
-			}
-		} else {
-			/*
-			 * Add this interface's network and netmask to the
-			 * list of local networks.
-			 */
-
-#ifdef SIOCGIFNETMASK	/* XXX */
-			if (ioctl(s, SIOCGIFNETMASK, (char *)&ifreq) < 0) {
-				ns_notice(ns_log_default, "get netmask: %s",
-					  strerror(errno));
-				continue;
-			}
-			/*
-			 * Use ina_get because the ifreq structure might not
-			 * be aligned.
-			 */
-			mask_ptr = (u_char *)
-			  &((struct sockaddr_in *)&ifreq.ifr_addr)->sin_addr;
-			mask = ina_get(mask_ptr);
-#else
-			mask = net_mask(ina);
-#endif
-
-			ina.s_addr &= mask.s_addr;   /* make network address */
-
-			/*
-			 * Only add it if we haven't seen it before.
-			 */
-			if (ip_match_network(local_networks, ina, mask) < 0) {
-				ime = new_ip_match_mask(ina, mask);
-				add_to_ip_match_list(local_networks, ime);
-			}
-		}
-	}
-	close(s);
-	memput(buf, bufsiz);
-
-	ns_debug(ns_log_default, 7, "local addresses:");
-	dprint_ip_match_list(ns_log_default, local_addresses, 2, "", "");
-	ns_debug(ns_log_default, 7, "local networks:");
-	dprint_ip_match_list(ns_log_default, local_networks, 2, "", "");
-
-	/*
-	 * now go through the iflist and delete anything that
-	 * does not have the current generation number.  this is
-	 * how we catch interfaces that go away or change their
-	 * addresses.  note that 0.0.0.0 is the wildcard element
-	 * and should never be deleted by this code.
-	 */
-	dq_remove_gen(my_generation);
-
-	if (EMPTY(iflist))
-		ns_warning(ns_log_default, "not listening on any interfaces");
-}
-
-/* opensocket_d(ifp)
- *	Open datagram socket bound to interface address.
- * Returns:
- *	0 on success.
- *	-1 on failure.
- */
-static int
-opensocket_d(interface *ifp) {
-	struct sockaddr_in nsa;
-	const int on = 1;
-	int m, n;
-	int fd;
-
-	memset(&nsa, 0, sizeof nsa);
-	nsa.sin_family = AF_INET;
-	nsa.sin_addr = ifp->addr;
-	nsa.sin_port = ifp->port;
-
-	if ((ifp->dfd = socket(AF_INET, SOCK_DGRAM, 0)) < 0) {
-		ns_error(ns_log_default, "socket(SOCK_DGRAM): %s",
-			 strerror(errno));
-		return (-1);
-	}
-	if (ifp->dfd > evHighestFD(ev)) {
-		ns_error(ns_log_default, "socket too high: %d", ifp->dfd);
-		close(ifp->dfd);
-		return (-1);
-	}
-	if ((n = fcntl(ifp->dfd, F_GETFL, 0)) == -1) {
-		ns_info(ns_log_default, "fcntl(ifp->dfd, F_GETFL): %s",
-			strerror(errno));
-		(void) close(ifp->dfd);
-		return (-1);
-	}
-	if (fcntl(ifp->dfd, F_SETFL, n|PORT_NONBLOCK) == -1) {
-		ns_info(ns_log_default, "fcntl(ifp->dfd, NONBLOCK): %s",
-			strerror(errno));
-		(void) close(ifp->dfd);
-		return (-1);
-	}
-#ifdef F_DUPFD		/* XXX */
-	/*
-	 * Leave a space for stdio to work in.
-	 */
-	if ((fd = fcntl(ifp->dfd, F_DUPFD, 20)) != -1) {
-		close(ifp->dfd);
-		ifp->dfd = fd;
-	} else 
-		ns_notice(ns_log_default, "fcntl(dfd, F_DUPFD, 20): %s",
-			  strerror(errno));
-#endif
-	if (fcntl(ifp->dfd, F_SETFD, 1) < 0) {
-		ns_error(ns_log_default, "F_SETFD: %s", strerror(errno));
-		close(ifp->dfd);
-		return (-1);
-	}
-	ns_debug(ns_log_default, 1, "ifp->addr %s d_dfd %d",
-		 sin_ntoa(nsa), ifp->dfd);
-	if (setsockopt(ifp->dfd, SOL_SOCKET, SO_REUSEADDR,
-	    (char *)&on, sizeof(on)) != 0) {
-		ns_notice(ns_log_default, "setsockopt(REUSEADDR): %s",
-			  strerror(errno));
-		/* XXX press on regardless, this is not too serious. */
-	}
-#ifdef SO_RCVBUF	/* XXX */
-	m = sizeof n;
-	if ((getsockopt(ifp->dfd, SOL_SOCKET, SO_RCVBUF, (char*)&n, &m) >= 0)
-	    && (m == sizeof n)
-	    && (n < drbufsize)) {
-		(void) setsockopt(ifp->dfd, SOL_SOCKET, SO_RCVBUF,
-				  (char *)&drbufsize, sizeof drbufsize);
-	}
-#endif /* SO_RCVBUF */
-#ifndef CANNOT_SET_SNDBUF
-	if (setsockopt(ifp->dfd, SOL_SOCKET, SO_SNDBUF,
-		      (char*)&dsbufsize, sizeof dsbufsize) < 0) {
-		ns_info(ns_log_default,
-			"setsockopt(dfd=%d, SO_SNDBUF, %d): %s",
-			ifp->dfd, dsbufsize, strerror(errno));
-		/* XXX press on regardless, this is not too serious. */
-	}
-#endif
-	if (bind(ifp->dfd, (struct sockaddr *)&nsa, sizeof nsa)) {
-		ns_error(ns_log_default, "bind(dfd=%d, %s): %s",
-			 ifp->dfd, sin_ntoa(nsa), strerror(errno));
-		return (-1);
-	}
-	if (evSelectFD(ev, ifp->dfd, EV_READ, datagram_read, ifp,
-		       &ifp->evID_d) == -1) {
-		ns_error(ns_log_default, "evSelectFD(dfd=%d): %s",
-			 ifp->dfd, strerror(errno));
-		return (-1);
-	}
-	ifp->flags |= INTERFACE_FILE_VALID;
-	return (0);
-}
-
-/* opensocket_s(ifp)
- *	Open stream (listener) socket bound to interface address.
- * Returns:
- *	0 on success.
- *	-1 on failure.
- */
-static int
-opensocket_s(interface *ifp) {
-	struct sockaddr_in nsa;
-	const int on = 1;
-	int n;
-	int fd;
-
-	memset(&nsa, 0, sizeof nsa);
-	nsa.sin_family = AF_INET;
-	nsa.sin_addr = ifp->addr;
-	nsa.sin_port = ifp->port;
-
-	/*
-	 * Open stream (listener) port.
-	 */
-	n = 0;
- again:
-	if ((ifp->sfd = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
-		ns_error(ns_log_default, "socket(SOCK_STREAM): %s",
-			 strerror(errno));
-		return (-1);
-	}
-	if (ifp->sfd > evHighestFD(ev)) {
-		ns_error(ns_log_default, "socket too high: %d", ifp->sfd);
-		close(ifp->sfd);
-		return (-1);
-	}
-#ifdef F_DUPFD		/* XXX */
-	/*
-	 * Leave a space for stdio to work in.
-	 */
-	if ((fd = fcntl(ifp->sfd, F_DUPFD, 20)) != -1) {
-		close(ifp->sfd);
-		ifp->sfd = fd;
-	} else 
-		ns_notice(ns_log_default, "fcntl(sfd, F_DUPFD, 20): %s",
-			  strerror(errno));
-#endif
-	if (fcntl(ifp->sfd, F_SETFD, 1) < 0) {
-		ns_error(ns_log_default, "F_SETFD: %s", strerror(errno));
-		close(ifp->sfd);
-		return (-1);
-	}
-	if (setsockopt(ifp->sfd, SOL_SOCKET, SO_REUSEADDR,
-		       (char *)&on, sizeof on) != 0) {
-		ns_notice(ns_log_default, "setsockopt(REUSEADDR): %s",
-			  strerror(errno));
-		/* Consider that your first warning of trouble to come. */
-	}
-	if (bind(ifp->sfd, (struct sockaddr *)&nsa, sizeof nsa) < 0) {
-		if (errno != EADDRINUSE || ++n > 4) {
-			if (errno == EADDRINUSE)
-				ns_error(ns_log_default,
-			  "There may be a name server already running on %s",
-					 sin_ntoa(nsa));
-			else
-				ns_error(ns_log_default,
-					 "bind(sfd=%d, %s): %s", ifp->sfd,
-					 sin_ntoa(nsa), strerror(errno));
-			return (-1);
-		}
-
-		/* Retry opening the socket a few times */
-		close(ifp->sfd);
-		ifp->sfd = -1;
-		sleep(30);
-		goto again;
-	}
-	if (evListen(ev, ifp->sfd, listenmax, stream_accept, ifp, &ifp->evID_s)
-	    == -1) {
-		ns_error(ns_log_default, "evListen(sfd=%d): %s",
-			 ifp->sfd, strerror(errno));
-		return (-1);
-	}
-	ifp->flags |= INTERFACE_CONN_VALID;
-	return (0);
-}
-
-/* opensocket_f()
- *	Open datagram socket bound to no particular interface; use for ns_forw
- *	and sysquery.
- */
-void
-opensocket_f() {
-	static struct sockaddr_in prev_qsrc;
-	static int been_here;
-	static interface *prev_ifp;
-	struct sockaddr_in nsa;
-	const int on = 1;
-	int n, need_close;
-	interface *ifp;
-
-	need_close = 0;
-	if (been_here) {
-		if (prev_ifp != NULL)
-			prev_ifp->flags &= ~INTERFACE_FORWARDING;
-		else if (server_options->query_source.sin_port == htons(0) ||
-			 prev_qsrc.sin_addr.s_addr !=
-			 server_options->query_source.sin_addr.s_addr ||
-			 prev_qsrc.sin_port !=
-			 server_options->query_source.sin_port)
-			need_close = 1;
-	} else
-		ds = -1;
-
-	been_here = 1;
-	INSIST(server_options != NULL);
-
-	if (need_close) {
-		evDeselectFD(ev, ds_evID);
-		close(ds);
-		ds = -1;
-	}
-
-	/*
-	 * If we're already listening on the query_source address and port,
-	 * we don't need to open another socket.  We mark the interface, so
-	 * we'll notice we're in trouble if it goes away.
-	 */
-	ifp = if_find(server_options->query_source.sin_addr,
-		      server_options->query_source.sin_port);
-	if (ifp != NULL) {
-		ifp->flags |= INTERFACE_FORWARDING;
-		prev_ifp = ifp;
-		ds = ifp->dfd;
-		ns_info(ns_log_default, "forwarding source address is %s",
-			sin_ntoa(server_options->query_source));
-		return;
-	}
-
-	/*
-	 * If we're already using the correct query source, we're done.
-	 */
-	if (ds >= 0)
-		return;
-
-	prev_qsrc = server_options->query_source;
-	prev_ifp = NULL;
-
-	if ((ds = socket(AF_INET, SOCK_DGRAM, 0)) < 0)
-		ns_panic(ns_log_default, 1, "socket(SOCK_DGRAM): %s",
-			 strerror(errno));
-	if (ds > evHighestFD(ev))
-		ns_panic(ns_log_default, 1, "socket too high: %d", ds);
-	if (fcntl(ds, F_SETFD, 1) < 0)
-		ns_panic(ns_log_default, 1, "F_SETFD: %s", strerror(errno));
-	if (setsockopt(ds, SOL_SOCKET, SO_REUSEADDR,
-	    (char *)&on, sizeof on) != 0) {
-		ns_notice(ns_log_default, "setsockopt(REUSEADDR): %s",
-			  strerror(errno));
-		/* XXX press on regardless, this is not too serious. */
-	}
-	if (bind(ds, (struct sockaddr *)&server_options->query_source,
-		 sizeof server_options->query_source) < 0)
-		ns_panic(ns_log_default, 0, "opensocket_f: bind(%s): %s",
-			 sin_ntoa(server_options->query_source),
-			 strerror(errno));
-
-	n = sizeof nsa;
-	if (getsockname(ds, (struct sockaddr *)&nsa, &n) < 0)
-		ns_panic(ns_log_default, 1, "opensocket_f: getsockaddr: %s",
-			 strerror(errno));
-
-	ns_debug(ns_log_default, 1, "fwd ds %d addr %s", ds, sin_ntoa(nsa));
-	ns_info(ns_log_default, "Forwarding source address is %s",
-		sin_ntoa(nsa));
-
-	if (evSelectFD(ev, ds, EV_READ, datagram_read, NULL, &ds_evID) == -1)
-		ns_panic(ns_log_default, 1, "evSelectFD(fd %d): %s",
-			 (void *)ds, strerror(errno));
-	/* XXX: should probably use a different FileFunc that only accepts
-	 *	responses, since requests on this socket make no sense.
-	 */
-}
-
-static void
-setdebug(int new_debug) {
-#ifdef DEBUG
-	int old_debug;
-	
-	if (!new_debug)
-		ns_debug(ns_log_default, 1, "Debug off");
-	old_debug = debug;
-	debug = new_debug;
-	log_option(log_ctx, LOG_OPTION_DEBUG, debug);
-	log_option(log_ctx, LOG_OPTION_LEVEL, debug);
-	evSetDebug(ev, debug, log_get_stream(eventlib_channel));
-	if (debug) {
-		if (!old_debug)
-			open_special_channels();
-		ns_debug(ns_log_default, 1, "Debug level %d", debug);
-		if (!old_debug) {
-			ns_debug(ns_log_default, 1, "Version = %s", Version);
-			ns_debug(ns_log_default, 1, "conffile = %s", conffile);
-		}
-	}
-#endif
-}
-
-/*
-** Routines for managing stream queue
-*/
-
-static struct qstream *
-sq_add() {
-	struct qstream *sqp;
-
-	if (!(sqp = (struct qstream *)memget(sizeof *sqp))) {
-		ns_error(ns_log_default, "sq_add: memget: %s",
-			 strerror(errno));
-		return (NULL);
-	}
-	memset(sqp, 0, sizeof *sqp);
-	ns_debug(ns_log_default, 3, "sq_add(%#lx)", (u_long)sqp);
-
-	sqp->flags = 0;
-	/* XXX should init other fields too? */
-	sqp->s_next = streamq;
-	streamq = sqp;
-	return (sqp);
-}
-
-/* sq_remove(qp)
- *	remove stream queue structure `qp'.
- *	no current queries may refer to this stream when it is removed.
- * side effects:
- *	memory is deallocated.  sockets are closed.  lists are relinked.
- */
-void
-sq_remove(struct qstream *qp) {
-	struct qstream *qsp;
-
-	ns_debug(ns_log_default, 2, "sq_remove(%#lx, %d) rfcnt=%d",
-		 (u_long)qp, qp->s_rfd, qp->s_refcnt);
-
-	if (qp->s_wbuf != NULL) {
-		memput(qp->s_wbuf, qp->s_wbuf_end - qp->s_wbuf);
-		qp->s_wbuf_send = qp->s_wbuf_free = NULL;
-		qp->s_wbuf_end = qp->s_wbuf = NULL;
-	}
-	if (qp->flags & STREAM_MALLOC)
-		memput(qp->s_buf, qp->s_bufsize);
-	if (qp->flags & STREAM_READ_EV)
-		INSIST_ERR(evCancelRW(ev, qp->evID_r) != -1);
-	if (qp->flags & STREAM_WRITE_EV)
-		INSIST_ERR(evDeselectFD(ev, qp->evID_w) != -1);
-	if (qp->flags & STREAM_CONNECT_EV)
-		INSIST_ERR(evCancelConn(ev, qp->evID_c) != -1);
-	if (qp->flags & STREAM_AXFR || qp->flags & STREAM_AXFRIXFR)
-		ns_freexfr(qp);
-	(void) close(qp->s_rfd);
-	if (qp == streamq)
-		streamq = qp->s_next;
-	else {
-		for (qsp = streamq;
-		     qsp && (qsp->s_next != qp);
-		     qsp = qsp->s_next)
-			(void)NULL;
-		if (qsp)
-			qsp->s_next = qp->s_next;
-	}
-	memput(qp, sizeof *qp);
-}
-
-/* void
- * sq_flush(allbut)
- *	call sq_remove() on all open streams except `allbut'
- * side effects:
- *	global list `streamq' modified
- * idiocy:
- *	is N^2 due to the scan inside of sq_remove()
- */
-void
-sq_flush(struct qstream *allbut) {
-	struct qstream *sp, *spnext;
-
-	for (sp = streamq; sp != NULL; sp = spnext) {
-		spnext = sp->s_next;
-		if (sp != allbut)
-			sq_remove(sp);
-	}
-}
-
-/* int
- * sq_openw(qs, buflen)
- *	add a write buffer to a stream
- * return:
- *	0 = success
- *	-1 = failure (check errno)
- */
-int
-sq_openw(struct qstream *qs, int buflen) {
-#ifdef DO_SO_LINGER	/* XXX */
-	static const struct linger ll = { 1, 120 };
-#endif
-
-	INSIST(qs->s_wbuf == NULL);
-	qs->s_wbuf = (u_char *)memget(buflen);
-	if (qs->s_wbuf == NULL)
-		return (-1);
-	qs->s_wbuf_send = qs->s_wbuf;
-	qs->s_wbuf_free = qs->s_wbuf;
-	qs->s_wbuf_end = qs->s_wbuf + buflen;
-#ifdef DO_SO_LINGER	/* XXX */
-	/* kernels that map pages for IO end up failing if the pipe is full
-	 * at exit and we take away the final buffer.  this is really a kernel
-	 * bug but it's harmless on systems that are not broken, so...
-	 */
-	setsockopt(qs->s_rfd, SOL_SOCKET, SO_LINGER, (char *)&ll, sizeof ll);
-#endif
-	return (0);
-}
-
-/* static void
- * sq_dowrite(qs)
- *	try to submit data to the system, remove it from our queue.
- */
-static int
-sq_dowrite(struct qstream *qs) {
-	if (qs->s_wbuf_free > qs->s_wbuf_send) {
-		int n = write(qs->s_rfd, qs->s_wbuf_send,
-			      qs->s_wbuf_free - qs->s_wbuf_send);
-		INSIST(qs->s_wbuf != NULL);
-		if (n < 0) {
-			if (errno != EINTR && errno != EAGAIN
-#if (EWOULDBLOCK != EAGAIN)
-			    && errno != EWOULDBLOCK
-#endif
-			    )
-				return (-1);
-			return (0);
-		}
-		qs->s_wbuf_send += n;
-		if (qs->s_wbuf_free > qs->s_wbuf_send) {
-			/* XXX: need some kind of delay here during which the
-			 *	socket will be deselected so we don't spin.
-			 */
-			n = qs->s_wbuf_free - qs->s_wbuf_send;
-			memmove(qs->s_wbuf, qs->s_wbuf_send, n);
-			qs->s_wbuf_send = qs->s_wbuf;
-			qs->s_wbuf_free = qs->s_wbuf + n;
-		}
-	}
-	if (qs->s_wbuf_free == qs->s_wbuf_send)
-		qs->s_wbuf_free = qs->s_wbuf_send = qs->s_wbuf;
-	return (0);
-}
-
-/* void
- * sq_flushw(qs)
- *	called when the socket becomes writable and we want to flush our
- *	buffers and the system's socket buffers.  use as a closure with
- *	sq_writeh().
- */
-void
-sq_flushw(struct qstream *qs) {
-	if (qs->s_wbuf_free == qs->s_wbuf_send) {
-		sq_writeh(qs, NULL);
-		sq_done(qs);
-	}
-}
-
-/* static void
- * sq_writable(ctx, uap, fd, evmask)
- *	glue between eventlib closures and qstream closures
- */
-static void
-sq_writable(evContext ctx, void *uap, int fd, int evmask) {
-	struct qstream *qs = uap;
-
-	INSIST(evmask & EV_WRITE);
-	INSIST(fd == qs->s_rfd);
-	if (sq_dowrite(qs) < 0) {
-		sq_remove(qs);
-		return;
-	}
-	if (qs->s_wbuf_closure
-	    && qs->s_wbuf_end - qs->s_wbuf_free >= HFIXEDSZ+2)	/* XXX guess */
-		(*qs->s_wbuf_closure)(qs);
-	if (sq_dowrite(qs) < 0) {
-		sq_remove(qs);
-		return;
-	}
-}
-
-/* int
- * sq_writeh(qs, closure)
- *	register a closure to be called when a stream becomes writable
- * return:
- *	0 = success
- *	-1 = failure (check errno)
- */
-int
-sq_writeh(struct qstream *qs, sq_closure c) {
-	if (c) {
-		if (!qs->s_wbuf_closure) {
-			if (evSelectFD(ev, qs->s_rfd, EV_WRITE,
-				       sq_writable, qs, &qs->evID_w) < 0) {
-				return (-1);
-			}
-			qs->flags |= STREAM_WRITE_EV;
-		}
-	} else {
-		(void) evDeselectFD(ev, qs->evID_w);
-		qs->flags &= ~STREAM_WRITE_EV;
-	}
-	qs->s_wbuf_closure = c;
-	return (0);
-}
-
-/* int
- * sq_write(qs, buf, len)
- *	queue a message onto the stream, prepended by a two byte length field
- * return:
- *	0 = success
- *	-1 = failure (check errno; E2BIG means we can't handle this right now)
- */
-int
-sq_write(struct qstream *qs, const u_char *buf, int len) {
-	INSIST(qs->s_wbuf != NULL);
-	if (NS_INT16SZ + len > qs->s_wbuf_end - qs->s_wbuf_free) {
-		if (sq_dowrite(qs) < 0)
-			return (-1);
-		if (NS_INT16SZ + len > qs->s_wbuf_end - qs->s_wbuf_free) {
-			errno = E2BIG;
-			return (-1);
-		}
-	}
-	__putshort(len, qs->s_wbuf_free);
-	qs->s_wbuf_free += NS_INT16SZ;
-	memcpy(qs->s_wbuf_free, buf, len);
-	qs->s_wbuf_free += len;
-	return (0);
-}
-
-/* int
- * sq_here(sp)
- *	determine whether stream 'sp' is still on the streamq
- * return:
- *	boolean: is it here?
- */
-static int
-sq_here(struct qstream *sp) {
-	struct qstream *t;
-
-	for (t = streamq; t != NULL; t = t->s_next)
-		if (t == sp)
-			return (1);
-	return (0);
-}
-
-/*
- * Initiate query on stream;
- * mark as referenced and stop selecting for input.
- */
-static void
-sq_query(struct qstream *sp) {
-	sp->s_refcnt++;
-}
-
-/*
- * Note that the current request on a stream has completed,
- * and that we should continue looking for requests on the stream.
- */
-void
-sq_done(struct qstream *sp) {
-	struct iovec iov;
-
-	if (sp->s_wbuf != NULL) {
-		INSIST(sp->s_wbuf_send == sp->s_wbuf_free);
-		memput(sp->s_wbuf, sp->s_wbuf_end - sp->s_wbuf);
-		sp->s_wbuf_send = sp->s_wbuf_free = NULL;
-		sp->s_wbuf_end = sp->s_wbuf = NULL;
-	}
-	if (sp->flags & STREAM_AXFR || sp->flags & STREAM_AXFRIXFR)
-		ns_freexfr(sp);
-	sp->s_refcnt = 0;
-	sp->s_time = tt.tv_sec;
-	if (sp->flags & STREAM_DONE_CLOSE) {
-		/* XXX */
-		sq_remove(sp);
-		return;
-	}
-	iov = evConsIovec(sp->s_temp, INT16SZ);
-	if (evRead(ev, sp->s_rfd, &iov, 1, stream_getlen, sp, &sp->evID_r) ==
-	    -1)
-		ns_panic(ns_log_default, 1, "evRead(fd %d): %s",
-			 (void *)sp->s_rfd, strerror(errno));
-	sp->flags |= STREAM_READ_EV;
-}
-
-/* void
- * dq_remove_gen(gen)
- *	close/deallocate all the udp sockets (except 0.0.0.0) which are
- *	not from the current generation.
- * side effects:
- *	global list `iflist' is modified.
- */
-void
-dq_remove_gen(time_t gen) {
-	interface *this, *next;
-
-	for (this = HEAD(iflist); this != NULL; this = next) {
-		next = NEXT(this, link);
-		if (this->gen != gen && ina_hlong(this->addr) != INADDR_ANY)
-			dq_remove(this);
-	}
-}
-
-/* void
- * dq_remove_all()
- *	close/deallocate all interfaces.
- * side effects:
- *	global list `iflist' is modified.
- */
-void
-dq_remove_all() {
-	interface *this, *next;
-
-	for (this = HEAD(iflist); this != NULL; this = next) {
-		next = NEXT(this, link);
-		/* 
-		 * Clear the forwarding flag so we don't panic the server.
-		 */
-		this->flags &= ~INTERFACE_FORWARDING;
-		dq_remove(this);
-	}
-}
-
-/* void
- * dq_remove(interface *this)
- *	close/deallocate an interface's sockets.  called on errors
- *	or if the interface disappears.
- * side effects:
- *	global list `iflist' is modified.
- */
-static void
-dq_remove(interface *this) {
-	ns_notice(ns_log_default, "deleting interface [%s].%u",
-		  inet_ntoa(this->addr), ntohs(this->port));
-
-	if ((this->flags & INTERFACE_FORWARDING) != 0)
-		ns_panic(ns_log_default, 0,
-			 "forwarding interface [%s].%u gone",
-			 inet_ntoa(this->addr),
-			 ntohs(this->port));
-
-	/* Deallocate fields. */
-	if ((this->flags & INTERFACE_FILE_VALID) != 0)
-		(void) evDeselectFD(ev, this->evID_d);
-	if (this->dfd >= 0)
-		(void) close(this->dfd);
-	if ((this->flags & INTERFACE_CONN_VALID) != 0)
-		(void) evCancelConn(ev, this->evID_s);
-	if (this->sfd >= 0)
-		(void) close(this->sfd);
-
-	UNLINK(iflist, this, link);
-	memput(this, sizeof *this);
-}
-
-/* struct in_addr
- * net_mask(ina)
- *	makes a classful assumption in a classless world, and returns it.
- */
-struct in_addr
-net_mask(struct in_addr ina) {
-	u_long hl = ina_hlong(ina);
-	struct in_addr ret;
-
-	if (IN_CLASSA(hl))
-		hl = IN_CLASSA_NET;
-	else if (IN_CLASSB(hl))
-		hl = IN_CLASSB_NET;
-	else if (IN_CLASSC(hl))
-		hl = IN_CLASSC_NET;
-	else
-		hl = INADDR_BROADCAST;
-	ina_ulong(ret) = htonl(hl);
-	return (ret);
-}
-
-/* aIsUs(addr)
- *	scan our list of interface addresses for "addr".
- * returns:
- *	0: address isn't one of our interfaces
- *	>0: address is one of our interfaces, or INADDR_ANY
- */
-int
-aIsUs(struct in_addr addr) {
-
-	if (ina_hlong(addr) == INADDR_ANY || if_find(addr, 0) != NULL)
-		return (1);
-	return (0);
-}
-
-/* interface *
- * if_find(addr, port)
- *	scan our list of interface addresses for "addr" and port.
- *      port == 0 means match any port
- * returns:
- *	pointer to interface with this address/port, or NULL if there isn't
- *      one.
- */
-static interface *
-if_find(struct in_addr addr, u_int16_t port) {
-	interface *ifp;
-
-	for (ifp = HEAD(iflist); ifp != NULL; ifp = NEXT(ifp, link))
-		if (ina_equal(addr, ifp->addr))
-			if (port == 0 || ifp->port == port)
-				break;
-	return (ifp);
-}
-
-/*
- * These are here in case we ever want to get more clever, like perhaps
- * using a bitmap to keep track of outstanding queries and a random
- * allocation scheme to make it a little harder to predict them.  Note
- * that the resolver will need the same protection so the cleverness
- * should be put there rather than here; this is just an interface layer.
- *
- * This is true but ... most clients only send out a few queries, they
- * use varying port numbers, and the queries aren't sent to the outside
- * world which we know is full of spoofers.  Doing a good job of randomizing
- * ids may also be to expensive for each client. Queries forwarded by the
- * server always come from the same port (unless you let 8.x pick a port
- * and restart it periodically - maybe it should open several and use
- * them randomly).  The server sends out lots more queries, and if it's
- * cache is corrupted, it has the potential to affect more clients.
- * NOTE: - randomizing the ID or source port doesn't help a bit if the
- * queries can be sniffed.
- *                             -- DL
- */
-
-/*
- * Allow the user to pick one of two ID randomization algorithms.
- *
- * The first algorithm is an adaptation of the sequence shuffling
- * algorithm discovered by Carter Bays and S. D. Durham [ACM Trans. Math.
- * Software 2 (1976), 59-64], as documented as Algorithm B in Chapter
- * 3.2.2 in Volume 2 of Knuth's "The Art of Computer Programming".  We use
- * a randomly selected linear congruential random number generator with a
- * modulus of 2^16, whose increment is a randomly picked odd number, and
- * whose multiplier is picked from a set which meets the following
- * criteria:
- *     Is of the form 8*n+5, which ensures "high potency" according to
- *     principle iii in the summary chapter 3.6.  This form also has a
- *     gcd(a-1,m) of 4 which is good according to principle iv.
- *
- *     Is between 0.01 and 0.99 times the modulus as specified by
- *     principle iv.
- *
- *     Passes the spectral test "with flying colors" (ut >= 1) in
- *     dimensions 2 through 6 as calculated by Algorithm S in Chapter
- *     3.3.4 and the ratings calculated by formula 35 in section E.
- *
- *     Of the multipliers that pass this test, pick the set that is
- *     best according to the theoretical bounds of the serial
- *     correlation test.  This was calculated using a simplified
- *     version of Knuth's Theorem K in Chapter 3.3.3.
- *
- * These criteria may not be important for this use, but we might as well
- * pick from the best generators since there are so many possible ones and
- * we don't have that many random bits to do the picking.
- *
- * We use a modulus of 2^16 instead of something bigger so that we will
- * tend to cycle through all the possible IDs before repeating any,
- * however the shuffling will perturb this somewhat.  Theoretically there
- * is no minimimum interval between two uses of the same ID, but in
- * practice it seems to be >64000.
- *
- * Our adaptatation  of Algorithm B mixes the hash state which has
- * captured various random events into the shuffler to perturb the
- * sequence.
- *
- * One disadvantage of this algorithm is that if the generator parameters
- * were to be guessed, it would be possible to mount a limited brute force
- * attack on the ID space since the IDs are only shuffled within a limited
- * range.
- *
- * The second algorithm uses the same random number generator to populate
- * a pool of 65536 IDs.  The hash state is used to pick an ID from a window
- * of 4096 IDs in this pool, then the chosen ID is swapped with the ID
- * at the beginning of the window and the window position is advanced.
- * This means that the interval between uses of the ID will be no less
- * than 65536-4096.  The ID sequence in the pool will become more random
- * over time.
- *
- * For both algorithms, two more linear congruential random number generators
- * are selected.  The ID from the first part of algorithm is used to seed
- * the first of these generators, and its output is used to seed the second.
- * The strategy is use these generators as 1 to 1 hashes to obfuscate the
- * properties of the generator used in the first part of either algorithm.
- *
- * The first algorithm may be suitable for use in a client resolver since
- * its memory requirements are fairly low and it's pretty random out of
- * the box.  It is somewhat succeptible to a limited brute force attack,
- * so the second algorithm is probably preferable for a longer running
- * program that issues a large number of queries and has time to randomize
- * the pool.
- */
-
-#define NSID_SHUFFLE_TABLE_SIZE 100 /* Suggested by Knuth */
-/*
- * Pick one of the next 4096 IDs in the pool.
- * There is a tradeoff here between randomness and how often and ID is reused.
- */
-#define NSID_LOOKAHEAD 4096	/* Must be a power of 2 */
-#define NSID_SHUFFLE_ONLY 1	/* algorithm 1 */
-#define NSID_USE_POOL 2		/* algorithm 2 */
-
-/*
- * Keep a running hash of various bits of data that we'll use to
- * stir the ID pool or perturb the ID generator
- */
-void
-nsid_hash(u_char *data, size_t len) {
-	/*
-	 * Hash function similar to the one we use for hashing names.
-	 * We don't fold case or toss the upper bit here, though.
-	 * This hash doesn't do much interesting when fed binary zeros,
-	 * so there may be a better hash function.
-	 * This function doesn't need to be very strong since we're
-	 * only using it to stir the pool, but it should be reasonably
-	 * fast.
-	 */
-	while (len-- > 0) {
-		HASHROTATE(nsid_hash_state);
-		nsid_hash_state += *data++;
-	}
-}
-
-/*
- * Table of good linear congruential multipliers for modulus 2^16
- * in order of increasing serial correlation bounds (so trim from
- * the end).
- */
-static const u_int16_t nsid_multiplier_table[] = {
-	17565, 25013, 11733, 19877, 23989, 23997, 24997, 25421,
-	26781, 27413, 35901, 35917, 35973, 36229, 38317, 38437,
-	39941, 40493, 41853, 46317, 50581, 51429, 53453, 53805,
-	11317, 11789, 12045, 12413, 14277, 14821, 14917, 18989,
-	19821, 23005, 23533, 23573, 23693, 27549, 27709, 28461,
-	29365, 35605, 37693, 37757, 38309, 41285, 45261, 47061,
-	47269, 48133, 48597, 50277, 50717, 50757, 50805, 51341,
-	51413, 51581, 51597, 53445, 11493, 14229, 20365, 20653,
-	23485, 25541, 27429, 29421, 30173, 35445, 35653, 36789,
-	36797, 37109, 37157, 37669, 38661, 39773, 40397, 41837,
-	41877, 45293, 47277, 47845, 49853, 51085, 51349, 54085,
-	56933,  8877,  8973,  9885, 11365, 11813, 13581, 13589,
-	13613, 14109, 14317, 15765, 15789, 16925, 17069, 17205,
-	17621, 17941, 19077, 19381, 20245, 22845, 23733, 24869,
-	25453, 27213, 28381, 28965, 29245, 29997, 30733, 30901,
-	34877, 35485, 35613, 36133, 36661, 36917, 38597, 40285,
-	40693, 41413, 41541, 41637, 42053, 42349, 45245, 45469,
-	46493, 48205, 48613, 50861, 51861, 52877, 53933, 54397,
-	55669, 56453, 56965, 58021,  7757,  7781,  8333,  9661,
-	12229, 14373, 14453, 17549, 18141, 19085, 20773, 23701,
-	24205, 24333, 25261, 25317, 27181, 30117, 30477, 34757,
-	34885, 35565, 35885, 36541, 37957, 39733, 39813, 41157,
-	41893, 42317, 46621, 48117, 48181, 49525, 55261, 55389,
-	56845,  7045,  7749,  7965,  8469,  9133,  9549,  9789,
-	10173, 11181, 11285, 12253, 13453, 13533, 13757, 14477,
-	15053, 16901, 17213, 17269, 17525, 17629, 18605, 19013,
-	19829, 19933, 20069, 20093, 23261, 23333, 24949, 25309,
-	27613, 28453, 28709, 29301, 29541, 34165, 34413, 37301,
-	37773, 38045, 38405, 41077, 41781, 41925, 42717, 44437,
-	44525, 44613, 45933, 45941, 47077, 50077, 50893, 52117,
-	 5293, 55069, 55989, 58125, 59205,  6869, 14685, 15453,
-	16821, 17045, 17613, 18437, 21029, 22773, 22909, 25445,
-	25757, 26541, 30709, 30909, 31093, 31149, 37069, 37725,
-	37925, 38949, 39637, 39701, 40765, 40861, 42965, 44813,
-	45077, 45733, 47045, 50093, 52861, 52957, 54181, 56325,
-	56365, 56381, 56877, 57013,  5741, 58101, 58669,  8613,
-	10045, 10261, 10653, 10733, 11461, 12261, 14069, 15877,
-	17757, 21165, 23885, 24701, 26429, 26645, 27925, 28765,
-	29197, 30189, 31293, 39781, 39909, 40365, 41229, 41453,
-	41653, 42165, 42365, 47421, 48029, 48085, 52773,  5573,
-	57037, 57637, 58341, 58357, 58901,  6357,  7789,  9093,
-	10125, 10709, 10765, 11957, 12469, 13437, 13509, 14773,
-	15437, 15773, 17813, 18829, 19565, 20237, 23461, 23685,
-	23725, 23941, 24877, 25461, 26405, 29509, 30285, 35181,
-	37229, 37893, 38565, 40293, 44189, 44581, 45701, 47381,
-	47589, 48557,  4941, 51069,  5165, 52797, 53149,  5341,
-	56301, 56765, 58581, 59493, 59677,  6085,  6349,  8293,
-	 8501,  8517, 11597, 11709, 12589, 12693, 13517, 14909,
-	17397, 18085, 21101, 21269, 22717, 25237, 25661, 29189,
-	30101, 31397, 33933, 34213, 34661, 35533, 36493, 37309,
-	40037,  4189, 42909, 44309, 44357, 44389,  4541, 45461,
-	46445, 48237, 54149, 55301, 55853, 56621, 56717, 56901,
-	 5813, 58437, 12493, 15365, 15989, 17829, 18229, 19341,
-	21013, 21357, 22925, 24885, 26053, 27581, 28221, 28485,
-	30605, 30613, 30789, 35437, 36285, 37189,  3941, 41797,
-	 4269, 42901, 43293, 44645, 45221, 46893,  4893, 50301,
-	50325,  5189, 52109, 53517, 54053, 54485,  5525, 55949,
-	56973, 59069, 59421, 60733, 61253,  6421,  6701,  6709,
-	 7101,  8669, 15797, 19221, 19837, 20133, 20957, 21293,
-	21461, 22461, 29085, 29861, 30869, 34973, 36469, 37565,
-	38125, 38829, 39469, 40061, 40117, 44093, 47429, 48341,
-	50597, 51757,  5541, 57629, 58405, 59621, 59693, 59701,
-	61837,  7061, 10421, 11949, 15405, 20861, 25397, 25509,
-	25893, 26037, 28629, 28869, 29605, 30213, 34205, 35637,
-	36365, 37285,  3773, 39117,  4021, 41061, 42653, 44509,
-	 4461, 44829,  4725,  5125, 52269, 56469, 59085,  5917,
-	60973,  8349, 17725, 18637, 19773, 20293, 21453, 22533,
-	24285, 26333, 26997, 31501, 34541, 34805, 37509, 38477,
-	41333, 44125, 46285, 46997, 47637, 48173,  4925, 50253,
-	50381, 50917, 51205, 51325, 52165, 52229,  5253,  5269,
-	53509, 56253, 56341,  5821, 58373, 60301, 61653, 61973,
-	62373,  8397, 11981, 14341, 14509, 15077, 22261, 22429,
-	24261, 28165, 28685, 30661, 34021, 34445, 39149,  3917,
-	43013, 43317, 44053, 44101,  4533, 49541, 49981,  5277,
-	54477, 56357, 57261, 57765, 58573, 59061, 60197, 61197,
-	62189,  7725,  8477,  9565, 10229, 11437, 14613, 14709,
-	16813, 20029, 20677, 31445,  3165, 31957,  3229, 33541,
-	36645,  3805, 38973,  3965,  4029, 44293, 44557, 46245,
-	48917,  4909, 51749, 53709, 55733, 56445,  5925,  6093,
-	61053, 62637,  8661,  9109, 10821, 11389, 13813, 14325,
-	15501, 16149, 18845, 22669, 26437, 29869, 31837, 33709,
-	33973, 34173,  3677,  3877,  3981, 39885, 42117,  4421,
-	44221, 44245, 44693, 46157, 47309,  5005, 51461, 52037,
-	55333, 55693, 56277, 58949,  6205, 62141, 62469,  6293,
-	10101, 12509, 14029, 17997, 20469, 21149, 25221, 27109,
-	 2773,  2877, 29405, 31493, 31645,  4077, 42005, 42077,
-	42469, 42501, 44013, 48653, 49349,  4997, 50101, 55405,
-	56957, 58037, 59429, 60749, 61797, 62381, 62837,  6605,
-	10541, 23981, 24533,  2701, 27333, 27341, 31197, 33805,
-	 3621, 37381,  3749,  3829, 38533, 42613, 44381, 45901,
-	48517, 51269, 57725, 59461, 60045, 62029, 13805, 14013,
-	15461, 16069, 16157, 18573,  2309, 23501, 28645,  3077,
-	31541, 36357, 36877,  3789, 39429, 39805, 47685, 47949,
-	49413,  5485, 56757, 57549, 57805, 58317, 59549, 62213,
-	62613, 62853, 62933,  8909, 12941, 16677, 20333, 21541,
-	24429, 26077, 26421,  2885, 31269, 33381,  3661, 40925,
-	42925, 45173,  4525,  4709, 53133, 55941, 57413, 57797,
-	62125, 62237, 62733,  6773, 12317, 13197, 16533, 16933,
-	18245,  2213,  2477, 29757, 33293, 35517, 40133, 40749,
-	 4661, 49941, 62757,  7853,  8149,  8573, 11029, 13421,
-	21549, 22709, 22725, 24629,  2469, 26125,  2669, 34253,
-	36709, 41013, 45597, 46637, 52285, 52333, 54685, 59013,
-	60997, 61189, 61981, 62605, 62821,  7077,  7525,  8781,
-	10861, 15277,  2205, 22077, 28517, 28949, 32109, 33493,
-	 3685, 39197, 39869, 42621, 44997, 48565,  5221, 57381,
-	61749, 62317, 63245, 63381, 23149,  2549, 28661, 31653,
-	33885, 36341, 37053, 39517, 42805, 45853, 48997, 59349,
-	60053, 62509, 63069,  6525,  1893, 20181,  2365, 24893,
-	27397, 31357, 32277, 33357, 34437, 36677, 37661, 43469,
-	43917, 50997, 53869,  5653, 13221, 16741, 17893,  2157,
-	28653, 31789, 35301, 35821, 61613, 62245, 12405, 14517,
-	17453, 18421,  3149,  3205, 40341,  4109, 43941, 46869,
-	48837, 50621, 57405, 60509, 62877,  8157, 12933, 12957,
-	16501, 19533,  3461, 36829, 52357, 58189, 58293, 63053,
-	17109,  1933, 32157, 37701, 59005, 61621, 13029, 15085,
-	16493, 32317, 35093,  5061, 51557, 62221, 20765, 24613,
-	 2629, 30861, 33197, 33749, 35365, 37933, 40317, 48045,
-	56229, 61157, 63797,  7917, 17965,  1917,  1973, 20301,
-	 2253, 33157, 58629, 59861, 61085, 63909,  8141,  9221,
-	14757,  1581, 21637, 26557, 33869, 34285, 35733, 40933,
-	42517, 43501, 53653, 61885, 63805,  7141, 21653, 54973,
-	31189, 60061, 60341, 63357, 16045,  2053, 26069, 33997,
-	43901, 54565, 63837,  8949, 17909, 18693, 32349, 33125,
-	37293, 48821, 49053, 51309, 64037,  7117,  1445, 20405,
-	23085, 26269, 26293, 27349, 32381, 33141, 34525, 36461,
-	37581, 43525,  4357, 43877,  5069, 55197, 63965,  9845,
-	12093,  2197,  2229, 32165, 33469, 40981, 42397,  8749,
-	10853,  1453, 18069, 21693, 30573, 36261, 37421, 42533
-};
-#define NSID_MULT_TABLE_SIZE \
-	((sizeof nsid_multiplier_table)/(sizeof nsid_multiplier_table[0]))
-
-void
-nsid_init(void) {
-	struct timeval now;
-	pid_t mypid;
-	u_int16_t a1ndx, a2ndx, a3ndx, c1ndx, c2ndx, c3ndx;
-	int i;
-
-	if (nsid_algorithm != 0)
-		return;
-
-	gettimeofday(&now, NULL);
-	mypid = getpid();
-
-	/* Initialize the state */
-	nsid_hash_state = 0;
-	nsid_hash((u_char *)&now, sizeof now);
-	nsid_hash((u_char *)&mypid, sizeof mypid);
-
-	/*
-	 * Select our random number generators and initial seed.
-	 * We could really use more random bits at this point,
-	 * but we'll try to make a silk purse out of a sows ear ...
-	 */
-	/* generator 1 */
-	a1ndx = ((u_long) NSID_MULT_TABLE_SIZE *
-		 (nsid_hash_state & 0xFFFF)) >> 16;
-	nsid_a1 = nsid_multiplier_table[a1ndx];
-	c1ndx = (nsid_hash_state >> 9) & 0x7FFF;
-	nsid_c1 = 2*c1ndx + 1;
-	/* generator 2, distinct from 1 */
-	a2ndx = ((u_long) (NSID_MULT_TABLE_SIZE - 1) *
-		 ((nsid_hash_state >> 10) & 0xFFFF)) >> 16;
-	if (a2ndx >= a1ndx)
-		a2ndx++;
-	nsid_a2 = nsid_multiplier_table[a2ndx];
-	c2ndx = nsid_hash_state % 32767;
-	if (c2ndx >= c1ndx)
-		c2ndx++;
-	nsid_c2 = 2*c2ndx + 1;
-	/* generator 3, distinct from 1 and 2 */
-	a3ndx = ((u_long) (NSID_MULT_TABLE_SIZE - 2) *
-		 ((nsid_hash_state >> 20) & 0xFFFF)) >> 16;
-	if (a3ndx >= a1ndx || a3ndx >= a2ndx)
-		a3ndx++;
-	if (a3ndx >= a1ndx && a3ndx >= a2ndx)
-		a3ndx++;
-	nsid_a3 = nsid_multiplier_table[a3ndx];
-	c3ndx = nsid_hash_state % 32766;
-	if (c3ndx >= c1ndx || c3ndx >= c2ndx)
-		c3ndx++;
-	if (c3ndx >= c1ndx && c3ndx >= c2ndx)
-		c3ndx++;
-	nsid_c3 = 2*c3ndx + 1;
-
-	nsid_state = ((nsid_hash_state >> 16) ^ (nsid_hash_state)) & 0xFFFF;
-
-	/* Do the algorithm specific initialization */
-	INSIST(server_options != NULL);
-	if (NS_OPTION_P(OPTION_USE_ID_POOL) == 0) {
-		/* Algorithm 1 */
-		nsid_algorithm = NSID_SHUFFLE_ONLY;
-		nsid_vtable = memget(NSID_SHUFFLE_TABLE_SIZE *
-				     (sizeof(u_int16_t)) );
-		if (!nsid_vtable)
-			ns_panic(ns_log_default, 1, "memget(nsid_vtable)",
-				 NULL);
-		for (i = 0; i < NSID_SHUFFLE_TABLE_SIZE; i++) {
-			nsid_vtable[i] = nsid_state;
-			nsid_state = (((u_long) nsid_a1 * nsid_state) + nsid_c1)
-					& 0xFFFF;
-		}
-		nsid_state2 = nsid_state;
-	} else {
-		/* Algorithm 2 */
-		nsid_algorithm = NSID_USE_POOL;
-		nsid_pool = memget(0x10000 * (sizeof(u_int16_t)));
-		if (!nsid_pool)
-			ns_panic(ns_log_default, 1, "memget(nsid_pool)", NULL);
-		for (i = 0; ; i++) {
-			nsid_pool[i] = nsid_state;
-			nsid_state = (((u_long) nsid_a1 * nsid_state) + nsid_c1)                                     & 0xFFFF;
-			if (i == 0xFFFF)
-				break;
-		}
-	}
-}
-
-#define NSID_RANGE_MASK (NSID_LOOKAHEAD - 1)
-
-#define NSID_POOL_MASK 0xFFFF /* used to wrap the pool index */
-
-u_int16_t
-nsid_next() {
-	u_int16_t id, compressed_hash;
-
-	compressed_hash = ((nsid_hash_state >> 16) ^ (nsid_hash_state)) &
-			0xFFFF;
-	if (nsid_algorithm == NSID_SHUFFLE_ONLY) {
-		u_int16_t j;
-
-		/*
-		 * This is the original Algorithm B
-		 * j = ((u_long) NSID_SHUFFLE_TABLE_SIZE * nsid_state2)
-		 *     >> 16;
-		 *
-		 * We'll perturb it with some random stuff  ...
-		 */
-		j = ((u_long) NSID_SHUFFLE_TABLE_SIZE *
-		     (nsid_state2 ^ compressed_hash)) >> 16;
-		nsid_state2 = id = nsid_vtable[j];
-		nsid_state = (((u_long) nsid_a1 * nsid_state) + nsid_c1) &
-				0xFFFF;
-		nsid_vtable[j] = nsid_state;
-	} else if (nsid_algorithm == NSID_USE_POOL) {
-		u_int16_t pick;
-
-		pick = compressed_hash & NSID_RANGE_MASK;
-		id = nsid_pool[(nsid_state + pick) & NSID_POOL_MASK];
-		if (pick != 0) {
-			/* Swap two IDs to stir the pool */
-			nsid_pool[(nsid_state + pick) & NSID_POOL_MASK] =
-				nsid_pool[nsid_state];
-			nsid_pool[nsid_state] = id;
-		}
-
-		/* increment the base pointer into the pool */
-		if (nsid_state == 65535)
-			nsid_state = 0;
-		else
-			nsid_state++;
-	} else
-		ns_panic(ns_log_default, 1, "Unknown ID algorithm", NULL);
-
-	/* Now lets obfuscate ... */
-	id = (((u_long) nsid_a2 * id) + nsid_c2) & 0xFFFF;
-	id = (((u_long) nsid_a3 * id) + nsid_c3) & 0xFFFF;
-
-	return (id);
-}
-
-/* Note: this function CAN'T deallocate the saved_argv[]. */
-static void
-deallocate_everything(void) {
-	FILE *f;
-
-	f = write_open(server_options->memstats_filename);
-
-	ns_freestats();
-	qflush();
-	sq_flush(NULL);
-	free_addinfo();
-	ns_shutdown();
-	dq_remove_all();
-	db_lame_destroy();
-	if (local_addresses != NULL)
-		free_ip_match_list(local_addresses);
-	if (local_networks != NULL)
-		free_ip_match_list(local_networks);
-	destroyservicelist();
-	destroyprotolist();
-	shutdown_logging();
-	evDestroy(ev);
-	if (conffile != NULL)
-		freestr(conffile);
-	conffile = NULL;
-	if (debugfile != NULL)
-		freestr(debugfile);
-	debugfile = NULL;
-	if (user_name != NULL)
-		freestr(user_name);
-	user_name = NULL;
-	if (group_name != NULL)
-		freestr(group_name);
-	group_name = NULL;
-	if (chroot_dir != NULL)
-		freestr(chroot_dir);
-	chroot_dir = NULL;
-	if (nsid_pool != NULL)
-		memput(nsid_pool, 0x10000 * (sizeof(u_int16_t)));
-	nsid_pool = NULL;
-	irs_destroy();
-	if (f != NULL) {
-		memstats(f);
-		(void)fclose(f);
-	}
-}
-	
-static void
-ns_exit(void) {
-	main_needs_exit++;
-}
-
-static void
-ns_restart(void) {
-	ns_info(ns_log_default, "named restarting");
-#ifdef BIND_UPDATE
-	dynamic_about_to_exit();
-#endif
-	if (server_options && server_options->pid_filename)
-		(void)unlink(server_options->pid_filename);
-	ns_logstats(ev, NULL, evNowTime(), evConsTime(0, 0));
-	if (NS_OPTION_P(OPTION_DEALLOC_ON_EXIT))
-		deallocate_everything();
-	else
-		shutdown_configuration();
-	execvp(saved_argv[0], saved_argv);
-	abort();
-}
-
-static void
-use_desired_debug(void) {
-#ifdef DEBUG
-	sigset_t set;
-
-	/* Protect against race conditions by blocking debugging signals. */
-
-	if (sigemptyset(&set) < 0) {
-		ns_error(ns_log_os,
-			 "sigemptyset failed in use_desired_debug: %s",
-			 strerror(errno));
-		return;
-	}
-	if (sigaddset(&set, SIGUSR1) < 0) {
-		ns_error(ns_log_os,
-			 "sigaddset SIGUSR1 failed in use_desired_debug: %s",
-			 strerror(errno));
-		return;
-	}
-	if (sigaddset(&set, SIGUSR2) < 0) {
-		ns_error(ns_log_os,
-			 "sigaddset SIGUSR2 failed in use_desired_debug: %s",
-			 strerror(errno));
-		return;
-	}
-	if (sigprocmask(SIG_BLOCK, &set, NULL) < 0) {
-		ns_error(ns_log_os,
-			 "sigprocmask to block USR1 and USR2 failed: %s",
-			 strerror(errno));
-		return;
-	}
-	setdebug(desired_debug);
-	if (sigprocmask(SIG_UNBLOCK, &set, NULL) < 0)
-		ns_error(ns_log_os,
-			 "sigprocmask to unblock USR1 and USR2 failed: %s",
-			 strerror(errno));
-#endif
-}
-
-void
-toggle_qrylog(void) {
-	qrylog = !qrylog;
-	ns_notice(ns_log_default, "query log %s\n", qrylog ?"on" :"off");
-}
-
-static void
-wild(void) {
-	ns_panic(ns_log_default, 1, "wild need", NULL);
-}
-
-/*
- * This is a functional interface to the global needs and options.
- */
-
-static void
-init_needs(void) {
-	int need;
-
-	for (need = 0; need < main_need_num; need++)
-		handlers[need] = wild;
-	handlers[main_need_zreload] = ns_zreload;
-	handlers[main_need_reload] = ns_reload;
-	handlers[main_need_reconfig] = ns_reconfig;
-	handlers[main_need_endxfer] = endxfer;
-	handlers[main_need_zoneload] = loadxfer;
-	handlers[main_need_dump] = doadump;
-	handlers[main_need_statsdump] = ns_stats;
-	handlers[main_need_exit] = ns_exit;
-	handlers[main_need_qrylog] = toggle_qrylog;
-	handlers[main_need_debug] = use_desired_debug;
-	handlers[main_need_restart] = ns_restart;
-	handlers[main_need_reap] = reapchild;
-	handlers[main_need_noexpired] = ns_noexpired;
-}
-
-static void
-handle_need(void) {
-	int need;
-
-	ns_debug(ns_log_default, 15, "handle_need()");
-	for (need = 0; need < main_need_num; need++)
-		if ((needs & (1 << need)) != 0) {
-			/* Turn off flag first, handlers ~turn~ it back on. */
-			block_signals();
-			needs &= ~(1 << need);
-			unblock_signals();
-			(handlers[need])();
-			return;
-		}
-	ns_panic(ns_log_default, 1, "handle_need() found no needs", NULL);
-}
-
-void
-ns_need(enum need need) {
-	block_signals();
-	ns_need_unsafe(need);
-	unblock_signals();
-}
-
-/* Note: this function should only be called with signals blocked. */
-void
-ns_need_unsafe(enum need need) {
-	needs |= (1 << need);
-}
-
-void
-ns_setoption(int option) {
-	ns_warning(ns_log_default, "used obsolete ns_setoption(%d)", option);
-}
-
-void
-writestream(struct qstream *sp, const u_char *msg, int msglen) {
-	if (sq_openw(sp, msglen + INT16SZ) == -1) {
-		sq_remove(sp);
-		return;
-	}
-	if (sq_write(sp, msg, msglen) == -1) {
-		sq_remove(sp);
-		return;
-	}
-	sq_writeh(sp, sq_flushw);
-}
-
-static int
-only_digits(const char *s) {
-	if (*s == '\0')
-		return (0);
-	while (*s != '\0') {
-		if (!isdigit(*s))
-			return (0);
-		s++;
-	}
-	return (1);
-}
-#if defined(__GNUC__) && defined(__BOUNDS_CHECKING_ON)
-	/* Use bounds checking malloc, etc. */
-void *
-memget(size_t len) {
-	return (malloc(len));
-}
-
-void
-memput(void *addr, size_t len) {
-	free(addr);
-}
-
-int
-meminit(size_t init_max_size, size_t target_size) {
-	return (0);
-}
-
-void *
-memget_debug(size_t size, const char *file, int line) {
-	void *ptr;
-	ptr = __memget(size);
-	fprintf(stderr, "%s:%d: memget(%lu) -> %p\n", file, line,
-		(u_long)size, ptr);
-	return (ptr);
-}
-
-void
-memput_debug(void *ptr, size_t size, const char *file, int line) {
-	fprintf(stderr, "%s:%d: memput(%p, %lu)\n", file, line, ptr,
-		(u_long)size);
-	__memput(ptr, size);
-}
-
-void
-memstats(FILE *out) {
-	fputs("No memstats\n", out);
-}
-#endif
-
-#ifndef HAVE_CUSTOM
-/* Standard implementation has nothing here */
-static void
-custom_init(void) {
-	/* Noop. */
-}
-
-static void
-custom_shutdown(void) {
-	/* Noop. */
-}
-#endif
diff --git a/contrib/bind/bin/named/ns_maint.c b/contrib/bind/bin/named/ns_maint.c
deleted file mode 100644
index 9b9e16e6a402c..0000000000000
--- a/contrib/bind/bin/named/ns_maint.c
+++ /dev/null
@@ -1,1935 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_maint.c	4.39 (Berkeley) 3/2/91";
-static const char rcsid[] = "$Id: ns_maint.c,v 8.103 2000/04/23 02:18:58 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1988
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/wait.h>
-#include <sys/stat.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <assert.h>
-#include <errno.h>
-#include <signal.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static int		nxfers(struct zoneinfo *, int),
-			bottom_of_zone(struct databuf *, int);
-
-static void		startxfer(struct zoneinfo *),
-			abortxfer(struct zoneinfo *),
-			tryxfer(void),
-			purge_z_2(struct hashbuf *, int);
-static int		purge_nonglue_2(const char *, struct hashbuf *,
-					int, int);
-
-#ifndef HAVE_SPAWNXFER
-static pid_t		spawnxfer(char **, struct zoneinfo *);
-#endif
-
-static time_t stats_time;  /* Redundant ??? XXX ogud */
-
-	/* State of all running zone transfers */
-static struct {
-	pid_t 	xfer_pid;
-	int	xfer_state; /* see below */
-	WAIT_T	xfer_status;
-} xferstatus[MAX_XFERS_RUNNING];
-
-#define XFER_IDLE	0
-#define XFER_RUNNING	1
-#define XFER_DONE	2
-
-
-/*
- * Perform routine zone maintenance.
- */
-void
-zone_maint(struct zoneinfo *zp) {
-	gettime(&tt);
-
-	ns_debug(ns_log_maint, 1, "zone_maint('%s'); now %lu",
-		 zp->z_origin[0] == '\0' ? "." : zp->z_origin,
-		 (u_long)tt.tv_sec);
-
-#ifdef DEBUG
-	if (debug >= 2)
-		printzoneinfo((zp - zones), ns_log_maint, 2);
-#endif
-
-	switch (zp->z_type) {
-			
-	case Z_SECONDARY:
-		/*FALLTHROUGH*/
-#ifdef STUBS
-	case Z_STUB:
-#endif
-		if (zp->z_serial != 0 &&
-		    ((zp->z_lastupdate+zp->z_expire) < (u_int32_t)tt.tv_sec)) {
-			if ((zp->z_flags & Z_NOTIFY) != 0)
-				ns_stopnotify(zp->z_origin, zp->z_class);
-			/* calls purge_zone */
-			do_reload(zp->z_origin, zp->z_type, zp->z_class, 0);
-			/* reset zone state */
-			if (!haveComplained((u_long)zp, (u_long)stale)) {
-				ns_notice(ns_log_default,
-					  "%s zone \"%s\" expired",
-					  zoneTypeString(zp->z_type),
-					  zp->z_origin);
-			}
-			zp->z_flags &= ~Z_AUTH;
-			zp->z_flags |= Z_EXPIRED;
-			zp->z_refresh = INIT_REFRESH;
-			zp->z_retry = INIT_REFRESH;
-			zp->z_serial = 0;
-		}
-		if ((zp->z_flags & (Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL)) != 0)
-		{
-			ns_retrytime(zp, tt.tv_sec);
-			break;
-		}
-		if (zp->z_flags & Z_XFER_RUNNING) {
-			abortxfer(zp);
-			/*
-			 * Check again in 30 seconds in case the first
-			 * abort doesn't work.
-			 */
-			if (zp->z_time != 0 && zp->z_time <= tt.tv_sec)
-				zp->z_time = tt.tv_sec + 30;
-			break;
-		}
-		/*
-		 * If we don't have the zone loaded or dialup is off 
-		 * or we attempted a qserial_query before and the queue was
-		 * full attempt to verify / load the zone.
-		 */
-		if ((zp->z_serial == 0) || (zp->z_flags & Z_NEED_QSERIAL) ||
-		    (zp->z_dialup == zdialup_no) || 
-		    (zp->z_dialup == zdialup_use_default && 
-		     NS_OPTION_P(OPTION_NODIALUP)))
-			qserial_query(zp);
-		else {
-			ns_info(ns_log_default, "Suppressed qserial_query(%s)",
-				*(zp->z_origin) ? zp->z_origin : ".");
-			ns_refreshtime(zp, tt.tv_sec);
-		}
-		break;
-
-#ifdef BIND_UPDATE
-	case Z_PRIMARY:
-		if ((zp->z_flags & Z_DYNAMIC) == 0)
-			break;
-		if (tt.tv_sec >= zp->z_soaincrtime &&
-		    zp->z_soaincrintvl > 0 &&
-		    zp->z_flags & Z_NEED_SOAUPDATE) {
-			if (incr_serial(zp) < 0) {
-				/* Try again later. */
-				ns_error(ns_log_maint,
-			      "error updating serial number for %s from %d",
-					 zp->z_origin,
-					 zp->z_serial);
-				zp->z_soaincrtime = 0;
-				(void)schedule_soa_update(zp, 0);
-			}
-			
-		}
-		if (tt.tv_sec >= zp->z_dumptime &&
-		    zp->z_dumpintvl > 0 &&
-		    zp->z_flags & Z_NEED_DUMP) {
-			if (zonedump(zp, ISNOTIXFR) < 0) {
-				/* Try again later. */
-				ns_error(ns_log_maint,
-				 "zone dump for '%s' failed, rescheduling",
-					 zp->z_origin);
-				zp->z_dumptime = 0;
-				(void)schedule_dump(zp);
-			}
-		} 
-		if (zp->z_maintain_ixfr_base)
-			ixfr_log_maint(zp);
-		break;
-#endif /* BIND_UPDATE */
-
-	default:
-		break;
-	}
-
-	/*
-	 * It is essential that we never try to set a timer in the past
-	 * or for now because doing so could cause an infinite loop.
-	 */
-	INSIST(zp->z_time == 0 || zp->z_time > tt.tv_sec);
-
-	sched_zone_maint(zp);
-}
-
-static void
-do_zone_maint(evContext ctx, void *uap, struct timespec due,
-	      struct timespec inter) {
-	ztimer_info zti = uap;
-	struct zoneinfo *zp;
-
-	INSIST(zti != NULL);
-	
-	ns_debug(ns_log_maint, 1, "do_zone_maint for zone %s (class %s)",
-		 zti->name, p_class(zti->class));
-	zp = find_zone(zti->name, zti->class);
-	if (zp == NULL) {
-		ns_error(ns_log_maint,
-		 "do_zone_maint: %s zone '%s' (class %s) is not authoritative",
-			 zoneTypeString(zti->type), zti->name,
-			 p_class(zti->class));
-		return;
-	}
-	if (zp->z_type != zti->type) {
-		ns_error(ns_log_maint,
-		 "do_zone_maint: %s zone '%s' (class %s) has changed its type",
-			 zoneTypeString(zti->type), zti->name,
-			 p_class(zti->class));
-		return;
-	}
-
-	free_zone_timerinfo(zp);
-
-	zp->z_flags &= ~Z_TIMER_SET;
-	zone_maint(zp);
-}
-
-/*
- * Figure out the next maintenance time for the zone and set a timer.
- */
-void
-sched_zone_maint(struct zoneinfo *zp) {
-	time_t next_maint = (time_t)0;
-	ztimer_info zti;
-
-	if (zp->z_time != 0)
-		next_maint = zp->z_time;
-#ifdef BIND_UPDATE
-	if (zp->z_type == z_master && (zp->z_flags & Z_DYNAMIC) != 0) {
-		if (zp->z_soaincrintvl > 0 && 
-		    (next_maint == 0 || next_maint > zp->z_soaincrtime))
-			next_maint = zp->z_soaincrtime;
-		if (zp->z_dumpintvl > 0 &&
-		    (next_maint == 0 || next_maint > zp->z_dumptime))
-			next_maint = zp->z_dumptime;
-	}
-#endif
-
-	if (next_maint != 0) {
-		if (next_maint < tt.tv_sec)
-			next_maint = tt.tv_sec;
-
-		if (zp->z_flags & Z_TIMER_SET) {
-			if (next_maint == zp->z_nextmaint) {
-				ns_debug(ns_log_maint, 1,
-					 "no schedule change for zone '%s'",
-					 zp->z_origin[0] == '\0' ? "." :
-					 zp->z_origin);
-				return;
-			}
-
-			if (evResetTimer(ev, zp->z_timer,
-					 do_zone_maint, zp->z_timerinfo,
-					 evConsTime(next_maint, 0),
-					 evConsTime(0, 0)) < 0) {
-				ns_error(ns_log_maint,
-		 "evChangeTimer failed in sched_zone_maint for zone '%s': %s",
-					 zp->z_origin[0] == '\0' ? "." :
-					 zp->z_origin,
-					 strerror(errno));
-				return;
-			}
-		} else {
-			zti = (ztimer_info)memget(sizeof *zti);
-			if (zti == NULL)
-				ns_panic(ns_log_maint, 1,
-				       "memget failed in sched_zone_maint");
-			zti->name = savestr(zp->z_origin, 1);
-			zti->class = zp->z_class;
-			zti->type = zp->z_type;
-			if (evSetTimer(ev, do_zone_maint, zti,
-				       evConsTime(next_maint, 0),
-				       evConsTime(0, 0), &zp->z_timer) < 0) {
-				ns_error(ns_log_maint,
-		 "evSetTimer failed in sched_zone_maint for zone '%s': %s",
-					 zp->z_origin[0] == '\0' ? "." :
-					 zp->z_origin,
-					 strerror(errno));
-				return;
-			}
-			zp->z_flags |= Z_TIMER_SET;
-			zp->z_timerinfo = zti;
-		}
-		ns_debug(ns_log_maint, 1,
-			 "next maintenance for zone '%s' in %lu sec",
-			 zp->z_origin[0] == '\0' ? "." : zp->z_origin,
-			 (u_long)(next_maint - tt.tv_sec));
-	} else {
-		if (zp->z_flags & Z_TIMER_SET) {
-			free_zone_timerinfo(zp);
-			if (evClearTimer(ev, zp->z_timer) < 0)
-				ns_error(ns_log_maint,
-		 "evClearTimer failed in sched_zone_maint for zone '%s': %s",
-					 zp->z_origin[0] == '\0' ? "." :
-					 zp->z_origin,
-					 strerror(errno));
-			zp->z_flags &= ~Z_TIMER_SET;
-		}
-		ns_debug(ns_log_maint, 1,
-			 "no scheduled maintenance for zone '%s'",
-			 zp->z_origin[0] == '\0' ? "." : zp->z_origin);
-	}
-	zp->z_nextmaint = next_maint;
-}
-
-void
-ns_cleancache(evContext ctx, void *uap,
-	      struct timespec due,
-	      struct timespec inter)
-{
-	int deleted;
-
-	gettime(&tt);
-	INSIST(uap == NULL);
-	deleted = clean_cache(hashtab, 0);
-	ns_info(ns_log_maint, "Cleaned cache of %d RRset%s",
-		deleted, (deleted==1) ? "" : "s");
-}
-
-void
-ns_heartbeat(evContext ctx, void *uap, struct timespec due,
-	     struct timespec inter)
-{
-	struct zoneinfo *zp;
-
-	gettime(&tt);
-	INSIST(uap == NULL);
-
-	for (zp = zones; zp < &zones[nzones]; zp++) {
-		enum zonetype zt = zp->z_type;
-
-		if ((zt == z_nil) ||
-		    (zp->z_dialup == zdialup_no) ||
-		    (zp->z_dialup == zdialup_use_default && 
-		     NS_OPTION_P(OPTION_NODIALUP)))
-			continue;
-		/*
-		 * Perform the refresh query that was suppressed.
-		 */
-		if ((zt == z_slave || zt == z_stub) &&
-		    (zp->z_flags &
-		     (Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL|Z_XFER_RUNNING)
-		     ) == 0) {
-			ns_info(ns_log_default,
-				"Heartbeat: qserial \"%s\"",
-				*(zp->z_origin) ? zp->z_origin : ".");
-			qserial_query(zp);
-		}
-#ifdef BIND_NOTIFY
-		/*
-		 * Trigger a refresh query while the link is up by
-		 * sending a notify.
-		 */
-		if (((zp->z_notify == znotify_yes) ||
-		     ((zp->z_notify == znotify_use_default) &&
-		      !NS_OPTION_P(OPTION_NONOTIFY))) &&
-		    (zt == z_master || zt == z_slave) && !loading &&
-		    ((zp->z_flags & Z_AUTH) != 0))
-			ns_notify(zp->z_origin, zp->z_class, ns_t_soa);
-#endif
-	}
-}
-
-
-/*
- * Mark a zone "up to date" after named-xfer tells us this or we
- * discover it through the qserial_*() logic.
- * The caller is responsible for calling sched_zone_maint(zp).
- */
-static void
-markUpToDate(struct zoneinfo *zp) {
-	struct stat f_time;
-
-	zp->z_flags &= ~Z_SYSLOGGED;
-	zp->z_lastupdate = tt.tv_sec;
-	ns_refreshtime(zp, tt.tv_sec);
-	/*
-	 * Restore Z_AUTH in case expired,
-	 * but only if there were no errors
-	 * in the zone file.
-	 */
-	if ((zp->z_flags & Z_DB_BAD) == 0) {
-		zp->z_flags |= Z_AUTH;
-		zp->z_flags &= ~Z_EXPIRED;
-	}
-	if (zp->z_source) {
-		struct timeval t[2];
-
-		t[0] = tt;
-		t[1] = tt;
-		(void) utimes(zp->z_source, t);
-	}
-	/* we use "stat" to set zp->z_ftime instead of just
-	   setting it to tt.tv_sec in order to avoid any
-	   possible rounding problems in utimes(). */
-	if (stat(zp->z_source, &f_time) != -1)
-		zp->z_ftime = f_time.st_mtime;
-	/* XXX log if stat fails? */
-}
-
-void
-qserial_retrytime(struct zoneinfo *zp, time_t timebase) {
-	zp->z_time = timebase + 5 + (rand() % 25);
-}
-
-/*
- * Query for the serial number of a zone, so that we can check to see if
- * we need to transfer it.  If there are too many outstanding serial
- * number queries, we'll try again later.
- * The caller is responsible for calling sched_zone_maint(zp).
- */
-void
-qserial_query(struct zoneinfo *zp) {
-	struct qinfo *qp;
-
-	ns_debug(ns_log_default, 1, "qserial_query(%s)", zp->z_origin);
-
-	if (qserials_running >= server_options->serial_queries) {
-		qserial_retrytime(zp, tt.tv_sec);
-		zp->z_flags |= Z_NEED_QSERIAL;
-		return;
-	}
-
-	qp = sysquery(zp->z_origin, zp->z_class, T_SOA,
-		      zp->z_addr, zp->z_addrcnt,
-		      ntohs(zp->z_port) ? zp->z_port : ns_port,
-		      QUERY);
-	if (qp == NULL) {
-		ns_debug(ns_log_default, 1,
-			 "qserial_query(%s): sysquery FAILED",
-			 zp->z_origin);
-		/* XXX - this is bad, we should do something */
-		qserial_retrytime(zp, tt.tv_sec);
-		zp->z_flags |= Z_NEED_QSERIAL;
-		return;
-	}
-	qp->q_flags |= Q_ZSERIAL;
-	qp->q_zquery = zp;
-	zp->z_flags |= Z_QSERIAL;
-	zp->z_flags &= ~Z_NEED_QSERIAL;
-	zp->z_xaddrcnt = 0;
-	ns_refreshtime(zp, tt.tv_sec);
-	qserials_running++;
-	ns_debug(ns_log_default, 1, "qserial_query(%s) QUEUED", zp->z_origin);
-}
-
-static int
-qserv_compare(const void *a, const void *b) {
-	const struct qserv *qs1 = a, *qs2 = b;
-	u_int32_t s1 = qs1->serial, s2 = qs2->serial;
-
-	/* Note that we sort the "best" serial numbers to the front. */
-	if (s1 == s2)
-		return (0);
-	if (s1 == 0)
-		return (-1);
-	if (s2 == 0)
-		return (1);
-	if (!SEQ_GT(s1, s2))
-		return (1);
-	assert(SEQ_GT(s1, s2));
-	return (-1);
-}
-
-void
-qserial_answer(struct qinfo *qp) {
-	struct zoneinfo *zp = qp->q_zquery;
-	struct qserv *qs = NULL;
-	u_int32_t serial = 0;
-	int n, cnt = 0;
-
-	/* Take this query out of the global quotas. */
-	zp->z_flags &= ~Z_QSERIAL;
-	qp->q_flags &= ~Q_ZSERIAL;	/* keeps us from being called twice */
-	qserials_running--;
-
-	/* Find best serial among those returned. */
-	for (n = 0; n < qp->q_naddr; n++) {
-		qs = &qp->q_addr[n];
-		ns_debug(ns_log_default, 1, "qserial_answer(%s): [%s] -> %lu",
-			 zp->z_origin, inet_ntoa(qs->ns_addr.sin_addr),
-			 qs->serial);
-		/* Don't consider serials which weren't set by a response. */
-		if (qs->serial == 0)
-			continue;
-		/* Count valid answers. */
-		cnt++;
-		/* Remove from consideration serials which aren't "better." */
-		if (zp->z_serial != 0 && !SEQ_GT(qs->serial, zp->z_serial)) {
-			if (serial == 0 && qs->serial == zp->z_serial)
-				serial = qs->serial;
-
-			if (qs->serial != zp->z_serial)
-				ns_notice(ns_log_xfer_in,
- "Zone \"%s\" (%s) SOA serial# (%lu) rcvd from [%s] is < ours (%lu)%s",
-					  zp->z_origin, p_class(zp->z_class),
-					  qs->serial,
-					  inet_ntoa(qs->ns_addr.sin_addr),
-					  zp->z_serial, qp->q_naddr != 1 ?
-							": skipping" : "");
-			qs->serial = 0;
-			continue;
-		}
-		if (serial == 0 || SEQ_GT(qs->serial, serial))
-			serial = qs->serial;
-	}
-
-	/* If we have an existing serial number, then sort by "better." */
-	if (zp->z_serial != 0) {
-		qsort(qp->q_addr, qp->q_naddr, sizeof(struct qserv),
-		      qserv_compare);
-		for (n = 0; n < qp->q_naddr; n++) {
-			qs = &qp->q_addr[n];
-			ns_debug(ns_log_default, 1,
-				 "qserial_answer after sort: [%s] -> %lu",
-				 inet_ntoa(qs->ns_addr.sin_addr),
-				 qs->serial);
-		}
-	}
-
-	/* Now see about kicking off an inbound transfer. */
-	if (serial == 0) {
-		/* An error occurred, or the all queries timed out. */
-		if (qp->q_naddr != cnt)
-			ns_info(ns_log_xfer_in,
-				"Err/TO getting serial# for \"%s\"",
-				zp->z_origin);
-		addxfer(zp);
-	} else if (zp->z_serial == 0 || SEQ_GT(serial, zp->z_serial)) {
-		ns_debug(ns_log_xfer_in, 1,
-			 "qserial_answer: zone is out of date");
-		/* Use all servers whose serials are better than ours. */
-		zp->z_xaddrcnt = 0;
-		for (n = 0; n < qp->q_naddr; n++) {
-			qs = &qp->q_addr[n];
-			if (qs->serial != 0)
-				zp->z_xaddr[zp->z_xaddrcnt++] =
-					qs->ns_addr.sin_addr;
-		}
-		addxfer(zp);
-	} else if (zp->z_serial == serial) {
-		ns_debug(ns_log_xfer_in, 1,
-			 "qserial_answer: zone serial is still OK");
-		markUpToDate(zp);
-		sched_zone_maint(zp);
-	}
-}
-
-/*
- * Writes TSIG key info for an address to a file, optionally opening it first.
- */
-static int
-write_tsig_info(struct in_addr addr, char *name, int *fd, int creat_failed) {
-	server_info si;
-	DST_KEY *dst_key;
-	int tsig_fd = *fd;
-	char tsig_str[1024], secret_buf64[172];
-	u_char secret_buf[128];
-	int secret_len;
-
-	si = find_server(addr);
-	if (si == NULL || si->key_list == NULL || si->key_list->first == NULL)
-		return(0);
-	dst_key = si->key_list->first->key;
-	if (tsig_fd < 0 && creat_failed == 0) {
-		*fd = tsig_fd = creat(name, S_IRUSR);
-		if (tsig_fd < 0) {
-			ns_warning(ns_log_default,
-			     "write_tsig_info: creat(%s) for TSIG info failed",
-				   name);
-			return(-1);
-		}
-		(void) fchown(tsig_fd, user_id, group_id);
-	}
-	if (creat_failed != 0)
-		return(-1);
-	memset(secret_buf, 0, sizeof(secret_buf));
-	secret_len = dst_key_to_buffer(dst_key, secret_buf, sizeof(secret_buf));
-	b64_ntop(secret_buf, secret_len, secret_buf64, sizeof(secret_buf64));
-	sprintf(tsig_str, "%s\n%s\n%d\n%s\n",
-		inet_ntoa(addr), dst_key->dk_key_name, dst_key->dk_alg,
-			secret_buf64);
-	write(tsig_fd, tsig_str, strlen(tsig_str));
-	return (0);
-}
-
-/*
- * Start an asynchronous zone transfer for a zone.  Depends on current time
- * being in tt.  Caller must do a sched_zone_maint(zp) after we return.
- */
-static void
-startxfer(struct zoneinfo *zp) {
-	char *argv[NSMAX*2 + 20], argv_ns[NSMAX][MAXDNAME];
-	int argc = 0, argc_ns = 0, i;
-	pid_t pid;
-	u_int cnt;
-	char debug_str[10];
-	char serial_str[10];
-	char port_str[10];
-	char class_str[10];
-	char src_str[20];
-	int tsig_fd = -1;
-	char tsig_name[MAXPATHLEN+1], *s;
-	int tsig_ret = 0;
-
-	ns_debug(ns_log_default, 1, "startxfer() %s",
-		 zp->z_origin[0] != '\0' ? zp->z_origin : ".");
-
-	argv[argc++] = server_options->named_xfer;
-	argv[argc++] = "-z";
-	argv[argc++] = zp->z_origin;
-	argv[argc++] = "-f";
-	argv[argc++] = zp->z_source;
-#ifdef BIND_IXFR
-	if (zp->z_ixfr_tmp) {
- 		argv[argc++] = "-i";
- 		argv[argc++] = zp->z_ixfr_tmp;
-	}
-#endif
-	if (zp->z_serial != 0) {
-		argv[argc++] = "-s";
-		sprintf(serial_str, "%u", zp->z_serial);
-		argv[argc++] = serial_str;
-	}
-	if (zp->z_axfr_src.s_addr != 0 ||
-	    server_options->axfr_src.s_addr != 0) {
-		argv[argc++] = "-x";
-		argv[argc++] = strcpy(src_str, inet_ntoa(
-			(zp->z_axfr_src.s_addr != 0) ? zp->z_axfr_src :
-			server_options->axfr_src));
-	}
-	argv[argc++] = "-C";
-	sprintf(class_str, "%d", zp->z_class);
-	argv[argc++] = class_str;
- 	if (zp->z_flags & Z_SYSLOGGED)
-		argv[argc++] = "-q";
-	argv[argc++] = "-P";
-	sprintf(port_str, "%d", ntohs(zp->z_port) != 0 ? zp->z_port : ns_port);
-	argv[argc++] = port_str;
-	argv[argc++] = "-T";
-	sprintf(tsig_name, "%s.%d", zp->z_origin, getpid());
-	s = tsig_name;
-	while ((s = strchr(s, '/')) != NULL)
-		*s = '_';
-	argv[argc++] = tsig_name;
-#ifdef STUBS
-	if (zp->z_type == Z_STUB)
-		argv[argc++] = "-S";
-#endif
-#ifdef DEBUG
-	if (debug) {
-		argv[argc++] = "-d";
-		sprintf(debug_str, "%d", debug);
-		argv[argc++] = debug_str;
-		argv[argc++] = "-l";
-		argv[argc++] = _PATH_XFERDDT;
-		if (debug > 5) {
-			argv[argc++] = "-t";
-			argv[argc++] = _PATH_XFERTRACE;
-		}
-	}
-#endif
-	
-	if (zp->z_xaddrcnt == 0) {
-		for (zp->z_xaddrcnt = 0;
-		     zp->z_xaddrcnt < zp->z_addrcnt;
-		     zp->z_xaddrcnt++)
-			zp->z_xaddr[zp->z_xaddrcnt] =
-				zp->z_addr[zp->z_xaddrcnt];
-	}
-	/*
-	 * Copy the server ip addresses into argv, after converting
-	 * to ascii and saving the static inet_ntoa result.
-	 * Also, send TSIG key info into a file for the child.
-	 */
-	for (cnt = 0; cnt < zp->z_xaddrcnt; cnt++) {
-		struct in_addr a;
-
-		a = zp->z_xaddr[cnt];
-		if (aIsUs(a) && ns_port == zp->z_port) {
-			if (!haveComplained((u_long)zp, (u_long)startxfer))
-				ns_notice(ns_log_default,
-				   "attempted to fetch zone %s from self (%s)",
-					  zp->z_origin, inet_ntoa(a));
-			continue;
-		}
-		argv[argc++] = strcpy(argv_ns[argc_ns++], inet_ntoa(a));
-#ifdef BIND_IXFR
-		if (zp->z_ixfr_tmp != NULL) {
-			server_info si = find_server(a);
-
-			if (si != NULL &&
-			    (si->flags & SERVER_INFO_SUPPORT_IXFR) != 0)
-				argv[argc++] = "ixfr";
-			else
-				argv[argc++] = "axfr";
-		}
-#endif
-		tsig_ret = write_tsig_info(a, tsig_name, &tsig_fd, tsig_ret);
-	}
-	if (tsig_fd > 0)
-		close(tsig_fd);
-
-	argv[argc] = NULL;
-
-#ifdef DEBUG
-	if (debug >= 1) {
-		char buffer[1024];
-		char *curr, *last;
-		int len;
-		
-		curr = buffer;
-		last = &buffer[sizeof buffer - 1]; /* leave room for \0 */
-		for (i = 0; i < argc; i++) {
-			len = strlen(argv[i]);
-			if (curr + len + 1 >= last) {
-				ns_debug(ns_log_xfer_in, 1,
-					 "xfer args debug printout truncated");
-				break;
-			}
-			strncpy(curr, argv[i], len);
-			curr += len;
-			*curr = ' ';
-			curr++;
-		}
-		*curr = '\0';
-		ns_debug(ns_log_xfer_in, 1, buffer);
-	}
-#endif /* DEBUG */
-
-	gettime(&tt);
-	for (i = 0; i < MAX_XFERS_RUNNING; i++)
-		if (xferstatus[i].xfer_pid == 0)
-			break;
-	if (i == MAX_XFERS_RUNNING) {
-		ns_warning(ns_log_default,
-			   "startxfer: too many xfers running");
-		zp->z_time = tt.tv_sec + 10;
-		(void)nxfers(zp, -1);
-		return;
-	}
-	
-	if ((pid = spawnxfer(argv, zp)) == -1)
-		unlink(tsig_name);
-	
-	xferstatus[i].xfer_state = XFER_RUNNING;
-	xferstatus[i].xfer_pid = pid;  /* XXX - small race condition here if we
-					* can't hold signals */
-	ns_debug(ns_log_default, 1, "started xfer child %d", pid);
-	zp->z_flags &= ~Z_NEED_XFER;
-	zp->z_flags |= Z_XFER_RUNNING;
-	zp->z_xferpid = pid;
-	xfers_running++;
-	if (zp->z_max_transfer_time_in)
-		zp->z_time = tt.tv_sec + zp->z_max_transfer_time_in;
-	else
-		zp->z_time = tt.tv_sec + server_options->max_transfer_time_in;
-}
-
-const char *
-zoneTypeString(u_int type) {
-	static char ret[sizeof "(4294967296?)"];	/* 2^32 */
-
-	switch (type) {
-	case Z_MASTER:		return ("master");
-	case Z_SLAVE:		return ("slave");
-#ifdef STUBS
-	case Z_STUB:		return ("stub");
-#endif
-	case Z_HINT:		return ("hint");
-	case Z_CACHE:		return ("cache");
-	case Z_FORWARD:		return ("forward");
-	default:
-		sprintf(ret, "(%u?)", type);
-		return (ret);
-	}
-}
-
-#ifdef DEBUG
-void
-printzoneinfo(int zonenum, int category, int level) {
-	struct timeval  tt;
-	struct zoneinfo *zp = &zones[zonenum];
-
-	if (debug == 0)
-		return;
-
-	if (!zp->z_origin)
-		return;
-
-	gettime(&tt);
-
-	ns_debug(category, level, "zone %d: %s, class %s, type %s", zonenum,
-		 zp->z_origin[0] ? zp->z_origin : ".",
-		 p_class(zp->z_class), zoneTypeString(zp->z_type));
-	if (zp->z_source)
-		ns_debug(category, level, "\tsource %s", zp->z_source);
-	ns_debug(category, level, "\tflags %lx, serial %u, minimum %u",
-		 (u_long)zp->z_flags, zp->z_serial, zp->z_minimum);
-	ns_debug(category, level, "\trefresh %u, retry %u, expire %u",
-		 zp->z_refresh, zp->z_retry, zp->z_expire);
-	if (zp->z_time)
-		ns_debug(category, level, "\tz_time %lu (now %lu, left: %lu)",
-			 zp->z_time, (u_long)tt.tv_sec,
-			 (u_long)(zp->z_time - tt.tv_sec));
-	else
-		ns_debug(category, level, "\tz_time %lu", zp->z_time);
-#ifdef BIND_UPDATE
-	if (zp->z_type == z_master && (zp->z_flags & Z_DYNAMIC) != 0) {
-		ns_debug(category, level,
-			 "\tdumpintvl %lu, soaincrintvl %lu deferupdcnt %lu",
-			 zp->z_dumpintvl, zp->z_soaincrintvl,
-			 zp->z_deferupdcnt);
-		if (zp->z_soaincrtime)
-			ns_debug(category, level,
-				 "\tz_soaincrtime %lu (now %lu, left: %lu)",
-				 zp->z_soaincrtime, (u_long)tt.tv_sec,
-				 (u_long)(zp->z_soaincrtime - tt.tv_sec));
-		else
-			ns_debug(category, level, "\tz_soaincrtime %lu",
-				 zp->z_soaincrtime);
-		if (zp->z_dumptime)
-			ns_debug(category, level,
-				 "\tz_dumptime %lu (now %lu, left: %lu)",
-				 zp->z_dumptime, (u_long)tt.tv_sec,
-				 (u_long)(zp->z_dumptime - tt.tv_sec));
-		else
-			ns_debug(category, level, "\tz_dumptime %lu",
-				 zp->z_dumptime);
-	}
-#endif
-}
-#endif /* DEBUG */
-
-/*
- * Remove all cached data below dname, class independent.
- */
-void
-clean_cache_from(char *dname, struct hashbuf *htp) {
-	const char *fname;
-	struct databuf *dp, *pdp;
-	struct namebuf *np;
-	struct hashbuf *phtp = htp;
-	int root_zone = 0;
-
-	ns_debug(ns_log_default, 1, "clean_cache_from(%s)", dname);
-	if ((np = nlookup(dname, &phtp, &fname, 0)) && dname == fname &&
-	    !ns_wildcard(NAME(*np))) {
-		for (pdp = NULL, dp = np->n_data; dp != NULL; (void)NULL) {
-			if (dp->d_zone == DB_Z_CACHE)
-				dp = rm_datum(dp, np, pdp, NULL);
-			else {
-				pdp = dp;
-				dp = dp->d_next;
-			}
-		}
-
-		if (*dname == '\0')
-			root_zone = 1;
-
-		if (np->n_hash != NULL || root_zone) {
-			struct hashbuf *h;
-
-			if (root_zone)
-				h = htp;
-			else
-				h = np->n_hash;
-			(void)clean_cache(h, 1);
-			if (h->h_cnt == 0 && !root_zone) {
-				rm_hash(np->n_hash);
-				np->n_hash = NULL;
-			}
-		}
-		
-		if (!root_zone && np->n_hash == NULL && np->n_data == NULL)
-			(void) purge_node(htp, np);
-	}
-}
-
-/* clean_cache(htp, all)
- *	Scan the entire cache looking for expired TTL's on nonauthoritative
- *	data, and remove it.  if `all' is true, ignore TTL and rm everything.
- * notes:
- *	this should be lazy and eventlib driven.
- * return:
- *	number of deleted RRs (all=1) or RRsets (all=0).
- */
-int
-clean_cache(struct hashbuf *htp, int all) {
-	struct databuf *dp, *pdp;
-	struct namebuf *np, *pnp, *npn;
-	struct namebuf **npp, **nppend;
-	int deleted = 0;
-
-	nppend = htp->h_tab + htp->h_size;
-	for (npp = htp->h_tab; npp < nppend; npp++) {
-		for (pnp = NULL, np = *npp; np != NULL; np = npn) {
- again:
-			for (pdp = NULL, dp = np->n_data; dp != NULL;
-			     (void)NULL) {
-				if (all && dp->d_zone == DB_Z_CACHE) {
-					dp = rm_datum(dp, np, pdp, NULL);
-					deleted++;
-				} else if (dp->d_zone == DB_Z_CACHE && 
-					   stale(dp)) {
-					delete_all(np, dp->d_class, dp->d_type);
-					deleted++;
-					goto again;
-				} else {
-					pdp = dp;
-					dp = dp->d_next;
-				}
-			} /*for(pdp)*/
-
-			if (np->n_hash) {
-				/* Call recursively to remove subdomains. */
-				deleted += clean_cache(np->n_hash, all);
-
-				/* If now empty, free it */
-				if (np->n_hash->h_cnt == 0) {
-					rm_hash(np->n_hash);
-					np->n_hash = NULL;
-				}
-			}
-
-			if (np->n_hash == NULL && np->n_data == NULL) {
-				npn = rm_name(np, npp, pnp);
-				htp->h_cnt--;
-			} else {
-				npn = np->n_next;
-				pnp = np;
-			}
-		} /*for(pnp)*/
-	} /*for(npp)*/
-	return (deleted);
-}
-
-/* struct namebuf *
- * purge_node(htp, np)
- *	Remove entry from cache.
- * Prerequisites:
- *	Node is empty and has no children.
- * Paramters:
- *	htp - root of recursive hash table this node is part of.
- *	np - the node to be deleted.
- * Return:
- *	pointer to parent.
- */
-struct namebuf *
-purge_node(struct hashbuf *htp, struct namebuf *np) {
-	struct namebuf **npp, **nppend;
-	struct namebuf *npn, *pnp, *nnp, *parent;
-	struct hashbuf *phtp;
-
-	ns_debug(ns_log_default, 3, "purge_node: cleaning cache");
-	INSIST(np->n_hash == NULL && np->n_data == NULL);
-
-	/* Walk parent hashtable looking for ourself. */
-	parent = np->n_parent; 
-	if (parent != NULL)
-		phtp = parent->n_hash;
-	else 
-		phtp = htp;
-
-	if (phtp == NULL) {
-		/* XXX why shouldn't we panic? */
-	} else {
-		nppend = phtp->h_tab + phtp->h_size;
-		for (npp = phtp->h_tab; npp < nppend; npp++) {
-			for (pnp = NULL, nnp = *npp; nnp != NULL; nnp = npn) {
-				if (nnp == np) {
-					ns_debug(ns_log_default, 3,
-						 "purge_node: found ourself");
-					npn = rm_name(nnp, npp, pnp);
-					phtp->h_cnt--;
-				} else {
-					npn = nnp->n_next;
-					pnp = nnp;
-				}
-			}
-		}
-	}
-	return (parent);
-}
-
-void
-remove_zone(struct zoneinfo *zp, const char *verb) {
-#ifdef BIND_UPDATE
-	/*
-	 * A dynamic zone might have changed, so we
-	 * need to dump it before removing it.
-	 */
-	if ((zp->z_flags & Z_DYNAMIC) != 0 &&
-	    ((zp->z_flags & Z_NEED_SOAUPDATE) != 0 ||
-	     (zp->z_flags & Z_NEED_DUMP) != 0))
-		(void) zonedump(zp, ISNOTIXFR);
-#endif
-	if ((zp->z_flags & Z_NOTIFY) != 0)
-		ns_stopnotify(zp->z_origin, zp->z_class);
-	ns_stopxfrs(zp);
-	do_reload(zp->z_origin, zp->z_type, zp->z_class, 1);
-	ns_notice(ns_log_config, "%s zone \"%s\" (%s) %s",
-		  zoneTypeString(zp->z_type), zp->z_origin,
-		  p_class(zp->z_class), verb);
-	free_zone_contents(zp, 1);
-	memset(zp, 0, sizeof(*zp));
-	zp->z_type = z_nil;  /* Pedantic; memset() did it. */
-	INIT_LINK(zp, z_reloadlink);
-	free_zone(zp);
-}
-
-int
-purge_nonglue(const char *dname, struct hashbuf *htp, int class) {
-	const char *fname;
-	struct namebuf *np;
-	struct hashbuf *phtp = htp;
-	int root_zone = 0;
-	int errs = 0;
-
-	ns_debug(ns_log_default, 1, "purge_zone(%s,%d)", dname, class);
-	if ((np = nlookup(dname, &phtp, &fname, 0)) && dname == fname &&
-	    !ns_wildcard(NAME(*np))) {
-
-		if (*dname == '\0')
-			root_zone = 1;
-
-		if (np->n_hash != NULL || root_zone) {
-			struct hashbuf *h;
-
-			if (root_zone)
-				h = htp;
-			else
-				h = np->n_hash;
-			errs += purge_nonglue_2(dname, h, class, 0);
-			if (h->h_cnt == 0 && !root_zone) {
-				rm_hash(np->n_hash);
-				np->n_hash = NULL;
-			}
-		}
-	}
-	return (errs);
-}
-
-static int
-valid_glue(struct databuf *dp, char *name, int belowcut) {
-
-	/* NS records are only valid glue at the zone cut */
-	if (belowcut && dp->d_type == T_NS)
-		return(0);
-
-	if (ISVALIDGLUE(dp))	/* T_NS/T_A/T_AAAA/T_A6 */
-		return (1);
-
-	if (belowcut)
-		return (0);
-
-	/* Parent NXT record? */
-	if (dp->d_type == T_NXT && !ns_samedomain((char*)dp->d_data, name) &&
-	    ns_samedomain((char*)dp->d_data, zones[dp->d_zone].z_origin))
-		return (1);
-
-	/* NOKEY is in parent zone otherwise child zone */
-	if (dp->d_type == T_KEY && dp->d_size == 4 &&
-	    (dp->d_data[0] & 0xc6) == 0xc2)
-		return (1);
-
-	/* NXT & KEY records may be signed */
-	if (!belowcut && dp->d_type == T_SIG &&
-	    (SIG_COVERS(dp) == T_NXT || SIG_COVERS(dp) == T_KEY))
-		return (1);
-	return (0);
-}
-
-static int
-purge_nonglue_2(const char *dname, struct hashbuf *htp, int class,
-	        int belowcut)
-{
-	struct databuf *dp, *pdp;
-	struct namebuf *np, *pnp, *npn;
-	struct namebuf **npp, **nppend;
-	int errs = 0;
-	int zonecut;
-	char name[MAXDNAME];
-
-	nppend = htp->h_tab + htp->h_size;
-	for (npp = htp->h_tab; npp < nppend; npp++) {
-		for (pnp = NULL, np = *npp; np != NULL; np = npn) {
-			if (!bottom_of_zone(np->n_data, class)) {
-				zonecut = belowcut;
-				for (dp = np->n_data; dp != NULL;
-				     dp = dp->d_next) {
-					if (match(dp, class, ns_t_ns)) {
-						zonecut = 1;
-						break;
-					}
-				}
-				getname(np, name, sizeof name);
-				for (pdp = NULL, dp = np->n_data;
-				     dp != NULL;
-				     (void)NULL) {
-					if (dp->d_class == class &&
-					    zonecut &&
-					    !valid_glue(dp, name, belowcut)) {
-						ns_error(ns_log_db,
-	        "zone: %s/%s: non-glue record %s bottom of zone: %s/%s",
-							 *dname ? dname : ".",
-						         p_class(dp->d_class),
-							 belowcut ? "below" :
-								    "at",
-							 *name ? name : ".",
-							 p_type(dp->d_type));
-						dp = rm_datum(dp, np, pdp, 
-							      NULL);
-						errs++;
-					} else {
-						pdp = dp;
-						dp = dp->d_next;
-					}
-				}
-				if (np->n_hash) {
-					/*
-					 * call recursively to clean
-					 * subdomains
-					 */
-					errs += purge_nonglue_2(dname,
-								np->n_hash,
-								class,
-								zonecut || 
-								belowcut);
-
-					/* if now empty, free it */
-					if (np->n_hash->h_cnt == 0) {
-						rm_hash(np->n_hash);
-						np->n_hash = NULL;
-					}
-				}
-			}
-
-			if (np->n_hash == NULL && np->n_data == NULL) {
-				npn = rm_name(np, npp, pnp);
-				htp->h_cnt--;
-			} else {
-				npn = np->n_next;
-				pnp = np;
-			}
-		}
-	}
-	return (errs);
-}
-
-void
-purge_zone(const char *dname, struct hashbuf *htp, int class) {
-	const char *fname;
-	struct databuf *dp, *pdp;
-	struct namebuf *np;
-	struct hashbuf *phtp = htp;
-	int root_zone = 0;
-
-	ns_debug(ns_log_default, 1, "purge_zone(%s,%d)", dname, class);
-	if ((np = nlookup(dname, &phtp, &fname, 0)) && dname == fname &&
-	    !ns_wildcard(NAME(*np))) {
-		for (pdp = NULL, dp = np->n_data; dp != NULL; (void)NULL) {
-			if (dp->d_class == class)
-				dp = rm_datum(dp, np, pdp, NULL);
-			else {
-				pdp = dp;
-				dp = dp->d_next;
-			}
-		}
-
-		if (*dname == '\0')
-			root_zone = 1;
-
-		if (np->n_hash != NULL || root_zone) {
-			struct hashbuf *h;
-
-			if (root_zone)
-				h = htp;
-			else
-				h = np->n_hash;
-			purge_z_2(h, class);
-			if (h->h_cnt == 0 && !root_zone) {
-				rm_hash(np->n_hash);
-				np->n_hash = NULL;
-			}
-		}
-		
-		if (!root_zone && np->n_hash == NULL && np->n_data == NULL)
-			(void) purge_node(htp, np);
-	}
-}
-
-static void
-purge_z_2(htp, class)
-	struct hashbuf *htp;
-	int class;
-{
-	struct databuf *dp, *pdp;
-	struct namebuf *np, *pnp, *npn;
-	struct namebuf **npp, **nppend;
-
-	nppend = htp->h_tab + htp->h_size;
-	for (npp = htp->h_tab; npp < nppend; npp++) {
-		for (pnp = NULL, np = *npp; np != NULL; np = npn) {
-			if (!bottom_of_zone(np->n_data, class)) {
-				for (pdp = NULL, dp = np->n_data;
-				     dp != NULL;
-				     (void)NULL) {
-					if (dp->d_class == class)
-						dp = rm_datum(dp, np, pdp, 
-							      NULL);
-					else {
-						pdp = dp;
-						dp = dp->d_next;
-					}
-				}
-				if (np->n_hash) {
-					/* call recursively to rm subdomains */
-					purge_z_2(np->n_hash, class);
-
-					/* if now empty, free it */
-					if (np->n_hash->h_cnt == 0) {
-						rm_hash(np->n_hash);
-						np->n_hash = NULL;
-					}
-				}
-			}
-
-			if (np->n_hash == NULL && np->n_data == NULL) {
-				npn = rm_name(np, npp, pnp);
-				htp->h_cnt--;
-			} else {
-				npn = np->n_next;
-				pnp = np;
-			}
-		}
-	}
-}
-
-static int
-bottom_of_zone(struct databuf *dp, int class) {
-	int ret = 0;
-
-	for ((void)NULL; dp; dp = dp->d_next) {
-		if (dp->d_class != class)
-			continue;
-		if (dp->d_zone == DB_Z_CACHE)
-			continue;
-		if (dp->d_rcode)	/* This should not occur. */
-			continue;
-		if (dp->d_type != T_SOA)
-			continue;
-		ret = 1;
-		break;
-	}
-	ns_debug(ns_log_default, 3, "bottom_of_zone() == %d", ret);
-	return (ret);
-}
-
-/*
- * Handle XFER limit for a nameserver.
- */
-static int
-nxfers(struct zoneinfo *zp, int delta) {
-	struct in_addr nsa;
-	struct nameser *nsp;
-	int ret;
-
-	if (zp->z_xaddrcnt != 0)
-		nsa = zp->z_xaddr[0];	/* first ns holds zone's xfer limit */
-	else if (zp->z_addrcnt != 0)
-		nsa = zp->z_addr[0];	/* first ns holds zone's xfer limit */
-	else
-		return (-1);
-
-	if (!(nsp = nameserFind(nsa, NS_F_INSERT)))
-		return (-1);		/* probably ENOMEM */
-
-	ret = nsp->xfers;
-	if (delta < 0 && -delta > ret)
-		return (-1);		/* taking more than we have */
-
-	nsp->xfers += delta;
-	return (ret);
-}
-
-/*
- * Abort an xfer that has taken too long.
- */
-static void
-abortxfer(struct zoneinfo *zp) {
-	if (zp->z_flags & (Z_XFER_GONE|Z_XFER_ABORTED)) {
-		int i;
-
-		for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-			if (xferstatus[i].xfer_pid == zp->z_xferpid) {
-				xferstatus[i].xfer_pid = 0;
-				xferstatus[i].xfer_state = XFER_IDLE;
-				break;
-			}
-		}
-
-		if (zp->z_flags & Z_XFER_GONE)
-			ns_warning(ns_log_default,
-			   "zone transfer timeout for \"%s\"; pid %lu missing",
-				   zp->z_origin, (u_long)zp->z_xferpid);
-		else if (kill(zp->z_xferpid, SIGKILL) == -1)
-			ns_warning(ns_log_default,
-			  "zone transfer timeout for \"%s\"; kill pid %lu: %s",
-				   zp->z_origin, (u_long)zp->z_xferpid,
-				   strerror(errno));
-		else
-			ns_warning(ns_log_default,
-"zone transfer timeout for \"%s\"; second kill \
-pid %lu - forgetting, processes may accumulate",
-				   zp->z_origin, (u_long)zp->z_xferpid);
-
-		zp->z_xferpid = 0;
-		xfers_running--;
-		(void)nxfers(zp, -1);
-		zp->z_flags &= ~(Z_XFER_RUNNING|Z_XFER_ABORTED|Z_XFER_GONE);
-	} else if (kill(zp->z_xferpid, SIGTERM) == -1) {
-		if (errno == ESRCH)
-			/* No warning on first time, it may have just exited */
-			zp->z_flags |= Z_XFER_GONE;
-		else {
-			ns_warning(ns_log_default,
-		    "zone transfer timeout for \"%s\"; pid %lu kill failed %s",
-				   zp->z_origin, (u_long)zp->z_xferpid,
-				   strerror(errno));
-			zp->z_flags |= Z_XFER_ABORTED;
-		}
-	} else {
-		ns_notice(ns_log_default,
-			  "zone transfer timeout for \"%s\"; pid %lu killed",
-			  zp->z_origin, (u_long)zp->z_xferpid);
-		zp->z_flags |= Z_XFER_ABORTED;
-	}
-}
-
-/*
- * Process exit of xfer's.
- */
-void
-reapchild(void) {
-	int i;
-	pid_t pid;
-	WAIT_T status;
-
-	gettime(&tt);
-	while ((pid = (pid_t)waitpid(-1, &status, WNOHANG)) > 0) {
-		for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-			if (xferstatus[i].xfer_pid == pid) {
-				xferstatus[i].xfer_status = status;
-				xferstatus[i].xfer_state = XFER_DONE;
-				ns_need(main_need_endxfer);
-				break;
-			}
-		}
-	}
-}
-
-/*
- * Finish processing of of finished xfers
- */
-void
-endxfer() {
-	struct zoneinfo *zp;   
-	int exitstatus, i;
-	pid_t pid;
-	WAIT_T status;
-
-	gettime(&tt);
-
-	for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-		if (xferstatus[i].xfer_state != XFER_DONE)
-			continue;
-		pid = xferstatus[i].xfer_pid;
-		status = xferstatus[i].xfer_status;
-		exitstatus = WIFEXITED(status) ? WEXITSTATUS(status) : 0;
-
-		for (zp = zones; zp < &zones[nzones]; zp++) {
-			if (zp->z_xferpid != pid)
-				continue;
-			xfers_running--;
-			(void) nxfers(zp, -1);
-			zp->z_xferpid = 0;
-			zp->z_flags &=
-				~(Z_XFER_RUNNING|Z_XFER_ABORTED|Z_XFER_GONE);
-			ns_debug(ns_log_default, 1,
-		 "\nendxfer: child %d zone %s returned status=%d termsig=%d",
-				 pid, zp->z_origin, exitstatus,
-				 WIFSIGNALED(status) ? WTERMSIG(status) : -1);
-			if (WIFSIGNALED(status)) {
-				if (WTERMSIG(status) != SIGKILL) {
-					ns_notice(ns_log_default,
-				     "named-xfer \"%s\" exited with signal %d",
-						  zp->z_origin[0]?zp->z_origin:".",
-						  WTERMSIG(status));
-				}
-				ns_retrytime(zp, tt.tv_sec);
-				sched_zone_maint(zp);
-			} else {
-				switch (exitstatus) {
-				case XFER_UPTODATE:
-					markUpToDate(zp);
-					sched_zone_maint(zp);
-					break;
-
-				case XFER_SUCCESSAXFR:
-				case XFER_SUCCESSAXFRIXFRFILE:
-					zp->z_xferpid = XFER_ISAXFR;
-					if (exitstatus == XFER_SUCCESSAXFRIXFRFILE) {
-						zp->z_xferpid = XFER_ISAXFRIXFR;
-					} 
-					movefile(zp->z_ixfr_tmp, zp->z_source);
-					/* XXX should incorporate loadxfer() */
-					zp->z_flags |= Z_NEED_RELOAD;
-					zp->z_flags &= ~Z_SYSLOGGED;
-					ns_need(main_need_zoneload);
-					break;
-
-				case XFER_SUCCESSIXFR:
-					zp->z_flags |= Z_XFER_RUNNING;
-					zp->z_xferpid = XFER_ISIXFR;
-					ns_notice(ns_log_default,
-						  "IXFR Success %s",
-						  zp->z_ixfr_tmp);
-					if (merge_logs(zp, zp->z_ixfr_tmp) >= 0) {
-						ns_notice(ns_log_default,
-							"IXFR Merge success %s",
-							  zp->z_ixfr_tmp);
-							
-						(void)unlink(zp->z_updatelog);
-						(void)unlink(zp->z_ixfr_base);
-						movefile(zp->z_ixfr_tmp,
-						       zp->z_ixfr_base);
-						(void)unlink(zp->z_ixfr_tmp);
-						if (zonedump(zp, ISIXFR) < 0) 
-							ns_warning(ns_log_db,
-				"error in write ixfr updates to zone file %s",
-								zp ->z_source); 
-					} else
-						ns_notice(ns_log_default,
-							"IXFR Merge failed %s",
-							  zp->z_ixfr_tmp);
-					zp->z_flags &=
-						~(Z_XFER_RUNNING|Z_XFER_ABORTED|Z_XFER_GONE);
-					break;
-
-				case XFER_TIMEOUT:
-					if (!(zp->z_flags & Z_SYSLOGGED)) {
-						zp->z_flags |= Z_SYSLOGGED;
-						ns_notice(ns_log_default,
-		      "zoneref: Masters for secondary zone \"%s\" unreachable",
-							  zp->z_origin);
-					}
-					ns_retrytime(zp, tt.tv_sec);
-					sched_zone_maint(zp);
-					break;
-
-				default:
-					if (!(zp->z_flags & Z_SYSLOGGED)) {
-						zp->z_flags |= Z_SYSLOGGED;
-						ns_notice(ns_log_default,
-					     "named-xfer for \"%s\" exited %d",
-							  zp->z_origin,
-							  exitstatus);
-					}
-					/* FALLTHROUGH */
-				case XFER_FAIL:
-					zp->z_flags |= Z_SYSLOGGED;
-					ns_retrytime(zp, tt.tv_sec);
-					sched_zone_maint(zp);
-					break;
-				}
-				break;
-			}
-		}
-		xferstatus[i].xfer_state = XFER_IDLE;
-		xferstatus[i].xfer_pid = 0;
-	}
-	tryxfer();
-}
-
-/*
- * Try to start some xfers - new "fair scheduler" by Bob Halley @DEC (1995)
- */
-static void
-tryxfer() {
-	static struct zoneinfo *zp = NULL;
-	static struct zoneinfo *lastzones = NULL;
-	static int lastnzones = 0;
-	struct zoneinfo *startzp, *stopzp;
-
-	/* initialize, and watch out for changes in zones! */
-	if (lastzones != zones) {
-		if (lastzones != NULL)
-			ns_debug(ns_log_default, 3, "zones changed: %p != %p",
-				 lastzones, zones);
-		lastzones = zones;
-		zp = zones;
-	}
-
-	/* did zones shrink? */
-	if (lastnzones > nzones) {
-		ns_debug(ns_log_default, 3, "zones shrunk");
-		zp = zones;
-	}
-	lastnzones = nzones;
-
-	if (zp == zones)
-		stopzp = &zones[nzones-1];
-	else
-		stopzp = zp - 1;
-
-	ns_debug(ns_log_default, 3,
-		 "tryxfer start zp=%p stopzp=%p def=%d running=%d",
-		zp, stopzp, xfers_deferred, xfers_running);
-
-	startzp = zp;
-	for (;;) {
-		int xfers;
-
-		if (!xfers_deferred ||
-		    xfers_running >= server_options->transfers_in)
-			break;
-		
-		if ((xfers = nxfers(zp, 0)) != -1 &&
-		    xfers < server_options->transfers_per_ns &&
-		    (zp->z_flags & Z_NEED_XFER)) {
-			nxfers(zp, 1);
-			xfers_deferred--;
-			startxfer(zp);
-			sched_zone_maint(zp);
-		}
-
-		if (zp == stopzp) {
-			ns_debug(ns_log_default, 3, "tryxfer stop mark");
-			zp = startzp;
-			break;
-		}
-
-		zp++;
-		/* wrap around? */
-		if (zp == &zones[nzones])
-			zp = zones;
-	}
-	ns_debug(ns_log_default, 3, "tryxfer stop zp=%p", zp);
-}
-
-/*
- * Reload zones whose transfers have completed.
- */
-void
-loadxfer(void) {
-	struct zoneinfo *zp;   
-	u_int32_t old_serial,new_serial;
-	char *tmpnom;
-	int isixfr;
-
-	gettime(&tt);
-	for (zp = zones; zp < &zones[nzones]; zp++) {
-		if (zp->z_flags & Z_NEED_RELOAD) {
-			ns_debug(ns_log_default, 1, "loadxfer() \"%s\"",
-				 zp->z_origin[0] ? zp->z_origin : ".");
-			zp->z_flags &= ~(Z_NEED_RELOAD|Z_AUTH);
-/* XXX this is bad, should be done in ns_zreload() for primary changes. */
-			ns_stopxfrs(zp);
-			old_serial = zp->z_serial;
-			if (zp->z_xferpid == XFER_ISIXFR) {
-				tmpnom = zp->z_ixfr_tmp;
-				isixfr = ISIXFR;
-			} else {
-				tmpnom = zp->z_source;
-				purge_zone(zp->z_origin, hashtab, zp->z_class);
-				isixfr = ISNOTIXFR;
-			}
-			if (zp->z_xferpid == XFER_ISAXFRIXFR) {
-				tmpnom= zp->z_source;
-				purge_zone(zp->z_origin, hashtab, zp->z_class);
-				isixfr = ISNOTIXFR;
-			}
-
-			if (!db_load(tmpnom, zp->z_origin, zp, NULL, isixfr)) {
-				zp->z_flags |= Z_AUTH;
-				zp->z_flags &= ~Z_EXPIRED;
-				if (isixfr == ISIXFR) {
-					new_serial= zp ->z_serial;
-						ns_warning(ns_log_db, "ISIXFR");
-						ns_warning(ns_log_db, "error in updating ixfr data base file %s from %s", zp -> z_ixfr_base, zp ->z_ixfr_tmp);
-					if (zonedump(zp,ISIXFR)<0) 
-						ns_warning(ns_log_db, "error in write ixfr updates to zone file %s", zp ->z_source); 
-			
-				}
-			}
-			zp->z_xferpid = 0;
-			if (zp->z_flags & Z_TMP_FILE)
-				(void) unlink(zp->z_source);
-			sched_zone_maint(zp);
-		}
-	}
-}
-
-/*
- * Add this zone to the set of those needing transfers.
- */
-void
-addxfer(struct zoneinfo *zp) {
-	if (!(zp->z_flags & Z_NEED_XFER)) {
-		zp->z_flags |= Z_NEED_XFER;
-		xfers_deferred++;
-		tryxfer();
-	}
-}
-
-/*
- * Mark one zone as requiring a reload.
- * Note that it should be called with signals blocked,
- * and should not allocate memory (since it can be called from a sighandler).
- */
-const char *
-deferred_reload_unsafe(struct zoneinfo *zp) {
-	INSIST(zp->z_type != z_nil);
-	if (!zonefile_changed_p(zp))
-		return ("Zone file has not changed.");
-	if (LINKED(zp, z_reloadlink))
-		return ("Zone is already scheduled for reloading.");
-	APPEND(reloadingzones, zp, z_reloadlink);
-	ns_need_unsafe(main_need_zreload);
-	return ("Zone is now scheduled for reloading.");
-}
-
-/*
- * If we've loaded this file, and the file has not been modified and contains
- * no $INCLUDE, then there's no need to reload.
- */
-int
-zonefile_changed_p(struct zoneinfo *zp) {
-	struct stat sb;
-
-	INSIST(zp->z_type != z_nil);
-	return ((zp->z_flags & Z_INCLUDE) != 0 ||
-		stat(zp->z_source, &sb) == -1 ||
-		zp->z_ftime != sb.st_mtime);
-}
-
-int
-reload_master(struct zoneinfo *zp) {
-	INSIST(zp->z_type == z_master);
-	zp->z_flags &= ~Z_AUTH;
-	ns_stopxfrs(zp);
-	/* XXX what about parent zones? */
-#ifdef BIND_UPDATE
-	/*
-	 * A dynamic zone might have changed, so we
-	 * need to dump it before reloading it.
-	 */
-	if ((zp->z_flags & Z_DYNAMIC) != 0 &&
-	    ((zp->z_flags & Z_NEED_SOAUPDATE) != 0 ||
-	     (zp->z_flags & Z_NEED_DUMP) != 0))
-		(void) zonedump(zp, ISNOTIXFR);
-#endif
-	purge_zone(zp->z_origin, hashtab, zp->z_class);
-	ns_debug(ns_log_config, 1, "reloading zone");
-#ifdef BIND_UPDATE
-	if ((zp->z_flags & Z_DYNAMIC) != 0) {
-		struct stat sb;
-
-		if (stat(zp->z_source, &sb) < 0)
-			ns_error(ns_log_config, "stat(%s) failed: %s",
-				 zp->z_source, strerror(errno));
-		else {
-			if ((sb.st_mode & (S_IWUSR|S_IWGRP|S_IWOTH)) != 0)
-				ns_warning(ns_log_config,
-					 "dynamic zone file '%s' is writable",
-					   zp->z_source);
-		}
-	}
-#endif
-	if (!db_load(zp->z_source, zp->z_origin, zp, NULL, ISNOTIXFR))
-		zp->z_flags |= Z_AUTH;
-	zp->z_refresh = 0;	/* no maintenance needed */
-	zp->z_time = 0;
-#ifdef BIND_UPDATE
-	zp->z_lastupdate = 0;
-	if ((zp->z_flags & Z_DYNAMIC) != 0)
-		if (merge_logs(zp, zp->z_updatelog) == 1)
-			return (1);
-#endif
-	return (0);
-}
-
-/*
- * Called by main() when main_need_zreload has been set.  Should pull one
- * zone off of the reloadingzones list and reload it, then if the list is
- * not then empty, should turn main_need_zreload on again for the next call.
- * It is not an error to call this when the reloadingzones list is empty.
- */
-void
-ns_zreload(void) {
-	struct zoneinfo *zp;
-
-	block_signals();
-	if (EMPTY(reloadingzones)) {
-		unblock_signals();
-		return;
-	}
-	zp = HEAD(reloadingzones);
-	UNLINK(reloadingzones, zp, z_reloadlink);
-	unblock_signals();
-
-	reload_master(zp);
-
-	block_signals();
-	if (!EMPTY(reloadingzones))
-		ns_need_unsafe(main_need_zreload);
-	unblock_signals();
-}
-
-/*
- * Flush and reload configuration file and data base.
- */
-void
-ns_reload(void) {
-	ns_notice(ns_log_default, "%s %snameserver",
-		  (reconfiging != 0) ? "reconfiguring" : "reloading",
-		  (noexpired == 1) ? "(-noexpired) " : "");
-
-	INSIST(reloading == 0);
-	qflush();
-	sq_flush(NULL);
-	reloading++;	/* To force transfer if secondary and backing up. */
-	ns_init(conffile);
-	time(&resettime);
-	reloading--;
-	ns_notice(ns_log_default, "Ready to answer queries.");
-}
-
-/*
- * Reload configuration, look for new or deleted zones, not changed ones
- * also ignore expired zones.
- */
-void
-ns_noexpired(void) {
-	INSIST(noexpired == 0);
-	noexpired++;	/* To ignore zones which are expired */
-	ns_reconfig();
-	noexpired--;
-}
-
-/*
- * Reload configuration, look for new or deleted zones, not changed ones.
- */
-void
-ns_reconfig(void) {
-	INSIST(reconfiging == 0);
-	reconfiging++;	/* To ignore zones which aren't new or deleted. */
-	ns_reload();
-	reconfiging--;
-}
-
-void
-make_new_zones(void) {
-	struct zoneinfo *zp;
-	int n;
-
-	ns_debug(ns_log_config, 1, "Adding %d template zones", NEWZONES);
-	zp = (struct zoneinfo *)
-		memget((nzones + NEWZONES) * sizeof(struct zoneinfo));
-	if (zp == NULL)
-		panic("no memory for more zones", NULL);
-	memset(zp, 0, (nzones + NEWZONES) * sizeof(struct zoneinfo));
-	if (zones != NULL) {
-		memcpy(zp, zones, nzones * sizeof(struct zoneinfo));
-		memput(zones, nzones * sizeof(struct zoneinfo));
-	}
-	zones = zp;
-	block_signals();
-	for (n = 0; n < NEWZONES; n++) {
-		INIT_LINK(&zones[nzones], z_reloadlink);
-		if (nzones != 0)
-			free_zone(&zones[nzones]);
-		nzones++;
-	}
-	unblock_signals();
-}
-
-void
-free_zone(struct zoneinfo *zp) {
-	if (LINKED(zp, z_reloadlink))
-		panic("freeing reloading zone", NULL);
-	if (zp->z_type != z_nil)
-		panic("freeing unfree zone", NULL);
-	APPEND(freezones, zp, z_freelink);
-}
-
-#ifndef HAVE_SPAWNXFER
-static pid_t
-spawnxfer(char **argv, struct zoneinfo *zp) {
-	pid_t pid = (pid_t)vfork();
-
-	if (pid == -1) {
-		ns_error(ns_log_default, "xfer vfork: %s", strerror(errno));
-		zp->z_time = tt.tv_sec + 10;
-		return (pid);
-	}
-	if (pid == 0) {
-		/* Child. */
-		execv(server_options->named_xfer, argv);
-		ns_error(ns_log_default, "can't exec %s: %s",
-		server_options->named_xfer, strerror(errno));
-		(void)nxfers(zp, -1);
-		_exit(XFER_FAIL);	/* Avoid duplicate buffer flushes. */
-	}
-	return (pid);
-}
-#endif
-
-struct zoneinfo *
-find_auth_zone(const char *zname, ns_class zclass) {
-	struct zoneinfo *zp;
-	struct hashbuf *htp;
-	struct namebuf *np;
-	const char *fname;
-	int zn;
-
-	zp = find_zone(zname, zclass);
-	if (zp != NULL &&
-	    (zp->z_type == z_slave ||
-	     zp->z_type == z_master ||
-	     zp->z_type == z_stub))
-		return (zp);
-
-	htp = hashtab;
-	np = nlookup(zname, &htp, &fname, 0);
-	if (np != NULL && (zn = findMyZone(np, zclass)) != DB_Z_CACHE)
-		return (&zones[zn]);
-
-	return (NULL);
-}
diff --git a/contrib/bind/bin/named/ns_ncache.c b/contrib/bind/bin/named/ns_ncache.c
deleted file mode 100644
index 2b8bb6bd7788c..0000000000000
--- a/contrib/bind/bin/named/ns_ncache.c
+++ /dev/null
@@ -1,270 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_ncache.c,v 8.27 2000/04/21 06:54:09 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			return; \
-		} \
-	} while (0)
-
-void
-cache_n_resp(u_char *msg, int msglen, struct sockaddr_in from,
-	     const char *qname, int qclass, int qtype)
-{
-	struct databuf *dp;
-	HEADER *hp;
-	u_char *cp, *eom, *rdatap;
-	char dname[MAXDNAME];
-	int n, type, class, flags;
-	u_int ancount, nscount, dlen;
-#ifdef	RETURNSOA
-	u_int32_t ttl;
-	u_int16_t atype;
-	u_char *sp, *cp1;
-	u_char data[MAXDATA];
-	size_t len = sizeof data;
-#endif
-
-	nameserIncr(from.sin_addr, nssRcvdNXD);
-
-	hp = (HEADER *)msg;
-	cp = msg + HFIXEDSZ;
-	eom = msg + msglen;
-
-	switch (ntohs(hp->qdcount)) {
-	case 0:
-		dname[sizeof dname - 1] = '\0';
-		strncpy(dname, qname, sizeof dname);
-		if (dname[sizeof dname - 1] != '\0') {
-			ns_debug(ns_log_ncache, 1,
-				 "qp->qname too long (%d)", strlen(qname));
-			hp->rcode = FORMERR;
-			return;
-		}
-		class = qclass;
-		type = qtype;
-		break;
-	case 1:
-		n = dn_expand(msg, eom, cp, dname, sizeof dname);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 1,	
-				 "Query expand name failed: cache_n_resp");
-			hp->rcode = FORMERR;
-			return;
-		}
-		cp += n;
-		BOUNDS_CHECK(cp, 2 * INT16SZ);
-		GETSHORT(type, cp);
-		GETSHORT(class, cp);
-		if (class > CLASS_MAX) {
-			ns_debug(ns_log_ncache, 1,
-				 "bad class in cache_n_resp");
-			hp->rcode = FORMERR;
-			return;
-		}
-		break;
-	default:
-		ns_debug(ns_log_ncache, 1,
-			 "QDCOUNT>1 (%d) in cache_n_resp", ntohs(hp->qdcount));
-		hp->rcode = FORMERR;
-		return;
-	}
-	ns_debug(ns_log_ncache, 1, "ncache: dname %s, type %d, class %d",
-		 dname, type, class);
-
-	ancount = ntohs(hp->ancount);
-	nscount = ntohs(hp->nscount);
-
-	while (ancount--) {
-		u_int32_t ttl;
-		u_int atype, aclass;
-
-		n = dn_skipname(cp, eom);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 3, "ncache: form error");
-			return;
-		}
-		cp += n;
-		BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-		GETSHORT(atype, cp);
-		GETSHORT(aclass, cp);
-		if (atype != T_CNAME || aclass != class) {
-			ns_debug(ns_log_ncache, 3,
-				 "ncache: not CNAME (%s) or wrong class (%s)",
-				 p_type(atype), p_class(aclass));
-			return;
-		}
-		GETLONG(ttl, cp);
-		GETSHORT(dlen, cp);
-		BOUNDS_CHECK(cp, dlen);
-		rdatap = cp;
-		n = dn_expand(msg, msg + msglen, cp, dname, sizeof dname);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 3, "ncache: bad cname target");
-			return;
-		}
-		cp += n;
-		if (cp != rdatap + dlen) {
-			ns_debug(ns_log_ncache, 3, "ncache: bad cname rdata");
-			return;
-		}
-	}
-
-	dp = NULL;
-#ifdef RETURNSOA
-	while (nscount--) {
-		sp = cp;
-
-		/* we store NXDOMAIN as T_SOA regardless of the query type */
-		if (hp->rcode == NXDOMAIN)
-			type = T_SOA;
-
-		/* store ther SOA record */
-		n = dn_skipname(cp, msg + msglen);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 3, "ncache: form error");
-			return;
-		}
-		cp += n;
-		
-		BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-		GETSHORT(atype, cp);		/* type */
-		cp += INT16SZ;			/* class */
-		GETLONG(ttl, cp);		/* ttl */
-		GETSHORT(dlen, cp);		/* dlen */
-		BOUNDS_CHECK(cp, dlen);
-		if (atype != T_SOA) {
-			ns_debug(ns_log_ncache, 3,
-				 "ncache: type (%d) != T_SOA", atype);
-			cp += dlen;
-			continue;
-		}
-		rdatap = cp;
-
-		/* origin */
-		n = dn_expand(msg, msg + msglen, cp, (char*)data, len);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 3,
-				 "ncache: origin form error");
-			return;
-		}
-		cp += n;
-		n = strlen((char*)data) + 1;
-		cp1 = data + n;
-		len -= n;
-		/* mail */
-		n = dn_expand(msg, msg + msglen, cp, (char*)cp1, len);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 3, "ncache: mail form error");
-			return;
-		}
-		cp += n;
-		n = strlen((char*)cp1) + 1;
-		cp1 += n;
-		len -= n;
-		n = 5 * INT32SZ;
-		BOUNDS_CHECK(cp, n);
-		memcpy(cp1, cp, n);
-		/* serial, refresh, retry, expire, min */
-		cp1 += n;
-		len -= n;
-		cp += n;
-		if (cp != rdatap + dlen) {
-			ns_debug(ns_log_ncache, 3, "ncache: form error");
-			return;
-		}
-		/* store the zone of the soa record */
-		n = dn_expand(msg, msg + msglen, sp, (char*)cp1, len);
-		if (n < 0) {
-			ns_debug(ns_log_ncache, 3, "ncache: form error 2");
-			return;
-		}
-		n = strlen((char*)cp1) + 1;
-		cp1 += n;
-
-		/*
-		 * we only want to store these long enough so that
-		 * ns_resp can find it.
-		 */
-		if (qtype == T_SOA && hp->rcode == NXDOMAIN)
-			ttl = 0;
-		dp = savedata(class, type,
-				MIN(ttl, server_options->max_ncache_ttl) +
-					tt.tv_sec, data,
-			      cp1 - data);
-		break;
-	}
-#endif
-	if (dp == NULL)
-#ifdef STRICT_RFC2308
-		dp = savedata(class, type, tt.tv_sec, NULL, 0);
-#else
-		dp = savedata(class, type, NTTL + tt.tv_sec, NULL, 0);
-#endif
-	dp->d_zone = DB_Z_CACHE;
-	dp->d_cred = hp->aa ? DB_C_AUTH : DB_C_ANSWER;
-	dp->d_secure = DB_S_INSECURE; /* BEW - should be UNCHECKED */
-	dp->d_clev = 0;
-	if(hp->rcode == NXDOMAIN) {
-		dp->d_rcode = NXDOMAIN;
-		flags = DB_NODATA|DB_NOTAUTH|DB_NOHINTS;
-	} else {
-		dp->d_rcode = NOERROR_NODATA;
-		flags = DB_NOTAUTH|DB_NOHINTS;
-	}
-
-	if ((n = db_update(dname, dp, dp, NULL, flags, hashtab, from)) != OK) {
-		ns_debug(ns_log_ncache, 1,
-			 "db_update failed (%d), cache_n_resp()", n);
-		db_freedata(dp);
-		return;
-	}
-	ns_debug(ns_log_ncache, 4,
-		 "ncache succeeded: [%s %s %s] rcode:%d ttl:%ld",
-		    dname, p_type(type), p_class(class),
-		    dp->d_rcode, (long)(dp->d_ttl - tt.tv_sec));
-}
diff --git a/contrib/bind/bin/named/ns_notify.c b/contrib/bind/bin/named/ns_notify.c
deleted file mode 100644
index 0cf1e0a327a58..0000000000000
--- a/contrib/bind/bin/named/ns_notify.c
+++ /dev/null
@@ -1,424 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_notify.c,v 8.10 2000/04/21 06:54:09 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1994-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <limits.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-#ifdef BIND_NOTIFY
-
-/* Types. */
-
-struct notify {
-	char *			name;
-	ns_class		class;
-	ns_type			type;
-	evTimerID		timer;
-	LINK(struct notify)	link;
-};
-
-/* Forward. */
-
-static void		sysnotify(const char *, ns_class, ns_type);
-static void		sysnotify_slaves(const char *, const char *,
-					 ns_class, ns_type, int, int *, int *);
-static void		sysnotify_ns(const char *, const char *,
-				     ns_class, ns_type, int, int *, int *);
-static void		free_notify(struct notify *);
-static void		notify_timer(evContext, void *,
-				     struct timespec, struct timespec);
-
-/* Local. */
-
-static LIST(struct notify) pending_notifies;
-static LIST(struct notify) loading_notifies;
-
-/* Public. */
-
-/*
- * ns_notify(dname, class, type)
- *	call this when a zone has changed and its slaves need to know.
- */
-void
-ns_notify(const char *dname, ns_class class, ns_type type) {
-	static const char no_room[] = "%s failed, cannot notify for zone %s";
-	int delay, max_delay;
-	struct zoneinfo *zp;
-	struct notify *ni;
-
-	zp = find_auth_zone(dname, class);
-	if (zp == NULL) {
-		ns_warning(ns_log_notify,
-			   "no zone found for notify (\"%s\" %s %s)",
-			   (dname && *dname) ? dname : ".",
-			   p_class(class), p_type(type));
-		return;
-	}
-	if (ns_samename(dname, zp->z_origin) != 1) {
-		ns_warning(ns_log_notify,
-			   "notify not called with top of zone (\"%s\" %s %s)",
-			   (dname && *dname) ? dname : ".",
-			   p_class(class), p_type(type));
-		return;
-	}
-	if ((zp->z_flags & Z_NOTIFY) != 0) {
-		ns_info(ns_log_notify,
-			"suppressing duplicate notify (\"%s\" %s %s)",
-			(dname && *dname) ? dname : ".",
-			p_class(class), p_type(type));
-		return;
-	}
-	ni = memget(sizeof *ni);
-	if (ni == NULL) {
-		ns_info(ns_log_notify, no_room, "memget", dname);
-		return;
-	}
-	ni->name = savestr(dname, 0);
-	if (ni->name == NULL) {
-		memput(ni, sizeof *ni);
-		ni = NULL;
-		ns_info(ns_log_notify, no_room, "memget", dname);
-		return;
-	}
-	ni->class = class;
-	ni->type = type;
-	evInitID(&ni->timer);
-
-	if (loading != 0) {
-		APPEND(loading_notifies, ni, link);
-		return;
-	}
-
-	/* Delay notification for from five seconds up to fifteen minutes. */
-	max_delay = MIN(nzones/5, 895);
-	max_delay = MAX(max_delay, 25);
-	delay = 5 + (rand() % max_delay);
-	if (evSetTimer(ev, notify_timer, ni,
-		       evAddTime(evNowTime(), evConsTime(delay, 0)),
-		       evConsTime(0, 0), &ni->timer) < 0) {
-		ns_error(ns_log_notify, "evSetTimer() failed: %s",
-			 strerror(errno));
-		freestr(ni->name);
-		memput(ni, sizeof *ni);
-		return;
-	}
-
-	zp->z_flags |= Z_NOTIFY;
-	APPEND(pending_notifies, ni, link);
-	ns_debug(ns_log_notify, 3,
-		 "ns_notify(%s, %s, %s): ni %p, zp %p, delay %d",
-		 (dname && *dname) ? dname : ".",
-		 p_class(class), p_type(type),
-		 ni, zp, delay);
-}
-
-void
-notify_afterload() {
-	struct notify *ni;
-
-	INSIST(loading == 0);
-	while ((ni = HEAD(loading_notifies)) != NULL) {
-		UNLINK(loading_notifies, ni, link);
-		ns_notify(ni->name, ni->class, ni->type);
-		freestr(ni->name);
-		memput(ni, sizeof *ni);
-	}
-}
-
-/*
- * ns_unnotify()
- *	call this when all pending notifies are now considered junque.
- */
-void
-ns_unnotify(void) {
-	while (!EMPTY(pending_notifies)) {
-		struct notify *ni = HEAD(pending_notifies);
-
-		INSIST(LINKED(ni, link));
-		UNLINK(pending_notifies, ni, link);
-		free_notify(ni);
-	}
-}
-
-/*
- * ns_stopnotify(const char *dname, ns_class class)
- *	stop notifies for this particular zone.
- */
-void
-ns_stopnotify(const char *dname, ns_class class) {
-	struct notify *ni;
-
-	ni = HEAD(pending_notifies);
-	while (ni != NULL &&
-	       (ni->class != class || ns_samename(ni->name, dname) != 1))
-		ni = NEXT(ni, link);
-
-	if (ni != NULL) {
-		UNLINK(pending_notifies, ni, link);
-		free_notify(ni);
-	}
-}
-
-/* Private. */
-
-/*
- * sysnotify(dname, class, type)
- *	cause a NOTIFY request to be sysquery()'d to each slave server
- *	of the zone that "dname" is within.
- */
-static void
-sysnotify(const char *dname, ns_class class, ns_type type) {
-	const char *zname, *fname;
-	u_int32_t zserial;
-	int nns, na, i;
-	struct zoneinfo *zp;
-	struct in_addr *also_addr;
-
-	ns_debug(ns_log_notify, 3, "sysnotify(%s, %s, %s)",
-		 dname, p_class(class), p_type(type));
-	zp = find_auth_zone(dname, class);
-	if (zp == NULL) {
-		ns_warning(ns_log_notify, "sysnotify: can't find \"%s\" (%s)",
-			   dname, p_class(class));
-		return;
-	}
-	if (ns_samename(dname, zp->z_origin) != 1) {
-		ns_warning(ns_log_notify, "sysnotify: not auth for zone %s",
-			   dname);
-		return;
-	}
-	if (zp->z_notify == znotify_no ||
-	    (zp->z_notify == znotify_use_default &&    
-	     NS_OPTION_P(OPTION_NONOTIFY)))
-		return;
-	if (zp->z_type != z_master && zp->z_type != z_slave) {
-		ns_warning(ns_log_notify, "sysnotify: %s not master or slave",
-			   dname);
-		return;
-	}
-	zname = zp->z_origin;
-	zserial = zp->z_serial;
-	nns = na = 0;
-	sysnotify_slaves(dname, zname, class, type, zp - zones, &nns, &na);
-
-	/*
-	 * Handle any global or zone-specific also-notify clauses
-	 */
-	if (zp->z_notify_count != 0) {
-		/* zone-specific also notify */
-		
-		ns_debug(ns_log_notify, 3, "zone notify ns = %d",
-			 zp->z_notify_count);
-
-		also_addr = zp->z_also_notify;
-		for (i = 0; i < zp->z_notify_count; i++) {
-			ns_debug(ns_log_notify, 4, "notifying %s",
-				 inet_ntoa(*also_addr));
-			sysquery(dname, class, type, also_addr, 1, ns_port,
-				 NS_NOTIFY_OP);
-			also_addr++;
-		}
-		nns += zp->z_notify_count;
-		na += zp->z_notify_count;
-	} else if (server_options->notify_count != 0) {
-		ns_debug(ns_log_notify, 4, "global notify ns = %d",
-			 server_options->notify_count);
-		also_addr = server_options->also_notify;
-		for (i = 0; i < server_options->notify_count; i++) {
-			ns_debug(ns_log_notify, 3, "notifying %s",
-				 inet_ntoa(*also_addr));
-			sysquery(dname, class, type, also_addr,
-				 1, ns_port, ns_o_notify);
-			also_addr++;
-		}
-		nns += server_options->notify_count;
-		na += server_options->notify_count;
-	}
-
-	if (nns != 0 || na != 0)
-		ns_info(ns_log_notify,
-			"Sent NOTIFY for \"%s %s %s %u\" (%s); %d NS, %d A",
-			dname, p_class(class), p_type(type), zserial, zname, nns, na);
-}
-
-static void
-sysnotify_slaves(const char *dname, const char *zname,
-		 ns_class class, ns_type type,
-		 int zn, int *nns, int *na)
-{
-	const char *mname, *fname;
-	struct hashbuf *htp;
-	struct namebuf *np;
-	struct databuf *dp;
-
-	/*
-	 * Master.
-	 */
-	htp = hashtab;
-	np = nlookup(zname, &htp, &fname, 0);
-	if (np == NULL) {
-		ns_warning(ns_log_notify,
-			   "sysnotify: found name \"%s\" but not zone",
-			   dname);
-		return;
-	}
-	mname = NULL;
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (dp->d_zone == DB_Z_CACHE || !match(dp, class, ns_t_soa))
-			continue;
-		if (dp->d_type == ns_t_sig)
-			continue;
-		if (mname) {
-			ns_notice(ns_log_notify,
-				  "multiple SOA's for zone \"%s\"?",
-				  zname);
-			return;
-		}
-		mname = (char *) dp->d_data;
-	}
-	if (mname == NULL) {
-		ns_notice(ns_log_notify, "no SOA found for zone \"%s\"",
-			  zname);
-		return;
-	}
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (dp->d_zone == DB_Z_CACHE || !match(dp, class, ns_t_ns))
-			continue;
-		if (dp->d_type == ns_t_sig)
-			continue;
-		if (ns_samename((char*)dp->d_data, mname) == 1)
-			continue;
-		sysnotify_ns(dname, (char *)dp->d_data, class, type,
-			     zn, nns, na);
-	}
-}
-
-static void
-sysnotify_ns(const char *dname, const char *aname,
-	     ns_class class, ns_type type,
-	     int zn, int *nns, int *na)
-{
-	struct databuf *adp;
-	struct namebuf *anp;
-	const char *fname;
-	struct in_addr nss[NSMAX];
-	struct hashbuf *htp;
-	int is_us, nsc;
-
-	htp = hashtab;
-	anp = nlookup(aname, &htp, &fname, 0);
-	nsc = 0;
-	is_us = 0;
-	if (anp != NULL)
-		for (adp = anp->n_data; adp; adp = adp->d_next) {
-			struct in_addr ina;
-
-			if (!match(adp, class, T_A))
-				continue;
-			if (adp->d_type == ns_t_sig)
-				continue;
-			ina = ina_get(adp->d_data);
-			if (aIsUs(ina)) {
-				is_us = 1;
-				continue;
-			}
-			if (nsc < NSMAX)
-				nss[nsc++] = ina;
-		} /*next A*/
-	if (nsc == 0) {
-		if (!is_us && !NS_OPTION_P(OPTION_NOFETCHGLUE)) {
-			struct qinfo *qp;
-
-			qp = sysquery(aname, class, ns_t_a, 0, 0, ns_port,
-				      ns_o_query);
-			if (qp != NULL)
-				qp->q_notifyzone = zn;
-		}
-		return;
-	}
-	sysquery(dname, class, type, nss, nsc, ns_port, ns_o_notify);
-	(*nns)++;
-	*na += nsc;
-}
-
-static void
-free_notify(struct notify *ni) {
-	struct zoneinfo *zp;
-
-	INSIST(!LINKED(ni, link));
-	zp = find_auth_zone(ni->name, ni->class);
-	if (zp != NULL && ns_samename(ni->name, zp->z_origin) == 1) {
-		INSIST((zp->z_flags & Z_NOTIFY) != 0);
-		zp->z_flags &= ~Z_NOTIFY;
-	}
-	if (evTestID(ni->timer)) {
-		evClearTimer(ev, ni->timer);
-		evInitID(&ni->timer);
-	}
-	freestr(ni->name);
-	memput(ni, sizeof *ni);
-}
-
-static void
-notify_timer(evContext ctx, void *uap,
-	     struct timespec due,
-	     struct timespec inter)
-{
-	struct notify *ni = uap;
-
-	INSIST(evTestID(ni->timer));
-	evInitID(&ni->timer);
-	INSIST(LINKED(ni, link));
-	UNLINK(pending_notifies, ni, link);
-	sysnotify(ni->name, ni->class, ni->type);
-	free_notify(ni);
-}
-
-#endif /*BIND_NOTIFY*/
diff --git a/contrib/bind/bin/named/ns_parser.c b/contrib/bind/bin/named/ns_parser.c
deleted file mode 100644
index 03d0a84d7cbaa..0000000000000
--- a/contrib/bind/bin/named/ns_parser.c
+++ /dev/null
@@ -1,3150 +0,0 @@
-#ifndef lint
-static char yysccsid[] = "@(#)yaccpar	1.9 (Berkeley) 02/21/93 (BSDI)";
-#endif
-#include <stdlib.h>
-#define YYBYACC 1
-#define YYMAJOR 1
-#define YYMINOR 9
-#define YYEMPTY (-1)
-#define YYLEX yylex()
-#define yyclearin (yychar=YYEMPTY)
-#define yyerrok (yyerrflag=0)
-#define YYRECOVERING (yyerrflag!=0)
-#define YYPREFIX "yy"
-#line 2 "ns_parser.y"
-#if !defined(lint) && !defined(SABER)
-static char rcsid[] = "$Id: ns_parser.y,v 8.51 1999/11/12 05:29:18 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Global C stuff goes here. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <limits.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-#include "ns_parseutil.h"
-#include "ns_lexer.h"
-
-#define SYM_ZONE	0x010000
-#define SYM_SERVER	0x020000
-#define SYM_KEY		0x030000
-#define SYM_ACL		0x040000
-#define SYM_CHANNEL	0x050000
-#define SYM_PORT	0x060000
-
-#define SYMBOL_TABLE_SIZE 29989		/* should always be prime */
-static symbol_table symtab;
-
-#define AUTH_TABLE_SIZE 397		/* should always be prime */
-static symbol_table authtab = NULL;
-
-static zone_config current_zone;
-static int should_install;
-
-static options current_options;
-static int seen_options;
-
-static controls current_controls;
-
-static topology_config current_topology;
-static int seen_topology;
-
-static server_config current_server;
-static int seen_server;
-
-static char *current_algorithm;
-static char *current_secret;
-
-static log_config current_logging;
-static int current_category;
-static int chan_type;
-static int chan_level;
-static u_int chan_flags;
-static int chan_facility;
-static char *chan_name;
-static int chan_versions;
-static u_long chan_max_size;
-
-static log_channel lookup_channel(char *);
-static void define_channel(char *, log_channel);
-static char *canonical_name(char *);
-
-int yyparse();
-	
-#line 103 "ns_parser.y"
-typedef union {
-	char *			cp;
-	int			s_int;
-	long			num;
-	u_long			ul_int;
-	u_int16_t		us_int;
-	struct in_addr		ip_addr;
-	ip_match_element	ime;
-	ip_match_list		iml;
-	rrset_order_list	rol;
-	rrset_order_element	roe;
-	struct dst_key *	keyi;
-	enum axfr_format	axfr_fmt;
-} YYSTYPE;
-#line 130 "y.tab.c"
-#define L_EOS 257
-#define L_IPADDR 258
-#define L_NUMBER 259
-#define L_STRING 260
-#define L_QSTRING 261
-#define L_END_INCLUDE 262
-#define T_INCLUDE 263
-#define T_OPTIONS 264
-#define T_DIRECTORY 265
-#define T_PIDFILE 266
-#define T_NAMED_XFER 267
-#define T_DUMP_FILE 268
-#define T_STATS_FILE 269
-#define T_MEMSTATS_FILE 270
-#define T_FAKE_IQUERY 271
-#define T_RECURSION 272
-#define T_FETCH_GLUE 273
-#define T_QUERY_SOURCE 274
-#define T_LISTEN_ON 275
-#define T_PORT 276
-#define T_ADDRESS 277
-#define T_RRSET_ORDER 278
-#define T_ORDER 279
-#define T_NAME 280
-#define T_CLASS 281
-#define T_CONTROLS 282
-#define T_INET 283
-#define T_UNIX 284
-#define T_PERM 285
-#define T_OWNER 286
-#define T_GROUP 287
-#define T_ALLOW 288
-#define T_DATASIZE 289
-#define T_STACKSIZE 290
-#define T_CORESIZE 291
-#define T_DEFAULT 292
-#define T_UNLIMITED 293
-#define T_FILES 294
-#define T_VERSION 295
-#define T_HOSTSTATS 296
-#define T_DEALLOC_ON_EXIT 297
-#define T_TRANSFERS_IN 298
-#define T_TRANSFERS_OUT 299
-#define T_TRANSFERS_PER_NS 300
-#define T_TRANSFER_FORMAT 301
-#define T_MAX_TRANSFER_TIME_IN 302
-#define T_SERIAL_QUERIES 303
-#define T_ONE_ANSWER 304
-#define T_MANY_ANSWERS 305
-#define T_NOTIFY 306
-#define T_AUTH_NXDOMAIN 307
-#define T_MULTIPLE_CNAMES 308
-#define T_USE_IXFR 309
-#define T_MAINTAIN_IXFR_BASE 310
-#define T_CLEAN_INTERVAL 311
-#define T_INTERFACE_INTERVAL 312
-#define T_STATS_INTERVAL 313
-#define T_MAX_LOG_SIZE_IXFR 314
-#define T_HEARTBEAT 315
-#define T_USE_ID_POOL 316
-#define T_MAX_NCACHE_TTL 317
-#define T_HAS_OLD_CLIENTS 318
-#define T_RFC2308_TYPE1 319
-#define T_LAME_TTL 320
-#define T_MIN_ROOTS 321
-#define T_TREAT_CR_AS_SPACE 322
-#define T_LOGGING 323
-#define T_CATEGORY 324
-#define T_CHANNEL 325
-#define T_SEVERITY 326
-#define T_DYNAMIC 327
-#define T_FILE 328
-#define T_VERSIONS 329
-#define T_SIZE 330
-#define T_SYSLOG 331
-#define T_DEBUG 332
-#define T_NULL_OUTPUT 333
-#define T_PRINT_TIME 334
-#define T_PRINT_CATEGORY 335
-#define T_PRINT_SEVERITY 336
-#define T_SORTLIST 337
-#define T_TOPOLOGY 338
-#define T_SERVER 339
-#define T_LONG_AXFR 340
-#define T_BOGUS 341
-#define T_TRANSFERS 342
-#define T_KEYS 343
-#define T_SUPPORT_IXFR 344
-#define T_ZONE 345
-#define T_IN 346
-#define T_CHAOS 347
-#define T_HESIOD 348
-#define T_TYPE 349
-#define T_MASTER 350
-#define T_SLAVE 351
-#define T_STUB 352
-#define T_RESPONSE 353
-#define T_HINT 354
-#define T_MASTERS 355
-#define T_TRANSFER_SOURCE 356
-#define T_PUBKEY 357
-#define T_ALSO_NOTIFY 358
-#define T_DIALUP 359
-#define T_FILE_IXFR 360
-#define T_IXFR_TMP 361
-#define T_TRUSTED_KEYS 362
-#define T_ACL 363
-#define T_ALLOW_UPDATE 364
-#define T_ALLOW_QUERY 365
-#define T_ALLOW_TRANSFER 366
-#define T_ALLOW_RECURSION 367
-#define T_BLACKHOLE 368
-#define T_SEC_KEY 369
-#define T_ALGID 370
-#define T_SECRET 371
-#define T_CHECK_NAMES 372
-#define T_WARN 373
-#define T_FAIL 374
-#define T_IGNORE 375
-#define T_FORWARD 376
-#define T_FORWARDERS 377
-#define T_ONLY 378
-#define T_FIRST 379
-#define T_IF_NO_ANSWER 380
-#define T_IF_NO_DOMAIN 381
-#define T_YES 382
-#define T_TRUE 383
-#define T_NO 384
-#define T_FALSE 385
-#define YYERRCODE 256
-short yylhs[] = {                                        -1,
-    0,   31,   31,   32,   32,   32,   32,   32,   32,   32,
-   32,   32,   32,   32,   32,   33,   42,   34,   43,   43,
-   44,   44,   44,   44,   44,   44,   44,   44,   44,   44,
-   44,   44,   44,   44,   44,   44,   44,   44,   44,   44,
-   44,   44,   44,   44,   46,   44,   44,   44,   44,   44,
-   44,   44,   49,   44,   44,   44,   44,   44,   44,   44,
-   44,   44,   44,   44,   44,   44,   44,   44,   44,   44,
-   44,   44,   44,   35,   53,   53,   54,   54,   54,   54,
-   15,   15,   12,   12,   13,   13,   14,   14,   16,    6,
-    6,    5,    5,    4,    4,   55,   56,   48,   48,   48,
-   48,    2,    2,    3,    3,   29,   29,   29,   29,   29,
-   27,   27,   27,   28,   28,   28,   45,   45,   45,   45,
-   51,   51,   51,   51,   26,   26,   26,   26,   52,   52,
-   52,   47,   47,   57,   57,   58,   50,   50,   59,   59,
-   60,   61,   36,   62,   62,   62,   64,   63,   66,   63,
-   68,   68,   68,   68,   69,   69,   70,   71,   71,   71,
-   71,   71,   72,   10,   10,   11,   11,   73,   74,   74,
-   74,   74,   74,   74,   74,   67,   67,   67,    9,    9,
-   75,   65,   65,   65,    8,    8,    8,    7,   76,   37,
-   77,   77,   78,   78,   78,   78,   78,   78,   20,   20,
-   18,   18,   18,   17,   17,   17,   17,   17,   19,   23,
-   80,   79,   79,   79,   81,   41,   82,   82,   82,   24,
-   25,   40,   84,   38,   83,   83,   21,   21,   22,   22,
-   22,   22,   22,   85,   85,   86,   86,   86,   86,   86,
-   86,   86,   86,   86,   86,   86,   89,   86,   86,   86,
-   86,   86,   86,   86,   86,   86,   86,   87,   87,   92,
-   91,   91,   93,   93,   94,   88,   88,   90,   90,   95,
-   95,   96,   39,   97,   97,   98,   98,    1,   30,   30,
-};
-short yylen[] = {                                         2,
-    1,    1,    2,    1,    2,    2,    2,    2,    2,    2,
-    2,    2,    1,    2,    2,    3,    0,    5,    2,    3,
-    0,    2,    2,    2,    2,    2,    2,    2,    2,    2,
-    2,    2,    2,    2,    2,    2,    2,    2,    2,    3,
-    2,    2,    5,    2,    0,    5,    2,    2,    4,    4,
-    4,    4,    0,    5,    4,    4,    1,    1,    2,    2,
-    2,    2,    2,    2,    2,    2,    2,    2,    2,    4,
-    2,    2,    1,    4,    2,    3,    0,    8,    8,    1,
-    2,    3,    0,    2,    0,    2,    0,    2,    5,    1,
-    1,    1,    1,    1,    1,    2,    2,    1,    1,    2,
-    2,    0,    2,    0,    2,    1,    1,    1,    1,    1,
-    1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-    2,    2,    2,    2,    1,    1,    1,    1,    2,    2,
-    2,    0,    1,    2,    3,    1,    0,    1,    2,    3,
-    1,    0,    5,    2,    3,    1,    0,    6,    0,    6,
-    1,    1,    2,    1,    2,    2,    2,    0,    1,    1,
-    2,    2,    3,    1,    1,    0,    1,    2,    1,    1,
-    1,    2,    2,    2,    2,    2,    3,    1,    1,    1,
-    1,    2,    3,    1,    1,    1,    1,    1,    0,    6,
-    2,    3,    2,    2,    2,    2,    4,    1,    2,    3,
-    1,    2,    2,    1,    3,    3,    1,    3,    1,    1,
-    1,    2,    3,    1,    0,    6,    2,    2,    1,    3,
-    3,    5,    0,    5,    0,    3,    0,    1,    1,    1,
-    1,    1,    1,    2,    3,    2,    2,    2,    2,    5,
-    2,    2,    4,    4,    4,    2,    0,    5,    2,    2,
-    2,    2,    5,    5,    4,    2,    1,    2,    3,    1,
-    0,    1,    2,    3,    1,    1,    1,    0,    1,    2,
-    3,    1,    4,    2,    3,    5,    5,    1,    1,    1,
-};
-short yydefred[] = {                                      0,
-    0,   13,    0,   17,    0,  142,    0,    0,    0,    0,
-  215,    0,    0,    2,    4,    0,    0,    0,    0,    0,
-    0,    0,    0,   14,   15,    0,    0,    0,    0,  189,
-    0,    0,  279,  280,    0,    0,    3,    5,    6,    7,
-    8,    9,   10,   11,   12,   16,    0,   80,    0,    0,
-    0,    0,    0,    0,  223,  228,    0,    0,    0,    0,
-    0,   73,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,   53,    0,    0,
-    0,    0,    0,    0,    0,   45,    0,    0,   57,   58,
-   92,   93,    0,    0,   74,    0,   75,  146,    0,    0,
-    0,    0,    0,    0,    0,    0,  273,    0,  274,    0,
-    0,    0,    0,    0,  201,    0,  207,    0,  209,    0,
-   23,   25,   24,   28,   26,   27,  110,  106,  107,  108,
-  109,   29,   30,   31,    0,    0,   47,    0,    0,    0,
-    0,    0,  126,  127,  128,  121,  125,  122,  123,  124,
-   22,   33,   34,  129,  130,  131,   90,   91,   59,   60,
-   61,   32,   38,   39,   35,   36,   62,   63,   64,   65,
-   68,   41,   66,   37,   42,   67,   72,   71,    0,    0,
-   48,    0,   69,    0,    0,    0,    0,  111,  112,  113,
-    0,  117,  118,  119,  120,   44,    0,   18,    0,   19,
-    0,    0,   76,  186,  187,  147,  188,  185,  180,  149,
-  179,  143,    0,  144,  198,    0,    0,    0,    0,    0,
-    0,    0,    0,  224,    0,    0,  275,    0,    0,  203,
-    0,  202,  199,  222,    0,  219,    0,    0,    0,    0,
-    0,  278,   95,   94,   97,   96,  100,  101,  103,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,  114,  115,  116,   40,    0,   20,    0,    0,    0,
-    0,  145,  196,  193,  195,    0,  194,  190,    0,  191,
-  257,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,  247,
-    0,    0,    0,    0,  205,  206,  208,  200,    0,    0,
-  217,  218,  216,    0,   84,    0,    0,   70,    0,   81,
-   52,   56,  141,    0,    0,    0,   49,   51,   50,   55,
-  136,    0,    0,    0,    0,    0,    0,    0,  214,  211,
-  210,    0,    0,  192,  249,  251,  252,  250,  237,  229,
-  230,  232,  231,  233,  236,    0,    0,  241,    0,    0,
-    0,  256,  238,  239,    0,    0,    0,  242,  266,  267,
-  246,    0,  226,    0,  234,  276,  277,  220,  221,   43,
-   86,    0,    0,   82,   54,    0,  139,   46,    0,  134,
-    0,    0,  184,  181,    0,    0,  178,    0,    0,    0,
-  171,    0,    0,    0,    0,  169,  170,    0,  197,    0,
-  212,  105,    0,    0,    0,  265,    0,    0,    0,    0,
-    0,    0,    0,  235,   88,    0,  140,  135,    0,    0,
-  148,    0,  182,  154,    0,  151,  172,    0,  165,  167,
-  168,  164,  173,  174,  175,  150,    0,  176,  213,  260,
-    0,    0,    0,    0,  255,    0,  263,  243,  244,  245,
-  272,    0,    0,    0,   89,   78,   79,  183,  153,    0,
-    0,    0,    0,  163,  177,  240,    0,  258,  253,  254,
-  264,  248,    0,  270,  155,  156,  157,  161,  162,  259,
-  271,
-};
-short yydgoto[] = {                                      12,
-  274,  171,  387,  275,  123,  189,  236,  237,  424,  470,
-  471,  282,  347,  413,  283,  284,  145,  146,  147,  148,
-   55,  385,  370,  269,  270,  176,  221,  295,  162,  149,
-   13,   14,   15,   16,   17,   18,   19,   20,   21,   22,
-   23,   27,  117,  118,  226,  227,  362,  167,  212,  354,
-  119,  120,   51,   52,  168,  169,  363,  364,  355,  356,
-   29,  131,  132,  300,  425,  301,  435,  467,  502,  503,
-  504,  436,  437,  438,  426,   54,  251,  252,  372,  373,
-   36,  271,  254,  134,  331,  332,  481,  401,  402,  492,
-  447,  482,  448,  449,  493,  494,   58,   59,
-};
-short yysindex[] = {                                    419,
- -172,    0, -236,    0,  -91,    0, -224, -211,  -71, -178,
-    0,    0,  419,    0,    0, -166, -160, -158, -156, -154,
- -144, -139, -128,    0,    0, -126,  -49, -195,   10,    0,
- -178, -198,    0,    0,   12, -178,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,  349,    0,   -7, -123,
- -112, -115, -238,   23,    0,    0, -189, -110, -105,   43,
-   31,    0,  -98,  -96,  -94,  -85,  -76,  -73, -190, -190,
- -190,  -86, -106,   33,  -81,  -81,  -81,  -81,  -58, -190,
- -190,  -59,  -50,  -45, -121,  -34,  -32, -190, -190, -190,
- -190, -190,   51,   56,   63,   64,   66, -190,   68, -190,
- -190,   69,   71, -190,  123,  136,   -7,    0, -190,  212,
-  219,  220,  222, -258, -182,    0,  168,   89,    0,    0,
-    0,    0,   73,   62,    0,   93,    0,    0, -181, -216,
-  -69,   94, -220,  230,   95,   96,    0,   99,    0,  312,
-  313,  104,   43, -100,    0,  108,    0,  -29,    0, -196,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,  -31,   -7,    0,  100,   92,  111,
-  254,   98,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,   43,   43,
-    0,  257,    0,   43,   43,   43,   43,    0,    0,    0,
-  -68,    0,    0,    0,    0,    0,  258,    0,  127,    0,
-  111,  126,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,  129,    0,    0, -121, -190,  130,  265, -190,
- -120,  133,  374,    0,  134,  135,    0,  137,  138,    0,
-  -25,    0,    0,    0,  141,    0, -178, -178,   21,   32,
-  275,    0,    0,    0,    0,    0,    0,    0,    0,   43,
- -178,   52, -108,  146,  -21,  -17,  147,  -11,    5,    9,
-   14,    0,    0,    0,    0,  148,    0,  116,  121,  286,
-  287,    0,    0,    0,    0, -151,    0,    0,  154,    0,
-    0,  155, -190, -190,  157,  152,  -13,  143,   -7,   35,
-  294, -190,  160,  161,  300,  302,  304,  -68,  -70,    0,
-  236,  171,  169,  170,    0,    0,    0,    0,  172,  175,
-    0,    0,    0,   18,    0, -178,  164,    0,  188,    0,
-    0,    0,    0,  322,  147,  191,    0,    0,    0,    0,
-    0,  324,  148,  193,  328,  194, -207,   -2,    0,    0,
-    0,  -92,  195,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,  111,  331,    0,  196,  197,
-  202,    0,    0,    0,   43,   43,   43,    0,    0,    0,
-    0,  338,    0,  215,    0,    0,    0,    0,    0,    0,
-    0,  232,  216,    0,    0,  237,    0,    0,  239,    0,
-   43,  186,    0,    0,  -41,  243,    0, -145,  240, -183,
-    0, -190, -190, -190, -118,    0,    0,  245,    0,  246,
-    0,    0,  249,  250,  251,    0,  379,  202,  255,   22,
-   26,   30,  253,    0,    0,  248,    0,    0,   39,  256,
-    0,  259,    0,    0,  260,    0,    0,  -16,    0,    0,
-    0,    0,    0,    0,    0,    0,  261,    0,    0,    0,
- -101,  263,  252,  264,    0,  271,    0,    0,    0,    0,
-    0,  389,  253,  272,    0,    0,    0,    0,    0, -218,
-  -81,  187,  192,    0,    0,    0,  273,    0,    0,    0,
-    0,    0,  274,    0,    0,    0,    0,    0,    0,    0,
-    0,
-};
-short yyrindex[] = {                                      0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,  522,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,  280,    0,    0,
- -117,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,  282,    0,    0,    0,
-  280,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,  409,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,  282,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,  284,    0,    0,    0,    0,    0,  290,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,  291,  292,    0,
-    0, -222,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,   41, -222,    0,    0,    0,  418,    0,    0,    0,
-    0,    0,    0,    0,    0,  426,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,  429,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,  276,    0,    0,    0,
-    0,    0,    0,    0,  428,    0,    0,    0,    0,    0,
-    0,    0,  431,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-  432,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,  297,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,  433,    0,    0,
-    0,    0,  434,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,  303,    0,    0,  305,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,  436,    0,    0,    0,    0,    0,    0,    0,
-    0,  306,  308,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,
-};
-short yygindex[] = {                                      0,
- -124,    0,    0,    0,  -93,  320,    0,    0,  437,    0,
-    0,    0,    0,    0,    0,  285,  425,  -84,    0,  102,
-    0,    0,    0,  301,  307,  -75,    0,  242,  -61,  -10,
-    0,  559,    0,    0,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,  456,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,  523,  406,  410,    0,  214,    0,  224,
-    0,    0,  449,    0,    0,    0,    0,    0,   78,   80,
-    0,    0,    0,  149,  158,    0,    0,  335,    0,  217,
-    0,    0,    0,    0,    0,  267,    0,    0,    0,    0,
-    0,  106,    0,  140,    0,   97,    0,  541,
-};
-#define YYTABLESIZE 788
-short yytable[] = {                                      35,
-  178,  179,  180,  144,  308,  227,  476,  144,  163,  164,
-  273,  144,  125,  211,  137,  144,  348,  128,  182,  183,
-   56,  144,  143,  506,   26,   61,  192,  193,  194,  195,
-  196,   28,  439,   30,  122,  245,  202,  144,  204,  205,
-  515,  144,  208,   33,   34,  279,  144,  213,  423,   31,
-  144,   32,   33,   34,  144,  242,   83,   83,  144,  266,
-   48,   57,  144,  265,  177,  177,  177,  177,  157,  135,
-  136,  144,  276,   47,  516,  144,   33,   34,   33,   34,
-  246,   33,   34,  461,   24,  129,  130,   49,   50,   25,
-   38,  218,  219,  143,  220,  264,   39,  143,   40,  337,
-   41,  143,   42,  351,  369,  143,  298,  352,   33,   34,
-  234,  143,   43,  357,   33,   34,  239,   44,  238,  241,
-  247,  248,  249,  250,  235,  239,   83,  143,   45,  358,
-   46,  143,   53,  359,   60,  245,  143,  124,  360,  227,
-  143,  127,  410,   48,  143,  133,  488,  469,  143,   57,
-  489,  139,  143,  150,  490,  172,  480,  140,  141,   33,
-   34,  143,  151,  496,  152,  143,  153,   33,   34,  170,
-   49,   50,  281,  267,  268,  154,  265,  173,   33,   34,
-  246,  464,  187,  188,  155,  304,  465,  156,  307,  165,
-  166,  158,  159,  160,  161,  222,  223,  224,  225,  184,
-  265,  265,  181,  265,  265,  265,  265,  428,  185,  429,
-  174,  175,  430,  186,  431,  432,  433,  434,   33,   34,
-  247,  248,  249,  250,  190,  388,  191,  272,  140,  141,
-   33,   34,  140,  141,   33,   34,  140,  141,   33,   34,
-  140,  141,   33,   34,  261,  209,  140,  141,   33,   34,
-  121,  376,  377,  427,  129,  130,  339,  340,  210,  265,
-  392,  442,  140,  141,   33,   34,  140,  141,   33,   34,
-  345,  140,  141,   33,   34,  140,  141,   33,   34,  140,
-  141,   33,   34,  140,  141,   33,   34,  140,  141,   33,
-   34,  239,  228,  389,  390,  371,  140,  141,   33,   34,
-  140,  141,   33,   34,  292,  293,  294,  399,  400,  197,
-  285,  286,  500,  501,  198,  288,  289,  290,  291,   85,
-   85,  199,  200,  428,  201,  429,  203,  206,  430,  207,
-  431,  432,  433,  434,  214,  411,  380,  381,  382,  142,
-  383,  215,  216,  142,  217,  230,  232,  142,  231,  233,
-  244,  142,  253,  255,  256,  257,  241,  142,  258,  259,
-  403,  371,  384,  260,  263,  265,  265,  265,  166,  272,
-  473,  474,  475,  142,  265,  165,  280,  142,  281,  287,
-  296,  344,  142,  297,  299,  302,  142,  306,  305,  310,
-  142,  268,  333,  334,  142,  335,  336,  338,  142,  343,
-  346,  267,  350,  365,  353,  361,  366,  142,  367,  368,
-  374,  142,  379,  375,  241,  378,  391,  466,  386,  472,
-  393,  394,  395,   62,  396,  517,  397,  405,  408,  406,
-  407,  409,   63,   64,   65,   66,   67,   68,   69,   70,
-   71,   72,   73,  412,  414,   74,  415,  417,  418,  420,
-  421,  441,  422,  443,  444,  445,   75,   76,   77,  446,
-  453,   78,   79,   80,   81,   82,   83,   84,   85,   86,
-   87,  454,  460,   88,   89,   90,   91,   92,   93,   94,
-   95,   96,   97,   98,   99,  100,  101,  102,  103,  104,
-  177,  311,  455,  457,  456,  458,  450,  451,  452,  463,
-  468,  478,  479,  485,  105,  106,  480,  495,  483,  484,
-  491,  487,  509,  512,  497,  498,  501,  505,  499,  508,
-  500,    1,  459,  107,  510,  108,  109,  511,  514,  520,
-  521,  102,  110,  111,  112,  113,   77,  312,   21,  114,
-  225,  313,  137,  115,  116,  314,  204,   98,   99,  315,
-  132,  104,  138,  166,   87,  133,  261,  262,  268,  152,
-  269,  158,  159,  316,  160,  303,  240,  349,  262,  398,
-  342,   37,  229,  126,  278,  341,  419,  277,  416,  243,
-  519,  518,  462,  477,  317,  309,  507,  486,  440,  513,
-  318,  319,  320,  321,  322,  323,  324,  404,  138,  325,
-  326,  327,    0,    0,   62,    0,    0,  328,    0,    0,
-    0,  329,  330,   63,   64,   65,   66,   67,   68,   69,
-   70,   71,   72,   73,    0,    0,   74,    0,    0,  311,
-    0,    0,    0,    0,    0,    0,    0,   75,   76,   77,
-    0,    0,   78,   79,   80,   81,   82,   83,   84,   85,
-   86,   87,    0,    0,   88,   89,   90,   91,   92,   93,
-   94,   95,   96,   97,   98,   99,  100,  101,  102,  103,
-  104,    0,    0,    0,    1,  312,    0,    0,    0,  313,
-    2,    3,    4,  314,    0,  105,  106,  315,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    5,  316,    0,    0,  107,    0,  108,  109,    0,    0,
-    0,    0,    0,  110,  111,  112,  113,    0,    0,    0,
-  114,    0,  317,    0,  115,  116,    0,    0,  318,  319,
-  320,  321,  322,  323,  324,    0,    0,  325,  326,  327,
-    0,    6,    0,    0,    0,  328,    0,    0,    0,  329,
-  330,    0,    0,    0,    0,    0,    0,    7,    0,    0,
-    0,    0,    0,    8,    0,    0,    0,    0,    0,    0,
-    0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-    9,   10,    0,    0,    0,    0,    0,   11,
-};
-short yycheck[] = {                                      10,
-   76,   77,   78,   33,  125,  123,  125,   33,   70,   71,
-   42,   33,  125,  107,  125,   33,  125,  256,   80,   81,
-   31,   33,  123,  125,  261,   36,   88,   89,   90,   91,
-   92,  123,  125,  258,   42,  256,   98,   33,  100,  101,
-  259,   33,  104,  260,  261,  170,   33,  109,  256,  261,
-   33,  123,  260,  261,   33,  125,  279,  280,   33,  256,
-  256,  260,   33,  148,   75,   76,   77,   78,  259,  259,
-  260,   33,  166,  123,  293,   33,  260,  261,  260,  261,
-  301,  260,  261,  125,  257,  324,  325,  283,  284,  262,
-  257,  350,  351,  123,  353,  125,  257,  123,  257,  125,
-  257,  123,  257,  125,  256,  123,  231,  125,  260,  261,
-  292,  123,  257,  125,  260,  261,  333,  257,  129,  130,
-  341,  342,  343,  344,  306,  333,  349,  123,  257,  125,
-  257,  123,  123,  125,  123,  256,  123,  261,  125,  257,
-  123,  257,  125,  256,  123,  123,  125,  331,  123,  260,
-  125,  257,  123,  123,  125,  123,  258,  258,  259,  260,
-  261,  123,  261,  125,  261,  123,  261,  260,  261,  276,
-  283,  284,  281,  370,  371,  261,  261,  259,  260,  261,
-  301,  327,  304,  305,  261,  247,  332,  261,  250,  276,
-  277,  382,  383,  384,  385,  378,  379,  380,  381,  259,
-  285,  286,  261,  288,  289,  290,  291,  326,  259,  328,
-  292,  293,  331,  259,  333,  334,  335,  336,  260,  261,
-  341,  342,  343,  344,  259,  319,  259,  259,  258,  259,
-  260,  261,  258,  259,  260,  261,  258,  259,  260,  261,
-  258,  259,  260,  261,  143,  123,  258,  259,  260,  261,
-  258,  313,  314,  256,  324,  325,  267,  268,  123,  344,
-  322,  386,  258,  259,  260,  261,  258,  259,  260,  261,
-  281,  258,  259,  260,  261,  258,  259,  260,  261,  258,
-  259,  260,  261,  258,  259,  260,  261,  258,  259,  260,
-  261,  333,  125,  259,  260,  306,  258,  259,  260,  261,
-  258,  259,  260,  261,  373,  374,  375,  378,  379,  259,
-  209,  210,  329,  330,  259,  214,  215,  216,  217,  279,
-  280,  259,  259,  326,  259,  328,  259,  259,  331,  259,
-  333,  334,  335,  336,  123,  346,  350,  351,  352,  369,
-  354,  123,  123,  369,  123,  257,  285,  369,  276,  257,
-  257,  369,  123,  259,  259,  257,  367,  369,   47,   47,
-  125,  372,  376,  260,  257,  450,  451,  452,  277,  259,
-  432,  433,  434,  369,  459,  276,  123,  369,  281,  123,
-  123,  280,  369,  257,  259,  257,  369,  123,  259,  257,
-  369,  371,  259,  259,  369,  259,  259,  257,  369,  125,
-  349,  370,  257,  288,  258,  258,  286,  369,  123,  123,
-  257,  369,  261,  259,  425,  259,  123,  428,  276,  430,
-  261,  261,  123,  256,  123,  501,  123,  257,  257,  261,
-  261,  257,  265,  266,  267,  268,  269,  270,  271,  272,
-  273,  274,  275,  280,  257,  278,  125,  257,  125,  257,
-  123,  257,  259,  123,  259,  259,  289,  290,  291,  258,
-  123,  294,  295,  296,  297,  298,  299,  300,  301,  302,
-  303,  257,  287,  306,  307,  308,  309,  310,  311,  312,
-  313,  314,  315,  316,  317,  318,  319,  320,  321,  322,
-  501,  256,  261,  257,  279,  257,  395,  396,  397,  257,
-  261,  257,  257,  125,  337,  338,  258,  260,  259,  259,
-  258,  257,  261,  125,  259,  257,  330,  257,  259,  257,
-  329,    0,  421,  356,  261,  358,  359,  257,  257,  257,
-  257,  123,  365,  366,  367,  368,  257,  302,  257,  372,
-  257,  306,  125,  376,  377,  310,  257,  257,  257,  314,
-  125,  123,  125,  257,  279,  125,  125,  125,  125,  257,
-  125,  257,  257,  328,  257,  246,  130,  283,  144,  328,
-  270,   13,  117,   51,  169,  269,  363,  168,  355,  131,
-  503,  502,  425,  435,  349,  251,  481,  448,  372,  493,
-  355,  356,  357,  358,  359,  360,  361,  331,   58,  364,
-  365,  366,   -1,   -1,  256,   -1,   -1,  372,   -1,   -1,
-   -1,  376,  377,  265,  266,  267,  268,  269,  270,  271,
-  272,  273,  274,  275,   -1,   -1,  278,   -1,   -1,  256,
-   -1,   -1,   -1,   -1,   -1,   -1,   -1,  289,  290,  291,
-   -1,   -1,  294,  295,  296,  297,  298,  299,  300,  301,
-  302,  303,   -1,   -1,  306,  307,  308,  309,  310,  311,
-  312,  313,  314,  315,  316,  317,  318,  319,  320,  321,
-  322,   -1,   -1,   -1,  256,  302,   -1,   -1,   -1,  306,
-  262,  263,  264,  310,   -1,  337,  338,  314,   -1,   -1,
-   -1,   -1,   -1,   -1,   -1,   -1,   -1,   -1,   -1,   -1,
-  282,  328,   -1,   -1,  356,   -1,  358,  359,   -1,   -1,
-   -1,   -1,   -1,  365,  366,  367,  368,   -1,   -1,   -1,
-  372,   -1,  349,   -1,  376,  377,   -1,   -1,  355,  356,
-  357,  358,  359,  360,  361,   -1,   -1,  364,  365,  366,
-   -1,  323,   -1,   -1,   -1,  372,   -1,   -1,   -1,  376,
-  377,   -1,   -1,   -1,   -1,   -1,   -1,  339,   -1,   -1,
-   -1,   -1,   -1,  345,   -1,   -1,   -1,   -1,   -1,   -1,
-   -1,   -1,   -1,   -1,   -1,   -1,   -1,   -1,   -1,   -1,
-  362,  363,   -1,   -1,   -1,   -1,   -1,  369,
-};
-#define YYFINAL 12
-#ifndef YYDEBUG
-#define YYDEBUG 0
-#endif
-#define YYMAXTOKEN 385
-#if YYDEBUG
-char *yyname[] = {
-"end-of-file",0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,
-"'!'",0,0,0,0,0,0,0,0,"'*'",0,0,0,0,"'/'",0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,
-0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,
-0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,"'{'",0,"'}'",0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,
-0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,
-0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,
-0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,"L_EOS",
-"L_IPADDR","L_NUMBER","L_STRING","L_QSTRING","L_END_INCLUDE","T_INCLUDE",
-"T_OPTIONS","T_DIRECTORY","T_PIDFILE","T_NAMED_XFER","T_DUMP_FILE",
-"T_STATS_FILE","T_MEMSTATS_FILE","T_FAKE_IQUERY","T_RECURSION","T_FETCH_GLUE",
-"T_QUERY_SOURCE","T_LISTEN_ON","T_PORT","T_ADDRESS","T_RRSET_ORDER","T_ORDER",
-"T_NAME","T_CLASS","T_CONTROLS","T_INET","T_UNIX","T_PERM","T_OWNER","T_GROUP",
-"T_ALLOW","T_DATASIZE","T_STACKSIZE","T_CORESIZE","T_DEFAULT","T_UNLIMITED",
-"T_FILES","T_VERSION","T_HOSTSTATS","T_DEALLOC_ON_EXIT","T_TRANSFERS_IN",
-"T_TRANSFERS_OUT","T_TRANSFERS_PER_NS","T_TRANSFER_FORMAT",
-"T_MAX_TRANSFER_TIME_IN","T_SERIAL_QUERIES","T_ONE_ANSWER","T_MANY_ANSWERS",
-"T_NOTIFY","T_AUTH_NXDOMAIN","T_MULTIPLE_CNAMES","T_USE_IXFR",
-"T_MAINTAIN_IXFR_BASE","T_CLEAN_INTERVAL","T_INTERFACE_INTERVAL",
-"T_STATS_INTERVAL","T_MAX_LOG_SIZE_IXFR","T_HEARTBEAT","T_USE_ID_POOL",
-"T_MAX_NCACHE_TTL","T_HAS_OLD_CLIENTS","T_RFC2308_TYPE1","T_LAME_TTL",
-"T_MIN_ROOTS","T_TREAT_CR_AS_SPACE","T_LOGGING","T_CATEGORY","T_CHANNEL",
-"T_SEVERITY","T_DYNAMIC","T_FILE","T_VERSIONS","T_SIZE","T_SYSLOG","T_DEBUG",
-"T_NULL_OUTPUT","T_PRINT_TIME","T_PRINT_CATEGORY","T_PRINT_SEVERITY",
-"T_SORTLIST","T_TOPOLOGY","T_SERVER","T_LONG_AXFR","T_BOGUS","T_TRANSFERS",
-"T_KEYS","T_SUPPORT_IXFR","T_ZONE","T_IN","T_CHAOS","T_HESIOD","T_TYPE",
-"T_MASTER","T_SLAVE","T_STUB","T_RESPONSE","T_HINT","T_MASTERS",
-"T_TRANSFER_SOURCE","T_PUBKEY","T_ALSO_NOTIFY","T_DIALUP","T_FILE_IXFR",
-"T_IXFR_TMP","T_TRUSTED_KEYS","T_ACL","T_ALLOW_UPDATE","T_ALLOW_QUERY",
-"T_ALLOW_TRANSFER","T_ALLOW_RECURSION","T_BLACKHOLE","T_SEC_KEY","T_ALGID",
-"T_SECRET","T_CHECK_NAMES","T_WARN","T_FAIL","T_IGNORE","T_FORWARD",
-"T_FORWARDERS","T_ONLY","T_FIRST","T_IF_NO_ANSWER","T_IF_NO_DOMAIN","T_YES",
-"T_TRUE","T_NO","T_FALSE",
-};
-char *yyrule[] = {
-"$accept : config_file",
-"config_file : statement_list",
-"statement_list : statement",
-"statement_list : statement_list statement",
-"statement : include_stmt",
-"statement : options_stmt L_EOS",
-"statement : controls_stmt L_EOS",
-"statement : logging_stmt L_EOS",
-"statement : server_stmt L_EOS",
-"statement : zone_stmt L_EOS",
-"statement : trusted_keys_stmt L_EOS",
-"statement : acl_stmt L_EOS",
-"statement : key_stmt L_EOS",
-"statement : L_END_INCLUDE",
-"statement : error L_EOS",
-"statement : error L_END_INCLUDE",
-"include_stmt : T_INCLUDE L_QSTRING L_EOS",
-"$$1 :",
-"options_stmt : T_OPTIONS $$1 '{' options '}'",
-"options : option L_EOS",
-"options : options option L_EOS",
-"option :",
-"option : T_VERSION L_QSTRING",
-"option : T_DIRECTORY L_QSTRING",
-"option : T_NAMED_XFER L_QSTRING",
-"option : T_PIDFILE L_QSTRING",
-"option : T_STATS_FILE L_QSTRING",
-"option : T_MEMSTATS_FILE L_QSTRING",
-"option : T_DUMP_FILE L_QSTRING",
-"option : T_FAKE_IQUERY yea_or_nay",
-"option : T_RECURSION yea_or_nay",
-"option : T_FETCH_GLUE yea_or_nay",
-"option : T_NOTIFY yea_or_nay",
-"option : T_HOSTSTATS yea_or_nay",
-"option : T_DEALLOC_ON_EXIT yea_or_nay",
-"option : T_USE_IXFR yea_or_nay",
-"option : T_MAINTAIN_IXFR_BASE yea_or_nay",
-"option : T_HAS_OLD_CLIENTS yea_or_nay",
-"option : T_AUTH_NXDOMAIN yea_or_nay",
-"option : T_MULTIPLE_CNAMES yea_or_nay",
-"option : T_CHECK_NAMES check_names_type check_names_opt",
-"option : T_USE_ID_POOL yea_or_nay",
-"option : T_RFC2308_TYPE1 yea_or_nay",
-"option : T_LISTEN_ON maybe_port '{' address_match_list '}'",
-"option : T_FORWARD forward_opt",
-"$$2 :",
-"option : T_FORWARDERS $$2 '{' opt_forwarders_list '}'",
-"option : T_QUERY_SOURCE query_source",
-"option : T_TRANSFER_SOURCE maybe_wild_addr",
-"option : T_ALLOW_QUERY '{' address_match_list '}'",
-"option : T_ALLOW_RECURSION '{' address_match_list '}'",
-"option : T_ALLOW_TRANSFER '{' address_match_list '}'",
-"option : T_SORTLIST '{' address_match_list '}'",
-"$$3 :",
-"option : T_ALSO_NOTIFY $$3 '{' opt_also_notify_list '}'",
-"option : T_BLACKHOLE '{' address_match_list '}'",
-"option : T_TOPOLOGY '{' address_match_list '}'",
-"option : size_clause",
-"option : transfer_clause",
-"option : T_TRANSFER_FORMAT transfer_format",
-"option : T_MAX_TRANSFER_TIME_IN L_NUMBER",
-"option : T_SERIAL_QUERIES L_NUMBER",
-"option : T_CLEAN_INTERVAL L_NUMBER",
-"option : T_INTERFACE_INTERVAL L_NUMBER",
-"option : T_STATS_INTERVAL L_NUMBER",
-"option : T_MAX_LOG_SIZE_IXFR L_NUMBER",
-"option : T_MAX_NCACHE_TTL L_NUMBER",
-"option : T_LAME_TTL L_NUMBER",
-"option : T_HEARTBEAT L_NUMBER",
-"option : T_DIALUP yea_or_nay",
-"option : T_RRSET_ORDER '{' rrset_ordering_list '}'",
-"option : T_TREAT_CR_AS_SPACE yea_or_nay",
-"option : T_MIN_ROOTS L_NUMBER",
-"option : error",
-"controls_stmt : T_CONTROLS '{' controls '}'",
-"controls : control L_EOS",
-"controls : controls control L_EOS",
-"control :",
-"control : T_INET maybe_wild_addr T_PORT in_port T_ALLOW '{' address_match_list '}'",
-"control : T_UNIX L_QSTRING T_PERM L_NUMBER T_OWNER L_NUMBER T_GROUP L_NUMBER",
-"control : error",
-"rrset_ordering_list : rrset_ordering_element L_EOS",
-"rrset_ordering_list : rrset_ordering_list rrset_ordering_element L_EOS",
-"ordering_class :",
-"ordering_class : T_CLASS any_string",
-"ordering_type :",
-"ordering_type : T_TYPE any_string",
-"ordering_name :",
-"ordering_name : T_NAME L_QSTRING",
-"rrset_ordering_element : ordering_class ordering_type ordering_name T_ORDER L_STRING",
-"transfer_format : T_ONE_ANSWER",
-"transfer_format : T_MANY_ANSWERS",
-"maybe_wild_addr : L_IPADDR",
-"maybe_wild_addr : '*'",
-"maybe_wild_port : in_port",
-"maybe_wild_port : '*'",
-"query_source_address : T_ADDRESS maybe_wild_addr",
-"query_source_port : T_PORT maybe_wild_port",
-"query_source : query_source_address",
-"query_source : query_source_port",
-"query_source : query_source_address query_source_port",
-"query_source : query_source_port query_source_address",
-"maybe_port :",
-"maybe_port : T_PORT in_port",
-"maybe_zero_port :",
-"maybe_zero_port : T_PORT in_port",
-"yea_or_nay : T_YES",
-"yea_or_nay : T_TRUE",
-"yea_or_nay : T_NO",
-"yea_or_nay : T_FALSE",
-"yea_or_nay : L_NUMBER",
-"check_names_type : T_MASTER",
-"check_names_type : T_SLAVE",
-"check_names_type : T_RESPONSE",
-"check_names_opt : T_WARN",
-"check_names_opt : T_FAIL",
-"check_names_opt : T_IGNORE",
-"forward_opt : T_ONLY",
-"forward_opt : T_FIRST",
-"forward_opt : T_IF_NO_ANSWER",
-"forward_opt : T_IF_NO_DOMAIN",
-"size_clause : T_DATASIZE size_spec",
-"size_clause : T_STACKSIZE size_spec",
-"size_clause : T_CORESIZE size_spec",
-"size_clause : T_FILES size_spec",
-"size_spec : any_string",
-"size_spec : L_NUMBER",
-"size_spec : T_DEFAULT",
-"size_spec : T_UNLIMITED",
-"transfer_clause : T_TRANSFERS_IN L_NUMBER",
-"transfer_clause : T_TRANSFERS_OUT L_NUMBER",
-"transfer_clause : T_TRANSFERS_PER_NS L_NUMBER",
-"opt_forwarders_list :",
-"opt_forwarders_list : forwarders_in_addr_list",
-"forwarders_in_addr_list : forwarders_in_addr L_EOS",
-"forwarders_in_addr_list : forwarders_in_addr_list forwarders_in_addr L_EOS",
-"forwarders_in_addr : L_IPADDR",
-"opt_also_notify_list :",
-"opt_also_notify_list : also_notify_in_addr_list",
-"also_notify_in_addr_list : also_notify_in_addr L_EOS",
-"also_notify_in_addr_list : also_notify_in_addr_list also_notify_in_addr L_EOS",
-"also_notify_in_addr : L_IPADDR",
-"$$4 :",
-"logging_stmt : T_LOGGING $$4 '{' logging_opts_list '}'",
-"logging_opts_list : logging_opt L_EOS",
-"logging_opts_list : logging_opts_list logging_opt L_EOS",
-"logging_opts_list : error",
-"$$5 :",
-"logging_opt : T_CATEGORY category $$5 '{' channel_list '}'",
-"$$6 :",
-"logging_opt : T_CHANNEL channel_name $$6 '{' channel_opt_list '}'",
-"channel_severity : any_string",
-"channel_severity : T_DEBUG",
-"channel_severity : T_DEBUG L_NUMBER",
-"channel_severity : T_DYNAMIC",
-"version_modifier : T_VERSIONS L_NUMBER",
-"version_modifier : T_VERSIONS T_UNLIMITED",
-"size_modifier : T_SIZE size_spec",
-"maybe_file_modifiers :",
-"maybe_file_modifiers : version_modifier",
-"maybe_file_modifiers : size_modifier",
-"maybe_file_modifiers : version_modifier size_modifier",
-"maybe_file_modifiers : size_modifier version_modifier",
-"channel_file : T_FILE L_QSTRING maybe_file_modifiers",
-"facility_name : any_string",
-"facility_name : T_SYSLOG",
-"maybe_syslog_facility :",
-"maybe_syslog_facility : facility_name",
-"channel_syslog : T_SYSLOG maybe_syslog_facility",
-"channel_opt : channel_file",
-"channel_opt : channel_syslog",
-"channel_opt : T_NULL_OUTPUT",
-"channel_opt : T_SEVERITY channel_severity",
-"channel_opt : T_PRINT_TIME yea_or_nay",
-"channel_opt : T_PRINT_CATEGORY yea_or_nay",
-"channel_opt : T_PRINT_SEVERITY yea_or_nay",
-"channel_opt_list : channel_opt L_EOS",
-"channel_opt_list : channel_opt_list channel_opt L_EOS",
-"channel_opt_list : error",
-"channel_name : any_string",
-"channel_name : T_NULL_OUTPUT",
-"channel : channel_name",
-"channel_list : channel L_EOS",
-"channel_list : channel_list channel L_EOS",
-"channel_list : error",
-"category_name : any_string",
-"category_name : T_DEFAULT",
-"category_name : T_NOTIFY",
-"category : category_name",
-"$$7 :",
-"server_stmt : T_SERVER L_IPADDR $$7 '{' server_info_list '}'",
-"server_info_list : server_info L_EOS",
-"server_info_list : server_info_list server_info L_EOS",
-"server_info : T_BOGUS yea_or_nay",
-"server_info : T_SUPPORT_IXFR yea_or_nay",
-"server_info : T_TRANSFERS L_NUMBER",
-"server_info : T_TRANSFER_FORMAT transfer_format",
-"server_info : T_KEYS '{' key_list '}'",
-"server_info : error",
-"address_match_list : address_match_element L_EOS",
-"address_match_list : address_match_list address_match_element L_EOS",
-"address_match_element : address_match_simple",
-"address_match_element : '!' address_match_simple",
-"address_match_element : T_SEC_KEY L_STRING",
-"address_match_simple : L_IPADDR",
-"address_match_simple : L_IPADDR '/' L_NUMBER",
-"address_match_simple : L_NUMBER '/' L_NUMBER",
-"address_match_simple : address_name",
-"address_match_simple : '{' address_match_list '}'",
-"address_name : any_string",
-"key_ref : any_string",
-"key_list_element : key_ref",
-"key_list : key_list_element L_EOS",
-"key_list : key_list key_list_element L_EOS",
-"key_list : error",
-"$$8 :",
-"key_stmt : T_SEC_KEY $$8 any_string '{' key_definition '}'",
-"key_definition : algorithm_id secret",
-"key_definition : secret algorithm_id",
-"key_definition : error",
-"algorithm_id : T_ALGID any_string L_EOS",
-"secret : T_SECRET any_string L_EOS",
-"acl_stmt : T_ACL any_string '{' address_match_list '}'",
-"$$9 :",
-"zone_stmt : T_ZONE L_QSTRING optional_class $$9 optional_zone_options_list",
-"optional_zone_options_list :",
-"optional_zone_options_list : '{' zone_option_list '}'",
-"optional_class :",
-"optional_class : any_string",
-"zone_type : T_MASTER",
-"zone_type : T_SLAVE",
-"zone_type : T_HINT",
-"zone_type : T_STUB",
-"zone_type : T_FORWARD",
-"zone_option_list : zone_option L_EOS",
-"zone_option_list : zone_option_list zone_option L_EOS",
-"zone_option : T_TYPE zone_type",
-"zone_option : T_FILE L_QSTRING",
-"zone_option : T_FILE_IXFR L_QSTRING",
-"zone_option : T_IXFR_TMP L_QSTRING",
-"zone_option : T_MASTERS maybe_zero_port '{' master_in_addr_list '}'",
-"zone_option : T_TRANSFER_SOURCE maybe_wild_addr",
-"zone_option : T_CHECK_NAMES check_names_opt",
-"zone_option : T_ALLOW_UPDATE '{' address_match_list '}'",
-"zone_option : T_ALLOW_QUERY '{' address_match_list '}'",
-"zone_option : T_ALLOW_TRANSFER '{' address_match_list '}'",
-"zone_option : T_FORWARD zone_forward_opt",
-"$$10 :",
-"zone_option : T_FORWARDERS $$10 '{' opt_zone_forwarders_list '}'",
-"zone_option : T_MAX_TRANSFER_TIME_IN L_NUMBER",
-"zone_option : T_MAX_LOG_SIZE_IXFR L_NUMBER",
-"zone_option : T_NOTIFY yea_or_nay",
-"zone_option : T_MAINTAIN_IXFR_BASE yea_or_nay",
-"zone_option : T_PUBKEY L_NUMBER L_NUMBER L_NUMBER L_QSTRING",
-"zone_option : T_PUBKEY L_STRING L_NUMBER L_NUMBER L_QSTRING",
-"zone_option : T_ALSO_NOTIFY '{' opt_notify_in_addr_list '}'",
-"zone_option : T_DIALUP yea_or_nay",
-"zone_option : error",
-"master_in_addr_list : master_in_addr L_EOS",
-"master_in_addr_list : master_in_addr_list master_in_addr L_EOS",
-"master_in_addr : L_IPADDR",
-"opt_notify_in_addr_list :",
-"opt_notify_in_addr_list : notify_in_addr_list",
-"notify_in_addr_list : notify_in_addr L_EOS",
-"notify_in_addr_list : notify_in_addr_list notify_in_addr L_EOS",
-"notify_in_addr : L_IPADDR",
-"zone_forward_opt : T_ONLY",
-"zone_forward_opt : T_FIRST",
-"opt_zone_forwarders_list :",
-"opt_zone_forwarders_list : zone_forwarders_in_addr_list",
-"zone_forwarders_in_addr_list : zone_forwarders_in_addr L_EOS",
-"zone_forwarders_in_addr_list : zone_forwarders_in_addr_list zone_forwarders_in_addr L_EOS",
-"zone_forwarders_in_addr : L_IPADDR",
-"trusted_keys_stmt : T_TRUSTED_KEYS '{' trusted_keys_list '}'",
-"trusted_keys_list : trusted_key L_EOS",
-"trusted_keys_list : trusted_keys_list trusted_key L_EOS",
-"trusted_key : L_STRING L_NUMBER L_NUMBER L_NUMBER L_QSTRING",
-"trusted_key : L_STRING L_STRING L_NUMBER L_NUMBER L_QSTRING",
-"in_port : L_NUMBER",
-"any_string : L_STRING",
-"any_string : L_QSTRING",
-};
-#endif
-#ifdef YYSTACKSIZE
-#undef YYMAXDEPTH
-#define YYMAXDEPTH YYSTACKSIZE
-#else
-#ifdef YYMAXDEPTH
-#define YYSTACKSIZE YYMAXDEPTH
-#else
-#define YYSTACKSIZE 10000
-#define YYMAXDEPTH 10000
-#endif
-#endif
-#define YYINITSTACKSIZE 200
-int yydebug;
-int yynerrs;
-struct yystack {
-    short *ssp;
-    YYSTYPE *vsp;
-    short *ss;
-    YYSTYPE *vs;
-    int stacksize;
-    short *sslim;
-};
-int yychar; /* some people use this, so we copy it in & out */
-int yyerrflag; /* must be global for yyerrok & YYRECOVERING */
-YYSTYPE yylval;
-#line 1776 "ns_parser.y"
-
-static char *
-canonical_name(char *name) {
-	char canonical[MAXDNAME];
-	
-	if (strlen(name) >= MAXDNAME)
-		return (NULL);
-	strcpy(canonical, name);
-	if (makename(canonical, ".", sizeof canonical) < 0)
-		return (NULL);
-	return (savestr(canonical, 0));
-}
-
-static void
-init_acls() {
-	ip_match_element ime;
-	ip_match_list iml;
-	struct in_addr address;
-
-	/* Create the predefined ACLs */
-
-	address.s_addr = 0U;
-
-	/* ACL "any" */
-	ime = new_ip_match_pattern(address, 0);
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("any", 1), iml);
-
-	/* ACL "none" */
-	ime = new_ip_match_pattern(address, 0);
-	ip_match_negate(ime);
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("none", 1), iml);
-
-	/* ACL "localhost" */
-	ime = new_ip_match_localhost();
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("localhost", 1), iml);
-
-	/* ACL "localnets" */
-	ime = new_ip_match_localnets();
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("localnets", 1), iml);
-}
-
-static void
-free_sym_value(int type, void *value) {
-	ns_debug(ns_log_parser, 99, "free_sym_value: type %06x value %p",
-		 type, value);
-	type &= ~0xffff;
-	switch (type) {
-	case SYM_ACL:
-		free_ip_match_list(value);
-		break;
-	case SYM_KEY:
-		free_key_info(value);
-		break;
-	default:
-		ns_panic(ns_log_parser, 1,
-			 "unhandled case in free_sym_value()");
-		/* NOTREACHED */
-		break;
-	}
-}
-
-static log_channel
-lookup_channel(char *name) {
-	symbol_value value;
-
-	if (lookup_symbol(symtab, name, SYM_CHANNEL, &value))
-		return ((log_channel)(value.pointer));
-	return (NULL);
-}
-
-static void
-define_channel(char *name, log_channel channel) {
-	symbol_value value;
-
-	value.pointer = channel;  
-	define_symbol(symtab, name, SYM_CHANNEL, value, SYMBOL_FREE_KEY);
-}
-
-static void
-define_builtin_channels() {
-	define_channel(savestr("default_syslog", 1), syslog_channel);
-	define_channel(savestr("default_debug", 1), debug_channel);
-	define_channel(savestr("default_stderr", 1), stderr_channel);
-	define_channel(savestr("null", 1), null_channel);
-}
-
-static void
-parser_setup() {
-	seen_options = 0;
-	seen_topology = 0;
-	symtab = new_symbol_table(SYMBOL_TABLE_SIZE, NULL);
-	if (authtab != NULL)
-		free_symbol_table(authtab);
-	authtab = new_symbol_table(AUTH_TABLE_SIZE, free_sym_value);
-	init_acls();
-	define_builtin_channels();
-	INIT_LIST(current_controls);
-}
-
-static void
-parser_cleanup() {
-	if (symtab != NULL)
-		free_symbol_table(symtab);
-	symtab = NULL;
-	/*
-	 * We don't clean up authtab here because the ip_match_lists are in
-	 * use.
-	 */
-}
-
-/*
- * Public Interface
- */
-
-ip_match_list
-lookup_acl(char *name) {
-	symbol_value value;
-
-	if (lookup_symbol(authtab, name, SYM_ACL, &value))
-		return ((ip_match_list)(value.pointer));
-	return (NULL);
-}
-
-void
-define_acl(char *name, ip_match_list iml) {
-	symbol_value value;
-
-	INSIST(name != NULL);
-	INSIST(iml != NULL);
-
-	value.pointer = iml;
-	define_symbol(authtab, name, SYM_ACL, value,
-		      SYMBOL_FREE_KEY|SYMBOL_FREE_VALUE);
-	ns_debug(ns_log_parser, 7, "acl %s", name);
-	dprint_ip_match_list(ns_log_parser, iml, 2, "allow ", "deny ");
-}
-
-struct dst_key *
-lookup_key(char *name) {
-	symbol_value value;
-
-	if (lookup_symbol(authtab, name, SYM_KEY, &value))
-		return ((struct dst_key *)(value.pointer));
-	return (NULL);
-}
-
-void
-define_key(char *name, struct dst_key *dst_key) {
-	symbol_value value;
-
-	INSIST(name != NULL);
-	INSIST(dst_key != NULL);
-
-	value.pointer = dst_key;
-	define_symbol(authtab, name, SYM_KEY, value, SYMBOL_FREE_VALUE);
-	dprint_key_info(dst_key);
-}
-
-void
-parse_configuration(const char *filename) {
-	FILE *config_stream;
-
-	config_stream = fopen(filename, "r");
-	if (config_stream == NULL)
-		ns_panic(ns_log_parser, 0, "can't open '%s'", filename);
-
-	lexer_setup();
-	parser_setup();
-	lexer_begin_file(filename, config_stream);
-	(void)yyparse();
-	lexer_end_file();
-	parser_cleanup();
-}
-
-void
-parser_initialize(void) {
-	lexer_initialize();
-}
-
-void
-parser_shutdown(void) {
-	if (authtab != NULL)
-		free_symbol_table(authtab);
-	lexer_shutdown();
-}
-#line 1216 "y.tab.c"
-/* allocate initial stack */
-#if defined(__STDC__) || defined(__cplusplus)
-static int yyinitstack(struct yystack *sp)
-#else
-static int yyinitstack(sp)
-    struct yystack *sp;
-#endif
-{
-    int newsize;
-    short *newss;
-    YYSTYPE *newvs;
-
-    newsize = YYINITSTACKSIZE;
-    newss = (short *)malloc(newsize * sizeof *newss);
-    newvs = (YYSTYPE *)malloc(newsize * sizeof *newvs);
-    sp->ss = sp->ssp = newss;
-    sp->vs = sp->vsp = newvs;
-    if (newss == NULL || newvs == NULL) return -1;
-    sp->stacksize = newsize;
-    sp->sslim = newss + newsize - 1;
-    return 0;
-}
-
-/* double stack size, up to YYMAXDEPTH */
-#if defined(__STDC__) || defined(__cplusplus)
-static int yygrowstack(struct yystack *sp)
-#else
-static int yygrowstack(sp)
-    struct yystack *sp;
-#endif
-{
-    int newsize, i;
-    short *newss;
-    YYSTYPE *newvs;
-
-    if ((newsize = sp->stacksize) >= YYMAXDEPTH) return -1;
-    if ((newsize *= 2) > YYMAXDEPTH) newsize = YYMAXDEPTH;
-    i = sp->ssp - sp->ss;
-    if ((newss = (short *)realloc(sp->ss, newsize * sizeof *newss)) == NULL)
-        return -1;
-    sp->ss = newss;
-    sp->ssp = newss + i;
-    if ((newvs = (YYSTYPE *)realloc(sp->vs, newsize * sizeof *newvs)) == NULL)
-        return -1;
-    sp->vs = newvs;
-    sp->vsp = newvs + i;
-    sp->stacksize = newsize;
-    sp->sslim = newss + newsize - 1;
-    return 0;
-}
-
-#define YYFREESTACK(sp) { free((sp)->ss); free((sp)->vs); }
-
-#define YYABORT goto yyabort
-#define YYREJECT goto yyabort
-#define YYACCEPT goto yyaccept
-#define YYERROR goto yyerrlab
-int
-yyparse()
-{
-    register int yym, yyn, yystate, yych;
-    register YYSTYPE *yyvsp;
-    YYSTYPE yyval;
-    struct yystack yystk;
-#if YYDEBUG
-    register char *yys;
-    extern char *getenv();
-
-    if (yys = getenv("YYDEBUG"))
-    {
-        yyn = *yys;
-        if (yyn >= '0' && yyn <= '9')
-            yydebug = yyn - '0';
-    }
-#endif
-
-    yynerrs = 0;
-    yyerrflag = 0;
-    yychar = yych = YYEMPTY;
-
-    if (yyinitstack(&yystk)) goto yyoverflow;
-    *yystk.ssp = yystate = 0;
-
-yyloop:
-    if (yyn = yydefred[yystate]) goto yyreduce;
-    if (yych < 0)
-    {
-        if ((yych = YYLEX) < 0) yych = 0;
-        yychar = yych;
-#if YYDEBUG
-        if (yydebug)
-        {
-            yys = 0;
-            if (yych <= YYMAXTOKEN) yys = yyname[yych];
-            if (!yys) yys = "illegal-symbol";
-            printf("%sdebug: state %d, reading %d (%s)\n",
-                    YYPREFIX, yystate, yych, yys);
-        }
-#endif
-    }
-    if ((yyn = yysindex[yystate]) && (yyn += yych) >= 0 &&
-            yyn <= YYTABLESIZE && yycheck[yyn] == yych)
-    {
-#if YYDEBUG
-        if (yydebug)
-            printf("%sdebug: state %d, shifting to state %d\n",
-                    YYPREFIX, yystate, yytable[yyn]);
-#endif
-        if (yystk.ssp >= yystk.sslim && yygrowstack(&yystk))
-            goto yyoverflow;
-        *++yystk.ssp = yystate = yytable[yyn];
-        *++yystk.vsp = yylval;
-        yychar = yych = YYEMPTY;
-        if (yyerrflag > 0)  --yyerrflag;
-        goto yyloop;
-    }
-    if ((yyn = yyrindex[yystate]) && (yyn += yych) >= 0 &&
-            yyn <= YYTABLESIZE && yycheck[yyn] == yych)
-    {
-        yyn = yytable[yyn];
-        goto yyreduce;
-    }
-    if (yyerrflag) goto yyinrecovery;
-#ifdef lint
-    goto yynewerror;
-#endif
-yynewerror:
-    yyerror("syntax error");
-#ifdef lint
-    goto yyerrlab;
-#endif
-yyerrlab:
-    ++yynerrs;
-yyinrecovery:
-    if (yyerrflag < 3)
-    {
-        yyerrflag = 3;
-        for (;;)
-        {
-            if ((yyn = yysindex[*yystk.ssp]) &&
-                    (yyn += YYERRCODE) >= 0 &&
-                    yyn <= YYTABLESIZE && yycheck[yyn] == YYERRCODE)
-            {
-#if YYDEBUG
-                if (yydebug)
-                    printf("%sdebug: state %d, error recovery shifting\
- to state %d\n", YYPREFIX, *yystk.ssp, yytable[yyn]);
-#endif
-                if (yystk.ssp >= yystk.sslim && yygrowstack(&yystk))
-                    goto yyoverflow;
-                *++yystk.ssp = yystate = yytable[yyn];
-                *++yystk.vsp = yylval;
-                goto yyloop;
-            }
-            else
-            {
-#if YYDEBUG
-                if (yydebug)
-                    printf("%sdebug: error recovery discarding state %d\n",
-                            YYPREFIX, *yystk.ssp);
-#endif
-                if (yystk.ssp <= yystk.ss) goto yyabort;
-                --yystk.ssp;
-                --yystk.vsp;
-            }
-        }
-    }
-    else
-    {
-        if (yych == 0) goto yyabort;
-#if YYDEBUG
-        if (yydebug)
-        {
-            yys = 0;
-            if (yych <= YYMAXTOKEN) yys = yyname[yych];
-            if (!yys) yys = "illegal-symbol";
-            printf("%sdebug: state %d, error recovery discards token %d (%s)\n",
-                    YYPREFIX, yystate, yych, yys);
-        }
-#endif
-        yychar = yych = YYEMPTY;
-        goto yyloop;
-    }
-yyreduce:
-#if YYDEBUG
-    if (yydebug)
-        printf("%sdebug: state %d, reducing by rule %d (%s)\n",
-                YYPREFIX, yystate, yyn, yyrule[yyn]);
-#endif
-    yym = yylen[yyn];
-    yyvsp = yystk.vsp; /* for speed in code under switch() */
-    yyval = yyvsp[1-yym];
-    switch (yyn)
-    {
-case 1:
-#line 241 "ns_parser.y"
-{
-		if (EMPTY(current_controls))
-			ns_ctl_defaults(&current_controls);
-		ns_ctl_install(&current_controls);
-	}
-break;
-case 16:
-#line 266 "ns_parser.y"
-{ lexer_begin_file(yyvsp[-1].cp, NULL); }
-break;
-case 17:
-#line 274 "ns_parser.y"
-{
-		if (seen_options)
-			parser_error(0, "cannot redefine options");
-		current_options = new_options();
-	}
-break;
-case 18:
-#line 280 "ns_parser.y"
-{
-		if (!seen_options)
-			set_options(current_options, 0);
-		else
-			free_options(current_options);
-		current_options = NULL;
-		seen_options = 1;
-	}
-break;
-case 22:
-#line 296 "ns_parser.y"
-{
-		if (current_options->version != NULL)
-			freestr(current_options->version);
-		current_options->version = yyvsp[0].cp;
-	}
-break;
-case 23:
-#line 302 "ns_parser.y"
-{
-		if (current_options->directory != NULL)
-			freestr(current_options->directory);
-		current_options->directory = yyvsp[0].cp;
-	}
-break;
-case 24:
-#line 308 "ns_parser.y"
-{
-		if (current_options->named_xfer != NULL)
-			freestr(current_options->named_xfer);
-		current_options->named_xfer = yyvsp[0].cp;
-	}
-break;
-case 25:
-#line 314 "ns_parser.y"
-{
-		if (current_options->pid_filename != NULL)
-			freestr(current_options->pid_filename);
-		current_options->pid_filename = yyvsp[0].cp;
-	}
-break;
-case 26:
-#line 320 "ns_parser.y"
-{
-		if (current_options->stats_filename != NULL)
-			freestr(current_options->stats_filename);
-		current_options->stats_filename = yyvsp[0].cp;
-	}
-break;
-case 27:
-#line 326 "ns_parser.y"
-{
-		if (current_options->memstats_filename != NULL)
-			freestr(current_options->memstats_filename);
-		current_options->memstats_filename = yyvsp[0].cp;
-	}
-break;
-case 28:
-#line 332 "ns_parser.y"
-{
-		if (current_options->dump_filename != NULL)
-			freestr(current_options->dump_filename);
-		current_options->dump_filename = yyvsp[0].cp;
-	}
-break;
-case 29:
-#line 338 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_FAKE_IQUERY, yyvsp[0].num);
-	}
-break;
-case 30:
-#line 343 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_NORECURSE, !yyvsp[0].num);
-	}
-break;
-case 31:
-#line 348 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_NOFETCHGLUE, !yyvsp[0].num);
-	}
-break;
-case 32:
-#line 353 "ns_parser.y"
-{
-		set_global_boolean_option(current_options, 
-			OPTION_NONOTIFY, !yyvsp[0].num);
-	}
-break;
-case 33:
-#line 358 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_HOSTSTATS, yyvsp[0].num);
-	}
-break;
-case 34:
-#line 363 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_DEALLOC_ON_EXIT, yyvsp[0].num);
-	}
-break;
-case 35:
-#line 368 "ns_parser.y"
-{
-		set_global_boolean_option(current_options, OPTION_USE_IXFR, yyvsp[0].num);
-	}
-break;
-case 36:
-#line 372 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-					  OPTION_MAINTAIN_IXFR_BASE, yyvsp[0].num);
-	}
-break;
-case 37:
-#line 377 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-					  OPTION_MAINTAIN_IXFR_BASE, yyvsp[0].num);
-		set_global_boolean_option(current_options,
-					  OPTION_NORFC2308_TYPE1, yyvsp[0].num);
-		set_global_boolean_option(current_options,
-					  OPTION_NONAUTH_NXDOMAIN, !yyvsp[0].num);
-	}
-break;
-case 38:
-#line 386 "ns_parser.y"
-{
-		set_global_boolean_option(current_options, OPTION_NONAUTH_NXDOMAIN,
-				   !yyvsp[0].num);
-	}
-break;
-case 39:
-#line 391 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_MULTIPLE_CNAMES, yyvsp[0].num);
-	}
-break;
-case 40:
-#line 396 "ns_parser.y"
-{
-		current_options->check_names[yyvsp[-1].s_int] = (enum severity)yyvsp[0].s_int;
-	}
-break;
-case 41:
-#line 400 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-					  OPTION_USE_ID_POOL, yyvsp[0].num);
-	}
-break;
-case 42:
-#line 405 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-                        		  OPTION_NORFC2308_TYPE1, !yyvsp[0].num);
-	}
-break;
-case 43:
-#line 410 "ns_parser.y"
-{
-		char port_string[10];
-		symbol_value value;
-
-		(void)sprintf(port_string, "%u", yyvsp[-3].us_int);
-		if (lookup_symbol(symtab, port_string, SYM_PORT, NULL))
-			parser_error(0,
-				     "cannot redefine listen-on for port %u",
-				     ntohs(yyvsp[-3].us_int));
-		else {
-			add_listen_on(current_options, yyvsp[-3].us_int, yyvsp[-1].iml);
-			value.pointer = NULL;
-			define_symbol(symtab, savestr(port_string, 1),
-				      SYM_PORT, value, SYMBOL_FREE_KEY);
-		}
-
-	}
-break;
-case 45:
-#line 429 "ns_parser.y"
-{
-		if (current_options->fwdtab) {
-			free_forwarders(current_options->fwdtab);
-			current_options->fwdtab = NULL;
-		}
-	}
-break;
-case 48:
-#line 438 "ns_parser.y"
-{
-		current_options->axfr_src = yyvsp[0].ip_addr;
-	}
-break;
-case 49:
-#line 442 "ns_parser.y"
-{
-		if (current_options->query_acl) {
-			parser_warning(0,
-			      "options allow-query acl already set; skipping");
-			free_ip_match_list(yyvsp[-1].iml);
-		} else 
-			current_options->query_acl = yyvsp[-1].iml;
-	}
-break;
-case 50:
-#line 451 "ns_parser.y"
-{
-		if (current_options->recursion_acl) {
-			parser_warning(0,
-			      "options allow-recursion acl already set; skipping");
-			free_ip_match_list(yyvsp[-1].iml);
-		} else
-			current_options->recursion_acl = yyvsp[-1].iml;
-	}
-break;
-case 51:
-#line 460 "ns_parser.y"
-{
-		if (current_options->transfer_acl) {
-			parser_warning(0,
-			   "options allow-transfer acl already set; skipping");
-			free_ip_match_list(yyvsp[-1].iml);
-		} else 
-			current_options->transfer_acl = yyvsp[-1].iml;
-	}
-break;
-case 52:
-#line 469 "ns_parser.y"
-{
-		if (current_options->sortlist) {
-			parser_warning(0,
-			      "options sortlist already set; skipping");
-			free_ip_match_list(yyvsp[-1].iml);
-		} else
-			current_options->sortlist = yyvsp[-1].iml;
-	}
-break;
-case 53:
-#line 478 "ns_parser.y"
-{
-		if (current_options->also_notify) {
-			parser_warning(0,
-			    "duplicate also-notify clause: overwriting");
-			free_also_notify(current_options);
-			current_options->also_notify = NULL;
-		}
-	}
-break;
-case 55:
-#line 488 "ns_parser.y"
-{
-		if (current_options->blackhole_acl) {
-			parser_warning(0,
-			      "options blackhole already set; skipping");
-			free_ip_match_list(yyvsp[-1].iml);
-		} else
-			current_options->blackhole_acl = yyvsp[-1].iml;
-	}
-break;
-case 56:
-#line 497 "ns_parser.y"
-{
-		if (current_options->topology) {
-			parser_warning(0,
-			      "options topology already set; skipping");
-			free_ip_match_list(yyvsp[-1].iml);
-		} else
-			current_options->topology = yyvsp[-1].iml;
-	}
-break;
-case 57:
-#line 506 "ns_parser.y"
-{
-		/* To get around the $$ = $1 default rule. */
-	}
-break;
-case 59:
-#line 511 "ns_parser.y"
-{
-		current_options->transfer_format = yyvsp[0].axfr_fmt;
-	}
-break;
-case 60:
-#line 515 "ns_parser.y"
-{
-		current_options->max_transfer_time_in = yyvsp[0].num * 60;
-	}
-break;
-case 61:
-#line 519 "ns_parser.y"
-{
-		current_options->serial_queries = yyvsp[0].num;
-	}
-break;
-case 62:
-#line 523 "ns_parser.y"
-{
-		current_options->clean_interval = yyvsp[0].num * 60;
-	}
-break;
-case 63:
-#line 527 "ns_parser.y"
-{
-		current_options->interface_interval = yyvsp[0].num * 60;
-	}
-break;
-case 64:
-#line 531 "ns_parser.y"
-{
-		current_options->stats_interval = yyvsp[0].num * 60;
-	}
-break;
-case 65:
-#line 535 "ns_parser.y"
-{
-		current_options->max_log_size_ixfr = yyvsp[0].num;
-	}
-break;
-case 66:
-#line 539 "ns_parser.y"
-{
-		current_options->max_ncache_ttl = yyvsp[0].num;
-	}
-break;
-case 67:
-#line 543 "ns_parser.y"
-{
-		current_options->lame_ttl = yyvsp[0].num;
-	}
-break;
-case 68:
-#line 547 "ns_parser.y"
-{
-		current_options->heartbeat_interval = yyvsp[0].num * 60;
-	}
-break;
-case 69:
-#line 551 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-                                          OPTION_NODIALUP, !yyvsp[0].num);
-	}
-break;
-case 70:
-#line 556 "ns_parser.y"
-{
-		if (current_options->ordering)
-			free_rrset_order_list(current_options->ordering);
-		current_options->ordering = yyvsp[-1].rol;
-	}
-break;
-case 71:
-#line 562 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-					  OPTION_TREAT_CR_AS_SPACE, yyvsp[0].num);
-	}
-break;
-case 72:
-#line 567 "ns_parser.y"
-{
-		if (yyvsp[0].num >= 1)
-			current_options->minroots = yyvsp[0].num;
-	}
-break;
-case 78:
-#line 587 "ns_parser.y"
-{
-		ns_ctl_add(&current_controls, ns_ctl_new_inet(yyvsp[-6].ip_addr, yyvsp[-4].us_int, yyvsp[-1].iml));
-	}
-break;
-case 79:
-#line 591 "ns_parser.y"
-{
-		ns_ctl_add(&current_controls, ns_ctl_new_unix(yyvsp[-6].cp, yyvsp[-4].num, yyvsp[-2].num, yyvsp[0].num));
-	}
-break;
-case 81:
-#line 598 "ns_parser.y"
-{
-		rrset_order_list rol;
-
-		rol = new_rrset_order_list();
-		if (yyvsp[-1].roe != NULL) {
-			add_to_rrset_order_list(rol, yyvsp[-1].roe);
-		}
-		
-		yyval.rol = rol;
-	}
-break;
-case 82:
-#line 609 "ns_parser.y"
-{
-		if (yyvsp[-1].roe != NULL) {
-			add_to_rrset_order_list(yyvsp[-2].rol, yyvsp[-1].roe);
-		}
-		yyval.rol = yyvsp[-2].rol;
-	}
-break;
-case 83:
-#line 618 "ns_parser.y"
-{
-		yyval.s_int = C_ANY;
-	}
-break;
-case 84:
-#line 622 "ns_parser.y"
-{
-		symbol_value value;
-
-		if (lookup_symbol(constants, yyvsp[0].cp, SYM_CLASS, &value))
-			yyval.s_int = value.integer;
-		else {
-			parser_error(0, "unknown class '%s'; using ANY", yyvsp[0].cp);
-			yyval.s_int = C_ANY;
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 85:
-#line 636 "ns_parser.y"
-{
-		yyval.s_int = ns_t_any;
-	}
-break;
-case 86:
-#line 640 "ns_parser.y"
-{
-		int success;
-
-		if (strcmp(yyvsp[0].cp, "*") == 0) {
-			yyval.s_int = ns_t_any;
-		} else {
-			yyval.s_int = __sym_ston(__p_type_syms, yyvsp[0].cp, &success);
-			if (success == 0) {
-				yyval.s_int = ns_t_any;
-				parser_error(0,
-					     "unknown type '%s'; assuming ANY",
-					     yyvsp[0].cp);
-			}
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 87:
-#line 658 "ns_parser.y"
-{
-		yyval.cp = savestr("*", 1);
-	}
-break;
-case 88:
-#line 662 "ns_parser.y"
-{
-		if (strcmp(".",yyvsp[0].cp) == 0 || strcmp("*.",yyvsp[0].cp) == 0) {
-			yyval.cp = savestr("*", 1);
-			freestr(yyvsp[0].cp);
-		} else {
-			yyval.cp = yyvsp[0].cp ;
-		}
-		/* XXX Should do any more name validation here? */
-	}
-break;
-case 89:
-#line 674 "ns_parser.y"
-{
-		enum ordering o;
-
-		if (strlen(yyvsp[0].cp) == 0) {
-			parser_error(0, "null order name");
-			yyval.roe = NULL ;
-		} else {
-			o = lookup_ordering(yyvsp[0].cp);
-			if (o == unknown_order) {
-				o = (enum ordering)DEFAULT_ORDERING;
-				parser_error(0,
-					     "invalid order name '%s'; using %s",
-					     yyvsp[0].cp, p_order(o));
-			}
-			
-			freestr(yyvsp[0].cp);
-			
-			yyval.roe = new_rrset_order_element(yyvsp[-4].s_int, yyvsp[-3].s_int, yyvsp[-2].cp, o);
-		}
-	}
-break;
-case 90:
-#line 697 "ns_parser.y"
-{
-		yyval.axfr_fmt = axfr_one_answer;
-	}
-break;
-case 91:
-#line 701 "ns_parser.y"
-{
-		yyval.axfr_fmt = axfr_many_answers;
-	}
-break;
-case 92:
-#line 706 "ns_parser.y"
-{ yyval.ip_addr = yyvsp[0].ip_addr; }
-break;
-case 93:
-#line 707 "ns_parser.y"
-{ yyval.ip_addr.s_addr = htonl(INADDR_ANY); }
-break;
-case 94:
-#line 710 "ns_parser.y"
-{ yyval.us_int = yyvsp[0].us_int; }
-break;
-case 95:
-#line 711 "ns_parser.y"
-{ yyval.us_int = htons(0); }
-break;
-case 96:
-#line 715 "ns_parser.y"
-{
-		current_options->query_source.sin_addr = yyvsp[0].ip_addr;
-	}
-break;
-case 97:
-#line 721 "ns_parser.y"
-{
-		current_options->query_source.sin_port = yyvsp[0].us_int;
-	}
-break;
-case 102:
-#line 732 "ns_parser.y"
-{ yyval.us_int = htons(NS_DEFAULTPORT); }
-break;
-case 103:
-#line 733 "ns_parser.y"
-{ yyval.us_int = yyvsp[0].us_int; }
-break;
-case 104:
-#line 736 "ns_parser.y"
-{ yyval.us_int = htons(0); }
-break;
-case 105:
-#line 737 "ns_parser.y"
-{ yyval.us_int = yyvsp[0].us_int; }
-break;
-case 106:
-#line 742 "ns_parser.y"
-{ 
-		yyval.num = 1;	
-	}
-break;
-case 107:
-#line 746 "ns_parser.y"
-{ 
-		yyval.num = 1;	
-	}
-break;
-case 108:
-#line 750 "ns_parser.y"
-{ 
-		yyval.num = 0;	
-	}
-break;
-case 109:
-#line 754 "ns_parser.y"
-{ 
-		yyval.num = 0;	
-	}
-break;
-case 110:
-#line 758 "ns_parser.y"
-{ 
-		if (yyvsp[0].num == 1 || yyvsp[0].num == 0) {
-			yyval.num = yyvsp[0].num;
-		} else {
-			parser_warning(0,
-				       "number should be 0 or 1; assuming 1");
-			yyval.num = 1;
-		}
-	}
-break;
-case 111:
-#line 770 "ns_parser.y"
-{
-		yyval.s_int = primary_trans;
-	}
-break;
-case 112:
-#line 774 "ns_parser.y"
-{
-		yyval.s_int = secondary_trans;
-	}
-break;
-case 113:
-#line 778 "ns_parser.y"
-{
-		yyval.s_int = response_trans;
-	}
-break;
-case 114:
-#line 784 "ns_parser.y"
-{
-		yyval.s_int = warn;
-	}
-break;
-case 115:
-#line 788 "ns_parser.y"
-{
-		yyval.s_int = fail;
-	}
-break;
-case 116:
-#line 792 "ns_parser.y"
-{
-		yyval.s_int = ignore;
-	}
-break;
-case 117:
-#line 798 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_FORWARD_ONLY, 1);
-	}
-break;
-case 118:
-#line 803 "ns_parser.y"
-{
-		set_global_boolean_option(current_options,
-			OPTION_FORWARD_ONLY, 0);
-	}
-break;
-case 119:
-#line 808 "ns_parser.y"
-{
-		parser_warning(0, "forward if-no-answer is unimplemented");
-	}
-break;
-case 120:
-#line 812 "ns_parser.y"
-{
-		parser_warning(0, "forward if-no-domain is unimplemented");
-	}
-break;
-case 121:
-#line 818 "ns_parser.y"
-{
-		current_options->data_size = yyvsp[0].ul_int;
-	}
-break;
-case 122:
-#line 822 "ns_parser.y"
-{
-		current_options->stack_size = yyvsp[0].ul_int;
-	}
-break;
-case 123:
-#line 826 "ns_parser.y"
-{
-		current_options->core_size = yyvsp[0].ul_int;
-	}
-break;
-case 124:
-#line 830 "ns_parser.y"
-{
-		current_options->files = yyvsp[0].ul_int;
-	}
-break;
-case 125:
-#line 836 "ns_parser.y"
-{
-		u_long result;
-
-		if (unit_to_ulong(yyvsp[0].cp, &result))
-			yyval.ul_int = result;
-		else {
-			parser_error(0, "invalid unit string '%s'", yyvsp[0].cp);
-			/* 0 means "use default" */
-			yyval.ul_int = 0;
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 126:
-#line 849 "ns_parser.y"
-{	
-		yyval.ul_int = (u_long)yyvsp[0].num;
-	}
-break;
-case 127:
-#line 853 "ns_parser.y"
-{
-		yyval.ul_int = 0;
-	}
-break;
-case 128:
-#line 857 "ns_parser.y"
-{
-		yyval.ul_int = ULONG_MAX;
-	}
-break;
-case 129:
-#line 863 "ns_parser.y"
-{
-		current_options->transfers_in = (u_long) yyvsp[0].num;
-	}
-break;
-case 130:
-#line 867 "ns_parser.y"
-{
-		current_options->transfers_out = (u_long) yyvsp[0].num;
-	}
-break;
-case 131:
-#line 871 "ns_parser.y"
-{
-		current_options->transfers_per_ns = (u_long) yyvsp[0].num;
-	}
-break;
-case 134:
-#line 881 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 135:
-#line 885 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 136:
-#line 891 "ns_parser.y"
-{
-	  	add_global_forwarder(current_options, yyvsp[0].ip_addr);
-	}
-break;
-case 139:
-#line 901 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 140:
-#line 905 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 141:
-#line 911 "ns_parser.y"
-{
-	  	add_global_also_notify(current_options, yyvsp[0].ip_addr);
-	}
-break;
-case 142:
-#line 921 "ns_parser.y"
-{
-		current_logging = begin_logging();
-	}
-break;
-case 143:
-#line 925 "ns_parser.y"
-{
-		end_logging(current_logging, 1);
-		current_logging = NULL;
-	}
-break;
-case 147:
-#line 937 "ns_parser.y"
-{
-		current_category = yyvsp[0].s_int;
-	}
-break;
-case 149:
-#line 942 "ns_parser.y"
-{
-		chan_type = log_null;
-		chan_flags = 0;
-		chan_level = log_info;
-	}
-break;
-case 150:
-#line 948 "ns_parser.y"
-{
-		log_channel current_channel = NULL;
-
-		if (lookup_channel(yyvsp[-4].cp) != NULL) {
-			parser_error(0, "can't redefine channel '%s'", yyvsp[-4].cp);
-			freestr(yyvsp[-4].cp);
-		} else {
-			switch (chan_type) {
-			case log_file:
-				current_channel =
-					log_new_file_channel(chan_flags,
-							     chan_level,
-							     chan_name, NULL,
-							     chan_versions,
-							     chan_max_size);
-				freestr(chan_name);
-				chan_name = NULL;
-				break;
-			case log_syslog:
-				current_channel =
-					log_new_syslog_channel(chan_flags,
-							       chan_level,
-							       chan_facility);
-				break;
-			case log_null:
-				current_channel = log_new_null_channel();
-				break;
-			default:
-				ns_panic(ns_log_parser, 1,
-					 "unknown channel type: %d",
-					 chan_type);
-			}
-			if (current_channel == NULL)
-				ns_panic(ns_log_parser, 0,
-					 "couldn't create channel");
-			define_channel(yyvsp[-4].cp, current_channel);
-		}
-	}
-break;
-case 151:
-#line 989 "ns_parser.y"
-{
-		symbol_value value;
-
-		if (lookup_symbol(constants, yyvsp[0].cp, SYM_LOGGING, &value)) {
-			chan_level = value.integer;
-		} else {
-			parser_error(0, "unknown severity '%s'", yyvsp[0].cp);
-			chan_level = log_debug(99);
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 152:
-#line 1001 "ns_parser.y"
-{
-		chan_level = log_debug(1);
-	}
-break;
-case 153:
-#line 1005 "ns_parser.y"
-{
-		chan_level = yyvsp[0].num;
-	}
-break;
-case 154:
-#line 1009 "ns_parser.y"
-{
-		chan_level = 0;
-		chan_flags |= LOG_USE_CONTEXT_LEVEL|LOG_REQUIRE_DEBUG;
-	}
-break;
-case 155:
-#line 1016 "ns_parser.y"
-{
-		chan_versions = yyvsp[0].num;
-	}
-break;
-case 156:
-#line 1020 "ns_parser.y"
-{
-		chan_versions = LOG_MAX_VERSIONS;
-	}
-break;
-case 157:
-#line 1026 "ns_parser.y"
-{
-		chan_max_size = yyvsp[0].ul_int;
-	}
-break;
-case 158:
-#line 1032 "ns_parser.y"
-{
-		chan_versions = 0;
-		chan_max_size = ULONG_MAX;
-	}
-break;
-case 159:
-#line 1037 "ns_parser.y"
-{
-		chan_max_size = ULONG_MAX;
-	}
-break;
-case 160:
-#line 1041 "ns_parser.y"
-{
-		chan_versions = 0;
-	}
-break;
-case 163:
-#line 1049 "ns_parser.y"
-{
-		chan_flags |= LOG_CLOSE_STREAM;
-		chan_type = log_file;
-		chan_name = yyvsp[-1].cp;
-	}
-break;
-case 164:
-#line 1057 "ns_parser.y"
-{ yyval.cp = yyvsp[0].cp; }
-break;
-case 165:
-#line 1058 "ns_parser.y"
-{ yyval.cp = savestr("syslog", 1); }
-break;
-case 166:
-#line 1061 "ns_parser.y"
-{ yyval.s_int = LOG_DAEMON; }
-break;
-case 167:
-#line 1063 "ns_parser.y"
-{
-		symbol_value value;
-
-		if (lookup_symbol(constants, yyvsp[0].cp, SYM_SYSLOG, &value)) {
-			yyval.s_int = value.integer;
-		} else {
-			parser_error(0, "unknown facility '%s'", yyvsp[0].cp);
-			yyval.s_int = LOG_DAEMON;
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 168:
-#line 1077 "ns_parser.y"
-{
-		chan_type = log_syslog;
-		chan_facility = yyvsp[0].s_int;
-	}
-break;
-case 169:
-#line 1083 "ns_parser.y"
-{ /* nothing to do */ }
-break;
-case 170:
-#line 1084 "ns_parser.y"
-{ /* nothing to do */ }
-break;
-case 171:
-#line 1086 "ns_parser.y"
-{
-		chan_type = log_null;
-	}
-break;
-case 172:
-#line 1089 "ns_parser.y"
-{ /* nothing to do */ }
-break;
-case 173:
-#line 1091 "ns_parser.y"
-{
-		if (yyvsp[0].num)
-			chan_flags |= LOG_TIMESTAMP;
-		else
-			chan_flags &= ~LOG_TIMESTAMP;
-	}
-break;
-case 174:
-#line 1098 "ns_parser.y"
-{
-		if (yyvsp[0].num)
-			chan_flags |= LOG_PRINT_CATEGORY;
-		else
-			chan_flags &= ~LOG_PRINT_CATEGORY;
-	}
-break;
-case 175:
-#line 1105 "ns_parser.y"
-{
-		if (yyvsp[0].num)
-			chan_flags |= LOG_PRINT_LEVEL;
-		else
-			chan_flags &= ~LOG_PRINT_LEVEL;
-	}
-break;
-case 180:
-#line 1119 "ns_parser.y"
-{ yyval.cp = savestr("null", 1); }
-break;
-case 181:
-#line 1123 "ns_parser.y"
-{
-		log_channel channel;
-		symbol_value value;
-
-		if (current_category >= 0) {
-			channel = lookup_channel(yyvsp[0].cp);
-			if (channel != NULL) {
-				add_log_channel(current_logging,
-						current_category, channel);
-			} else
-				parser_error(0, "unknown channel '%s'", yyvsp[0].cp);
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 186:
-#line 1145 "ns_parser.y"
-{ yyval.cp = savestr("default", 1); }
-break;
-case 187:
-#line 1146 "ns_parser.y"
-{ yyval.cp = savestr("notify", 1); }
-break;
-case 188:
-#line 1150 "ns_parser.y"
-{
-		symbol_value value;
-
-		if (lookup_symbol(constants, yyvsp[0].cp, SYM_CATEGORY, &value))
-			yyval.s_int = value.integer;
-		else {
-			parser_error(0, "invalid logging category '%s'",
-				     yyvsp[0].cp);
-			yyval.s_int = -1;
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 189:
-#line 1169 "ns_parser.y"
-{
-		const char *ip_printable;
-		symbol_value value;
-		
-		ip_printable = inet_ntoa(yyvsp[0].ip_addr);
-		value.pointer = NULL;
-		if (lookup_symbol(symtab, ip_printable, SYM_SERVER, NULL))
-			seen_server = 1;
-		else
-			seen_server = 0;
-		if (seen_server)
-			parser_error(0, "cannot redefine server '%s'", 
-				     ip_printable);
-		else
-			define_symbol(symtab, savestr(ip_printable, 1),
-				      SYM_SERVER, value,
-				      SYMBOL_FREE_KEY);
-		current_server = begin_server(yyvsp[0].ip_addr);
-	}
-break;
-case 190:
-#line 1189 "ns_parser.y"
-{
-		end_server(current_server, !seen_server);
-	}
-break;
-case 193:
-#line 1199 "ns_parser.y"
-{
-		set_server_option(current_server, SERVER_INFO_BOGUS, yyvsp[0].num);
-	}
-break;
-case 194:
-#line 1203 "ns_parser.y"
-{
-		set_server_option(current_server, SERVER_INFO_SUPPORT_IXFR, yyvsp[0].num);
-	}
-break;
-case 195:
-#line 1207 "ns_parser.y"
-{
-		set_server_transfers(current_server, (int)yyvsp[0].num);
-	}
-break;
-case 196:
-#line 1211 "ns_parser.y"
-{
-		set_server_transfer_format(current_server, yyvsp[0].axfr_fmt);
-	}
-break;
-case 199:
-#line 1223 "ns_parser.y"
-{
-		ip_match_list iml;
-		
-		iml = new_ip_match_list();
-		if (yyvsp[-1].ime != NULL)
-			add_to_ip_match_list(iml, yyvsp[-1].ime);
-		yyval.iml = iml;
-	}
-break;
-case 200:
-#line 1232 "ns_parser.y"
-{
-		if (yyvsp[-1].ime != NULL)
-			add_to_ip_match_list(yyvsp[-2].iml, yyvsp[-1].ime);
-		yyval.iml = yyvsp[-2].iml;
-	}
-break;
-case 202:
-#line 1241 "ns_parser.y"
-{
-		if (yyvsp[0].ime != NULL)
-			ip_match_negate(yyvsp[0].ime);
-		yyval.ime = yyvsp[0].ime;
-	}
-break;
-case 203:
-#line 1247 "ns_parser.y"
-{
-		char *key_name;
-		struct dst_key *dst_key;
-
-		key_name = canonical_name(yyvsp[0].cp);
-		if (key_name == NULL) {
-			parser_error(0, "can't make key name '%s' canonical",
-				     yyvsp[0].cp);
-			key_name = savestr("__bad_key__", 1);
-		}
-		dst_key = find_key(key_name, NULL);
-		if (dst_key == NULL) {
-			parser_error(0, "key \"%s\" not found", key_name);
-			yyval.ime = NULL;
-		}
-		else
-			yyval.ime = new_ip_match_key(dst_key);
-	}
-break;
-case 204:
-#line 1268 "ns_parser.y"
-{
-		yyval.ime = new_ip_match_pattern(yyvsp[0].ip_addr, 32);
-	}
-break;
-case 205:
-#line 1272 "ns_parser.y"
-{
-		if (yyvsp[0].num < 0 || yyvsp[0].num > 32) {
-			parser_error(0, "mask bits out of range; skipping");
-			yyval.ime = NULL;
-		} else {
-			yyval.ime = new_ip_match_pattern(yyvsp[-2].ip_addr, yyvsp[0].num);
-			if (yyval.ime == NULL)
-				parser_error(0, 
-					   "address/mask mismatch; skipping");
-		}
-	}
-break;
-case 206:
-#line 1284 "ns_parser.y"
-{
-		struct in_addr ia;
-
-		if (yyvsp[-2].num > 255) {
-			parser_error(0, "address out of range; skipping");
-			yyval.ime = NULL;
-		} else {
-			if (yyvsp[0].num < 0 || yyvsp[0].num > 32) {
-				parser_error(0,
-					"mask bits out of range; skipping");
-					yyval.ime = NULL;
-			} else {
-				ia.s_addr = htonl((yyvsp[-2].num & 0xff) << 24);
-				yyval.ime = new_ip_match_pattern(ia, yyvsp[0].num);
-				if (yyval.ime == NULL)
-					parser_error(0, 
-					   "address/mask mismatch; skipping");
-			}
-		}
-	}
-break;
-case 208:
-#line 1306 "ns_parser.y"
-{
-		char name[256];
-
-		/*
-		 * We want to be able to clean up this iml later so
-		 * we give it a name and treat it like any other acl.
-		 */
-		sprintf(name, "__internal_%p", yyvsp[-1].iml);
-		define_acl(savestr(name, 1), yyvsp[-1].iml);
-  		yyval.ime = new_ip_match_indirect(yyvsp[-1].iml);
-	}
-break;
-case 209:
-#line 1320 "ns_parser.y"
-{
-		ip_match_list iml;
-
-		iml = lookup_acl(yyvsp[0].cp);
-		if (iml == NULL) {
-			parser_error(0, "unknown ACL '%s'", yyvsp[0].cp);
-			yyval.ime = NULL;
-		} else
-			yyval.ime = new_ip_match_indirect(iml);
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 210:
-#line 1338 "ns_parser.y"
-{
-		struct dst_key *dst_key;
-		char *key_name;
-
-		key_name = canonical_name(yyvsp[0].cp);
-		if (key_name == NULL) {
-			parser_error(0, "can't make key name '%s' canonical",
-				     yyvsp[0].cp);
-			yyval.keyi = NULL;
-		} else {
-			dst_key = lookup_key(key_name);
-			if (dst_key == NULL) {
-				parser_error(0, "unknown key '%s'", key_name);
-				yyval.keyi = NULL;
-			} else
-				yyval.keyi = dst_key;
-			freestr(key_name);
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 211:
-#line 1361 "ns_parser.y"
-{
-		if (yyvsp[0].keyi == NULL)
-			parser_error(0, "empty key not added to server list ");
-		else
-			add_server_key_info(current_server, yyvsp[0].keyi);
-	}
-break;
-case 215:
-#line 1375 "ns_parser.y"
-{
-		current_algorithm = NULL;
-		current_secret = NULL;
-	}
-break;
-case 216:
-#line 1380 "ns_parser.y"
-{
-		struct dst_key *dst_key;
-		char *key_name;
-
-		key_name = canonical_name(yyvsp[-3].cp);
-		if (key_name == NULL) {
-			parser_error(0, "can't make key name '%s' canonical",
-				     yyvsp[-3].cp);
-		} else if (lookup_key(key_name) != NULL) {
-			parser_error(0, "can't redefine key '%s'", key_name);
-			freestr(key_name);
-		} else {
-			if (current_algorithm == NULL ||
-			    current_secret == NULL)  {
-				parser_error(0, "skipping bad key '%s'",
-					     key_name);
-				freestr(key_name);
-			} else {
-				dst_key = new_key_info(key_name,
-						       current_algorithm,
-						       current_secret);
-				if (dst_key != NULL) {
-					define_key(key_name, dst_key);
-					if (secretkey_info == NULL)
-						secretkey_info =
-							new_key_info_list();
-					add_to_key_info_list(secretkey_info,
-							     dst_key);
-				}
-			}
-		}
-		freestr(yyvsp[-3].cp);
-	}
-break;
-case 217:
-#line 1416 "ns_parser.y"
-{
-		current_algorithm = yyvsp[-1].cp;
-		current_secret = yyvsp[0].cp;
-	}
-break;
-case 218:
-#line 1421 "ns_parser.y"
-{
-		current_algorithm = yyvsp[0].cp;
-		current_secret = yyvsp[-1].cp;
-	}
-break;
-case 219:
-#line 1426 "ns_parser.y"
-{
-		current_algorithm = NULL;
-		current_secret = NULL;
-	}
-break;
-case 220:
-#line 1432 "ns_parser.y"
-{ yyval.cp = yyvsp[-1].cp; }
-break;
-case 221:
-#line 1435 "ns_parser.y"
-{ yyval.cp = yyvsp[-1].cp; }
-break;
-case 222:
-#line 1443 "ns_parser.y"
-{
-		if (lookup_acl(yyvsp[-3].cp) != NULL) {
-			parser_error(0, "can't redefine ACL '%s'", yyvsp[-3].cp);
-			freestr(yyvsp[-3].cp);
-		} else
-			define_acl(yyvsp[-3].cp, yyvsp[-1].iml);
-	}
-break;
-case 223:
-#line 1457 "ns_parser.y"
-{
-		int sym_type;
-		symbol_value value;
-		char *zone_name;
-
-		if (!seen_options)
-			parser_error(0,
-             "no options statement before first zone; using previous/default");
-		sym_type = SYM_ZONE | (yyvsp[0].num & 0xffff);
-		value.pointer = NULL;
-		zone_name = canonical_name(yyvsp[-1].cp);
-		if (zone_name == NULL) {
-			parser_error(0, "can't make zone name '%s' canonical",
-				     yyvsp[-1].cp);
-			should_install = 0;
-			zone_name = savestr("__bad_zone__", 1);
-		} else {
-			if (lookup_symbol(symtab, zone_name, sym_type, NULL)) {
-				should_install = 0;
-				parser_error(0,
-					"cannot redefine zone '%s' class %s",
-					     *zone_name ? zone_name : ".",
-					     p_class(yyvsp[0].num));
-			} else {
-				should_install = 1;
-				define_symbol(symtab, savestr(zone_name, 1),
-					      sym_type, value,
-					      SYMBOL_FREE_KEY);
-			}
-		}
-		freestr(yyvsp[-1].cp);
-		current_zone = begin_zone(zone_name, yyvsp[0].num); 
-	}
-break;
-case 224:
-#line 1491 "ns_parser.y"
-{
-		end_zone(current_zone, should_install);
-	}
-break;
-case 227:
-#line 1501 "ns_parser.y"
-{
-		yyval.num = C_IN;
-	}
-break;
-case 228:
-#line 1505 "ns_parser.y"
-{
-		symbol_value value;
-
-		if (lookup_symbol(constants, yyvsp[0].cp, SYM_CLASS, &value))
-			yyval.num = value.integer;
-		else {
-			/* the zone validator will give the error */
-			yyval.num = C_NONE;
-		}
-		freestr(yyvsp[0].cp);
-	}
-break;
-case 229:
-#line 1519 "ns_parser.y"
-{
-		yyval.s_int = Z_MASTER;
-	}
-break;
-case 230:
-#line 1523 "ns_parser.y"
-{
-		yyval.s_int = Z_SLAVE;
-	}
-break;
-case 231:
-#line 1527 "ns_parser.y"
-{
-		yyval.s_int = Z_HINT;
-	}
-break;
-case 232:
-#line 1531 "ns_parser.y"
-{
-		yyval.s_int = Z_STUB;
-	}
-break;
-case 233:
-#line 1535 "ns_parser.y"
-{
-		yyval.s_int = Z_FORWARD;
-	}
-break;
-case 236:
-#line 1545 "ns_parser.y"
-{
-		if (!set_zone_type(current_zone, yyvsp[0].s_int))
-			parser_warning(0, "zone type already set; skipping");
-	}
-break;
-case 237:
-#line 1550 "ns_parser.y"
-{
-		if (!set_zone_filename(current_zone, yyvsp[0].cp))
-			parser_warning(0,
-				       "zone filename already set; skipping");
-	}
-break;
-case 238:
-#line 1556 "ns_parser.y"
-{
-                if (!set_zone_ixfr_file(current_zone, yyvsp[0].cp))
-                        parser_warning(0,
-                                       "zone ixfr data base already set; skipping");
-    }
-break;
-case 239:
-#line 1562 "ns_parser.y"
-{
-                if (!set_zone_ixfr_tmp(current_zone, yyvsp[0].cp))
-                        parser_warning(0,
-                                       "zone ixfr temp filename already set; skipping");
-    }
-break;
-case 240:
-#line 1568 "ns_parser.y"
-{
-		set_zone_master_port(current_zone, yyvsp[-3].us_int);
-	}
-break;
-case 241:
-#line 1572 "ns_parser.y"
-{
-		set_zone_transfer_source(current_zone, yyvsp[0].ip_addr);
-	}
-break;
-case 242:
-#line 1576 "ns_parser.y"
-{
-		if (!set_zone_checknames(current_zone, (enum severity)yyvsp[0].s_int))
-			parser_warning(0,
-	                              "zone checknames already set; skipping");
-	}
-break;
-case 243:
-#line 1582 "ns_parser.y"
-{
-		if (!set_zone_update_acl(current_zone, yyvsp[-1].iml))
-			parser_warning(0,
-				      "zone update acl already set; skipping");
-	}
-break;
-case 244:
-#line 1588 "ns_parser.y"
-{
-		if (!set_zone_query_acl(current_zone, yyvsp[-1].iml))
-			parser_warning(0,
-				      "zone query acl already set; skipping");
-	}
-break;
-case 245:
-#line 1594 "ns_parser.y"
-{
-		if (!set_zone_transfer_acl(current_zone, yyvsp[-1].iml))
-			parser_warning(0,
-				    "zone transfer acl already set; skipping");
-	}
-break;
-case 247:
-#line 1601 "ns_parser.y"
-{
-		struct zoneinfo *zp = current_zone.opaque;
-		if (zp->z_fwdtab) {
-                	free_forwarders(zp->z_fwdtab);
-			zp->z_fwdtab = NULL;
-		}
-
-	}
-break;
-case 249:
-#line 1611 "ns_parser.y"
-{
-		if (!set_zone_transfer_time_in(current_zone, yyvsp[0].num*60))
-			parser_warning(0,
-		       "zone max transfer time (in) already set; skipping");
-	}
-break;
-case 250:
-#line 1617 "ns_parser.y"
-{
-		set_zone_max_log_size_ixfr(current_zone, yyvsp[0].num);
-        }
-break;
-case 251:
-#line 1621 "ns_parser.y"
-{
-		set_zone_notify(current_zone, yyvsp[0].num);
-	}
-break;
-case 252:
-#line 1625 "ns_parser.y"
-{
-		set_zone_maintain_ixfr_base(current_zone, yyvsp[0].num);
-	}
-break;
-case 253:
-#line 1629 "ns_parser.y"
-{
-		/* flags proto alg key */
-		set_zone_pubkey(current_zone, yyvsp[-3].num, yyvsp[-2].num, yyvsp[-1].num, yyvsp[0].cp);
-	}
-break;
-case 254:
-#line 1634 "ns_parser.y"
-{
-		/* flags proto alg key */
-		char *endp;
-		int flags = (int) strtol(yyvsp[-3].cp, &endp, 0);
-		if (*endp != '\0')
-			ns_panic(ns_log_parser, 1,
-				 "Invalid flags string: %s", yyvsp[-3].cp);
-		set_zone_pubkey(current_zone, flags, yyvsp[-2].num, yyvsp[-1].num, yyvsp[0].cp);
-
-	}
-break;
-case 256:
-#line 1646 "ns_parser.y"
-{
-		 set_zone_dialup(current_zone, yyvsp[0].num);
-	}
-break;
-case 258:
-#line 1653 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 259:
-#line 1657 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 260:
-#line 1663 "ns_parser.y"
-{
-	  	add_zone_master(current_zone, yyvsp[0].ip_addr);
-	}
-break;
-case 263:
-#line 1673 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 264:
-#line 1677 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 265:
-#line 1683 "ns_parser.y"
-{
-	  	add_zone_notify(current_zone, yyvsp[0].ip_addr);
-	}
-break;
-case 266:
-#line 1689 "ns_parser.y"
-{
-		set_zone_boolean_option(current_zone, OPTION_FORWARD_ONLY, 1);
-	}
-break;
-case 267:
-#line 1693 "ns_parser.y"
-{
-		set_zone_boolean_option(current_zone, OPTION_FORWARD_ONLY, 0);
-	}
-break;
-case 268:
-#line 1699 "ns_parser.y"
-{
-		set_zone_forward(current_zone);
-	}
-break;
-case 270:
-#line 1706 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 271:
-#line 1710 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 272:
-#line 1716 "ns_parser.y"
-{
-	  	add_zone_forwarder(current_zone, yyvsp[0].ip_addr);
-	}
-break;
-case 273:
-#line 1726 "ns_parser.y"
-{
-	}
-break;
-case 274:
-#line 1730 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 275:
-#line 1734 "ns_parser.y"
-{
-		/* nothing */
-	}
-break;
-case 276:
-#line 1739 "ns_parser.y"
-{
-		/* name flags proto alg key */
-		set_trusted_key(yyvsp[-4].cp, yyvsp[-3].num, yyvsp[-2].num, yyvsp[-1].num, yyvsp[0].cp);
-	}
-break;
-case 277:
-#line 1744 "ns_parser.y"
-{
-		/* name flags proto alg key */
-		char *endp;
-		int flags = (int) strtol(yyvsp[-3].cp, &endp, 0);
-		if (*endp != '\0')
-			ns_panic(ns_log_parser, 1,
-				 "Invalid flags string: %s", yyvsp[-3].cp);
-		set_trusted_key(yyvsp[-4].cp, flags, yyvsp[-2].num, yyvsp[-1].num, yyvsp[0].cp);
-	}
-break;
-case 278:
-#line 1760 "ns_parser.y"
-{
-		if (yyvsp[0].num < 0 || yyvsp[0].num > 65535) {
-		  	parser_warning(0, 
-			  "invalid IP port number '%d'; setting port to 0",
-			               yyvsp[0].num);
-			yyvsp[0].num = 0;
-		} else
-			yyval.us_int = htons(yyvsp[0].num);
-	}
-break;
-#line 3093 "y.tab.c"
-    }
-    yystk.ssp -= yym;
-    yystate = *yystk.ssp;
-    yystk.vsp -= yym;
-    yym = yylhs[yyn];
-    yych = yychar;
-    if (yystate == 0 && yym == 0)
-    {
-#if YYDEBUG
-        if (yydebug)
-            printf("%sdebug: after reduction, shifting from state 0 to\
- state %d\n", YYPREFIX, YYFINAL);
-#endif
-        yystate = YYFINAL;
-        *++yystk.ssp = YYFINAL;
-        *++yystk.vsp = yyval;
-        if (yych < 0)
-        {
-            if ((yych = YYLEX) < 0) yych = 0;
-            yychar = yych;
-#if YYDEBUG
-            if (yydebug)
-            {
-                yys = 0;
-                if (yych <= YYMAXTOKEN) yys = yyname[yych];
-                if (!yys) yys = "illegal-symbol";
-                printf("%sdebug: state %d, reading %d (%s)\n",
-                        YYPREFIX, YYFINAL, yych, yys);
-            }
-#endif
-        }
-        if (yych == 0) goto yyaccept;
-        goto yyloop;
-    }
-    if ((yyn = yygindex[yym]) && (yyn += yystate) >= 0 &&
-            yyn <= YYTABLESIZE && yycheck[yyn] == yystate)
-        yystate = yytable[yyn];
-    else
-        yystate = yydgoto[yym];
-#if YYDEBUG
-    if (yydebug)
-        printf("%sdebug: after reduction, shifting from state %d \
-to state %d\n", YYPREFIX, *yystk.ssp, yystate);
-#endif
-    if (yystk.ssp >= yystk.sslim && yygrowstack(&yystk))
-        goto yyoverflow;
-    *++yystk.ssp = yystate;
-    *++yystk.vsp = yyval;
-    goto yyloop;
-yyoverflow:
-    yyerror("yacc stack overflow");
-yyabort:
-    YYFREESTACK(&yystk);
-    return (1);
-yyaccept:
-    YYFREESTACK(&yystk);
-    return (0);
-}
diff --git a/contrib/bind/bin/named/ns_parser.h b/contrib/bind/bin/named/ns_parser.h
deleted file mode 100644
index 571fb473ea7b3..0000000000000
--- a/contrib/bind/bin/named/ns_parser.h
+++ /dev/null
@@ -1,145 +0,0 @@
-#define YYEMPTY (-1)
-#define L_EOS 257
-#define L_IPADDR 258
-#define L_NUMBER 259
-#define L_STRING 260
-#define L_QSTRING 261
-#define L_END_INCLUDE 262
-#define T_INCLUDE 263
-#define T_OPTIONS 264
-#define T_DIRECTORY 265
-#define T_PIDFILE 266
-#define T_NAMED_XFER 267
-#define T_DUMP_FILE 268
-#define T_STATS_FILE 269
-#define T_MEMSTATS_FILE 270
-#define T_FAKE_IQUERY 271
-#define T_RECURSION 272
-#define T_FETCH_GLUE 273
-#define T_QUERY_SOURCE 274
-#define T_LISTEN_ON 275
-#define T_PORT 276
-#define T_ADDRESS 277
-#define T_RRSET_ORDER 278
-#define T_ORDER 279
-#define T_NAME 280
-#define T_CLASS 281
-#define T_CONTROLS 282
-#define T_INET 283
-#define T_UNIX 284
-#define T_PERM 285
-#define T_OWNER 286
-#define T_GROUP 287
-#define T_ALLOW 288
-#define T_DATASIZE 289
-#define T_STACKSIZE 290
-#define T_CORESIZE 291
-#define T_DEFAULT 292
-#define T_UNLIMITED 293
-#define T_FILES 294
-#define T_VERSION 295
-#define T_HOSTSTATS 296
-#define T_DEALLOC_ON_EXIT 297
-#define T_TRANSFERS_IN 298
-#define T_TRANSFERS_OUT 299
-#define T_TRANSFERS_PER_NS 300
-#define T_TRANSFER_FORMAT 301
-#define T_MAX_TRANSFER_TIME_IN 302
-#define T_SERIAL_QUERIES 303
-#define T_ONE_ANSWER 304
-#define T_MANY_ANSWERS 305
-#define T_NOTIFY 306
-#define T_AUTH_NXDOMAIN 307
-#define T_MULTIPLE_CNAMES 308
-#define T_USE_IXFR 309
-#define T_MAINTAIN_IXFR_BASE 310
-#define T_CLEAN_INTERVAL 311
-#define T_INTERFACE_INTERVAL 312
-#define T_STATS_INTERVAL 313
-#define T_MAX_LOG_SIZE_IXFR 314
-#define T_HEARTBEAT 315
-#define T_USE_ID_POOL 316
-#define T_MAX_NCACHE_TTL 317
-#define T_HAS_OLD_CLIENTS 318
-#define T_RFC2308_TYPE1 319
-#define T_LAME_TTL 320
-#define T_MIN_ROOTS 321
-#define T_TREAT_CR_AS_SPACE 322
-#define T_LOGGING 323
-#define T_CATEGORY 324
-#define T_CHANNEL 325
-#define T_SEVERITY 326
-#define T_DYNAMIC 327
-#define T_FILE 328
-#define T_VERSIONS 329
-#define T_SIZE 330
-#define T_SYSLOG 331
-#define T_DEBUG 332
-#define T_NULL_OUTPUT 333
-#define T_PRINT_TIME 334
-#define T_PRINT_CATEGORY 335
-#define T_PRINT_SEVERITY 336
-#define T_SORTLIST 337
-#define T_TOPOLOGY 338
-#define T_SERVER 339
-#define T_LONG_AXFR 340
-#define T_BOGUS 341
-#define T_TRANSFERS 342
-#define T_KEYS 343
-#define T_SUPPORT_IXFR 344
-#define T_ZONE 345
-#define T_IN 346
-#define T_CHAOS 347
-#define T_HESIOD 348
-#define T_TYPE 349
-#define T_MASTER 350
-#define T_SLAVE 351
-#define T_STUB 352
-#define T_RESPONSE 353
-#define T_HINT 354
-#define T_MASTERS 355
-#define T_TRANSFER_SOURCE 356
-#define T_PUBKEY 357
-#define T_ALSO_NOTIFY 358
-#define T_DIALUP 359
-#define T_FILE_IXFR 360
-#define T_IXFR_TMP 361
-#define T_TRUSTED_KEYS 362
-#define T_ACL 363
-#define T_ALLOW_UPDATE 364
-#define T_ALLOW_QUERY 365
-#define T_ALLOW_TRANSFER 366
-#define T_ALLOW_RECURSION 367
-#define T_BLACKHOLE 368
-#define T_SEC_KEY 369
-#define T_ALGID 370
-#define T_SECRET 371
-#define T_CHECK_NAMES 372
-#define T_WARN 373
-#define T_FAIL 374
-#define T_IGNORE 375
-#define T_FORWARD 376
-#define T_FORWARDERS 377
-#define T_ONLY 378
-#define T_FIRST 379
-#define T_IF_NO_ANSWER 380
-#define T_IF_NO_DOMAIN 381
-#define T_YES 382
-#define T_TRUE 383
-#define T_NO 384
-#define T_FALSE 385
-typedef union {
-	char *			cp;
-	int			s_int;
-	long			num;
-	u_long			ul_int;
-	u_int16_t		us_int;
-	struct in_addr		ip_addr;
-	ip_match_element	ime;
-	ip_match_list		iml;
-	rrset_order_list	rol;
-	rrset_order_element	roe;
-	struct dst_key *	keyi;
-	enum axfr_format	axfr_fmt;
-} YYSTYPE;
-extern YYSTYPE yylval;
diff --git a/contrib/bind/bin/named/ns_parser.y b/contrib/bind/bin/named/ns_parser.y
deleted file mode 100644
index c987e2b404be1..0000000000000
--- a/contrib/bind/bin/named/ns_parser.y
+++ /dev/null
@@ -1,1970 +0,0 @@
-%{
-#if !defined(lint) && !defined(SABER)
-static char rcsid[] = "$Id: ns_parser.y,v 8.55 2000/04/23 02:18:59 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Global C stuff goes here. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <limits.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-#include "ns_parseutil.h"
-#include "ns_lexer.h"
-
-#define SYM_ZONE	0x010000
-#define SYM_SERVER	0x020000
-#define SYM_KEY		0x030000
-#define SYM_ACL		0x040000
-#define SYM_CHANNEL	0x050000
-#define SYM_PORT	0x060000
-
-#define SYMBOL_TABLE_SIZE 29989		/* should always be prime */
-static symbol_table symtab;
-
-#define AUTH_TABLE_SIZE 397		/* should always be prime */
-static symbol_table authtab = NULL;
-
-static zone_config current_zone;
-static int should_install;
-
-static options current_options;
-static int seen_options;
-
-static controls current_controls;
-
-static topology_config current_topology;
-static int seen_topology;
-
-static server_config current_server;
-static int seen_server;
-
-static char *current_algorithm;
-static char *current_secret;
-
-static log_config current_logging;
-static int current_category;
-static int chan_type;
-static int chan_level;
-static u_int chan_flags;
-static int chan_facility;
-static char *chan_name;
-static int chan_versions;
-static u_long chan_max_size;
-
-static log_channel lookup_channel(char *);
-static void define_channel(char *, log_channel);
-static char *canonical_name(char *);
-
-int yyparse();
-	
-%}
-
-%union {
-	char *			cp;
-	int			s_int;
-	long			num;
-	u_long			ul_int;
-	u_int16_t		us_int;
-	struct in_addr		ip_addr;
-	ip_match_element	ime;
-	ip_match_list		iml;
-	rrset_order_list	rol;
-	rrset_order_element	roe;
-	struct dst_key *	keyi;
-	enum axfr_format	axfr_fmt;
-}
-
-/* Lexical analyzer return values. */
-%token			L_EOS
-%token	<ip_addr>	L_IPADDR
-%token	<num>		L_NUMBER
-%token	<cp>		L_STRING
-%token	<cp>		L_QSTRING
-%token			L_END_INCLUDE
-
-/* Include support */
-%token			T_INCLUDE
-
-/* Items related to the "options" statement: */
-%token			T_OPTIONS
-%token			T_DIRECTORY T_PIDFILE T_NAMED_XFER
-%token			T_DUMP_FILE T_STATS_FILE T_MEMSTATS_FILE
-%token			T_FAKE_IQUERY T_RECURSION T_FETCH_GLUE 
-%token			T_QUERY_SOURCE T_LISTEN_ON T_PORT T_ADDRESS
-%token			T_RRSET_ORDER T_ORDER T_NAME T_CLASS
-%token			T_CONTROLS T_INET T_UNIX T_PERM T_OWNER T_GROUP T_ALLOW
-%type	<us_int>	in_port
-%type	<us_int>	maybe_port
-%type	<us_int>	maybe_zero_port
-%type	<us_int>	maybe_wild_port
-%type	<ip_addr>	maybe_wild_addr
-%token			T_DATASIZE T_STACKSIZE T_CORESIZE
-%token			T_DEFAULT T_UNLIMITED
-%token			T_FILES T_VERSION
-%token			T_HOSTSTATS T_DEALLOC_ON_EXIT
-%token			T_TRANSFERS_IN T_TRANSFERS_OUT T_TRANSFERS_PER_NS
-%token			T_TRANSFER_FORMAT T_MAX_TRANSFER_TIME_IN
-%token			T_SERIAL_QUERIES T_ONE_ANSWER T_MANY_ANSWERS
-%type	<axfr_fmt>	transfer_format
-%token			T_NOTIFY T_AUTH_NXDOMAIN T_MULTIPLE_CNAMES T_USE_IXFR T_MAINTAIN_IXFR_BASE
-%token			T_CLEAN_INTERVAL T_INTERFACE_INTERVAL T_STATS_INTERVAL T_MAX_LOG_SIZE_IXFR
-%token			T_HEARTBEAT T_USE_ID_POOL
-%token			T_MAX_NCACHE_TTL T_HAS_OLD_CLIENTS T_RFC2308_TYPE1
-%token			T_LAME_TTL T_MIN_ROOTS
-%token			T_TREAT_CR_AS_SPACE
-
-/* Items used for the "logging" statement: */
-%token			T_LOGGING T_CATEGORY T_CHANNEL T_SEVERITY T_DYNAMIC
-%token			T_FILE T_VERSIONS T_SIZE
-%token			T_SYSLOG T_DEBUG T_NULL_OUTPUT
-%token			T_PRINT_TIME T_PRINT_CATEGORY T_PRINT_SEVERITY
-%type	<s_int>		category
-%type	<cp>		category_name channel_name facility_name
-%type	<s_int>		maybe_syslog_facility
-
-/* Items used for the "sortlist" statement: */
-%token			T_SORTLIST
-
-/* Items used for the "topology" statement: */
-%token			T_TOPOLOGY
-
-%type	<s_int>		ordering_class
-%type	<s_int>		ordering_type
-%type	<cp>		ordering_name
-%type	<rol>		rrset_ordering_list
-%type	<roe>		rrset_ordering_element
-
-/* ip_match_list */
-%type	<ime>		address_match_simple address_match_element address_name
-%type	<iml>		address_match_list
-
-/* Items used for "server" statements: */
-%token			T_SERVER 
-%token			T_LONG_AXFR 
-%token			T_BOGUS 
-%token			T_TRANSFERS 
-%token			T_KEYS
-%token			T_SUPPORT_IXFR
-
-/* Items used for "zone" statements: */
-%token			T_ZONE
-%type	<num>		optional_class
-%type	<s_int>		zone_type
-%token			T_IN T_CHAOS T_HESIOD
-%token			T_TYPE
-%token			T_MASTER T_SLAVE T_STUB T_RESPONSE
-%token			T_HINT
-%token			T_MASTERS T_TRANSFER_SOURCE
-%token			T_PUBKEY
-%token			T_ALSO_NOTIFY
-%token			T_DIALUP
-%token			T_FILE_IXFR
-%token			T_IXFR_TMP
-
-/* Items used for "trusted-keys" statements: */
-%token                  T_TRUSTED_KEYS
-
-/* Items used for access control lists and "allow" clauses: */
-%token			T_ACL 
-%token	 		T_ALLOW_UPDATE T_ALLOW_QUERY T_ALLOW_TRANSFER
-%token			T_ALLOW_RECURSION
-%token			T_BLACKHOLE
-
-/* Items related to the "key" statement: */
-%token			T_SEC_KEY T_ALGID T_SECRET
-%type	<keyi>		key_ref
-%type  	<cp>		algorithm_id secret
-
-/* Items used for "size_spec" clauses: */
-%type	<ul_int>	size_spec
-
-/* Items used for a "check-names" clause: */
-%token			T_CHECK_NAMES
-%type	<s_int>		check_names_type
-%type	<s_int>		check_names_opt
-%token			T_WARN T_FAIL T_IGNORE
-
-/* Items used for "forward" clauses: */
-%token			T_FORWARD T_FORWARDERS
-%token			T_ONLY T_FIRST T_IF_NO_ANSWER T_IF_NO_DOMAIN
-
-/* Items used for yes/no responses: */
-%type	<num>		yea_or_nay
-%token			T_YES T_TRUE T_NO T_FALSE
-
-/* Miscellaneous items (used in several places): */
-%type	<cp>		any_string
-
-%%
-config_file: statement_list
-	{
-		if (EMPTY(current_controls))
-			ns_ctl_defaults(&current_controls);
-		ns_ctl_install(&current_controls);
-	}
-	;
-
-statement_list: statement
-	| statement_list statement
-	;
-
-statement: include_stmt
-	| options_stmt L_EOS
-	| controls_stmt L_EOS
-	| logging_stmt L_EOS
-	| server_stmt L_EOS
-	| zone_stmt L_EOS
-	| trusted_keys_stmt L_EOS
-	| acl_stmt L_EOS
-	| key_stmt L_EOS
-	| L_END_INCLUDE
-	| error L_EOS
-	| error L_END_INCLUDE
-	;
-
-include_stmt: T_INCLUDE L_QSTRING L_EOS	{ lexer_begin_file($2, NULL); }
-	;
-
-/*
- * Options
- */
-
-options_stmt: T_OPTIONS 
-	{
-		if (seen_options)
-			parser_error(0, "cannot redefine options");
-		current_options = new_options();
-	}
-	'{' options '}'
-	{
-		if (!seen_options)
-			set_options(current_options, 0);
-		else
-			free_options(current_options);
-		current_options = NULL;
-		seen_options = 1;
-	}
-	;
-
-options: option L_EOS
-	| options option L_EOS
-	;
-
-option: /* Empty */
-	| T_VERSION L_QSTRING
-	{
-		if (current_options->version != NULL)
-			freestr(current_options->version);
-		current_options->version = $2;
-	}
-	| T_DIRECTORY L_QSTRING
-	{
-		if (current_options->directory != NULL)
-			freestr(current_options->directory);
-		current_options->directory = $2;
-	}
-	| T_NAMED_XFER L_QSTRING
-	{
-		if (current_options->named_xfer != NULL)
-			freestr(current_options->named_xfer);
-		current_options->named_xfer = $2;
-	}
-	| T_PIDFILE L_QSTRING
-	{
-		if (current_options->pid_filename != NULL)
-			freestr(current_options->pid_filename);
-		current_options->pid_filename = $2;
-	}
-	| T_STATS_FILE L_QSTRING
-	{
-		if (current_options->stats_filename != NULL)
-			freestr(current_options->stats_filename);
-		current_options->stats_filename = $2;
-	}
-	| T_MEMSTATS_FILE L_QSTRING
-	{
-		if (current_options->memstats_filename != NULL)
-			freestr(current_options->memstats_filename);
-		current_options->memstats_filename = $2;
-	}
-	| T_DUMP_FILE L_QSTRING
-	{
-		if (current_options->dump_filename != NULL)
-			freestr(current_options->dump_filename);
-		current_options->dump_filename = $2;
-	}
-	| T_FAKE_IQUERY yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-			OPTION_FAKE_IQUERY, $2);
-	}
-	| T_RECURSION yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-			OPTION_NORECURSE, !$2);
-	}
-	| T_FETCH_GLUE yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-			OPTION_NOFETCHGLUE, !$2);
-	}
-	| T_NOTIFY yea_or_nay
-	{
-		set_global_boolean_option(current_options, 
-			OPTION_NONOTIFY, !$2);
-	}
-	| T_HOSTSTATS yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-			OPTION_HOSTSTATS, $2);
-	}
-	| T_DEALLOC_ON_EXIT yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-			OPTION_DEALLOC_ON_EXIT, $2);
-	}
-	| T_USE_IXFR yea_or_nay
-	{
-		set_global_boolean_option(current_options, OPTION_USE_IXFR, $2);
-	}
-	| T_MAINTAIN_IXFR_BASE yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-					  OPTION_MAINTAIN_IXFR_BASE, $2);
-	}
-	| T_HAS_OLD_CLIENTS yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-					  OPTION_NORFC2308_TYPE1, $2);
-		set_global_boolean_option(current_options,
-					  OPTION_NONAUTH_NXDOMAIN, !$2);
-	}
-	| T_AUTH_NXDOMAIN yea_or_nay
-	{
-		set_global_boolean_option(current_options, OPTION_NONAUTH_NXDOMAIN,
-				   !$2);
-	}
-	| T_MULTIPLE_CNAMES yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-			OPTION_MULTIPLE_CNAMES, $2);
-	}
-	| T_CHECK_NAMES check_names_type check_names_opt
-	{
-		current_options->check_names[$2] = (enum severity)$3;
-	}
-	| T_USE_ID_POOL yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-					  OPTION_USE_ID_POOL, $2);
-	}
-	| T_RFC2308_TYPE1 yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-                        		  OPTION_NORFC2308_TYPE1, !$2);
-	}
-	| T_LISTEN_ON maybe_port '{' address_match_list '}'
-	{
-		char port_string[10];
-		symbol_value value;
-
-		(void)sprintf(port_string, "%u", $2);
-		if (lookup_symbol(symtab, port_string, SYM_PORT, NULL))
-			parser_error(0,
-				     "cannot redefine listen-on for port %u",
-				     ntohs($2));
-		else {
-			add_listen_on(current_options, $2, $4);
-			value.pointer = NULL;
-			define_symbol(symtab, savestr(port_string, 1),
-				      SYM_PORT, value, SYMBOL_FREE_KEY);
-		}
-
-	}
-	| T_FORWARD forward_opt
-	| T_FORWARDERS 
-	{
-		if (current_options->fwdtab) {
-			free_forwarders(current_options->fwdtab);
-			current_options->fwdtab = NULL;
-		}
-	}
-	'{' opt_forwarders_list '}'
-	| T_QUERY_SOURCE query_source
-	| T_TRANSFER_SOURCE maybe_wild_addr
-	{
-		current_options->axfr_src = $2;
-	}
-	| T_ALLOW_QUERY '{' address_match_list '}'
-	{
-		if (current_options->query_acl) {
-			parser_warning(0,
-			      "options allow-query acl already set; skipping");
-			free_ip_match_list($3);
-		} else 
-			current_options->query_acl = $3;
-	}
-	| T_ALLOW_RECURSION '{' address_match_list '}'
-	{
-		if (current_options->recursion_acl) {
-			parser_warning(0,
-			      "options allow-recursion acl already set; skipping");
-			free_ip_match_list($3);
-		} else
-			current_options->recursion_acl = $3;
-	}
-	| T_ALLOW_TRANSFER '{' address_match_list '}'
-	{
-		if (current_options->transfer_acl) {
-			parser_warning(0,
-			   "options allow-transfer acl already set; skipping");
-			free_ip_match_list($3);
-		} else 
-			current_options->transfer_acl = $3;
-	}
-	| T_SORTLIST '{' address_match_list '}'
-	{
-		if (current_options->sortlist) {
-			parser_warning(0,
-			      "options sortlist already set; skipping");
-			free_ip_match_list($3);
-		} else
-			current_options->sortlist = $3;
-	}
-	| T_ALSO_NOTIFY
-	{
-		if (current_options->also_notify) {
-			parser_warning(0,
-			    "duplicate also-notify clause: overwriting");
-			free_also_notify(current_options);
-			current_options->also_notify = NULL;
-		}
-	}
-	'{' opt_also_notify_list '}'
-	| T_BLACKHOLE '{' address_match_list '}'
-	{
-		if (current_options->blackhole_acl) {
-			parser_warning(0,
-			      "options blackhole already set; skipping");
-			free_ip_match_list($3);
-		} else
-			current_options->blackhole_acl = $3;
-	}
-	| T_TOPOLOGY '{' address_match_list '}'
-	{
-		if (current_options->topology) {
-			parser_warning(0,
-			      "options topology already set; skipping");
-			free_ip_match_list($3);
-		} else
-			current_options->topology = $3;
-	}
-	| size_clause
-	{
-		/* To get around the $$ = $1 default rule. */
-	}
-	| transfer_clause
-	| T_TRANSFER_FORMAT transfer_format
-	{
-		current_options->transfer_format = $2;
-	}
-	| T_MAX_TRANSFER_TIME_IN L_NUMBER
-	{
-		current_options->max_transfer_time_in = $2 * 60;
-	}
-	| T_SERIAL_QUERIES L_NUMBER
-	{
-		current_options->serial_queries = $2;
-	}
-	| T_CLEAN_INTERVAL L_NUMBER
-	{
-		current_options->clean_interval = $2 * 60;
-	}
-	| T_INTERFACE_INTERVAL L_NUMBER
-	{
-		current_options->interface_interval = $2 * 60;
-	}
-	| T_STATS_INTERVAL L_NUMBER
-	{
-		current_options->stats_interval = $2 * 60;
-	}
-	| T_MAX_LOG_SIZE_IXFR L_NUMBER
-	{
-		current_options->max_log_size_ixfr = $2;
-	}
-	| T_MAX_NCACHE_TTL L_NUMBER
-	{
-		current_options->max_ncache_ttl = $2;
-	}
-	| T_LAME_TTL L_NUMBER
-	{
-		current_options->lame_ttl = $2;
-	}
-	| T_HEARTBEAT L_NUMBER
-	{
-		current_options->heartbeat_interval = $2 * 60;
-	}
-	| T_DIALUP yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-                                          OPTION_NODIALUP, !$2);
-	}
-	| T_RRSET_ORDER	'{' rrset_ordering_list '}'
-	{
-		if (current_options->ordering)
-			free_rrset_order_list(current_options->ordering);
-		current_options->ordering = $3;
-	}
-	| T_TREAT_CR_AS_SPACE yea_or_nay
-	{
-		set_global_boolean_option(current_options,
-					  OPTION_TREAT_CR_AS_SPACE, $2);
-	}
-	| T_MIN_ROOTS L_NUMBER
-	{
-		if ($2 >= 1)
-			current_options->minroots = $2;
-	}
-	| error
-	;
-
-/*
- * Controls.
- */
-controls_stmt: T_CONTROLS '{' controls '}'
-	;		
-
-controls: control L_EOS
-	| controls control L_EOS
-	;
-
-control: /* Empty */
-	| T_INET maybe_wild_addr T_PORT in_port
-	  T_ALLOW '{' address_match_list '}'
-	{
-		ns_ctl_add(&current_controls, ns_ctl_new_inet($2, $4, $7));
-	}
-	| T_UNIX L_QSTRING T_PERM L_NUMBER T_OWNER L_NUMBER T_GROUP L_NUMBER
-	{
-#ifndef NO_SOCKADDR_UN
-		ns_ctl_add(&current_controls, ns_ctl_new_unix($2, $4, $6, $8));
-#endif
-	}
-	| error
-	;
-
-rrset_ordering_list: rrset_ordering_element L_EOS
-	{
-		rrset_order_list rol;
-
-		rol = new_rrset_order_list();
-		if ($1 != NULL) {
-			add_to_rrset_order_list(rol, $1);
-		}
-		
-		$$ = rol;
-	}
-	| rrset_ordering_list rrset_ordering_element L_EOS
-	{
-		if ($2 != NULL) {
-			add_to_rrset_order_list($1, $2);
-		}
-		$$ = $1;
-	}
-	;
-
-ordering_class: /* nothing */
-	{
-		$$ = C_ANY;
-	}
-	| T_CLASS any_string
-	{
-		symbol_value value;
-
-		if (lookup_symbol(constants, $2, SYM_CLASS, &value))
-			$$ = value.integer;
-		else {
-			parser_error(0, "unknown class '%s'; using ANY", $2);
-			$$ = C_ANY;
-		}
-		freestr($2);
-	}
-	;
-
-ordering_type: /* nothing */
-	{
-		$$ = ns_t_any;
-	}
-	| T_TYPE any_string
-	{
-		int success;
-
-		if (strcmp($2, "*") == 0) {
-			$$ = ns_t_any;
-		} else {
-			$$ = __sym_ston(__p_type_syms, $2, &success);
-			if (success == 0) {
-				$$ = ns_t_any;
-				parser_error(0,
-					     "unknown type '%s'; assuming ANY",
-					     $2);
-			}
-		}
-		freestr($2);
-	}
-
-ordering_name: /* nothing */
-	{
-		$$ = savestr("*", 1);
-	}
-	| T_NAME L_QSTRING
-	{
-		if (strcmp(".",$2) == 0 || strcmp("*.",$2) == 0) {
-			$$ = savestr("*", 1);
-			freestr($2);
-		} else {
-			$$ = $2 ;
-		}
-		/* XXX Should do any more name validation here? */
-	}
-
-
-rrset_ordering_element: ordering_class ordering_type ordering_name T_ORDER L_STRING
-	{
-		enum ordering o;
-
-		if (strlen($5) == 0) {
-			parser_error(0, "null order name");
-			$$ = NULL ;
-		} else {
-			o = lookup_ordering($5);
-			if (o == unknown_order) {
-				o = (enum ordering)DEFAULT_ORDERING;
-				parser_error(0,
-					     "invalid order name '%s'; using %s",
-					     $5, p_order(o));
-			}
-			
-			freestr($5);
-			
-			$$ = new_rrset_order_element($1, $2, $3, o);
-		}
-	}
-
-	
-transfer_format: T_ONE_ANSWER
-	{
-		$$ = axfr_one_answer;
-	}
-	| T_MANY_ANSWERS
-	{
-		$$ = axfr_many_answers;
-	}
-	;
-	
-maybe_wild_addr: L_IPADDR { $$ = $1; }
-	| '*' { $$.s_addr = htonl(INADDR_ANY); }
-	;
-
-maybe_wild_port: in_port { $$ = $1; }
-	| '*' { $$ = htons(0); }
-	;
-
-query_source_address: T_ADDRESS maybe_wild_addr
-	{
-		current_options->query_source.sin_addr = $2;
-	}
-	;
-
-query_source_port: T_PORT maybe_wild_port
-	{
-		current_options->query_source.sin_port = $2;
-	}
-	;
-
-query_source: query_source_address
-	| query_source_port
-	| query_source_address query_source_port
-	| query_source_port query_source_address
-	;
-
-maybe_port: /* nothing */ { $$ = htons(NS_DEFAULTPORT); }
-	| T_PORT in_port { $$ = $2; }
-	;
-
-maybe_zero_port: /* nothing */ { $$ = htons(0); }
-	| T_PORT in_port { $$ = $2; }
-	;
-
-
-yea_or_nay: T_YES
-	{ 
-		$$ = 1;	
-	}
-	| T_TRUE
-	{ 
-		$$ = 1;	
-	}
-	| T_NO
-	{ 
-		$$ = 0;	
-	}
-	| T_FALSE 
-	{ 
-		$$ = 0;	
-	}
-	| L_NUMBER
-	{ 
-		if ($1 == 1 || $1 == 0) {
-			$$ = $1;
-		} else {
-			parser_warning(0,
-				       "number should be 0 or 1; assuming 1");
-			$$ = 1;
-		}
-	}
-	;
-
-check_names_type: T_MASTER
-	{
-		$$ = primary_trans;
-	}
-	| T_SLAVE
-	{
-		$$ = secondary_trans;
-	}
-	| T_RESPONSE
-	{
-		$$ = response_trans;
-	}
-	;
-
-check_names_opt: T_WARN
-	{
-		$$ = warn;
-	}
-	| T_FAIL
-	{
-		$$ = fail;
-	}
-	| T_IGNORE
-	{
-		$$ = ignore;
-	}
-	;
-
-forward_opt: T_ONLY
-	{
-		set_global_boolean_option(current_options,
-			OPTION_FORWARD_ONLY, 1);
-	}
-	| T_FIRST
-	{
-		set_global_boolean_option(current_options,
-			OPTION_FORWARD_ONLY, 0);
-	}
-	| T_IF_NO_ANSWER
-	{
-		parser_warning(0, "forward if-no-answer is unimplemented");
-	}
-	| T_IF_NO_DOMAIN
-	{
-		parser_warning(0, "forward if-no-domain is unimplemented");
-	}
-	;
-
-size_clause: T_DATASIZE size_spec
-	{
-		current_options->data_size = $2;
-	}
-	| T_STACKSIZE size_spec
-	{
-		current_options->stack_size = $2;
-	}
-	| T_CORESIZE size_spec
-	{
-		current_options->core_size = $2;
-	}
-	| T_FILES size_spec
-	{
-		current_options->files = $2;
-	}
-	;
-
-size_spec: any_string
-	{
-		u_long result;
-
-		if (unit_to_ulong($1, &result))
-			$$ = result;
-		else {
-			parser_error(0, "invalid unit string '%s'", $1);
-			/* 0 means "use default" */
-			$$ = 0;
-		}
-		freestr($1);
-	}
-	| L_NUMBER
-	{	
-		$$ = (u_long)$1;
-	}
-	| T_DEFAULT
-	{
-		$$ = 0;
-	}
-	| T_UNLIMITED
-	{
-		$$ = ULONG_MAX;
-	}
-	;
-
-transfer_clause: T_TRANSFERS_IN L_NUMBER
-	{
-		current_options->transfers_in = (u_long) $2;
-	}
-	| T_TRANSFERS_OUT L_NUMBER
-	{
-		current_options->transfers_out = (u_long) $2;
-	}
-	| T_TRANSFERS_PER_NS L_NUMBER
-	{
-		current_options->transfers_per_ns = (u_long) $2;
-	}
-	;
-
-opt_forwarders_list: /* nothing */
-	| forwarders_in_addr_list
-	;
-
-forwarders_in_addr_list: forwarders_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	| forwarders_in_addr_list forwarders_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	;
-
-forwarders_in_addr: L_IPADDR
-	{
-	  	add_global_forwarder(current_options, $1);
-	}
-	;
-
-opt_also_notify_list: /* nothing */
-	| also_notify_in_addr_list
-	;
-
-also_notify_in_addr_list: also_notify_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	| also_notify_in_addr_list also_notify_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	;
-
-also_notify_in_addr: L_IPADDR
-	{
-	  	add_global_also_notify(current_options, $1);
-	}
-	;
-
-/*
- * Logging
- */
-
-logging_stmt: T_LOGGING
-	{
-		current_logging = begin_logging();
-	}
-	'{' logging_opts_list '}'
-	{
-		end_logging(current_logging, 1);
-		current_logging = NULL;
-	}
-	;
-
-logging_opts_list: logging_opt L_EOS
-	| logging_opts_list logging_opt L_EOS
-	| error
-	;
-
-logging_opt: T_CATEGORY category 
-	{
-		current_category = $2;
-	}
-	'{' channel_list '}'
-	| T_CHANNEL channel_name
-	{
-		chan_type = log_null;
-		chan_flags = 0;
-		chan_level = log_info;
-	}
-	'{' channel_opt_list '}'
-	{
-		log_channel current_channel = NULL;
-
-		if (lookup_channel($2) != NULL) {
-			parser_error(0, "can't redefine channel '%s'", $2);
-			freestr($2);
-		} else {
-			switch (chan_type) {
-			case log_file:
-				current_channel =
-					log_new_file_channel(chan_flags,
-							     chan_level,
-							     chan_name, NULL,
-							     chan_versions,
-							     chan_max_size);
-				log_set_file_owner(current_channel,
-						   user_id, group_id);
-				freestr(chan_name);
-				chan_name = NULL;
-				break;
-			case log_syslog:
-				current_channel =
-					log_new_syslog_channel(chan_flags,
-							       chan_level,
-							       chan_facility);
-				break;
-			case log_null:
-				current_channel = log_new_null_channel();
-				break;
-			default:
-				ns_panic(ns_log_parser, 1,
-					 "unknown channel type: %d",
-					 chan_type);
-			}
-			if (current_channel == NULL)
-				ns_panic(ns_log_parser, 0,
-					 "couldn't create channel");
-			define_channel($2, current_channel);
-		}
-	}
-	;
-
-channel_severity: any_string
-	{
-		symbol_value value;
-
-		if (lookup_symbol(constants, $1, SYM_LOGGING, &value)) {
-			chan_level = value.integer;
-		} else {
-			parser_error(0, "unknown severity '%s'", $1);
-			chan_level = log_debug(99);
-		}
-		freestr($1);
-	}
-	| T_DEBUG
-	{
-		chan_level = log_debug(1);
-	}
-	| T_DEBUG L_NUMBER
-	{
-		chan_level = $2;
-	}
-	| T_DYNAMIC
-	{
-		chan_level = 0;
-		chan_flags |= LOG_USE_CONTEXT_LEVEL|LOG_REQUIRE_DEBUG;
-	}
-	;
-
-version_modifier: T_VERSIONS L_NUMBER
-	{
-		chan_versions = $2;
-	}
-	| T_VERSIONS T_UNLIMITED
-	{
-		chan_versions = LOG_MAX_VERSIONS;
-	}
-	;
-
-size_modifier: T_SIZE size_spec
-	{
-		chan_max_size = $2;
-	}
-	;
-
-maybe_file_modifiers: /* nothing */
-	{
-		chan_versions = 0;
-		chan_max_size = ULONG_MAX;
-	}
-	| version_modifier
-	{
-		chan_max_size = ULONG_MAX;
-	}
-	| size_modifier
-	{
-		chan_versions = 0;
-	}
-	| version_modifier size_modifier
-	| size_modifier version_modifier
-	;
-
-channel_file: T_FILE L_QSTRING maybe_file_modifiers
-	{
-		chan_flags |= LOG_CLOSE_STREAM;
-		chan_type = log_file;
-		chan_name = $2;
-	}
-	;
-
-
-facility_name: any_string { $$ = $1; }
-	| T_SYSLOG { $$ = savestr("syslog", 1); }
-	;
-
-maybe_syslog_facility: /* nothing */ { $$ = LOG_DAEMON; }
-	| facility_name
-	{
-		symbol_value value;
-
-		if (lookup_symbol(constants, $1, SYM_SYSLOG, &value)) {
-			$$ = value.integer;
-		} else {
-			parser_error(0, "unknown facility '%s'", $1);
-			$$ = LOG_DAEMON;
-		}
-		freestr($1);
-	}
-	;
-
-channel_syslog: T_SYSLOG maybe_syslog_facility
-	{
-		chan_type = log_syslog;
-		chan_facility = $2;
-	}
-	;
-
-channel_opt: channel_file { /* nothing to do */ }
-	| channel_syslog { /* nothing to do */ }
-	| T_NULL_OUTPUT
-	{
-		chan_type = log_null;
-	}
-	| T_SEVERITY channel_severity { /* nothing to do */ }
-	| T_PRINT_TIME yea_or_nay
-	{
-		if ($2)
-			chan_flags |= LOG_TIMESTAMP;
-		else
-			chan_flags &= ~LOG_TIMESTAMP;
-	}
-	| T_PRINT_CATEGORY yea_or_nay
-	{
-		if ($2)
-			chan_flags |= LOG_PRINT_CATEGORY;
-		else
-			chan_flags &= ~LOG_PRINT_CATEGORY;
-	}
-	| T_PRINT_SEVERITY yea_or_nay
-	{
-		if ($2)
-			chan_flags |= LOG_PRINT_LEVEL;
-		else
-			chan_flags &= ~LOG_PRINT_LEVEL;
-	}
-	;
-
-channel_opt_list: channel_opt L_EOS
-	| channel_opt_list channel_opt L_EOS
-	| error
-	;
-
-channel_name: any_string
-	| T_NULL_OUTPUT { $$ = savestr("null", 1); }
-	;
-
-channel: channel_name
-	{
-		log_channel channel;
-		symbol_value value;
-
-		if (current_category >= 0) {
-			channel = lookup_channel($1);
-			if (channel != NULL) {
-				add_log_channel(current_logging,
-						current_category, channel);
-			} else
-				parser_error(0, "unknown channel '%s'", $1);
-		}
-		freestr($1);
-	}
-	;
-
-channel_list: channel L_EOS
-	| channel_list channel L_EOS
-	| error
-	;
-
-category_name: any_string
-	| T_DEFAULT { $$ = savestr("default", 1); }
-	| T_NOTIFY { $$ = savestr("notify", 1); }
-	;
-
-category: category_name
-	{
-		symbol_value value;
-
-		if (lookup_symbol(constants, $1, SYM_CATEGORY, &value))
-			$$ = value.integer;
-		else {
-			parser_error(0, "invalid logging category '%s'",
-				     $1);
-			$$ = -1;
-		}
-		freestr($1);
-	}
-	;
-
-/*
- * Server Information
- */
-
-server_stmt: T_SERVER L_IPADDR
-	{
-		const char *ip_printable;
-		symbol_value value;
-		
-		ip_printable = inet_ntoa($2);
-		value.pointer = NULL;
-		if (lookup_symbol(symtab, ip_printable, SYM_SERVER, NULL))
-			seen_server = 1;
-		else
-			seen_server = 0;
-		if (seen_server)
-			parser_error(0, "cannot redefine server '%s'", 
-				     ip_printable);
-		else
-			define_symbol(symtab, savestr(ip_printable, 1),
-				      SYM_SERVER, value,
-				      SYMBOL_FREE_KEY);
-		current_server = begin_server($2);
-	}
-	'{' server_info_list '}'
-	{
-		end_server(current_server, !seen_server);
-	}
-	;
-
-server_info_list: server_info L_EOS
-	| server_info_list server_info L_EOS
-	;
-
-server_info: T_BOGUS yea_or_nay
-	{
-		set_server_option(current_server, SERVER_INFO_BOGUS, $2);
-	}
-	| T_SUPPORT_IXFR yea_or_nay
-	{
-		set_server_option(current_server, SERVER_INFO_SUPPORT_IXFR, $2);
-	}	
-	| T_TRANSFERS L_NUMBER
-	{
-		set_server_transfers(current_server, (int)$2);
-	}
-	| T_TRANSFER_FORMAT transfer_format
-	{
-		set_server_transfer_format(current_server, $2);
-	}
-	| T_KEYS '{' key_list '}'
-	| error
-	;
-
-/*
- * Address Matching
- */
-
-address_match_list: address_match_element L_EOS
-	{
-		ip_match_list iml;
-		
-		iml = new_ip_match_list();
-		if ($1 != NULL)
-			add_to_ip_match_list(iml, $1);
-		$$ = iml;
-	}
-	| address_match_list address_match_element L_EOS
-	{
-		if ($2 != NULL)
-			add_to_ip_match_list($1, $2);
-		$$ = $1;
-	}
-	;
-
-address_match_element: address_match_simple
-	| '!' address_match_simple
-	{
-		if ($2 != NULL)
-			ip_match_negate($2);
-		$$ = $2;
-	}
-	| T_SEC_KEY L_STRING
-	{
-		char *key_name;
-		struct dst_key *dst_key;
-
-		key_name = canonical_name($2);
-		if (key_name == NULL) {
-			parser_error(0, "can't make key name '%s' canonical",
-				     $2);
-			key_name = savestr("__bad_key__", 1);
-		}
-		dst_key = find_key(key_name, NULL);
-		if (dst_key == NULL) {
-			parser_error(0, "key \"%s\" not found", key_name);
-			$$ = NULL;
-		}
-		else
-			$$ = new_ip_match_key(dst_key);
-	}
-	;
-
-address_match_simple: L_IPADDR
-	{
-		$$ = new_ip_match_pattern($1, 32);
-	}
-	| L_IPADDR '/' L_NUMBER
-	{
-		if ($3 < 0 || $3 > 32) {
-			parser_error(0, "mask bits out of range; skipping");
-			$$ = NULL;
-		} else {
-			$$ = new_ip_match_pattern($1, $3);
-			if ($$ == NULL)
-				parser_error(0, 
-					   "address/mask mismatch; skipping");
-		}
-	}
-	| L_NUMBER '/' L_NUMBER
-	{
-		struct in_addr ia;
-
-		if ($1 > 255) {
-			parser_error(0, "address out of range; skipping");
-			$$ = NULL;
-		} else {
-			if ($3 < 0 || $3 > 32) {
-				parser_error(0,
-					"mask bits out of range; skipping");
-					$$ = NULL;
-			} else {
-				ia.s_addr = htonl(($1 & 0xff) << 24);
-				$$ = new_ip_match_pattern(ia, $3);
-				if ($$ == NULL)
-					parser_error(0, 
-					   "address/mask mismatch; skipping");
-			}
-		}
-	}
-	| address_name
-	| '{' address_match_list '}'
-	{
-		char name[256];
-
-		/*
-		 * We want to be able to clean up this iml later so
-		 * we give it a name and treat it like any other acl.
-		 */
-		sprintf(name, "__internal_%p", $2);
-		define_acl(savestr(name, 1), $2);
-  		$$ = new_ip_match_indirect($2);
-	}
-	;
-
-address_name: any_string
-	{
-		ip_match_list iml;
-
-		iml = lookup_acl($1);
-		if (iml == NULL) {
-			parser_error(0, "unknown ACL '%s'", $1);
-			$$ = NULL;
-		} else
-			$$ = new_ip_match_indirect(iml);
-		freestr($1);
-	}
-	;
-
-/*
- * Keys
- */
-
-key_ref: any_string
-	{
-		struct dst_key *dst_key;
-		char *key_name;
-
-		key_name = canonical_name($1);
-		if (key_name == NULL) {
-			parser_error(0, "can't make key name '%s' canonical",
-				     $1);
-			$$ = NULL;
-		} else {
-			dst_key = lookup_key(key_name);
-			if (dst_key == NULL) {
-				parser_error(0, "unknown key '%s'", key_name);
-				$$ = NULL;
-			} else
-				$$ = dst_key;
-			freestr(key_name);
-		}
-		freestr($1);
-	}
-	;
-
-key_list_element: key_ref
-	{
-		if ($1 == NULL)
-			parser_error(0, "empty key not added to server list ");
-		else
-			add_server_key_info(current_server, $1);
-	}
-	;
-
-key_list: key_list_element L_EOS
-	| key_list key_list_element L_EOS
-	| error
-	;
-
-key_stmt: T_SEC_KEY
-	{
-		current_algorithm = NULL;
-		current_secret = NULL;
-	}
-	any_string '{' key_definition '}'
-	{
-		struct dst_key *dst_key;
-		char *key_name;
-
-		key_name = canonical_name($3);
-		if (key_name == NULL) {
-			parser_error(0, "can't make key name '%s' canonical",
-				     $3);
-		} else if (lookup_key(key_name) != NULL) {
-			parser_error(0, "can't redefine key '%s'", key_name);
-			freestr(key_name);
-		} else {
-			if (current_algorithm == NULL ||
-			    current_secret == NULL)  {
-				parser_error(0, "skipping bad key '%s'",
-					     key_name);
-				freestr(key_name);
-			} else {
-				dst_key = new_key_info(key_name,
-						       current_algorithm,
-						       current_secret);
-				if (dst_key != NULL) {
-					define_key(key_name, dst_key);
-					if (secretkey_info == NULL)
-						secretkey_info =
-							new_key_info_list();
-					add_to_key_info_list(secretkey_info,
-							     dst_key);
-				}
-			}
-		}
-		freestr($3);
-	}
-	;
-	
-key_definition: algorithm_id secret
-	{
-		current_algorithm = $1;
-		current_secret = $2;
-	}
-	| secret algorithm_id
-	{
-		current_algorithm = $2;
-		current_secret = $1;
-	}
-	| error
-	{
-		current_algorithm = NULL;
-		current_secret = NULL;
-	}
-	;
-
-algorithm_id: T_ALGID any_string L_EOS { $$ = $2; }
-	;
-
-secret: T_SECRET any_string L_EOS { $$ = $2; }
-	;
-
-/*
- * ACLs
- */
-
-acl_stmt: T_ACL any_string '{' address_match_list '}'
-	{
-		if (lookup_acl($2) != NULL) {
-			parser_error(0, "can't redefine ACL '%s'", $2);
-			freestr($2);
-		} else
-			define_acl($2, $4);
-	}
-	;
-
-/*
- * Zones
- */
-	
-zone_stmt: T_ZONE L_QSTRING optional_class
-	{
-		int sym_type;
-		symbol_value value;
-		char *zone_name;
-
-		if (!seen_options)
-			parser_error(0,
-             "no options statement before first zone; using previous/default");
-		sym_type = SYM_ZONE | ($3 & 0xffff);
-		value.pointer = NULL;
-		zone_name = canonical_name($2);
-		if (zone_name == NULL) {
-			parser_error(0, "can't make zone name '%s' canonical",
-				     $2);
-			should_install = 0;
-			zone_name = savestr("__bad_zone__", 1);
-		} else {
-			if (lookup_symbol(symtab, zone_name, sym_type, NULL)) {
-				should_install = 0;
-				parser_error(0,
-					"cannot redefine zone '%s' class %s",
-					     *zone_name ? zone_name : ".",
-					     p_class($3));
-			} else {
-				should_install = 1;
-				define_symbol(symtab, savestr(zone_name, 1),
-					      sym_type, value,
-					      SYMBOL_FREE_KEY);
-			}
-		}
-		freestr($2);
-		current_zone = begin_zone(zone_name, $3); 
-	}
-	optional_zone_options_list
-	{
-		end_zone(current_zone, should_install);
-	}
-	;
-
-optional_zone_options_list: /* Empty */
-	| '{' zone_option_list '}'
-	;
-
-optional_class: /* Empty */
-	{
-		$$ = C_IN;
-	}
-	| any_string
-	{
-		symbol_value value;
-
-		if (lookup_symbol(constants, $1, SYM_CLASS, &value))
-			$$ = value.integer;
-		else {
-			/* the zone validator will give the error */
-			$$ = C_NONE;
-		}
-		freestr($1);
-	}
-	;
-
-zone_type: T_MASTER
-	{
-		$$ = Z_MASTER;
-	}
-	| T_SLAVE
-	{
-		$$ = Z_SLAVE;
-	}
-	| T_HINT
-	{
-		$$ = Z_HINT;
-	}
-	| T_STUB
-	{
-		$$ = Z_STUB;
-	}
-	| T_FORWARD
-	{
-		$$ = Z_FORWARD;
-	}
-	;
-
-zone_option_list: zone_option L_EOS
-	| zone_option_list zone_option L_EOS
-	;
-
-zone_option: T_TYPE zone_type
-	{
-		if (!set_zone_type(current_zone, $2))
-			parser_warning(0, "zone type already set; skipping");
-	}
-	| T_FILE L_QSTRING
-	{
-		if (!set_zone_filename(current_zone, $2))
-			parser_warning(0,
-				       "zone filename already set; skipping");
-	}
-	| T_FILE_IXFR L_QSTRING
-    {
-                if (!set_zone_ixfr_file(current_zone, $2))
-                        parser_warning(0,
-                                       "zone ixfr data base already set; skipping");
-    }
-	| T_IXFR_TMP L_QSTRING
-    {
-                if (!set_zone_ixfr_tmp(current_zone, $2))
-                        parser_warning(0,
-                                       "zone ixfr temp filename already set; skipping");
-    }
-	| T_MASTERS maybe_zero_port '{' master_in_addr_list '}'
-	{
-		set_zone_master_port(current_zone, $2);
-	}
-	| T_TRANSFER_SOURCE maybe_wild_addr
-	{
-		set_zone_transfer_source(current_zone, $2);
-	}
-	| T_CHECK_NAMES check_names_opt
-	{
-		if (!set_zone_checknames(current_zone, (enum severity)$2))
-			parser_warning(0,
-	                              "zone checknames already set; skipping");
-	}
-	| T_ALLOW_UPDATE '{' address_match_list '}'
-	{
-		if (!set_zone_update_acl(current_zone, $3))
-			parser_warning(0,
-				      "zone update acl already set; skipping");
-	}
-	| T_ALLOW_QUERY '{' address_match_list '}'
-	{
-		if (!set_zone_query_acl(current_zone, $3))
-			parser_warning(0,
-				      "zone query acl already set; skipping");
-	}
-	| T_ALLOW_TRANSFER '{' address_match_list '}'
-	{
-		if (!set_zone_transfer_acl(current_zone, $3))
-			parser_warning(0,
-				    "zone transfer acl already set; skipping");
-	}
-	| T_FORWARD zone_forward_opt
-	| T_FORWARDERS 
-	{
-		struct zoneinfo *zp = current_zone.opaque;
-		if (zp->z_fwdtab) {
-                	free_forwarders(zp->z_fwdtab);
-			zp->z_fwdtab = NULL;
-		}
-
-	}
-	'{' opt_zone_forwarders_list '}'
-	| T_MAX_TRANSFER_TIME_IN L_NUMBER
-	{
-		if (!set_zone_transfer_time_in(current_zone, $2*60))
-			parser_warning(0,
-		       "zone max transfer time (in) already set; skipping");
-	}
-	| T_MAX_LOG_SIZE_IXFR L_NUMBER
-	{
-		set_zone_max_log_size_ixfr(current_zone, $2);
-        }
-	| T_NOTIFY yea_or_nay
-	{
-		set_zone_notify(current_zone, $2);
-	}
-	| T_MAINTAIN_IXFR_BASE yea_or_nay
-	{
-		set_zone_maintain_ixfr_base(current_zone, $2);
-	}
-	| T_PUBKEY L_NUMBER L_NUMBER L_NUMBER L_QSTRING
-	{
-		/* flags proto alg key */
-		set_zone_pubkey(current_zone, $2, $3, $4, $5);
-	}
-	| T_PUBKEY L_STRING L_NUMBER L_NUMBER L_QSTRING
-	{
-		/* flags proto alg key */
-		char *endp;
-		int flags = (int) strtol($2, &endp, 0);
-		if (*endp != '\0')
-			ns_panic(ns_log_parser, 1,
-				 "Invalid flags string: %s", $2);
-		set_zone_pubkey(current_zone, flags, $3, $4, $5);
-
-	}
-	| T_ALSO_NOTIFY '{' opt_notify_in_addr_list '}'
-	| T_DIALUP yea_or_nay 
-	{
-		 set_zone_dialup(current_zone, $2);
-	}
-	| error
-	;
-
-master_in_addr_list: master_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	| master_in_addr_list master_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	;
-
-master_in_addr: L_IPADDR
-	{
-	  	add_zone_master(current_zone, $1);
-	}
-	;
-
-opt_notify_in_addr_list: /* nothing */
-	| notify_in_addr_list
-	;
-
-notify_in_addr_list: notify_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	| notify_in_addr_list notify_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	;
-
-notify_in_addr: L_IPADDR
-	{
-	  	add_zone_notify(current_zone, $1);
-	}
-	;
-
-zone_forward_opt: T_ONLY
-	{
-		set_zone_boolean_option(current_zone, OPTION_FORWARD_ONLY, 1);
-	}
-	| T_FIRST
-	{
-		set_zone_boolean_option(current_zone, OPTION_FORWARD_ONLY, 0);
-	}
-	;
-
-opt_zone_forwarders_list: /* nothing */
-	{
-		set_zone_forward(current_zone);
-	}
-	| zone_forwarders_in_addr_list
-	;
-
-zone_forwarders_in_addr_list: zone_forwarders_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	| zone_forwarders_in_addr_list zone_forwarders_in_addr L_EOS
-	{
-		/* nothing */
-	}
-	;
-
-zone_forwarders_in_addr: L_IPADDR
-	{
-	  	add_zone_forwarder(current_zone, $1);
-	}
-	;
-
-/*
- * Trusted Key statement
- */
-
-trusted_keys_stmt: T_TRUSTED_KEYS '{' trusted_keys_list '}'
-	{
-	}
-	;
-trusted_keys_list: trusted_key L_EOS
-	{
-		/* nothing */
-	}
-	| trusted_keys_list trusted_key L_EOS
-	{
-		/* nothing */
-	}
-	;
-trusted_key: L_STRING L_NUMBER L_NUMBER L_NUMBER L_QSTRING
-	{
-		/* name flags proto alg key */
-		set_trusted_key($1, $2, $3, $4, $5);
-	}
-	| L_STRING L_STRING L_NUMBER L_NUMBER L_QSTRING
-	{
-		/* name flags proto alg key */
-		char *endp;
-		int flags = (int) strtol($2, &endp, 0);
-		if (*endp != '\0')
-			ns_panic(ns_log_parser, 1,
-				 "Invalid flags string: %s", $2);
-		set_trusted_key($1, flags, $3, $4, $5);
-	}
-	;
-
-/*
- * Misc.
- */
-
-in_port: L_NUMBER
-	{
-		if ($1 < 0 || $1 > 65535) {
-		  	parser_warning(0, 
-			  "invalid IP port number '%d'; setting port to 0",
-			               $1);
-			$1 = 0;
-		} else
-			$$ = htons($1);
-	}
-	;
-
-any_string: L_STRING
-	| L_QSTRING
-	;
-	
-%%
-
-static char *
-canonical_name(char *name) {
-	char canonical[MAXDNAME];
-	
-	if (strlen(name) >= MAXDNAME)
-		return (NULL);
-	strcpy(canonical, name);
-	if (makename(canonical, ".", sizeof canonical) < 0)
-		return (NULL);
-	return (savestr(canonical, 0));
-}
-
-static void
-init_acls() {
-	ip_match_element ime;
-	ip_match_list iml;
-	struct in_addr address;
-
-	/* Create the predefined ACLs */
-
-	address.s_addr = 0U;
-
-	/* ACL "any" */
-	ime = new_ip_match_pattern(address, 0);
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("any", 1), iml);
-
-	/* ACL "none" */
-	ime = new_ip_match_pattern(address, 0);
-	ip_match_negate(ime);
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("none", 1), iml);
-
-	/* ACL "localhost" */
-	ime = new_ip_match_localhost();
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("localhost", 1), iml);
-
-	/* ACL "localnets" */
-	ime = new_ip_match_localnets();
-	iml = new_ip_match_list();
-	add_to_ip_match_list(iml, ime);
-	define_acl(savestr("localnets", 1), iml);
-}
-
-static void
-free_sym_value(int type, void *value) {
-	ns_debug(ns_log_parser, 99, "free_sym_value: type %06x value %p",
-		 type, value);
-	type &= ~0xffff;
-	switch (type) {
-	case SYM_ACL:
-		free_ip_match_list(value);
-		break;
-	case SYM_KEY:
-		free_key_info(value);
-		break;
-	default:
-		ns_panic(ns_log_parser, 1,
-			 "unhandled case in free_sym_value()");
-		/* NOTREACHED */
-		break;
-	}
-}
-
-static log_channel
-lookup_channel(char *name) {
-	symbol_value value;
-
-	if (lookup_symbol(symtab, name, SYM_CHANNEL, &value))
-		return ((log_channel)(value.pointer));
-	return (NULL);
-}
-
-static void
-define_channel(char *name, log_channel channel) {
-	symbol_value value;
-
-	value.pointer = channel;  
-	define_symbol(symtab, name, SYM_CHANNEL, value, SYMBOL_FREE_KEY);
-}
-
-static void
-define_builtin_channels() {
-	define_channel(savestr("default_syslog", 1), syslog_channel);
-	define_channel(savestr("default_debug", 1), debug_channel);
-	define_channel(savestr("default_stderr", 1), stderr_channel);
-	define_channel(savestr("null", 1), null_channel);
-}
-
-static void
-parser_setup() {
-	seen_options = 0;
-	seen_topology = 0;
-	symtab = new_symbol_table(SYMBOL_TABLE_SIZE, NULL);
-	if (authtab != NULL)
-		free_symbol_table(authtab);
-	authtab = new_symbol_table(AUTH_TABLE_SIZE, free_sym_value);
-	init_acls();
-	define_builtin_channels();
-	INIT_LIST(current_controls);
-}
-
-static void
-parser_cleanup() {
-	if (symtab != NULL)
-		free_symbol_table(symtab);
-	symtab = NULL;
-	/*
-	 * We don't clean up authtab here because the ip_match_lists are in
-	 * use.
-	 */
-}
-
-/*
- * Public Interface
- */
-
-ip_match_list
-lookup_acl(char *name) {
-	symbol_value value;
-
-	if (lookup_symbol(authtab, name, SYM_ACL, &value))
-		return ((ip_match_list)(value.pointer));
-	return (NULL);
-}
-
-void
-define_acl(char *name, ip_match_list iml) {
-	symbol_value value;
-
-	INSIST(name != NULL);
-	INSIST(iml != NULL);
-
-	value.pointer = iml;
-	define_symbol(authtab, name, SYM_ACL, value,
-		      SYMBOL_FREE_KEY|SYMBOL_FREE_VALUE);
-	ns_debug(ns_log_parser, 7, "acl %s", name);
-	dprint_ip_match_list(ns_log_parser, iml, 2, "allow ", "deny ");
-}
-
-struct dst_key *
-lookup_key(char *name) {
-	symbol_value value;
-
-	if (lookup_symbol(authtab, name, SYM_KEY, &value))
-		return ((struct dst_key *)(value.pointer));
-	return (NULL);
-}
-
-void
-define_key(char *name, struct dst_key *dst_key) {
-	symbol_value value;
-
-	INSIST(name != NULL);
-	INSIST(dst_key != NULL);
-
-	value.pointer = dst_key;
-	define_symbol(authtab, name, SYM_KEY, value, SYMBOL_FREE_VALUE);
-	dprint_key_info(dst_key);
-}
-
-void
-parse_configuration(const char *filename) {
-	FILE *config_stream;
-
-	config_stream = fopen(filename, "r");
-	if (config_stream == NULL)
-		ns_panic(ns_log_parser, 0, "can't open '%s'", filename);
-
-	lexer_setup();
-	parser_setup();
-	lexer_begin_file(filename, config_stream);
-	(void)yyparse();
-	lexer_end_file();
-	parser_cleanup();
-}
-
-void
-parser_initialize(void) {
-	lexer_initialize();
-}
-
-void
-parser_shutdown(void) {
-	if (authtab != NULL)
-		free_symbol_table(authtab);
-	lexer_shutdown();
-}
diff --git a/contrib/bind/bin/named/ns_parseutil.c b/contrib/bind/bin/named/ns_parseutil.c
deleted file mode 100644
index 4a26337d95f92..0000000000000
--- a/contrib/bind/bin/named/ns_parseutil.c
+++ /dev/null
@@ -1,244 +0,0 @@
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Global C stuff goes here. */
-
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "named.h"
-#include "ns_parseutil.h"
-
-
-/*
- * Symbol Table
- */
-
-symbol_table
-new_symbol_table(int size_guess, free_function free_value) {
-	symbol_table st;
-
-	st = (symbol_table)memget(sizeof (struct symbol_table));
-	if (st == NULL)
-		panic("memget failed in new_symbol_table()", NULL);
-	st->table = (symbol_entry *)memget(size_guess * sizeof *st->table);
-	if (st->table == NULL)
-		panic("memget failed in new_symbol_table()", NULL);
-	memset(st->table, 0, size_guess * sizeof (symbol_entry));
-	st->size = size_guess;   /* size_guess should be prime */
-	st->free_value = free_value;
-	return (st);
-}
-
-void
-free_symbol(symbol_table st, symbol_entry ste) {
-	if (ste->flags & SYMBOL_FREE_KEY)
-		freestr(ste->key);
-	if (ste->flags & SYMBOL_FREE_VALUE)
-		(st->free_value)(ste->type, ste->value.pointer);
-}
-
-void
-free_symbol_table(symbol_table st) {
-	int i;
-	symbol_entry ste, ste_next;
-
-	for (i = 0; i < st->size; i++) {
-		for (ste = st->table[i]; ste != NULL; ste = ste_next) {
-			ste_next = ste->next;
-			free_symbol(st, ste);
-			memput(ste, sizeof *ste);
-		}
-	}
-	memput(st->table, st->size * sizeof (symbol_entry));
-	memput(st, sizeof *st);
-}
-
-void
-dprint_symbol_table(int level, symbol_table st) {
-	int i;
-	symbol_entry ste;
-
-	for (i = 0; i < st->size; i++) {
-		for (ste = st->table[i]; ste != NULL; ste = ste->next)
-			ns_debug(ns_log_parser, level,
-				 "%7d: (%s: %d %p/%d %04x) ",
-				 i, ste->key, ste->type, ste->value.pointer,
-				 ste->value.integer, ste->flags);
-	}
-}
-
-/*
- * P. J. Weinberger's hash function, adapted from p. 436 of
- * _Compilers: Principles, Techniques, and Tools_, Aho, Sethi
- * and Ullman, Addison-Wesley, 1986, ISBN 0-201-10088-6.
- */
-static int
-symbol_hash(const char *key, int prime) {
-	const char *s;
-	unsigned int h = 0;
-	unsigned int g;
-	int c;
-
-	for (s = key; *s != '\0'; s++) {
-		c = *s;
-		if (isascii(c) && isupper(c))
-			c = tolower(c);
-		h = ( h << 4 ) + c;
-		if ((g = ( h & 0xf0000000 )) != 0) {
-			h = h ^ (g >> 24);
-			h = h ^ g;
-		}
-	}
-	return (h % prime);
-}
-
-int
-lookup_symbol(symbol_table st, const char *key, int type,
-	      symbol_value *value) {
-	int hash;
-	symbol_entry ste;
-
-	hash = symbol_hash(key, st->size);
-	for (ste = st->table[hash]; ste != NULL; ste = ste->next)
-		if ((type == 0 || ste->type == type) &&
-		    strcasecmp(ste->key, key) == 0)
-			break;
-	if (ste != NULL) {
-		if (value != NULL)
-			*value = ste->value;
-		return (1);
-	}
-	return (0);
-}
-
-void
-define_symbol(symbol_table st, char *key, int type, symbol_value value,
-	      unsigned int flags) {
-	int hash;
-	symbol_entry ste;
-
-	hash = symbol_hash(key, st->size);
-	for (ste = st->table[hash]; ste != NULL; ste = ste->next)
-		if ((type == 0 || ste->type == type) &&
-		    strcasecmp(ste->key, key) == 0)
-			break;
-	if (ste == NULL) {
-		ste = (symbol_entry)memget(sizeof *ste);
-		if (ste == NULL)
-			panic("memget failed in define_symbol()", NULL);
-		ste->key = key;
-		ste->type = type;
-		ste->value = value;
-		ste->flags = flags;
-		ste->next = st->table[hash];
-		st->table[hash] = ste;
-	} else {
-		ns_debug(ns_log_parser, 7, "redefined symbol %s type %d",
-			 key, type);
-		free_symbol(st, ste);
-		ste->key = key;
-		ste->value = value;
-		ste->flags = flags;
-	}
-}
-
-void
-undefine_symbol(symbol_table st, char *key, int type) {
-	int hash;
-	symbol_entry prev_ste, ste;
-
-	hash = symbol_hash(key, st->size);
-	for (prev_ste = NULL, ste = st->table[hash];
-	     ste != NULL;
-	     prev_ste = ste, ste = ste->next)
-		if ((type == 0 || ste->type == type) &&
-		    strcasecmp(ste->key, key) == 0)
-			break;
-	if (ste != NULL) {
-		free_symbol(st, ste);
-		if (prev_ste != NULL)
-			prev_ste->next = ste->next;
-		else
-			st->table[hash] = ste->next;
-		memput(ste, sizeof *ste);
-	}
-}
-
-/*
- * Conversion Routines
- */
-
-int
-unit_to_ulong(char *in, u_long *out) {	
-	int c, units_done = 0;
-	u_long result = 0L;
-
-	INSIST(in != NULL);
-
-	for (; (c = *in) != '\0'; in++) {
-		if (units_done)
-			return (0);
-		if (isdigit(c)) {
-			result *= 10;
-			result += (c - '0');
-		} else {
-			switch (c) {
-			case 'k':
-			case 'K':
-				result *= 1024;
-				units_done = 1;
-				break;
-			case 'm':
-			case 'M':
-				result *= (1024*1024);
-				units_done = 1;
-				break;
-			case 'g':
-			case 'G':
-				result *= (1024*1024*1024);
-				units_done = 1;
-				break;
-			default:
-				return (0);
-			}
-		}
-	}
-
-	*out = result;
-	return (1);
-}
diff --git a/contrib/bind/bin/named/ns_parseutil.h b/contrib/bind/bin/named/ns_parseutil.h
deleted file mode 100644
index 77fc878881b54..0000000000000
--- a/contrib/bind/bin/named/ns_parseutil.h
+++ /dev/null
@@ -1,65 +0,0 @@
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef _NS_PARSEUTIL_H
-#define _NS_PARSEUTIL_H
-
-/*
- * Symbol Table
- */
-
-#define SYMBOL_FREE_KEY		0x01
-#define SYMBOL_FREE_VALUE	0x02
-
-typedef union symbol_value {
-	void *pointer;
-	int integer;
-} symbol_value;
-
-typedef void (*free_function)(int, void *);
-
-typedef struct symbol_entry {
-	char *key;
-	int type;
-	symbol_value value;
-	unsigned int flags;
-	struct symbol_entry *next;
-} *symbol_entry;
-
-typedef struct symbol_table {
-	int size;
-	symbol_entry *table;
-	free_function free_value;
-} *symbol_table;
-
-symbol_table		new_symbol_table(int, free_function);
-void			free_symbol(symbol_table, symbol_entry);
-void			free_symbol_table(symbol_table);
-void			dprint_symbol_table(int, symbol_table);
-int			lookup_symbol(symbol_table, const char *, int,
-				      symbol_value *);
-void			define_symbol(symbol_table, char *, int, symbol_value,
-				      unsigned int);
-void			undefine_symbol(symbol_table, char *, int type);
-
-/*
- * Conversion Routines
- */
-
-int 			unit_to_ulong(char *, u_long *);
-
-#endif /* !_NS_PARSEUTIL_H */
diff --git a/contrib/bind/bin/named/ns_req.c b/contrib/bind/bin/named/ns_req.c
deleted file mode 100644
index 5e1459c3906d1..0000000000000
--- a/contrib/bind/bin/named/ns_req.c
+++ /dev/null
@@ -1,2146 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_req.c	4.47 (Berkeley) 7/1/91";
-static const char rcsid[] = "$Id: ns_req.c,v 8.113 2000/04/21 06:54:11 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/uio.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-struct addinfo {
-	char		*a_dname;		/* domain name */
-	char		*a_rname;		/* referred by */
-	u_int16_t	a_rtype;		/* referred by */
-	u_int16_t	a_type;			/* type for data */
-	u_int16_t	a_class;		/* class for data */
-};
-
-
-#ifndef BIND_UPDATE
-enum req_action { Finish, Refuse, Return };
-#endif
-
-static struct addinfo	addinfo[NADDRECS];
-static void		addname(const char *, const char *,
-				u_int16_t, u_int16_t, u_int16_t);
-static void		copyCharString(u_char **, const char *);
-
-static enum req_action	req_query(HEADER *hp, u_char **cpp, u_char *eom,
-				  struct qstream *qsp,
-				  int *buflenp, int *msglenp,
-				  u_char *msg, int dfd, int *ra,
-				  struct sockaddr_in from,
-				  struct tsig_record *in_tsig);
-
-static enum req_action	req_iquery(HEADER *hp, u_char **cpp, u_char *eom,
-				   int *buflenp, u_char *msg,
-				   struct sockaddr_in from);
-
-#ifdef BIND_NOTIFY
-static enum req_action	req_notify(HEADER *hp, u_char **cpp, u_char *eom,
-				   u_char *msg,struct sockaddr_in from);
-#endif
-
-/*
- * Process request using database; assemble and send response.
- */
-void
-ns_req(u_char *msg, int msglen, int buflen, struct qstream *qsp,
-       struct sockaddr_in from, int dfd)
-{
-	HEADER *hp = (HEADER *) msg;
-	u_char *cp, *eom;
-	enum req_action action;
-	int n, ra, has_tsig, msglen_orig, tsig_size, siglen, sig2len;
-	u_char *tsigstart;
-	u_char sig[TSIG_SIG_SIZE], sig2[TSIG_SIG_SIZE];
-	struct tsig_record *in_tsig = NULL;
-	int error = NOERROR;
-	DST_KEY *key;
-	time_t tsig_time;
-
-#ifdef DEBUG
-	if (debug > 3) {
-		ns_debug(ns_log_packet, 3, "ns_req(from %s)", sin_ntoa(from));
-		fp_nquery(msg, msglen, log_get_stream(packet_channel));
-	}
-#endif
-	msglen_orig = msglen;
-	siglen = sizeof(sig);
-	
-	tsigstart = ns_find_tsig(msg, msg + msglen);
-	if (tsigstart == NULL)
-		has_tsig = 0;
-	else {
-		char buf[MAXDNAME];
-
-		has_tsig = 1;
-		n = dn_expand(msg, msg + msglen, tsigstart, buf, sizeof(buf));
-		if (n < 0) {
-			ns_debug(ns_log_default, 1,
-				 "ns_req: bad TSIG key name",
-				 buf);
-			key = NULL;
-		}
-		key = find_key(buf, NULL);
-		if (key == NULL) {
-			error = ns_r_badkey;
-			ns_debug(ns_log_default, 1,
-				 "ns_req: TSIG verify failed - unknown key %s",
-				 buf);
-		}
-	}
-	if (has_tsig && key != NULL) {
-		n = ns_verify(msg, &msglen, key, NULL, 0, sig, &siglen, 
-			      &tsig_time, 0);
-		if (n != 0) {
-			hp->rcode = ns_r_notauth;
-			/* A query should never have an error code set */
-			if (n == ns_r_badsig || n == ns_r_badkey ||
-			    n == ns_r_badtime) {
-				ns_debug(ns_log_default, 1,
-		"ns_req: TSIG verify failed - query had error %s (%d) set",
-				p_rcode(n), n);
-				error = n;
-				action = Return;
-			}
-			/* If there's a processing error just respond */
-			else if (n == -ns_r_badsig || n == -ns_r_badkey ||
-				 n == -ns_r_badtime) {
-				n = -n;
-				ns_debug(ns_log_default, 1,
-					 "ns_req: TSIG verify failed - %s (%d)",
-					 p_rcode(n), n);
-				error = n;
-			} else {
-				ns_debug(ns_log_default, 1,
-					"ns_req: TSIG verify failed - FORMERR");
-				error = ns_r_formerr;
-			}
-			action = Finish;
-		}
-		in_tsig = memget(sizeof(struct tsig_record));
-		if (in_tsig == NULL)
-			ns_panic(ns_log_default, 1, "memget failed");
-		in_tsig->key = key;
-		in_tsig->siglen = siglen;
-		memcpy(in_tsig->sig, sig, siglen);
-		tsig_size = msglen_orig - msglen;
-	} else if (has_tsig) {
-		action = Finish;
-		in_tsig = memget(sizeof(struct tsig_record));
-		if (in_tsig == NULL)
-			ns_panic(ns_log_default, 1, "memget failed");
-		in_tsig->key = NULL;
-		in_tsig->siglen = 0;
-		tsig_size = msg + msglen - tsigstart;
-		msglen = tsigstart - msg;
-	}
-
-	/* Hash some stuff so it's nice and random */
-	nsid_hash((u_char *)&tt, sizeof(tt));
-	nsid_hash(msg, (msglen > 512) ? 512 : msglen);
-
-	/*
-	 * It's not a response so these bits have no business
-	 * being set. will later simplify work if we can
-	 * safely assume these are always 0 when a query
-	 * comes in.
-	 */
-	hp->aa = hp->ra = 0;
-	ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-
-	if (error == NOERROR)
-		hp->rcode = ns_r_noerror;
-	cp = msg + HFIXEDSZ;
-	eom = msg + msglen;
-	buflen -= HFIXEDSZ;
-
-	free_addinfo();	/* sets addcount to zero */
-	dnptrs[0] = NULL;
-
-	if (error == NOERROR) {
-		switch (hp->opcode) {
-		case ns_o_query:
-			action = req_query(hp, &cp, eom, qsp,
-					   &buflen, &msglen,
-					   msg, dfd, &ra, from, in_tsig);
-			break;
-
-		case ns_o_iquery:
-			action = req_iquery(hp, &cp, eom, &buflen, msg, from);
-			break;
-
-#ifdef BIND_NOTIFY
-		case ns_o_notify:
-			action = req_notify(hp, &cp, eom, msg, from);
-			break;
-#endif
-
-#ifdef BIND_UPDATE
-		case ns_o_update:
-			action = req_update(hp, cp, eom, msg, qsp, dfd, from,
-					    in_tsig);
-			break;
-#endif /* BIND_UPDATE */
-
-		default:
-			ns_debug(ns_log_default, 1,
-				 "ns_req: Opcode %d not implemented",
-				 hp->opcode);
-			/* XXX - should syslog, limited by haveComplained */
-			hp->qdcount = htons(0);
-			hp->ancount = htons(0);
-			hp->nscount = htons(0);
-			hp->arcount = htons(0);
-			hp->rcode = ns_r_notimpl;
-			action = Finish;
-		}
-	}
-
-	if (in_tsig != NULL) {
-		memput(in_tsig, sizeof(struct tsig_record));
-		in_tsig = NULL;
-	}
-
-	/*
-	 * Vector via internal opcode.
-	 */
-	switch (action) {
-	case Return:
-		return;
-	case Refuse:
-		hp->rcode = ns_r_refused;
-		cp = eom;
-		/*FALLTHROUGH*/
-	case Finish:
-		/* rest of the function handles this case */
-		break;
-	default:
-		panic("ns_req: bad action variable", NULL);
-		/*NOTREACHED*/
-	}
-
-	/*
-	 * Apply final polish.
-	 */
-	hp->qr = 1;		/* set Response flag */
-	hp->ra = ra;		/* init above, may be modified by req_query */
-
-	if (!hp->tc && has_tsig > 0 && buflen < tsig_size)
-		hp->tc = 1;
-
-	/*
-	 * If there was a format error, then we don't know what the msg has.
-	 */
-	if (hp->rcode == ns_r_formerr) {
-		hp->qdcount = htons(0);
-		hp->ancount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-	}
-
-	/*
-	 * If the query had a TSIG and the message is truncated or there was
-	 * a TSIG error, build a new message with no data and a TSIG.
-	 */
-	if ((hp->tc || error != NOERROR) && has_tsig > 0) {
-		hp->ancount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		cp = msg + HFIXEDSZ;
-		cp += ns_skiprr(cp, msg + msglen, ns_s_qd, ntohs(hp->qdcount));
-		sig2len = sizeof(sig2);
-		buflen += (msglen - (cp - msg));
-		msglen = cp - msg;
-		n = ns_sign(msg, &msglen, msglen + buflen, error, key,
-			    sig, siglen, sig2, &sig2len, tsig_time);
-		if (n != 0) {
-			INSIST(0);
-		}
-		cp = msg + msglen;
-		
-	}
-	/* Either the message is not truncated or there was no TSIG */
-	else {
-		if (has_tsig > 0)
-			buflen -= tsig_size;
-		n = doaddinfo(hp, cp, buflen);
-		cp += n;
-		buflen -= n;
-		if (has_tsig > 0) {
-			buflen += tsig_size;
-			sig2len = sizeof(sig2);
-			msglen = cp - msg;
-			n = ns_sign(msg, &msglen, msglen + buflen, error, key,
-				    sig, siglen, sig2, &sig2len, tsig_time);
-			if (n != 0) {
-				INSIST(0);
-			}
-			cp = msg + msglen;
-		}
-	}
-
-#ifdef DEBUG
-	ns_debug(ns_log_default, 1,
-		 "ns_req: answer -> %s fd=%d id=%d size=%d rc=%d",
-		 sin_ntoa(from), (qsp == NULL) ? dfd : qsp->s_rfd,
-		 ntohs(hp->id), cp - msg, hp->rcode);
-	if (debug >= 10)
-		res_pquery(&res, msg, cp - msg,
-			   log_get_stream(packet_channel));
-#endif /*DEBUG*/
-	if (qsp == NULL) {
-		if (sendto(dfd, (char*)msg, cp - msg, 0,
-			   (struct sockaddr *)&from,
-			   sizeof(from)) < 0) {
-			if (!haveComplained(ina_ulong(from.sin_addr),
-					    (u_long)sendtoStr))
-				ns_info(ns_log_default,
-					"ns_req: sendto(%s): %s",
-					sin_ntoa(from), strerror(errno));
-			nameserIncr(from.sin_addr, nssSendtoErr);
-		}
-		nameserIncr(from.sin_addr, nssSentAns);
-		if (hp->rcode == ns_r_nxdomain) 
-			nameserIncr(from.sin_addr, nssSentNXD);
-		if (!hp->aa) 
-			nameserIncr(from.sin_addr, nssSentNaAns);
-	} else
-		writestream(qsp, msg, cp - msg);
-
-	/* Is now a safe time? */
-	if (needs_prime_cache)
-		prime_cache();
-}
-
-#ifdef BIND_NOTIFY
-int
-findZonePri(const struct zoneinfo *zp, const struct sockaddr_in from) {
-	struct in_addr ina;
-	int i;
-
-	ina = from.sin_addr;
-	for (i = 0; (u_int)i < zp->z_addrcnt; i++)
-		if (ina_equal(zp->z_addr[i], ina))
-			return (i);
-	return (-1);
-}
-
-static enum req_action
-req_notify(HEADER *hp, u_char **cpp, u_char *eom, u_char *msg,
-	   struct sockaddr_in from)
-{
-	int n, type, class, zn;
-	char dnbuf[MAXDNAME];
-	struct zoneinfo *zp;
-
-	/* valid notify's have one question */
-	if (ntohs(hp->qdcount) != 1) {
-		ns_debug(ns_log_notify, 1,
-			 "FORMERR Notify header counts wrong");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-
-	n = dn_expand(msg, eom, *cpp, dnbuf, sizeof dnbuf);
-	if (n < 0) {
-		ns_debug(ns_log_notify, 1,
-			 "FORMERR Query expand name failed");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-	*cpp += n;
-	if (*cpp + 2 * INT16SZ > eom) {
-		ns_debug(ns_log_notify, 1,
-			 "FORMERR notify too short");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-	GETSHORT(type, *cpp);
-	GETSHORT(class, *cpp);
-	ns_info(ns_log_notify, "rcvd NOTIFY(%s, %s, %s) from %s",
-		dnbuf, p_class(class), p_type(type), sin_ntoa(from));
-	/* XXX - when answers are allowed, we'll need to do compression
-	 * correctly here, and we will need to check for packet underflow.
-	 */
-	/* Find the zone this NOTIFY refers to. */
-	zp = find_auth_zone(dnbuf, class);
-	if (zp == NULL) {
-		ns_info(ns_log_notify,
-			"rcvd NOTIFY for \"%s\", name not one of our zones",
-			dnbuf);
-		hp->rcode = ns_r_servfail;
-		return (Finish);
-	}
-	/* Access control. */
-	switch (type) {
-	case T_SOA:
-		if (zp->z_type != z_slave) {
-			/*
-			 * This can come if a user did an AXFR of some zone
-			 * somewhere and that zone's server now wants to
-			 * tell us that the SOA has changed.  AXFR's always
-			 * come from nonpriv ports so it isn't possible to
-			 * know whether it was the server or just "dig".
-			 * This condition can be avoided by using secure
-			 * zones since that way only real secondaries can
-			 * AXFR from you.
-			 */
-			ns_info(ns_log_notify,
-			    "NOTIFY(SOA) for non-secondary name (%s), from %s",
-				dnbuf, sin_ntoa(from));
-			goto refuse;
-		}
-		if (ns_samename(dnbuf, zp->z_origin) != 1) {
-			ns_info(ns_log_notify,
-				"NOTIFY(SOA) for non-origin (%s), from %s",
-				dnbuf, sin_ntoa(from));
-			goto refuse;
-		}
-		if (findZonePri(zp, from) == -1) {
-			ns_debug(ns_log_notify, 1,
-			"NOTIFY(SOA) from non-master server (zone %s), from %s",
-				zp->z_origin, sin_ntoa(from));
-			goto refuse;
-		}
-		break;
-	default:
-		/* No access requirements defined for other types. */
-		break;
-	}
-	/* The work occurs here. */
-	switch (type) {
-	case T_SOA:
-		if (zp->z_flags &
-		    (Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL|Z_XFER_RUNNING)) {
-			ns_info(ns_log_notify,
-				"NOTIFY(SOA) for zone already xferring (%s)",
-				dnbuf);
-			goto noerror;
-		}
-		zp->z_time = tt.tv_sec;
-		qserial_query(zp);
-		sched_zone_maint(zp);
-		break;
-	default:
-		/*
-		 * Unimplemented, but it's not a protocol error, just
-		 * something to be ignored.
-		 */
-		hp->rcode = ns_r_notimpl;
-		return (Finish);
-	}
- noerror:
-	hp->rcode = ns_r_noerror;
-	return (Finish);
- refuse:
-	hp->rcode = ns_r_refused;
-	return (Finish);
-}
-#endif /*BIND_NOTIFY*/
-
-
-static enum req_action
-req_query(HEADER *hp, u_char **cpp, u_char *eom, struct qstream *qsp,
-	  int *buflenp, int *msglenp, u_char *msg, int dfd, int *ra,
-	  struct sockaddr_in from, struct tsig_record *in_tsig)
-{
-	int n, class, type, count, zone, foundname, founddata, omsglen, cname;
-	int recursion_blocked_by_acl;
-	u_int16_t id;
-	u_int32_t serial_ixfr;
-	int ixfr_found;
-	int ixfr_error = 0;
-	char dnbuf2[MAXDNAME];
-	u_char **dpp, *omsg, *answers, *afterq;
-	char dnbuf[MAXDNAME], *dname;
-	const char *fname;
-	struct hashbuf *htp;
-	struct databuf *nsp[NSMAX];
-	struct namebuf *np, *anp;
-	struct qinfo *qp;
-	struct zoneinfo *zp;
-	struct databuf *dp;
-	DST_KEY *in_key = (in_tsig != NULL) ? in_tsig->key : NULL;
-
-
-
-
-	nameserIncr(from.sin_addr, nssRcvdQ);
-
-	nsp[0] = NULL;
-	dpp = dnptrs;
-	*dpp++ = msg;
-	*dpp = NULL;
-	/*
-	 * Make gcc happy.
-	 */
-	omsglen = 0;
-	omsg = NULL;
-	id = 0;
-	recursion_blocked_by_acl = 0;
-
-	/* valid queries have one question and zero answers */
-	if ((ntohs(hp->qdcount) != 1)
-	    || ntohs(hp->ancount) != 0
-	    || ntohs(hp->arcount) != 0) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR Query header counts wrong");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-
-	/*
-	 * Get domain name, class, and type.
-	 */
-	if ((**cpp & INDIR_MASK) == 0)
-		*dpp++ = *cpp;	/* remember name for compression */
-	*dpp = NULL;
-	n = dn_expand(msg, eom, *cpp, dnbuf, sizeof dnbuf);
-	if (n < 0) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR Query expand name failed");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-	*cpp += n;
-	answers = *cpp;
-	if (*cpp + 2 * INT16SZ > eom) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR Query message length short");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-	GETSHORT(type, *cpp);
-	GETSHORT(class, *cpp);
-	if (*cpp < eom && type != ns_t_ixfr) {
-		ns_debug(ns_log_default, 6,
-			 "message length > received message");
-		*msglenp = *cpp - msg;
-	}
-
-	if (((ntohs(hp->nscount) != 0) && (type != ns_t_ixfr)) ||
-	    ((ntohs(hp->nscount) != 1) && (type == ns_t_ixfr)))
-	{
-		ns_debug(ns_log_default, 1, "FORMERR Query nscount wrong"); 
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	} 
-
-	afterq = *cpp;
-	qtypeIncr(type);
-
-	/*
-	 * Process query.
-	 */
-	if (type == ns_t_ixfr) {
-		ns_info(ns_log_security, "Request %s from %s",
-			p_type(type), sin_ntoa(from));
-		hp->nscount = htons(0);
-		hp->rd = 0; /* Force IXFR queries to be non recursive. */
-		n = dn_expand(msg, eom, *cpp, dnbuf2, sizeof dnbuf2);
-		if (n < 0) {
-			ns_debug(ns_log_default, 1,
-				 "FORMERR Query expand name failed");
-			hp->rcode = ns_r_formerr;
-			return (Finish);
-		}
-		*cpp += n;
-		if (*cpp + 3 * INT16SZ + INT32SZ > eom) {
-			ns_debug(ns_log_default, 1,
-				 "ran out of data in IXFR query");
-			hp->rcode = ns_r_formerr;
-			return (Finish);
-		}
-		GETSHORT(n, *cpp);
-		if (n != ns_t_soa || ns_samename(dnbuf, dnbuf2) != 1) {
-			ns_debug(ns_log_default, 1,
-				 "FORMERR SOA record expected");
-			hp->rcode = ns_r_formerr;
-			return (Finish);
-		}
-		*cpp += INT32SZ + INT16SZ * 2; /* skip class, ttl, dlen */
-		if (0 >= (n = dn_skipname(*cpp, eom))) {
-			ns_debug(ns_log_default, 1,
-				 "FORMERR Query expand name failed");
-			hp->rcode = ns_r_formerr;
-			return (Finish);
-		}
-		*cpp += n;  /* mname */
-		if (0 >= (n = dn_skipname(*cpp, eom))) {
-			ns_debug(ns_log_default, 1,
-				 "FORMERR Query expand name failed");
-			hp->rcode = ns_r_formerr;
-			return (Finish);
-		}
-		*cpp += n;  /* rname */
-		if (*cpp + 5 * INT32SZ > eom) {
-			ns_debug(ns_log_default, 1,
-				 "ran out of data in IXFR query");
-			hp->rcode = ns_r_formerr;
-			return (Finish);
-		}
-		GETLONG(serial_ixfr, *cpp);
-		/* ignore other soa counters */
-		if ((*cpp + (4 * INT32SZ)) < eom)
-			ns_debug(ns_log_default, 6,
-				 "ixfr: message length > received message");
-		/* Reset msglenp to cover just the question. */
-		*msglenp = afterq - msg;
-	}
-	*cpp = afterq;
-
-	if (!ns_t_udp_p(type)) {
-		/* Refuse request if not a TCP connection. */
-		if (qsp == NULL) {
-			ns_info(ns_log_default,
-				"rejected UDP %s from %s for \"%s\"",
-				p_type(type), sin_ntoa(from),
-				*dnbuf ? dnbuf : ".");
-			return (Refuse);
-		}
-		/* The position of this is subtle. */
-		nameserIncr(from.sin_addr, nssRcvdAXFR);
-		hp->rd = 0;		/* Recursion not possible. */
-	}
-	*buflenp -= *msglenp;
-	count = 0;
-	founddata = 0;
-	dname = dnbuf;
-	cname = 0;
-
-#ifdef QRYLOG
-	if (qrylog) {
-		ns_info(ns_log_queries, "%s/%s/%s/%s/%s",
-			(hp->rd) ? "XX+" : "XX ",
-			inet_ntoa(from.sin_addr), 
-			(dname[0] == '\0') ? "." : dname, 
-			p_type(type), p_class(class));
-	}
-#endif /*QRYLOG*/
-
- try_again:
-	foundname = 0;
-	ns_debug(ns_log_default, 1, "req: nlookup(%s) id %d type=%d class=%d",
-		 dname, ntohs(hp->id), type, class);
-	htp = hashtab;		/* lookup relative to root */
-	if ((anp = np = nlookup(dname, &htp, &fname, 0)) == NULL)
-		fname = "";
-	ns_debug(ns_log_default, 1, "req: %s '%s' as '%s' (cname=%d)",
-		 np == NULL ? "missed" : "found",
-		 dname, fname, cname);
-
-
-	ns_debug(ns_log_default, 1, "req: %s '%s' as '%s' (cname=%d)",
-		 np == NULL ? "missed" : "found",
-		 dname, fname, cname);
-
-#ifdef YPKLUDGE
-	/* Some braindamaged resolver software will not 
-	   recognize internet addresses in dot notation and 
-	   send out address  queries for "names" such as 
-	   128.93.8.1.  This kludge will prevent those 
-	   from flooding higher level servers.
-	   We simply claim to be authoritative and that
-	   the domain doesn't exist.
-	   Note that we could return the address but we
-	   don't do that in order to encourage that broken
-	   software is fixed.
-	*/
-
-	if (!np && type == T_A && class == C_IN && dname) {
-		struct in_addr ina;
-
-		if (inet_aton(dname, &ina)) {
-			hp->rcode = ns_r_nxdomain;
-			hp->aa = 1;
-			ns_debug(ns_log_default, 3,
-				 "ypkludge: hit as '%s'", dname);
-			return (Finish);
-		}
-	}
-#endif /*YPKLUDGE*/
-
-	/*
-	 * Begin Access Control Point
-	 */
-
-	zone = DB_Z_CACHE;
-	if (np) {
-		struct namebuf *access_np;
-
-		/*
-		 * Find out which zone this will be answered from.  Note
-		 * that we look for a zone with the same class as ours.
-		 * The np that we found in the database might not be the
-		 * one we asked for (i.e. dname might not equal fname).  This
-		 * is OK, since if a name doesn't exist, we need to go up
-		 * the tree until we find the closest enclosing zone that
-		 * is of the same class.
-		 */
-		for (access_np = np; access_np != NULL;
-		     access_np = np_parent(access_np)) {
-			dp = access_np->n_data;
-			while (dp && dp->d_class != class)
-				dp = dp->d_next;
-			if (dp != NULL) {
-				zone = dp->d_zone;
-				break;
-			}
-		}
-	}
-
-	zp = &zones[zone];
-
-	ixfr_found = 0;
-	if (type == ns_t_ixfr && zone != DB_Z_CACHE) {
-		if (SEQ_GT(serial_ixfr, zp->z_serial))
-			ixfr_found = 0;
-		else {
-			ixfr_error = ixfr_have_log(zp, serial_ixfr,
-						   zp->z_serial);
-			if (ixfr_error < 0) {
-				ns_info(ns_log_security, "No %s log from %d for \"%s\"",
-					p_type(type), serial_ixfr, *dname ? dname : ".");
-				ns_debug(ns_log_default,
-					 	1, "ixfr_have_log(%d %d) failed %d", 
-			 			serial_ixfr, zp->z_serial, ixfr_error);
-				ixfr_found = 0; /* Refuse IXFR and send AXFR */
-			} else if (ixfr_error == 1) {
-				ixfr_found = 1;
-			}
-		}   
-		ns_debug(ns_log_default, 1, "IXFR log lowest serial: %d", 
-			 zp->z_serial_ixfr_start);
-	}
-	/*
-	 * If recursion is turned on, we need to check recursion ACL
-	 * if it exists - and return result to caller.
-	 */
-	{
-		ip_match_list recursion_acl;
-
-		recursion_acl = server_options->recursion_acl;
-		if (!NS_OPTION_P(OPTION_NORECURSE) && recursion_acl != NULL
-		    && !ip_address_allowed(recursion_acl, from.sin_addr)) {
-			recursion_blocked_by_acl = 1;
-			*ra = 0;
-		}
-	}
-
-	/*
-	 * Are queries allowed from this host?
-	 */
-	if (!ns_t_xfr_p(type)) {
-		ip_match_list query_acl;
-
-		if (zp->z_query_acl != NULL)
-			query_acl = zp->z_query_acl;
-		else
-			query_acl = server_options->query_acl;
-
-		if (query_acl != NULL
-		    && !ip_addr_or_key_allowed(query_acl, from.sin_addr,
-					       in_key))
-		{
-			/*
-			 * If this is *not* a zone acl and we would not
-			 * have recursed and we have some answer return
-			 * what we have with a referral.
-			 */
-			if ((zp->z_query_acl == NULL) &&
-			    (!hp->rd || NS_OPTION_P(OPTION_NORECURSE) ||
-			     recursion_blocked_by_acl) &&
-			    (ntohs(hp->ancount) != 0)) {
-				goto fetchns;
-			}
-
-			/*
-			 * See if we would have made a referral from 
-			 * an enclosing zone if we are actually in the
-			 * cache.
-			 */
-			if (zp->z_type == z_cache && np != NULL) {
-				struct namebuf *access_np;
-
-				zone = DB_Z_CACHE;
-				for (access_np = np; access_np != NULL;
-				     access_np = np_parent(access_np)) {
-					dp = access_np->n_data;
-					while (dp && (dp->d_class != class ||
-					       dp->d_zone == DB_Z_CACHE))
-						dp = dp->d_next;
-					if (dp != NULL) {
-						zone = dp->d_zone;
-						np = access_np;
-						break;
-					}
-				}
-				zp = &zones[zone];
-				if (zp->z_type != z_cache &&
-				    zp->z_query_acl != NULL &&
-				    ip_addr_or_key_allowed(zp->z_query_acl,
-						   from.sin_addr, in_key) &&
-				    (!hp->rd || recursion_blocked_by_acl ||
-				     NS_OPTION_P(OPTION_NORECURSE))) {
-					goto fetchns;
-				}
-			}
-			ns_notice(ns_log_security,
-				  "denied query from %s for \"%s\"",
-				  sin_ntoa(from), *dname ? dname : ".");
-			nameserIncr(from.sin_addr, nssRcvdUQ);
-			return (Refuse);
-		}
-	} else {
-		ip_match_list transfer_acl;
-
-		/* Do they have permission to do a zone transfer? */
-
-		if (zp->z_transfer_acl != NULL)
-			transfer_acl = zp->z_transfer_acl;
-		else
-			transfer_acl = server_options->transfer_acl;
-
-		if (transfer_acl != NULL
-		    && !ip_addr_or_key_allowed(transfer_acl, from.sin_addr,
-					       in_key))
-		{
-			ns_notice(ns_log_security,
-				  "denied %s from %s for \"%s\" (acl)",
-				  p_type(type), sin_ntoa(from),
-				  *dname ? dname : ".");
-			nameserIncr(from.sin_addr, nssRcvdUXFR);
-			return (Refuse);
-		}
-
-		/* Are we master or slave? */
-
-		if (zp->z_type != z_master && zp->z_type != z_slave) {
-			ns_notice(ns_log_security,
-			 "denied %s from %s for \"%s\" (not master/slave)",
-				  p_type(type), sin_ntoa(from),
-				  *dname ? dname : ".");
-			nameserIncr(from.sin_addr, nssRcvdUXFR);
-			return (Refuse);
-		}
-
-		/* Are we authoritative? */
-
-		if ((zp->z_flags & Z_AUTH) == 0) {
-			ns_notice(ns_log_security,
-			 "denied %s from %s for \"%s\" (not authoritative)",
-				  p_type(type), sin_ntoa(from),
-				  *dname ? dname : ".");
-			nameserIncr(from.sin_addr, nssRcvdUXFR);
-			return (Refuse);
-		}
-
-		/* Is the name at a zone cut? */
-
-		if (ns_samename(zp->z_origin, dname) != 1) {
-			ns_notice(ns_log_security,
-			  "denied %s from %s for \"%s\" (not zone top)",
-				  p_type(type), sin_ntoa(from),
-				  *dname ? dname : ".");
-			nameserIncr(from.sin_addr, nssRcvdUXFR);
-			return (Refuse);
-		}
-
-		if (type == ns_t_ixfr) { 
-		    ns_info(ns_log_security, "approved %s from %s for \"%s\"",
-		    	(ixfr_found) ? p_type(type) : "IXFR/AXFR", 
-			sin_ntoa(from), *dname ? dname : ".");
-		} else
-		    ns_info(ns_log_security, "approved %s from %s for \"%s\"",
-		    	p_type(type), sin_ntoa(from), *dname ? dname : ".");
-	}
-
-	/*
-	 * End Access Control Point
-	 */
-	/*
-	 * Yow!
-	 */
-	if (class == ns_c_chaos && type == ns_t_txt &&
-	    ns_samename(dnbuf, "VERSION.BIND") == 1) {
-		u_char *tp;
-
-		hp->ancount = htons(1);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = ns_r_noerror;
-		hp->aa = 1;
-		hp->ra = 0;
-		copyCharString(cpp, "VERSION");	/* Name */
-		copyCharString(cpp, "BIND");
-		*(*cpp)++ = 0x00;
-		PUTSHORT(T_TXT, *cpp);		/* Type */
-		PUTSHORT(C_CHAOS, *cpp);	/* Class */
-		PUTLONG(0, *cpp);		/* TTL */
-		tp = *cpp;			/* Temp RdLength */
-		PUTSHORT(0, *cpp);
-		copyCharString(cpp, server_options->version);
-		PUTSHORT((*cpp) - (tp + INT16SZ), tp);	/* Real RdLength */
-		*msglenp = *cpp - msg;		/* Total message length */
-		return (Finish);
-	}
-
-	/*
-	 * If we don't know anything about the requested name,
-	 * go look for nameservers.
-	 */
-	if (!np || fname != dname)
-		goto fetchns;
-
-	foundname++;
-	answers = *cpp;
-	count = *cpp - msg;
-
-	/* The response is authoritative until we add insecure data */
-	hp->ad = 1;
-
-	/* Look for NXDOMAIN record with appropriate class
-	 * if found return immediately
-	 */
-	for (dp = np->n_data; dp; dp = dp->d_next) {
-		if (!stale(dp) && (dp->d_rcode == ns_r_nxdomain) &&
-		    (dp->d_class == class)) {
-#ifdef RETURNSOA
-			n = finddata(np, class, T_SOA, hp, &dname,
-				     buflenp, &count);
-			if (n != 0) {
-				if (count) {
-					*cpp += n;
-					*buflenp -= n;
-					*msglenp += n;
-					hp->nscount = htons((u_int16_t)count);
-				}
-				if (hp->rcode == NOERROR_NODATA) {
-					/* this should not occur */
-					hp->rcode = ns_r_noerror;
-					return (Finish);
-				}
-			}
-#else
-			count = 0;
-#endif
-			hp->rcode = ns_r_nxdomain;
-			/* 
-			 * XXX forcing AA all the time isn't right, but
-			 * we have to work that way by default
-			 * for compatibility with older servers.
-			 */
-			if (!NS_OPTION_P(OPTION_NONAUTH_NXDOMAIN))
-			    hp->aa = 1;
-			ns_debug(ns_log_default, 3, "NXDOMAIN aa = %d",
-				 hp->aa);
-			if ((count == 0) || NS_OPTION_P(OPTION_NORFC2308_TYPE1))
-				return (Finish);
-			founddata = 1;
-			goto fetchns;
-		}
-	}
-
-	/*
-	 * If not NXDOMAIN, the NOERROR_NODATA record might be
-	 * anywhere in the chain.  Have to go through the grind.
-	 */
-
-	n = finddata(np, class, type, hp, &dname, buflenp, &count);
-	if (n == 0) {
-		/*
-		 * NO data available.  Refuse transfer requests, or
-		 * look for better servers for other requests.
-		 */
-		if (ns_t_xfr_p(type)) {
-			ns_debug(ns_log_default, 1,	
-				 "transfer refused: no data");
-			return (Refuse);
-		}
-		goto fetchns;
-	}
-
-	if (hp->rcode == NOERROR_NODATA) {
-		hp->rcode = ns_r_noerror;
-#ifdef RETURNSOA
-		if (count) {
-		        *cpp += n;
-			*buflenp -= n;
-			*msglenp += n;
-			hp->nscount = htons(count);
-		}
-#endif
-		founddata = 1;
-		ns_debug(ns_log_default, 1, "count = %d", count);
-		if ((count == 0) || NS_OPTION_P(OPTION_NORFC2308_TYPE1))
-			return (Finish);
-		goto fetchns;
-	}
-
-	*cpp += n;
-	*buflenp -= n;
-	*msglenp += n;
-	hp->ancount = htons(ntohs(hp->ancount) + (u_int16_t)count);
-	if (fname != dname && type != T_CNAME && type != T_ANY) {
-		if (cname++ >= MAXCNAMES) {
-			ns_debug(ns_log_default, 3,
-				 "resp: leaving, MAXCNAMES exceeded");
-			hp->rcode = ns_r_servfail;
-			return (Finish);
-		}
-		goto try_again;
-	}
-	founddata = 1;
-	ns_debug(ns_log_default, 3,
-		 "req: foundname=%d, count=%d, founddata=%d, cname=%d",
-		 foundname, count, founddata, cname);
-
-	if (ns_t_xfr_p(type)) {
-#ifdef BIND_UPDATE
-		if ((zp->z_flags & Z_NEED_SOAUPDATE) != 0)
-			if (incr_serial(zp) < 0)
-				ns_error(ns_log_default,
-			   "error updating serial number for %s from %d",
-					 zp->z_origin, zp->z_serial);
-#endif
-		/*
-		 * Just return SOA if "up to date".
-		 */
- 		if (type == ns_t_ixfr) {
- 			hp->aa = 1;
- 			if ((SEQ_GT(serial_ixfr, zp->z_serial) ||
-			     serial_ixfr == zp->z_serial)) {
- 				return (Finish);
-			}
- 		}
-
-		/*
-		 * We don't handle UDP based IXFR queries (yet).
-		 * Tell client to retry with TCP by returning SOA.
-		 */
-		if (qsp == NULL)
-			return (Finish);
-		else {
-			if (!ixfr_found) {
-				qsp->flags |= STREAM_AXFRIXFR;
-				hp->qdcount = htons(1);
-			}
-			ns_xfr(qsp, np, zone, class, type,
-				       hp->opcode, ntohs(hp->id),
-				       serial_ixfr, in_tsig);
-		}
-		return (Return);
-	}
-
-	if (count > 1 && type == T_A && !NS_OPTION_P(OPTION_NORECURSE) &&
-	    hp->rd)
-		sort_response(answers, *cpp, count, &from);
-
- fetchns:
-	/*
-	 * If we're already out of room in the response, we're done.
-	 */
-	if (hp->tc)
-		return (Finish);
-
-	if (hp->ancount == 0)
-		hp->ad = 0;
-
-	/*
- 	 * Look for name servers to refer to and fill in the authority
- 	 * section or record the address for forwarding the query
- 	 * (recursion desired).
- 	 */
-	free_nsp(nsp);
-	nsp[0] = NULL;
-	count = 0;
-	switch (findns(&np, class, nsp, &count, 0)) {
-	case NXDOMAIN:
-		/* We are authoritative for this np. */
-		if (!foundname)
-			hp->rcode = ns_r_nxdomain;
-		ns_debug(ns_log_default, 3, "req: leaving (%s, rcode %d)",
-			 dname, hp->rcode);
-		if (class != C_ANY) {
-			hp->aa = 1;
-			if (np && (!foundname || !founddata)) {
-				n = doaddauth(hp, *cpp, *buflenp, np, nsp[0]);
-				*cpp += n;
-				*buflenp -= n;
-#ifdef ADDAUTH
-			} else if (ntohs(hp->ancount) != 0) {
-				/* don't add NS records for NOERROR NODATA
-				   as some servers can get confused */
-				free_nsp(nsp);
-				switch (findns(&np, class, nsp, &count, 1)) {
-				case NXDOMAIN:
-				case SERVFAIL:
-					break;
-				default:
-					if (np &&
-					    (type != T_NS || np != anp)
-					    ) {
-						n = add_data(np, nsp, *cpp,
-							     *buflenp, &count);
-						if (n < 0) {
-							hp->tc = 1;
-							n = (-n);
-						}
-						*cpp += n;
-						*buflenp -= n;
-						hp->nscount = 
-							htons((u_int16_t)
-							      count);
-					}
-				}
-#endif /*ADDAUTH*/
-			}
-		}
-		free_nsp(nsp);
-		return (Finish);
-
-	case SERVFAIL:
-		/* We're authoritative but the zone isn't loaded. */
-		if (!founddata &&
-		    !(NS_ZOPTION_P(zp, OPTION_FORWARD_ONLY) && 
-		      NS_ZFWDTAB(zp))) {
-			hp->rcode = ns_r_servfail;
-			free_nsp(nsp);
-			return (Finish);
-		}
-	}
-
-	if (!founddata && hp->rd && recursion_blocked_by_acl) {
-		ns_notice(ns_log_security,
-			  "denied recursion for query from %s for %s",
-			  sin_ntoa(from), *dname ? dname : ".");
-		nameserIncr(from.sin_addr, nssRcvdURQ);
-	}
-
-	/*
-	 *  If we successfully found the answer in the cache,
-	 *  or this is not a recursive query, or we are purposely
-	 *  never recursing, or recursion is prohibited by ACL, then
-	 *  add the nameserver references("authority section") here
-	 *  and we're done.
-	 */
-	if (founddata || !hp->rd || NS_OPTION_P(OPTION_NORECURSE)
-	    || recursion_blocked_by_acl) {
-		/*
-		 * If the qtype was NS, and the np of the authority is
-		 * the same as the np of the data, we don't need to add
-		 * another copy of the answer here in the authority
-		 * section.
-		 */
-		if (!founddata || type != T_NS || anp != np) {
-			n = add_data(np, nsp, *cpp, *buflenp, &count);
-			if (n < 0) {
-				hp->tc = 1;
-				n = (-n);
-			}
-			*cpp += n;
-			*buflenp -= n;
-			hp->nscount = htons(ntohs(hp->nscount) +
-						  (u_int16_t)count);
-		}
-		free_nsp(nsp);
-
-		/* Our caller will handle the Additional section. */
-		return (Finish);
-	}
-
-	/*
-	 *  At this point, we don't have the answer, but we do
-	 *  have some NS's to try.  If the user would like us
-	 *  to recurse, create the initial query.  If a cname
-	 *  is involved, we need to build a new query and save
-	 *  the old one in cmsg/cmsglen.
-	 */
-	if (cname) {
-		omsg = (u_char *)memget((unsigned) *msglenp);
-		if (omsg == NULL) {
-			ns_info(ns_log_default, "ns_req: Out Of Memory");
-			hp->rcode = ns_r_servfail;
-			free_nsp(nsp);
-			return (Finish);
-		}
-		id = hp->id;
-		omsglen = *msglenp;
-		memcpy(omsg, msg, omsglen);
-		n = res_nmkquery(&res, QUERY, dname, class, type,
-				 NULL, 0, NULL, msg,
-				 *msglenp + *buflenp);
-		if (n < 0) {
-			ns_info(ns_log_default, "res_mkquery(%s) failed",
-				dname);
-			hp->rcode = ns_r_servfail;
-			free_nsp(nsp);
-			return (Finish);
-		}
-		*msglenp = n;
-	}
-	n = ns_forw(nsp, msg, *msglenp, from, qsp, dfd, &qp,
-		    dname, class, type, np, 0, in_tsig);
-	if (n != FW_OK && cname) {
-		memput(omsg, omsglen);
-		omsg = NULL;
-	}
-	switch (n) {
-	case FW_OK:
-		if (cname) {
-			qp->q_cname = cname;
-			qp->q_cmsg = omsg;
-			qp->q_cmsglen = omsglen;
-			qp->q_id = id;
-		}
-		break;
-	case FW_DUP:
-		break;		/* Duplicate request dropped */
-	case FW_NOSERVER:
-		/* 
-		 * Don't go into an infinite loop if 
-		 * the admin gave root NS records in the cache
-		 * file without giving address records
-		 * for the root servers.
-		 */
-		if (np) {
-			if (NAME(*np)[0] == '\0') {
-				ns_notice(ns_log_default,
-					"ns_req: no address for root server");
-				hp->rcode = ns_r_servfail;
-				free_nsp(nsp);
-				return (Finish);
-			}
-			for (dp = np->n_data; dp ; dp = dp->d_next)
-				if (dp->d_zone && match(dp, class, T_NS))
-					break;
-			if (dp) {
-				/*
-				 * we know the child zone exists but are
-				 * missing glue.
-				 *
-				 * nslookup has called sysquery() to get the
-				 * missing glue.
-				 *
-				 * for UDP, drop the response and let the
-				 * client retry.  for TCP, we should probably
-				 * (XXX) hold open the TCP connection for a
-				 * while in case the sysquery() comes back
-				 * soon.  meanwhile we SERVFAIL.
-				 */
-				if (qsp)
-					goto do_servfail;
-				break;
-			}
-			np = np_parent(np);
-		}
-		goto fetchns;	/* Try again. */
-	case FW_SERVFAIL:
- do_servfail:
-		hp->rcode = ns_r_servfail;
-		free_nsp(nsp);
-		return (Finish);
-	}
-	free_nsp(nsp);
-	return (Return);
-}
-
-static enum req_action
-req_iquery(HEADER *hp, u_char **cpp, u_char *eom, int *buflenp,
-	   u_char *msg, struct sockaddr_in from)
-{
-	int dlen, alen, n, type, class, count;
-	char dnbuf[MAXDNAME], anbuf[PACKETSZ], *data, *fname;
-
-	nameserIncr(from.sin_addr, nssRcvdIQ);
-
-	if (ntohs(hp->ancount) != 1
-	    || ntohs(hp->qdcount) != 0
-	    || ntohs(hp->nscount) != 0
-	    || ntohs(hp->arcount) != 0) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR IQuery header counts wrong");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-
-	/*
-	 * Skip domain name, get class, and type.
-	 */
-	if ((n = dn_skipname(*cpp, eom)) < 0) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR IQuery packet name problem");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-	*cpp += n;
-	if (*cpp + 3 * INT16SZ + INT32SZ > eom) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR IQuery message too short");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-	GETSHORT(type, *cpp);
-	GETSHORT(class, *cpp);
-	*cpp += INT32SZ;	/* ttl */
-	GETSHORT(dlen, *cpp);
-	*cpp += dlen;
-	if (*cpp != eom) {
-		ns_debug(ns_log_default, 1,
-			 "FORMERR IQuery message length off");
-		hp->rcode = ns_r_formerr;
-		return (Finish);
-	}
-
-	/*
-	 * not all inverse queries are handled.
-	 */
-	switch (type) {
-	case T_A:
-		if (!NS_OPTION_P(OPTION_FAKE_IQUERY) || dlen != INT32SZ) {
-			if (dlen != INT32SZ)
-				ns_warning(ns_log_security,
-					   "bad iquery from %s",
-					   inet_ntoa(from.sin_addr));
-			return (Refuse);
-		}
-		break;
-	default:
-		ns_warning(ns_log_security,
-			   "unsupported iquery type from %s",
-			   inet_ntoa(from.sin_addr));
-		return (Refuse);
-	}
-	ns_debug(ns_log_default, 1,
-		 "req: IQuery class %d type %d", class, type);
-
-	fname = (char *)msg + HFIXEDSZ;
-	alen = (char *)*cpp - fname;
-	if ((size_t)alen > sizeof anbuf) {
-		ns_warning(ns_log_security,
-			   "bad iquery from %s",
-			   inet_ntoa(from.sin_addr));
-		return (Refuse);
-	}
-	memcpy(anbuf, fname, alen);
-	data = anbuf + alen - dlen;
-	*cpp = (u_char *)fname;
-	*buflenp -= HFIXEDSZ;
-	count = 0;
-
-#ifdef QRYLOG
-	if (qrylog) {
-		char tmp[sizeof "255.255.255.255"];
-
-		strcpy(tmp, inet_ntoa(from.sin_addr));
-		ns_info(ns_log_queries, "XX /%s/%s/-%s",
-			tmp, inet_ntoa(ina_get((u_char *)data)),
-			p_type(type));
-	}
-#endif /*QRYLOG*/
-
-	/*
-	 * We can only get here if the option "fake-iquery" is on in the boot
-	 * file.
-	 *
-	 * What we do here is send back a bogus response of "[dottedquad]".
-	 * A better strategy would be to turn this into a PTR query, but that
-	 * would legitimize inverse queries in a way they do not deserve.
-	 */
-	sprintf(dnbuf, "[%s]", inet_ntoa(ina_get((u_char *)data)));
-	*buflenp -= QFIXEDSZ;
-	n = dn_comp(dnbuf, *cpp, *buflenp, NULL, NULL);
-	if (n < 0) {
-		hp->tc = 1;
-		return (Finish);
-	}
-	*cpp += n;
-	PUTSHORT((u_int16_t)type, *cpp);
-	PUTSHORT((u_int16_t)class, *cpp);
-	*buflenp -= n;
-	count++;
-
-	ns_debug(ns_log_default, 1, "req: IQuery %d records", count);
-	hp->qdcount = htons((u_int16_t)count);
-	if (alen > *buflenp) {
-		hp->tc = 1;
-		return (Finish);
-	}
-	memcpy(*cpp, anbuf, alen);
-	*cpp += alen;
-	return (Finish);
-}
-
-/*
- *  Test a datum for validity and return non-zero if it is out of date.
- */
-int
-stale(struct databuf *dp) {
-	struct zoneinfo *zp = &zones[dp->d_zone];
-
-	switch (zp->z_type) {
-
-	case z_master:
-		return (0);
-
-#ifdef STUBS
-	case z_stub:
-		/* root stub zones have DB_F_HINT set */
-		if (dp->d_flags & DB_F_HINT)
-			return (0);
-		/* FALLTROUGH */
-#endif
-	case z_slave:
-		/*
-		 * Check to see whether a secondary zone has expired or
-		 * time warped; if so clear authority flag for zone,
-		 * schedule the zone for immediate maintenance, and
-		 * return true.
-		 */
-		if ((int32_t)(tt.tv_sec - zp->z_lastupdate)
-		    > (int32_t)zp->z_expire) {
-			ns_debug(ns_log_default, 1,
-				 "stale: secondary zone %s expired",
-				zp->z_origin);
-			if (!haveComplained((u_long)zp, (u_long)stale)) {
-				ns_notice(ns_log_default,
-					  "secondary zone \"%s\" expired",
-					  zp->z_origin);
-			}
-			zp->z_flags &= ~Z_AUTH;
-			if ((zp->z_flags & (Z_QSERIAL|Z_XFER_RUNNING)) == 0) {
-				zp->z_time = tt.tv_sec;
-				sched_zone_maint(zp);
-			}
-			return (1);
-		}
-		if (zp->z_lastupdate > tt.tv_sec) {
-			if (!haveComplained((u_long)zp, (u_long)stale)) {
-				ns_notice(ns_log_default,
-					  "secondary zone \"%s\" time warp",
-					  zp->z_origin);
-			}
-			zp->z_flags &= ~Z_AUTH;
-			if ((zp->z_flags & (Z_QSERIAL|Z_XFER_RUNNING)) == 0) {
-				zp->z_time = tt.tv_sec;
-				sched_zone_maint(zp);
-			}
-			return (1);
-		}
-		return (0);
-
-	case z_hint:
-	case z_cache:
-		if (dp->d_flags & DB_F_HINT ||
-		    dp->d_ttl >= (u_int32_t)tt.tv_sec)
-			return (0);
-		ns_debug(ns_log_default, 3, "stale: ttl %d %ld (x%lx)",
-			 dp->d_ttl, (long)(dp->d_ttl - tt.tv_sec),
-			 (u_long)dp->d_flags);
-		return (1);
-
-	default:
-		/* FALLTHROUGH */ ;
-
-	}
-	panic("stale: impossible condition", NULL);
-	/* NOTREACHED */
-	return (0);	/* Make gcc happy. */
-}
-
-/*
- * Copy databuf into a resource record for replies.
- * Return size of RR if OK, -1 if buffer is full.
- */
-int
-make_rr(const char *name, struct databuf *dp, u_char *buf,
-	int buflen, int doadd, u_char **comp_ptrs, u_char **edp,
-	int use_minimum)
-{
-	u_char *cp;
-	u_char *cp1, *sp;
-	struct zoneinfo *zp;
-	int32_t n;
-	int16_t type = dp->d_type;
-	u_int32_t ttl;
-
-	ns_debug(ns_log_default, 5,
-		 "make_rr(%s, %lx, %lx, %d, %d) %d zone %d ttl %lu",
-		 name, (u_long)dp, (u_long)buf,
-		 buflen, doadd, dp->d_size, dp->d_zone, (u_long)dp->d_ttl);
-
-	if (dp->d_rcode && dp->d_size == 0)
-		panic("make_rr: impossible d_rcode value", NULL);
-
-	zp = &zones[dp->d_zone];
-	/* check for outdated RR before updating comp_ptrs[] by dn_comp() */
-	if (zp->z_type == Z_CACHE) {
-		if ((dp->d_flags & DB_F_HINT) != 0
-		    || dp->d_ttl < (u_int32_t)tt.tv_sec) {
-			ttl = 0;
-		} else
-			ttl = dp->d_ttl - (u_int32_t) tt.tv_sec;
-	} else {
-		if (dp->d_ttl != USE_MINIMUM && !use_minimum)
-			ttl = dp->d_ttl;
-		else
-			ttl = zp->z_minimum;		/* really default */
-	}
-
-	buflen -= RRFIXEDSZ;
-	if (buflen < 0)
-		return (-1);
-#ifdef RETURNSOA
-	if (dp->d_rcode) {
-		name = (char *)dp->d_data;
-		name += strlen(name) +1;
-		name += strlen(name) +1;
-		name += 5 * INT32SZ;
-		type = T_SOA;
-	}
-#endif
-	if ((n = dn_comp(name, buf, buflen, comp_ptrs, edp)) < 0)
-		goto cleanup;
-	cp = buf + n;
-	buflen -= n;
-	if (buflen < 0)
-		goto cleanup;
-	PUTSHORT((u_int16_t)type, cp);
-	PUTSHORT((u_int16_t)dp->d_class, cp);
-	PUTLONG(ttl, cp);
-	sp = cp;
-	cp += INT16SZ;
-	switch (type) {
-	case T_CNAME:
-	case T_MG:
-	case T_MR:
-	case T_PTR:
-		n = dn_comp((char *)dp->d_data, cp, buflen, comp_ptrs, edp);
-		if (n < 0)
-			goto cleanup;
-		PUTSHORT((u_int16_t)n, sp);
-		cp += n;
-		break;
-
-	case T_MB:
-	case T_NS:
-		/* Store domain name in answer */
-		n = dn_comp((char *)dp->d_data, cp, buflen, comp_ptrs, edp);
-		if (n < 0)
-			goto cleanup;
-		PUTSHORT((u_int16_t)n, sp);
-		cp += n;
-		if (doadd) {
-			addname((char*)dp->d_data, name,
-				type, T_A, dp->d_class);
-			addname(name, name, type, T_KEY, dp->d_class);
-		}
-		break;
-
-	case T_SOA:
-	case T_MINFO:
-	case T_RP:
-		cp1 = dp->d_data;
-		n = dn_comp((char *)cp1, cp, buflen, comp_ptrs, edp);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-		buflen -= type == T_SOA ? n + 5 * INT32SZ : n;
-		if (buflen < 0)
-			goto cleanup;
-		cp1 += strlen((char *)cp1) + 1;
-		n = dn_comp((char *)cp1, cp, buflen, comp_ptrs, edp);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-		if (type == T_SOA) {
-			cp1 += strlen((char *)cp1) + 1;
-#ifdef BIND_UPDATE
-			if (zp->z_flags & Z_NEED_SOAUPDATE)
-				if (incr_serial(zp) < 0)
-					ns_error(ns_log_default,
-			   "error updating serial number for %s from %d",
-						 zp->z_origin, zp->z_serial);
-#endif
-			n = 5 * INT32SZ;
-			memcpy(cp, cp1, n);
-			cp += n;
-			if (doadd)
-				addname(name, name, type, T_KEY, dp->d_class);
-		}
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		break;
-
-	case T_NAPTR:
-		/* cp1 == our data/ cp == data of RR */
-		cp1 = dp->d_data;
-
- 		/* copy order */
-		buflen -= INT16SZ;
-		if (buflen < 0)
-			goto cleanup;
- 		memcpy(cp, cp1, INT16SZ);
- 		cp += INT16SZ;
- 		cp1 += INT16SZ;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		ns_debug(ns_log_default, 1, "current size n = %u", n);
-
-		/* copy preference */
-		buflen -= INT16SZ;
-		if (buflen < 0)
-			goto cleanup;
-		memcpy(cp, cp1, INT16SZ);
-		cp += INT16SZ;
-		cp1 += INT16SZ;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		ns_debug(ns_log_default, 1, "current size n = %u", n);
-
-		/* Flags */
-		n = *cp1++;
-		ns_debug(ns_log_default, 1, "size of n at flags = %d", n);
-		buflen -= n + 1;
-		if (buflen < 0)
-			goto cleanup;
-		*cp++ = n;
-		memcpy(cp, cp1, n);
-		cp += n;
-		cp1 += n;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		ns_debug(ns_log_default, 1, "current size n = %u", n);
-		
-		/* Service */
-		n = *cp1++;
-		buflen -= n + 1;
-		if (buflen < 0)
-			goto cleanup;
-		*cp++ = n;
-		memcpy(cp, cp1, n);
-		cp += n;
-		cp1 += n;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		ns_debug(ns_log_default, 1, "current size n = %u", n);
-
-		/* Regexp */
-		n = *cp1++;
-		buflen -= n + 1;
-		if (buflen < 0)
-			goto cleanup;
-		*cp++ = n;
-		memcpy(cp, cp1, n);
-		cp += n;
-		cp1 += n;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		ns_debug(ns_log_default, 1, "current size n = %u", n);
-
-		/* Replacement */
-		ns_debug(ns_log_default, 1, "Replacement = %s", cp1);
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		ns_debug(ns_log_default, 1, "dn_comp's n = %u", n);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-
-		/* save data length */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		ns_debug(ns_log_default, 1, "saved size n = %u", n);
-		PUTSHORT((u_int16_t)n, sp);
-
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* cp1 == our data/ cp == data of RR */
-		cp1 = dp->d_data;
-
- 		if ((buflen -= INT16SZ) < 0)
-			goto cleanup;
-
- 		/* copy preference */
- 		memcpy(cp, cp1, INT16SZ);
- 		cp += INT16SZ;
- 		cp1 += INT16SZ;
-
-		if (type == T_SRV) {
-			buflen -= INT16SZ*2;
-			if (buflen < 0)
-				goto cleanup;
-			memcpy(cp, cp1, INT16SZ*2);
-			cp += INT16SZ*2;
-			cp1 += INT16SZ*2;
-		}
-
-		n = dn_comp((char *)cp1, cp, buflen,
-			    (type == ns_t_mx) ? comp_ptrs : NULL,
-			    (type == ns_t_mx) ? edp : NULL);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-
-		/* save data length */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		if (doadd)
-			addname((char*)cp1, name, type, T_A, dp->d_class);
-		break;
-
-	case T_PX:
-		cp1 = dp->d_data;
-
-		if ((buflen -= INT16SZ) < 0)
-			goto cleanup;
-
-		/* copy preference */
-		memcpy(cp, cp1, INT16SZ);
-		cp += INT16SZ;
-		cp1 += INT16SZ;
-
-		n = dn_comp((char *)cp1, cp, buflen, comp_ptrs, edp);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-		buflen -= n;
-		cp1 += strlen((char *)cp1) + 1;
-		n = dn_comp((char *)cp1, cp, buflen, comp_ptrs, edp);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-
-		/* save data length */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		break;
-
-	case T_SIG:
-		/* cp1 == our data; cp == data of target RR */
-		cp1 = dp->d_data;
-
-		/* first just copy over the type_covered, algorithm, */
-		/* labels, orig ttl, two timestamps, and the footprint */
-		if ((dp->d_size - 18) > buflen)
-			goto cleanup;  /* out of room! */
-		memcpy(cp, cp1, 18);
-		cp  += 18;
-		cp1 += 18;
-		buflen -= 18;
-
-		/* then the signer's name */
-		n = dn_comp((char *)cp1, cp, buflen, NULL, NULL);
-		if (n < 0)
-			goto cleanup;
-		cp += n;
-		buflen -= n;
-		cp1 += strlen((char*)cp1)+1;
-
-		/* finally, we copy over the variable-length signature */
-		n = dp->d_size - (u_int16_t)((cp1 - dp->d_data));
-		if (n > buflen)
-			goto cleanup;  /* out of room! */
-		memcpy(cp, cp1, n);
-		cp += n;
-		
-		/* save data length & return */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		break;
-
-	case T_NXT:
-		cp1 = dp->d_data;
-		n = dn_comp((char *)cp1, cp, buflen, NULL, NULL);
-		if (n < 0)
-			goto cleanup;
-
-		cp += n;
-		buflen -=n;
-		cp1 += strlen((char *)cp1) + 1; 
-
-		/* copy nxt bit map */
-		n = dp->d_size - (u_int16_t)((cp1 - dp->d_data));
-		if (n > buflen)
-			goto cleanup;  /* out of room! */
-		memcpy(cp, cp1, n);
-		cp += n;
-		buflen -= n;
-
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-
-		break;
-
-	default:
-		if ((type == T_A || type == T_AAAA) && doadd)
-			addname(name, name, type, T_KEY, dp->d_class);
-		if (dp->d_size > buflen)
-			goto cleanup;
-		memcpy(cp, dp->d_data, dp->d_size);
-		PUTSHORT((u_int16_t)dp->d_size, sp);
-		cp += dp->d_size;
-	}
-	return (cp - buf);
-
- cleanup:
-	/* Rollback RR. */
-	ns_name_rollback(buf, (const u_char **)comp_ptrs,
-			 (const u_char **)edp);
-	return (-1);
-}
-
-static void
-addname(const char *dname, const char *rname,
-	u_int16_t rtype, u_int16_t type, u_int16_t class)
-{
-	struct addinfo *ap;
-	int n;
-
-	for (ap = addinfo, n = addcount; --n >= 0; ap++)
-		if (ns_samename(ap->a_dname, dname) == 1 && ap->a_type == type)
-			return;
-
-	/* add domain name to additional section */
-	if (addcount < NADDRECS) {
-		addcount++;
-		ap->a_dname = savestr(dname, 1);
-		ap->a_rname = savestr(rname, 1);
-		ap->a_rtype = rtype;
-		ap->a_type = type;
-		ap->a_class = class;
-	}
-}
-
-/*
- * Lookup addresses/keys for names in addinfo and put into the message's
- * additional section.
- */
-int
-doaddinfo(HEADER *hp, u_char *msg, int msglen) {
-	register struct namebuf *np;
-	register struct databuf *dp;
-	register struct addinfo *ap;
-	register u_char *cp;
-	struct hashbuf *htp;
-	const char *fname;
-	register int n, count;
-	register int ns_logging;
-	int finishedA = 0;
-	int save_addcount = addcount;
-
-	if (!addcount)
-		return (0);
-
-	ns_logging = ns_wouldlog(ns_log_default, 3);
-
-	if (ns_logging)
-		ns_debug(ns_log_default, 3,
-			"doaddinfo() addcount = %d", addcount);
-
-	if (hp->tc) {
-		ns_debug(ns_log_default, 4,
-			 "doaddinfo(): tc already set, bailing");
-		return (0);
-	}
-
-	count = 0;
-	cp = msg;
-loop:
-	for (ap = addinfo; --addcount >= 0; ap++) {
-		int     foundany = 0,
-			foundcname = 0,
-			save_count = count,
-			save_msglen = msglen;
-		u_char	*save_cp = cp;
-
-		if ((finishedA == 1 && ap->a_type == T_A) ||
-		    (finishedA == 0 && ap->a_type == T_KEY))
-			continue;
-		if (ns_logging)
-			ns_debug(ns_log_default, 3,
-				 "do additional \"%s\" (from \"%s\")",
-				 ap->a_dname, ap->a_rname);
-		htp = hashtab;	/* because "nlookup" stomps on arg. */
-		np = nlookup(ap->a_dname, &htp, &fname, 0);
-		if (np == NULL || fname != ap->a_dname)
-			goto next_rr;
-		if (ns_logging)
-		    ns_debug(ns_log_default, 3, "found it");
-		/* look for the data */
-		(void)delete_stale(np);
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (dp->d_rcode)
-				continue;
-			if ((match(dp, (int)ap->a_class, T_CNAME) &&
-			     dp->d_type == T_CNAME) ||
-			    (match(dp, C_IN, T_CNAME) &&
-			     dp->d_type == T_CNAME)) {
-				foundcname++;
-				break;
-			}
-			if (ap->a_type == T_A &&
-			    !match(dp, (int)ap->a_class, T_A) &&
-			    !match(dp, C_IN, T_A) &&
-			    !match(dp, (int)ap->a_class, T_AAAA) &&
-			    !match(dp, C_IN, T_AAAA) &&
-			    !match(dp, (int)ap->a_class, ns_t_a6) &&
-			    !match(dp, C_IN, ns_t_a6)) {
-				continue;
-			}
-			if (ap->a_type == T_KEY &&
-			    !match(dp, (int)ap->a_class, T_KEY) &&
-			    !match(dp, C_IN, T_KEY))
-				continue;
-
-			foundany++;
-			/*
-			 *  Should be smart and eliminate duplicate
-			 *  data here.	XXX
-			 */
-			if ((n = make_rr(ap->a_dname, dp, cp, msglen, 0,
-					 dnptrs, dnptrs_end, 0)) < 0) {
-				/* truncation in the additional-data section
-				 * is not all that serious.  we do not set TC,
-				 * since the answer and authority sections are
-				 * OK; however, since we're not setting TC we
-				 * have to make sure that none of the RR's for
-				 * this name go out (!TC implies that all
-				 * {name,type} appearances are complete -- and
-				 * since we only do A RR's here, the name is
-				 * the key).	vixie, 23apr93
-				 */
-				ns_debug(ns_log_default, 5,
-			  "addinfo: not enough room, remaining msglen = %d",
-					 save_msglen);
-				/* Rollback RRset. */
-				ns_name_rollback(save_cp,
-						 (const u_char **)dnptrs,
-						 (const u_char **)dnptrs_end);
-				cp = save_cp;
-				msglen = save_msglen;
-				count = save_count;
-				break;
-			}
-			ns_debug(ns_log_default, 5,
-				 "addinfo: adding address data n = %d", n);
-			cp += n;
-			msglen -= n;
-			count++;
-		}
- next_rr:
-		if (!NS_OPTION_P(OPTION_NOFETCHGLUE) && 
-		    !foundcname && !foundany &&
-		    (ap->a_type == T_A || ap->a_type == T_AAAA)) {
-			/* ask a real server for this info */
-			(void) sysquery(ap->a_dname, (int)ap->a_class,
-					ap->a_type, NULL, 0, ns_port, QUERY);
-		}
-		if (foundcname) {
-			if (!haveComplained(nhash(ap->a_dname),
-					    nhash(ap->a_rname))) {
-				ns_info(ns_log_cname,
-					"\"%s %s %s\" points to a CNAME (%s)",
-					ap->a_rname, p_class(ap->a_class),
-					p_type(ap->a_rtype), ap->a_dname);
-			}
-		}
-		freestr(ap->a_dname);
-		freestr(ap->a_rname);
-	}
-	if (finishedA == 0) {
-		finishedA = 1;
-		addcount = save_addcount;
-		goto loop; /* now do the KEYs... */
-	}
-	hp->arcount = htons((u_int16_t)count);
-	return (cp - msg);
-}
-
-int
-doaddauth(HEADER *hp, u_char *cp, int buflen,
-	  struct namebuf *np, struct databuf *dp)
-{
-	char dnbuf[MAXDNAME];
-	int n;
-
-	getname(np, dnbuf, sizeof dnbuf);
-	if (stale(dp)) {
-		ns_debug(ns_log_default, 1,
-			 "doaddauth: can't add stale '%s' (%d)",
-			dnbuf, buflen);
-		return (0);
-	}
-	n = make_rr(dnbuf, dp, cp, buflen, 1, dnptrs, dnptrs_end, 1);
-	if (n <= 0) {
-		ns_debug(ns_log_default, 1,
-			 "doaddauth: can't add oversize '%s' (%d) (n=%d)",
-			 dnbuf, buflen, n);
-		if (n < 0) {
-			hp->tc = 1;
-		}
-		return (0);
-	}
-	if (dp->d_secure != DB_S_SECURE)
-		hp->ad = 0;
-	hp->nscount = htons(ntohs(hp->nscount) + 1);
-	return (n);
-}
-
-void
-free_addinfo() {
-	struct addinfo *ap;
-
-	for (ap = addinfo; --addcount >= 0; ap++) {
-		freestr(ap->a_dname);
-		freestr(ap->a_rname);
-	}
-	addcount = 0;
-}
-
-void
-free_nsp(struct databuf **nsp) {
-	while (*nsp) {
-		DRCNTDEC(*nsp);
-		if ((*nsp)->d_rcnt)
-			ns_debug(ns_log_default, 3, "free_nsp: %s rcnt %d",
-				 (*nsp)->d_data, (*nsp)->d_rcnt);
-		else {
-			ns_debug(ns_log_default, 3,
-				 "free_nsp: %s rcnt %d delayed",
-				 (*nsp)->d_data, (*nsp)->d_rcnt);
-			db_freedata(*nsp);	/* delayed free */
-		}
-		*nsp++ = NULL;
-	}
-}
-
-static void
-copyCharString(u_char **dst, const char *src) {
-	size_t len = strlen(src) & 0xff;
-	*(*dst)++ = (u_char) len;
-	memcpy(*dst, src, len);
-	*dst += len;
-}
diff --git a/contrib/bind/bin/named/ns_resp.c b/contrib/bind/bin/named/ns_resp.c
deleted file mode 100644
index 064661857fbed..0000000000000
--- a/contrib/bind/bin/named/ns_resp.c
+++ /dev/null
@@ -1,4003 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_resp.c	4.65 (Berkeley) 3/3/91";
-static const char rcsid[] = "$Id: ns_resp.c,v 8.143 2000/05/09 07:38:38 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <limits.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static u_int8_t		norootlogged[MAXCLASS];	/* XXX- should be a bitmap */
-
-static const char	skipnameFailedAnswer[] = "skipname failed in answer",
-			skipnameFailedAuth[] =	"skipname failed in authority",
-			skipnameFailedQuery[] =	"skipname failed in query",
-			outofDataQuery[] =	"ran out of data in query",
-			outofDataAnswer[] =	"ran out of data in answer",
-			notSingleQuery[] =	"not exactly one query",
-			expandFailedQuery[] =	"dn_expand failed in query",
-			expandFailedAnswer[] =	"dn_expand failed in answer",
-			expandFailedAuth[] =	"dn_expand failed in authority",
-			outofDataAuth[] =	"ran out of data in authority",
-			dlenOverrunAnswer[] =	"dlen overrun in answer",
-			dlenOverrunAuth[] =	"dlen overrun in authority",
-			dlenUnderrunAnswer[] =	"dlen underrun in answer",
-			outofDataFinal[] =	"out of data in final pass",
-			outofDataAFinal[] =	"out of data after final pass",
-			badNameFound[] =	"found an invalid domain name",
-			wrongQuestion[] =	"answer to wrong question",
-			danglingCname[] =	"dangling CNAME pointer",
-			nonRecursiveForwarder[]= "non-recursive forwarder";
-
-struct db_list {
-	struct db_list *db_next;
-	struct databuf *db_dp;
-};
-
-struct flush_set {
-	char *		fs_name;
-	int		fs_type;
-	int		fs_class;
-	u_int		fs_cred;
-	struct db_list *fs_list;
-	struct db_list *fs_last;
-};
-
-static void		rrsetadd(struct flush_set *, const char *, 
-				 struct databuf *),
-			rrsetupdate(struct flush_set *, int flags,
-				    struct sockaddr_in, int),
-			flushrrset(struct flush_set *, struct sockaddr_in),
-			free_flushset(struct flush_set *, int),
-			check_hints(struct flush_set *);
-static int		rrsetcmp(char *, struct db_list *, struct hashbuf *),
-			check_root(void),
-			check_ns(void),
-			wanted(const struct databuf *, int, int),
-			wantedsig(const struct databuf *, int, int),
-			rrextract(u_char *, int, u_char *,
-				  struct databuf **, char *, int,
-				  struct sockaddr_in, char **);
-static void		mark_bad(struct qinfo *qp, struct sockaddr_in from);
-static void		mark_lame(struct qinfo *qp, struct sockaddr_in from);
-static void		fast_retry(struct qinfo *qp, struct sockaddr_in from);
-static void		add_related_additional(char *);
-static void		free_related_additional(void);
-static int		related_additional(char *);
-static void		freestr_maybe(char **);
-static enum ordering	match_order(const struct namebuf *, int, int);
-static int 		match_name(const struct namebuf *, const char *, size_t);
-
-#define MAX_RELATED 100
-
-static int num_related = 0;
-static char *related[MAX_RELATED];
-
-static char *
-learntFrom(struct qinfo *qp, struct sockaddr_in *server) {
-	static char *buf = NULL;
-	char *a, *ns, *na;
-	struct databuf *db;
-	int i;
-	
-	a = ns = na = "<Not Available>";
-
-	for (i = 0; (u_int)i < qp->q_naddr; i++) {
-		if (ina_equal(qp->q_addr[i].ns_addr.sin_addr,
-			      server->sin_addr)) {
-			db = qp->q_addr[i].ns;
-			if (db != NULL) {
-				if (NS_OPTION_P(OPTION_HOSTSTATS)) {
-					char nsbuf[20];
-
-					if (db->d_ns != NULL) {
-						strcpy(nsbuf,
-						    inet_ntoa(db->d_ns->addr));
-						ns = nsbuf;
-					} else {
-						ns = zones[db->d_zone]
-							.z_origin;
-					}
-				}
-				if (db->d_rcode == 0)
-					na = (char*)qp->q_addr[i].ns->d_data;
-			}
-
-			if (NS_OPTION_P(OPTION_HOSTSTATS)) {
-				char abuf[20];
-
-				db = qp->q_addr[i].nsdata;
-				if (db != NULL) {
-					if (db->d_ns != NULL) {
-						strcpy(abuf,
-						    inet_ntoa(db->d_ns->addr));
-						a = abuf;
-					} else {
-						a = zones[db->d_zone].z_origin;
-					}
-				}
-			}
-			break;
-		}
-	}
-
-	if (a == ns && ns == na)	/* all "UNKNOWN" */
-		return (NULL);
-	
-	if (*a == '\0')
-		a = "\".\"";
-	if (*ns == '\0')
-		ns = "\".\"";
-	if (*na == '\0')
-		na = "\".\"";
-
-	if (NS_OPTION_P(OPTION_HOSTSTATS)) {
-		static const char fmt[] = " '%s': learnt (A=%s,NS=%s)";
-
-		buf = newstr(sizeof fmt + strlen(na) + strlen(a) + strlen(ns),
-			     0);
-		if (buf == NULL)
-			return (NULL);
-		sprintf(buf, fmt, na, a, ns);
-	} else {
-		static const char fmt[] = " '%s'";
-
-		buf = newstr(sizeof fmt + strlen(na), 0);
-		if (buf == NULL)
-			return (NULL);
-		sprintf(buf, fmt, na);
-	}
-
-	return (buf);
-}
-
-void
-ns_resp(u_char *msg, int msglen, struct sockaddr_in from, struct qstream *qsp)
-{
-	struct qinfo *qp;
-	HEADER *hp;
-	struct qserv *qs = NULL;
-	struct databuf *ns, *ns2;
-	u_char *cp, *answers, *eom = msg + msglen;
-	struct flush_set *flushset = NULL;
-	int flushset_size = 0;
-	struct sockaddr_in *nsa;
-	struct databuf *nsp[NSMAX];
-	int i, c, n, qdcount, ancount, aucount, nscount, arcount, arfirst;
-	int soacount;
-	u_int qtype, qclass;
-	int restart;	/* flag for processing cname response */
-	int validanswer, dbflags;
-	int cname, lastwascname, externalcname;
-	int count, founddata, foundname;
-	int buflen;
-	int newmsglen;
-	char name[MAXDNAME], qname[MAXDNAME], aname[MAXDNAME];
-	char msgbuf[MAXDNAME+100];
-	char *dname, tmpdomain[MAXDNAME];
-	const char *fname;
-	const char *formerrmsg = "brain damage";
-	u_char newmsg[PACKETSZ];
-	u_char **dpp, *tp;
-	time_t rtrip;
-	struct hashbuf *htp;
-	struct namebuf *np;
-	struct fwdinfo *fwd;
-	struct databuf *dp;
-	int forcecmsg = 0;
-	char *tname = NULL;
-	int sendto_errno = 0;
-	int has_tsig, oldqlen;
-	u_char *oldqbuf;
-	u_char *smsg;
-	int smsglen, smsgsize, siglen;
-	u_char sig[TSIG_SIG_SIZE];
-	time_t tsig_time;
-	DST_KEY *key;
-
-	nameserIncr(from.sin_addr, nssRcvdR);
-	nsp[0] = NULL;
-	hp = (HEADER *) msg;
-	if ((qp = qfindid(hp->id)) == NULL ) {
-		ns_debug(ns_log_default, 1, "DUP? dropped (id %d)",
-			 ntohs(hp->id));
-		nameserIncr(from.sin_addr, nssRcvdDupR);
-		return;
-	}
-
-	if (ns_wouldlog(ns_log_default, 2)) {
-		ns_debug(ns_log_default, 2, "Response (%s %s %s) nsid=%d id=%d",
-			 (qp->q_flags & Q_SYSTEM) ?"SYSTEM" :"USER",
-			 (qp->q_flags & Q_PRIMING) ?"PRIMING" :"NORMAL",
-			 (qp->q_flags & Q_ZSERIAL) ?"ZSERIAL" :"-",
-			 ntohs(qp->q_nsid), ntohs(qp->q_id));
-	}
-
-	if (qp->q_nstsig == NULL)
-		has_tsig = 0;
-	else {
-		int ret;
-
-		ret = ns_verify(msg, &msglen, qp->q_nstsig->key,
-				qp->q_nstsig->sig, qp->q_nstsig->siglen,
-				NULL, NULL, &tsig_time, 0);
-		if (ret == 0)
-			has_tsig = 1;
-		else {
-			if (hp->rcode == NOERROR)
-				hp->rcode = NOTAUTH;
-			ns_debug(ns_log_default, 1,
-				 "resp: error bad tsig, record dropped");
-			return;
-		}
-	}
-
-	/*
-	 * Here we handle high level formatting problems by parsing the header.
-	 */
-	qdcount = ntohs(hp->qdcount);
-	ancount = ntohs(hp->ancount);
-	aucount = ntohs(hp->nscount);
-	arcount = ntohs(hp->arcount);
-	free_addinfo();		/* sets addcount to zero */
-	cp = msg + HFIXEDSZ;
-	dpp = dnptrs;
-	*dpp++ = msg;
-	if ((*cp & INDIR_MASK) == 0)
-		*dpp++ = cp;
-	*dpp = NULL;
-	if (qdcount == 1) {
-		n = dn_expand(msg, eom, cp, qname, sizeof(qname));
-		if (n <= 0) {
-			formerrmsg = expandFailedQuery;
-			goto formerr;
-		}
-		cp += n;
-		if (cp + 2 * INT16SZ > eom) {
-			formerrmsg = outofDataQuery;
-			goto formerr;
-		}
-		GETSHORT(qtype, cp);
-		GETSHORT(qclass, cp);
-		if (!ns_nameok(qp, qname, qclass, NULL, response_trans,
-			       ns_ownercontext(qtype, response_trans),
-			       qname, from.sin_addr)) {
-			formerrmsg = badNameFound;
-			goto refused;
-		}
-		if (cp > eom) {
-			formerrmsg = outofDataQuery;
-			goto formerr;
-		}
-		if (qp->q_msg && qp->q_msglen &&
-		    !res_nameinquery(qname, qtype, qclass,
-				     qp->q_msg, qp->q_msg + qp->q_msglen)) {
-			sprintf(msgbuf,
-				"query section mismatch (%s %s %s)",
-				qname, p_class(qclass), p_type(qtype));
-			formerrmsg = msgbuf;
-			goto formerr;
-		}
-		if (ns_samename(qp->q_name, qname) != 1 ||
-		    qp->q_class != qclass ||
-		    qp->q_type != qtype) {
-			formerrmsg = wrongQuestion;
-			goto formerr;
-		}
-	} else {
-		strcpy(qname, qp->q_name);
-		qclass = qp->q_class;
-		qtype = qp->q_type;
-	}
-
-	/* cp now points after the query section. */
-
-	/*
-	 *  Here we handle bad responses from servers.
-	 *  Several possibilities come to mind:
-	 *	The server is sick and returns SERVFAIL
-	 *	The server returns some garbage opcode (it's sick)
-	 *	The server can't understand our query and return FORMERR
-	 *  In all these cases, we drop the packet, disable retries on
-	 *  this server and immediately force a retry.
-	 */
-	if ((hp->rcode != NOERROR && hp->rcode != NXDOMAIN)
-	    || (hp->opcode != QUERY
-#ifdef BIND_NOTIFY
-		&& hp->opcode != NS_NOTIFY_OP
-#endif
-		)) {
-		ns_debug(ns_log_default, 2,
-			 "resp: error (ret %d, op %d), dropped",
-			 hp->rcode, hp->opcode);
-		switch (hp->rcode) {
-		case SERVFAIL:
-			nameserIncr(from.sin_addr, nssRcvdFail);
-			break;
-		case FORMERR:
-			nameserIncr(from.sin_addr, nssRcvdFErr);
-			break;
-		default:
-			nameserIncr(from.sin_addr, nssRcvdErr);
-			break;
-		}
-		if (ns_samename(qp->q_name, qp->q_domain) == 1 &&
-		    hp->rcode == SERVFAIL && hp->opcode == QUERY)
-			mark_lame(qp, from);
-		mark_bad(qp, from);
-		fast_retry(qp, from);
-		return;
-	}
-
-	if (qdcount != 1) {
-		/* We don't generate or forward these (yet). */
-		formerrmsg = notSingleQuery;
-		goto formerr;
-	}
-
-	/*
-	 * Determine if the response came from a forwarder.  Packets from
-	 * anyplace not listed as a forwarder or as a server to whom we
-	 * might have forwarded the query will be dropped.
-	 * XXX - should put this in STATS somewhere.
-	 */
-	for (fwd = NS_ZFWDTAB(qp->q_fzone); fwd; fwd = fwd->next)
-		if (ina_equal(fwd->fwddata->fwdaddr.sin_addr, from.sin_addr))
-			break;
-	/*
-	/*
-	 * find the qinfo pointer and update
-	 * the rtt and fact that we have called on this server before.
-	 */
-	{
-		struct timeval *stp;
-
-		for (n = 0, qs = qp->q_addr; (u_int)n < qp->q_naddr; n++, qs++)
-			if (ina_equal(qs->ns_addr.sin_addr, from.sin_addr))
-				break;
-		if ((u_int)n >= qp->q_naddr) {
-			if (!haveComplained(ina_ulong(from.sin_addr),
-					    (u_long)"unexpected source")) {
-				ns_info(ns_log_default,
-					"Response from unexpected source (%s)",
-					sin_ntoa(from));
-			}
-			/* 
-			 * We don't know who this response came from so it
-			 * gets dropped on the floor.
-			 */
-			return;
-		}
-		stp = &qs->stime;
-
-		/* Handle response from different (untried) interface. */
-		if (qs->ns != NULL && stp->tv_sec == 0) {
-			ns = qs->ns;
-			while (qs > qp->q_addr
-			       && (qs->stime.tv_sec == 0 || qs->ns != ns))
-				qs--;
-			*stp = qs->stime;
-			/* XXX - sometimes stp still ends up pointing to
-			 * a zero timeval, in spite of the above attempt.
-			 * Why?  What should we do about it?
-			 */
-			/* XXX - catch aliases here */
-		}
-
-		/* compute query round trip time */
-		/* XXX - avoid integer overflow, which is quite likely if stp
-		 * points to a zero timeval (see above).
-		 * rtrip is of type time_t, which we assume is at least
-		 * as big as an int.
-		 */
-		if ((tt.tv_sec - stp->tv_sec) > (INT_MAX-999)/1000) {
-			rtrip = INT_MAX;
-		} else {
-			rtrip = ((tt.tv_sec - stp->tv_sec) * 1000 +
-				 (tt.tv_usec - stp->tv_usec) / 1000);
-		}
-		
-		if (ns_wouldlog(ns_log_default,3)) {
-			ns_debug(ns_log_default, 3,
-				 "stime %lu/%lu  now %lu/%lu rtt %ld",
-				 (u_long)stp->tv_sec, (u_long)stp->tv_usec,
-				 (u_long)tt.tv_sec, (u_long)tt.tv_usec,
-				 (long)rtrip);
-		}
-
-		/* prevent floating point overflow, limit to 1000 sec */
-		if (rtrip > 1000000) {
-			rtrip = 1000000;
-		}
-		ns = qs->nsdata;
-		/*
-		 * Don't update nstime if this doesn't look
-		 * like an address databuf now.			XXX
-		 */
-		if (ns &&
-		    ns->d_type == T_A &&
-		    ns->d_class == qs->ns->d_class) {
-			u_long t;
-
-			if (ns->d_nstime == 0)
-				t = rtrip;
-			else
-				t = ns->d_nstime * ALPHA
-					+
-				    (1 - ALPHA) * rtrip;
-			if (t > 65535)
-				t = 65535;
-			ns->d_nstime = (u_int16_t)t;
-		}
-
-		/*
-		 * Record the source so that we do not use this NS again.
-		 */
-		if (ns && qs->ns && (qp->q_nusedns < NSMAX)) {
-			qp->q_usedns[qp->q_nusedns++] = qs->ns;
-			if (ns_wouldlog(ns_log_default,2)) {
-				ns_debug(ns_log_default, 2,
-					 "NS #%d addr %s used, rtt %d",
-					 n, sin_ntoa(qs->ns_addr), ns->d_nstime);
-			}
-		}
-
-		/*
-		 * Penalize those who had earlier chances but failed
-		 * by multiplying round-trip times by BETA (>1).
-		 * Improve nstime for unused addresses by applying GAMMA.
-		 * The GAMMA factor makes unused entries slowly
-		 * improve, so they eventually get tried again.
-		 * GAMMA should be slightly less than 1.
-		 * Watch out for records that may have timed out
-		 * and are no longer the correct type.			XXX
-		 */
-		
-		for (n = 0, qs = qp->q_addr;
-		     (u_int)n < qp->q_naddr;
-		     n++, qs++) {
-			u_long t;
-
-			ns2 = qs->nsdata;
-			if (!ns2 || ns2 == ns)
-				continue;
-			if (ns2->d_type != T_A ||
-			    ns2->d_class != qs->ns->d_class)	/* XXX */
-				continue;
-			if (qs->stime.tv_sec) {
-				if (ns2->d_nstime == 0)
-					t = (rtrip * BETA);
-				else
-					t = ns2->d_nstime * BETA
-					        +
-					    (1 - ALPHA) * rtrip;
-			} else
-				t = ns2->d_nstime * GAMMA;
-			if (t > 65535)
-				t = 65535;
-			ns2->d_nstime = (u_int16_t)t;
-			if (ns_wouldlog(ns_log_default,2)) {
-				ns_debug(ns_log_default, 2, "NS #%d %s rtt now %d", n,
-					 sin_ntoa(qs->ns_addr),
-					 ns2->d_nstime);
-			}
-		}
-	}
-
-#ifdef BIND_NOTIFY
-	/*
-	 * For now, NOTIFY isn't defined for ANCOUNT!=0, AUCOUNT!=0,
-	 * or ADCOUNT!=0.  Therefore the only real work to be done for
-	 * a NOTIFY-QR is to remove it from the query queue.
-	 */
-	if (hp->opcode == NS_NOTIFY_OP) {
-		ns_info(ns_log_notify,
-			"Received NOTIFY answer from %s for \"%s %s %s\"",
-			inet_ntoa(from.sin_addr), 
-			*(qp->q_name) ? qp->q_name : ".",
-			p_class(qp->q_class), p_type(qp->q_type));
-		qremove(qp);
-		return;
-	}
-#endif
-
-	if ((qp->q_flags & Q_ZSERIAL) != 0) {
-		if (hp->aa && ancount > 0 && hp->rcode == NOERROR &&
-		    qtype == T_SOA && (qclass == C_IN || qclass == C_HS))
-		{
-			int n;
-			u_int type, class, dlen;
-			u_int32_t serial;
-			u_char *tp = cp;
-			u_char *rdatap;
-
-			n = dn_expand(msg, eom, tp, name, sizeof name);
-			if (n < 0) {
-				formerrmsg = expandFailedAnswer;
-				goto formerr;
-			}
-			tp += n;  		/* name */
-			if (tp + 3 * INT16SZ + INT32SZ > eom) {
-				formerrmsg = outofDataAnswer;
-				goto formerr;
-			}
-			GETSHORT(type, tp);	/* type */
-			GETSHORT(class, tp);	/* class */
-			tp += INT32SZ;		/* ttl */
-			GETSHORT(dlen, tp); 	/* dlen */
-			rdatap = tp;		/* start of rdata */
-			if (!ns_nameok(qp, name, class, NULL, response_trans,
-				       ns_ownercontext(type, response_trans),
-				       name, from.sin_addr)) {
-				formerrmsg = badNameFound;
-				goto refused;
-			}
-			if (ns_samename(qname, name) != 1 ||
-			    qtype != type || qclass != class) {
-				sprintf(msgbuf,
-					"qserial answer mismatch (%s %s %s)",
-					name, p_class(class), p_type(type));
-				formerrmsg = msgbuf;
-				goto formerr;
-			}
-			if (0 >= (n = dn_skipname(tp, eom))) {
-				formerrmsg = skipnameFailedAnswer;
-				goto formerr;
-			}
-			tp += n;  		/* mname */
-			if (0 >= (n = dn_skipname(tp, eom))) {
-				formerrmsg = skipnameFailedAnswer;
-				goto formerr;
-			}
-			tp += n;  		/* rname */
-			if (tp + 5 * INT32SZ > eom) {
-				formerrmsg = dlenUnderrunAnswer;
-				goto formerr;
-			}
-			GETLONG(serial, tp);
-			tp += 4 * INT32SZ;	/* Skip rest of SOA. */
-			if ((u_int)(tp - rdatap) != dlen) {
-				formerrmsg = dlenOverrunAnswer;
-				goto formerr;
-			}
-			for (n = 0, qs = qp->q_addr; (u_int)n < qp->q_naddr;
-					n++, qs++)
-				if (ina_equal(qs->ns_addr.sin_addr,
-					      from.sin_addr))
-					break;
-			if (n == qp->q_naddr) {
-				qserial_answer(qp);
-				qremove(qp);
-				return;
-			}
-			qs->serial = serial;
-		}
-		retry(qp);
-		return;
-	}
-
-	/*
-	 *  Non-authoritative, no answer, no error, with referral.
-	 */
-	if (hp->rcode == NOERROR && !hp->tc && !hp->aa &&
-	    ancount == 0 && aucount > 0
-#ifdef BIND_NOTIFY
-	    && hp->opcode != NS_NOTIFY_OP
-#endif
-	    ) {
-		u_char *tp;
-		int type, class, dlen;
-		int foundns, foundsoa;
-#ifdef DEBUG
-		if (debug > 0)
-			res_pquery(&res, msg, msglen,
-				   log_get_stream(packet_channel));
-#endif
-		/*
-		 * Since there is no answer section (ancount == 0),
-		 * we must be pointing at the authority section (aucount > 0).
-		 */
-		tp = cp;
-		foundns = foundsoa = 0;
-		for (i = 0 ; i < aucount ; i++) {
-			n = dn_expand(msg, eom, tp, name, sizeof name);
-			if (n < 0) {
-				formerrmsg = expandFailedAuth;
-				goto formerr;
-			}
-			tp += n;
-			if (tp + 3 * INT16SZ + INT32SZ > eom) {
-				formerrmsg = outofDataAuth;
-				goto formerr;
-			}
-			GETSHORT(type, tp);
-			GETSHORT(class, tp);
-			tp += INT32SZ;	/* ttl */
-			GETSHORT(dlen, tp);
-			if (!ns_nameok(qp, name, class, NULL, response_trans,
-				       ns_ownercontext(type, response_trans),
-				       name, from.sin_addr)) {
-				formerrmsg = badNameFound;
-				goto refused;
-			}
-			/* skip rest of record */
-			if (tp + dlen > eom) {
-				formerrmsg = outofDataAuth;
-				goto formerr;
-			}
-			tp += dlen;
-			if (type == T_NS) {
-				strcpy(aname, name);
-				foundns = 1;
-			}
-			if (type == T_SOA)
-				foundsoa = 1;
-		}
-
-		/*
-		 * If the answer delegates us either to the same level in
-		 * the hierarchy or closer to the root, we consider this
-		 * server lame.  Note that for now we only log the message
-		 * if the T_NS was C_IN, which is technically wrong (NS is
-		 * visible in all classes) but necessary anyway (non-IN
-		 * classes tend to not have good strong delegation graphs).
-		 */
-
-		if (foundns && !foundsoa &&
-		    ns_samedomain(qp->q_domain, aname)) {
-			if (fwd == NULL) {
-				nameserIncr(from.sin_addr, nssRcvdLDel);
-				mark_lame(qp, from);
-			}
-			mark_bad(qp, from);
-			if (class == C_IN && fwd == NULL &&
-			    !haveComplained(ina_ulong(from.sin_addr),
-					    nhash(qp->q_domain))) {
-				char *learnt_from = learntFrom(qp, &from);
-
-				ns_info(ns_log_lame_servers,
-					"Lame server on '%s' (in '%s'?): %s%s",
-					qname, qp->q_domain, 
-					sin_ntoa(from),
-					(learnt_from == NULL) ? "" :
-					learnt_from);
-				if (learnt_from != NULL)
-					freestr(learnt_from);
-			} else if (fwd != NULL) {
-				if (!haveComplained(ina_ulong(from.sin_addr),
-					  (u_long)nonRecursiveForwarder))
-					ns_warning(ns_log_default, "%s: %s",
-						   nonRecursiveForwarder,
-						   sin_ntoa(from));
-			}
-
-			fast_retry(qp, from);
-			return;
-		}
-	}
-
-	/*
-	 * Add the info received in the response to the data base.
-	 */
-	arfirst = ancount + aucount;
-	c = arfirst + arcount;
-
-	/* Don't return if it's a TSIG signed truncated message */
-	if (has_tsig > 0 && hp->tc)
-		goto tcp_retry;
-
-	/* -ve $ing non-existence of record, must handle non-authoritative
-	 * NOERRORs with c == 0.
-	 */
-	if (!hp->aa && !hp->tc && hp->rcode == NOERROR && c == 0)
-		goto return_msg;
-
-	if (qp->q_flags & Q_SYSTEM)
-		dbflags = DB_NOTAUTH | DB_NODATA;
-	else
-		dbflags = DB_NOTAUTH | DB_NODATA | DB_NOHINTS;
-	count = c;
-	if (qp->q_flags & Q_PRIMING)
-		dbflags |= DB_PRIMING;
-	if (hp->tc) {
-		count -= arcount;	/* truncation had to affect this */
-		if (!arcount) {
-			count -= aucount;	/* guess it got this too */
-		}
-		if (!(arcount || aucount)) {
-			count -= ancount;	/* things are pretty grim */
-		}
-
-tcp_retry:
-		/* retry using tcp provided this was not a tcp query */
-		if (!(qp->q_flags & Q_USEVC)) {
-			qp->q_flags |= Q_USEVC;
-			unsched(qp);
-			schedretry(qp, 60);
-
-			nsa = Q_NEXTADDR(qp, 0);
-
-			key = tsig_key_from_addr(nsa->sin_addr);
-			if (key != NULL) {
-				smsgsize = qp->q_msglen + TSIG_BUF_SIZE;
-				smsg = memget(smsgsize);
-				smsglen = qp->q_msglen;
-				siglen = sizeof(sig);
-				memcpy(smsg, qp->q_msg, qp->q_msglen);
-				n = ns_sign(smsg, &smsglen, smsgsize,
-					    NOERROR, key, NULL, 0,
-					    sig, &siglen, 0);
-				if (n == 0) {
-					oldqbuf = qp->q_msg;
-					oldqlen = qp->q_msglen;
-					qp->q_msglen = smsglen;
-					qp->q_msg = smsg;
-					has_tsig = 1;
-					qp->q_nstsig = new_tsig(key, sig,
-								siglen);
-				}
-				else {
-					has_tsig = 0;
-					free_tsig(qp->q_nstsig);
-					qp->q_nstsig = NULL;
-					INSIST(0);
-				}
-			}
-			else {
-				has_tsig = 0;
-				free_tsig(qp->q_nstsig);
-				qp->q_nstsig = NULL;
-			}
-
-			if (tcp_send(qp) != NOERROR)
-				/*
-				 * We're probably in trouble if tcp_send
-				 * failed, but we'll try to press on because
-				 * there isn't anything else to do.
-				 */
-				retry(qp);
-
-			if (has_tsig == 1) {
-				memput(qp->q_msg, smsgsize);
-				qp->q_msg = oldqbuf;
-				qp->q_msglen = oldqlen;
-			}
-			return;
-		} else if (!qsp) {
-			/* outstanding udp response */
-			return;
-		}
-
-		/* XXX truncated tcp response */
-		ns_error(ns_log_default,
-			 "ns_resp: TCP truncated: \"%s\" %s %s from %s",
-			 qname, p_class(qclass), p_type(qtype),
-			 sin_ntoa(from));
-		/* mark this server as bad */
-		mark_bad(qp, from);
-		/* try another server, it may have a bigger write buffer */
-		retry(qp);
-		return;
-	}
-
-	tp = cp;
-
-	restart = 0;
-	validanswer = 0;
-	nscount = 0;
-	soacount = 0;
-	cname = 0;
-	lastwascname = 0;
-	externalcname = 0;
-	strcpy(aname, qname);
-
-	if (count) {
-		/* allocate 1 extra record for end of set detection */
-		flushset_size = (count + 1) * sizeof *flushset;
-		flushset = memget(flushset_size);
-		if (flushset == NULL)
-			panic("flushset: out of memory", NULL);
-		memset(flushset, 0, flushset_size);
-	} else
-		flushset = NULL;
-
-	for (i = 0; i < count; i++) {
-		struct databuf *dp;
-		int type;
-
-		freestr_maybe(&tname);
-		if (cp >= eom) {
-			free_related_additional();
-			if (flushset != NULL)
-				free_flushset(flushset, flushset_size);
-			formerrmsg = outofDataFinal;
-			goto formerr;
-		}
-		n = rrextract(msg, msglen, cp, &dp, name, sizeof name, from,
-			      &tname);
-		if (n < 0) {
-			free_related_additional();
-			freestr_maybe(&tname);
-			if (flushset != NULL)
-				free_flushset(flushset, flushset_size);
-			formerrmsg = outofDataFinal;
-			if (hp->rcode == REFUSED)
-				goto refused;
-			else
-				goto formerr;
-		}
-		cp += n;
-		if (!dp)
-			continue;
-		type = dp->d_type;
-		if (i < ancount) {
-			/* Answer section. */
-			if (externalcname || ns_samename(name, aname) != 1) {
-				if (!externalcname)
-					ns_info(ns_log_resp_checks,
-						"wrong ans. name (%s != %s)",
-						name[0] ? name : ".", 
-						aname[0] ? aname : ".");
-				else
-					ns_debug(ns_log_resp_checks, 3,
-				 "ignoring answer '%s' after external cname",
-						 name);
-				db_freedata(dp);
-				continue;
-			}
-			if (type == T_CNAME &&
-			    qtype != T_CNAME && qtype != T_ANY) {
-				strcpy(aname, (char *)dp->d_data);
-				if (!ns_samedomain(aname, qp->q_domain))
-					externalcname = 1;
-				cname++;
-				lastwascname = 1;
-			} else {
-				validanswer = 1;
-				lastwascname = 0;
-			}
-
-			if (tname != NULL) {
-				add_related_additional(tname);
-				tname = NULL;
-			}
-
-			dp->d_cred = (hp->aa && ns_samename(name, qname) == 1)
-				? DB_C_AUTH
-				: DB_C_ANSWER;
-		} else {
-			/* After answer section. */
-			if (lastwascname) {
-				ns_debug(ns_log_resp_checks, 3,
-				 "last was cname, ignoring auth. and add.");
-				db_freedata(dp);
-				break;
-			}
-			if (i < arfirst) {
-				/* Authority section. */
-				switch (type) {
-				case T_NS:
-				case T_SOA:
-					if (!ns_samedomain(aname, name)) {
-						ns_info(ns_log_resp_checks,
-					    "bad referral (%s !< %s) from %s",
-							aname[0] ? aname : ".",
-							name[0] ? name : ".",
-							sin_ntoa(from));
-						db_freedata(dp);
-						continue;
-					} else if (fwd == NULL &&
-						   !ns_samedomain(name,
-							       qp->q_domain)) {
-						if (!externalcname)
-						    ns_info(ns_log_resp_checks,
-					    "bad referral (%s !< %s) from %s",
-							 name[0] ? name : ".",
-							 qp->q_domain[0] ?
-							 qp->q_domain : ".",
-							 sin_ntoa(from));
-						db_freedata(dp);
-						continue;
-					}
-					if (type == T_NS) {
-						nscount++;
-						add_related_additional(tname);
-						tname = NULL;
-					}
-					if (type == T_SOA) {
-						soacount++;
-					}
-					break;
-				case T_NXT:
-					/* XXX check */
-					break;
-				case T_SIG:
-					/* XXX check that it relates to an
-					   NS or SOA or NXT */
-					break;
-				default:
-					ns_info(ns_log_resp_checks,
-	"invalid RR type '%s' in authority section (name = '%s') from %s",
-						p_type(type), name,
-						sin_ntoa(from));
-					db_freedata(dp);
-					continue;
-				}
-				dp->d_cred = (hp->aa && (cname == 0)) ?
-					DB_C_AUTH : (qp->q_flags & Q_PRIMING)
-						? DB_C_ANSWER
-						: DB_C_ADDITIONAL;
-			} else {
-				/* Additional section. */
-				switch (type) {
-				case T_A:
-				case T_AAAA:
-					if (externalcname ||
-					    !ns_samedomain(name, qp->q_domain)) {
-						ns_debug(ns_log_resp_checks, 3,
-				       "ignoring additional info '%s' type %s",
-							 name, p_type(type));
-						db_freedata(dp);
-						continue;
-					}
-					if (!related_additional(name)) {
-						ns_info(ns_log_resp_checks,
-			     "unrelated additional info '%s' type %s from %s",
-							 name, p_type(type),
-							 sin_ntoa(from));
-						db_freedata(dp);
-						continue;
-					}
-					break;
-				case T_KEY:
-					/* XXX  check? */
-					break;
-				case T_SIG:
-					/*
-					 * XXX  a SIG RR should relate
-					 * to some other RR in this section,
-					 * although if it's the last RR
-					 * it might be a transaction signature.
-					 */
-					break;
-				default:
-					ns_info(ns_log_resp_checks,
-	"invalid RR type '%s' in additional section (name = '%s') from %s",
-						p_type(type), name,
-						sin_ntoa(from));
-					db_freedata(dp);
-					continue;
-				}
-				dp->d_cred = (qp->q_flags & Q_PRIMING)
-					? DB_C_ANSWER
-					: DB_C_ADDITIONAL;
-			}
-		}
-		rrsetadd(flushset, name, dp);
-	}
-	free_related_additional();
-	freestr_maybe(&tname);
-	if (flushset != NULL) {
-		if ((qp->q_flags & Q_SYSTEM) && (qp->q_flags & Q_PRIMING)) {
-			check_hints(flushset); /* before rrsetupdate */
-			rrsetupdate(flushset, dbflags, from, 1);
-		} else
-			rrsetupdate(flushset, dbflags, from, 0);
-		free_flushset(flushset, flushset_size);
- 	}
-	if (lastwascname && !externalcname)
-		ns_debug(ns_log_cname, 3, "%s (%s) q(%s %s %s) %s qd(%s)",
-			danglingCname, aname,
-			(qname && *qname) ? qname : ".",
-			p_class(qclass), p_type(qtype),
-			sin_ntoa(from), qp->q_domain);
-
-	if (cp > eom) {
-		formerrmsg = outofDataAFinal;
-		goto formerr;
-	}
-
-	if ((qp->q_flags & Q_SYSTEM) && ancount) {
-		if ((qp->q_flags & Q_PRIMING) && !check_root()) {
-			/* mark server as bad */
-			mark_bad(qp, from);
-			fast_retry(qp, from);
-			return;
-		}
-		ns_debug(ns_log_default, 3,
-			 "resp: leaving, SYSQUERY ancount %d", ancount);
-#ifdef BIND_NOTIFY
-		if (qp->q_notifyzone != DB_Z_CACHE) {
-			struct zoneinfo *zp = &zones[qp->q_notifyzone];
-
-			qp->q_notifyzone = DB_Z_CACHE;
-			ns_notify(zp->z_origin, zp->z_class, ns_t_soa);
-		}
-#endif
-		qremove(qp);
-		return;
-	}
-
-	if (ancount && count && !validanswer) {
-		/*
-		 * Everything passed validation but we didn't get the
-		 * final answer.  The response must have contained
-		 * a dangling CNAME.  Force a restart of the query.
-		 *
-		 * Don't set restart if count==0, since this means
-		 * the response was truncated in the answer section,
-	         * causing us to set count to 0 which will cause
-		 * validanswer to be 0 as well even though the answer
-		 * section probably contained valid RRs (just not
-		 * a complete set).
-		 * XXX - this works right if we can just forward this
-		 * response to the client, but not if we found a CNAME
-		 * in a prior response and restarted the query.
-		 */
-		restart = 1;
-	}
-
-	if (!restart && !qp->q_cmsglen && ancount > 1 && qtype == T_A)
-		sort_response(tp, eom, ancount, &qp->q_from);
-
-	/*
-	 * An answer to a T_ANY query or a successful answer to a
-	 * regular query with no indirection, then just return answer.
-	 */
-	if (!restart && ancount && (qtype == T_ANY || !qp->q_cmsglen)) {
-		ns_debug(ns_log_default, 3,
-			 "resp: got as much answer as there is");
-		goto return_msg;
-	}
-
-	/*
-	 * We might want to cache this negative answer.
-	 *
-	 * if ancount != 0 and rcode == NOERROR we cannot determine if the
-	 * CNAME chain has been processed to completion or not, so just
-	 * restart the query. DNS needs a NODATA return code!
-	 *
-	 * As some servers incorrectly return a NODATA indication when
-	 * there is a CNAME chain instead of NXDOMAIN, we requery to get
-	 * a definitive answer.
-	 */
-	if ((hp->rcode == NXDOMAIN && cname == ancount) ||
-	    (hp->rcode == NOERROR && ancount == 0 && 
-	     (nscount == 0 || soacount != 0)
-	     )
-	    )
-	{
-		cache_n_resp(msg, msglen, from, qp->q_name,
-			     qp->q_class, qp->q_type);
-
-		if (!qp->q_cmsglen) {
-			ns_debug(ns_log_default, 3,
-				 "resp: leaving NO: auth = %d", hp->aa);
-			goto return_msg;
-		}
-		forcecmsg = 1;
-	}
-
-	/*
-	 * All messages in here need further processing.  i.e. they
-	 * are either CNAMEs or we got referred again.
-	 */
-	count = 0;
-	founddata = 0;
-	dname = name;
-	/*
-	 * XXX - the restart stuff doesn't work if any of the answer RRs
-	 * is not cacheable (TTL==0 or unknown RR type), since all of the
-	 * answer must pass through the cache and be re-assembled.
-	 */
-	if (qp->q_cmsglen != 0) {
-		ns_debug(ns_log_default, 1, "Cname second pass");
-		newmsglen = MIN(PACKETSZ, qp->q_cmsglen);
-		memcpy(newmsg, qp->q_cmsg, newmsglen);
-	} else {
-		newmsglen = MIN(PACKETSZ, msglen);
-		memcpy(newmsg, msg, newmsglen);
-	}
-	hp = (HEADER *) newmsg;
-	hp->ancount = htons(0);
-	hp->nscount = htons(0);
-	hp->arcount = htons(0);
-	hp->rcode = NOERROR;
-	dnptrs[0] = newmsg;
-	dnptrs[1] = NULL;
-	cp = newmsg + HFIXEDSZ;
-	/*
-	 * Keep in mind that none of this code works when QDCOUNT>1.
-	 * cp ends up pointed just past the query section in both cases.
-	 */
-	/*
-	 * Arrange for dname to contain the query name. The query
-	 * name can be either the original query name if restart==0
-	 * or the target of the last CNAME if we are following a
-	 * CNAME chain and were referred.
-	 */
-	n = dn_expand(newmsg, newmsg + newmsglen, cp, dname, sizeof name);
-	if (n < 0) {
-		ns_debug(ns_log_default, 1, "dn_expand failed");
-		goto servfail;
-	}
-	if (!res_dnok(dname)) {
-		ns_debug(ns_log_default, 1, "bad name (%s)", dname);
-		goto servfail;
-	}
-	cp += n + QFIXEDSZ;
-	buflen = sizeof(newmsg) - (cp - newmsg);
-
-	cname = 0;
-
- try_again:
-	ns_debug(ns_log_default, 1, "resp: nlookup(%s) qtype=%d", dname,
-		 qtype);
-	foundname = 0;
-	fname = "";
-	htp = hashtab;		/* lookup relative to root */
-	np = nlookup(dname, &htp, &fname, 0);
-	ns_debug(ns_log_default, 1, "resp: %s '%s' as '%s' (cname=%d)",
-		 np == NULL ? "missed" : "found", dname, fname, cname);
-	if (np == NULL || fname != dname)
-		goto fetch_ns;
-
-	foundname++;
-	answers = cp;
-	count = cp - newmsg;
-	/*
-	 * Look for NXDOMAIN record.
-	 */
-	for (dp = np->n_data; dp; dp = dp->d_next) {
-		if (!stale(dp) && (dp->d_rcode == NXDOMAIN) &&
-		    (dp->d_class == (int)qclass)) {
-#ifdef RETURNSOA
-			n = finddata(np, qclass, T_SOA, hp, &dname,
-				     &buflen, &count);
-			if ( n != 0) {
-				if (count) {
-					cp += n;
-					buflen -= n;
-					newmsglen += n;
-					hp->nscount = htons((u_int16_t)count);
-				}
-				if (hp->rcode == NOERROR_NODATA) {
-					hp->rcode = NOERROR;
-					goto return_newmsg;
-				}
-			}
-#else
-			count = 0;
-#endif
-			hp->rcode = NXDOMAIN;
-			/* 
-			 * XXX forcing AA all the time isn't right, but
-			 * we have to work that way by default
-			 * for compatibility with older servers.
-			 */
-			if (!NS_OPTION_P(OPTION_NONAUTH_NXDOMAIN))
-				hp->aa = 1;
-			ns_debug(ns_log_default, 3, "resp: NXDOMAIN aa = %d",
-				 hp->aa);
-			if ((count == 0) || NS_OPTION_P(OPTION_NORFC2308_TYPE1))
-				goto return_newmsg;
-			founddata = 1;
-			goto fetch_ns;
-		}
-	}
-	n = finddata(np, qclass, qtype, hp, &dname, &buflen, &count);
-	if (n == 0)
-		goto fetch_ns;		/* NO data available */
-	if (hp->rcode) {
-		if (hp->rcode == NOERROR_NODATA)
-			hp->rcode = NOERROR;
-#ifdef RETURNSOA
-		if (count) {
-			cp += n;
-			buflen -= n;
-			hp->nscount = htons((u_int16_t)count);
-		}
-#endif
-		if ((count == 0) || NS_OPTION_P(OPTION_NORFC2308_TYPE1))
-			goto return_newmsg;
-		founddata = 1;
-		goto fetch_ns;
-	}
-	cp += n;
-	buflen -= n;
-	hp->ancount = htons(ntohs(hp->ancount) + (u_int16_t)count);
-	if (fname != dname && qtype != T_CNAME && qtype != T_ANY) {
-		cname++;
-		goto try_again;
-	}
-	founddata = 1;
-
-	ns_debug(ns_log_default, 3,
-		 "resp: foundname=%d, count=%d, founddata=%d, cname=%d",
-		 foundname, count, founddata, cname);
-
-	if (count > 1 && qtype == T_A)
-		sort_response(answers, cp, count, &qp->q_from);
-
- fetch_ns:
-	if (hp->tc)
-		goto return_newmsg;
-
-	/*
- 	 * Look for name servers to refer to and fill in the authority
- 	 * section or record the address for forwarding the query
- 	 * (recursion desired).
- 	 */
-	free_nsp(nsp);
-	switch (findns(&np, qclass, nsp, &count, 0)) {
-	case NXDOMAIN:		/* shouldn't happen */
-		ns_debug(ns_log_default, 3, "req: leaving (%s, rcode %d)",
-			 dname, hp->rcode);
-		if (!foundname)
-			hp->rcode = NXDOMAIN;
-		if (qclass != C_ANY) {
-			hp->aa = 1;
-			if (np && (!foundname || !founddata)) {
-				n = doaddauth(hp, cp, buflen, np, nsp[0]);
-				cp += n;
-				buflen -= n;
-			}
-		}
-		goto return_newmsg;
-
-	case SERVFAIL:
-		goto servfail;
-	}
-
-	if (founddata) {
-		hp = (HEADER *)newmsg;
-		n = add_data(np, nsp, cp, buflen, &count);
-		if (n < 0) {
-			hp->tc = 1;
-			n = (-n);
-		}
-		cp += n;
-		buflen -= n;
-		hp->nscount = htons((u_int16_t)count + ntohs(hp->nscount));
-		goto return_newmsg;
-	}
-
-	/*
-	 *  If we get here, we don't have the answer yet and are about
-	 *  to iterate to try and get it.  First, infinite loop avoidance.
-	 */
-	if (qp->q_nqueries++ > MAXQUERIES) {
-		ns_debug(ns_log_default, 1,
-			 "resp: MAXQUERIES exceeded (%s %s %s)",
-			 dname, p_class(qclass), p_type(qtype));
-		ns_info(ns_log_default,
-		   "MAXQUERIES exceeded, possible data loop in resolving (%s)",
-			dname);
-		goto servfail;
-	}
-
-	/* Reset the query control structure */
-
-	ns_freeqns(qp, "ns_resp");
-	qp->q_naddr = 0;
-	qp->q_curaddr = 0;
-	nsfwdadd(qp, NS_ZFWDTAB(qp->q_fzone));
-
-	if (qp->q_domain != NULL)
-		freestr(qp->q_domain);
-	getname(np, tmpdomain, sizeof tmpdomain);
-	qp->q_domain = savestr(tmpdomain, 1);
-
-	if (NS_ZOPTION_P(qp->q_fzone, OPTION_FORWARD_ONLY))
-		n = 0;
-	else if ((n = nslookup(nsp, qp, dname, "ns_resp")) <= 0) {
-		if (n < 0) {
-			if (n == -1)
-				ns_debug(ns_log_default, 3,
-					 "resp: nslookup reports danger");
-			if (cname) /* a remote CNAME that does not have data */
-				goto return_newmsg;
-			goto servfail;
-		} else {
-			ns_debug(ns_log_default, 3,
-				 "resp: no addrs found for NS's");
-			/*
-			 * Timeout while sysquery looks up the NS addresses.
-			 *
-			 * Hopefully we'll have them when the client asks
-			 * again.
-			 *
-			 * too bad we can't just wait for the sysquery
-			 * response to restart this query (it's too hard).
-			 *
-			 * We could try to crawl back up the tree looking
-			 * for reachable servers, but we may have just
-			 * gotten delegated down here by a response with
-			 * no A RRs for the servers.  If we blindly tried
-			 * this strategy, we bang on the same server forever.
-			 */
-			goto timeout;
-		}
-	}
-	for (n = 0; (u_int)n < qp->q_naddr; n++)
-		qp->q_addr[n].stime.tv_sec = 0;
-	qp->q_addr[0].stime = tt;
-	if (cname) {
-	 	if (qp->q_cname++ == MAXCNAMES) {
-			ns_debug(ns_log_default, 3,
-				 "resp: leaving, MAXCNAMES exceeded");
-			goto servfail;
-	 	}
-		ns_debug(ns_log_default, 1, "q_cname = %d", qp->q_cname);
-		ns_debug(ns_log_default, 3,
-			 "resp: building recursive query; nslookup");
-		if (qp->q_cmsg == NULL) {
-			qp->q_cmsg = qp->q_msg;
-			qp->q_cmsglen = qp->q_msglen;
-			qp->q_cmsgsize = qp->q_msgsize;
-		} else if (qp->q_msg != NULL)
-			memput(qp->q_msg, qp->q_msgsize);
-		qp->q_msg = (u_char *)memget(PACKETSZ);
-		if (qp->q_msg == NULL) {
-			ns_notice(ns_log_default, "resp: memget error");
-			goto servfail;
-		}
-		qp->q_msgsize = PACKETSZ;
-		n = res_nmkquery(&res, QUERY, dname, qclass, qtype,
-				 NULL, 0, NULL, qp->q_msg, PACKETSZ);
-		if (n < 0) {
-			ns_info(ns_log_default, "resp: res_mkquery(%s) failed",
-				dname);
-			goto servfail;
-		}
-		if (qp->q_name != NULL)
-			freestr(qp->q_name);
-		qp->q_name = savestr(dname, 1);
-		qp->q_msglen = n;
-		hp = (HEADER *) qp->q_msg;
-		hp->rd = 0;
-	} else
-		hp = (HEADER *) qp->q_msg;
-	hp->id = qp->q_nsid = htons(nsid_next());
-	hp->rd = (qp->q_addr[0].forwarder ? 1 : 0);
-	unsched(qp);
-	schedretry(qp, retrytime(qp));
-	nsa = Q_NEXTADDR(qp, 0);
-	if (ns_wouldlog(ns_log_default,1)) {
-	    ns_debug(ns_log_default, 1,
-		     "resp: forw -> %s ds=%d nsid=%d id=%d %dms",
-		     sin_ntoa(*nsa), ds,
-		     ntohs(qp->q_nsid), ntohs(qp->q_id),
-		     (qp->q_addr[0].nsdata != NULL)
-			    ? qp->q_addr[0].nsdata->d_nstime
-			    : -1);
-	}
-#ifdef DEBUG
-	if (debug >= 10)
-		res_pquery(&res, qp->q_msg, qp->q_msglen,
-			   log_get_stream(packet_channel));
-#endif
-	key = tsig_key_from_addr(nsa->sin_addr);
-	if (key != NULL) {
-		smsgsize = qp->q_msglen + TSIG_BUF_SIZE;
-		smsg = memget(smsgsize);
-		smsglen = qp->q_msglen;
-		siglen = sizeof(sig);
-		memcpy(smsg, qp->q_msg, qp->q_msglen);
-		n = ns_sign(smsg, &smsglen, smsgsize, NOERROR, key, NULL, 0,
-			    sig, &siglen, 0);
-		if (n == 0) {
-			oldqbuf = qp->q_msg;
-			oldqlen = qp->q_msglen;
-			qp->q_msglen = smsglen;
-			qp->q_msg = smsg;
-			has_tsig = 1;
-			qp->q_nstsig = new_tsig(key, sig, siglen);
-		}
-		else {
-			has_tsig = 0;
-			free_tsig(qp->q_nstsig);
-			qp->q_nstsig = NULL;
-			INSIST(0);
-		}
-	}
-	else {
-		has_tsig = 0;
-		free_tsig(qp->q_nstsig);
-		qp->q_nstsig = NULL;
-	}
-
-	if (qp->q_flags & Q_USEVC) {
-		if (tcp_send(qp) != NOERROR) {
-			if (!haveComplained(ina_ulong(nsa->sin_addr),
-					    (u_long)tcpsendStr))
-				ns_info(ns_log_default,
-					"ns_forw: tcp_send(%s) failed: %s",
-					sin_ntoa(*nsa), strerror(errno));
-		}
-	} else if (sendto(ds, (char*)qp->q_msg, qp->q_msglen, 0,
-		   (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0)
-	{
-		sendto_errno = errno;
-		if (!haveComplained(ina_ulong(nsa->sin_addr),
-				    (u_long)sendtoStr))
-			ns_info(ns_log_default, "ns_resp: sendto(%s): %s",
-				sin_ntoa(*nsa), strerror(errno));
-		nameserIncr(nsa->sin_addr, nssSendtoErr);
-	}
-	if (has_tsig == 1) {
-		memput(qp->q_msg, smsgsize);
-		qp->q_msg = oldqbuf;
-		qp->q_msglen = oldqlen;
-	}
-	hp->rd = 0;	/* leave set to 0 for dup detection */
-	nameserIncr(nsa->sin_addr, nssSentFwdR);
-	nameserIncr(qp->q_from.sin_addr, nssRcvdFwdR);
-	ns_debug(ns_log_default, 3, "resp: Query sent.");
-	free_nsp(nsp);
-	switch (sendto_errno) {
-	case ENETDOWN:
-	case ENETUNREACH:
-	case EHOSTDOWN:
-	case EHOSTUNREACH:
-		unsched(qp);
-		schedretry(qp, (time_t) 0);
-	}
-	return;
-
- formerr:
-	if (!haveComplained(ina_ulong(from.sin_addr), (u_long)formerrmsg))
-		ns_info(ns_log_resp_checks, "Malformed response from %s (%s)",
-			sin_ntoa(from), formerrmsg);
-	fast_retry(qp, from);
-	free_nsp(nsp);
-	return;
-
- return_msg:
-	nameserIncr(from.sin_addr, nssRcvdFwdR);
-	nameserIncr(qp->q_from.sin_addr, nssSentFwdR);
-	nameserIncr(qp->q_from.sin_addr, nssSentAns);
-	if (!hp->aa)
-		nameserIncr(qp->q_from.sin_addr, nssSentNaAns);
-	if (hp->rcode == NXDOMAIN)
-		nameserIncr(qp->q_from.sin_addr, nssSentNXD);
-	/* The "standard" return code */
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-	(void) send_msg(msg, msglen, qp);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-
- return_newmsg:
-	nameserIncr(qp->q_from.sin_addr, nssSentAns);
-
-	if (!hp->aa)
-		nameserIncr(qp->q_from.sin_addr, nssSentNaAns);
-	if (hp->rcode == NXDOMAIN) 
-		nameserIncr(qp->q_from.sin_addr, nssSentNXD);
-	n = doaddinfo(hp, cp, buflen);
-	cp += n;
-	buflen -= n;
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-	(void) send_msg(newmsg, cp - newmsg, qp);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-
- refused:
-	hp = (HEADER *)(qp->q_cmsglen ? qp->q_cmsg : qp->q_msg);
-	hp->rcode = REFUSED;
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-	(void) send_msg((u_char *)hp,
-			(qp->q_cmsglen ? qp->q_cmsglen : qp->q_msglen),
-			qp);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-	
- servfail:
-	nameserIncr(qp->q_from.sin_addr, nssSentFail);
-	hp = (HEADER *)(qp->q_cmsglen ? qp->q_cmsg : qp->q_msg);
-	hp->rcode = SERVFAIL;
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NS_OPTION_P(OPTION_NORECURSE) == 0);
-	(void) send_msg((u_char *)hp,
-			(qp->q_cmsglen ? qp->q_cmsglen : qp->q_msglen),
-			qp);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-
- timeout:
-	if (qp->q_stream)
-		sq_remove(qp->q_stream);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-}
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			hp->rcode = FORMERR; \
-			return (-1); \
-		} \
-	} while (0)
-
-static int
-rrextract(u_char *msg, int msglen, u_char *rrp, struct databuf **dpp,
-	  char *dname, int namelen, struct sockaddr_in from, char **tnamep)
-{
-	u_char *cp, *eom, *rdatap;
-	u_int class, type, dlen;
-	int n, n1, n2;
-	u_int32_t ttl;
-	u_char *cp1, data[MAXDATA*2];
-	HEADER *hp = (HEADER *)msg;
-	enum context context;
-
-	if (tnamep != NULL)
-		*tnamep = NULL;
-
-	*dpp = NULL;
-	cp = rrp;
-	eom = msg + msglen;
-	if ((n = dn_expand(msg, eom, cp, dname, namelen)) < 0) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	cp += n;
-	BOUNDS_CHECK(cp, 2*INT16SZ + INT32SZ + INT16SZ);
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	if (class > CLASS_MAX) {
-		ns_debug(ns_log_default, 3, "bad class in rrextract");
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	GETLONG(ttl, cp);
-	if (ttl > MAXIMUM_TTL) {
-		ns_debug(ns_log_default, 5, "%s: converted TTL > %u to 0",
-			 dname, MAXIMUM_TTL);
-		ttl = 0;
-	}
-	GETSHORT(dlen, cp);
-	BOUNDS_CHECK(cp, dlen);
-	rdatap = cp;
-	if (!ns_nameok(NULL, dname, class, NULL, response_trans,
-		       ns_ownercontext(type, response_trans),
-		       dname, from.sin_addr)) {
-		hp->rcode = REFUSED;
-		return (-1);
-	}
-	ns_debug(ns_log_default, 3,
-		 "rrextract: dname %s type %d class %d ttl %d",
-		 dname, type, class, ttl);
-	/*
-	 * Convert the resource record data into the internal
-	 * database format.
-	 *
-	 * On entry to the switch:
-	 *   CP points to the RDATA section of the wire-format RR.
-	 *   DLEN is its length.
-	 *   The memory area at DATA is available for processing.
-	 * 
-	 * On exit from the switch:
-	 *   CP has been incremented past the RR.
-	 *   CP1 points to the RDATA section of the database-format RR.
-	 *   N contains the length of the RDATA section of the dbase-format RR.
-	 *
-	 * The new data at CP1 for length N will be copied into the database,
-	 * so it need not be in any particular storage location.
-	 */
-	switch (type) {
-	case T_A:
-		if (dlen != INT32SZ) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		/*FALLTHROUGH*/
-	case T_WKS:
-	case T_HINFO:
-	case T_TXT:
-	case T_X25:
-	case T_ISDN:
-	case T_NSAP:
-	case T_AAAA:
-	case T_LOC:
-	case T_KEY:
-	case ns_t_cert:
-		cp1 = cp;
-		n = dlen;
-		cp += n;
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)data, class, NULL, response_trans,
-			       type == T_PTR ?ns_ptrcontext(dname) :domain_ctx,
-			       dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = data;
-		n = strlen((char *)data) + 1;
-		if (tnamep != NULL && (type == T_NS || type == T_MB))
-			*tnamep = savestr((char *)cp1, 1);
-		break;
-
-	case T_SOA:
-		context = hostname_ctx;
-		goto soa_rp_minfo;
-	case T_RP:
-	case T_MINFO:
-		context = mailname_ctx;
-		/* FALLTHROUGH */
-	soa_rp_minfo:
-		n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)data, class, NULL, response_trans,
-			       context, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		/*
-		 * The next use of 'cp' is dn_expand(), so we don't have
-		 * to BOUNDS_CHECK() here.
-		 */
-		cp1 = data + (n = strlen((char *)data) + 1);
-		n1 = sizeof(data) - n;
-		if (type == T_SOA)
-			n1 -= 5 * INT32SZ;
-		n = dn_expand(msg, eom, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (type == T_RP)
-			context = domain_ctx;
-		else
-			context = mailname_ctx;
-		if (!ns_nameok(NULL, (char *)cp1, class, NULL, response_trans,
-			       context, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *)cp1) + 1;
-		if (type == T_SOA) {
-			n = 5 * INT32SZ;
-			BOUNDS_CHECK(cp, n);
-			memcpy(cp1, cp, n);
-			cp += n;
-			cp1 += n;
-		}
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_NAPTR:
-		/* Grab weight and port. */
-		BOUNDS_CHECK(cp, INT16SZ*2);
-		memcpy(data, cp, INT16SZ*2);
-		cp1 = data + INT16SZ*2;
-		cp += INT16SZ*2;
-
-		/* Flags */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		memcpy(cp1, cp, n);
-		cp += n; cp1 += n;
-
-		/* Service */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		memcpy(cp1, cp, n);
-		cp += n; cp1 += n;
-
-		/* Regexp */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		memcpy(cp1, cp, n);
-		cp += n; cp1 += n;
-
-		/* Replacement */
-		n = dn_expand(msg, eom, cp, (char *)cp1,
-			      sizeof data - (cp1 - data));
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)cp1, class, NULL, response_trans,
-			       hostname_ctx, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		memcpy(data, cp, INT16SZ);
-		cp1 = data + INT16SZ;
-		cp += INT16SZ;
-
-		if (type == T_SRV) {
-			/* Grab weight and port. */
-			BOUNDS_CHECK(cp, INT16SZ*2);
-			memcpy(cp1, cp, INT16SZ*2);
-			cp1 += INT16SZ*2;
-			cp += INT16SZ*2;
-		}
-
-		/* get name */
-		n = dn_expand(msg, eom, cp, (char *)cp1,
-			      sizeof data - (cp1 - data));
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)cp1, class, NULL, response_trans,
-			       hostname_ctx, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-
-		if (tnamep != NULL)
-			*tnamep = savestr((char *)cp1, 1);
-
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_PX:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		memcpy(data, cp, INT16SZ);
-		cp1 = data + INT16SZ;
-		cp += INT16SZ;
-
-		/* get MAP822 name */
-		n = dn_expand(msg, eom, cp, (char *)cp1,
-			      sizeof data - INT16SZ);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)cp1, class, NULL, response_trans,
-			       domain_ctx, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		/*
-		 * The next use of 'cp' is dn_expand(), so we don't have
-		 * to BOUNDS_CHECK() here.
-		 */
-		cp1 += (n = strlen((char *)cp1) + 1);
-		n1 = sizeof(data) - n;
-		n = dn_expand(msg, eom, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)cp1, class, NULL, response_trans,
-			       domain_ctx, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *)cp1) + 1;
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_SIG: {
-		u_long origTTL, exptime, signtime, timetilexp, now;
-		u_int8_t alg;
-
-		/* Check signature time, expiration, and adjust TTL.  */
-		/* This code is similar to that in db_load.c.  */
-
-		/* Skip coveredType, save alg, skip labels */
-		BOUNDS_CHECK(cp, INT16SZ + 1 + 1 + 3*INT32SZ);
-		cp1 = cp + INT16SZ;
-		alg = *cp1++;
-		cp1++;
-		GETLONG(origTTL, cp1);
-		GETLONG(exptime, cp1);
-		GETLONG(signtime, cp1);
-		now = time(NULL);	/* Get current time in GMT/UTC */
-
-		/* Don't let bogus name servers increase the signed TTL */
-		if (ttl > origTTL) {
-			ns_debug(ns_log_default, 3,
-				 "shrinking SIG TTL from %d to origTTL %d",
-				 ttl, origTTL);
-			ttl = origTTL;
-		}
-
-		/* Don't let bogus signers "sign" in the future.  */
-		if (signtime > now) {
-			ns_debug(ns_log_default, 3,
-			  "ignoring SIG: signature date %s is in the future",
-				 p_secstodate (signtime));
-			return ((cp - rrp) + dlen);
-		}
-		
-		/* Ignore received SIG RR's that are already expired.  */
-		if (exptime <= now) {
-			ns_debug(ns_log_default, 3,
-				"ignoring SIG: expiration %s is in the past",
-				 p_secstodate (exptime));
-			return ((cp - rrp) + dlen);
-		}
-
-		/* Lop off the TTL at the expiration time.  */
-		timetilexp = exptime - now;
-		if (timetilexp < ttl) {
-			ns_debug(ns_log_default, 3,
-				 "shrinking expiring %s SIG TTL from %d to %d",
-				 p_secstodate (exptime), ttl, timetilexp);
-			ttl = timetilexp;
-		}
-
-		/* The following code is copied from named-xfer.c.  */
-		cp1 = (u_char *)data;
-
-		/* first just copy over the type_covered, algorithm, */
-		/* labels, orig ttl, two timestamps, and the footprint */
-		BOUNDS_CHECK(cp, 18);
-		memcpy(cp1, cp, 18);
-		cp  += 18;
-		cp1 += 18;
-
-		/* then the signer's name */
-		n = dn_expand(msg, eom, cp, (char *)cp1, (sizeof data) - 18);
-		if (n < 0 || n + NS_SIG_SIGNER > dlen) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char*)cp1)+1;
-
-		/* finally, we copy over the variable-length signature.
-		   Its size is the total data length, minus what we copied. */
-		n = dlen - (NS_SIG_SIGNER + n);
-
-		if (n > (sizeof data) - (cp1 - (u_char *)data)) {
-			hp->rcode = FORMERR;
-			return (-1);  /* out of room! */
-		}
-
-		switch (alg) {
-		    case NS_ALG_MD5RSA:
-			if (n < NS_MD5RSA_MIN_SIZE || n > NS_MD5RSA_MAX_SIZE)
-				hp->rcode = FORMERR;
-			break;
-
-		    case NS_ALG_DSA:
-			if (n != NS_DSA_SIG_SIZE)
-				hp->rcode = FORMERR;
-			break;
-
-		    default:
-			break;
-		}
-
-		if (hp->rcode == FORMERR)
-			return (-1);
-
-		memcpy(cp1, cp, n);
-		cp += n;
-		cp1 += n;
-		
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-	    }
-
-	case T_NXT:
-		n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-		/*
-		 * By testing if n >= dlen, we are requiring that the type
-		 * bitmap be at least one octet.  This is reasonable
-		 * because we always have to look at the 0 bit to see if
-		 * this is a "different format" NXT or not.
-		 */
-		if (n < 0 || n >= dlen) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok(NULL, (char *)data, class, NULL, response_trans,
-			       domain_ctx, dname, from.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		n1 = strlen((char *)data) + 1;
-		cp1 = data + n1;
-		/*
-		 * We don't need to BOUNDS_CHECK() cp here because we've
-		 * previously checked that 'dlen' bytes are in bounds, and
-		 * we know that n < dlen.
-		 */
-		n2 = dlen - n;
-		/*
-		 * The first bit of the first octet determines the format
-		 * of the NXT record.  A format for types >= 128 has not
-		 * yet been defined, so if bit zero is set, we just copy
-		 * what's there because we don't understand it.
-		 */
-		if ((*cp & 0x80) == 0) {
-			/*
-			 * Bit zero is not set; this is an ordinary NXT
-			 * record.  The bitmap must be at least 4 octets
-			 * because the NXT bit should be set.  It should be
-			 * less than or equal to 16 octets because this NXT
-			 * format is only defined for types < 128.
-			 */
-			if (n2 < 4 || n2 > 16) {
-				hp->rcode = FORMERR;
-				return (-1);
-			}
-		}
-		if (n2 > sizeof data - n1) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		memcpy(cp1, cp, n2);
-		cp += n2;
-		cp1 += n2;
-
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-	
-	default:
-		ns_debug(ns_log_default, 3, "unknown type %d", type);
-		return ((cp - rrp) + dlen);
-	}
-
-	if (cp > eom) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	if ((u_int)(cp - rdatap) != dlen) {
-		ns_debug(ns_log_default, 3,
-		     "encoded rdata length is %u, but actual length was %u",
-			 dlen, (u_int)(cp - rdatap));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	if (n > MAXDATA) {
-		ns_debug(ns_log_default, 1,
-			 "update type %d: %d bytes is too much data",
-			 type, n);
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-	ttl += tt.tv_sec;
-	*dpp = savedata(class, type, ttl, cp1, n);
-	return (cp - rrp);
-}
-
-int
-send_msg(u_char *msg, int msglen, struct qinfo *qp) {
-	HEADER *hp = (HEADER *) msg;
-	u_char *oldmsg;
-	int oldlen;
-	int msgsize;
-	int ret;
-
-	if (qp->q_flags & Q_SYSTEM)
-		return (1);
-	if (!qp->q_stream && (msglen > PACKETSZ))
-		msglen = trunc_adjust(msg, msglen, PACKETSZ);
-	if (ns_wouldlog(ns_log_default, 1)) {
-		ns_debug(ns_log_default, 1, "send_msg -> %s (%s %d) id=%d",
-			 sin_ntoa(qp->q_from), 
-			 qp->q_stream == NULL ? "UDP" : "TCP",
-			 qp->q_stream == NULL ? qp->q_dfd : qp->q_stream->s_rfd,
-			 ntohs(qp->q_id));
-	}
-#ifdef DEBUG
-	if (ns_wouldlog(ns_log_default, 4)) {
-		struct qinfo *tqp;
-
-		for (tqp = nsqhead; tqp != NULL; tqp = tqp->q_link) {
-			ns_debug(ns_log_default, 4,
-				 "qp %#lx q_id: %d  q_nsid: %d q_msglen: %d",
-				 (u_long)tqp, tqp->q_id,
-				 tqp->q_nsid, tqp->q_msglen);
-			ns_debug(ns_log_default, 4,
-				 "\tq_naddr: %d q_curaddr: %d",
-				 tqp->q_naddr, tqp->q_curaddr);
-			ns_debug(ns_log_default, 4,
-				 "\tq_next: %#lx q_link: %#lx",
-				 (u_long)qp->q_next, (u_long)qp->q_link);
-		}
-	}
-	if (debug >= 6)
-		res_pquery(&res, msg, msglen, log_get_stream(packet_channel));
-#endif /* DEBUG */
-
-	if (qp->q_tsig != NULL) {
-		u_char sig[TSIG_SIG_SIZE];
-		int siglen = sizeof(sig);
-
-		oldmsg = msg;
-		oldlen = msglen;
-
-		msgsize = msglen + TSIG_BUF_SIZE;
-		msg = memget(msgsize);
-		memcpy(msg, oldmsg, oldlen);
- 
-		ret = ns_sign(msg, &msglen, msgsize, NOERROR, qp->q_tsig->key,
-			      qp->q_tsig->sig, qp->q_tsig->siglen,
-			      sig, &siglen, 0);
-
-		if (ret != 0) {
-			INSIST(0);
-		}
-	}
-	
-	if (qp->q_stream == NULL) {
-		/*
-		 * Don't send FORMERR to these well known ports
-		 * (loop avoidance).
-		 */
-		switch (ntohs(qp->q_from.sin_port)) {
-		case 7: /* echo */
-		case 13: /* daytime */
-		case 19: /* chargen */
-		case 37: /* time */
-			if (hp->rcode == FORMERR)
-				return (-1);
-		default:
-			break;
-		}
-		if (sendto(qp->q_dfd, (char*)msg, msglen, 0,
-			   (struct sockaddr *)&qp->q_from,
-			   sizeof(qp->q_from)) < 0) {
-			if (!haveComplained(ina_ulong(qp->q_from.sin_addr),
-					    (u_long)sendtoStr))
-#if defined(SPURIOUS_ECONNREFUSED)
-                           if (errno != ECONNREFUSED)
-#endif
-				ns_info(ns_log_default,
-					"send_msg: sendto(%s): %s",
-					sin_ntoa(qp->q_from),
-					strerror(errno));
-			nameserIncr(qp->q_from.sin_addr, nssSendtoErr);
-			return (1);
-		}
-	} else
-		writestream(qp->q_stream, (u_char*)msg, msglen);
-
-	if (qp->q_tsig != NULL) 
-		memput(msg, oldlen + TSIG_BUF_SIZE);
-
-	return (0);
-}
-
-static int
-root_server_p(ns_class class) {
-	struct zoneinfo *zp = find_zone("", class);
-
-	return (zp != NULL &&
-		(zp->z_type == z_master || zp->z_type == z_slave));
-}
-
-void
-prime_cache(void) {
-	int root = root_server_p(ns_c_in);
-
-	ns_debug(ns_log_default, 1, "prime_cache: priming = %d, root = %d",
-		 priming, root);
-	if (!priming && !root) {
-		struct qinfo *qp = sysquery("", ns_c_in, ns_t_ns,
-					    NULL, 0, ns_port, ns_o_query);
-
-		if (qp != NULL) {
-			qp->q_flags |= (Q_SYSTEM | Q_PRIMING);
-			priming++;
-		}
-	}
-	needs_prime_cache = 0;
-}
-
-struct qinfo *
-sysquery(const char *dname, int class, int type,
-	 struct in_addr *nss, int nsc, u_int16_t port, int opcode)
-{
-	struct qinfo *qp, *oqp;
-	HEADER *hp;
-	char tmpdomain[MAXDNAME];
-	struct namebuf *np = NULL;
-	struct databuf *nsp[NSMAX];
-	struct hashbuf *htp1;
-	struct hashbuf *htp2;
-	struct hashbuf *htp3;
-	struct sockaddr_in *nsa;
-	const char *fname;
-	int n, count;
-	int sendto_errno = 0;
-	u_char *oldqbuf;
-	int oldqlen, has_tsig;
-	u_char *smsg;
-	int smsglen, smsgsize, siglen;
-	u_char sig[TSIG_SIG_SIZE];
-	DST_KEY *key;
-
-	nsp[0] = NULL;
-	ns_debug(ns_log_default, 3, "sysquery(%s, %d, %d, %#x, %d, %d)",
-		 dname, class, type, nss, nsc, ntohs(port));
-	qp = qnew(dname, class, type, (nss != NULL && nsc != 0) ? 0 : 1);
-
-	if (nss != NULL && nsc != 0)
-		np = NULL;
-	else if (!NS_ZOPTION_P(qp->q_fzone, OPTION_FORWARD_ONLY)) {
-		htp1 = hashtab;
-		htp2 = hashtab;
-		htp3 = fcachetab;
-		if (priming && dname[0] == '\0') {
-			np = NULL;
-		} else if (((np = nlookup(dname, &htp1, &fname, 0)) == NULL) &&
-			   ((np = nlookup("", &htp2, &fname, 0)) == NULL) &&
-			   ((np = nlookup("", &htp3, &fname, 0)) == NULL)) {
-			ns_info(ns_log_default,
-				"sysquery: nlookup error on %s?",
-				dname);
- err1:
-			ns_freeqry(qp);
-			return (NULL);
-		}
-
-		n = findns(&np, class, nsp, &count, 0);
-		switch (n) {
-		case NXDOMAIN:
-		case SERVFAIL:
-			ns_info(ns_log_default,
-				"sysquery: findns error (%s) on %s?",
-				n == NXDOMAIN ? "NXDOMAIN" : "SERVFAIL",
-				dname);
- err2:
-			free_nsp(nsp);
-			goto err1;
-		}
-	}
-
-	/* Build new qinfo struct. */
-	qp->q_cmsg = qp->q_msg = NULL;
-	qp->q_dfd = ds;
-	if (nss == NULL || nsc == 0)
-		nsfwdadd(qp, NS_ZFWDTAB(qp->q_fzone));
-	qp->q_expire = tt.tv_sec + RETRY_TIMEOUT*2;
-	qp->q_flags |= Q_SYSTEM;
-
-	getname(np, tmpdomain, sizeof tmpdomain);
-	qp->q_domain = savestr(tmpdomain, 1);
-
-	if ((qp->q_msg = (u_char *)memget(PACKETSZ)) == NULL) {
-		ns_notice(ns_log_default, "sysquery: memget failed");
-		goto err2;
-	}
-	qp->q_msgsize = PACKETSZ;
-	n = res_nmkquery(&res, opcode, dname, class,
-			 type, NULL, 0, NULL,
-			 qp->q_msg, PACKETSZ);
-	if (n < 0) {
-		ns_info(ns_log_default,
-			"sysquery: res_mkquery(%s) failed", dname);
-		goto err2;
-	}
-	qp->q_msglen = n;
-	hp = (HEADER *) qp->q_msg;
-	hp->id = qp->q_nsid = htons(nsid_next());
-	hp->rd = (qp->q_addr[qp->q_curaddr].forwarder ? 1 : 0);
-
-	/* First check for an already pending query for this data. */
-	for (oqp = nsqhead; oqp != NULL; oqp = oqp->q_link) {
-		if ((oqp != qp)
-		    && (oqp->q_msglen == qp->q_msglen)
-		    && memcmp(oqp->q_msg+2, qp->q_msg + 2,
-			      qp->q_msglen - 2) == 0
-		    ) {
-#ifdef BIND_NOTIFY
-			/* XXX - need fancier test to suppress duplicate
-			 *       NOTIFYs to the same server (compare nss?)
-			 */
-			if (opcode != NS_NOTIFY_OP)
-#endif /*BIND_NOTIFY*/
-			{
-			    ns_debug(ns_log_default, 3,
-				     "sysquery: duplicate");
-			    goto err2;
-			}
-		}
-	}
-
-	if (nss != NULL && nsc != 0) {
-		int i;
-		struct qserv *qs;
-
-		for (i = 0, qs = qp->q_addr; i < nsc; i++, qs++) {
-			qs->ns_addr.sin_family = AF_INET;
-			qs->ns_addr.sin_addr = nss[i];
-			qs->ns_addr.sin_port = port;
-			qs->ns = NULL;
-			qs->nsdata = NULL;
-			qs->stime = tt;
-			qs->forwarder = 0;
-			qs->nretry = 0;
-		}
-		qp->q_naddr = nsc;
-	} else if (!NS_ZOPTION_P(qp->q_fzone, OPTION_FORWARD_ONLY)) {
- fetch_a:
-		count = nslookup(nsp, qp, dname, "sysquery");
-		if (count <= 0) {
-			if (count < 0) {
-				if (n == -1)
-					ns_info(ns_log_default,
-				      "sysquery: nslookup reports danger (%s)",
-						dname);
-				goto err2;
-			} else if (np && NAME(*np)[0] == '\0') {
-				/*
-				 * It's not too serious if we don't have
-				 * the root server addresses if we have to
-				 * go through a forwarder anyway.  Don't
-				 * bother to log it, since prime_cache()
-				 * won't do anything about it as currently
-				 * implemented.
-				 *
-				 * XXX - should we skip setting
-				 *       needs_prime_cache as well?
-				 *
-				 * XXX - what happens when we implement
-				 *       selective forwarding?
-				 */
-				if (!NS_OPTION_P(OPTION_FORWARD_ONLY))
-					ns_warning(ns_log_default,
-				   "sysquery: no addrs found for root NS (%s)",
-						   dname);
-				if (class == C_IN && !priming)
-					needs_prime_cache = 1;
-				goto err2;
-			}
-			if (np) {
-				free_nsp(nsp);
-				nsp[0] = NULL;
-				np = np_parent(np);
-				n = findns(&np, class, nsp, &count, 0);
-				switch (n) {
-				case NXDOMAIN: /*FALLTHROUGH*/
-				case SERVFAIL:
-					ns_info(ns_log_default,
-					  "sysquery: findns error (%d) on %s?",
-						n, dname);
-					goto err2;
-				}
-				getname(np, tmpdomain, sizeof tmpdomain);
-				if (qp->q_domain != NULL)
-					freestr(qp->q_domain);
-				qp->q_domain = savestr(tmpdomain, 1);
-				goto fetch_a;
-			}
-			goto err2;
-		}
-	}
-
-	schedretry(qp, retrytime(qp));
-	qp->q_addr[0].stime = tt;	/* XXX - why not every? */
-	nsa = Q_NEXTADDR(qp, 0);
-
-	ns_debug(ns_log_default, 1,
-		 "sysquery: send -> %s dfd=%d nsid=%d id=%d retry=%ld",
-		 sin_ntoa(*nsa), qp->q_dfd, 
-		 ntohs(qp->q_nsid), ntohs(qp->q_id),
-		 (long)qp->q_time);
-#ifdef DEBUG
-	if (debug >= 10)
-		res_pquery(&res, qp->q_msg, qp->q_msglen,
-			   log_get_stream(packet_channel));
-#endif
-
-	key = tsig_key_from_addr(nsa->sin_addr);
-	if (key != NULL) {
-		smsgsize = qp->q_msglen + TSIG_BUF_SIZE;
-		smsg = memget(smsgsize);
-		smsglen = qp->q_msglen;
-		siglen = sizeof(sig);
-		memcpy(smsg, qp->q_msg, qp->q_msglen);
-		n = ns_sign(smsg, &smsglen, smsgsize, NOERROR, key, NULL, 0,
-			    sig, &siglen, 0);
-		if (n == 0) {
-			oldqbuf = qp->q_msg;
-			oldqlen = qp->q_msglen;
-			qp->q_msglen = smsglen;
-			qp->q_msg = smsg;
-			has_tsig = 1;
-			qp->q_nstsig = new_tsig(key, sig, siglen); /* BEW? */
-
-		}
-		else {
-			INSIST(0);
-			has_tsig = 0;
-			free_tsig(qp->q_nstsig);
-			qp->q_nstsig = NULL;
-		}
-	}
-	else {
-		has_tsig = 0;
-		free_tsig(qp->q_nstsig);
-		qp->q_nstsig = NULL;
-	}
-
-	if (sendto(qp->q_dfd, (char*)qp->q_msg, qp->q_msglen, 0,
-		   (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0) {
-		sendto_errno = errno;
-		if (!haveComplained(ina_ulong(nsa->sin_addr),
-				    (u_long)sendtoStr))
-			ns_info(ns_log_default, "sysquery: sendto(%s): %s",
-				sin_ntoa(*nsa), strerror(errno));
-		nameserIncr(nsa->sin_addr, nssSendtoErr);
-	}
-	if (has_tsig == 1) {
-		memput(qp->q_msg, smsgsize);
-		qp->q_msg = oldqbuf;
-		qp->q_msglen = oldqlen;
-	}
-
-	nameserIncr(nsa->sin_addr, nssSentSysQ);
-	free_nsp(nsp);
-	switch (sendto_errno) {
-	case ENETDOWN:
-	case ENETUNREACH:
-	case EHOSTDOWN:
-	case EHOSTUNREACH:
-		unsched(qp);
-		schedretry(qp, (time_t) 0);
-	}
-	return (qp);
-}
-
-/*
- * Check the list of root servers after receiving a response
- * to a query for the root servers.
- */
-static int
-check_root() {
-	struct databuf *dp, *pdp;
-	struct namebuf *np;
-	int count = 0;
-
-	priming = 0;
-	for (np = hashtab->h_tab[0]; np != NULL; np = np->n_next)
-		if (NAME(*np)[0] == '\0')
-			break;
-	if (np == NULL) {
-		ns_notice(ns_log_default, "check_root: Can't find root!");
-		return (0);
-	}
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next)
-		if (dp->d_type == T_NS)
-			count++;
-	ns_debug(ns_log_default, 1, "%d root servers", count);
-	if (count < server_options->minroots) {
-		ns_notice(ns_log_default,
-		"check_root: %d root servers after query to root server < min",
-			  count);
-		return (0);
-	}
-	pdp = NULL;
-	dp = np->n_data;
-	while (dp != NULL) {
-		if (dp->d_type == T_NS && dp->d_zone == DB_Z_CACHE &&
-		    dp->d_ttl < (u_int32_t)tt.tv_sec) {
-			ns_debug(ns_log_default, 1,
-				 "deleting old root server '%s'",
-				 dp->d_data);
-			dp = rm_datum(dp, np, pdp, NULL);
-			/* SHOULD DELETE FROM HINTS ALSO */
-			continue;
-		}
-		pdp = dp;
-		dp = dp->d_next;
-	}
-	if (check_ns())
-		return (1);
-	else {
-		priming = 1;
-		return (0);
-	}
-}
-
-/* 
- * Check the root to make sure that for each NS record we have a A RR
- */
-static int
-check_ns() {
-	struct databuf *dp, *tdp;
-	struct namebuf *np, *tnp;
-	struct hashbuf *htp;
-	char *dname;
-	int found_arr;
-	const char *fname;
-	time_t curtime;
-	int servers = 0, rrsets = 0;
-
-	ns_debug(ns_log_default, 2, "check_ns()");
-
-	curtime = (u_int32_t) tt.tv_sec;
-	for (np = hashtab->h_tab[0]; np != NULL; np = np->n_next) {
-		if (NAME(*np)[0] != '\0')
-			continue;
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			int cnames = 0;
-
-			if (dp->d_rcode)
-				continue;
-
-			if (dp->d_type != T_NS)
-				continue;
-
-			servers++;
-
-	        	/* look for A records */
-			dname = (caddr_t) dp->d_data;
-			htp = hashtab;
-			tnp = nlookup(dname, &htp, &fname, 0);
-			if (tnp == NULL || fname != dname) {
-				ns_debug(ns_log_default, 3,
-					 "check_ns: %s: not found %s %#lx",
-					 dname, fname, (u_long)tnp);
-				sysquery(dname, dp->d_class, T_A, NULL,
-					 0, ns_port, QUERY);
-				continue;
-			}
-			/* look for name server addresses */
-			found_arr = 0;
-			(void)delete_stale(tnp);
-			for (tdp = tnp->n_data;
-			     tdp != NULL;
-			     tdp = tdp->d_next) {
-				if (tdp->d_rcode)
-					continue;
-				if (tdp->d_type == T_CNAME)
-					cnames++;
-				if (tdp->d_type != T_A ||
-				    tdp->d_class != dp->d_class)
-					continue;
-				if ((tdp->d_zone == DB_Z_CACHE) &&
-				    (tdp->d_ttl < (u_int32_t)curtime)) {
-					ns_debug(ns_log_default, 3, 
-						 "check_ns: stale entry '%s'",
-						 NAME(*tnp));
-					found_arr = 0;
-					break;
-				}
-				found_arr++;
-			}
-			if (found_arr)
-				rrsets++;
-			else if (cnames > 0)
-				ns_info(ns_log_default,
-					"Root NS %s -> CNAME %s",
-					NAME(*np), NAME(*tnp));
-			else
-				sysquery(dname, dp->d_class, T_A, NULL,
-					 0, ns_port, QUERY);
-	        }
-	}
-
-	ns_debug(ns_log_default, 2, "check_ns: %d %d", servers, rrsets);
-	return ((servers <= 2)
-		? (rrsets == servers)
-		: ((rrsets * 2) >= servers)
-		);
-}
-
-/* int findns(npp, class, nsp, countp, flag)
- *	Find NS's or an SOA
- * npp, class:
- *	dname whose most enclosing NS is wanted
- * nsp, countp:
- *	result array and count; array will also be NULL terminated
- * flag:
- *	boolean: we're being called from ADDAUTH, bypass authority checks
- * return value:
- *	NXDOMAIN: we are authoritative for this {dname,class}
- *		  *countp is bogus, but nsp[] has a single SOA returned in it.
- *	SERVFAIL: we are auth but zone isn't loaded; or, no root servers found
- *		  *countp and nsp[] are bogus.
- *	OK: we are not authoritative, and here are the NS records we found.
- *		  *countp and nsp[] return NS records of interest.
- */
-int
-findns(struct namebuf **npp, int class,
-       struct databuf **nsp, int *countp, int flag)
-{
-	struct namebuf *np = *npp;
-	struct databuf *dp;
-	struct	databuf **nspp;
-	struct hashbuf *htp;
-	
-	nsp[0] = NULL;
-
-	if (priming && (np == NULL || NAME(*np)[0] == '\0'))
-		htp = fcachetab;
-	else
-		htp = hashtab;
-
- try_again:
-	if (htp == fcachetab && class == C_IN && !priming)
-		/*
-		 * XXX - do we want to set needs_prime_cache if
-		 *       OPTION_FORWARD_ONLY?
-		 */
-		needs_prime_cache = 1;
-	if (np == NULL) {
-		/* find the root */
-		for (np = htp->h_tab[0]; np != NULL; np = np->n_next)
-			if (NAME(*np)[0] == '\0')
-				break;
-	}
-	while (np != NULL) {
-		ns_debug(ns_log_default, 5, "findns: np %#x '%s'", np,
-			 NAME(*np));
-		/* Look first for SOA records. */
-#ifdef ADDAUTH
-		if (!flag)
-#endif
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (dp->d_zone != DB_Z_CACHE &&
-			    ((zones[dp->d_zone].z_type == Z_PRIMARY) ||
-			     (zones[dp->d_zone].z_type == Z_SECONDARY)) &&
-			    match(dp, class, T_SOA) && dp->d_type == T_SOA) {
-				ns_debug(ns_log_default, 3,
-					 "findns: SOA found");
-				if (zones[dp->d_zone].z_flags & Z_AUTH) {
-					*npp = np;
-					nsp[0] = dp;
-					nsp[1] = NULL;
-					DRCNTINC(dp);
-					return (NXDOMAIN);
-				} else {
-					/* XXX:	zone isn't loaded but we're
-					 *	primary or secondary for it.
-					 *	should we fwd this?
-					 */
-					return (SERVFAIL);
-				}
-			}
-		}
-
-		/* If no SOA records, look for NS records. */
-		nspp = &nsp[0];
-		*nspp = NULL;
-		(void)delete_stale(np);
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!match(dp, class, T_NS))
-				continue;
-			if (dp->d_rcode)
-				continue;
-			/*
-			 * Don't use records that may become invalid to
-			 * reference later when we do the rtt computation.
-			 * Never delete our safety-belt information!
-			 *
-			 * XXX:	this is horribly bogus.
-			 */
-			if ((dp->d_zone == DB_Z_CACHE) &&
-			    (dp->d_ttl < (u_int32_t)tt.tv_sec) &&
-			    !(dp->d_flags & DB_F_HINT)) {
-				ns_debug(ns_log_default, 1,
-					 "findns: stale entry '%s'",
-					 NAME(*np));
-				/*
-				 * We may have already added NS databufs
-				 * and are going to throw them away. Fix
-				 * reference counts. We don't need to free
-				 * them here as we just got them from the
-				 * cache.
-				 */
-				while (nspp > &nsp[0]) {
-					nspp--;
-					DRCNTDEC(*nspp);
-				}
-				nsp[0] = NULL;
-				goto try_parent;
-			}
-			if (nspp < &nsp[NSMAX-1]) {
-				*nspp++ = dp;
-				DRCNTINC(dp);
-			}
-		}
-
-		*countp = nspp - nsp;
-		if (*countp > 0) {
-			ns_debug(ns_log_default, 3,
-				 "findns: %d NS's added for '%s'",
-				 *countp, NAME(*np));
-			*nspp = NULL;
-			*npp = np;
-			return (OK);	/* Success, got some NS's */
-		}
- try_parent:
-		np = np_parent(np);
-	}
-	if (htp == hashtab) {
-		htp = fcachetab;
-		goto try_again;
-	}
-	ns_debug(ns_log_default, 1,
-		 "findns: No root nameservers for class %s?", p_class(class));
-	if ((unsigned)class < MAXCLASS && norootlogged[class] == 0) {
-		norootlogged[class] = 1;
-		ns_info(ns_log_default, "No root nameservers for class %s",
-			p_class(class));
-	}
-	return (SERVFAIL);
-}
-
-
-/*
- * Extract RR's from the given node that match class and type.
- * Return number of bytes added to response.
- * If no matching data is found, then 0 is returned.
- */
-int
-finddata(struct namebuf *np, int class, int type,
-	 HEADER *hp, char **dnamep, int *lenp, int *countp)
-{
-	struct databuf *dp;
-	char *cp;
-	int buflen, n, count = 0;
-	char *new_dnamep = NULL;
- 	int defer = 0, found_count = 0, choice, i;
- 	struct databuf **found = NULL;
-	struct databuf **tmpfound = NULL;
-	int foundcname;
-	int stalecount;
-	int ret = 0;
-
-	stalecount = delete_stale(np);
-
-	/* We don't want to return cached SIG records when asked for SIGs,
-	 * since we may have an incomplete set.
-	 */
-	if (type == T_SIG && findMyZone(np, class) == DB_Z_CACHE)
-		return(0);
-
-	if (type != T_ANY && type != T_PTR && type != T_NXT) {
-		found = memget((stalecount + 1) * sizeof *found);
-		tmpfound = memget((stalecount + 1) * sizeof *tmpfound);
-		if (found == NULL || tmpfound == NULL)
-			ns_panic(ns_log_default, 1, "finddata: out of memory");
-		defer = 1;
-	}
-
-	buflen = *lenp;
-	
-#ifdef DEBUG
-	if (buflen > PACKETSZ)
-		ns_debug(ns_log_default, 1, "finddata(): buflen=%d", buflen);
-#endif
-	cp = ((char *)hp) + *countp;
-	foundcname = 0;
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!wanted(dp, class, type)) {
-			if (type == T_CNAME && class == dp->d_class) {
-				/* any data means no CNAME exists */
-				if (dp->d_type != T_NXT &&
-				    dp->d_type != T_KEY &&
-				    dp->d_type != T_SIG) {
-					ret = 0;
-					goto done;
-				}
-			}
-			continue;
-		}
-		if (dp->d_cred == DB_C_ADDITIONAL) {
-#ifdef NOADDITIONAL
-			continue;
-#else
-			/* we want to expire additional data very
-			 * quickly.  current strategy is to cut 5%
-			 * off each time it is accessed.  this makes
-			 * stale(dp) true earlier when this datum is
-			 * used often.
-			 */
-			dp->d_ttl = tt.tv_sec
-					+
-				0.95 * (int) (dp->d_ttl - tt.tv_sec);
-#endif
-		}
-		/* -ve $ing stuff, anant@isi.edu
-		 * if we have a -ve $ed record, change the rcode on the
-		 * header to reflect that
-		 */
-		if (dp->d_rcode == NOERROR_NODATA) {
-			if (count != 0) {
-				/*
-				 * This should not happen, yet it does...
-				 */
-				ns_info(ns_log_default,
-				   "NODATA & data for \"%s\" type %d class %d",
-					*dnamep, type, class);
-				continue;
-			}
-			if (type == T_ANY)
-				continue;
-			hp->rcode = NOERROR_NODATA;
-			if (dp->d_size == 0) { /* !RETURNSOA */
-				ret = 1;
-				goto done;
-			}
-		}
-		if (dp->d_rcode == NXDOMAIN) {
-			if (count != 0) {
-				/*
-				 * This should not happen, yet it might...
-				 */
-				ns_info(ns_log_default,
-			  "NXDOMAIN & data for \"%s\" type %d class %d",
-					*dnamep, type, class);
-				continue;
-			}
-			hp->rcode = NXDOMAIN;
-			if (dp->d_size == 0) { /* !RETURNSOA */	
-				ret = 1;
-				goto done;
-			}
-		}
-
-		/* Don't put anything but key or sig RR's in response to
-			     requests for key or sig */
-		if (((type == T_SIG) || (type == T_KEY)) &&
-		    (!((dp->d_type == T_SIG) || (dp->d_type == T_KEY))) )
-			continue;
-
-		if (!defer) {
-			if (foundcname != 0 && dp->d_type == T_CNAME)
-				continue;
-
-			if ((n = make_rr(*dnamep, dp, (u_char *)cp, buflen, 1,
-					 dnptrs, dnptrs_end, 0)) < 0) {
-				hp->tc = 1;
-				ret = *lenp - buflen;
-				goto done;
-			}
-			if (dp->d_secure != DB_S_SECURE)
-				hp->ad = 0;
-			cp += n;
-			buflen -= n;
-			count++;
-		
-			if (dp->d_type == T_CNAME) {
-				foundcname = 1;
-#define FOLLOWCNAME(type) \
-	(type != T_KEY) && (type != T_SIG) && (type != T_NXT) && (type != T_ANY)
-			/* don't alias if querying for key, sig, nxt, or any */
-
-				if (FOLLOWCNAME(type))
-					new_dnamep = (char *)dp->d_data;
-			}
-		} else {
-			if (dp->d_type == T_CNAME)
-				foundcname = 1;
-			found[found_count++] = dp;
-		}
-	}
-
-	if (found_count == 0 && count == 0) {
-		ret = 0;
-		goto done;
-	}
-
-	/*
-	 * If the query type was SIG or ANY we will have returned the SIG
-	 * records already.
-	 */
-	if (type != T_SIG && type != T_ANY) {
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!wantedsig(dp, class, type))
-				continue;
-			if (dp->d_cred == DB_C_ADDITIONAL) {
-#ifdef NOADDITIONAL
-				continue;
-#else
-				/* we want to expire additional data very
-				 * quickly.  current strategy is to cut 5%
-				 * off each time it is accessed.  this makes
-				 * stale(dp) true earlier when this datum is
-				 * used often.
-				 */
-				dp->d_ttl = tt.tv_sec
-						+
-					0.95 * (int) (dp->d_ttl - tt.tv_sec);
-#endif
-			}
-			if (!defer) {
-				if ((n = make_rr(*dnamep, dp, (u_char *)cp,
-						 buflen, 1, dnptrs, dnptrs_end,
-						 0)) < 0) {
-					hp->tc = 1;
-					ret = *lenp - buflen;
-					goto done;
-				}
-				if (dp->d_secure != DB_S_SECURE)
-					hp->ad = 0;
-				cp += n;
-				buflen -= n;
-				count++;
-			} else
-				found[found_count++] = dp;
-		}
-	}
-
-	if (defer && found_count > 0) {
-		int first_sig;
-		int non_sig_count;
-		int sig_count;		/* number of SIG records in found */
-		int idx, jdx;
-		enum ordering order;
-
-		order = match_order(np, class, foundcname ? T_CNAME : type);
-
-		/* shuffle the SIG records down to the bottom of the array
-		 * as we need to make sure they get packed last, no matter
-		 * what the ordering is. We're sure to maintain the
-		 * original ordering within the two sets of records (so
-		 * that fixed_order can work).
-		 * First we pack the non-SIG records into the temp array.
-		 */
-		for (idx = jdx = 0 ; idx < found_count ; idx++) {
-			if (found[idx]->d_type != T_SIG) {
-				tmpfound[jdx++] = found[idx];
-			}
-		}
-		non_sig_count = jdx;
-		sig_count = found_count - jdx;
-		first_sig = jdx ;
-		
-		/* now shift the SIG records down to the end of the array
-		 *  and copy in the non-SIG records
-		 */
-		for (i = idx = found_count - 1 ; idx >= 0 ; idx--) {
-			if (i < non_sig_count) {
-				found[i] = tmpfound[i];
-				i--;
-			} else if (found[idx]->d_type == T_SIG) {
-				found[i--] = found[idx] ;
-			}
-		}
-
-		foundcname = 0;
-		switch (order) {
-		case fixed_order:
-			for (i = 0; i < found_count; i++) {
-				dp = found[i];
-				if (foundcname != 0 && dp->d_type == T_CNAME)
-					continue;
-				if (dp->d_type == T_CNAME) {
-					foundcname = 1;
-					if (FOLLOWCNAME(type)) {
-						new_dnamep = (char *)dp->d_data;
-					}
-				}
-				if ((n = make_rr(*dnamep, dp, (u_char *)cp,
-						 buflen, 1,
-						 dnptrs, dnptrs_end, 0)) < 0) {
-					hp->tc = 1;
-					ret = *lenp - buflen;
-					goto done;
-				}
-				if (dp->d_secure != DB_S_SECURE)
-					hp->ad = 0;
-				cp += n;
-				buflen -= n;
-				count++;
-			}
-			break;
-
-		case random_order: {
-			/* first we shuffle the non-SIG records */
-			int iters = non_sig_count;
-			for (i = 0; i < iters; i++) {
-				choice = ((u_int)rand()>>3) % non_sig_count;
-				non_sig_count--;
-				dp = found[choice];
-				found[choice] = found[non_sig_count];
-				if (foundcname != 0 && dp->d_type == T_CNAME)
-					continue;
-				if (dp->d_type == T_CNAME) {
-					foundcname = 1;
-					if (FOLLOWCNAME(type)) {
-						new_dnamep = (char *)dp->d_data;
-					}
-				}
-				if ((n = make_rr(*dnamep, dp, (u_char *)cp,
-						 buflen, 1,
-						 dnptrs, dnptrs_end, 0)) < 0) {
-					hp->tc = 1;
-					ret = *lenp - buflen;
-					goto done;
-				}
-				if (dp->d_secure != DB_S_SECURE)
-					hp->ad = 0;
-				cp += n;
-				buflen -= n;
-				count++;
-			}
-
-			/* now shuffle the SIG records */
-			iters = sig_count;
-			for (i = 0; i < iters; i++) {
-				choice = ((u_int)rand()>>3) % sig_count;
-				choice += first_sig;
-				sig_count--;
-				dp = found[choice];
-				found[choice] = found[sig_count + first_sig];
-				if ((n = make_rr(*dnamep, dp, (u_char *)cp,
-						 buflen, 1,
-						 dnptrs, dnptrs_end, 0)) < 0) {
-					hp->tc = 1;
-					ret = *lenp - buflen;
-					goto done;
-				}
-				if (dp->d_secure != DB_S_SECURE)
-					hp->ad = 0;
-				cp += n;
-				buflen -= n;
-				count++;
-			}
-			break;
-		}
-
-		case cyclic_order:
-			/* first we do the non-SIG records */
-			if (non_sig_count > 0)
-				choice = ((u_int)rand()>>3) % non_sig_count;
-			else
-				choice = 0;
-			for (i = 0; i < non_sig_count ; i++) {
-				dp = found[(i + choice) % non_sig_count];
-				if (foundcname != 0 && dp->d_type == T_CNAME)
-					continue;
-				if (dp->d_type == T_CNAME) {
-					foundcname = 1;
-					if (FOLLOWCNAME(type)) {
-						new_dnamep = (char *)dp->d_data;
-					}
-				}
-				if ((n = make_rr(*dnamep, dp, (u_char *)cp,
-						 buflen, 1,
-						 dnptrs, dnptrs_end, 0)) < 0) {
-					hp->tc = 1;
-					ret = *lenp - buflen;
-					goto done;
-				}
-				if (dp->d_secure != DB_S_SECURE)
-					hp->ad = 0;
-				cp += n;
-				buflen -= n;
-				count++;
-			}
-
-			/* now do the SIG record rotation. */
-			if (sig_count > 0) {
-				choice = ((u_int)rand()>>3) % sig_count;
-				choice += first_sig;
-				i = choice;
-				do {
-					dp = found[i];
-					if ((n = make_rr(*dnamep, dp,
-							 (u_char *)cp,
-							 buflen, 1,
-							 dnptrs,
-							 dnptrs_end, 0)) < 0) {
-						hp->tc = 1;
-						ret = *lenp - buflen;
-						goto done;
-					}
-					if (dp->d_secure != DB_S_SECURE)
-						hp->ad = 0;
-					cp += n;
-					buflen -= n;
-					count++;
-					i++;
-					if (i >= found_count)
-						i = first_sig;
-				} while (i != choice);
-			}
-			
-			break;
-
-		default:
-			ns_warning(ns_log_default, "finddata: unknown ordering: %d",
-				   order);
-			break;
-		}
-	}
-	
-	if (new_dnamep != NULL)
-		*dnamep = new_dnamep;
-
-	ns_debug(ns_log_default, 3, "finddata: added %d class %d type %d RRs",
-		 count, class, type);
-	ret = *lenp - buflen;
- done:
-	if (found != NULL)
-		memput(found, (stalecount + 1) * sizeof *found);
-	if (tmpfound != NULL)
-		memput(tmpfound, (stalecount + 1) * sizeof *tmpfound);
-	*countp = count;
-	return (ret);
-}
-
-/*
- * Do we want this data record based on the class and type?
- */
-static int
-wanted(const struct databuf *dp, int class, int type) {
-	const u_char *cp;
-	int coveredType;
-	time_t expiration;
-#ifdef DEBUG
-	char pclass[15], ptype[15];
-#endif
-
-#ifdef DEBUG
-	strcpy(pclass, p_class(class));
-	strcpy(ptype, p_type(type));
-	ns_debug(ns_log_default, 3, "wanted(%#x, %s %s) [%s %s]",
-		 dp, pclass, ptype,
-		 p_class(dp->d_class), p_type(dp->d_type));
-#endif
-
-	if (dp->d_class != class && class != C_ANY)
-		return (0);
-	/*
-	 * Must check SIG for expiration below, other matches
-	 * return OK here.
-	 */
-	if (type == dp->d_type && (type != T_SIG))
-		return (1);
-	/* For a T_ANY query, we do not want to return -ve $ed RRs. */
-	if (type == T_ANY && dp->d_rcode == NOERROR_NODATA)
-		return (0);
-
-	/* First, look at the type of RR.  */
-	switch (dp->d_type) {
-
-		/* Cases to deal with:
-			T_ANY search, return all unexpired SIGs.
-			T_SIG search, return all unexpired SIGs.
-			T_<foo> search, return all unexp SIG <FOO>s.
-		 */
-	case T_SIG:
-		cp = dp->d_data;
-		GETSHORT(coveredType, cp);
-		cp += INT16SZ + INT32SZ; /* skip alg, labels, & orig TTL */
-		GETLONG(expiration,cp);
-
-		if (type == T_ANY || type == T_SIG) {
-			if (expiration > time(0))
-				return (1);	/* Unexpired matching SIG */
-		}
-		return (0);		/* We don't return this SIG. */
-
-	case T_ANY:
-		return (1);
-	case T_CNAME:
-		if (dp->d_rcode != NOERROR_NODATA)
-			return (1);
-		else
-			break;
-	}
-	/* OK, now look at the type of query.  */
-	if (type == ns_t_any)
-		return (1);
-	else if (type == ns_t_mailb)
-		switch (dp->d_type) {
-		case T_MR:
-		case T_MB:
-		case T_MG:
-		case T_MINFO:
-			return (1);
-		}
-	else if (ns_t_xfr_p(type)) {
-		/*
-		 * This is used to validate transfer requests, not
-		 * generate transfer responses.  Is there an SOA?
-		 */
-		if (dp->d_type == ns_t_soa && dp->d_zone != DB_Z_CACHE
-		    && (zones[dp->d_zone].z_flags & Z_AUTH))
-			return (1);
-	}
-	return (0);
-}
-
-static int
-wantedsig(const struct databuf *dp, int class, int type) {
-	const u_char *cp;
-	int coveredType;
-	time_t expiration;
-#ifdef DEBUG
-	char pclass[15], ptype[15];
-#endif
-
-#ifdef DEBUG
-	strcpy(pclass, p_class(class));
-	strcpy(ptype, p_type(type));
-	ns_debug(ns_log_default, 3, "wantedtsig(%#x, %s %s) [%s %s]",
-		 dp, pclass, ptype,
-		 p_class(dp->d_class), p_type(dp->d_type));
-#endif
-
-	if (dp->d_class != class && class != C_ANY)
-		return (0);
-	if (dp->d_type != T_SIG || dp->d_rcode != 0)
-		return (0);
-
-	cp = dp->d_data;
-	GETSHORT(coveredType, cp);
-	cp += INT16SZ + INT32SZ; /* skip alg, labels, & orig TTL */
-	GETLONG(expiration,cp);
-	if (expiration < time(0))
-		return (0);
-
-	if (type == T_ANY || type == T_SIG || type == coveredType)
-			return (1);
-	if (type == ns_t_mailb) {
-		switch (coveredType) {
-		case T_MR:
-		case T_MB:
-		case T_MG:
-		case T_MINFO:
-			return (1);
-		}
-	}
-	return (0);
-}
-
-/*
- *  Add RR entries from dpp array to a query/response.
- *  Return the number of bytes added or negative the amount
- *  added if truncation occured.  Typically you are
- *  adding NS records to a response.
- */
-int
-add_data(struct namebuf *np, struct databuf **dpp,
-	 u_char *cp, int buflen, int *countp)
-{
-	struct databuf *dp;
-	char dname[MAXDNAME];
-	int n, bytes;
-
-	bytes = *countp = 0;
-	getname(np, dname, sizeof(dname));
-	for (dp = *dpp++; dp != NULL; dp = *dpp++) {
-		if (stale(dp))
-			continue;	/* ignore old cache entry */
-		if (dp->d_rcode)
-			continue;
-		if ((n = make_rr(dname, dp, cp, buflen, 1,
-				 dnptrs, dnptrs_end, 0)) < 0)
-			return (-bytes);	/* Truncation */
-		cp += n;
-		buflen -= n;
-		bytes += n;
-		(*countp)++;
-	}
-	return (bytes);
-}
-
-static void
-rrsetadd(struct flush_set *flushset, const char *name, struct databuf *dp) {
-	struct flush_set *fs = flushset;
-	struct db_list *dbl;
-
-	while (fs->fs_name && (
-		ns_samename(fs->fs_name,name) != 1 ||
-		(fs->fs_class != dp->d_class) ||
-		(fs->fs_type != dp->d_type) ||
-		(fs->fs_cred != dp->d_cred))) {
-		fs++;
-	}
-	if (!fs->fs_name) {
-		fs->fs_name = savestr(name, 1);
-		fs->fs_class = dp->d_class;
-		fs->fs_type = dp->d_type;
-		fs->fs_cred = dp->d_cred;
-		fs->fs_list = NULL;
-		fs->fs_last = NULL;
-	}
-	dbl = (struct db_list *)memget(sizeof(struct db_list));
-	if (!dbl)
-		panic("rrsetadd: out of memory", NULL);
-	dbl->db_next = NULL;
-	dbl->db_dp = dp;
-	if (fs->fs_last == NULL)
-		fs->fs_list = dbl;
-	else
-		fs->fs_last->db_next = dbl;
-	fs->fs_last = dbl;
-}
-
-static int
-ttlcheck(const char *name, struct db_list *dbl, int update) {
-	int type = dbl->db_dp->d_type;
-	int class = dbl->db_dp->d_class;
-	struct hashbuf *htp = hashtab;
-	const char *fname;
-	struct namebuf *np;
-	struct db_list *dbp = dbl;
-	struct databuf *dp;
-	u_int32_t ttl = 0;	/* Make gcc happy. */
-	int first;
-
-
-	np = nlookup(name, &htp, &fname, 0);
-	if (np == NULL || fname != name || ns_wildcard(NAME(*np)))
-		return (1);
-
-	/* check that all the ttl's we have are the same, if not return 1 */
-	first = 1;
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!match(dp, class, type))
-			continue;
-		if (first) {
- 			/* we can't update zone data so return early */
-			if (dp->d_zone != DB_Z_CACHE)
- 				return (0);
-			ttl = dp->d_ttl;
-			first = 0;
-		} else if (ttl != dp->d_ttl)
-			return (1);
-	}
-
-	/* there are no records of this type in the cache */
-	if (first)
-		return(1);
-
-	/*
-	 * the ttls of all records we have in the cache are the same
-	 * if the ttls differ in the new set we don't want it.
-	 */
-
-	/* check that all the ttl's we have are the same, if not return 0 */
-	first = 1;
-	while (dbp) {
-		if (first) {
-			ttl = dbp->db_dp->d_ttl;
-			first = 0;
-		} else if (ttl != dbp->db_dp->d_ttl) {
-			return(0);
-		}
-		dbp = dbp->db_next;
-	}
-
-  	/* update ttl if required */
- 	if (update) {
- 		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
- 			if (!match(dp, class, type))
- 				continue;
- 			if (dp->d_ttl > ttl)
- 				break;
- 			dp->d_ttl = ttl;
- 			fixttl(dp);
- 		}
- 	}
-
-	return(1);
-}
-
-/*
- * lookup rrset in table and compare to dbl
- * tri state result
- * -1: lookup failed
- * 0: rrsets same
- * 1: rrsets differ
- */
-
-static int
-rrsetcmp(char * name, struct db_list * dbl, struct hashbuf * table) {
-	int type = dbl->db_dp->d_type;
-	int class = dbl->db_dp->d_class;
-	struct hashbuf *htp = table;
-	const char *fname;
-	struct namebuf *np;
-	struct db_list *dbp = dbl;
-	struct databuf *dp;
-	int exists = 0;
-
-
-	np = nlookup(name, &htp, &fname, 0);
-	if (np == NULL || fname != name || ns_wildcard(NAME(*np))) {
-		ns_debug(ns_log_default, 3, "rrsetcmp: name not in database");
-		return (-1);
-	}
-
-	/* check that all entries in dbl are in the cache */
-	while (dbp) {
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!match(dp, class, type))
-				continue;
-			exists = 1;
-			if (!db_cmp(dp, dbp->db_dp) 
-#ifdef NOADDITIONAL
-			&& ((dp->d_cred == dbp->db_dp->d_cred) ||
-				 (dp->d_cred != DB_C_ADDITIONAL))
-#endif
-				 )
-				break;
-		}
-		if (!dp) {
-			ns_debug(ns_log_default, 3,
-				 "rrsetcmp: %srecord%s in database",
-				 exists ? "" : "no ", exists ? " not" : "s");
-			return (exists ? 1 : -1);
-		}
-		dbp = dbp->db_next;
-	}
-
-	/* Check that all cache entries are in the list. */
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!match(dp, class, type))
-			continue;
-#ifdef NCACHE
-		if (dp->d_rcode)
-			return (1);
-#endif
-		dbp = dbl;
-		while (dbp) {
-			if (!db_cmp(dp, dbp->db_dp))
-				break;
-			dbp = dbp->db_next;
-		}
-		if (!dbp) {
-			ns_debug(ns_log_default, 3,
-				 "rrsetcmp: record not in rrset");
-			return (1);
-		}
-	}
-	ns_debug(ns_log_default, 3, "rrsetcmp: rrsets matched");
-	return (0);
-}
-
-/*
- * verify incoming answer against what we already have in the hints
- * issue warnings / errors if differences detected.
- */
-
-static void
-check_hints(struct flush_set * flushset) {
-	struct zoneinfo *zp;
-	struct flush_set *fs;
-	struct db_list *dbp;
-
-	/* We don't use hints when in forward only mode */
-	if (NS_OPTION_P(OPTION_FORWARD_ONLY))
-		return;
-
-	/* find "." NS rrset and hence class */
-	for (fs = flushset; fs->fs_name != NULL; fs++) {
-		if ((fs->fs_name[0] != '\0') || (fs->fs_type != ns_t_ns))
-			continue;
-
-		/* see if we are a root server */
-		zp = find_zone(fs->fs_name, fs->fs_class);
-		if (zp != NULL &&
-		    (zp->z_type == z_master || zp->z_type == z_slave))
-			return;
-		switch (rrsetcmp(fs->fs_name, fs->fs_list, fcachetab)) {
-		case -1:
-			ns_error(ns_log_default,
-			    "check_hints: no NS records for class %d in hints",
-				fs->fs_class);
-			break;
-		case 1:
-			ns_warning(ns_log_default,
- "check_hints: root NS list in hints for class %d does not match root NS list",
-				fs->fs_class);
-			break;
-		case 0:
-			break;
-		default:
-			ns_error(ns_log_default,
-			    "check_hints: unexpected response from rrsetcmp");
-			break;
-		}
-		break;
-	}
-
-	if (fs->fs_name == NULL)	/* no root NS records */
-		return;
-
-	dbp = fs->fs_list;
-	while (dbp) {
-		/* for each NS find A rrset in answer and check */
-		for (fs = flushset; fs->fs_name != NULL; fs++) {
-			if (ns_samename(fs->fs_name, (char *)dbp->db_dp->d_data) != 1
-			    || fs->fs_type != ns_t_a)
-				continue;
-			switch (rrsetcmp(fs->fs_name, fs->fs_list, fcachetab)) {
-			case -1:
-				ns_error(ns_log_default,
-			"check_hints: no A records for %s class %d in hints",
-					fs->fs_name[0] ? fs->fs_name : ".",
-					fs->fs_class);
-				break;
-			case 1:
-				ns_warning(ns_log_default,
-	 "check_hints: A records for %s class %d do not match hint records",
-					fs->fs_name[0] ? fs->fs_name : ".",
-					fs->fs_class);
-				break;
-			case 0:
-				break;
-			default:
-				ns_error(ns_log_default,
-				    "check_hints: unexpected response from rrsetcmp");
-				break;
-			}
-			break;
-		}
-
-		if (fs->fs_name == NULL)
-			ns_debug(ns_log_default, 2,
-				"check_hints: no A records for %s",
-				dbp->db_dp->d_data);
-
-		dbp = dbp->db_next;
-	}
-}
-
-static void
-rrsetupdate(struct flush_set * flushset, int flags, struct sockaddr_in from,
-	    int updatettl) {
-	struct flush_set *fs = flushset;
-	struct db_list *dbp, *odbp;
-	int n;
-	void *state = NULL;
-
-	while (fs->fs_name) {
-		ns_debug(ns_log_default, 2, "rrsetupdate: %s",
-			 fs->fs_name[0] ? fs->fs_name : ".");
-		if ((n = rrsetcmp(fs->fs_name, fs->fs_list, hashtab)) &&
-		    ttlcheck(fs->fs_name, fs->fs_list, 0)) {
-			if (n > 0)
-				flushrrset(fs, from);
-
-			dbp = fs->fs_list;
-			while (dbp) {
-				n = db_set_update(fs->fs_name, dbp->db_dp,
-						  &state, flags,
-						  &hashtab, from, NULL,
-						  0, NULL);
-				ns_debug(ns_log_default, 3,
-					 "rrsetupdate: %s %d",
-					 fs->fs_name[0] ? fs->fs_name : ".",
-					 n);
-				odbp = dbp;
-				dbp = dbp->db_next;
-				memput(odbp, sizeof *odbp);
-			}    
-			ns_debug(ns_log_default, 3,
-				 "rrsetupdate: %s %d",
-				 fs->fs_name[0] ? fs->fs_name : ".", n);
-		} else {
-			if ((n == 0) && updatettl)
-				(void)ttlcheck(fs->fs_name,fs->fs_list, 1);
-			dbp = fs->fs_list;
-			while (dbp) {
-				db_freedata(dbp->db_dp);
-				odbp = dbp;
-				dbp = dbp->db_next;
-				memput(odbp, sizeof *odbp);
-			}
-		}
-		fs->fs_list = NULL;
-		fs++;
-	}
-	n = db_set_update(NULL, NULL, &state, flags, &hashtab, from,
-			  NULL, 0, NULL);
-}
-
-static void
-flushrrset(struct flush_set * fs, struct sockaddr_in from) {
-	struct databuf *dp;
-	int n;
-
-	ns_debug(ns_log_default, 2, "flushrrset(%s, %s, %s, %d)",
-		 fs->fs_name[0]?fs->fs_name:".", p_type(fs->fs_type),
-		 p_class(fs->fs_class), fs->fs_cred);
-	dp = savedata(fs->fs_class, fs->fs_type, 0, NULL, 0);
-	dp->d_zone = DB_Z_CACHE;
-	dp->d_cred = fs->fs_cred;
-	dp->d_clev = 0;	
-	do {
-		n = db_update(fs->fs_name, dp, NULL, NULL, DB_DELETE, hashtab,
-			      from);
-		ns_debug(ns_log_default, 3, "flushrrset: %d", n);
-	} while (n == OK);
-	db_freedata(dp);
-}
-
-static void
-free_flushset(struct flush_set *flushset, int flushset_size) {
-	struct flush_set *fs;
-
-	for (fs = flushset; fs->fs_name != NULL; fs++)
-		freestr(fs->fs_name);
-	memput(flushset, flushset_size);
-}
-
-/*
- *  This is best thought of as a "cache invalidate" function.
- *  It is called whenever a piece of data is determined to have
- *  become invalid either through a timeout or a validation
- *  failure.  It is better to have no information, than to
- *  have partial information you pass off as complete.
- */
-void
-delete_all(struct namebuf *np, int class, int type) {
-	struct databuf *dp, *pdp;
-
-	ns_debug(ns_log_default, 3, "delete_all(%#x:\"%s\" %s %s)",
-		 np, NAME(*np), p_class(class), p_type(type));
-	pdp = NULL;
-	dp = np->n_data;
-	while (dp != NULL) {
-		if (dp->d_zone == DB_Z_CACHE && (dp->d_flags & DB_F_HINT) == 0
-		    && match(dp, class, type)) {
-			dp = rm_datum(dp, np, pdp, NULL);
-			continue;
-		}
-		pdp = dp;
-		dp = dp->d_next;
-	}
-}
-
-/* delete_stale(np)
- *	for all RRs associated with this name, check for staleness (& delete)
- * arguments:
- *	np = pointer to namebuf to be cleaned.
- * returns:
- *	number of RRs associated with this name.
- * side effects:
- *	delete_all() can be called, freeing memory and relinking chains.
- */
-int 
-delete_stale(np)
-	struct namebuf *np;
-{
-	struct databuf *dp;
-	int count;
- again:
-	count = 0;
-        for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-                if (dp->d_zone == DB_Z_CACHE && stale(dp)) {
-                        delete_all(np, dp->d_class, dp->d_type);
-                        goto again;
-		}
-		count++;
- 	}
-	return (count);
-}
-
-
-/*
- * Adjust answer message so that it fits in outlen. Set tc if required.
- *
- * If outlen = msglen, can be used to verify qdcount, ancount, nscount
- * and arcount.
- *
- * return new length
- */
-
-int
-trunc_adjust(u_char *msg, int msglen, int outlen) {
-	register HEADER *hp;
-	u_int qdcount, ancount, nscount, arcount, dlen;
-	u_char *cp = msg, *cp1, *eom_in, *eom_out;
-	int n;
-
-	eom_in = msg + msglen;
-	eom_out = msg + outlen;
-
-	hp = (HEADER *)msg;
-	qdcount = ntohs(hp->qdcount);
-	ancount = ntohs(hp->ancount);
-	nscount = ntohs(hp->nscount);
-	arcount = ntohs(hp->arcount);
-	cp += HFIXEDSZ;
-
-	while ((qdcount || ancount || nscount || arcount) &&
-	       cp < eom_in && cp < eom_out) {
-
-		cp1 = cp; /* use temporary in case we break */
-
-		n = dn_skipname(cp1, eom_in);
-		if (n < 0)
-			break;
-		cp1 += n + 2 * INT16SZ; /* type, class */
-
-		if (!qdcount) {
-			cp1 += INT32SZ;     /* ttl */
-			if (cp1 + INT16SZ > eom_in)
-				break;
-			GETSHORT(dlen, cp1);
-			cp1 += dlen;
-		}
-
-		if (cp1 > eom_in || cp1 > eom_out)
-			break;
-
-		cp = cp1;
-
-		if (qdcount)
-			qdcount--;
-		else if (ancount)
-			ancount--;
-		else if (nscount)
-			nscount--;
-		else
-			arcount--;
-	}
-
-	if (qdcount || ancount || nscount || arcount) {
-		ns_debug(ns_log_default, 1,
-			 "trunc_adjust:%s %d %d %d %d %d, %d %d %d %d %d",
-			 hp->tc?" tc":"", msglen,
-			 ntohs(hp->qdcount), ntohs(hp->ancount),
-			 ntohs(hp->nscount), ntohs(hp->arcount),
-			 cp-msg, qdcount, ancount, nscount, arcount);
-		hp->tc = 1;
-		hp->qdcount = htons(ntohs(hp->qdcount) - qdcount);
-		hp->ancount = htons(ntohs(hp->ancount) - ancount);
-		hp->nscount = htons(ntohs(hp->nscount) - nscount);
-		hp->arcount = htons(ntohs(hp->arcount) - arcount);
-	}
-	ENSURE(cp <= eom_out);
-	return (cp - msg);
-}
-
-/*
- * mark the server "from" bad in the qp structure so it won't be retried.
- */
-static void
-mark_bad(struct qinfo *qp, struct sockaddr_in from) {
-	int i;
-
-	for (i = 0; i < (int)qp->q_naddr; i++)
-		if (ina_equal(qp->q_addr[i].ns_addr.sin_addr, from.sin_addr))
-			qp->q_addr[i].nretry = MAXRETRY;
-}
-
-static void
-mark_lame(struct qinfo *qp, struct sockaddr_in from) {
-	int i;
-
-	for (i = 0; i < (int)qp->q_naddr; i++)
-		if (ina_equal(qp->q_addr[i].ns_addr.sin_addr, from.sin_addr) &&
-		    qp->q_addr[i].ns != NULL) {
-			qp->q_addr[i].ns->d_flags |= DB_F_LAME;
-			db_lame_add(qp->q_domain,
-				    (char*)qp->q_addr[i].ns->d_data, 
-				    tt.tv_sec + server_options->lame_ttl);
-		}
-}
-
-/*
- * Retry the message if and only if from matches where the query was
- * last sent to.  The code does not handle responses sent from the
- * wrong interface an a multihomed server.
- */
-static void
-fast_retry(struct qinfo *qp, struct sockaddr_in from) {
-        if (ina_equal(qp->q_addr[qp->q_curaddr].ns_addr.sin_addr,
-                   from.sin_addr))
-                retry(qp);
-}
-
-static void
-add_related_additional(char *name) {
-	int i;
-
-	if (num_related >= MAX_RELATED - 1)
-		return;
-	for (i = 0; i < num_related; i++)
-		if (ns_samename(name, related[i]) == 1) {
-			freestr(name);
-			return;
-		}
-	related[num_related++] = name;
-}
-
-static void
-free_related_additional() {
-	int i;
-
-	for (i = 0; i < num_related; i++)
-		freestr(related[i]);
-	num_related = 0;
-}
-
-static int
-related_additional(char *name) {
-	int i;
-
-	for (i = 0; i < num_related; i++)
-		if (ns_samename(name, related[i]) == 1)
-			return (1);
-	return (0);
-}
-
-static void
-freestr_maybe(char **tname) {
-	if (tname == NULL || *tname == NULL)
-		return;
-	freestr(*tname);
-	*tname = NULL;
-}
-
-/*
- * Match a request namebuf against the configured rrset-order info.  First
- * match wins.  There is an implicit '*.' at the front to the ordering names.
- */
-static enum ordering
-match_order(const struct namebuf *np, int class, int type) {
-	rrset_order_list orders = server_options->ordering;
-	rrset_order_element roe;
-	
-	if (orders == NULL)
-		return (DEFAULT_ORDERING);
-	
-	for (roe = orders->first ; roe != NULL ; roe = roe->next) {
-		if (roe->class != C_ANY && roe->class != class)
-			continue;
-		if (roe->type != T_ANY && roe->type != type)
-			continue;
-
-		if (match_name(np, roe->name, strlen(roe->name)) == 0) {
-			return (roe->order);
-		}
-	}
-
-	/* none matched so use default */
-	return (DEFAULT_ORDERING);
-}
-
-/* Do a simple compare of the NP data against the given NAME, recursively
- * looking at the NP parent if necessary. NAMELEN is the length of the NAME
- * that needs to be matched. Matching happen from right to left. Returns -1
- * on failure, on success the index of the first character of the matched
- * portion of the string is returned. In the first level call a return
- * value of 0 is of interest.
- */
-static int
-match_name(const struct namebuf *np, const char *name, size_t namelen)
-{
-	int matched ;
-	
-	if (name[0] == '*' && name[1] == '\0')
-		return 0;
-
-	if (np->n_parent != NULL) { /* recurse to end of np list */
-		matched = match_name(np->n_parent,name,namelen);
-	} else {
-		matched = namelen;
-	}
-	
-	if (matched > 0) {
-		int labellen = NAMELEN(*np);
-		char pch;
-		const char *start;
-		
-		if (labellen > matched) {
-			return -1;
-		} else if (labellen < matched) {
-			/* string is longer than this namebuf's data, so
-			   make sure there's a period before the end of the 
-			   match so we don't just match a suffix. */
-			start = name + (matched - labellen);
-			pch = start[-1];
-			if (pch != '.') {
-				return -1;
-			}
-		} else {
-			start = name ;
-		}
-
-		if (strncasecmp(start, NAME(*np), labellen) == 0) {
-			/* looking good. tell our caller what portion of
-			   the tail of string has been matched */
-			if (start == name)
-				return (0) ;
-			else 
-				return (start - name - 1); /* matched '.' too */
-		} else {
-			return (-1);
-		}
-	}
-
-	return (matched);
-}
-
diff --git a/contrib/bind/bin/named/ns_signal.c b/contrib/bind/bin/named/ns_signal.c
deleted file mode 100644
index 8cc715b7171c5..0000000000000
--- a/contrib/bind/bin/named/ns_signal.c
+++ /dev/null
@@ -1,264 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_main.c	4.55 (Berkeley) 7/1/91";
-static const char rcsid[] = "$Id: ns_signal.c,v 8.12 2000/04/21 06:54:12 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1989, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/wait.h>
-#include <sys/ioctl.h>
-#include <sys/socket.h>
-#ifdef SVR4	/* XXX */
-# include <sys/sockio.h>
-#else
-# include <sys/mbuf.h>
-#endif
-
-#include <netinet/in.h>
-#include <net/route.h>
-#include <net/if.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <grp.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <signal.h>
-#include <netdb.h>
-#include <pwd.h>
-#include <resolv.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-#include <isc/list.h>
-
-#include "port_after.h"
-#include "named.h"
-
-/* Forward. */
-
-static	SIG_FN	onhup(int);
-static	SIG_FN	onintr(int);
-static	SIG_FN	setdumpflg(int);
-static	SIG_FN	setIncrDbgFlg(int);
-static	SIG_FN	setNoDbgFlg(int);
-static	SIG_FN	setQrylogFlg(int);
-static	SIG_FN	setstatsflg(int);
-static	SIG_FN	discard_pipe(int);
-static	SIG_FN	setreapflg(int);
-
-/* Data. */
-
-static struct {
-	int	sig;
-	SIG_FN	(*hand)(int);
-} sighandlers[] = {
-#ifdef DEBUG
-	{ SIGUSR1, setIncrDbgFlg },
-	{ SIGUSR2, setNoDbgFlg },
-#endif
-#if defined(SIGWINCH) && defined(QRYLOG)
-	{ SIGWINCH, setQrylogFlg },
-#endif
-#if defined(SIGXFSZ)
-	{ SIGXFSZ, onhup },	/* Wierd DEC Hesiodism, harmless. */
-#endif
-	{ SIGINT, setdumpflg },
-	{ SIGILL, setstatsflg },
-	{ SIGHUP, onhup },
-	{ SIGCHLD, setreapflg },
-	{ SIGPIPE, discard_pipe },
-	{ SIGTERM, onintr }
-};
-
-static sigset_t mask;
-static int blocked = 0;
-
-/* Private. */
-
-static SIG_FN
-onhup(int sig) {
-	ns_need_unsafe(main_need_reload);
-}
-
-static SIG_FN
-onintr(int sig) {
-	ns_need_unsafe(main_need_exit);
-}
-
-static SIG_FN
-setdumpflg(int sig) {
-	ns_need_unsafe(main_need_dump);
-}
-
-#ifdef DEBUG
-static SIG_FN
-setIncrDbgFlg(int sig) {
-	desired_debug++;
-	ns_need_unsafe(main_need_debug);
-}
-
-static SIG_FN
-setNoDbgFlg(int sig) {
-	desired_debug = 0;
-	ns_need_unsafe(main_need_debug);
-}
-#endif /*DEBUG*/
-
-#if defined(QRYLOG) && defined(SIGWINCH)
-static SIG_FN
-setQrylogFlg(int sig) {
-	ns_need_unsafe(main_need_qrylog);
-}
-#endif /*QRYLOG && SIGWINCH*/
-
-static SIG_FN
-setstatsflg(int sig) {
-	ns_need_unsafe(main_need_statsdump);
-}
-
-static SIG_FN
-discard_pipe(int sig) {
-#ifdef SIGPIPE_ONE_SHOT
-	int saved_errno = errno;
-	struct sigaction sa;
-
-	memset(&sa, 0, sizeof sa);
-	sa.sa_mask = mask;
-	sa.sa_handler = discard_pipe;
-	if (sigaction(SIGPIPE, &sa, NULL) < 0)
-		ns_error(ns_log_os, "sigaction failed in discard_pipe: %s",
-			 strerror(errno));
-	errno = saved_errno;
-#endif
-}
-
-static SIG_FN
-setreapflg(int sig) {
-	ns_need_unsafe(main_need_reap);
-}
-
-/* Public. */
-
-void
-init_signals(void) {
-	int sh;
-
-	/* The mask of all our handlers will block all our other handlers. */
-	(void)sigemptyset(&mask);
-	for (sh = 0; sh < sizeof sighandlers / sizeof sighandlers[0]; sh++)
-		sigaddset(&mask, sighandlers[sh].sig);
-
-	/* Install our signal handlers with that shared mask. */
-	for (sh = 0; sh < sizeof sighandlers / sizeof sighandlers[0]; sh++) {
-		struct sigaction sa;
-
-		memset(&sa, 0, sizeof sa);
-		sa.sa_mask = mask;
-		sa.sa_handler = sighandlers[sh].hand;
-		if (sigaction(sighandlers[sh].sig, &sa, NULL) < 0)
-			ns_error(ns_log_os,
-			      "sigaction failed in set_signal_handler(%d): %s",
-				 sighandlers[sh].sig, strerror(errno));
-	}
-}
-
-void
-block_signals(void) {
-	INSIST(!blocked);
-	if (sigprocmask(SIG_BLOCK, &mask, NULL) < 0)
-		ns_panic(ns_log_os, 1, "sigblock failed: %s", strerror(errno));
-	blocked = 1;
-}
-
-void
-unblock_signals(void) {
-	INSIST(blocked);
-	if (sigprocmask(SIG_UNBLOCK, &mask, NULL) < 0)
-		ns_panic(ns_log_os, 1, "sigblock failed: %s", strerror(errno));
-	blocked = 0;
-}
diff --git a/contrib/bind/bin/named/ns_sort.c b/contrib/bind/bin/named/ns_sort.c
deleted file mode 100644
index 3b3f31edffbbe..0000000000000
--- a/contrib/bind/bin/named/ns_sort.c
+++ /dev/null
@@ -1,410 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_sort.c	4.10 (Berkeley) 3/3/91";
-static const char rcsid[] = "$Id: ns_sort.c,v 8.6 2000/04/21 06:54:13 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Sorting should really be handled by the resolver, but:
- *  1) There are too many brain dead resolvers out there that can't be replaced.
- *  2) It would be a pain to individually configure all those resolvers anyway.
- *
- * Here's the scoop:
- *
- * To enable address sorting in responses, you need to supply the sortlist
- * statement in the config file.  The sortlist statement takes an
- * address match list and interprets it even more specially than the
- * topology statement does.
- *
- * Each top level statement in the sortlist must itself be an explicit
- * address match list with one or two elements.  The first element
- * (which may be an IP address, an IP prefix, an ACL name or nested
- * address match list) of each top level list is checked against the
- * source address of the query until a match is found.
- *
- * Once the source address of the query has been matched, if the top level
- * statement contains only one element, the actual primitive element that
- * matched the source address is used to select the address in the response
- * to move to the beginning of the response.  If the statement is a list
- * of two elements, then the second element is treated like the address
- * match list in a topology statement.  Each top level element is assigned
- * a distance and the address in the response with the minimum distance is
- * moved to the beginning of the response.
- * 
- * In the following example, any queries received from any of the addresses
- * of the host itself will get responses preferring addresses on any of
- * the locally connected networks.  Next most preferred are addresses on
- * the 192.168.1/24 network, and after that either the 192.168.2/24 or
- * 192.168.3/24 network with no preference shown between these two networks.
- * Queries received from a host on the 192.168.1/24 network will prefer
- * other addresses on that network to the 192.168.2/24 and 192.168.3/24
- * networks.  Queries received from a host on the 192.168.4/24 or the
- * 192.168.5/24 network will only prefer other addresses on their
- * directly connected networks.
- *
- * sortlist {
- *            {
- *              localhost;
- *              {
- *                localnets;
- *                192.168.1/24;
- *                { 192,168.2/24; 192.168.3/24; };
- *              };
- *            };
- *            {
- *              192.168.1/24;
- *              {
- *                192.168.1/24;
- *                { 192.168.2/24; 192.168.3/24; };
- *              };
- *            };
- *            {
- *              192.168.2/24;
- *              {
- *                192.168.2/24;
- *                { 192.168.1/24; 192.168.3/24; };
- *              };
- *            };
- *            {
- *              192.168.3/24;
- *              {
- *                192.168.3/24;
- *                { 192.168.1/24; 192.168.2/24; };
- *              };
- *            };
- *	      {
- *              { 192.168.4/24; 192.168.5/24; };
- *            };
- * };
- *
- * 
- * The following example will give reasonable behaviour for the local host
- * and hosts on directly connected networks.  It is similar to the behavior
- * of the address sort in BIND 4.9.x.  Responses sent to queries from the
- * local host will favor any of the directly connected networks.  Responses
- * sent to queries from any other hosts on a directly connected network will
- * prefer addresses on that same network.  Responses to other queries will
- * not be sorted.
- *
- * sortlist {
- *            { localhost; localnets; };
- *            { localnets; };
- * };
- *
- * XXX - it wouldb e nice to have an ACL called "source" that matched the
- *       source address of a query so that a host could be configured to
- *       automatically prefer itself, and an ACL called "sourcenet", that
- *       would return the primitive IP match element that matched the source
- *       address so that you could do:
- *          { localnets; { sourcenet; { other stuff ...}; };
- *       and automatically get similar behaviour to what you get with:
- *          { localnets; };
- *
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <resolv.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static int sort_rr(u_char *cp, u_char *eom, int ancount, ip_match_list iml);
-
-static int ip_match_address_elt(ip_match_list, struct in_addr,
-				ip_match_element *);
-
-void
-sort_response(u_char *cp, u_char *eom, int ancount, struct sockaddr_in *from) {
-	struct in_addr address;
-	struct ip_match_element imelement;
-	ip_match_element imetl, imematch, imeprimitive;
-	struct ip_match_list imlist;
-	ip_match_list iml;
-	int indirect, matched;
-
-	if (server_options->sortlist == NULL)
-		return;
-
-	if (from->sin_family != AF_INET)
-		return;
-
-	address = from->sin_addr;
-
-	for (imetl = server_options->sortlist->first; imetl != NULL;
-	     imetl = imetl->next) {
-		if (imetl->type == ip_match_indirect)
-			imematch = imetl->u.indirect.list->first;
-		else
-			/*
-			 * allow a bare pattern as a top level statement
-			 * and treat it like {pattern;};
-			 */
-			imematch = imetl;
-
-		switch (imematch->type) {
-		case ip_match_pattern:
-			indirect = 0;
-			break;
-		case ip_match_indirect:
-			indirect = 1;
-			break;
-		case ip_match_localhost:
-			imematch->u.indirect.list = local_addresses;
-			indirect = 1;
-			break;
-		case ip_match_localnets:
-			imematch->u.indirect.list = local_networks;
-			indirect = 1;
-			break;
-		default:
-			panic("unexpected ime type in ip_match_address()",
-			      NULL);
-		}
-		if (indirect) {
-			imeprimitive = NULL;
-			matched = ip_match_address_elt(imematch->u.indirect.list,
-						       address, &imeprimitive);
-			if (matched >= 0) {
-				if (imematch->flags & IP_MATCH_NEGATE)
-					/* Don't sort */
-					return;
-			} else 
-				continue;
-		} else {
-			if (ina_onnet(address, imematch->u.direct.address,
-				      imematch->u.direct.mask)) {
-				if (imematch->flags & IP_MATCH_NEGATE)
-					/* Don't sort */
-					return;
-				else
-					imeprimitive = imematch;
-			} else
-				continue;
-		}
-		if (imetl != imematch && imematch->next != NULL) {
-			/*
-			 * Not a bare pattern at the top level, but a two
-			 * element list
-			 */
-			switch (imematch->next->type) {
-			case ip_match_pattern:
-			case ip_match_localhost:
-			case ip_match_localnets:
-				imelement = *(imematch->next);
-				imelement.next = NULL;
-				iml = &imlist;
-				iml->first = iml->last = &imelement;
-				break;
-			case ip_match_indirect:
-				iml = imematch->next->u.indirect.list;
-				break;
-			default:
-				panic("unexpected ime type in ip_match_address()",
-				      NULL);
-			}
-		} else if (imeprimitive) {
-			imelement = *imeprimitive;
-			imelement.next = NULL;
-			iml = &imlist;
-			iml->first = iml->last = &imelement;
-		} else {
-			/* Don't sort because we'd just use "any" */
-			return;
-		}
-		sort_rr(cp, eom, ancount, iml);
-		break;
-	}
-
-	return;
-}
-
-static int
-sort_rr(u_char *cp, u_char *eom, int ancount, ip_match_list iml) {
-	int type, class, dlen, n, c, distance, closest;
-	struct in_addr inaddr;
-	u_char *rr1 = NULL, *rrbest, *cpstart;
-
-	rr1 = NULL;
-	cpstart = cp;
-	for (c = ancount; c > 0; --c) {
-	    n = dn_skipname(cp, eom);
-	    if (n < 0)
-		return (1);		/* bogus, stop processing */
-	    cp += n;
-	    if (cp + QFIXEDSZ > eom)
-		return (1);
-	    GETSHORT(type, cp);
-	    GETSHORT(class, cp);
-	    cp += INT32SZ;
-	    GETSHORT(dlen, cp);
-	    if (dlen > eom - cp)
-		return (1);		/* bogus, stop processing */
-	    switch (type) {
-	    case T_A:
-	    	switch (class) {
-	    	case C_IN:
-	    	case C_HS:
-	    		memcpy((char *)&inaddr, cp, INADDRSZ);
-			/* Find the address with the minimum distance */
-			if (rr1 == NULL) {
-				rr1 = cp;
-				rrbest = cp;
-				closest = distance_of_address(iml, inaddr);
-			} else {
-				distance = distance_of_address(iml, inaddr);
-				if (distance < closest) {
-					rrbest = cp;
-					closest = distance;
-				}
-			}
-	    		break;
-	    	}
-	    	break;
-	    }
-	    cp += dlen;
-	}
-	if (rr1 != rrbest && rr1 != NULL) {
-	    	memcpy((char *)&inaddr, rrbest, INADDRSZ);
-		memcpy(rrbest, rr1, INADDRSZ);
-	    	memcpy(rr1, (char *)&inaddr, INADDRSZ);
-	}
-	return (0);
-}
-
-/*
- * Just like ip_match_address(), but also returns a pointer to the primitive
- * element that matched.
- */
-
-static int
-ip_match_address_elt(ip_match_list iml, struct in_addr address,
-		     ip_match_element *imep) {
-	ip_match_element ime;
-	int ret;
-	int indirect;
-
-	INSIST(iml != NULL);
-	for (ime = iml->first; ime != NULL; ime = ime->next) {
-		switch (ime->type) {
-		case ip_match_pattern:
-			indirect = 0;
-			break;
-		case ip_match_indirect:
-			indirect = 1;
-			break;
-		case ip_match_localhost:
-			ime->u.indirect.list = local_addresses;
-			indirect = 1;
-			break;
-		case ip_match_localnets:
-			ime->u.indirect.list = local_networks;
-			indirect = 1;
-			break;
-		default:
-			panic("unexpected ime type in ip_match_address()",
-			      NULL);
-		}
-		if (indirect) {
-			ret = ip_match_address_elt(ime->u.indirect.list,
-						   address, imep);
-			if (ret >= 0) {
-				if (ime->flags & IP_MATCH_NEGATE)
-					ret = (ret) ? 0 : 1;
-				return (ret);
-			}
-		} else {
-			if (ina_onnet(address, ime->u.direct.address,
-				      ime->u.direct.mask)) {
-				*imep = ime;
-				if (ime->flags & IP_MATCH_NEGATE)
-					return (0);
-				else
-					return (1);
-			}
-		}
-	}
-	return (-1);
-}
diff --git a/contrib/bind/bin/named/ns_stats.c b/contrib/bind/bin/named/ns_stats.c
deleted file mode 100644
index f04790b1e0f70..0000000000000
--- a/contrib/bind/bin/named/ns_stats.c
+++ /dev/null
@@ -1,402 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char sccsid[] = "@(#)ns_stats.c	4.10 (Berkeley) 6/27/90";
-static const char rcsid[] = "$Id: ns_stats.c,v 8.30 2000/04/23 02:18:59 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-#include <isc/tree.h>
-
-#include "port_after.h"
-
-#ifdef HAVE_GETRUSAGE	/* XXX */
-#include <sys/time.h>
-#include <sys/resource.h>
-#endif
-
-#include "named.h"
-
-static u_long		typestats[T_ANY+1];
-static void		nameserStats(FILE *);
-
-void
-ns_stats() {
-	time_t timenow = time(NULL);
-	FILE *f;
-	int i;
-
-	ns_notice(ns_log_statistics, "dumping nameserver stats");
-
-	if (!(f = fopen(server_options->stats_filename, "a"))) {
-		ns_notice(ns_log_statistics, "cannot open stat file, \"%s\"",
-			  server_options->stats_filename);
-		return;
-	}
-	(void) fchown(fileno(f), user_id, group_id);
-
-	fprintf(f, "+++ Statistics Dump +++ (%ld) %s",
-		(long)timenow, checked_ctime(&timenow));
-	fprintf(f, "%ld\ttime since boot (secs)\n",
-		(long)(timenow - boottime));
-	fprintf(f, "%ld\ttime since reset (secs)\n",
-		(long)(timenow - resettime));
-
-	/* query type statistics */
-	fprintf(f, "%lu\tUnknown query types\n", (u_long)typestats[0]);
-	for (i = 1; i < T_ANY+1; i++)
-		fprintf(f, "%lu\t%s queries\n", typestats[i], p_type(i));
-
-	/* name server statistics */
-	nameserStats(f);
-
-	fprintf(f, "--- Statistics Dump --- (%ld) %s",
-		(long)timenow, checked_ctime(&timenow));
-	(void) my_fclose(f);
-
-	/* Now do the memory statistics file */
-	if (!(f = fopen(server_options->memstats_filename, "a"))) {
-		ns_notice(ns_log_statistics, "cannot open memstat file, \"%s\"",
-			  server_options->memstats_filename);
-		return;
-	}
-	(void) fchown(fileno(f), user_id, group_id);
-
-	fprintf(f, "+++ Memory Statistics Dump +++ (%ld) %s",
-		(long)timenow, checked_ctime(&timenow));
-
-	fprintf(f, "%ld\ttime since boot (secs)\n",
-		(long)(timenow - boottime));
-	fprintf(f, "%ld\ttime since reset (secs)\n",
-		(long)(timenow - resettime));
-
-	fprintf(f, "++ Memory Statistics ++\n");
-	memstats(f);
-	fprintf(f, "-- Memory Statistics --\n");
-
-	fprintf(f, "--- Memory Statistics Dump --- (%ld) %s",
-		(long)timenow, checked_ctime(&timenow));
-	(void) my_fclose(f);
-
-	ns_notice(ns_log_statistics, "done dumping nameserver stats");
-}
-
-void
-qtypeIncr(qtype)
-	int qtype;
-{
-	if (qtype < T_A || qtype > T_ANY)
-		qtype = 0;	/* bad type */
-	typestats[qtype]++;
-}
-
-static tree		*nameserTree;
-static int		nameserInit;
-
-static FILE		*nameserStatsFile;
-static const char	*statNames[nssLast] = {
-			"RR",		/* sent us an answer */
-			"RNXD",		/* sent us a negative response */
-			"RFwdR",	/* sent us a response we had to fwd */
-			"RDupR",	/* sent us an extra answer */
-			"RFail",	/* sent us a SERVFAIL */
-			"RFErr",	/* sent us a FORMERR */
-			"RErr",		/* sent us some other error */
-			"RAXFR",	/* sent us an AXFR */
-			"RLame",	/* sent us a lame delegation */
-			"ROpts",	/* sent us some IP options */
-			"SSysQ",	/* sent them a sysquery */
-			"SAns",		/* sent them an answer */
-			"SFwdQ",	/* fwdd a query to them */
-			"SDupQ",	/* sent them a retry */
-			"SErr",	        /* sent failed (in sendto) */
-			"RQ",		/* sent us a query */
-			"RIQ",		/* sent us an inverse query */
-			"RFwdQ",	/* sent us a query we had to fwd */
-			"RDupQ",	/* sent us a retry */
-			"RTCP",		/* sent us a query using TCP */
-			"SFwdR",	/* fwdd a response to them */
-			"SFail",	/* sent them a SERVFAIL */
-			"SFErr",	/* sent them a FORMERR */
-			"SNaAns",       /* sent them a non autoritative answer */
-			"SNXD",         /* sent them a negative response */
-			"RUQ",		/* sent us an unapproved query */
-			"RURQ",		/* sent us an unapproved recursive query */
-			"RUXFR",	/* sent us an unapproved AXFR or IXFR */
-			"RUUpd",	/* sent us an unapproved update */
-			};
-
-/*
- * Note that addresses in network byte order always have the high byte first.
- * XXX - this is horribly IPv4 dependent, but it's performance critical.
- */
-static int
-nameserCompar(const tree_t t1, const tree_t t2) {
-	u_char *p1 = (u_char *)t1, *p2 = (u_char *)t2;
-	int i;
-
-	for (i = INADDRSZ; i > 0; i--) {
-		u_char c1 = *p1++, c2 = *p2++;
-
-		if (c1 < c2)
-			return (-1);
-		if (c1 > c2)
-			return (1);
-	}
-	return (0);
-}
-
-struct nameser *
-nameserFind(addr, flags)
-	struct in_addr addr;
-	int flags;
-{
-	struct nameser dummy;
-	struct nameser *ns;
-
-	if (!nameserInit) {
-		tree_init(&nameserTree);
-		nameserInit++;
-	}
-
-	dummy.addr = addr;
-	ns = (struct nameser *)tree_srch(&nameserTree, nameserCompar,
-					 (tree_t)&dummy);
-	if (ns == NULL && (flags & NS_F_INSERT) != 0) {
-		ns = (struct nameser *)memget(sizeof(struct nameser));
-		if (ns == NULL) {
- nomem:			if (!haveComplained((u_long)nameserFind, 0))
-				ns_notice(ns_log_statistics, 
-					  "nameserFind: memget failed; %s",
-					  strerror(errno));
-			return (NULL);
-		}
-		memset(ns, 0, sizeof *ns);
-		ns->addr = addr;
-		if (!tree_add(&nameserTree, nameserCompar, (tree_t)ns, NULL)) {
-			int save = errno;
-			memput(ns, sizeof *ns);
-			errno = save;
-			goto nomem;
-		}
-	}
-	return (ns);
-}
-
-static void
-nameserStatsOut(f, stats)
-	FILE *f;
-	u_long stats[];
-{
-	int i;
-	const char *pre = "\t";
-
-	for (i = 0;  i < (int)nssLast;  i++) {
-		fprintf(f, "%s%lu", pre, (u_long)stats[i]);
-		pre = ((i+1) % 5) ? " " : "  ";
-	}
-	fputc('\n', f);
-}
-
-static void
-nameserStatsHdr(f)
-	FILE *f;
-{
-	int i;
-	const char *pre = "\t";
-
-	fprintf(f, "(Legend)\n");
-	for (i = 0;  i < (int)nssLast;  i++) {
-		fprintf(f, "%s%s", pre,
-			statNames[i] ? statNames[i] : "");
-		pre = ((i+1) % 5) ? "\t" : "\n\t";
-	}
-	fputc('\n', f);
-}
-
-static int
-nameserStatsTravUAR(t)
-	tree_t t;
-{
-	struct nameser *ns = (struct nameser *)t;
-
-	fprintf(nameserStatsFile, "[%s]\n",	/* : rtt %u */
-		inet_ntoa(ns->addr)  /*, ns->rtt*/ );
-	nameserStatsOut(nameserStatsFile, ns->stats);
-	return (1);
-}
-
-static void
-nameserStats(f)
-	FILE *f;
-{
-	nameserStatsFile = f;
-	fprintf(f, "++ Name Server Statistics ++\n");
-	nameserStatsHdr(f);
-	fprintf(f, "(Global)\n");
-	nameserStatsOut(f, globalStats);
-	if (NS_OPTION_P(OPTION_HOSTSTATS))
-		tree_trav(&nameserTree, nameserStatsTravUAR);
-	fprintf(f, "-- Name Server Statistics --\n");
-	nameserStatsFile = NULL;
-}
-
-void
-ns_logstats(evContext ctx, void *uap, struct timespec due,
-	    struct timespec inter)
-{
-	char buffer[1024];
-	char buffer2[32], header[64];
-	time_t timenow = time(NULL);
-	int i;
-#ifdef HAVE_GETRUSAGE
-	struct rusage usage, childu;
-#endif /*HAVE_GETRUSAGE*/
-
-#ifdef HAVE_GETRUSAGE
-# define tv_float(tv) ((tv).tv_sec + ((tv).tv_usec / 1000000.0))
-
-	getrusage(RUSAGE_SELF, &usage);
-	getrusage(RUSAGE_CHILDREN, &childu);
-
-	sprintf(buffer, "CPU=%gu/%gs CHILDCPU=%gu/%gs",
-		tv_float(usage.ru_utime), tv_float(usage.ru_stime),
-		tv_float(childu.ru_utime), tv_float(childu.ru_stime));
-	ns_info(ns_log_statistics, "USAGE %lu %lu %s", (u_long)timenow,
-		(u_long)boottime, buffer);
-# undef tv_float
-#endif /*HAVE_GETRUSAGE*/
-
-	sprintf(header, "NSTATS %lu %lu", (u_long)timenow, (u_long)boottime);
-	strcpy(buffer, header);
-
-	for (i = 0; i < T_ANY+1; i++) {
-		if (typestats[i]) {
-			sprintf(buffer2, " %s=%lu", p_type(i), typestats[i]);
-			if (strlen(buffer) + strlen(buffer2) >
-			    sizeof(buffer) - 1) {
-				ns_info(ns_log_statistics, buffer);
-				strcpy(buffer, header);
-			}
-			strcat(buffer, buffer2);
-		}
-	}
-	ns_info(ns_log_statistics, buffer);
-
-	sprintf(header, "XSTATS %lu %lu", (u_long)timenow, (u_long)boottime);
-	strcpy(buffer, header);
-	for (i = 0;  i < (int)nssLast;  i++) {
-		sprintf(buffer2, " %s=%lu",
-			statNames[i]?statNames[i]:"?", (u_long)globalStats[i]);
-		if (strlen(buffer) + strlen(buffer2) > sizeof(buffer) - 1) {
-			ns_info(ns_log_statistics, buffer);
-			strcpy(buffer, header);
-		}
-		strcat(buffer, buffer2);
-	}
-	ns_info(ns_log_statistics, buffer);
-}
-
-static void
-nameserFree(void *uap) {
-	struct nameser *ns = uap;
-
-	memput(ns, sizeof *ns);
-}
-
-void
-ns_freestats(void) {
-	if (nameserTree == NULL)
-		return;
-	tree_mung(&nameserTree, nameserFree);
-	nameserInit = 0;
-}
diff --git a/contrib/bind/bin/named/ns_udp.c b/contrib/bind/bin/named/ns_udp.c
deleted file mode 100644
index 23f437714ac9a..0000000000000
--- a/contrib/bind/bin/named/ns_udp.c
+++ /dev/null
@@ -1,124 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_udp.c,v 8.9 2000/04/21 06:54:13 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <nlist.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-void
-ns_udp() {
-#if defined(CHECK_UDP_SUM) || defined(FIX_UDP_SUM)
-	struct nlist nl[2];
-	int fd;
-	int sum;
-	u_long res, offset;
-
-	nl[0].n_name = UDPSUM;
-	nl[1].n_name = 0;
-
-	if (nlist(KSYMS, nl)) {
-		ns_debug(ns_log_default, 1, "ns_udp: nlist (%s,%s) failed",
-			 KSYMS, UDPSUM);
-		return;
-	}
-
-	ns_debug(ns_log_default, 1, "ns_udp: %s %d %lu (%ld)",
-		 nl[0].n_name, nl[0].n_type, nl[0].n_value, nl[0].n_value);
-
-	if (!nl[0].n_type)
-		return;
-
-	if ((fd = open(KMEM, O_RDWR, 0)) < 0) {
-		ns_debug(ns_log_default, 1, "ns_udp: open %s failed: %s", KMEM,
-			 strerror(errno));
-		return;
-	}
-
-	offset = nl[0].n_value;
-#ifdef KMAP
-	offset &= ((~0UL)>>1);
-#endif
-
-	res = lseek(fd, offset, SEEK_SET);
-	if (res != offset) {
-		ns_debug(ns_log_default, 1, "ns_udp: lseek %lu failed %lu: %s",
-			 offset, res, strerror(errno));
-		goto cleanup;
-	}
-
-	if (read(fd, &sum, sizeof(sum)) != sizeof(sum)) {
-		ns_debug(ns_log_default, 1, "ns_udp: read failed: %s",
-			 strerror(errno));
-		goto cleanup;
-	}
-
-	ns_debug(ns_log_default, 1, "ns_udp: %d", sum);
-	if (sum == 0) {
-#ifdef FIX_UDP_SUM
-		sum = 1;
-		lseek(fd, offset, SEEK_SET);
-		if (res != offset) {
-			ns_debug(ns_log_default, 1,
-				 "ns_udp: lseek %lu failed %lu: %s",
-				 offset, res, strerror(errno));
-			goto cleanup;
-		}
-		if (write(fd, &sum, sizeof(sum)) != sizeof(sum)) {
-			ns_debug(ns_log_default, 1, "ns_udp: write failed: %s",
-				 strerror(errno));
-			goto cleanup;
-		}
-		ns_warning(ns_log_default, "ns_udp: check sums turned on");
-#else
-		ns_panic(ns_log_default, 0,
-			 "ns_udp: checksums NOT turned on, exiting");
-#endif
-	}
-cleanup:
-	close(fd);
-#endif
-}
diff --git a/contrib/bind/bin/named/ns_update.c b/contrib/bind/bin/named/ns_update.c
deleted file mode 100644
index c7d8ad3e83297..0000000000000
--- a/contrib/bind/bin/named/ns_update.c
+++ /dev/null
@@ -1,3019 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_update.c,v 8.78 2000/04/23 02:19:00 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Check Point Software Technologies Incorporated not be used 
- * in advertising or publicity pertaining to distribution of the document 
- * or software without specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
- * INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
- * IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
- * BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
- * ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
- * IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
- * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- */
-
-/*
- * Based on the Dynamic DNS reference implementation by Viraj Bais
- * <viraj_bais@ccm.fm.intel.com>
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/uio.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <sys/stat.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <limits.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <ctype.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static ns_updque curupd;
-
-#define WRITEABLE_MASK (S_IWUSR | S_IWGRP | S_IWOTH)
-
-/* XXXRTH almost all funcs. in here should be static!
-   map rdata_dump to db_to_textual
-   map rdata_expand to wire_to_db
-   make a textual_to_db and use it in merge_logs?
-   replace all this "map" stuff with the new routines (from 4.9.5 I think)
- */
-
-/* from ns_req.c */
-
-static struct map m_opcode[] = {
-	{ "nxdomain",	NXDOMAIN },
-	{ "yxdomain",	YXDOMAIN },
-	{ "nxrrset", 	NXRRSET },
-	{ "yxrrset",	YXRRSET },
-	{ "delete",	DELETE },
-	{ "add",	ADD },
-};
-#define M_OPCODE_CNT (sizeof(m_opcode) / sizeof(struct map))
-
-/* XXXRTH workaround map difficulties */
-#define M_CLASS_CNT m_class_cnt
-#define M_TYPE_CNT m_type_cnt
-
-static char *opcodes[] = {
-	"delete",
-	"add",
-	"",
-	"nxdomain",
-	"",
-	"",
-	"yxdomain",
-	"yxrrset",
-	"nxrrset",
-	"",
-	"",
-};
-
-
-/* from db_load.c */
-
-static struct map m_section[] = {
-	{ "zone",	S_ZONE },
-	{ "prereq",	S_PREREQ },
-	{ "update", 	S_UPDATE },
-	{ "reserved",	S_ADDT },
-};
-#define M_SECTION_CNT (sizeof(m_section) / sizeof(struct map))
-
-/* Forward. */
-
-static int rdata_expand(const u_char *, const u_char *, const u_char *,
-			u_int, size_t, u_char *, size_t);
-
-
-static FILE *
-open_transaction_log(struct zoneinfo *zp) {
-	FILE *fp = fopen(zp->z_updatelog, "a+");
-
-	if (fp == NULL) {
-		ns_error(ns_log_update, "can't open %s: %s", zp->z_updatelog,
-			 strerror(errno));
-		return (NULL);
-	}
-	(void) fchown(fileno(fp), user_id, group_id);
-	if (fseek(fp, 0L, SEEK_END) != 0) {
-		ns_error(ns_log_update, "can't fseek(%s, 0, SEEK_END)",
-			 zp->z_updatelog);
-		fclose(fp);
-		return (NULL);
-	}
-	if (ftell(fp) == 0L) {
-		fprintf(fp, "%s", LogSignature);
-		zp->z_serial_ixfr_start = get_serial(zp);
-	}
-	else
-		zp->z_serial_ixfr_start = 0;
-	return (fp);
-}
-
-static FILE *
-open_ixfr_log(struct zoneinfo *zp) {
-	FILE *fp = fopen(zp->z_ixfr_base, "a+");
-
-	if (fp == NULL) {
-		ns_error(ns_log_update, "can't open %s: %s", zp->z_ixfr_base,
-			 strerror(errno));
-		return (NULL);
-	}
-	(void) fchown(fileno(fp), user_id, group_id);
-	if (fseek(fp, 0L, SEEK_END) != 0) {
-		ns_error(ns_log_update, "can't fseek(%s, 0, SEEK_END)",
-			 zp->z_ixfr_base);
-		fclose(fp);
-		return (NULL);
-	}
-	if (ftell(fp) == 0L) {
-		fprintf(fp, "%s", LogSignature);
-	}
-	return (fp);
-}
-
-static int
-close_transaction_log(struct zoneinfo *zp, FILE *fp) {
-	if (fflush(fp) == EOF) {
-		ns_error(ns_log_update, "fflush() of %s failed: %s",
-			 zp->z_updatelog, strerror(errno));
-		return (-1);
-	}
-	if (fsync(fileno(fp)) < 0) {
-		ns_error(ns_log_update, "fsync() of %s failed: %s",
-			 zp->z_updatelog, strerror(errno));
-		return (-1);
-	}
-	if (fclose(fp) == EOF) {
-		ns_error(ns_log_update, "fclose() of %s failed: %s",
-			 zp->z_updatelog, strerror(errno));
-		return (-1);
-	}
-	return (0);
-}
-
-static int
-close_ixfr_log(struct zoneinfo *zp, FILE *fp) {
-	if (fflush(fp) == EOF) {
-		ns_error(ns_log_update, "fflush() of %s failed: %s",
-			 zp->z_ixfr_base, strerror(errno));
-		fclose(fp);
-		return (-1);
-	}
-	if (fsync(fileno(fp)) < 0) {
-		ns_error(ns_log_update, "fsync() of %s failed: %s",
-			 zp->z_ixfr_base, strerror(errno));
-		fclose(fp);
-		return (-1);
-	}
-	if (fclose(fp) == EOF) {
-		ns_error(ns_log_update, "fclose() of %s failed: %s",
-			 zp->z_ixfr_base, strerror(errno));
-		return (-1);
-	}
-	return (0);
-}
-
-/*
- * return true if 'db' had been added.
- */
-static int
-was_added(const ns_updque *updlist, struct databuf *dp) {
-	ns_updrec *rrecp;
-
-	for (rrecp = HEAD(*updlist); rrecp != NULL; rrecp = NEXT(rrecp, r_link))
-		if (rrecp->r_section == S_UPDATE && rrecp->r_dp == dp)
-			return (1);
-	return (0);
-}
-
-/*
- * return true if 'db' had been deleted.
- */
-static int
-was_deleted(const ns_updque *updlist, struct databuf *dp) {
-	ns_updrec *rrecp;
-	struct databuf *adp;
-
-
-	for (rrecp = HEAD(*updlist); rrecp != NULL; rrecp = NEXT(rrecp, r_link))
-		if (rrecp->r_section == S_UPDATE &&
-		    rrecp->r_deldp != NULL) {
-			adp = rrecp->r_deldp;
-			do {
-				if (adp == dp)
-					return (1);
-			} while ((adp = adp->d_next) != NULL);
-		}
-	return (0);
-}
-
-/*
- * printupdatelog(srcaddr, updlist, hp, zp, old_serial)
- *	append an ascii form to the zone's transaction log file.
- */
-static void
-printupdatelog(struct sockaddr_in srcaddr,
-	       const ns_updque *updlist,
-	       HEADER *hp,
-	       struct zoneinfo *zp,
-	       u_int32_t old_serial)
-{
-	struct databuf *dp;
-	struct map *mp;
-	ns_updrec *rrecp;
-	int opcode;
-	char time[25];
-	FILE *fp, *ifp;
-
-	if (EMPTY(*updlist))
-		return;
-
-	fp = open_transaction_log(zp);
-	if (fp == NULL)
-		return;
-
-	ifp = open_ixfr_log(zp);
-	if (ifp == NULL) {
-		(void) close_transaction_log(zp, fp);
-		return;
-	}
-	sprintf(time, "at %lu", (u_long)tt.tv_sec);
-	fprintf(fp, "[DYNAMIC_UPDATE] id %u from %s %s (named pid %ld):\n",
-	        ntohs(hp->id), sin_ntoa(srcaddr), time, (long)getpid());
-	fprintf(ifp, "[DYNAMIC_UPDATE] id %u from %s %s (named pid %ld):\n",
-	        ntohs(hp->id), sin_ntoa(srcaddr), time, (long)getpid());
-	for (rrecp = HEAD(*updlist); rrecp != NULL; rrecp = NEXT(rrecp, r_link)) {
-		INSIST(zp == &zones[rrecp->r_zone]);
-		switch (rrecp->r_section) {
-		case S_ZONE:
-			fprintf(fp, "zone:\torigin %s class %s serial %u\n",
-				zp->z_origin, p_class(zp->z_class),
-				old_serial);
-			fprintf(ifp, "zone:\torigin %s class %s serial %u\n",
-				zp->z_origin, p_class(zp->z_class),
-				old_serial);
-			break;
-		case S_PREREQ:
-			opcode = rrecp->r_opcode;
-			fprintf(fp, "prereq:\t{%s} %s. %s ",
-				opcodes[opcode], rrecp->r_dname,
-				p_class(zp->z_class));
-			if (opcode == NXRRSET || opcode == YXRRSET) {
-				fprintf(fp, "%s ", p_type(rrecp->r_type));
-				if ((dp = rrecp->r_dp) && dp->d_size > 0) {
-					dp->d_class = zp->z_class;
-					(void) rdata_dump(dp, fp);
-				}
-			}
-			fprintf(fp, "\n");
-			break;
-		case S_UPDATE:
-			opcode = rrecp->r_opcode;
-			/*
-			 * Translate all deletes into explict actions by
-			 * looking at what was actually deleted from the
-			 * zone for the ixfr log. 
-			 */
-			dp = rrecp->r_deldp;
-			while (dp != NULL) {
-				if (dp->d_rcode == 0 &&
-				    !was_added(updlist, dp)) {
-					fprintf(ifp,
-						"update:\t{%s} %s. %u %s %s ",
-						"delete",
-						rrecp->r_dname,
-						dp->d_ttl,
-						p_class(dp->d_class),
-						p_type(dp->d_type));
-					(void) rdata_dump(dp, ifp);
-					fprintf(ifp, "\n");
-				}
-				dp = dp->d_next;
-			}
-			/*
-			 * Only successful adds should be recorded.
-			 * Don't add changes that are undone later.
-			 * SOA additions performed later.
-			 */
-			if (opcode == ADD && (dp = rrecp->r_dp) != NULL &&
-			    dp->d_type != T_SOA &&
-			    (dp->d_mark & D_MARK_ADDED) != 0 &&
-			    !was_deleted(updlist, dp)) {
-				fprintf(ifp, "update:\t{%s} %s. ",
-					opcodes[opcode], rrecp->r_dname);
-				fprintf(ifp, "%u ", rrecp->r_ttl);
-				fprintf(ifp, "%s ", p_class(zp->z_class));
-				fprintf(ifp, "%s ", p_type(rrecp->r_type));
-				(void) rdata_dump(dp, ifp);
-				fprintf(ifp, "\n");
-			}
-			/* Update log. */
-			fprintf(fp, "update:\t{%s} %s. ",
-				opcodes[opcode], rrecp->r_dname);
-			if (opcode == ADD)
-				fprintf(fp, "%u ", rrecp->r_ttl);
-			fprintf(fp, "%s ", p_class(zp->z_class));
-			if (rrecp->r_type != T_ANY)
-				fprintf(fp, "%s ", p_type(rrecp->r_type));
-			if ((dp = rrecp->r_dp) && dp->d_size > 0) {
-				dp->d_class = zp->z_class;
-				(void) rdata_dump(dp, fp);
-			}
-			fprintf(fp, "\n");
-			break;
-		case S_ADDT:
-			break;
-		default:
-			ns_panic(ns_log_update, 1,
-				 "printupdatelog - impossible condition");
-			/*NOTREACHED*/
-		}
-	}
-	/*
-	 * SOA additions must be last in this update as they
-	 * (or [INCR_SERIAL]) terminate an IXFR chunk.  Only the last SOA
-	 * addition will be emitted for any dynamic update regardless
-	 * of the number of SOA changes in the update.
-	 */
-	for (rrecp = HEAD(*updlist); rrecp != NULL; rrecp = NEXT(rrecp, r_link)) {
-		INSIST(zp == &zones[rrecp->r_zone]);
-		switch (rrecp->r_section) {
-		case S_UPDATE:
-			opcode = rrecp->r_opcode;
-			if (opcode == ADD && (dp = rrecp->r_dp) != NULL &&
-			    dp->d_type == T_SOA &&
-			    (dp->d_mark & D_MARK_ADDED) != 0 &&
-			    !was_deleted(updlist, dp)) {
-				fprintf(ifp, "update:\t{%s} %s. ",
-					opcodes[opcode], rrecp->r_dname);
-				fprintf(ifp, "%u ", rrecp->r_ttl);
-				fprintf(ifp, "%s ", p_class(zp->z_class));
-				fprintf(ifp, "%s ", p_type(rrecp->r_type));
-				(void) rdata_dump(dp, ifp);
-				fprintf(ifp, "\n[END_DELTA]\n");
-			}
-			break;
-		default:
-			break;
-		}
-	}
-	fprintf(fp, "\n");
-	(void) close_transaction_log(zp, fp);
-	(void) close_ixfr_log(zp, ifp);
-}
-
-static void
-cancel_soa_update(struct zoneinfo *zp) {
-	ns_debug(ns_log_update, 3, "cancel_soa_update for %s", zp->z_origin);
-	zp->z_flags &= ~Z_NEED_SOAUPDATE;
-	zp->z_soaincrtime = 0;
-	zp->z_updatecnt = 0;
-}
-
-/*
- * Figure out when a SOA serial number update should happen.
- * Returns non-zero if the caller should call sched_zone_maint(zp).
- */
-int
-schedule_soa_update(struct zoneinfo *zp, int numupdated) {
-	(void) gettime(&tt);
-
-	zp->z_flags |= Z_NEED_SOAUPDATE;
-	
-	/*
-	 * Only z_deferupdcnt updates are allowed before we force
-	 * a serial update.
-	 */
-	zp->z_updatecnt += numupdated;
-	if (zp->z_updatecnt >= zp->z_deferupdcnt) {
-		if (zp->z_soaincrtime > tt.tv_sec) {
-			zp->z_soaincrtime = tt.tv_sec;
-			return (1);
-		}
-	}
-
-	if (zp->z_soaincrintvl > 0) {
-		/* We want automatic updates in this zone. */
-		if (zp->z_soaincrtime > 0) {
-			/* Already scheduled. */
-			ns_debug(ns_log_update, 3,
-			 "schedule_soa_update('%s'): already scheduled",
-				 zp->z_origin);
-			return (0);
-		} else {
-			/* First update since the soa was last incremented. */
-			zp->z_updatecnt = numupdated;
-			zp->z_soaincrtime = tt.tv_sec + zp->z_soaincrintvl;
-			/*
-			 * Never schedule soaincrtime to occur after
-			 * dumptime.
-			 */
-			if (zp->z_soaincrtime > zp->z_dumptime)
-				zp->z_soaincrtime = zp->z_dumptime;
-			ns_debug(ns_log_update, 3,
-			 "schedule_soa_update('%s'): scheduled for %lu",
-				 zp->z_origin, (u_long)zp->z_soaincrtime);
-			return (1);
-		}
-	}
-	return (0);
-}
-
-/*
- * Figure out when a zone dump should happen.
- * Returns non-zero if the caller should call sched_zone_maint(zp).
- */
-int
-schedule_dump(struct zoneinfo *zp) { 
-	time_t half;
-
-	(void) gettime(&tt);
-
-	zp->z_flags |= Z_NEED_DUMP;
-	
-	if (zp->z_dumpintvl > 0) {
-		/* We want automatic dumping in this zone. */
-		if (zp->z_dumptime > 0) {
-			/* Already scheduled. */
-			ns_debug(ns_log_update, 3,
-				 "schedule_dump('%s'): already scheduled",
-				 zp->z_origin);
-			return (0);
-		} else {
-			/*
-			 * Set new dump time for dynamic zone.  Use a random
-			 * number in the last half of the dump limit; we want
-			 * it to be substantially correct while still
-			 * preventing dump synchronization among various
-			 * dynamic zones.
-			 */
-			half = (zp->z_dumpintvl + 1) / 2;
-			zp->z_dumptime = tt.tv_sec + half + (rand() % half);
-			/*
-			 * Never schedule soaincrtime to occur after
-			 * dumptime.
-			 */
-			if (zp->z_soaincrtime > zp->z_dumptime)
-				zp->z_soaincrtime = zp->z_dumptime;
-			ns_debug(ns_log_update, 3,
-				 "schedule_dump('%s'): scheduled for %lu",
-				 zp->z_origin, (u_long)zp->z_dumptime);
-			return (1);
-		}
-	}
-	return (0);
-}
-
-/*
- * int
- * process_prereq(rec, rcodep)
- *	Process one prerequisite.
- * returns:
- *	>0 prerequisite was satisfied.
- *	=0 prerequisite was not satisfied, or an error occurred.
- * side effects:
- *	sets *rcodep if an error occurs or prerequisite isn't satisfied.
- */
-static int
-process_prereq(ns_updrec *ur, int *rcodep, u_int16_t zclass) {
-	const char *dname = ur->r_dname;
-	u_int16_t class = ur->r_class;
-	u_int16_t type = ur->r_type;
-	u_int32_t ttl = ur->r_ttl;
-	struct databuf *rdp = ur->r_dp;
-	const char *fname;
-	struct hashbuf *htp;
-	struct namebuf *np;
-	struct databuf *dp;
-
-	/*
-	 * An element in the list might have already been
-	 * processed if it is in the same RRset as a previous
-	 * RRset Exists (value dependent) prerequisite.
-	 */
-	if (rdp && (rdp->d_mark & D_MARK_FOUND) != 0) {
-		/* Already processed. */
-	        return (1);
-	}
-	if (ttl != 0) {
-		ns_debug(ns_log_update, 1,
-			 "process_prereq: ttl!=0 in prereq section");
-		*rcodep = FORMERR;
-		return (0);
-	}
-	htp = hashtab;
-	np = nlookup(dname, &htp, &fname, 0);
-	/*
-	 * Matching by wildcard not allowed here. 
-	 * We need to post check for a wildcard match.
-	 */
-	if (fname != dname ||
-	    (np != NULL && ns_wildcard(NAME(*np)) &&
-	     (dname[0] != '*' || (dname[1] != '.' && dname[1] != '\0'))))
-		np = NULL;
-
-	if (class == C_ANY) {
-		if (rdp->d_size) {
-			ns_debug(ns_log_update, 1,
-   "process_prereq: empty rdata required in prereq section with class=ANY");
-			*rcodep = FORMERR;
-			return (0);
-		}
-		if (type == T_ANY) {
-			/* Name is in use. */
-			ur->r_opcode = YXDOMAIN;
-			if (np == NULL || np->n_data == NULL) {
-				/*
-				 * Name does not exist or is
-				 * an empty nonterminal.
-				 */
-				ns_debug(ns_log_update, 1,
-					 "process_prereq: %s not in use",
-					 dname);
-				*rcodep = NXDOMAIN;
-				return (0);
-			}
-		} else {
-			/* RRset exists (value independent). */
-			int found = 0;
-
-			ur->r_opcode = YXRRSET;
-			if (np != NULL)
-				for (dp = np->n_data;
-				     dp && !found;
-				     dp = dp->d_next)
-					if (match(dp, class, type) &&
-					    dp->d_type == type)
-						found = 1;
-			if (!found) {
-				ns_debug(ns_log_update, 1,
-			  "process_prereq: RRset (%s,%s,%s) does not exist",
-					 dname, p_type(type), p_class(zclass));
-				*rcodep = NXRRSET;
-				return (0);
-			}
-		}
-	} else if (class == C_NONE) {
-		if (rdp->d_size) {
-			ns_debug(ns_log_update, 1,
-  "process_prereq: empty rdata required in prereq section with class=NONE");
-			*rcodep = FORMERR;
-			return (0);
-		}
-		if (type == T_ANY) {
-			/* Name is not in use. */
-			ur->r_opcode = NXDOMAIN;
-			if (np != NULL && np->n_data != NULL) {
-				/*
-				 * Name exists and is not an
-				 * empty nonterminal.
-				 */
-				ns_debug(ns_log_update, 1,
-					 "process_prereq: %s exists",
-					 dname);
-				*rcodep = YXDOMAIN;
-				return (0);
-			}
-		} else {
-			/* RRset does not exist. */
-			int found = 0;
-
-			ur->r_opcode = NXRRSET;
-			class = zclass;
-			if (np != NULL)
-				for (dp = np->n_data;
-				     dp && !found;
-				     dp = dp->d_next)
-					if (match(dp, class, type))
-						found = 1;
-			if (found) {
-				ns_debug(ns_log_update, 1,
-				     "process_prereq: RRset (%s,%s) exists",
-					 dname, p_type(type));
-				*rcodep = YXRRSET;
-				return (0);
-			}
-		}
-	} else if (class == zclass) {
-		/*
-		 * RRset exists (value dependent).
-		 *
-		 * Check for RRset equality also.
-		 */
-		ns_updrec *tmp;
-
-		ur->r_opcode = YXRRSET;
-		if (!rdp) {
-			ns_debug(ns_log_update, 1,
-  "process_prereq: nonempty rdata required in prereq section with class=%s",
-				 p_class(class));
-			*rcodep = FORMERR;
-			return (0);
-		}
-		if (np == NULL || fname != dname) {
-			*rcodep = NXRRSET;
-			return (0);
-		}
-		for (dp = np->n_data; dp; dp = dp->d_next) {
-			if (match(dp, class, type) && dp->d_type == type) {
-				int found = 0;
-
-				for (tmp = ur;
-				     tmp != NULL && !found;
-				     tmp = NEXT(tmp, r_link)) {
-					if (tmp->r_section != S_PREREQ)
-						break;
-					if (!db_cmp(dp, tmp->r_dp)) {
-						tmp->r_dp->d_mark |=
-							D_MARK_FOUND;
-						found = 1;
-					}
-				}
-				if (!found) {
-					*rcodep = NXRRSET;
-					return (0);
-				}
-			}
-		}
-		for (tmp = ur; tmp != NULL; tmp = NEXT(tmp, r_link))
-			if (tmp->r_section == S_PREREQ &&
-			    ns_samename(dname, tmp->r_dname) == 1 &&
-			    tmp->r_class == class &&
-			    tmp->r_type == type &&
-			    (ur->r_dp->d_mark & D_MARK_FOUND) == 0) {
-				*rcodep = NXRRSET;
-				return (0);
-			} else {
-				tmp->r_opcode = YXRRSET;
-			}
-	} else {
-		ns_debug(ns_log_update, 1,
-			 "process_prereq: incorrect class %s",
-			 p_class(class));
-		*rcodep = FORMERR;
-		return (0);
-	}
-	/* Through the gauntlet, and out. */
-	return (1);
-}
-
-static int
-prescan_nameok(ns_updrec *ur, int *rcodep, u_int16_t zclass,
-	       struct zoneinfo *zp) {
-	const char *dname = ur->r_dname;
-	const char *owner = ur->r_dname;
-	u_int16_t class = ur->r_class;
-	u_int16_t type = ur->r_type;
-	char *cp = (char *)ur->r_dp->d_data;
-	enum context context;
-
-	int ret = 1;
-
-	/* We don't care about deletes */
-	if (ur->r_class != zclass)
-		return (1);
-
-	context = ns_ownercontext(type, primary_trans);
-	if (!ns_nameok(NULL, owner, class, zp, primary_trans, context, owner,
-		       inaddr_any))
-		goto refused;
-
-	switch (type) {
-	case ns_t_soa:
-		context = hostname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		cp += strlen(cp) + 1;
-		context = mailname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_rp:
-		context = mailname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		cp += strlen(cp) + 1;
-		context = domain_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_minfo:
-		context = mailname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		cp += strlen(cp) + 1;
-		context = mailname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_ns:
-		context = hostname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_cname:
-	case ns_t_mb:
-	case ns_t_mg:
-	case ns_t_mr:
-		context = domain_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_ptr:
-		context = ns_ptrcontext(owner);
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_naptr:
-		/*
-		 * Order (2)
-		 * Preference (2)
-		 * Flags (1)
-		 */
-		cp += 5;
-		/* Service (txt) */
-		cp += strlen(cp) + 1;
-		/* Pattern (txt) */
-		cp += strlen(cp) + 1;
-		context = domain_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_srv:
-		cp += 4;
-		/* FALLTHROUGH */
-	case ns_t_mx:
-	case ns_t_afsdb:
-	case ns_t_rt:
-	case ns_t_kx:
-		cp += 2;
-		context = hostname_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_px:
-		cp += 2;
-		context = domain_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		cp += strlen(cp) + 1;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_sig:
-		/*
-		 * Type covered (2)
-		 * Alg (1) *
-		 * Labels (1)
-		 * ttl (4)
-		 * expires (4)
-		 * signed (4)
-		 * footprint (2)
-		 */
-		cp += 18;
-		context = domain_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	case ns_t_nxt:
-		context = domain_ctx;
-		if (!ns_nameok(NULL, cp, class, zp, primary_trans, context, owner,
-			       inaddr_any))
-			goto refused;
-		break;
-	default:
-		break;
-	}
-	return (1);
- refused:
-	*rcodep = REFUSED;
-	return (0);
-}
-
-/*
- * int
- * prescan_update(ur, rcodep)
- *	Process one prerequisite.
- * returns:
- *	>0 update looks OK (format wise; who knows if it will succeed?)
- *	=0 update has something wrong with it.
- * side effects:
- *	sets *rcodep if an error occurs or prerequisite isn't satisfied.
- */
-static int
-prescan_update(ns_updrec *ur, int *rcodep, u_int16_t zclass) {
-	const char *dname = ur->r_dname;
-	u_int16_t class = ur->r_class;
-	u_int16_t type = ur->r_type;
-	u_int32_t ttl = ur->r_ttl;
-	struct databuf *rdp = ur->r_dp;
-	const char *fname;
-	struct hashbuf *htp;
-	struct namebuf *np;
-
-	if (class == zclass) {
-		if (!ns_t_rr_p(type)) {
-			ns_debug(ns_log_update, 1,
-				 "prescan_update: invalid type (%s)",
-				 p_type(type));
-			*rcodep = FORMERR;
-			return (0);
-		}
-		if (ttl > MAXIMUM_TTL) {
-			ns_debug(ns_log_update, 1,
-				"prescan_update: invalid ttl (%u)", ttl);
-			*rcodep = FORMERR;
-			return (0);
-		}
-	} else if (class == C_ANY) {
-		if (ttl != 0 || rdp->d_size ||
-		    (!ns_t_rr_p(type) && type != T_ANY))
-		{
-			ns_debug(ns_log_update, 1,
-				 "prescan_update: formerr(#2)");
-			*rcodep = FORMERR;
-			return (0);
-		}
-	} else if (class == C_NONE) {
-		if (ttl != 0 || !ns_t_rr_p(type)) {
-			ns_debug(ns_log_update, 1,
-				 "prescan_update: formerr(#3) %d %s",
-				 ttl, p_type(type));
-			*rcodep = FORMERR;
-			return (0);
-		}
-	} else {
-		ns_debug(ns_log_update, 1,
-			 "prescan_update: invalid class (%s)",
-			 p_class(class));
-		*rcodep = FORMERR;
-		return (0);
-	}
-	/* No format errors found. */
-	return (1);
-}
-
-/*
- * int
- * process_updates(updlist, rcodep, from)
- *	Process prerequisites and apply updates from the list to the database.
- * returns:
- *	number of successful updates, 0 if none were successful.
- * side effects:
- *	*rcodep gets the transaction return code.
- *	can schedule maintainance for zone dumps and soa.serial# increments.
- */
-static int
-process_updates(const ns_updque *updlist, int *rcodep,
-		struct sockaddr_in from)
-{
-	int i, j, n, dbflags, matches, zonenum;
-	int numupdated = 0, soaupdated = 0, schedmaint = 0;
-	u_int16_t zclass;
-	ns_updrec *ur;
-	const char *fname;
-	struct databuf *dp, *savedp;
-	struct zoneinfo *zp;
-	int zonelist[MAXDNAME];
-
-	*rcodep = SERVFAIL;
-	if (EMPTY(*updlist))
-		return (0);
-	ur = HEAD(*updlist);
-	if (ur->r_section == S_ZONE) {
-		zclass = ur->r_class;
-		zonenum = ur->r_zone;
-		zp = &zones[zonenum];
-	} else {
-		ns_debug(ns_log_update, 1,
-			 "process_updates: missing zone record");
-		return (0);
-	}
-
-	/* Process prereq records and prescan update records. */
-	for (ur = HEAD(*updlist); ur != NULL; ur = NEXT(ur, r_link)) {
-		const char *	dname = ur->r_dname;
-		u_int16_t	class = ur->r_class;
-		u_int16_t	type = ur->r_type;
-		u_int32_t	ttl = ur->r_ttl;
-		struct databuf *rdp = ur->r_dp;
-		u_int		section = ur->r_section;
-
-		ns_debug(ns_log_update, 3,
-"process_update: record section=%s, dname=%s, \
-class=%s, type=%s, ttl=%d, dp=0x%0x",
-			 p_section(section, ns_o_update), dname,
-			 p_class(class), p_type(type), ttl, rdp);
-
-		matches = findzone(dname, zclass, MAXDNAME, 
-				   zonelist, MAXDNAME);
-		ur->r_zone = 0;
-		for (j = 0; j < matches && !ur->r_zone; j++)
-			if (zonelist[j] == zonenum)
-				ur->r_zone = zonelist[j];
-		if (!ur->r_zone || 
-		    (section != S_ADDT && type == T_SOA &&
-		     ns_samename(dname, zp->z_origin) != 1)) {
-			ns_debug(ns_log_update, 1,
-		    "process_updates: record does not belong to the zone %s",
-				 zones[zonenum].z_origin);
-			*rcodep = NOTZONE;
-			return (0);
-		}
-
-		switch (section) {
-		case S_ZONE:
-			break;
-		case S_PREREQ:
-			if (!process_prereq(ur, rcodep, zclass))
-				return (0);	/* *rcodep has been set. */
-			ns_debug(ns_log_update, 3, "prerequisite satisfied");
-			break;
-		case S_UPDATE:
-			if (!prescan_update(ur, rcodep, zclass))
-				return (0);	/* *rcodep has been set. */
-			if (!prescan_nameok(ur, rcodep, zclass, zp))
-				return (0);	/* *rcodep has been set. */
-			ns_debug(ns_log_update, 3, "update prescan succeeded");
-			break;
-		case S_ADDT:
-			break;
-		default:
-			ns_panic(ns_log_update, 1,
-				 "process_updates: impossible section");
-			/* NOTREACHED */
-		}
-	}
-
-	/* Now process the records in update section. */
-	for (ur = HEAD(*updlist); ur != NULL; ur = NEXT(ur, r_link)) {
-		const char *	dname = ur->r_dname;
-		u_int16_t	class = ur->r_class;
-
-		if (ur->r_section != S_UPDATE)
-			continue;
-		dbflags = 0;
-		savedp = NULL;
-		dp = ur->r_dp;
-		if (class == zp->z_class) {
-			/* ADD databuf dp to hash table */
-			/*
-			 * Handling of various SOA/WKS/CNAME scenarios
-			 * is done in db_update().
-			 */
-			ur->r_opcode = ADD;
-			dbflags |= DB_NODATA | DB_REPLACE;
-			n = db_update(dname, dp, dp, &savedp,
-				      dbflags, hashtab, from);
-			if (!((n == OK) || 
-			  ((zp->z_xferpid == XFER_ISIXFR) && (n == DATAEXISTS))))  {
-				ns_debug(ns_log_update, 3,
-			       "process_updates: failed to add databuf (%d)",
-					 n);
-			} else {
-				ns_debug(ns_log_update, 3,
-				      "process_updates: added databuf 0x%0x",
-					 dp);
-				dp->d_mark = D_MARK_ADDED;
-				numupdated++;
-				if (dp->d_type == T_SOA)
-					soaupdated = 1;
-			}
-		} else if (class == C_ANY || class == C_NONE) {
-			/*
-			 * DELETE databuf's matching dp from the hash table.
-			 *
-			 * handling of various SOA/NS scenarios done
-			 * in db_update().
-			 */
-			ur->r_opcode = DELETE;
-			/*
-			 * we know we're deleting now, and db_update won't
-			 * match with class==C_NONE, so we use the zone's
-			 * class.
-			 */
-			if (class == C_NONE)
-				ur->r_dp->d_class = zp->z_class;
-			dbflags |= DB_DELETE;
-			n = db_update(dname, dp, NULL, &savedp,
-				      dbflags, hashtab, from);
-			if (!((n == OK) ||
-			  ((zp->z_xferpid == XFER_ISIXFR) && (n == NODATA))))  {
-				ns_debug(ns_log_update, 3,
-					 "process_updates: delete failed");
-			} else {
-				ns_debug(ns_log_update, 3,
-					 "process_updates: delete succeeded");
-				numupdated++;
-			}
-		}
-		/*
-		 * Even an addition could have caused some deletions like
-		 * replacing old SOA or CNAME or WKS record or records of
-		 * lower cred/clev.
-		 *
-		 * We need to save the deleted databuf's in case we wish to
-		 * abort this update transaction and roll back all updates
-		 * applied from this packet.
-		 */
-		ur->r_deldp = savedp;
-	}
-
-	/*
-	 * If we got here, things are OK, so set rcodep to indicate so.
-	 */
-	*rcodep = NOERROR;
-
-	if (!numupdated)
-		return (0);
-
-	/*
-	 * schedule maintenance for dumps and SOA.serial# increment 
-	 * (this also sets Z_NEED_DUMP and Z_NEED_SOAUPDATE appropriately)
-	 */
-	schedmaint = 0;
-	if (schedule_dump(zp))
-		schedmaint = 1;
-	if (soaupdated) {
-		/*
-		 * SOA updated by this update transaction, so
-		 * we need to set the zone serial number, stop any
-		 * automatic updates that may be pending, and send out
-		 * a NOTIFY message.
-		 */
-		zp->z_serial = get_serial_unchecked(zp);
- 	        cancel_soa_update(zp);
-		schedmaint = 1;
-#ifdef BIND_NOTIFY
-		if (!loading)
-			ns_notify(zp->z_origin, zp->z_class, ns_t_soa);
-#endif
-	} else {
-		if (schedule_soa_update(zp, numupdated))
-			schedmaint = 1;
-	}
-	if (schedmaint)
-		sched_zone_maint(zp);
-	return (numupdated);
-}
-
-static enum req_action
-req_update_private(HEADER *hp, u_char *cp, u_char *eom, u_char *msg, 
-		   struct qstream *qsp, int dfd, struct sockaddr_in from,
-		   struct tsig_record *in_tsig)
-{
-	char dnbuf[MAXDNAME], *dname;
-	u_int zocount, prcount, upcount, adcount, class, type, dlen;
-	u_int32_t ttl;
-	int i, n, cnt, found, matches, zonenum, numupdated = 0;
-	int rcode = NOERROR;
-	u_int c, section;
-	u_char rdata[MAXDATA];
-	struct qinfo *qp;
-	struct databuf *dp, *nsp[NSMAX];
-	struct databuf **nspp = &nsp[0];
-	struct zoneinfo *zp;
-	ns_updrec *rrecp;
-	int zonelist[MAXDNAME];
-	int should_use_tcp;
-	u_int32_t old_serial;
-	int unapproved_ip = 0;
-	int tsig_len;
-	DST_KEY *in_key = (in_tsig != NULL) ? in_tsig->key : NULL; 
-
-	nsp[0] = NULL;
-
-	zocount = ntohs(hp->qdcount);
-	prcount = ntohs(hp->ancount);
-	upcount = ntohs(hp->nscount);
-	adcount = ntohs(hp->arcount);
-
-	/* Process zone section. */
-	ns_debug(ns_log_update, 3, "req_update: section ZONE, count %d",
-		 zocount);
-	if ((n = dn_expand(msg, eom, cp, dnbuf, sizeof(dnbuf))) < 0) {
-		ns_debug(ns_log_update, 1, "req_update: expand name failed");
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	dname = dnbuf;
- 	cp += n;
-	if (cp + 2 * INT16SZ > eom) {
-		ns_debug(ns_log_update, 1, "req_update: too short");
-		hp->rcode = FORMERR;
-		return (Finish);
-	}		
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	if (zocount != 1 || type != T_SOA) {
-		ns_debug(ns_log_update, 1,
-		  "req_update: incorrect count or type for zone section: %d",
-			 zocount);
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-
-	matches = findzone(dname, class, 0, zonelist, MAXDNAME);
-	if (matches == 1) {
-		zonenum = zonelist[0];
-		zp = &zones[zonenum];
-		if (zp->z_class != (int)class ||
-		    (zp->z_type != z_master && zp->z_type != z_slave))
-			matches = 0;
-	}
-	if (matches != 1) {
-		ns_debug(ns_log_update, 1,
-			 "req_update: non-authoritative server for %s",
-			 dname);
-		hp->rcode = NOTAUTH;
-		return (Finish);
-	}
-
-	/*
-	 * Begin Access Control Point
-	 */
-
-	if (!ip_addr_or_key_allowed(zp->z_update_acl, from.sin_addr, in_key)) {
-		ns_notice(ns_log_security, "denied update from %s for %s",
-			  sin_ntoa(from), *dname ? dname : ".");
-		nameserIncr(from.sin_addr, nssRcvdUUpd);
-		return (Refuse);
-	}
-
-	/*
-	 * End Access Control Point
-	 */
-
-	/* we should be authoritative */
-	if (!(zp->z_flags & Z_AUTH)) {
-		ns_debug(ns_log_update, 1,
-			 "req_update: zone %s: Z_AUTH not set",
-			 dname);
-		hp->rcode = NOTAUTH;
-		return (Finish);
-	}
-
-	if (zp->z_type == Z_SECONDARY) {
-		/*
-		 * XXX	The code below is broken.
-		 *	Until fixed, we just return NOTIMPL.
-		 */
-#if 1
-		hp->rcode = ns_r_notimpl;
-		return (Finish);
-#else		
-		/* We are a slave for this zone, forward it to the master. */
-		for (cnt = 0; cnt < zp->z_addrcnt; cnt++)
-			*nspp++ = savedata(zp->z_class, T_A, USE_MINIMUM,
-					   (u_char *)&zp->z_addr[cnt].s_addr,
-					   INT32SZ);
-		*nspp = NULL;
-		/*
-		 * If the request came in over TCP, forward it over TCP
-		 */
-		should_use_tcp = (qsp != NULL);
-		if (in_tsig != NULL) {
-			tsig_len = ns_skiprr(eom, eom + TSIG_BUF_SIZE,
-					     ns_s_ar, 1);
-			eom += tsig_len;
-		}
-		n = ns_forw(nsp, msg, eom-msg, from, qsp, dfd, &qp,
-			    dname, class, type, NULL, should_use_tcp, NULL);
-		if (in_tsig != NULL)
-			eom -= tsig_len;
-		free_nsp(nsp);
-		switch (n) {
-		case FW_OK:
-		case FW_DUP:
-			return (Return);
-		case FW_NOSERVER:
-			/* should not happen */
-		case FW_SERVFAIL:
-			hp->rcode = SERVFAIL;
-			return (Finish);
-		}
-#endif
-	}
-	/*
-	 * We are the primary master server for this zone,
-	 * proceed further and process update packet
-	 */
-	if (!(zp->z_flags & Z_DYNAMIC)) {
-		ns_debug(ns_log_update, 1,
-			 "req_update: dynamic flag not set for zone %s",
-			 dname);
-		return (Refuse);
-	}
-	old_serial = get_serial(zp);
-	ns_debug(ns_log_update, 3,
-		 "req_update: update request for zone %s, class %s",
-		 zp->z_origin, p_class(class));
-	rrecp = res_mkupdrec(S_ZONE, dname, class, type, 0);
-	rrecp->r_zone = zonenum;
-
-	APPEND(curupd, rrecp, r_link);
-
-	/*
-	 * Parse the prerequisite and update sections for format errors.
-	 */
-	for (i = 0; (u_int)i < prcount + upcount; i++) {
-		if ((n = dn_expand(msg, eom, cp, dnbuf, sizeof(dnbuf))) < 0) {
-			ns_debug(ns_log_update, 1,
-				 "req_update: expand name failed");
-			hp->rcode = FORMERR;
-			return (Finish);
-	  	}
-	   	dname = dnbuf;
- 	   	cp += n;
-	   	if (cp + RRFIXEDSZ > eom) {
-			ns_debug(ns_log_update, 1,
-				 "req_update: overrun in answer");
-			hp->rcode = FORMERR;
-			return (Finish);
-	   	}
-	   	GETSHORT(type, cp);
-	   	GETSHORT(class, cp);
-		if (class > CLASS_MAX) {
-			ns_debug(ns_log_update, 1,
-				 "req_update: bad class");
-			hp->rcode = FORMERR;
-			return (Finish);
-		}
-	   	GETLONG(ttl, cp);
-	   	GETSHORT(dlen, cp);
-		n = 0;
-		dp = NULL;
-	   	if (dlen > 0) {
-			if (cp + dlen > eom) {
-				ns_debug(ns_log_update, 1,
-					 "req_update: bad dlen");
-				hp->rcode = FORMERR;
-				return (Finish);
-			}
-			n = rdata_expand(msg, eom, cp, type, dlen,
-					 rdata, sizeof rdata);
-			if (n == 0 || n > MAXDATA) {
-				ns_debug(ns_log_update, 1, 
-				     "req_update: failed to expand record");
-				hp->rcode = FORMERR;
-				return (Finish);
-			}
-			cp += dlen;
-	   	}
-		section = ((u_int)i < prcount) ? S_PREREQ : S_UPDATE;
-		rrecp = res_mkupdrec(section, dname, class, type, ttl);
-		dp = savedata(class, type, ttl, rdata, n);
-		dp->d_zone = zonenum;
-		dp->d_cred = DB_C_ZONE;
-		dp->d_secure = DB_S_INSECURE; /* should be UNCHECKED */
-		dp->d_clev = nlabels(zp->z_origin);
-		/* XXX - also record in dp->d_ns, which host this came from */
-		rrecp->r_dp = dp;
-		/* Append the current record to the end of list of records. */
-		APPEND(curupd, rrecp, r_link);
-		if (cp > eom) {
-			ns_info(ns_log_update,
-				"Malformed response from %s (overrun)",
-				inet_ntoa(from.sin_addr));
-			hp->rcode = FORMERR;
-			return (Finish);
-		}
-	}
-
-	/* Now process all parsed records in the prereq and update sections. */
-	numupdated = process_updates(&curupd, &rcode, from);
-	hp->rcode = rcode;
-	if (numupdated <= 0) {
-		if (rcode != NOERROR)
-			ns_error(ns_log_update,
-				 "error processing update packet (%s) id %d from %s",
-				 p_rcode(rcode), ntohs(hp->id), sin_ntoa(from));
-		return (Finish);
-	}
-
-	/*
-	 * Stop any outbound zone transfers.
-	 * (Eventlib is synchronous for this.)
-	 */
-	ns_stopxfrs(zp);
-
-	/* Make a log of the update. */
-	(void) printupdatelog(from, &curupd, hp, zp, old_serial);
-
-	return (Finish);
-}
-
-void
-free_rrecp(ns_updque *updlist, int rcode, struct sockaddr_in from) {
-	ns_updrec *rrecp, *first_rrecp, *next_rrecp;
-	struct databuf *dp, *tmpdp;
-	char *dname, *msg;
-
-	if (rcode == NOERROR) {
-		first_rrecp = HEAD(*updlist);
-		msg = "free_rrecp: update transaction succeeded, cleaning up";
-	} else {
-		first_rrecp = TAIL(*updlist);
-		msg = "free_rrecp: update transaction aborted, rolling back";
-	}
-	ns_debug(ns_log_update, 1, msg);
-	for (rrecp = first_rrecp; rrecp != NULL; rrecp = next_rrecp) {
-		if (rcode == NOERROR)
-			next_rrecp = NEXT(rrecp, r_link);
-		else
-			next_rrecp = PREV(rrecp, r_link);
-		if (rrecp->r_section != S_UPDATE) {
-			if (rrecp->r_dp)
-				db_freedata(rrecp->r_dp);
-			res_freeupdrec(rrecp);
-			continue;
-		}
-		dname = rrecp->r_dname;
-		dp = rrecp->r_dp;
-		if ((dp->d_mark & D_MARK_ADDED) != 0) {
-			if (rcode == NOERROR) {
-				/*
-				 * This databuf is now a part of hashtab,
-				 * or has been deleted by a subsequent update.
-				 * Either way, we must not free it.
-				 */
-				dp->d_mark &= ~D_MARK_ADDED;
-			} else {
-				/* Delete the databuf. */
-				if (db_update(dname, dp, NULL, NULL,
-					      DB_DELETE, hashtab, from)
-				    != OK) {
-					ns_error(ns_log_update,
-		     "free_rrecp: failed to delete databuf: dname=%s, type=%s",
-						 dname, p_type(dp->d_type));
-				} else {
-					ns_debug(ns_log_update, 3,
-				         "free_rrecp: deleted databuf 0x%0x",
-						 dp);
-					/* 
-					 * XXXRTH 
-					 *
-					 * We used to db_freedata() here,
-					 * but I removed it because 'dp' was
-					 * part of a hashtab before we called
-					 * db_update(), and since our delete
-					 * has succeeded, it should have been
-					 * freed.
-					 */
-				}
-			}
-		} else {
-			/*
-			 * Databuf's matching this were deleted by this
-			 * update, or were never executed (because we bailed
-			 * out early).
-			 */
-			db_freedata(dp);
-		}
-
-		/* Process deleted databuf's. */
-		dp = rrecp->r_deldp;
-		while (dp != NULL) {
-			tmpdp = dp;
-			dp = dp->d_next;
-			if (rcode == NOERROR) {
-				if (tmpdp->d_rcnt)
-					ns_debug(ns_log_update, 1,
-					   "free_rrecp: type = %d, rcnt = %d",
-						 p_type(tmpdp->d_type),
-						 tmpdp->d_rcnt);
-				else {
-					tmpdp->d_next = NULL;
-					db_freedata(tmpdp);
-				}
-			} else {
-				/* Add the databuf back. */
-				tmpdp->d_mark &= ~D_MARK_DELETED;
-				if (db_update(dname, tmpdp, tmpdp, NULL,
-					      DB_REPLACE, hashtab, from) != OK) {
-					ns_error(ns_log_update,
-	           "free_rrecp: failed to add back databuf: dname=%s, type=%s",
-						 dname, p_type(tmpdp->d_type));
-				} else {
-					ns_debug(ns_log_update, 3,
-				      "free_rrecp: added back databuf 0x%0x",
-						 tmpdp);
-				}
-			}
-		}
-		res_freeupdrec(rrecp);
-	}
-	INIT_LIST(*updlist);
-}
-
-enum req_action
-req_update(HEADER *hp, u_char *cp, u_char *eom, u_char *msg, 
-	   struct qstream *qsp, int dfd, struct sockaddr_in from,
-	   struct tsig_record *in_tsig)
-{
-	enum req_action ret;
-
-	INIT_LIST(curupd);
-	ret = req_update_private(hp, cp, eom, msg, qsp, dfd, from, in_tsig);
-	free_rrecp(&curupd, ret == Refuse ? ns_r_refused : hp->rcode, from);
-	if (ret == Finish) {
-		hp->qdcount = hp->ancount = hp->nscount = hp->arcount = 0;
-		memset(msg + HFIXEDSZ, 0, (eom - msg) - HFIXEDSZ);
-	}
-	return (ret);
-}
-
-/*
- * expand rdata portion of a compressed resource record at cp into cp1
- * and return the length of the expanded rdata (length of the compressed
- * rdata is "dlen").
- */
-static int
-rdata_expand(const u_char *msg, const u_char *eom, const u_char *cp,
-	     u_int type, size_t dlen, u_char *cp1, size_t size)
-{
-	const u_char *cpinit = cp;
-	const u_char *cp1init = cp1;
-	int n, i, n1;
-
-	switch (type) {
-	case T_A:
-	case T_AAAA:
-		if ((type == T_A && dlen != INT32SZ) ||
-		    (type == T_AAAA && dlen != NS_IN6ADDRSZ))
-			return (0);
-		/*FALLTHROUGH*/
-	case T_WKS:
-	case T_HINFO:
-	case T_TXT:
-	case T_X25:
-	case T_ISDN:
-	case T_NSAP:
-	case T_LOC:
-	case T_KEY:
-	case ns_t_cert:
-		if (size < dlen)
-			return (0);
-		memcpy(cp1, cp, dlen);
-		return (dlen);
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		n = dn_expand(msg, eom, cp, (char *)cp1, size);
-		if (n < 0 || (u_int)n != dlen)
-			return (0);
-		return (strlen((char *)cp1) + 1);
-	case T_MINFO:
-	case T_SOA:
-	case T_RP:
-		/* Get two compressed domain names. */
-		for (i = 0; i < 2; i++) {
-			n = dn_expand(msg, eom, cp, (char *)cp1, size);
-			if (n < 0)
-				return (0);
-			cp += n;
-			n = strlen((char *)cp1) + 1;
-			cp1 += n;
-			size -= n;
-		}
-		if (type == T_SOA) {
-			n = 5 * INT32SZ;
-			if (size < (size_t)n || cp + n > eom)
-				return(0);
-			size -= n;
-			memcpy(cp1, cp, n);
-			cp += n;
-			cp1 += n;
-		}
-		if (cp != cpinit + dlen)
-			return (0);
-		return (cp1 - cp1init);
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* Grab preference. */
-		if (size < INT16SZ || cp + INT16SZ > eom)
-			return (0);
-		size -= INT16SZ;
-		memcpy(cp1, cp, INT16SZ);
-		cp += INT16SZ;
-		cp1 += INT16SZ;
-
-		if (type == T_SRV) {
-			if (size < INT16SZ*2 || cp + INT16SZ*2 > eom)
-				return (0);
-			size -= INT16SZ*2;
-			/* Grab weight and port. */
-			memcpy(cp1, cp, INT16SZ*2);
-			cp1 += INT16SZ*2;
-			cp += INT16SZ*2;
-		}
-
-		/* Get name. */
-		n = dn_expand(msg, eom, cp, (char *)cp1, size);
-		if (n < 0)
-			return (0);
-		cp += n;
-		n = strlen((char *)cp1) + 1;
-		cp1 += n;
-		if (cp != cpinit + dlen)
-			return (0);
-		return (cp1 - cp1init);
-	case T_PX:
-		/* Grab preference. */
-		if (size < INT16SZ || cp + INT16SZ > eom)
-			return (0);
-		size -= INT16SZ;
-		memcpy(cp1, cp, INT16SZ);
-		cp += INT16SZ;
-		cp1 += INT16SZ;
-		/* Get MAP822 name. */
-		n = dn_expand(msg, eom, cp, (char *)cp1, size);
-		if (n < 0)
-			return (0);
-		cp += n;
-		n = strlen((char *)cp1) + 1;
-		cp1 += n;
-		size -= n;
-		n = dn_expand(msg, eom, cp, (char *)cp1, size);
-		if (n < 0)
-			return (0);
-		cp += n;
-		n = strlen((char *)cp1) + 1;
-		cp1 += n;
-		if (cp != cpinit + dlen)
-			return (0);
-		return (cp1 - cp1init);
-	case T_SIG:
-		if (dlen < SIG_HDR_SIZE || size < dlen)
-			return (0);
-		memcpy(cp1, cp, SIG_HDR_SIZE);
-		size -= SIG_HDR_SIZE;
-		cp += SIG_HDR_SIZE;
-		cp1 += SIG_HDR_SIZE;
-		n = dn_expand(msg, eom, cp, (char *)cp1, size);
-		if (n < 0 || n + SIG_HDR_SIZE > dlen)
-			return (0);
-		cp += n;
-		n1 = dlen - n - SIG_HDR_SIZE;
-		n = strlen((char *)cp1) + 1;
-		cp1 += n;
-		if (size < n1)
-			return (0);
-		memcpy(cp1, cp, n1);
-		cp1 += n1;
-		return (cp1 - cp1init);
-	case T_NXT:
-		n = dn_expand(msg, eom, cp, (char *)cp1, size);
-		if (n < 0 || (u_int)n >= dlen)
-			return (0);
-		size -= n;
-		cp += n;
-		n1 = dlen - n;
-		n = strlen((char *)cp1) + 1;
-		cp1 += n;
-		/*
-		 * The first bit of the first octet determines the format
-		 * of the NXT record.  A format for types >= 128 has not
-		 * yet been defined, so if bit zero is set, we just copy
-		 * what's there because we don't understand it.
-		 */
-		if ((*cp & 0x80) == 0) {
-			/*
-			 * Bit zero is not set; this is an ordinary NXT
-			 * record.  The bitmap must be at least 4 octets
-			 * because the NXT bit should be set.  It should be
-			 * less than or equal to 16 octets because this NXT
-			 * format is only defined for types < 128.
-			 */
-			if (n1 < 4 || n1 > 16)
-				return (0);
-		}
-		if (n1 > size)
-			return (0);
-		memcpy(cp1, cp, n1);
-		cp1 += n1;
-		return (cp1 - cp1init);
-	default:
-		ns_debug(ns_log_update, 3, "unknown type %d", type);
-		return (0);
-	}
-}
-
-/*
- * Print out rdata portion of a resource record from a databuf into a file.
- *
- * XXX - similar code in db_dump() should be replaced by a call to this
- * function.
- */
-void
-rdata_dump(struct databuf *dp, FILE *fp) {
-	u_int32_t n, addr;
-	u_char *cp, *end;
-	int i, j;
-	const char *proto;
-	u_char *savecp;
-	char temp_base64[NS_MD5RSA_MAX_BASE64];
-	u_int16_t keyflags;
-	u_char *sigdata, *certdata;
-
-	cp = (u_char *)dp->d_data;
-	switch (dp->d_type) {
-	case T_A:
-		switch (dp->d_class) {
-		case C_IN:
-		case C_HS:
-			GETLONG(n, cp);
-			n = htonl(n);
-			fputs(inet_ntoa(*(struct in_addr *)&n), fp);
-			break;
-		}
-		if (dp->d_nstime)
-			fprintf(fp, ";\tNT=%d", dp->d_nstime);
-		break;
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_PTR:
-		fprintf(fp, "%s.", cp);
-		break;
-	case T_NS:
-		cp = (u_char *)dp->d_data;
-		if (cp[0] == '\0')
-			fprintf(fp, ".\t");
-		else
-			fprintf(fp, "%s.", cp);
-		break;
-	case T_HINFO:
-	case T_ISDN:
-		if ((n = *cp++) != '\0') {
-			fprintf(fp, "\"%.*s\"", (int)n, cp);
-			cp += n;
-		} else
-			fprintf(fp, "\"\"");
-		if ((n = *cp++) != '\0')
-			fprintf(fp, " \"%.*s\"", (int)n, cp);
-		else
-			fprintf(fp, " \"\"");
-		break;
-	case T_SOA:
-		fprintf(fp, "%s.", cp);
-		cp += strlen((char *)cp) + 1;
-		fprintf(fp, " %s. ( ", cp);
-#if defined(RETURNSOA) && defined(NCACHE)
-		if (dp->d_rcode == NXDOMAIN)
-			fputs(";", fp);
-#endif
-		cp += strlen((char *)cp) + 1;
-		GETLONG(n, cp);
-		fprintf(fp, "%u", n);
-		GETLONG(n, cp);
-		fprintf(fp, " %u", n);
-		GETLONG(n, cp);
-		fprintf(fp, " %u", n);
-		GETLONG(n, cp);
-		fprintf(fp, " %u", n);
-		GETLONG(n, cp);
-		fprintf(fp, " %u )", n);
-#if defined(RETURNSOA) && defined(NCACHE)
-		if (dp->d_rcode == NXDOMAIN)
-			fprintf(fp, ";%s.;NXDOMAIN;\t-$", cp);
-#endif
-		break;
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-		GETSHORT(n, cp);
-		fprintf(fp, "%u", n);
-		fprintf(fp, " %s.", cp);
-		break;
-	case T_SRV:
-		GETSHORT(n, cp);	/* priority */
-		fprintf(fp, "%u ", n);
-		GETSHORT(n, cp);	/* weight */
-		fprintf(fp, "%u ", n);
-		GETSHORT(n, cp);	/* port */
-		fprintf(fp, "%u ", n);
-		fprintf(fp, " %s.", cp);
-		break;
-	case T_PX:
-		GETSHORT(n, cp);
-		fprintf(fp, "%u", n);
-		fprintf(fp, " %s.", cp);
-		cp += strlen((char *)cp) + 1;
-		fprintf(fp, " %s.", cp);
-		break;
-	case T_TXT:
-	case T_X25:
-		end = (u_char *)dp->d_data + dp->d_size;
-		(void) putc('"', fp);
-		while (cp < end) {
-			if ((n = *cp++) != '\0') {
-				for (j = n; j > 0 && cp < end; j--)
-					if ((*cp < ' ') || (*cp > '~')) {
-						fprintf(fp, "\\%03.3d", *cp++);
-					} else if (*cp == '\\' || *cp =='"') {
-						putc('\\', fp);
-						putc(*cp++, fp);
-					} else
-						(void) putc(*cp++, fp);
-			}
-			if (cp != end) 
-				fputs("\" \"", fp);
-		}
-		/* XXXVIX need to keep the segmentation (see 4.9.5). */
-		(void) fputs("\"", fp);
-		break;
-	case T_NSAP:
-		(void) fputs(inet_nsap_ntoa(dp->d_size, dp->d_data, NULL), fp);
-		break;
-	case T_LOC:
-		(void) fputs(loc_ntoa(dp->d_data, NULL), fp);
-		break;
-	case T_WKS:
-		GETLONG(addr, cp);	
-		addr = htonl(addr);	
-		fputs(inet_ntoa(*(struct in_addr *)&addr), fp);
-		proto = protocolname((u_char)*cp);
-		cp += sizeof(char); 
-		fprintf(fp, "%s ", proto);
-		i = 0;
-		while(cp < (u_char *)dp->d_data + dp->d_size) {
-			j = *cp++;
-			do {
-				if (j & 0200)
-					fprintf(fp, " %s",
-						servicename(i, proto));
-				j <<= 1;
-			} while (++i & 07);
-		} 
-		break;
-	case T_MINFO:
-	case T_RP:
-		fprintf(fp, "%s.", cp);
-		cp += strlen((char *)cp) + 1;
-		fprintf(fp, " %s.", cp);
-		break;
-	case T_KEY:
-		savecp = cp;  /* save the beginning */
-		/*>>> Flags (unsigned_16) */
-		NS_GET16(keyflags,cp);
-		fprintf(fp, "0x%04x ", keyflags);
-		/*>>> Protocol (8-bit decimal) */
-		fprintf(fp, "%3u ", *cp++);
-		/*>>> Algorithm id (8-bit decimal) */
-		fprintf(fp, "%3u ", *cp++);
-
-		/*>>> Public-Key Data (multidigit BASE64) */
-		/*    containing ExponentLen, Exponent, and Modulus */
-		i = b64_ntop(cp, dp->d_size - (cp - savecp),
-			     temp_base64, sizeof temp_base64);
-		if (i < 0)
-			fprintf(fp, "; BAD BASE64");
-		else
-			fprintf(fp, "%s", temp_base64);
-		break;
-	case T_SIG:
-		sigdata = cp;
-		/* RRtype (char *) */
-		NS_GET16(n,cp);
-		fprintf(fp, "%s ", p_type(n));
-		/* Algorithm id (8-bit decimal) */
-		fprintf(fp, "%d ", *cp++);
-		/* Labels (8-bit decimal) (not saved in file) */
-		/* XXXX FIXME -- check value and print err if bad */
-		cp++;
-		/* OTTL (u_long) */
-		NS_GET32(n, cp);
-		fprintf(fp, "%u ", n);
-		/* Texp (u_long) */
-		NS_GET32(n, cp);
-		fprintf(fp, "%s ", p_secstodate (n));
-		/* Tsig (u_long) */
-		NS_GET32(n, cp);
-		fprintf(fp, "%s ", p_secstodate (n));
-		/* Kfootprint (unsigned_16) */
-		NS_GET16(n, cp);
-		fprintf(fp, "%u ", n);
-		/* Signer's Name (char *)  */
-		fprintf(fp, "%s ", cp);
-		cp += strlen((char *)cp) + 1;
-		/* Signature (base64 of any length) */
-		i = b64_ntop(cp, dp->d_size - (cp - sigdata),
-			     temp_base64, sizeof temp_base64);
-		if (i < 0)
-			fprintf(fp, "; BAD BASE64");
-		else
-			fprintf(fp, "%s", temp_base64);
-		break;
-
-	case T_NXT:
-		fprintf(fp, "%s.", cp);
-		n = strlen ((char *)cp) + 1;
-		cp += n;
-		i = 8 * (dp->d_size - n);  /* How many bits? */
-		for (n = 0; n < (u_int32_t)i; n++) {
-			if (NS_NXT_BIT_ISSET(n, cp))
-				fprintf(fp," %s",__p_type(n));
-		}
-		break;
-	case ns_t_cert:
-		certdata = cp;
-		NS_GET16(n,cp);
-		fprintf(fp, "%d ", n); /* cert type */
-
-		NS_GET16(n,cp);
-		fprintf(fp, "%d %d ", n, *cp++); /* tag & alg */
-
-		/* Certificate (base64 of any length) */
-		i = b64_ntop(cp, dp->d_size - (cp - certdata),
-			     temp_base64, sizeof(temp_base64));
-		if (i < 0)
-			fprintf(fp, "; BAD BASE64");
-		else
-			fprintf(fp, "%s", temp_base64);
-		break;
-	case ns_t_aaaa: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		(void) fputs(inet_ntop(AF_INET6, dp->d_data, t, sizeof t), fp);
-		break;
-	}
-	default:
-		fprintf(fp, "\t;?d_type=%d?", dp->d_type);
-	}
-}
-
-/*
- * Return the number of authoritative zones that "dname" could belong to by
- * stripping up to "depth" labels from dname.  Up to the first "maxzones"
- * authoritative zone numbers will be stored in "zonelist", ordered
- * deepest match first.
- */
-int
-findzone(const char *dname, int class, int depth, int *zonelist, int maxzones){
-	char *tmpdname;
-	char tmpdnamebuf[MAXDNAME];
-	char *zonename, *cp;
-	int tmpdnamelen, zonenamelen, zonenum, i, j, c;
-	int matches = 0;
-	int escaped, found, done;
-
-	ns_debug(ns_log_update, 4, "findzone(dname=%s, class=%d, depth=%d, \
-zonelist=0x%x, maxzones=%d)",
-		 dname, class, depth, zonelist, maxzones);
-#ifdef DEBUG
-	if (debug >= 5) {
-		ns_debug(ns_log_update, 5, "zone dump:");
-		for (zonenum = 1; zonenum < nzones; zonenum++)
-			printzoneinfo(zonenum, ns_log_update, 5);
-	}
-#endif
-
-	strcpy(tmpdnamebuf, dname);
-	tmpdname = tmpdnamebuf;
-	/*
-	 * The code to handle trailing dots and escapes is adapted
-	 * from ns_samedomain().
-	 */
-	tmpdnamelen = strlen(tmpdname);
-	/* 
-	 * Ignore a trailing label separator (i.e. an unescaped dot)
-	 * in 'tmpdname'.
-	 */
-	if (tmpdnamelen && tmpdname[tmpdnamelen-1] == '.') {
-		escaped = 0;
-		/* note this loop doesn't get executed if tmpdnamelen==1 */
-		for (j = tmpdnamelen - 2; j >= 0; j--)
-			if (tmpdname[j] == '\\') {
-				if (escaped)
-					escaped = 0;
-				else
-					escaped = 1;
-			} else {
-				break;
-			}
-		if (!escaped) {
-			tmpdnamelen--;
-			tmpdname[tmpdnamelen] = '\0';
-		}
-	}
-
-	for (done = i = 0; i <= depth && !done; i++) {
-		for (zonenum = 1; zonenum < nzones; zonenum++) {
-			if (zones[zonenum].z_type == z_nil)
-				continue;
-			if (zones[zonenum].z_class != class)
-				continue;
-			zonename = zones[zonenum].z_origin;
-			zonenamelen = strlen(zonename);
-			/* 
-			 * Ignore a trailing label separator 
-			 * (i.e. an unescaped dot) in 'zonename'.
-			 */
-			if (zonenamelen && zonename[zonenamelen-1] == '.') {
-				escaped = 0;
-				for (j = zonenamelen - 2; j >= 0; j--)
-					if (zonename[j] == '\\') {
-						if (escaped)
-							escaped = 0;
-						else
-							escaped = 1;
-					} else {
-						break;
-					}
-				if (!escaped)
-					zonenamelen--;
-			}
-			
-			if (tmpdnamelen != zonenamelen)
-				continue;
-			ns_debug(ns_log_update, 5,
-				 "about to strncasecmp('%s', '%s', %d)",
-				 tmpdname, zonename, tmpdnamelen);
-			/* XXXRTH I'm doing a special test for zonenamelen == 0
-			   because I worry that some implementations of 
-			   strncasecmp might not handle comparisions where
-			   n==0 correctly */
-			if (zonenamelen == 0 ||
-			    !strncasecmp(tmpdname, zonename, tmpdnamelen)) {
-				ns_debug(ns_log_update, 5, "match");
-				zonelist[matches++] = zonenum;
-				if (matches == maxzones) {
-					/* XXX should signal error */
-					return (matches);
-				}
-			}
-		}
-
-		/*
-		 * Strip off the first label if we're not already at
-		 * the root label.
-		 */
-		if (*tmpdname != '\0') {
-			for (escaped = found = 0;
-			     (c = *tmpdname) && !found;
-			     tmpdname++) {
-				if (!escaped && (c == '.'))
-					/*
-					 * Note the loop increment will
-					 * make tmpdname point past the '.'
-					 * before the '!found' test causes
-					 * us to exit the loop.
-					 */
-					found = 1;
-				
-				if (escaped)
-					escaped = 0;
-				else if (c == '\\')
-					escaped = 1;
-			}
-		} else
-			done = 1;
-
-		tmpdnamelen = strlen(tmpdname);
-	}
-	ns_debug(ns_log_update, 4,
-		 "findzone: returning %d match(es)", matches);
-	return (matches);
-}
-
-/*
- * reapply lost updates from log file for the zone to the zone
- *
- * returns -1 on error, 0 on success, 1 if dump reload needed
- */
-int
-merge_logs(struct zoneinfo *zp, char *logname) {
-	char origin[MAXDNAME], data[MAXDATA], dnbuf[MAXDNAME], sclass[3];
-	char buf[BUFSIZ], buf2[100];
-	FILE *fp;
-	u_int32_t serial, ttl, old_serial, new_serial;
-	char *dname, *cp, *cp1;
-	int type, class;
-	int i, c, section, opcode, matches, zonenum, err, multiline;
-	int nonempty_lineno = -1, prev_pktdone = 0, cont = 0, inside_next = 0;
-	int id, rcode = NOERROR;
-	u_int32_t n;
-	struct map *mp;
-	ns_updrec *rrecp;
-	struct databuf *dp;
-	struct in_addr ina;
-	int zonelist[MAXDNAME];
-	struct stat st;
-	u_char *serialp;
-	struct sockaddr_in empty_from;
-	int datasize;
-	unsigned long l;
-
-	empty_from.sin_family = AF_INET;
-	empty_from.sin_addr.s_addr = htonl(INADDR_ANY);
-	empty_from.sin_port = htons(0);
-
-	/* XXX - much of this stuff is similar to that in nsupdate.c
-	 * getword_str() was used in nsupdate.c for reasons described there
-	 * getword() is used here just to be consistent with db_load()
-	 */
-	
-	ns_debug(ns_log_update, 3, "merge_logs(%s)", logname);
-
-	/* If there is no log file, just return. */
-	if (stat(logname, &st) < 0) {
-		if (errno != ENOENT)
-			ns_error(ns_log_update,
-				 "unexpected stat(%s) failure: %s",
-				 logname, strerror(errno));
-		return (-1);
-	}
-	fp = fopen(logname, "r");
-	if (fp == NULL) {
-		ns_error(ns_log_update, "fopen(%s) failed: %s",
-			 logname, strerror(errno));
-		return (-1);
-	}
-
-	/*
-	 * See if we really have a log file -- it might be a zone dump
-	 * that was in the process of being movefiled, or it might
-	 * be garbage!
-	 */
-
-	if (fgets(buf, sizeof(buf), fp)==NULL) {
-		ns_error(ns_log_update, "fgets() from %s failed: %s",
-			 logname, strerror(errno));
-		fclose(fp);
-		return (-1);
-	}
-	if (strcmp(buf, DumpSignature) == 0) {
-		/* It's a dump; finish movefile that was interrupted. */
-		ns_info(ns_log_update,
-			"completing interrupted dump movefile for %s",
-			zp->z_source);
-		fclose(fp);
-		if (movefile(logname, zp->z_source) < 0) {
-			ns_error(ns_log_update, "movefile(%s,%s) failed: %s :1",
-				 logname, zp->z_source,
-				 strerror(errno));
-			fclose(fp);
-			return (-1);
-		}
-		/* Finally, tell caller to reload zone. */
-		return (1);
-	}
-	if (strcmp(buf, LogSignature) != 0) {
-		/* Not a dump and not a log; complain and then bail out. */
-		ns_error(ns_log_update, "invalid log file %s",
-			 logname);
-		fclose(fp);
-		return (-1);
-	}
-
-	ns_debug(ns_log_update, 3, "merging logs for %s from %s",
-		 zp->z_origin, logname);
-	lineno = 1;
-	INIT_LIST(curupd);
-	for (;;) {
-		err = 0;
-		if (!getword(buf, sizeof buf, fp, 0)) {
-			if (lineno == (nonempty_lineno + 1) && !(feof(fp))) {
-				/*
-				 * End of a nonempty line inside an update
-				 * packet or not inside an update packet.
-				 */
-				continue;
-			}
-			/*
-			 * Empty line or EOF.
-			 *
-			 * Marks completion of current update packet.
-			 */
-			inside_next = 0;
-			prev_pktdone = 1;
-			cont = 1;
-		} else {
-			nonempty_lineno = lineno;
-		}
-
-		if (!strcasecmp(buf, "[DYNAMIC_UPDATE]") ||
-		    !strcasecmp(buf, "[IXFR_UPDATE]")) {
-			err = 0;
-			rcode = NOERROR;
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (cp == NULL || !sscanf((char *)cp, "id %d", &id))
-				id = -1;
-			inside_next = 1;
-			prev_pktdone = 1;
-			cont = 1;
-		} else if (!strcasecmp(buf, "[INCR_SERIAL]")) {
-			/* XXXRTH not enough error checking here */
-			cp = fgets(buf, sizeof buf, fp);
-			if (cp != NULL)
-				lineno++;
-			if (cp == NULL || 
-			    !sscanf((char *)cp, "from %u to %u",
-				    &old_serial, &new_serial)) {
-				ns_error(ns_log_update,
-					 "incr_serial problem with %s",
-					 logname);
-			} else {
-				serial = get_serial(zp);
-				if (serial != old_serial) {
-					ns_error(ns_log_update,
-		  "serial number mismatch (log=%u, zone=%u) in %s", old_serial,
-						 serial, logname);
-				} else {
-					set_serial(zp, new_serial);
-					/*
-					 * The zone has changed; make sure
-					 * a dump is scheduled.
-					 */
-					(void)schedule_dump(zp);
-					sched_zone_maint(zp);
-					ns_info(ns_log_update,
-					      "set serial to %u (log file %s)",
-						new_serial, logname);
-				}
-			}
-			prev_pktdone = 1;
-			cont = 1;
-		} else if (!strcasecmp(buf, "[END_DELTA]")) {
-			prev_pktdone = 1;
-			cont = 1;
-		}
-		if (prev_pktdone) {
-			if (!EMPTY(curupd)) {
-				n = process_updates(&curupd, &rcode,
-						    empty_from);
-				if (n > 0)
-					ns_info(ns_log_update,
-			   "successfully merged update id %d from log file %s",
-						id, logname);
-				else {
-					ns_error(ns_log_update,
-				 "error merging update id %d from log file %s",
-						 id, logname);
-					return(-1);
-				}
-				free_rrecp(&curupd, rcode, empty_from);
-			}
-			prev_pktdone = 0;
-			if (feof(fp))
-				break;
-		}
-		if (cont) {
-			cont = 0;
-			continue;
-		}
-		if (!inside_next)
-			continue;
-		/*
-		 * inside the same update packet,
-		 * continue accumulating records.
-		 */
-		section = -1;
-		n = strlen(buf);
-		if (buf[n-1] == ':')
-			buf[--n] = '\0';
-		for (mp = m_section; mp < m_section+M_SECTION_CNT; mp++)
-			if (!strcasecmp(buf, mp->token)) {
-				section = mp->val;
-				break;
-			}
-		ttl = 0;
-		type = -1;
-		class = zp->z_class;
-		n = 0;
-		data[0] = '\0';
-		switch (section) {
-		case S_ZONE:
-			cp = fgets(buf, sizeof buf, fp);
-			if (!cp)
-				*buf = '\0';
-			n = sscanf(cp, "origin %s class %s serial %ul",
-				   origin, sclass, &serial);
-			if (n != 3 || ns_samename(origin, zp->z_origin) != 1)
-				err++;
-			if (cp)
-				lineno++;
-			if (!err && serial != zp->z_serial) {
-				ns_error(ns_log_update,
-	      "serial number mismatch in update id %d (log=%u, zone=%u) in %s",
-					 id, serial, zp->z_serial,
-					 logname);
-				inside_next = 0;
-				err++;
-			}
-			if (!err && inside_next) {
-			        int success;
-
-				dname = origin;
-				type = T_SOA;
-				class = sym_ston(__p_class_syms, sclass,
-						 &success);
-				if (!success) {
-				        err++;
-					break;
-				}
-				matches = findzone(dname, class, 0, 
-						   zonelist, MAXDNAME);
-				if (matches)
-					zonenum = zonelist[0];
-				else
-					err++;
-			}
-			break;
-		case S_PREREQ:
-		case S_UPDATE:
-			/* Operation code. */
-			if (!getword(buf, sizeof buf, fp, 0)) {
-				err++;
-				break;
-			}
-			opcode = -1;
-			if (buf[0] == '{') {
-				n = strlen(buf);
-				for (i = 0; (u_int32_t)i < n; i++)
-					buf[i] = buf[i+1];
-				if (buf[n-2] == '}')
-					buf[n-2] = '\0';
-			}
-			for (mp = m_opcode; mp < m_opcode+M_OPCODE_CNT; mp++)
-				if (!strcasecmp(buf, mp->token)) {
-					opcode = mp->val;
-					break;
-				}
-			if (opcode == -1) {
-				err++;
-				break;
-			}
-			/* Owner's domain name. */
-			if (!getword((char *)dnbuf, sizeof dnbuf, fp, 0)) {
-				err++;
-				break;
-			}
-			n = strlen((char *)dnbuf) - 1;
-			if (dnbuf[n] == '.')
-				dnbuf[n] = '\0';
-			dname = dnbuf;
-			ttl = 0;
-			type = -1;
-			class = zp->z_class;
-			n = 0;
-			data[0] = '\0';
-			(void) getword(buf, sizeof buf, fp, 1);
-			if (isdigit(buf[0])) {	/* ttl */
-				if (ns_parse_ttl(buf, &l) < 0) {
-					err++;
-					break;
-				}
-				ttl = l;
-				(void) getword(buf, sizeof buf, fp, 1);
-			}
-
-			/* possibly class */
-			if (buf[0] != '\0') {
-				int success;
-				int maybe_class;
-				
-				maybe_class = sym_ston(__p_class_syms,
-						       buf,
-						       &success);
-				if (success) {
-					class = maybe_class;
-					(void) getword(buf,
-						       sizeof buf,
-						       fp, 1);
-				}
-			}
-			/* possibly type */
-			if (buf[0] != '\0') {
-				int success;
-				int maybe_type;
-
-				maybe_type = sym_ston(__p_type_syms,
-						      buf,
-						      &success);
-
-				if (success) {
-					type = maybe_type;
-					(void) getword(buf,
-						       sizeof buf,
-						       fp, 1);
-				}
-			}
-			if (buf[0] != '\0') /* possibly rdata */
-				/*
-				 * Convert the ascii data 'buf' to the proper
-				 * format based on the type and pack into
-				 * 'data'.
-				 *
-				 * XXX - same as in db_load(),
-				 * consolidation needed
-				 */
-				switch (type) {
-				case T_A:
-					if (!inet_aton(buf, &ina)) {
-						err++;
-						break;
-					}
-					n = ntohl(ina.s_addr);
-					cp = data;
-					PUTLONG(n, cp);
-					n = INT32SZ;
-					break;
-				case T_HINFO:
-				case T_ISDN:
-					n = strlen(buf);
-					data[0] = n;
-					memcpy(data+1, buf, n);
-					n++;
-					if (!getword(buf, sizeof buf,
-						     fp, 0)) {
-						i = 0;
-					} else {
-						endline(fp);
-						i = strlen(buf);
-					}
-					data[n] = i;
-					memcpy(data+n+1, buf, i);
-					break;
-				case T_SOA:
-				case T_MINFO:
-				case T_RP:
-					(void) strcpy(data, buf);
-					cp = data + strlen(data) -1;
-					*(cp++) = 0; /* ditch dot */
-					if (!getword((char *)cp,
-						     sizeof data - (cp - data),
-						     fp, 1)) {
-						err++;
-						break;
-					}
-					cp += strlen((char *)cp) -1;
-					*(cp++) = 0; /* ditch dot */
-					if (type != T_SOA) {
-						n = cp - data;
-						break;
-					}
-					else
-						n = cp - data;
-					if (class != zp->z_class ||
-					    ns_samename(dname, zp->z_origin) != 1) {
-						err++;
-						break;
-					}
-					c = getnonblank(fp, logname);
-					if (c == '(') {
-						multiline = 1;
-					} else {
-						multiline = 0;
-						ungetc(c, fp);
-					}
-					n = getnum(fp, logname, GETNUM_SERIAL);
-					if (getnum_error) {
-						err++;
-						break;
-					}
-					PUTLONG(n, cp);
-					for (i = 0; i < 4; i++) {
-						if (getttl(fp, logname, lineno,
-					   		&n, &multiline) <= 0) 
-						{
-							err++;
-							break;
-						}
-						PUTLONG(n, cp);
-					}
-					if (multiline &&
-					    (getnonblank(fp, logname)
-						!= ')')) {
-							err++;
-							break;
-						}
-					n = cp - data;
-					endline(fp);
-					break;
-				case T_WKS:
-					if (!inet_aton(buf, &ina)) {
-						err++;
-						break;
-					}
-					n = ntohl(ina.s_addr);
-					cp = data;
-					PUTLONG(n, cp);
-					*cp = (char)getprotocol(fp,
-								logname
-								);
-					n = INT32SZ + sizeof(char);
-					n = getservices((int)n, data,
-							fp, logname);
-					break;
-				case T_NS:
-				case T_CNAME:
-				case T_MB:
-				case T_MG:
-				case T_MR:
-				case T_PTR:
-					(void) strcpy(data, buf);
-					if (makename(data, origin,
-						     sizeof(data)) == -1) {
-						err++;
-						break;
-					}
-					n = strlen(data) + 1;
-					break;
-				case T_MX:
-				case T_AFSDB:
-				case T_RT:
-					n = 0;
-					cp = buf;
-					while (isdigit(*cp))
-						n = n * 10 + (*cp++ - '0');
-					/* catch bad values */
-					cp = data;
-					PUTSHORT((u_int16_t)n, cp);
-					if (!getword(buf, sizeof(buf),
-						     fp, 1)) {
-						err++;
-						break;
-					}
-					(void) strcpy((char *)cp, buf);
-					if (makename((char *)cp, origin,
-						     sizeof(data) - (cp-data))
-					    == -1) {
-						err++;
-						break;
-					}
-					/* advance pointer to end of data */
-					cp += strlen((char *)cp) +1;
-					/* now save length */
-					n = (cp - data);
-					break;
-				case T_PX:
-					n = 0;
-					data[0] = '\0';
-					cp = buf;
-					while (isdigit(*cp))
-						n = n * 10 + (*cp++ - '0');
-					cp = data;
-					PUTSHORT((u_int16_t)n, cp);
-					for (i = 0; i < 2; i++) {
-						if (!getword(buf,
-							     sizeof(buf),
-							     fp, 0)) {
-							err++;
-							break;
-						}
-						(void) strcpy((char *)cp,
-							      buf);
-						cp += strlen((char *)cp) + 1;
-					}
-					n = cp - data;
-					break;
-				case T_TXT:
-				case T_X25:
-					i = strlen(buf);
-					cp = data;
-					datasize = sizeof data;
-					cp1 = buf;
-					while (i > MAXCHARSTRING) {
-						if (datasize <= MAXCHARSTRING){
-							ns_error(ns_log_update,
-							     "record too big");
-							fclose(fp);
-							return (-1);
-						}
-						datasize -= MAXCHARSTRING;
-						*cp++ = (char)MAXCHARSTRING;
-						memcpy(cp, cp1, MAXCHARSTRING);
-						cp += MAXCHARSTRING;
-						cp1 += MAXCHARSTRING;
-						i -= MAXCHARSTRING;
-					}
-					if (datasize < i + 1) {
-						ns_error(ns_log_update,
-							 "record too big");
-						fclose(fp);
-						return (-1);
-					}
-					*cp++ = i;
-					memcpy(cp, cp1, i);
-					cp += i;
-					n = cp - data;
-					endline(fp);
-					/* XXXVIX: segmented texts 4.9.5 */
-					break;
-				case T_NSAP:
-					n = inet_nsap_addr(buf,
-							   (u_char *)data,
-							   sizeof data);
-					endline(fp);
-					break;
-				case T_LOC:
-					cp = buf + (n = strlen(buf));
-					*cp = ' ';
-					cp++;
-					while ((i = getc(fp), *cp = i,
-						i != EOF)
-					       && *cp != '\n'
-					       && (n < MAXDATA)) {
-						cp++;
-						n++;
-					}
-					if (*cp == '\n')
-						ungetc(*cp, fp);
-					*cp = '\0';
-					n = loc_aton(buf, (u_char *)data);
-					if (n == 0) {
-						err++;
-						break;
-					}
-					endline(fp);
-					break;
-				case ns_t_sig:
-				case ns_t_key:
-				case ns_t_nxt:
-				case ns_t_cert:
-				    {
-					char * errmsg = NULL;
-					int s;
-
-					s = parse_sec_rdata(buf, sizeof(buf),
-							    1,
-							    (u_char *)data,
-							    sizeof(data),
-							    fp, zp, dnbuf,
-							    ttl, type,
-							    domain_ctx,
-							    primary_trans,
-							    &errmsg);
-					if (s < 0) {
-						err++;
-						break;
-					}
-					break;
-				    }
-				default:
-					err++;
-				}
-			if (section == S_PREREQ) {
-				ttl = 0;
-				if (opcode == NXDOMAIN) {
-					class = C_NONE;
-					type = T_ANY;
-					n = 0;
-				} else if (opcode == YXDOMAIN) {
-					class = C_ANY;
-					type = T_ANY;
-					n = 0;
-				} else if (opcode == NXRRSET) {
-					class = C_NONE;
-					n = 0;
-				} else if (opcode == YXRRSET) {
-					if (n == 0)
-						class = C_ANY;
-				}
-			} else { /* section == S_UPDATE */
-				if (opcode == DELETE) {
-					ttl = 0;
-					if (n == 0) {
-						class = C_ANY;
-						if (type == -1)
-							type = T_ANY;
-		/* WTF?  C_NONE or C_ANY _must_ be the case if
-		 *       we really are to delete this.  If
-                 *       C_NONE is used, according to process_updates(),
-                 *       the class is gotten from the zone's class.
-                 *       This still isn't perfect, but it will at least
-                 *       work.  
-                 *       
-                 *       Question: What is so special about the class 
-                 *       of the update while we are deleting??
-                 */
-					} else /* if (zp->z_xferpid != XFER_ISIXFR) */ {
-						class = C_NONE;
-					}
-				}
-			}
-			break;
-		case S_ADDT:
-		default:
-			ns_debug(ns_log_update, 1,
-				 "cannot interpret section: %d", section);
-			inside_next = 0;
-			err++;
-		}
-		if (err) {
-			inside_next = 0;
-			ns_debug(ns_log_update, 1, 
-		      "merge of update id %d failed due to error at line %d",
-				 id, lineno);
-			free_rrecp(&curupd, FORMERR, empty_from);
-			continue;
-		}
-		rrecp = res_mkupdrec(section, dname, class, type, ttl);
-		if (section != S_ZONE) {
-			dp = savedata(class, type, ttl, (u_char *)data, n);
-			dp->d_zone = zonenum;
-			dp->d_cred = DB_C_ZONE;
-			dp->d_clev = nlabels(zp->z_origin);
-			dp->d_secure = DB_S_INSECURE; /* should be UNCHECKED */
-			rrecp->r_dp = dp;
-		} else {
-			rrecp->r_zone = zonenum;
-		}
-		APPEND(curupd, rrecp, r_link);
-	} /* for (;;) */
-
-	fclose(fp);
-	return (0);
-}
-
-
-/*
- * Create a disk database to back up zones 
- */
-int
-zonedump(struct zoneinfo *zp, int mode) {
-	FILE		*fp;
-	const char	*fname;
-	struct hashbuf	*htp;
-	char		*op;
-	struct stat	st;
-	char            tmp_name[MAXPATHLEN];
-	int		escaped;
-	char		c;
-
-	/*
-	 * We must check to see if Z_NEED_SOAUPDATE is set, and if so
-	 * we must do it.  This won't be the case normally
-	 * (when called from ns_maint()), but it is possible if we're 
-	 * exiting named. 
-	 */
-
-	if (zp->z_flags & Z_NEED_SOAUPDATE) {
-		u_int32_t serial, old_serial;
-
-		old_serial = get_serial(zp);
-		serial = old_serial + 1;
-		if (serial == 0)
-			serial = 1;
-		set_serial(zp, serial);
-	}
-
-	/* Only dump zone if there is a cache specified */
-	if (zp->z_source && *(zp->z_source)) {
-		ns_debug(ns_log_update, 1, "zonedump(%s)", zp->z_source);
-
-		if (strlen(zp->z_source)+strlen(DumpSuffix) >= MAXPATHLEN) {
-			ns_error(ns_log_update,
-				 "filename %s too long in zonedump",
-				 zp->z_source);
-			/* 
-			 * This problem won't ever get better, so we
-			 * clear the "need dump" flag.
-			 */
-			zp->z_flags &= ~Z_NEED_DUMP;
-			return (-1);
-		}
-		(void)sprintf(tmp_name, "%s%s", zp->z_source, DumpSuffix);
-		if ((fp = write_open(tmp_name)) == NULL) {
-			ns_error(ns_log_update, "fopen() of %s failed: %s",
-				 tmp_name, strerror(errno));
-			return (-1);
-		}
-		fprintf(fp, "%s", DumpSignature);
-		op = zp->z_origin;
-		escaped = 0;
-		while (*op && (((c = *op++) != '.') || escaped))
-			escaped = (c == '\\') && !escaped;
-		gettime(&tt);
-		htp = hashtab;
-		if (nlookup(zp->z_origin, &htp, &fname, 0) != NULL) {
-			if (db_dump(htp, fp, zp-zones, op) != OK) {
-				ns_error(ns_log_update,
-					 "error dumping zone file %s",
-					 zp->z_source); 
-				(void)fclose(fp);
-				return (-1);
-			}
-		}
-		if (fflush(fp) == EOF) {
-			ns_error(ns_log_update, "fflush() of %s failed: %s",
-				 tmp_name, strerror(errno));
-			fclose(fp);
-			return (-1);
-		}
-		if (fsync(fileno(fp)) < 0) {
-			ns_error(ns_log_update, "fsync() of %s failed: %s",
-				 tmp_name, strerror(errno));
-			fclose(fp);
-			return (-1);
-		}
-		if (fclose(fp) == EOF) {
-			ns_error(ns_log_update, "fclose() of %s failed: %s",
-				 tmp_name, strerror(errno));
-			return (-1);
-		}
-		/*
-		 * Try to make read only, so people will be less likely to
-		 * edit dynamic domains.
-		 */
-		if (stat(tmp_name, &st) < 0) {
-			ns_error(ns_log_update,
-				 "stat(%s) failed, pressing on: %s",
-				 tmp_name, strerror(errno));
-		} else {
-			zp->z_ftime = st.st_mtime;
-			st.st_mode &= ~WRITEABLE_MASK;
-			if (chmod(tmp_name, st.st_mode) < 0)
-				ns_error(ns_log_update,
-					"chmod(%s,%o) failed, pressing on: %s",
-					 tmp_name, st.st_mode,
-					 strerror(errno));
-		}
-
-		if (mode == ISIXFR) {
-			if (movefile(tmp_name, zp->z_ixfr_tmp) < 0) {
-				ns_error(ns_log_update, "movefile(%s,%s) failed: %s :2",
-					 tmp_name, zp->z_ixfr_tmp, strerror(errno));
-				return (-1);
-			}
-			if (chmod(zp->z_source, 0644) < 0)
-				ns_error(ns_log_update,
-					"chmod(%s,%o) failed, pressing on: %s",
-					 zp->z_source, st.st_mode,
-					 strerror(errno));
-			if (movefile(zp->z_ixfr_tmp, zp->z_source) < 0) {
-				ns_error(ns_log_update, "movefile(%s,%s) failed: %s :3",
-					 zp->z_ixfr_tmp, zp->z_source,
-					 strerror(errno));
-				return (-1);
-			}
-			st.st_mode &= ~WRITEABLE_MASK;
-			if (chmod(zp->z_source, st.st_mode) < 0)
-				ns_error(ns_log_update,
-					"chmod(%s,%o) failed, pressing on: %s",
-					 zp->z_source, st.st_mode,
-					 strerror(errno));
-		} else if (mode == ISNOTIXFR) {
-			if (movefile(tmp_name, zp->z_updatelog) < 0) {
-				ns_error(ns_log_update, "movefile(%s,%s) failed: %s :4",
-				 	tmp_name, zp->z_updatelog, strerror(errno));
-				return (-1);
-			}
-			if (movefile(zp->z_updatelog, zp->z_source) < 0) {
-				ns_error(ns_log_update, "movefile(%s,%s) failed: %s:5",
-				 	zp->z_updatelog, zp->z_source,
-				 	strerror(errno));
-				return (-1);
-			}
-		} else {
-			if (movefile(tmp_name, zp->z_source) < 0) {
-				ns_error(ns_log_update, "movefile(%s,%s) failed: % s :6", tmp_name, zp->z_source, strerror(errno));
-				return (-1);
-			}
-		}
-	} else
-		ns_debug(ns_log_update, 1, "zonedump: no zone to dump");
-
-	zp->z_flags &= ~Z_NEED_DUMP;
-	zp->z_dumptime = 0;
-	return (0);
-}
-
-struct databuf *
-findzonesoa(struct zoneinfo *zp) {
-	struct hashbuf *htp;
-	struct namebuf *np;
-	struct databuf *dp;
-	const char *fname;
-
-	htp = hashtab;
-	np = nlookup(zp->z_origin, &htp, &fname, 0);
-	if (np == NULL || fname != zp->z_origin)
-		return (NULL);
-	foreach_rr(dp, np, T_SOA, zp->z_class, zp - zones)
-		return (dp);
-	return (NULL);
-}
-
-u_char *
-findsoaserial(u_char *data) {
-	char *cp = (char *)data;
-
-	cp += strlen(cp) + 1;	/* Nameserver. */
-	cp += strlen(cp) + 1;	/* Mailbox. */
-	return ((u_char *)cp);
-}
-
-u_int32_t
-get_serial_unchecked(struct zoneinfo *zp) {
-	struct databuf *dp;
-	u_char *cp;
-	u_int32_t ret;
-
-	dp = findzonesoa(zp);
-	if (!dp)
-		ns_panic(ns_log_update, 1,
-			 "get_serial_unchecked(%s): can't locate zone SOA",
-			 zp->z_origin);
-	cp = findsoaserial(dp->d_data);
-	GETLONG(ret, cp);
-	return (ret);
-}
-
-u_int32_t
-get_serial(struct zoneinfo *zp) {
-	u_int32_t ret;
-
-	ret = get_serial_unchecked(zp);
-	if (ret != zp->z_serial)
-		ns_panic(ns_log_update, 1,
-			 "get_serial(%s): db and zone serial numbers differ",
-			 zp->z_origin);
-	return (ret);
-}
-
-void
-set_serial(struct zoneinfo *zp, u_int32_t serial) {
-	struct databuf *dp;
-	u_char *cp;
-
-	dp = findzonesoa(zp);
-	if (!dp)
-		ns_panic(ns_log_update, 1,
-			 "set_serial(%s): can't locate zone SOA",
-			 zp->z_origin);
-	cp = findsoaserial(dp->d_data);
-	PUTLONG(serial, cp);
-	zp->z_serial = serial;
-	zp->z_flags &= ~Z_NEED_SOAUPDATE;
-	zp->z_soaincrtime = 0;
-	zp->z_updatecnt = 0;
-#ifdef BIND_NOTIFY
-	if (!loading)
-		ns_notify(zp->z_origin, zp->z_class, ns_t_soa);
-#endif
-	/*
-	 * Note: caller is responsible for scheduling a dump.
-	 */
-}
-
-/*
- * Increment serial number in zoneinfo structure and hash table SOA databuf
- */
- 
-int
-incr_serial(struct zoneinfo *zp) {
-	u_int32_t serial, old_serial;
-	FILE *fp, *ifp;
-	time_t t;
-	struct databuf *dp, *olddp;
-	unsigned char *cp;
- 
-	old_serial = get_serial(zp);
-	serial = old_serial + 1;
-	if (serial == 0)
-	        serial = 1;
-	set_serial(zp, serial);
-
-	(void) gettime(&tt);
-	t = (time_t)tt.tv_sec;
-	fp = open_transaction_log(zp);
-	if (fp == NULL)
-		return (-1);
-	fprintf(fp, "[INCR_SERIAL] from %u to %u %s\n",
-		old_serial, serial, checked_ctime(&t));
-	if (close_transaction_log(zp, fp)<0)
-		return (-1);
-	ifp = open_ixfr_log(zp);
-	if (ifp == NULL)
-		return (-1);
-	dp = findzonesoa(zp);
-	if (dp) {
-		olddp = memget(DATASIZE(dp->d_size));
-		if (olddp != NULL) {
-			memcpy(olddp, dp, DATASIZE(dp->d_size));
-			cp = findsoaserial(olddp->d_data);
-			PUTLONG(old_serial, cp);
-			fprintf(ifp, "update: {delete} %s. %u %s %s ",
-				zp->z_origin, dp->d_ttl,
-				p_class(dp->d_class), p_type(dp->d_type));
-			(void) rdata_dump(olddp, ifp);
-			fprintf(ifp, "\n");
-			memput(olddp, DATASIZE(dp->d_size));
-		}
-		fprintf(ifp, "update: {add} %s. %u %s %s ",
-				zp->z_origin, dp->d_ttl,
-				p_class(dp->d_class), p_type(dp->d_type));
-		(void) rdata_dump(dp, ifp);
-		fprintf(ifp, "\n");
-	}
-	fprintf(ifp, "[END_DELTA]\n");
-	if (close_ixfr_log(zp, ifp)<0)
-		return (-1);
-
-	/*
-	 * This shouldn't happen, but we check to be sure.
-	 */
-	if (!(zp->z_flags & Z_NEED_DUMP)) {
-		ns_warning(ns_log_update,
-			   "incr_serial: Z_NEED_DUMP not set for zone '%s'",
-			   zp->z_origin);
-		(void)schedule_dump(zp);
-	}
-
-	sched_zone_maint(zp);
-
-	return (0);
-}
-
-void
-dynamic_about_to_exit(void) {
-	struct zoneinfo *zp;
-
-	ns_debug(ns_log_update, 1,
-		 "shutting down; dumping zones that need it");
-	for (zp = zones; zp < &zones[nzones]; zp++) {
-		if ((zp->z_flags & Z_DYNAMIC) &&
-		    ((zp->z_flags & Z_NEED_SOAUPDATE) ||
-		     (zp->z_flags & Z_NEED_DUMP)))
-			(void)zonedump(zp, ISNOTIXFR);
-	}
-}
diff --git a/contrib/bind/bin/named/ns_xfr.c b/contrib/bind/bin/named/ns_xfr.c
deleted file mode 100644
index f5cbdfa0abd09..0000000000000
--- a/contrib/bind/bin/named/ns_xfr.c
+++ /dev/null
@@ -1,860 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ns_xfr.c,v 8.62 2000/04/24 05:20:51 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-static struct qs_x_lev *sx_freelev(struct qs_x_lev *lev);
-
-static int		sx_flush(struct qstream *qsp),
-			sx_addrr(struct qstream *qsp,
-				 const char *dname,
-				 struct databuf *dp),
-			sx_nsrrs(struct qstream *qsp),
-			sx_allrrs(struct qstream *qsp),
-			sx_pushlev(struct qstream *qsp, struct namebuf *np);
-static struct databuf  *db_next(struct databuf *dp);
-
-/*
- * void
- * ns_xfr(qsp, znp, zone, class, type, opcode, id, serial_ixfr, in_tsig)
- *	Initiate a concurrent (event driven) outgoing zone transfer.
- */
-void
-ns_xfr(struct qstream *qsp, struct namebuf *znp,
-       int zone, int class, int type,
-       int opcode, int id, u_int32_t serial_ixfr, struct tsig_record *in_tsig)
-{
-	server_info si;
-#ifdef SO_SNDBUF
-	static const int sndbuf = XFER_BUFSIZE * 2;
-#endif
-#ifdef SO_SNDLOWAT
-	static const int sndlowat = XFER_BUFSIZE;
-#endif
-	ns_deltalist	*changes;
-
-	switch (type) {
-	case ns_t_axfr: /*FALLTHROUGH*/
-	case ns_t_ixfr:
-#ifdef BIND_ZXFR
-	case ns_t_zxfr:
-#endif
-		ns_info(ns_log_xfer_out,
-			"zone transfer (%s) of \"%s\" (%s) to %s",
-			p_type(type), zones[zone].z_origin, p_class(class),
-			sin_ntoa(qsp->s_from));
-		break;
-	default:
-		ns_warning(ns_log_xfer_out,
-			   "unsupported XFR (type %s) of \"%s\" (%s) to %s",
-			p_type(type), zones[zone].z_origin, p_class(class),
-			sin_ntoa(qsp->s_from));
-		goto abort;
-	}
-
-#ifdef SO_SNDBUF
-	/*
-	 * The default seems to be 4K, and we'd like it to have enough room
-	 * to parallelize sending the pushed data with accumulating more
-	 * write() data from us.
-	 */
-	(void) setsockopt(qsp->s_rfd, SOL_SOCKET, SO_SNDBUF,
-			  (char *)&sndbuf, sizeof sndbuf);
-#endif
-#ifdef SO_SNDLOWAT
-	/*
-	 * We don't want select() to show writability 'til we can write
-	 * an XFER_BUFSIZE block of data.
-	 */
-	(void) setsockopt(qsp->s_rfd, SOL_SOCKET, SO_SNDLOWAT,
-			  (char *)&sndlowat, sizeof sndlowat);
-#endif
-	if (sq_openw(qsp, 64*1024) == -1)
-		goto abort;
-	memset(&qsp->xfr, 0, sizeof qsp->xfr);
-	qsp->xfr.top.axfr = znp;
-	qsp->xfr.zone = zone;
-	qsp->xfr.class = class;
-	if (qsp->flags & STREAM_AXFRIXFR)
-		type = ns_t_axfr;
-	qsp->xfr.type = type;
-	qsp->xfr.id = id;
-	qsp->xfr.opcode = opcode;
-	qsp->xfr.msg = memget(XFER_BUFSIZE);
-	if (!qsp->xfr.msg)
-		goto abort;
-	qsp->xfr.eom = qsp->xfr.msg + XFER_BUFSIZE;
-	qsp->xfr.cp = NULL;
-	qsp->xfr.state = s_x_firstsoa;
-	zones[zone].z_numxfrs++;
-	qsp->flags |= STREAM_AXFR;
-
-#ifdef BIND_ZXFR
-	if (type == ns_t_zxfr) {
-		enum { rd = 0, wr = 1 };
-		int z[2];
-		pid_t p;
-
-		if (pipe(z) < 0) {
-			ns_error(ns_log_xfer_out, "pipe: %s", strerror(errno));
-			goto abort;
-		}
-		p = vfork();
-		if (p < 0) {
-			ns_error(ns_log_xfer_out, "vfork: %s", strerror(errno));
-			goto abort;
-		}
-		if (p == 0) {
-			/* Child. */
-			dup2(z[rd], STDIN_FILENO);
-			dup2(qsp->s_rfd, STDOUT_FILENO);
-			execlp("gzip", "gzip", NULL);
-			ns_error(ns_log_xfer_out, "execlp: %s", strerror(errno));
-			_exit(1);
-		}
-		ns_info(ns_log_xfer_out, "zxfr gzip pid %lu", p);
-		/* Parent. */
-		dup2(z[wr], qsp->s_rfd);
-		close(z[wr]);
-		close(z[rd]);
-
-		/* When a ZXFR completes, there can be no more requests. */
-		qsp->flags |= STREAM_DONE_CLOSE;
-	}
-#endif
-
-	si = find_server(qsp->s_from.sin_addr);
-	if (si != NULL && si->transfer_format != axfr_use_default)
-		qsp->xfr.transfer_format = si->transfer_format;
-	else	
-		qsp->xfr.transfer_format = server_options->transfer_format;
-	if (in_tsig == NULL)
-		qsp->xfr.tsig_state = NULL;
-	else {
-		qsp->xfr.tsig_state = memget(sizeof(ns_tcp_tsig_state));
-		ns_sign_tcp_init(in_tsig->key, in_tsig->sig, in_tsig->siglen,
-				 qsp->xfr.tsig_state);
-		qsp->xfr.tsig_skip = 0;
-	}
-
-	if (type == ns_t_ixfr) {
-		changes = ixfr_get_change_list(&zones[zone], serial_ixfr,
-			zones[zone].z_serial);
-		ixfr_log_maint(&zones[zone], 1); 
-		if (changes != NULL) {
-			qsp->xfr.serial = serial_ixfr;
-			qsp->xfr.top.ixfr = changes;
-		}
-		else {
-			qsp->xfr.top.ixfr = NULL;
-			goto abort;
-		}
-	} else {
-		if (sx_pushlev(qsp, znp) < 0) {
- abort:
-			(void) shutdown(qsp->s_rfd, 2);
-			sq_remove(qsp);
-			return;
-		}
-	}
-	if (type != ns_t_ixfr)  {
-		ns_debug(ns_log_default, 3, "sq_writeh sx_sendsoa (%s)",
-			 zones[zone].z_origin);
-		(void) sq_writeh(qsp, sx_sendsoa);
-	} else {
-		ns_debug(ns_log_default, 3, "sq_writeh sx_send_ixfr (%s)",
-			 zones[zone].z_origin);
-		(void) sq_writeh(qsp, sx_send_ixfr);
-	}
-}
-
-/*
- * void
- * ns_stopxfrs(zp)
- *	Stop (abort, reset) all transfers of the zone specified by 'zp'.
- */
-void
-ns_stopxfrs(struct zoneinfo *zp) {
-	struct qstream *this, *next;
-	u_int zone = (u_int)(zp - zones);
-
-	ns_debug(ns_log_default, 3, "ns_stopxfrs (%s)", zp->z_origin);
-
-	for (this = streamq; this; this = next) {
-		next = this->s_next;
-		if (this->xfr.zone == zone) {
-			(void) shutdown(this->s_rfd, 2);
-			sq_remove(this);
-		}
-	}
-	INSIST(zp->z_numxfrs == 0);
-}
-
-/*
- * void
- * ns_freexfr(qsp)
- *	Free all xfr-related dynamic data associated with qsp.
- */
-void
-ns_freexfr(struct qstream *qsp) {
-	ns_delta *dp;
-	ns_updrec *rp;
-
-	if (qsp->xfr.msg != NULL) {
-		memput(qsp->xfr.msg, XFER_BUFSIZE);
-		qsp->xfr.msg = NULL;
-	}
-	if (qsp->xfr.type == ns_t_ixfr && qsp->xfr.top.ixfr != NULL) {
-		while ((dp = HEAD(*qsp->xfr.top.ixfr)) != NULL)  {
-			UNLINK(*qsp->xfr.top.ixfr, dp, d_link);
-			while ((rp = HEAD(dp->d_changes)) != NULL) {
-				UNLINK(dp->d_changes, rp, r_link);
-				if (rp->r_dp != NULL)
-					db_freedata(rp->r_dp);
-				rp->r_dp = NULL;
-				res_freeupdrec(rp);
-			} 
-			memput(dp, sizeof *dp);
-		}
-		memput(qsp->xfr.top.ixfr, sizeof *qsp->xfr.top.ixfr);
-		qsp->xfr.top.ixfr = NULL;
-	}
-	while (qsp->xfr.lev)
-		qsp->xfr.lev = sx_freelev(qsp->xfr.lev);
-	zones[qsp->xfr.zone].z_numxfrs--;
-	qsp->flags &= ~(STREAM_AXFR | STREAM_AXFRIXFR);
-}
-
-/*
- * u_char *
- * sx_newmsg(msg)
- *	init the header of a message, reset the compression pointers, and
- *	reset the write pointer to the first byte following the header.
- */
-void
-sx_newmsg(struct qstream *qsp) {
-	HEADER *hp = (HEADER *)qsp->xfr.msg;
-
-	memset(hp, 0, HFIXEDSZ);
-	hp->id = htons(qsp->xfr.id);
-	hp->opcode = qsp->xfr.opcode;
-	hp->qr = 1;
-	hp->rcode = NOERROR;
-
-	qsp->xfr.ptrs[0] = qsp->xfr.msg;
-	qsp->xfr.ptrs[1] = NULL;
-
-	qsp->xfr.cp = qsp->xfr.msg + HFIXEDSZ;
-
-	qsp->xfr.eom = qsp->xfr.msg + XFER_BUFSIZE;
-
-	if (qsp->xfr.tsig_state != NULL)
-		qsp->xfr.eom -= TSIG_BUF_SIZE;
-}
-
-/*
- * int
- * sx_flush(qsp)
- *	flush the intermediate buffer out to the stream IO system.
- * return:
- *	passed through from sq_write().
- */
-static int
-sx_flush(struct qstream *qsp) {
-	int ret;
-
-#ifdef DEBUG
-	if (debug >= 10)
-		res_pquery(&res, qsp->xfr.msg, qsp->xfr.cp - qsp->xfr.msg,
-			   log_get_stream(packet_channel));
-#endif
-	if (qsp->xfr.tsig_state != NULL && qsp->xfr.tsig_skip == 0) {
-		int msglen = qsp->xfr.cp - qsp->xfr.msg;
-
-		ns_sign_tcp(qsp->xfr.msg, &msglen, qsp->xfr.eom - qsp->xfr.msg,
-			    NOERROR, qsp->xfr.tsig_state,
-			    qsp->xfr.state == s_x_done);
-
-		if (qsp->xfr.state == s_x_done) {
-			memput(qsp->xfr.tsig_state, sizeof(ns_tcp_tsig_state));
-			qsp->xfr.tsig_state = NULL;
-		}
-		qsp->xfr.cp = qsp->xfr.msg + msglen;
-	
-	}
-	ret = sq_write(qsp, qsp->xfr.msg, qsp->xfr.cp - qsp->xfr.msg);
-	if (ret >= 0) {
-		qsp->xfr.cp = NULL;
-		qsp->xfr.tsig_skip = 0;
-	}
-	else
-		qsp->xfr.tsig_skip = 1;
-	return (ret);
-}
-
-/*
- * int
- * sx_addrr(qsp, name, dp)
- *	add name/dp's RR to the current assembly message.  if it won't fit,
- *	write current message out, renew the message, and then RR *must* fit.
- * return:
- *	-1 = the sx_flush() failed so we could not queue the full message.
- *	0 = one way or another, everything is fine.
- * side effects:
- *	on success, the ANCOUNT is incremented and the pointers are advanced.
- */
-static int
-sx_addrr(struct qstream *qsp, const char *dname, struct databuf *dp) {
-	HEADER *hp = (HEADER *)qsp->xfr.msg;
-	u_char **edp = qsp->xfr.ptrs + sizeof qsp->xfr.ptrs / sizeof(u_char*);
-	int n, type;
-
-	if (qsp->xfr.cp != NULL) {
-		if (qsp->xfr.transfer_format == axfr_one_answer &&
-		    sx_flush(qsp) < 0)
-			return (-1);
-	}
-	if (qsp->xfr.cp == NULL)
-		sx_newmsg(qsp);
-
-	/*
-	 * Add question to first answer.
-	 */
-	if (qsp->xfr.state == s_x_firstsoa && dp->d_type == T_SOA) {
-		n = dn_comp(dname, qsp->xfr.cp, qsp->xfr.eom - qsp->xfr.cp,
-			    qsp->xfr.ptrs, edp);
-		if (n > 0 && (qsp->xfr.cp + n + INT16SZ * 2) <= qsp->xfr.eom) {
-			qsp->xfr.cp += n;
-			if (qsp->xfr.type == ns_t_zxfr)
-				type = ns_t_axfr;
-			else if ((qsp->flags & STREAM_AXFRIXFR) != 0)
-				type = ns_t_ixfr;
-			else
-				type = qsp->xfr.type;
-			PUTSHORT((u_int16_t) type, qsp->xfr.cp);
-			PUTSHORT((u_int16_t) qsp->xfr.class, qsp->xfr.cp);
-			hp->qdcount = htons(ntohs(hp->qdcount) + 1);
-		}
-	}
-
-	n = make_rr(dname, dp, qsp->xfr.cp, qsp->xfr.eom - qsp->xfr.cp,
-		    0, qsp->xfr.ptrs, edp, 0);
-	if (n < 0) {
-		if (sx_flush(qsp) < 0)
-			return (-1);
-		if (qsp->xfr.cp == NULL)
-			sx_newmsg(qsp);
-		n = make_rr(dname, dp, qsp->xfr.cp, qsp->xfr.eom - qsp->xfr.cp,
-			    0, qsp->xfr.ptrs, edp, 0);
-		INSIST(n >= 0);
-	}
-	hp->ancount = htons(ntohs(hp->ancount) + 1);
-	qsp->xfr.cp += n;
-	return (0);
-}
-
-/*
- * int
- * sx_soarr(qsp)
- *	add the SOA RR's at the current level's top np to the assembly message.
- * return:
- *	0 = success
- *	-1 = write buffer full, cannot continue at this time
- * side effects:
- *	if progress was made, header and pointers will be advanced.
- */
-int
-sx_soarr(struct qstream *qsp) {
-	struct databuf *dp;
-	int added_soa = 0;
-
-	foreach_rr(dp, qsp->xfr.top.axfr, T_SOA, qsp->xfr.class,
-		   qsp->xfr.zone) {
-		if (sx_addrr(qsp, zones[qsp->xfr.zone].z_origin, dp) < 0) {
-			/* RR wouldn't fit. Bail out. */
-			return (-1);
-		}
-		added_soa = 1;
-		break;
-	}
-	if (added_soa == 0)
-		ns_panic(ns_log_xfer_out, 1, "no SOA at zone top");
-	if (qsp->xfr.state == s_x_firstsoa) {
-		foreach_rr(dp, qsp->xfr.top.axfr, T_SIG, qsp->xfr.class,
-			   qsp->xfr.zone)
-		{
-			if (SIG_COVERS(dp) != T_SOA)
-				continue;
-			if (sx_addrr(qsp, zones[qsp->xfr.zone].z_origin, dp) <
-			    0)
-			{
-				/* RR wouldn't fit. Bail out. */
-				return (-1);
-			}
-		}
-	}
-	return (0);
-}
-
-/*
- * int
- * sx_nsrrs(qsp)
- *	add the NS RR's at the current level's current np to the assembly msg.
- *      This function also adds the SIG(NS), KEY, SIG(KEY), NXT, SIG(NXT),
- *      since these records are also part of the delegation (see DNSSEC).
- * return:
- *	>1 = number of NS RRs added, note that there may be more
- *	0 = success, there are no more NS RRs at this level
- *	-1 = write buffer full, cannot continue at this time
- * side effects:
- *	if progress was made, header and pointers will be advanced.
- * note:
- *	this is meant for AXFR, which includes glue as part of the answer
- *	sections.  this is different from and incompatible with the additional
- *	data of a referral response.
- */
-static int
-sx_nsrrs(struct qstream *qsp) {
-	struct databuf *dp, *tdp, *gdp;
-	struct namebuf *gnp, *tnp, *top;
-	struct hashbuf *htp;
-	const char *fname;
-	int class;
-
-	class = qsp->xfr.class;
-	top = qsp->xfr.top.axfr;
-	for ((void)NULL;
-	     (dp = qsp->xfr.lev->dp) != NULL;
-	     qsp->xfr.lev->dp = db_next(dp)) {
-		if (dp->d_class != class && class != C_ANY)
-			continue;
-		if (dp->d_rcode)
-			continue;
-		/*
-		 * It might not be in the same zone, if we are authoritative
-		 * for both parent and child, but it does have to be a zone.
-		 *
-		 * XXX: this is sort of a bug, since it means we merge the
-		 *	@ NS RRset into our parent's zone.  But that is what
-		 *	db_load() does, so for now we have no choice.
-		 */
-		if (dp->d_zone == DB_Z_CACHE)
-			continue;
-
-		if (dp->d_type != T_NS && dp->d_type != T_KEY && 
-		    dp->d_type != T_NXT && dp->d_type != T_SIG)
-			continue;
-		if (dp->d_type == T_SIG && ((SIG_COVERS(dp) != T_NS) &&
-		    (SIG_COVERS(dp) != T_KEY) && (SIG_COVERS(dp) != T_NXT)))
-			continue;
-		if (!(qsp->xfr.lev->flags & SXL_GLUING)) {
-			if (sx_addrr(qsp, qsp->xfr.lev->dname, dp) < 0) {
-				/* RR wouldn't fit. Bail out. */
-				return (-1);
-			}
-			if (dp->d_type != T_NS) /* no glue processing */
-				continue;
-			/* Remember we have found a zone cut */
-			if (qsp->xfr.top.axfr != qsp->xfr.lev->np)
-				qsp->xfr.lev->flags |= SXL_ZONECUT;
-		}
-
-		/*
-		 * Glue the sub domains together by sending the address
-		 * records for the sub domain name servers along if necessary.
-		 * Glue is necessary if the server is in any zone delegated
-		 * from the current (top) zone.  Such a delegated zone might
-		 * or might not be that referred to by the NS record now
-		 * being handled.
-		 */
-		htp = hashtab;
-		gnp = nlookup((char *)dp->d_data, &htp, &fname, 0);
-		if (gnp == NULL || fname != (char *)dp->d_data)
-			continue;
-		for (tnp = gnp;
-		     tnp != NULL && tnp != top;
-		     tnp = tnp->n_parent)
-			(void)NULL;
-		if (tnp == NULL && NAME(*top)[0] != '\0')
-			continue;  /* name server is not below top domain */
-		for (tnp = gnp;
-		     tnp != NULL && tnp != top;
-		     tnp = tnp->n_parent) {
-			foreach_rr(tdp, tnp, T_NS, class, DB_Z_CACHE)
-				break;
-			/* If we found a zone cut, we're outta here. */
-			if (tdp != NULL)
-				break;
-		}
-		/* If name server is not in a delegated zone, skip it. */
-		if (tnp == top || (tnp == NULL && NAME(*top)[0] == '\0'))
-			continue;
-		/* Now we know glue records are needed.  Send them. */
-		qsp->xfr.lev->flags |= SXL_GLUING;
-		foreach_rr(gdp, gnp, T_A, class, DB_Z_CACHE)
-			if (sx_addrr(qsp, fname, gdp) < 0) {
-				/*
-				 * Rats.  We already sent the NS RR, too.
-				 * Note that SXL_GLUING is being left on.
-				 */
-				return (-1);
-			}
-		/* for IPv6 glue AAAA record transfer */
-		/* patched by yasuhiro@nic.ad.jp, 1999/5/23 */
-		foreach_rr(gdp, gnp, T_AAAA, class, DB_Z_CACHE)
-			if (sx_addrr(qsp, fname, gdp) < 0) {
-				/*
-				 * Rats.  We already sent the NS RR, too.
-				 * Note that SXL_GLUING is being left on.
-				 */
-				return (-1);
-			}
-		foreach_rr(gdp, gnp, ns_t_a6, class, DB_Z_CACHE)
-			if (sx_addrr(qsp, fname, gdp) < 0) {
-				/*
-				 * Rats.  We already sent the NS RR, too.
-				 * Note that SXL_GLUING is being left on.
-				 */
-				return (-1);
-			}
-		qsp->xfr.lev->flags &= ~SXL_GLUING;
-	}
-	return (0);
-}
-
-/*
- * int
- * sx_allrrs(qsp)
- *	add the non-(SOA,NS) RR's at the current level's current np,
- *	to the assembly message
- *      do not add the DNSSEC types KEY and NXT as the delegation check 
- *	wrote these types out.
- * return:
- *	>0 = number of RR's added, note that there may be more
- *	0 = success, there are no more RRs at this level
- *	-1 = write buffer full, cannot continue at this time
- * side effects:
- *	if progress was made, header and pointers will be advanced.
- * note:
- *	this is meant for AXFR, which includes glue as part of the answer
- *	sections.  this is different from and incompatible with the additional
- *	data of a referral response.
- */
-static int
-sx_allrrs(struct qstream *qsp) {
-	struct databuf *dp;
-	struct namebuf *top;
-	int rrcount, class;
-	u_int zone;
-
-	class = qsp->xfr.class;
-	top = qsp->xfr.top.axfr;
-	zone = qsp->xfr.zone;
-	rrcount = 0;
-	for ((void)NULL;
-	     (dp = qsp->xfr.lev->dp) != NULL;
-	     qsp->xfr.lev->dp = db_next(dp)) {
-		if (dp->d_class != class && class != C_ANY)
-			continue;
-		if (dp->d_rcode)
-			continue;
-		if (dp->d_zone != zone || stale(dp))
-			continue;
-		if (dp->d_type == T_SOA || dp->d_type == T_NS ||
-			dp->d_type == T_NXT || dp->d_type == T_KEY)
-			continue;
-		if (dp->d_type == T_SIG &&
-		    (SIG_COVERS(dp) == T_SOA || SIG_COVERS(dp) == T_NS ||
-		     SIG_COVERS(dp) == T_KEY || SIG_COVERS(dp) == T_NXT))
-			continue;
-		INSIST(!(qsp->xfr.lev->flags & SXL_GLUING));
-
-		if (sx_addrr(qsp, qsp->xfr.lev->dname, dp) < 0) {
-			/* RR wouldn't fit. Bail out. */
-			return (-1);
-		}
-		rrcount++;
-	}
-	return (rrcount);
-}
-
-/*
- * void
- * sx_sendlev(qsp)
- *	send all the RRs at the current level (really a domain name), and
- *	do a decomposed recursion to get all subdomains up to and including
- *	but not exceeding bottom zone cuts.
- * side effects:
- *	advances qsp->xfr pointers.  changes qsp->xfr.lev quite often.
- *	causes messages to be sent to a remote TCP client.  changes the
- *	qsp->xfr.state at the end of the topmost level.  changes the
- *	qsp->xfr.lev->state several times per domain name.
- */
-void
-sx_sendlev(struct qstream *qsp) {
-	struct qs_x_lev *lev;
-
- again:
-	lev = qsp->xfr.lev;
-	switch (lev->state) {
-	    case sxl_ns: {
-		while (lev->dp) {
-			/* Was the child zone reloaded under us? */
-			if ((lev->dp->d_flags & DB_F_ACTIVE) == 0) {
-				(void) shutdown(qsp->s_rfd, 2);
-				sq_remove(qsp);
-				return;
-			}
-			/* If we can't pack this one in, come back later. */
-			if (sx_nsrrs(qsp) < 0)
-				return;
-		}
-		/* No more DP's for the NS RR pass on this NP. */
-		if (lev->flags & SXL_ZONECUT) {
-			/* Zone cut, so go directly to end of level. */
-			break;
-		}
-		/* No NS RR's, so it's safe to send other types. */
-		lev->state = sxl_all;
-		lev->dp = lev->np->n_data;
-		if (lev->dp)
-			DRCNTINC(lev->dp);
-		goto again;
-	    }
-	    case sxl_all: {
-		while (lev->dp) {
-			/* Was a record updated under us? */
-			if ((lev->dp->d_flags & DB_F_ACTIVE) == 0) {
-				(void) shutdown(qsp->s_rfd, 2);
-				sq_remove(qsp);
-				return;
-			}
-			/* If we can't pack this one in, come back later. */
-			if (sx_allrrs(qsp) < 0)
-				return;
-		}
-		/* No more non-NS DP's for this NP, do subdomains. */
-		lev->state = sxl_sub;
-		goto again;
-	    }
-	    case sxl_sub: {
-		struct namebuf *np;
-
-		/* Get next in-use hash chain if we're not following one. */
-		while (lev->nnp == NULL) {
-			/* If no, or no more subdomains, end of level. */
-			if (lev->npp == NULL || lev->npp == lev->npe)
-				break;
-			lev->nnp = *lev->npp++;
-		}
-		/* If we encountered the end of the level, we're outta here. */
-		if ((np = lev->nnp) == NULL)
-			break;
-		/* Next time, we'll do the following NP, or the next chain. */
-		lev->nnp = np->n_next;
-		/* Skip our own NP if it appears as a subdom (as in root). */
-		if (np != lev->np)
-			sx_pushlev(qsp, np);
-		goto again;
-	    }
-	    default:
-		abort();
-	}
-
-	/* End of level. Pop it off the stack. */
-
-	if ((qsp->xfr.lev = sx_freelev(lev)) == NULL) {
-		/* End of topmost level. */
-		qsp->xfr.state = s_x_lastsoa;
-		sq_writeh(qsp, sx_sendsoa);
-		return;
-	}
-	goto again;
-}
-
-/*
- * void
- * sx_sendsoa(qsp)
- *	send either the first or last SOA needed for an AXFR.
- * side effects:
- *	changes qsp->xfr.state.  adds RR to output buffer.
- */
-void
-sx_sendsoa(struct qstream *qsp) {
-	HEADER *	hp = (HEADER *) qsp->xfr.msg;
-
-	if (sx_soarr(qsp) == -1)
-		return;		/* No state change, come back here later. */
-
-	hp->aa = 1;
-
-	switch (qsp->xfr.state) {
-	    case s_x_firstsoa: {
-		/* Next thing to do is send the zone. */
-		qsp->xfr.state = s_x_zone;
-		sq_writeh(qsp, sx_sendlev);
-		break;
-	    }
-	    case s_x_lastsoa: {
-		/* Next thing to do is go back and wait for another query. */
-		qsp->xfr.state = s_x_done;
-		(void)sx_flush(qsp);
-		sq_writeh(qsp, sq_flushw);
-		break;
-	    }
-	    default: {
-		ns_panic(ns_log_xfer_out, 1,
-			 "unexpected state %d in sx_sendsoa", qsp->xfr.state);
-	    }
-	}
-}
-
-/* int
- * sx_pushlev(qsp, np)
- *	manage the decomposed recursion.  set up for a new level (domain).
- * returns:
- *	0 = success
- *	-1 = failure (check errno)
- */
-static int
-sx_pushlev(struct qstream *qsp, struct namebuf *np) {
-	struct qs_x_lev *new = memget(sizeof *new);
-	struct hashbuf *htp;
-
-	if (!new) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	memset(new, 0, sizeof *new);
-	new->state = sxl_ns;
-	new->np = np;
-	new->dp = np->n_data;
-	if (new->dp)
-		DRCNTINC(new->dp);
-	getname(np, new->dname, sizeof new->dname);
-	/*
-	 * We find the subdomains by looking in the hash table for this
-	 * domain, but the root domain needs special treatment, because
-	 * of the following wart in the database design:
-	 *
-	 * The top level hash table (pointed to by the global `hashtab'
-	 * variable) contains pointers to the namebuf's for the root as
-	 * well as for the top-level domains below the root, in contrast
-	 * to the usual situation where a hash table contains entries
-	 * for domains at the same level.  The n_hash member of the
-	 * namebuf for the root domain is NULL instead of pointing to a
-	 * hashbuf for the top-level domains.  The n_parent members of
-	 * the namebufs for the top-level domains are NULL instead of
-	 * pointing to the namebuf for the root.
-	 *
-	 * We work around the wart as follows:
-	 *
-	 * If we are not dealing with the root zone then we just set
-	 * htp = np->n_hash, pointing to the hash table for the current
-	 * domain, and we walk through the hash table as usual,
-	 * processing the namebufs for all the subdomains.
-	 *
-	 * If we are dealing with the root zone, then we set
-	 * htp = hashtab, pointing to the global hash table (because
-	 * there is no hash table associated with the root domain's
-	 * namebuf.  While we walk this hash table, we take care not to
-	 * recursively process the entry for the root namebuf.
-	 *
-	 * (apb@und nov1990)
-	 */
-	htp = ((new->dname[0] == '\0') ? hashtab : np->n_hash);
-	if (htp) {
-		new->npp = htp->h_tab;
-		new->npe = htp->h_tab + htp->h_size;
-	} else {
-		new->npp = NULL;
-		new->npe = NULL;
-	}
-	new->nnp = NULL;
-	new->next = qsp->xfr.lev;
-	qsp->xfr.lev = new;
-	return (0);
-}
-
-/*
- * qs_x_lev *
- * sx_freelev(lev)
- *	free the memory occupied by a level descriptor
- * return:
- *	pointer to "next" level descriptor
- */
-static struct qs_x_lev *
-sx_freelev(struct qs_x_lev *lev) {
-	struct qs_x_lev *next = lev->next;
-
-	if (lev->dp) {
-		DRCNTDEC(lev->dp);
-		if (lev->dp->d_rcnt == 0)
-			db_freedata(lev->dp);
-	}
-	memput(lev, sizeof *lev);
-	return (next);
-}
-
-static struct databuf *
-db_next(struct databuf *dp) {
-	struct databuf *next = dp->d_next;
-
-	DRCNTDEC(dp);
-	if (dp->d_rcnt == 0)
-		db_freedata(dp);
-
-	if (next)
-		DRCNTINC(next);
-
-	return (next);
-}
-
diff --git a/contrib/bind/bin/named/pathnames.c b/contrib/bind/bin/named/pathnames.c
deleted file mode 100644
index 2ba2415daa7a8..0000000000000
--- a/contrib/bind/bin/named/pathnames.c
+++ /dev/null
@@ -1,55 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: pathnames.c,v 8.5 1997/05/21 19:52:28 halley Exp $
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <string.h>
-#include <time.h>
-
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-
-#include "port_after.h"
-
-#include "named.h"
-
-int
-main(int argc, char *argv[], char *envp[]) {
-	char *arg;
-
-	argc--, argv++;
-	while (argc-- && (arg = *argv++) != NULL)
-		if (!strcasecmp("_PATH_XFER", arg))
-			puts(_PATH_XFER);
-		else if (!strcasecmp("_PATH_PIDFILE", arg))
-			puts(_PATH_PIDFILE);
-		else if (!strcasecmp("_PATH_NAMED", arg))
-			puts(_PATH_NAMED);
-		else
-			exit(1);
-	exit(0);
-}
diff --git a/contrib/bind/bin/named/pathtemplate.h b/contrib/bind/bin/named/pathtemplate.h
deleted file mode 100644
index 301171367cde0..0000000000000
--- a/contrib/bind/bin/named/pathtemplate.h
+++ /dev/null
@@ -1,78 +0,0 @@
-/*
- *	$Id: pathtemplate.h,v 8.6 2000/04/21 06:54:15 vixie Exp $
- */
-
-/*
- * Copyright (c) 1996-2000 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include <paths.h>
-
-#ifndef _PATH_CONF
-#define _PATH_CONF	"%DESTETC%/named.conf"
-#endif
-
-#ifndef _PATH_DEBUG
-#define _PATH_DEBUG	"named.run"
-#endif
-
-#ifndef _PATH_DUMPFILE
-#define _PATH_DUMPFILE	"named_dump.db"
-#endif
-
-#ifndef _PATH_NAMED
-#define _PATH_NAMED	"%DESTSBIN%/named"
-#endif
-
-#ifndef _PATH_PIDFILE
-#define _PATH_PIDFILE	"%DESTRUN%/named.pid"
-#endif
-
-#ifndef _PATH_NDCSOCK
-#ifdef NEED_SECURE_DIRECTORY
-#define _PATH_NDCSOCK	"%DESTRUN%/ndc.d/ndc"
-#else
-#define _PATH_NDCSOCK	"%DESTRUN%/ndc"
-#endif
-#endif
-
-#ifndef _PATH_STATS
-#define _PATH_STATS	"named.stats"
-#endif
-
-#ifndef _PATH_MEMSTATS
-#define _PATH_MEMSTATS	"named.memstats"
-#endif
-
-#ifndef _PATH_TMPXFER
-#define _PATH_TMPXFER	"xfer.ddt.XXXXXX"
-#endif
-
-#ifndef _PATH_XFER
-#define _PATH_XFER	"%DESTEXEC%/named-xfer"
-#endif
-
-#ifndef _PATH_XFERTRACE
-#define _PATH_XFERTRACE	"xfer.trace"
-#endif
-
-#ifndef _PATH_XFERDDT
-#define _PATH_XFERDDT	"xfer.ddt"
-#endif
-
-#ifndef _PATH_DEVNULL
-#define _PATH_DEVNULL	"/dev/null"
-#endif
diff --git a/contrib/bind/bin/named/test/127.0.0.zone b/contrib/bind/bin/named/test/127.0.0.zone
deleted file mode 100644
index b9b7bf5e0df42..0000000000000
--- a/contrib/bind/bin/named/test/127.0.0.zone
+++ /dev/null
@@ -1,11 +0,0 @@
-$ORIGIN 0.0.127.in-addr.arpa.
-
-@			1D IN SOA	localhost. root.localhost. (
-					42		; serial (d. adams)
-					3H		; refresh
-					15M		; retry
-					1W		; expiry
-					1D )		; minimum
-
-			1D IN NS	localhost.
-1			1D IN PTR	localhost.
diff --git a/contrib/bind/bin/named/test/localhost.zone b/contrib/bind/bin/named/test/localhost.zone
deleted file mode 100644
index ad5e68e863bf4..0000000000000
--- a/contrib/bind/bin/named/test/localhost.zone
+++ /dev/null
@@ -1,10 +0,0 @@
-$ORIGIN localhost.
-@			1D IN SOA	@ root (
-					42		; serial (d. adams)
-					3H		; refresh
-					15M		; retry
-					1W		; expiry
-					1D )		; minimum
-
-			1D IN NS	@
-			1D IN A		127.0.0.1
diff --git a/contrib/bind/bin/named/test/named.conf b/contrib/bind/bin/named/test/named.conf
deleted file mode 100644
index 0e43eac1afb86..0000000000000
--- a/contrib/bind/bin/named/test/named.conf
+++ /dev/null
@@ -1,45 +0,0 @@
-// This is a configuration file for named (from BIND 8.1 or later).
-// It would normally be installed as /etc/named.conf.
-
-options {
-//	directory "/var/named";
-	check-names master warn;		/* default. */
-	datasize 20M;
-	deallocate-on-exit yes;
-	listen-on { 10.0.0.53; };
-};
-
-zone "localhost" IN {
-	type master;
-	file "localhost.zone";
-	check-names fail;
-	allow-update { none; };
-	allow-transfer { any; };
-};
-
-zone "0.0.127.in-addr.arpa" IN {
-	type master;
-	file "127.0.0.zone";
-	check-names fail;
-	allow-update { none; };
-	allow-transfer { any; };
-};
-
-zone "." IN {
-	type hint;
-	file "root.hint";
-};
-
-logging {
-        channel xfer-log {
-                file "/var/tmp/bind-xfer.log" versions unlimited size 10m;
-                print-category yes;
-                print-severity yes;
-                print-time yes;
-                severity info;
-        };
-        category xfer-in { xfer-log; };
-        category xfer-out { xfer-log; };
-        category notify { xfer-log; };
-        category load { xfer-log; };
-};
diff --git a/contrib/bind/bin/named/test/root.hint b/contrib/bind/bin/named/test/root.hint
deleted file mode 100644
index 0b8f372f24506..0000000000000
--- a/contrib/bind/bin/named/test/root.hint
+++ /dev/null
@@ -1,37 +0,0 @@
-
-; <<>> DiG 2.2 <<>> @192.5.5.241 
-; (1 server found)
-;; res options: init recurs defnam dnsrch
-;; got answer:
-;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
-;; flags: qr aa rd; QUERY: 1, ANSWER: 9, AUTHORITY: 0, ADDITIONAL: 9
-;; QUERY SECTION:
-;;	., type = NS, class = IN
-
-;; ANSWER SECTION:
-.			6D IN NS	C.ROOT-SERVERS.NET.
-.			6D IN NS	D.ROOT-SERVERS.NET.
-.			6D IN NS	E.ROOT-SERVERS.NET.
-.			6D IN NS	I.ROOT-SERVERS.NET.
-.			6D IN NS	F.ROOT-SERVERS.NET.
-.			6D IN NS	G.ROOT-SERVERS.NET.
-.			6D IN NS	A.ROOT-SERVERS.NET.
-.			6D IN NS	H.ROOT-SERVERS.NET.
-.			6D IN NS	B.ROOT-SERVERS.NET.
-
-;; ADDITIONAL SECTION:
-C.ROOT-SERVERS.NET.	5w6d16h IN A	192.33.4.12
-D.ROOT-SERVERS.NET.	5w6d16h IN A	128.8.10.90
-E.ROOT-SERVERS.NET.	5w6d16h IN A	192.203.230.10
-I.ROOT-SERVERS.NET.	5w6d16h IN A	192.36.148.17
-F.ROOT-SERVERS.NET.	5w6d16h IN A	192.5.5.241
-G.ROOT-SERVERS.NET.	5w6d16h IN A	192.112.36.4
-A.ROOT-SERVERS.NET.	5w6d16h IN A	198.41.0.4
-H.ROOT-SERVERS.NET.	5w6d16h IN A	128.63.2.53
-B.ROOT-SERVERS.NET.	5w6d16h IN A	128.9.0.107
-
-;; Total query time: 8 msec
-;; FROM: wisdom.home.vix.com to SERVER: 192.5.5.241
-;; WHEN: Fri Nov 22 00:08:05 1996
-;; MSG SIZE  sent: 17  rcvd: 312
-
diff --git a/contrib/bind/bin/named/version.c b/contrib/bind/bin/named/version.c
deleted file mode 100644
index 31820f5194d9d..0000000000000
--- a/contrib/bind/bin/named/version.c
+++ /dev/null
@@ -1,89 +0,0 @@
-/*
- *	@(#)Version.c	4.9 (Berkeley) 7/21/90
- *	$Id: version.c,v 8.3 1999/01/02 06:05:14 vixie Exp $
- */
-
-#ifndef lint
-char sccsid[] = "@(#)named %VERSION% %WHEN% %WHOANDWHERE%";
-char rcsid[] = "$Id: version.c,v 8.3 1999/01/02 06:05:14 vixie Exp $";
-#endif /* not lint */
-
-char Version[] = "named %VERSION% %WHEN%\n\t%WHOANDWHERE%";
-char ShortVersion[] = "%VERSION%";
-
-#ifdef COMMENT
-
-SCCS/s.Version.c:
-
-D 4.8.3	90/06/27 17:05:21	bloom	37	35	00031/00028/00079
-Version distributed with 4.3 Reno tape (June 1990)
-
-D 4.8.2	89/09/18 13:57:11	bloom	35	34	00020/00014/00087
-Interim fixes release
-
-D 4.8.1	89/02/08 17:12:15	karels	34	33	00026/00017/00075
-branch for 4.8.1
-
-D 4.8	88/07/09 14:27:00       karels  33      28      00043/00031/00049
-4.8 is here!
-
-D 4.7	87/11/20 13:15:52	karels	25	24	00000/00000/00062
-4.7.3 beta
-
-D 4.6	87/07/21 12:15:52	karels	25	24	00000/00000/00062
-4.6 declared stillborn
-
-D 4.5	87/02/10 12:33:25	kjd	24	18	00000/00000/00062
-February 1987, Network Release. Child (bind) grows up, parent (kevin) leaves home.
-
-D 4.4	86/10/01 10:06:26	kjd	18	12	00020/00017/00042
-October 1, 1986 Network Distribution
-
-D 4.3	86/06/04 12:12:18	kjd	12	7	00015/00028/00044
-Version distributed with 4.3BSD
-
-D 4.2	86/04/30 20:57:16	kjd	7	1	00056/00000/00016
-Network distribution Freeze and one more version until 4.3BSD
-
-D 1.1	86/04/30 19:30:00	kjd	1	0	00016/00000/00000
-date and time created 86/04/30 19:30:00 by kjd
-
-code versions:
-
-Makefile
-	Makefile	4.14 (Berkeley) 2/28/88
-db.h
-	db.h	4.13 (Berkeley) 2/17/88
-db_dump.c
-	db_dump.c	4.20 (Berkeley) 2/17/88
-db_load.c
-	db_load.c	4.26 (Berkeley) 2/28/88
-db_lookup.c
-	db_lookup.c	4.14 (Berkeley) 2/17/88
-db_reload.c
-	db_reload.c	4.15 (Berkeley) 2/28/88
-db_save.c
-	db_save.c	4.13 (Berkeley) 2/17/88
-db_update.c
-	db_update.c	4.16 (Berkeley) 2/28/88
-ns_forw.c
-	ns_forw.c	4.26 (Berkeley) 3/28/88
-ns_init.c
-	ns_init.c	4.23 (Berkeley) 2/28/88
-ns_main.c
-	 Copyright (c) 1986 Regents of the University of California.\n\
-	ns_main.c	4.30 (Berkeley) 3/7/88
-ns_maint.c
-	ns_maint.c	4.23 (Berkeley) 2/28/88
-ns_req.c
-	ns_req.c	4.32 (Berkeley) 3/31/88
-ns_resp.c
-	ns_resp.c	4.50 (Berkeley) 4/7/88
-ns_sort.c
-	ns_sort.c	4.3 (Berkeley) 2/17/88
-ns_stats.c
-	ns_stats.c	4.3 (Berkeley) 2/17/88
-newvers.sh
-	newvers.sh	4.4 (Berkeley) 3/28/88
-
-#endif /* COMMENT */
diff --git a/contrib/bind/bin/ndc/Makefile b/contrib/bind/bin/ndc/Makefile
deleted file mode 100644
index d2b9feb2f1e20..0000000000000
--- a/contrib/bind/bin/ndc/Makefile
+++ /dev/null
@@ -1,95 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 1.15 1999/08/08 17:51:02 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-AR= ar cru
-INSTALL= install
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-PS=ps
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL} ${DEFS}
-
-PROG= ndc
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-HDRS= pathnames.h
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${HDRS} ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} ${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-pathnames.h: ${TOP}/.settings Makefile ../named/pathtemplate.h
-	rm -f pathnames.h
-	sed -e "s|%DESTSBIN%|${DESTSBIN}|" \
-	    -e "s|%DESTEXEC%|${DESTEXEC}|" \
-	    -e "s|%DESTETC%|${DESTETC}|" \
-	    -e "s|%DESTRUN%|${DESTRUN}|" \
-	    < ../named/pathtemplate.h > pathnames.h
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-	rm -f pathnames.h
-
-depend: ${SRCS} pathnames.h
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTSBIN}:
-	mkdir -p ${DESTDIR}${DESTSBIN}
-
-install: ${DESTDIR}${DESTSBIN} ${PROG}${EXE}
-	${INSTALL}  ${INSTALL_EXEC} ${STRIP} -c -m 755 ${PROG}${EXE} ${DESTDIR}${DESTSBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags ${SRCS} *.h
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/ndc/ndc.c b/contrib/bind/bin/ndc/ndc.c
deleted file mode 100644
index 7235586ea9568..0000000000000
--- a/contrib/bind/bin/ndc/ndc.c
+++ /dev/null
@@ -1,709 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ndc.c,v 1.14 2000/02/04 08:28:32 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Portions Copyright (c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdarg.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-#include <signal.h>
-
-#include <isc/eventlib.h>
-#include <isc/ctl.h>
-
-#include "port_after.h"
-#include "pathnames.h"
-
-typedef union {
-	struct sockaddr_in in;
-#ifndef NO_SOCKADDR_UN
-	struct sockaddr_un un;
-#endif
-} sockaddr_t;
-
-typedef void (*closure)(void *, const char *, int);
-
-static const char *	program = "amnesia";
-static enum { e_channel, e_signals } mode = e_channel;
-static char *	channel = _PATH_NDCSOCK;
-static const char	helpfmt[] = "\t%-16s\t%s\n";
-static const char *	pidfile = _PATH_PIDFILE;
-static sockaddr_t	client, server;
-static int		quiet = 0, tracing = 0, silent = 0, client_set = 0;
-static int		debug = 0, errors = 0, doneflag, exitflag;
-static int		logger_show = 1;
-static evContext	ev;
-static char		cmd[1000];
-static const char *	named_path = _PATH_NAMED;
-
-static int		slashcmd(void);
-static void		slashhelp(void);
-static int		builtincmd(void);
-static void		command(void);
-static int		running(int, pid_t *);
-static void		command_channel(void);
-static void		channel_loop(char *, int, closure, void *);
-static void		getpid_closure(void *, const char *, int);
-static void		banner(struct ctl_cctx *, void *, const char *, u_int);
-static void		done(struct ctl_cctx *, void *, const char *, u_int);
-static void		logger(enum ctl_severity, const char *fmt, ...);
-static void		command_signals(void);
-static void		stop_named(pid_t);
-static void		start_named(const char *, int);
-static int		fgetpid(const char *, pid_t *);
-static int		get_sockaddr(char *, sockaddr_t *);
-static size_t		impute_addrlen(const struct sockaddr *);
-static void		vtrace(const char *, va_list);
-static void		trace(const char *, ...);
-static void		result(const char *, ...);
-static void		fatal(const char *, ...);
-static void		verror(const char *, va_list);
-static void		error(const char *, ...);
-
-static void
-usage(const char *fmt, ...) {
-	va_list args;
-
-	va_start(args, fmt);
-	fprintf(stderr, "%s: usage error: ", program);
-	vfprintf(stderr, fmt, args);
-	fputc('\n', stderr);
-	va_end(args);
-	fatal("usage: %s \
-[-l localsock] [-c channel] [-p pidfile] [-n namedpath] \
-[-dqst] [command [args]]\n\
-",
-	      program);
-}
-
-/* Public. */
-
-int
-main(int argc, char *argv[], char *envp[]) {
-	char *p;
-	int ch;
-
-	if ((program = strrchr(argv[0], '/')) != NULL)
-		program++;
-	else
-		program = argv[0];
-	while ((ch = getopt(argc, argv, "c:p:l:n:dqst")) != -1) {
-		switch (ch) {
-		case 'c':
-			channel = optarg;
-			mode = e_channel;
-			break;
-		case 'p':
-			pidfile = optarg;
-			mode = e_signals;
-			break;
-		case 'l':
-			if (!get_sockaddr(optarg, &client))
-				usage("bad local socket (%s)", optarg);
-			client_set++;
-			break;
-		case 'n':
-			named_path = optarg;
-			break;
-		case 'd':
-			tracing++;
-			debug++;
-			break;
-		case 'q':
-			quiet++;
-			break;
-		case 's':
-			silent++;
-			break;
-		case 't':
-			tracing++;
-			break;
-		default:
-			usage("unrecognized command option (%c)", ch);
-			/* NOTREACHED */
-		}
-	}
-	if (mode != e_channel && client_set)
-		usage("the -l flag is only valid for control channels");
-	if (mode == e_channel) {
-		if (!get_sockaddr(channel, &server))
-			usage("bad channel name (%s)", channel);
-		if (evCreate(&ev) < 0)
-			fatal("evCreate - %s", strerror(errno));
-	}
-	*(p = cmd) = '\0';
-	for (argc -= optind, argv += optind;
-	     argc > 0;
-	     argc--, argv++) {
-		size_t t = strlen(*argv);
-
-		if ((p - cmd) + t + 2 > sizeof cmd)
-			usage("command too long");
-		strcpy(p, *argv);
-		p += t;
-		if (argv[1] != NULL)
-			*p++ = ' ';
-		*p = '\0';
-	}
-	if (cmd[0] != '\0') {
-		command();
-	} else {
-		if (!quiet)
-			result("Type   help  -or-   /h   if you need help.");
-		for (exitflag = 0; !exitflag; (void)NULL) {
-			if (!quiet) {
-				printf("%s> ", program);
-				fflush(stdout);
-			}
-			if (!fgets(cmd, sizeof cmd, stdin)) {
-				if (!quiet)
-					result("EOF");
-				exitflag++;
-				continue;
-			}
-			if (cmd[strlen(cmd) - 1] == '\n')
-				cmd[strlen(cmd) - 1] = '\0';
-			if (cmd[0] == '\0')
-				continue;
-			if (slashcmd())
-				continue;
-			command();
-		}
-	}
-	if (mode == e_channel)
-		evDestroy(ev);
-	exit(errors != 0);
-}
-
-/* Private. */
-
-static int
-slashcmd(void) {
-	if (strncasecmp(cmd, "/help", strlen(cmd)) == 0)
-		slashhelp();
-	else if (strncasecmp(cmd, "/exit", strlen(cmd)) == 0)
-		exitflag++;
-	else if (strncasecmp(cmd, "/trace", strlen(cmd)) == 0)
-		result("tracing now %s",
-		       (tracing = !tracing) ? "on" : "off");
-	else if (strncasecmp(cmd, "/debug", strlen(cmd)) == 0)
-		result("debugging now %s",
-		       (debug = !debug) ? "on" : "off");
-	else if (strncasecmp(cmd, "/quiet", strlen(cmd)) == 0)
-		result("%s is now %s", program,
-		       (quiet = !quiet) ? "quiet" : "noisy");
-	else if (strncasecmp(cmd, "/silent", strlen(cmd)) == 0)
-		result("%s is now %s", program,
-		       (silent = !silent)
-			? "silent" : "gregarious");
-	else
-		return (0);
-	return (1);
-}
-
-static void
-slashhelp(void) {
-	printf(helpfmt, "/h(elp)", "this text");
-	printf(helpfmt, "/e(xit)", "leave this program");
-	printf(helpfmt, "/t(race)",
-	       "toggle tracing (protocol and system events)");
-	printf(helpfmt, "/d(ebug)",
-	       "toggle debugging (internal program events)");
-	printf(helpfmt, "/q(uiet)",
-	       "toggle quietude (prompts and results)");
-	printf(helpfmt, "/s(ilent)",
-	       "toggle silence (suppresses nonfatal errors)");
-}
-
-static int
-builtincmd(void) {
-	static const char spaces[] = " \t";
-	char *rest, *syscmd;
-	pid_t pid;
-	int save_quiet = quiet;
-	int len;
-
-	quiet = 1;
-
-	len = strcspn(cmd, spaces);
-	rest = cmd + len;
-	if (*rest != '\0') {
-		rest++;
-		rest += strspn(rest, spaces);
-	}
-	syscmd = malloc(strlen(named_path) + sizeof " " + strlen(rest));
-	if (syscmd == NULL)
-		fatal("malloc() failed - %s", strerror(errno));
-	strcpy(syscmd, named_path);
-	if (*rest != '\0') {
-		strcat(syscmd, " ");
-		strcat(syscmd, rest);
-	}
-	if (strncasecmp(cmd, "start", len) == 0) {
-		if (running(debug, &pid))
-			error("name server already running? (pid %ld)",
-			      (long)pid);
-		else
-			start_named(syscmd, save_quiet);
-		quiet = save_quiet;
-		free(syscmd);
-		return (1);
-	} else if (strncasecmp(cmd, "restart", len) == 0) {
-		if (!running(debug, &pid))
-			error("name server was not running (warning only)");
-		else
-			stop_named(pid);
-		start_named(syscmd, save_quiet);
-		quiet = save_quiet;
-		free(syscmd);
-		return (1);
-	}
-	quiet = save_quiet;
-	free(syscmd);
-	return (0);
-}
-
-static void
-builtinhelp(void) {
-	printf(helpfmt, "start", "start the server");
-	printf(helpfmt, "restart", "stop server if any, start a new one");
-}
-
-static void
-command(void) {
-	if (builtincmd())
-		return;
-	switch (mode) {
-	case e_channel:
-		command_channel();
-		break;
-	case e_signals:
-		command_signals();
-		break;
-	default:
-		abort();
-	}
-}
-
-static int
-running(int show, pid_t *pidp) {
-	pid_t pid;
-
-	switch (mode) {
-	case e_channel:
-		pid = 0;
-		channel_loop("getpid", show, getpid_closure, &pid);
-		if (pid != 0) {
-			if (tracing)
-				result("pid %ld is running", (long)pid);
-			*pidp = pid;
-			return (1);
-		}
-		break;
-	case e_signals:
-		if (fgetpid(pidfile, pidp)) {
-			if (tracing)
-				result("pid %ld is running", (long)pid);
-			return (1);
-		}
-		break;
-	default:
-		abort();
-	}
-	if (show)
-		error("pid not valid or server not running");
-	return (0);
-}
-
-static void
-getpid_closure(void *uap, const char *text, int flags) {
-	pid_t *pidp = uap;
-	const char *cp;
-
-	flags = flags;
-	if ((cp = strchr(text, '<')) != NULL) {
-		long l = 0;
-		char ch;
-
-		while ((ch = *++cp) != '\0' && ch != '>' && isdigit(ch))
-			l *= 10, l += (ch - '0');
-		if (ch == '>') {
-			*pidp = (pid_t)l;
-				return;
-		}
-	}
-	error("response does not contain pid (%s)", text);
-}
-
-static void
-command_channel(void) {
-	int helping = (strcasecmp(cmd, "help") == 0);
-	int save_quiet = quiet;
-
-	if (helping)
-		quiet = 0;
-	channel_loop(cmd, !quiet, NULL, NULL);
-	quiet = save_quiet;
-}
-
-struct args {
-	const char *cmd;
-	closure cl;
-	void *ua;
-};
-
-static void
-channel_loop(char *cmdtext, int show, closure cl, void *ua) {
-	struct ctl_cctx *ctl;
-	struct sockaddr *client_addr;
-	struct args a;
-	evEvent e;
-	int save_logger_show = logger_show;
-
-	if (!client_set)
-		client_addr = NULL;
-	else
-		client_addr = (struct sockaddr *)&client;
-	a.cmd = cmdtext;
-	a.cl = cl;
-	a.ua = ua;
-	logger_show = show;
-	ctl = ctl_client(ev, client_addr, impute_addrlen(client_addr),
-			 (struct sockaddr *)&server,
-			 impute_addrlen((struct sockaddr *)&server),
-			 banner, &a, 15, logger);
-	if (ctl == NULL) {
-		if (show)
-			error("cannot connect to command channel (%s)",
-				channel);
-	} else {
-		doneflag = 0;
-		while (evGetNext(ev, &e, EV_WAIT) == 0)
-			if (evDispatch(ev, e) < 0 || doneflag)
-				break;
-		ctl_endclient(ctl);
-	}
-	logger_show = save_logger_show;
-}
-
-static void
-banner(struct ctl_cctx *ctl, void *uap, const char *msg, u_int flags) {
-	struct args *a = uap;
-
-	if (msg == NULL) {
-		trace("EOF");
-		doneflag = 1;
-		return;
-	}
-	trace("%s", msg);
-	if ((flags & CTL_MORE) != 0)
-		return;
-	if (ctl_command(ctl, a->cmd, strlen(a->cmd), done, a) < 0) {
-		error("ctl_command failed - %s", strerror(errno));
-		doneflag = 1;
-	}
-}
-
-static void
-done(struct ctl_cctx *ctl, void *uap, const char *msg, u_int flags) {
-	struct args *a = uap;
-
-	if (msg == NULL) {
-		trace("EOF");
-		doneflag = 1;
-		return;
-	}
-	if (!tracing && !quiet && strlen(msg) > 4)
-		result("%s", msg + 4);
-	trace("%s", msg);
-	if (a->cl)
-		(a->cl)(a->ua, msg, flags);
-	if ((flags & CTL_MORE) == 0)
-		doneflag = 1;
-}
-
-static void
-logger(enum ctl_severity ctlsev, const char *format, ...) {
-	va_list args;
-
-	va_start(args, format);
-	switch (ctlsev) {
-	case ctl_debug:
-		/* FALLTHROUGH */
-	case ctl_warning:
-		if (debug)
-			vtrace(format, args);
-		break;
-	case ctl_error:
-		if (logger_show)
-			verror(format, args);
-		break;
-	default:
-		abort();
-	}
-	va_end(args);
-}
-
-static struct cmdsig {
-	const char *	cmd;
-	int		sig;
-	const char *	help;
-} cmdsigs[] = {
-	{ "dumpdb", SIGINT, "dump cache database to a file" },
-	{ "reload", SIGHUP, "reload configuration file" },
-	{ "stats", SIGILL, "dump statistics to a file" },
-	{ "trace", SIGUSR1, "increment trace level" },
-	{ "notrace", SIGUSR2, "turn off tracing" },
-#ifdef SIGWINCH
-	{ "querylog", SIGWINCH, "toggle query logging" },
-	{ "qrylog", SIGWINCH, "alias for querylog" },
-#endif
-	{ NULL, 0 }
-};
-
-static void
-command_signals(void) {
-	struct cmdsig *cmdsig;
-	pid_t pid;
-	int sig;
-
-	if (strcasecmp(cmd, "help") == 0) {
-		printf(helpfmt, "help", "this output");
-		printf(helpfmt, "status", "check for running server");
-		printf(helpfmt, "stop", "stop the server");
-		builtinhelp();
-		for (cmdsig = cmdsigs; cmdsig->cmd != NULL; cmdsig++)
-			printf(helpfmt, cmdsig->cmd, cmdsig->help);
-	} else if (strcasecmp(cmd, "status") == 0) {
-		if (!fgetpid(pidfile, &pid))
-			error("pid not valid or server not running");
-		else
-			result("pid %ld is running", (long)pid);
-	} else if (strcasecmp(cmd, "stop") == 0) {
-		if (!fgetpid(pidfile, &pid))
-			error("name server not running");
-		else
-			stop_named(pid);
-	} else {
-		for (cmdsig = cmdsigs; cmdsig->cmd != NULL; cmdsig++)
-			if (strcasecmp(cmd, cmdsig->cmd) == 0)
-				break;
-		if (cmdsig->cmd == NULL)
-			error("unrecognized command (%s)", cmd);
-		else if (!fgetpid(pidfile, &pid))
-			error("can't get pid (%s)", pidfile);
-		else if (kill(pid, cmdsig->sig) < 0)
-			error("kill() failed - %s", strerror(errno));
-		else
-			trace("pid %ld sig %d OK", (long)pid, cmdsig->sig);
-	}
-}
-
-static void
-stop_named(pid_t pid) {
-	int n;
-
-	trace("stopping named (pid %ld)", (long)pid);
-	switch (mode) {
-	case e_signals:
-		if (kill(pid, SIGTERM) < 0) {
-			error("kill(%ld, SIGTERM) failed - %s",
-			      (long)pid, strerror(errno));
-			return;
-		}
-		trace("SIGTERM ok, waiting for death");
-		break;
-	case e_channel:
-		channel_loop("stop", tracing, NULL, NULL);
-		break;
-	default:
-		abort();
-	}
-	for (n = 0; n < 10; n++) {
-		if (kill(pid, 0) != 0) {
-			trace("named (pid %ld) is dead", (long)pid);
-			return;
-		}
-		sleep(1);
-	}
-	error("named (pid %ld) didn't die", (long)pid);
-}
-
-static void
-start_named(const char *syscmd, int local_quiet) {
-	pid_t pid;
-
-	if (system(syscmd) != 0)
-		error("could not start new name server (%s)", syscmd);
-	else {
-		sleep(3);
-		if (!running(0, &pid))
-			error("name server has not started (yet?)");
-		else if (!local_quiet)
-			result("new pid is %ld", (long)pid);
-	}
-}
-
-static int
-fgetpid(const char *f, pid_t *pid) {
-	FILE *fp;
-	int try;
-	long t;
-
-	for (try = 0; try < 5; try++) {
-		trace("pidfile is \"%s\" (try #%d)", pidfile, try + 1);
-		if ((fp = fopen(pidfile, "r")) == NULL)
-			trace("pid file (%s) unavailable - %s",
-			      pidfile, strerror(errno));
-		else if (fscanf(fp, "%ld\n", &t) != 1)
-			trace("pid file (%s) format is bad", pidfile);
-		else if (*pid = (pid_t)t, fclose(fp), kill(*pid, 0) < 0)
-			trace("pid file (%s) contains unusable pid (%d) - %s",
-			      pidfile, *pid, strerror(errno));
-		else {
-			trace("pid is %ld", (long)*pid);
-			return (1);
-		}
-		sleep(1);
-	}
-	trace("pid not found");
-	return (0);
-}
-
-static int
-get_sockaddr(char *name, sockaddr_t *addr) {
-	char *slash;
-
-#ifndef NO_SOCKADDR_UN
-	if (name[0] == '/') {
-		memset(&addr->un, '\0', sizeof addr->un);
-		addr->un.sun_family = AF_UNIX;
-		strncpy(addr->un.sun_path, name, sizeof addr->un.sun_path - 1);
-		addr->un.sun_path[sizeof addr->un.sun_path - 1] = '\0';
-	} else
-#endif
-	if ((slash = strrchr(name, '/')) != NULL) {
-		char *ibuf = malloc(slash - name + 1);
-		if (!ibuf)
-			usage("no memory for IP address (%s)", name);
-		memcpy(ibuf, name, slash - name);
-		ibuf[slash - name] = '\0';
-		memset(&addr->in, '\0', sizeof addr->in);
-		if (!inet_pton(AF_INET, ibuf, &addr->in.sin_addr))
-			usage("bad ip address (%s)", name);
-		if ((addr->in.sin_port = htons(atoi(slash+1))) == 0)
-			usage("bad ip port (%s)", slash+1);
-		addr->in.sin_family = AF_INET;
-		free (ibuf);
-	  } else {
-		  return (0);
-	}
-	return (1);
-}
-
-static size_t
-impute_addrlen(const struct sockaddr *sa) {
-	if (sa == 0)
-		return (0);
-	switch (sa->sa_family) {
-	case AF_INET:
-		return (sizeof(struct sockaddr_in));
-#ifndef NO_SOCKADDR_UN
-	case AF_UNIX:
-		return (sizeof(struct sockaddr_un));
-#endif
-	default:
-		abort();
-	}
-}
-
-static void
-vtrace(const char *fmt, va_list ap) {
-	if (tracing) {
-		fprintf(stdout, "%s: [", program);
-		vfprintf(stdout, fmt, ap);
-		fputs("]\n", stdout);
-	}
-}
-
-static void
-trace(const char *fmt, ...) {
-	va_list args;
-
-	va_start(args, fmt);
-	vtrace(fmt, args);
-	va_end(args);
-}
-
-static void
-result(const char *fmt, ...) {
-	va_list args;
-
-	va_start(args, fmt);
-	vfprintf(stdout, fmt, args);
-	fputc('\n', stdout);
-	va_end(args);
-}
-
-static void
-fatal(const char *fmt, ...) {
-	va_list args;
-
-	va_start(args, fmt);
-	fprintf(stderr, "%s: fatal error: ", program);
-	vfprintf(stderr, fmt, args);
-	fputc('\n', stderr);
-	va_end(args);
-	exit(1);
-}
-
-static void
-verror(const char *fmt, va_list ap) {
-	fprintf(stderr, "%s: error: ", program);
-	vfprintf(stderr, fmt, ap);
-	fputc('\n', stderr);
-	errors++;
-}
-
-static void
-error(const char *fmt, ...) {
-	va_list args;
-
-	va_start(args, fmt);
-	if (silent)
-		vtrace(fmt, args);
-	else
-		verror(fmt, args);
-	va_end(args);
-}
diff --git a/contrib/bind/bin/ndc/ndc.sh b/contrib/bind/bin/ndc/ndc.sh
deleted file mode 100644
index a9b10182cc8d7..0000000000000
--- a/contrib/bind/bin/ndc/ndc.sh
+++ /dev/null
@@ -1,83 +0,0 @@
-#!/bin/sh
-
-USAGE='echo \
-	"usage: $0 \
- (status|dumpdb|reload|stats|trace|notrace|querylog|start|stop|restart) \
-	 ... \
-	"; exit 1'
-
-PATH=/bin:/usr/bin:/usr/ucb:$PATH; export PATH
-PIDFILE=%PIDFILE%
-
-if [ -f $PIDFILE ]
-then
-	PID=`cat $PIDFILE`
-	PS=`%PS% $PID | tail -1 | grep $PID`
-	RUNNING=1
-	[ `echo $PS | wc -w` -ne 0 ] || {
-		PS="named (pid $PID?) not running"
-		RUNNING=0
-	}
-else
-	PS="named (no pid file) not running"
-	RUNNING=0
-fi
-
-for ARG
-do
-	case $ARG in
-	start|stop|restart)
-		;;
-	*)
-		[ $RUNNING -eq 0 ] && {
-			echo $PS
-			exit 1
-		}
-	esac
-
-	case $ARG in
-	status)	echo "$PS";;
-	dumpdb)	kill -INT $PID && echo Dumping Database;;
-	reload)	kill -HUP $PID && echo Reloading Database;;
-	stats)	kill -ILL $PID && echo Dumping Statistics;;
-	trace)	kill -USR1 $PID && echo Trace Level Incremented;;
-	notrace) kill -USR2 $PID && echo Tracing Cleared;;
-	querylog|qrylog) kill -WINCH $PID && echo Query Logging Toggled;;
-	start)
-		[ $RUNNING -eq 1 ] && {
-			echo "$0: start: named (pid $PID) already running"
-			continue
-		}
-		rm -f $PIDFILE
-		%NAMED% && {
-			sleep 5
-			echo Name Server Started
-		}
-		;;
-	stop)
-		[ $RUNNING -eq 0 ] && {
-			echo "$0: stop: named not running"
-			continue
-		}
-		kill $PID && {
-			sleep 5
-			rm -f $PIDFILE
-			echo Name Server Stopped
-		}
-		;;
-	restart)
-		[ $RUNNING -eq 1 ] && {
-			kill $PID && sleep 5
-		}
-		rm -f $PIDFILE
-		%NAMED% && {
-			sleep 5
-			echo Name Server Restarted
-		}
-		;;
-	*)	eval "$USAGE";;
-	esac
-done
-test -z "$ARG" && eval "$USAGE"
-
-exit 0
diff --git a/contrib/bind/bin/nslookup/Makefile b/contrib/bind/bin/nslookup/Makefile
deleted file mode 100644
index 0f6db20b0d1d9..0000000000000
--- a/contrib/bind/bin/nslookup/Makefile
+++ /dev/null
@@ -1,96 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.24 1999/10/13 01:14:46 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-DEFS=	-D_PATH_HELPFILE=\"${DESTHELP}/nslookup.help\"
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL} ${DEFS}
-
-PROG= nslookup
-CSRCS=	main.c getinfo.c debug.c send.c skip.c list.c subr.c
-SRCS=	${CSRCS} commands.l
-OBJS=	main.${O} getinfo.${O} debug.${O} send.${O} skip.${O} list.${O} \
-	subr.${O} commands.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-	rm -f commands.c
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-	rm -f lex.yy.c lex.yy.o
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${DEFS} ${CSRCS}
-
-${DESTDIR}${DESTHELP}:
-	mkdir -p ${DESTDIR}${DESTHELP}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${DESTDIR}${DESTHELP} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-	${INSTALL} -c ${INSTALL_LIB} -m 444 nslookup.help ${DESTDIR}${DESTHELP}/
-
-links: FRC
-	@set -e; ln -s SRC/*.[chl] SRC/nslookup.help .
-
-tags: FRC
-	ctags ${CSRCS} *.h
-
-commands.c: commands.l
-	${LEX} -t $< > $@ || rm $@
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/nslookup/commands.c b/contrib/bind/bin/nslookup/commands.c
deleted file mode 100644
index fead60f3206ed..0000000000000
--- a/contrib/bind/bin/nslookup/commands.c
+++ /dev/null
@@ -1,2041 +0,0 @@
-/* A lexical scanner generated by flex */
-
-/* Scanner skeleton version:
- * /master/usr.bin/lex/skel.c,v 1.2 1996/05/30 12:31:07 bostic Exp
- */
-
-#define FLEX_SCANNER
-#define YY_FLEX_MAJOR_VERSION 2
-#define YY_FLEX_MINOR_VERSION 5
-
-#include <stdio.h>
-
-
-/* cfront 1.2 defines "c_plusplus" instead of "__cplusplus" */
-#ifdef c_plusplus
-#ifndef __cplusplus
-#define __cplusplus
-#endif
-#endif
-
-
-#ifdef __cplusplus
-
-#include <stdlib.h>
-#include <unistd.h>
-
-/* Use prototypes in function declarations. */
-#define YY_USE_PROTOS
-
-/* The "const" storage-class-modifier is valid. */
-#define YY_USE_CONST
-
-#else	/* ! __cplusplus */
-
-#if __STDC__
-
-#define YY_USE_PROTOS
-#define YY_USE_CONST
-
-#endif	/* __STDC__ */
-#endif	/* ! __cplusplus */
-
-#ifdef __TURBOC__
- #pragma warn -rch
- #pragma warn -use
-#include <io.h>
-#include <stdlib.h>
-#define YY_USE_CONST
-#define YY_USE_PROTOS
-#endif
-
-#ifdef YY_USE_CONST
-#define yyconst const
-#else
-#define yyconst
-#endif
-
-
-#ifdef YY_USE_PROTOS
-#define YY_PROTO(proto) proto
-#else
-#define YY_PROTO(proto) ()
-#endif
-
-/* Returned upon end-of-file. */
-#define YY_NULL 0
-
-/* Promotes a possibly negative, possibly signed char to an unsigned
- * integer for use as an array index.  If the signed char is negative,
- * we want to instead treat it as an 8-bit unsigned char, hence the
- * double cast.
- */
-#define YY_SC_TO_UI(c) ((unsigned int) (unsigned char) c)
-
-/* Enter a start condition.  This macro really ought to take a parameter,
- * but we do it the disgusting crufty way forced on us by the ()-less
- * definition of BEGIN.
- */
-#define BEGIN yy_start = 1 + 2 *
-
-/* Translate the current start state into a value that can be later handed
- * to BEGIN to return to the state.  The YYSTATE alias is for lex
- * compatibility.
- */
-#define YY_START ((yy_start - 1) / 2)
-#define YYSTATE YY_START
-
-/* Action number for EOF rule of a given start state. */
-#define YY_STATE_EOF(state) (YY_END_OF_BUFFER + state + 1)
-
-/* Special action meaning "start processing a new file". */
-#define YY_NEW_FILE yyrestart( yyin )
-
-#define YY_END_OF_BUFFER_CHAR 0
-
-/* Size of default input buffer. */
-#define YY_BUF_SIZE 16384
-
-typedef struct yy_buffer_state *YY_BUFFER_STATE;
-
-extern int yyleng;
-extern FILE *yyin, *yyout;
-
-#define EOB_ACT_CONTINUE_SCAN 0
-#define EOB_ACT_END_OF_FILE 1
-#define EOB_ACT_LAST_MATCH 2
-
-/* The funky do-while in the following #define is used to turn the definition
- * int a single C statement (which needs a semi-colon terminator).  This
- * avoids problems with code like:
- *
- * 	if ( condition_holds )
- *		yyless( 5 );
- *	else
- *		do_something_else();
- *
- * Prior to using the do-while the compiler would get upset at the
- * "else" because it interpreted the "if" statement as being all
- * done when it reached the ';' after the yyless() call.
- */
-
-/* Return all but the first 'n' matched characters back to the input stream. */
-
-#define yyless(n) \
-	do \
-		{ \
-		/* Undo effects of setting up yytext. */ \
-		*yy_cp = yy_hold_char; \
-		YY_RESTORE_YY_MORE_OFFSET \
-		yy_c_buf_p = yy_cp = yy_bp + n - YY_MORE_ADJ; \
-		YY_DO_BEFORE_ACTION; /* set up yytext again */ \
-		} \
-	while ( 0 )
-
-#define unput(c) yyunput( c, yytext_ptr )
-
-/* The following is because we cannot portably get our hands on size_t
- * (without autoconf's help, which isn't available because we want
- * flex-generated scanners to compile on their own).
- */
-typedef unsigned int yy_size_t;
-
-
-struct yy_buffer_state
-	{
-	FILE *yy_input_file;
-
-	char *yy_ch_buf;		/* input buffer */
-	char *yy_buf_pos;		/* current position in input buffer */
-
-	/* Size of input buffer in bytes, not including room for EOB
-	 * characters.
-	 */
-	yy_size_t yy_buf_size;
-
-	/* Number of characters read into yy_ch_buf, not including EOB
-	 * characters.
-	 */
-	int yy_n_chars;
-
-	/* Whether we "own" the buffer - i.e., we know we created it,
-	 * and can realloc() it to grow it, and should free() it to
-	 * delete it.
-	 */
-	int yy_is_our_buffer;
-
-	/* Whether this is an "interactive" input source; if so, and
-	 * if we're using stdio for input, then we want to use getc()
-	 * instead of fread(), to make sure we stop fetching input after
-	 * each newline.
-	 */
-	int yy_is_interactive;
-
-	/* Whether we're considered to be at the beginning of a line.
-	 * If so, '^' rules will be active on the next match, otherwise
-	 * not.
-	 */
-	int yy_at_bol;
-
-	/* Whether to try to fill the input buffer when we reach the
-	 * end of it.
-	 */
-	int yy_fill_buffer;
-
-	int yy_buffer_status;
-#define YY_BUFFER_NEW 0
-#define YY_BUFFER_NORMAL 1
-	/* When an EOF's been seen but there's still some text to process
-	 * then we mark the buffer as YY_EOF_PENDING, to indicate that we
-	 * shouldn't try reading from the input source any more.  We might
-	 * still have a bunch of tokens to match, though, because of
-	 * possible backing-up.
-	 *
-	 * When we actually see the EOF, we change the status to "new"
-	 * (via yyrestart()), so that the user can continue scanning by
-	 * just pointing yyin at a new input file.
-	 */
-#define YY_BUFFER_EOF_PENDING 2
-	};
-
-static YY_BUFFER_STATE yy_current_buffer = 0;
-
-/* We provide macros for accessing buffer states in case in the
- * future we want to put the buffer states in a more general
- * "scanner state".
- */
-#define YY_CURRENT_BUFFER yy_current_buffer
-
-
-/* yy_hold_char holds the character lost when yytext is formed. */
-static char yy_hold_char;
-
-static int yy_n_chars;		/* number of characters read into yy_ch_buf */
-
-
-int yyleng;
-
-/* Points to current character in buffer. */
-static char *yy_c_buf_p = (char *) 0;
-static int yy_init = 1;		/* whether we need to initialize */
-static int yy_start = 0;	/* start state number */
-
-/* Flag which is used to allow yywrap()'s to do buffer switches
- * instead of setting up a fresh yyin.  A bit of a hack ...
- */
-static int yy_did_buffer_switch_on_eof;
-
-void yyrestart YY_PROTO(( FILE *input_file ));
-
-void yy_switch_to_buffer YY_PROTO(( YY_BUFFER_STATE new_buffer ));
-void yy_load_buffer_state YY_PROTO(( void ));
-YY_BUFFER_STATE yy_create_buffer YY_PROTO(( FILE *file, int size ));
-void yy_delete_buffer YY_PROTO(( YY_BUFFER_STATE b ));
-void yy_init_buffer YY_PROTO(( YY_BUFFER_STATE b, FILE *file ));
-void yy_flush_buffer YY_PROTO(( YY_BUFFER_STATE b ));
-#define YY_FLUSH_BUFFER yy_flush_buffer( yy_current_buffer )
-
-YY_BUFFER_STATE yy_scan_buffer YY_PROTO(( char *base, yy_size_t size ));
-YY_BUFFER_STATE yy_scan_string YY_PROTO(( yyconst char *str ));
-YY_BUFFER_STATE yy_scan_bytes YY_PROTO(( yyconst char *bytes, int len ));
-
-static void *yy_flex_alloc YY_PROTO(( yy_size_t ));
-static void *yy_flex_realloc YY_PROTO(( void *, yy_size_t ));
-static void yy_flex_free YY_PROTO(( void * ));
-
-#define yy_new_buffer yy_create_buffer
-
-#define yy_set_interactive(is_interactive) \
-	{ \
-	if ( ! yy_current_buffer ) \
-		yy_current_buffer = yy_create_buffer( yyin, YY_BUF_SIZE ); \
-	yy_current_buffer->yy_is_interactive = is_interactive; \
-	}
-
-#define yy_set_bol(at_bol) \
-	{ \
-	if ( ! yy_current_buffer ) \
-		yy_current_buffer = yy_create_buffer( yyin, YY_BUF_SIZE ); \
-	yy_current_buffer->yy_at_bol = at_bol; \
-	}
-
-#define YY_AT_BOL() (yy_current_buffer->yy_at_bol)
-
-typedef unsigned char YY_CHAR;
-FILE *yyin = (FILE *) 0, *yyout = (FILE *) 0;
-typedef int yy_state_type;
-extern char *yytext;
-#define yytext_ptr yytext
-
-static yy_state_type yy_get_previous_state YY_PROTO(( void ));
-static yy_state_type yy_try_NUL_trans YY_PROTO(( yy_state_type current_state ));
-static int yy_get_next_buffer YY_PROTO(( void ));
-static void yy_fatal_error YY_PROTO(( yyconst char msg[] ));
-
-/* Done after the current pattern has been matched and before the
- * corresponding action - sets up yytext.
- */
-#define YY_DO_BEFORE_ACTION \
-	yytext_ptr = yy_bp; \
-	yyleng = (int) (yy_cp - yy_bp); \
-	yy_hold_char = *yy_cp; \
-	*yy_cp = '\0'; \
-	yy_c_buf_p = yy_cp;
-
-#define YY_NUM_RULES 22
-#define YY_END_OF_BUFFER 23
-static yyconst short int yy_accept[171] =
-    {   0,
-        0,    0,   23,   22,   21,   22,   22,   19,   22,   22,
-       22,   22,   22,   22,   22,   22,   22,    0,   20,    0,
-       19,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-        0,   16,    0,    0,   14,    0,    0,    0,    0,    0,
-        0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-        0,    0,    0,    0,   18,    0,    0,    0,    0,    0,
-        0,    0,    0,    0,    0,    0,    0,    0,    0,    0,
-        0,   15,    0,    3,    0,    0,   13,    0,    9,    0,
-        0,    0,    0,    0,    4,    0,    0,    0,    0,    0,
-        0,    0,    0,    0,    0,    0,    0,    0,    0,   12,
-
-        0,    0,   12,    0,    0,    0,   17,    0,    6,    0,
-        0,    0,    0,    0,    0,    0,    7,    0,    0,    7,
-        0,    0,    0,    0,    9,    0,    0,   11,    0,    0,
-        0,    0,    6,    0,    0,    0,    0,    0,    8,    0,
-        0,    0,    0,    0,    1,    0,    0,    0,    5,    0,
-        0,    0,    0,    0,    0,    0,    2,    0,    0,    0,
-        0,    0,    0,    0,    5,    0,    8,    0,   10,    0
-    } ;
-
-static yyconst int yy_ec[256] =
-    {   0,
-        1,    1,    1,    1,    1,    1,    1,    1,    2,    3,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    2,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    4,    1,    1,    5,    4,    6,    4,    4,    4,
-        4,    4,    4,    4,    4,    4,    4,    1,    1,    1,
-        6,    7,    8,    1,    4,    4,    4,    4,    4,    4,
-        4,    4,    4,    4,    4,    4,    4,    4,    4,    4,
-        4,    4,    4,    4,    4,    4,    4,    4,    4,    4,
-        1,    9,    1,    1,   10,    1,   11,    4,    4,   12,
-
-       13,   14,   15,   16,   17,    4,    4,   18,   19,   20,
-       21,   22,    4,   23,   24,   25,    4,   26,   27,   28,
-        4,    4,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1
-    } ;
-
-static yyconst int yy_meta[29] =
-    {   0,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1,    1,    1,
-        1,    1,    1,    1,    1,    1,    1,    1
-    } ;
-
-static yyconst short int yy_base[203] =
-    {   0,
-      504,    0,  497,  626,  626,  484,   28,  626,   56,   58,
-       65,   52,   49,   47,   55,   57,   61,  477,  626,    0,
-      626,  451,   79,    0,   62,   71,   63,   67,   73,   75,
-      103,  626,  450,   94,  626,   90,   74,   96,  113,   95,
-       94,  107,  141,  150,  100,  106,  105,  159,  108,  104,
-       72,  128,  110,  168,  626,  175,  184,  137,    0,  144,
-      160,  152,  193,  200,  153,  187,  185,  225,  195,  235,
-      202,  626,  244,  626,  186,  204,  626,  215,  626,  254,
-      218,  237,  245,  257,  626,  241,  273,  282,  291,  301,
-      263,    0,  284,  265,  312,  322,  283,  277,  331,  626,
-
-      338,  268,  626,  347,  356,  275,  626,  365,  626,  375,
-      466,  384,  393,  314,  402,  411,  626,  418,  333,  626,
-      427,  436,  445,  448,  626,  455,  464,  626,  474,  483,
-      493,  496,  626,  503,  512,  341,    0,  349,  626,  515,
-      522,  525,  532,  535,  626,  542,  551,  358,  626,  560,
-      377,  563,  570,  579,  386,  582,  626,  589,  598,  395,
-        0,  607,  616,  413,  626,  420,  626,  429,  626,  626,
-      460,  459,  458,  448,  441,  440,  439,  432,  423,  416,
-      405,  398,  389,  380,  368,  361,  352,  336,  325,  306,
-      294,  287,  267,  247,  240,  228,  209,  207,  198,  173,
-
-      162,  144
-    } ;
-
-static yyconst short int yy_def[203] =
-    {   0,
-      171,  170,  170,  170,  170,  172,  170,  170,  173,  172,
-      173,   11,   11,   11,   11,   11,   11,  172,  170,    7,
-      170,   11,  172,   11,   11,   11,   11,   11,   11,   11,
-      174,  170,   11,  172,  170,   11,   11,   11,   11,   11,
-       11,   11,  175,  176,   11,   11,   11,  177,   11,   11,
-       11,   11,   11,  172,  170,  175,  176,   57,   57,   11,
-       11,   11,  178,  172,   11,   11,   11,  179,   11,  180,
-      172,  170,  174,  170,   11,   73,  170,  172,  170,  178,
-      172,  172,   11,   73,  170,   11,  181,  182,  183,  180,
-       90,   90,   11,   90,  184,  185,   11,   11,  172,  170,
-
-      181,  172,  170,  186,  187,  172,  170,  188,  170,  189,
-       90,  190,  191,   11,  192,  172,  170,  186,  172,  170,
-      193,  194,  189,  172,  170,  190,  195,  170,  191,  196,
-      197,  172,  170,  193,  194,  135,  135,  172,  170,  172,
-      198,  172,  199,  172,  170,  197,  200,  172,  170,  201,
-      172,  172,  198,  202,  172,  172,  170,  199,  200,  159,
-      159,  201,  202,  172,  170,  172,  170,  172,  170,    0,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-
-      170,  170
-    } ;
-
-static yyconst short int yy_nxt[655] =
-    {   0,
-        6,    7,    8,    9,    6,    6,    6,   10,    9,    9,
-        9,    9,   11,   12,    9,   13,    9,   14,    9,    9,
-        9,    9,   15,   16,    9,   17,    9,    9,   18,   20,
-       21,   22,   18,   18,   18,   23,   22,   22,   22,   22,
-       24,   25,   22,   26,   22,   27,   22,   22,   22,   22,
-       28,   29,   22,   30,   22,   22,   18,   31,   32,   34,
-       35,   38,   18,   18,   18,   18,   31,   32,   37,   41,
-       39,   18,   18,   18,   33,   40,   33,   42,   37,   33,
-       34,   35,   33,   38,   33,   41,   39,   40,   33,   33,
-       33,   42,   36,   46,   33,   34,   35,   67,   33,   33,
-
-       33,   33,   33,   18,   31,   32,   45,   18,   18,   44,
-       18,   18,   18,   47,   48,   50,   51,   33,   52,   53,
-       61,   33,   33,   33,   60,   49,   62,   33,   66,   68,
-       65,   33,   33,   33,   33,   33,   69,   33,   71,   72,
-       33,   18,   54,   55,  163,   73,   74,   18,   18,   18,
-       18,   57,   19,   76,   77,   33,   59,   18,   18,   18,
-       48,   32,  162,   64,   18,   44,   18,   18,   18,   54,
-       55,   33,   75,  160,   70,   18,   54,   55,   83,   33,
-       33,   18,   18,   18,   18,   57,   19,   33,   84,   85,
-       18,   18,   18,   18,   78,   79,   89,   86,  158,   18,
-
-       18,   18,   19,   71,   72,   76,   77,  153,   93,  146,
-       81,   81,   33,   33,   33,   81,   78,   79,   81,   95,
-       19,   94,   33,   81,   82,   18,   68,   32,  143,   88,
-       88,   44,   18,   18,   88,   18,   90,   19,   96,   19,
-      141,   92,   18,   18,   18,   73,   74,  136,   18,   18,
-       44,   18,   18,   18,   18,   78,   79,   97,   84,   85,
-       18,   18,   18,   98,  106,  107,  110,  134,   33,  102,
-      103,  111,   33,   18,   99,  100,  106,  107,  115,   18,
-       18,   18,   18,  102,  103,  108,  109,  131,   18,   18,
-       18,   18,   89,   32,  129,  105,  105,   44,   18,   18,
-
-      105,   18,   90,   19,   33,  114,  126,   18,   18,   18,
-       33,   33,   18,   95,   19,  130,   18,   18,   18,   18,
-       18,   18,   18,   96,   19,  123,   18,   18,   18,   18,
-       18,   18,   99,  100,  119,  120,  121,   70,   18,   99,
-      100,   33,  148,  149,   18,   18,   18,   18,  116,  117,
-      138,  139,  105,   18,   18,   18,   18,  119,  120,  148,
-      149,  118,   18,   18,   18,   18,  108,  109,  113,   18,
-       18,  122,   18,   18,   18,   18,  110,   19,  150,   19,
-      112,   18,   18,   18,   18,  124,  125,  154,   19,  104,
-       18,   18,   18,   18,  127,  128,  164,  165,   88,   18,
-
-       18,   18,   18,  115,   32,  101,   18,   18,   44,   18,
-       18,   18,  116,  117,  164,  165,   91,   70,   18,  116,
-      117,  166,  167,   87,   18,   18,   18,   18,  132,  133,
-      168,  169,   80,   18,   18,   18,   18,  135,   19,   63,
-       58,   56,  137,   18,   18,   18,  138,  139,   43,  124,
-      125,   18,   18,   18,  140,   18,  124,  125,   33,   18,
-        4,   18,   18,   18,   18,  127,  128,  110,   18,   18,
-      142,   18,   18,   18,   18,  127,  128,   33,   33,   19,
-       18,   18,   18,   18,  130,   32,   19,   18,   18,   44,
-       18,   18,   18,   18,  144,  145,  170,  132,  133,   18,
-
-       18,   18,  147,   18,  132,  133,    5,  170,  170,   18,
-       18,   18,   18,  135,   19,  170,  150,   19,   18,   18,
-       18,  151,   18,  152,  128,  170,  154,   19,   18,   18,
-       18,  155,   18,  156,  157,  170,  144,  145,   18,   18,
-       18,   70,   18,  144,  145,  170,  170,  170,   18,   18,
-       18,   18,  159,   19,  170,  170,  170,  161,   18,   18,
-       18,  150,   19,  170,  152,  128,   18,   18,   18,  142,
-       18,  152,  128,  170,  170,  170,   18,   18,   18,   18,
-      154,   19,  170,  156,  157,   18,   18,   18,   70,   18,
-      156,  157,  170,  170,  170,   18,   18,   18,   18,  159,
-
-       19,  170,  170,  170,   18,   18,   18,   18,  166,  167,
-      170,  170,  170,   18,   18,   18,   18,  168,  169,  170,
-      170,  170,   18,   18,   18,    3,  170,  170,  170,  170,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-      170,  170,  170,  170
-    } ;
-
-static yyconst short int yy_chk[655] =
-    {   0,
-        2,    2,    2,    2,    2,    2,    2,    2,    2,    2,
-        2,    2,    2,    2,    2,    2,    2,    2,    2,    2,
-        2,    2,    2,    2,    2,    2,    2,    2,    7,    7,
-        7,    7,    7,    7,    7,    7,    7,    7,    7,    7,
-        7,    7,    7,    7,    7,    7,    7,    7,    7,    7,
-        7,    7,    7,    7,    7,    7,    9,    9,    9,   10,
-       10,   13,    9,    9,    9,   11,   11,   11,   12,   16,
-       14,   11,   11,   11,   14,   15,   13,   17,   25,   12,
-       23,   23,   15,   26,   16,   29,   27,   28,   17,   25,
-       27,   30,   11,   37,   28,   34,   34,   51,   26,   51,
-
-       29,   37,   30,   31,   31,   31,   36,   31,   31,   31,
-       31,   31,   31,   38,   39,   40,   41,   36,   41,   42,
-       46,   41,   40,   38,   45,   39,   47,   45,   50,   52,
-       49,   50,   47,   46,   42,   49,   53,   53,   58,   58,
-       39,   43,   43,   43,  202,   60,   60,   43,   43,   43,
-       44,   44,   44,   62,   62,   52,   44,   44,   44,   48,
-       48,   48,  201,   48,   48,   48,   48,   48,   48,   54,
-       54,   60,   61,  200,   54,   56,   56,   56,   65,   62,
-       65,   56,   56,   56,   57,   57,   57,   61,   66,   66,
-       57,   57,   57,   63,   63,   63,   69,   67,  199,   63,
-
-       63,   63,   64,   71,   71,   76,   76,  198,   75,  197,
-       64,   64,   67,   75,   66,   64,   78,   78,   64,   81,
-       81,   78,   69,   64,   64,   68,   68,   68,  196,   68,
-       68,   68,   68,   68,   68,   70,   70,   70,   82,   82,
-      195,   70,   70,   70,   73,   73,   73,  194,   73,   73,
-       73,   73,   73,   73,   80,   80,   80,   83,   84,   84,
-       80,   80,   80,   86,   91,   91,   94,  193,   86,  102,
-      102,   94,   83,   87,   87,   87,  106,  106,   98,   87,
-       87,   87,   88,   88,   88,   93,   93,  192,   88,   88,
-       88,   89,   89,   89,  191,   89,   89,   89,   89,   89,
-
-       89,   90,   90,   90,   98,   97,  190,   90,   90,   90,
-       97,   93,   95,   95,   95,  114,   95,   95,   95,   95,
-       95,   95,   96,   96,   96,  189,   96,   96,   96,   96,
-       96,   96,   99,   99,  119,  119,  188,   99,  101,  101,
-      101,  114,  136,  136,  101,  101,  101,  104,  104,  104,
-      138,  138,  187,  104,  104,  104,  105,  105,  105,  148,
-      148,  186,  105,  105,  105,  108,  108,  108,  185,  108,
-      108,  108,  108,  108,  108,  110,  110,  110,  151,  151,
-      184,  110,  110,  110,  112,  112,  112,  155,  155,  183,
-      112,  112,  112,  113,  113,  113,  160,  160,  182,  113,
-
-      113,  113,  115,  115,  115,  181,  115,  115,  115,  115,
-      115,  115,  116,  116,  164,  164,  180,  116,  118,  118,
-      118,  166,  166,  179,  118,  118,  118,  121,  121,  121,
-      168,  168,  178,  121,  121,  121,  122,  122,  122,  177,
-      176,  175,  122,  122,  122,  123,  123,  123,  174,  124,
-      124,  123,  123,  123,  124,  126,  126,  126,  173,  172,
-      171,  126,  126,  126,  127,  127,  127,  111,  127,  127,
-      127,  127,  127,  127,  129,  129,  129,   33,   22,   18,
-      129,  129,  129,  130,  130,  130,    6,  130,  130,  130,
-      130,  130,  130,  131,  131,  131,    3,  132,  132,  131,
-
-      131,  131,  132,  134,  134,  134,    1,    0,    0,  134,
-      134,  134,  135,  135,  135,    0,  140,  140,  135,  135,
-      135,  140,  141,  141,  141,    0,  142,  142,  141,  141,
-      141,  142,  143,  143,  143,    0,  144,  144,  143,  143,
-      143,  144,  146,  146,  146,    0,    0,    0,  146,  146,
-      146,  147,  147,  147,    0,    0,    0,  147,  147,  147,
-      150,  150,  150,    0,  152,  152,  150,  150,  150,  152,
-      153,  153,  153,    0,    0,    0,  153,  153,  153,  154,
-      154,  154,    0,  156,  156,  154,  154,  154,  156,  158,
-      158,  158,    0,    0,    0,  158,  158,  158,  159,  159,
-
-      159,    0,    0,    0,  159,  159,  159,  162,  162,  162,
-        0,    0,    0,  162,  162,  162,  163,  163,  163,    0,
-        0,    0,  163,  163,  163,  170,  170,  170,  170,  170,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-      170,  170,  170,  170,  170,  170,  170,  170,  170,  170,
-      170,  170,  170,  170
-    } ;
-
-static yy_state_type yy_last_accepting_state;
-static char *yy_last_accepting_cpos;
-
-/* The intent behind this definition is that it'll catch
- * any uses of REJECT which flex missed.
- */
-#define REJECT reject_used_but_not_detected
-#define yymore() yymore_used_but_not_detected
-#define YY_MORE_ADJ 0
-#define YY_RESTORE_YY_MORE_OFFSET
-char *yytext;
-#line 1 "commands.l"
-#define INITIAL 0
-#line 2 "commands.l"
-
-/*
- * Copyright (c) 1985
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)commands.l	5.13 (Berkeley) 7/24/90";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  commands.l
- *
- *	Andrew Cherenson	CS298-26  Fall 1985
- *
- *	Lex input file for the nslookup program command interpreter.
- *	When a sequence is recognized, the associated action
- *	routine is called. The action routine may need to
- *	parse the string for additional information.
- *
- *  Recognized commands: (identifiers are shown in uppercase)
- *
- *	server NAME	- set default server to NAME, using default server
- *	lserver NAME	- set default server to NAME, using initial server
- *	finger [NAME]	- finger the optional NAME
- *	exit		- exit the program
- *	root		- set default server to the root
- *	ls NAME		- list the domain NAME
- *	view FILE	- sorts and view the file with more
- *	set OPTION	- set an option
- *	help		- print help information
- *	?		- print help information
- *	NAME		- print info about the host/domain NAME
- *			  using default server.
- *	NAME1 NAME2	- as above, but use NAME2 as server
- *
- *
- *   yylex Results:
- *	0		upon end-of-file.
- *	1		after each command.
- *
- *******************************************************************************
- */
-
-#include "port_before.h"
-#include <sys/types.h>
-#include "port_after.h"
-#include "res.h"
-
-extern char rootServerName[];
-extern void PrintHelp();
-extern void ViewList(char *);
-
-
-/* Macros after this point can all be overridden by user definitions in
- * section 1.
- */
-
-#ifndef YY_SKIP_YYWRAP
-#ifdef __cplusplus
-extern "C" int yywrap YY_PROTO(( void ));
-#else
-extern int yywrap YY_PROTO(( void ));
-#endif
-#endif
-
-#ifndef YY_NO_UNPUT
-static void yyunput YY_PROTO(( int c, char *buf_ptr ));
-#endif
-
-#ifndef yytext_ptr
-static void yy_flex_strncpy YY_PROTO(( char *, yyconst char *, int ));
-#endif
-
-#ifdef YY_NEED_STRLEN
-static int yy_flex_strlen YY_PROTO(( yyconst char * ));
-#endif
-
-#ifndef YY_NO_INPUT
-#ifdef __cplusplus
-static int yyinput YY_PROTO(( void ));
-#else
-static int input YY_PROTO(( void ));
-#endif
-#endif
-
-#if YY_STACK_USED
-static int yy_start_stack_ptr = 0;
-static int yy_start_stack_depth = 0;
-static int *yy_start_stack = 0;
-#ifndef YY_NO_PUSH_STATE
-static void yy_push_state YY_PROTO(( int new_state ));
-#endif
-#ifndef YY_NO_POP_STATE
-static void yy_pop_state YY_PROTO(( void ));
-#endif
-#ifndef YY_NO_TOP_STATE
-static int yy_top_state YY_PROTO(( void ));
-#endif
-
-#else
-#define YY_NO_PUSH_STATE 1
-#define YY_NO_POP_STATE 1
-#define YY_NO_TOP_STATE 1
-#endif
-
-#ifdef YY_MALLOC_DECL
-YY_MALLOC_DECL
-#else
-#if __STDC__
-#ifndef __cplusplus
-#include <stdlib.h>
-#endif
-#else
-/* Just try to get by without declaring the routines.  This will fail
- * miserably on non-ANSI systems for which sizeof(size_t) != sizeof(int)
- * or sizeof(void*) != sizeof(int).
- */
-#endif
-#endif
-
-/* Amount of stuff to slurp up with each read. */
-#ifndef YY_READ_BUF_SIZE
-#define YY_READ_BUF_SIZE 8192
-#endif
-
-/* Copy whatever the last rule matched to the standard output. */
-
-#ifndef ECHO
-/* This used to be an fputs(), but since the string might contain NUL's,
- * we now use fwrite().
- */
-#define ECHO (void) fwrite( yytext, yyleng, 1, yyout )
-#endif
-
-/* Gets input and stuffs it into "buf".  number of characters read, or YY_NULL,
- * is returned in "result".
- */
-#ifndef YY_INPUT
-#define YY_INPUT(buf,result,max_size) \
-	if ( yy_current_buffer->yy_is_interactive ) \
-		{ \
-		int c = '*', n; \
-		for ( n = 0; n < max_size && \
-			     (c = getc( yyin )) != EOF && c != '\n'; ++n ) \
-			buf[n] = (char) c; \
-		if ( c == '\n' ) \
-			buf[n++] = (char) c; \
-		if ( c == EOF && ferror( yyin ) ) \
-			YY_FATAL_ERROR( "input in flex scanner failed" ); \
-		result = n; \
-		} \
-	else if ( ((result = fread( buf, 1, max_size, yyin )) == 0) \
-		  && ferror( yyin ) ) \
-		YY_FATAL_ERROR( "input in flex scanner failed" );
-#endif
-
-/* No semi-colon after return; correct usage is to write "yyterminate();" -
- * we don't want an extra ';' after the "return" because that will cause
- * some compilers to complain about unreachable statements.
- */
-#ifndef yyterminate
-#define yyterminate() return YY_NULL
-#endif
-
-/* Number of entries by which start-condition stack grows. */
-#ifndef YY_START_STACK_INCR
-#define YY_START_STACK_INCR 25
-#endif
-
-/* Report a fatal error. */
-#ifndef YY_FATAL_ERROR
-#define YY_FATAL_ERROR(msg) yy_fatal_error( msg )
-#endif
-
-/* Default declaration of generated scanner - a define so the user can
- * easily add parameters.
- */
-#ifndef YY_DECL
-#define YY_DECL int yylex YY_PROTO(( void ))
-#endif
-
-/* Code executed at the beginning of each rule, after yytext and yyleng
- * have been set up.
- */
-#ifndef YY_USER_ACTION
-#define YY_USER_ACTION
-#endif
-
-/* Code executed at the end of each rule. */
-#ifndef YY_BREAK
-#define YY_BREAK break;
-#endif
-
-#define YY_RULE_SETUP \
-	if ( yyleng > 0 ) \
-		yy_current_buffer->yy_at_bol = \
-				(yytext[yyleng - 1] == '\n'); \
-	YY_USER_ACTION
-
-YY_DECL
-	{
-	register yy_state_type yy_current_state;
-	register char *yy_cp, *yy_bp;
-	register int yy_act;
-
-#line 110 "commands.l"
-
-
-	if ( yy_init )
-		{
-		yy_init = 0;
-
-#ifdef YY_USER_INIT
-		YY_USER_INIT;
-#endif
-
-		if ( ! yy_start )
-			yy_start = 1;	/* first start state */
-
-		if ( ! yyin )
-			yyin = stdin;
-
-		if ( ! yyout )
-			yyout = stdout;
-
-		if ( ! yy_current_buffer )
-			yy_current_buffer =
-				yy_create_buffer( yyin, YY_BUF_SIZE );
-
-		yy_load_buffer_state();
-		}
-
-	while ( 1 )		/* loops until end-of-file is reached */
-		{
-		yy_cp = yy_c_buf_p;
-
-		/* Support of yytext. */
-		*yy_cp = yy_hold_char;
-
-		/* yy_bp points to the position in yy_ch_buf of the start of
-		 * the current run.
-		 */
-		yy_bp = yy_cp;
-
-		yy_current_state = yy_start;
-		yy_current_state += YY_AT_BOL();
-yy_match:
-		do
-			{
-			register YY_CHAR yy_c = yy_ec[YY_SC_TO_UI(*yy_cp)];
-			if ( yy_accept[yy_current_state] )
-				{
-				yy_last_accepting_state = yy_current_state;
-				yy_last_accepting_cpos = yy_cp;
-				}
-			while ( yy_chk[yy_base[yy_current_state] + yy_c] != yy_current_state )
-				{
-				yy_current_state = (int) yy_def[yy_current_state];
-				if ( yy_current_state >= 171 )
-					yy_c = yy_meta[(unsigned int) yy_c];
-				}
-			yy_current_state = yy_nxt[yy_base[yy_current_state] + (unsigned int) yy_c];
-			++yy_cp;
-			}
-		while ( yy_base[yy_current_state] != 626 );
-
-yy_find_action:
-		yy_act = yy_accept[yy_current_state];
-		if ( yy_act == 0 )
-			{ /* have to back up */
-			yy_cp = yy_last_accepting_cpos;
-			yy_current_state = yy_last_accepting_state;
-			yy_act = yy_accept[yy_current_state];
-			}
-
-		YY_DO_BEFORE_ACTION;
-
-
-do_action:	/* This label is used only to access EOF actions. */
-
-
-		switch ( yy_act )
-	{ /* beginning of action switch */
-			case 0: /* must back up */
-			/* undo the effects of YY_DO_BEFORE_ACTION */
-			*yy_cp = yy_hold_char;
-			yy_cp = yy_last_accepting_cpos;
-			yy_current_state = yy_last_accepting_state;
-			goto yy_find_action;
-
-case 1:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 111 "commands.l"
-{
-					    /*
-					     * 0 == use current server to find
-					     *	    the new one.
-					     * 1 == use original server to find
-					     *	    the new one.
-					     */
-					    SetDefaultServer(yytext, 0);
-					    return(1);
-					}
-	YY_BREAK
-case 2:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 121 "commands.l"
-{
-					    SetDefaultServer(yytext, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 3:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 125 "commands.l"
-{
-					    return(0);
-					}
-	YY_BREAK
-case 4:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 128 "commands.l"
-{
-					    SetDefaultServer(rootServerName, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 5:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 132 "commands.l"
-{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    Finger(yytext, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 6:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 141 "commands.l"
-{
-					    Finger(yytext, 0);
-					    return(1);
-					}
-	YY_BREAK
-case 7:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 145 "commands.l"
-{
-					    ViewList((char *)yytext);
-					    return(1);
-					}
-	YY_BREAK
-case 8:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 149 "commands.l"
-{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    ListHosts(yytext, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 9:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 158 "commands.l"
-{
-					    ListHosts(yytext, 0);
-					    return(1);
-					}
-	YY_BREAK
-case 10:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 162 "commands.l"
-{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    ListHostsByType(yytext, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 11:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 171 "commands.l"
-{
-					    ListHostsByType(yytext, 0);
-					    return(1);
-					}
-	YY_BREAK
-case 12:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 175 "commands.l"
-{
-					    SetOption(yytext);
-					    return(1);
-					}
-	YY_BREAK
-case 13:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 179 "commands.l"
-{
-					    PrintHelp();
-					    return(1);
-					}
-	YY_BREAK
-case 14:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 183 "commands.l"
-{
-					    extern void PrintHelp();
-
-					    PrintHelp();
-					    return(1);
-					}
-	YY_BREAK
-case 15:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 189 "commands.l"
-{
-					    /*
-					     * 0 == output to stdout
-					     * 1 == output to file
-					     */
-					    LookupHost(yytext, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 16:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 197 "commands.l"
-{
-					    LookupHost(yytext, 0);
-					    return(1);
-					}
-	YY_BREAK
-case 17:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 201 "commands.l"
-{
-					    /*
-					     * 0 == output to stdout
-					     * 1 == output to file
-					     */
-					    LookupHostWithServer(yytext, 1);
-					    return(1);
-					}
-	YY_BREAK
-case 18:
-*yy_cp = yy_hold_char; /* undo effects of setting up yytext */
-yy_c_buf_p = yy_cp -= 1;
-YY_DO_BEFORE_ACTION; /* set up yytext again */
-YY_RULE_SETUP
-#line 209 "commands.l"
-{
-					    LookupHostWithServer(yytext, 0);
-					    return(1);
-					}
-	YY_BREAK
-case 19:
-YY_RULE_SETUP
-#line 213 "commands.l"
-{
-					    return(1);
-					}
-	YY_BREAK
-case 20:
-YY_RULE_SETUP
-#line 216 "commands.l"
-{
-					    printf("Unrecognized command: %s",
-							yytext);
-					    return(1);
-					}
-	YY_BREAK
-case 21:
-YY_RULE_SETUP
-#line 221 "commands.l"
-{ ; }
-	YY_BREAK
-case 22:
-YY_RULE_SETUP
-#line 222 "commands.l"
-ECHO;
-	YY_BREAK
-case YY_STATE_EOF(INITIAL):
-	yyterminate();
-
-	case YY_END_OF_BUFFER:
-		{
-		/* Amount of text matched not including the EOB char. */
-		int yy_amount_of_matched_text = (int) (yy_cp - yytext_ptr) - 1;
-
-		/* Undo the effects of YY_DO_BEFORE_ACTION. */
-		*yy_cp = yy_hold_char;
-		YY_RESTORE_YY_MORE_OFFSET
-
-		if ( yy_current_buffer->yy_buffer_status == YY_BUFFER_NEW )
-			{
-			/* We're scanning a new file or input source.  It's
-			 * possible that this happened because the user
-			 * just pointed yyin at a new source and called
-			 * yylex().  If so, then we have to assure
-			 * consistency between yy_current_buffer and our
-			 * globals.  Here is the right place to do so, because
-			 * this is the first action (other than possibly a
-			 * back-up) that will match for the new input source.
-			 */
-			yy_n_chars = yy_current_buffer->yy_n_chars;
-			yy_current_buffer->yy_input_file = yyin;
-			yy_current_buffer->yy_buffer_status = YY_BUFFER_NORMAL;
-			}
-
-		/* Note that here we test for yy_c_buf_p "<=" to the position
-		 * of the first EOB in the buffer, since yy_c_buf_p will
-		 * already have been incremented past the NUL character
-		 * (since all states make transitions on EOB to the
-		 * end-of-buffer state).  Contrast this with the test
-		 * in input().
-		 */
-		if ( yy_c_buf_p <= &yy_current_buffer->yy_ch_buf[yy_n_chars] )
-			{ /* This was really a NUL. */
-			yy_state_type yy_next_state;
-
-			yy_c_buf_p = yytext_ptr + yy_amount_of_matched_text;
-
-			yy_current_state = yy_get_previous_state();
-
-			/* Okay, we're now positioned to make the NUL
-			 * transition.  We couldn't have
-			 * yy_get_previous_state() go ahead and do it
-			 * for us because it doesn't know how to deal
-			 * with the possibility of jamming (and we don't
-			 * want to build jamming into it because then it
-			 * will run more slowly).
-			 */
-
-			yy_next_state = yy_try_NUL_trans( yy_current_state );
-
-			yy_bp = yytext_ptr + YY_MORE_ADJ;
-
-			if ( yy_next_state )
-				{
-				/* Consume the NUL. */
-				yy_cp = ++yy_c_buf_p;
-				yy_current_state = yy_next_state;
-				goto yy_match;
-				}
-
-			else
-				{
-				yy_cp = yy_c_buf_p;
-				goto yy_find_action;
-				}
-			}
-
-		else switch ( yy_get_next_buffer() )
-			{
-			case EOB_ACT_END_OF_FILE:
-				{
-				yy_did_buffer_switch_on_eof = 0;
-
-				if ( yywrap() )
-					{
-					/* Note: because we've taken care in
-					 * yy_get_next_buffer() to have set up
-					 * yytext, we can now set up
-					 * yy_c_buf_p so that if some total
-					 * hoser (like flex itself) wants to
-					 * call the scanner after we return the
-					 * YY_NULL, it'll still work - another
-					 * YY_NULL will get returned.
-					 */
-					yy_c_buf_p = yytext_ptr + YY_MORE_ADJ;
-
-					yy_act = YY_STATE_EOF(YY_START);
-					goto do_action;
-					}
-
-				else
-					{
-					if ( ! yy_did_buffer_switch_on_eof )
-						YY_NEW_FILE;
-					}
-				break;
-				}
-
-			case EOB_ACT_CONTINUE_SCAN:
-				yy_c_buf_p =
-					yytext_ptr + yy_amount_of_matched_text;
-
-				yy_current_state = yy_get_previous_state();
-
-				yy_cp = yy_c_buf_p;
-				yy_bp = yytext_ptr + YY_MORE_ADJ;
-				goto yy_match;
-
-			case EOB_ACT_LAST_MATCH:
-				yy_c_buf_p =
-				&yy_current_buffer->yy_ch_buf[yy_n_chars];
-
-				yy_current_state = yy_get_previous_state();
-
-				yy_cp = yy_c_buf_p;
-				yy_bp = yytext_ptr + YY_MORE_ADJ;
-				goto yy_find_action;
-			}
-		break;
-		}
-
-	default:
-		YY_FATAL_ERROR(
-			"fatal flex scanner internal error--no action found" );
-	} /* end of action switch */
-		} /* end of scanning one token */
-	} /* end of yylex */
-
-
-/* yy_get_next_buffer - try to read in a new buffer
- *
- * Returns a code representing an action:
- *	EOB_ACT_LAST_MATCH -
- *	EOB_ACT_CONTINUE_SCAN - continue scanning from current position
- *	EOB_ACT_END_OF_FILE - end of file
- */
-
-static int yy_get_next_buffer()
-	{
-	register char *dest = yy_current_buffer->yy_ch_buf;
-	register char *source = yytext_ptr;
-	register int number_to_move, i;
-	int ret_val;
-
-	if ( yy_c_buf_p > &yy_current_buffer->yy_ch_buf[yy_n_chars + 1] )
-		YY_FATAL_ERROR(
-		"fatal flex scanner internal error--end of buffer missed" );
-
-	if ( yy_current_buffer->yy_fill_buffer == 0 )
-		{ /* Don't try to fill the buffer, so this is an EOF. */
-		if ( yy_c_buf_p - yytext_ptr - YY_MORE_ADJ == 1 )
-			{
-			/* We matched a single character, the EOB, so
-			 * treat this as a final EOF.
-			 */
-			return EOB_ACT_END_OF_FILE;
-			}
-
-		else
-			{
-			/* We matched some text prior to the EOB, first
-			 * process it.
-			 */
-			return EOB_ACT_LAST_MATCH;
-			}
-		}
-
-	/* Try to read more data. */
-
-	/* First move last chars to start of buffer. */
-	number_to_move = (int) (yy_c_buf_p - yytext_ptr) - 1;
-
-	for ( i = 0; i < number_to_move; ++i )
-		*(dest++) = *(source++);
-
-	if ( yy_current_buffer->yy_buffer_status == YY_BUFFER_EOF_PENDING )
-		/* don't do the read, it's not guaranteed to return an EOF,
-		 * just force an EOF
-		 */
-		yy_n_chars = 0;
-
-	else
-		{
-		int num_to_read =
-			yy_current_buffer->yy_buf_size - number_to_move - 1;
-
-		while ( num_to_read <= 0 )
-			{ /* Not enough room in the buffer - grow it. */
-#ifdef YY_USES_REJECT
-			YY_FATAL_ERROR(
-"input buffer overflow, can't enlarge buffer because scanner uses REJECT" );
-#else
-
-			/* just a shorter name for the current buffer */
-			YY_BUFFER_STATE b = yy_current_buffer;
-
-			int yy_c_buf_p_offset =
-				(int) (yy_c_buf_p - b->yy_ch_buf);
-
-			if ( b->yy_is_our_buffer )
-				{
-				int new_size = b->yy_buf_size * 2;
-
-				if ( new_size <= 0 )
-					b->yy_buf_size += b->yy_buf_size / 8;
-				else
-					b->yy_buf_size *= 2;
-
-				b->yy_ch_buf = (char *)
-					/* Include room in for 2 EOB chars. */
-					yy_flex_realloc( (void *) b->yy_ch_buf,
-							 b->yy_buf_size + 2 );
-				}
-			else
-				/* Can't grow it, we don't own it. */
-				b->yy_ch_buf = 0;
-
-			if ( ! b->yy_ch_buf )
-				YY_FATAL_ERROR(
-				"fatal error - scanner input buffer overflow" );
-
-			yy_c_buf_p = &b->yy_ch_buf[yy_c_buf_p_offset];
-
-			num_to_read = yy_current_buffer->yy_buf_size -
-						number_to_move - 1;
-#endif
-			}
-
-		if ( num_to_read > YY_READ_BUF_SIZE )
-			num_to_read = YY_READ_BUF_SIZE;
-
-		/* Read in more data. */
-		YY_INPUT( (&yy_current_buffer->yy_ch_buf[number_to_move]),
-			yy_n_chars, num_to_read );
-		}
-
-	if ( yy_n_chars == 0 )
-		{
-		if ( number_to_move == YY_MORE_ADJ )
-			{
-			ret_val = EOB_ACT_END_OF_FILE;
-			yyrestart( yyin );
-			}
-
-		else
-			{
-			ret_val = EOB_ACT_LAST_MATCH;
-			yy_current_buffer->yy_buffer_status =
-				YY_BUFFER_EOF_PENDING;
-			}
-		}
-
-	else
-		ret_val = EOB_ACT_CONTINUE_SCAN;
-
-	yy_n_chars += number_to_move;
-	yy_current_buffer->yy_ch_buf[yy_n_chars] = YY_END_OF_BUFFER_CHAR;
-	yy_current_buffer->yy_ch_buf[yy_n_chars + 1] = YY_END_OF_BUFFER_CHAR;
-
-	yytext_ptr = &yy_current_buffer->yy_ch_buf[0];
-
-	return ret_val;
-	}
-
-
-/* yy_get_previous_state - get the state just before the EOB char was reached */
-
-static yy_state_type yy_get_previous_state()
-	{
-	register yy_state_type yy_current_state;
-	register char *yy_cp;
-
-	yy_current_state = yy_start;
-	yy_current_state += YY_AT_BOL();
-
-	for ( yy_cp = yytext_ptr + YY_MORE_ADJ; yy_cp < yy_c_buf_p; ++yy_cp )
-		{
-		register YY_CHAR yy_c = (*yy_cp ? yy_ec[YY_SC_TO_UI(*yy_cp)] : 1);
-		if ( yy_accept[yy_current_state] )
-			{
-			yy_last_accepting_state = yy_current_state;
-			yy_last_accepting_cpos = yy_cp;
-			}
-		while ( yy_chk[yy_base[yy_current_state] + yy_c] != yy_current_state )
-			{
-			yy_current_state = (int) yy_def[yy_current_state];
-			if ( yy_current_state >= 171 )
-				yy_c = yy_meta[(unsigned int) yy_c];
-			}
-		yy_current_state = yy_nxt[yy_base[yy_current_state] + (unsigned int) yy_c];
-		}
-
-	return yy_current_state;
-	}
-
-
-/* yy_try_NUL_trans - try to make a transition on the NUL character
- *
- * synopsis
- *	next_state = yy_try_NUL_trans( current_state );
- */
-
-#ifdef YY_USE_PROTOS
-static yy_state_type yy_try_NUL_trans( yy_state_type yy_current_state )
-#else
-static yy_state_type yy_try_NUL_trans( yy_current_state )
-yy_state_type yy_current_state;
-#endif
-	{
-	register int yy_is_jam;
-	register char *yy_cp = yy_c_buf_p;
-
-	register YY_CHAR yy_c = 1;
-	if ( yy_accept[yy_current_state] )
-		{
-		yy_last_accepting_state = yy_current_state;
-		yy_last_accepting_cpos = yy_cp;
-		}
-	while ( yy_chk[yy_base[yy_current_state] + yy_c] != yy_current_state )
-		{
-		yy_current_state = (int) yy_def[yy_current_state];
-		if ( yy_current_state >= 171 )
-			yy_c = yy_meta[(unsigned int) yy_c];
-		}
-	yy_current_state = yy_nxt[yy_base[yy_current_state] + (unsigned int) yy_c];
-	yy_is_jam = (yy_current_state == 170);
-
-	return yy_is_jam ? 0 : yy_current_state;
-	}
-
-
-#ifndef YY_NO_UNPUT
-#ifdef YY_USE_PROTOS
-static void yyunput( int c, register char *yy_bp )
-#else
-static void yyunput( c, yy_bp )
-int c;
-register char *yy_bp;
-#endif
-	{
-	register char *yy_cp = yy_c_buf_p;
-
-	/* undo effects of setting up yytext */
-	*yy_cp = yy_hold_char;
-
-	if ( yy_cp < yy_current_buffer->yy_ch_buf + 2 )
-		{ /* need to shift things up to make room */
-		/* +2 for EOB chars. */
-		register int number_to_move = yy_n_chars + 2;
-		register char *dest = &yy_current_buffer->yy_ch_buf[
-					yy_current_buffer->yy_buf_size + 2];
-		register char *source =
-				&yy_current_buffer->yy_ch_buf[number_to_move];
-
-		while ( source > yy_current_buffer->yy_ch_buf )
-			*--dest = *--source;
-
-		yy_cp += (int) (dest - source);
-		yy_bp += (int) (dest - source);
-		yy_n_chars = yy_current_buffer->yy_buf_size;
-
-		if ( yy_cp < yy_current_buffer->yy_ch_buf + 2 )
-			YY_FATAL_ERROR( "flex scanner push-back overflow" );
-		}
-
-	*--yy_cp = (char) c;
-
-
-	yytext_ptr = yy_bp;
-	yy_hold_char = *yy_cp;
-	yy_c_buf_p = yy_cp;
-	}
-#endif	/* ifndef YY_NO_UNPUT */
-
-
-#ifdef __cplusplus
-static int yyinput()
-#else
-static int input()
-#endif
-	{
-	int c;
-
-	*yy_c_buf_p = yy_hold_char;
-
-	if ( *yy_c_buf_p == YY_END_OF_BUFFER_CHAR )
-		{
-		/* yy_c_buf_p now points to the character we want to return.
-		 * If this occurs *before* the EOB characters, then it's a
-		 * valid NUL; if not, then we've hit the end of the buffer.
-		 */
-		if ( yy_c_buf_p < &yy_current_buffer->yy_ch_buf[yy_n_chars] )
-			/* This was really a NUL. */
-			*yy_c_buf_p = '\0';
-
-		else
-			{ /* need more input */
-			int offset = yy_c_buf_p - yytext_ptr;
-			++yy_c_buf_p;
-
-			switch ( yy_get_next_buffer() )
-				{
-				case EOB_ACT_END_OF_FILE:
-					{
-					if ( yywrap() )
-						{
-						yy_c_buf_p = yytext_ptr + offset;
-						return EOF;
-						}
-
-					if ( ! yy_did_buffer_switch_on_eof )
-						YY_NEW_FILE;
-#ifdef __cplusplus
-					return yyinput();
-#else
-					return input();
-#endif
-					}
-
-				case EOB_ACT_CONTINUE_SCAN:
-					yy_c_buf_p = yytext_ptr + offset;
-					break;
-
-				case EOB_ACT_LAST_MATCH:
-#ifdef __cplusplus
-					YY_FATAL_ERROR(
-					"unexpected last match in yyinput()" );
-#else
-					YY_FATAL_ERROR(
-					"unexpected last match in input()" );
-#endif
-				}
-			}
-		}
-
-	c = *(unsigned char *) yy_c_buf_p;	/* cast for 8-bit char's */
-	*yy_c_buf_p = '\0';	/* preserve yytext */
-	yy_hold_char = *++yy_c_buf_p;
-
-	yy_current_buffer->yy_at_bol = (c == '\n');
-
-	return c;
-	}
-
-
-#ifdef YY_USE_PROTOS
-void yyrestart( FILE *input_file )
-#else
-void yyrestart( input_file )
-FILE *input_file;
-#endif
-	{
-	if ( ! yy_current_buffer )
-		yy_current_buffer = yy_create_buffer( yyin, YY_BUF_SIZE );
-
-	yy_init_buffer( yy_current_buffer, input_file );
-	yy_load_buffer_state();
-	}
-
-
-#ifdef YY_USE_PROTOS
-void yy_switch_to_buffer( YY_BUFFER_STATE new_buffer )
-#else
-void yy_switch_to_buffer( new_buffer )
-YY_BUFFER_STATE new_buffer;
-#endif
-	{
-	if ( yy_current_buffer == new_buffer )
-		return;
-
-	if ( yy_current_buffer )
-		{
-		/* Flush out information for old buffer. */
-		*yy_c_buf_p = yy_hold_char;
-		yy_current_buffer->yy_buf_pos = yy_c_buf_p;
-		yy_current_buffer->yy_n_chars = yy_n_chars;
-		}
-
-	yy_current_buffer = new_buffer;
-	yy_load_buffer_state();
-
-	/* We don't actually know whether we did this switch during
-	 * EOF (yywrap()) processing, but the only time this flag
-	 * is looked at is after yywrap() is called, so it's safe
-	 * to go ahead and always set it.
-	 */
-	yy_did_buffer_switch_on_eof = 1;
-	}
-
-
-#ifdef YY_USE_PROTOS
-void yy_load_buffer_state( void )
-#else
-void yy_load_buffer_state()
-#endif
-	{
-	yy_n_chars = yy_current_buffer->yy_n_chars;
-	yytext_ptr = yy_c_buf_p = yy_current_buffer->yy_buf_pos;
-	yyin = yy_current_buffer->yy_input_file;
-	yy_hold_char = *yy_c_buf_p;
-	}
-
-
-#ifdef YY_USE_PROTOS
-YY_BUFFER_STATE yy_create_buffer( FILE *file, int size )
-#else
-YY_BUFFER_STATE yy_create_buffer( file, size )
-FILE *file;
-int size;
-#endif
-	{
-	YY_BUFFER_STATE b;
-
-	b = (YY_BUFFER_STATE) yy_flex_alloc( sizeof( struct yy_buffer_state ) );
-	if ( ! b )
-		YY_FATAL_ERROR( "out of dynamic memory in yy_create_buffer()" );
-
-	b->yy_buf_size = size;
-
-	/* yy_ch_buf has to be 2 characters longer than the size given because
-	 * we need to put in 2 end-of-buffer characters.
-	 */
-	b->yy_ch_buf = (char *) yy_flex_alloc( b->yy_buf_size + 2 );
-	if ( ! b->yy_ch_buf )
-		YY_FATAL_ERROR( "out of dynamic memory in yy_create_buffer()" );
-
-	b->yy_is_our_buffer = 1;
-
-	yy_init_buffer( b, file );
-
-	return b;
-	}
-
-
-#ifdef YY_USE_PROTOS
-void yy_delete_buffer( YY_BUFFER_STATE b )
-#else
-void yy_delete_buffer( b )
-YY_BUFFER_STATE b;
-#endif
-	{
-	if ( ! b )
-		return;
-
-	if ( b == yy_current_buffer )
-		yy_current_buffer = (YY_BUFFER_STATE) 0;
-
-	if ( b->yy_is_our_buffer )
-		yy_flex_free( (void *) b->yy_ch_buf );
-
-	yy_flex_free( (void *) b );
-	}
-
-
-#ifndef YY_ALWAYS_INTERACTIVE
-#ifndef YY_NEVER_INTERACTIVE
-extern int isatty YY_PROTO(( int ));
-#endif
-#endif
-
-#ifdef YY_USE_PROTOS
-void yy_init_buffer( YY_BUFFER_STATE b, FILE *file )
-#else
-void yy_init_buffer( b, file )
-YY_BUFFER_STATE b;
-FILE *file;
-#endif
-
-
-	{
-	yy_flush_buffer( b );
-
-	b->yy_input_file = file;
-	b->yy_fill_buffer = 1;
-
-#if YY_ALWAYS_INTERACTIVE
-	b->yy_is_interactive = 1;
-#else
-#if YY_NEVER_INTERACTIVE
-	b->yy_is_interactive = 0;
-#else
-	b->yy_is_interactive = file ? (isatty( fileno(file) ) > 0) : 0;
-#endif
-#endif
-	}
-
-
-#ifdef YY_USE_PROTOS
-void yy_flush_buffer( YY_BUFFER_STATE b )
-#else
-void yy_flush_buffer( b )
-YY_BUFFER_STATE b;
-#endif
-
-	{
-	b->yy_n_chars = 0;
-
-	/* We always need two end-of-buffer characters.  The first causes
-	 * a transition to the end-of-buffer state.  The second causes
-	 * a jam in that state.
-	 */
-	b->yy_ch_buf[0] = YY_END_OF_BUFFER_CHAR;
-	b->yy_ch_buf[1] = YY_END_OF_BUFFER_CHAR;
-
-	b->yy_buf_pos = &b->yy_ch_buf[0];
-
-	b->yy_at_bol = 1;
-	b->yy_buffer_status = YY_BUFFER_NEW;
-
-	if ( b == yy_current_buffer )
-		yy_load_buffer_state();
-	}
-
-
-#ifndef YY_NO_SCAN_BUFFER
-#ifdef YY_USE_PROTOS
-YY_BUFFER_STATE yy_scan_buffer( char *base, yy_size_t size )
-#else
-YY_BUFFER_STATE yy_scan_buffer( base, size )
-char *base;
-yy_size_t size;
-#endif
-	{
-	YY_BUFFER_STATE b;
-
-	if ( size < 2 ||
-	     base[size-2] != YY_END_OF_BUFFER_CHAR ||
-	     base[size-1] != YY_END_OF_BUFFER_CHAR )
-		/* They forgot to leave room for the EOB's. */
-		return 0;
-
-	b = (YY_BUFFER_STATE) yy_flex_alloc( sizeof( struct yy_buffer_state ) );
-	if ( ! b )
-		YY_FATAL_ERROR( "out of dynamic memory in yy_scan_buffer()" );
-
-	b->yy_buf_size = size - 2;	/* "- 2" to take care of EOB's */
-	b->yy_buf_pos = b->yy_ch_buf = base;
-	b->yy_is_our_buffer = 0;
-	b->yy_input_file = 0;
-	b->yy_n_chars = b->yy_buf_size;
-	b->yy_is_interactive = 0;
-	b->yy_at_bol = 1;
-	b->yy_fill_buffer = 0;
-	b->yy_buffer_status = YY_BUFFER_NEW;
-
-	yy_switch_to_buffer( b );
-
-	return b;
-	}
-#endif
-
-
-#ifndef YY_NO_SCAN_STRING
-#ifdef YY_USE_PROTOS
-YY_BUFFER_STATE yy_scan_string( yyconst char *str )
-#else
-YY_BUFFER_STATE yy_scan_string( str )
-yyconst char *str;
-#endif
-	{
-	int len;
-	for ( len = 0; str[len]; ++len )
-		;
-
-	return yy_scan_bytes( str, len );
-	}
-#endif
-
-
-#ifndef YY_NO_SCAN_BYTES
-#ifdef YY_USE_PROTOS
-YY_BUFFER_STATE yy_scan_bytes( yyconst char *bytes, int len )
-#else
-YY_BUFFER_STATE yy_scan_bytes( bytes, len )
-yyconst char *bytes;
-int len;
-#endif
-	{
-	YY_BUFFER_STATE b;
-	char *buf;
-	yy_size_t n;
-	int i;
-
-	/* Get memory for full buffer, including space for trailing EOB's. */
-	n = len + 2;
-	buf = (char *) yy_flex_alloc( n );
-	if ( ! buf )
-		YY_FATAL_ERROR( "out of dynamic memory in yy_scan_bytes()" );
-
-	for ( i = 0; i < len; ++i )
-		buf[i] = bytes[i];
-
-	buf[len] = buf[len+1] = YY_END_OF_BUFFER_CHAR;
-
-	b = yy_scan_buffer( buf, n );
-	if ( ! b )
-		YY_FATAL_ERROR( "bad buffer in yy_scan_bytes()" );
-
-	/* It's okay to grow etc. this buffer, and we should throw it
-	 * away when we're done.
-	 */
-	b->yy_is_our_buffer = 1;
-
-	return b;
-	}
-#endif
-
-
-#ifndef YY_NO_PUSH_STATE
-#ifdef YY_USE_PROTOS
-static void yy_push_state( int new_state )
-#else
-static void yy_push_state( new_state )
-int new_state;
-#endif
-	{
-	if ( yy_start_stack_ptr >= yy_start_stack_depth )
-		{
-		yy_size_t new_size;
-
-		yy_start_stack_depth += YY_START_STACK_INCR;
-		new_size = yy_start_stack_depth * sizeof( int );
-
-		if ( ! yy_start_stack )
-			yy_start_stack = (int *) yy_flex_alloc( new_size );
-
-		else
-			yy_start_stack = (int *) yy_flex_realloc(
-					(void *) yy_start_stack, new_size );
-
-		if ( ! yy_start_stack )
-			YY_FATAL_ERROR(
-			"out of memory expanding start-condition stack" );
-		}
-
-	yy_start_stack[yy_start_stack_ptr++] = YY_START;
-
-	BEGIN(new_state);
-	}
-#endif
-
-
-#ifndef YY_NO_POP_STATE
-static void yy_pop_state()
-	{
-	if ( --yy_start_stack_ptr < 0 )
-		YY_FATAL_ERROR( "start-condition stack underflow" );
-
-	BEGIN(yy_start_stack[yy_start_stack_ptr]);
-	}
-#endif
-
-
-#ifndef YY_NO_TOP_STATE
-static int yy_top_state()
-	{
-	return yy_start_stack[yy_start_stack_ptr - 1];
-	}
-#endif
-
-#ifndef YY_EXIT_FAILURE
-#define YY_EXIT_FAILURE 2
-#endif
-
-#ifdef YY_USE_PROTOS
-static void yy_fatal_error( yyconst char msg[] )
-#else
-static void yy_fatal_error( msg )
-char msg[];
-#endif
-	{
-	(void) fprintf( stderr, "%s\n", msg );
-	exit( YY_EXIT_FAILURE );
-	}
-
-
-
-/* Redefine yyless() so it works in section 3 code. */
-
-#undef yyless
-#define yyless(n) \
-	do \
-		{ \
-		/* Undo effects of setting up yytext. */ \
-		yytext[yyleng] = yy_hold_char; \
-		yy_c_buf_p = yytext + n; \
-		yy_hold_char = *yy_c_buf_p; \
-		*yy_c_buf_p = '\0'; \
-		yyleng = n; \
-		} \
-	while ( 0 )
-
-
-/* Internal utility routines. */
-
-#ifndef yytext_ptr
-#ifdef YY_USE_PROTOS
-static void yy_flex_strncpy( char *s1, yyconst char *s2, int n )
-#else
-static void yy_flex_strncpy( s1, s2, n )
-char *s1;
-yyconst char *s2;
-int n;
-#endif
-	{
-	register int i;
-	for ( i = 0; i < n; ++i )
-		s1[i] = s2[i];
-	}
-#endif
-
-#ifdef YY_NEED_STRLEN
-#ifdef YY_USE_PROTOS
-static int yy_flex_strlen( yyconst char *s )
-#else
-static int yy_flex_strlen( s )
-yyconst char *s;
-#endif
-	{
-	register int n;
-	for ( n = 0; s[n]; ++n )
-		;
-
-	return n;
-	}
-#endif
-
-
-#ifdef YY_USE_PROTOS
-static void *yy_flex_alloc( yy_size_t size )
-#else
-static void *yy_flex_alloc( size )
-yy_size_t size;
-#endif
-	{
-	return (void *) malloc( size );
-	}
-
-#ifdef YY_USE_PROTOS
-static void *yy_flex_realloc( void *ptr, yy_size_t size )
-#else
-static void *yy_flex_realloc( ptr, size )
-void *ptr;
-yy_size_t size;
-#endif
-	{
-	/* The cast to (char *) in the following accommodates both
-	 * implementations that use char* generic pointers, and those
-	 * that use void* generic pointers.  It works with the latter
-	 * because both ANSI C and C++ allow castless assignment from
-	 * any pointer type to void*, and deal with argument conversions
-	 * as though doing an assignment.
-	 */
-	return (void *) realloc( (char *) ptr, size );
-	}
-
-#ifdef YY_USE_PROTOS
-static void yy_flex_free( void *ptr )
-#else
-static void yy_flex_free( ptr )
-void *ptr;
-#endif
-	{
-	free( ptr );
-	}
-
-#if YY_MAIN
-int main()
-	{
-	yylex();
-	return 0;
-	}
-#endif
-#line 222 "commands.l"
-
diff --git a/contrib/bind/bin/nslookup/commands.l b/contrib/bind/bin/nslookup/commands.l
deleted file mode 100644
index 19cf06269ca47..0000000000000
--- a/contrib/bind/bin/nslookup/commands.l
+++ /dev/null
@@ -1,218 +0,0 @@
-%{
-
-/*
- * Copyright (c) 1985
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)commands.l	5.13 (Berkeley) 7/24/90";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  commands.l
- *
- *	Andrew Cherenson	CS298-26  Fall 1985
- *
- *	Lex input file for the nslookup program command interpreter.
- *	When a sequence is recognized, the associated action
- *	routine is called. The action routine may need to
- *	parse the string for additional information.
- *
- *  Recognized commands: (identifiers are shown in uppercase)
- *
- *	server NAME	- set default server to NAME, using default server
- *	lserver NAME	- set default server to NAME, using initial server
- *	finger [NAME]	- finger the optional NAME
- *	exit		- exit the program
- *	root		- set default server to the root
- *	ls NAME		- list the domain NAME
- *	view FILE	- sorts and view the file with more
- *	set OPTION	- set an option
- *	help		- print help information
- *	?		- print help information
- *	NAME		- print info about the host/domain NAME
- *			  using default server.
- *	NAME1 NAME2	- as above, but use NAME2 as server
- *
- *
- *   yylex Results:
- *	0		upon end-of-file.
- *	1		after each command.
- *
- *******************************************************************************
- */
-
-#include "port_before.h"
-#include <sys/types.h>
-#include "port_after.h"
-#include "res.h"
-
-extern char rootServerName[];
-extern void PrintHelp();
-extern void ViewList(char *);
-
-%}
-WS	[ \t]
-FLET	[A-Za-z0-9.*\\_]
-LET	[A-Za-z0-9.*_]
-NAME	[A-Za-z0-9.*=_/-]
-%%
-^{WS}*server{WS}+{LET}{NAME}*{WS}*$	{
-					    /*
-					     * 0 == use current server to find
-					     *	    the new one.
-					     * 1 == use original server to find
-					     *	    the new one.
-					     */
-					    SetDefaultServer(yytext, 0);
-					    return(1);
-					}
-^{WS}*lserver{WS}+{LET}{NAME}*{WS}*$	{
-					    SetDefaultServer(yytext, 1);
-					    return(1);
-					}
-^{WS}*exit{WS}*$			{
-					    return(0);
-					}
-^{WS}*root{WS}*$			{
-					    SetDefaultServer(rootServerName, 1);
-					    return(1);
-					}
-^{WS}*finger({WS}+{LET}{NAME}*)?{WS}+>>?{WS}*{NAME}+{WS}*$	{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    Finger(yytext, 1);
-					    return(1);
-					}
-^{WS}*finger({WS}+{LET}{NAME}*)?{WS}*$	{
-					    Finger(yytext, 0);
-					    return(1);
-					}
-^{WS}*ls{WS}+(("-a"|"-d"|"-h"|"-m"|"-s"){WS}+)?{LET}{NAME}*{WS}+>>?{WS}+{NAME}+{WS}*$	{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    ListHosts(yytext, 1);
-					    return(1);
-					}
-^{WS}*ls{WS}+(("-a"|"-d"|"-h"|"-m"|"-s"){WS}+)?{LET}{NAME}*{WS}*$	{
-					    ListHosts(yytext, 0);
-					    return(1);
-					}
-^{WS}*ls{WS}+-t{WS}+({LET}{NAME}*{WS}+)?{LET}{NAME}*{WS}+>>?{WS}+{NAME}+{WS}*$ {
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    ListHostsByType(yytext, 1);
-					    return(1);
-					}
-^{WS}*ls{WS}+-t{WS}+({LET}{NAME}*{WS}+)?{LET}{NAME}*{WS}*$ {
-					    ListHostsByType(yytext, 0);
-					    return(1);
-					}
-^{WS}*set{WS}+{NAME}+{WS}*$		{
-					    SetOption(yytext);
-					    return(1);
-					}
-^{WS}*help{WS}*$			{
-					    PrintHelp();
-					    return(1);
-					}
-^{WS}*"?"{WS}*$				{
-					    extern void PrintHelp();
-
-					    PrintHelp();
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}+>>?{WS}*{NAME}+{WS}*$	{
-					    /*
-					     * 0 == output to stdout
-					     * 1 == output to file
-					     */
-					    LookupHost(yytext, 1);
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}*$		{
-					    LookupHost(yytext, 0);
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}+{LET}{NAME}*{WS}+>>?{WS}*{NAME}+{WS}*$	{
-					    /*
-					     * 0 == output to stdout
-					     * 1 == output to file
-					     */
-					    LookupHostWithServer(yytext, 1);
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}+{LET}{NAME}*{WS}*$	{
-					    LookupHostWithServer(yytext, 0);
-					    return(1);
-					}
-^{WS}*\n				{
-					    return(1);
-					}
-^.*\n					{
-					    printf("Unrecognized command: %s",
-							yytext);
-					    return(1);
-					}
-\n					{ ; }
-%%
diff --git a/contrib/bind/bin/nslookup/debug.c b/contrib/bind/bin/nslookup/debug.c
deleted file mode 100644
index 2448381dea70a..0000000000000
--- a/contrib/bind/bin/nslookup/debug.c
+++ /dev/null
@@ -1,646 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char sccsid[] = "@(#)debug.c	5.26 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: debug.c,v 8.15 1999/10/13 16:39:16 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  debug.c --
- *
- *	Routines to print out packets received from a name server query.
- *
- *      Modified version of 4.3BSD BIND res_debug.c 5.30 6/27/90
- *
- *******************************************************************************
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include "port_after.h"
-
-#include "res.h"
-
-/*
- *  Imported from res_debug.c
- */
-extern char *_res_opcodes[];
-
-/*
- *  Used to highlight the start of a record when printing it.
- */
-#define INDENT "    ->  "
-
-/*
- * Print the contents of a query.
- * This is intended to be primarily a debugging routine.
- */
-
-void
-Print_query(const u_char *msg, const u_char *eom, int printHeader) {
-	Fprint_query(msg, eom, printHeader, stdout);
-}
-
-void
-Fprint_query(const u_char *msg, const u_char *eom, int printHeader, FILE *file)
-{
-	const u_char *cp;
-	const HEADER *hp;
-	int n;
-	u_int class, type;
-
-	/*
-	 * Print header fields.
-	 */
-	hp = (HEADER *)msg;
-	cp = msg + HFIXEDSZ;
-	if (printHeader || (res.options & RES_DEBUG2)) {
-		fprintf(file,"    HEADER:\n");
-		fprintf(file,"\topcode = %s", _res_opcodes[hp->opcode]);
-		fprintf(file,", id = %d", ntohs(hp->id));
-		fprintf(file,", rcode = %s\n", p_rcode(hp->rcode));
-		fprintf(file,"\theader flags: ");
-		if (hp->qr) {
-			fprintf(file," response");
-		} else {
-			fprintf(file," query");
-		}
-		if (hp->aa)
-			fprintf(file,", auth. answer");
-		if (hp->tc)
-			fprintf(file,", truncation");
-		if (hp->rd)
-			fprintf(file,", want recursion");
-		if (hp->ra)
-			fprintf(file,", recursion avail.");
-		if (hp->unused)
-			fprintf(file,", UNUSED-QUERY_BIT");
-		if (hp->ad)
-			fprintf(file,", authentic data");
-		if (hp->cd)
-			fprintf(file,", checking disabled");
-		fprintf(file,"\n\tquestions = %d", ntohs(hp->qdcount));
-		fprintf(file,",  answers = %d", ntohs(hp->ancount));
-		fprintf(file,",  authority records = %d", ntohs(hp->nscount));
-		fprintf(file,",  additional = %d\n\n", ntohs(hp->arcount));
-	}
-
-	/*
-	 * Print question records.
-	 */
-	n = ntohs(hp->qdcount);
-	if (n > 0) {
-		fprintf(file,"    QUESTIONS:\n");
-		while (--n >= 0) {
-			fprintf(file,"\t");
-			cp = Print_cdname(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-			type = ns_get16((u_char*)cp);
-			cp += INT16SZ;
-			class = ns_get16((u_char*)cp);
-			cp += INT16SZ;
-			fprintf(file,", type = %s", p_type(type));
-			fprintf(file,", class = %s\n", p_class(class));
-		}
-	}
-	/*
-	 * Print authoritative answer records
-	 */
-	n = ntohs(hp->ancount);
-	if (n > 0) {
-		fprintf(file,"    ANSWERS:\n");
-		if (type == ns_t_a && n > MAXADDRS) {
-			printf("Limiting response to MAX Addrs = %d \n",
-			       MAXADDRS);
-			n = MAXADDRS;
-		}
-		while (--n >= 0) {
-			fprintf(file, INDENT);
-			cp = Print_rr(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-		}
-	}
-	/*
-	 * print name server records
-	 */
-	n = ntohs(hp->nscount);
-	if (n > 0) {
-		fprintf(file,"    AUTHORITY RECORDS:\n");
-		while (--n >= 0) {
-			fprintf(file, INDENT);
-			cp = Print_rr(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-		}
-	}
-	/*
-	 * print additional records
-	 */
-	n = ntohs(hp->arcount);
-	if (n > 0) {
-		fprintf(file,"    ADDITIONAL RECORDS:\n");
-		while (--n >= 0) {
-			fprintf(file, INDENT);
-			cp = Print_rr(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-		}
-	}
-	fprintf(file,"\n------------\n");
-}
-
-const u_char *
-Print_cdname_sub(const u_char *cp, const u_char *msg, const u_char *eom,
-		 FILE *file, int format)
-{
-	char name[MAXDNAME];
-	int n;
-
-	n = dn_expand(msg, eom, cp, name, sizeof name);
-	if (n < 0)
-		return (NULL);
-	if (name[0] == '\0')
-		strcpy(name, "(root)");
-	if (format)
-		fprintf(file, "%-30s", name);
-	else
-		fputs(name, file);
-	return (cp + n);
-}
-
-const u_char *
-Print_cdname(const u_char *cp, const u_char *msg, const u_char *eom,
-	     FILE *file)
-{
-	return (Print_cdname_sub(cp, msg, eom, file, 0));
-}
-
-const u_char *
-Print_cdname2(const u_char *cp, const u_char *msg, const u_char *eom,
-	      FILE *file)
-{
-	return (Print_cdname_sub(cp, msg, eom, file, 1));
-}
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			fprintf(file, "(form error.)\n"); \
-			return (NULL); \
-		} \
-	} while (0)
-
-/*
- * Print resource record fields in human readable form (not master file form).
- */
-const u_char *
-Print_rr(const u_char *ocp, const u_char *msg, const u_char *eom, FILE *file) {
-	u_int type, class;
-	int dlen, n, c, debug;
-	u_long rrttl, ttl;
-	struct in_addr inaddr;
-	const u_char *cp, *cp1, *cp2;
-
-	if ((cp = Print_cdname(ocp, msg, eom, file)) == NULL) {
-		fprintf(file, "(name truncated?)\n");
-		return (NULL);			/* compression error */
-	}
-
-	BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-	NS_GET16(type, cp);
-	NS_GET16(class, cp);
-	NS_GET32(rrttl, cp);
-	NS_GET16(dlen, cp);
-	BOUNDS_CHECK(cp, dlen);
-
-	debug = res.options & (RES_DEBUG|RES_DEBUG2);
-	if (debug) {
-		if (res.options & RES_DEBUG2)
-			fprintf(file,"\n\ttype = %s, class = %s, dlen = %d",
-				p_type(type), p_class(class), dlen);
-		if (type == T_SOA)
-			fprintf(file,"\n\tttl = %lu (%s)",
-				rrttl, p_time(rrttl));
-		putc('\n', file);
-	} 
-
-	cp1 = cp;
-
-	/*
-	 * Print type specific data, if appropriate
-	 */
-	switch (type) {
-	case T_A:
-		BOUNDS_CHECK(cp, INADDRSZ);
-		memcpy(&inaddr, cp, INADDRSZ);
-		fprintf(file,"\tinternet address = %s\n", inet_ntoa(inaddr));
-		cp += dlen;
-		break;
-
-	case T_CNAME:
-		fprintf(file,"\tcanonical name = ");
-		goto doname;
-
-	case T_MG:
-		fprintf(file,"\tmail group member = ");
-		goto doname;
-
-	case T_MB:
-		fprintf(file,"\tmail box = ");
-		goto doname;
-
-	case T_MR:
-		fprintf(file,"\tmailbox rename = ");
-		goto doname;
-
-	case T_MX:
-		BOUNDS_CHECK(cp, INT16SZ);
-		fprintf(file,"\tpreference = %u",ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", mail exchanger = ");
-		goto doname;
-
-	case T_NAPTR:
-		BOUNDS_CHECK(cp, 2 * INT16SZ);
-		fprintf(file, "\torder = %u",ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", preference = %u\n", ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		/* Flags */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		fprintf(file,"\tflags = \"%.*s\"\n", (int)n, cp);
-		cp += n;
-		/* Service */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		fprintf(file,"\tservices = \"%.*s\"\n", (int)n, cp);
-		cp += n;
-		/* Regexp */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		fprintf(file,"\trule = \"%.*s\"\n", (int)n, cp);
-		cp += n;
-		/* Replacement */
-		fprintf(file,"\treplacement = ");
-                cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(replacement truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-                (void) putc('\n', file);
-		break;
-
-	case T_SRV: 
-		BOUNDS_CHECK(cp, 3 * INT16SZ);
-		fprintf(file, "\tpriority = %u",ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", weight = %u", ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", port= %u\n", ns_get16((u_char*)cp));
-		cp += INT16SZ;
-
-		fprintf(file,"\thost = ");
-		goto doname;
-
-        case T_PX:
-		BOUNDS_CHECK(cp, INT16SZ);
-                fprintf(file,"\tpreference = %u",ns_get16((u_char*)cp));
-                cp += INT16SZ;
-                fprintf(file,", RFC 822 = ");
-                cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-                fprintf(file,"\nX.400 = ");
-                cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-                (void) putc('\n', file);
-                break;
-
-	case T_RT:
-		BOUNDS_CHECK(cp, INT16SZ);
-		fprintf(file,"\tpreference = %u",ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", router = ");
-		goto doname;
-
-	case T_AFSDB:
-		BOUNDS_CHECK(cp, INT16SZ);
-		fprintf(file,"\tsubtype = %d",ns_get16((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", DCE/AFS server = ");
-		goto doname;
-
-	case T_NS:
-		fprintf(file,"\tnameserver = ");
-		goto doname;
-
-	case T_PTR:
-		fprintf(file,"\tname = ");
- doname:
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		(void) putc('\n', file);
-		break;
-
-	case T_HINFO:
-		cp2 = cp + dlen;
-		BOUNDS_CHECK(cp, 1);
-		if ((n = *cp++) != 0) {
-			BOUNDS_CHECK(cp, n);
-			fprintf(file,"\tCPU = %.*s", n, cp);
-			cp += n;
-		}
-		if ((cp < cp2) && ((n = *cp++) != 0)) {
-			BOUNDS_CHECK(cp, n);
-			fprintf(file,"\tOS = %.*s\n", n, cp);
-			cp += n;
-		} else fprintf(file, "\n*** Warning *** OS-type missing\n");
-		break;
-
-	case T_ISDN:
-		cp2 = cp + dlen;
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		if (n != 0) {
-			BOUNDS_CHECK(cp, n);
-			fprintf(file,"\tISDN = \"%.*s", n, cp);
-			cp += n;
-		}
-		if ((cp < cp2) && (n = *cp++)) {
-			BOUNDS_CHECK(cp, n);
-			fprintf(file,"-%.*s\"\n", n, cp);
-			cp += n;
-		} else fprintf(file,"\"\n");
-		break;
-
-	case T_SOA:
-		if (!debug)
-			putc('\n', file);
-		fprintf(file,"\torigin = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\tmail addr = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		BOUNDS_CHECK(cp, 5 * INT32SZ);
-		fprintf(file,"\n\tserial = %lu", ns_get32((u_char*)cp));
-		cp += INT32SZ;
-		ttl = ns_get32((u_char*)cp);
-		fprintf(file,"\n\trefresh = %lu (%s)", ttl, p_time(ttl));
-		cp += INT32SZ;
-		ttl = ns_get32((u_char*)cp);
-		fprintf(file,"\n\tretry   = %lu (%s)", ttl, p_time(ttl));
-		cp += INT32SZ;
-		ttl = ns_get32((u_char*)cp);
-		fprintf(file,"\n\texpire  = %lu (%s)", ttl, p_time(ttl));
-		cp += INT32SZ;
-		ttl = ns_get32((u_char*)cp);
-		fprintf(file,
-		    "\n\tminimum ttl = %lu (%s)\n", ttl, p_time(ttl));
-		cp += INT32SZ;
-		break;
-
-	case T_MINFO:
-		if (!debug)
-			putc('\n', file);
-		fprintf(file,"\trequests = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\terrors = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		(void) putc('\n', file);
-		break;
-
-	case T_RP:
-		if (!debug)
-			putc('\n', file);
-		fprintf(file,"\tmailbox = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\ttext = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		(void) putc('\n', file);
-		break;
-
-	case T_TXT:
-		(void) fputs("\ttext = ", file);
-		cp2 = cp1 + dlen;
-		while (cp < cp2) {
-			(void) putc('"', file);
-			n = (unsigned char) *cp++;
-			if (n != 0) {
-				for (c = n; c > 0 && cp < cp2; c--) {
-					if ((*cp == '\n') || (*cp == '"') || (*cp == '\\'))
-						(void) putc('\\', file);
-					(void) putc(*cp++, file);
-				}
-			}
-			(void) putc('"', file);
-			if (cp < cp2)
-				(void) putc(' ', file);
-		}
-		(void) putc('\n', file);
-  		break;
-
-	case T_X25:
-		(void) fputs("\tX25 = \"", file);
-		cp2 = cp1 + dlen;
-		while (cp < cp2) {
-			n = (unsigned char) *cp++;
-			if (n != 0) {
-				for (c = n; c > 0 && cp < cp2; c--)
-					if (*cp == '\n') {
-					    (void) putc('\\', file);
-					    (void) putc(*cp++, file);
-					} else
-					    (void) putc(*cp++, file);
-			}
-		}
-		(void) fputs("\"\n", file);
-  		break;
-
-	case T_NSAP:
-		fprintf(file, "\tnsap = %s\n", inet_nsap_ntoa(dlen, cp, NULL));
-		cp += dlen;
-  		break;
-
-	case T_AAAA: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		BOUNDS_CHECK(cp, IN6ADDRSZ);
-		fprintf(file, "\tIPv6 address = %s\n",
-			inet_ntop(AF_INET6, cp, t, sizeof t));
-		cp += IN6ADDRSZ;
-		break;
-	    }
-
-	case T_WKS: {
-		struct protoent *protoPtr;
-
-		BOUNDS_CHECK(cp, INADDRSZ + 1);
-		if (!debug)
-		    (void) putc('\n', file);
-		memcpy(&inaddr, cp, INADDRSZ);
-		cp += INADDRSZ;
-		if ((protoPtr = getprotobynumber(*cp)) != NULL) {
-		    fprintf(file,"\tinet address = %s, protocol = %s\n\t",
-			inet_ntoa(inaddr), protoPtr->p_name);
-		} else {
-		    fprintf(file,"\tinet address = %s, protocol = %d\n\t",
-			inet_ntoa(inaddr), *cp);
-		}
-		cp++;
-		n = 0;
-		while (cp < cp1 + dlen) {
-			c = *cp++;
-			do {
-				struct servent *s;
-
- 				if (c & 0200) {
-					s = getservbyport((int)htons(n),
-					    protoPtr ? protoPtr->p_name : NULL);
-					if (s != NULL) {
-					    fprintf(file,"  %s", s->s_name);
-					} else {
-					    fprintf(file," #%d", n);
-					}
-				}
- 				c <<= 1;
-			} while (++n & 07);
-		}
-		putc('\n',file);
-		break;
-	    }
-
-	case T_NULL:
-		fprintf(file, "\tNULL (dlen %d)\n", dlen);
-		cp += dlen;
-		break;
-
-	case T_NXT:
-	case T_SIG:
-	case T_KEY:
-	default: {
-		char buf[2048];	/* XXX need to malloc/realloc. */
-
-		if (ns_sprintrrf(msg, eom - msg, "?", (ns_class)class,
-				 (ns_type)type, rrttl, cp1, dlen, NULL, NULL,
-				 buf, sizeof buf) < 0) {
-			perror("ns_sprintrrf");
-		} else {
-			fprintf(file,
-				"\trecord type %s, interpreted as:\n%s\n",
-				p_type(type), buf);
-		}
-		cp += dlen;
-	    }
-	}
-	if (res.options & RES_DEBUG && type != T_SOA) {
-		fprintf(file,"\tttl = %lu (%s)\n", rrttl, p_time(rrttl));
-	}
-	if (cp != cp1 + dlen) {
-		fprintf(file,
-			"\n*** Error: record size incorrect (%d != %d)\n\n",
-			cp - cp1, dlen);
-		cp = NULL;
-	}
-	return (cp);
-}
diff --git a/contrib/bind/bin/nslookup/getinfo.c b/contrib/bind/bin/nslookup/getinfo.c
deleted file mode 100644
index 6f4ecff68c6ec..0000000000000
--- a/contrib/bind/bin/nslookup/getinfo.c
+++ /dev/null
@@ -1,874 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char sccsid[] = "@(#)getinfo.c	5.26 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: getinfo.c,v 8.15 1999/10/13 16:39:16 vixie Exp $";
-#endif /* not lint */
-
-/*
- ******************************************************************************
- *
- *  getinfo.c --
- *
- *	Routines to create requests to name servers
- *	and interpret the answers.
- *
- *	Adapted from 4.3BSD BIND gethostnamadr.c
- *
- ******************************************************************************
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#include "res.h"
-
-extern char *res_skip();
-
-static char *addr_list[MAXADDRS + 1];
-
-static char *host_aliases[MAXALIASES];
-static int   host_aliases_len[MAXALIASES];
-static u_char  hostbuf[MAXDNAME];
-
-typedef struct {
-    char *name;
-    char *domain[MAXDOMAINS];
-    int   numDomains;
-    char *address[MAXADDRS];
-    int   numAddresses;
-} ServerTable;
-
-ServerTable server[MAXSERVERS];
-
-typedef union {
-    HEADER qb1;
-    u_char qb2[64*1024];
-} querybuf;
-
-typedef union {
-    int32_t al;
-    char ac;
-} align;
-
-#define GetShort(cp)	ns_get16(cp); cp += INT16SZ;
-
-
-/*
- ******************************************************************************
- *
- *  GetAnswer --
- *
- *	Interprets an answer packet and retrieves the following
- *	information:
- *
- *  Results:
- *      SUCCESS         the info was retrieved.
- *      NO_INFO         the packet did not contain an answer.
- *	NONAUTH		non-authoritative information was found.
- *      ERROR           the answer was malformed.
- *      Other errors    returned in the packet header.
- *
- ******************************************************************************
- */
-
-static int
-GetAnswer(nsAddrPtr, queryType, msg, msglen, iquery, hostPtr, isServer)
-    struct in_addr	*nsAddrPtr;
-    char		*msg;
-    int			queryType;
-    int			msglen;
-    Boolean		iquery;
-    register HostInfo	*hostPtr;
-    Boolean		isServer;
-{
-    register HEADER	*headerPtr;
-    register u_char	*cp;
-    querybuf		answer;
-    char		**aliasPtr;
-    u_char		*eom, *bp;
-    char		**addrPtr;
-    char		*namePtr;
-    char		*dnamePtr;
-    int			type, class;
-    int			qdcount, ancount, arcount, nscount, buflen;
-    int			origClass;
-    int			numAliases = 0;
-    int			numAddresses = 0;
-    int			n, i, j;
-    int			dlen;
-    int			status;
-    int			numServers;
-    size_t		s;
-    Boolean		haveAnswer;
-    Boolean		printedAnswers = FALSE;
-
-
-    /*
-     *  If the hostPtr was used before, free up the calloc'd areas.
-     */
-    FreeHostInfoPtr(hostPtr);
-
-    status = SendRequest(nsAddrPtr, msg, msglen, (u_char *) &answer,
-			 sizeof(answer), &n);
-
-    if (status != SUCCESS) {
-	    if (res.options & RES_DEBUG2)
-		    printf("SendRequest failed\n");
-	    return (status);
-    }
-    eom = (u_char *) &answer + n;
-
-    headerPtr = (HEADER *) &answer;
-
-    if (headerPtr->rcode != NOERROR) {
-	return (headerPtr->rcode);
-    }
-
-    qdcount = ntohs(headerPtr->qdcount);
-    ancount = ntohs(headerPtr->ancount);
-    arcount = ntohs(headerPtr->arcount);
-    nscount = ntohs(headerPtr->nscount);
-
-    /*
-     * If there are no answer, n.s. or additional records
-     * then return with an error.
-     */
-    if (ancount == 0 && nscount == 0 && arcount == 0) {
-	return (NO_INFO);
-    }
-
-
-    bp	   = hostbuf;
-    buflen = sizeof(hostbuf);
-    cp	   = (u_char *) &answer + HFIXEDSZ;
-
-    /* Skip over question section. */
-    while (qdcount-- > 0) {
-	    n = dn_skipname(cp, eom);
-	    if (n < 0)
-		    return (ERROR);
-	    cp += n + QFIXEDSZ;
-	    if (cp > eom)
-		    return (ERROR);
-    }
-
-    aliasPtr	= host_aliases;
-    addrPtr	= addr_list;
-    haveAnswer	= FALSE;
-
-    /*
-     * Scan through the answer resource records.
-     * Answers for address query types are saved.
-     * Other query type answers are just printed.
-     */
-    if (ancount != 0) {
-
-	if (headerPtr->ad)
-	    printf("Answer crypto-validated by server:\n");
-
-	if (!isServer && !headerPtr->aa) {
-	    printf("Non-authoritative answer:\n");
-	}
-
-	if (queryType != T_A && !(iquery && queryType == T_PTR)) {
-	    while (--ancount >= 0 && cp < eom) {
-		if ((cp = (u_char *)Print_rr(cp,
-		    (u_char *)&answer, eom, stdout)) == NULL) {
-		    return(ERROR);
-		}
-	    }
-	    printedAnswers = TRUE;
-	} else {
-	    while (--ancount >= 0 && cp < eom) {
-		n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-		if (n < 0)
-		    return(ERROR);
-		cp += n;
-		if (cp + 3 * INT16SZ + INT32SZ > eom)
-			return (ERROR);
-		type  = GetShort(cp);
-		class = GetShort(cp);
-		cp   += INT32SZ;	/* skip TTL */
-		dlen  = GetShort(cp);
-		if (cp + dlen > eom)
-			return (ERROR);
-		if (type == T_CNAME) {
-		    /*
-		     * Found an alias.
-		     */
-		    cp += dlen;
-		    if (aliasPtr >= &host_aliases[MAXALIASES-1]) {
-			continue;
-		    }
-		    *aliasPtr++ = (char *)bp;
-		    s = strlen((char *)bp) + 1;
-		    host_aliases_len[numAliases] = s;
-		    numAliases++;
-		    bp += s;
-		    buflen -= s;
-		    continue;
-		} else if (type == T_PTR) {
-		    /*
-		     *  Found a "pointer" to the real name.
-		     */
-		    n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-		    if (n < 0) {
-			cp += n;
-			continue;
-		    }
-		    cp += n;
-		    s = strlen((char *)bp) + 1;
-		    hostPtr->name = Calloc(1, s);
-		    memcpy(hostPtr->name, bp, s);
-		    haveAnswer = TRUE;
-		    break;
-		} else if (type != T_A) {
-		    cp += dlen;
-		    continue;
-		}
-		if (dlen != INADDRSZ)
-			return (ERROR);
-		if (haveAnswer) {
-		    /*
-		     * If we've already got 1 address, we aren't interested
-		     * in addresses with a different length or class.
-		     */
-		    if (dlen != hostPtr->addrLen) {
-			cp += dlen;
-			continue;
-		    }
-		    if (class != origClass) {
-			cp += dlen;
-			continue;
-		    }
-		} else {
-		    /*
-		     * First address: record its length and class so we
-		     * only save additonal ones with the same attributes.
-		     */
-		    hostPtr->addrLen = dlen;
-		    origClass = class;
-		    hostPtr->addrType = (class == C_IN) ? AF_INET : AF_UNSPEC;
-		    s = strlen((char *)bp) + 1;
-		    hostPtr->name = Calloc(1, s);
-		    memcpy(hostPtr->name, bp, s);
-		}
-		bp += (((u_int32_t)bp) % sizeof(align));
-
-		if (bp + dlen >= &hostbuf[sizeof(hostbuf)]) {
-		    if (res.options & RES_DEBUG) {
-			printf("Size (%d) too big\n", dlen);
-		    }
-		    break;
-		}
-		if (numAddresses >= MAXADDRS) {
-			printf("MAXADDRS exceeded: skipping address\n");
-			cp += dlen;
-			continue;
-		}
-		memcpy(*addrPtr++ = (char *)bp, cp, dlen);
-		bp += dlen;
-		cp += dlen;
-		numAddresses++;
-		haveAnswer = TRUE;
-	    }
-	}
-    }
-
-    if ((queryType == T_A || queryType == T_PTR) && haveAnswer) {
-
-	/*
-	 *  Go through the alias and address lists and return them
-	 *  in the hostPtr variable.
-	 */
-
-	if (numAliases > 0) {
-	    hostPtr->aliases =
-		(char **) Calloc(1 + numAliases, sizeof(char *));
-	    for (i = 0; i < numAliases; i++) {
-		hostPtr->aliases[i] = Calloc(1, host_aliases_len[i]);
-		memcpy(hostPtr->aliases[i], host_aliases[i],
-		       host_aliases_len[i]);
-	    }
-	    hostPtr->aliases[i] = NULL;
-	}
-	if (numAddresses > 0) {
-	    hostPtr->addrList =
-		(char **)Calloc(1+numAddresses, sizeof(char *));
-	    for (i = 0; i < numAddresses; i++) {
-		hostPtr->addrList[i] = Calloc(1, hostPtr->addrLen);
-		memcpy(hostPtr->addrList[i], addr_list[i], hostPtr->addrLen);
-	    }
-	    hostPtr->addrList[i] = NULL;
-	}
-#ifdef verbose
-	if (headerPtr->aa || nscount == 0) {
-	    hostPtr->servers = NULL;
-	    return (SUCCESS);
-	}
-#else
-	hostPtr->servers = NULL;
-	return (SUCCESS);
-#endif
-    }
-
-    /*
-     * At this point, for the T_A query type, only empty answers remain.
-     * For other query types, additional information might be found
-     * in the additional resource records part.
-     */
-
-    if (!headerPtr->aa && (queryType != T_A) && (nscount > 0 || arcount > 0)) {
-	if (printedAnswers) {
-	    putchar('\n');
-	}
-	printf("Authoritative answers can be found from:\n");
-    }
-
-    cp = (u_char *)res_skip((char *) &answer, 2, eom);
-
-    numServers = 0;
-    if (queryType != T_A) {
-	/*
-	 * If we don't need to save the record, just print it.
-	 */
-	while (--nscount >= 0 && cp < eom) {
-	    if ((cp = (u_char *)Print_rr(cp,
-		(u_char *) &answer, eom, stdout)) == NULL) {
-		return(ERROR);
-	    }
-	}
-    } else {
-	while (--nscount >= 0 && cp < eom) {
-	    /*
-	     *  Go through the NS records and retrieve the names of hosts
-	     *  that serve the requested domain.
-	     */
-
-	    n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-	    if (n < 0) {
-		return(ERROR);
-	    }
-	    cp += n;
-	    s = strlen((char *)bp) + 1;
-	    dnamePtr = Calloc(1, s);   /* domain name */
-	    memcpy(dnamePtr, bp, s);
-
-	    if (cp + 3 * INT16SZ + INT32SZ > eom)
-		    return (ERROR);
-	    type  = GetShort(cp);
-	    class = GetShort(cp);
-	    cp   += INT32SZ;	/* skip TTL */
-	    dlen  = GetShort(cp);
-	    if (cp + dlen > eom)
-		    return (ERROR);
-
-	    if (type != T_NS) {
-		cp += dlen;
-	    } else {
-		Boolean	found;
-
-		n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-		if (n < 0) {
-		    return(ERROR);
-		}
-		cp += n;
-		s = strlen((char *)bp) + 1;
-		namePtr = Calloc(1, s); /* server host name */
-		memcpy(namePtr, bp, s);
-
-		/*
-		 * Store the information keyed by the server host name.
-		 */
-		found = FALSE;
-		for (j = 0; j < numServers; j++) {
-		    if (strcmp(namePtr, server[j].name) == 0) {
-			found = TRUE;
-			free(namePtr);
-			break;
-		    }
-		}
-		if (found) {
-		    server[j].numDomains++;
-		    if (server[j].numDomains <= MAXDOMAINS) {
-			server[j].domain[server[j].numDomains-1] = dnamePtr;
-		    }
-		} else {
-		    if (numServers >= MAXSERVERS) {
-			break;
-		    }
-		    server[numServers].name = namePtr;
-		    server[numServers].domain[0] = dnamePtr;
-		    server[numServers].numDomains = 1;
-		    server[numServers].numAddresses = 0;
-		    numServers++;
-		}
-	    }
-	}
-    }
-
-    /*
-     * Additional resource records contain addresses of servers.
-     */
-    cp = (u_char *)res_skip((char *) &answer, 3, eom);
-
-    if (queryType != T_A) {
-	/*
-	 * If we don't need to save the record, just print it.
-	 */
-	while (--arcount >= 0 && cp < eom) {
-	    if ((cp = (u_char *)Print_rr(cp,
-		(u_char *) &answer, eom, stdout)) == NULL) {
-		return(ERROR);
-	    }
-	}
-    } else {
-	while (--arcount >= 0 && cp < eom) {
-	    n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-	    if (n < 0) {
-		break;
-	    }
-	    cp   += n;
-	    if (cp + 3 * INT16SZ + INT32SZ > eom)
-		    return (ERROR);
-	    type  = GetShort(cp);
-	    class = GetShort(cp);
-	    cp   += INT32SZ;	/* skip TTL */
-	    dlen  = GetShort(cp);
-	    if (cp + dlen > eom)
-		    return (ERROR);
-
-	    if (type != T_A)  {
-		cp += dlen;
-		continue;
-	    } else {
-		if (dlen != INADDRSZ)
-			return (ERROR);
-		for (j = 0; j < numServers; j++) {
-		    if (strcmp((char *)bp, server[j].name) == 0) {
-			server[j].numAddresses++;
-			if (server[j].numAddresses <= MAXADDRS) {
-			    server[j].address[server[j].numAddresses-1] = 
-				    				Calloc(1,dlen);
-			    memcpy(server[j].address[server[j].numAddresses-1],
-				   cp, dlen);
-			    break;
-			}
-		    }
-		}
-		cp += dlen;
-	    }
-	}
-    }
-
-    /*
-     * If we are returning name server info, transfer it to the hostPtr.
-     */
-    if (numServers > 0) {
-	hostPtr->servers = (ServerInfo **)
-				Calloc(numServers+1, sizeof(ServerInfo *));
-
-	for (i = 0; i < numServers; i++) {
-	    hostPtr->servers[i] = (ServerInfo *) Calloc(1, sizeof(ServerInfo));
-	    hostPtr->servers[i]->name = server[i].name;
-
-
-	    hostPtr->servers[i]->domains = (char **)
-				Calloc(server[i].numDomains+1,sizeof(char *));
-	    for (j = 0; j < server[i].numDomains; j++) {
-		hostPtr->servers[i]->domains[j] = server[i].domain[j];
-	    }
-	    hostPtr->servers[i]->domains[j] = NULL;
-
-
-	    hostPtr->servers[i]->addrList = (char **)
-				Calloc(server[i].numAddresses+1,sizeof(char *));
-	    for (j = 0; j < server[i].numAddresses; j++) {
-		hostPtr->servers[i]->addrList[j] = server[i].address[j];
-	    }
-	    hostPtr->servers[i]->addrList[j] = NULL;
-
-	}
-	hostPtr->servers[i] = NULL;
-    }
-
-    switch (queryType) {
-	case T_A:
-		return NONAUTH;
-	case T_PTR:
-		if (iquery)
-			return NO_INFO;
-		/* fall through */
-	default:
-		return SUCCESS;
-    }
-}
-
-/*
-*******************************************************************************
-*
-*  GetHostInfo --
-*
-*	Retrieves host name, address and alias information
-*	for a domain.
-*
-*	Algorithm from res_nsearch().
-*
-*  Results:
-*	ERROR		- res_nmkquery failed.
-*	+ return values from GetAnswer()
-*
-*******************************************************************************
-*/
-
-int
-GetHostInfoByName(nsAddrPtr, queryClass, queryType, name, hostPtr, isServer)
-    struct in_addr	*nsAddrPtr;
-    int			queryClass;
-    int			queryType;
-    char		*name;
-    HostInfo		*hostPtr;
-    Boolean		isServer;
-{
-    int			n;
-    register int	result;
-    register char	**domain;
-    const char		*cp;
-    Boolean		got_nodata = FALSE;
-    struct in_addr	ina;
-    Boolean		tried_as_is = FALSE;
-    char		tmp[NS_MAXDNAME];
-
-    /* Catch explicit addresses */
-    if ((queryType == T_A) && IsAddr(name, &ina)) {
-	hostPtr->name = Calloc(strlen(name)+3, 1);
-	(void)sprintf(hostPtr->name,"[%s]",name);
-	hostPtr->aliases = NULL;
-	hostPtr->servers = NULL;
-	hostPtr->addrType = AF_INET;
-	hostPtr->addrLen = INADDRSZ;
-	hostPtr->addrList = (char **)Calloc(2, sizeof(char *));
-	hostPtr->addrList[0] = Calloc(INT32SZ, sizeof(char));
-	memcpy(hostPtr->addrList[0], &ina, INADDRSZ);
-	hostPtr->addrList[1] = NULL;
-	return(SUCCESS);
-    }
-
-    result = NXDOMAIN;
-    for (cp = name, n = 0; *cp; cp++)
-	    if (*cp == '.')
-		    n++;
-    if (n == 0 && (cp = res_hostalias(&res, name, tmp, sizeof tmp))) {
-	    printf("Aliased to \"%s\"\n\n", cp);
-	    return (GetHostDomain(nsAddrPtr, queryClass, queryType,
-		    cp, (char *)NULL, hostPtr, isServer));
-    }
-
-    /*
-     * If there are dots in the name already, let's just give it a try
-     * 'as is'.  The threshold can be set with the "ndots" option.
-     */
-    if (n >= (int)res.ndots) {
-	    result = GetHostDomain(nsAddrPtr, queryClass, queryType,
-				   name, (char *)NULL, hostPtr, isServer);
-            if (result == SUCCESS)
-	        return (result);
-	    if (result == NO_INFO)
-		got_nodata++;
-            tried_as_is++;
-    }
-
-    /*
-     * We do at least one level of search if
-     *	- there is no dot and RES_DEFNAME is set, or
-     *	- there is at least one dot, there is no trailing dot,
-     *	  and RES_DNSRCH is set.
-     */
-    if ((n == 0 && res.options & RES_DEFNAMES) ||
-       (n != 0 && *--cp != '.' && res.options & RES_DNSRCH))
-	 for (domain = res.dnsrch; *domain; domain++) {
-	    result = GetHostDomain(nsAddrPtr, queryClass, queryType,
-		    name, *domain, hostPtr, isServer);
-	    /*
-	     * If no server present, give up.
-	     * If name isn't found in this domain,
-	     * keep trying higher domains in the search list
-	     * (if that's enabled).
-	     * On a NO_INFO error, keep trying, otherwise
-	     * a wildcard entry of another type could keep us
-	     * from finding this entry higher in the domain.
-	     * If we get some other error (negative answer or
-	     * server failure), then stop searching up,
-	     * but try the input name below in case it's fully-qualified.
-	     */
-	    if (result == SUCCESS || result == NO_RESPONSE)
-		    return result;
-	    if (result == NO_INFO)
-		    got_nodata++;
-	    if ((result != NXDOMAIN && result != NO_INFO) ||
-		(res.options & RES_DNSRCH) == 0)
-		    break;
-	}
-    /* if we have not already tried the name "as is", do that now.
-     * note that we do this regardless of how many dots were in the
-     * name or whether it ends with a dot.
-     */
-    if (!tried_as_is &&
-	(result = GetHostDomain(nsAddrPtr, queryClass, queryType,
-				name, (char *)NULL, hostPtr, isServer)
-	 ) == SUCCESS)
-	    return (result);
-    if (got_nodata)
-	result = NO_INFO;
-    return (result);
-}
-
-/*
- * Perform a query on the concatenation of name and domain,
- * removing a trailing dot from name if domain is NULL.
- */
-GetHostDomain(nsAddrPtr, queryClass, queryType, name, domain, hostPtr, isServer)
-    struct in_addr	*nsAddrPtr;
-    int			queryClass;
-    int			queryType;
-    char		*name, *domain;
-    HostInfo		*hostPtr;
-    Boolean		isServer;
-{
-    querybuf buf;
-    char nbuf[2*MAXDNAME+2];
-    char *longname = nbuf;
-    int n;
-
-    if (domain == NULL) {
-	    /*
-	     * Check for trailing '.';
-	     * copy without '.' if present.
-	     */
-	    n = strlen(name) - 1;
-	    if (name[n] == '.' && n < sizeof(nbuf) - 1) {
-		    memcpy(nbuf, name, n);
-		    nbuf[n] = '\0';
-	    } else
-		    longname = name;
-    } else {
-	    (void)sprintf(nbuf, "%.*s.%.*s",
-		    MAXDNAME, name, MAXDNAME, domain);
-	    longname = nbuf;
-    }
-    n = res_nmkquery(&res, QUERY, longname, queryClass, queryType,
-		     NULL, 0, 0, buf.qb2, sizeof(buf));
-    if (n < 0) {
-	if (res.options & RES_DEBUG) {
-	    printf("Res_nmkquery failed\n");
-	}
-	return (ERROR);
-    }
-
-    n = GetAnswer(nsAddrPtr, queryType, (char *)&buf, n, 0, hostPtr, isServer);
-
-    /*
-     * GetAnswer didn't find a name, so set it to the specified one.
-     */
-    if (n == NONAUTH) {
-	if (hostPtr->name == NULL) {
-	    size_t len = strlen(longname) + 1;
-
-	    hostPtr->name = Calloc(len, sizeof(char));
-	    memcpy(hostPtr->name, longname, len);
-	}
-    }
-    return(n);
-}
-
-
-/*
-*******************************************************************************
-*
-*  GetHostInfoByAddr --
-*
-*	Performs a PTR lookup in in-addr.arpa to find the host name
-*	that corresponds to the given address.
-*
-*  Results:
-*	ERROR		- res_nmkquery failed.
-*	+ return values from GetAnswer()
-*
-*******************************************************************************
-*/
-
-int
-GetHostInfoByAddr(nsAddrPtr, address, hostPtr)
-    struct in_addr	*nsAddrPtr;
-    struct in_addr	*address;
-    HostInfo		*hostPtr;
-{
-    int		n;
-    querybuf	buf;
-    char	qbuf[MAXDNAME];
-    char	*p = (char *) &address->s_addr;
-
-    (void)sprintf(qbuf, "%u.%u.%u.%u.in-addr.arpa",
-	    ((unsigned)p[3] & 0xff),
-	    ((unsigned)p[2] & 0xff),
-	    ((unsigned)p[1] & 0xff),
-	    ((unsigned)p[0] & 0xff));
-    n = res_nmkquery(&res, QUERY, qbuf, C_IN, T_PTR, NULL, 0, NULL,
-		     buf.qb2, sizeof buf);
-    if (n < 0) {
-	if (res.options & RES_DEBUG) {
-	    printf("res_nmkquery() failed\n");
-	}
-	return (ERROR);
-    }
-    n = GetAnswer(nsAddrPtr, T_PTR, (char *) &buf, n, 1, hostPtr, 1);
-    if (n == SUCCESS) {
-	hostPtr->addrType = AF_INET;
-	hostPtr->addrLen = 4;
-	hostPtr->addrList = (char **)Calloc(2, sizeof(char *));
-	hostPtr->addrList[0] = Calloc(INT32SZ, sizeof(char));
-	memcpy(hostPtr->addrList[0], p, INADDRSZ);
-	hostPtr->addrList[1] = NULL;
-    }
-    return n;
-}
-
-/*
-*******************************************************************************
-*
-*  FreeHostInfoPtr --
-*
-*	Deallocates all the calloc'd areas for a HostInfo variable.
-*
-*******************************************************************************
-*/
-
-void
-FreeHostInfoPtr(hostPtr)
-    register HostInfo *hostPtr;
-{
-    int i, j;
-
-    if (hostPtr->name != NULL) {
-	free(hostPtr->name);
-	hostPtr->name = NULL;
-    }
-
-    if (hostPtr->aliases != NULL) {
-	i = 0;
-	while (hostPtr->aliases[i] != NULL) {
-	    free(hostPtr->aliases[i]);
-	    i++;
-	}
-	free((char *)hostPtr->aliases);
-	hostPtr->aliases = NULL;
-    }
-
-    if (hostPtr->addrList != NULL) {
-	i = 0;
-	while (hostPtr->addrList[i] != NULL) {
-	    free(hostPtr->addrList[i]);
-	    i++;
-	}
-	free((char *)hostPtr->addrList);
-	hostPtr->addrList = NULL;
-    }
-
-    if (hostPtr->servers != NULL) {
-	i = 0;
-	while (hostPtr->servers[i] != NULL) {
-
-	    if (hostPtr->servers[i]->name != NULL) {
-		free(hostPtr->servers[i]->name);
-	    }
-
-	    if (hostPtr->servers[i]->domains != NULL) {
-		j = 0;
-		while (hostPtr->servers[i]->domains[j] != NULL) {
-		    free(hostPtr->servers[i]->domains[j]);
-		    j++;
-		}
-		free((char *)hostPtr->servers[i]->domains);
-	    }
-
-	    if (hostPtr->servers[i]->addrList != NULL) {
-		j = 0;
-		while (hostPtr->servers[i]->addrList[j] != NULL) {
-		    free(hostPtr->servers[i]->addrList[j]);
-		    j++;
-		}
-		free((char *)hostPtr->servers[i]->addrList);
-	    }
-	    free((char *)hostPtr->servers[i]);
-	    i++;
-	}
-	free((char *)hostPtr->servers);
-	hostPtr->servers = NULL;
-    }
-}
diff --git a/contrib/bind/bin/nslookup/list.c b/contrib/bind/bin/nslookup/list.c
deleted file mode 100644
index db46d7f6da55a..0000000000000
--- a/contrib/bind/bin/nslookup/list.c
+++ /dev/null
@@ -1,650 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char sccsid[] = "@(#)list.c	5.23 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: list.c,v 8.23 2000/03/30 23:25:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  list.c --
- *
- *	Routines to obtain info from name and finger servers.
- *
- *	Adapted from 4.3BSD BIND ns_init.c and from finger.c.
- *
- *******************************************************************************
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <limits.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include "port_after.h"
-
-#include "res.h"
-
-extern char *pager;
-
-typedef union {
-	HEADER qb1;
-	u_char qb2[PACKETSZ];
-} querybuf;
-
-extern HostInfo	*defaultPtr;
-extern HostInfo	curHostInfo;
-extern int	curHostValid;
-extern int	queryType;
-extern int	queryClass;
-
-static int sockFD = -1;
-int ListSubr();
-
-/*
- *  During a listing to a file, hash marks are printed
- *  every HASH_SIZE records.
- */
-
-#define HASH_SIZE 50
-
-
-/*
- *******************************************************************************
- *
- *  ListHosts --
- *  ListHostsByType --
- *
- *	Requests the name server to do a zone transfer so we
- *	find out what hosts it knows about.
- *
- *	For ListHosts, there are five types of output:
- *	- Internet addresses (default)
- *	- cpu type and operating system (-h option)
- *	- canonical and alias names  (-a option)
- *	- well-known service names  (-s option)
- *	- ALL records (-d option)
- *	ListHostsByType prints records of the default type or of a speicific
- *	type.
- *
- *	To see all types of information sorted by name, do the following:
- *	  ls -d domain.edu > file
- *
- *  Results:
- *	SUCCESS		the listing was successful.
- *	ERROR		the server could not be contacted because
- *			a socket could not be obtained or an error
- *			occured while receiving, or the output file
- *			could not be opened.
- *
- *******************************************************************************
- */
-
-void
-ListHostsByType(char *string, int putToFile) {
-	char *namePtr, name[NAME_LEN], option[NAME_LEN];
-	int i, j, qtype, result;
-
-	/*
-	 * Parse the command line. It maybe of the form "ls -t domain"
-	 * or "ls -t type domain".
-	 */
-
-	/* simulate sscanf(string, " ls -t %s %s", option, name) */
-	i = matchString(" ls -t ", string);
-	if (i > 0) {
-		j = pickString(string + i, option, sizeof option);
-		if (j > 0) {
-			j = pickString(string + i + j, name, sizeof name);
-			if (j > 0)
-				i = 2;
-			else
-				i = 1;
-		} else {
-			i = 0;
-		}
-	}
-			
-	if (putToFile && i == 2 && name[0] == '>')
-		i--;
-	if (i == 2) {
-		qtype = StringToType(option, -1, stderr);
-		if (qtype == -1)
-			return;
-		namePtr = name;
-	} else if (i == 1) {
-		namePtr = option;
-		qtype = queryType;
-	} else {
-		fprintf(stderr, "*** ls: invalid request %s\n", string);
-		return;
-	}
-	result = ListSubr(qtype, namePtr, putToFile ? string : NULL);
-	if (result != SUCCESS)
-		fprintf(stderr, "*** Can't list domain %s: %s\n", 
-			namePtr, DecodeError(result));
-}
-
-void
-ListHosts(char *string, int putToFile) {
-	char *namePtr, name[NAME_LEN], option[NAME_LEN];
-	int i, j, qtype, result;
-
-	/*
-	 *  Parse the command line. It maybe of the form "ls domain",
-	 *  "ls -X domain".
-	 */
-
-	/* simulate i = sscanf(string, " ls %s %s", option, name) */
-	i = matchString(" ls ", string);
-	if (i > 0) {
-		j = pickString(string + i, option, sizeof option);
-		if (j > 0) {
-			j = pickString(string + i + j, name, sizeof name);
-			if (j > 0)
-				i = 2;
-			else
-				i = 1;
-		} else {
-			i = 0;
-		}
-	}
-	
-	if (putToFile && i == 2 && name[0] == '>')
-		i--;
-	if (i == 2) {
-		if (strcmp("-a", option) == 0)
-			qtype = T_CNAME;
-		else if (strcmp("-h", option) == 0)
-			qtype = T_HINFO;
-		else if (strcmp("-m", option) == 0)
-			qtype = T_MX;
-		else if (strcmp("-p", option) == 0)
-			qtype = T_PX;
-		else if (strcmp("-s", option) == 0)
-			qtype = T_WKS;
-		else if (strcmp("-d", option) == 0)
-			qtype = T_ANY;
-		else if (strcmp("-n", option) == 0)
-			qtype = T_NAPTR;
-		else
-			qtype = T_A;
-		namePtr = name;
-	} else if (i == 1) {
-		namePtr = option;
-		qtype = T_A;
-	} else {
-		fprintf(stderr, "*** ls: invalid request %s\n",string);
-		return;
-	}
-	result = ListSubr(qtype, namePtr, putToFile ? string : NULL);
-	if (result != SUCCESS)
-		fprintf(stderr, "*** Can't list domain %s: %s\n", 
-			namePtr, DecodeError(result));
-}
-
-int
-ListSubr(int qtype, char *domain, char *cmd) {
-	static u_char *answer = NULL;
-	static int answerLen = 0;
-
-	ns_msg handle;
-	querybuf buf;
-	struct sockaddr_in sin;
-	HEADER *headerPtr;
-	int msglen, amtToRead, numRead, n, count, soacnt;
-	u_int len;
-	int numAnswers = 0;
-	int numRecords = 0;
-	u_char tmp[INT16SZ], *cp;
-	char soaname[2][NAME_LEN], file[PATH_MAX];
-	enum { NO_ERRORS, ERR_READING_LEN, ERR_READING_MSG, ERR_PRINTING }
-		error = NO_ERRORS;
-
-	/*
-	 * Create a query packet for the requested domain name.
-	 */
-	msglen = res_nmkquery(&res, QUERY, domain, queryClass, T_AXFR,
-			      NULL, 0, 0, buf.qb2, sizeof buf);
-	if (msglen < 0) {
-		if (_res.options & RES_DEBUG)
-			fprintf(stderr, "*** ls: res_nmkquery failed\n");
-		return (ERROR);
-	}
-
-	memset(&sin, 0, sizeof sin);
-	sin.sin_family = AF_INET;
-	sin.sin_port = htons(nsport);
-
-	/*
-	 * Check to see if we have the address of the server or the
-	 * address of a server who knows about this domain.
-	 *
-	 * For now, just use the first address in the list. XXX.
-	 */
-
-	if (defaultPtr->addrList != NULL)
-		sin.sin_addr = *(struct in_addr *) defaultPtr->addrList[0];
-	else
-		sin.sin_addr = *(struct in_addr *)
-			defaultPtr->servers[0]->addrList[0];
-
-	/*
-	 *  Set up a virtual circuit to the server.
-	 */
-	sockFD = socket(AF_INET, SOCK_STREAM, 0);
-	if (sockFD < 0) {
-		perror("ls: socket");
-		return (ERROR);
-	}
-	if (connect(sockFD, (struct sockaddr *)&sin, sizeof(sin)) < 0) {
-		int e;
-
-		if (errno == ECONNREFUSED)
-			e = NO_RESPONSE;
-		else {
-			perror("ls: connect");
-			e = ERROR;
-		}
-		(void) close(sockFD);
-		sockFD = -1;
-		return (e);
-	}
-
-	/*
-	 * Send length & message for zone transfer
-	 */
-	ns_put16(msglen, tmp);
-        if (write(sockFD, (char *)tmp, INT16SZ) != INT16SZ ||
-            write(sockFD, (char *)buf.qb2, msglen) != msglen) {
-		perror("ls: write");
-		(void) close(sockFD);
-		sockFD = -1;
-		return(ERROR);
-	}
-
-	fprintf(stdout,"[%s]\n", (defaultPtr->addrList != NULL)
-		? defaultPtr->name : defaultPtr->servers[0]->name);
-
-	if (cmd == NULL) {
-		filePtr = stdout;
-	} else {
-		filePtr = OpenFile(cmd, file, sizeof file);
-		if (filePtr == NULL) {
-			fprintf(stderr, "*** Can't open %s for writing\n",
-				file);
-			(void) close(sockFD);
-			sockFD = -1;
-			return (ERROR);
-		}
-		fprintf(filePtr, "> %s\n", cmd);
-		fprintf(filePtr, "[%s]\n", (defaultPtr->addrList != NULL)
-			? defaultPtr->name : defaultPtr->servers[0]->name);
-	}
-
-	soacnt = 0;
-	while (soacnt < 2) {
-		/*
-		 * Read the length of the response.
-		 */
-
-		cp = tmp;  amtToRead = INT16SZ;
-		while (amtToRead > 0 &&
-		       (numRead = read(sockFD, cp, amtToRead)) > 0) {
-			cp += numRead;
-			amtToRead -= numRead;
-		}
-		if (numRead <= 0) {
-			error = ERR_READING_LEN;
-			break;
-		}
-
-		len = ns_get16(tmp);
-		if (len == 0)
-			break;	/* nothing left to read */
-
-		/*
-		 * If the server sent too much data to fit the existing
-		 * buffer, allocate a new one.
-		 */
-		if (len > (u_int)answerLen) {
-			if (answerLen != 0)
-				free(answer);
-			answerLen = len;
-			answer = (u_char *)Malloc(answerLen);
-		}
-
-		/*
-		 * Read the response.
-		 */
-		amtToRead = len;  cp = answer;
-		while (amtToRead > 0 &&
-		       (numRead = read(sockFD, cp, amtToRead)) > 0) {
-			cp += numRead;
-			amtToRead -= numRead;
-		}
-		if (numRead <= 0) {
-			error = ERR_READING_MSG;
-			break;
-		}
-
-		if (ns_initparse(answer, cp - answer, &handle) < 0) {
-			perror("ns_initparse");
-			error = ERR_PRINTING;
-			break;
-		}
-		if (ns_msg_getflag(handle, ns_f_rcode) != ns_r_noerror ||
-		    ns_msg_count(handle, ns_s_an) == 0) {
-			/* Signalled protocol error, or empty message. */
-			error = ERR_PRINTING;
-			break;
-		}
-
-		for (;;) {
-			static char origin[NS_MAXDNAME], name_ctx[NS_MAXDNAME];
-			const char *name;
-			char buf[2048];   /* XXX need to malloc/realloc. */
-			ns_rr rr;
-
-			if (ns_parserr(&handle, ns_s_an, -1, &rr)) {
-				if (errno != ENODEV) {
-					perror("ns_parserr");
-					error = ERR_PRINTING;
-				}
-				break;
-			}
-			name = ns_rr_name(rr);
-			if (origin[0] == '\0' && name[0] != '\0') {
-				if (strcmp(name, ".") != 0)
-					strcpy(origin, name);
-				fprintf(filePtr, "$ORIGIN %s.\n", origin);
-				if (strcmp(name, ".") == 0)
-					strcpy(origin, name);
-				strcpy(name_ctx, "@");
-			}
-			if (qtype == T_ANY || ns_rr_type(rr) == qtype) {
-				if (ns_sprintrr(&handle, &rr, name_ctx, origin,
-						buf, sizeof buf) < 0) {
-					perror("ns_sprintrr");
-					error = ERR_PRINTING;
-					break;
-				}
-				strcpy(name_ctx, name);
-				numRecords++;
-				fputs(buf, filePtr);
-				fputc('\n', filePtr);
-			}
-			if (ns_rr_type(rr) == T_SOA) {
-				strcpy(soaname[soacnt], name);
-				if (soacnt == 0)
-					soacnt = 1;
-				else if (ns_samename(soaname[0],
-						     soaname[1]) == 1) {
-					soacnt = 2;
-					/* This means we're finished.
-					 * But we've to reset origin and
-					 * name_ctx now !  */
-					origin[0] = name_ctx[0] ='\0';
-				}
-			}
-		}
-		if (error != NO_ERRORS)
-			break;
-		numAnswers++;
-		if (cmd != NULL && ((numAnswers % HASH_SIZE) == 0)) {
-			fprintf(stdout, "#");
-			fflush(stdout);
-		}
-	}
-
-	if (cmd != NULL)
-		fprintf(stdout, "%sReceived %d answer%s (%d record%s).\n",
-			(numAnswers >= HASH_SIZE) ? "\n" : "",
-			numAnswers, (numAnswers != 1) ? "s" : "",
-			numRecords, (numRecords != 1) ? "s" : "");
-
-	(void) close(sockFD);
-	sockFD = -1;
-	if (cmd != NULL && filePtr != NULL) {
-		fclose(filePtr);
-		filePtr = NULL;
-	}
-
-	switch (error) {
-	case NO_ERRORS:
-		return (SUCCESS);
-
-	case ERR_READING_LEN:
-		return (ERROR);
-
-	case ERR_PRINTING:
-		return (ERROR);
-
-	case ERR_READING_MSG:
-		headerPtr = (HEADER *) answer;
-		fprintf(stderr,"*** ls: error receiving zone transfer:\n");
-		fprintf(stderr,
-	       "  result: %s, answers = %d, authority = %d, additional = %d\n",
-			p_rcode(headerPtr->rcode),
-			ntohs(headerPtr->ancount), ntohs(headerPtr->nscount),
-			ntohs(headerPtr->arcount));
-		return (ERROR);
-	default:
-		return (ERROR);
-	}
-}
-
-/*
- *******************************************************************************
- *
- *   Finger --
- *
- *	Connects with the finger server for the current host
- *	to request info on the specified person (long form)
- *	who is on the system (short form).
- *
- *  Results:
- *	SUCCESS		the finger server was contacted.
- *	ERROR		the server could not be contacted because
- *			a socket could not be obtained or connected
- *			to or the service could not be found.
- *
- *******************************************************************************
- */
-
-Finger(string, putToFile)
-    char *string;
-    int  putToFile;
-{
-	struct servent		*sp;
-	struct sockaddr_in	sin;
-	FILE		*f;
-	int		c;
-	int		lastc;
-	char			name[NAME_LEN];
-	char			file[PATH_MAX];
-	int		i;
-
-	/*
-	 *  We need a valid current host info to get an inet address.
-	 */
-	if (!curHostValid) {
-	    fprintf(stderr, "Finger: no current host defined.\n");
-	    return (ERROR);
-	}
-
-	/* simulate: sscanf("finger %s") ; */
-
-	i = matchString(" finger ", string);
-	if (i > 0) {
-		i = pickString(string + i, name, sizeof name);
-		if (i > 0) {
-			i = 1 ;
-		}
-		/* note that if the argument to the finger command is
-		   bigger than sizeof name it will be treated as if there
-		   was no argument. */
-	}
-	
-	if (i == 1) {
-	    if (putToFile && (name[0] == '>')) {
-		name[0] = '\0';
-	    }
-	} else {
-	    name[0] = '\0';
-	}
-
-	sp = getservbyname("finger", "tcp");
-	if (sp == 0) {
-	    fprintf(stderr, "Finger: unknown service\n");
-	    return (ERROR);
-	}
-
-	memset(&sin, 0, sizeof sin);
-	sin.sin_family	= curHostInfo.addrType;
-	sin.sin_port	= sp->s_port;
-	memcpy(&sin.sin_addr, curHostInfo.addrList[0], curHostInfo.addrLen);
-
-	/*
-	 *  Set up a virtual circuit to the host.
-	 */
-
-	sockFD = socket(curHostInfo.addrType, SOCK_STREAM, 0);
-	if (sockFD < 0) {
-	    fflush(stdout);
-	    perror("finger: socket");
-	    return (ERROR);
-	}
-
-	if (connect(sockFD, (struct sockaddr *)&sin, sizeof (sin)) < 0) {
-	    fflush(stdout);
-	    perror("finger: connect");
-	    close(sockFD);
-	    sockFD = -1;
-	    return (ERROR);
-	}
-
-	if (!putToFile) {
-	    filePtr = stdout;
-	} else {
-	    filePtr = OpenFile(string, file, sizeof file);
-	    if (filePtr == NULL) {
-		fprintf(stderr, "*** Can't open %s for writing\n", file);
-		close(sockFD);
-		sockFD = -1;
-		return(ERROR);
-	    }
-	    fprintf(filePtr,"> %s\n", string);
-	}
-	fprintf(filePtr, "[%s]\n", curHostInfo.name);
-
-	if (name[0] != '\0') {
-	    write(sockFD, "/W ", 3);
-	}
-	write(sockFD, name, strlen(name));
-	write(sockFD, "\r\n", 2);
-	f = fdopen(sockFD, "r");
-	lastc = '\n';
-	while ((c = getc(f)) != EOF) {
-	    switch (c) {
-		case 0210:
-		case 0211:
-		case 0212:
-		case 0214:
-			c -= 0200;
-			break;
-		case 0215:
-			c = '\n';
-			break;
-	    }
-	    putc(lastc = c, filePtr);
-	}
-	if (lastc != '\n') {
-	    putc('\n', filePtr);
-	}
-	putc('\n', filePtr);
-
-	close(sockFD);
-	sockFD = -1;
-
-	if (putToFile) {
-	    fclose(filePtr);
-	    filePtr = NULL;
-	}
-	return (SUCCESS);
-}
-
-void
-ListHost_close()
-{
-    if (sockFD != -1) {
-	(void) close(sockFD);
-	sockFD = -1;
-    }
-}
diff --git a/contrib/bind/bin/nslookup/main.c b/contrib/bind/bin/nslookup/main.c
deleted file mode 100644
index f78d9273cd1f2..0000000000000
--- a/contrib/bind/bin/nslookup/main.c
+++ /dev/null
@@ -1,1214 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-char copyright[] =
-"@(#) Copyright (c) 1985,1989 Regents of the University of California.\n\
- All rights reserved.\n\
- @(#) Portions Copyright (c) 1996-1999 Internet Software Consortium.\n";
-#endif /* not lint */
-
-#ifndef lint
-static const char sccsid[] = "@(#)main.c	5.42 (Berkeley) 3/3/91";
-static const char rcsid[] = "$Id: main.c,v 8.14 2000/03/30 23:25:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- ******************************************************************************
- *  
- *   main.c --
- *  
- *	Main routine and some action routines for the name server
- *	lookup program.
- *
- *	Andrew Cherenson
- *	U.C. Berkeley Computer Science Div.
- *	CS298-26, Fall 1985
- *  
- ******************************************************************************
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <limits.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <setjmp.h>
-#include <signal.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#include "res.h"
-#include "pathnames.h"
-
-/*
- * Name of a top-level name server. Can be changed with 
- * the "set root" command.
- */
-
-#ifndef ROOT_SERVER
-#define		ROOT_SERVER "a.root-servers.net."
-#endif
-char		rootServerName[NAME_LEN] = ROOT_SERVER;
-
-/*
- * Declare a resolver context.
- */
-
-struct __res_state res;
-
-
-/*
- *  Info about the most recently queried host.
- */
-
-HostInfo	curHostInfo;
-int		curHostValid = FALSE;
-
-
-/*
- *  Info about the default name server.
- */
-
-HostInfo	*defaultPtr = NULL;
-char		defaultServer[NAME_LEN];
-struct in_addr	defaultAddr;
-
-
-/*
- *  Initial name server query type is Address.
- */
-
-int		queryType = T_A;
-int		queryClass = C_IN;
-
-/*
- * Stuff for Interrupt (control-C) signal handler.
- */
-
-extern SIG_FN	IntrHandler();
-FILE		*filePtr;
-jmp_buf		env;
-
-
-/*
- * Browser command for help.
- */
-char		*pager;
-
-static void CvtAddrToPtr();
-static void ReadRC();
-
-/*
- * Forward declarations.
- */
-void LocalServer(HostInfo *defaultPtr);
-void res_re_init(void);
-void res_dnsrch(char *cp);
-
-
-/*
- ******************************************************************************
- *
- *  main --
- *
- *	Initializes the resolver library and determines the address
- *	of the initial name server. The yylex routine is used to
- *	read and perform commands.
- *
- ******************************************************************************
- */
-
-main(argc, argv)
-    int		argc;
-    char	**argv;
-{
-    char	*wantedHost = NULL;
-    Boolean	useLocalServer;
-    int		result;
-    int		i;
-    struct hostent	*hp;
-
-    /*
-     *  Initialize the resolver library routines.
-     */
-
-    if (res_ninit(&res) == -1) {
-	fprintf(stderr,"*** Can't initialize resolver.\n");
-	exit(1);
-    }
-
-    /*
-     *  Allocate space for the default server's host info and
-     *  find the server's address and name. If the resolver library
-     *  already has some addresses for a potential name server,
-     *  then use them. Otherwise, see if the current host has a server.
-     *  Command line arguments may override the choice of initial server. 
-     */
-
-    defaultPtr = (HostInfo *) Calloc(1, sizeof(HostInfo));
-
-    /*
-     * Parse the arguments:
-     *  no args =  go into interactive mode, use default host as server
-     *	1 arg	=  use as host name to be looked up, default host will be server
-     *		   non-interactive mode
-     *  2 args	=  1st arg: 
-     *		     if it is '-', then 
-     *		        ignore but go into interactive mode
-     *		     else 
-     *		         use as host name to be looked up, 
-     *			 go into non-interactive mode
-     *		2nd arg: name or inet address of server
-     *
-     *	"Set" options are specified with a leading - and must come before
-     *	any arguments. For example, to find the well-known services for
-     *  a host, type "nslookup -query=wks host"
-     */
-
-    ReadRC();			/* look for options file */
-
-    ++argv; --argc;		/* skip prog name */
-
-    while (argc && *argv[0] == '-' && argv[0][1]) {
-	(void) SetOption (&(argv[0][1]));
-	++argv; --argc;
-    }
-    if (argc > 2) {
-	Usage();
-    } 
-    if (argc && *argv[0] != '-') {
-	wantedHost = *argv;	/* name of host to be looked up */
-    }
-
-    useLocalServer = FALSE;
-    if (argc == 2) {
-	struct in_addr addr;
-
-	/*
-	 * Use an explicit name server. If the hostname lookup fails,
-	 * default to the server(s) in resolv.conf.
-	 */ 
-
-	if (inet_aton(*++argv, &addr)) {
-	    res.nscount = 1;
-	    res.nsaddr.sin_addr = addr;
-	} else {
-	    hp = gethostbyname(*argv);
-	    if (hp == NULL) {
-		fprintf(stderr, "*** Can't find server address for '%s': ", 
-			*argv);
-		herror((char *)NULL);
-		fputc('\n', stderr);
-	    } else {
-		for (i = 0; i < MAXNS && hp->h_addr_list[i] != NULL; i++) {
-		    memcpy(&res.nsaddr_list[i].sin_addr, hp->h_addr_list[i],
-			   hp->h_length);
-		}
-		res.nscount = i;
-	    } 
-	}
-    }
-
-
-    if (res.nscount == 0 || useLocalServer) {
-	LocalServer(defaultPtr);
-    } else {
-	for (i = 0; i < res.nscount; i++) {
-	    if (res.nsaddr_list[i].sin_addr.s_addr == INADDR_ANY) {
-	        LocalServer(defaultPtr);
-		break;
-	    } else {
-		result = GetHostInfoByAddr(&(res.nsaddr_list[i].sin_addr), 
-				    &(res.nsaddr_list[i].sin_addr), 
-				    defaultPtr);
-		if (result != SUCCESS) {
-		    fprintf(stderr,
-		    "*** Can't find server name for address %s: %s\n", 
-		       inet_ntoa(res.nsaddr_list[i].sin_addr), 
-		       DecodeError(result));
-		} else {
-		    defaultAddr = res.nsaddr_list[i].sin_addr;
-		    break;
-		}
-	    }
-	}
-
-	/*
-	 *  If we have exhausted the list, tell the user about the
-	 *  command line argument to specify an address.
-	 */
-
-	if (i == res.nscount) {
-	    fprintf(stderr, "*** Default servers are not available\n");
-	    exit(1);
-	}
-
-    }
-    strcpy(defaultServer, defaultPtr->name);
-
-
-#ifdef DEBUG
-#ifdef DEBUG2
-    res.options |= RES_DEBUG2;
-#endif
-    res.options |= RES_DEBUG;
-    res.retry    = 2;
-#endif /* DEBUG */
-
-    /*
-     * If we're in non-interactive mode, look up the wanted host and quit.
-     * Otherwise, print the initial server's name and continue with
-     * the initialization.
-     */
-
-    if (wantedHost != (char *) NULL) {
-	LookupHost(wantedHost, 0);
-    } else {
-	PrintHostInfo(stdout, "Default Server:", defaultPtr);
-
-	pager = getenv("PAGER");
-	if (pager == NULL) {
-	    pager = _PATH_PAGERCMD;
-	}
-
-	/*
-	 * Setup the environment to allow the interrupt handler to return here.
-	 */
-
-	(void) setjmp(env);
-
-	/* 
-	 * Return here after a longjmp.
-	 */
-
-	signal(SIGINT, IntrHandler);
-	signal(SIGPIPE, SIG_IGN);
-
-	/*
-	 * Read and evaluate commands. The commands are described in commands.l
-	 * Yylex returns 0 when ^D or 'exit' is typed. 
-	 */
-
-	printf("> ");
-	fflush(stdout);
-	while(yylex()) {
-	    printf("> ");
-	    fflush(stdout);
-	}
-    }
-    exit(0);
-}
-
-
-void
-LocalServer(defaultPtr)
-    HostInfo *defaultPtr;
-{
-    char	hostName[NAME_LEN];
-
-    (void) gethostname(hostName, sizeof(hostName));
-
-    defaultAddr.s_addr = htonl(INADDR_ANY);
-    (void) GetHostInfoByName(&defaultAddr, C_IN, T_A,
-			     "0.0.0.0", defaultPtr, 1);
-    free(defaultPtr->name);
-    defaultPtr->name = Calloc(1, sizeof(hostName)+1);
-    strcpy(defaultPtr->name, hostName);
-}
-
-
-/*
- ******************************************************************************
- *
- *  Usage --
- *
- *	Lists the proper methods to run the program and exits.
- *
- ******************************************************************************
- */
-
-Usage()
-{
-    fprintf(stderr, "Usage:\n");
-    fprintf(stderr,
-"   nslookup [-opt ...]             # interactive mode using default server\n");
-    fprintf(stderr,
-"   nslookup [-opt ...] - server    # interactive mode using 'server'\n");
-    fprintf(stderr,
-"   nslookup [-opt ...] host        # just look up 'host' using default server\n");
-    fprintf(stderr,
-"   nslookup [-opt ...] host server # just look up 'host' using 'server'\n");
-    exit(1);
-}
-
-/*
- ******************************************************************************
- *
- * IsAddr --
- *
- *	Returns TRUE if the string looks like an Internet address.
- *	A string with a trailing dot is not an address, even if it looks
- *	like one.
- *
- ******************************************************************************
- */
-
-Boolean
-IsAddr(host, addrPtr)
-    char *host;
-    struct in_addr *addrPtr;	/* If return TRUE, contains IP address */
-{
-    register char *cp;
-
-    if (isdigit(host[0])) {
-	    /* Make sure it has only digits and dots. */
-	    for (cp = host; *cp; ++cp) {
-		if (!isdigit(*cp) && *cp != '.') 
-		    return FALSE;
-	    }
-	    /* If it has a trailing dot, don't treat it as an address. */
-	    if (*--cp != '.') { 
-		return inet_aton(host, addrPtr);
-	    }
-    }
-    return FALSE;
-}
-
-
-/*
- ******************************************************************************
- *
- *  SetDefaultServer --
- *
- *	Changes the default name server to the one specified by
- *	the first argument. The command "server name" uses the current 
- *	default server to lookup the info for "name". The command
- *	"lserver name" uses the original server to lookup "name".
- *
- *  Side effects:
- *	This routine will cause a core dump if the allocation requests fail.
- *
- *  Results:
- *	SUCCESS		The default server was changed successfully.
- *	NONAUTH		The server was changed but addresses of
- *			other servers who know about the requested server
- *			were returned.
- *	Errors		No info about the new server was found or
- *			requests to the current server timed-out.
- *
- ******************************************************************************
- */
-
-int
-SetDefaultServer(string, local)
-    char	*string;
-    Boolean	local;
-{
-    register HostInfo	*newDefPtr;
-    struct in_addr	*servAddrPtr;
-    struct in_addr	addr;
-    char		newServer[NAME_LEN];
-    int			result;
-    int			i;
-    int			j;
-
-    /*
-     *  Parse the command line. It maybe of the form "server name",
-     *  "lserver name" or just "name".
-     */
-
-    if (local) {
-	i = matchString (" lserver ", string);
-	if (i > 0) {
-	    j = pickString(string + i, newServer, sizeof newServer);
-	    if (j == 0) { /* value was too big for newServer variable */
-	    	fprintf(stderr,
-			"SetDefaultServer: invalid name: %s\n",  
-			string + i);
-	    	return(ERROR);
-	    }
-	}
-    } else {
-	    i = matchString(" server ", string);
-	    if (i > 0) {
-		j = pickString(string + i, newServer, sizeof newServer);
-		if (j == 0) { /* value was too big for newServer variable */
-	    	    fprintf(stderr,
-			    "SetDefaultServer: invalid name: %s\n",  
-			    string + i);
-	    	    return(ERROR);
-		}
-	    }
-    }
-    
-    if (i == 0) {
-	i = pickString(string, newServer, sizeof newServer);
-	if (i == 0) {      /* value was too big for newServer variable */
-	    fprintf(stderr,"SetDefaultServer: invalid name: %s\n",  string);
-	    return(ERROR);
-	}
-    }
-
-    /*
-     * Allocate space for a HostInfo variable for the new server. Don't
-     * overwrite the old HostInfo struct because info about the new server
-     * might not be found and we need to have valid default server info.
-     */
-
-    newDefPtr = (HostInfo *) Calloc(1, sizeof(HostInfo));
-
-
-    /*
-     *	A 'local' lookup uses the original server that the program was
-     *  initialized with.
-     *
-     *  Check to see if we have the address of the server or the
-     *  address of a server who knows about this domain.
-     *  XXX For now, just use the first address in the list.
-     */
-
-    if (local) {
-	servAddrPtr = &defaultAddr;
-    } else if (defaultPtr->addrList != NULL) {
-	servAddrPtr = (struct in_addr *) defaultPtr->addrList[0];
-    } else {
-	servAddrPtr = (struct in_addr *) defaultPtr->servers[0]->addrList[0];
-    }
-
-    result = ERROR;
-    if (IsAddr(newServer, &addr)) {
-	result = GetHostInfoByAddr(servAddrPtr, &addr, newDefPtr);
-	/* If we can't get the name, fall through... */
-    } 
-    if (result != SUCCESS && result != NONAUTH) {
-	result = GetHostInfoByName(servAddrPtr, C_IN, T_A, 
-			newServer, newDefPtr, 1);
-    }
-
-    /* If we ask for an A record and get none back, but get an NS
-       record for the NS server, this is the NONAUTH case.
-       We must check whether we got an IP address for the NS
-       server or not.  */
-    if ((result == SUCCESS || result == NONAUTH) &&
-	((newDefPtr->addrList && newDefPtr->addrList[0] != 0) || 
-	 (newDefPtr->servers && newDefPtr->servers[0] &&
-			newDefPtr->servers[0]->addrList[0] != 0))) {
-	    /*
-	     *  Found info about the new server. Free the resources for
-	     *  the old server.
-	     */
-
-	    FreeHostInfoPtr(defaultPtr);
-	    free((char *)defaultPtr);
-	    defaultPtr = newDefPtr;
-	    strcpy(defaultServer, defaultPtr->name);
-	    PrintHostInfo(stdout, "Default Server:", defaultPtr);
-	    return(SUCCESS);
-    } else {
-	    fprintf(stderr, "*** Can't find address for server %s: %s\n",
-		    newServer, DecodeError(result));
-	    free((char *)newDefPtr);
-
-	    return(result);
-    }
-}
-
-/*
- ******************************************************************************
- *
- * DoLoookup --
- *
- *	Common subroutine for LookupHost and LookupHostWithServer.
- *
- *  Results:
- *	SUCCESS		- the lookup was successful.
- *	Misc. Errors	- an error message is printed if the lookup failed.
- *
- ******************************************************************************
- */
-
-static int
-DoLookup(host, servPtr, serverName)
-    char	*host;
-    HostInfo	*servPtr;
-    char	*serverName;
-{
-    int result;
-    struct in_addr *servAddrPtr;
-    struct in_addr addr; 
-
-    /* Skip escape character */
-    if (host[0] == '\\')
-	host++;
-
-    /*
-     *  If the user gives us an address for an address query, 
-     *  silently treat it as a PTR query. If the query type is already
-     *  PTR, then convert the address into the in-addr.arpa format.
-     *
-     *  Use the address of the server if it exists, otherwise use the
-     *	address of a server who knows about this domain.
-     *  XXX For now, just use the first address in the list.
-     */
-
-    if (servPtr->addrList != NULL) {
-	servAddrPtr = (struct in_addr *) servPtr->addrList[0];
-    } else {
-	servAddrPtr = (struct in_addr *) servPtr->servers[0]->addrList[0];
-    }
-
-    /* 
-     * RFC1123 says we "SHOULD check the string syntactically for a 
-     * dotted-decimal number before looking it up [...]" (p. 13).
-     */
-    if (queryType == T_A && IsAddr(host, &addr)) {
-	result = GetHostInfoByAddr(servAddrPtr, &addr, &curHostInfo);
-    } else {
-	if (queryType == T_PTR) {
-	    CvtAddrToPtr(host);
-	} 
-	result = GetHostInfoByName(servAddrPtr, queryClass, queryType, host, 
-			&curHostInfo, 0);
-    }
-
-    switch (result) {
-	case SUCCESS:
-	    /*
-	     *  If the query was for an address, then the &curHostInfo
-	     *  variable can be used by Finger.
-	     *  There's no need to print anything for other query types
-	     *  because the info has already been printed.
-	     */
-	    if (queryType == T_A) {
-		curHostValid = TRUE;
-		PrintHostInfo(filePtr, "Name:", &curHostInfo);
-	    }
-	    break;
-
-	/*
-	 * No Authoritative answer was available but we got names
-	 * of servers who know about the host.
-	 */
-	case NONAUTH:
-	    PrintHostInfo(filePtr, "Name:", &curHostInfo);
-	    break;
-
-	case NO_INFO:
-	    fprintf(stderr, "*** No %s (%s) records available for %s\n", 
-			DecodeType(queryType), p_type(queryType), host);
-	    break;
-
-	case TIME_OUT:
-	    fprintf(stderr, "*** Request to %s timed-out\n", serverName);
-	    break;
-
-	default:
-	    fprintf(stderr, "*** %s can't find %s: %s\n", serverName, host,
-		    DecodeError(result));
-    }
-    return result;
-}
-
-/*
- ******************************************************************************
- *
- *  LookupHost --
- *
- *	Asks the default name server for information about the
- *	specified host or domain. The information is printed
- *	if the lookup was successful.
- *
- *  Results:
- *	ERROR		- the output file could not be opened.
- *	+ results of DoLookup
- *
- ******************************************************************************
- */
-
-int
-LookupHost(string, putToFile)
-    char	*string;
-    Boolean	putToFile;
-{
-    char	host[NAME_LEN];
-    char	file[PATH_MAX];
-    int		result;
-    int		i;
-
-    /*
-     *  Invalidate the current host information to prevent Finger 
-     *  from using bogus info.
-     */
-
-    curHostValid = FALSE;
-
-    /*
-     *	 Parse the command string into the host and
-     *	 optional output file name.
-     *
-     */
-
-    i = pickString(string, host, sizeof host);
-    if (i == 0) { /* string was too long for host variable */
-        fprintf(stderr, "*** invalid name: %s\n", string);
-	return(ERROR);
-    }
-
-    if (!putToFile) {
-	filePtr = stdout;
-    } else {
-	filePtr = OpenFile(string, file, sizeof file);
-	if (filePtr == NULL) {
-	    fprintf(stderr, "*** Can't open %s for writing\n", file);
-	    return(ERROR);
-	}
-	fprintf(filePtr,"> %s\n", string);
-    }
-
-    PrintHostInfo(filePtr, "Server:", defaultPtr);
-
-    result = DoLookup(host, defaultPtr, defaultServer);
-
-    if (putToFile) {
-	fclose(filePtr);
-	filePtr = NULL;
-    }
-    return(result);
-}
-
-/*
- ******************************************************************************
- *
- *  LookupHostWithServer --
- *
- *	Asks the name server specified in the second argument for 
- *	information about the host or domain specified in the first
- *	argument. The information is printed if the lookup was successful.
- *
- *	Address info about the requested name server is obtained
- *	from the default name server. This routine will return an
- *	error if the default server doesn't have info about the 
- *	requested server. Thus an error return status might not
- *	mean the requested name server doesn't have info about the
- *	requested host.
- *
- *	Comments from LookupHost apply here, too.
- *
- *  Results:
- *	ERROR		- the output file could not be opened.
- *	+ results of DoLookup
- *
- ******************************************************************************
- */
-
-int
-LookupHostWithServer(string, putToFile)
-    char	*string;
-    Boolean	putToFile;
-{
-    char	file[PATH_MAX];
-    char	host[NAME_LEN];
-    char	server[NAME_LEN];
-    int		result;
-    static HostInfo serverInfo;
-    int		i;
-    int		j;
-
-    curHostValid = FALSE;
-
-    i = pickString(string, host, sizeof host);
-    if (i == 0) { /* value was too big for host variable */
-	fprintf(stderr, "*** invalid name: %s\n", string);
-	return(ERROR);
-    }
-
-    j = pickString(string + i, server, sizeof server);
-    if (j == 0) { /* value was too big for server variable */
-	fprintf(stderr, "*** invalid server name: %s\n", string + i);
-	return(ERROR);
-    }
-
-    if (!putToFile) {
-	filePtr = stdout;
-    } else {
-	filePtr = OpenFile(string, file, sizeof file);
-	if (filePtr == NULL) {
-	    fprintf(stderr, "*** Can't open %s for writing\n", file);
-	    return(ERROR);
-	}
-	fprintf(filePtr,"> %s\n", string);
-    }
-    
-    result = GetHostInfoByName(
-		defaultPtr->addrList ?
-		    (struct in_addr *) defaultPtr->addrList[0] :
-		    (struct in_addr *) defaultPtr->servers[0]->addrList[0], 
-		C_IN, T_A, server, &serverInfo, 1);
-
-    if (result != SUCCESS) {
-	fprintf(stderr,"*** Can't find address for server %s: %s\n", server,
-		 DecodeError(result));
-    } else {
-	PrintHostInfo(filePtr, "Server:", &serverInfo);
-
-	result = DoLookup(host, &serverInfo, server);
-    }
-    if (putToFile) {
-	fclose(filePtr);
-	filePtr = NULL;
-    }
-    return(result);
-}
-
-/*
- ******************************************************************************
- *
- *  SetOption -- 
- *
- *	This routine is used to change the state information
- *	that affect the lookups. The command format is
- *	   set keyword[=value]
- *	Most keywords can be abbreviated. Parsing is very simplistic--
- *	A value must not be separated from its keyword by white space.
- *
- *	Valid keywords:		Meaning:
- *	all			lists current values of options.
- *	ALL			lists current values of options, including
- *				  hidden options.
- *	[no]d2			turn on/off extra debugging mode.
- *	[no]debug		turn on/off debugging mode.
- *	[no]defname		use/don't use default domain name.
- *	[no]search		use/don't use domain search list.
- *	domain=NAME		set default domain name to NAME.
- *	[no]ignore		ignore/don't ignore trunc. errors.
- *	query=value		set default query type to value,
- *				value is one of the query types in RFC883
- *				without the leading T_.	(e.g., A, HINFO)
- *	[no]recurse		use/don't use recursive lookup.
- *	retry=#			set number of retries to #.
- *	root=NAME		change root server to NAME.
- *	time=#			set timeout length to #.
- *	[no]vc			use/don't use virtual circuit.
- *	port			TCP/UDP port to server.
- *
- * 	Deprecated:
- *	[no]primary		use/don't use primary server.
- *
- *  Results:
- *	SUCCESS		the command was parsed correctly.
- *	ERROR		the command was not parsed correctly.
- *
- ******************************************************************************
- */
-
-int
-SetOption(option)
-    register char *option;
-{
-    char	type[NAME_LEN];
-    char	*ptr;
-    int		tmp;
-    int		i;
-
-    while (isspace(*option))
-	++option;
-    if (strncmp (option, "set ", 4) == 0)
-	option += 4;
-    while (isspace(*option))
-	++option;
-
-    if (*option == 0) {
-	fprintf(stderr, "*** Invalid set command\n");
-	return(ERROR);
-    } else {
-	if (strncmp(option, "all", 3) == 0) {
-	    ShowOptions();
-	} else if (strncmp(option, "ALL", 3) == 0) {
-	    ShowOptions();
-	} else if (strncmp(option, "d2", 2) == 0) {	/* d2 (more debug) */
-	    res.options |= (RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "nod2", 4) == 0) {
-	    res.options &= ~RES_DEBUG2;
-	    printf("d2 mode disabled; still in debug mode\n");
-	} else if (strncmp(option, "def", 3) == 0) {	/* defname */
-	    res.options |= RES_DEFNAMES;
-	} else if (strncmp(option, "nodef", 5) == 0) {
-	    res.options &= ~RES_DEFNAMES;
-	} else if (strncmp(option, "do", 2) == 0) {	/* domain */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		i = pickString(++ptr, res.defdname, sizeof res.defdname);
-		if (i == 0) { /* name too long or nothing there */
-		    fprintf(stderr, "** invalid 'domain' value: %s\n",
-			    ptr) ;
-		    return(ERROR);
-		}
-
-		res_re_init();
-	    }
-	} else if (strncmp(option, "deb", 1) == 0) {	/* debug */
-	    res.options |= RES_DEBUG;
-	} else if (strncmp(option, "nodeb", 5) == 0) {
-	    res.options &= ~(RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "ig", 2) == 0) {	/* ignore */
-	    res.options |= RES_IGNTC;
-	} else if (strncmp(option, "noig", 4) == 0) {
-	    res.options &= ~RES_IGNTC;
-	} else if (strncmp(option, "po", 2) == 0) {	/* port */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%hu", &nsport);
-	    }
-#ifdef deprecated
-	} else if (strncmp(option, "pri", 3) == 0) {	/* primary */
-	    res.options |= RES_PRIMARY;
-	} else if (strncmp(option, "nopri", 5) == 0) {
-	    res.options &= ~RES_PRIMARY;
-#endif
-	} else if (strncmp(option, "q", 1) == 0 ||	/* querytype */
-	  strncmp(option, "ty", 2) == 0) {		/* type */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		i = pickString(++ptr, type, sizeof type);
-		if (i == 0) { /* value too big or nothing there */
-		    fprintf(stderr, "*** invalid type value: %s\n",
-			    ptr) ;
-		    return(ERROR);
-		}
-
-		queryType = StringToType(type, queryType, stderr);
-	    }
-	} else if (strncmp(option, "cl", 2) == 0) {	/* query class */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		i = pickString(++ptr, type, sizeof type);
-		if (i == 0) { /* value too big or nothing there */
-		    fprintf(stderr, "*** invalid class : %s\n",
-			    ptr) ;
-		    return(ERROR);
-		}
-
-		queryClass = StringToClass(type, queryClass, stderr);
-	    }
-	} else if (strncmp(option, "rec", 3) == 0) {	/* recurse */
-	    res.options |= RES_RECURSE;
-	} else if (strncmp(option, "norec", 5) == 0) {
-	    res.options &= ~RES_RECURSE;
-	} else if (strncmp(option, "ret", 3) == 0) {	/* retry */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%d", &tmp);
-		if (tmp >= 0) {
-		    res.retry = tmp;
-		}
-	    }
-	} else if (strncmp(option, "ro", 2) == 0) {	/* root */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		i = pickString(++ptr, rootServerName, sizeof rootServerName);
-		if (i == 0) { /* value too big or nothing there */
-		    fprintf(stderr, "*** invalid root server name : %s\n",
-			    ptr) ;
-		    return(ERROR) ;
-		}
-	    }
-	} else if (strncmp(option, "sea", 3) == 0) {	/* search list */
-	    res.options |= RES_DNSRCH;
-	} else if (strncmp(option, "nosea", 5) == 0) {
-	    res.options &= ~RES_DNSRCH;
-	} else if (strncmp(option, "srchl", 5) == 0) {	/* domain search list */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		res_dnsrch(++ptr);
-	    }
-	} else if (strncmp(option, "ti", 2) == 0) {	/* timeout */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%d", &tmp);
-		if (tmp >= 0) {
-		    res.retrans = tmp;
-		}
-	    }
-	} else if (strncmp(option, "v", 1) == 0) {	/* vc */
-	    res.options |= RES_USEVC;
-	} else if (strncmp(option, "nov", 3) == 0) {
-	    res.options &= ~RES_USEVC;
-	} else {
-	    fprintf(stderr, "*** Invalid option: %s\n",  option);
-	    return(ERROR);
-	}
-    }
-    return(SUCCESS);
-}
-
-/*
- * Fake a reinitialization when the domain is changed.
- */
-void
-res_re_init(void) {
-    register char *cp, **pp;
-    int n;
-
-    /* find components of local domain that might be searched */
-    pp = res.dnsrch;
-    *pp++ = res.defdname;
-    for (cp = res.defdname, n = 0; *cp; cp++)
-	if (*cp == '.')
-	    n++;
-    cp = res.defdname;
-    for (; n >= LOCALDOMAINPARTS && pp < res.dnsrch + MAXDFLSRCH; n--) {
-	cp = strchr(cp, '.');
-	*pp++ = ++cp;
-    }
-    *pp = 0;
-    res.options |= RES_INIT;
-}
-
-#define SRCHLIST_SEP '/'
-
-void
-res_dnsrch(char *cp) {
-    char **pp;
-    int n;
-
-    (void)strncpy(res.defdname, cp, sizeof(res.defdname) - 1);
-    res.defdname[sizeof(res.defdname) - 1] = '\0';
-    if ((cp = strchr(res.defdname, '\n')) != NULL)
-	    *cp = '\0';
-    /*
-     * Set search list to be blank-separated strings
-     * on rest of line.
-     */
-    cp = res.defdname;
-    pp = res.dnsrch;
-    *pp++ = cp;
-    for (n = 0; *cp && pp < res.dnsrch + MAXDNSRCH; cp++) {
-	    if (*cp == SRCHLIST_SEP) {
-		    *cp = '\0';
-		    n = 1;
-	    } else if (n) {
-		    *pp++ = cp;
-		    n = 0;
-	    }
-    }
-    if ((cp = strchr(pp[-1], SRCHLIST_SEP)) != NULL) {
-	*cp = '\0';
-    }
-    *pp = NULL;
-}
-
-
-/*
- ******************************************************************************
- *
- *  ShowOptions --
- *
- *	Prints out the state information used by the resolver
- *	library and other options set by the user.
- *
- ******************************************************************************
- */
-
-void
-ShowOptions()
-{
-    register char **cp;
-
-    PrintHostInfo(stdout, "Default Server:", defaultPtr);
-    if (curHostValid) {
-	PrintHostInfo(stdout, "Host:", &curHostInfo);
-    }
-
-    printf("Set options:\n");
-    printf("  %sdebug  \t", (res.options & RES_DEBUG) ? "" : "no");
-    printf("  %sdefname\t", (res.options & RES_DEFNAMES) ? "" : "no");
-    printf("  %ssearch\t", (res.options & RES_DNSRCH) ? "" : "no");
-    printf("  %srecurse\n", (res.options & RES_RECURSE) ? "" : "no");
-
-    printf("  %sd2\t\t", (res.options & RES_DEBUG2) ? "" : "no");
-    printf("  %svc\t\t", (res.options & RES_USEVC) ? "" : "no");
-    printf("  %signoretc\t", (res.options & RES_IGNTC) ? "" : "no");
-    printf("  port=%u\n", nsport);
-
-    printf("  querytype=%s\t", p_type(queryType));
-    printf("  class=%s\t", p_class(queryClass));
-    printf("  timeout=%d\t", res.retrans);
-    printf("  retry=%d\n", res.retry);
-    printf("  root=%s\n", rootServerName);
-    printf("  domain=%s\n", res.defdname);
-
-    cp = res.dnsrch;
-    if (cp != NULL) {
-	printf("  srchlist=%s", *cp);
-	for (cp++; *cp; cp++) {
-	    printf("%c%s", SRCHLIST_SEP, *cp);
-	}
-	putchar('\n');
-    }
-    putchar('\n');
-}
-#undef SRCHLIST_SEP
-
-/*
- ******************************************************************************
- *
- *  PrintHelp --
- *
- *	Displays the help file.
- *
- ******************************************************************************
- */
-
-void
-PrintHelp()
-{
-	char cmd[PATH_MAX];
-
-	sprintf(cmd, "%s %s", pager, _PATH_HELPFILE);
-	system(cmd);
-}
-
-/*
- ******************************************************************************
- *
- * CvtAddrToPtr --
- *
- *	Convert a dotted-decimal Internet address into the standard
- *	PTR format (reversed address with .in-arpa. suffix).
- *
- *	Assumes the argument buffer is large enougth to hold the result.
- *
- ******************************************************************************
- */
-
-static void
-CvtAddrToPtr(name)
-    char *name;
-{
-    const char *p;
-    int ip[4];
-    struct in_addr addr;
-
-    if (IsAddr(name, &addr)) {
-	p = inet_ntoa(addr);
-	if (sscanf(p, "%d.%d.%d.%d", &ip[0], &ip[1], &ip[2], &ip[3]) == 4) {
-	    sprintf(name, "%d.%d.%d.%d.in-addr.arpa.", 
-		ip[3], ip[2], ip[1], ip[0]);
-	}
-    }
-}
-
-/*
- ******************************************************************************
- *
- * ReadRC --
- *
- *	Use the contents of ~/.nslookuprc as options.
- *
- ******************************************************************************
- */
-
-static void
-ReadRC()
-{
-    register FILE *fp;
-    register char *cp;
-    char buf[PATH_MAX];
-
-    if ((cp = getenv("HOME")) != NULL &&
-      (strlen(cp) + strlen(_PATH_NSLOOKUPRC)) < sizeof(buf)) {
-
-	(void) strcpy(buf, cp);
-	(void) strcat(buf, _PATH_NSLOOKUPRC);
-
-	if ((fp = fopen(buf, "r")) != NULL) {
-	    while (fgets(buf, sizeof(buf), fp) != NULL) {
-		if ((cp = strchr(buf, '\n')) != NULL) {
-		    *cp = '\0';
-		}
-		(void) SetOption(buf);
-	    }
-	    (void) fclose(fp);
-	}
-    }
-}
diff --git a/contrib/bind/bin/nslookup/nslookup.help b/contrib/bind/bin/nslookup/nslookup.help
deleted file mode 100644
index 31a66345a5236..0000000000000
--- a/contrib/bind/bin/nslookup/nslookup.help
+++ /dev/null
@@ -1,33 +0,0 @@
-$Id: nslookup.help,v 8.5 2000/03/30 23:25:35 vixie Exp $
-
-Commands: 	(identifiers are shown in uppercase, [] means optional)
-NAME		- print info about the host/domain NAME using default server
-NAME1 NAME2	- as above, but use NAME2 as server
-help or ?	- print info on common commands; see nslookup(1) for details
-set OPTION	- set an option
-    all		- print options, current server and host
-    [no]debug	- print debugging information
-    [no]d2	- print exhaustive debugging information
-    [no]defname	- append domain name to each query 
-    [no]recurse	- ask for recursive answer to query
-    [no]vc	- always use a virtual circuit
-    domain=NAME	- set default domain name to NAME
-    srchlist=N1[/N2/.../N6] - set domain to N1 and search list to N1,N2, etc.
-    root=NAME	- set root server to NAME
-    retry=X	- set number of retries to X
-    timeout=X	- set initial time-out interval to X seconds
-    querytype=X	- set query type, e.g., A,ANY,CNAME,HINFO,MX,PX,NS,PTR,SOA,TXT,WKS,SRV,NAPTR
-    port=X	- set port number to send query on
-    type=X	- synonym for querytype
-    class=X	- set query class to one of IN (Internet), CHAOS, HESIOD or ANY
-server NAME	- set default server to NAME, using current default server
-lserver NAME	- set default server to NAME, using initial server
-finger [USER]	- finger the optional USER at the current default host
-root		- set current default server to the root
-ls [opt] DOMAIN [> FILE] - list addresses in DOMAIN (optional: output to FILE)
-    -a 		-  list canonical names and aliases
-    -h 		-  list HINFO (CPU type and operating system)
-    -s 		-  list well-known services
-    -d 		-  list all records
-    -t TYPE 	-  list records of the given type (e.g., A,CNAME,MX, etc.)
-exit		- exit the program, ^D also exits
diff --git a/contrib/bind/bin/nslookup/pathnames.h b/contrib/bind/bin/nslookup/pathnames.h
deleted file mode 100644
index bfeae4f8ab24d..0000000000000
--- a/contrib/bind/bin/nslookup/pathnames.h
+++ /dev/null
@@ -1,71 +0,0 @@
-/*
- * ++Copyright++ 1990
- * -
- * Copyright (c) 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- *	@(#)pathnames.h	5.1 (Berkeley) 5/28/90
- *	$Id: pathnames.h,v 8.1 1994/12/15 06:24:31 vixie Exp $
- */
-
-#define	_PATH_NSLOOKUPRC	"/.nslookuprc"
-#define _PATH_PAGERCMD		"more"
-
-#ifndef _PATH_HELPFILE
-#if defined(BSD) && BSD >= 198810
-#define	_PATH_HELPFILE		"/usr/share/misc/nslookup.help"
-#else
-#define _PATH_HELPFILE		"/usr/lib/nslookup.help"
-#endif
-#endif
-
diff --git a/contrib/bind/bin/nslookup/res.h b/contrib/bind/bin/nslookup/res.h
deleted file mode 100644
index 5ffd6ce46dd38..0000000000000
--- a/contrib/bind/bin/nslookup/res.h
+++ /dev/null
@@ -1,188 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- *	@(#)res.h	5.10 (Berkeley) 6/1/90
- *	$Id: res.h,v 8.5 1998/09/16 17:03:17 vixie Exp $
- */
-
-/*
- *******************************************************************************
- *
- *  res.h --
- *
- *	Definitions used by modules of the name server lookup program.
- *
- *	Copyright (c) 1985
- *	Andrew Cherenson
- *	U.C. Berkeley
- *	CS298-26  Fall 1985
- * 
- *******************************************************************************
- */
-
-#define TRUE	1
-#define FALSE	0
-typedef int Boolean;
-
-#define MAXALIASES	35
-#define MAXADDRS	35
-#define MAXDOMAINS	35
-#define MAXSERVERS	10
-
-/*
- *  Define return statuses in addtion to the ones defined in namserv.h
- *   let SUCCESS be a synonym for NOERROR
- *
- *	TIME_OUT	- a socket connection timed out.
- *	NO_INFO		- the server didn't find any info about the host.
- *	ERROR		- one of the following types of errors:
- *			   dn_expand, res_mkquery failed
- *			   bad command line, socket operation failed, etc.
- *	NONAUTH		- the server didn't have the desired info but
- *			  returned the name(s) of some servers who should.
- *	NO_RESPONSE	- the server didn't respond.
- *
- */
-
-#define  SUCCESS		0
-#define  TIME_OUT		-1
-#define  NO_INFO		-2
-#define  ERROR			-3
-#define  NONAUTH		-4
-#define  NO_RESPONSE		-5
-
-/*
- *  Define additional options for the resolver state structure.
- *
- *   RES_DEBUG2		more verbose debug level
- */
-
-#define RES_DEBUG2	0x80000000
-
-/*
- *  Maximum length of server, host and file names.
- */
-
-#define NAME_LEN 256
-
-
-/*
- * Modified struct hostent from <netdb.h>
- *
- * "Structures returned by network data base library.  All addresses
- * are supplied in host order, and returned in network order (suitable
- * for use in system calls)."
- */
-
-typedef struct	{
-	char	*name;		/* official name of host */
-	char	**domains;	/* domains it serves */
-	char	**addrList;	/* list of addresses from name server */
-} ServerInfo;
-
-typedef struct	{
-	char	*name;		/* official name of host */
-	char	**aliases;	/* alias list */
-	char	**addrList;	/* list of addresses from name server */
-	int	addrType;	/* host address type */
-	int	addrLen;	/* length of address */
-	ServerInfo **servers;
-} HostInfo;
-
-
-/*
- *  FilePtr is used for directing listings to a file.
- *  It is global so the Control-C handler can close it.
- */
-
-extern FILE *filePtr;
-
-/*
- * TCP/UDP port of server.
- */
-extern unsigned short nsport;
-
-/*
- * Our resolver context.
- */
-extern struct __res_state res;
-
-/*
- *  External routines:
- */
-
-/* XXX need prototypes */
-extern Boolean IsAddr();
-void Print_query(const u_char *msg, const u_char *eom, int printHeader);
-void Fprint_query(const u_char *msg, const u_char *eom, int printHeader,
-		  FILE *file);
-const u_char *Print_cdname(const u_char *cp, const u_char *msg,
-			   const u_char *eom, FILE *file);
-const u_char *Print_cdname2(const u_char *cp, const u_char *msg,
-			    const u_char *eom, FILE *file);
-const u_char *Print_rr(const u_char *ocp, const u_char *msg,
-		       const u_char *eom, FILE *file);
-extern const char *DecodeType();	/* descriptive version of p_type */
-extern const char *DecodeError();
-extern char *Calloc();
-extern char *Malloc();
-extern void NsError();
-extern void PrintServer();
-extern void PrintHostInfo();
-extern void ShowOptions();
-extern void FreeHostInfoPtr();
-extern FILE *OpenFile();
-extern char *res_skip();
diff --git a/contrib/bind/bin/nslookup/send.c b/contrib/bind/bin/nslookup/send.c
deleted file mode 100644
index 61a8751401fee..0000000000000
--- a/contrib/bind/bin/nslookup/send.c
+++ /dev/null
@@ -1,402 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char sccsid[] = "@(#)send.c	5.18 (Berkeley) 3/2/91";
-static const char rcsid[] = "$Id: send.c,v 8.9 1999/10/13 16:39:19 vixie Exp $";
-#endif /* not lint */
-
-/*
- ******************************************************************************
- *
- *  send.c --
- *
- *	Routine to send request packets to a name server.
- *
- *	Based on "@(#)res_send.c  6.25 (Berkeley) 6/1/90".
- *
- ******************************************************************************
- */
-
-
-/*
- * Send query to name server and wait for reply.
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/time.h>
-#include <sys/socket.h>
-#include <sys/uio.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <unistd.h>
-
-#include "port_after.h"
-
-#include "res.h"
-
-static int s = -1;	/* socket used for communications */
-
-unsigned short nsport = NAMESERVER_PORT;
-
-
-
-/*
- ******************************************************************************
- *
- *   SendRequest --
- *
- *	Sends a request packet to a name server whose address
- *	is specified by the first argument and returns with
- *	the answer packet.
- *
- *  Results:
- *	SUCCESS		- the request was sent and an answer
- *			  was received.
- *	TIME_OUT	- the virtual circuit connection timed-out
- *			  or a reply to a datagram wasn't received.
- *
- *
- ******************************************************************************
- */
-
-int
-SendRequest(struct in_addr *nsAddrPtr, const u_char *buf, int buflen,
-	    u_char *answer, u_int anslen, int *trueLenPtr)
-{
-	int n, try, v_circuit, resplen, salen;
-	int gotsomewhere = 0, connected = 0;
-	int connreset = 0;
-	u_short id, len;
-	u_char *cp;
-	fd_set dsmask;
-	struct timeval timeout;
-	const HEADER *hp = (HEADER *) buf;
-	HEADER *anhp = (HEADER *) answer;
-	struct iovec iov[2];
-	int terrno = ETIMEDOUT;
-	char junk[512];
-	struct sockaddr_in sin, sa;
-
-	if (res.options & RES_DEBUG2) {
-	    printf("------------\nSendRequest(), len %d\n", buflen);
-	    Print_query(buf, buf + buflen, 1);
-	}
-	sin.sin_family	= AF_INET;
-	sin.sin_port	= htons(nsport);
-	sin.sin_addr	= *nsAddrPtr;
-	v_circuit = (res.options & RES_USEVC) || buflen > PACKETSZ;
-	id = hp->id;
-	/*
-	 * Send request, RETRY times, or until successful
-	 */
-	for (try = 0; try < res.retry; try++) {
-	usevc:
-		if (v_circuit) {
-			int truncated = 0;
-
-			/*
-			 * Use virtual circuit;
-			 * at most one attempt per server.
-			 */
-			try = res.retry;
-			if (s < 0) {
-				s = socket(AF_INET, SOCK_STREAM, 0);
-				if (s < 0) {
-					terrno = errno;
-					if (res.options & RES_DEBUG)
-					    perror("socket (vc) failed");
-					continue;
-				}
-				if (connect(s, (struct sockaddr *)&sin,
-				   sizeof(struct sockaddr)) < 0) {
-					terrno = errno;
-					if (res.options & RES_DEBUG)
-					    perror("connect failed");
-					(void) close(s);
-					s = -1;
-					continue;
-				}
-			}
-			/*
-			 * Send length & message
-			 */
-			__putshort(buflen, (u_char *)&len);
-			iov[0].iov_base = (caddr_t)&len;
-			iov[0].iov_len = INT16SZ;
-			iov[1].iov_base = (caddr_t)buf;
-			iov[1].iov_len = buflen;
-			if (writev(s, iov, 2) != INT16SZ + buflen) {
-				terrno = errno;
-				if (res.options & RES_DEBUG)
-					perror("write failed");
-				(void) close(s);
-				s = -1;
-				continue;
-			}
-			/*
-			 * Receive length & response
-			 */
-			cp = answer;
-			len = INT16SZ;
-			while ((n = read(s, (char *)cp, (int)len)) > 0) {
-				cp += n;
-				if ((len -= n) <= 0)
-					break;
-			}
-			if (n <= 0) {
-				terrno = errno;
-				if (res.options & RES_DEBUG)
-					perror("read failed");
-				(void) close(s);
-				s = -1;
-				/*
-				 * A long running process might get its TCP
-				 * connection reset if the remote server was
-				 * restarted.  Requery the server instead of
-				 * trying a new one.  When there is only one
-				 * server, this means that a query might work
-				 * instead of failing.  We only allow one reset
-				 * per query to prevent looping.
-				 */
-				if (terrno == ECONNRESET && !connreset) {
-					connreset = 1;
-				}
-				continue;
-			}
-			cp = answer;
-			if ((resplen = ns_get16((u_char*)cp)) > anslen) {
-				if (res.options & RES_DEBUG)
-					fprintf(stderr, "response truncated\n");
-				len = anslen;
-				truncated = 1;
-			} else
-				len = resplen;
-			while (len != 0 &&
-			   (n = read(s, (char *)cp, (int)len)) > 0) {
-				cp += n;
-				len -= n;
-			}
-			if (n <= 0) {
-				terrno = errno;
-				if (res.options & RES_DEBUG)
-					perror("read failed");
-				(void) close(s);
-				s = -1;
-				continue;
-			}
-			if (truncated) {
-				/*
-				 * Flush rest of answer
-				 * so connection stays in synch.
-				 */
-				anhp->tc = 1;
-				len = resplen - anslen;
-				while (len != 0) {
-					n = (len > sizeof(junk) ?
-					    sizeof(junk) : len);
-					if ((n = read(s, junk, n)) > 0)
-						len -= n;
-					else
-						break;
-				}
-			}
-		} else {
-			/*
-			 * Use datagrams.
-			 */
-			if (s < 0) {
-				s = socket(AF_INET, SOCK_DGRAM, 0);
-				if (s < 0) {
-					terrno = errno;
-					if (res.options & RES_DEBUG)
-					    perror("socket (dg) failed");
-					continue;
-				}
-			}
-#if BSD >= 43
-			if (connected == 0) {
-				if (connect(s, (struct sockaddr *)&sin,
-				    sizeof sin) < 0) {
-					if (res.options & RES_DEBUG)
-						perror("connect");
-					continue;
-				}
-				connected = 1;
-			}
-			if (send(s, buf, buflen, 0) != buflen) {
-				if (res.options & RES_DEBUG)
-					perror("send");
-				continue;
-			}
-#else /* BSD */
-			if (sendto(s, (const char *)buf, buflen, 0,
-				   (struct sockaddr *) &sin,
-				   sizeof sin) != buflen) {
-				if (res.options & RES_DEBUG)
-					perror("sendto");
-				continue;
-			}
-#endif
-
-			/*
-			 * Wait for reply
-			 */
-			timeout.tv_sec = (res.retrans << try);
-			if (timeout.tv_sec <= 0)
-				timeout.tv_sec = 1;
-			timeout.tv_usec = 0;
- wait:
-			FD_ZERO(&dsmask);
-			FD_SET(s, &dsmask);
-			n = select(s+1, &dsmask, (fd_set *)NULL,
-				(fd_set *)NULL, &timeout);
-			if (n < 0) {
-				if (res.options & RES_DEBUG)
-					perror("select");
-				continue;
-			}
-			if (n == 0) {
-				/*
-				 * timeout
-				 */
-				if (res.options & RES_DEBUG)
-					printf("timeout\n");
-#if BSD >= 43
-				gotsomewhere = 1;
-#endif
-				continue;
-			}
-
-			salen = sizeof sa;
-			resplen = recvfrom(s, (char *)answer, anslen, 0,
-					   (struct sockaddr *)&sa, &salen);
-			if (resplen <= 0) {
-				if (res.options & RES_DEBUG)
-					perror("recvfrom");
-				continue;
-			}
-			gotsomewhere = 1;
-			if (id != anhp->id) {
-				/*
-				 * response from old query, ignore it
-				 */
-				if (res.options & RES_DEBUG2) {
-					printf("------------\nOld answer:\n");
-					Print_query(answer, answer+resplen, 1);
-				}
-				goto wait;
-			}
-			if (!(res.options & RES_IGNTC) && anhp->tc) {
-				/*
-				 * get rest of answer;
-				 * use TCP with same server.
-				 */
-				if (res.options & RES_DEBUG)
-					printf("truncated answer\n");
-				(void) close(s);
-				s = -1;
-				v_circuit = 1;
-				goto usevc;
-			}
-		}
-		if (res.options & RES_DEBUG) {
-		    if (res.options & RES_DEBUG2)
-			printf("------------\nGot answer (%d bytes):\n",
-			    resplen);
-		    else
-			printf("------------\nGot answer:\n");
-		    Print_query(answer, answer+resplen, 1);
-		}
-		(void) close(s);
-		s = -1;
-		*trueLenPtr = resplen;
-		return (SUCCESS);
-	}
-	if (s >= 0) {
-		(void) close(s);
-		s = -1;
-	}
-	if (v_circuit == 0)
-		if (gotsomewhere == 0)
-			return NO_RESPONSE;	/* no nameservers found */
-		else
-			return TIME_OUT;	/* no answer obtained */
-	else
-		if (errno == ECONNREFUSED)
-			return NO_RESPONSE;
-		else
-			return ERROR;
-}
-
-/*
- * This routine is for closing the socket if a virtual circuit is used and
- * the program wants to close it.
- *
- * Called from the interrupt handler.
- */
-void SendRequest_close()
-{
-	if (s != -1) {
-		(void) close(s);
-		s = -1;
-	}
-}
diff --git a/contrib/bind/bin/nslookup/skip.c b/contrib/bind/bin/nslookup/skip.c
deleted file mode 100644
index 5318ef657c23b..0000000000000
--- a/contrib/bind/bin/nslookup/skip.c
+++ /dev/null
@@ -1,218 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char sccsid[] = "@(#)skip.c	5.12 (Berkeley) 3/21/91";
-static const char rcsid[] = "$Id: skip.c,v 8.5 1999/10/13 16:39:20 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  skip.c --
- *
- *	Routines to skip over portions of a query buffer.
- *
- *	Note: this file has been submitted for inclusion in
- *	BIND resolver library. When this has been done, this file
- *	is no longer necessary (assuming there haven't been any
- *	changes).
- *
- *	Adapted from 4.3BSD BIND res_debug.c
- *
- *******************************************************************************
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <resolv.h>
-#include <stdio.h>
-
-#include "port_after.h"
-
-char *res_skip_rr();
-
-
-/*
- *******************************************************************************
- *
- *  res_skip --
- *
- * 	Skip the contents of a query.
- *
- * 	Interpretation of numFieldsToSkip argument:
- *            res_skip returns pointer to:
- *    	1 ->  start of question records.
- *    	2 ->  start of authoritative answer records.
- *    	3 ->  start of additional records.
- *    	4 ->  first byte after end of additional records.
- *
- *   Results:
- *	(address)	- success operation.
- *  	NULL 		- a resource record had an incorrect format.
- *
- *******************************************************************************
- */
-
-char *
-res_skip(msg, numFieldsToSkip, eom)
-	char *msg;
-	int numFieldsToSkip;
-	char *eom;
-{
-	register char *cp;
-	register HEADER *hp;
-	register int tmp;
-	register int n;
-
-	/*
-	 * Skip the header fields.
-	 */
-	hp = (HEADER *)msg;
-	cp = msg + HFIXEDSZ;
-
-	/*
-	 * skip question records.
-	 */
-	n = ntohs(hp->qdcount);
-	if (n > 0) {
-		while (--n >= 0 && cp < eom) {
-			tmp = dn_skipname((u_char *)cp, (u_char *)eom);
-			if (tmp == -1) return(NULL);
-			cp += tmp;
-			cp += INT16SZ;	/* type 	*/
-			cp += INT16SZ;	/* class 	*/
-		}
-	}
-	if (--numFieldsToSkip <= 0) return(cp);
-
-	/*
-	 * skip authoritative answer records
-	 */
-	n = ntohs(hp->ancount);
-	if (n > 0) {
-		while (--n >= 0 && cp < eom) {
-			cp = res_skip_rr(cp, eom);
-			if (cp == NULL) return(NULL);
-		}
-	}
-	if (--numFieldsToSkip == 0) return(cp);
-
-	/*
-	 * skip name server records
-	 */
-	n = ntohs(hp->nscount);
-	if (n > 0) {
-		while (--n >= 0 && cp < eom) {
-			cp = res_skip_rr(cp, eom);
-			if (cp == NULL) return(NULL);
-		}
-	}
-	if (--numFieldsToSkip == 0) return(cp);
-
-	/*
-	 * skip additional records
-	 */
-	n = ntohs(hp->arcount);
-	if (n > 0) {
-		while (--n >= 0 && cp < eom) {
-			cp = res_skip_rr(cp, eom);
-			if (cp == NULL) return(NULL);
-		}
-	}
-
-	return(cp);
-}
-
-
-/*
- *******************************************************************************
- *
- *  res_skip_rr --
- *
- * 	Skip over resource record fields.
- *
- *   Results:
- *	(address)	- success operation.
- *  	NULL 		- a resource record had an incorrect format.
- *******************************************************************************
- */
-
-char *
-res_skip_rr(cp, eom)
-	char *cp;
-	char *eom;
-{
-	int tmp;
-	int dlen;
-
-	if ((tmp = dn_skipname((u_char *)cp, (u_char *)eom)) == -1)
-		return (NULL);			/* compression error */
-	cp += tmp;
-	if ((cp + RRFIXEDSZ) > eom)
-		return (NULL);
-	cp += INT16SZ;	/* 	type 	*/
-	cp += INT16SZ;	/* 	class 	*/
-	cp += INT32SZ;	/* 	ttl 	*/
-	dlen = ns_get16((u_char*)cp);
-	cp += INT16SZ;	/* 	dlen 	*/
-	cp += dlen;
-	if (cp > eom)
-		return (NULL);
-	return (cp);
-}
diff --git a/contrib/bind/bin/nslookup/subr.c b/contrib/bind/bin/nslookup/subr.c
deleted file mode 100644
index a3b9f964a0af6..0000000000000
--- a/contrib/bind/bin/nslookup/subr.c
+++ /dev/null
@@ -1,591 +0,0 @@
-/*
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char sccsid[] = "@(#)subr.c	5.24 (Berkeley) 3/2/91";
-static const char rcsid[] = "$Id: subr.c,v 8.13 1999/10/13 16:39:20 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  subr.c --
- *
- *	Miscellaneous subroutines for the name server
- *	lookup program.
- *
- *	Copyright (c) 1985
- *	Andrew Cherenson
- *	U.C. Berkeley
- *	CS298-26  Fall 1985
- *
- *******************************************************************************
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <netdb.h>
-#include <setjmp.h>
-#include <signal.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#include "resolv.h"
-#include "res.h"
-
-/*
- *******************************************************************************
- *
- *  IntrHandler --
- *
- *	This routine is called whenever a control-C is typed.
- *	It performs three main functions:
- *	 - closes an open socket connection,
- *	 - closes an open output file (used by LookupHost, et al.),
- *	 - jumps back to the main read-eval loop.
- *
- *	If a user types a ^C in the middle of a routine that uses a socket,
- *	the routine would not be able to close the socket. To prevent an
- *	overflow of the process's open file table, the socket and output
- *	file descriptors are closed by the interrupt handler.
- *
- *  Side effects:
- *	Open file descriptors are closed.
- *	If filePtr is valid, it is closed.
- *	Flow of control returns to the main() routine.
- *
- *******************************************************************************
- */
-
-SIG_FN
-IntrHandler()
-{
-    extern jmp_buf env;
-#if defined(BSD) && BSD >= 199006 && !defined(RISCOS_BSD) && !defined(__osf__)
-    extern FILE *yyin;		/* scanner input file */
-    extern void yyrestart();	/* routine to restart scanner after interrupt */
-#endif
-    extern void ListHost_close(void);
-
-    SendRequest_close();
-    ListHost_close();
-    if (filePtr != NULL && filePtr != stdout) {
-	fclose(filePtr);
-	filePtr = NULL;
-    }
-    printf("\n");
-#if defined(BSD) && BSD >= 199006 && !defined(RISCOS_BSD) && !defined(__osf__)
-    yyrestart(yyin);
-#endif
-    longjmp(env, 1);
-}
-
-
-/*
- *******************************************************************************
- *
- *  Malloc --
- *  Calloc --
- *
- *      Calls the malloc library routine with SIGINT blocked to prevent
- *	corruption of malloc's data structures. We need to do this because
- *	a control-C doesn't kill the program -- it causes a return to the
- *	main command loop.
- *
- *	NOTE: This method doesn't prevent the pointer returned by malloc
- *	from getting lost, so it is possible to get "core leaks".
- *
- *	If malloc fails, the program exits.
- *
- *  Results:
- *	(address)	- address of new buffer.
- *
- *******************************************************************************
- */
-
-char *
-Malloc(size)
-    int size;
-{
-    char	*ptr;
-
-#ifdef SYSV
-#if defined(SVR3) || defined(SVR4)
-    sighold(SIGINT);
-    ptr = malloc((unsigned) size);
-    sigrelse(SIGINT);
-#else
-    { SIG_FN (*old)();
-      old = signal(SIGINT, SIG_IGN);
-      ptr = malloc((unsigned) size);
-      signal(SIGINT, old);
-    }
-#endif
-#else
-#ifdef POSIX_SIGNALS
-    { sigset_t sset;
-      sigemptyset(&sset);
-      sigaddset(&sset,SIGINT);
-      sigprocmask(SIG_BLOCK,&sset,NULL);
-      ptr = malloc((unsigned) size);
-      sigprocmask(SIG_UNBLOCK,&sset,NULL);
-    }
-#else
-    { int saveMask;
-      saveMask = sigblock(sigmask(SIGINT));
-      ptr = malloc((unsigned) size);
-      (void) sigsetmask(saveMask);
-    }
-#endif
-#endif
-    if (ptr == NULL) {
-	fflush(stdout);
-	fprintf(stderr, "*** Can't allocate memory\n");
-	fflush(stderr);
-	abort();
-	/*NOTREACHED*/
-    }
-    return (ptr);
-}
-
-char *
-Calloc(num, size)
-    register int num, size;
-{
-    char *ptr = Malloc(num*size);
-    memset(ptr, 0, num*size);
-    return(ptr);
-}
-
-
-/*
- *******************************************************************************
- *
- *  PrintHostInfo --
- *
- *	Prints out the HostInfo structure for a host.
- *
- *******************************************************************************
- */
-
-void
-PrintHostInfo(file, title, hp)
-	FILE	*file;
-	char	*title;
-	register HostInfo *hp;
-{
-	register char		**cp;
-	register ServerInfo	**sp;
-	char			comma;
-	int			i;
-
-	fprintf(file, "%-7s  %s", title, hp->name);
-
-	if (hp->addrList != NULL) {
-	    if (hp->addrList[1] != NULL) {
-		fprintf(file, "\nAddresses:");
-	    } else {
-		fprintf(file, "\nAddress:");
-	    }
-	    comma = ' ';
-	    i = 0;
-	    for (cp = hp->addrList; cp && *cp; cp++) {
-		i++;
-		if (i > 4) {
-		    fprintf(file, "\n\t");
-		    comma = ' ';
-		    i = 0;
-		}
-		fprintf(file,"%c %s", comma, inet_ntoa(*(struct in_addr *)*cp));
-		comma = ',';
-	    }
-	}
-
-	if (hp->aliases != NULL) {
-	    fprintf(file, "\nAliases:");
-	    comma = ' ';
-	    i = 10;
-	    for (cp = hp->aliases; cp && *cp && **cp; cp++) {
-		i += strlen(*cp) + 2;
-		if (i > 75) {
-		    fprintf(file, "\n\t");
-		    comma = ' ';
-		    i = 10;
-		}
-		fprintf(file, "%c %s", comma, *cp);
-		comma = ',';
-	    }
-	}
-
-	if (hp->servers != NULL) {
-	    fprintf(file, "\nServed by:\n");
-	    for (sp = hp->servers; *sp != NULL ; sp++) {
-
-		fprintf(file, "- %s\n\t",  (*sp)->name);
-
-		comma = ' ';
-		i = 0;
-		for (cp = (*sp)->addrList; cp && *cp && **cp; cp++) {
-		    i++;
-		    if (i > 4) {
-			fprintf(file, "\n\t");
-			comma = ' ';
-			i = 0;
-		    }
-		    fprintf(file,
-			"%c %s", comma, inet_ntoa(*(struct in_addr *)*cp));
-		    comma = ',';
-		}
-		fprintf(file, "\n\t");
-
-		comma = ' ';
-		i = 10;
-		for (cp = (*sp)->domains; cp && *cp && **cp; cp++) {
-		    i += strlen(*cp) + 2;
-		    if (i > 75) {
-			fprintf(file, "\n\t");
-			comma = ' ';
-			i = 10;
-		    }
-		    fprintf(file, "%c %s", comma, *cp);
-		    comma = ',';
-		}
-		fprintf(file, "\n");
-	    }
-	}
-
-	fprintf(file, "\n\n");
-}
-
-/*
- *******************************************************************************
- *
- *  OpenFile --
- *
- *	Parses a command string for a file name and opens
- *	the file. The file name is copued to the argument FILE. The
- * 	parameter SIZE parameter includes space for a null byte.
- *
- *  Results:
- *	file pointer	- the open was successful.
- *	NULL		- there was an error opening the file or
- *			  the input string was invalid.
- *
- *******************************************************************************
- */
-
-FILE *
-OpenFile(string, file, size)
-    char *string;
-    char *file;
-    size_t size;
-{
-	char	*redirect;
-	FILE	*tmpPtr;
-	int	i;
-
-	/*
-	 *  Open an output file if we see '>' or >>'.
-	 *  Check for overwrite (">") or concatenation (">>").
-	 */
-
-	redirect = strchr(string, '>');
-	if (redirect == NULL) {
-	    return(NULL);
-	}
-
-	tmpPtr = NULL;
-	if (redirect[1] == '>') {
-	    i = pickString(redirect + 2, file, size);
-	    if (i > 0) {
-	        tmpPtr = fopen(file, "a+");
-	    }
-	} else {
-	    i = pickString(redirect + 1, file, size);
-	    if (i > 0) {
-		tmpPtr = fopen(file, "w");
-	    }
-	}
-
-	if (tmpPtr != NULL) {
-	    redirect[0] = '\0';
-	}
-
-	return(tmpPtr);
-}
-
-/*
- *******************************************************************************
- *
- *  DecodeError --
- *
- *	Converts an error code into a character string.
- *
- *******************************************************************************
- */
-
-const struct res_sym error_syms[] = {
-	{ NOERROR,	"Success" },
-	{ FORMERR,	"Format error" },
-	{ SERVFAIL,	"Server failed" },
-	{ NXDOMAIN,	"Non-existent host/domain" },
-	{ NOTIMP,	"Not implemented" },
-	{ REFUSED,	"Query refused" },
-#ifdef NOCHANGE
-	{ NOCHANGE,	"No change" },
-#endif
-	{ TIME_OUT,	"Timed out" },
-	{ NO_INFO,	"No information" },
-	{ ERROR,	"Unspecified error" },
-	{ NONAUTH,	"Non-authoritative answer" },
-	{ NO_RESPONSE,	"No response from server" },
-	{ 0,		NULL }
-};
-
-const char *
-DecodeError(result)
-    int result;
-{
-	const char *string;
-	int success;
-
-	string = sym_ntos(error_syms, result, &success);
-	if (success)
-		return string;
-	return ("BAD ERROR VALUE");
-}
-
-
-int
-StringToClass(class, dflt, errorfile)
-    char *class;
-    int dflt;
-    FILE *errorfile;
-{
-	int result, success;
-
-	result = sym_ston(__p_class_syms, class, &success);
-	if (success)
-		return result;
-
-	if (errorfile)
-		fprintf(errorfile, "unknown query class: %s\n", class);
-	return(dflt);
-}
-
-
-/*
- *******************************************************************************
- *
- *  StringToType --
- *
- *	Converts a string form of a query type name to its
- *	corresponding integer value.
- *
- *******************************************************************************
- */
-
-int
-StringToType(type, dflt, errorfile)
-    char *type;
-    int dflt;
-    FILE *errorfile;
-{
-	int result, success;
-
-	result = sym_ston(__p_type_syms, type, &success);
-	if (success)
-		return (result);
-
-	if (errorfile)
-		fprintf(errorfile, "unknown query type: %s\n", type);
-	return (dflt);
-}
-
-/*
- *******************************************************************************
- *
- *  DecodeType --
- *
- *	Converts a query type to a descriptive name.
- *	(A more verbose form of p_type.)
- *
- *
- *******************************************************************************
- */
-
-const char *
-DecodeType(type)
-	int type;
-{
-
-	return (sym_ntop(__p_type_syms, type, (int *)0));
-}
-
-
-
-
-/*
- * Skip over leading white space in SRC and then copy the next sequence of
- * non-whitespace characters into DEST. No more than (DEST_SIZE - 1)
- * characters are copied. DEST is always null-terminated. Returns 0 if no
- * characters could be copied into DEST. Returns the number of characters
- * in SRC that were processed (i.e. the count of characters in the leading
- * white space and the first non-whitespace sequence).
- *
- * 	int i;
- * 	char *p = "  foo bar ", *q;
- * 	char buf[100];
- *
- * 	q = p + pickString(p, buf, sizeof buff);
- * 	assert (strcmp (q, " bar ") == 0) ;
- *
- */
-
-int
-pickString(const char *src, char *dest, size_t dest_size) {
-	const char *start;
-	const char *end ;
-	size_t sublen ;
-
-	if (dest_size == 0 || dest == NULL || src == NULL)
-		return 0;
-	
-	for (start = src ; isspace(*start) ; start++)
-		/* nada */ ;
-
-        for (end = start ; *end != '\0' && !isspace(*end) ; end++)
-		/* nada */ ;
-
-	sublen = end - start ;
-	
-	if (sublen == 0 || sublen > (dest_size - 1))
-		return 0;
-
-	strncpy (dest, start, sublen);
-
-	dest[sublen] = '\0' ;
-
-	return (end - src);
-}
-
-
-
-
-/*
- * match the string FORMAT against the string SRC. Leading whitespace in
- * FORMAT will match any amount of (including no) leading whitespace in
- * SRC. Any amount of whitespace inside FORMAT matches any non-zero amount
- * of whitespace in SRC. Value returned is 0 if match didn't occur, or the
- * amount of characters in SRC that did match 
- *
- * 	int i ;
- *
- * 	i = matchString(" a    b c", "a b c") ; 
- * 	assert (i == 5) ;
- * 	i = matchString("a b c", "  a b c");  
- * 	assert (i == 0) ;    becasue no leading white space in format
- * 	i = matchString(" a b c", " a   b     c"); 
- * 	assert(i == 12);
- * 	i = matchString("aa bb ", "aa      bb      ddd sd"); 
- * 	assert(i == 16);
- */
-int
-matchString (const char *format, const char *src) {
-	const char *f = format;
-	const char *s = src;
-
-	if (f == NULL || s == NULL)
-		goto notfound;
-
-	if (isspace(*f)) {
-		while (isspace(*f))
-			f++ ;
-		while (isspace(*s))
-			s++ ;
-	}
-	
-	while (1) {
-		if (isspace(*f)) {
-			if (!isspace(*s))
-				goto notfound;
-			while(isspace(*s))
-				s++;
-			/* any amount of whitespace in the format string
-			   will match any amount of space in the source
-			   string. */
-			while (isspace(*f))
-				f++;
-		} else if (*f == '\0') {
-			return (s - src);
-		} else if (*f != *s) {
-			goto notfound;
-		} else {
-			s++ ;
-			f++ ;
-		}
-	}
- notfound:
-	return 0 ;
-}
diff --git a/contrib/bind/bin/nsupdate/Makefile b/contrib/bind/bin/nsupdate/Makefile
deleted file mode 100644
index b3b07c048c0e9..0000000000000
--- a/contrib/bind/bin/nsupdate/Makefile
+++ /dev/null
@@ -1,84 +0,0 @@
-## Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-# $Id: Makefile,v 8.24 1999/08/08 17:51:02 vixie Exp $
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-#(net2 and its descendents)
-SYSTYPE = bsdos
-TOP = ../..
-INCL =  ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.a
-A=a
-O=o
-EXE=
-LEX = lex -I
-SYSLIBS = -ll -lutil
-DESTBIN = /usr/local/bin
-DESTSBIN = /usr/local/sbin
-DESTEXEC = /usr/local/libexec
-DESTMAN = /usr/share/man
-DESTHELP= /usr/share/misc
-STRIP=-s
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-LDFLAGS=
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-
-PROG= nsupdate
-SRCS= ${PROG}.c
-OBJS= ${PROG}.${O}
-
-all: ${PROG}${EXE}
-
-${PROG}${EXE}: ${OBJS} ${LIBBIND} Makefile
-	${CC} ${CDEBUG} ${LDFLAGS} ${BOUNDS} -o ${PROG}${EXE} ${OBJS} \
-		${LIBBIND} ${SYSLIBS}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-
-distclean: clean
-
-clean: FRC
-	rm -f ${PROG}${EXE} ${OBJS} core .depend
-	rm -f *.BAK *.CKP *~ *.orig
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${PORTINCL} ${SRCS}
-
-${DESTDIR}${DESTBIN}:
-	mkdir -p ${DESTDIR}${DESTBIN}
-
-install: ${DESTDIR}${DESTBIN} ${PROG}${EXE}
-	${INSTALL} ${STRIP} -c ${INSTALL_EXEC} -m 755 ${PROG}${EXE} ${DESTDIR}${DESTBIN}/${PROG}${EXE}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-tags: FRC
-	ctags *.[ch]
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/bin/nsupdate/nsupdate.c b/contrib/bind/bin/nsupdate/nsupdate.c
deleted file mode 100644
index 31496b3b9458e..0000000000000
--- a/contrib/bind/bin/nsupdate/nsupdate.c
+++ /dev/null
@@ -1,691 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: nsupdate.c,v 8.23 2000/02/04 07:51:04 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <limits.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <unistd.h>
-#include <string.h>
-#include <ctype.h>
-#include <isc/dst.h>
-#include "port_after.h"
-#include "../named/db_defs.h"
-
-/* XXX all of this stuff should come from libbind.a */
-
-/*
- * Map class and type names to number
- */
-struct map {
-	char    token[10];
-	int     val;
-};
-
-struct map class_strs[] = {
-	{ "in",         C_IN },
-	{ "chaos",      C_CHAOS },
-	{ "hs",         C_HS },
-};
-#define M_CLASS_CNT (sizeof(class_strs) / sizeof(struct map))
-
-struct map type_strs[] = {
-	{ "a",          T_A },
-	{ "ns",         T_NS },
-	{ "cname",      T_CNAME },
-	{ "soa",        T_SOA },
-	{ "mb",         T_MB },
-	{ "mg",         T_MG },
-	{ "mr",         T_MR },
-	{ "null",       T_NULL },
-	{ "wks",        T_WKS },
-	{ "ptr",        T_PTR },
-	{ "hinfo",      T_HINFO },
-	{ "minfo",      T_MINFO },
-	{ "mx",         T_MX },
-	{ "txt",        T_TXT },
-	{ "rp",         T_RP },
-	{ "afsdb",      T_AFSDB },
-	{ "x25",        T_X25 },
-	{ "isdn",       T_ISDN },
-	{ "rt",         T_RT },
-	{ "nsap",       T_NSAP },
-	{ "nsap_ptr",   T_NSAP_PTR },
-	{ "sig",        T_SIG },
-	{ "key",        T_KEY },
-	{ "px",         T_PX },
-	{ "loc",        T_LOC },
-	{ "nxt",        T_NXT },
-	{ "eid",        T_EID },
-	{ "nimloc",     T_NIMLOC },
-	{ "srv",        T_SRV },
-	{ "atma",       T_ATMA },
-	{ "naptr",      T_NAPTR },
-	{ "kx",         ns_t_kx },
-	{ "cert",       ns_t_cert },
-	{ "aaaa",       ns_t_aaaa },
-};
-#define M_TYPE_CNT (sizeof(type_strs) / sizeof(struct map))
-
-struct map section_strs[] = {
-	{ "zone",	S_ZONE },
-	{ "prereq",	S_PREREQ },
-	{ "update", 	S_UPDATE },
-	{ "reserved",	S_ADDT },
-};
-#define M_SECTION_CNT (sizeof(section_strs) / sizeof(struct map))
-
-struct map opcode_strs[] = {
-	{ "nxdomain",	NXDOMAIN },
-	{ "yxdomain",	YXDOMAIN },
-	{ "nxrrset", 	NXRRSET },
-	{ "yxrrset",	YXRRSET },
-	{ "delete",	DELETE },
-	{ "add",	ADD },
-};
-#define M_OPCODE_CNT (sizeof(opcode_strs) / sizeof(struct map))
-
-static int getcharstring(char *, char *, int, int, int);
-static char *progname;
-
-static void usage(void);
-static int getword_str(char *, int, char **, char *);
-
-static struct __res_state res;
-
-int dns_findprimary (res_state, char *, struct ns_tsig_key *, char *,
-                     int, struct in_addr *);
-
-/*
- * format of file read by nsupdate is kept the same as the log
- * file generated by updates, so that the log file can be fed
- * to nsupdate to reconstruct lost updates.
- * 
- * file is read on line at a time using fgets() rather than
- * one word at a time using getword() so that it is easy to
- * adapt nsupdate to read piped input from other scripts
- *
- * overloading of class/type has to be deferred to res_update()
- * because class is needed by res_update() to determined the
- * zone to which a resource record belongs
- */
-int
-main(argc, argv)
-	int argc;
-	char **argv;
-{
-	FILE *fp = NULL;
-	char buf[BUFSIZ], buf2[BUFSIZ], hostbuf[100], filebuf[100];
-	char dnbuf[MAXDNAME], data[MAXDATA];
-	u_char packet[PACKETSZ], answer[PACKETSZ];
-	char *host = hostbuf, *batchfile = filebuf;
-	char *r_dname, *cp, *startp, *endp, *svstartp;
-	char section[15], opcode[10];
-	int i, c, n, n1, inside, lineno = 0, vc = 0,
-		debug = 0, r_size, r_section, r_opcode,
-		prompt = 0, ret = 0, stringtobin = 0;
-	int16_t r_class, r_type;
-	u_int32_t r_ttl;
-	struct map *mp;
-	ns_updrec *rrecp;
-	ns_updque listuprec;
-	struct in_addr hostaddr;
-	extern int getopt();
-	extern char *optarg;
-	extern int optind, opterr, optopt;
-	ns_tsig_key key;
-	char *keyfile=NULL, *keyname=NULL, *p, *pp;
-	int file_major, file_minor, alg;
-
-
-
-	progname = argv[0];
-
-	while ((c = getopt(argc, argv, "dsvk:n:")) != -1) {
-		switch (c) {
-		case 'v':
-			vc = 1;
-			break;
-		case 'd':
-			debug = 1;
-			break;
-		case 's':
-			stringtobin = 1;
-			break;
-		case 'k': {
-			/* -k keydir:keyname */
-			char *colon;
-   
-			if ((colon=strchr(optarg, ':'))==NULL) {
-				fprintf(stderr, "key option argument should be keydir:keyname\n");
-				exit(1);
-			}
-			keyname=colon+1;
-			keyfile=optarg;
-			*colon='\0';
-			break;
-		}
-		 case 'n':
-			keyname=optarg;
-			break;
-		default:
-			usage();
-		}
-	}
-
-	INIT_LIST(listuprec);
-
-	if (keyfile) {
-#ifdef PARSE_KEYFILE
-		if ((fp=fopen(keyfile, "r"))==NULL) {
-			perror("open keyfile");
-			exit(1);
-		}
-		/* now read the header info from the file */
-		if ((i=fread(buf, 1, BUFSIZ, fp)) < 5) {
-			fclose(fp);
-                	exit(1);
-        	}
-		fclose(fp);
-		fp=NULL;
-
-		p=buf;
-
-		n=strlen(p);		/* get length of strings */
-		n1=strlen("Private-key-format: v");
-		if (n1 > n || strncmp(buf, "Private-key-format: v", n1)) {
-			fprintf(stderr, "Invalid key file format\n");
-			exit(1);	/* not a match */
-		}
-		p+=n1;		/* advance pointer */
-		sscanf((char *)p, "%d.%d", &file_major, &file_minor);
-		/* should do some error checking with these someday */
-		while (*p++!='\n');	/* skip to end of line */
-
-        	n=strlen(p);		/* get length of strings */
-        	n1=strlen("Algorithm: ");
-        	if (n1 > n || strncmp(p, "Algorithm: ", n1)) {
-			fprintf(stderr, "Invalid key file format\n");
-                	exit(1);	/* not a match */
-		}
-		p+=n1;		/* advance pointer */
-		if (sscanf((char *)p, "%d", &alg)!=1) {
-			fprintf(stderr, "Invalid key file format\n");
-			exit(1);
-		}
-		while (*p++!='\n');	/* skip to end of line */
-
-        	n=strlen(p);		/* get length of strings */
-        	n1=strlen("Key: ");
-        	if (n1 > n || strncmp(p, "Key: ", n1)) {
-			fprintf(stderr, "Invalid key file format\n");
-			exit(1);	/* not a match */
-		}
-		p+=n1;		/* advance pointer */
-		pp=p;
-		while (*pp++!='\n');	/* skip to end of line, terminate it */
-		*--pp='\0';
-
-		key.data=malloc(1024*sizeof(char));
-		key.len=b64_pton(p, key.data, 1024);
-
-		strcpy(key.name, keyname);
-		strcpy(key.alg, "HMAC-MD5.SIG-ALG.REG.INT");
-#else
-		/* use the dst* routines to parse the key files
-		 * 
-		 * This requires that both the .key and the .private files
-		 * exist in your cwd, so the keyfile parmeter here is
-		 * assumed to be a path in which the K*.{key,private} files
-		 * exist.
-		 */
-		DST_KEY *dst_key;
-		char cwd[PATH_MAX+1];
-
-		if (getcwd(cwd, PATH_MAX)==NULL) {
-			perror("unable to get current directory");
-			exit(1);
-		}
-		if (chdir(keyfile)<0) {
-			fprintf(stderr, "unable to chdir to %s: %s\n", keyfile,
-				strerror(errno));
-			exit(1);
-		}
-
-		dst_init();
-		dst_key = dst_read_key(keyname,
-				       0 /* not used for private keys */,
-				       KEY_HMAC_MD5, DST_PRIVATE);
-		if (!dst_key) {
-			fprintf(stderr, "dst_read_key: error reading key\n");
-			exit(1);
-		}
-		key.data=malloc(1024*sizeof(char));
-		dst_key_to_buffer(dst_key, key.data, 1024);
-		key.len=dst_key->dk_key_size;
-
-		strcpy(key.name, keyname);
-		strcpy(key.alg, "HMAC-MD5.SIG-ALG.REG.INT");
-
-		if (chdir(cwd)<0) {
-			fprintf(stderr, "unable to chdir to %s: %s\n", cwd,
-				strerror(errno));
-			exit(1);
-		}
-#endif
-	}
-
-	if ((argc - optind) == 0) {
-	    /* no file specified, read from stdin */
-	    ret = system("tty -s");
-	    if (ret == 0) /* terminal */
-		prompt = 1;
-	    else /* stdin redirect from a file or a pipe */
-		prompt = 0;
-	} else {
-	    /* file specified, open it */
-	    /* XXX - currently accepts only one filename */
-	    if ((fp = fopen(argv[optind], "r")) == NULL) {
-		fprintf(stderr, "error opening file: %s\n", argv[optind]);
-		exit (1);
-	    }
-	}
-	for (;;) {
-
-	    inside = 1;
-	    if (prompt)
-		fprintf(stdout, "> ");
-	    if (!fp)
-		cp = fgets(buf, sizeof buf, stdin);
-	    else
-	        cp = fgets(buf, sizeof buf, fp);
-	    if (cp == NULL) /* EOF */
-		break;
-	    lineno++;
-
-	    /* get rid of the trailing newline */
-	    n = strlen(buf);
-	    buf[--n] = '\0';
- 
-	    startp = cp;
-	    endp = strchr(cp, ';');
-	    if (endp != NULL)
-		endp--;
-	    else
-		endp = cp + n - 1;
-
-	    /* verify section name */
-	    if (!getword_str(section, sizeof section, &startp, endp)) {
-		/* empty line */
-		inside = 0;
-	    }
-	    if (inside) {
-		/* inside the same update packet,
-		 * continue accumulating records */
-		r_section = -1;
-		n1 = strlen(section);
-		if (section[n1-1] == ':')
-		    section[--n1] = '\0';
-		for (mp = section_strs; mp < section_strs+M_SECTION_CNT; mp++)
-		    if (!strcasecmp(section, mp->token)) {
-			r_section = mp->val;
-			break;
-		    }
-		if (r_section == -1) {
-		    fprintf(stderr, "incorrect section name: %s\n", section);
-		    exit (1);
-		}
-		if (r_section == S_ZONE) {
-		    fprintf(stderr, "section ZONE not permitted\n");
-		    exit (1);
-		}
-		/* read operation code */
-		if (!getword_str(opcode, sizeof opcode, &startp, endp)) {
-			fprintf(stderr, "failed to read operation code\n");
-			exit (1);
-		}
-		r_opcode = -1;
-		if (opcode[0] == '{') {
-		    n1 = strlen(opcode);
-		    for (i = 0; i < n1; i++)
-			opcode[i] = opcode[i+1];
-		    if (opcode[n1-2] == '}')
-			opcode[n1-2] = '\0';
-		}
-		for (mp = opcode_strs; mp < opcode_strs+M_OPCODE_CNT; mp++) {
-		    if (!strcasecmp(opcode, mp->token)) {
-			r_opcode = mp->val;
-			break;
-		    }
-		}
-		if (r_opcode == -1) {
-		    fprintf(stderr, "incorrect operation code: %s\n", opcode);
-		    exit (1);
-		}
-		/* read owner's domain name */
-		if (!getword_str(dnbuf, sizeof dnbuf, &startp, endp)) {
-		    fprintf(stderr, "failed to read owner name\n");
-		    exit (1);
-		}
-		r_dname = dnbuf;
-		r_ttl = (r_opcode == ADD) ? -1 : 0;
-		r_type = -1;
-		r_class = C_IN; /* default to IN */
-		r_size = 0;
-
-		(void) getword_str(buf2, sizeof buf2, &startp, endp);
-
-		if (isdigit(buf2[0])) { /* ttl */
-		    r_ttl = strtoul(buf2, 0, 10);
-		    if (errno == ERANGE && r_ttl == ULONG_MAX) {
-			fprintf(stderr, "oversized ttl: %s\n", buf2);
-			exit (1);
-		    }
-		    (void) getword_str(buf2, sizeof buf2, &startp, endp);
-		}
-
-		if (buf2[0]) { /* possibly class */
-		    for (mp = class_strs; mp < class_strs+M_CLASS_CNT; mp++) {
-			if (!strcasecmp(buf2, mp->token)) {
-			    r_class = mp->val;
-			    (void) getword_str(buf2, sizeof buf2, &startp, endp);
-			    break;
-			}
-		    }
-		}
-		/*
-		 * type and rdata field may or may not be required depending
-		 * on the section and operation
-		 */
-		switch (r_section) {
-		case S_PREREQ:
-		    if (r_ttl) {
-			fprintf(stderr, "nonzero ttl in prereq section: %ul\n",
-				r_ttl);
-			r_ttl = 0;
-		    }
-		    switch (r_opcode) {
-		    case NXDOMAIN:
-		    case YXDOMAIN:
-			if (buf2[0]) {
-			    fprintf (stderr, "invalid field: %s, ignored\n",
-				     buf2);
-			    exit (1);
-			}
-			break;
-		    case NXRRSET:
-		    case YXRRSET:
-			if (buf2[0])
-			    for (mp = type_strs; mp < type_strs+M_TYPE_CNT; mp++)
-				if (!strcasecmp(buf2, mp->token)) {
-				    r_type = mp->val;
-				    break;
-				}
-			if (r_type == -1) {
-			    fprintf (stderr, "invalid type for RRset: %s\n",
-				     buf2);
-			    exit (1);
-			}
-			if (r_opcode == NXRRSET)
-			    break;
-			/*
-			 * for RRset exists (value dependent) case,
-			 * nonempty rdata field will be present.
-			 * simply copy the whole string now and let
-			 * res_update() interpret the various fields
-			 * depending on type
-			 */
-			cp = startp;
-			while (cp <= endp && isspace(*cp))
-			    cp++;
-			r_size = endp - cp + 1;
-			break;
-		    default:
-			fprintf (stderr,
-				 "unknown operation in prereq section\"%s\"\n",
-				 opcode);
-			exit (1);
-		    }
-		    break;
-		case S_UPDATE:
-		    switch (r_opcode) {
-		    case DELETE:
-			r_ttl = 0;
-			r_type = T_ANY;
-			/* read type, if specified */
-			if (buf2[0])
-			    for (mp = type_strs; mp < type_strs+M_TYPE_CNT; mp++)
-				if (!strcasecmp(buf2, mp->token)) {
-				    r_type = mp->val;
-				    svstartp = startp;
-				    (void) getword_str(buf2, sizeof buf2,
-						       &startp, endp);
-				    if (buf2[0]) /* unget preference */
-					startp = svstartp;
-				    break;
-				}
-			/* read rdata portion, if specified */
-			cp = startp;
-			while (cp <= endp && isspace(*cp))
-			    cp++;
-			r_size = endp - cp + 1;
-			break;
-		    case ADD:
-			if (r_ttl == -1) {
-			    fprintf (stderr,
-		"ttl must be specified for record to be added: %s\n", buf);
-			    exit (1);
-			}
-			/* read type */
-			if (buf2[0])
-			    for (mp = type_strs; mp < type_strs+M_TYPE_CNT; mp++)
-				if (!strcasecmp(buf2, mp->token)) {
-				    r_type = mp->val;
-				    break;
-				}
-			if (r_type == -1) {
-			    fprintf(stderr,
-		"invalid type for record to be added: %s\n", buf2);
-			    exit (1);
-			}
-			/* read rdata portion */
-			cp = startp;
-			while (cp < endp && isspace(*cp))
-			    cp++;
-			r_size = endp - cp + 1;
-			if (r_size <= 0) {
-			    fprintf(stderr,
-		"nonempty rdata field needed to add the record at line %d\n",
-				    lineno);
-			    exit (1);
-			}
-			break;
-		    default:
-			fprintf(stderr,
-		"unknown operation in update section \"%s\"\n", opcode);
-			exit (1);
-		    }
-		    break;
-		default:
-		    fprintf(stderr,
-			    "unknown section identifier \"%s\"\n", section);
-		    exit (1);
-		}
-
-		if ( !(rrecp = res_mkupdrec(r_section, r_dname, r_class,
-					    r_type, r_ttl)) ||
-		     (r_size > 0 && !(rrecp->r_data = (u_char *)malloc(r_size))) ) {
-			if (rrecp)
-				res_freeupdrec(rrecp);
-			fprintf(stderr, "saverrec error\n");
-			exit (1);
-		}
-        if (stringtobin) {
-             switch(r_opcode)  {
-             case T_HINFO:
-                  if (!getcharstring(buf,(char *)data,2,2,lineno))
-                       exit(1);
-                  cp = data;
-                  break;
-             case T_ISDN:
-                  if (!getcharstring(buf,(char *)data,1,2,lineno))
-                       exit(1);
-                  cp = data;
-                  break;
-             case T_TXT:
-                  if (!getcharstring(buf,(char *)data,1,0,lineno))
-                       exit(1);
-                  cp = data;
-                  break;
-             case T_X25:
-                  if (!getcharstring(buf,(char *)data,1,1,lineno))
-                       exit(1);
-                  cp = data;
-                  break;
-             default:
-		  break;
-             }
-        }
-		rrecp->r_opcode = r_opcode;
-		rrecp->r_size = r_size;
-		(void) strncpy((char *)rrecp->r_data, cp, r_size);
-		APPEND(listuprec, rrecp, r_link);
-	    } else { /* end of an update packet */
-		(void) res_ninit(&res);
-		if (vc)
-		    res.options |= RES_USEVC | RES_STAYOPEN;
-		if (debug)
-		    res.options |= RES_DEBUG;
-		if (!EMPTY(listuprec)) {
-			n = res_nupdate(&res, HEAD(listuprec),
-					keyfile != NULL ? &key : NULL);
-			if (n < 0)
-				fprintf(stderr, "failed update packet\n");
-			while (!EMPTY(listuprec)) {
-				ns_updrec *tmprrecp = HEAD(listuprec);
-
-				UNLINK(listuprec, tmprrecp, r_link);
-				if (tmprrecp->r_size != 0)
-					free((char *)tmprrecp->r_data);
-				res_freeupdrec(tmprrecp);
-			}
-		}
-	    }
-	} /* for */
-	return (0);
-}
-
-static void
-usage() {
-	fprintf(stderr, "Usage: %s [ -k keydir:keyname ] [-d] [-v] [file]\n",
-		progname);
-	exit(1);
-}
-
-/*
- * Get a whitespace delimited word from a string (not file)
- * into buf. modify the start pointer to point after the
- * word in the string.
- */
-static int
-getword_str(char *buf, int size, char **startpp, char *endp) {
-        char *cp;
-        int c;
- 
-        for (cp = buf; *startpp <= endp; ) {
-                c = **startpp;
-                if (isspace(c) || c == '\0') {
-                        if (cp != buf) /* trailing whitespace */
-                                break;
-                        else { /* leading whitespace */
-                                (*startpp)++;
-                                continue;
-                        }
-                }
-                (*startpp)++;
-                if (cp >= buf+size-1)
-                        break;
-                *cp++ = (u_char)c;
-        }
-        *cp = '\0';
-        return (cp != buf);
-}
-
-#define MAXCHARSTRING 255
-
-static int
-getcharstring(char *buf, char *data,
-         int minfields, int maxfields, int lineno)
-{
-   int nfield = 0, n = 0, i;
-
-   do {
-        nfield++;
-        i = 0;
-        if (*buf == '"') {
-             buf++;
-             while(buf[i] && buf[i] != '"')
-                  i++;
-        } else {
-             while(isspace(*buf))
-                  i++;
-        }
-        if (i > MAXCHARSTRING) {
-             fprintf(stderr,
-               "%d: RDATA field %d too long",
-               lineno, nfield);
-             return(0);
-        }
-        if (n + i + 1 > MAXDATA) {
-             fprintf(stderr,
-               "%d: total RDATA too long", lineno);
-             return(0);
-        }
-        data[n]=i;
-        memmove(data + 1 + n, buf, i);
-        buf += i + 1;
-        n += i + 1;
-        while(*buf && isspace(*buf))
-             buf++;
-   } while (nfield < maxfields && *buf);
-
-   if (nfield < minfields) {
-        fprintf(stderr,
-             "%d: expected %d RDATA fields, only saw %d",
-             lineno, minfields, nfield);
-        return (0);
-   }
-
-   return (n);
-}
diff --git a/contrib/bind/conf/bsdinstall.sh b/contrib/bind/conf/bsdinstall.sh
deleted file mode 100755
index 58f87ded2604b..0000000000000
--- a/contrib/bind/conf/bsdinstall.sh
+++ /dev/null
@@ -1,251 +0,0 @@
-#! /bin/sh
-
-## (From INN-1.4, written by Rich Salz)
-##  $Revision: 8.1 $
-##  A script to install files and directories.
-
-PROGNAME=`basename $0`
-
-##  Paths to programs.  CHOWN and WHOAMI are checked below.
-CHOWN=chown
-CHGRP=chgrp
-CHMOD=chmod
-CP=cp
-LN=ln
-MKDIR=mkdir
-MV=mv
-RM=rm
-STRIP=strip
-WHOAMI=whoami
-
-##  Some systems don't support -x, so we have to use -f.
-if [ ${CHOWN} = chown ] ; then
-    if [ -f /etc/chown ] ; then
-	CHOWN=/etc/chown
-    else
-	if [ -f /usr/etc/chown ] ; then
-	    CHOWN=/usr/etc/chown
-	fi
-    fi
-fi
-
-if [ ${WHOAMI} = whoami ] ; then
-    if [ -f /usr/ucb/whoami ] ; then
-	WHOAMI=/usr/ucb/whoami
-    fi
-fi
-
-##  Defaults.
-CHOWNIT=false
-CHGROUPIT=false
-CHMODIT=false
-STRIPIT=false
-BACKIT=false
-TOUCHIT=true
-SAVESRC=false
-ROOT=unknown
-
-##  Process JCL.
-MORETODO=true
-while ${MORETODO} ; do
-    case X"$1" in
-    X-b)
-	BACKIT=true
-	BACKUP="$2"
-	shift
-	;;
-    X-b*)
-	BACKIT=true
-	BACKUP=`expr "$1" : '-b\(.*\)'`
-	;;
-    X-c)
-	SAVESRC=true
-	;;
-    X-g)
-	GROUP="$2"
-	CHGROUPIT=true
-	shift
-	;;
-    X-g*)
-	GROUP=`expr "$1" : '-g\(.*\)'`
-	CHGROUPIT=true
-	;;
-    X-G)
-	case ${ROOT} in
-	unknown)
-	    case `${WHOAMI}` in
-	    root)
-		ROOT=true
-		;;
-	    *)
-		ROOT=false
-		;;
-	    esac
-	    ;;
-	esac
-	GROUP="$2"
-	shift
-	${ROOT} && CHGROUPIT=true
-	;;
-    X-G*)
-	case ${ROOT} in
-	unknown)
-	    case `${WHOAMI}` in
-	    root)
-		ROOT=true
-		;;
-	    *)
-		ROOT=false
-		;;
-	    esac
-	    ;;
-	esac
-	if ${ROOT} ; then
-	    GROUP=`expr "$1" : '-g\(.*\)'`
-	    CHGROUPIT=true
-	fi
-	;;
-    X-m)
-	MODE="$2"
-	CHMODIT=true
-	shift
-	;;
-    X-m*)
-	MODE=`expr "$1" : '-m\(.*\)'`
-	CHMODIT=true
-	;;
-    X-n)
-	TOUCHIT=false
-	;;
-    X-o)
-	OWNER="$2"
-	CHOWNIT=true
-	shift
-	;;
-    X-o*)
-	OWNER=`expr "$1" : '-o\(.*\)'`
-	CHOWNIT=true
-	;;
-    X-O)
-	case ${ROOT} in
-	unknown)
-	    case `${WHOAMI}` in
-	    root)
-		ROOT=true
-		;;
-	    *)
-		ROOT=false
-		;;
-	    esac
-	    ;;
-	esac
-	OWNER="$2"
-	shift
-	${ROOT} && CHOWNIT=true
-	;;
-    X-O*)
-	case ${ROOT} in
-	unknown)
-	    case `${WHOAMI}` in
-	    root)
-		ROOT=true
-		;;
-	    *)
-		ROOT=false
-		;;
-	    esac
-	    ;;
-	esac
-	if ${ROOT} ; then
-	    OWNER=`expr "$1" : '-o\(.*\)'`
-	    CHOWNIT=true
-	fi
-	;;
-    X-s)
-	STRIPIT=true
-	;;
-    X--)
-	shift
-	MORETODO=false
-	;;
-    X-*)
-	echo "${PROGNAME}:  Unknown flag $1" 1>&2
-	exit 1
-	;;
-    *)
-	MORETODO=false
-	;;
-    esac
-    ${MORETODO} && shift
-done
-
-##  Process arguments.
-if [ $# -ne 2 ] ; then
-    echo "Usage:  ${PROGNAME} [flags] source destination"
-    exit 1
-fi
-
-##  Making a directory?
-if [ X"$1" = X. ] ; then
-    DEST="$2"
-    if [ ! -d "${DEST}" ] ; then
-	${MKDIR} "${DEST}" || exit 1
-    fi
-    if ${CHOWNIT} ; then
-	${CHOWN} "${OWNER}" "${DEST}" || exit 1
-    fi
-    if ${CHGROUPIT} ; then
-	${CHGRP} "${GROUP}" "${DEST}" || exit 1
-    fi
-    if ${CHMODIT} ; then
-	umask 0
-	${CHMOD} "${MODE}"  "${DEST}" || exit 1
-    fi
-    exit 0
-fi
-
-##  Get the destination and a temp file in the destination diretory.
-if [ -d "$2" ] ; then
-    DEST="$2/$1"
-    TEMP="$2/$$.tmp"
-else
-    DEST="$2"
-    TEMP="`expr "$2" : '\(.*\)/.*'`/$$.tmp"
-fi
-
-##  If not given the same name, we must try to copy.
-if [ X"$1" != X"$2" -o $SAVESRC ] ; then
-    if cmp -s "$1" "${DEST}" ; then
-	##  Files are same; touch or not.
-	${TOUCHIT} && touch "${DEST}"
-    else
-	##  If destination exists and we wish to backup, link to backup.
-	if [ -f "${DEST}" ] ; then
-	    if ${BACKIT} ; then
-		${RM} -f "${DEST}${BACKUP}"
-		${LN} "${DEST}" "${DEST}${BACKUP}"
-	    fi
-	fi
-	##  Copy source to the right dir, then move to right spot.
-	##  Done in two parts so we can hope for atomicity.
-	${RM} -f "${TEMP}" || exit 1
-	${CP} "$1" "${TEMP}" || exit 1
-	${MV} -f "${TEMP}" "${DEST}" || exit 1
-    fi
-fi
-
-##  Strip and set the modes.
-if ${STRIPIT} ; then
-    ${STRIP} "${DEST}" || exit 1
-fi
-if ${CHOWNIT} ; then
-    ${CHOWN} "${OWNER}" "${DEST}" || exit 1
-fi
-if ${CHGROUPIT} ; then
-    ${CHGRP} "${GROUP}" "${DEST}" || exit 1
-fi
-if ${CHMODIT} ; then
-    umask 0
-    ${CHMOD} "${MODE}"  "${DEST}" || exit 1
-fi
-exit 0
diff --git a/contrib/bind/conf/copyright b/contrib/bind/conf/copyright
deleted file mode 100644
index a441ff88eb8ca..0000000000000
--- a/contrib/bind/conf/copyright
+++ /dev/null
@@ -1,50 +0,0 @@
--
-Copyright (c) XYZZY
-   The Regents of the University of California.  All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions
-are met:
-1. Redistributions of source code must retain the above copyright
-   notice, this list of conditions and the following disclaimer.
-2. Redistributions in binary form must reproduce the above copyright
-   notice, this list of conditions and the following disclaimer in the
-   documentation and/or other materials provided with the distribution.
-3. All advertising materials mentioning features or use of this software
-   must display the following acknowledgement:
-	This product includes software developed by the University of
-	California, Berkeley and its contributors.
-4. Neither the name of the University nor the names of its contributors
-   may be used to endorse or promote products derived from this software
-   without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-SUCH DAMAGE.
--
-Portions Copyright (c) 1993 by Digital Equipment Corporation.
-
-Permission to use, copy, modify, and distribute this software for any
-purpose with or without fee is hereby granted, provided that the above
-copyright notice and this permission notice appear in all copies, and that
-the name of Digital Equipment Corporation not be used in advertising or
-publicity pertaining to distribution of the document or software without
-specific, written prior permission.
-
-THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-SOFTWARE.
--
diff --git a/contrib/bind/conf/master/README b/contrib/bind/conf/master/README
deleted file mode 100644
index 4e49af65a8197..0000000000000
--- a/contrib/bind/conf/master/README
+++ /dev/null
@@ -1,45 +0,0 @@
-
-How to add new hosts to the name server data base:
-
-1) Edit 'named.hosts' file:
-
-	For each machine you need to enter the following information:
-	machine name, all its network addresses, host information, and common
-	aliases for it.
-
-	This is the entry for calder.
-
-CALDER		IN	A	128.32.130.1
-		IN	A	128.32.129.3
-		IN	HINFO	VAX-11/750 UNIX
-UCBCALDER	IN	CNAME	CALDER
-
- For the machine you are adding:
-	1) replace 'CALDER' with the new machine name
-	2) replace '128.32.130.1' with the new machines address
-		if there is more then one address for the machine
-		then add lines like the one with '128.32.129.3'
-	3) replace 'VAX-11/750' with the machine type
-	4) If it doesn't run 'UNIX' then replace UNIX with its
-	   operating system.
-
-2) Edit 'named.rev' file:
-
-	For each address of a machine you need to enter the reverse
-	address notation for the machine:
-
-	For calder the lines look as follows:
-
-12.0	IN	PTR	CALDER.BERKELEY.EDU.
-3.129	IN	PTR	CALDER.BERKELEY.EDU.
-
-	Calder has two address '128.32.0.12' and '128.32.129.3'
-
-	You take the two numbers after 128.32 and reverse them.
-	Then replace CALDER with the new machine name.
-
-    *** Note the trailing "." on "EDU." it needs to be there.  Otherwise
-	BIND will add the current $ORIGIN to this name, which won't work.
-	***
-
-3) Increment the serial number on both files.  
diff --git a/contrib/bind/conf/master/named.boot b/contrib/bind/conf/master/named.boot
deleted file mode 100644
index 7d467f28732de..0000000000000
--- a/contrib/bind/conf/master/named.boot
+++ /dev/null
@@ -1,18 +0,0 @@
-;
-;  @(#)named.boot.slave	1.13	(Berkeley)  87/07/21
-;
-;  boot file for secondary name server
-; Note that there should be one primary entry for each SOA record.
-;
-;
-sortlist 10.0.0.0 
-
-directory	/usr/local/adm/named
-
-; type    domain		source host/file		backup file
-
-cache     .			root.cache
-secondary Berkeley.EDU		128.32.137.8 128.32.137.3	ucbhosts.bak
-secondary 32.128.IN-ADDR.ARPA	128.32.137.8 128.32.137.3	ucbhosts.rev.bak
-primary   0.0.127.IN-ADDR.ARPA	localhost.rev
-
diff --git a/contrib/bind/conf/master/named.boot.master b/contrib/bind/conf/master/named.boot.master
deleted file mode 100644
index 702ffcfef2da4..0000000000000
--- a/contrib/bind/conf/master/named.boot.master
+++ /dev/null
@@ -1,16 +0,0 @@
-;
-;  boot file for authoritive master name server for Berkeley.EDU
-; Note that there should be one primary entry for each SOA record.
-;
-;
-sortlist 10.0.0.0 
-
-directory	/usr/local/adm/named
-
-; type    domain		source host/file		backup file
-
-cache     .			root.cache
-primary   Berkeley.EDU		berkeley.zone
-primary   32.128.IN-ADDR.ARPA	berkeley.rev
-primary   0.0.127.IN-ADDR.ARPA	localhost.rev
-
diff --git a/contrib/bind/conf/master/named.hosts b/contrib/bind/conf/master/named.hosts
deleted file mode 100644
index d31b3bdca294d..0000000000000
--- a/contrib/bind/conf/master/named.hosts
+++ /dev/null
@@ -1,22 +0,0 @@
-; Authoritative data for Berkeley.EDU (ORIGIN assumed Berkeley.EDU)
-;
-@		IN	SOA	ucbvax.berkeley.edu kjd.ucbvax.berkeley.edu (
-				1986020501	; Serial
-				10800	; Refresh 3 hours
-				3600	; Retry   1 hour
-				3600000 ; Expire  1000 hours
-				86400 )	; Minimum 24 hours
-		IN	MX	    10 ucb-vax
-		IN	NS	    monet
-localhost	IN	A	    127.1
-ucb-arpa        IN	A	    10.0.0.78
-		IN	A	    128.32.0.4
-		IN	HINFO	    VAX-11/780 UNIX
-arpa         	IN	CNAME	    ucbarpa
-ucb-vax   9999  IN	A	    10.2.0.78
-		IN	A	    128.32.0.10
-		IN	HINFO	    VAX-11/750 UNIX
-ucbvax          IN	CNAME	    ucb-vax
-monet	        IN	A	    128.32.0.7
-		IN	HINFO	    VAX-11/750 UNIX
-ucbmonet	IN	CNAME	    monet
diff --git a/contrib/bind/conf/master/named.local b/contrib/bind/conf/master/named.local
deleted file mode 100644
index e0270eaf70c95..0000000000000
--- a/contrib/bind/conf/master/named.local
+++ /dev/null
@@ -1,13 +0,0 @@
-;
-;	@(#)named.local	1.1	(Berkeley)	86/01/21
-;
-
-@	IN	SOA	ucbvax.Berkeley.EDU. kjd.ucbvax.Berkeley.EDU.  (
-			        1986012101 ; Serial
-                                3600    ; Refresh
-                                300     ; Retry
-                                3600000 ; Expire
-                                14400 )  ; Minimum
-	IN	NS	ucbvax.Berkeley.EDU.
-0	IN	PTR	loopback.ucbvax.Berkeley.EDU.
-1	IN	PTR	localhost.
diff --git a/contrib/bind/conf/master/named.rev b/contrib/bind/conf/master/named.rev
deleted file mode 100644
index 6d1fb5836cc4e..0000000000000
--- a/contrib/bind/conf/master/named.rev
+++ /dev/null
@@ -1,30 +0,0 @@
-;
-;	@(#)named.rev	1.1	(Berkeley)	86/02/05
-;
-
-@	IN	SOA	ucbvax.berkeley.edu kjd.ucbvax.berkeley.edu (
-				1986020501 ; Serial
-				10800	; Refresh 3 hours
-				3600	; Retry   1 hour
-				3600000 ; Expire  1000 hours
-				86400 )	; Minimum 24 hours
-	IN	NS	ucbvax.Berkeley.EDU.
-; RFC 1101 stuff
-0.0	IN	PTR	Berkeley-net.Berkeley.EDU.
-	IN	A	255.255.255.0
-; real hosts
-0.130	IN	PTR	csdiv-net.Berkeley.EDU.
-2.129	IN	PTR	monet.Berkeley.EDU.
-2.140	IN	PTR	ucbarpa.Berkeley.EDU.
-3.132	IN	PTR	cad.Berkeley.EDU.
-4.0	IN	PTR	ucbarpa.Berkeley.EDU.
-5.0	IN	PTR	cad.Berkeley.EDU.
-6.0	IN	PTR	ernie.Berkeley.EDU.
-6.130	IN	PTR	monet-cs.Berkeley.EDU.
-7.0	IN	PTR	monet.Berkeley.EDU.
-7.130	IN	PTR	kim.Berkeley.EDU.
-9.0	IN	PTR	esvax.Berkeley.EDU.
-10.0	IN	PTR	ucbvax.Berkeley.EDU.
-11.0	IN	PTR	kim.Berkeley.EDU.
-11.156	IN	PTR 	esvax-156.Berkeley.EDU.
-38.131	IN	PTR	monet.Berkeley.EDU.
diff --git a/contrib/bind/conf/master/root.cache b/contrib/bind/conf/master/root.cache
deleted file mode 100644
index 48abd78583b60..0000000000000
--- a/contrib/bind/conf/master/root.cache
+++ /dev/null
@@ -1,63 +0,0 @@
-;       This file holds the information on root name servers needed to
-;       initialize cache of Internet domain name servers
-;       (e.g. reference this file in the "cache  .  <file>"
-;       configuration file of BIND domain name servers).
-;
-;       This file is made available by InterNIC registration services
-;       under anonymous FTP as
-;           file                /domain/named.root
-;           on server           FTP.RS.INTERNIC.NET
-;       -OR- under Gopher at    RS.INTERNIC.NET
-;           under menu          InterNIC Registration Services (NSI)
-;              submenu          InterNIC Registration Archives
-;           file                named.root
-;
-;       last update:    Nov 8, 1995
-;       related version of root zone:   1995110800
-;
-;
-; formerly NS.INTERNIC.NET
-;
-.                        3600000  IN  NS    A.ROOT-SERVERS.NET.
-A.ROOT-SERVERS.NET.      3600000      A     198.41.0.4
-;
-; formerly NS1.ISI.EDU
-;
-.                        3600000      NS    B.ROOT-SERVERS.NET.
-B.ROOT-SERVERS.NET.      3600000      A     128.9.0.107
-;
-; formerly C.PSI.NET
-;
-.                        3600000      NS    C.ROOT-SERVERS.NET.
-C.ROOT-SERVERS.NET.      3600000      A     192.33.4.12
-;
-; formerly TERP.UMD.EDU
-;
-.                        3600000      NS    D.ROOT-SERVERS.NET.
-D.ROOT-SERVERS.NET.      3600000      A     128.8.10.90
-;
-; formerly NS.NASA.GOV
-;
-.                        3600000      NS    E.ROOT-SERVERS.NET.
-E.ROOT-SERVERS.NET.      3600000      A     192.203.230.10
-;
-; formerly NS.ISC.ORG
-;
-.                        3600000      NS    F.ROOT-SERVERS.NET.
-F.ROOT-SERVERS.NET.      3600000      A     192.5.5.241
-;
-; formerly NS.NIC.DDN.MIL
-;
-.                        3600000      NS    G.ROOT-SERVERS.NET.
-G.ROOT-SERVERS.NET.      3600000      A     192.112.36.4
-;
-; formerly AOS.ARL.ARMY.MIL
-;
-.                        3600000      NS    H.ROOT-SERVERS.NET.
-H.ROOT-SERVERS.NET.      3600000      A     128.63.2.53
-;
-; formerly NIC.NORDU.NET
-;
-.                        3600000      NS    I.ROOT-SERVERS.NET.
-I.ROOT-SERVERS.NET.      3600000      A     192.36.148.17
-; End of File
diff --git a/contrib/bind/conf/options.h b/contrib/bind/conf/options.h
deleted file mode 100644
index bea7eb924d947..0000000000000
--- a/contrib/bind/conf/options.h
+++ /dev/null
@@ -1,158 +0,0 @@
-/* options.h - specify the conditionally-compiled features
- * vix 28mar92 [moved out of the Makefile because they were getting too big]
- *
- * $Id: options.h,v 8.12 1996/11/11 06:36:43 vixie Exp $
- */
-
-/*
- * ++Copyright++
- * -
- * Copyright (c) 
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/* Key:
- *	ucb = U C Berkeley 4.8.3 release
- *	vix = Paul Vixie of Digital
- *	del = Don Lewis of Harris
- *	mcsun = Piet Beertema of EUNet
- *	asp = Andrew Partan of UUNet
- *	pma = Paul Albitz of Hewlett Packard
- *	bb = Bryan Beecher of UMich
- *	mpa = Mark Andrews of CSIRO - DMS
- *	rossc = Ross Cartlidge of The Univeritsy of Sydney
- *	mtr = Marshall Rose of TPC.INT
- *      bg = Benoit Grange of INRIA
- *      ckd = Christopher Davis of Kapor Enterprises
- *      gns = Greg Shapiro of WPI
- */
-
-#define DEBUG		/* enable -d flag and SIGUSR[12] support (ucb) */
-/*#define ALLOW_T_UNSPEC /* enable the "unspec" RR type for old athena (ucb) */
-/*#define INVQ		/* enable inverse queries (nslookup) (ucb/vix) */
-/*#define DSTORAGE	/* debug malloc overruns using storage.o (ucb/vix) */
-/*#define DMALLOC	/* trace malloc orphans using dmalloc.o (vix) */
-#define XFRNETS  	/* enable "xfrnets" command in named.boot (vix) */
-#define PID_FIX   	/* be careful about overwriting named.pid file (del) */
-#define FWD_LOOP	/* try to break out of forwarding loops (del) */
-#define NO_GLUE  	/* don't accept or send out-of-zone glue (del) */
-#define	BOGUSNS  	/* detect bogus nameservers (mcsun) */
-#define QRYLOG  	/* enable SIGWINCH for query logging (bb) */
-/*#define YPKLUDGE  	/* deal effectively with broken "ypserv -i" (mcsun) */
-#define TRACEROOT  	/* trace bogus root servers and ignore them (pma,bb) */
-/*#define LOCALDOM	/* permit "domain" directive in named.boot (ucb) */
-#define FORCED_RELOAD	/* refresh secondary zones on SIGHUP (pma) */
-#define SLAVE_FORWARD	/* use sensible timeouts on slave forwarders (pma) */
-#define WANT_PIDFILE	/* if you want the named.pid file (ucb/arc) */
-#define DOTTED_SERIAL	/* if you want to be able to specify dotted serial#s */
-#define SENSIBLE_DOTS	/* if you want dotted serial#s to make numeric sense */
-#define NCACHE		/* negative caching (anant@isi.edu) */
-/*#define VALIDATE	/* validation procedure (anant@isi.edu) (BUGGY!) */
-/*#define SHORT_FNAMES	/* file names used in named-xfer need to be short */
-#define RESOLVSORT	/* allow sorting of addresses in gethostbyname (mpa) */
-#define STUBS		/* allow transfers of NS only for a zone (mpa) */
-#ifndef LOGFAC
-#define	LOGFAC LOG_DAEMON /* what syslog facility should named use? */
-#endif
-#define SECURE_ZONES	/* if you want to inhibit world access to zones (gns)*/
-#define ROUND_ROBIN	/* rotate databuf list after each access (mtr) */
-#define ADDAUTH 	/* return NS and glue w/ authorative answers (mpa) */
-#define RFC1535		/* use RFC 1535 default for "search" list (vix) */
-#define GEN_AXFR	/* distinct zones within each class */
-#define LAME_DELEGATION	/* lame delegations (original-del,reworked-bb&del)*/
-#define LAME_LOGGING LOG_DEBUG /* log lame delegations, set log level */
-#define GETSER_LOGGING LOG_INFO /* log errors/timeouts getting serial number */
-#define RETURNSOA	/* good code that the world might be ready for now */
-#define CLEANCACHE	/* useful and necessary in the face of NCACHE */
-#define PURGE_ZONE	/* remove all traces of a zone when reloading (mpa) */
-#define STATS		/* keep nameserver statistics; uses more memory */
-#define RENICE  	/* named-xfer should run at normal priority */
-/*#define XSTATS	/* extended statistics, syslogged periodically (bg) */
-/*#define BIND_NOTIFY	/* experimental - do not enable in customer products */
-#define LOC_RR		/* support for LOC record parsing (ckd/vix) */
-#define SORT_RESPONSE	/* should we try to sort responses optimally? (vix) */
-
-/*--------------------------------------------*
- * no user-servicable parts beyond this point *
- *--------------------------------------------*/
-
-/* if DSTORAGE is defined, we need to disable DMALLOC and remap
- * malloc and free to storage.o's exported names.  storage.o also
- * includes a calloc and a realloc, but once we drag in its malloc
- * and free we'll get the others automatically and so will never
- * pull in those routines from libc.a.
- */
-#ifdef DSTORAGE
-# ifdef DMALLOC
-#  undef DMALLOC
-# endif /*DMALLOC*/
-# define malloc	rt_malloc
-# define free rt_free
-#endif /*DSTORAGE*/
-
-/* if DMALLOC is defined, grab the header file which will remap
- * all the malloc-style names to those exported by dmalloc.o.  note
- * that DMALLOC also changes the function signatures of several
- * functions in private named source modules, and that this file
- * (options.h) must be included before any other private *.h files
- * since those *.h files have some conditional remapping to do.
- */
-#ifdef DMALLOC
-# include "dmalloc.h"
-#endif
-
-#ifdef LAME_LOGGING
-# define LAME_DELEGATION
-#endif
-
-#if defined(XSTATS) && !defined(STATS)
-# define STATS
-#endif
diff --git a/contrib/bind/conf/portability.h b/contrib/bind/conf/portability.h
deleted file mode 100644
index 6485ee3bd3f42..0000000000000
--- a/contrib/bind/conf/portability.h
+++ /dev/null
@@ -1,650 +0,0 @@
-/* portability.h - include or define things that aren't present on all systems
- * vixie@decwrl 26dec92 [new]
- *
- * $Id: portability.h,v 8.21 1997/06/01 20:34:27 vixie Exp $
- */
-
-/*
- * Copyright (c) 
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef __BIND_PORTABILITY_H
-#define __BIND_PORTABILITY_H
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <signal.h>
-#include <string.h>
-#ifndef TIME_H_INCLUDED
-# include <sys/time.h>
-# define TIME_H_INCLUDED
-#endif
-
-/* (ISC = INTERACTIVE Systems Corporation in the next #ifdef, btw.) */
-#ifdef ISC
-# ifndef _POSIX_SOURCE
-#  define _POSIX_SOURCE
-# endif
-# define SYSV
-# define SVR3
-# define _SYSV3
-# define NEED_STRTOUL
-# define NEED_FTRUNCATE
-# define USE_POSIX
-# include <sys/bsdtypes.h>
-# include <sys/sioctl.h>
-# include <sys/stream.h>
-# include <net/errno.h>
-#endif
-
-#if defined(__convex__)
-# if !defined(_POSIX_SOURCE)
-#  define _POSIX_SOURCE
-# endif
-# define USE_UTIME
-# define NEED_PUTENV
-#endif
-
-#if defined(_CRAY)
-# if !defined(_POSIX_SOURCE)
-#  define _POSIX_SOURCE
-# endif
-# define writev(a,b,c) __writev(a,b,c)
-# define setitimer(a,b,c) __setitimer(a,b,c)
-#endif
-
-/* This is for AIX 4.1.x */
-#ifdef _AIX41
-# include <sys/select.h>
-# include <sys/time.h>
-# include <time.h>
-# define vfork fork
-#endif
-
-/* This is defined in the Makefile for INTERACTIVE compiles. */
-#if defined(ISC)
-# define ftruncate(a,b) __ftruncate(a,b)
-# define USE_MEMCPY
-# define USE_UTIME
-# define HAVE_FCHMOD 0
-#endif
-
-/* SCO UNIX defines only this unique symbol, apparently. */
-#if defined(M_UNIX)
-# define POSIX_SIGNALS
-# if !defined(_SCO_DS)
-/* This section is for 3.2v4.2/ODT3.0 and maybe also for 3.2v4.1/3.2v4.0 */
-/* XXX - why is this POSIX_SOURCE instead of _POSIX_SOURCE? */
-#  undef POSIX_SOURCE
-#  define HAVE_FCHMOD 0
-#  define NEED_WRITEV
-#  define writev(a,b,c) __writev(a,b,c)
-#  define ftruncate(a,b) __ftruncate(a,b)
-# endif
-#endif
-
-#ifdef NeXT
-# define NEED_PUTENV
-# define NEED_SETENV
-# define HAVE_STDLIB_H
-# define NEED_STRDUP
-# define inet_addr(a) __inet_addr(a)
-#endif
-
-#if defined(__sgi)
-# define BSD 43
-# define vfork fork
-#endif
-
-#if defined(SUNOS4)
-# define BSD 43
-# define NEED_STRTOUL
-#endif
-
-#if defined(__osf__) && defined(__alpha) && defined(BSD) && (BSD < 199103)
-# undef BSD
-# define BSD 199103
-#endif
-
-#if defined(_AUX_SOURCE)
-# define vfork fork
-# define NEED_STRERROR
-# define NEED_STRTOUL
-# define SIG_FN void
-# define USE_MEMCPY
-#endif
-
-#if defined(apollo)
-# define HAVE_STDLIB_H
-#endif
-
-#if defined(SVR4) && !defined(SYSV)
-# define SYSV
-#endif
-
-#if defined(_POSIX_SOURCE) || defined(__sgi) || defined(__ultrix) || \
-	defined(__hpux) || (defined(BSD) && (BSD >= 199103)) || \
-	defined(sun) || defined(__m88k__)
-# define USE_POSIX
-#endif
-
-#if defined(__ultrix) && !defined(BSD)
-# define BSD 42
-#endif
-
-#if defined(host_mips) && defined(SYSTYPE_BSD43)
-# define RISCOS_BSD
-#endif
-
-#if defined(SYSV) || defined(__ultrix) || defined(__osf__) \
-	|| (defined(BSD) && BSD >= 199306) || defined(linux)
-# define USE_UTIME
-# define HAVE_SETVBUF
-#endif
-
-#if defined(SYSV) && !defined(SVR4)
-# define vfork fork
-#endif
-
-#if defined(sun) || defined(SVR4)
-# define NETREAD_BROKEN
-#endif
-
-#if defined(BSD) && BSD >= 199006 && !defined(i386) && !defined(RISCOS_BSD)
-# define HAVE_DAEMON
-#endif
-
-#if !defined(BSD) || (BSD <= 199006)
-# if !defined(NeXT)
-#  define NEED_INETADDR
-# endif
-# define NEED_INETATON
-#endif
-
-#if defined(__hpux)
-# if defined(__STDC__)
-#  define select(a,b,c,d,e) select(a, (int *)b, (int *)c, (int *)d, e)
-#  define ctime(x) ctime((const time_t *)x)
-# endif /*__STDC__*/
-# if !defined(SYSV)
-#  define USE_UTIME
-#  define setlinebuf(x) setvbuf(x, NULL, _IOLBF, BUFSIZ)
-#  if !defined(SIGWINCH)  /*pre 9.0*/
-#   define SIGWINCH SIGWINDOW
-#  endif
-# endif /*SYSV*/
-/* XXX: better autodetection of the need for "struct linger" would be nice */
-# if 0
-struct	linger {
-	int	l_onoff;		/* option on/off */
-	int	l_linger;		/* linger time */
-};
-# endif
-#endif /*__hpux*/
-
-#if defined(_SEQUENT_)
-# include <netinet/in_systm.h>
-# define USE_UTIME
-# define USE_POSIX
-# define NEED_GETTIMEOFDAY
-# define _TIMEZONE timezoneBSD
-struct timezoneBSD {
-	int tz_minuteswest;
-	int tz_dsttime;
-};
-#endif
-
-#ifndef __P
-# if defined(__STDC__) || defined(__GNUC__)
-#  define __P(x) x
-# else
-#  define __P(x) ()
-# endif
-#endif
-
-#ifndef _TIMEZONE
-# define _TIMEZONE timezone
-#endif
-
-#if defined(USE_POSIX) || defined(HAVE_STDLIB_H)
-# include <stdlib.h>
-# if defined(__ultrix)
-#  define NEED_STRDUP
-# endif
-
-#else
-
-# if !defined(_SCO_DS)
-#  define NEED_STRDUP
-#  define NEED_STRTOUL
-# endif
-
-# ifndef NeXT
-extern char *getenv __P((char *));
-# else
-extern char *getenv __P((const char *));
-# endif
-
-# if !defined(DMALLOC) && !defined(NeXT)
-extern char *malloc(), *realloc(), *calloc();
-extern void free();
-# endif
-
-#endif /*HAVE_STDLIB_H*/
-
-#if defined(USE_POSIX)
-# include <unistd.h>
-# include <limits.h>
-
-#else
-
-# define STDIN_FILENO	0
-# define STDOUT_FILENO	1
-# define STDERR_FILENO	2
-extern int errno;
-
-extern int getdtablesize __P((void));
-# ifdef SHORT_FNAMES
-extern long pathconf __P((const char *path, int name));
-# endif
-
-#endif /*USE_POSIX*/
-
-#ifndef UINT_MAX
-# ifdef __STDC__
-#  define UINT_MAX	4294967295u             /* max value of an "u_int" */
-# else
-#  define UINT_MAX	((unsigned)4294967295)  /* max value of an "u_int" */
-# endif
-#  define ULONG_MAX	UINT_MAX        /* max decimal value of a "u_long" */
-#endif
-
-#ifndef INT_MAX
-# define INT_MAX	2147483647	/* max decimal value of an "int" */
-#endif
-
-#ifndef RAND_MAX
-# define RAND_MAX	0x7fffffff
-#endif
-
-#ifndef	IN_LOOPBACKNET
-# define IN_LOOPBACKNET	127
-#endif
-
-#ifndef	INADDR_NONE
-# define INADDR_NONE	0xffffffff
-#endif
-
-#if defined(apollo)
-		/* Defined in /usr/include/netinet/in.h but doesn't work */
-#undef IP_OPTIONS
-#endif
-
-#if !defined(__STDC__) && !defined(const)
-# define const /*constant*/
-#endif
-
-#if !defined(__convex__) && (!defined(BSD) || (BSD < 199103))
-int      strcasecmp __P((const char *, const char *));
-#endif
-
-/* is USE_POSIX the right thing to use here? */
-#if (!defined(BSD) || (BSD <= 43)) && \
-	!defined(NeXT) && \
-	!defined(__convex__) && \
-	!defined(USE_POSIX)
-# if !defined(NCR)
-extern void	syslog();
-# endif
-extern char	*ctime __P((const time_t *clock));
-# if !defined(M_UNIX)
-extern int	close(), setitimer(), recv(), sendto(), sigsetmask(),
-		atoi(), getpid(), fork(), read(), ioctl(),
-		setsockopt(), socket(), bind();
-# endif
-#endif
-
-#if !defined(bcopy)	/* some machines have their own macros for this */
-# if (defined(USE_POSIX) && !defined(SUNOS4)) || \
-	 (defined(__STDC__) && !defined(sun) && !defined(sequent) \
-	  && !defined(M_UNIX))
-/* use ANSI C3.159-1989 (``ANSI C'') functions if possible;
- * ideally we would change the code to use them and then
- * define them in terms of bcopy et al if !defined(__STDC__)
- * but that's more work.
- */
-#if defined(USE_MEMCPY)
-#  define bcopy(a,b,c) memcpy(b,a,c)
-#else
-#  define bcopy(a,b,c) memmove(b,a,c)
-#endif
-#  define bzero(a,b) memset(a,0,b)
-#  define bcmp(a,b,c) memcmp(a,b,c)
-# else
-extern void bcopy();
-extern void bzero();
-extern int bcmp();
-# endif /* BSD */
-#endif /* bcopy */
-
-#if (!defined(BSD) || (BSD < 43) || defined(RISCOS_BSD)) \
-	&& !defined(USE_POSIX) && !defined(apollo) && !defined(sequent) \
-	&& !defined(M_UNIX)
-# define NEED_STRERROR
-#if !defined(ultrix) && !defined(NCR)
-# define NEED_PUTENV
-#endif
-#endif
-
-#if defined(SUNOS4)
-# define NEED_STRERROR
-# if defined(sun386)
-#  define pid_t int
-#  define NEED_STRCASECMP
-# endif
-#endif
-
-#if (!defined(BSD) || (BSD < 43)) && !defined(__hpux)
-# define NEED_MKSTEMP
-# if !defined(__ultrix) && !defined(apollo)
-#  if !defined(_SCO_DS)
-#   define NEED_STRCASECMP
-#   define NEED_MKTEMP
-#   if !defined(SVR4)
-#    define NEED_STRPBRK
-#   endif
-#  endif
-# endif
-#endif
-
-#if defined(USE_POSIX)
-# define POSIX_SIGNALS
-#endif
-
-/*
- * Attempt to configure for type of function returned by signal-catching
- * functions (which signal and sigvec.sv_handler take a pointer to).
- * This can guess for BSD; otherwise, define SIG_FN externally.
- */
-#ifndef	SIG_FN
-# ifdef BSD
-#  if (BSD >= 199006) || defined(NeXT) || defined(__osf__) || defined(sun) \
-	|| defined(__ultrix) || defined(apollo) || defined(POSIX_SIGNALS)
-#   define SIG_FN void		/* signal-catching functions return void */
-#  else
-#   define SIG_FN int		/* signal-catching functions return int */
-#  endif
-# else /*BSD*/
-#  define SIG_FN void		/* signal-catching functions return void */
-# endif /*BSD*/
-#endif
-
-#if !defined(SIGUSR1) && !defined(SIGUSR2)
-# define SIGUSR1 SIGEMT
-# define SIGUSR2 SIGFPE
-#endif
-#if !defined(SIGCHLD)
-# define SIGCHLD SIGCLD
-#endif
-
-#if !defined(ntohl) && !defined(htonl) && defined(BSD) && (BSD <= 43)
-/* if these aren't null macros in netinet/in.h, extern them here. */
-extern u_short htons __P((u_short)), ntohs __P((u_short));
-extern u_long htonl __P((u_long)), ntohl __P((u_long));
-#endif
-
-#if defined(USE_POSIX) && !defined(sun) && !defined(__sgi) \
-	&& !defined(__convex__) && !defined(__ultrix) && !defined(_AUX_SOURCE)
-# define PORT_NONBLOCK	O_NONBLOCK
-# define PORT_WOULDBLK	EAGAIN
-#else
-# define PORT_NONBLOCK	O_NDELAY
-# define PORT_WOULDBLK	EWOULDBLOCK
-#endif
-
-#if defined(USE_POSIX)
-# define USE_SETSID
-#endif
-
-#if defined(USE_POSIX) || !defined(SYSV)
-#define USE_WAITPID
-#endif
-
-#if !defined(USE_POSIX)
-#define waitpid(x,y,z) (wait3(y,z,(struct rusage *)NULL))
-#endif
-
-#if defined(NeXT) || defined(_AIX) || defined(sun386)
-# undef WIFEXITED
-# undef WEXITSTATUS
-# undef WIFSIGNALED
-# undef WTERMSIG
-#endif /* NeXT */
-
-#if defined(sequent)
-#define WEXITSTATUS(x)	((x).w_retcode)
-#define WTERMSIG(x)	((x).w_termsig)
-#endif /* sequent */
-
-#if !defined(WIFEXITED)
-# define WIFEXITED(x) (!(x & 0177))
-#endif
-#if !defined(WEXITSTATUS)
-# define WEXITSTATUS(x) (x >> 8)
-#endif
-#if !defined(WIFSIGNALED)
-# define WIFSIGNALED(x) ((x & 0177) && ((x & 0377) != 0177))
-#endif
-#if !defined(WTERMSIG)
-# define WTERMSIG(x) (x & 0177)
-#endif
-
-#ifndef S_ISDIR
-# ifndef S_IFMT
-#  define S_IFMT 0170000
-# endif
-# ifndef S_IFDIR
-#  define S_IFDIR 0040000
-# endif
-# define S_ISDIR(m)	((m & S_IFMT) == S_IFDIR)
-#endif
-
-#ifndef S_ISREG
-# ifndef S_IFMT
-#  define S_IFMT 0170000
-# endif
-# ifndef S_IFREG
-#  define S_IFREG 0100000
-# endif
-# define S_ISREG(m)	((m & S_IFMT) == S_IFREG)
-#endif
-
-#ifndef S_ISFIFO
-# ifndef S_IFMT
-#  define S_IFMT 0170000
-# endif
-# ifndef S_IFIFO
-#  define S_IFIFO 0010000
-# endif
-# define S_ISFIFO(m)	((m & S_IFMT) == S_IFIFO)
-#endif
-
-#if defined(NEED_STRTOUL) && \
-	(defined(__ultrix) || defined(__osf__) || defined(NeXT))
-# undef NEED_STRTOUL
-#endif
-
-#if defined(__ultrix) || defined(__osf__)
-# define MAYBE_HESIOD
-#endif
-
-#ifndef FD_SET
-#define	NFDBITS		32
-#define	FD_SETSIZE	32
-#define	FD_SET(n, p)	((p)->fds_bits[(n)/NFDBITS] |= (1 << ((n) % NFDBITS)))
-#define	FD_CLR(n, p)	((p)->fds_bits[(n)/NFDBITS] &= ~(1 << ((n) % NFDBITS)))
-#define	FD_ISSET(n, p)	((p)->fds_bits[(n)/NFDBITS] & (1 << ((n) % NFDBITS)))
-#define FD_ZERO(p)	bzero((char *)(p), sizeof(*(p)))
-#endif
-
-#ifndef MIN
-# define MIN(x, y)	((x > y) ?y :x)
-#endif
-#ifndef MAX
-# define MAX(x, y)	((x > y) ?x :y)
-#endif
-
-#if !defined(PATH_MAX)
-# if defined(_POSIX_PATH_MAX)
-#  define PATH_MAX _POSIX_PATH_MAX
-# else
-#  if defined(MAXPATHLEN)
-#   define PATH_MAX MAXPATHLEN
-#  endif
-# endif
-#endif
-
-#if defined(BSD) || defined(__osf__) || defined(__convex__)
-# define HAVE_GETRUSAGE
-#endif
-
-/* May be set in the Makefile. */
-#if defined(HAVE_GETRUSAGE)
-# include <sys/resource.h>
-#endif
-
-/*
- *  Because Convex has true library function feof() which is
- *  patently wrong (it test bit _IOREAD) we need feof() as
- *  a macro.
- */
-#if defined(__convex__) && !defined(feof)
-#  define   feof(p)	((p)->_flag&_IOEOF)
-#endif
-
-#if defined(M_UNIX) || defined(linux)
-# define SPURIOUS_ECONNREFUSED
-#endif
-
-/*
- * Assume that a system has fchmod() unless something above says otherwise.
- */
-#if !defined(HAVE_FCHMOD)
-# define HAVE_FCHMOD 1
-#endif
-
-/*
- * Some systems need _res to be linked into text rather than bss.
- */
-#if defined(__m88k__)
-# define __BIND_RES_TEXT
-#endif
-
-/*
- * Motorola FH40.43 and FH40.44 need specific macros for
- * get/settimeofday as only one argument seems to be accepted
- * by the compiler. NULL generates compile errors
- */
-#if defined(__m88k__) && defined(__unix__)
-# define gettimeofday(tp, tzp) gettimeofday(tp)
-# define settimeofday(tp, tzp) settimeofday(tp)
-#endif
-
-/*
- * We need to know the IPv6 address family number even on IPv4-only systems.
- * Note that this is NOT a protocol constant, and that if the system has its
- * own AF_INET6, different from ours below, all of BIND's libraries and
- * executables will need to be recompiled after the system <sys/socket.h>
- * has had this type added.  The type number below is correct on most BSD-
- * derived systems for which AF_INET6 is defined.
- */
-#ifndef AF_INET6
-#define AF_INET6	24
-#endif
-
-/*
- * Prototype the functions we'll be supplying.
- */
-#ifdef NEED_PUTENV
-extern int putenv __P((char *));
-#endif
-
-#ifdef NEED_GETTIMEOFDAY
-extern int gettimeofday __P((struct timeval *, struct _TIMEZONE *));
-#endif
-
-#if defined(SVR4) && defined(sun)
-extern int gethostname __P((char *, size_t));
-#endif
-
-#ifdef NEED_STRDUP
-extern char *strdup __P((const char *));
-#endif
-
-#endif /*__BIND_PORTABILITY_H*/
diff --git a/contrib/bind/doc/bog/00macs.me b/contrib/bind/doc/bog/00macs.me
deleted file mode 100644
index 8ce02a287a1f8..0000000000000
--- a/contrib/bind/doc/bog/00macs.me
+++ /dev/null
@@ -1,51 +0,0 @@
-.\" Copyright (c) 1986, 1988 Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that this notice is preserved and that due credit is given
-.\" to the University of California at Berkeley. The name of the University
-.\" may not be used to endorse or promote products derived from this
-.\" software without specific prior written permission. This software
-.\" is provided ``as is'' without express or implied warranty.
-.\"
-.\"	@(#)00macs.me	6.3 (Berkeley) 2/28/88
-.\"
-.\" usage:	troff -me myfile
-.nr EX 0
-.de BX
-.sp
-.ba +4
-.lp
-.nr EX +1
-.b
-.ta (\\n(.lu-\\n(.iu)R
-EXAMPLE \\n(EX:	\(*D
-.r
-.lp
-..
-.de EX
-.br
-.ba
-.b
-.tl '''\(gr'
-.r
-.lp
-..
-.if \nl .ls 2
-.if t .nr bi 5m
-.nr si 3n
-.de $0		\" create a table of contents magically.
-.(x
-.ti (\\$3u-1u)*2m
-\\$2.  \\$1
-.)x
-..
-.de $1
-.sp
-..
-.de BU
-.ip "\ \(bu" \w'\ \(bu\ 'u
-..
-.de SM
-\s-1\\$1\s0\\$2
-..
diff --git a/contrib/bind/doc/bog/00title.me b/contrib/bind/doc/bog/00title.me
deleted file mode 100644
index 5048969413193..0000000000000
--- a/contrib/bind/doc/bog/00title.me
+++ /dev/null
@@ -1,89 +0,0 @@
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\"
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.+c
-.(l C
-.sz 14
-.b "Name Server Operations Guide"
-.b "for \s-1BIND\s+1"
-.sz
-\fIRelease 4.9.3\fP
-.eh 'SMM:10-%''Name Server Operations Guide for \s-1BIND\s+1'
-.oh 'Name Server Operations Guide for \s-1BIND\s+1''\s-1SMM\s+1:10-%'
-.sp
-\fIReleases from 4.9\fP
-Paul Vixie\**
-.(f
-\** This author was employed by Digital Equipment Corporation's
-Network Systems Laboratory during the development and release of
-\s-1BIND\s+1 4.9.  Release 4.9.2 was sponsored by Vixie
-Enterprises.  Releases from 4.9.3 were sponsored by the Internet
-Software Consortium.
-.)f
-<paul@vix.com>
-.sp \n(psu
-Internet Software Consortium
-La Honda, CA
-.sp 2
-\fIReleases through 4.8.3\fP
-Kevin J. Dunlap\**
-Michael J. Karels
-.sp \n(psu
-Computer Systems Research Group
-Computer Science Division
-Department of Electrical Engineering and Computer Sciences
-University of California
-Berkeley, CA  94720
-.)l
-.sp 2
-.(f
-\** This author was an employee of Digital Equipment Corporation's
-\s-1ULTRIX\s+1 Engineering Advanced Development Group and was on loan to
-CSRG when this work was done.  \s-1ULTRIX\s+1 is a trademark of Digital
-Equipment Corporation.
-.)f
diff --git a/contrib/bind/doc/bog/Makefile b/contrib/bind/doc/bog/Makefile
deleted file mode 100644
index 09e1908ea6b62..0000000000000
--- a/contrib/bind/doc/bog/Makefile
+++ /dev/null
@@ -1,89 +0,0 @@
-# ++Copyright++ 1986, 1988
-# -
-# Copyright (c) 1986, 1988
-#    The Regents of the University of California.  All rights reserved.
-# 
-# Redistribution and use in source and binary forms, with or without
-# modification, are permitted provided that the following conditions
-# are met:
-# 1. Redistributions of source code must retain the above copyright
-#    notice, this list of conditions and the following disclaimer.
-# 2. Redistributions in binary form must reproduce the above copyright
-#    notice, this list of conditions and the following disclaimer in the
-#    documentation and/or other materials provided with the distribution.
-# 3. All advertising materials mentioning features or use of this software
-#    must display the following acknowledgement:
-# 	This product includes software developed by the University of
-# 	California, Berkeley and its contributors.
-# 4. Neither the name of the University nor the names of its contributors
-#    may be used to endorse or promote products derived from this software
-#    without specific prior written permission.
-# 
-# THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-# ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-# SUCH DAMAGE.
-# -
-# Portions Copyright (c) 1993 by Digital Equipment Corporation.
-# 
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies, and that
-# the name of Digital Equipment Corporation not be used in advertising or
-# publicity pertaining to distribution of the document or software without
-# specific, written prior permission.
-# 
-# THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-# WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-# CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-# -
-# --Copyright--
-#
-#	@(#)Makefile	6.3 (Berkeley) 2/28/88
-#
-FILES=	00macs.me 00title.me intro.me ns.me types.me\
-	files.me named.boot.primary\
-	named.boot.secondary named.boot.cache resolv.conf\
-	root.cache named.local ucbhosts.rev ucbhosts \
-	setup.me manage.me build.me ack.me
-ME=	-me
-NROFF=	nroff -rb3
-PRINTER= -Pdp
-TBL=	dtbl $(PRINTER)
-TROFF= ditroff $(PRINTER)
-GROFF= groff -Tps -t $(ME)
-
-all: file.lst
-
-file.lst: $(FILES)
-	tbl $(FILES)| $(NROFF) $(ME) $(FLAGS) > file.lst
-
-file.psf: $(FILES)
-	$(GROFF) $(FILES) > file.psf
-
-troff: $(FILES)
-	$(TBL) $(FILES)| $(TROFF) $(ME) $(FLAGS)
-
-cat: $(FILES)
-	@cat $(FILES)
-
-clean:
-	rm -f *.psf *.lst *.BAK *.CKP *~ *.orig
-
-spell: $(FILES)
-	@for i in $(FILES); do \
-		echo $$i; \
-		spell $$i | sort | comm -23 - spell.ok > $$i.spell; \
-	done
diff --git a/contrib/bind/doc/bog/ack.me b/contrib/bind/doc/bog/ack.me
deleted file mode 100644
index c9d7d858061f6..0000000000000
--- a/contrib/bind/doc/bog/ack.me
+++ /dev/null
@@ -1,283 +0,0 @@
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\"
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\"
-.\"	@(#)ack.me
-.\"
-.sx 0
-.bp
-.ce
-.b "ACKNOWLEDGEMENTS \(em 4.9.3"
-.pp
-The \fI<bind-workers@vix.com>\fP mailing list was once again of great help;
-this release would not be nearly as ready for prime time if not for their
-efforts.  Special commendations are owed to Robert Elz, Don "Truck" Lewis,
-Bob Halley, Mark Andrews, Berthold Paffrath, Ruediger Volk, and Peter Koch.
-.pp
-Digital Equipment Corporation, Hewlett Packard, Silicon Graphics, and SunSoft
-all made hardware available for integration testing; this made the release
-far more solid than it would otherwise have been.  More hardware loans are
-welcome \(em if you are a system vendor and you would like \s-2BIND\s+2 to
-run ``out of the box'' on your platform and are willing to lend some rusty
-old hardware for the purpose, please contact me (\fI<paul@vix.org>\fP) to
-make the arrangements.
-.pp
-Special thanks to the Internet Software Consortium for funding this work.
-Contact \fI<isc-info@isc.org>\fP if your organization would like to
-participate in funding future releases of \s-2BIND\s+2 and other freely
-redistributable software packages that are in wide use on the Internet.
-.sp 2
-.ce
-.b "ACKNOWLEDGEMENTS \(em through 4.9"
-.pp
-The alpha-test group was extremely helpful in furnishing improvements,
-finding and repairing bugs, and being patient.  I would like to express
-special thanks to Brian Reid of Digital Equipment corporation for funding
-this work.  Robert Elz, Alan Barrett, Paul Albitz, Bryan Beecher, Andrew
-Partan, Andy Cherenson, Tom Limoncelli, Berthold Paffrath, Fuat Baran, Anant
-Kumar, Art Harkin, Win Treese, Don Lewis, Christophe Wolfhugel, and a cast
-of dozens all helped out above and beyond the call of duty.  Special thanks
-to Phil Almquist, who got the project started and contributed a lot of the
-code and fixed several of the worst bugs.
-.sp 2
-.ce
-.b "ACKNOWLEDGEMENTS \(em through 4.8.3"
-.pp
-Many thanks to the users at U. C. Berkeley for falling into many of the holes
-involved with integrating BIND into the system so that others would be
-spared the trauma.  I would also like to extend gratitude to Jim McGinness
-and Digital Equipment Corporation for permitting me to spend most of my time
-on this project.
-.pp
-Ralph Campbell, Doug Kingston, Craig Partridge, Smoot Carl-Mitchell, Mike
-Muuss and everyone else on the DARPA Internet who has contributed to the
-development of BIND.  To the members of the original BIND project, Douglas
-Terry, Mark Painter, David Riggle and Songnian Zhou.
-.pp
-Anne Hughes, Jim Bloom and Kirk McKusick and the many others who have
-reviewed this paper giving considerable advice.
-.pp
-This work was sponsored by the Defense Advanced Research Projects Agency
-(DoD), Arpa Order No. 4871 monitored by the Naval Electronics Systems
-Command under contract No. N00039-84-C-0089.  The views and conclusions
-contained in this document are those of the authors and should not be
-interpreted as representing official policies, either expressed or implied,
-of the Defense Research Projects Agency, of the US Government, or of Digital
-Equipment Corporation.
-.bp
-.ba 0
-.in 0
-.sp 2
-.ce
-.b REFERENCES
-.sp
-.nr ii 1i
-.ip [Birrell]
-Birrell, A. D.,
-Levin, R.,
-Needham, R. M.,
-and Schroeder, M.D.,
-.q "Grapevine: An Exercise in Distributed Computing."
-In
-.ul
-Comm. A.C.M. 25,
-4:260-274
-April 1982.
-.ip [RFC819]
-Su, Z.
-Postel, J.,
-.q "The Domain Naming Convention for Internet User Applications."
-.ul
-Internet Request For Comment 819
-Network Information Center,
-SRI International,
-Menlo Park, California.
-August 1982.
-.ip [RFC974]
-Partridge, C.,
-.q "Mail Routing and The Domain System."
-.ul
-Internet Request For Comment 974
-Network Information Center,
-SRI International,
-Menlo Park, California.
-February 1986.
-.ip [RFC1032]
-Stahl, M.,
-.q "Domain Administrators Guide"
-.ul
-Internet Request For Comment 1032
-Network Information Center,
-SRI International,
-Menlo Park, California.
-November 1987.
-.ip [RFC1033]
-Lottor, M.,
-.q "Domain Administrators Guide"
-.ul
-Internet Request For Comment 1033
-Network Information Center,
-SRI International,
-Menlo Park, California.
-November 1987.
-.ip [RFC1034]
-Mockapetris, P.,
-.q "Domain Names - Concept and Facilities."
-.ul
-Internet Request For Comment 1034
-Network Information Center,
-SRI International,
-Menlo Park, California.
-November 1987.
-.ip [RFC1035]
-Mockapetris, P.,
-.q "Domain Names - Implementation and Specification."
-.ul
-Internet Request For Comment 1035
-Network Information Center,
-SRI International,
-Menlo Park, California.
-November 1987.
-.ip [RFC1101]
-Mockapetris, P.,
-.q "DNS Encoding of Network Names and Other Types."
-.ul
-Internet Request For Comment 1101
-Network Information Center,
-SRI International,
-Menlo Park, California.
-April 1989.
-.ip [RFC1123]
-R. Braden, Editor,
-.q "Requirements for Internet Hosts -- Application and Support"
-.ul
-Internet Request For Comment 1123
-Network Information Center,
-SRI International,
-Menlo Park, California.
-October 1989.
-.ip [RFC1183]
-Everhart, C.,
-Mamakos, L.,
-Ullmann, R.,
-and
-Mockapetris, P.,
-.q "New DNS RR Definitions"
-.ul
-Internet Request For Comment 1183
-Network Information Center,
-SRI International,
-Menlo Park, California.
-October 1990.
-.ip [RFC1327]
-Hardcastle-Kille, S.,
-.q "Mapping between X.400(1988) / ISO 10021 and RFC 822"
-.ul
-Internet Request For Comment 1327
-Network Information Center,
-SRI International,
-Menlo Park, California.
-May 1992.
-.ip [RFC1664]
-Allocchio, C.,
-Bonito, A.,
-Cole, B.,
-Giordano, S.,
-Hagens, R.,
-.q "Using the Internet DNS to Distribute RFC1327 Mail Address Mapping Tables"
-.ul
-Internet Request For Comment 1664
-Network Information Center,
-SRI International,
-Menlo Park, California.
-August 1994.
-.ip [RFC1713]
-Romao, A.,
-.q "Tools for DNS debugging"
-.ul
-Internet Request For Comment 1713, also FYI27
-Network Information Center,
-SRI International,
-Menlo Park, California.
-November 1994.
-.ip [Terry]
-Terry, D. B.,
-Painter, M.,
-Riggle, D. W.,
-and
-Zhou, S.,
-.ul
-The Berkeley Internet Name Domain Server.
-Proceedings USENIX Summer Conference,
-Salt Lake City, Utah.
-June 1984, pages 23-31.
-.ip [Zhou]
-Zhou, S.,
-.ul
-The Design and Implementation of the Berkeley Internet Name Domain (BIND) Servers.
-UCB/CSD 84/177.
-University of California, Berkeley,
-Computer Science Division.
-May 1984.
-.ip [Mockapetris]
-Mockapetris, P.,
-Dunlap, K,
-.ul
-Development of the Domain Name System
-ACM Computer Communications Review 18, 4:123-133.
-Proceedings ACM SIGCOMM '88  Symposium,
-August 1988.
-.ul
-.ip [Liu]
-Liu, C.,
-Albitz, P.,
-.ul
-DNS and BIND
-O'Reilly & Associates, Sebastopol, CA, 
-502 pages, ISBN 0-937175-82-X
-1992
diff --git a/contrib/bind/doc/bog/build.me b/contrib/bind/doc/bog/build.me
deleted file mode 100644
index d6dab9f6f34bf..0000000000000
--- a/contrib/bind/doc/bog/build.me
+++ /dev/null
@@ -1,102 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)build.me	6.3 (Berkeley) 9/19/89
-.\"
-.sh 1 "Building a System with a Name Server"
-.pp
-BIND is composed of two parts.  One is the user interface called the 
-\fIresolver\fP
-which consists of a group of routines that reside in the C library 
-\fI/lib/libc.a\fP.
-Second is the actual server called \fInamed\fP.
-This is a daemon that runs in the background and services queries on a 
-given network port. The standard port for UDP and TCP is specified in 
-\fI/etc/services\fP.
-.sh 2 "Resolver Routines in libc"
-.pp
-When building your 4.3BSD system you may either
-build the C library to use the name server resolver routines 
-or use the host table lookup routines to do host name and address resolution.
-The default resolver for 4.3BSD uses the name server.  Newer BSD systems
-include both name server and host table functionality with preference given
-to the name server if there is one or if there is a \fI/etc/resolv.conf\fP
-file.
-.pp
-Building the C library to use the name server changes the way
-\fIgethostbyname\fP\|(3N), \fIgethostbyaddr\fP\|(3N), and
-\fIsethostent\fP\|(3N) do their functions.  The name server renders
-\fIgethostent\fP\|(3N) obsolete, since it has no concept of a next line in
-the database.  These library calls are built with the resolver routines
-needed to query the name server.
-.pp
-The \fIresolver\fP contains functions that build query
-packets and exchange them with name servers.
-.pp
-Before building the 4.3BSD C library, set the variable \fIHOSTLOOKUP\fP
-equal to \fInamed\fP in \fI/usr/src/lib/libc/Makefile\fP.  You
-then make and install the C library and compiler and then compile the rest
-of the 4.3BSD system.  For more information see section 6.6 of ``Installing
-and Operating 4.3BSD on the VAX\(dd''.
-.(f
-\(ddVAX is a Trademark of Digital Equipment Corporation
-.)f
-.pp
-If your operating system isn't VAX\(dd 4.3BSD, it is probably the case that
-your vendor has included \fIresolver\fP support in the supplied C Library.
-You should consult your vendor's documentation to find out what has to be
-done to enable \fIresolver\fP support.  Note that your vendor's \fIresolver\fP
-may be out of date with respect to the one shipped with \s-1BIND\s+1, and that
-you might want to build \s-1BIND\s+1's resolver library and install it, and
-its include files, into your system's compile/link path so that your own
-network applications will be able to use the newer features.
diff --git a/contrib/bind/doc/bog/files.me b/contrib/bind/doc/bog/files.me
deleted file mode 100644
index ae755ff2fd1ce..0000000000000
--- a/contrib/bind/doc/bog/files.me
+++ /dev/null
@@ -1,1150 +0,0 @@
-.\" ++Copyright++ 1986, 1988, 1995
-.\" -
-.\" Copyright (c) 1986, 1988, 1995
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)files.me	6.8 (Berkeley) 9/19/89
-.\"
-.sh 1 "Files
-.pp
-The name server uses several files to load its data base.
-This section covers the files and their formats needed for \fInamed\fP.
-.sh 2 "Boot File"
-.pp
-This is the file that is first read when \fInamed\fP starts up.
-This tells the server what type of server it is,
-which
-zones it has authority over and where to get its initial data.
-The default location for this file is \fI/etc\|/named.boot\fP\|.
-However this can be changed
-by setting the \fIBOOTFILE\fP variable when you compile \fInamed\fP 
-or by specifying
-the location on the command line when \fInamed\fP is started up.
-.sh 3 "Domain"
-.pp
-A default domain may be specified for the name server
-using a line such as
-.(b l
-.ta 0.5i +\w`secondary   `u +\w`berkeley.edu   `u +.5i +.5i
-\fIdomain 	Berkeley\fP\fB\|.\|\fP\fIEdu\fP
-.)b
-.re
-Older name servers use this information when they receive a query for a name
-without a ``\fB.\fP'' that is not known.  Newer designs assume that the
-resolver library will append its own idea of a ``default domain'' to any
-unqualified names.  Though the name server can still be compiled with
-support for the \fIdomain\fP directive in the boot file, the default is to
-leave it out and we strenuously recommend against its use.  If you use this
-feature, clients outside your local domain which send you requests about
-unqualified names will have the implicit qualification of your domain rather
-than theirs.  The proper place for this function is on the client, in their
-\fB/etc/resolv.conf\fP (or equivalent) file.  Use of the \fIdomain\fP
-directive in your boot file is strongly discouraged.
-.sh 3 "Directory"
-.pp
-The \fIdirectory\fP directive specifies the directory in which the name server
-should run, allowing the other file names in the boot file to use relative path
-names.  There can be only one \fIdirectory\fP directive and it should be given
-before any other directives that specify file names.
-.(b l
-.ta 0.5i +\w`secondary   `u +\w`berkeley.edu   `u +.5i +.5i
-\fIdirectory  	/var/named\fP
-.)b
-.re
-If you have more than a couple of named files to be maintained, you may wish
-to place the named files in a directory such as /var/named and adjust the
-directory command properly.  The main purposes of this command are to make
-sure named is in the proper directory when trying to include files by
-relative path names with $INCLUDE and to allow named to run in a location
-that is reasonable to dump core if it feels the urge.
-.sh 3 "Primary Service"
-.pp
-The line in the boot file that designates the server as a primary master server
-for a zone looks as follows:
-.(b l
-.ta 0.5i +\w`secondary   `u +\w`berkeley.edu   `u +.5i +.5i
-\fIprimary  	Berkeley\fP\fB\|.\|\fP\fIEdu	ucbhosts\fP
-.)b
-.re
-The first field specifies that the server is a primary one for the zone 
-stated in the second field.
-The third field is the name of the file from which the data is read.
-.pp
-The above assumes that the zone you are specifying is a class \fIIN\fP
-zone.  If you wish to designate a different class you can append
-\fI/class\fP to the first field, where \fIclass\fP is either the
-integer value or the standard mnemonic for the class.  For example the line 
-for a primary server for a hesiod class zone looks as follows:
-.(b l
-.ta 0.5i +\w`secondary   `u +\w`berkeley.edu   `u +.5i +.5i
-\fIprimary/HS         Berkeley\fP\fB\|.\|\fP\fIEdu    hesiod.data\fP
-.)b
-.re
-Note that this support for specifying other than class \fIIN\fP zones is a
-compile-time option which your vendor may not have enabled when they built
-your operating system.
-.sh 3 "Secondary Service"
-.pp
-The line for a secondary server is similar to the primary except
-that it lists addresses of other servers (usually primary servers)
-from which the zone data will be obtained.
-.(b l
-.ta 0.5i +\w`secondary   `u +\w`berkeley.edu   `u +\w`128.32.0.10  `u +\w`128.32.0.10  `u +.5i +.5i
-\fIsecondary	Berkeley\fP\fB\|.\|\fP\fIEdu	128\fP\fB.\fP\fI32\fP\fB.\fP\fI0\fP\fB.\fP\fI10	\fP\fI128\fP\fB.\fP\fI32\fP\fB.\fP\fI0\fP\fB.\fP\fI4\fP \fIucbhosts.bak\fP
-.)b
-.re
-The first field specifies that the server is a secondary server for
-the zone stated in the second field.
-The two network addresses specify the name servers which have data for the 
-zone.  Note that at least one of these will be a \fIprimary\fP, and, unless
-you are using some protocol other than \s-1IP/DNS\s+1 for your zone transfer
-mechanism, the others will all be other \fIsecondary\fP servers.  Having your
-secondary server pull data from other secondary servers is usually unwise,
-since you can add delay to the propagation of zone updates if your network's
-connectivity varies in pathological but common ways.  The intended use for
-multiple addresses on a \fIsecondary\fP declaration is when the \fIprimary\fP
-server has multiple network interfaces and therefore multiple host addresses.
-The secondary server gets its data across the network from one of the listed
-servers.  The server addresses are tried in the order listed.
-If a filename is present after the list of primary servers, data for the zone
-will be dumped into that file as a backup.
-When the server is first started, the data is loaded from the backup file
-if possible, and a primary server is then consulted to check that the zone
-is still up-to-date.  Note that listing your server as a \fIsecondary\fP
-server does not necessarily make it one \(em the parent zone must
-\fIdelegate\fP authority to your server as well as the primary and the
-other secondaries, or you will be transferring a zone over for no reason;
-no other server will have a reason to query you for that zone unless the
-parent zone lists you as a server for the zone.
-.pp
-As with primary you may specify a secondary server for a class other than
-\fIIN\fP by appending \fI/class\fP to the \fIsecondary\fP keyword, e.g.,
-\fIsecondary/HS\fP.
-.sh 3 "Stub Service"
-.pp
-The line for a stub server is similar to a secondary.
-(This feature is experimental as of 4.9.3.)
-.(b l
-.ta 0.5i +\w`stub   `u +\w`berkeley.edu   `u +\w`128.32.0.10  `u +\w`128.32.0.10  `u +.5i +.5i
-\fIstub	Berkeley\fP\fB\|.\|\fP\fIEdu	128\fP\fB.\fP\fI32\fP\fB.\fP\fI0\fP\fB.\fP\fI10	\fP\fI128\fP\fB.\fP\fI32\fP\fB.\fP\fI0\fP\fB.\fP\fI4\fP \fIucbhosts.bak\fP
-.)b
-.re
-The first field specifies that the server is a stub server for the zone stated
-in the second field.
-.pp
-Stub zones are intended to ensure that a primary for a zone always has the
-correct \fINS\fP records for children of that zone. If the primary is not
-a secondary for a child zone it should be configured with stub zones for
-all its children. Stub zones provide a mechanism to allow \fINS\fP records
-for a zone to be specified in only one place.
-.(b l
-.ta 0.5i +\w`primary   `u +\w`dms.csiro.au   `u +\w`130.155.98.1  `u +.5i +.5i
-\fIprimary	CSIRO\fP\fB\|.\|\fP\fIAU	\fIcsiro.dat\fP
-\fIstub	dms.CSIRO\fP\fB\|.\|\fP\fIAU	130\fP\fB.\fP\fI155\fP\fB.\fP\fI16\fP\fB.\fP\fI1	\fIdms.stub\fP
-\fIstub	dap.CSIRO\fP\fB\|.\|\fP\fIAU	130\fP\fB.\fP\fI155\fP\fB.\fP\fI98\fP\fB.\fP\fI1	\fIdap.stub\fP
-.)b
-.re
-.sh 3 "Cache Initialization"
-.pp
-All servers, including ``caching only'' servers, should have a line as
-follows in the boot file to prime the name servers cache:
-.(b l
-\fIcache		\fP\fB.\fP\fI	root\fP\fB.\fP\fIcache\fP
-.)b
-Do not put anything into your \fIcache\fP files other than root server
-information.
-.pp
-All cache files listed will be read in at named boot time and any values
-still valid will be reinstated in the cache.
-The root name server
-information in the cache files will be used until a root query is 
-actually answered by one of the name servers in the cache file, after
-which that answer will be used instead of the cache file until the answer
-times out.
-.pp
-As with \fIprimary\fP and \fIsecondary\fP, you may specify a secondary
-server for a class other than \fIIN\fP by appending \fI/class\fP to the
-\fIcache\fP keyword, e.g., \fIclass/HS\fP.
-.sh 3 "Forwarders"
-.pp
-Any server can make use of \fIforwarders\fP.  A \fIforwarder\fP is another
-server capable of processing recursive queries that is willing to try
-resolving queries on behalf of other systems.  The \fIforwarders\fP
-command specifies forwarders by internet address as follows:
-.(b l
-\fIforwarders		\fI128\fP\fB.\fP\fI32\fP\fB.\fP\fI0\fP\fB.\fP\fI10	\fP\fI128\fP\fB.\fP\fI32\fP\fB.\fP\fI0\fP\fB.\fP\fI4\fP
-.)b
-.re
-There are two main reasons for wanting to do so.  First, some systems may
-not have full network access and may be prevented from sending any IP
-packets into the rest of the Internet and therefore must rely on a forwarder
-which does have access to the full net.  The second reason is that the
-forwarder sees a union of all queries as they pass through its server and
-therefore it builds up a very rich cache of data compared to the cache in a
-typical workstation name server.  In effect, the \fIforwarder\fP becomes a
-meta-cache that all hosts can benefit from, thereby reducing the total
-number of queries from that site to the rest of the net.
-.pp
-The effect of ``forwarders'' is to prepend some fixed addresses to the list
-of name servers to be tried for every query.  Normally that list is made up
-only of higher-authority servers discovered via \fINS\fP record lookups for
-the relevant domain.  If the forwarders do not answer, then unless the
-\fIslave\fP directive was given, the appropriate servers for the domains
-will be queried directly.
-
-.sh 3 "Slave Servers"
-.pp
-Slave mode is used if the use of forwarders is the only possible way
-to resolve queries due to lack of full net access or if you wish to prevent
-the name server from using other than the listed forwarders.
-Slave mode is activated by placing the simple command
-.(b l
-\fIoptions forward-only\fP
-.)b
-in the bootfile.  If this option is used, then you must specify forwarders.
-When in slave mode, the server will forward each query to each of the
-forwarders until an answer is found or the list of forwarders is exhausted.
-The server will not try to contact any remote name server other than those
-named in the \fIforwarders\fP list.
-.pp
-So while \fIforwarders\fP prepends addresses to the ``server list'' for each
-query, \fIoptions forward-only\fP causes the ``server list'' to contain
-\fIonly\fP those addresses listed in the \fIforwarders\fP declarations.
-Careless use of the \fIoptions forward-only\fP directive can cause really
-horrible forwarding loops, since
-you could end up forwarding queries only to some set of hosts which are also
-slaves, and one or several of them could be forwarding queries back to you.
-.pp
-Use of the \fIoptions forward-only\fP directive should be considered very
-carefully.  Note that this same behaviour can be achieved using the deprecated
-directive, \fIslave\fP.
-
-.sh 3 "Nonrecursive Servers"
-.pp
-\s-1BIND\s+1's separation of authoritative (zone) and nonauthoritiative (cache)
-data has always been somewhat weak, and pollution of the former via the latter
-has been known to occur.  One way to prevent this, as well as to save memory on
-servers carrying a lot of authoritative data (e.g., root servers) is to make
-such servers ``nonrecursive.''  This can be achieved via the directive
-.(b l
-\fIoptions no-recursion\fP
-.)b
-in the bootfile.  A server with this option enabled will not attempt to fetch
-data to help answer queries \(em if you ask it for data it does not have, it
-will send you a referral to a more authoritative server or, if it is itself
-authoritative for the zone of the query, it will send you an negative answer.
-.pp
-A nonrecursive server can be named in an \s-1NS\ RR\s+1 but it cannot be listed
-in the \fIresolv.conf\fP file.
-
-.sh 3 "Query Logging"
-.pp
-If the file system containing your \fIsyslog\fP file has quite a bit of space,
-you can consider using the
-.(b l
-\fIoptions query-log\fP
-.)b
-directive in your bootfile.  This will cause your name server to log every
-query it receives, which when combined with a Perl or \s-1AWK\s+1 script to
-postprocess the logs, can be a useful management tool.
-
-.sh 3 "Inverse Query Pseudosupport"
-.pp
-\s-1BIND\s+1 by default does not support inverse queries, and this has been
-known to cause problems for certain microcomputer operating systems and for
-older versions of \s-1BIND\s+1's \fInslookup\fP tool.  You may decide that
-rather than answering with ``operation not implemented,'' \fInamed\fP should
-detect the most common inverse queries and answer them with bogus information.
-It is better to upgrade your clients to stop depending on inverse queries, but
-if that is not possible, you should use the
-.(b l
-\fIoptions fake-iquery\fP
-.)b
-directive in your bootfile.  \fINOTE:\fP the responses are in fact bogus, in
-that they contain \s-1ISO\s+18859 square brackets (\fB[\fP and \fB]\fP), so
-your clients will not be able to do anything useful with these responses.  It
-has been observed that no client ever did anything useful with real inverse
-query responses, either.
-
-.sh 3 "Setting Name Server Limits"
-.pp
-Some name server operations can be quite resource intensive, and in order to
-tune your system properly it is sometimes necessary to change \s-1BIND\s+1's
-internal quotas.  This is accomplished via
-.(b l
-\fIlimit <name> <value>\fP
-.)b
-directives in the bootfile.  Limits, and their default values, are as follows:
-.(b I
-\fIlimit transfers-in 10\fP
-.)b
-This is the number of simultaneous \fInamed-xfer\fP processes \s-1BIND\s+1 is
-willing to start.  Higher numbers yield faster convergence to primary servers
-if your secondary server has hundreds or thousands of zones to maintain, but
-setting this number too high can cause thrashing due to starvation of resources
-such as network bandwidth or swap space.  \fINOTE:\fP this limit can also be
-expressed via the deprecated directive \fImax-fetch NN\fP.
-.(b I
-\fIlimit transfers-per-ns 2\fP
-.)b
-This is the number of simultaneous \fInamed-xfer\fP processes \s-1BIND\s+1 is
-willing to initiate \fIto any given name server\fP.  In most cases, you should
-not need to change it.  If your secondary server is pulling hundreds or
-thousands of zones from a single primary server, increasing
-\fItransfers-per-ns\fP may speed convergence.  It should be kept as
-small as possible, to avoid causing thrashing and resource starvation
-on the primary server.
-.(b I
-\fIlimit datasize <system-dependent>\fP
-.)b
-Most systems have a quota that limits the size of the so-called ``data
-segment,'' which is where \s-1BIND\s+1 keeps all of its authority and cache
-data.  \s-1BIND\s+1 will behave suboptimally (perhaps even exiting) if it runs
-up against this quota.  If your system supports a system call to change this
-quota for a given process, you can ask \s-1BIND\s+1 to use that system call
-via the \fIlimit datasize NN\fP directive.  The value given here may be scaled
-by postfixing \fIk\fP for 1024X, \fIm\fP for (1024^2)X, and \fIg\fP for
-(1024^3)X.  In 1995, the root servers all use \fIlimit datasize 64m\fP.
-
-.sh 3 "Zone Transfer Restrictions"
-.pp
-It may be the case that your organization does not wish to give complete
-lists of your hosts to anyone on the Internet who can reach your name servers.
-While it is still possible for people to ``iterate'' through your address
-range, looking for \fIPTR\fP records, and build a list of your hosts the
-``slow'' way, it is still considered reasonable to restrict your export of
-zones via the zone transfer protocol.  To limit the list of neighbors who
-can transfer zones from your server, use the \fIxfrnets\fP directive.
-.pp
-This directive has the same syntax as \fIforwarders\fP except that you can
-list network numbers in addition to host addresses.  For example, you could
-add the directive
-.(b l
-\fIxfrnets 16.0.0.0\fP
-.)b
-.re
-if you wanted to permit only hosts on Class A network number 16 to transfer
-zones from your server.  This is not nearly granular enough, and a future
-version of \s-1BIND\s+1 will permit such access-control to be specified on a
-per-host basis rather than the current per-net basis.  Note that while
-addresses without explicit masks are assumed by this directive to be networks,
-you can specify a mask which is as granular as you wish, perhaps including
-all bits of the address such that only a single host is given transfer
-permission.  For example, consider
-.(b l
-\fIxfrnets 16.1.0.2&255.255.255.255\fP
-.)b
-which would permit only host \fI16.1.0.2\fP to transfer zones from you.  Note
-that no spaces are allowed surrounding the ``\fI&\fP'' character that 
-introduces a netmask.
-.pp
-The \fIxfrnets\fP directive may also be given as \fItcplist\fP for
-compatibility with interim releases of \s-1BIND\s+1 4.9.
-
-.sh 3 "Sorting Addresses"
-.pp
-If there are multiple addresses available for a name server which \s-1BIND\s+1
-wants to contact, \s-1BIND\s+1 will try the ones it believes are ``closest''
-first.  ``Closeness'' is defined in terms of similarity-of-address; that is,
-if one address is on the same \fIsubnet\fP as some interface of the local host,
-then that address will be tried first.  Failing that, an address which is on
-the same \fInetwork\fP will be tried first.  Failing that, they will be tried
-in a more-or-less random order unless the \fIsortlist\fP directive was given
-in the \fInamed.boot\fP file.  \fIsortlist\fP has a syntax similar to
-\fIforwarders\fP, \fIxfrnets\fP, and \fIbogusns\fP \(em you give it a list
-of dotted-quad networks and it uses these to ``prefer'' some remote name server
-addresses over others.  If no explicit mask is provided with each element of
-a \fIsortlist\fP, one will be inferred based on the high order address bits.
-.pp
-If you are on a Class C net which has a Class B net between you and the rest
-of the Internet, you could try to improve the name server's luck in getting
-answers by listing the Class B network's number in a \fIsortlist\fP
-directive.  This should have the effect of trying ``closer'' servers before
-the more ``distant'' ones.  Note that this behaviour is new as of \s-1BIND
-4.9\s+1.
-.pp
-The other and older effect of the \fIsortlist\fP directive is to cause
-\s-1BIND\s+1 to sort the \fIA\fP records in any response it generates, so as
-to put those which appear on the \fIsortlist\fP earlier than those which do
-not.  This is not as helpful as you might think, since many clients will
-reorder the \fIA\fP records either at random or using \s-1LIFO\s+1; also,
-consider the fact that the server won't be able to guess the client's network
-topology, and so will not be able to accurately order for ``closeness'' to
-all possible clients.  Doing the ordering in the resolver is clearly superior.
-.pp
-In actual practice, this directive is used only rarely since it hardwires
-information which changes rapidly; a network which is ``close'' today may
-be ``distant'' next month.  Since \s-1BIND\s+1 builds up a cache of the
-remote name servers' response times, it will quickly converge on
-``reasonable'' behaviour, which isn't the same as ``optimal'' but it's
-close enough.  Future directions for \s-1BIND\s+1 include choosing
-addresses based on local interface metrics (on hosts that have more than
-one) and perhaps on routing table information.  We do not intend to solve
-the generalized ``multihomed host'' problem, but we should be able to do a
-little better than we're doing now.  Likewise, we hope to see a higher
-level resolver library that sorts responses using topology information that
-only exists on the client's host.
-
-.sh 3 "Bogus Name Servers"
-.pp
-It happens occasionally that some remote name server goes ``bad''.  You can
-tell your name server to refuse to listen to or ask questions of certain
-other name servers by listing them in a \fIbogusns\fP directive in your
-\fInamed.boot\fP file.  Its syntax is the same as \fIforwarders\fP,
-\fIxfrnets\fP, and \fIsortlist\fP \(em you just give it a list of dotted-quad
-Internet addresses.  Note that zones delegated to such servers will not be
-reachable from clients of your servers; thus you should use this directive
-sparingly or not at all.
-
-.sh 3 "Segmented Boot Files"
-.pp
-If you are secondary for a lot of zones, you may find it convenient to split
-your \fInamed.boot\fP file into a static portion which hardly ever changes
-(directives such as \fIdirectory\fP, \fIsortlist\fP, \fIxfrnets\fP and
-\fIcache\fP could go here), and dynamic portions that change frequently
-(all of your \fIprimary\fP directives might go in one file, and all of your
-\fIsecondary\fP directives might go in another file \(em and either or both
-of these might be fetched automatically from some neighbor so that they can
-change your list of secondary zones without requiring your active
-intervention).  You can accomplish this via the \fIinclude\fP directive,
-which takes just a single file name as its argument.  No quotes are needed
-around the file name.  The file name will be evaluated after the name server
-has changed its working directory to that specified in the \fIdirectory\fP
-directive, so you can use relative pathnames if your system supports them.
-
-.sh 2 "Resolver Configuration"
-.pp
-The configuration file's name is \fI/etc/resolv.conf\fP.
-This file designates the name servers on the network that should 
-be sent queries.
-The resolver will try to contact a name server on the localhost if it cannot
-find its configuration file.  You should install the configuration file
-on every host anyway, since this is the only recommended way to specify a
-system-level default domain, and you can still list the local host's address
-if it runs a name server.
-It is considered reasonable to create this file even if you run a local
-server, since its contents will be cached by each client of the resolver
-library when the client makes its first call to a resolver routine.
-.pp
-The \fIresolv.conf\fP file contains directives, one per line, of the
-following forms:
-.(l I
-; comment
-# another comment
-domain \fIlocal-domain\fP
-search \fIsearch-list\fP
-nameserver \fIserver-address\fP
-sortlist \fIsort-list\fP
-options \fIoption-list\fP
-.)l
-Exactly one of the \fIdomain\fP or \fIsearch\fP directives should be given,
-exactly once.
-If the \fIsearch\fP directive is given, the first item in the given
-\fIsearch-list\fP will override any previously-specified \fIlocal-domain\fP.
-The \fInameserver\fP directive may be given up to three times; additional
-\fInameserver\fP directives will be ignored.  Comments may be given by
-starting a line with a ``\fB\|;\|\fP'' or ``\fB\|#\|\fP''; note that
-comments were not permitted in versions of the resolver earlier than the one
-included with \s-1BIND 4.9\s+1 \(em so if your vendor's resolver supports
-comments, you know they are really on the ball.
-.pp
-The \fIlocal-domain\fP will be appended to any query-name that does not
-contain a ``\fB\|.\|\fP''.  \fIlocal-domain\fP can be overridden on a 
-per-process basis by setting the \s-1LOCALDOMAIN\s+1 environment variable.
-Note that \fIlocal-domain\fP processing can be disabled by setting an 
-option in the resolver.
-.pp
-The \fIsearch-list\fP is a list of domains which are tried, in order,
-as qualifying domains for query-names which do not contain a ``\fB\|.\|\fP''.
-Note that \fIsearch-list\fP processing can be disabled by setting an 
-option in the resolver.  Also note that the environment variable
-``\s-1LOCALDOMAIN\s+1'' can override this \fIsearch-list\fP on a per-process
-basis.
-.pp
-The \fIserver-address\fP\|'s are aggregated and then used as the default
-destination of queries generated through the resolver.  In other words,
-this is the way you tell the resolver which name servers it should use.  It
-is possible for a given client application to override this list, and this
-is often done inside the name server (which is itself a \fIresolver\fP
-client) and in test programs such as \fInslookup\fP.
-Note that if you wish to list the
-local host in your resolver configuration file, you should probably use its
-primary Internet address rather than a local-host alias such as 127.0.0.1 or
-0.0.0.0.  This is due to a bug in the handling of connected \s-1SOCK_DGRAM\s+1
-sockets in some versions of the \s+1BSD\s-1 networking code.  If you must use
-an address-alias, you should prefer 0.0.0.0 (or simply ``0'') over 127.0.0.1,
-though be warned that depending on the vintage of your \s-1BSD\s+1-derived
-networking code, both of them are capable of failing in their own ways.
-If your host's IP
-implementation does not create a short-circuit route between the default
-interface and the loopback interface, then you might also want to add a
-static route (eg. in \fB/etc/rc.local\fP) to do so:
-.(b l
-\fIroute add myhost.domain.name localhost 1\fP
-.)b
-.pp
-The \fIsort-list\fP is a list of IP address, netmask pairs. Addresses
-returned by gethostbyname are sorted to the order specified by this list.
-Any addresses that do not match the address netmask pair will be returned
-after those that do. The netmask is optional and the natural netmask will be
-used if not specified.
-.pp
-The \fIoption-list\fP is a list of options which each override some internal
-resolver variable.  Supported options at this time are:
-.ip \fBdebug\fP
-sets the \s-1RES_DEBUG\s+1 bit in \fB_res.options\fP.
-.ip \fBndots:\fP\fIn\fP
-sets the lower threshold (measured in ``number of dots'') on names given to
-\fIres_query\fP() such that names with more than this number of dots will be
-tried as absolute names before any \fIlocal-domain\fP or \fIsearch-list\fP
-processing is done.  The default for this internal variable is ``1''.
-.\" .pp
-.\" Finally, if the environment variable \s-1HOSTALIASES\s+1 is set, it is
-.\" taken to contain the name of a file which in turn contains resolver-level
-.\" aliases.  These aliases are applied only to names which do not contain any
-.\" ``\fB\|.\|\fP'' characters, and they are applied to query-names before the
-.\" query is generated.  Note that the resolver options governing the operation
-.\" of \fIlocal-domain\fP and \fIsearch-list\fP do not apply to
-.\" \s-1HOSTALIASES\s+1.
-
-.sh 2 "Cache Initialization File"
-.sh 3 root.cache
-.pp
-The name server needs to know the servers that are the authoritative name
-servers for the root domain of the network.  To do this we have to prime the
-name server's cache with the addresses of these higher authorities.  The
-location of this file is specified in the boot file.  This file uses the
-Standard Resource Record Format (aka. Masterfile Format) covered further on
-in this paper.
-
-.sh 2 "Domain Data Files"
-.pp
-There are two standard files for specifying the data for a 
-domain.  These are \fIhosts\fP and \fIhost.rev\fP.
-These files use the Standard Resource Record Format covered later
-in this paper.  Note that the file names are arbitrary; many network
-administrators prefer to name their zone files after the domains they
-contain, especially in the average case which is where a given server
-is primary and/or secondary for many different zones.
-.sh 3 hosts
-.pp
-This file contains all the data about the machines in this zone.
-The location of this file is specified in the boot file.
-.sh 3 hosts.rev
-.pp
-This file specifies the IN-ADDR\|.\|ARPA domain.
-This is a special domain for allowing address to name mapping.
-As internet host addresses do not fall within domain boundaries,
-this special domain was formed to allow inverse mapping.
-The IN-ADDR\|.\|ARPA domain has four
-labels preceding it. These labels correspond to the 4 octets of
-an Internet address. 
-All four octets must be specified even if an octet contains zero.
-The Internet address 128.32.0.4 is located in the domain
-4\|.\|0\|.\|32\|.\|128\|.\|IN-ADDR\|.\|ARPA.
-This reversal of the address is awkward to read but allows 
-for the natural grouping of hosts in a network.
-.sh 3 named.local
-.pp
-This file specifies the \fIPTR\fP record for the local loopback interface,
-better known as \fIlocalhost\fP, whose network address is 127.0.0.1.  The
-location of this file is specified in the boot file.  It is vitally
-important to the proper operation of every name server that the 127.0.0.1
-address have a \fIPTR\fP record pointing back to the name
-``\fBlocalhost.\fP''.  The name of this \fIPTR\fP record is always
-``\fB1.0.0.127.\s-1IN-ADDR.ARPA\s+1\fP''.  This is necessary if you want
-your users to be able to use hostname-authentication (\fIhosts.equiv\fP or
-\fI~/.rhosts\fP) on the name ``\fBlocalhost\fP''.  As implied by this
-\fIPTR\fP record, there should be a ``\fBlocalhost.\fP\fImy.dom.ain\fP''
-\fIA\fP record (with address 127.0.0.1) in every domain that contains hosts.
-``\fBlocalhost.\fP'' will lose its trailing dot when
-\fB1.0.0.127.in-addr.arpa\fP is queried for; then, the DEFNAMES and/or
-DNSRCH resolver options will cause ``\fBlocalhost\fP'' to be evaluated as a
-host name in the local domain, and that means the top domains (or ideally,
-every domain) in your resolver's search path had better have something by
-that name.
-.sh 2 "Standard Resource Record Format"
-.pp
-The records in the name server data files are called resource records.
-The Standard Resource Record Format (RR) is specified in RFC1035.
-The following is a general description of these records:
-.TS
-l l l l l.
-\fI{name}	{ttl}	addr-class	Record Type	Record Specific data\fP 
-.TE
-Resource records have a standard format shown above.
-The first field is always the name of the domain record
-and it must always start in column 1.
-For all RR's other than the first in a file, the name may be left blank;
-in that case it takes on the name of the previous RR.
-The second field is an optional time to live field.
-This specifies how long this data will be stored in the data base.
-By leaving this field blank the default time to live is specified
-in the \fIStart Of Authority\fP resource record (see below).
-The third field is the address class; currently, only one class is supported:
-\fIIN\fP for internet addresses and other internet information.  Limited 
-support is included for the \fIHS\fP class, which is for MIT/Athena ``Hesiod''
-information.
-The fourth field states the type of the resource record.
-The fields after that are dependent on the type of the RR.
-Case is preserved in names and data fields when loaded into the name server.
-All comparisons and lookups in the name server data base are case insensitive.
-.bl
-.b
-The following characters have special meanings:
-.ip ``\fB.\fP''
-A free standing dot in the name field refers to the root domain.
-.ip ``@''
-A free standing @ in the name field denotes the current origin.
-.ip "``\eX''"
-Where X is any character other than a digit (0-9),
-quotes that character so that its special meaning does not apply.
-For example, ``\e.'' can be used to place a dot character in a label.
-.ip "``\eDDD''"
-Where each D is a digit, is the octet corresponding to the
-decimal number described by DDD.  
-The resulting octet is assumed to be text and 
-is not checked for special meaning.
-.ip "``( )''"
-Parentheses are used to group data that crosses a line.  
-In effect, line terminations are not recognized within parentheses.
-(At present, this notation only works for SOA RR's and is not optional.)
-.ip "``;''"
-Semicolon starts a comment; the remainder of the line is ignored.  Note
-that a completely blank line is also considered a comment, and ignored.
-.ip "``*''"
-An asterisk signifies wildcarding.  Note that this is just another data
-character whose special meaning comes about only during internal name
-server search operations.  Wildcarding is only meaningful for some RR
-types (notably \fIMX\fP), and then only in the name field \(em not in
-the data fields.
-.pp
-Anywhere a name appears \(em either in the name field or in some data field
-defined to contain names \(em the current origin will be appended if the
-name does not end in a ``\fB\|.\|\fP''.
-This is useful for appending the current domain name to the data,
-such as machine names, but may cause problems where you do not want 
-this to happen.
-A good rule of thumb is that, if the name is not in the domain for which
-you are creating the data file, end the name with a ``\fB.\fP''.
-.sh 3 $INCLUDE
-.pp
-An include line begins with $INCLUDE, starting in column 1,
-and is followed by a file name, and, optionally, by a new
-temporary $ORIGIN to be used while reading this file.
-This feature is
-particularly useful for separating different types of data into multiple files.
-An example would be:
-.(b l
-$INCLUDE /usr/local/adm/named/data/mail-exchanges
-.)b
-The line would be interpreted as a request to load the file
-\fI/usr/local/adm/named/data/mail-exchanges\fP.  The $INCLUDE command does not cause
-data to be loaded into a different zone or tree. This is simply a way to
-allow data for a given primary zone to be organized in separate files.  
-Not even the ``temporary $ORIGIN'' feature described above is sufficient
-to cause your data to branch out into some other zone \(em zone boundaries
-can only be introduced in the boot file.
-.pp
-A $INCLUDE file must have a name on its first RR.  That is, the first 
-character of the first non-comment line must not be a space.  The current
-default name in the parent file \fIdoes not\fP carry into the $INCLUDE
-file.
-.sh 3 $ORIGIN
-.pp
-The origin is a way of changing the origin in a data file.  The line starts
-in column 1, and is followed by a domain origin.  This seems like it could
-be useful for putting more then one zone into a data file, but that's not
-how it works.  The name server fundamentally requires a given zone to map
-entirely to some specific file.  You should therefore be very careful to use
-$ORIGIN only once at the top of a file, or, within a file, to change to a
-``lower'' domain in the zone  \(em never to some other zone altogether.
-.sh 3 "SOA - Start Of Authority"
-.(b L
-.TS
-l l l l l l.
-\fIname	{ttl}	addr-class	SOA	Origin	Person in charge\fP
-@		IN	SOA	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP	kjd\fB.\fPucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP (
-			1995122103	; Serial
-			10800	; Refresh
-			1800	; Retry
-			3600000	; Expire
-			259200 )	; Minimum
-.TE
-.)b
-The \fIStart of Authority, SOA,\fP record designates the start of a zone.
-The name is the name of the zone and is often given as ``@'' since this
-is always the current $ORIGIN and the SOA RR is usually the first record
-of the primary zone file.
-Origin is the name of the host on which this data file resides (in other
-words, the \fIprimary master\fP server for this zone.)
-Person in charge is the e-mail address for the person responsible
-for the name server, with ``@'' changed to a ``.''.
-The serial number is the version number of this data file and must be a
-positive integer.
-This number must be incremented whenever a change is made to the data.
-Older servers permitted the use of a phantom ``.'' in this and other
-numbers in a zone file; the meaning of n.m was ``n000m'' rather than the
-more intuitive ``n*1000+m'' (such that 1.234 translated to 1000234 rather
-than to 1234).  This feature has been deprecated due to its
-obscurity, unpredictability, and lack of necessity.
-Note that using a ``YYYYMMDDNN'' notation you can still make 100 changes
-per day until the year 4294.  You should choose a notation that works for
-you.  If you're a clever \fIperl\fP programmer you could even use \fIRCS\fP
-version numbers to help generate your zone serial numbers.
-The refresh indicates how often, in seconds, the secondary name servers
-are to check with the primary name server to see if an update is needed.
-The retry indicates how long, in seconds, a secondary server should wait
-before retrying a failed zone transfer.
-Expire is the upper limit, in seconds, that a secondary name server
-is to use the data before it expires for lack of getting a refresh.
-Minimum is the default number of seconds to be used for the Time To Live
-field on resource records which do not specify one in the zone file.
-It is also an enforced minimum on Time To Live if it is specified on
-some resource record (RR) in the zone.
-There must be exactly one \fISOA\fP record per zone.
-.sh 3 "NS - Name Server"
-.TS
-l l l l l.
-\fI{name}	{ttl}	addr-class	NS	Name servers name\fP
-		IN	NS	ucbarpa\fB\|.\|\fPBerkeley\fB\|.\|\fPEdu\fB.\fP
-.TE
-The \fIName Server\fP record, \fINS\fP, lists a name server responsible 
-for a given domain, creating a \fIdelegation point\fP and a \fIsubzone\fP.
-The first name field specifies the zone that is serviced by 
-the name server specified by the second name.
-Every zone needs at least two name servers.
-.bp		\" ----PLACEMENT HACK----
-.sh 3 "A - Address"
-.TS
-l l l l l.
-\fI{name}	{ttl}	addr-class	A	address\fP
-ucbarpa		IN	A	128\fB.\fP32\fB.\fP0\fB.\fP4
-		IN	A	10\fB.\fP0\fB.\fP0\fB.\fP78
-.TE
-The \fIAddress\fP record, \fIA\fP, lists the address for a given machine. 
-The name field is the machine name and the address is the network address.
-There should be one \fIA\fP record for each address of the machine. 
-.sh 3 "HINFO - Host Information"
-.TS
-l l l l l l. 
-\fI{name}	{ttl}	addr-class	HINFO	Hardware	OS\fP
-		IN	HINFO	VAX-11/780	UNIX
-.TE
-\fIHost Information\fP resource record, \fIHINFO\fP, is for host specific
-data.  This lists the hardware and operating system that are running at the
-listed host.  If you want to include a space in the machine name you must
-quote the name (using ``"'' characters.)  There could be one \fIHINFO\fP
-record for each host, though for security reasons most domains don't have
-any \fIHINFO\fP records at all.  No application depends on them.
-.(b L
-.sh 3 "WKS - Well Known Services"
-.TS
-l l l l l l l.
-\fI{name}	{ttl}	addr-class	WKS	address	protocol	list of services\fP
-		IN	WKS	128\fB.\fP32\fB.\fP0\fB.\fP10	UDP	who route timed domain
-		IN	WKS	128\fB.\fP32\fB.\fP0\fB.\fP10	TCP	( echo telnet
-						discard sunrpc sftp
-						uucp-path systat daytime
-						netstat qotd nntp
-						link chargen ftp 
-						auth time whois mtp
-						pop rje finger smtp
-						supdup hostnames 
-						domain
-						nameserver )
-.TE
-The \fIWell Known Services\fP record, \fIWKS\fP, describes the well known
-services supported by a particular protocol at a specified address.  The
-list of services and port numbers come from the list of services specified
-in \fI/etc/services.\fP There should be only one \fIWKS\fP record per
-protocol per address.  Note that RFC1123 says of \fIWKS\fP records:
-.)b
-.(l L
-   2.2  Using Domain Name Service
-   ...
-      An application SHOULD NOT rely on the ability to locate a WKS
-      record containing an accurate listing of all services at a
-      particular host address, since the WKS RR type is not often used
-      by Internet sites.  To confirm that a service is present, simply
-      attempt to use it.
-   ...
-      5.2.12  WKS Use in MX Processing: RFC-974, p. 5
-
-         RFC-974 [SMTP:3] recommended that the domain system be queried
-         for WKS ("Well-Known Service") records, to verify that each
-         proposed mail target does support SMTP.  Later experience has
-         shown that WKS is not widely supported, so the WKS step in MX
-         processing SHOULD NOT be used.
-   ...
-         6.1.3.6  Status of RR Types
-   ...
-                 The TXT and WKS RR types have not been widely used by
-                 Internet sites; as a result, an application cannot rely
-                 on the existence of a TXT or WKS RR in most
-                 domains.
-.)l
-.sh 3 "CNAME - Canonical Name"
-.TS
-l l l l l. 
-\fIalias	{ttl}	addr-class	CNAME	Canonical name\fP
-ucbmonet		IN	CNAME	monet
-.TE
-The \fICanonical Name\fP resource record, \fICNAME\fP, specifies an
-alias or nickname for the official, or canonical, host name.
-This record must be the only one associated with the alias name.
-All other resource records must be
-associated with the canonical name, not with the nickname.
-Any resource records that include a domain name as their value
-(e.g., NS or MX) \fImust\fP list the canonical name, not the nickname.
-Similarly, a CNAME will be followed when searching for A RRs, but not
-for MX RRs or NS RRs or most other types of RRs.  CNAMEs are allowed
-to point to other CNAMEs, but this is considered sloppy.
-.pp
-Nicknames are useful when a well known host changes its name.  In that
-case, it is usually a good idea to have a \fICNAME\fP record so that
-people still using the old name will get to the right place.
-.sh 3 "PTR - Domain Name Pointer"
-.TS
-l l l l l. 
-\fIname	{ttl}	addr-class	PTR	real name\fP
-7.0		IN	PTR	monet\fB\|.\|\fPBerkeley\fB\|.\|\fPEdu\fB\|.\fP
-.TE
-A \fIDomain Name Pointer\fP record, \fIPTR\fP, allows special names to point
-to some other location in the domain.  The above example of a \fIPTR\fP
-record is used in setting up reverse pointers for the special
-\fIIN-ADDR\fP\fB\|.\|\fP\fIARPA\fP domain. This line is from the example
-\fIhosts.rev\fP file.  \fIPTR\fP records are needed by the
-\fIgethostbyaddr\fP function.  Note the trailing ``\fB\|.\|\fP'' which
-prevents \s-1BIND\s+1 from appending the current \s-1$ORIGIN\s+1 to that
-domain name.
-.sh 3 "MX - Mail Exchange"
-.TS
-l l l l l l. 
-\fIname	{ttl}	addr-class	MX	preference value	mail exchange\fP
-Munnari\fB\|.\|\fPOZ\fB\|.\|\fPAU\fB\|.\fP		IN	MX	0	Seismo\fB\|.\|\fPCSS\fB\|.\|\fPGOV\fB\|.\fP
-*\fB\|.\|\fPIL\fB\|.\fP		IN	MX	0	RELAY\fB\|.\|\fPCS\fB\|.\|\fPNET\fB\|.\fP
-.TE
-\fIMail eXchange\fP records, \fIMX\fP, are used to specify a list of hosts
-which are configured to receive mail sent to this domain name.  Every name
-which receives mail should have an \fIMX\fP since if one is not found at the
-time mail is being delivered, an \fIMX\fP will be ``imputed'' with a cost
-of 0 and a destination of the host itself.  If you want a host to receive
-its own mail, you should create an \fIMX\fP for your host's name, pointing
-at your host's name.  It is better to have this be explicit than to let it
-be imputed by remote mailers.
-In the first example, above,
-Seismo\fB\|.\|\fPCSS\fB\|.\|\fPGOV\fB\|.\fP is a mail gateway that knows how
-to deliver mail to Munnari\fB\|.\|\fPOZ\fB\|.\|\fPAU\fB\|.\fP.  These two
-machines may have a private connection or use a different transport medium.
-The preference value is the order that a mailer should follow when there is
-more than one way to deliver mail to a single machine.  Note that lower
-numbers indicate higher precedence, and that mailers are supposed to randomize
-same-valued \fIMX\fP hosts so as to distribute the load evenly if the costs
-are equal.  See RFC974 for more detailed information.
-.pp
-Wildcard names containing the character ``*'' may be used for mail routing
-with \fIMX\fP records.  There are likely to be servers on the network that
-simply state that any mail to a domain is to be routed through a relay.
-Second example, above, all mail to hosts in the domain IL is routed through
-RELAY.CS.NET.  This is done by creating a wildcard resource record, which
-states that *.IL has an \fIMX\fP of RELAY.CS.NET.  Wildcard \fIMX\fP records
-are not very useful in practice, though, since once a mail message gets to
-the gateway for a given domain it still has to be routed \fIwithin\fP that
-domain and it is not currently possible to have an apparently-different set
-of \fIMX\fP records inside and outside of a domain.  If you won't be needing
-any Mail Exchanges inside your domain, go ahead and use a wildcard.  If you
-want to use both wildcard ``top-level'' and specific ``interior'' \fIMX\fP
-records, note that each specific record will have to ``end with'' a complete
-recitation of the same data that is carried in the top-level record.  This
-is because the specific \fIMX\fP records will take precedence over the 
-top-level wildcard records, and must be able to perform the top-level's
-if a given interior domain is to be able to receive mail from outside the
-gateway.  Wildcard \fIMX\fP records are very subtle and you should be careful
-with them.
-.sh 3 "TXT - Text"
-.TS
-l l l l l l. 
-\fIname	{ttl}	addr-class	TXT	string\fP
-Munnari\fB\|.\|\fPOZ\fB\|.\|\fPAU\fB\|.\fP		IN	TXT	"foo"
-.TE
-A \fITXT\fP record contains free-form textual data.  The syntax of the text
-depends on the domain where it is found; many systems use \fITXT\fP records
-to encode local data in a stylized format.  MIT Hesiod is one such system.
-.sh 3 "RP - Responsible Person"
-.TS
-l l l l l l.
-\fIowner	{ttl}	addr-class	RP	mbox-domain-name	TXT-domain-name\fP
-franklin		IN 	RP	ben.franklin.berkeley.edu.	sysadmins.berkeley.edu.
-.TE
-.pp
-The Responsible Person record, \fIRP\fP, identifies the name or group name of
-the responsible person for a host.  Often it is desirable to be able to
-identify the responsible entity for a particular host.  When that host
-is down or malfunctioning, you would want to contact those parties
-who might be able to repair the host.
-.pp
-The first field, \fImbox-domain-name\fP, is a domain name that specifies the
-mailbox for the responsible person.  Its format in a zone file uses
-the \s-1DNS\s+1 convention for mailbox encoding, identical to that used for
-the \fIPerson-in-charge\fP mailbox field in the SOA record.
-In the example above, the \fImbox-domain-name\fP shows the encoding for
-``\fB<ben@franklin.berkeley.edu>\fP''.
-The root domain name (just ``\fB\|.\|\fP'') may be specified
-to indicate that no mailbox is available.
-.pp
-The second field, \fITXT-domain-name\fP, is a domain name for which
-\fITXT\fP records exist.  A subsequent query can be performed to retrieve
-the associated \fITXT\fP resource records at \fITXT-domain-name\fP.  This
-provides a level of indirection so that the entity can be referred to from
-multiple places in the \s-1DNS\s+1.  The root domain name (just
-``\fB\|.\|\fP'') may be specified for \fITXT-domain-name\fI to indicate
-that no associated \fITXT\fP RR exists.  In the example above,
-``\fBsysadmins.berkeley.edu.\fP'' is the name of a TXT record that might
-contain some text with names and phone numbers.
-.pp
-The format of the \fIRP\fP record is class-insensitive.
-Multiple \fIRP\fP records at a single name may be present in the database,
-though they should have identical TTLs.
-.pp
-The \fIRP\fP record is still experimental; not all name servers implement
-or recognize it.
-.sh 3 "AFSDB - DCE or AFS Server"
-.TS
-l l l l l l. 
-\fIname	{ttl}	addr-class	AFSDB	subtype	server host name\fP
-toaster.com.		IN	AFSDB	1	jack.toaster.com.
-toaster.com.		IN	AFSDB	1	jill.toaster.com.
-toaster.com.		IN	AFSDB	2	tracker.toaster.com.
-.TE
-\fIAFSDB\fP records are used to specify the hosts that provide a style of
-distributed service advertised under this domain name.  A subtype value
-(analogous to the ``preference'' value in the \fIMX\fP record) indicates
-which style of distributed service is provided with the given name.
-Subtype 1 indicates that the named host is an AFS (R) database server for
-the AFS cell of the given domain name.  Subtype 2 indicates that the
-named host provides intra-cell name service for the DCE (R) cell named by
-the given domain name.
-In the example above, jack\fB\|.\|\fPtoaster\fB\|.\|\fPcom and
-jill\fB\|.\|\fPtoaster\fB\|.\|\fPcom are declared to be AFS database
-servers for the toaster\fB\|.\|\fPcom AFS cell, so that AFS clients
-wishing service from toaster\fB\|.\|\fPcom are directed to those two hosts
-for further information.  The third record declares that
-tracker\fB\|.\|\fPtoaster\fB\|.\|\fPcom houses a directory server for the
-root of the DCE cell toaster\fB\|.\|\fPcom, so that DCE clients that wish
-to refer to DCE services should consult with the host
-tracker\fB\|.\|\fPtoaster\fB\|.\|\fPcom for further information.  The
-DCE sub-type of record is usually accompanied by a \fITXT\fP record for
-other information specifying other details to be used in accessing the
-DCE cell.  RFC1183 contains more detailed information on the use of
-this record type.
-.pp
-The \fIAFSDB\fP record is still experimental; not all name servers implement
-or recognize it.
-
-.sh 3 "PX - Pointer to X.400/RFC822 mapping information"
-.TS
-l l l l l l l. 
-\fIname	{ttl}	addr-class	PX	prefer	822-dom	X.400-dom\fP
-*.ADMD-garr.X42D.it.		IN	PX	50	it.	ADMD-garr.C-it.
-*.infn.it.		IN	PX	50	infn.it.	O.PRMD-infn.ADMD-garr.C-it.
-*.it.		IN	PX	50	it.	O-gate.PRMD-garr.ADMD-garr.C-it.
-.TE
-.pp
-The \fIPX\fP records (\fIPointer to X.400/RFC822 mapping information\fP) 
-are used to specify address mapping rules between X.400 O/R addresses and 
-RFC822 style (domain-style) mail addresses. For a detailed description of the 
-mapping process please refer to RFC1327.
-.pp
-Mapping rules are of 3 different types:
-.pp
-1) mapping from X.400 to RFC822 (defined as "table 1 rules" in RFC1327)
-.pp
-2) mapping from RFC822 to X.400 (defined as "table 2 rules" in RFC1327)
-.pp
-3) encoding RFC822 into X.400   (defined as "gate table" in RFC1327)
-.pp
-All three types of mapping rules are specified using \fIPX\fP Resource
-Records in DNS, although the \fIname\fP value is different: for case 1, the
-\fIname\fP value is an X.400 domain in DNS syntax, whereas for cases 2 and
-3 the \fIname\fP value is an RFC822 domain. Refer to RFC-1664 for details
-on specifying an X.400 domain in DNS syntax and for the use of the
-\fIX42D\fP keyword in it. Tools are available to convert from RFC1327
-tables format into DNS files syntax.  \fIPreference\fP is analogous to the
-\fIMX\fP RR Preference parameter: it is currently advised to use a fixed
-value of 50 for it. \fI822-dom\fP gives the RFC822 part of the mapping
-rules, and \fIX.400-dom\fP gives the X.400 part of the mapping rule (in DNS
-syntax). It is currently advised always to use wildcarded \fIname\fP
-values, as the RFC1327 tables specifications permit wildcard
-specifications only. This is to keep compatibility with existing services
-using static RFC1327 tables instead of DNS \fIPX\fP information.
-.pp
-Specifications of mapping rules from X.400 to RFC822 syntax requires the
-creation of an appropriate X.400 domain tree into DNS, including thus specific
-\fISOA\fP and \fINS\fP records for the domain itself. Specification of mapping 
-rules from RFC822 into X.400 can be embedded directly into the normal direct 
-\fIname\fP tree.
-Again, refer to RFC1664 for details about organization of this structure.
-.pp
-Tools and library routines, based on the standard resolver ones, are available
-to retrieve from DNS the appropriate mapping rules in RFC1327 or DNS syntax.
-.pp
-Once again, refer to RFC1664 to use the \fIPX\fP resource record, and be careful
-in coordinating the mapping information you can specify in DNS with the same
-information specified into the RFC1327 static tables.
-.pp
-The \fIPX\fP record is still experimental; not all servers implement or
-recognize it.
-
-.sh 2 "Discussion about the TTL"
-.pp
-The Time To Live assigned to the records and to the zone via the
-Minimum field in the SOA record is very important. High values will
-lead to lower BIND network traffic and faster response time. Lower
-values will tend to generate lots of requests but will allow faster
-propagation of changes.
-.pp
-Only changes and deletions from the zone are affected by the TTLs.
-Additions propagate according to the Refresh value in the SOA.
-.pp
-Experience has shown that sites use default TTLs for their zones varying
-from around 0.5 day to around 7 days. You may wish to consider boosting
-the default TTL shown in former versions of this guide from one day
-(86400 seconds) to three days (259200 seconds). This will drastically
-reduce the number of requests made to your name servers.
-.pp
-If you need fast propagation of changes and deletions, it might be wise
-to reduce the Minimum field a few days before the change, then do the
-modification itself and augment the TTL to its former value.
-.pp
-If you know that your zone is pretty stable (you mainly add new records
-without deleting or changing old ones) then you may even wish to consider
-a TTL higher than three days.
-.pp
-Note that in any case, it makes no sense to have records with a TTL
-below the SOA Refresh delay, as Delay is the time required for secondaries
-to get a copy of the newly modified zone.
-
-.sh 2 "About ``secure zones''
-.pp
-Secure zones implement named security on a zone by zone basis.  It is
-designed to use a permission list of networks or hosts which may obtain
-particular information from the zone.
-.pp
-In order to use zone security, \fInamed\fP must be compiled with SECURE_ZONES
-defined and you must have at least one secure_zone TXT RR.  Unless a
-\fIsecure_zone\fP record exists for a given zone, no restrictions will be
-applied to the data in that zone.  The format of the secure_zone TXT RR is:
-.lp
-secure_zone\h'0.5i'addr-class\h'0.5i'TXT\h'0.5i'string
-.pp
-The addr-class may be either \fIHS\fP or \fIIN\fP.  The syntax for the TXT
-string is either ``network address:netmask'' or ``host IP address:H''.
-.pp
-``network address:netmask'' allows queries from an entire network.  If the
-netmask is omitted, named will use the default netmask for the network
-address specified.
-.pp
-``host IP address:H'' allows queries from a host.  The ``H'' after the ``:''
-is required to differentiate the host address from a network address.
-Multiple secure_zone TXT RRs are allowed in the same zone file.
-.pp
-For example, you can set up a zone to only answer Hesiod requests from the
-masked class B network 130.215.0.0 and from host 128.23.10.56 by adding the
-following two TXT RR's:
-.lp
-secure_zone\h'0.5i'HS\h'0.5i'TXT\h'0.5i'``130.215.0.0:255.255.0.0''
-secure_zone\h'0.5i'HS\h'0.5i'TXT\h'0.5i'``128.23.10.56:H''
-.pp
-This feature can be used to restrict access to a Hesiod password map or to
-separate internal and external internet address resolution on a firewall
-machine without needing to run a separate named for internal and external
-address resolution.
-.pp
-Note that you will need to include your loopback interface (127.0.0.1) in
-your secure_zone record, or your local clients won't be able to resolve
-names.
-
-.sh 2 "About Hesiod, and HS-class Resource Records
-.pp
-Hesiod, developed by \s-1MIT\s+1 Project Athena, is an information service
-built upon \s-1BIND\s+1.  Its intent is similar to that of Sun's
-\s-1NIS\s+1: to furnish information about users, groups, network-accessible
-file systems, printcaps, and mail service throughout an installation.  Aside
-from its use of \s-1BIND\s+1 rather than separate server code another
-important difference between Hesiod and \s-1NIS\s+1 is that Hesiod is not
-intended to deal with passwords and authentication, but only with data that
-are not security sensitive.  Hesiod servers can be implemented by adding
-resource records to \s-1BIND\s+1 servers; or they can be implemented as
-separate servers separately administered.
-.pp
-To learn about and obtain Hesiod make an anonymous \s-1FTP\s+1 connection to
-host \s-1ATHENA-DIST.MIT.EDU\s+1 and retrieve the compressed tar file
-\fB/pub/ATHENA/hesiod.tar.Z\fP.  You will not need the named and resolver
-library portions of the distribution because their functionality has already
-been integrated into \s-1BIND as of 4.9\s+1.  To learn how Hesiod functions
-as part of the Athena computing environment obtain the paper
-\fB/pub/ATHENA/usenix/athena-changes.PS\fP from the above \s-1FTP\s+1 server
-host.  There is also a tar file of sample Hesiod resource files.
-.pp
-Whether one should use Hesiod class is open to question, since the same
-services can probably be provided with class IN, type TXT and type
-CNAME records.  In either case, the code and documents for Hesiod will
-suggest how to set up and use the service.
-.pp
-Note that while \s-1BIND\s+1 includes support for \fIHS\fP-class queries,
-the zone transfer logic for non-\fIIN\fP-class zones is still experimental.
-
-.sh 2 "Sample Files"
-.pp
-The following section contains sample files for the name server.
-This covers example boot files for the different types of servers
-and example domain data base files.
diff --git a/contrib/bind/doc/bog/intro.me b/contrib/bind/doc/bog/intro.me
deleted file mode 100644
index 597fa440b2d30..0000000000000
--- a/contrib/bind/doc/bog/intro.me
+++ /dev/null
@@ -1,75 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)intro.me	6.2 (Berkeley) 2/28/88
-.\"
-.sh 1 Introduction
-.pp
-The Berkeley Internet Name Domain (\s-1BIND\s+1) implements an Internet name
-server for \s-2BSD\s+2-derived operating systems.  The \s-1BIND\s+1 consists
-of a server (or ``daemon'') called \fInamed\fP and a \fIresolver\fP library.
-A name server is a network service that enables clients to name resources or
-objects and share this information with other objects in the network.  This
-in effect is a distributed data base system for objects in a computer
-network.  The \s-1BIND\s+1 server runs in the background, servicing queries
-on a well known network port.  The standard port for UDP and TCP is specified
-in \fI/etc/services\fP.  The \fIresolver\fP is a set of routines residing
-in a system library that provides the interface that programs can use to
-access the domain name services.
-.pp
-BIND is fully integrated into BSD (4.3 and later releases)
-network programs for use in storing and retrieving host names and address.
-The system administrator can configure the system to use BIND as a
-replacement to the older host table lookup of information in the network
-hosts file \fI/etc/hosts\fP.  The default configuration for BSD uses
-BIND.
diff --git a/contrib/bind/doc/bog/manage.me b/contrib/bind/doc/bog/manage.me
deleted file mode 100644
index 6f17b80b7bb1d..0000000000000
--- a/contrib/bind/doc/bog/manage.me
+++ /dev/null
@@ -1,156 +0,0 @@
-.\" ++Copyright++ 1986, 1988, 1995
-.\" -
-.\" Copyright (c) 1986, 1988, 1995
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)manage.me	6.6 (Berkeley) 9/19/89
-.\"	$Id: manage.me,v 8.4 1995/12/22 10:20:24 vixie Exp $
-.\"
-.sh 1 "Domain Management"
-.pp
-This section contains information for starting, controlling and debugging
-\fInamed\fP.
-.sh 2 /etc/rc.local
-.pp
-The hostname should be set to the full domain style name in
-\fI/etc/rc.local\fP using \fIhostname\|(1)\fP.  The following entry should
-be added to \fI/etc/rc.local\fP to start up \fInamed\fP at system boot time:
-.(b l 
-\fIif [ -f /usr/sbin/named ]; then
-    /usr/sbin/named\fP [options] \fI& echo -n ' named'  >/dev/console\fP
-\fIfi\fP
-.)b
-This usually directly follows the lines that start \fIsyslogd\fP.
-\fBDo Not\fP attempt to run \fInamed\fP from \fIinetd\fP.
-This will
-continuously restart the name server and defeat the purpose of the cache.
-.sh 2 /var/run/named.pid
-.pp
-When \fInamed\fP is successfully started up it writes its process id into
-the file \fI/var/run/named.pid\fP.  This is useful to programs that want to
-send signals to \fInamed\fP. The name of this file may be changed by defining
-\fIPIDFILE\fP to the new name when compiling \fInamed\fP.
-.sh 2 /etc/hosts
-.pp
-The \fIgethostbyname\|()\fP library call can detect if \fInamed\fP is running.
-If it is determined that \fInamed\fP is not running it will look in
-\fI/etc/hosts\fP to resolve an address.  
-This option was added to allow \fIifconfig\|(8C)\fP to configure the machines
-local interfaces and to enable a system manager to access the network 
-while the system is in single user mode.
-It is advisable to put the local machines interface addresses and a couple of 
-machine names and address in 
-\fI/etc/hosts\fP so the system manager can rcp files from another machine
-when the system is in single user mode.
-The format of \fI/etc/hosts\fP has not changed. See \fIhosts\|(5)\fP
-for more information.
-Since the process of reading \fI/etc/hosts\fP is slow, 
-it is not advisable to use this option when the system is in multi user mode.
-
-.sh 2 Signals
-.pp
-There are several signals that can be sent to the \fInamed\fP process 
-to have it do tasks without restarting the process.
-.sh 3 Reload
-.pp
-SIGHUP -
-Causes \fInamed\fP to read \fInamed.boot\fP and reload the database.
-This is useful when you have made a change to a ``primary'' data file 
-and you want \fInamed\fP\|'s internal database to reflect the change.
-If you build \s-1BIND\s+1 with the \s-1FORCED_RELOAD\s+1 option, then
-\s-1SIGHUP\s+1 also has the effect of scheduling all ``secondary'' zones
-for serial-number checks, which could lead to zone transfers ahead of
-the usual schedule.  Normally serial-number compares are done only at
-the intervals specified in the zone's \s-1SOA\s+1 record.
-.sh 3 Debugging
-.pp
-When \fInamed\fP is running incorrectly, look first in 
-\fI/var/log/messages\fP and check for any messages logged by \fIsyslog\fP.
-Next send it a signal to see what is happening.  Unless you run it with the
-``-d'' option, \fInamed\fP has very little to say on its standard output or
-standard error.  Everything \fInamed\fP has to say, it says to \fIsyslog\fP.
-.pp
-SIGINT -
-Dumps the current data base and cache to
-\fI/var/tmp/named_dump.db\fP
-This should give you an indication to whether the data base was loaded
-correctly.
-The name of the dump file may be changed
-by defining \fIDUMPFILE\fP to the new name when compiling \fInamed\fP.
-
-\fINote:\fP the following two signals only work when \fInamed\fP is built with
-\fIDEBUG\fP defined.
-.pp
-SIGUSR1 -
-Turns on debugging. Each following SIGUSR1 increments the debug level.
-The output goes to \fI/var/tmp/named.run\fP
-The name of this debug file may be changed
-by defining \fIDEBUGFILE\fP to the new name before compiling \fInamed\fP.
-.pp
-SIGUSR2 -
-Turns off debugging completely.
-
-For more detailed debugging, define DEBUG when compiling the resolver
-routines into \fI/lib/libc.a\fP.
-.pp
-SIGWINCH -
-Toggles tracing of all incoming queries if \fInamed\fP has been
-compiled with \fIQRYLOG\fP defined.  The trace is sent to syslog, and
-is huge, but it is very useful for tracking down problems.
-
-To run with tracing of all queries specify the \fI-q\fP flag on the
-command line.  If you routinely log queries you will probably want to
-analyze the results using the dnsstats stats script in the
-contrib directory.  
-.pp
-SIGIOT -
-Dumps statistics data into \fI/var/tmp/named.stats\fP if the server
-is built with \fISTATS\fP defined.  Statistics are appended to the file.
diff --git a/contrib/bind/doc/bog/named.boot.cache b/contrib/bind/doc/bog/named.boot.cache
deleted file mode 100644
index 5e0e3d3481281..0000000000000
--- a/contrib/bind/doc/bog/named.boot.cache
+++ /dev/null
@@ -1,77 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)named.boot.cache	6.4 (Berkeley) 9/19/89
-.\"
-.ne 13v
-.sh 4 "Caching Only Server"
-.(b L 
-.TS
-l.
-;
-; Boot file for Caching Only Name Server
-;
-.TE
-.TS
-l l l
-l
-l l l.
-; type	domain	source file or host
-;
-directory	/usr/local/adm/named
-cache	\fB.\fP	root\fB.\fPcache
-primary	0\fB.\fP0\fB.\fP127\fB.\fPin-addr\fB.\fParpa	named\fB.\fPlocal
-.TE
-.)b
-
-
diff --git a/contrib/bind/doc/bog/named.boot.primary b/contrib/bind/doc/bog/named.boot.primary
deleted file mode 100644
index 0f3c3ca9aa85b..0000000000000
--- a/contrib/bind/doc/bog/named.boot.primary
+++ /dev/null
@@ -1,78 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)named.boot.primary	6.4 (Berkeley) 9/19/89
-.\"
-.ne 15v
-.sh 3 "Boot Files"
-.sh 4 "Primary Server"
-.(b L
-.TS
-l.
-;
-; Boot file for Primary Name Server
-;
-.TE
-.TS
-l l l
-l
-l l l.
-; type	domain	source file or host
-;
-directory	/usr/local/adm/named
-primary	Berkeley\fB.\fPEdu	ucbhosts
-primary	32\fB.\fP128\fB.\fPin-addr\fB.\fParpa	ucbhosts\fB.\fPrev
-primary	0\fB.\fP0\fB.\fP127\fB.\fPin-addr\fB.\fParpa	named\fB.\fPlocal
-cache	\fB.\fP	root\fB.\fPcache
-.TE
-.)b
diff --git a/contrib/bind/doc/bog/named.boot.secondary b/contrib/bind/doc/bog/named.boot.secondary
deleted file mode 100644
index 64a607d58019e..0000000000000
--- a/contrib/bind/doc/bog/named.boot.secondary
+++ /dev/null
@@ -1,77 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)named.boot.secondary	6.4 (Berkeley) 9/19/89
-.\"
-.ne 12v
-.sh 4 "Secondary Server"
-.(b L
-.TS
-l.
-;
-; Boot file for Secondary Name Server
-;
-.TE
-.TS
-l l l
-l
-l l l.
-; type	domain	source file or host
-;
-directory	/usr/local/adm/named
-secondary	Berkeley\fB.\fPEdu	128\fB.\fP32\fB.\fP0\fB.\fP4 128\fB.\fP32\fB.\fP0\fB.\fP10 ucbhosts.bak
-secondary	32\fB.\fP128\fB.\fPin-addr\fB.\fParpa	128\fB.\fP32\fB.\fP0\fB.\fP4 128\fB.\fP32\fB.\fP0\fB.\fP10 ucbhosts.rev.bak
-primary	0\fB.\fP0\fB.\fP127\fB.\fPin-addr\fB.\fParpa	named\fB.\fPlocal
-cache	\fB.\fP	root\fB.\fPcache
-.TE
-.)b
diff --git a/contrib/bind/doc/bog/named.local b/contrib/bind/doc/bog/named.local
deleted file mode 100644
index 209c5be8bae20..0000000000000
--- a/contrib/bind/doc/bog/named.local
+++ /dev/null
@@ -1,75 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)named.local	6.3 (Berkeley) 5/24/89
-.\"
-.ne 13v
-.sh 3 "named.local"
-.(b L 
-
-.TS
-l l l l l s. 
-@	IN	SOA	ucbvax\fB.\fPBerkeley\fB.\fPEdu.	kjd\fB.\fPucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP (
-.T&
-l l l l l.
-			1994072100	; Serial
-			10800	; Refresh
-			1800	; Retry
-			3600000	; Expire
-			259200 )	; Minimum
-.T&
-l l l l l s.
-	IN	NS	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP	; pedantic
-1	IN	PTR	localhost\fB.\fP
-.TE
-.)b
diff --git a/contrib/bind/doc/bog/ns.me b/contrib/bind/doc/bog/ns.me
deleted file mode 100644
index ec3ca3c7988e1..0000000000000
--- a/contrib/bind/doc/bog/ns.me
+++ /dev/null
@@ -1,96 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)ns.me	6.3 (Berkeley) 9/19/89
-.\"
-.sh 1 "The Name Service"
-.pp
-The basic function of the name server is to provide information about network
-objects by answering queries.  The specifications for this name server are
-defined in RFC1034, RFC1035 and RFC974.  These documents can be found in
-\fI/usr/src/etc/named/doc\fP in 4.3BSD or \fIftp\fPed from 
-\fBftp.rs.internic.net\fP.
-It is also recommended that you read the related manual pages,
-\fInamed\fP\|(8),
-\fIresolver\fP\|(3),
-and \fIresolver\fP\|(5).
-.pp
-The advantage of using a name server over the host table lookup for host
-name resolution is to avoid the need for a single centralized clearinghouse
-for all names.  The authority for this information can be delegated to the
-different organizations on the network responsible for it.
-.pp
-The host table lookup routines require that the master file for the entire
-network be maintained at a central location by a few people.  This works
-fine for small networks where there are only a few machines and the
-different organizations responsible for them cooperate.  But this does not
-work well for large networks where machines cross organizational boundaries.
-.pp
-With the name server, the network can be broken into a hierarchy of domains. 
-The name space is organized as a tree according to organizational or
-administrative boundaries. 
-Each node, called a \fIdomain\fP, is given a label, and the name of the
-domain is the concatenation of all the labels of the domains from
-the root to the current domain, listed from right to left separated by dots.
-A label need only be unique within its domain.
-The whole space is partitioned into several areas called \fIzones\fP,
-each starting at a domain and extending down to the leaf domains or to
-domains where other zones start.  
-Zones usually represent administrative boundaries.
-An example of a host address for a host at the University of California,
-Berkeley would look as follows:
-.(b
-\fImonet\fP\|\fB.\fP\|\fIBerkeley\fP\|\fB.\fP\|\fIEDU\fP
-.)b
-The top level domain for educational organizations is EDU;
-Berkeley is a subdomain of EDU and monet is the name of the host.
diff --git a/contrib/bind/doc/bog/resolv.conf b/contrib/bind/doc/bog/resolv.conf
deleted file mode 100644
index 1f15991f8e6ac..0000000000000
--- a/contrib/bind/doc/bog/resolv.conf
+++ /dev/null
@@ -1,67 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)resolv.conf	6.2 (Berkeley) 2/29/88
-.\"
-.ne 6v
-.\" .bp
-.sh 3 "Remote Server / DNS Client"
-.sh 4 "/etc/resolv.conf"
-.(b L
-
-domain Berkeley\fB.\fPEdu
-nameserver 128\fB.\fP32\fB.\fP0\fB.\fP4
-nameserver 128\fB.\fP32\fB.\fP0\fB.\fP10
-sortlist 130.155.160.0/255.255.240.0 130.155.0.0
-
-.)b
diff --git a/contrib/bind/doc/bog/root.cache b/contrib/bind/doc/bog/root.cache
deleted file mode 100644
index 3bf572724f826..0000000000000
--- a/contrib/bind/doc/bog/root.cache
+++ /dev/null
@@ -1,102 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)root.cache	6.4 (Berkeley) 4/29/90
-.\"
-.ne 38v
-.sh 3 "root.cache"
-.(b L
-
-;
-;       This file holds the information on root name servers needed to
-;       initialize cache of Internet domain name servers 
-;       (e.g. reference this file in the "cache  .  <file>"
-;       configuration file of BIND domain name servers).
-;
-;       This file is made available by InterNIC registration services
-;       under anonymous FTP as
-;           file                /domain/named.root
-;           on server           FTP.RS.INTERNIC.NET
-;       -OR- under Gopher at    RS.INTERNIC.NET
-;           under menu          InterNIC Registration Services (NSI)
-;              submenu          InterNIC Registration Archives
-;           file                named.root
-;
-;       last update:    Oct 5, 1994
-;       related version of root zone:   1994100500
-;
-.TS
-l	l	l	l	l.	
-\fB.\fP	604800	IN	NS	NS\fB.\fPINTERNIC\fB.\fPNET\fB.\fP
-NS\fB.\fPINTERNIC\fB.\fPNET\fB.\fP	604800	IN	A	198\fB.\fP41\fB.\fP0\fB.\fP4
-\fB.\fP	604800	IN	NS	NS1\fB.\fPISI\fB.\fPEDU\fB.\fP	
-NS1\fB.\fPISI\fB.\fPEDU\fB.\fP	604800	IN	A	128\fB.\fP9\fB.\fP0\fB.\fP107
-\fB.\fP	604800	IN	NS	C\fB.\fPPSI\fB.\fPNET\fB.\fP
-C\fB.\fPPSI\fB.\fPNET\fB.\fP	604800	IN	A	192\fB.\fP33\fB.\fP4\fB.\fP12
-\fB.\fP	604800	IN	NS	TERP\fB.\fPUMD\fB.\fPEDU\fB.\fP
-TERP\fB.\fPUMD\fB.\fPEDU\fB.\fP	604800	IN	A	128\fB.\fP8\fB.\fP10\fB.\fP90
-\fB.\fP	604800	IN	NS	NS\fB.\fPNASA\fB.\fPGOV\fB.\fP
-NS\fB.\fPNASA\fB.\fPGOV\fB.\fP	604800	IN	A	128\fB.\fP102\fB.\fP16\fB.\fP10
-	604800	IN	A	192\fB.\fP52\fB.\fP195\fB.\fP10
-\fB.\fP	604800	IN	NS	NS\fB.\fPISC\fB.\fPORG\fB.\fP
-NS\fB.\fPISC\fB.\fPORG\fB.\fP	604800	IN	A	192\fB.\fP5\fB.\fP5\fB.\fP241
-\fB.\fP	604800	IN	NS	NS\fB.\fPNIC\fB.\fPDDN\fB.\fPMIL\fB.\fP
-NS\fB.\fPNIC\fB.\fPDDN\fB.\fPMIL\fB.\fP	604800	IN	A	192\fB.\fP112\fB.\fP36\fB.\fP4
-\fB.\fP	604800	IN	NS	AOS\fB.\fPARL\fB.\fPARMY\fB.\fPMIL\fB.\fP
-AOS\fB.\fPARL\fB.\fPARMY\fB.\fPMIL\fB.\fP	604800	IN	A	128\fB.\fP63\fB.\fP4\fB.\fP82
-	604800	IN	A	192\fB.\fP5\fB.\fP25\fB.\fP82
-\fB.\fP	604800	IN	NS	NIC\fB.\fPNORDU\fB.\fPNET\fB.\fP
-NIC\fB.\fPNORDU\fB.\fPNET\fB.\fP	604800	IN	A	192\fB.\fP36\fB.\fP148\fB.\fP17
-.TE
-; End of File
-.)b
diff --git a/contrib/bind/doc/bog/setup.me b/contrib/bind/doc/bog/setup.me
deleted file mode 100644
index fff765748f9a8..0000000000000
--- a/contrib/bind/doc/bog/setup.me
+++ /dev/null
@@ -1,88 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)setup.me	6.4 (Berkeley) 9/19/89
-.\"
-.sh 1 "Setting up Your Own Domain"
-.pp
-When setting up a domain that is going to be on a public network the site
-administrator should contact the organization in charge of the network and
-request the appropriate domain registration form.  An organization that
-belongs to multiple networks (such as the \fIInternet\fP and
-\fIBITNET\fP) should register with only one network.
-.sh 2 "Internet"
-.pp
-Sites on the Internet who need information on setting up a domain should
-contact the registrar for their network, which is one of the following:
-.TS
-l l.
-MILnet	\s-1HOSTMASTER\s+1@\s-1NIC\s+1\fB\|.\|\fP\s-1DDN\s+1\fB\|.\|\fP\s-1MIL\s+1
-other	\s-1HOSTMASTER\s+1@\s-1INTERNIC\s+1\fB\|.\|\fP\s-1NET\s+1
-.TE
-You may also want to be placed on the \s-1BIND\s+1 mailing list, which is a
-mail group for people on the Internet who run \s-1BIND\s+1.  The group
-discusses future design decisions, operational problems, and other related
-topic.  The address to request being placed on this mailing list is:
-.(b l
-\fIbind-request\|@\|uunet\fP\fB\|.\|\fP\fIuu\fP\fB\|.\|\fP\fInet\fP
-.)b
-.sh 2 "Subdomains of Existing Domains"
-.pp
-If you want a subdomain of some existing domain, you should find the contact
-point for the parent domain rather than asking one of the above top-level
-registrars.  There should be a convention that \fBregistrar\fP@\fIdomain\fP
-or \fBhostmaster\fP@\fIdomain\fP for any given domain will always be an alias
-for that domain's registrar (somewhat analogous to \fBpostmaster\fP), but
-there is no such convention.  Try it as a last resort, but first you should
-examine the \fISOA\fP record for the domain and send mail to the ``responsible
-person'' shown therein.  You can also try \fIwhois\fP.
diff --git a/contrib/bind/doc/bog/types.me b/contrib/bind/doc/bog/types.me
deleted file mode 100644
index 9d14111214d3d..0000000000000
--- a/contrib/bind/doc/bog/types.me
+++ /dev/null
@@ -1,163 +0,0 @@
-.\" ++Copyright++ 1986, 1988, 1995
-.\" -
-.\" Copyright (c) 1986, 1988, 1995
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)types.me	6.3 (Berkeley) 9/19/89
-.\"
-.sh 1 "Types of Zones"
-.pp
-A ``zone'' is a point of delegation in the DNS tree.  It contains all names
-from a certain point ``downward'' except those which are delegated to other
-zones.  A ``delegation point'' has one or more \fINS\fP records in the
-``parent zone'', which should be matched by equivalent \fINS\fP records at
-the root of the ``delegated zone'' (i.e., the ``@'' name in the zone file).
-.pp
-Understanding the difference between a ``zone'' and a ``domain'' is crucial
-to the proper operation of a name server.  As an example, consider the
-\s-1DEC.COM\s+1 \fIdomain\fP, which includes names such as
-\s-1POBOX1.PA.DEC.COM\s+1 and \s-1QUABBIN.CRL.DEC.COM\s+1 even though
-the \s-1DEC.COM\s+1 \fIzone\fP includes only \fIdelegations\fP for the
-\s-1PA.DEC.COM\s+1 and \s-1CRL.DEC.COM\s+1 zones.  A zone can map exactly
-to a single domain, but could also include only part of a domain (the rest
-of which could be delegated to other name servers).  Technically speaking,
-every name in the DNS tree is a ``domain'', even if it is ``terminal'', that
-is, has no ``subdomains''.  Technically speaking, every subdomain is a domain
-and every domain except the root is also a subdomain.  The terminology is not
-intuitive and you would do well to read RFC's 1033, 1034, and 1035 to gain a
-complete understanding of this difficult and subtle topic.
-.pp
-Though \s-1BIND\s+1 is a \fIDomain\fP Name Server, it deals primarily in terms
-of \fIzones\fP.  The \fIprimary\fP and \fIsecondary\fP declarations in the
-\fInamed.boot\fP file specify \fIzones\fP, not \fIdomains\fP.  When you ask
-someone if they are willing to be a secondary server for your ``domain'', you
-are actually asking for secondary service for some collection of \fIzones\fP.
-.pp
-Each zone will have one ``primary'' server, which loads the zone contents
-from some local file which is edited by humans or perhaps generated
-mechanically from some other local file which is edited by humans.  Then
-there will be some number of ``secondary'' servers, which load the zone
-contents using the \s-1IP/DNS\s+1 protocol (that is, the secondary servers will
-contact the primary and fetch the zone using \s-1IP/TCP\s+1).  This set of
-servers (the primary and all of the secondaries) should be listed in the
-\fINS\fP records in the parent zone, which will constitute a ``delegation''.
-This set of servers must also be listed in the zone file itself, usually
-under the ``@'' name which is a magic cookie that means the ``top level''
-or ``root'' of current zone.  You can list servers in the zone's
-top-level ``@'' \fINS\fP records that are not in the parent's \fINS\fP
-delegation, but you cannot list servers in the parent's delegation that are
-not present in the zone's ``@''.  Any servers listed in the \fINS\fP records
-must be configured as authoritative (either primary or secondary) for the
-zone.  If a server listed in a \fINS\fP record is not authoritative, it
-will respond with a ``lame delegation'' when queried.
-.sh 1 "Types of Servers"
-.pp
-Servers do not really have ``types''.  A server can be a primary for some
-zones and a secondary for others, or it can be only a primary, or only a
-secondary, or it can serve no zones and just answer queries via its ``cache''.
-Previous versions of this document referred to servers as ``master'' and
-``slave'' but we now feel that those distinctions \(em and the assignment of
-a ``type'' to a name server \(em are not useful.
-.sh 2 "Caching Only Server"
-.pp
-All servers are caching servers.  This means that the server caches the
-information that it receives for use until the data expires.  A \fICaching
-Only Server\fP is a server that is not authoritative for any zone.  This
-server services queries and asks other servers, who have the authority, for
-the information needed.  All servers keep data in their cache until the data
-expires, based on a \fITTL\fP (``Time To Live'') field which is maintained
-for all resource records.
-.sh 2 "Remote Server"
-.pp
-A Remote Server is an option given to people who would like to use 
-a name server from their workstation or on a machine that has a limited
-amount of memory and CPU cycles.
-With this option you can run all of the networking programs that use
-the name server without the name server running on the local machine.
-All of the queries are serviced by a name server that is running on another 
-machine on the network.
-A host which has an
-\fI/etc/resolv.conf\fP file listing only remote hosts, and which does not
-run a name server of its own, is sometimes called a Remote Server (because
-the actual server is remote?) but more
-often it is called simply a DNS Client.
-This kind of host is technically not a ``server'',
-since it has no cache and does not answer queries.
-.sh 2 "Slave Server"
-.pp
-A Slave Server is a server that always forwards queries it cannot
-satisfy from its cache, to a fixed list of \fIforwarding\fP servers
-instead of interacting
-with the name servers for the root and other domains.
-The queries to the \fIforwarding servers\fP are recursive queries.
-There may be one or more forwarding servers, and they are tried in turn
-until the list is exhausted.
-A Slave and forwarder configuration is typically used when you do not
-wish all the servers at a given site to interact with the rest
-of the Internet servers.  A typical scenario would involve a number of
-workstations and a departmental timesharing machine with Internet
-access.  The workstations might be
-administratively prohibited from having Internet access.
-To give the workstations the appearance of access to the Internet
-domain system, the workstations could be Slave servers to the timesharing
-machine which would forward the queries and interact with other
-name servers to resolve the query before returning the answer.
-An added benefit of using the forwarding feature is that the central
-machine develops a much more complete cache of information that
-all the workstations can take advantage of.  The use of Slave mode
-and forwarding is discussed further under the description of
-the \fInamed\fP bootfile commands.
-.pp
-There is no prohibition against declaring a server to be a \fIslave\fP
-even though it has \fIprimary\fP and/or \fIsecondary\fP zones as well;
-the effect will still be that anything in the local server's cache or
-zones will be answered, and anything else will be forwarded using the
-\fIforwarders\fP list.
diff --git a/contrib/bind/doc/bog/ucbhosts b/contrib/bind/doc/bog/ucbhosts
deleted file mode 100644
index 2cb26355eb852..0000000000000
--- a/contrib/bind/doc/bog/ucbhosts
+++ /dev/null
@@ -1,118 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)ucbhosts	6.3 (Berkeley) 2/8/89
-.\"
-.\" .ne 48v
-.\" .bp
-.sh 3 "Hosts"
-.(b L
-;
-;    @(#)ucb-hosts    1.2    (berkeley)    88/02/05
-;
-.TS
-l l l l l s. 
-@	IN	SOA	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP	kjd\fB.\fPmonet\fB.\fPBerkeley\fB.\fPEdu\fB.\fP (
-.T&
-l l l l l.
-			1988020501	; Serial
-			10800	; Refresh
-			1800	; Retry
-			3600000	; Expire
-			259200 )	; Minimum
-.T&
-l l l l s.
-	IN	NS	ucbarpa\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-	IN	NS	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-localhost	IN	A	127\fB.\fP1
-			; note that 127.1 is the same as 127.0.0.1; see inet(3n)
-ucbarpa	IN	A	128\fB.\fP32\fB.\fP4
-	IN	A	10\fB.\fP0\fB.\fP0\fB.\fP78
-	IN	HINFO	VAX-11/780 UNIX
-arpa	IN	CNAME	ucbarpa
-ernie	IN	A	128\fB.\fP32\fB.\fP6
-	IN	HINFO	VAX-11/780 UNIX
-ucbernie	IN	CNAME	ernie
-monet	IN	A	128\fB.\fP32\fB.\fP7
-	IN	A	128\fB.\fP32\fB.\fP130\fB.\fP6
-	IN	HINFO	VAX-11/750 UNIX
-ucbmonet	IN	CNAME	monet
-ucbvax	IN	A	10\fB.\fP2\fB.\fP0\fB.\fP78
-			; 128.32.10 means 128.32.0.10; see inet(3n)
-	IN	A	128\fB.\fP32\fB.\fP10
-			; HINFO and WKS are widely unused,
-			; but we'll show them as examples.
-	IN	HINFO	VAX-11/750 UNIX
-	IN	WKS	128.32.0.10 TCP ( echo telnet
-			discard sunrpc sftp
-			uucp-path systat daytime
-			netstat qotd nntp
-			link chargen ftp
-			auth time whhois mtp
-			pop rje finger smtp
-			supdup hostnames
-			domain
-			nameserver )
-vax	IN	CNAME	ucbvax
-toybox	IN	A	128\fB.\fP32\fB.\fP131\fB.\fP119
-	IN	HINFO	Pro350 RT11
-toybox	IN	MX	0  monet.Berkeley.Edu.
-csrg	IN	MX	0 Ralph.CS
-	IN	MX	0 Zhou.CS
-	IN	MX	0 Painter.CS
-	IN	MX	0 Riggle.CS
-	IN	MX	0 Terry.CS
-	IN	MX	0 Kevin.CS
-.TE
-.)b
-.\" .bp
diff --git a/contrib/bind/doc/bog/ucbhosts.rev b/contrib/bind/doc/bog/ucbhosts.rev
deleted file mode 100644
index 16207afefede6..0000000000000
--- a/contrib/bind/doc/bog/ucbhosts.rev
+++ /dev/null
@@ -1,86 +0,0 @@
-.\" ++Copyright++ 1986, 1988
-.\" -
-.\" Copyright (c) 1986, 1988
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)ucbhosts.rev	6.3 (Berkeley) 9/19/89
-.\"
-.ne 22v
-.sh 3 "host.rev"
-.(b L
-
-;
-;    @(#)ucb-hosts.rev    1.1    (Berkeley)    86/02/05
-;
-.TS
-l l l l l s. 
-@	IN	SOA	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP	kjd\fB.\fPmonet\fB.\fPBerkeley\fB.\fPEdu\fB.\fP (
-.T&
-l l l l l.
-			1986020501	; Serial
-			10800	; Refresh
-			1800	; Retry
-			3600000	; Expire
-			259200 )	; Minimum
-.T&
-l l l l s.
-	IN	NS	ucbarpa\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-	IN	NS	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-0\fB.\fP0	IN	PTR	Berkeley-net\fB.\fPBerkeley\fB.\fPEDU\fB.\fP
-	IN	A	255\fB.\fP255\fB.\fP255\fB.\fP0
-0\fB.\fP130	IN	PTR	csdiv-net\fB.\fPBerkeley\fB.\fPEDU\fB.\fP
-4\fB.\fP0	IN	PTR	ucbarpa\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-6\fB.\fP0	IN	PTR	ernie\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-7\fB.\fP0	IN	PTR	monet\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-10\fB.\fP0	IN	PTR	ucbvax\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-6\fB.\fP130	IN	PTR	monet\fB.\fPBerkeley\fB.\fPEdu\fB.\fP
-.TE
-.)b
diff --git a/contrib/bind/doc/html/acl.html b/contrib/bind/doc/html/acl.html
deleted file mode 100644
index 57cf8690cb152..0000000000000
--- a/contrib/bind/doc/html/acl.html
+++ /dev/null
@@ -1,63 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND acl Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>acl</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-acl <VAR>name</VAR> {
-  <VAR><A HREF="address_list.html">address_match_list</A></VAR>
-};
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>The <CODE>acl</CODE> statement creates a named address match list.
-It gets its name from a primary use of address match lists:  Access
-Control Lists (ACLs).</P>
-
-<P>Note that an address match list's name must be defined with
-<CODE>acl</CODE> before it can be used elsewhere; no forward
-references are allowed.</P>
-
-The following ACLs are built-in:
-
-<DL>
-<DT><CODE>any</CODE>
-<DD>
-Allows all hosts.
-
-<DT><CODE>none</CODE>
-<DD>
-Denies all hosts.
-
-<DT><CODE>localhost</CODE>
-<DD>
-Allows the IP addresses of all interfaces on the system.
-
-<DT><CODE>localnets</CODE>
-<DD>
-Allows any host on a network for which the system has an interface.
-</DL>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-|&nbsp;<A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: acl.html,v 1.5 1999/09/15 20:28:00 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/address_list.html b/contrib/bind/doc/html/address_list.html
deleted file mode 100644
index ec391383dfd66..0000000000000
--- a/contrib/bind/doc/html/address_list.html
+++ /dev/null
@@ -1,100 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND Address Match Lists</TITLE>
-</HEAD>
-<BODY>
-
-<H2>BIND Configuration File Guide--Address Match Lists</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-<VAR>address_match_list</VAR>    = 1*<VAR>address_match_element</VAR>
-
-<VAR>address_match_element</VAR> = [ "!" ] (<VAR><A HREF="docdef.html">address_match_list</A></VAR> / <VAR><A HREF="docdef.html">ip_address</A></VAR> / <VAR><A HREF="docdef.html">ip_prefix</A></VAR> / <VAR><A HREF="acl.html">acl_name</A></VAR> / <VAR><A HREF="docdef.html">"key" key_id</A></VAR>) ";"
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>Address match lists are primarily used to determine access control for
-various server operations.  They are also used to define priorities
-for querying other nameservers and to set the addresses on which
-<CODE>named</CODE> will listen for queries.
-The elements which constitute an address match list can be any
-of the following:</P>
-
-<UL>
-<LI>an IP address (in dotted-decimal notation),</LI>
-
-<LI>an IP prefix (in the '/'-notation),</LI>
-
-<LI>a key ID, as defined by the
-<A HREF="key.html"><CODE>key</CODE></A> statement, or
-
-<LI>the name of an address match list previously defined with 
-the <A HREF="acl.html"><CODE>acl</CODE></A> statment, or</LI>
-
-<LI>another <VAR>address_match_list</VAR></LI>
-</UL>
-
-<P>Elements can be negated with a leading exclamation mark ("!"), and
-the match list names "any", "none", "localhost" and "localnets" are
-predefined.  More information on those names can be found in the
-description of the <A HREF="acl.html"><CODE>acl</CODE></A> statement.
-
-<P>The addition of the <CODE>key</CODE>
-clause made the name of this syntactic element something of a
-misnomer, since security keys can be used to validate access without
-regard to a host or network address.  Nonetheless, the term "address
-match list" is still used throughout the documentation.</P>
-
-<P>When a given IP address or prefix is compared to an address match
-list, the list is traversed in order until an element matches.  The
-interpretation of a match depends on whether the list is being used
-for access control, defining <CODE>listen-on</CODE> ports, or as a
-topology, and whether the element was negated.</P>
-
-<P>When used as an access control list, a non-negated match allows
-access and a negated match denies access.  If there is no match,
-access is denied.  The clauses <CODE>allow-query</CODE>,
-<CODE>allow-transfer</CODE>, <CODE>allow-update</CODE> and
-<CODE>blackhole</CODE> all use address match lists like this.
-Similarly, the <CODE>listen-on</CODE> 
-option will cause the server to not accept queries on any of the
-machine's addresses which do not match the list.
-
-<P>When used with the <CODE>topology</CODE> clause, a non-negated
-match returns a distance based on its position on the list (the closer
-the match is to the start of the list, the shorter the distance is
-between it and the server).  A negated match will be assigned the
-maximum distance from the server.  If there is no match, the address
-will get a distance which is further than any non-negated list
-element, and closer than any negated element.</P>
-
-<P>Because of the first-match aspect of the algorithm, an element that
-defines a subset of another element in the list should come before the
-broader element, regardless of whether either is negated.  For
-example, in <CODE>1.2.3/24;&nbsp;!&nbsp;1.2.3.13;</CODE> the 1.2.3.13
-element is completely useless, because the algorithm will match
-any lookup for 1.2.3.13 to the 1.2.3/24 element.  Using
-<CODE>!&nbsp;1.2.3.13;&nbsp;1.2.3/24</CODE> fixes that problem by
-having 1.2.3.13 blocked by the negation but all other 1.2.3.* hosts
-fall through.
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: address_list.html,v 1.8 1999/09/15 20:28:00 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/comments.html b/contrib/bind/doc/html/comments.html
deleted file mode 100644
index a064c1ceb6011..0000000000000
--- a/contrib/bind/doc/html/comments.html
+++ /dev/null
@@ -1,84 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND Comment Syntax</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--Comment Syntax</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-/* This is a BIND comment as in C */
-
-// This is a BIND comment as in C++
-
-# This is a BIND comment as in common Unix shells and perl
-</PRE>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>Comments may appear anywhere that whitespace may appear in a BIND
-configuration file.</P>
-
-<P>C-style comments start with the two characters <CODE>/*</CODE>
-(slash, star) and end with <CODE>*/</CODE> (star, slash).  Because
-they are completely delimited with these characters, they can be used
-to comment only a portion of a line or to span multiple lines.</P>
-
-<P>C-style comments cannot be nested.  For example, the following is
-not valid because the entire comment ends with the first
-<CODE>*/</CODE>:
-
-<PRE>
-/* This is the start of a comment.
-   This is still part of the comment.
-/* This is an incorrect attempt at nesting a comment. */
-   This is no longer in any comment. */
-</PRE>
-
-
-<P>C++-style comments start with the two characters <CODE>//</CODE>
-(slash, slash) and continue to the end of the physical line.  They
-cannot be continued across multiple physical lines; to have one
-logical comment span multiple lines, each line must use the
-<CODE>//</CODE> pair.  For example:
-
-<PRE>
-// This is the start of a comment.  The next line
-// is a new comment, even though it is logically
-// part of the previous comment.
-</PRE>
-
-<P>Shell-style (or perl-style, if you prefer) comments start with the
-character <CODE>#</CODE> (hash or pound or number or octothorpe or
-whatever) and continue to the end of the physical line, like C++
-comments.</P>  For example:
-
-<PRE>
-# This is the start of a comment.  The next line
-# is a new comment, even though it is logically
-# part of the previous comment.
-</PRE>
-
-<P><STRONG>WARNING:</STRONG> you cannot use the <CODE>;</CODE>
-(semicolon) character to start a comment such as you would in a zone
-file.  The semicolon indicates the end of a configuration statement,
-so whatever follows it will be interpreted as the start of the next
-statement.</P>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-|&nbsp;<A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: comments.html,v 1.5 1999/09/15 20:28:00 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/config.html b/contrib/bind/doc/html/config.html
deleted file mode 100644
index 97f3a1b037791..0000000000000
--- a/contrib/bind/doc/html/config.html
+++ /dev/null
@@ -1,97 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND Configuration File Guide</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide</H2>
-
-<HR>
-
-<H3>Overview</H3>
-
-<P>BIND 8 is much more configurable than previous release of BIND.
-There are entirely new areas of configuration, such as access control lists
-and categorized logging.  Many options that previously applied to all zones
-can now be used selectively.  These features, plus a consideration of future
-configuration needs led to the creation of a new configuration file format.
-
-<H3>The Configuration File</H3>
-
-<H4><A HREF="example.html">Example Configuration</A></H4>
-
-<H4>Statements</H4>
-
-<P>A BIND 8 configuration consists of statements and comments.
-Statements end with a semicolon.  Many statements contain a block of
-substatements, which are also terminated with a semicolon.</P>
-
-<P>The following statements are supported:
-<DL>
-<DT><CODE><A HREF="acl.html">acl</A></CODE>
-<DD>
-defines a named IP address matching list, for access control and other uses
-
-<DT><CODE><A HREF="include.html">include</A></CODE>
-<DD>
-includes a file
-
-<DT><CODE><A HREF="key.html">key</A></CODE>
-<DD>
-specifies key information for use in authentication and authorization
-
-<DT><CODE><A HREF="logging.html">logging</A></CODE>
-<DD>
-specifies what the server logs, and where the log messages are sent
-
-<DT><CODE><A HREF="options.html">options</A></CODE>
-<DD>
-controls global server configuration options and sets defaults for other
-statements
-
-<DT><CODE><A HREF="controls.html">controls</A></CODE>
-<DD>
-declares control channels to be used by the <VAR>ndc</VAR> utility
-
-<DT><CODE><A HREF="server.html">server</A></CODE>
-<DD>
-sets certain configuration options on a per-server basis
-
-<DT><CODE><A HREF="trusted-keys.html">trusted-keys</A></CODE>
-<DD>
-defines DNSSEC keys that are preconfigured into the server and implicitly
-trusted
-
-<DT><CODE><A HREF="zone.html">zone</A></CODE>
-<DD>
-defines a zone
-</DL>
-
-<P>The <CODE>logging</CODE> and <CODE>options</CODE> statements may only
-occur once per configuration.
-
-<H4>Comments</H4>
-
-The BIND 8 <A HREF="comments.html">comment syntax</A> allows for
-comments to appear anywhere that whitespace may appear in a BIND
-configuration file.  To appeal to programmers of all kinds, they can
-be written in C, C++, or shell/perl constructs.
-
-<H3>Converting from BIND 4.9.x</H3>
-
-<p>BIND 4.9.x configuration files can be converted to the new format by
-using <code>src/bin/named/named-bootconf</code>, a shell script that is part of
-the BIND 8.2.x source kits.
-
-<HR>
-
-<CENTER><P>[ <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-|&nbsp;<A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: config.html,v 1.10 1999/09/15 20:28:01 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/controls.html b/contrib/bind/doc/html/controls.html
deleted file mode 100644
index 92619264a7b18..0000000000000
--- a/contrib/bind/doc/html/controls.html
+++ /dev/null
@@ -1,70 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND controls Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>controls</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-controls {
-  [ inet <VAR><A HREF="docdef.html">ip_addr</A></VAR>
-    port <VAR><A HREF="docdef.html">ip_port</A></VAR>
-    allow { <VAR><A HREF="address_list.html">address_match_list</A></VAR>; }; ]
-  [ unix <VAR><A HREF="docdef.html">path_name</A></VAR>
-    perm <VAR><A HREF="docdef.html">number</A></VAR>
-    owner <VAR><A HREF="docdef.html">number</A></VAR>
-    group <VAR><A HREF="docdef.html">number</A></VAR>; ]
-};
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>The <CODE>controls</CODE> statement declares control channels
-to be used by system
-administrators to affect the operation of the local name server.  These
-control channels are used by the <CODE>ndc</CODE> utility to send commands
-to and retrieve non-DNS results from a name server.</P>
-
-<P>A <CODE>unix</CODE> control channel is a FIFO in the file system,
-and access to it is
-controlled by normal file system permissions.
-It is created by <CODE>named</CODE> with the specified file mode bits (see
-the <CODE>chmod</CODE>(1) manual page), user and group owner.
-Note that, unlike <CODE>chmod</CODE>, the mode bits specified for
-<CODE>perm</CODE> will normally have a leading 0 so the number
-is interpreted as octal.  Also note that the user and group
-ownership specified as <CODE>owner</CODE> and <CODE>group</CODE>
-must be given as numbers, not names.
-It is recommended that the
-permissions be restricted to administrative personnel only, or else any
-user on the system might be able to manage the local name server.</P>
-
-<P>An <CODE>inet</CODE> control channel is a TCP/IP socket accessible
-to the Internet, created at the specified <VAR>ip_port</VAR> on the
-specified <VAR>ip_addr</VAR>.
-Modern <VAR>telnet</VAR> clients are capable of speaking directly to these
-sockets, and the control protocol is ARPAnet-style text.  It is recommended
-that 127.0.0.1 be the only <VAR>ip_addr</VAR> used, and this only if you
-trust all non-privileged users on the local host to manage your name
-server.</P>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: controls.html,v 1.4 1999/09/15 20:28:01 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/docdef.html b/contrib/bind/doc/html/docdef.html
deleted file mode 100644
index 0885c1f102cf1..0000000000000
--- a/contrib/bind/doc/html/docdef.html
+++ /dev/null
@@ -1,118 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND Documentation Definitions</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--Documentation Definitions</H2>
-
-<HR>
-
-<H3>Syntactic Miscellany</H3>
-
-<P>Described below are elements used throughout the BIND configuration
-file documentation.  Elements which are only associated with one
-statement are described only in the section describing that statement.
-
-<DL>
-<DT><VAR>acl_name</VAR>
-<DD>
-The name of an <A HREF="address_list.html">address match list</A>,
-as defined by the <A HREF="acl.html">acl</A> statement.
-
-<DT><VAR>address_match_list</VAR>
-<DD>
-A list of one or more <VAR>ip_address</VAR>, <VAR>ip_prefix</VAR>
-<VAR>key_id</VAR> or <VAR>acl_name</VAR> elements, as described in the
-<A HREF="address_list.html">Address Match Lists</A> section.
-
-<DT><VAR>dotted-decimal</VAR>
-<DD>
-One or more integers valued 0 through 255 separated only by dots
-(&quot;.&quot;), such as <CODE>123</CODE> or <CODE>45.67</CODE> or
-<CODE>89.123.45.67</CODE>.
-
-<DT><VAR>domain_name</VAR>
-<DD>
-A quoted string which will be used as a DNS name, for example 
-<CODE>"my.test.domain"</CODE>.
-
-<DT><VAR>path_name</VAR>
-<DD>
-A quoted string which will be used as a pathname, such as 
-<CODE>"zones/master/my.test.domain"</CODE>.
-
-<DT><VAR>ip_addr</VAR>
-<DD>
-An IP address in with exactly four elements in
-<VAR>dotted-decimal</VAR> notation.
-
-<DT><VAR>ip_port</VAR>
-<DD>
-An IP port <VAR>number</VAR>.  <VAR>number</VAR> is limited to 0
-through 65535, with values below 1024 typically restricted to
-root-owned processes.  In some cases an asterisk (``*'') character
-can be used as a placeholder to select a random high-numbered port.
-
-<DT><VAR>ip_prefix</VAR>
-<DD>
-An IP network specified in <VAR>dotted-decimal</VAR> form, followed by "/"
-and then the number of bits in the netmask.  E.g. <CODE>127/8</CODE> is
-the network <CODE>127.0.0.0</CODE> with netmask <CODE>255.0.0.0</CODE>.
-<CODE>1.2.3.0/24</CODE> is network <CODE>1.2.3.0</CODE> with netmask
-<CODE>255.255.255.0</CODE>.
-
-<DT><VAR>key_id</VAR>
-<DD>
-A string representing the name of a shared key, to be used for transaction
-security.
-
-<DT><VAR>number</VAR>
-<DD>
-A non-negative integer with an entire range limited by the range of a
-C language signed integer (2,147,483,647 on a machine with 32 bit
-integers).  Its acceptable value might further be limited by the
-context in which it is used.
-
-<DT><VAR>size_spec</VAR>
-<DD>
-A <VAR>number</VAR>, the word <CODE>unlimited</CODE>, or the word
-<CODE>default</CODE>.
-
-<P>The maximum value of <VAR>size_spec</VAR> is that of unsigned long
-integers on the machine.  <CODE>unlimited</CODE> requests unlimited use, or
-the maximum available amount.  <CODE>default</CODE> uses the limit that
-was in force when the server was started.</P>
-
-<P>A <VAR>number</VAR> can optionally be followed by a scaling factor:
-<CODE>K</CODE> or <CODE>k</CODE> for kilobytes, <CODE>M</CODE> or
-<CODE>m</CODE> for megabytes, and <CODE>G</CODE> or <CODE>g</CODE> for
-gigabytes, which scale by 1024, 1024*1024, and 1024*1024*1024
-respectively.
-
-<P>Integer storage overflow is currently silently ignored during
-conversion of scaled values, resulting in values less than intended,
-possibly even negative.  Using <CODE>unlimited</CODE> is the best way
-to safely set a really large number.</P>
-
-<DT><VAR>yes_or_no</VAR>
-<DD>
-Either <CODE>yes</CODE> or <CODE>no</CODE>.  The words
-<CODE>true</CODE> and <CODE>false</CODE> are also accepted, as are the
-numbers <CODE>1</CODE> and <CODE>0</CODE>.
-
-</DL>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: docdef.html,v 1.8 1999/09/15 20:28:01 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/example.html b/contrib/bind/doc/html/example.html
deleted file mode 100644
index a147828a25f0e..0000000000000
--- a/contrib/bind/doc/html/example.html
+++ /dev/null
@@ -1,65 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND Configuration File Guide -- Example Config File</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide -- Example Config File</H2>
-
-<HR>
-
-<PRE>
-
-/*
- * A simple BIND 8 configuration
- */
-
-logging {
-	category lame-servers { null; };
-	category cname { null; };
-};
-
-options {
-	directory "/var/named";
-};
-
-controls {
-	inet * port 52 allow { localnets; };		// a BAD idea
-	unix "/var/run/ndc" perm 0600 owner 0 group 0;	// the default
-};
-
-zone "isc.org" in {
-	type master;
-	file "master/isc.org";
-};
-
-zone "vix.com" in {
-	type slave;
-	file "slave/vix.com";
-	masters { 10.0.0.53; };
-};
-
-zone "." in {
-	type hint;
-	file "named.cache";
-};
-
-zone "0.0.127.in-addr.arpa" in {
-	type master;
-	notify no;
-	file "master/127.0.0";
-};
-</PRE>
-
-<HR>
-
-<CENTER><P>[ <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-|&nbsp;<A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: example.html,v 1.5 1999/09/15 20:28:01 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/include.html b/contrib/bind/doc/html/include.html
deleted file mode 100644
index 421d97b58ea7e..0000000000000
--- a/contrib/bind/doc/html/include.html
+++ /dev/null
@@ -1,57 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND include Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>include</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-include <VAR><A HREF="docdef.html">path_name</A></VAR>;
-</PRE>
-
-<HR>
-
-<A Name="#Usage"><H3>Definition and Usage</H3></A>
-
-<P>The <CODE>include</CODE> statement inserts the specified file at
-the point that the <CODE>include</CODE> statement is encountered.  It
-cannot be used within another statement, though, so a line such as
-<PRE>
-acl internal_hosts { include &quot;internal_hosts.acl&quot;; };
-</PRE>
-is not allowed.</P>
-
-<P>Use <CODE>include</CODE> to break the configuration up into
-easily-managed chunks.  For example:
-
-<PRE>
-include &quot;/etc/security/keys.bind&quot;;
-include &quot;/etc/acls.bind&quot;;
-</PRE>
-
-<P>could be used at the top of a BIND configuration file in order to
-include any ACL or key information.</P>
-
-<P>Be careful not to type
-&quot;<CODE>#include</CODE>&quot;, like you would in a C
-program, because &quot;<CODE>#</CODE>&quot; is used to start a
-comment.</P>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: include.html,v 1.7 1999/09/15 20:28:01 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/index.html b/contrib/bind/doc/html/index.html
deleted file mode 100644
index f19464b23ff9d..0000000000000
--- a/contrib/bind/doc/html/index.html
+++ /dev/null
@@ -1,65 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND Version 8 Online Documentation</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Version 8 Online Documentation</H2>
-
-<H3>BIND 8 Highlights</H3>
-
-<UL>
-<LI>DNS Dynamic Updates
-(<A HREF=http://ds.internic.net/rfc/rfc2136.txt>RFC 2136</A>)</LI>
-<LI>DNS Change Notification
-(<A HREF=http://ds.internic.net/rfc/rfc1996.txt>RFC 1996</A>)</LI>
-<LI>Completely new configuration syntax</LI>
-<LI>Flexible, categorized logging system</LI>
-<LI>IP-address-based access control for queries, zone transfers, and
-updates that may be specified on a zone-by-zone basis</LI>
-<LI>More efficient zone transfers</LI>
-<LI>Improved performance for servers with thousands of zones</LI>
-<LI>The server no longer forks for outbound zone transfers</LI>
-<LI>Many bug fixes</LI>
-</UL>
-
-<H3><A HREF="config.html">Configuration File Guide</A></H3>
-
-<H3><A HREF="master.html">Master File Format</A></H3>
-
-<H3>Kits</H3>
-<UL>
-<LI><A HREF="ftp://ftp.isc.org/isc/bind/src/cur">
-The latest production release</A></LI>
-<LI><A HREF="ftp://ftp.isc.org/isc/bind/src/testing">
-The latest public test release</A></LI>
-</UL>
-
-<H3>Bug Reports and Comments</H3>
-<P>Send bug reports to
-<A HREF="mailto:bind-bugs@isc.org">bind-bugs@isc.org</A>.
-
-<H3>DNS Related Newsgroups</H3>
-<UL>
-<LI><A HREF="news:comp.protocols.dns.bind">Using BIND</A></LI>
-<LI><A HREF="news:comp.protocols.dns.ops">DNS Operations</A></LI>
-<LI><A HREF="news:comp.protocols.dns.std">DNS Standards</A></LI>
-</UL>
-
-<H3><A HREF="http://www.isc.org/">The Internet Software Consortium</A></H3>
-
-BIND is supported by the Internet Software Consortium, and
-although it is free for use and redistribution and incorporation into
-vendor products and export and anything else you can think of, it
-costs money to produce.  That money comes from ISPs, hardware and
-software vendors, companies who make extensive use of the software,
-and generally kind hearted folk such as yourself.
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: index.html,v 1.5 1998/11/24 01:44:43 marka Exp $
-</ADDRESS>
-
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/key.html b/contrib/bind/doc/html/key.html
deleted file mode 100644
index bf2e3d1592a3d..0000000000000
--- a/contrib/bind/doc/html/key.html
+++ /dev/null
@@ -1,57 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND key Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>key</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-key <VAR>key_id</VAR> {
-  algorithm <VAR>algorithm_id</VAR>;
-  secret <VAR>secret_string</VAR>;
-};
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>The <CODE>key</CODE> statement defines a key ID which can be used
-in a <A HREF="server.html"><CODE>server</CODE></A> statement to
-associate an authentication method with a particular name server.
-
-<P>A key ID must be created with the <CODE>key</CODE>
-statement before it can be used in a <CODE>server</CODE>
-definition or an address match list.</P>
-
-<P>The <VAR>algorithm_id</VAR> is a string that specifies a
-security/authentication algorithm.  The only supported
-algorithm is "hmac-md5".
-
-<P><VAR>secret_string</VAR> is the secret to be used by the algorithm,
-and is treated as a base-64 encoded string.  This may be generated
-using dnskeygen or another utility or created manually.
-
-<P>The <CODE>key</CODE> statement is intended for use in transaction
-security.  Unless included in a <A HREF="server.html"><CODE>server</CODE></A>
-statement, it is not used to sign any requests.  It is used to verify
-requests matching the <VAR>key_id</VAR> and <VAR>algorithm_id</VAR>,
-and sign replies to those requests.
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: key.html,v 1.10 1999/09/15 20:28:02 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/logging.html b/contrib/bind/doc/html/logging.html
deleted file mode 100644
index 10e2168b5c0f2..0000000000000
--- a/contrib/bind/doc/html/logging.html
+++ /dev/null
@@ -1,369 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND logging Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide -- <CODE>logging</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-logging {
-  [ channel <VAR>channel_name</VAR> {
-    ( file <VAR><A HREF="docdef.html">path_name</A></VAR>
-       [ versions ( <VAR>number</VAR> | unlimited ) ]
-       [ size <VAR><A HREF="docdef.html">size_spec</A></VAR> ]
-     | syslog ( kern | user | mail | daemon | auth | syslog | lpr |
-                news | uucp | cron | authpriv | ftp |
-                local0 | local1 | local2 | local3 |
-                local4 | local5 | local6 | local7 )
-     | null );
-
-    [ severity ( critical | error | warning | notice |
-                 info  | debug [ <VAR>level</VAR> ] | dynamic ); ]
-    [ print-category <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-    [ print-severity <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-    [ print-time <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  }; ]
-
-  [ category <VAR>category_name</VAR> {
-    <VAR>channel_name</VAR>; [ <VAR>channel_name</VAR>; ... ]
-  }; ]
-  ...
-};
-</PRE>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>The <CODE>logging</CODE> statement configures a wide variety of
-logging options for the nameserver.  Its <CODE>channel</CODE> phrase
-associates output methods, format options and severity levels with
-a name that can then be used with the <CODE>category</CODE> phrase to
-select how various classes of messages are logged.</P>
-
-<P>Only one <CODE>logging</CODE> statement is used to define as many
-channels and categories as are wanted.  If there are multiple logging
-statements in a configuration, the first defined determines the logging,
-and warnings are issued for the others.  If there is no logging statement,
-the logging configuration will be:</P>
-
-<PRE>
-    logging {
-        category default { default_syslog; default_debug; };
-        category panic { default_syslog; default_stderr; };
-        category packet { default_debug; };
-        category eventlib { default_debug; };
-    };
-</PRE>
-
-The logging configuration is established as soon as the
-<CODE>logging</CODE> statement is parsed.  If you want to redirect
-messages about processing of the entire configuration file, the
-<CODE>logging</CODE>statement must appear first.  Even if you do not
-redirect configuration file parsing messages, we recommend
-always putting the <CODE>logging</CODE> statement first so that this
-rule need not be consciously recalled if you ever do need want the
-parser's messages relocated.
-
-<H4>The <CODE>channel</CODE> phrase</H4>
-
-<P>All log output goes to one or more "channels"; you can make as many
-of them as you want.</P>
-
-<P>Every channel definition must include a clause that says whether
-messages selected for the channel go to a file, to a particular syslog
-facility, or are discarded.  It can optionally also limit the message
-severity level that will be accepted by the channel (default is
-"info"), and whether to include a <CODE>named</CODE>-generated time
-stamp, the category name and/or severity level (default is not to
-include any).</P>
-
-<P>The word <CODE>null</CODE> as the destination option for the
-channel will cause all messages sent to it to be discarded; other
-options for the channel are meaningless.</P>
-
-<P>The <CODE>file</CODE> clause can include limitations both on how
-large the file is allowed to become, and how many versions of the file
-will be saved each time the file is opened.  
-
-<P>The <CODE>size</CODE> option for files is simply a hard ceiling on
-log growth.  If the file ever exceeds the size, 
-<CODE>named</CODE> will just not write anything more to it until the
-file is reopened; exceeding the size does not automatically trigger a
-reopen.  The default behavior is to not limit the size of the file.</P>
-
-<P>If you use the <CODE>version</CODE> logfile option,
-<CODE>named</CODE> will retain that many backup versions of the file
-by renaming them when opening.  For example, if you choose to keep 3
-old versions of the file "lamers.log" then just before it is opened
-lamers.log.1 is renamed to lames.log.2, lamers.log.0 is renamed to
-lamers.log.1, and lamers.log is renamed to lamers.log.0.  No rolled
-versions are kept by default; any existing log file is simply
-appended.  The <CODE>unlimited</CODE> keyword is synonymous with
-<CODE>99</CODE> in current BIND releases.</P>
-
-<P>Example usage of the size and versions options:
-
-<PRE>
-    channel an_example_level {
-        file "lamers.log" versions 3 size 20m;
-        print-time yes;
-        print-category yes;
-    };
-</PRE>
-
-<P>The argument for the <CODE>syslog</CODE> clause is a syslog
-facility as described in the <CODE>syslog</CODE> manual page.  How
-<CODE>syslogd</CODE> will handle messages sent to this facility is
-described in the <CODE>syslog.conf</CODE> manual page.  If you have a
-system which uses a very old version of <CODE>syslog</CODE> that only
-uses two arguments to the <CODE>openlog()</CODE> function, this
-clause is silently ignored.</P>
-
-<P>The <CODE>severity</CODE> clause works like <CODE>syslog</CODE>'s
-"priorities", except that they can also be used if you are writing
-straight to a file rather than using <CODE>syslog</CODE>.  Messages
-which are not at least of the severity level given will not be
-selected for the channel; messages of higher severity levels will be
-accepted.</P>
-
-<P>If you are using <CODE>syslog</CODE>, the
-<CODE>syslog.conf</CODE> priorities will also determine what
-eventually passes through.  For example, defining a channel facility
-and severity as <CODE>daemon</CODE> and <CODE>debug</CODE> but only
-logging <CODE>daemon.warning</CODE> via <CODE>syslog.conf</CODE> will
-cause messages of severity <CODE>info</CODE> and <CODE>notice</CODE>
-to be dropped.  If the situation were reversed, with
-<CODE>named</CODE> writing messages of only <CODE>warning</CODE> or
-higher, <CODE>syslogd</CODE> would print all messages it received
-from the channel.</P>
-
-<P>The server can supply extensive debugging information when it is in
-debugging mode.  If the server's global debug level is greater than
-zero, debugging mode will be active.  The global debug level is
-set either by starting the <CODE>named</CODE> server with the "-d"
-flag followed by a positive integer, or by sending the running server the
-SIGUSR1 signal (for example, by using "ndc trace").  The global debug
-level can be set to zero, and debugging mode turned off, by sending
-the server the SIGUSR2 signal ("ndc notrace").  All debugging messages
-in the server have a debug level, and higher debug levels give more
-more detailed output.
-Channels that specify a specific debug severity, e.g.
-
-<PRE>
-    channel specific_debug_level {
-        file "foo";
-        severity debug 3;
-    };
-</PRE>
-
-<P>will get debugging output of level 3 or less any time the
-server is in debugging mode, regardless of the global debugging level.
-Channels with <code>dynamic</code> severity use the server's global
-level to determine what messages to print.
-
-<P>If <CODE>print-time</CODE> has been turned on, the date and
-time will be logged.  <CODE>print-time</CODE> may be specified for a
-syslog channel, but is usually pointless since syslog also prints the
-date and time.  If <CODE>print-category</CODE> is requested,
-then the category of the message will be logged as well.  Finally, if
-<CODE>print-severity</CODE> is on, the severity level of the
-message will be logged.  The <CODE>print-</CODE> options may be used
-in any combination, and will always be printed in the following order:
-time, category, severity.  Here is an example where all three
-<CODE>print-</CODE> options are on:
-
-<PRE>
-    28-Apr-1997 15:05:32.863 default: notice: Ready to answer queries.
-</PRE>
-
-<P>There are four predefined channels that are used for
-<CODE>named</CODE>'s default logging as follows.  How they are used
-used is described in the next section, The <CODE>category</CODE> phrase.
-
-<PRE>
-    channel default_syslog {
-        syslog daemon;        # send to syslog's daemon facility
-        severity info;        # only send priority info and higher
-    };
-
-    channel default_debug {
-        file "named.run";     # write to named.run in the working directory
-                              # Note: stderr is used instead of "named.run"
-                              # if the server is started with the "-f" option.
-        severity dynamic;     # log at the server's current debug level
-    };
-
-    channel default_stderr {  # writes to stderr
-        file "&lt;stderr&gt;";      # this is illustrative only; there's currently
-                              # no way of specifying an internal file
-                              # descriptor in the configuration language.
-        severity info;        # only send priority info and higher
-    };
-
-    channel null {            
-        null;                 # toss anything sent to this channel
-    };
-</PRE>
-
-<P>Once a channel is defined, it cannot be redefined.  Thus you cannot
-alter the built-in channels directly, but you can modify the default
-logging by pointing categories at channels you have defined.</P>
-
-<H4>The <CODE>category</CODE> phrase</H4>
-
-<P>There are many categories, so you can send the logs you want to see
-wherever you want, without seeing logs you don't want.  If you don't specify
-a list of channels for a category, log messages in that category will
-be sent to the <CODE>default</CODE> category instead.  If you don't specify
-a default category, the following "default default" is used:
-
-<PRE>
-    category default { default_syslog; default_debug; };
-</PRE>
-
-<P>As an example, let's say you want to log security events to a file,
-but you also want keep the default logging behavior.  You'd specify the
-following:
-
-<PRE>
-    channel my_security_channel {
-        file "my_security_file";
-        severity info;
-    };
-    category security { my_security_channel; default_syslog; default_debug; };
-</PRE>
-
-<P>To discard all messages in a category, specify the
-<CODE>null</CODE> channel:
-
-<PRE>
-    category lame-servers { null; };
-    category cname { null; };
-</PRE>
-
-<P>The following
-categories are available:</P>
-
-<DL>
-<DT><CODE>default</CODE>
-<DD>
-The catch-all.  Many things still aren't classified into categories,
-and they all end up here.  Also, if you don't specify any channels for
-a category, the default category is used instead.  If you do not
-define the default category, the following definition is used:
-<CODE>category default { default_syslog; default_debug; };</CODE>
-
-<DT><CODE>config</CODE>
-<DD>  
-High-level configuration file processing.
-
-<DT><CODE>parser</CODE>
-<DD>
-Low-level configuration file processing.
-
-<DT><CODE>queries</CODE>
-<DD>
-A short log message is generated for every query the server receives.
-
-<DT><CODE>lame-servers</CODE>
-<DD>
-Messages like "Lame server on ..."
-
-<DT><CODE>statistics</CODE>
-<DD>
-Statistics.
-
-<DT><CODE>panic</CODE>
-<DD>
-If the server has to shut itself down due to an internal problem, it
-will log the problem in this category as well as in the problem's native
-category.  If you do not define the panic category, the following definition
-is used: <CODE>category panic { default_syslog; default_stderr; };</CODE>
-
-<DT><CODE>update</CODE>
-<DD>
-Dynamic updates.
-
-<DT><CODE>ncache</CODE>
-<DD>
-Negative caching.
-
-<DT><CODE>xfer-in</CODE>
-<DD>
-Zone transfers the server is receiving.
-
-<DT><CODE>xfer-out</CODE>
-<DD>
-Zone transfers the server is sending.
-
-<DT><CODE>db</CODE>
-<DD>
-All database operations.
-
-<DT><CODE>eventlib</CODE>
-<DD>
-Debugging info from the event system.  Only one channel may be specified for
-this category, and it must be a file channel.  If you do not define the
-eventlib category, the following definition is used: <CODE>category eventlib
-{ default_debug; };</CODE>
-
-<DT><CODE>packet</CODE>
-<DD>
-Dumps of packets received and sent.  Only one channel may be specified for
-this category, and it must be a file channel.  If you do not define the
-packet category, the following definition is used: <CODE>category packet
-{ default_debug; };</CODE>
-
-<DT><CODE>notify</CODE>
-<DD>
-The NOTIFY protocol.
-
-<DT><CODE>cname</CODE>
-<DD>
-Messages like "... points to a CNAME".
-
-<DT><CODE>security</CODE>
-<DD>
-Approved/unapproved requests.
-
-<DT><CODE>os</CODE>
-<DD>
-Operating system problems.
-
-<DT><CODE>insist</CODE>
-<DD>
-Internal consistency check failures.
-
-<DT><CODE>maintenance</CODE>
-<DD>
-Periodic maintenance events.
-
-<DT><CODE>load</CODE>
-<DD>
-Zone loading messages.
-
-<DT><CODE>response-checks</CODE>
-<DD>
-Messages arising from response checking, such as
-"Malformed response ...", "wrong ans. name ...",
-"unrelated additional info ...", "invalid RR type ...", and "bad referral ...".
-
-</DL>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: logging.html,v 1.12 1999/09/30 17:58:35 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/master.html b/contrib/bind/doc/html/master.html
deleted file mode 100644
index ff4ba0a20a60f..0000000000000
--- a/contrib/bind/doc/html/master.html
+++ /dev/null
@@ -1,166 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>Master File Format</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration Guide -- Master File Format</H2>
-
-<HR>
-
-<P>
-The Master File Format was initially defined in
-<A HREF=http://ds.internic.net/rfc/rfc1035.txt>RFC 1035</A>
-and has subsequently been extended. 
-<P>
-While the Master File Format is class independent all records in a 
-Master File must be of the same class.
-
-<H3>Master File Directives</H3>
-<H4>$ORIGIN</H4>
-Syntax: <CODE>$ORIGIN &lt;domain-name&gt; [&lt;comment&gt;]</CODE>
-<P>
-<CODE>$ORIGIN</CODE> set the domain name that will be appended to any
-unqualified records.
-When a zone is first read in there is an implict <CODE>$ORIGIN</CODE>
-&lt;zone-name&gt;.
-The current <CODE>$ORIGIN</CODE> is appended to the domain specified in the
-<CODE>$ORIGIN</CODE> argument if it is not absolute.
-
-<PRE>
-$ORIGIN EXAMPLE.
-$ORIGIN MYZONE
-WWW	CNAME	MAIN-SERVER
-</PRE>
-is equivlent to
-<PRE>
-WWW.MYZONE.EXAMPLE. CNAME MAIN-SERVER.MYZONE.EXAMPLE.
-</PRE>
-
-<H4>$INCLUDE</H4>
-Syntax: <CODE>$INCLUDE &lt;filename&gt; [&lt;origin&gt;] [&lt;comment&gt;]</CODE>
-<P>
-Read and process the file filename as if it was included into the file at this
-point.  If origin is specified the file is processed with <CODE>$ORIGIN</CODE>
-set to that value otherwise the current <CODE>$ORIGIN</CODE> is used.
-<I>NOTE: The  behaviour when &lt;origin&gt; is specified differs from that
-described in 
-<A HREF=http://ds.internic.net/rfc/rfc1035.txt>RFC 1035</A>.</I>
-<P>
-The origin and current domain revert to the values they were prior to the
-<CODE>$INCLUDE</CODE> once the file has been read.
-<H4>$TTL</H4>
-Syntax: <CODE>$TTL &lt;default-ttl&gt; [&lt;comment&gt;]</CODE>
-<P>
-Set the default Time To Live (TTL) for subsequent records with undefined
-TTL's. Valid TTL's are of the range 0-2147483647.
-<P>
-<CODE>$TTL</CODE> is defined in
-<A HREF=http://ds.internic.net/rfc/rfc2308.txt>RFC 2308</A>.
-<H3>BIND Master File Extentions</H3>
-<H4>$GENERATE</H4>
-Syntax: <CODE>$GENERATE &lt;range&gt; &lt;lhs&gt; &lt;type&gt; &lt;rhs&gt;
-[&lt;comment&gt;]</CODE>
-<P>
-<CODE>$GENERATE</CODE> is used to create a series of resource records
-that only differ from each other by an iterator.  <CODE>$GENERATE</CODE>
-can be used to easily generate the sets of records required to support
-sub /24 reverse delegations described in 
-<A HREF=http://ds.internic.net/rfc/rfc2317.txt>RFC 2317: Classless IN-ADDR.ARPA delegation</A>.
-
-<PRE>
-$ORIGIN 0.0.192.IN-ADDR.ARPA.
-$GENERATE 1-2 0 NS SERVER$.EXAMPLE.
-$GENERATE 1-127 $ CNAME $.0
-</PRE>
-is equivalent to
-<PRE>
-0.0.0.192.IN-ADDR.ARPA NS SERVER1.EXAMPLE.
-0.0.0.192.IN-ADDR.ARPA NS SERVER2.EXAMPLE.
-1.0.0.192.IN-ADDR.ARPA CNAME 1.0.0.0.192.IN-ADDR.ARPA.
-2.0.0.192.IN-ADDR.ARPA CNAME 2.0.0.0.192.IN-ADDR.ARPA.
-...
-127.0.0.192.IN-ADDR.ARPA CNAME 127.0.0.0.192.IN-ADDR.ARPA.
-</PRE>
-<DL>
-<DT>range</DT>
-<DD>
-This can be one of two forms:
-<I>start</I>-<I>stop</I>
-or
-<I>start</I>-<I>stop</I>/<I>step</I>.  If the first form is
-used then step is set to 1.  All of start, stop and step must be positive.
-<DT>lhs</DT>
-<DD>
-Lhs describes the owner name of the resource records to be created.
-Any single $ symbols within the LHS side are replaced by the iterator value.
-To get a $ in the output use \$.  If the lhs is not absolute
-the current $ORIGIN is appended to the name, when appropriate.
-You can also apply an offset to the iterator by using ${offset} where
-offset is a decimal value to add to the iterator.
-And you can also change the format of the iterator by using a printf
-like string.  The format is ${offset,width,radix} where offset is as before
-(use 0 for no change), width is the minimum field width (always zero padded)
-radix is one of d, o, x, or X to change the radix to decimal, octal, hex, or hex
-with capital letters.
-The default is ${0,1,d}.
-For example: ${16,3} will add 16 to the iterator and be replaced by
-a 3 digit decimal representation.  ${0,2,x} will be replaced by a 2 digit
-hex representation.  To get a { character inserted into the text
-immediately after the iterator, use $\{.
-<DT>type</DT>
-<DD>
-At present the only supported types are A, AAAA, PTR, CNAME and NS.
-<DT>rhs</DT>
-<DD>
-Rhs is the data. It is processed similarly to the lhs.
-<DD>
-</DL>
-<H2>Resource Records</H2>
-Syntax: <CODE>{&lt;domain&gt;|@|&lt;blank&gt;}
-[&lt;ttl&gt;] [&lt;class&gt;] &lt;type&gt; &lt;rdata&gt;
-[&lt;comment&gt;]</CODE>
-<P>
-All resource records have the same basic syntax.
-<DL>
-<DT><CODE>domain</CODE></DT>
-<DD>
-Specify the domain name for this record.  If it is not absolute the
-current <CODE>$ORIGIN</CODE> is appended.
-<DT><CODE>@</CODE></DT>
-<DD>
-Use the current <CODE>$ORIGIN</CODE> for the domain name for this record.
-<DT><CODE>blank</CODE></DT>
-<DD>
-Use the last specified domainname.
-<DT><CODE>ttl</CODE></DT>
-<DD>
-This specifies how long this record will be cached by caching servers.
-The valid range is 0-2147483647.
-<DT><CODE>class</CODE></DT>
-<DD>
-Specify the class of this record.  This is usually redundent as the
-class of a zone is specfied in the configuration file prior to reading
-the zone file.
-<DT><CODE>type</CODE></DT>
-<DD>
-Specify the type of this record. This describes the contents of the rdata
-section.
-<DT><CODE>rdata</CODE></DT>
-<DD>
-This is the value of the resource record.
-</DL>
-<H2>Time Values: Alternate Specification format (BIND Enhancement)</H2>
-<P>
-Many time values within the MASTER file may be specified in multiples
-of weeks, days, hours, minutes and seconds rather than just seconds.
-<P>
-The format for this is <CODE>#w#d#h#m#s</CODE>. To specify 1 week you would
-use <CODE>1w</CODE> or two weeks and 1 hour <CODE>2w1h</CODE>.
-<P>
-This format applies to TTL values, and SOA REFRESH, RETRY, EXPIRE and MINIMUM
-values.
-</P>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/options.html b/contrib/bind/doc/html/options.html
deleted file mode 100644
index e3e09efdb3729..0000000000000
--- a/contrib/bind/doc/html/options.html
+++ /dev/null
@@ -1,814 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND options Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide -- <CODE>options</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-options {
-  [ version <VAR>version_string</VAR>; ]
-  [ directory <VAR>path_name</VAR>; ]
-  [ named-xfer <VAR>path_name</VAR>; ]
-  [ dump-file <VAR>path_name</VAR>; ]
-  [ memstatistics-file <VAR>path_name</VAR>; ]
-  [ pid-file <VAR>path_name</VAR>; ]
-  [ statistics-file <VAR>path_name</VAR>; ]
-  [ auth-nxdomain <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ deallocate-on-exit <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ dialup <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ fake-iquery <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ fetch-glue <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ has-old-clients <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ host-statistics <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ multiple-cnames <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ notify <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ recursion <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ rfc2308-type1 <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ use-id-pool <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ treat-cr-as-space <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ also-notify { <VAR><A HREF="docdef.html">ip_addr</A></VAR>; [ <VAR><A HREF="docdef.html">ip_addr</A></VAR>; ... ] };
-  [ forward ( only | first ); ]
-  [ forwarders { [ <VAR><A HREF="docdef.html">in_addr</A></VAR> ; [ <VAR><A HREF="docdef.html">in_addr</A></VAR> ; ... ] ] }; ]
-  [ check-names ( master | slave | response ) ( warn | fail | ignore); ]
-  [ allow-query { <VAR>address_match_list</VAR> }; ]
-  [ allow-transfer { <VAR>address_match_list</VAR> }; ]
-  [ allow-recursion { <VAR>address_match_list</VAR> }; ]
-  [ blackhole { <VAR>address_match_list</VAR> }; ]
-  [ listen-on [ port <VAR><A HREF="docdef.html">ip_port</A></VAR> ] { <VAR>address_match_list</VAR> }; ]
-  [ query-source [ address ( <VAR><A HREF="docdef.html">ip_addr</A></VAR> | * ) ] [ port ( <VAR><A HREF="docdef.html">ip_port</A></VAR> | * ) ] ; ]
-  [ lame-ttl <VAR>number</VAR>; ]
-  [ max-transfer-time-in <VAR>number</VAR>; ]
-  [ max-ncache-ttl <VAR>number</VAR>; ]
-  [ min-roots <VAR>number</VAR>; ]
-  [ serial-queries <VAR>number</VAR>; ]
-  [ transfer-format ( one-answer | many-answers ); ]
-  [ transfers-in  <VAR>number</VAR>; ]
-  [ transfers-out <VAR>number</VAR>; ]
-  [ transfers-per-ns <VAR>number</VAR>; ]
-  [ transfer-source <VAR><A HREF="docdef.html">ip_addr</A></VAR>; ]
-  [ maintain-ixfr-base <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ max-ixfr-log-size <VAR>number</VAR>; ]
-  [ coresize <VAR><A HREF="docdef.html">size_spec</A></VAR> ; ]
-  [ datasize <VAR><A HREF="docdef.html">size_spec</A></VAR> ; ]
-  [ files <VAR><A HREF="docdef.html">size_spec</A></VAR> ; ]
-  [ stacksize <VAR><A HREF="docdef.html">size_spec</A></VAR> ; ]
-  [ cleaning-interval <VAR>number</VAR>; ]
-  [ heartbeat-interval <VAR>number</VAR>; ]
-  [ interface-interval <VAR>number</VAR>; ]
-  [ statistics-interval <VAR>number</VAR>; ]
-  [ <A HREF="#topology">topology</A> { <VAR>address_match_list</VAR> }; ]
-  [ <A HREF="#sortlist">sortlist</A> { <VAR>address_match_list</VAR> }; ]
-  [ rrset-order { <VAR>order_spec</VAR> ; [ <VAR>order_spec</VAR> ; ... ] ] }; 
-};
-</PRE>
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>The options statement sets up global options to be used by
-BIND. This statement may appear at only once in a
-configuration file; if more than one occurrence is found, the
-first occurrence determines the actual options used,
-and a warning will be generated.  If there is no options statement,
-an options block with each option set to its default will be used.</P>
-
-<H4>Pathnames</H4>
-
-<DL>
-<DT><CODE>version</CODE>
-<DD>
-The version the server should report via the <VAR>ndc</VAR> command
-or via a query of name <CODE>version.bind</CODE> in class <I>chaos</I>.
-The default is the real version number of the server, but some server
-operators prefer the string <CODE>"surely you must be joking"</CODE>.
-
-<DT><CODE>directory</CODE>
-<DD>
-The working directory of the server.  Any non-absolute
-pathnames in the configuration file will be taken as relative to this
-directory.  The default location for most server output files
-(e.g. "named.run") is this directory.  If a directory is not
-specified, the working directory defaults to ".", the directory from which the
-server was started.  The directory specified should be an absolute path.
-
-<DT><CODE>named-xfer</CODE>
-<DD>
-The pathname to the named-xfer program that the server uses for
-inbound zone transfers.  If not specified, the default is
-system dependent (e.g.  "/usr/sbin/named-xfer").
-
-<DT><CODE>dump-file</CODE>
-<DD>
-The pathname of the file the server dumps the database to when it
-receives <CODE>SIGINT</CODE> signal (<CODE>ndc dumpdb</CODE>).  If not
-specified, the default is "named_dump.db".
-
-<DT><CODE>memstatistics-file</CODE>
-<DD>
-The pathname of the file the server writes memory usage statistics to, on exit,
-if <CODE>deallocate-on-exit</CODE> is <CODE>yes</CODE>.  If not
-specified, the default is "named.memstats".
-
-<DT><CODE>pid-file</CODE>
-<DD>
-The pathname of the file the server writes its process ID in.  If not
-specified, the default is operating system dependent, but is usually
-"/var/run/named.pid" or "/etc/named.pid".  The pid-file is used by
-programs like "ndc" that want to send signals to the running
-nameserver.
-
-<DT><CODE>statistics-file</CODE>
-<DD>
-The pathname of the file the server appends statistics to when it
-receives <CODE>SIGILL</CODE> signal (<CODE>ndc stats</CODE>).  If not
-specified, the default is "named.stats".
-</DL>
-
-<A name="BooleanOptions"><H4>Boolean Options</H4></A>
-
-<DL>
-<DT><CODE>auth-nxdomain</CODE>
-<DD>
-If <CODE>yes</CODE>, the <CODE>AA</CODE> bit is always set on
-NXDOMAIN responses, even if the server is not actually authoritative.
-The default is <CODE>yes</CODE>.  Do not turn off
-<CODE>auth-nxdomain</CODE> unless you are sure you know what you are
-doing, as some older software won't like it.
-
-<DT><CODE>deallocate-on-exit</CODE>
-<DD>
-If <CODE>yes</CODE>, the server will painstakingly deallocate every object it
-it allocated, when it exits, and then write a memory usage report to
-the <CODE>memstatistics-file</CODE>.  The default is <CODE>no</CODE>, because
-it is faster to let the operating system clean up.
-<CODE>deallocate-on-exit</CODE> is handy for detecting memory leaks.
-
-<DT><CODE>dialup</CODE>
-<DD>
-If <CODE>yes</CODE>, the server treats all zones as if they are
-doing zone transfers across a dial on demand dialup link, which can
-be brought up by traffic originating from this server.  This has
-different effects according to zone type and concentrates the zone
-maintenance so that it all happens in a short interval, once every 
-<CODE>heartbeat-interval</CODE> and hopefully during the one call.
-It also suppresses some of the normal zone maintainance traffic.
-The default is <CODE>no</CODE>. The <CODE>dialup</CODE>
-option may also be specified in the <CODE>zone</CODE> statement, in which
-case it overrides the <CODE>options dialup</CODE> statement.
-
-<P>
-If the zone is a <CODE>master</CODE> zone, the server will send out
-NOTIFY request to all the slaves.  This will trigger the "zone up to
-date checking" in the slave (providing it supports NOTIFY), allowing
-the <CODE>slave</CODE> to verify the zone while the call us up.
-
-<P>
-If the zone is a <CODE>slave</CODE> or <CODE>stub</CODE> zone, the server
-will suppress the regular "zone up to date" queries and only perform
-them when the <CODE>heartbeat-interval</CODE> expires.
-
-<DT><CODE>fake-iquery</CODE>
-<DD>
-If <CODE>yes</CODE>, the server will simulate the obsolete DNS query type
-IQUERY.  The default is <CODE>no</CODE>.
-
-<DT><CODE>fetch-glue</CODE>
-<DD>
-If <CODE>yes</CODE> (the default), the server will fetch "glue" resource
-records it doesn't have when constructing the additional data section of
-a response.  <CODE>fetch-glue no</CODE> can be used in conjunction with
-<CODE>recursion no</CODE> to prevent the server's cache from growing or
-becoming corrupted (at the cost of requiring more work from the client).
-
-<DT><CODE>has-old-clients</CODE>
-<DD>
-Setting the option to <CODE>yes</CODE> is equivalent to setting the follow
-three options <CODE>auth-nxdomain yes;</CODE>, <CODE>maintain-ixfr-base
-yes;</CODE> and <CODE>rfc2308-type1 no;</CODE>.
-The use of <CODE>has-old-clients</CODE> with <CODE>auth-nxdomain</CODE>,
-<CODE>maintain-ixfr-base</CODE> and <CODE>rfc2308-type1</CODE> is order
-dependant.
-
-<DT><CODE>host-statistics</CODE>
-<DD>
-If <CODE>yes</CODE>, statistics are kept for every host that the
-the nameserver interacts with.  The default is <CODE>no</CODE>.  <I>Note:</I>
-turning on <CODE>host-statistics</CODE> can consume huge amounts of memory.
-
-<DT><CODE>maintain-ixfr-base</CODE>
-<DD>
-If <CODE>yes</CODE>, a transaction log is kept for 
-Incremental Zone Transfer. The default is <CODE>no</CODE>. 
-
-<DT><CODE>multiple-cnames</CODE>
-<DD>
-If <CODE>yes</CODE>, multiple CNAME resource records will be
-allowed for a domain name.  The default is <CODE>no</CODE>.  Allowing
-multiple CNAME records is against standards and is not recommended.
-Multiple CNAME support is available because previous versions of BIND
-allowed multiple CNAME records, and these records have been used for load
-balancing by a number of sites.
-
-<DT><CODE>notify</CODE>
-<DD>
-If <CODE>yes</CODE> (the default), DNS NOTIFY messages are sent when a
-zone the server is authoritative for changes.  The use of NOTIFY
-speeds convergence between the master and its slaves.  Slave servers
-that receive a NOTIFY message, and understand it, will contact the
-master server for the zone to see if they need to do a zone transfer.  If
-they do, they will initiate it immediately.  The <CODE>notify</CODE>
-option may also be specified in the <CODE>zone</CODE> statement, in which
-case it overrides the <CODE>options notify</CODE> statement.
-
-<DT><CODE>recursion</CODE>
-<DD>
-If <CODE>yes</CODE>, and a DNS query requests recursion, the
-server will attempt to do all the work required to answer the query.
-If recursion is not on, the server will return a referral to the
-client if it doesn't know the answer.  The default is <CODE>yes</CODE>.
-See also <CODE>fetch-glue</CODE> above.
-
-<DT><CODE>rfc2308-type1</CODE>
-<DD>
-If <CODE>yes</CODE>, the server will send NS records along with the SOA
-record for negative answers.
-You need to set this to <CODE>no</CODE> if you have an old BIND
-server using you as a forwarder that does not understand negative answers
-which contain both SOA and NS records or you have an old version of sendmail.
-The correct fix is to upgrade the broken server or sendmail.
-The default is <CODE>no</CODE>.
-
-<DT><CODE>use-id-pool</CODE>
-<DD>
-If <CODE>yes</CODE>, the server will keep track of its own outstanding
-query ID's to avoid duplication and increase randomness.  This will result
-in 128KB more memory being consumed by the server.
-The default is <CODE>no</CODE>.
-
-<DT><CODE>treat-cr-as-space</CODE>
-<DD>
-If <CODE>yes</CODE>, the server will treat '\r' characters the same way it 
-treats a ' ' or '\t'.  This may be necessary when loading zone files on a 
-UNIX system that were generated on an NT or DOS machine.  The default is <CODE>no</CODE>.
-
-</DL>
-
-<A NAME="Also-notify"><H4>Also-Notify</H4></A>
-
-<DT><CODE>also-notify</CODE>
-<P>
-Defines a global list of IP addresses that also get sent NOTIFY messages
-whenever a fresh copy of the zone is loaded. This helps to ensure that
-copies of the zones will quickly converge on ``stealth'' servers.
-If an <CODE>also-notify</CODE> list is given in a <CODE>zone</CODE>
-statement, it will override the <CODE>options also-notify</CODE> statement.
-When a <CODE>zone notify</CODE> statement is set to <CODE>no</CODE>, 
-the IP addresses in the global <CODE>also-notify</CODE> list will not get
-sent NOTIFY messages for that zone.
-The default is the empty list (no global notification list).
-
-<A NAME="Forwarding"><H4>Forwarding</H4></A>
-
-<P>The forwarding facility can be used to create a large site-wide
-cache on a few servers, reducing traffic over links to external
-nameservers.  It can also be used to allow queries by servers that do
-not have direct access to the Internet, but wish to look up exterior
-names anyway.  Forwarding occurs only on those queries for which the
-server is not authoritative and does not have the answer in its cache.
-
-<DL>
-<DT><CODE>forward</CODE>
-<DD>
-This option is only meaningful if the <CODE>forwarders</CODE> list is
-not empty.  A value of <CODE>first</CODE>, the default, causes the
-server to query the forwarders first, and if that doesn't answer the
-question the server will then look for the answer itself.  If
-<CODE>only</CODE> is specified, the server will only query the
-forwarders. 
-
-<DT><CODE>forwarders</CODE>
-<DD>
-Specifies the IP addresses to be used for forwarding.  The default is the
-empty list (no forwarding).
-</DL>
-
-<P>Forwarding can also be configured on a per-zone basis, allowing for
-the global forwarding options to be overridden in a variety of ways.
-You can set particular zones to use different forwarders, or have
-different <CODE>forward only/first</CODE> behavior, or to not forward
-at all.  See the <A HREF="zone.html"><CODE>zone</CODE></A> statement
-for more information.
-
-<P>Future versions of BIND 8 will provide a more powerful forwarding
-system.  The syntax described above will continue to be supported.
-
-<a name="NameChecking"><H4>Name Checking</H4></a>
-
-<P>The server can check domain names based upon their expected client contexts.
-For example, a domain name used as a hostname can be checked for compliance
-with the RFCs defining valid hostnames.
-
-<P>Three checking methods are available:
-
-<DL>
-<DT><CODE>ignore</CODE>
-<DD>
-No checking is done.
-
-<DT><CODE>warn</CODE>
-<DD>
-Names are checked against their expected client contexts.  Invalid names are
-logged, but processing continues normally.
-
-<DT><CODE>fail</CODE>
-<DD>
-Names are checked against their expected client contexts.  Invalid names are
-logged, and the offending data is rejected.
-</DL>
-
-<P>The server can check names three areas: master zone files, slave
-zone files, and in responses to queries the server has initiated.  If
-<CODE>check-names response fail</CODE> has been specified, and
-answering the client's question would require sending an invalid name
-to the client, the server will send a REFUSED response code to the
-client.
-
-<P>The defaults are:
-
-<PRE>
-    check-names master fail;
-    check-names slave warn;
-    check-names response ignore;
-</PRE>
-
-<P><CODE>check-names</CODE> may also be specified in the
-<A HREF="zone.html"><CODE>zone</CODE></A>
-statement, in which case it overrides the <CODE>options check-names</CODE>
-statement.  When used in a <CODE>zone</CODE> statement, the area is not
-specified (because it can be deduced from the zone type).
-
-<A name="AccessControl"><H4>Access Control</H4></A>
-
-<P>Access to the server can be restricted based on the IP address of the
-requesting system.  See
-<VAR><A HREF="address_list.html">address_match_list</A></VAR> for details
-on how to specify IP address lists.
-
-<DL>
-<DT><CODE>allow-query</CODE>
-<DD>
-Specifies which hosts are allowed to ask ordinary questions.
-<CODE>allow-query</CODE> may also be specified in the
-<CODE>zone</CODE> statement, in which case it overrides the
-<CODE>options allow-query</CODE> statement.  If not specified, the default is
-to allow queries from all hosts.
-
-<DT><CODE>allow-transfer</CODE>
-<DD>
-Specifies which hosts are allowed to receive zone transfers from the
-server.  <CODE>allow-transfer</CODE> may also be specified in the
-<CODE>zone</CODE> statement, in which case it overrides the
-<CODE>options allow-transfer</CODE> statement.  If not specified, the default
-is to allow transfers from all hosts.
-
-<DT><CODE>allow-recursion</CODE>
-<DD>
-Specifies which hosts are allowed to make recursive queries through this
-server.  If not specified, the default is to allow recursive queries from 
-all hosts.
-
-<DT><CODE>blackhole</CODE>
-<DD>
-Specifies a list of addresses that the server will not accept queries from
-or use to resolve a query.  Queries from these addresses will not be
-responded to.
-</DL>
-
-<H4>Interfaces</H4>
-
-<P>The interfaces and ports that the server will answer queries from may
-be specified using the <CODE>listen-on</CODE> option.  <CODE>listen-on</CODE>
-takes an optional port, and an 
-<VAR><A HREF="address_list.html">address_match_list</A></VAR>.  The server will
-listen on all interfaces allowed by the address match list.  If a port is
-not specified, port 53 will be used.
-
-<P>Multiple <CODE>listen-on</CODE> statements are allowed.  For example,
-
-<PRE>
-    listen-on { 5.6.7.8; };
-    listen-on port 1234 { !1.2.3.4; 1.2/16; };
-</PRE>
-
-will enable the nameserver on port 53 for the IP address 5.6.7.8, and
-on port 1234 of an address on the machine in net 1.2 that is not
-1.2.3.4.
-
-<P>If no <CODE>listen-on</CODE> is specified, the server will listen on port
-53 on all interfaces.
-
-<H4>Query Address</H4>
-
-<P>If the server doesn't know the answer to a question, it will query
-other nameservers.  <CODE>query-source</CODE> specifies the address
-and port used for such queries.  If <CODE>address</CODE> is
-<CODE>*</CODE> or is omitted, a wildcard IP address
-(<CODE>INADDR_ANY</CODE>) will be used.  If <CODE>port</CODE> is
-<CODE>*</CODE> or is omitted, a random unprivileged port will be used.
-The default is
-
-<PRE>
-    query-source address * port *;
-</PRE>
-
-<P>Note: <CODE>query-source</CODE> currently applies only to UDP queries;
-TCP queries always use a wildcard IP address and a random unprivileged
-port.
-
-<A name="ZoneTransfers"><H4>Zone Transfers</H4></A>
-
-<DL>
-<DT><CODE>max-transfer-time-in</CODE>
-<DD>
-Inbound zone transfers (<CODE>named-xfer</CODE> processes) running
-longer than this many minutes will be terminated.  The default is 120
-minutes (2 hours).
-
-<DT><CODE>transfer-format</CODE>
-<DD>
-The server supports two zone transfer methods.
-<CODE>one-answer</CODE> uses one DNS message per resource record
-transferred.  <CODE>many-answers</CODE> packs as many resource records
-as possible into a message.  <CODE>many-answers</CODE> is more
-efficient, but is only known to be understood by BIND 8.1+ and patched
-versions of BIND 4.9.5.  The default is <CODE>one-answer</CODE>.
-<CODE>transfer-format</CODE> may be
-overridden on a per-server basis by using the <CODE>server</CODE> statement.
-
-<DT><CODE>transfers-in</CODE>
-<DD>
-The maximum number of inbound zone transfers that can be running
-concurrently.  The default value is 10.  Increasing
-<CODE>transfers-in</CODE> may speed up the convergence of slave zones,
-but it also may increase the load on the local system.
-
-<DT><CODE>transfers-out</CODE>
-<DD>
-This option will be used in the future to limit the number of
-concurrent outbound zone transfers.  It is checked for syntax, but is
-otherwise ignored.
-
-<DT><CODE>transfers-per-ns</CODE>
-<DD>
-The maximum number of inbound zone transfers (<CODE>named-xfer</CODE>
-processes) that can be concurrently transferring from a given remote
-nameserver.  The default value is 2.  Increasing
-<CODE>transfers-per-ns</CODE> may speed up the convergence of slave
-zones, but it also may increase the load on the remote nameserver.
-<CODE>transfers-per-ns</CODE> may be overridden on a per-server basis
-by using the <CODE>transfers</CODE> phrase of the <CODE>server</CODE>
-statement.
-
-<DT><CODE>transfer-source</CODE>
-<DD>
-<CODE>transfer-source</CODE> determines which local address will be bound
-to the TCP connection used to fetch all zones transferred inbound by the
-server. If not set, it defaults to a system controlled value which will
-usually be the address of the interface ``closest to'' the remote end.
-This address must appear in the remote end's <CODE>allow-transfer</CODE>
-option for the zone being transferred, if one is specified. This statement
-sets the <CODE>transfer-source</CODE> for all zones, but can be overridden
-on a per-zone basis by including a <CODE>transfer-source</CODE> statement
-within the zone block in the configuration file.
-
-<DT><CODE>serial-queries</CODE>
-<DD>
-Slave servers will periodically query master servers to find out if zone
-serial numbers have changed.  Each such query uses a minute amount of the
-slave server's network bandwidth, but more importantly each query uses a
-small amount of <I>memory</I> in the slave server while waiting for the 
-master server to respond.  The <CODE>serial-queries</CODE> option sets the
-maximum number of concurrent serial-number queries allowed to be outstanding
-at any given time.  The default is four (4).
-<B>Note:</B>
-If a server loads a large (tens or hundreds of thousands) number of slave
-zones, this limit should be raised to the high hundreds or low
-thousands -- otherwise the slave server may never actually become aware of
-zone changes in the master servers.  Beware, though, that setting this limit
-arbitrarily high can spend a considerable amount of your slave server's
-network, CPU, and memory resources.  As with all tunable limits, this one
-should be changed gently and monitored for its effects.
-</DL>
-
-<H4>Resource Limits</H4>
-
-<P>The server's usage of many system resources can be limited.  Some
-operating systems don't support some of the limits.  On such systems,
-a warning will be issued if the unsupported limit is used.  Some
-operating systems don't support limiting resources, and on these systems
-a <CODE>cannot set resource limits on this system</CODE> message will
-be logged.
-
-<P>Scaled values are allowed when specifying resource limits.  For
-example, <CODE>1G</CODE> can be used instead of
-<CODE>1073741824</CODE> to specify a limit of one gigabyte.
-<CODE>unlimited</CODE> requests unlimited use, or the maximum
-available amount.  <CODE>default</CODE> uses the limit that was in
-force when the server was started.  See
-<VAR><A HREF="docdef.html">size_spec</A></VAR> for more details.
-
-<DL>
-<DT><CODE>coresize</CODE>
-<DD>
-The maximum size of a core dump.  The default is <CODE>default</CODE>.
-
-<DT><CODE>datasize</CODE>
-<DD>
-The maximum amount of data memory the server may use.  The default is
-<CODE>default</CODE>.
-
-<DT><CODE>files</CODE>
-<DD>
-The maximum number of files the server may have open concurrently.
-The default is <CODE>unlimited</CODE>.  <I>Note:</I> on some operating
-systems the server cannot set an unlimited value and cannot determine
-the maximum number of open files the kernel can support.  On such
-systems, choosing <CODE>unlimited</CODE> will cause the server to use
-the larger of the <CODE>rlim_max</CODE> for <CODE>RLIMIT_NOFILE</CODE>
-and the value returned by <CODE>sysconf(_SC_OPEN_MAX)</CODE>.  If the
-actual kernel limit is larger than this value, use <CODE>limit
-files</CODE> to specify the limit explicitly.
-
-<DT><CODE>max-ixfr-log-size</CODE>
-<DD>
-The <CODE>max-ixfr-log-size</CODE> will be used in a future release of 
-the server to limit the size of the 
-transaction log kept for Incremental Zone Transfer. 
-
-<DT><CODE>stacksize</CODE>
-<DD>
-The maximum amount of stack memory the server may use.  The default is
-<CODE>default</CODE>.
-</DL>
-
-<H4>Periodic Task Intervals</H4>
-
-<DL>
-<DT><CODE>cleaning-interval</CODE>
-<DD>
-The server will remove expired resource records from the cache every
-<CODE>cleaning-interval</CODE> minutes.  The default is 60 minutes.  If set
-to 0, no periodic cleaning will occur.
-
-<DT><CODE>heartbeat-interval</CODE>
-<DD>
-The server will perform zone maintenance tasks for all zones marked
-<CODE>dialup yes</CODE> whenever this interval expires.
-The default is 60 minutes.  Reasonable values are up to 1 day (1440 minutes).
-If set to 0, no zone maintenance for these zones will occur.
-<DT><CODE>interface-interval</CODE>
-<DD>
-The server will scan the network interface list every
-<CODE>interface-interval</CODE> minutes.  The default is 60 minutes.
-If set to 0, interface scanning will only occur when the configuration
-file is loaded.  After the scan, listeners will be started on any new
-interfaces (provided they are allowed by the <CODE>listen-on</CODE>
-configuration).  Listeners on interfaces that have gone away will be
-cleaned up.
-
-<DT><CODE>statistics-interval</CODE>
-<DD>
-Nameserver statistics will be logged every <CODE>statistics-interval</CODE>
-minutes.  The default is 60.  If set to 0, no statistics will be logged.
-</DL>
-
-<H4><A NAME="topology">Topology</A></H4>
-
-<P>All other things being equal, when the server chooses a nameserver
-to query from a list of nameservers, it prefers the one that is
-topologically closest to itself.  The <CODE>topology</CODE> statement
-takes an <VAR><A HREF="address_list.html">address_match_list</A></VAR>
-and interprets it in a special way.  Each top-level list element is
-assigned a distance.  Non-negated elements get a distance based on
-their position in the list, where the closer the match is to the start
-of the list, the shorter the distance is between it and the server.  A
-negated match will be assigned the maximum distance from the server.
-If there is no match, the address will get a distance which is further
-than any non-negated list element, and closer than any negated
-element.  For example,
-
-<PRE>
-    topology {
-        10/8;
-        !1.2.3/24;
-        { 1.2/16; 3/8; };
-    };
-</PRE>
-
-<P>will prefer servers on network 10 the most, followed by hosts on
-network 1.2.0.0 (netmask 255.255.0.0) and network 3, with the exception
-of hosts on network 1.2.3 (netmask 255.255.255.0), which is preferred least
-of all.
-
-<P>The default topology is
-
-<PRE>
-    topology { localhost; localnets; };
-</PRE>
-
-<H4><A NAME="sortlist">Resource Record sorting</A></H4>
-
-<P>
-When returning multiple RRs,
-the nameserver will normally return them in
-<B>Round Robin</B>,
-i.e. after each request, the first RR is put to the end of the list.
-As the order of RRs is not defined, this should not cause any problems.
-</P>
-<P>
-The client resolver code should re-arrange the RRs as appropriate,
-i.e. using any addresses on the local net in preference to other addresses.
-However, not all resolvers can do this, or are not correctly configured.
-</P>
-<P>
-When a client is using a local server, the sorting can be performed in the
-server, based on the client's address.
-This only requires configuring the nameservers, not all the clients.
-</P>
-<P>
-The sortlist statement takes an address match list and interprets it even
-more specially than the <A HREF="#topology">topology</A> statement does.
-</P>
-<P>
-Each top level statement in the sortlist must itself be an explicit
-address match list with one or two elements.  The first element
-(which may be an IP address, an IP prefix, an ACL name or nested
-address match list) of each top level list is checked against the
-source address of the query until a match is found.
-</P>
-<P>
-Once the source address of the query has been matched, if the top level
-statement contains only one element, the actual primitive element that
-matched the source address is used to select the address in the response
-to move to the beginning of the response.  If the statement is a list
-of two elements, the second element is treated like the address
-match list in a topology statement.  Each top level element is assigned
-a distance and the address in the response with the minimum distance is
-moved to the beginning of the response.
-</P>
-<P>
-In the following example, any queries received from any of the addresses
-of the host itself will get responses preferring addresses on any of
-the locally connected networks.  Next most preferred are addresses on
-the 192.168.1/24 network, and after that either the 192.168.2/24 or
-192.168.3/24 network with no preference shown between these two networks.
-Queries received from a host on the 192.168.1/24 network will prefer
-other addresses on that network to the 192.168.2/24 and 192.168.3/24
-networks.  Queries received from a host on the 192.168.4/24 or the
-192.168.5/24 network will only prefer other addresses on their
-directly connected networks.
-<PRE>
-sortlist {
-           { localhost;         // IF   the local host
-             { localnets;       // THEN first fit on the
-               192.168.1/24;    //      following nets
-               { 192,168.2/24; 192.168.3/24; }; }; };
-           { 192.168.1/24;      // IF   on class C 192.168.1
-             { 192.168.1/24;    // THEN use .1, or .2 or .3
-               { 192.168.2/24; 192.168.3/24; }; }; };
-           { 192.168.2/24;      // IF   on class C 192.168.2
-             { 192.168.2/24;    // THEN use .2, or .1 or .3
-               { 192.168.1/24; 192.168.3/24; }; }; };
-           { 192.168.3/24;      // IF   on class C 192.168.3
-             { 192.168.3/24;    // THEN use .3, or .1 or .2
-               { 192.168.1/24; 192.168.2/24; }; }; };
-           { { 192.168.4/24; 192.168.5/24; }; // if .4 or .5, prefer that net
-           };
-};
-</PRE>
-The following example will give reasonable behaviour for the local host
-and hosts on directly connected networks.  It is similar to the behavior
-of the address sort in BIND 4.9.x.  Responses sent to queries from the
-local host will favor any of the directly connected networks.  Responses
-sent to queries from any other hosts on a directly connected network will
-prefer addresses on that same network.  Responses to other queries will
-not be sorted.
-<PRE>
-sortlist {
-            { localhost; localnets; };
-            { localnets; };
-};
-</PRE>
-<!--
- * XXX - it would be nice to have an ACL called "source" that matched the
- *       source address of a query so that a host could be configured to
- *       automatically prefer itself, and an ACL called "sourcenet", that
- *       would return the primitive IP match element that matched the source
- *       address so that you could do:
- *          { localnets; { sourcenet; { other stuff ...}; };
- *       and automatically get similar behaviour to what you get with:
- *          { localnets; };
--->
-</P>
-
-<a name="RrsetOrder">
-<H4>RRset Ordering</H4>
-
-<P>When multiple records are returned in an answer it may be useful to
-configure the order the records are placed into the response. For example the
-records for a zone might be configured to always be returned in the order they
-are defined in the zone file.  Or perhaps a <i>random</i> shuffle of the
-records as they are returned is wanted. The <var>rrset-order</var> statement
-permits configuration of the ordering made of the records in a multiple record
-response. The default, if no ordering is defined, is a cyclic ordering (round
-robin).
-
-<P>An <var>order_spec</var> is defined as follows:
-
-<PRE>
-  [ <var>class</var> class_name ][ <var>type</var> type_name ][ <var>name</var> "FQDN" ] <var>order</var> ordering
-</PRE>
-
-<P>If no <var>class</var> is specified, the default is <code>ANY</code>. If no
-<var>type</var> is specified, the default is <code>ANY</code>. If no
-<var>name</var> is specified, the default is <code>"*"</code>. 
-
-<P>The legal values for <code>ordering</code> are:
-
-<DL>
-<DT><code>fixed</code>
-<DD>Records are returned in the order they are defined in the zone file.
-
-<DT><code>random</code>
-<DD>Records are returned in some random order.
-
-<DT><code>cyclic</code>
-<DD>Records are returned in a round-robin order.
-
-</DL>
-
-
-<P>For example:
-
-<PRE>
-    rrset-order {
-	class IN type A name "rc.vix.com" order random;
-        order cyclic;
-    };
-</PRE>
-
-<P>will cause any responses for type <VAR>A</VAR> records in class
-<VAR>IN</VAR> that have "rc.vix.com" as a suffix, to always be returned in
-random order. All other records are returned in cyclic order.
-
-<P>If multiple <code>rrset-order</code> statements appear, they are not
-combined--the last one applies.
-
-<P>If no <code>rrset-order</code> statement is specified, a default one
-of:
-
-<pre>
-    rrset-order { class ANY type ANY name "*" order cyclic ; };
-</pre>
-
-<P>is used.
-
-<H4>Tuning</H4>
-
-<DL>
-<DT><CODE>lame-ttl</CODE>
-<DD>
-Sets the number of seconds to cache a lame server indication.
-0 disables caching.  Default is 600 (10 minutes).  Maximum value is 1800 (30 minutes).
-<DT><CODE>max-ncache-ttl</CODE>
-<DD>
-To reduce network traffic and increase performance the server stores negative
-answers.  <CODE>max-ncache-ttl</CODE> is used to set a maximum retention time
-for these answers in the server is seconds.  The default <CODE>max-ncache-ttl</CODE> is
-10800 seconds (3 hours).  <CODE>max-ncache-ttl</CODE> cannot exceed the
-maximum retention time for ordinary (positive) answers (7 days) and will be
-silently truncated to 7 days if set to a value which is greater that 7 days.
-<DT><CODE>min-roots</CODE>
-<DD>
-The minimum number of root servers that is required for a
-request for the root servers to be accepted.  Default 2.
-</DL>
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: options.html,v 1.36 1999/10/13 20:57:05 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/server.html b/contrib/bind/doc/html/server.html
deleted file mode 100644
index eba350ba3f366..0000000000000
--- a/contrib/bind/doc/html/server.html
+++ /dev/null
@@ -1,69 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND server Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>server</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-server <VAR><A HREF="docdef.html">ip_addr</A></VAR> {
-  [ bogus <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ support-ixfr <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ transfers <VAR><A HREF="docdef.html">number</A></VAR>; ]
-  [ transfer-format ( one-answer | many-answers ); ]
-  [ keys { <VAR><A HREF="key.html">key_id</A></VAR> [<VAR>key_id</VAR> ... ] }; ]
-};
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<P>The server statement defines the characteristics to be
-associated with a remote name server.</P>
-
-<P>If you discover that a server is giving out bad data, marking it as
-<CODE>bogus</CODE> will prevent further queries to it.  The default value of
-<CODE>bogus</CODE> is <CODE>no</CODE>.
-
-<P>The server supports two zone transfer methods.  The first,
-<CODE>one-answer</CODE>, uses one DNS message per resource record
-transferred.  <CODE>many-answers</CODE> packs as many resource records
-as possible into a message.  <CODE>many-answers</CODE> is more
-efficient, but is only known to be understood by BIND 8.1 and patched
-versions of BIND 4.9.5.  You can specify which method to use for a
-server with the <CODE>transfer-format</CODE> option.  If
-<CODE>transfer-format</CODE> is not specified, the <CODE>transfer-format</CODE>
-specified by the <CODE>options</CODE> statement will be used.
-
-<P>The <CODE>transfers</CODE> will be used in a future release of the server
-to limit the number of concurrent in-bound zone transfers from the specified
-server.  It is checked for syntax but is otherwise ignored.
-
-<P>The <CODE>keys</CODE> clause is used to identify a
-<VAR>key_id</VAR> defined by the <CODE>key</CODE> statement, to be
-used for transaction security when talking to the remote server.
-The <CODE>key</CODE> statememnt must come before the <CODE>server</CODE>
-statement that references it.  When a request is sent to the remote server,
-a request signature will be generated using the key specified here and
-appended to the message.  A request originating from the remote server is not
-required to be signed by this key.
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-|&nbsp;<A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: server.html,v 1.10 1999/09/15 20:28:02 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/trusted-keys.html b/contrib/bind/doc/html/trusted-keys.html
deleted file mode 100644
index acf2beda8c75e..0000000000000
--- a/contrib/bind/doc/html/trusted-keys.html
+++ /dev/null
@@ -1,58 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND trusted-keys Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>trusted-keys</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-trusted-keys { 
-  [ <VAR><A HREF="docdef.html">domain_name</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR>string</VAR>; ]
-};
-
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-The <CODE>trusted-keys</CODE>
-statement is for use with DNSSEC-style security, originally specified
-in RFC 2065.  DNSSEC is meant to 
-provide three distinct services: key distribution, data origin
-authentication, and transaction and request authentication.  A
-complete description of DNSSEC and its use is beyond the scope of this
-document, and readers interested in more information should start with
-<A HREF="http://info.internet.isi.edu/in-notes/rfc/files/rfc2065.txt">
-RFC 2065</A> and then continue with the
-<A HREF="http://www.ietf.org/ids.by.wg/dnssec.html">
-Internet Drafts</A>.</P>
-
-<P>Each trusted key is associated with a domain name.  Its attributes are
-the non-negative integral <VAR>flags</VAR>, <VAR>protocol</VAR>, and
-<VAR>algorithm</VAR>, as well as a base-64 encoded string representing
-the key.</P>
-
-A trusted key is added when a public key for a non-authoritative zone is
-known, but cannot be securely obtained through DNS.  This occurs when
-a signed zone is a child of an unsigned zone.  Adding the trusted
-key here allows data signed by that zone to be considered secure.</P>
-
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: trusted-keys.html,v 1.4 1999/09/15 20:28:02 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/html/zone.html b/contrib/bind/doc/html/zone.html
deleted file mode 100644
index 8d90a45ee875b..0000000000000
--- a/contrib/bind/doc/html/zone.html
+++ /dev/null
@@ -1,244 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
-<HTML>
-<HEAD>
-  <TITLE>BIND zone Statement</TITLE>
-</HEAD>
-
-<BODY>
-<H2>BIND Configuration File Guide--<CODE>zone</CODE> Statement</H2>
-
-<HR>
-
-<A NAME="Syntax"><H3>Syntax</H3></A>
-
-<PRE>
-zone <VAR><A HREF="docdef.html">domain_name</A></VAR> [ ( in | hs | hesiod | chaos ) ] { 
-  type master;
-  file <VAR><A HREF="docdef.html">path_name</A></VAR>;
-  [ forward ( only | first ); ]
-  [ forwarders { [ <VAR><A HREF="docdef.html">ip_addr</A></VAR> ; [ <VAR>ip_addr</VAR> ; ... ] ] }; ]
-  [ check-names ( warn | fail | ignore ); ]
-  [ allow-update { <VAR><A HREF="address_list.html">address_match_list</A></VAR> }; ]
-  [ allow-query { <VAR><A HREF="address_list.html">address_match_list</A></VAR> }; ]
-  [ allow-transfer { <VAR><A HREF="address_list.html">address_match_list</A></VAR> }; ]
-  [ dialup <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ notify <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ also-notify { <VAR><A HREF="docdef.html">ip_addr</A></VAR>; [ <VAR>ip_addr</VAR>; ... ] };
-  [ ixfr-base  <VAR><A HREF="docdef.html">path_name</A></VAR>; ]
-  [ pubkey <VAR><A HREF="docdef.html">number</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR>string</VAR>; ]
-};
-
-zone <VAR><A HREF="docdef.html">domain_name</A></VAR> [ ( in | hs | hesiod | chaos ) ] { 
-  type ( slave | stub );
-  [ file <VAR><A HREF="docdef.html">path_name</A></VAR>; ]
-  [ ixfr-base  <VAR><A HREF="docdef.html">path_name</A></VAR>; ]
-  masters [ port <VAR><A HREF="docdef.html">ip_port</A></VAR> ] { <VAR><A HREF="docdef.html">ip_addr</A></VAR>; [ <VAR>ip_addr</VAR>; ... ] };
-  [ forward ( only | first ); ]
-  [ forwarders { [ <VAR><A HREF="docdef.html">ip_addr</A></VAR> ; [ <VAR>ip_addr</VAR> ; ... ] ] }; ]
-  [ check-names ( warn | fail | ignore ); ]
-  [ allow-update { <VAR><A HREF="address_list.html">address_match_list</A></VAR> }; ]
-  [ allow-query { <VAR><A HREF="address_list.html">address_match_list</A></VAR> }; ]
-  [ allow-transfer { <VAR><A HREF="address_list.html">address_match_list</A></VAR> }; ]
-  [ transfer-source <VAR><A HREF="docdef.html">ip_addr</A></VAR>; ]
-  [ dialup <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ max-transfer-time-in <VAR>number</VAR>; ]
-  [ notify <VAR><A HREF="docdef.html">yes_or_no</A></VAR>; ]
-  [ also-notify { <VAR><A HREF="docdef.html">ip_addr</A></VAR>; [ <VAR>ip_addr</VAR>; ... ] };
-  [ pubkey <VAR><A HREF="docdef.html">number</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR><A HREF="docdef.html">number</A></VAR> <VAR>string</VAR>; ]
-};
-
-zone <VAR><A HREF="docdef.html">domain_name</A></VAR> [ ( in | hs | hesiod | chaos ) ] { 
-  type forward;
-  [ forward ( only | first ); ]
-  [ forwarders { [ <VAR><A HREF="docdef.html">ip_addr</A></VAR> ; [ <VAR>ip_addr</VAR> ; ... ] ] }; ]
-  [ check-names ( warn | fail | ignore ); ]
-};
-
-zone "." [ ( in | hs | hesiod | chaos ) ] { 
-  type hint;
-  file <VAR><A HREF="docdef.html">path_name</A></VAR>;
-  [ check-names ( warn | fail | ignore ); ]
-};
-</PRE>
-
-<HR>
-
-<A NAME="Usage"><H3>Definition and Usage</H3></A>
-
-<H4>Zone Types</H4>
-
-<DL>
-<DT><CODE>master</CODE>
-<DD>
-The server has a master copy of the data for the zone and will be able
-to provide authoritative answers for it.
-
-
-<DT><CODE>slave</CODE>
-<DD>
-A <CODE>slave</CODE> zone is a replica of a master zone.  The
-<CODE>masters</CODE> list specifies one or more IP addresses that the
-slave contacts to update its copy of the zone.  If a <CODE>port</CODE>
-is specified then checks to see if the zone is current and zone transfers
-will be done to the port given.  If <CODE>file</CODE>
-is specified, the replica will be written to this file whenever
-the zone is changed, and reloaded from this file on a server restart.
-Use of
-<CODE>file</CODE> is recommended, since it often speeds server startup
-and eliminates a needless waste of bandwidth.  Note that for large numbers
-(in the tens or hundreds of thousands) of zones per server, it is best to
-use a two level naming scheme for zone file names.  For example, a slave
-server for the zone <CODE>vix.com</CODE> might place the zone contents into
-a file called <CODE>"vi/vix.com"</CODE> where <CODE>vi/</CODE> is just the
-first two letters of the zone name.  (Most operating systems behave very
-slowly if you put 100K files into a single directory.)
-
-<DT><CODE>stub</CODE>
-<DD>
-A <CODE>stub</CODE> zone is like a slave zone, except that it replicates
-only the NS records of a master zone instead of the entire zone.
-
-<DT><CODE>forward</CODE>
-<DD>
-A <CODE>forward</CODE> zone is used to <A HREF="options.html#Forwarding">
-direct all queries</A> in it to other servers.  The specification of
-options in such a zone will override any global options
-declared in the <A HREF="options.html#Forwarding">options</A> statement.
-
-<P>If either no <CODE>forwarders</CODE> statement is present in the
-zone or an empty list for <CODE>forwarders</CODE> is given, no
-forwarding will be done for the zone, cancelling the effects of any
-<CODE>forwarders</CODE> in the <CODE>options</CODE> statement.
-Thus if you want to use this
-type of zone to change the behavior of the global <CODE>forward</CODE>
-option, and not the servers used, you also need to respecify the
-global forwarders.
-
-<DT><CODE>hint</CODE>
-<DD>
-The initial set of root nameservers is specified using a
-<CODE>hint</CODE> zone.  When the server starts up, it uses the root hints
-to find a root nameserver and get the most recent list of root nameservers.
-</DL>
-
-<P>Note: previous releases of BIND used the term <EM>primary</EM> for a
-master zone, <EM>secondary</EM> for a slave zone, and <EM>cache</EM> for
-a hint zone.</P>
-
-<H4>Class</H4>
-
-<P>The zone's name may optionally be followed by a class.  If a class
-is not specified, class <CODE>in</CODE> (for "internet"), is assumed.
-This is correct for the vast majority of cases.
-
-<P>The <CODE>hesiod</CODE> class is for an information service from MIT's
-Project Athena.  It is used to share information about various systems
-databases, such as users, groups, printers and so on.  More
-information can be found at 
-<A HREF="ftp://athena-dist.mit.edu/pub/ATHENA/usenix/athena_changes.PS">MIT</A>.
-The keyword <CODE>hs</CODE> is a synonym for <CODE>hesiod</CODE>.</P>
-
-<P>Another MIT development was CHAOSnet, a LAN protocol created in the
-mid-1970s.  It is still sometimes seen on LISP stations and other
-hardware in the AI community, and zone data for it can be specified
-with the
-<CODE>chaos</CODE> class.</P>
-
-<H4>Options</H4>
-
-<DL>
-<DT><CODE>check-names</CODE>
-<DD>
-See <A HREF="options.html#NameChecking">Name Checking</A>.
-
-<DT><CODE>allow-query</CODE>
-<DD>
-See the description of <CODE>allow-query</CODE> in the
-<A HREF="options.html#AccessControl">Access Control</A> section.  Note that
-this should in general be <I>more restrictive</I> than the similar global
-option of the same name; otherwise, confusing and nonworthwhile delegations
-will be returned.
-
-<DT><CODE>allow-update</CODE>
-<DD>
-Specifies which hosts are allowed to submit Dynamic DNS updates to the
-server.  The default is to deny updates from all hosts.
-
-<DT><CODE>allow-transfer</CODE>
-<DD>
-See the description of <CODE>allow-transfer</CODE> in
-the <A HREF="options.html#AccessControl">Access Control</A> section.
-
-<DT><CODE>transfer-source</CODE>
-<DD>
-<CODE>transfer-source</CODE> determines which local address will be bound to
-the TCP connection used to fetch this zone.  If not set, it defaults to a
-system controlled value which will usually be the address of the interface
-``closest to'' the remote end.  This address must appear in the remote end's
-<CODE>allow-transfer</CODE> option for this zone if one is specified.
-
-<DT><CODE>ixfr-base</CODE>
-<DD>
-<CODE>ixfr-base</CODE> 
-specifies the file name used for IXFR transaction log file.
-
-<DT><CODE>max-transfer-time-in</CODE>
-<DD>
-See the description of <CODE>max-transfer-time-in</CODE> in
-the <A HREF="options.html#ZoneTransfers">Zone Transfers</A> section.
-
-<DT><CODE>dialup</CODE>
-<DD>
-See the description of <CODE>dialup</CODE> in
-the <A HREF="options.html#BooleanOptions">Boolean Options</A> section.
-
-<DT><CODE>notify</CODE>
-<DD>
-See the description of <CODE>notify</CODE> in
-the <A HREF="options.html#BooleanOptions">Boolean Options</A> section.
-
-<DT><CODE>also-notify</CODE>
-<DD>
-<CODE>also-notify</CODE> is only meaningful if <CODE>notify</CODE> is
-active for this zone.  The set of machines that will receive a DNS
-NOTIFY message for this zone is made up of all the listed nameservers
-for the zone (other than the primary master) plus any IP addresses
-specified with <CODE>also-notify</CODE>.  <CODE>also-notify</CODE> is not
-meaningful for <CODE>stub</CODE> zones.  The default is the empty list.
-
-<DT><CODE>forward</CODE>
-<DD>
-<CODE>forward</CODE> is only meaningful if the zone has a
-<CODE>forwarders</CODE> list.  The <CODE>only</CODE> value causes the
-lookup to fail after trying the <CODE>forwarders</CODE> and getting no
-answer, while <CODE>first</CODE> would allow a normal lookup to be tried.
-
-<DT><CODE>forwarders</CODE>
-<DD>
-The <CODE>forwarders</CODE> option in a zone is used to override the
-list of global forwarders.  If it is not specified in a zone of type
-<CODE>forward</CODE>, <STRONG>no</STRONG> forwarding is done for the
-zone; the global options are not used.
-
-<DT><CODE>pubkey</CODE>
-<DD>
-A pubkey represents a public key for this zone.  It is needed when this is the
-top level authoritative zone served by this server and there is no chain of
-trust to a <A HREF="trusted-keys.html">trusted key</A>.  It is considered
-secure, so that data that it signs will be considered secure.  The DNSSEC
-flags, protocol, and algorithm are specified, as well as a base-64 encoded
-string representing the key.
-
-</DL>
-<HR>
-
-<CENTER><P>[ <A HREF="config.html">BIND Config. File</A>
-| <A HREF="http://www.isc.org/products/BIND/">BIND Home</A>
-| <A HREF="http://www.isc.org/">ISC</A> ]</P></CENTER>
-
-<HR>
-<ADDRESS>
-Last Updated: $Id: zone.html,v 1.23 1999/09/30 17:58:41 cyarnell Exp $
-</ADDRESS>
-</BODY>
-</HTML>
diff --git a/contrib/bind/doc/man/Makefile b/contrib/bind/doc/man/Makefile
deleted file mode 100644
index b792ef92675cc..0000000000000
--- a/contrib/bind/doc/man/Makefile
+++ /dev/null
@@ -1,423 +0,0 @@
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-## Portions Copyright (c) 1996,1999 by Internet Software Consortium
-##
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies.
-##
-## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-## ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-## CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-
-#
-# Makefile to install the BIND manual entries.
-#
-# Default Configuration:
-# 	There are a set of default assignments immediately following this 
-#	note. These defaults are for BSD4.4, BSD/386, other net2-alikes, 
-#	and will install manual entries with following characteristics:
-#	o  They will be catable (i.e., passed through nroff)
-#	o  They will be installed in the directories
-#		/usr/share/man/catN, where N is 1, 3, 5, 7, 8
-#	o  They will have an extension of `.0'
-#
-# Don't change these defaults. Instead, following the default configuration
-# are sets of commented values for particular systems that can be used
-# to override the default values.
-#
-
-#
-# Target directory for the manual directory tree. Eg., may be used to 
-# specify the path of an NFS-mounted directory for common files.
-#
-DESTDIR=
-
-#
-# Default location for manual section directories.
-#
-DESTMAN= /usr/share/man
-
-#
-# Install manuals in ${MANDIR}N. For systems that generate catable manual 
-# entries on the fly, use
-#	MANDIR = man
-#
-MANDIR = cat
-
-#
-# Default extension for manual entries. To install the manual entries under
-# their `real' extensions use 
-#	CATEXT = $$N
-#
-CATEXT = 0
-
-#
-# Command to install manual entries
-#
-INSTALL= install
-
-#
-# `install' options to set Owner and Group for manual entries. Eg. for 
-# BSD `install' use
-# 	MAN_OWNER = -o bin
-#	MAN_GROUP = -g bin
-#
-MAN_OWNER =
-MAN_GROUP =
-
-SHELL= /bin/sh
-
-INDOT=
-XFER_INDOT=
-#
-# Uppercase versions of the above variables (`INDOT_U' and `XFER_INDOT_U')
-# are defined for use in `.TH' lines.
-#
-
-#
-# Command used to generate a manual entry. By default this produces catable
-# manual entries.
-#
-# For systems that store manuals in MDOC form (eg modern BSD systems) and
-# can generate catable manual entries on the fly the following assignment
-# can be used. 
-#	MANROFF = cat
-#
-MANROFF = ( tbl | nroff -mandoc )
-
-#
-# Default extensions for installed manual entries. The following variables 
-# have been defined to allow BIND's manual entries to be installed in the 
-# right place for a given platform.
-#
-# 	CMD_EXT = extension for user commands (eg, dig)
-# 	LIB_NETWORK_EXT = extension for network library routines (eg, 
-#			gethostbyname)
-# 	FORMAT_EXT = extension for files describing file formats
-#			(eg, resolver)
-# 	DESC_EXT = extension for descriptive files (eg, mailaddr)
-# 	SYS_OPS_EXT =  extension system operation and maintenance commands 
-#			and applications. (eg, named, named-xfer, syslog)
-#
-# Associated with each variable is an additional variable with the suffix
-# `_DIR' that specifies the suffix to ${MANDIR}. It's needed because on
-# some systems, eg., Ultrix, multiple subsections (eg 3x, 3m 3n) are 
-# stored in generic manual section directories (eg., man3).
-#
-# Associated with each variable is an additional variable with the suffix
-# `_U' which gives the upper case form of the variable for use in `.TH'
-# commands. Useful for platforms (such as Solaris 2) that include letters
-# in manual sections.
-#
-CMD_EXT = 1
-CMD_EXT_DIR = ${CMD_EXT}
-LIB_NETWORK_EXT = 3
-LIB_NETWORK_EXT_DIR = ${LIB_NETWORK_EXT}
-FORMAT_EXT = 5
-FORMAT_EXT_DIR = ${FORMAT_EXT}
-DESC_EXT = 7
-DESC_EXT_DIR = ${DESC_EXT}
-SYS_OPS_EXT = 8
-SYS_OPS_EXT_DIR = ${SYS_OPS_EXT}
-
-#
-# Additional variables are defined for cross-references within manual
-# entries:
-#	SYSCALL_EXT = extension for system calls
-#	BSD_SYSCALL_EXT = extension for BSD-specifc system calls. On some
-#			systems (eg Ultrix) these appear in section 2.
-#			On other system (eg SunOS 5) these are implemented
-#			via a BSD-compatibility library and appear in 
-#			section 3.
-#	LIB_C_EXT = extension for C library routines (eg, signal)
-#
-SYSCALL_EXT = 2
-SYSCALL_EXT_DIR = ${SYSCALL_EXT}
-BSD_SYSCALL_EXT = 2
-BSD_SYSCALL_EXT_DIR = ${BSD_SYSCALL_EXT}
-LIB_C_EXT = 3
-LIB_C_EXT_DIR = ${LIB_C_EXT}
-
-######################################################################
-#
-# No user changes needed past this point.
-#
-######################################################################
-#
-# This sed command is used to update the manual entries so they refer to 
-# the appropriate section of the manual for a given platform.
-#
-EXT_SED_CMD =	INDOT_U=`echo "${INDOT}"|tr "[a-z]" "[A-Z]"`; \
-		export INDOT_U; \
-		XFER_INDOT_U=`echo "${XFER_INDOT}"|tr "[a-z]" "[A-Z]"`; \
-		export XFER_INDOT_U; \
-		CMD_EXT_U=`echo "${CMD_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export CMD_EXT_U; \
-		SYS_OPS_EXT_U=`echo "${SYS_OPS_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export SYS_OPS_EXT_U; \
-		LIB_NETWORK_EXT_U=`echo "${LIB_NETWORK_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export LIB_NETWORK_EXT_U; \
-		FORMAT_EXT_U=`echo "${FORMAT_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export FORMAT_EXT_U; \
-		DESC_EXT_U=`echo "${DESC_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export DESC_EXT_U; \
-		SYSCALL_EXT_U=`echo "${SYSCALL_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export SYSCALL_EXT_U; \
-		BSD_SYSCALL_EXT_U=`echo "${BSD_SYSCALL_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export BSD_SYSCALL_EXT_U; \
-		LIB_C_EXT_U=`echo "${LIB_C_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export LIB_C_EXT_U; \
-		sed -e "s/@INDOT@/${INDOT}/g" \
-		-e "s/@INDOT_U@/$${INDOT_U}/g" \
-		-e "s/@XFER_INDOT@/${XFER_INDOT}/g" \
-		-e "s/@XFER_INDOT_U@/$${XFER_INDOT_U}/g" \
-		-e "s/@CMD_EXT@/${CMD_EXT}/g" \
-		-e "s/@CMD_EXT_U@/$${CMD_EXT_U}/g" \
-		-e "s/@LIB_NETWORK_EXT@/${LIB_NETWORK_EXT}/g" \
-		-e "s/@LIB_NETWORK_EXT_U@/$${LIB_NETWORK_EXT_U}/g" \
-		-e "s/@FORMAT_EXT@/${FORMAT_EXT}/g" \
-		-e "s/@FORMAT_EXT_U@/$${FORMAT_EXT_U}/g" \
-		-e "s/@DESC_EXT@/${DESC_EXT}/g" \
-		-e "s/@DESC_EXT_U@/$${DESC_EXT_U}/g" \
-		-e "s/@SYS_OPS_EXT@/${SYS_OPS_EXT}/g" \
-		-e "s/@SYS_OPS_EXT_U@/$${SYS_OPS_EXT_U}/g" \
-		-e "s/@SYSCALL_EXT@/${SYSCALL_EXT}/g" \
-		-e "s/@SYSCALL_EXT_U@/$${SYSCALL_EXT_U}/g" \
-		-e "s/@BSD_SYSCALL_EXT@/${BSD_SYSCALL_EXT}/g" \
-		-e "s/@BSD_SYSCALL_EXT_U@/$${BSD_SYSCALL_EXT_U}/g" \
-		-e "s/@LIB_C_EXT@/${LIB_C_EXT}/g" \
-		-e "s/@LIB_C_EXT_U@/$${LIB_C_EXT_U}/g"
-
-#
-# Command used to produce manual entries
-#
-MK_MANFILE = ( ${EXT_SED_CMD} | ${MANROFF} )
-
-#
-# Extensions for the generated manual entries
-#
-OUT_EXT = lst
-CMD_OUT_EXT = ${OUT_EXT}${CMD_EXT}
-LIB_NETWORK_OUT_EXT = ${OUT_EXT}${LIB_NETWORK_EXT}
-FORMAT_OUT_EXT = ${OUT_EXT}${FORMAT_EXT}
-DESC_OUT_EXT = ${OUT_EXT}${DESC_EXT}
-SYS_OPS_OUT_EXT = ${OUT_EXT}${SYS_OPS_EXT}
-
-#
-# User command manual entries
-#
-CMD_BASE = 	dig host dnsquery dnskeygen
-CMD_SRC_EXT = 	1
-CMD_SRC = 	dig.${CMD_SRC_EXT} \
-		host.${CMD_SRC_EXT} \
-		dnsquery.${CMD_SRC_EXT} \
-		dnskeygen.${CMD_SRC_EXT}
-CMD_OUT =	dig.${CMD_OUT_EXT} \
-		host.${CMD_OUT_EXT} \
-		dnsquery.${CMD_OUT_EXT} \
-		dnskeygen.${CMD_OUT_EXT}
-
-#
-# named manual entries
-#
-NAMED_BASE =	named ndc
-SYS_OPS_SRC_EXT = 8
-NAMED_SRC = 	named.${SYS_OPS_SRC_EXT} ndc.${SYS_OPS_SRC_EXT}
-NAMED_OUT = 	named.${SYS_OPS_OUT_EXT} ndc.${SYS_OPS_OUT_EXT}
-
-#
-# named-xfer manual entry
-#
-NAMED_XFER_BASE = named-xfer
-NAMED_XFER_SRC = named-xfer.${SYS_OPS_SRC_EXT}
-NAMED_XFER_OUT = named-xfer.${SYS_OPS_OUT_EXT}
-
-#
-# named-bootconf manual entry
-#
-NAMED_BOOTCONF_BASE = named-bootconf
-NAMED_BOOTCONF_SRC = named-bootconf.${SYS_OPS_SRC_EXT}
-NAMED_BOOTCONF_OUT = named-bootconf.${SYS_OPS_OUT_EXT}
-
-#
-# nslookup manual entry
-#
-NSLOOKUP_BASE = nslookup
-NSLOOKUP_SRC = 	nslookup.${SYS_OPS_SRC_EXT}
-NSLOOKUP_OUT = 	nslookup.${SYS_OPS_OUT_EXT}
-
-#
-# nsupdate manual entry
-#
-NSUPDATE_BASE = nsupdate
-NSUPDATE_SRC = 	nsupdate.${SYS_OPS_SRC_EXT}
-NSUPDATE_OUT = 	nsupdate.${SYS_OPS_OUT_EXT}
-
-#
-# Network library routines manual entries
-#
-LIB_NETWORK_BASE =	gethostbyname inet_cidr resolver hesiod getnetent \
-			tsig getaddrinfo inet_cidr getipnodebyname
-LIB_NETWORK_SRC_EXT =	3
-LIB_NETWORK_SRC = 	gethostbyname.${LIB_NETWORK_SRC_EXT} \
-			inet_cidr.${LIB_NETWORK_SRC_EXT} \
-			resolver.${LIB_NETWORK_SRC_EXT} \
-			hesiod.${LIB_NETWORK_SRC_EXT} \
-			getnetent.${LIB_NETWORK_SRC_EXT} \
-			tsig.${LIB_NETWORK_SRC_EXT} \
-			getaddrinfo.${LIB_NETWORK_SRC_EXT} \
-			getnameinfo.${LIB_NETWORK_SRC_EXT} \
-			getipnodebyname.${LIB_NETWORK_SRC_EXT}
-LIB_NETWORK_OUT =	gethostbyname.${LIB_NETWORK_OUT_EXT} \
-			inet_cidr.${LIB_NETWORK_OUT_EXT} \
-			resolver.${LIB_NETWORK_OUT_EXT} \
-			hesiod.${LIB_NETWORK_OUT_EXT} \
-			getnetent.${LIB_NETWORK_OUT_EXT} \
-			tsig.${LIB_NETWORK_OUT_EXT} \
-			getaddrinfo.${LIB_NETWORK_OUT_EXT} \
-			getnameinfo.${LIB_NETWORK_OUT_EXT} \
-			getipnodebyname.${LIB_NETWORK_OUT_EXT}
-
-#
-# File format manual entries
-#
-FORMAT_BASE =	resolver irs.conf named.conf
-FORMAT_SRC_EXT = 5
-FORMAT_SRC = 	resolver.${FORMAT_SRC_EXT} \
-		irs.conf.${FORMAT_SRC_EXT} \
-		named.conf.${FORMAT_SRC_EXT}
-FORMAT_OUT = 	resolver.${FORMAT_OUT_EXT} \
-		irs.conf.${FORMAT_OUT_EXT} \
-		named.conf.${FORMAT_OUT_EXT}
-
-#
-# Feature Description manual entries
-#
-DESC_BASE =	hostname mailaddr
-DESC_SRC_EXT = 	7
-DESC_SRC = 	hostname.${DESC_SRC_EXT} mailaddr.${DESC_SRC_EXT}
-DESC_OUT = 	hostname.${DESC_OUT_EXT} mailaddr.${DESC_OUT_EXT}
-
-.SUFFIXES:	.${CMD_SRC_EXT} .${CMD_OUT_EXT} \
-		.${SYS_OPS_SRC_EXT} .${SYS_OPS_OUT_EXT} \
-		.${LIB_NETWORK_SRC_EXT} .${LIB_NETWORK_OUT_EXT} \
-		.${FORMAT_SRC_EXT} .${FORMAT_OUT_EXT} \
-		.${DESC_SRC_EXT} .${DESC_OUT_EXT} 
-
-.${CMD_SRC_EXT}.${CMD_OUT_EXT}:
-	@echo "$*.${CMD_SRC_EXT} -> $*.${CMD_OUT_EXT}"
-	@${MK_MANFILE} <$*.${CMD_SRC_EXT} >$*.${CMD_OUT_EXT}
-
-.${SYS_OPS_SRC_EXT}.${SYS_OPS_OUT_EXT}:
-	@echo "$*.${SYS_OPS_SRC_EXT} -> $*.${SYS_OPS_OUT_EXT}"
-	@${MK_MANFILE} <$*.${SYS_OPS_SRC_EXT} >$*.${SYS_OPS_OUT_EXT}
-
-.${LIB_NETWORK_SRC_EXT}.${LIB_NETWORK_OUT_EXT}:
-	@echo "$*.${LIB_NETWORK_SRC_EXT} -> $*.${LIB_NETWORK_OUT_EXT}"
-	@${MK_MANFILE} <$*.${LIB_NETWORK_SRC_EXT} >$*.${LIB_NETWORK_OUT_EXT}
-
-.${FORMAT_SRC_EXT}.${FORMAT_OUT_EXT}:
-	@echo "$*.${FORMAT_SRC_EXT} -> $*.${FORMAT_OUT_EXT}"
-	@${MK_MANFILE} <$*.${FORMAT_SRC_EXT} >$*.${FORMAT_OUT_EXT}
-
-.${DESC_SRC_EXT}.${DESC_OUT_EXT}:
-	@echo "$*.${DESC_SRC_EXT} -> $*.${DESC_OUT_EXT}"
-	@${MK_MANFILE} <$*.${DESC_SRC_EXT} >$*.${DESC_OUT_EXT}
-
-OUTFILES =	${CMD_OUT} ${NAMED_OUT} ${NAMED_XFER_OUT} ${NSLOOKUP_OUT} \
-		${NSUPDATE_OUT} ${LIB_NETWORK_OUT} ${FORMAT_OUT} ${DESC_OUT} \
-		${NAMED_BOOTCONF_OUT}
-
-all:	${OUTFILES}
-
-install:	${OUTFILES} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${CMD_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${LIB_NETWORK_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${FORMAT_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${DESC_EXT_DIR}
-	@set -x; N=${CMD_EXT}; for f in ${CMD_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${CMD_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${CMD_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NAMED_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/${INDOT}$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NAMED_XFER_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/${XFER_INDOT}$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NAMED_BOOTCONF_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/${XFER_INDOT}$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NSLOOKUP_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NSUPDATE_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${LIB_NETWORK_EXT}; for f in ${LIB_NETWORK_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${LIB_NETWORK_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${LIB_NETWORK_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${FORMAT_EXT}; for f in ${FORMAT_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${FORMAT_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${FORMAT_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${DESC_EXT}; for f in ${DESC_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${DESC_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${DESC_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-
-${DESTDIR}${DESTMAN}/${MANDIR}${CMD_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${LIB_NETWORK_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${FORMAT_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${DESC_EXT_DIR}:
-	mkdir $@
-
-links: FRC
-	@set -ex; ln -s SRC/*.[0-9] .
-
-depend:
-
-clean:
-	rm -f *~ *.BAK *.CKP *.orig
-	rm -f ${OUTFILES}
-
-FRC:
diff --git a/contrib/bind/doc/man/dig.1 b/contrib/bind/doc/man/dig.1
deleted file mode 100644
index 47284c2d2833f..0000000000000
--- a/contrib/bind/doc/man/dig.1
+++ /dev/null
@@ -1,683 +0,0 @@
-.\" $Id: dig.1,v 8.4 1999/10/15 21:29:58 vixie Exp $
-.\"
-.\" ++Copyright++ 1993
-.\" -
-.\" Copyright (c) 1993
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\" Distributed with 'dig' version 2.0 from University of Southern
-.\" California Information Sciences Institute (USC-ISI).
-.\"
-.\"       dig.1   2.0 (USC-ISI) 8/30/90
-.\"
-.Dd August 30, 1990
-.Dt DIG @CMD_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm dig
-.Nd send domain name query packets to name servers
-.Sh SYNOPSIS
-.Nm dig 
-.Op Ic @ Ns Ar server
-.Ar domain
-.Op Aq Ar query-type
-.Op Aq Ar query-class
-.Op Ic + Ns Aq Ar query-option
-.Op Fl Aq Ar dig-option
-.Op Ar %comment
-.Sh DESCRIPTION
-.Ic Dig
-(domain information groper) is a flexible command line tool
-which can be used to gather information from the Domain
-Name System servers. 
-.Ic Dig
-has two modes: simple interactive mode
-for a single query, and batch mode which executes a query for
-each in a list of several query lines. All query options are
-accessible from the command line.
-.Pp
-The usual simple use of 
-.Ic dig
-will take the form:
-.Pp
-.Bd -ragged -offset indent-two
-.Ic dig @ Ns Ar server  domain   query-type  query-class
-.Ed
-.Pp
-where:
-.Bl -tag -width Fl
-.It Ar server
-may be either a domain name or a dot-notation
-Internet address. If this optional field is omitted, 
-.Ic dig
-will attempt to use the default name server for your machine.
-.sp 1
-.Em Note:
-If a domain name is specified, this will be resolved
-using the domain name system resolver (i.e., BIND). If your
-system does not support DNS, you may 
-.Em have
-to specify a
-dot-notation address.  Alternatively, if there is a server
-at your disposal somewhere,  all that is required is that
-.Pa /etc/resolv.conf 
-be present and indicate where the default
-name servers reside,  so that  
-.Ar server 
-itself can be resolved. See 
-.Xr resolver @FORMAT_EXT@
-for information on 
-.Pa /etc/resolv.conf .
-.Sy WARNING: 
-Changing 
-.Pa /etc/resolv.conf 
-will affect both the standard resolver library and 
-.Pq potentially 
-several programs which use it.
-As an option, the user may set the
-environment variable 
-.Ev LOCALRES 
-to name a file which is to
-be used instead of 
-.Pa /etc/resolv.conf 
-.Po Ns Ev LOCALRES 
-is specific to the 
-.Ic dig
-resolver and is not referenced by the standard resolver
-.Pc .
-If the 
-.Ev LOCALRES 
-variable is not set or the specified file
-is not readable, then 
-.Pa /etc/resolv.conf 
-will be used.
-.It Ar domain
-is the domain name for which you are requesting information.
-See the 
-.Fl x 
-option (documented in the
-.Sx OTHER OPTIONS 
-subsection of this section) for convenient way to specify inverse address
-query.
-.It Ar query-type
-is the type of information (DNS query type) that
-you are requesting. If omitted, the default is 
-.Dq Ar a 
-.Pq Dv T_A = Ar address .
-The following types are recognized:
-.Pp
-.Bl -hang -width "hinfo  T_HINFO   " -compact
-.It Ar a\ \ \ \ \ \  Dv T_A
-network address
-.It Ar any\ \ \ \  Dv T_ANY
-all/any information about specified domain
-.It Ar mx\ \ \ \ \  Dv T_MX
-mail exchanger for the domain
-.It Ar ns\ \ \ \ \  Dv T_NS
-name servers
-.It Ar soa\ \ \ \  Dv T_SOA
-zone of authority record
-.It Ar hinfo\ \  Dv T_HINFO
-host information
-.It Ar axfr\ \ \  Dv T_AXFR
-zone transfer (must ask an authoritative server)
-.It Ar txt\ \ \ \  Dv T_TXT
-arbitrary number of strings
-.El
-.Pp
-(See RFC 1035 for the complete list.)
-.It Ar query-class
-is the network class requested in the query. If
-omitted, the default is 
-.Dq Ar in 
-.Pq Dv C_IN = Ar Internet .
-The following classes are recognized:
-.Pp
-.Bl -tag -width "hinfo  T_HINFO   " -compact
-.It Ar in\ \ \ \ \  Dv C_IN
-Internet class domain
-.It Ar any\ \ \ \  Dv C_ANY
-all/any class information
-.El
-.Pp
-(See RFC 1035 for the complete list.)
-.Pp
-.Em Note:
-.Dq Ar Any
-can be used to specify a 
-.Em class 
-and/or a 
-.Em type 
-of query. 
-.Ic Dig
-will parse the first occurrence of 
-.Dq Ar any
-to mean 
-.Ar query-type = Dv T_ANY . 
-To specify 
-.Ar query-class = Dv C_ANY ,
-you must either specify 
-.Dq any 
-twice, or set
-.Ar query-class 
-using the 
-.Fl c 
-option (see below).
-.El
-.Ss OTHER OPTIONS
-.Bl -tag -width Fl
-.It % Ns Ar ignored-comment
-.Dq % 
-is used to included an argument that is simply not
-parsed.  This may be useful  if running 
-.Ic dig
-in batch
-mode. Instead of resolving every 
-.Ar @server-domain-name 
-in a list of queries, you can avoid the overhead of doing
-so, and still have the domain name on the command line
-as a reference. Example:
-.Pp
-.Bd -ragged -offset indent-two
-.Ic dig  @128.9.0.32  %venera.isi.edu  mx  isi.edu
-.Ed
-.Pp
-.It Fl Aq Ar dig option
-.Dq Fl
-is used to specify an option which affects the operation of 
-.Ic dig . 
-The following options are currently
-available (although not guaranteed to be useful):
-.Bl -tag -width Fl
-.It Fl x Ar dot-notation-address
-Convenient form to specify inverse address mapping.
-Instead of 
-.Dq Ic dig 32.0.9.128.in-addr.arpa , 
-one can simply 
-.Dq Ic dig -x 128.9.0.32 .
-.It Fl f Ar file
-File for 
-.Ic dig
-batch mode. The file contains a list
-of query specifications
-(
-.Ns Ic dig 
-command lines) which are to be executed successively.  Lines beginning with 
-.Sq \&; ,
-.Sq # ,
-or
-.Sq \en 
-are ignored.  Other options
-may still appear on command line, and will be in
-effect for each batch query.
-.It Fl T Ar time
-Time in seconds between start of successive
-queries when running in batch mode. Can be used
-to keep two or more batch 
-.Ic dig
-commands running
-roughly in sync.  Default is zero.
-.It Fl p Ar port
-Port number. Query a name server listening to a
-non-standard port number.  Default is 53.
-.It Fl P Ns Bq Ar ping-string
-After query returns, execute a 
-.Xr ping @SYS_OPS_EXT@
-command for response time comparison.  This rather
-unelegantly makes a call to the shell.  The last
-three lines of statistics is printed for the
-command:
-.Pp
-.Bd -ragged -offset indent-two
-.Ic ping Fl s server_name 56 3
-.Ed 
-.Pp
-If the optional 
-.Dq Ar ping_string 
-is present, it
-replaces 
-.Dq Ic ping Fl s 
-in the shell command.
-.It Fl t Ar query-type
-Specify type of query.  May specify either an
-integer value to be included in the type field
-or use the abbreviated mnemonic as discussed
-above (i.e., 
-.Ar mx  = Dv T_MX ) .
-.It Fl c Ar query-class
-Specify class of query. May specify either an
-integer value to be included in the class field
-or use the abbreviated mnemonic as discussed
-above (i.e., in = C_IN).
-.It Fl k Ar keydir:keyname
-Sign the query with the TSIG key named keyname
-that is in the directory keydir.
-.It Fl envsav
-This flag specifies that the 
-.Ic dig
-environment
-(defaults, print options, etc.), after
-all of the arguments are parsed, should be saved
-to a file to become the default environment.
-This is useful if you do not like the standard set of
-defaults and do not desire to include a
-large number of options each time 
-.Ic dig
-is used.  The environment consists of resolver state
-variable flags, timeout, and retries as well as the flags detailing 
-.Ic dig
-output (see below).
-If the shell environment variable 
-.Ev LOCALDEF 
-is set to the name of a file, this is where the default
-.Ic dig
-environment is saved.  If not, the file
-.Dq Pa DiG.env 
-is created in the current working directory.
-.Pp
-.Em Note: 
-.Ev LOCALDEF 
-is specific to the 
-.Ic dig
-resolver,
-and will not affect operation of the standard
-resolver library.
-.Pp
-Each time 
-.Ic dig
-is executed, it looks for 
-.Dq Pa ./DiG.env
-or the file specified by the shell environment variable
-.Ev LOCALDEF . 
-If such file exists and is readable, then the
-environment is restored from this file before any arguments are parsed.
-.It Fl envset
-This flag only affects batch query runs. When 
-.Dq Fl envset 
-is specified on a line in a 
-.Ic dig
-batch file, the 
-.Ic dig
-environment after the arguments are parsed
-becomes the default environment for the duration of
-the batch file, or until the next line which specifies
-.Dq Fl envset .
-.It Xo
-.Fl Op Cm no 
-.Ns Cm stick
-.Xc
-This flag only affects batch query runs.
-It specifies that the 
-.Ic dig
-environment (as read initially
-or set by 
-.Dq Fl envset 
-switch) is to be restored before each query (line) in a 
-.Ic dig
-batch file.
-The default 
-.Dq Fl nostick 
-means that the 
-.Ic dig
-environment does not stick, hence options specified on a single line
-in a 
-.Ic dig
-batch file will remain in effect for
-subsequent lines (i.e. they are not restored to the 
-.Dq sticky 
-default).
-.El
-.It Ic + Ns Aq Ar query-option
-.Dq +
-is used to specify an option to be changed in the query packet or to change 
-.Ic dig
-output specifics. Many of these are the same parameters accepted by 
-.Xr nslookup @SYS_OPS_EXT@ .
-If an option requires a parameter, the form is as follows:
-.Pp
-.Bd -ragged -offset indent-two
-.Ic + 
-.Ns Ar keyword 
-.Ns Op = Ns Ar value
-.Ed
-.Pp
-Most keywords can be abbreviated.  Parsing of the 
-.Dq +
-options  is very  simplistic \(em a value must not be
-separated from its keyword by white space. The following
-keywords are currently available:
-.Pp
-Keyword      Abbrev.  Meaning [default]
-.Pp
-.Bl -tag -width "[no]primary  (ret)    " -compact
-.It Xo
-.Op Cm no 
-.Ns Cm debug\ \ \ \ 
-.Pq Cm deb
-.Xc
-turn on/off debugging mode 
-.Bq Cm deb
-.It Xo
-.Op Cm no 
-.Ns Cm d2\ \ \ \ \ \ \ \ \ \ 
-.Xc
-turn on/off extra debugging mode 
-.Bq Cm nod2
-.It Xo
-.Op Cm no 
-.Ns Cm recurse\ \ 
-.Pq Cm rec
-.Xc
-use/don't use recursive lookup 
-.Bq Cm rec
-.It Xo
-.Cm retry= Ns Ar #
-.Cm \ \ \ \ \ 
-.Pq Cm ret
-.Xc 
-set number of retries to # 
-.Bq 4
-.It Xo
-.Cm time= Ns Ar #
-.Cm \ \ \ \ \ \ 
-.Pq Cm ti
-.Xc
-set timeout length to # seconds 
-.Bq 4
-.It Xo
-.Op Cm no 
-.Ns Cm ko
-.Xc
-keep open option (implies vc) 
-.Bq Cm noko
-.It Xo
-.Op Cm no 
-.Ns Cm vc
-.Xc
-use/don't use virtual circuit 
-.Bq Cm novc
-.It Xo
-.Op Cm no 
-.Ns Cm defname\ \ 
-.Pq Cm def
-.Xc
-use/don't use default domain name 
-.Bq Cm def
-.It Xo
-.Op Cm no 
-.Ns Cm search\ \ \ 
-.Pq Cm sea
-.Xc
-use/don't use domain search list 
-.Bq Cm sea
-.It Xo
-.Cm domain= Ns Ar NAME\ \ 
-.Pq Cm do
-.Xc
-set default domain name to 
-.Ar NAME
-.It Xo
-.Op Cm no 
-.Ns Cm ignore\ \ \ 
-.Pq Cm i
-.Xc
-ignore/don't ignore trunc. errors 
-.Bq Cm noi
-.It Xo
-.Op Cm no 
-.Ns Cm primary\ \ 
-.Pq Cm pr
-.Xc
-use/don't use primary server 
-.Bq Cm nopr
-.It Xo
-.Op Cm no 
-.Ns Cm aaonly\ \ \ 
-.Pq Cm aa
-.Xc
-authoritative query only flag 
-.Bq Cm noaa
-.It Xo
-.Op Cm no 
-.Ns Cm cmd
-.Xc
-echo parsed arguments 
-.Bq Cm cmd
-.It Xo
-.Op Cm no 
-.Ns Cm stats\ \ \ \ 
-.Pq Cm st
-.Xc
-print query statistics 
-.Bq Cm st
-.It Xo
-.Op Cm no 
-.Ns Cm Header\ \ \ 
-.Pq Cm H
-.Xc
-print basic header 
-.Bq Cm H
-.It Xo
-.Op Cm no 
-.Ns Cm header\ \ \ 
-.Pq Cm he
-.Xc
-print header flags 
-.Bq Cm he
-.It Xo
-.Op Cm no 
-.Ns Cm ttlid\ \ \ \ 
-.Pq Cm tt
-.Xc
-print TTLs 
-.Bq Cm tt
-.It Xo
-.Op Cm no 
-.Ns Cm cl
-.Xc
-print class info 
-.Bq Cm nocl
-.It Xo
-.Op Cm no 
-.Ns Cm qr
-.Xc
-print outgoing query 
-.Bq Cm noqr
-.It Xo
-.Op Cm no 
-.Ns Cm reply\ \ \ \ 
-.Pq Cm rep
-.Xc
-print reply 
-.Bq Cm rep
-.It Xo
-.Op Cm no 
-.Ns Cm ques\ \ \ \ \ 
-.Pq Cm qu
-.Xc
-print question section 
-.Bq Cm qu
-.It Xo
-.Op Cm no 
-.Ns Cm answer\ \ \ 
-.Pq Cm an
-.Xc
-print answer section 
-.Bq Cm an
-.It Xo
-.Op Cm no 
-.Ns Cm author\ \ \ 
-.Pq Cm au
-.Xc
-print authoritative section 
-.Bq Cm au
-.It Xo
-.Op Cm no 
-.Ns Cm addit\ \ \ \ 
-.Pq Cm ad
-.Xc
-print additional section 
-.Bq Cm ad
-.It Cm pfdef 
-set to default print flags
-.It Cm pfmin 
-set to minimal default print flags
-.It Cm pfset= Ns Ar # 
-set print flags to #
-(# can be hex/octal/decimal)
-.It Cm pfand= Ns Ar #
-bitwise and print flags with #
-.It Cm pfor= Ns Ar #
-bitwise or print flags with #
-.El
-.Pp
-The 
-.Cm retry 
-and 
-.Cm time 
-options affect the retransmission strategy used by the resolver 
-library when sending datagram queries.  The algorithm is as follows:
-.Pp
-.Bd -literal -offset indent
-for i = 0 to retry - 1
-    for j = 1 to num_servers
-	send_query
-	wait((time * (2**i)) / num_servers)
-    end
-end
-.Ed
-.Pp
-(Note: 
-.Ic dig
-always uses a value of 1 for 
-.Dq Li num_servers . ) 
-.El
-.Ss DETAILS
-.Ic Dig
-once required a slightly modified version of the BIND 
-.Xr resolver @LIB_NETWORK_EXT@
-library.  As of BIND 4.9, BIND's resolver has been augmented to work
-properly with 
-.Ic dig .  
-Essentially, 
-.Ic dig
-is a straight-forward
-(albeit not pretty) effort of parsing arguments and setting appropriate
-parameters.  
-.Ic Dig
-uses 
-.Xr resolver @LIB_NETWORK_EXT@
-routines 
-.Fn res_init , 
-.Fn res_mkquery ,
-.Fn res_send 
-as well as accessing the 
-.Ft _res 
-structure. 
-.Sh ENVIRONMENT
-.Bl -tag -width "LOCALRES  " -compact
-.It Ev LOCALRES
-file to use in place of Pa /etc/resolv.conf
-.It Ev LOCALDEF
-default environment file
-.El
-.Pp
-See also the explanation of the
-.Fl envsav ,
-.Fl envset , 
-and
-.Xo
-.Fl Op Cm no 
-.Ns Cm stick
-.Xc
-options, above.
-.Sh FILES
-.Bl -tag -width "/etc/resolv.conf  " -compact
-.It Pa /etc/resolv.conf	
-initial domain name and name server addresses
-.It Pa \./DiG.env
-default save file for default options
-.El
-.Sh SEE ALSO
-.Xr @INDOT@named @SYS_OPS_EXT@ , 
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ ,  
-.Xr nslookup @SYS_OPS_EXT@ . 
-.Sh STANDARDS
-RFC 1035.
-.Sh AUTHOR
-Steve Hotz 
-hotz@isi.edu
-.Sh ACKNOWLEDGMENTS
-.Ic Dig
-uses functions from 
-.Xr nslookup @SYS_OPS_EXT@
-authored by Andrew Cherenson.
-.Sh BUGS
-.Ic Dig
-has a serious case of "creeping featurism" -- the result of
-considering several potential uses during it's development.  It would
-probably benefit from a rigorous diet.  Similarly, the print flags
-and granularity of the items they specify make evident their
-rather ad hoc genesis.
-.Pp
-.Ic Dig
-does not consistently exit nicely (with appropriate status)
-when a problem occurs somewhere in the resolver 
-.Po Sy NOTE: 
-most of the common exit cases are handled
-.Pc .  
-This is particularly annoying when running in
-batch mode.  If it exits abnormally (and is not caught), the entire
-batch aborts; when such an event is trapped, 
-.Ic dig
-simply
-continues with the next query.
diff --git a/contrib/bind/doc/man/dnskeygen.1 b/contrib/bind/doc/man/dnskeygen.1
deleted file mode 100644
index 4b3c4069bab9a..0000000000000
--- a/contrib/bind/doc/man/dnskeygen.1
+++ /dev/null
@@ -1,132 +0,0 @@
-.\" Copyright (c) 1996,1999 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\"
-.\" $Id: dnskeygen.1,v 8.5 1999/02/23 05:20:18 vixie Exp $
-.\"
-.Dd December 2, 1998
-.Dt DNSKEYGEN @CMD_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm dnskeygen 
-.Nd generate public, private, and shared secret keys for DNS Security
-.Sh SYNOPSIS
-.Nm dnskeygen
-.Oo Fl
-.Op Cm DHR
-.Ar size
-.Oc
-.Op Fl F
-.Fl Op Cm zhu
-.Op Cm Fl a
-.Op Cm Fl c
-.Op Cm Fl p Ar num
-.Op Cm Fl s Ar num
-.Fl n Ar name
-.Sh DESCRIPTION
-.Ic Dnskeygen
-(DNS Key Generator) is a tool to generate and maintain keys for DNS Security
-within the DNS (Domain Name System).
-.Nm Dnskeygen
-can generate public and private keys to authenticate zone data, and shared
-secret keys to be used for Request/Transaction signatures.
-.Bl -tag -width Fl
-.It Fl D
-Dnskeygen will generate a
-.Ic DSA/DSS
-key.
-.Dq size
-must be one of [512, 576, 640, 704, 768, 832, 896, 960, 1024].
-.It Fl H
-Dnskeygen will generate an
-.Ic HMAC-MD5
-key.
-.Dq size
-must be between 128 and 504.
-.It Fl R
-Dnskeygen will generate an
-.Ic RSA
-key.
-.Dq size
-must be between 512 and 4096.
-.It Fl F
-.Ic (RSA only)
-Use a large exponent for key generation.
-.It Fl z Fl h Fl u
-These flags define the type of key being generated: Zone (DNS validation) key,
-Host (host or service) key or User (e.g. email) key, respectively.
-Each key is only allowed to be one of these.
-.It Fl a 
-Indicates that the key
-.Ic CANNOT
-be used for authentication.
-.It Fl c 
-Indicates that the key
-.Ic CANNOT
-be used for encryption.
-.It Fl p Ar num
-Sets the key's protocol field to
-.Ar num
-; the default is
-.Ic 3
-(DNSSEC) if
-.Dq Fl z
-or
-.Dq Fl h
-is specified and
-.Ic 2
-(EMAIL) otherwise.  Other accepted values are
-.Ic 1
-(TLS),
-.Ic 4
-(IPSEC), and
-.Ic 255
-(ANY).
-.It Fl s Ar num
-Sets the key's strength field to
-.Ar num;
-the default is
-.Sy 0.
-.It Fl n Ar name
-Sets the key's name to
-.Ar name.
-.El
-.Ss DETAILS
-.Ic Dnskeygen
-stores each key in two files:
-.Pa K<name>+<alg>+<footprint>.private
-and 
-.Pa K<name>+<alg>+<footprint>.key
-The file 
-.Pa K<name>+<alg>+<footprint>.private
-contains the private key in a portable format.  The file 
-.Pa K<name>+<alg>+<footprint>.key
-contains the public key in the DNS zone file format:
-.Pp
-.D1 Ar <name> IN KEY <flags> <algorithm> <protocol> <exponent|modulus>
-.Pp
-.Sh ENVIRONMENT
-No environmental variables are used.
-.Sh SEE ALSO
-.Em RFC 2065
-on secure DNS and the
-.Em TSIG
-Internet Draft.
-.Sh AUTHOR
-Olafur Gudmundsson (ogud@tis.com).
-.Sh ACKNOWLEDGMENTS
-The underlying cryptographic math is done by the DNSSAFE and/or Foundation
-Toolkit libraries.
-.Sh BUGS
-None are known at this time
diff --git a/contrib/bind/doc/man/dnsquery.1 b/contrib/bind/doc/man/dnsquery.1
deleted file mode 100644
index 2662ab40170ca..0000000000000
--- a/contrib/bind/doc/man/dnsquery.1
+++ /dev/null
@@ -1,178 +0,0 @@
-.\" $Id: dnsquery.1,v 8.3 1999/01/08 18:54:21 vixie Exp $
-.\"
-.\"Copyright (c) 1995,1996,1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd March 10, 1990
-.Dt DNSQUERY @CMD_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm dnsquery 
-.Nd query domain name servers using resolver
-.Sh SYNOPSIS
-.Nm dnsquery
-.Op Fl n Ar nameserver
-.Op Fl t Ar type
-.Op Fl c Ar class
-.Op Fl r Ar retry
-.Op Fl p Ar period
-.Op Fl d
-.Op Fl s
-.Op Fl v
-.Ar host
-.Sh DESCRIPTION
-The
-.Ic dnsquery
-program is a general interface to nameservers via
-BIND resolver library calls.  The program supports
-queries to the nameserver with an opcode of QUERY.
-This program is intended to be a replacement or
-supplement to programs like nstest, nsquery and
-nslookup.  All arguments except for
-.Ar host
-and
-.Ar nameserver
-are treated without case-sensitivity.
-.Sh OPTIONS
-.Bl -tag -width Fl
-.It Fl n Ar nameserver
-The nameserver to be used in the query.  Nameservers can appear as either 
-Internet addresses of the form 
-.Ar w.x.y.z 
-or can appear as domain names.
-(Default: as specified in 
-.Pa /etc/resolv.conf . ) 
-.It Fl t Ar type
-The type of resource record of interest.  Types include:
-.Bl -tag -width "AFSDB  " -compact -offset indent
-.It Ar A
-address
-.It Ar NS
-nameserver
-.It Ar CNAME
-canonical name
-.It Ar PTR	
-domain name pointer
-.It Ar SOA	
-start of authority
-.It Ar WKS	
-well-known service
-.It Ar HINFO
-host information
-.It Ar MINFO
-mailbox information
-.It Ar MX	
-mail exchange
-.It Ar RP	
-responsible person
-.It Ar MG	
-mail group member
-.It Ar AFSDB	
-DCE or AFS server
-.It Ar ANY	
-wildcard
-.El
-.Pp
-Note that any case may be used.  (Default:  
-.Ar ANY . )
-.It Fl c Ar class
-The class of resource records of interest.
-Classes include:
-.Bl -tag -width "CHAOS  " -compact -offset indent
-.It Ar IN	
-Internet
-.It Ar HS	
-Hesiod
-.It Ar CHAOS
-Chaos
-.It Ar ANY	
-wildcard
-.El
-.Pp
-Note that any case may be used.  (Default:  
-.Ar IN . )
-.It Fl r Ar retry
-The number of times to retry if the nameserver is
-not responding.  (Default:  4.)
-.It Fl p Ar period
-Period to wait before timing out.  (Default:  
-.Dv RES_TIMEOUT . )
-.It Fl d
-Turn on debugging.  This sets the 
-.Dv RES_DEBUG 
-bit of the resolver's
-.Ft options
-field.  (Default:  no debugging.)
-.It Fl s
-Use a
-.Em stream
-rather than a packet.  This uses a TCP stream connection with
-the nameserver rather than a UDP datagram.  This sets the
-.Dv RES_USEVC 
-bit of the resolver's
-.Ft options
-field.  (Default:  UDP datagram.)
-.It Fl v
-Synonym for the 
-.Dq Fl s 
-flag.
-.It Ar host
-The name of the host (or domain) of interest.
-.El
-.Sh FILES
-.Bl -tag -width "<arpa/nameser.h>  " -compact
-.It Pa /etc/resolv.conf 
-to get the default ns and search lists
-.It Pa <arpa/nameser.h> 	
-list of usable RR types and classes
-.It Pa <resolv.h>		
-list of resolver flags
-.El
-.Sh DIAGNOSTICS
-If the resolver fails to answer the query and debugging has not been
-turned on,
-.Ic dnsquery
-will simply print a message like:
-.Dl Query failed (rc = 1) : Unknown host
-.Pp
-The value of the return code is supplied by 
-.Ft h_errno .
-.Sh SEE ALSO
-.Xr nslookup @SYS_OPS_EXT@ , 
-.Xr nstest @CMD_EXT@ , 
-.Xr nsquery @CMD_EXT@ , 
-.Xr named @SYS_OPS_EXT@ , 
-.Xr resolver @FORMAT_EXT@ .
-.Sh AUTHOR
-Bryan Beecher
-.Sh BUGS
-Queries of a class other than 
-.Ar IN 
-can have interesting results
-since ordinarily a nameserver only has a list of root nameservers
-for class 
-.Ar IN 
-resource records.
-.Pp
-.Ic Dnsquery 
-uses a call to 
-.Fn inet_addr 
-to determine if the argument
-for the 
-.Dq Fl n
-option is a valid Internet address.  Unfortunately,
-.Fn inet_addr 
-seems to cause a segmentation fault with some (bad)
-IP addresses (e.g., 1.2.3.4.5).
diff --git a/contrib/bind/doc/man/dnssigner.1 b/contrib/bind/doc/man/dnssigner.1
deleted file mode 100644
index 1fb4ce4623c23..0000000000000
--- a/contrib/bind/doc/man/dnssigner.1
+++ /dev/null
@@ -1,213 +0,0 @@
-.\" Copyright (c) 1996 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\"
-.\" $Id: dnssigner.1,v 8.2 1997/03/14 02:29:42 vixie Exp $
-.\"
-.Dd October 25, 1996
-.Dt DNSSIGNER @CMD_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm dnssigner 
-.Nd add signatures to DNS zone files
-.Sh SYNOPSIS
-.Nm dnssigner
-.Op Cm signer-name Ar default_signer
-.Op Cm boot-file Ar file
-.Op Cm debug-file Ar file
-.Op Cm out-dir Ar directory
-.Op Cm seq-no Ar number
-.Oo
-.Cm expiration-time 
-.Oo Po Cm + 
-.Ns \&| 
-.Ns Cm = 
-.Pc Oc
-.Ns Ar time
-.Oc
-.Op Cm hide 
-.Op Cm noaxfr 
-.Op Cm nosign 
-.Op Cm verify 
-.Op Cm update-zonekey 
-.Op Fl d Ns Ar level
-.Sh DESCRIPTION
-.Ic Dnssigner
-(Sign DNS zone database) is a tool to generate signatures
-for DNS (Domain Name System) resource records.  It also generates
-NXT records for each zone.
-.Pp
-.Bl -tag -width Fl
-.It Cm signer-name Ar default_signer
-Specifies a name of the key to use if no signer is defined using the
-.Em Li $SIGNER  
-directive in the boot files.
-.It Cm boot-file Ar file
-Specifies the control file for 
-.Ic dnssigner , 
-which is in the same format as the BIND-4 
-.Pa named.boot 
-file.
-.It Cm debug-file Ar file
-Redirect debug output to the specified 
-.Ar file ; 
-default is
-.Pa signer_out 
-in the current directory.
-.It Cm out-dir Ar directory
-Write signed files to thie specified
-.Ar directory ; 
-default is to use
-.Pa /tmp .
-.Pp
-.Sy NOTE :  
-Specify the full path to this directory; relative paths may not work.
-.It Xo Cm expiration-time 
-.Oo Po Cm + 
-.Ns \&| 
-.Ns Cm = 
-.Pc Oc
-.Ns Ar time
-.Xc
-Time when the signature records are to
-expire.  Using either
-.Dq Cm =
-or 
-.Em no 
-sign before the 
-.Ar time
-argument
-.Po i.e., 
-.Do Op Cm = 
-.Ns Ar time
-.Dc 
-.Pc , 
-the 
-.Ar time 
-is interpreted as an absolute time in seconds when the records will expire.  
-.Po Sy NOTE :
-  All such times are interpreted as Universal Times.
-.Pc 
-With 
-.Dq Cm +
-specified 
-.Pq i.e., Dq Cm + Ns Ar time ,
-the
-.Ar time 
-time is interpreted as an offset into the future.
-.Pp
-If not specified on the command line, the default 
-.Cm expiration-time
-is 3600*24*30 sec (30 days).
-.It Cm seq-no Ar number
-Force the serial number in the SOA records to the specified value. 
-If this parameter is not set, the serial number will be set to a value
-based on the current time.
-.It Cm hide 
-This flag will cause NXT records in zones with wildcard
-records to point to 
-.Li *.<zone> 
-as the next host. The purpose of this
-flag is to hide all information about valid names in a zone.
-.It Cm noaxfr
-Turn of generation of zone transfer signature records,
-which validate the transfer of an entire zone.
-.It Cm nosign
-When this flag is specified, the boot files are read, NXT
-records are generated and zone file is written to the output
-directory. No SIG records are generated. This flag is useful for
-quickly checking the format of the data in the boot files, and to 
-have boot files sorted into DNSSEC order.  
-.It Cm verify
-When this flag is present,
-.Ic dnssigner
-will verify all
-signed records and print out a confirmation message for each SIG
-verified. The main use of this flag is to see how long it takes to
-generate each signature. 
-.It Cm update-zonekey 
-If this flag is specified, then the zonekeys used
-to sign files will be updated with new records.  Specify this flag if
-one or more of the keys have been updated.  If there are no zonekeys
-specified in the boot files, this flag will insert them. Omitting
-zonekeys will cause primary nameservers to reject the zone. 
-.It Fl d Ns Ar level
-Debug level to use for running 
-.Ic dnssigner ;
-these levels are the same as those used by 
-.Xr @INDOT_U@NAMED @SYS_OPS_EXT_U@ 
-.El
-.Ss DETAILS
-.Ic Dnssigner
-reads BIND-4 
-.Pa named.boot 
-and zone files, adds SIG and NXT
-records and writes out the records (to one file per zone, regardless of
-how many include files the original zone was in).  The files generated by
-.Ic dnssigner
-are ordinary textual zone files and are then normally
-loaded by 
-.Xr @INDOT_U@NAMED @SYS_OPS_EXT_U@ 
-to serve the zone.
-.Ic Dnssigner
-\fBrequires that the PRIVATE key(s) reside in the input directory\fP.
-.Pp
-Making manual changes to the output files is hazardous, because most
-changes will invalidate one or more signatures contained therein.  This
-will cause the zone to fail to load into 
-.Xr @INDOT_U@NAMED @SYS_OPS_EXT_U@ , 
-or will cause subsequent
-failures in retrieving records from the zone.  It is far better to make
-changes in 
-.Ic dnssigner's
-input files, and rerun 
-.Ic dnssigner .
-.Pp
-When 
-.Ic dnssigner
-detects a delegation point, it creates a special file
-.Pa <zone_name>.PARENT 
-which contains the RR's the parent zone signs for the 
-child zone (NS, KEY, NXT). The intent is that the child will include this
-file when loading primary nameservers.  Similarly, each zone file ends
-with the 
-.Dq Li #include <zone_name>.PARENT 
-command.  The records 
-in the
-.Pa .PARENT 
-files are omitted from the SIG(AXFR) calculations as these
-records usualy are on a different signing cycle.  
-.Pp
-The 
-.Em Li Dq $SIGNER Op Ar keyname
-directive can be used to change signers in a
-zone.  If 
-.Ar keyname 
-is omitted, signing is turned off.  Keys are loaded the
-first time the keys are accessed.  Only records that are signed by the
-zone signer (the key that signs the SOA) are included in the SIG(AXFR)
-calculation.  It is not generally recommended that multiple keys sign
-records in the same zone, unless this is useful for dynamic updates.
-.Sh ENVIRONMENT
-No environmental variables are used.
-.Sh SEE ALSO
-.Xr @INDOT_U@NAMED @SYS_OPS_EXT_U@ ,
-RSAREF documentation,
-Internet-Draft 
-.Em draft-ietf-dnssec-secext-10.txt
-on Secure DNS, or its successor.
-.Sh AUTHOR
-Olafur Gudmundsson (ogud@tis.com)
-.Sh ACKNOWLEDGMENTS
-The underlying crypto math is done by the RSAREF or BSAFE libraries.
diff --git a/contrib/bind/doc/man/getaddrinfo.3 b/contrib/bind/doc/man/getaddrinfo.3
deleted file mode 100644
index a906c5d1738c5..0000000000000
--- a/contrib/bind/doc/man/getaddrinfo.3
+++ /dev/null
@@ -1,361 +0,0 @@
-.\" Copyright (c) 1983, 1987, 1991, 1993
-.\"	The Regents of the University of California.  All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\"	This product includes software developed by the University of
-.\"	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\"
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\"
-.\"     From: @(#)gethostbyname.3	8.4 (Berkeley) 5/25/95
-.\"     $Id: getaddrinfo.3,v 8.1 1999/01/11 21:30:51 vixie Exp $
-.\"
-.Dd May 25, 1995
-.Dt GETADDRINFO @LIB_NETWORK_EXT@
-.Os KAME
-.Sh NAME
-.Nm getaddrinfo
-.Nm freeaddrinfo ,
-.Nm gai_strerror
-.Nd nodename-to-address translation in protocol-independent manner
-.Sh SYNOPSIS
-.Fd #include <sys/socket.h>
-.Fd #include <netdb.h>
-.Ft int
-.Fn getaddrinfo "const char *nodename" "const char *servname" \
-"const struct addrinfo *hints" "struct addrinfo **res"
-.Ft void
-.Fn freeaddrinfo "struct addrinfo *ai"
-.Ft "char *"
-.Fn gai_strerror "int ecode"
-.Sh DESCRIPTION
-The
-.Fn getaddrinfo
-function is defined for protocol-independent nodename-to-address translation.
-It performs functionality of 
-.Xr gethostbyname @LIB_NETWORK_EXT@
-and
-.Xr getservbyname @LIB_NETWORK_EXT@ ,
-in more sophisticated manner.
-.Pp
-The addrinfo structure is defined as a result of including the
-.Li <netdb.h>
-header:
-.Bd -literal -offset
-struct addrinfo {                                                  *
-     int     ai_flags;     /* AI_PASSIVE, AI_CANONNAME, AI_NUMERICHOST */
-     int     ai_family;    /* PF_xxx */
-     int     ai_socktype;  /* SOCK_xxx */
-     int     ai_protocol;  /* 0 or IPPROTO_xxx for IPv4 and IPv6 */
-     size_t  ai_addrlen;   /* length of ai_addr */
-     char   *ai_canonname; /* canonical name for nodename */
-     struct sockaddr  *ai_addr; /* binary address */
-     struct addrinfo  *ai_next; /* next structure in linked list */
-};
-.Ed
-.Pp
-The
-.Fa nodename
-and
-.Fa servname
-arguments are pointers to null-terminated strings or
-.Dv NULL .
-One or both of these two arguments must be a
-.Pf non Dv -NULL
-pointer.
-In the normal client scenario, both the
-.Fa nodename
-and
-.Fa servname
-are specified.
-In the normal server scenario, only the
-.Fa servname
-is specified.
-A
-.Pf non Dv -NULL
-.Fa nodename
-string can be either a node name or a numeric host address string
-.Po
-i.e., a dotted-decimal IPv4 address or an IPv6 hex address
-.Pc .
-A
-.Pf non Dv -NULL
-.Fa servname
-string can be either a service name or a decimal port number.
-.Pp
-The caller can optionally pass an
-.Li addrinfo
-structure, pointed to by the third argument,
-to provide hints concerning the type of socket that the caller supports.
-In this
-.Fa hints
-structure all members other than
-.Fa ai_flags ,
-.Fa ai_family ,
-.Fa ai_socktype ,
-and
-.Fa ai_protocol
-must be zero or a
-.Dv NULL
-pointer.
-A value of
-.Dv PF_UNSPEC
-for
-.Fa ai_family
-means the caller will accept any protocol family.
-A value of 0 for
-.Fa ai_socktype
-means the caller will accept any socket type.
-A value of 0 for
-.Fa ai_protocol
-means the caller will accept any protocol.
-For example, if the caller handles only TCP and not UDP, then the
-.Fa ai_socktype
-member of the hints structure should be set to
-.Dv SOCK_STREAM
-when
-.Fn getaddrinfo
-is called.
-If the caller handles only IPv4 and not IPv6, then the
-.Fa ai_family
-member of the
-.Fa hints
-structure should be set to
-.Dv PF_INET
-when
-.Fn getaddrinfo
-is called.
-If the third argument to
-.Fn getaddrinfo
-is a
-.Dv NULL
-pointer, this is the same as if the caller had filled in an
-.Li addrinfo
-structure initialized to zero with
-.Fa ai_family
-set to PF_UNSPEC.
-.Pp
-Upon successful return a pointer to a linked list of one or more
-.Li addrinfo
-structures is returned through the final argument.
-The caller can process each
-.Li addrinfo
-structure in this list by following the
-.Fa ai_next
-pointer, until a
-.Dv NULL
-pointer is encountered.
-In each returned
-.Li addrinfo
-structure the three members
-.Fa ai_family ,
-.Fa ai_socktype ,
-and
-.Fa ai_protocol
-are the corresponding arguments for a call to the
-.Fn socket
-function.
-In each
-.Li addrinfo
-structure the
-.Fa ai_addr
-member points to a filled-in socket address structure whose length is
-specified by the
-.Fa ai_addrlen
-member.
-.Pp
-If the
-.Dv AI_PASSIVE
-bit is set in the
-.Fa ai_flags
-member of the
-.Fa hints
-structure, then the caller plans to use the returned socket address
-structure in a call to
-.Fn bind .
-In this case, if the
-.Fa nodename
-argument is a
-.Dv NULL
-pointer, then the IP address portion of the socket
-address structure will be set to
-.Dv INADDR_ANY
-for an IPv4 address or
-.Dv IN6ADDR_ANY_INIT
-for an IPv6 address.
-.Pp
-If the
-.Dv AI_PASSIVE
-bit is not set in the
-.Fa ai_flags
-member of the
-.Fa hints
-structure, then the returned socket address structure will be ready for a
-call to
-.Fn connect
-.Pq for a connection-oriented protocol
-or either
-.Fn connect ,
-.Fn sendto , or
-.Fn sendmsg
-.Pq for a connectionless protocol .
-In this case, if the
-.Fa nodename
-argument is a
-.Dv NULL
-pointer, then the IP address portion of the
-socket address structure will be set to the loopback address.
-.Pp
-If the
-.Dv AI_CANONNAME
-bit is set in the
-.Fa ai_flags
-member of the
-.Fa hints
-structure, then upon successful return the
-.Fa ai_canonname
-member of the first
-.Li addrinfo
-structure in the linked list will point to a null-terminated string
-containing the canonical name of the specified
-.Fa nodename .
-.Pp
-If the
-.Dv AI_NUMERICHOST
-bit is set in the
-.Fa ai_flags
-member of the
-.Fa hints
-structure, then a
-.Pf non Dv -NULL
-.Fa nodename
-string must be a numeric host address string.
-Otherwise an error of
-.Dv EAI_NONAME
-is returned.
-This flag prevents any type of name resolution service (e.g., the DNS)
-from being called.                                               
-.Pp
-All of the information returned by
-.Fn getaddrinfo
-is dynamically allocated:
-the
-.Li addrinfo
-structures, and the socket address structures and canonical node name
-strings pointed to by the addrinfo structures.
-To return this information to the system the function
-Fn freeaddrinfo
-is called.
-The
-.Fa addrinfo
-structure pointed to by the
-.Fa ai argument
-is freed, along with any dynamic storage pointed to by the structure.
-This operation is repeated until a
-.Dv NULL
-.Fa ai_next
-pointer is encountered.
-.Pp
-To aid applications in printing error messages based on the
-.Dv EAI_xxx
-codes returned by
-.Fn getaddrinfo ,
-.Fn gai_strerror
-is defined.
-The argument is one of the
-.Dv EAI_xxx
-values defined earlier and the return value points to a string describing
-the error.
-If the argument is not one of the
-.Dv EAI_xxx
-values, the function still returns a pointer to a string whose contents
-indicate an unknown error.
-.Sh FILES
-.Bl -tag -width /etc/resolv.conf -compact
-.It Pa /etc/hosts
-.It Pa /etc/host.conf
-.It Pa /etc/resolv.conf
-.El
-.Sh DIAGNOSTICS
-Error return status from 
-.Fn getaddrinfo
-is zero on success and non-zero on errors.
-Non-zero error codes are defined in
-.Li <netdb.h> ,
-and as follows:
-.Pp
-.Bl -tag -width EAI_ADDRFAMILY -compact
-.It Dv EAI_ADDRFAMILY 
-address family for nodename not supported
-.It Dv EAI_AGAIN
-temporary failure in name resolution
-.It Dv EAI_BADFLAGS
-invalid value for ai_flags
-.It Dv EAI_FAIL
-non-recoverable failure in name resolution
-.It Dv EAI_FAMILY
-ai_family not supported
-.It Dv EAI_MEMORY
-memory allocation failure
-.It Dv EAI_NODATA
-no address associated with nodename
-.It Dv EAI_NONAME
-nodename nor servname provided, or not known
-.It Dv EAI_SERVICE
-servname not supported for ai_socktype
-.It Dv EAI_SOCKTYPE
-ai_socktype not supported
-.It Dv EAI_SYSTEM
-system error returned in errno
-.El
-.Pp
-If called with proper argument,
-.Fn gai_strerror
-returns a pointer to a string describing the given error code.
-If the argument is not one of the
-.Dv EAI_xxx
-values, the function still returns a pointer to a string whose contents
-indicate an unknown error.
-.Sh SEE ALSO
-.Xr getnameinfo @LIB_NETWORK_EXT@ ,
-.Xr gethostbyname @LIB_NETWORK_EXT@ ,
-.Xr getservbyname @LIB_NETWORK_EXT@ ,
-.Xr hosts @FORMAT_EXT@ ,
-.Xr services @FORMAT_EXT@ ,
-.Xr hostname @DESC_EXT@ ,
-.Xr named @SYS_OPS_EXT@
-.Pp
-R. Gilligan, S.  Thomson, J. Bound, and W. Stevens,
-``Basic Socket Interface Extensions for IPv6,'' RFC2133, April 1997.
-.Sh HISTORY
-The implementation first appeared in WIDE Hydrangea IPv6 protocol stack kit.
-.Sh STANDARDS
-The
-.Fn getaddrinfo
-function is defined IEEE POSIX 1003.1g draft specification,
-and documented in ``Basic Socket Interface Extensions for IPv6''
-.Pq RFC2133 .
-.Sh BUGS
-The text was shamelessly copied from RFC2133.
diff --git a/contrib/bind/doc/man/gethostbyname.3 b/contrib/bind/doc/man/gethostbyname.3
deleted file mode 100644
index 0498bd8b59553..0000000000000
--- a/contrib/bind/doc/man/gethostbyname.3
+++ /dev/null
@@ -1,246 +0,0 @@
-.\" Copyright (c) 1983, 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted provided
-.\" that: (1) source distributions retain this entire copyright notice and
-.\" comment, and (2) distributions including binaries display the following
-.\" acknowledgement:  ``This product includes software developed by the
-.\" University of California, Berkeley and its contributors'' in the
-.\" documentation or other materials provided with the distribution and in
-.\" all advertising materials mentioning features or use of this software.
-.\" Neither the name of the University nor the names of its contributors may
-.\" be used to endorse or promote products derived from this software without
-.\" specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
-.\" WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
-.\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)gethostbyname.3	6.12 (Berkeley) 6/23/90
-.\"
-.Dd June 23, 1990
-.Dt GETHOSTBYNAME @LIB_NETWORK_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm gethostbyname ,
-.Nm gethostbyaddr ,
-.Nm gethostent ,
-.Nm sethostent ,
-.Nm endhostent ,
-.Nm herror 
-.Nd get network host entry
-.Sh SYNOPSIS
-.Fd #include <netdb.h>
-.Ft extern int 
-.Fa h_errno;
-.Pp
-.Ft struct hostent *
-.Fn gethostbyname "char *name";
-.Ft struct hostent *
-.Fn gethostbyname2 "char *name" "int af";
-.Ft struct hostent *
-.Fn gethostbyaddr "char *addr" "int len, type";
-.Ft struct hostent *
-.Fn gethostent
-.Fn sethostent "int stayopen";
-.Fn endhostent
-.Fn herror "char *string";
-.Sh DESCRIPTION
-.Fn Gethostbyname ,
-.Fn gethostbyname2 ,
-and
-.Fn gethostbyaddr
-each return a pointer to a
-.Ft hostent
-structure (see below) describing an internet host
-referenced by name or by address, as the function names indicate.
-This structure contains either the information obtained from the name server,
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-or broken-out fields from a line in 
-.Pa /etc/hosts .
-If the local name server is not running, these routines do a lookup in
-.Pa /etc/hosts .
-.Bd -literal -offset indent
-struct	hostent {
-	char	*h_name;	/* official name of host */
-	char	**h_aliases;	/* alias list */
-	int	h_addrtype;	/* host address type */
-	int	h_length;	/* length of address */
-	char	**h_addr_list;	/* list of addresses from name server */
-};
-
-#define	h_addr  h_addr_list[0]	/* address, for backward compatibility */
-.Ed
-.Pp
-The members of this structure are:
-.Bl -tag -width "h_addr_list" 
-.It h_name
-Official name of the host.
-.It h_aliases
-A zero-terminated array of alternate names for the host.
-.It h_addrtype
-The type of address being returned; usually 
-.Dv AF_INET .
-.It h_length
-The length, in bytes, of the address.
-.It h_addr_list
-A zero-terminated array of network addresses for the host.
-Host addresses are returned in network byte order.
-.It h_addr
-The first address in 
-.Li h_addr_list ; 
-this is for backward compatibility.
-.El
-.Pp
-When using the nameserver,
-.Fn gethostbyname
-will search for the named host in each parent domain given in the 
-.Dq Li search
-directive of
-.Xr resolv.conf @FORMAT_EXT@
-unless the name contains a dot
-.Pq Dq \&. .
-If the name contains no dot, and if the environment variable 
-.Ev HOSTALIASES
-contains the name of an alias file, the alias file will first be searched
-for an alias matching the input name.
-See
-.Xr hostname @DESC_EXT@
-for the domain search procedure and the alias file format.
-.Pp
-.Fn Gethostbyname2
-is an evolution of
-.Fn gethostbyname
-intended to allow lookups in address families other than 
-.Dv AF_INET , 
-for example, 
-.Dv AF_INET6 .  
-Currently, the
-.Fa af
-argument must be specified as
-.Dv AF_INET
-else the function will return 
-.Dv NULL 
-after having set
-.Ft h_errno
-to 
-.Dv NETDB_INTERNAL .
-.Pp
-.Fn Sethostent
-may be used to request the use of a connected TCP socket for queries.
-If the
-.Fa stayopen
-flag is non-zero,
-this sets the option to send all queries to the name server using TCP
-and to retain the connection after each call to 
-.Fn gethostbyname
-or
-.Fn gethostbyaddr .
-Otherwise, queries are performed using UDP datagrams.
-.Pp
-.Fn Endhostent
-closes the TCP connection.
-.Sh ENVIRONMENT
-.Bl -tag -width "HOSTALIASES  " -compress
-.It Ev HOSTALIASES
-Name of file containing 
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh FILES
-.Bl -tag -width "HOSTALIASES  " -compress
-.It Pa /etc/hosts
-See
-.Xr hosts @FORMAT_EXT@ .
-.It Ev HOSTALIASES
-Name of file containing 
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh DIAGNOSTICS
-.Pp
-Error return status from 
-.Fn gethostbyname
-and
-.Fn gethostbyaddr
-is indicated by return of a null pointer.
-The external integer
-.Ft h_errno
-may then be checked to see whether this is a temporary failure
-or an invalid or unknown host.
-The routine
-.Fn herror
-can be used to print an error message describing the failure.
-If its argument
-.Fa string
-is non-NULL, it is printed, followed by a colon and a space.
-The error message is printed with a trailing newline.
-.Pp
-.Ft h_errno
-can have the following values:
-.Bl -tag -width "HOST_NOT_FOUND  " -offset indent 
-.It Dv NETDB_INTERNAL 
-This indicates an internal error in the library, unrelated to the network
-or name service.
-.Ft errno
-will be valid in this case; see
-.Xr perror @SYSCALL_EXT@ .
-.It Dv HOST_NOT_FOUND
-No such host is known.
-.It Dv TRY_AGAIN 
-This is usually a temporary error
-and means that the local server did not receive
-a response from an authoritative server.
-A retry at some later time may succeed.
-.It Dv NO_RECOVERY 
-Some unexpected server failure was encountered.
-This is a non-recoverable error, as one might expect.
-.It Dv NO_DATA
-The requested name is valid but does not have an IP address; 
-this is not a temporary error.  
-This means that the name is known to the name server but there is no address
-associated with this name.
-Another type of request to the name server using this domain name
-will result in an answer;
-for example, a mail-forwarder may be registered for this domain.
-.El
-.Sh SEE ALSO
-.Xr hosts @FORMAT_EXT@ , 
-.Xr hostname @DESC_EXT@ , 
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ . 
-.Sh CAVEAT
-.Pp
-.Fn Gethostent
-is defined, and
-.Fn sethostent
-and
-.Fn endhostent
-are redefined,
-when
-.Pa libc
-is built to use only the routines to lookup in
-.Pa /etc/hosts 
-and not the name server:
-.Bd  -filled -offset indent
-.Pp
-.Fn Gethostent
-reads the next line of
-.Pa /etc/hosts ,
-opening the file if necessary.
-.Pp
-.Fn Sethostent 
-is redefined to open and rewind the file.  If the
-.Fa stayopen
-argument is non-zero,
-the hosts data base will not be closed after each call to
-.Fn gethostbyname
-or
-.Fn gethostbyaddr .
-.Pp
-.Fn Endhostent
-is redefined to close the file.
-.Ed
-.Sh BUGS
-All information is contained in a static area so it must be copied if it is
-to be saved.  Only the Internet address format is currently understood.
diff --git a/contrib/bind/doc/man/getipnodebyname.3 b/contrib/bind/doc/man/getipnodebyname.3
deleted file mode 100644
index 3396c3a2bcf5a..0000000000000
--- a/contrib/bind/doc/man/getipnodebyname.3
+++ /dev/null
@@ -1,231 +0,0 @@
-.\" Copyright (c) 1996,1999 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\"
-.\" Copyright (c) 1983, 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted provided
-.\" that: (1) source distributions retain this entire copyright notice and
-.\" comment, and (2) distributions including binaries display the following
-.\" acknowledgement:  ``This product includes software developed by the
-.\" University of California, Berkeley and its contributors'' in the
-.\" documentation or other materials provided with the distribution and in
-.\" all advertising materials mentioning features or use of this software.
-.\" Neither the name of the University nor the names of its contributors may
-.\" be used to endorse or promote products derived from this software without
-.\" specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
-.\" WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
-.\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.Dd September 17, 1999
-.Dt GETIPNODEBYNAME @LIB_NETWORK_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm getipnodebyname ,
-.Nm getipnodebyaddr
-.Nd get network host entry
-.br
-.Nm freehostent 
-.Nd free network host entry
-.Sh SYNOPSIS
-.Fd #include <netdb.h>
-.Pp
-.Ft struct hostent *
-.Fn getipnodebyname "const char *name" "int af" "int flags" "int *error";
-.Ft struct hostent *
-.Fn getipnodebyaddr "const void *addr" "size_t len" "int af" "int *error";
-.Ft void
-.Fn freehostent "struct hostent *he";
-.Sh DESCRIPTION
-.Fn Getipnodebyname ,
-and
-.Fn getipnodebyaddr
-each return a pointer to a
-.Ft hostent
-structure (see below) describing an internet host
-referenced by name or by address, as the function names indicate.
-This structure contains either the information obtained from the name server,
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-or broken-out fields from a line in 
-.Pa /etc/hosts .
-If the local name server is not running, these routines do a lookup in
-.Pa /etc/hosts .
-.Bd -literal -offset indent
-struct	hostent {
-	char	*h_name;	/* official name of host */
-	char	**h_aliases;	/* alias list */
-	int	h_addrtype;	/* host address type */
-	int	h_length;	/* length of address */
-	char	**h_addr_list;	/* list of addresses from name server */
-};
-
-#define	h_addr  h_addr_list[0]	/* address, for backward compatibility */
-.Ed
-.Pp
-The members of this structure are:
-.Bl -tag -width "h_addr_list" 
-.It h_name
-Official name of the host.
-.It h_aliases
-A zero-terminated array of alternate names for the host.
-.It h_addrtype
-The type of address being returned.
-.It h_length
-The length, in bytes, of the address.
-.It h_addr_list
-A zero-terminated array of network addresses for the host.
-Host addresses are returned in network byte order.
-.It h_addr
-The first address in 
-.Li h_addr_list ; 
-this is for backward compatibility.
-.El
-.Pp
-This structure should be freed after use by calling
-.Fn freehostent .
-.Pp
-When using the nameserver,
-.Fn getiphostbyaddr
-will search for the named host in each parent domain given in the 
-.Dq Li search
-directive of
-.Xr resolv.conf @FORMAT_EXT@
-unless the name contains a dot
-.Pq Dq \&. .
-If the name contains no dot, and if the environment variable 
-.Ev HOSTALIASES
-contains the name of an alias file, the alias file will first be searched
-for an alias matching the input name.
-See
-.Xr hostname @DESC_EXT@
-for the domain search procedure and the alias file format.
-.Pp
-.Fn Getiphostbyaddr
-can be told to look for IPv4 addresses, IPv6 addresses or both IPv4 and IPv6.
-If IPv4 addresses only are to be looked up then
-.Fa af
-should be set to
-.Dv AF_INET , 
-otherwise it should be set to
-.Dv AF_INET6 .  
-.Pp
-There are three flags that can be set
-.Bl -tag -width "AI_ADDRCONFIG" 
-.It Dv AI_V4MAPPED
-Return IPv4 addresses if no IPv6 addresses are found.
-This flag is ignored unless
-.Fa af
-is
-.Dv AF_INET6 .
-.It Dv AI_ALL
-Return IPv4 addresses as well IPv6 addresses if 
-.Dv AI_V4MAPPED
-is set.
-This flag is ignored unless
-.Fa af
-is
-.Dv AF_INET6 .
-.It Dv AI_ADDRCONFIG
-Only return addresses of a given type if the system has an active interface
-with that type.
-.El
-.Pp
-Also
-.Dv AI_DEFAULT
-is defined to be
-.Dv (AI_V4MAPPED|AI_ADDRCONFIG) .
-.Pp
-.Fn Getipnodebyaddr
-will lookup IPv4 mapped and compatible addresses in the IPv4 name
-space and IPv6 name space
-.Pp
-.Fn Freehostent
-frees the hostent structure allocated be
-.Fn getipnodebyname
-and
-.Fn getipnodebyaddr .
-The structures returned by 
-.Fn gethostbyname ,
-.Fn gethostbyname2 ,
-.Fn gethostbyaddr 
-and
-.Fn gethostent
-should not be passed to
-.Fn freehostent
-as they are pointers to static areas.
-.Sh ENVIRONMENT
-.Bl -tag -width "HOSTALIASES  " -compress
-.It Ev HOSTALIASES
-Name of file containing 
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh FILES
-.Bl -tag -width "HOSTALIASES  " -compress
-.It Pa /etc/hosts
-See
-.Xr hosts @FORMAT_EXT@ .
-.It Ev HOSTALIASES
-Name of file containing 
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh DIAGNOSTICS
-.Pp
-Error return status from 
-.Fn getipnodebyname
-and
-.Fn getipnodebyaddr
-is indicated by return of a null pointer.
-In this case
-.Ft error
-may then be checked to see whether this is a temporary failure
-or an invalid or unknown host.
-.Ft errno
-can have the following values:
-.Bl -tag -width "HOST_NOT_FOUND  " -offset indent 
-.It Dv NETDB_INTERNAL 
-This indicates an internal error in the library, unrelated to the network
-or name service.
-.Ft errno
-will be valid in this case; see
-.Xr perror @SYSCALL_EXT@ .
-.It Dv HOST_NOT_FOUND
-No such host is known.
-.It Dv TRY_AGAIN 
-This is usually a temporary error
-and means that the local server did not receive
-a response from an authoritative server.
-A retry at some later time may succeed.
-.It Dv NO_RECOVERY 
-Some unexpected server failure was encountered.
-This is a non-recoverable error, as one might expect.
-.It Dv NO_ADDRESS
-The requested name is valid but does not have an IP address; 
-this is not a temporary error.  
-This means that the name is known to the name server but there is no address
-associated with this name.
-Another type of request to the name server using this domain name
-will result in an answer;
-for example, a mail-forwarder may be registered for this domain.
-.El
-.Sh SEE ALSO
-.Xr hosts @FORMAT_EXT@ , 
-.Xr hostname @DESC_EXT@ , 
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ ,
-.Xr gethostbyname @LIB_NETWORK_EXT@ ,
-.Xr RFC2553 .
diff --git a/contrib/bind/doc/man/getnameinfo.3 b/contrib/bind/doc/man/getnameinfo.3
deleted file mode 100644
index 02548c0845bde..0000000000000
--- a/contrib/bind/doc/man/getnameinfo.3
+++ /dev/null
@@ -1,103 +0,0 @@
-.\" $Id: getnameinfo.3,v 8.1 1999/01/11 21:30:51 vixie Exp $
-.\"
-.\"Copyright (c) 1998,1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd January 11, 1999
-.Dt GETRNAMEINFO @LIB_NETWORK_EXT@
-.Sh NAME
-.Nm getnameinfo
-.Nd address-to-name translation in protocol-independent manner
-.Sh SYNOPSIS
-.Fd #include <sys/socket.h>
-.Fd #include <netdb.h>
-.Ft int
-.Fn getnameinfo "const struct sockaddr *sa" "socklen_t salen" \
-"char *host" "size_t hostlen" "char *serv" "size_t servlen" "int flags"
-.Sh DESCRIPTION
-The
-.Fn getnameinfo
-function is defined for protocol-independent address-to-nodename translation.
-It performs functionality of 
-.Xr gethostbyaddr @LIB_NETWORK_EXT@
-and
-.Xr getservbyport @LIB_NETWORK_EXT@
-in more sophisticated manner.
-.Pp
-The
-.Fa sa
-arguement is a pointer to a generic socket address structure of size
-.Fa salen .
-The arguements
-.Fa host
-and
-.Fa serv
-are pointers to buffers to hold the return values.
-Their sizes are specified by
-.Fa hostlen
-and
-.Fa servlen
-repectively.
-Either
-.Fa host
-or
-.Fa serv
-may be
-.Dv NULL
-if the hostname  or service name is not required.
-.Pp
-The 
-.Fa flags
-arguement modifies the behaviour of 
-.Fn getnameinfo
-as follows:
-.Pp
-If 
-.Dv NI_NOFQDN
-is set only the unqualified hostname is returned for local fully
-qualified names.
-.Pp
-If
-.Dv NI_NUMERICHOST
-is set then the numeric form of the hostname is returned.
-.Pp
-If
-.Dv NI_NAMEREQD
-is set, then a error is returned if the hostname cannot be looked up.
-.Pp
-If
-.Dv NI_NUMERICSERV
-is set then the service is returned in numeric form.
-.Pp
-If
-.Dv NI_DGRAM
-is set then the service is UDP based rather than TCP based.
-.Sh SEE ALSO
-.Xr getaddrinfo @LIB_NETWORK_EXT@ ,
-.Xr gethostbyaddr @LIB_NETWORK_EXT@ ,
-.Xr getservbyport @LIB_NETWORK_EXT@ ,
-.Xr hosts @FORMAT_EXT@ ,
-.Xr services @FORMAT_EXT@ ,
-.Xr hostname @DESC_EXT@ ,
-.Xr named @SYS_OPS_EXT@
-.Pp
-R. Gilligan, S.  Thomson, J. Bound, and W. Stevens,
-``Basic Socket Interface Extensions for IPv6,'' RFC2133, April 1997.
-.Sh STANDARDS
-The
-.Fn getaddrinfo
-function is defined IEEE POSIX 1003.1g draft specification,
-and documented in ``Basic Socket Interface Extensions for IPv6''
-.Pq RFC2133 .
diff --git a/contrib/bind/doc/man/getnetent.3 b/contrib/bind/doc/man/getnetent.3
deleted file mode 100644
index 4f600e0007c68..0000000000000
--- a/contrib/bind/doc/man/getnetent.3
+++ /dev/null
@@ -1,153 +0,0 @@
-.\" $Id: getnetent.3,v 8.4 1999/01/08 18:54:23 vixie Exp $
-.\"
-.\"Copyright (c) 1995,1996,1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd May 20, 1996
-.Dt GETNETENT @LIB_NETWORK_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm getnetent ,
-.Nm getnetbyaddr ,
-.Nm getnetbyname ,
-.Nm setnetent ,
-.Nm endnetent 
-.Nd get networks entry
-.Sh SYNOPSIS
-.Fd #include <netdb.h>
-.Ft struct netent *
-.Fn getnetent
-.Ft struct netent *
-.Fn getnetbyname "char name";
-.Ft struct netent *
-.Fn getnetbyaddr "unsigned long net" "int type";
-.Ft void 
-.Fn setnetent "int stayopen";
-.Ft void 
-.Fn endnetent
-.Sh DESCRIPTION
-The
-.Fn getnetent ,
-.Fn getnetbyname ,
-and
-.Fn getnetbyaddr
-subroutines
-each return a pointer to an object with the following structure
-containing the broken-out fields of a line in the 
-.Pa networks 
-database.
-.Bd -literal -offset indent
-struct	netent {
-	char	*n_name;	/* official name of net */
-	char	**n_aliases;	/* alias list */
-	int	n_addrtype;	/* net number type */
-	long	n_net;		/* net number */
-};
-.Ed
-.Pp
-The members of this structure are:
-.Bl -tag -width "n_addrtype" 
-.It n_name
-The official name of the network.
-.It n_aliases
-A zero-terminated list of alternate names for the network.
-.It n_addrtype
-The type of the network number returned: 
-.Dv AF_INET .
-.It n_net
-The network number.  Network numbers are returned in machine byte
-order.
-.El
-.Pp
-If the
-.Fa stayopen
-flag on a 
-.Fn setnetent
-subroutine is NULL, the
-.Pa networks
-database is opened.  Otherwise, the
-.Fn setnetent
-has the effect of rewinding the 
-.Pa networks 
-database.
-The
-.Fn endnetent
-subroutine may be called to
-close the 
-.Pa networks 
-database when processing is complete.
-.Pp
-The
-.Fn getnetent
-subroutine simply reads the next
-line while
-.Fn getnetbyname
-and
-.Fn getnetbyaddr
-search until a matching
-.Fa name
-or
-.Fa net
-number is found
-(or until 
-.Dv EOF 
-is encountered).  The 
-.Fa type must be 
-.Dv AF_INET .
-The
-.Fn getnetent
-subroutine keeps a pointer in the database, allowing
-successive calls to be used to search the entire file.
-.Pp
-Before a
-.Ic while
-loop using
-.Fn getnetent ,
-a call to
-.Fn setnetent
-must be made 
-in order to perform initialization; a call to 
-.Fn endnetent
-must be used after the loop.  Both
-.Fn getnetbyname
-and
-.Fn getnetbyaddr
-make calls to
-.Fn setnetent
-and
-.Fn endnetent .
-.Sh FILES
-.Pa /etc/networks
-.Sh DIAGNOSTICS
-Null pointer (0) returned on 
-.Dv EOF 
-or error.
-.Sh SEE ALSO
-.Xr networks @FORMAT_EXT@ ,
-RFC 1101.
-.Sh HISTORY
-The 
-.Fn "getnetent" , 
-.Fn "getnetbyaddr" , 
-.Fn "getnetbyname" , 
-.Fn "setnetent" , 
-and
-.Fn "endnetent"
-functions appeared in 4.2BSD.
-.Sh BUGS
-The data space used by these functions is static; if future use requires the
-data, it should be copied before any subsequent calls to these functions
-overwrite it.  Only Internet network numbers are currently understood.
-Expecting network numbers to fit in no more than 32 bits is probably naive.
diff --git a/contrib/bind/doc/man/hesiod.3 b/contrib/bind/doc/man/hesiod.3
deleted file mode 100644
index 284b8f4f71788..0000000000000
--- a/contrib/bind/doc/man/hesiod.3
+++ /dev/null
@@ -1,129 +0,0 @@
-.\" $Id: hesiod.3,v 8.1 1999/04/12 02:47:00 vixie Exp $
-.\"
-.\" Copyright 1988, 1996 by the Massachusetts Institute of Technology.
-.\"
-.\" Permission to use, copy, modify, and distribute this
-.\" software and its documentation for any purpose and without
-.\" fee is hereby granted, provided that the above copyright
-.\" notice appear in all copies and that both that copyright
-.\" notice and this permission notice appear in supporting
-.\" documentation, and that the name of M.I.T. not be used in
-.\" advertising or publicity pertaining to distribution of the
-.\" software without specific, written prior permission.
-.\" M.I.T. makes no representations about the suitability of
-.\" this software for any purpose.  It is provided "as is"
-.\" without express or implied warranty.
-.\"
-.TH HESIOD 3 "30 November 1996"
-.SH NAME
-hesiod, hesiod_init, hesiod_resolve, hesiod_free_list, hesiod_to_bind, hesiod_end \- Hesiod name server interface library
-.SH SYNOPSIS
-.nf
-.B #include <hesiod.h>
-.PP
-.B int hesiod_init(void **\fIcontext\fP)
-.B char **hesiod_resolve(void *\fIcontext\fP, const char *\fIname\fP,
-.B 	const char *\fItype\fP)
-.B void hesiod_free_list(void *\fIcontext\fP, char **\fIlist\fP);
-.B char *hesiod_to_bind(void *\fIcontext\fP, const char *\fIname\fP,
-.B 	const char *\fItype\fP)
-.B void hesiod_end(void *\fIcontext\fP)
-.fi
-.SH DESCRIPTION
-This family of functions allows you to perform lookups of Hesiod
-information, which is stored as text records in the Domain Name
-Service.  To perform lookups, you must first initialize a
-.IR context ,
-an opaque object which stores information used internally by the
-library between calls.
-.I hesiod_init
-initializes a context, storing a pointer to the context in the
-location pointed to by the
-.I context
-argument.
-.I hesiod_end
-frees the resources used by a context.
-.PP
-.I hesiod_resolve
-is the primary interface to the library.  If successful, it returns a
-list of one or more strings giving the records matching
-.I name
-and
-.IR type .
-The last element of the list is followed by a NULL pointer.  It is the
-caller's responsibility to call
-.I hesiod_free_list
-to free the resources used by the returned list.
-.PP
-.I hesiod_to_bind
-converts
-.I name
-and
-.I type
-into the DNS name used by
-.IR hesiod_resolve .
-It is the caller's responsibility to free the returned string using
-.IR free .
-.SH RETURN VALUES
-If successful,
-.I hesiod_init
-returns 0; otherwise it returns \-1 and sets
-.I errno
-to indicate the error.  On failure,
-.I hesiod_resolve
-and
-.I hesiod_to_bind
-return NULL and set the global variable
-.I errno
-to indicate the error.
-.SH ENVIRONMENT
-If the environment variable
-.B HES_DOMAIN
-is set, it will override the domain in the Hesiod configuration file.
-If the environment variable
-.B HESIOD_CONFIG
-is set, it specifies the location of the Hesiod configuration file.
-.SH SEE ALSO
-`Hesiod - Project Athena Technical Plan -- Name Service', named(8),
-hesiod.conf(5)
-.SH ERRORS
-Hesiod calls may fail because of:
-.IP ENOMEM
-Insufficient memory was available to carry out the requested
-operation.
-.IP ENOEXEC
-.I hesiod_init
-failed because the Hesiod configuration file was invalid.
-.IP ECONNREFUSED
-.I hesiod_resolve
-failed because no name server could be contacted to answer the query.
-.IP EMSGSIZE
-.I hesiod_resolve
-failed because the query or response was too big to fit into the
-packet buffers.
-.IP ENOENT
-.I hesiod_resolve
-failed because the name server had no text records matching
-.I name
-and
-.IR type ,
-or
-.I hesiod_to_bind
-failed because the
-.I name
-argument had a domain extension which could not be resolved with type
-``rhs-extension'' in the local Hesiod domain.
-.SH AUTHOR
-Steve Dyer, IBM/Project Athena
-.br
-Greg Hudson, MIT Team Athena
-.br
-Copyright 1987, 1988, 1995, 1996 by the Massachusetts Institute of Technology.
-.SH BUGS
-The strings corresponding to the
-.I errno
-values set by the Hesiod functions are not particularly indicative of
-what went wrong, especially for
-.I ENOEXEC
-and
-.IR ENOENT .
diff --git a/contrib/bind/doc/man/host.1 b/contrib/bind/doc/man/host.1
deleted file mode 100644
index 017d0829845d6..0000000000000
--- a/contrib/bind/doc/man/host.1
+++ /dev/null
@@ -1,316 +0,0 @@
-.\" ++Copyright++ 1993
-.\" -
-.\" Copyright (c) 1993
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\" $Id: host.1,v 8.2 1997/03/14 02:29:44 vixie Exp $
-.Dd December 15, 1994
-.Dt HOST @CMD_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm host 
-.Nd look up host names using domain server
-.Sh SYNOPSIS 
-.Nm host 
-.Op Fl l
-.Op Fl v
-.Op Fl w
-.Op Fl r
-.Op Fl d
-.Op Fl t Ar querytype
-.Op Fl a 
-.Ar host 
-.Op Ar server 
-.Sh DESCRIPTION 
-.Ic Host
-looks for information about Internet hosts.  It gets this information
-from a set of interconnected servers that are spread across the
-country.  By default, it simply converts between host names and
-Internet addresses.  However, with the 
-.Dq Fl t 
-or 
-.Dq Fl a 
-options, it can be used
-to find all of the information about this host that is maintained
-by the domain server.
-.Pp
-The arguments can be either host names or host numbers.  The program
-first attempts to interpret them as host numbers.  If this fails,
-it will treat them as host names.  A host number consists of
-first decimal numbers separated by dots, e.g. 128.6.4.194
-A host name consists of names separated by dots, e.g. topaz.rutgers.edu.  
-Unless the name ends in a dot, the local domain
-is automatically tacked on the end.  Thus, a Rutgers user can say
-.Pp
-.D1 Ic host topaz 
-.Pp
-and it will actually look up "topaz.rutgers.edu".
-If this fails, the name is tried unchanged (in this case, "topaz").
-This same convention is used for mail and other network utilities.
-The actual suffix to tack on the end is obtained
-by looking at the results of a 
-.Xr hostname @CMD_EXT@
-call, and using everything
-starting at the first dot.  (See below for a description of
-.Sx CUSTOMIZING HOST NAME LOOKUP . )
-.Pp
-The first argument is the host name you want to look up.
-If this is a number, an 
-.Dq inverse query 
-is done, i.e. the domain
-system looks in a separate set of databases used to convert numbers
-to names.
-.Pp
-The second argument is optional.  It
-allows you to specify a particular server to query.  If you don't
-specify this argument, the default server (normally the local machine)
-is used.
-.Pp
-If a name is specified, you may see output of three different kinds.
-Here is an example that shows all of them:
-.Pp
-.D1 Ic % host sun4
-.Dl sun4.rutgers.edu is a nickname for ATHOS.RUTGERS.EDU
-.Dl ATHOS.RUTGERS.EDU has address 128.6.5.46
-.Dl ATHOS.RUTGERS.EDU has address 128.6.4.4
-.Dl ATHOS.RUTGERS.EDU mail is handled by ARAMIS.RUTGERS.EDU
-.Pp
-The user has typed the command 
-.Dq Ic host sun4 .  
-The first line indicates that the name 
-.Dq Li sun4.rutgers.edu 
-is actually a nickname.  The official host name is 
-.Dq Li ATHOS.RUTGERS.EDU .  
-The next two lines show the
-address.  If a system has more than one network interface, there
-will be a separate address for each.  The last line indicates
-that 
-.Li ATHOS.RUTGERS.EDU 
-does not receive its own mail.  Mail for
-it is taken by 
-.Li ARAMIS.RUTGERS.EDU .  
-There may be more than one
-such line, since some systems have more than one other system
-that will handle mail for them.  Technically, every system that
-can receive mail is supposed to have an entry of this kind.  If
-the system receives its own mail, there should be an entry
-the mentions the system itself; for example,
-.Pp
-.D1 Li XXX mail is handled by XXX 
-.Pp
-However, many systems that receive
-their own mail do not bother to mention that fact.  If a system
-has a 
-.Dq Li mail is handled by 
-entry, but no address, this indicates
-that it is not really part of the Internet, but a system that is
-on the network will forward mail to it.  Systems on Usenet, Bitnet,
-and a number of other networks have entries of this kind.
-.Sh OPTIONS
-There are a number of options that can be used before the
-host name.  Most of these options are meaningful only to the
-staff who have to maintain the domain database.
-.Bl -tag -width Fl
-.It Fl w 
-This causes 
-.Ic host 
-to wait forever for a response.  Normally
-it will time out after approximate one minute.
-.It Fl v
-Use "verbose" format for printout.  This
-is the official domain master file format, which is documented 
-in the man page for 
-.Xr @INDOT@named @SYS_OPS_EXT@ .
-Without this option, output still follows
-this format in general terms, but some attempt is made to make it
-more intelligible to normal users.  Without 
-.Dq Fl v ,
-any "a", "mx", and "cname" records
-are written out as "has address", "mail is handled by", and
-"is a nickname for" (respectively), and TTL and class fields are not shown.
-.It Fl r
-Turn off recursion in the request.
-This means that the name server will return only data it has in
-its own database.  It will not ask other servers for more 
-information.
-.It Fl d
-Turn on debugging.  Network transactions are shown in detail.
-.It Fl t Ar querytype
-Allows you to specify a particular 
-.Ar querytype 
-of information
-to be looked up.  The arguments are defined in the man page for
-.Xr @INDOT@named @SYS_OPS_EXT@ .
-Currently-supported types include: 
-.Dq Cm a , 
-.Dq Cm ns , 
-.Dq Cm md , 
-.Dq Cm mf , 
-.Dq Cm cname ,
-.Dq Cm soa , 
-.Dq Cm mb , 
-.Dq Cm mg , 
-.Dq Cm mr , 
-.Dq Cm null , 
-.Dq Cm wks , 
-.Dq Cm ptr , 
-.Dq Cm hinfo , 
-.Dq Cm minfo , 
-.Dq Cm mx , 
-.Dq Cm uinfo ,
-.Dq Cm uid , 
-.Dq Cm gid , 
-.Dq Cm unspec .  
-Additionally, the wildcard, which may be written
-as either 
-.Dq Cm any 
-or 
-.Dq Cm * ,
-can be used to specify any (all) of the above types.  
-Types must be given in lower case.
-Note that the default is to look first for 
-.Dq Cm a , 
-and then 
-.Dq Cm mx , 
-except that if the verbose option is turned on, the default is only 
-.Dq Cm a .
-The
-.Dq Fl t
-option is particularly useful for filtering information returned by 
-.Ic host ;
-see the explanation of the
-.Dq Fl l
-option, below, for more information.
-.It Fl a 
-.Dq all ;
-this is equivalent to 
-.Dq Fl v Fl t Cm any .
-.It Fl l
-List a complete domain; e.g.:
-.Pp
-.D1 Ic host -l rutgers.edu
-.Pp
-will give a listing of all hosts in the rutgers.edu domain.  The 
-.Dq Fl t
-option is used to filter what information is presented, as you 
-would expect.  The default is address information, which also
-include PTR and NS records.  The command
-.Pp
-.D1 Ic host -l -v -t any rutgers.edu
-.Pp
-will give a complete download of the zone data for rutgers.edu,
-in the official master file format.  (However the SOA record is
-listed twice, for arcane reasons.)  
-.Pp
-.Sy NOTE: 
-.Dq Fl l 
-is implemented by
-doing a complete zone transfer and then filtering out the information
-the you have asked for.  This command should be used only if it
-is absolutely necessary.
-.Sh CUSTOMIZING HOST NAME LOOKUP
-In general, if the name supplied by the user does not
-have any dots in it, a default domain is appended to the end.
-This domain can be defined in 
-.Pa /etc/resolv.conf , 
-but is normally derived
-by taking the local hostname after its first dot.  The user can override
-this, and specify a different default domain, using the environment
-variable
-.Ev LOCALDOMAIN .
-In addition, the user can supply his own abbreviations for host names.
-They should be in a file consisting of one line per abbreviation.
-Each line contains an abbreviation, a space, and then the full
-host name.  The name file must be contained in the 
-.Ev HOSTALIASES 
-environment variable.
-.Sh ENVIRONMENT
-.Bl -tag -width "/etc/resolv.conf  " -compress
-.It Ev HOSTALIASES
-Name of file containing
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh FILES
-.Bl -tag -width "/etc/resolv.conf  " -compress
-.It Pa /etc/resolv.conf 
-See
-.Xr resolver @FORMAT_EXT@ .
-.It Ev HOSTALIASES
-Name of file containing
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh SEE ALSO
-.Xr @INDOT@named  @SYS_OPS_EXT@ , 
-.Xr resolver @FORMAT_EXT@ .
-.Sh BUGS
-Unexpected effects can happen when you type a name that is not
-part of the local domain.  Please always keep in mind the
-fact that the local domain name is tacked onto the end of every
-name, unless it ends in a dot.  Only if this fails is the name
-used unchanged.
-.Pp
-The 
-.Dq Fl l 
-option only tries the first name server listed for the
-domain that you have requested.  If this server is dead, you
-may need to specify a server manually. E.g., to get a listing
-of foo.edu, you could try 
-.Pp
-.D1 Ic host -t ns foo.edu 
-.Pp
-to get a list of all the name servers for foo.edu, and then try 
-.Pp
-.D1 Ic host -l foo.edu xxx
-.Pp
-for all 
-.Dq Ic xxx 
-on the list of name servers, until you find one that works.
diff --git a/contrib/bind/doc/man/hostname.7 b/contrib/bind/doc/man/hostname.7
deleted file mode 100644
index 6a92d642d4e22..0000000000000
--- a/contrib/bind/doc/man/hostname.7
+++ /dev/null
@@ -1,171 +0,0 @@
-.\" Copyright (c) 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)hostname.7	6.4 (Berkeley) 1/16/90
-.\"
-.Dd February 16, 1994
-.Dt HOSTNAME @DESC_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm hostname 
-.Nd host name resolution description
-.Sh DESCRIPTION
-Hostnames are domains.  A domain is a hierarchical, dot-separated list
-of subdomains.  For example, the machine 
-.Dq Li monet , 
-in the 
-.Dq Li Berkeley
-subdomain of the 
-.Dq Li EDU
-subdomain of the Internet Domain Name System would be represented as
-.Pp
-.Dl monet.Berkeley.EDU
-.Pp
-(with no trailing dot).
-.Pp
-Hostnames are often used with network client and server programs,
-which must generally translate the name to an address for use.
-(This task is usually performed by the library routine
-.Xr gethostbyname  @LIB_NETWORK_EXT@ . )
-The default method for resolving hostnames by the Internet name resolver is
-to follow RFC 1535's security recommendations.  Actions can be taken
-by the administrator to override these recommendations and to have the
-resolver behave the same as earlier, non-RFC 1535 
-resolvers.
-.Pp
-The default method (using RFC 1535 guidelines) follows:
-.Pp
-If the name consists of a single component, i.e. contains no dot, and if the
-environment variable 
-.Dq Ev HOSTALIASES 
-is set to the name of a file,
-that file is searched for a string matching the input hostname.  The file
-should consist of lines made up of two strings separated by white-space, the
-first of which is the hostname alias, and the second of which is the complete
-hostname to be substituted for that alias.  If a case-insensitive match is
-found between the hostname to be resolved and the first field of a line in
-the file, the substituted name is looked up with no further processing.
-.Pp
-If there is at least one dot in the name, then the name is first tried 
-.Dq as-is .  
-The number of dots to cause this action is configurable by setting the
-threshold using the 
-.Dq Li ndots
-option in 
-.Pa /etc/resolv.conf
-(default:  1).  If the name ends with a dot, the trailing dot is
-removed, and the remaining name is looked up (regardless of the setting of
-the 
-.Li ndots 
-option), without further processing. 
-.Pp
-If the input name does not end with a trailing dot, it is looked up by
-searching through a list of domains until a match is found.  If neither the
-search option in the
-.Pa /etc/resolv.conf
-file or the 
-.Dq Ev LOCALDOMAIN 
-environment variable is used, then the
-search list of domains contains only the full domain specified by the 
-.Li domain
-option (in
-.Pa /etc/resolv.conf )
-or the domain used in the local hostname (see 
-.Xr hostname @CMD_EXT@
-and
-.Xr resolver @FORMAT_EXT@ ) .
-For example, if the 
-.Dq Li domain 
-option is set to 
-.Li CS.Berkeley.EDU ,
-then only 
-.Li CS.Berkeley.EDU 
-will be in the search list, and this will be the only
-domain appended to the partial hostname.  For example, if 
-.Dq Li lithium 
-is the name to be resolved, this would make
-.Li lithium.CS.Berkeley.EDU 
-the only name to be tried using the search list.
-.Pp
-If the 
-.Li search 
-option is used in
-.Pa /etc/resolv.conf
-or the environment variable 
-.Dq Ev LOCALDOMAIN 
-is set by the user, then
-the search list will include what is set by these methods.  For
-example, if the 
-.Dq Li search 
-option contained
-.Pp
-.Dl CS.Berkeley.EDU CChem.Berkeley.EDU Berkeley.EDU
-.Pp
-then the partial hostname (e.g., 
-.Dq Li lithium ) 
-will be tried with 
-.Em each
-domain name appended (in the same order specified); the resulting hostnames 
-that would be tried are:
-.Bd -literal -offset indent
-lithium.CS.Berkeley.EDU
-lithium.CChem.Berkeley.EDU
-lithium.Berkeley.EDU
-.Ed
-.Pp
-The environment variable 
-.Dq Ev LOCALDOMAIN 
-overrides the
-.Dq Li search 
-and 
-.Dq Li domain 
-options, and if both 
-.Li search 
-and 
-.Li domain
-options are present in the resolver configuration file, then only the 
-.Em last
-one listed is used (see
-.Xr resolver @FORMAT_EXT@ ) .
-.Pp
-If the name was not previously tried 
-.Dq as-is 
-(i.e., it fell below the
-.Dq Li ndots 
-threshold or did not contain a dot), then the name as
-originally provided is attempted.
-.Sh ENVIRONMENT
-.Bl -tag -width "/etc/resolv.conf  " -compress
-.It Ev LOCALDOMAIN   
-Affects domains appended to partial hostnames.
-.It Ev HOSTALIASES
-Name of file containing
-.Pq Ar host alias , full hostname
-pairs.
-.El
-.Sh FILES
-.Bl -tag -width "/etc/resolv.conf  " -compress
-.It Pa /etc/resolv.conf
-See
-.Xr resolve @FORMAT_EXT@ .
-.It Ev HOSTALIASES
-Name of file containing 
-.Pq Ar host alias , full hostname
-pairs.
-.Sh SEE ALSO
-.Xr gethostbyname @LIB_NETWORK_EXT@ ,
-.Xr resolver @FORMAT_EXT@ ,
-.Xr mailaddr @DESC_EXT@ ,
-.Xr @INDOT@named @SYS_OPS_EXT@ .
diff --git a/contrib/bind/doc/man/inet_cidr.3 b/contrib/bind/doc/man/inet_cidr.3
deleted file mode 100644
index 9aeb1026f1da6..0000000000000
--- a/contrib/bind/doc/man/inet_cidr.3
+++ /dev/null
@@ -1,94 +0,0 @@
-.\" $Id: inet_cidr.3,v 8.2 1999/01/08 18:54:24 vixie Exp $
-.\"
-.\"Copyright (c) 1998,1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd October 19, 1998
-.Dt INET_CIDR @LIB_NETWORK_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm inet_cidr_ntop ,
-.Nm inet_cidr_pton
-.Nd network translation routines
-.Sh SYNOPSIS
-.Fd #include <sys/types.h>
-.Fd #include <sys/socket.h>
-.Fd #include <netinet/in.h>
-.Fd #include <arpa/inet.h>
-.Fn inet_cidr_ntop "int af" "const void *src" "int bits" "char *dst" "size_t size"
-.Fn inet_cidr_pton "int af" "const char *src" "void *dst" "int *bits"
-.Sh DESCRIPTION
-These routines are used for converting addresses to and from network and
-presentation forms with CIDR (Classless Inter-Domain Routing) representation,
-embedded net mask.
-.Pp
-.Bd -literal
-		130.155.16.1/20
-.Ed
-.\"		::ffff:130.155.16.1/116
-.Pp
-.Fn inet_cidr_ntop
-converts an address from network to presentation format.
-.Pp
-.Ft af
-describes the type of address that is being passed in
-.Ft src. 
-.\"Currently defined types are AF_INET and AF_INET6.
-Currently only AF_INET is supported.
-.Pp
-.Ft src
-is an address in network byte order, its length is determined from
-.Ft af.
-.Pp
-.Ft bits
-specifies the number of bits in the netmask unless it is -1 in which case
-the CIDR representation is omitted.
-.Pp
-.Ft dst
-is a caller supplied buffer of at least
-.Ft size
-bytes.
-.Pp
-.Fn inet_cidr_ntop
-returns 
-.Ft dst
-on success or NULL.
-Check errno for reason.
-.Pp
-.Fn inet_cidr_pton
-converts and address from presentation format, with optional CIDR
-reperesentation, to network format.
-The resulting address is zero filled if there were insufficint bits in
-.Ft src.
-.Pp
-.Ft af
-describes the type of address that is being passed in via 
-.Ft src
-and determines the size of 
-.Ft dst.
-.Pp
-.Ft src
-is an address in presentation format.
-.Pp
-.Ft bits
-returns the number of bits in the netmask or -1 if a CIDR representation was
-not supplied.
-.Pp
-.Fn inet_cidr_pton
-returns 0 on succces or -1 on error.
-Check errno for reason.
-ENOENT indicates an invalid netmask.
-.Sh SEE ALSO
-.Xr intro 2
diff --git a/contrib/bind/doc/man/irs.conf.5 b/contrib/bind/doc/man/irs.conf.5
deleted file mode 100644
index 9ee5882f01c44..0000000000000
--- a/contrib/bind/doc/man/irs.conf.5
+++ /dev/null
@@ -1,201 +0,0 @@
-.\" Copyright (c) 1996,1999 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\"
-.\" Copyright (c) 1986, 1991, 1993
-.\"	The Regents of the University of California.  All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\"	This product includes software developed by the University of
-.\"	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\"
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\"
-.\" $Id: irs.conf.5,v 8.4 1999/01/18 07:46:45 vixie Exp $
-.\"
-.Dd November 16, 1997
-.Dt IRS.CONF 5
-.Os BIND 8.1
-.Sh NAME
-.Nm irs.conf
-.Nd Information Retrieval System configuration file
-.Sh SYNOPSIS
-.Nm irs.conf
-.Sh DESCRIPTION
-The
-.Xr irs 3
-functions are a set of routines in the C library which provide access to
-various system maps.
-The maps that irs currently controls are the following: passwd, group,
-services, protocols, hosts, networks and netgroup.
-When a program first calls a function that accesses one of these maps,
-the irs configuration file is read,
-and the source of each map is determined for the life of the process. 
-.Pp
-If this file does not exist,
-the irs routines default to using local sources for all information,
-with the exception of the host and networks maps,
-which use the Domain Name System (DNS).
-.Pp
-Each record in the file consists of one line.
-A record consists of a map-name, an access-method and possibly a (comma
-delimited) set of options,
-separated by tabs or spaces.
-Blank lines, and text between a # and a newline are ignored.
-.Pp
-Available maps:
-.Bd -literal -offset indent
-Map name	Information in map
-=========	==================================
-passwd          User authentication information
-group           User group membership information
-services        Network services directory
-protocols       Network protocols directory
-hosts           Network hosts directory
-networks        Network "network names" directory
-netgroup        Network "host groups" directory
-.Ed
-.Pp
-Available access methods:
-.Bd -literal -offset indent
-Access method	Description
-=============	=================================================
-local           Use a local file, usually in /etc
-dns             Use the domain name service (includes hesiod)
-nis             Use the Sun-compatible Network Information Service
-irp		Use the IRP daemon on the localhost.
-.Ed
-.Pp
-Available options:
-.Bd -literal -offset indent
-Option		Description
-========	================================================
-continue        don't stop searching if you can't find something
-merge           don't stop searching if you CAN find something
-.Ed
-.Pp
-The continue option creates
-.Dq "union namespaces"
-whereby subsequent access methods of the same map type can be tried
-if a name cannot be found using earlier access methods.
-This can be quite confusing in the case of host names,
-since the name to address and address to name mappings can be visibly
-asymmetric even though the data used by any given access method is
-entirely consistent.  This behavior is, therefore, not the default.
-.Pp
-The merge option only affects lookups in the groups map.
-If set, subsequent access methods will be tried in order to cause
-local users to appear in NIS (or other remote) groups in addition
-to the local groups.
-.Sh EXAMPLE
-.Bd -literal -offset indent
-# Get password entries from local file, or failing that, NIS
-passwd          local	continue
-passwd		nis
-
-# Build group membership from both local file, and NIS.
-group		local	continue,merge
-group		nis
-
-# Services comes from just the local file.
-services	local
-
-protocols	local
-
-# Hosts comes first from DNS, failing that, the local file
-hosts		dns	continue
-hosts		local
-
-# Networks comes first from the local file, and failing 
-# that the, irp daemon
-networks	local	continue
-networks	irp
-
-netgroup        local
-.Ed
-.Sh NOTES
-If a local user needs to be in the local host's
-.Dq wheel
-group but not in every host's
-.Dq wheel
-group, put them in the local host's
-.Pa /etc/group
-.Dq wheel
-entry and set up the
-.Dq groups
-portion of your
-.Pa /etc/irs.conf
-file as:
-.Bd -literal -offset indent
-group   local   continue,merge
-group   nis
-.Ed
-.Pp
-NIS takes a long time to time out.
-Especially for hosts if you use the
-.Fl d
-option to your server's
-.Dq ypserv
-daemon.
-.Pp
-It is important that the
-.Pa irs.conf
-file contain an entry for each map.
-If a map is not mentioned in the
-.Pa irs.conf
-file, all queries to that map will fail.
-.Pp
-The classic NIS mechanism for specifying union namespaces is to add an entry
-to a local map file whose name is ``+''.  In IRS, this is done via ``continue''
-and/or ``merge'' map options.  While this results in a small incompatibility
-when local map files are imported from non-IRS systems to IRS systems, there
-are compensating advantages in security and configurability.
-.Sh FILES
-.Bl -tag -width /etc/irs.confXXXX -compact
-.It Pa /etc/irs.conf
-The file
-.Nm irs.conf
-resides in
-.Pa /etc .
-.El
-.Sh SEE ALSO
-.Xr groups 5 ,
-.Xr hosts 5 ,
-.Xr netgroup 5 ,
-.Xr networks 5 ,
-.Xr passwd 5 ,
-.Xr protocols 5 ,
-.Xr services 5
diff --git a/contrib/bind/doc/man/mailaddr.7 b/contrib/bind/doc/man/mailaddr.7
deleted file mode 100644
index 270fe9c9d9b10..0000000000000
--- a/contrib/bind/doc/man/mailaddr.7
+++ /dev/null
@@ -1,179 +0,0 @@
-.\" Copyright (c) 1983, 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)mailaddr.7	6.5 (Berkeley) 2/14/89
-.\"
-.Dd February 14, 1989
-.Dt MAILADDR @DESC_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm mailaddr 
-.Nd mail addressing description
-.Sh DESCRIPTION
-Mail addresses are based on the ARPANET protocol listed at the end of this
-manual page.  These addresses are in the general format
-.Pp
-.Bd -ragged -offset indent-two
-.Li user@domain
-.Ed
-.Pp
-where a domain is a hierarchical, dot-separated list of subdomains.  For
-example, the address
-.Pp
-.Bd -ragged -offset indent-two
-.Li eric@monet.berkeley.edu
-.Ed
-.Pp
-is normally interpreted from right to left: the message should go to the
-ARPA name tables (which do not correspond exactly to the physical ARPANET),
-then to the Berkeley gateway, after which it should go to the local host
-.Dq Li monet .  
-When the message reaches 
-.Li monet , 
-it is delivered to the user 
-.Dq Li eric .
-.Pp
-Unlike some other forms of addressing, this does not imply any routing.
-Thus, although this address is specified as an ARPA address, it might
-travel by an alternate route if that were more convenient or efficient.
-For example, at Berkeley, the associated message would probably go directly
-to 
-.Li monet 
-over the Ethernet rather than going via the Berkeley ARPANET gateway.
-.Ss Abbreviation
-.Pp
-Under certain circumstances, it may not be necessary to type the entire
-domain name.  In general, anything following the first dot may be omitted
-if it is the same as the domain from which you are sending the message.
-For example, a user on 
-.Dq Li calder.berkeley.edu 
-could send to 
-.Dq Li eric@monet
-without adding the 
-.Dq Li berkeley.edu 
-since it is the same on both sending and receiving hosts.
-.Pp
-Certain other abbreviations may be permitted as special cases.  For
-example, at Berkeley, ARPANET hosts may be referenced without adding the 
-.Dq Li berkeley.edu 
-as long as their names do not conflict with a local host name.
-.Ss Compatibility
-.Pp
-Certain old address formats are converted to the new format to provide
-compatibility with the previous mail system.  In particular,
-.Bd -ragged -offset indent-two
-.Li user@host.ARPA
-.Ed
-.Pp
-is allowed and
-.Bd -ragged -offset indent-two
-.Li host:user
-.Ed
-.Pp
-is converted to
-.Bd -ragged -offset indent-two
-.Li user@host
-.Ed
-.Pp
-in order to be consistent with the 
-.Xr rcp @CMD_EXT@ 
-command.
-.Pp
-Also, the syntax
-.Bd -ragged -offset indent-two
-.Li host!user
-.Ed
-.Pp
-is converted to:
-.Bd -ragged -offset indent-two
-.Li user@host.UUCP
-.Ed
-.Pp
-This is normally converted back to the 
-.Dq Li host!user 
-form before being sent on, for compatibility with older UUCP hosts.
-.Pp
-The current implementation is not able to route messages automatically through
-the UUCP network.  Until that time you must explicitly tell the mail system
-which hosts to send your message through to get to your final destination.
-.Ss Case Distinctions
-.Pp
-Domain names (i.e., anything after the 
-.Dq Li @ 
-sign) may be given in any mixture
-of upper and lower case with the exception of UUCP hostnames.  Most hosts
-accept any combination of case in user names, with the notable exception of
-MULTICS sites.
-.Ss Route-addrs.
-.Pp
-Under some circumstances it may be necessary to route a message through
-several hosts to get it to the final destination.  Normally this routing
-is done automatically, but sometimes it is desirable to route the message
-manually.  Addresses which show these relays are termed 
-.Dq route-addrs.
-These use the syntax:
-.Bd -ragged -offset indent-two
-.Li <@hosta,@hostb:user@hostc>
-.Ed
-.Pp
-This specifies that the message should be sent to 
-.Li hosta , 
-from there to 
-.Li hostb ,
-and finally to 
-.Li hostc .  
-This path is forced even if there is a more efficient path to 
-.Li hostc .
-.Pp
-Route-addrs occur frequently on return addresses, since these are generally
-augmented by the software at each host.  It is generally possible to ignore
-all but the 
-.Dq Li user@domain 
-part of the address to determine the actual sender.
-.Ss Postmaster
-.Pp
-Every site is required to have a user or user alias designated 
-.Dq Li postmaster
-to which problems with the mail system may be addressed.
-.Ss Other Networks
-.Pp
-Some other networks can be reached by giving the name of the network as the
-last component of the domain.  
-.Em This is not a standard feature
-and may
-.Em not 
-be supported at all sites.  For example, messages to CSNET or BITNET sites
-can often be sent to 
-.Dq Li user@host.CSNET 
-or 
-.Dq Li user@host.BITNET , 
-respectively.
-.Sh BUGS
-The RFC822 group syntax 
-.Pq Dq Li group:user1,user2,user3; 
-is not supported except in the special case of 
-.Dq LI group:; 
-because of a conflict with old berknet-style addresses.
-.Pp
-Route-Address syntax is grotty.
-.Pp
-UUCP- and ARPANET-style addresses do not coexist politely.
-.Sh SEE ALSO
-.Xr mail @CMD_EXT@ , 
-.Xr sendmail @SYS_OPS_EXT@ ;
-Crocker, D. H., RFC822, 
-.Do
-Standard for the Format of Arpa Internet Text Messages
-.Dc .
diff --git a/contrib/bind/doc/man/mkdep.1 b/contrib/bind/doc/man/mkdep.1
deleted file mode 100644
index 177ab1afe692d..0000000000000
--- a/contrib/bind/doc/man/mkdep.1
+++ /dev/null
@@ -1,84 +0,0 @@
-.\" Copyright (c) 1987 Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)mkdep.1	5.8 (Berkeley) 10/24/88
-.\"
-.Dd October 24, 1988
-.Dt MKDEP @CMD_EXT_U@
-.Os BSD 4
-.Sh NAME
-.Nm mkdep 
-.Nd construct Makefile dependency list
-.Sh SYNOPSIS
-.Nm mkdep
-.Op Fl ap
-.Op Fl f Ar depend_file
-.Op Ar flags 
-.Ar file ...
-.Sh DESCRIPTION
-.Ic Mkdep
-takes a set of flags for the C compiler and a list
-of C source files as arguments and constructs a set of 
-.Li include
-file dependencies which are written into the file 
-.Pa depend_file ,
-or 
-.Dq Pa .depend 
-by default.  An example of its use in a 
-.Pa Makefile 
-might be:
-.Bd -literal -offset indent
-CFLAGS= -O -DDEBUG -I../include -I.
-SRCS= file1.c file2.c
-
-depend:
-	mkdep ${CFLAGS} ${SRCS}
-.Ed
-.Pp
-where the macro 
-.Dq Li SRCS 
-is the list of C source files and the macro
-.Dq Li CFLAGS 
-is the list of flags for the C compiler.
-.Pp
-If the 
-.Dq Fl p 
-option is provided, 
-.Ic mkdep 
-produces dependencies
-of the form 
-.Dq Li program: program.c 
-so that subsequent calls to 
-.Xr make @CMD_EXT@ 
-will produce 
-.Dq Pa program 
-directly from its C module rather than using an intermediate 
-.Dq Pa \&.o 
-module.  This is useful in directories which
-contain many programs, each of whose source is contained in a single
-C module.  
-.Pp 
-The 
-.Dq Fl a 
-option causes appending to the output file, so that multiple 
-.Xo Ic mkdep 
-.Ns 's 
-.Xc
-may be run from a single 
-.Pa Makefile .
-.Sh SEE ALSO
-.Xr cc @CMD_EXT@ , 
-.Xr cpp @CMD_EXT@ , 
-.Xr make @CMD_EXT@ .
diff --git a/contrib/bind/doc/man/named-bootconf.8 b/contrib/bind/doc/man/named-bootconf.8
deleted file mode 100644
index 2a0d39d708cf4..0000000000000
--- a/contrib/bind/doc/man/named-bootconf.8
+++ /dev/null
@@ -1,70 +0,0 @@
-.\"	$NetBSD: named-bootconf.8,v 1.1 1998/11/19 21:11:45 tron Exp $
-.\"
-.\" Copyright (c) 1998 The NetBSD Foundation, Inc.
-.\" All rights reserved.
-.\"
-.\" This documentation is derived from software contributed to The NetBSD
-.\" Foundation by Matthias Scheler.
-.\"
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\"	This product includes software developed by the NetBSD
-.\"	Foundation, Inc. and its contributors.
-.\" 4. Neither the name of The NetBSD Foundation nor the names of its
-.\"    contributors may be used to endorse or promote products derived
-.\"    from this software without specific prior written permission.
-.\"
-.\" THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
-.\" ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
-.\" TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
-.\" PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
-.\" BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
-.\" CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
-.\" SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
-.\" INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
-.\" CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
-.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
-.\" POSSIBILITY OF SUCH DAMAGE.
-.\"
-.\" Copyright (c) 1999 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-
-.Dd November 19, 1998
-.Dt NAMED-BOOTCONF 8
-.Os NetBSD
-.Sh NAME
-.Nm named-bootconf
-.Nd convert name server configuration files
-.Sh SYNOPSIS
-.Nm
-.Sh DESCRIPTION
-.Nm
-converts named configuration files from BIND 4 format to BIND 8 format.
-.Sh EXAMPLES
-named-bootconf < named.boot > named.conf
-.Sh BUGS
-Comments from the source file will not always appear at the appropriate place
-in the target file.
-.Sh SEE ALSO
-.Xr named 8 ,
-.Xr named.conf 5
diff --git a/contrib/bind/doc/man/named-xfer.8 b/contrib/bind/doc/man/named-xfer.8
deleted file mode 100644
index e7b2cf38c5377..0000000000000
--- a/contrib/bind/doc/man/named-xfer.8
+++ /dev/null
@@ -1,185 +0,0 @@
-.\" ++Copyright++ 1985
-.\" -
-.\" Copyright (c) 1985
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" Portions Copyright (c) 1999 by Check Point Software Technologies, Inc.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Check Point Software Technologies Incorporated not be used 
-.\" in advertising or publicity pertaining to distribution of the document 
-.\" or software without specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND CHECK POINT SOFTWARE TECHNOLOGIES 
-.\" INCORPORATED DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, 
-.\" INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.   
-.\" IN NO EVENT SHALL CHECK POINT SOFTWARE TECHNOLOGIES INCORPRATED
-.\" BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR 
-.\" ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER
-.\" IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT 
-.\" OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
-.\" 
-.\" --Copyright--
-.\"
-.\"	from named.8	6.6 (Berkeley) 2/14/89
-.\"
-.Dd June 26, 1993
-.Dt @XFER_INDOT_U@NAMED-XFER @SYS_OPS_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm @XFER_INDOT@named-xfer 
-.Nd ancillary agent for inbound zone transfers
-.Sh SYNOPSIS
-.Nm named-xfer
-.Fl z Ar zone_to_transfer
-.Fl f Ar db_file
-.Fl s Ar serial_no
-.Op Fl d Ar debuglevel
-.Op Fl l Ar debug_log_file
-.Op Fl i Ar ixfr_file
-.Op Fl t Ar trace_file
-.Op Fl p Ar port#
-.Op Fl S 
-.Ar nameserver 
-.Op Ar [ Sy axfr 
-| 
-.Op Sy ixfr ]
-.Sh DESCRIPTION
-.Ic Named-xfer
-is an ancillary program executed by
-.Xr @INDOT@named @SYS_OPS_EXT@
-to perform an inbound zone transfer.  It is rarely executed directly, and then
-only by system administrators who are trying to debug a zone transfer problem.
-See RFC's 1033, 1034, and 1035 for more information on the Internet
-name-domain system.
-.Pp
-Options are:
-.Bl -tag -width Fl
-.It Fl z Ar zone_to_transfer
-specifies the name of the zone to be transferred.
-.It Fl f Ar db_file
-specifies the name of the 
-.Ar db_file 
-into which the zone should be dumped
-when it is received from the primary server.
-.It Fl s Ar serial_no
-specifies the serial number of our current copy of this zone.  If the
-.Sy SOA RR 
-we get from the primary server does not have a serial
-number higher than this, the transfer will be aborted.
-.It Fl d Ar debuglevel
-Print debugging information.
-The 
-.Ar debuglevel 
-is a number determines the level of messages printed.
-.It Fl l Ar debug_log_file
-Specifies a log file for debugging messages.  The default is system- 
-dependent but is usually in
-.Pa /var/tmp
-or
-.Pa /usr/tmp .
-Note that this only applies if
-.Dq Fl d
-is also specified.
-.It Fl i Ar ixfr_file
-Specifies the name of the 
-.Ar ixfr_file 
-into which the zone changes from Incremental Zone Transfer (IXFR)
-should be dumped when it is received from the primary server.
-.It Fl t Ar trace_file
-Specifies a 
-.Ar trace_file 
-which will contain a protocol trace of the zone
-transfer.  This is probably only of interest to people debugging the name
-server itself.
-.It Fl p Ar port#
-Use a different port number.  The default is the standard port number
-as returned by 
-.Xr getservbyname @LIB_NETWORK_EXT@  
-for the service 
-.Dq Li domain .
-.It Fl S
-Perform a restricted transfer of only the SOA, NS records and glue A records
-for the zone. The SOA record will not be loaded by 
-.Xr @INDOT@named @SYS_OPS_EXT@
-but will be used to
-determine when to verify the NS records.  See the 
-.Dq Li stubs 
-directive in
-.Xr @INDOT@named @SYS_OPS_EXT@
-for more information.
-.El
-.Pp
-Additional arguments are taken as name server addresses in so-called
-.Dq dotted-quad 
-syntax 
-.Em only; 
-no host name are allowed here.  At least one address must be specified.  
-Any additional addresses will be tried, in order, if the first one fails 
-to transfer to us successfully.
-The 
-.Sy axfr 
-or 
-.Sy ixfr 
-after name server address designates the type of zone transfer to perform.
-Use 
-.Sy axfr  
-for a full zone transfer or
-.Sy ixfr 
-for an incremental zone transfer.
-.Sh SEE ALSO
-.Xr hostname @DESC_EXT@ ,
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ ,
-.Xr resolver @FORMAT_EXT@ ,
-RFC 882, RFC 883, RFC 973, RFC 974, RFC 1033, RFC 1034, RFC 1035, 
-RFC 1123, RFC 1995
-.Dq Name Server Operations Guide for Sy BIND .
diff --git a/contrib/bind/doc/man/named.8 b/contrib/bind/doc/man/named.8
deleted file mode 100644
index c0e73df9ae36d..0000000000000
--- a/contrib/bind/doc/man/named.8
+++ /dev/null
@@ -1,441 +0,0 @@
-.\" ++Copyright++ 1985, 1996
-.\" -
-.\" Copyright (c) 1985, 1996
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)named.8	6.6 (Berkeley) 2/14/89
-.\"
-.Dd February 1, 1996
-.Dt @INDOT_U@NAMED @SYS_OPS_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm @INDOT@named 
-.Nd Internet domain name server (DNS)
-.Sh SYNOPSIS
-.Nm @INDOT@NAMED
-.Op Fl d Ar debuglevel
-.Op Fl p Ar port# 
-.Oo Fl Po 
-.Cm b Ns \&| Ns Cm c
-.Pc
-.Ar config_file
-.Oc
-.Op Fl f q r v
-.Op Fl u Ar user_name
-.Op Fl g Ar group_name
-.Op Fl t Ar directory
-.Op Fl w Ar directory
-.Op Ar config_file
-.Sh DESCRIPTION
-.Ic Named
-is the Internet domain name server.
-See RFC's 1033, 1034, and 1035 for more information on the Internet
-name-domain system.  Without any arguments,
-.Ic named
-will read the default configuration file
-.Pa /etc/named.conf ,
-read any initial data, and listen for queries.  A 
-.Ar config_file
-argument given at the end of the command line will override any
-.Ar config_file
-specified by using the
-.Dq Fl b
-or
-.Dq Fl c
-flags.
-.Pp
-.Sy NOTE:
-Several of 
-.Nm named Ns 's
-options, and much more of its behaviour, can be controlled in the configuration 
-file.  Please refer to the configuration file guide included with this 
-.Sy BIND
-distribution for further information.
-.Pp
-Options are:
-.Bl -tag -width Fl
-.It Fl d Ar debuglevel
-Print debugging information.
-The 
-.Ar debuglevel 
-is a number determines the level of messages printed.  If negative,
-.Ar debuglevel
-is set to 
-.Dq 1 .
-.Pp
-.Sy NOTE:
-The new debugging framework is considerably more sophisticated than it
-was in older versions of 
-.Nm @INDOT@NAMED .
-The configuration file's
-.Dq Li logging
-statement allows for multiple, distinct levels of debugging for each of
-a large set of categories of events (such as queries, transfers in or out,
-etc.).  Please refer to the configuration file guide included with this 
-.Sy BIND
-distribution for further information about these extensive new capabilities.
-.It Fl p Ar port#
-Use the specified remote port number; this is the port number to which 
-.Nm @INDOT@NAMED
-will send queries.  The default value is the standard port number, i.e.,
-the port number returned by 
-.Xr getservbyname @LIB_NETWORK_EXT@ 
-for service 
-.Dq Li domain .
-.Pp
-.Sy NOTE:
-Previously, the syntax
-.Dq Fl p Ar port# Ns Op Ar \&/localport#
-was supported; the first port was that used when contacting 
-.Em remote 
-servers, and the second one was the service port bound by the 
-.Em local 
-instance of
-.Nm @INDOT_U@NAMED .
-The current usage is equivalent to the old usage without the 
-.Ar localport#
-specified; this functionality can be specified with the 
-.Dq Li listen-on
-clause of the configuration file's
-.Dq Li options
-statement.
-.It Xo Fl Po 
-.Cm b Ns \&| Ns Cm c
-.Pc Ar config_file
-.Xc
-Use an alternate 
-.Ar config_file ;
-this argument is overridden by any 
-.Ar config_file
-which is specified at the end of the command line.
-The default value is
-.Pa /etc/named.conf .
-.It Fl f
-Run this process in the foreground; don't 
-.Xr fork @SYSCALL_EXT@
-and daemonize.  (The default is to daemonize.)
-.It Fl q
-Trace all incoming queries if 
-.Nm @INDOT_U@NAMED 
-has been compiled with
-.Li QRYLOG 
-defined.  
-.Pp
-.Sy NOTE: 
-This option is deprecated in favor of the
-.Dq Li queries
-.Em logging category 
-of the configuration file's
-.Dq Li logging 
-statement; for more information, please refer to the configuration file guide 
-included with this distribution of 
-.Sy BIND .
-.It Fl r
-Turns recursion off in the server.  Answers can come only from local
-(primary or secondary) zones.  This can be used on root servers.
-The default is to use recursion.
-.Pp
-.Sy NOTE: 
-This option can be overridden by and is deprecated in favor of the
-.Dq Li recursion 
-clause of the configuration file's
-.Dq Li options
-statement.
-.It Fl v
-Report the version and exit. 
-.It Fl u Ar user_name
-Specifies the user the server should run as after it initializes.  The value
-specified may be either a username or a numeric user id.  If the
-.Dq Fl g
-flag is not specified, then the group id used will be the primary group of
-the user specified (initgroups() is called, so all of the user's groups will
-be available to the server).
-.Pp
-.It Fl g Ar group_name
-Specifies the group the server should run as after it initializes.  The value
-specified may be either a groupname or a numeric group id.
-.Pp
-.It Fl t Ar directory
-Specifies the directory the server should chroot() into as soon as it is
-finshed processing command line arguments.
-.Pp
-.It Fl w Ar directory
-Sets the working directory of the server.  The
-.Dq Li directory 
-clause of the configuration file's
-.Dq Li options
-statement overrides any value specified on the command line.
-The default working directory is the current directory
-.Pq Dq \&. .
-.El
-.Pp
-Any additional argument is taken as the name of the configuration file, for
-compatibility with older implementations; as noted above, this argument
-overrides any
-.Ar config_file
-specified by the use of the
-.Dq Fl b
-or 
-.Dq Fl c
-flags.  If no further argument is given, then the default configuration file
-is used
-.Pq Pa /etc/named.conf .
-.Ss Master File Format
-The master file consists of control information and a list of resource
-records for objects in the zone of the forms:
-.Bd -literal -offset indent
-$INCLUDE <filename> <opt_domain>
-$ORIGIN <domain>
-$TTL <ttl>
-<domain> <opt_ttl> <opt_class> <type> <resource_record_data>
-.Ed
-.Pp
-where:
-.Bl -tag -width "opt_domain  " 
-.It Ar domain
-is 
-.Dq Li \&. 
-for root, 
-.Dq Li @ 
-for the current origin, or a standard domain name. If
-.Ar domain
-is a standard domain name that does 
-.Em not 
-end with 
-.Dq Li \&. , 
-the current origin is appended to the domain. Domain names ending with 
-.Dq Li \&.
-are unmodified.
-.It Ar opt_domain
-This field is used to define an origin for the data in an included file.
-It is equivalent to placing an 
-.Li $ORIGIN 
-statement before the first line of the included file.  The field is optional.
-Neither the 
-.Ar opt_domain
-field nor 
-.Li $ORIGIN 
-statements in the included file modify the current origin for this file.
-.It Ar ttl
-A integer number that sets the default time-to-live for future records without
-an explicit ttl.
-.It Ar opt_ttl
-An optional integer number for the time-to-live field.
-If not set the ttl is taken from the last $TTL statement.
-If no $TTL statement has occured then the SOA minimum value is used and a
-warning is generated.
-.It Ar opt_class
-The object address type; currently only one type is supported,
-.Dv IN ,
-for objects connected to the DARPA Internet. 
-.It Ar type
-This field contains one of the following tokens; the data expected in the
-.Ar resource_record_data
-field is in parentheses:
-.Bl -tag -width "HINFO    "  -offset indent
-.It Dv A
-a host address (dotted-quad IP address)
-.It Dv NS
-an authoritative name server (domain)
-.It Dv MX
-a mail exchanger (domain), preceded by a preference value (0..32767),
-with lower numeric values representing higher logical preferences.
-.It Dv CNAME
-the canonical name for an alias (domain)
-.It Dv SOA
-marks the start of a zone of authority (domain of originating host,
-domain address of maintainer, a serial number and the following
-parameters in seconds: refresh, retry, expire and minimum TTL (see RFC 883
-and RFC 2308)).
-.It Dv NULL
-a null resource record (no format or data)
-.It Dv RP
-a Responsible Person for some domain name (mailbox, TXT-referral)
-.It Dv PTR
-a domain name pointer (domain)
-.It Dv HINFO
-host information (cpu_type OS_type)
-.El
-.El
-.Pp
-Resource records normally end at the end of a line,
-but may be continued across lines between opening and closing parentheses.
-Comments are introduced by semicolons and continue to the end of the line.
-.Pp
-.Sy NOTE:
-There are other resource record types not shown here.  You should
-consult the 
-.Sy BIND 
-Operations Guide 
-.Pq Dq BOG 
-for the complete
-list.  Some resource record types may have been standardized in newer RFC's
-but not yet implemented in this version of 
-.Sy BIND .
-.Ss SOA Record Format
-Each master zone file should begin with an SOA record for the zone.
-An example SOA record is as follows:
-.Bd -literal
-@	IN	SOA	ucbvax.Berkeley.EDU. rwh.ucbvax.Berkeley.EDU. (
-				1989020501	; serial
-				10800	; refresh
-				3600	; retry
-				3600000	; expire
-				86400 )	; minimum
-.Ed
-.Pp
-The SOA specifies a serial number, which should be changed each time the
-master file is changed.  Note that the serial number can be given as a
-dotted number, but this is a 
-.Em very 
-unwise thing to do since the
-translation to normal integers is via concatenation rather than
-multiplication and addition.  You can spell out the year, month, day of
-month, and 0..99 version number and still fit inside the unsigned 32-bit
-size of this field.  (It's true that we will have to rethink this strategy in
-the year 4294, but we're not worried about it.)
-.Pp
-Secondary servers
-check the serial number at intervals specified by the refresh time in
-seconds; if the serial number changes, a zone transfer will be done to load
-the new data.  If a master server cannot be contacted when a refresh is due,
-the retry time specifies the interval at which refreshes should be attempted.
-If a master server cannot be contacted within the interval given by the
-expire time, all data from the zone is discarded by secondary servers.  The
-minimum value is the cache time-to-live for negative answers (RFC 2308).
-.Sh NOTES
-The boot file directives 
-.Dq Li domain 
-and 
-.Dq Li suffixes 
-have been
-obsoleted by a more useful, resolver-based implementation of
-suffixing for partially-qualified domain names.  The prior mechanisms
-could fail under a number of situations, especially when then local
-nameserver did not have complete information.
-.Pp
-The following signals have the specified effect when sent to the
-server process using the
-.Xr kill @CMD_EXT@
-command:
-.Pp
-.Bl -tag -width "SIGWINCH" 
-.It Dv SIGHUP
-Causes server to read 
-.Pa named.conf 
-and reload the database.  If the server
-is built with the 
-.Li FORCED_RELOAD 
-compile-time option, then 
-.Dv SIGHUP 
-will
-also cause the server to check the serial number on all secondary zones;
-normally, the serial numbers are only checked at the SOA-specified intervals.
-.It Dv SIGINT
-Dumps the current data base and cache to 
-.Dq Pa /var/tmp/named_dump.db 
-or the value of 
-.Dv _PATH_DUMPFILE .
-.It Dv SIGILL
-Dumps statistics data into 
-.Pa named.stats 
-if the server is compiled with 
-.Li -DSTATS .  
-Statistics data is appended to the file.
-.It Dv SIGSYS
-Dumps the profiling data in 
-.Pa /var/tmp 
-if the server is compiled with profiling (server forks, chdirs and exits).
-.It Dv SIGTERM
-Saves any modified dynamic zones to the file system, and shuts down the server.
-.It Dv SIGUSR1
-Turns on debugging; each 
-.Dv SIGUSR1 
-increments debug level.
-.Po Dv SIGEMT 
-on older systems without 
-.Dv SIGUSR1 .
-.Pc 
-.It Dv SIGUSR2
-Turns off debugging completely.
-.Po Dv SIGFPE 
-on older systems without 
-.Dv SIGUSR2 .
-.Pc
-.It Dv SIGWINCH
-Toggles logging of all incoming queries via 
-.Xr syslog @SYS_OPS_EXT@
-(requires server to have been built with the 
-.Li QRYLOG 
-option).
-.Sh FILES
-.Bl -tag -width "/var/tmp/named_dump.db (_PATH_DUMPFILE)   " -compact
-.It Pa /etc/named.conf
-default name server configuration file
-.It Pa /var/run/named.pid Pq Dv _PATH_PIDFILE
-the process id 
-.It Pa /var/tmp/named_dump.db Pq Dv _PATH_DUMPFILE
-dump of the name server database
-.It Pa /var/tmp/named.run Pq file:  Dv _PATH_DEBUG
-debug output
-.It Pa /var/tmp/named.stats Pq file:  Dv _PATH_STATS
-nameserver statistics data
-.El
-.Sh SEE ALSO
-.Xr gethostbyname @LIB_NETWORK_EXT@ ,
-.Xr hostname @DESC_EXT@ ,
-.Xr kill @CMD_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ , 
-.Xr signal @SYSCALL_EXT@ ,
-RFC 882, RFC 883, RFC 973, RFC 974, RFC 1033, RFC 1034, RFC 1035, RFC 1123,
-RFC 2308
-.Dq Name Server Operations Guide for Sy BIND
diff --git a/contrib/bind/doc/man/named.conf.5 b/contrib/bind/doc/man/named.conf.5
deleted file mode 100644
index 44f1ec9da4dc3..0000000000000
--- a/contrib/bind/doc/man/named.conf.5
+++ /dev/null
@@ -1,2355 +0,0 @@
-.\" Copyright (c) 1999 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-
-.Dd January 7, 1999
-.Dt NAMED.CONF 5
-.Os BSD 4
-
-.Sh NAME
-.Nm named.conf
-.Nd configuration file for
-.Xr named 8
-
-.Sh OVERVIEW
-
-BIND 8 is much more configurable than previous release of BIND.  There
-are entirely new areas of configuration, such as access control lists
-and categorized logging.  Many options that previously applied to all
-zones can now be used selectively.  These features, plus a
-consideration of future configuration needs led to the creation of a
-new configuration file format.
-
-.Ss General Syntax
-
-A BIND 8 configuration consists of two general features, statements
-and comments.  All statements end with a semicolon.  Many statements
-can contain substatements, which are each also terminated with a
-semicolon.
-
-.Pp
-The following statements are supported:
-.Bl -tag -width 1
-.It Ic logging
-specifies what the server logs, and where the log messages are sent
-
-.It Ic options
-controls global server configuration options and sets defaults for other
-statements
-
-.It Ic zone
-defines a zone
-
-.It Ic acl
-defines a named IP address matching list, for access control and other uses
-
-.It Ic key
-specifies key information for use in authentication and authorization
-
-.It Ic trusted-keys
-defines DNSSEC keys that are preconfigured into the server and implicitly
-trusted
-
-.It Ic server
-sets certain configuration options for individual remote servers
-
-.It Ic controls
-declares control channels to be used by the
-.Nm ndc
-utility
-
-.It Ic include
-includes another file
-
-.El
-
-The
-.Ic logging
-and
-.Ic options
-statements may only occur once per configuration, while the rest may
-appear numerous times.  Further detail on each statement is provided
-in individual sections below.
-
-Comments may appear anywhere that whitespace may appear in a BIND
-configuration file.  To appeal to programmers of all kinds, they can
-be written in C, C++, or shell/perl constructs.
-
-C-style comments start with the two characters
-.Li /*
-(slash, star) and end with
-.Li */
-(star, slash).
-Because they are completely delimited with these characters,
-they can be used to comment only a portion of a line or to span
-multiple lines.
-
-C-style comments cannot be nested.  For example, the following is
-not valid because the entire comment ends with the first
-.Li */ :
-
-.Bd -literal -offset indent
-/* This is the start of a comment.
-   This is still part of the comment.
-/* This is an incorrect attempt at nesting a comment. */
-   This is no longer in any comment. */
-.Ed
-
-C++-style comments start with the two characters
-.Li //
-(slash, slash) and continue to the end of the physical line.
-They cannot be continued across multiple physical lines; to have
-one logical comment span multiple lines, each line must use the
-.Li //
-pair.  For example:
-
-.Bd -literal -offset indent
-// This is the start of a comment.  The next line
-// is a new comment, even though it is logically
-// part of the previous comment.
-.Ed
-
-Shell-style (or perl-style, if you prefer) comments start with the
-character
-.Li #
-(hash or pound or number or octothorpe or whatever) and continue to
-the end of the physical line, like C++ comments.  For example:
-
-.Bd -literal -offset indent
-# This is the start of a comment.  The next line
-# is a new comment, even though it is logically
-# part of the previous comment.
-.Ed
-
-.Em WARNING:
-you cannot use the
-.Li ;
-(semicolon) character to start a comment such as you would in a zone
-file.  The semicolon indicates the end of a configuration statement,
-so whatever follows it will be interpreted as the start of the next
-statement.
-
-.Ss Converting from BIND 4.9.x
-
-.Pp
-BIND 4.9.x configuration files can be converted to the new format
-by using
-.Pa src/bin/named/named-bootconf ,
-a shell script that is part of the BIND 8.2.x source kit.
-
-.Sh DOCUMENTATION DEFINITIONS
-
-Described below are elements used throughout the BIND configuration
-file documentation.  Elements which are only associated with one
-statement are described only in the section describing that statement.
-
-.Bl -tag -width 1
-.It Va acl_name
-The name of an
-.Va address_match_list
-as defined by the
-.Ic acl
-statement.
-
-.It Va address_match_list
-A list of one or more
-.Va ip_addr ,
-.Va ip_prefix ,
-.Va key_id ,
-or
-.Va acl_name
-elements, as described in the
-.Sx ADDRESS MATCH LISTS
-section.
-
-.It Va dotted-decimal
-One or more integers valued 0 through 255 separated only by dots
-(``.''), such as
-.Li 123 ,
-.Li 45.67
-or
-.Li 89.123.45.67 .
-
-.It Va domain_name
-A quoted string which will be used as a DNS name, for example
-.Qq Li my.test.domain .
-
-.It Va path_name
-A quoted string which will be used as a pathname, such as
-.Qq Li zones/master/my.test.domain .
-
-.It Va ip_addr
-An IP address in with exactly four elements in
-.Va dotted-decimal
-notation.
-
-.It Va ip_port
-An IP port
-.Va number .
-.Va number is limited to
-.Li 0
-through
-.Li 65535 ,
-with values below 1024 typically restricted to
-root-owned processes.  In some cases an asterisk (``*'') character
-can be used as a placeholder to select a random high-numbered port.
-
-.It Va ip_prefix
-An IP network specified in
-.Va dotted-decimal
-form, followed by  ``/''
-and then the number of bits in the netmask.  E.g.
-.Li 127/8
-is
-the network
-.Li 127.0.0.0
-with netmask
-.Li 255.0.0.0 .
-.Li 1.2.3.0/28
-is network
-.Li 1.2.3.0
-with netmask
-.Li 255.255.255.240.
-
-.It Va key_name
-A string representing the name of a shared key, to be used for transaction
-security.
-
-.It Va number
-A non-negative integer with an entire range limited by the range of a
-C language signed integer (2,147,483,647 on a machine with 32 bit
-integers).  Its acceptable value might further be limited by the
-context in which it is used.
-
-.It Va size_spec
-A
-.Va number ,
-the word
-.Li unlimited ,
-or the word
-.Li default .
-
-.Pp
-The maximum value of
-.Va size_spec
-is that of unsigned long integers on the machine.
-.Li unlimited
-requests unlimited use, or the maximum available amount.
-.Li default
-uses the limit that was in force when the server was started.
-
-.Pp
-A
-.Va number
-can optionally be followed by a scaling factor:
-.Li K
-or
-.Li k
-for kilobytes,
-.Li M
-or
-.Li m
-for megabytes, and
-.Li G
-or
-.Li g
-for gigabytes, which scale by 1024, 1024*1024, and 1024*1024*1024
-respectively.
-
-.Pp
-Integer storage overflow is currently silently ignored during
-conversion of scaled values, resulting in values less than intended,
-possibly even negative.  Using
-.Li unlimited
-is the best way to safely set a really large number.
-
-.It Va yes_or_no
-Either
-.Li yes
-or
-.Li no .
-The words
-.Li true
-and
-.Li false
-are also accepted, as are the numbers
-.Li 1 and
-.Li 0 .
-
-.El
-
-.Sh ADDRESS MATCH LISTS
-.Ss Syntax
-
-.Bd -literal
-\fIaddress_match_list\fR    = 1\&*\fIaddress_match_element\fR
-
-\fIaddress_match_element\fR = [ \&"!\&" ] ( \fIaddress_match_list\fR /
-                                  \fIip_address\fR / \fIip_prefix\fR /
-                                  \fIacl_name\fR / \&"key \&" \fIkey_id\fR ) \&";\&"
-.Ed
-
-.Ss Definition and Usage
-
-Address match lists are primarily used to determine access control for
-various server operations.  They are also used to define priorities
-for querying other nameservers and to set the addresses on which
-.Nm named
-will listen for queries.
-The elements which constitute an address match list can be any
-of the following:
-
-.Bl -bullet
-.It
-an
-.Va ip-address
-(in
-.Va dotted-decimal
-notation,
-.It
-an
-.Va ip-prefix
-(in the '/'-notation),
-.It
-A
-.Va key_id ,
-as defined by the
-.Ic key
-statement,
-.It
-the name of an address match list previously defined with
-the
-.Ic acl
-statement, or
-.It
-another
-.Va address_match_list .
-.El
-
-.Pp
-Elements can be negated with a leading exclamation mark (``!''), and
-the match list names
-.Li any ,
-.Li none ,
-.Li localhost
-and
-.Li localnets
-are predefined.  More information on those names can be found in the
-description of the
-.Ic acl
-statement.
-
-.Pp
-The addition of the
-.Ic key
-clause made the name of this syntactic element something of a
-misnomer, since security keys can be used to validate access without
-regard to a host or network address.  Nonetheless, the term ``address
-match list'' is still used throughout the documentation.
-
-.Pp
-When a given IP address or prefix is compared to an address match
-list, the list is traversed in order until an element matches.  The
-interpretation of a match depends on whether the list is being used
-for access control, defining
-.Ic listen-on
-ports, or as a topology, and whether the element was
-negated.
-
-.Pp
-When used as an access control list, a non-negated match allows access
-and a negated match denies access.  If there is no match at all in the
-list, access is denied.  The clauses
-.Ic allow-query ,
-.Ic allow-transfer ,
-.Ic allow-update ,
-.Ic allow-recursion ,
-and
-.Ic blackhole
-all use address match lists like this.  Similarly, the
-.Ic listen-on
-option will cause the server to not accept queries on any of the
-machine's addresses which do not match the list.
-
-.Pp
-When used with the
-.Ic topology
-option, a non-negated match returns a distance based on its position on
-the list (the closer the match is to the start of the list, the
-shorter the distance is between it and the server).  A negated match
-will be assigned the maximum distance from the server.  If there is no
-match, the address will get a distance which is further than any
-non-negated list element, and closer than any negated element.
-
-.Pp
-Because of the first-match aspect of the algorithm, an element that
-defines a subset of another element in the list should come before the
-broader element, regardless of whether either is negated.  For
-example, in
-.Dl 1.2.3/24; !1.2.3.13
-the 1.2.3.13 element is completely useless, because the algorithm will
-match any lookup for 1.2.3.13 to the 1.2.3/24 element.  Using
-.Dl !1.2.3.13; 1.2.3/24
-fixes that problem by having 1.2.3.13 blocked by the negation but all
-other 1.2.3.* hosts fall through.
-
-.Sh THE LOGGING STATEMENT
-.Ss Syntax
-
-.Bd -literal
-logging {
-  [ channel \fIchannel_name\fR {
-    ( file \fIpath_name\fR
-       [ versions ( \fInumber\fR | unlimited ) ]
-       [ size \fIsize_spec\fR ]
-     | syslog ( kern | user | mail | daemon | auth | syslog | lpr |
-                news | uucp | cron | authpriv | ftp |
-                local0 | local1 | local2 | local3 |
-                local4 | local5 | local6 | local7 )
-     | null );
-
-    [ severity ( critical | error | warning | notice |
-                 info  | debug [ \fIlevel\fR ] | dynamic ); ]
-    [ print-category \fIyes_or_no\fR; ]
-    [ print-severity \fIyes_or_no\fR; ]
-    [ print-time \fIyes_or_no\fR; ]
-  }; ]
-
-  [ category \fIcategory_name\fR {
-    \fIchannel_name\fR; [ \fIchannel_name\fR; ... ]
-  }; ]
-  ...
-};
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic logging
-statement configures a wide variety of logging options for the nameserver.
-Its
-.Ic channel
-phrase associates output methods, format options and
-severity levels with a name that can then be used with the
-.Ic category
-phrase to select how various classes of messages are logged.
-
-.Pp
-Only one
-.Ic logging
-statement is used to define as many channels and categories as are wanted.
-If there are multiple logging statements in a configuration, the first
-defined determines the logging, and warnings are issued for the
-others.  If there is no logging statement, the logging configuration
-will be:
-
-.Bd -literal
-    logging {
-        category default { default_syslog; default_debug; };
-        category panic { default_syslog; default_stderr; };
-        category packet { default_debug; };
-        category eventlib { default_debug; };
-    };
-.Ed
-
-The logging configuration is established as soon as the
-.Ic logging
-statement is parsed.  If you want to redirect
-messages about processing of the entire configuration file, the
-.Ic logging
-statement must appear first.  Even if you do not
-redirect configuration file parsing messages, we recommend
-always putting the
-.Ic logging
-statement first so that this rule need not be consciously recalled if
-you ever do need want the parser's messages relocated.
-
-.Ss The channel phrase
-
-All log output goes to one or more ``channels''; you can make as many
-of them as you want.
-
-.Pp
-Every channel definition must include a clause that says whether
-messages selected for the channel go to a file, to a particular syslog
-facility, or are discarded.  It can optionally also limit the message
-severity level that will be accepted by the channel (default is
-.Li info ) ,
-and whether to include a time stamp generated by
-.Nm named ,
-the category name, or severity level.  The default is not to include
-any of those three.
-
-.Pp
-The word
-.Li null
-as the destination option for the
-channel will cause all messages sent to it to be discarded; other
-options for the channel are meaningless.
-
-.Pp
-The
-.Ic file
-clause can include limitations both on how
-large the file is allowed to become, and how many versions of the file
-will be saved each time the file is opened.
-
-.Pp
-The
-.Ic size
-option for files is simply a hard ceiling on
-log growth.  If the file ever exceeds the size, then
-.Nm named
-will just not write anything more to it until the file is reopened;
-exceeding the size does not automatically trigger a reopen.  The
-default behavior is to not limit the size of the file.
-
-.Pp
-If you use the
-.Ic version
-logfile option, then
-.Nm named
-will retain that many backup versions of the file
-by renaming them when opening.  For example, if you choose to keep 3
-old versions of the file lamers.log then just before it is opened
-lamers.log.1 is renamed to lames.log.2, lamers.log.0 is renamed to
-lamers.log.1, and lamers.log is renamed to lamers.log.0.  No rolled
-versions are kept by default; any existing log file is simply appended.
-The
-.Li unlimited
-keyword is synonymous with
-.Li 99
-in current BIND releases.  Example usage of size and versions options:
-
-.Bd -literal
-    channel an_example_level {
-        file "lamers.log" versions 3 size 20m;
-        print-time yes;
-        print-category yes;
-    };
-.Ed
-
-.Pp
-The argument for the
-.Ic syslog
-clause is a syslog facility as described in the
-.Xr syslog 3
-manual page.  How
-.Nm syslogd
-will handle messages sent to this facility is described in the
-.Xr syslog.conf 5
-manual page.  If you have a system which uses a very old version of
-syslog that only uses two arguments to the
-.Fn openlog()
-function, then this clause is silently ignored.
-
-.Pp
-The
-.Ic severity
-clause works like syslog's ``priorities'', except that they can also be
-used if you are writing straight to a file rather than using
-syslog.  Messages  which are not at least of the severity level given
-will not be selected for the channel; messages of higher severity
-levels will be accepted.
-
-.Pp
-If you are using syslog, then the
-.Pa syslog.conf
-priorities will also determine what eventually passes through.
-For example, defining a channel facility and severity as
-.Li daemon
-and
-.Li debug
-but only logging
-.Li daemon.warning
-via
-.Pa syslog.conf
-will cause messages of severity
-.Li info
-and
-.Li notice
-to be dropped.  If the situation were reversed, with
-.Nm named
-writing messages of only
-.Li warning
-or higher, then
-.Nm syslogd
-would print all messages it received from the channel.
-
-.Pp
-The server can supply extensive debugging information when it is in
-debugging mode.  If the server's global debug level is greater than
-zero, then debugging mode will be active.  The global debug level is
-set either by starting the
-.Nm named
-server with the
-.Fl d
-flag followed by a positive integer, or by sending the running server the
-.Dv SIGUSR1
-signal (for example, by using
-.Ic ndc trace ) .
-The global debug level can be set to
-zero, and debugging mode turned off, by sending the server the
-.Dv SIGUSR2
-signal (as with
-.Ic ndc notrace ) .
-All debugging messages in the server have a
-debug level, and higher debug levels give more more detailed output.
-Channels that specify a specific debug severity, e.g.
-
-.Bd -literal
-    channel specific_debug_level {
-        file \&"foo\&";
-        severity debug 3;
-    };
-.Ed
-
-will get debugging output of level 3 or less any time the
-server is in debugging mode, regardless of the global debugging level.
-Channels with
-.Li dynamic
-severity use the server's global level to determine what messages to
-print.
-
-.Pp
-If
-.Ic print-time
-has been turned on, then the date and time will be logged.
-.Ic  print-time
-may be specified for a syslog channel, but is usually pointless since
-syslog also prints the date and time.
-If
-.Ic print-category
-is requested, then the category of the message will be logged as well.
-Finally, if
-.Ic print-severity
-is on, then the severity level of the message will be logged.  The
-.Ic print-
-options may be used
-in any combination, and will always be printed in the following order:
-time, category, severity.  Here is an example where all three
-.Ic print-
-options are on:
-
-.Bd -literal
-    28-Apr-1997 15:05:32.863 default: notice: Ready to answer queries.
-.Ed
-
-.Pp
-There are four predefined channels that are used for
-.Nm named 's
-default logging as follows.  How they are used
-used is described in the next section,
-.Sx The category phrase.
-
-.Bd -literal
-    channel default_syslog {
-        syslog daemon;       # send to syslog's daemon facility
-        severity info;       # only send priority info and higher
-    };
-
-    channel default_debug {
-        file \&"named.run\&";    # write to named.run in the working directory
-                             # Note: stderr is used instead of \&"named.run\&"
-                             # if the server is started with the -f option.
-        severity dynamic;    # log at the server's current debug level
-    };
-
-    channel default_stderr { # writes to stderr
-        file \&"<stderr>\&";     # this is illustrative only; there's currently
-                             # no way of specifying an internal file
-                             # descriptor in the configuration language.
-        severity info;       # only send priority info and higher
-    };
-
-    channel null {
-        null;                # toss anything sent to this channel
-    };
-.Ed
-
-Once a channel is defined, it cannot be redefined.  Thus you cannot
-alter the built-in channels directly, but you can modify the default
-logging by pointing categories at channels you have defined.
-
-.Ss The category phrase
-
-There are many categories, so you can send the logs you want to see
-wherever you want, without seeing logs you don't want.  If you don't
-specify a list of channels for a category, then log messages in that
-category will be sent to the
-.Li default
-category instead.
-If you don't specify a default category, the following ``default
-default'' is used:
-
-.Bd -literal
-    category default { default_syslog; default_debug; };
-.Ed
-
-As an example, let's say you want to log security events to a file,
-but you also want keep the default logging behavior.  You'd specify
-the following:
-
-.Bd -literal
-    channel my_security_channel {
-        file \&"my_security_file\&";
-        severity info;
-    };
-    category security { my_security_channel; 
-                        default_syslog; default_debug; };
-.Ed
-
-To discard all messages in a category, specify the
-.Li null
-channel:
-
-.Bd -literal
-    category lame-servers { null; };
-    category cname { null; };
-.Ed
-
-The following categories are available:
-
-.Bl -tag -width 1
-.It Ic default
-The catch-all.  Many things still aren't classified into categories,
-and they all end up here.  Also, if you don't specify any channels for
-a category, the default category is used instead.  If you do not
-define the default category, the following definition is used:
-.Dl category default { default_syslog; default_debug; };
-
-.It Ic config
-High-level configuration file processing.
-
-.It Ic parser
-Low-level configuration file processing.
-
-.It Ic queries
-A short log message is generated for every query the server receives.
-
-.It Ic lame-servers
-Messages like ``Lame server on ...''
-
-.It Ic statistics
-Statistics.
-
-.It Ic panic
-If the server has to shut itself down due to an internal problem, it
-will log the problem in this category as well as in the problem's native
-category.  If you do not define the panic category, the following definition
-is used:
-.Dl category panic { default_syslog; default_stderr; };
-
-.It Ic update
-Dynamic updates.
-
-.It Ic ncache
-Negative caching.
-
-.It Ic xfer-in
-Zone transfers the server is receiving.
-
-.It Ic xfer-out
-Zone transfers the server is sending.
-
-.It Ic db
-All database operations.
-
-.It Ic eventlib
-Debugging info from the event system.  Only one channel may be specified for
-this category, and it must be a file channel.  If you do not define the
-eventlib category, the following definition is used:
-.Dl category eventlib { default_debug; };
-
-.It Ic packet
-Dumps of packets received and sent.  Only one channel may be specified for
-this category, and it must be a file channel.  If you do not define the
-packet category, the following definition is used:
-.Dl category packet { default_debug; };
-
-.It Ic notify
-The NOTIFY protocol.
-
-.It Ic cname
-Messages like ``... points to a CNAME''.
-
-.It Ic security
-Approved/unapproved requests.
-
-.It Ic os
-Operating system problems.
-
-.It Ic insist
-Internal consistency check failures.
-
-.It Ic maintenance
-Periodic maintenance events.
-
-.It Ic load
-Zone loading messages.
-
-.It Ic response-checks
-Messages arising from response checking, such as
-``Malformed response ...'', ``wrong ans. name ...'',
-``unrelated additional info ...'', ``invalid RR type ...'',
-and ``bad referral ...''.
-
-.El
-
-.Sh THE OPTIONS STATEMENT
-.Ss Syntax
-
-.Bd -literal
-options {
-  [ version \fIversion_string\fR; ]
-  [ directory \fIpath_name\fR; ]
-  [ named-xfer \fIpath_name\fR; ]
-  [ dump-file \fIpath_name\fR; ]
-  [ memstatistics-file \fIpath_name\fR; ]
-  [ pid-file \fIpath_name\fR; ]
-  [ statistics-file \fIpath_name\fR; ]
-  [ auth-nxdomain \fIyes_or_no\fR; ]
-  [ deallocate-on-exit \fIyes_or_no\fR; ]
-  [ dialup \fIyes_or_no\fR; ]
-  [ fake-iquery \fIyes_or_no\fR; ]
-  [ fetch-glue \fIyes_or_no\fR; ]
-  [ has-old-clients \fIyes_or_no\fR; ]
-  [ host-statistics \fIyes_or_no\fR; ]
-  [ multiple-cnames \fIyes_or_no\fR; ]
-  [ notify \fIyes_or_no\fR; ]
-  [ recursion \fIyes_or_no\fR; ]
-  [ rfc2308-type1 \fIyes_or_no\fR; ]
-  [ use-id-pool \fIyes_or_no\fR; ]
-  [ treat-cr-as-space \fIyes_or_no\fR; ]
-  [ also-notify \fIyes_or_no\fR; ]
-  [ forward ( only | first ); ]
-  [ forwarders { [ \fIin_addr\fR ; [ \fIin_addr\fR ; ... ] ] }; ]
-  [ check-names ( master | slave | response ) ( warn | fail | ignore); ]
-  [ allow-query { \fIaddress_match_list\fR }; ]
-  [ allow-recursion { \fIaddress_match_list\fR }; ]
-  [ allow-transfer { \fIaddress_match_list\fR }; ]
-  [ blackhole { \fIaddress_match_list\fR }; ]
-  [ listen-on [ port \fIip_port\fR ] { \fIaddress_match_list\fR }; ]
-  [ query-source [ address ( \fIip_addr\fR | * ) ]
-                 [ port ( \fIip_port\fR | * ) ] ; ]
-  [ lame-ttl \fInumber\fR; ]
-  [ max-transfer-time-in \fInumber\fR; ]
-  [ max-ncache-ttl \fInumber\fR; ]
-  [ min-roots \fInumber\fR; ]
-  [ serial-queries \fInumber\fR; ]
-  [ transfer-format ( one-answer | many-answers ); ]
-  [ transfers-in  \fInumber\fR; ]
-  [ transfers-out \fInumber\fR; ]
-  [ transfers-per-ns \fInumber\fR; ]
-  [ transfer-source \fIip_addr\fR; ]
-  [ maintain-ixfr-base \fIyes_or_no\fR; ]
-  [ max-ixfr-log-size \fInumber\fR; ]
-  [ coresize \fIsize_spec\fR ; ]
-  [ datasize \fIsize_spec\fR ; ]
-  [ files \fIsize_spec\fR ; ]
-  [ stacksize \fIsize_spec\fR ; ]
-  [ cleaning-interval \fInumber\fR; ]
-  [ heartbeat-interval \fInumber\fR; ]
-  [ interface-interval \fInumber\fR; ]
-  [ statistics-interval \fInumber\fR; ]
-  [ topology { \fIaddress_match_list\fR }; ]
-  [ sortlist { \fIaddress_match_list|fR }; ]
-  [ rrset-order { \fIorder_spec\fR ; [ \fIorder_spec\fR ; ... [ [ };
-};
-.Ed
-
-.Ss Definition and Usage
-
-The options statement sets up global options to be used by
-BIND. This statement may appear at only once in a
-configuration file; if more than one occurrence is found, the
-first occurrence determines the actual options used,
-and a warning will be generated.  If there is no options statement,
-an options block with each option set to its default will be used.
-
-.Ss Pathnames
-
-.Bl -tag -width 1
-
-.It Ic version
-The version the server should report via the ndc command or via a query of 
-name 
-.Pa version.bind 
-in class chaos. The default is the real version number of ths server, 
-but some server operators prefer the string (
-.Ic surely you must be joking 
-).
-
-.It Ic directory
-The working directory of the server.  Any non-absolute
-pathnames in the configuration file will be taken as relative to this
-directory.  The default location for most server output files
-(e.g.
-.Pa named.run )
-is this directory.  If a directory is not
-specified, the working directory defaults to
-.Pa . ,
-the directory from which the
-server was started.  The directory specified should be an absolute path.
-
-.It Ic named-xfer
-The pathname to the named-xfer program that the server uses for
-inbound zone transfers.  If not specified, the default is
-system dependent (e.g.
-.Pa /usr/sbin/named-xfer 
-).
-
-.It Ic dump-file
-The pathname of the file the server dumps the database to when it
-receives
-.Dv SIGINT
-signal (as sent by
-.Ic ndc dumpdb 
-). If not specified, the default is
-.Pa named_dump.db .
-
-.It Ic memstatistics-file
-The pathname of the file the server writes memory usage statistics to
-on exit, if
-.Ic deallocate-on-exit
-is
-.Li yes .
-If not specified, the default is
-.Pa named.memstats .
-
-.It Ic pid-file
-The pathname of the file the server writes its process ID in.  If not
-specified, the default is operating system dependent, but is usually
-.Pa /var/run/named.pid
-or
-.Pa /etc/named.pid .
-The pid-file is used by programs like
-.Nm ndc
-that want to send signals to the running nameserver.
-
-.It Ic statistics-file
-The pathname of the file the server appends statistics to when it
-receives
-.Dv SIGILL
-signal (from
-.Ic ndc stats ) .
-If not specified, the default is
-.Pa named.stats .
-.El
-
-.Ss Boolean Options
-
-.Bl -tag -width 1
-.It Ic auth-nxdomain
-If
-.Li yes ,
-then the
-.Li AA
-bit is always set on
-.Dv NXDOMAIN
-responses, even if the server is not actually authoritative.
-The default is
-.Li yes .
-Do not turn off
-.Ic auth-nxdomain
-unless you are sure you know what you are
-doing, as some older software won't like it.
-
-.It Ic deallocate-on-exit
-If
-.Li yes ,
-then when the server exits it will painstakingly deallocate every
-object it allocated, and then write a memory usage report to the
-.Ic memstatistics-file .
-The default is
-.Li no ,
-because it is faster to let the operating system clean up.
-.Ic deallocate-on-exit
-is handy for detecting memory leaks.
-
-.It Ic dialup
-If
-.Li yes ,
-then the server treats all zones as if they are doing zone transfers
-across a dial on demand dialup link, which can be brought up by
-traffic originating from this server.  This has different effects
-according to zone type and concentrates the zone maintenance so that
-it all happens in a short interval, once every
-.Ic heartbeat-interval
-and hopefully during the one call.
-It also suppresses some of the normal zone maintenance traffic.
-The default is
-.Li no .
-The
-.Ic dialup
-option may also be specified in the
-.Ic zone
-statement, in which
-case it overrides the
-.Ic options dialup
-statement.
-
-.Pp
-If the zone is a
-.Ic master
-then the server will send out
-.Dv NOTIFY
-request to all the slaves.
-This will trigger the zone up to date checking in the slave (providing
-it supports
-.Dv NOTIFY )
-allowing  the slave
-to verify the zone while the call us up.
-
-.Pp
-If the zone is a
-.Ic slave
-or
-.Ic stub
-then the server will suppress the zone regular zone up to date queries
-and only perform the when the
-.Ic heartbeat-interval
-expires.
-
-.It Ic fake-iquery
-If
-.Li yes ,
-the server will simulate the obsolete DNS query type
-.Dv IQUERY .
-The default is
-.Li no .
-
-.It Ic fetch-glue
-If
-.Li yes
-(the default), the server will fetch ``glue'' resource
-records it doesn't have when constructing the additional data section of
-a response.
-.Ic fetch-glue no
-can be used in conjunction with
-.Ic recursion no
-to prevent the server's cache from growing or
-becoming corrupted (at the cost of requiring more work from the client).
-
-.It Ic has-old-clients
-Setting the option to
-.Li yes ,
-is equivalent to setting the following three options: 
-.Ic auth-nxdomain yes ;,
-.Ic maintain-ixfr-base yes ;,
-and 
-.Ic rfc2308-type1 no ;
-. The use of 
-.Ic has-old-clients
-with
-.Ic auth-nxdomain , 
-.Ic maintain-ixfr-base ,
-and 
-.Ic rfc2308-type1 
-is order dependant. 
-
-.It Ic host-statistics
-If
-.Li yes ,
-then statistics are kept for every host that the the nameserver
-interacts with.  The default is
-.Li no .
-.Em Note:
-turning on
-.Ic host-statistics
-can consume huge amounts of memory.
-
-.It Ic maintain-ixfr-base
-If
-.Li yes ,
-statistics are kept for every host that the nameserver interacts with.  The default is
-.Li no .
-.Em Note:
-turning on 
-.Li host-statistics
-can consume huge amounts of memory.
-
-.It Ic multiple-cnames
-If
-.Li yes ,
-then multiple CNAME resource records will be
-allowed for a domain name.  The default is
-.Li no .
-Allowing multiple CNAME records is against standards and is not recommended.
-Multiple CNAME support is available because previous versions of BIND
-allowed multiple CNAME records, and these records have been used for load
-balancing by a number of sites.
-
-.It Ic notify
-If
-.Li yes
-(the default), DNS NOTIFY messages are sent when a
-zone the server is authoritative for changes.  The use of NOTIFY
-speeds convergence between the master and its slaves.  Slave servers
-that receive a NOTIFY message and understand it will contact the
-master server for the zone and see if they need to do a zone transfer, and
-if they do, they will initiate it immediately.  The
-.Ic notify
-option may also be specified in the
-.Ic zone
-statement, in which case it overrides the
-.Ic options notify
-statement.
-
-.It Ic recursion
-If
-.Li yes ,
-and a DNS query requests recursion, then the
-server will attempt to do all the work required to answer the query.
-If recursion is not on, the server will return a referral to the
-client if it doesn't know the answer.  The default is
-.Li yes .
-See also
-.Ic fetch-glue
-above.
-
-.It Ic rfc2308-type1
-If
-.Li yes, 
-the server will send NS records along with the SOA record for negative 
-answers.  You need to set this to no if you have an old BIND server using 
-you as a forwarder that does not understand negative answers which contain 
-both SOA and NS records or you have an old version of sendmail.  The correct 
-fix is to upgrade the broken server or sendmail.  The default is 
-.Li no .
-
-.It Ic use-id-pool
-If
-.Li yes,
-the server will keep track of its own outstanding query ID's to avoid duplication
-and increase randomness.  This will result in 128KB more memory being consumed 
-by the server.  The default is
-.Li no .
-
-.It Ic treat-cr-as-space
-If 
-.Li yes, 
-the server will treat CR characters the same way it treats a space
-or tab.  This may be necessary when loading zone files on a UNIX system
-that were generated on an NT or DOS machine.  The default is 
-.Li no .
-
-
-.El
-
-.Ss Also-Notify
-
-.Ic also-notify
-
-Defines a global list of IP addresses that also get sent NOTIFY messages 
-whenever a fresh copy of the zone is loaded. This helps to ensure that copies of 
-the zones will quickly converge on ``stealth'' servers.  If an 
-.Ic also-notify 
-list is given in a 
-.Ic zone 
-statement, it will override the 
-.Ic options also-notify 
-statement. When a 
-.Ic zone notify 
-statement is set to 
-.Ic no ,
-the IP addresses in 
-the global 
-.Ic also-notify
-list will not get sent NOTIFY messages for that zone. 
-The default is the empty list (no global notification list). 
-
-.Ss Forwarding
-
-.Pp
-The forwarding facility can be used to create a large site-wide
-cache on a few servers, reducing traffic over links to external
-nameservers.  It can also be used to allow queries by servers that do
-not have direct access to the Internet, but wish to look up exterior
-names anyway.  Forwarding occurs only on those queries for which the
-server is not authoritative and does not have the answer in its cache.
-
-.Bl -tag -width 1
-.It Ic forward
-This option is only meaningful if the
-.Ic forwarders
-list is
-not empty.  A value of
-.Li first ,
-the default, causes the
-server to query the forwarders first, and if that doesn't answer the
-question the server will then look for the answer itself.  If
-.Li only
-is specified, the server will only query the forwarders.
-
-.It Ic forwarders
-Specifies the IP addresses to be used for forwarding.  The default is the
-empty list (no forwarding).
-.El
-
-.Pp
-Forwarding can also be configured on a per-zone basis, allowing for
-the global forwarding options to be overridden in a variety of ways.
-You can set particular zones to use different forwarders, or have
-different
-.Ic forward only/first
-behavior, or to not forward
-at all.  See
-.Sx THE ZONE STATEMENT
-section for more information.
-
-.Pp
-Future versions of BIND 8 will provide a more powerful forwarding
-system.  The syntax described above will continue to be supported.
-
-.Ss Name Checking
-
-The server can check domain names based upon their expected client contexts.
-For example, a domain name used as a hostname can be checked for compliance
-with the RFCs defining valid hostnames.
-
-.Pp
-Three checking methods are available:
-
-.Bl -tag -width 1
-.It Ic ignore
-No checking is done.
-
-.It Ic warn
-Names are checked against their expected client contexts.  Invalid names are
-logged, but processing continues normally.
-
-.It Ic fail
-Names are checked against their expected client contexts.  Invalid names are
-logged, and the offending data is rejected.
-.El
-
-.Pp
-The server can check names three areas: master zone files, slave
-zone files, and in responses to queries the server has initiated.  If
-.Ic check-names response fail
-has been specified, and
-answering the client's question would require sending an invalid name
-to the client, the server will send a
-.Dv REFUSED
-response code to the client.
-
-.Pp
-The defaults are:
-
-.Bd -literal
-    check-names master fail;
-    check-names slave warn;
-    check-names response ignore;
-.Ed
-
-.Pp
-.Ic check-names
-may also be specified in the
-.Ic zone
-statement, in which case it overrides the
-.Ic options check-names
-statement.  When used in a
-.Ic zone
-statement, the area is not specified (because it can be deduced from
-the zone type).
-
-.Ss Access Control
-
-.Pp
-Access to the server can be restricted based on the IP address of the
-requesting system or via shared secret keys.  See
-.Sx ADDRESS MATCH LISTS
-for details on how to specify access criteria.
-
-.Bl -tag -width 1
-.It Ic allow-query
-Specifies which hosts are allowed to ask ordinary questions.
-.Ic allow-query
-may also be specified in the
-.Ic zone
-statement, in which case it overrides the
-.Ic options allow-query
-statement.  If not specified, the default is
-
-.Bl -tag -width 1 
-.It Ic allow-recursion
-Specifies which hosts are allowed to ask recursive questions.
-.Ic allow-recursion
-may also be specified in the
-.Ic zone
-statement, in which case it overrides the
-.Ic options allow-recursion 
-statement.  If not specified, the default is to allow recursive queries 
-from all hosts.
-
-.It Ic allow-transfer
-Specifies which hosts are allowed to receive zone transfers from the
-server.
-.Ic allow-transfer
-may also be specified in the
-.Ic zone
-statement, in which case it overrides the
-.Ic options allow-transfer
-statement.  If not specified, the default
-is to allow transfers from all hosts.
-
-.It Ic blackhole
-Specifies a list of addresses that the server will not accept queries from
-or use to resolve a query.  Queries from these addresses will not be
-responded to.
-.El
-
-.Ss Interfaces
-
-.Pp
-The interfaces and ports that the server will answer queries from may
-be specified using the
-.Ic listen-on
-option.
-.Ic listen-on
-takes an optional port, and an address match list.
-The server will listen on all interfaces allowed by the address match
-list.  If a port is not specified, port 53 will be used.
-
-.Pp
-Multiple
-.Ic listen-on
-statements are allowed.  For example,
-
-.Bd -literal
-    listen-on { 5.6.7.8; };
-    listen-on port 1234 { !1.2.3.4; 1.2/16; };
-.Ed
-
-will enable the nameserver on port 53 for the IP address 5.6.7.8, and
-on port 1234 of an address on the machine in net 1.2 that is not
-1.2.3.4.
-
-.Pp
-If no
-.Ic listen-on
-is specified, the server will listen on port
-53 on all interfaces.
-
-.Ss Query Address
-
-.Pp
-If the server doesn't know the answer to a question, it will query
-other nameservers.
-.Ic query-source
-specifies the address and port used for such queries.  If
-.Ic address
-is
-.Li *
-or is omitted, a wildcard IP address
-(
-.Dv INADDR_ANY )
-will be used.  If
-.Va port
-is
-.Li *
-or is omitted, a random unprivileged port will be used.
-The default is
-.Dl query-source address * port *;
-
-.Pp
-Note:
-.Ic query-source
-currently applies only to UDP queries;
-TCP queries always use a wildcard IP address and a random unprivileged
-port.
-
-.Ss Zone Transfers
-
-.Bl -tag -width 1
-.It Ic max-transfer-time-in
-Inbound zone transfers (
-.Nm named-xfer
-processes) running
-longer than this many minutes will be terminated.
-The default is 120 minutes (2 hours).
-
-.It Ic transfer-format
-The server supports two zone transfer methods.
-.Li one-answer
-uses one DNS message per resource record
-transferred.
-.Li many-answers
-packs as many resource records
-as possible into a message.
-.Li many-answers
-is more efficient, but is only known to be understood by BIND 8.1 and
-patched versions of BIND 4.9.5.  The default is
-.Li one-answer .
-.Ic transfer-format
-may be overridden on a per-server basis by using the
-.Ic server
-statement.
-
-.It Ic transfers-in
-The maximum number of inbound zone transfers that can be running
-concurrently.  The default value is 10.  Increasing
-.Ic transfers-in
-may speed up the convergence of slave zones,
-but it also may increase the load on the local system.
-
-.It Ic transfers-out
-This option will be used in the future to limit the number of
-concurrent outbound zone transfers.  It is checked for syntax, but is
-otherwise ignored.
-
-.It Ic transfers-per-ns
-The maximum number of inbound zone transfers (
-.Nm named-xfer
-processes) that can be concurrently transferring from a given remote
-nameserver.  The default value is 2.  Increasing
-.Ic transfers-per-ns
-may speed up the convergence of slave zones, but it also may increase
-the load on the remote nameserver.
-.Ic transfers-per-ns
-may be overridden on a per-server basis by using the
-.Ic transfers
-phrase of the
-.Ic server
-statement.
-
-.It Ic transfer-source
-.Nm transfer-source
-determines which local address will be bound to the TCP connection used to fetch all zones
-transferred inbound by the server.  If not set, it defaults to a system controlled value which will usually be the address of the interface ``closest to`` the remote end.  This
-address must appear in the remote end's 
-.Nm allow-transfer
-option for the zones being transferred, if one is specified.  This statement sets the
-.Nm transfer-source
-for all zones, but can be overriden on a per-zone basis by includinga 
-.Nm transfer-source
-statement within the zone block in the configuration file.
-.El
-
-.Ss Resource Limits
-
-.Pp
-The server's usage of many system resources can be limited.  Some
-operating systems don't support some of the limits.  On such systems,
-a warning will be issued if the unsupported limit is used.  Some
-operating systems don't support limiting resources, and on these systems
-a
-.D1 cannot set resource limits on this system
-message will
-be logged.
-
-.Pp
-Scaled values are allowed when specifying resource limits.  For
-example,
-.Li 1G
-can be used instead of
-.Li 1073741824
-to specify a limit of one gigabyte.
-.Li unlimited
-requests unlimited use, or the maximum
-available amount.
-.Li default
-uses the limit that was in
-force when the server was started.
-See the definition of
-.Va size_spec
-in the
-.Sx DOCUMENTATION DEFINITIONS
-section for more details.
-
-.Bl -tag -width 1
-.It Ic coresize
-The maximum size of a core dump.  The default value is
-.Li default .
-
-.It Ic datasize
-The maximum amount of data memory the server may use.  The default
-value is
-.Li default .
-
-.It Ic files
-The maximum number of files the server may have open concurrently.
-The default value is
-.Li unlimited .
-Note that on some operating systems the server cannot set an unlimited
-value and cannot determine the maximum number of open files the kernel
-can support.  On such systems, choosing
-.Li unlimited
-will cause the server to use
-the larger of the
-.Va rlim_max
-from
-.Fn getrlimit RLIMIT_NOFILE
-and the value returned by
-.Fn sysconf _SC_OPEN_MAX .
-If the
-actual kernel limit is larger than this value, use
-.Ic limit files
-to specify the limit explicitly.
-
-.It Ic max-ixfr-log-size
-The
-.Li max-ixfr-log-size 
-will be used in a future release of the server to limit the size of the transaction
-log kept for Incremental Zone Transfer.
-
-.It Ic stacksize
-The maximum amount of stack memory the server may use.  The default value is
-.Li default .
-.El
-
-.Ss Periodic Task Intervals
-
-.Bl -tag -width 1
-.It Ic cleaning-interval
-The server will remove expired resource records from the cache every
-
-.Ic cleaning-interval
-minutes.  The default is 60 minutes.  If set
-to 0, no periodic cleaning will occur.
-
-.It Ic heartbeat-interval
-The server will perform zone maintenance tasks for all zones marked
-.Ic dialup yes
-whenever this interval expires.
-The default is 60 minutes. Reasonable values are up to 1 day (1440 minutes).
-If set to 0, no zone maintenance for these zones will occur.
-
-.It Ic interface-interval
-The server will scan the network interface list every
-.Ic interface-interval
-minutes.  The default is 60 minutes.
-If set to 0, interface scanning will only occur when the configuration
-file is loaded.  After the scan, listeners will be started on any new
-interfaces (provided they are allowed by the
-.Ic listen-on
-configuration).  Listeners on interfaces that have gone away will be
-cleaned up.
-
-.It Ic statistics-interval
-Nameserver statistics will be logged every
-.Ic statistics-interval
-minutes.  The default is 60.  If set to 0, no statistics will be logged.
-.El
-
-.Ss Topology
-
-.Pp
-All other things being equal, when the server chooses a nameserver
-to query from a list of nameservers, it prefers the one that is
-topologically closest to itself.  The
-.Ic topology
-statement takes an address match list and interprets it in a special way.
-Each top-level list element is assigned a distance.
-Non-negated elements get a distance based on
-their position in the list, where the closer the match is to the start
-of the list, the shorter the distance is between it and the server.  A
-negated match will be assigned the maximum distance from the server.
-If there is no match, the address will get a distance which is further
-than any non-negated list element, and closer than any negated
-element.  For example,
-
-.Bd -literal
-    topology {
-        10/8;
-        !1.2.3/24;
-        { 1.2/16; 3/8; };
-    };
-.Ed
-
-will prefer servers on network 10 the most, followed by hosts on
-network 1.2.0.0 (netmask 255.255.0.0) and network 3, with the exception
-of hosts on network 1.2.3 (netmask 255.255.255.0), which is preferred least
-of all.
-
-.Pp
-The default topology is
-.Dl topology { localhost; localnets; };
-
-.Ss Resource Record sorting
-  
-.Pp 
-When returning multiple RRs, the nameserver will normally return them in
-.Ic Round Robin ,
-i.e. after each request, the first RR is put to the end of the list.
-As the order of RRs is not defined, this should not cause any problems.
-
-The client resolver code should re-arrange the RRs as appropriate, i.e. using
-any addresses on the local net in preference to other addresses. However, not all
-resolvers can do this, or are not correctly configured. 
-
-When a client is using a local server, the sorting can be performed in the server,
-based on the client's address. This only requires configuring the nameservers,
-not all the clients. 
-
-The 
-.Ic sortlist
-statement takes an address match list and interprets it even more
-specially than the 
-.Ictopology 
-statement does. 
-
-Each top level statement in the sortlist must itself be an explicit address match
-list with one or two elements. The first element (which may be an IP address,
-an IP prefix, an ACL name or nested address match list) of each top level list is
-checked against the source address of the query until a match is found. 
-
-Once the source address of the query has been matched, if the top level
-statement contains only one element, the actual primitive element that
-matched the source address is used to select the address in the response to
-move to the beginning of the response. If the statement is a list of two elements,
-the second element is treated like the address match list in a topology
-statement. Each top level element is assigned a distance and the address in the
-response with the minimum distance is moved to the beginning of the response.
-
-In the following example, any queries received from any of the addresses of the
-host itself will get responses preferring addresses on any of the locally
-connected networks. Next most preferred are addresses on the 192.168.1/24
-network, and after that either the 192.168.2/24 or 192.168.3/24 network with no
-preference shown between these two networks. Queries received from a host on
-the 192.168.1/24 network will prefer other addresses on that network to the
-192.168.2/24 and 192.168.3/24 networks. Queries received from a host on the
-192.168.4/24 or the 192.168.5/24 network will only prefer other addresses on
-their directly connected networks. 
-
-.Bd -literal
-sortlist {
-           { localhost;         // IF   the local host
-             { localnets;       // THEN first fit on the
-               192.168.1/24;    //      following nets
-               { 192,168.2/24; 192.168.3/24; }; }; };
-           { 192.168.1/24;      // IF   on class C 192.168.1
-             { 192.168.1/24;    // THEN use .1, or .2 or .3
-               { 192.168.2/24; 192.168.3/24; }; }; };
-           { 192.168.2/24;      // IF   on class C 192.168.2
-             { 192.168.2/24;    // THEN use .2, or .1 or .3
-               { 192.168.1/24; 192.168.3/24; }; }; };
-           { 192.168.3/24;      // IF   on class C 192.168.3
-             { 192.168.3/24;    // THEN use .3, or .1 or .2
-               { 192.168.1/24; 192.168.2/24; }; }; };
-           { { 192.168.4/24; 192.168.5/24; }; // if .4 or .5, prefer that net
-           };
-};
-.Ed
-
-The following example will give reasonable behaviour for the local host and
-hosts on directly connected networks. It is similar to the behavior of the
-address sort in BIND 4.9.x. Responses sent to queries from the local host will
-favor any of the directly connected networks. Responses sent to queries from
-any other hosts on a directly connected network will prefer addresses on that
-same network. Responses to other queries will not be sorted.
-
-.Bd -literal
-sortlist {
-            { localhost; localnets; };
-            { localnets; };
-};
-.Ed
-
-.Ss RRset Ordering
-
-.Pp
-When multiple records are returned in an answer it may be useful to configure
-the order the records are placed into the response. For example the records for
-a zone might be configured to always be returned in the order they are defined
-in the zone file. Or perhaps a random shuffle of the records as they are
-returned is wanted. The rrset-order statement permits configuration of the
-ordering made of the records in a multiple record response. The default, if no
-ordering is defined, is a cyclic ordering (round robin). 
-
-An 
-.Ic order_spec
-is defined as follows: 
-
-.Bd -literal
-  [ \fIclass class_name\fR ][ \fItype type_name\fR ][ \fIname\fR "FQDN" ] \fIorder\fR ordering
-.Ed
-
-If no class is specified, the default is 
-.Ic ANY .
-If no 
-.Li Ictype 
-is specified, the default is
-.Ic ANY . 
-If no name is specified, the default is "*". 
-
-The legal values for 
-.Ic ordering 
-are: 
-
-.Bd -literal
-.Ic fixed 
-     Records are returned in the order they are defined in the zone file. 
-.Ic random 
-     Records are returned in some random order. 
-.Ic cyclic 
-     Records are returned in a round-robin order. 
-
-For example: 
-
-    rrset-order {
-        class IN type A name "rc.vix.com" order random;
-        order cyclic;
-    };
-.Ed
-
-will cause any responses for type A records in class IN that have "rc.vix.com" as
-a suffix, to always be returned in random order. All other records are returned
-in cyclic order. 
-
-If multiple 
-.Ic rrset-order
-statements appear, they are not combined--the last one applies. 
-
-If no 
-.Ic rrset-order
-statement is specified, a default one of: 
-
-.Bd -literal
-    rrset-order { class ANY type ANY name "*" order cyclic ; };
-.Ed
-
-is used. 
-
-.Ss Tuning
-
-.Bl -tag -width 1
-.It Ic lame-ttl
-Sets the number of seconds to cache a lame server indication.  0 disables
-caching.  Default is 600 (10 minutes).  Maximum value is 1800 (30 minutes)
-.It Ic max-ncache-ttl
-To reduce network traffic and increase performance the server store negative
-answers.
-.Ic max-ncache-ttl
-is used to set a maximum retention time
-for these answers in the server is seconds.  The default
-.Ic max-ncache-ttl
-is 10800 seconds (3 hours).
-.Ic max-ncache-ttl
-cannot exceed the maximum retention time for ordinary (positive)
-answers (7 days) and will be silently truncated to 7 days if set to a
-value which is greater that 7 days.
-.It Ic min-roots
-The minimum number of root servers that is required for a request for the root
-servers to be accepted.  Default is 2.
-.El
-
-.Sh THE ZONE STATEMENT
-.Ss Syntax
-
-.Bd -literal
-zone \fIdomain_name\fR [ ( in | hs | hesiod | chaos ) ] {
-  type master;
-  file \fIpath_name\fR;
-  [ check-names ( warn | fail | ignore ); ]
-  [ allow-update { \fIaddress_match_list\fR }; ]
-  [ allow-query { \fIaddress_match_list\fR }; ]
-  [ allow-transfer { \fIaddress_match_list\fR }; ]
-  [ dialup \fIyes_or_no\fR; ]
-  [ notify \fIyes_or_no\fR; ]
-  [ also-notify { \fIip_addr\fR; [ \fIip_addr\fR; ... ] };
-  [ pubkey \fInumber\fR \fInumber\fR \fInumber\fR \fIstring\fR; ]
-};
-
-zone \fIdomain_name\fR [ ( in | hs | hesiod | chaos ) ] {
-  type ( slave | stub );
-  [ file \fIpath_name\fR; ]
-  masters [ port \fIip_port\fR ] { \fIip_addr\fR; [ \fIip_addr\fR; ... ] };
-  [ check-names ( warn | fail | ignore ); ]
-  [ allow-update { \fIaddress_match_list\fR }; ]
-  [ allow-query { \fIaddress_match_list\fR }; ]
-  [ allow-transfer { \fIaddress_match_list\fR }; ]
-  [ transfer-source \fIip_addr\fR; ]
-  [ max-transfer-time-in \fInumber\fR; ]
-  [ notify \fIyes_or_no\fR; ]
-  [ also-notify { \fIip_addr\fR; [ \fIip_addr\fR; ... ] };
-  [ pubkey \fInumber\fR \fInumber\fR \fInumber\fR \fIstring\fR; ]
-};
-
-zone \fIdomain_name\fR [ ( in | hs | hesiod | chaos ) ] {
-  type forward;
-  [ forward ( only | first ); ]
-  [ forwarders { [ \fIip_addr\fR ; [ \fIip_addr\fR ; ... ] ] }; ]
-  [ check-names ( warn | fail | ignore ); ]
-};
-
-zone \&".\&" [ ( in | hs | hesiod | chaos ) ] {
-  type hint;
-  file \fIpath_name\fR;
-  [ check-names ( warn | fail | ignore ); ]
-};
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic zone
-statement is used to define how information about particular DNS zones
-is managed by the server.  There are five different zone types.
-
-.Bl -tag -width 1
-.It Ic master
-The server has a master copy of the data for the zone and will be able
-to provide authoritative answers for it.
-
-.It Ic slave
-A
-.Ic slave
-zone is a replica of a master zone.  The
-.Ic masters
-list specifies one or more IP addresses that the slave contacts to
-update its copy of the zone.  If a
-.Ic port
-is specified then checks to see if the zone is current and zone transfers
-will be done to the port given. If
-.Ic file
-is specified, then the replica will be written to the named file.
-Use of the
-.Ic file
-clause is highly recommended, since it often speeds server startup
-and eliminates a needless waste of bandwidth.
-
-.It Ic stub
-A
-.Ic stub
-zone is like a slave zone, except that it replicates
-only the NS records of a master zone instead of the entire zone.
-
-.It Ic forward
-A
-.Ic forward
-zone is used to direct all queries in it to other servers, as described in
-.Sx THE OPTIONS STATEMENT
-section.  The specification of options in such a zone will override
-any global options declared in the
-.Ic options
-statement.
-
-.Pp
-If either no
-.Ic forwarders
-clause is present in the zone or an empty list for
-.Ic forwarders
-is given, then no forwarding will be done for the zone, cancelling the
-effects of any
-.Ic forwarders
-in the
-.Ic options
-statement.
-Thus if you want to use this type of zone to change only the behavior of
-the global
-.Ic forward
-option, and not the servers used, then you also need to respecify the
-global forwarders.
-
-.It Ic hint
-The initial set of root nameservers is specified using a
-.Ic hint
-zone.  When the server starts up, it uses the root hints
-to find a root nameserver and get the most recent list of root nameservers.
-.El
-
-.Pp
-Note: previous releases of BIND used the term
-.Ic primary
-for a master zone,
-.Ic secondary
-for a slave zone, and
-.Ic cache
-for a hint zone.
-
-.Ss Classes
-
-The zone's name may optionally be followed by a class.  If a class is not
-specified, class
-.Ic in
-(for "internet"), is assumed.  This is correct for the vast majority
-of cases.
-
-.Pp
-The
-.Ic hesiod
-class is for an information service from MIT's Project Athena.  It is
-used to share information about various systems databases, such as
-users, groups, printers and so on.  More information can be found at
-ftp://athena-dist.mit.edu/pub/ATHENA/usenix/athena_changes.PS.
-The keyword
-.Ic hs
-is a synonym for
-.Ic hesiod .
-
-.Pp
-Another MIT development was CHAOSnet, a LAN protocol created in the
-mid-1970s.  It is still sometimes seen on LISP stations and other
-hardware in the AI community, and zone data for it can be specified
-with the
-.Ic chaos
-class.
-
-.Ss Options
-
-.Bl -tag -width 1
-.It Ic check-names
-See the subsection on
-.Sx Name Checking
-in
-.Sx THE OPTIONS STATEMENT .
-
-.It Ic allow-query
-See the description of
-.Ic allow-query
-in the
-.Sx Access Control
-subsection of
-.Sx THE OPTIONS STATEMENT .
-
-.It Ic allow-update
-Specifies which hosts are allowed to submit Dynamic DNS updates to the
-server.  The default is to deny updates from all hosts.
-
-.It Ic allow-transfer
-See the description of
-.Ic allow-transfer
-in the
-.Sx Access Control
-subsection of
-.Sx THE OPTIONS STATEMENT .
-
-.It Ic transfer-source
-.Ic transfer-source
-determines which local address will be bound to the TCP connection
-used to fetch this zone.  If not set, it defaults to a system
-controlled value which will usually be the address of the interface
-``closest to'' the remote end.  This address must appear in the remote end's
-.Ic allow-transfer
-option for this zone if one is specified.
-
-.It Ic max-transfer-time-in
-See the description of
-.Ic max-transfer-time-in
-in the
-.Sx Zone Transfers
-subsection of
-.Sx THE OPTIONS STATEMENT .
-
-.It Ic dialup
-See the description of
-.Ic dialup
-in the
-.Sx Boolean Options
-subsection of
-.Sx THE OPTIONS STATEMENT .
-
-.It Ic notify
-See the description of
-.Sx notify
-in the
-.Sx Boolean Options
-subsection of the
-.Sx THE OPTIONS STATEMENT .
-
-.It Ic also-notify
-.Ic also-notify
-is only meaningful if
-.Ic notify
-is active for this zone.
-The set of machines that will receive a DNS NOTIFY message for this
-zone is made up of all the listed nameservers for the zone (other than
-the primary master) plus any IP addresses specified with
-.Ic also-notify .
-.Ic also-notify
-is not meaningful for
-.Ic stub
-zones.  The default is the empty list.
-
-.It Ic forward
-.Ic forward
-is only meaningful if the zone has a
-.Ic forwarders
-list. The
-.Ic only
-value causes the lookup to fail after trying the
-.Ic forwarders
-and getting no answer, while
-.Ic first
-would allow a normal lookup to be tried.
-
-.It Ic forwarders
-The
-.Ic forwarders
-option in a zone is used to override the list of global forwarders.
-If it is not specified in a zone of type
-.Ic forward ,
-.Em no
-forwarding is done for the zone; the global options are not used.
-
-.It Ic pubkey
-The DNSSEC flags, protocol, and algorithm are specified, as well as a base-64
-encoded string representing the key.
-.El
-
-.Sh THE ACL STATEMENT
-.Ss Syntax
-
-.Bd -literal
-acl \fIname\fR {
-  \fIaddress_match_list\fR
-};
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic acl
-statement creates a named address match list.
-It gets its name from a primary use of address match lists:  Access
-Control Lists (ACLs).
-
-.Pp
-Note that an address match list's name must be defined with
-.Ic acl
-before it can be used elsewhere; no forward
-references are allowed.
-
-.Pp
-The following ACLs are built-in:
-
-.Bl -tag -width 1
-.It Ic any
-Allows all hosts.
-.It Ic none
-Denies all hosts.
-.It Ic localhost
-Allows the IP addresses of all interfaces on the system.
-.It Ic localnets
-Allows any host on a network for which the system has an interface.
-.El
-
-.Sh THE KEY STATEMENT
-.Ss Syntax
-
-.Bd -literal
-key \fIkey_id\fR {
-  algorithm \fIalgorithm_id\fR;
-  secret \fIsecret_string\fR;
-};
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic key
-statement defines a key ID which can be used in a
-.Ic server
-statement to associate a method of authentication with a particular
-name server that is more rigorous than simple IP address matching.
-A key ID must be created with the
-.Ic key
-statement before it can be used in a
-.Ic server
-definition or an address match list.
-
-.Pp
-The
-.Va algorithm_id
-is a string that specifies a
-security/authentication algorithm.
-.Va secret_string
-is the secret to be used by the algorithm,
-and is treated as a base-64 encoded string.
-It should go without saying, but probably can't,
-that if you have
-.Va secret_string 's
-in your
-.Pa named.conf ,
-then it should not be readable by anyone but the superuser.
-
-.Sh THE TRUSTED-KEYS STATEMENT
-.Ss Syntax
-
-.Bd -literal
-trusted-keys {
-  [ \fIdomain_name\fR \fIflags\fR \fIprotocol\fR \fIalgorithm\fR \fIkey\fR; ]
-};
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic trusted-keys
-statement is for use with DNSSEC-style security, originally specified
-in RFC 2065.  DNSSEC is meant to
-provide three distinct services: key distribution, data origin
-authentication, and transaction and request authentication.  A
-complete description of DNSSEC and its use is beyond the scope of this
-document, and readers interested in more information should start with
-RFC 2065 and then continue with the Internet Drafts available at
-http://www.ietf.org/ids.by.wg/dnssec.html.
-
-.Pp
-Each trusted key is associated with a domain name.  Its attributes are
-the non-negative integral
-.Va flags ,
-.Va protocol ,
-and
-.Va algorithm ,
-as well as a base-64 encoded string representing the
-.Va key .
-
-.Pp
-Any number of trusted keys can be specified.
-
-.Sh THE SERVER STATEMENT
-.Ss Syntax
-
-.Bd -literal
-server \fIip_addr\fR {
-  [ bogus \fIyes_or_no\fR; ]
-  [ transfers \fInumber\fR; ]
-  [ transfer-format ( one-answer | many-answers ); ]
-  [ keys { \fIkey_id\fR [ \fIkey_id\fR ... ] }; ]
-};
-.Ed
-
-.Ss Definition and Usage
-
-The server statement defines the characteristics to be
-associated with a remote name server.
-
-.Pp
-If you discover that a server is giving out bad data, marking it as
-.Ic bogus
-will prevent further queries to it.  The default value of
-.Ic bogus
-is
-.Li no .
-
-.Pp
-The server supports two zone transfer methods.  The first,
-.Ic one-answer ,
-uses one DNS message per resource record transferred.
-.Ic many-answers
-packs as many resource records as possible into a message.
-.Ic many-answers
-is more efficient, but is only known to be understood by BIND 8.1 and
-patched versions of BIND 4.9.5.  You can specify which method to use
-for a server with the
-.Ic transfer-format
-option.  If
-.Ic transfer-format
-is not specified, the
-.Ic transfer-format
-specified by the
-.Ic options
-statement will be used.
-
-.Pp
-The
-.Ic transfers
-will be used in a future release of the server to limit the number of
-concurrent in-bound zone transfers from the specified server.  It is
-checked for syntax but is otherwise ignored.
-
-.Pp
-The
-.Ic keys
-clause is used to identify a 
-.Va key_id
-defined by the
-.Ic key
-statement, to be used for transaction security when talking to the
-remote server.
-The
-.Ic key
-statememnt must come before the
-.Ic server
-statement that references it.
-
-.Pp
-The
-.Ic keys
-statement is intended for future use by the
-server.  It is checked for syntax but is otherwise ignored.
-
-.Sh THE CONTROLS STATEMENT
-.Ss Syntax
-
-.Bd -literal
-controls {
-  [ inet \fIip_addr\fR
-    port \fIip_port\fR
-    allow { \fIaddress_match_list\fR; }; ]
-  [ unix \fIpath_name\fR
-    perm \fInumber\fR
-    owner \fInumber\fR
-    group \fInumber\fR; ]
-};
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic controls
-statement declares control channels to be used by system
-administrators to affect the operation of the local name server.
-These control channels are used by the
-.Nm ndc
-utility to send commands
-to and retrieve non-DNS results from a name server.
-
-.Pp
-A
-.Ic unix
-control channel is a FIFO in the file system, and access to it is
-controlled by normal file system permissions.  It is created by
-.Nm named
-with the specified file mode bits (see
-.Xr chmod 1 ) ,
-user and group owner.  Note that, unlike
-.Nm chmod ,
-the mode bits specified for
-.Ic perm
-will normally have a leading
-.Li 0
-so the number is interpreted as octal.  Also note that the user and
-group ownership specified as
-.Ic owner
-and
-.Ic group
-must be given as numbers, not names.
-It is recommended that the
-permissions be restricted to administrative personnel only, or else any
-user on the system might be able to manage the local name server.
-
-.Pp
-An
-.Ic inet
-control channel is a TCP/IP socket accessible to the Internet, created
-at the specified
-.Va ip_port
-on the specified
-.Va ip_addr .
-Modern
-.Nm telnet
-clients are capable of speaking directly to these
-sockets, and the control protocol is ARPAnet-style text.
-It is recommended that 127.0.0.1 be the only
-.Va ip_addr
-used, and this only if you trust all non-privileged users on the local
-host to manage your name server.
-
-.Sh THE INCLUDE STATEMENT
-.Ss Syntax
-
-.Bd -literal
-include \fIpath_name\fR;
-.Ed
-
-.Ss Definition and Usage
-
-The
-.Ic include
-statement inserts the specified file at the point that the
-.Ic include
-statement is encountered.  It cannot be used within another statement,
-though, so a line such as
-.Dl acl internal_hosts { include "internal_hosts.acl"; };
-is not allowed.
-
-.Pp
-Use
-.Ic include
-to break the configuration up into easily-managed chunks.
-For example:
-
-.Bd -literal
-include "/etc/security/keys.bind";
-include "/etc/acls.bind";
-.Ed
-
-could be used at the top of a BIND configuration file in order to
-include any ACL or key information.
-
-.Pp
-Be careful not to type
-``#include'', like you would in a C program, because
-``#'' is used to start a comment.
-
-.Sh EXAMPLES
-
-The simplest configuration file that is still realistically useful is
-one which simply defines a hint zone that has a full path to the root
-servers file.
-.Bd -literal
-zone \&".\&" in {
-        type hint;
-        file \&"/var/named/root.cache\&";
-};
-.Ed
-
-Here's a more typical real-world example.
-
-.Bd -literal
-/*
- * A simple BIND 8 configuration
- */
-
-logging {
-	category lame-servers { null; };
-	category cname { null; };
-};
-
-options {
-	directory \&"/var/named\&";
-};
-
-controls {
-	inet * port 52 allow { any; };			// a bad idea
-	unix \&"/var/run/ndc\&" perm 0600 owner 0 group 0;	// the default
-};
-
-zone \&"isc.org\&" in {
-	type master;
-	file \&"master/isc.org\&";
-};
-
-zone \&"vix.com\&" in {
-	type slave;
-	file \&"slave/vix.com\&";
-	masters { 10.0.0.53; };
-};
-
-zone \&"0.0.127.in-addr.arpa\&" in {
-	type master;
-	file \&"master/127.0.0\&";
-};
-
-zone \&".\&" in {
-	type hint;
-	file \&"root.cache\&";
-};
-.Ed
-
-.Sh FILES
-.Bl -tag -width 1 -compact
-.It Pa /etc/named.conf
-The BIND 8
-.Nm named
-configuration file.
-.El
-
-.Sh SEE ALSO
-.Xr named 8 ,
-.Xr ndc 8
diff --git a/contrib/bind/doc/man/ndc.8 b/contrib/bind/doc/man/ndc.8
deleted file mode 100644
index a4645e6fa3938..0000000000000
--- a/contrib/bind/doc/man/ndc.8
+++ /dev/null
@@ -1,133 +0,0 @@
-.\" Copyright (c) 1998,1999 by Internet Software Consortium
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\" ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\" CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\"
-.Dd December 31, 1998
-.Dt @INDOT_U@NDC @SYS_OPS_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm ndc
-.Nd name daemon control program
-.Sh SYNOPSIS
-.Nm ndc
-.Op Fl c Ar channel
-.Op Fl l Ar localsock
-.Op Fl p Ar pidfile
-.Op Fl d
-.Op Fl q
-.Op Fl s
-.Op Fl t
-.Op Ar command
-.Sh DESCRIPTION
-This command allows the system administrator to control the operation
-of a name server.  If no
-.Ar command
-is given,
-.Ic ndc
-will prompt for commands until it reads EOF.
-.Pp
-Options are:
-.Bl -tag -width Fl
-.It Fl c Ar channel
-Specifies the rendezvous point for the control channel.  The default is
-.Pa /var/run/ndc
-(a UNIX domain socket which is also the server's default control channel).
-If the desired control channel is a TCP/IP socket, then the format of the
-.Ar channel
-argument is
-.Sy ipaddr/port
-(for example,
-.Sy 127.0.0.1/54
-would be TCP port 54 on the local host.)
-.It Fl l Ar localsock
-This option will
-.Xr bind 2
-the client side of the control channel to a specific address.  Servers can
-be configured to reject connections which do not come from specific addresses.
-The format is the same as for
-.Ar channel
-(see above).
-.It Fl p Ar pidfile
-For backward compatibility with older name servers,
-.Ic ndc
-is able to use UNIX signals for control communications.  This capability is
-optional in modern name servers and will disappear altogether at some future
-time.  Note that the available
-.Ar command
-set is narrower when the signal interface is used.  A likely
-.Ar pidfile
-argument would be something like
-.Pa /var/run/named.pid .
-.It Fl d
-Turns on debugging output, which is of interest mainly to developers.
-.It Fl q
-Suppresses prompts and result text.
-.It Fl s
-Suppresses nonfatal error announcements.
-.It Fl t
-Turns on protocol and system tracing, useful in installation debugging.
-.El
-.Sh COMMANDS
-Several commands are built into
-.Ic ndc ,
-but the full set of commands supported by the name server is dynamic and
-should be discovered using the
-.Ar help
-command (see below).  Builtin commands are:
-.Bl -tag -width Fl
-.It Ar /help
-Provides help for builtin commands.
-.It Ar /exit
-Exit from
-.Ic ndc
-command interpreter.
-.It Ar /trace
-Toggle tracing (see
-.Fl -t
-description above).
-.It Ar /debug
-Toggle debugging (see
-.Fl d
-description above).
-.It Ar /quiet
-Toggle quietude (see
-.Fl q
-description above).
-.It Ar /silent
-Toggle silence (see
-.Fl s
-description above).
-.El
-.Sh NOTES
-If running in
-.Ar pidfile
-mode, any arguments to
-.Ar start
-and
-.Ar restart
-commands are passed to the new
-.Ic @INDOT@named
-on its command line.  If running in
-.Ar channel
-mode, there is no
-.Ar start
-command and the
-.Ar restart
-command just tells the name server to
-.Xr execvp 2
-itself.
-.Sh AUTHOR
-Paul Vixie (Internet Software Consortium)
-.Sh SEE ALSO
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
diff --git a/contrib/bind/doc/man/nslookup.8 b/contrib/bind/doc/man/nslookup.8
deleted file mode 100644
index 5ba185009f50f..0000000000000
--- a/contrib/bind/doc/man/nslookup.8
+++ /dev/null
@@ -1,534 +0,0 @@
-.\"
-.\" ++Copyright++ 1985, 1989
-.\" -
-.\" Copyright (c) 1985, 1989
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)nslookup.8	5.3 (Berkeley) 6/24/90
-.\"
-.Dd June 24, 1990
-.Dt NSLOOKUP @SYS_OPS_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm nslookup 
-.Nd query Internet name servers interactively
-.Sh SYNOPSIS
-.Nm nslookup
-.Op Fl option Ar ...
-.Op Ar host-to-find | Fl Op Ar server
-.Sh DESCRIPTION
-.Ic Nslookup
-is a program to query Internet domain name servers. 
-.Ic Nslookup 
-has two modes: interactive and non-interactive.
-Interactive mode allows the user to query name servers for
-information about various hosts and domains or to print a list of hosts 
-in a domain. 
-Non-interactive mode is used to print just the name and requested information
-for a host or domain.
-.Sh ARGUMENTS
-Interactive mode is entered in the following cases:
-.Bl -tag -width "a)  " 
-.It a)
-when no arguments are given (the default name server will be used),
-.It b)
-when the first argument is a hyphen (-) and the second argument
-is the host name or Internet address of a name server.
-.El
-.Pp
-Non-interactive mode is used when the name or Internet address 
-of the host to be looked up
-is given as the first argument. The optional second argument specifies
-the host name or address of a name server.
-.Pp
-The options listed under the 
-.Dq Li set 
-command below can be specified in
-the 
-.Pa .nslookuprc 
-file in the user's home directory if they are listed 
-one per line.  Options can also be specified
-on the command line if they precede the arguments and are prefixed with
-a hyphen.  For example, to change the default query type to host information,
-and the initial timeout to 10 seconds, type:
-.Bd -literal -offset indent
-	nslookup -query=hinfo  -timeout=10
-.Ed
-.Sh INTERACTIVE COMMANDS
-Commands may be interrupted at any time by typing a control-C.
-To exit, type a control-D 
-.Pq Dv EOF 
-or type 
-.Li exit .
-The command line length must be less than 256 characters.
-To treat a built-in command as a host name, 
-precede it with an escape character 
-.Pq .&\\ . 
-.Sy N.B.:  An unrecognized command will be interpreted as a host name.
-.Bl -tag -width "lserver" 
-.It Ar host Op Ar server
-Look up information for 
-.Ar host 
-using the current default server or using 
-.Ar server , 
-if specified.
-If 
-.Ar host 
-is an Internet address and the query type is 
-.Dv A 
-or 
-.Dv PTR , 
-the name of the host is returned.
-If 
-.Ar host 
-is a name and does not have a trailing period, the default 
-domain name is appended to the name.  (This behavior depends on the state of the
-.Ic set
-options 
-.Ic domain , srchlist , defname , 
-and 
-.Ic search . )
-.Pp
-To look up a host not in the current domain, append a period to 
-the name.
-.It Ic server Ar domain
-.It Ic lserver Ar domain
-Change the default server to 
-.Ar domain ; 
-.Ic lserver 
-uses the initial server to look up information about 
-.Ar domain ,
-while 
-.Ic server
-uses the current default server. 
-If an authoritative answer can't be found, the names of servers
-that might have the answer are returned.
-.It Ic root
-Changes the default server to the server for the root of the domain name space.
-Currently, the host 
-.Li ns.internic.net 
-is used.
-(This command is a synonym for 
-.Dq Ic lserver ns.internic.net . )
-The name of the root server can be changed with the 
-.Dq Ic set root 
-command.
-.It Xo Ic finger Op Ar name 
-.Op Ic > Ar filename
-.Xc
-.It Xo Ic finger Op Ar name 
-.Op Ic >> Ar filename
-.Xc
-Connects with the finger server on the current host. 
-The current host is defined when a previous lookup for a host
-was successful and returned address information (see the 
-.Dq Ic set querytype=A 
-command).
-The 
-.Ar name 
-is optional. 
-.Ic > 
-and 
-.Ic >> 
-can be used to redirect output in the usual manner.
-.It Xo Ic ls Op Ar option 
-.Ar domain Op Ic > Ar filename
-.Xc
-.It Xo Ic ls Op Ar option 
-.Ar domain Op Ic >> Ar filename
-.Xc
-List the information available for 
-.Ar domain , 
-optionally creating or appending to 
-.Ar filename .
-The default output contains host names and their Internet addresses. 
-.Ar Option 
-can be one of the following:
-.Bl -tag -width "-a  "
-.It Fl t Ar querytype
-lists all records of the specified type (see 
-.Ar querytype 
-below).
-.It Fl a
-lists aliases of hosts in the domain;
-synonym for 
-.Dq Fl t Dv CNAME .
-.It Fl d
-lists all records for the domain;
-synonym for 
-.Dq Fl t Dv ANY .
-.It Fl h
-lists CPU and operating system information for the domain;
-synonym for 
-.Dq Fl t Dv HINFO .
-.It Fl s
-lists well-known services of hosts in the domain;
-synonym for 
-.Dq Fl t Dv WKS .
-.El
-.Pp
-When output is directed to a file, hash marks are printed for every
-50 records received from the server.
-.It Ic view Ar filename
-Sorts and lists the output of previous 
-.Ic ls 
-command(s) with 
-.Xr more @CMD_EXT@ .
-.It Ic help
-.It Ic ?
-Prints a brief summary of commands.
-.It Ic exit
-Exits the program.
-.It Xo Ic set Ar keyword 
-.Ns Op = Ns Ar value
-.Xc
-This command is used to change state information that affects the lookups.
-Valid keywords are:
-.Bl -tag -width "class=v"
-.It Ic all
-Prints the current values of the frequently-used options to 
-.Ic set .
-Information about the  current default server and host is also printed.
-.It Ic class= Ns Ar value
-Change the query class to one of:
-.Bl -tag -width "HESIOD  "
-.It Dv IN
-the Internet class
-.It Dv CHAOS
-the Chaos class
-.It Dv HESIOD
-the MIT Athena Hesiod class
-.It Dv ANY
-wildcard (any of the above)
-.El
-.Pp
-The class specifies the protocol group of the information.
-.Pp
-(Default = 
-.Dv IN ; 
-abbreviation = 
-.Ic cl )
-.It Xo Op Ic no 
-.Ns Ic debug
-.Xc
-Turn debugging mode on.  A lot more information is printed about the
-packet sent to the server and the resulting answer.
-.Pp
-(Default = 
-.Ic nodebug ; 
-abbreviation = 
-.Xo Op Ic no
-.Ns Ic deb )
-.Xc
-.It Xo Op Ic no 
-.Ns Ic d2
-.Xc
-Turn exhaustive debugging mode on.
-Essentially all fields of every packet are printed.
-.Pp
-(Default = 
-.Ic nod2 )
-.It Ic domain= Ns Ar name
-Change the default domain name to 
-.Ar name . 
-The default domain name is appended to a lookup request depending on the
-state of the 
-.Ic defname 
-and 
-.Ic search 
-options.
-The domain search list contains the parents of the default domain if it has 
-at least two components in its name. 
-For example, if the default domain
-is CC.Berkeley.EDU, the search list is CC.Berkeley.EDU and Berkeley.EDU.
-Use the 
-.Dq Ic set srchlist 
-command to specify a different list.
-Use the 
-.Dq Ic set all 
-command to display the list.
-.Pp
-(Default = value from 
-.Xr hostname @CMD_EXT@ , 
-.Pa /etc/resolv.conf ,
-or 
-.Ev LOCALDOMAIN;
-abbreviation = 
-.Ic do )
-.It Ic srchlist= Ns Ar name1/name2/...
-Change the default domain name to 
-.Ar name1 
-and the domain search list
-to 
-.Ar name1 , name2 , 
-etc.  A maximum of 6 names separated by slashes (/)
-can be specified.
-For example,
-.Bd -literal -offset indent
-set srchlist=lcs.MIT.EDU/ai.MIT.EDU/MIT.EDU
-.Ed
-.Pp
-sets the domain to lcs.MIT.EDU and the search list to the three names.
-This command overrides the
-default domain name and search list of the 
-.Dq Ic set domain 
-command.
-Use the 
-.Dq Ic set all 
-command to display the list.
-.Pp
-(Default = value based on 
-.Xr hostname @CMD_EXT@ , 
-.Pa /etc/resolv.conf ,
-or 
-.Ev LOCALDOMAIN;
-abbreviation = 
-.Ic srchl )
-.It Xo Op Ic no
-.Ns Ic defname
-.Xc
-If set, append the default domain name to a single-component lookup request 
-(i.e., one that does not contain a period).
-.Pp
-(Default = 
-.Ic defname ; 
-abbreviation = 
-.Xo Op Ic no
-.Ns Ic defname )
-.Xc
-.It Xo Op Ic no 
-.Ns Ic search
-.Xc
-If the lookup request contains at least one period but 
-.Em doesn't 
-end with a trailing period, append the domain names in the domain search list
-to the request until an answer is received.
-.Pp
-(Default = 
-.Ic search ; 
-abbreviation = 
-.Xo Op Ic no 
-.Ns Ic sea )
-.Xc
-.It Ic port= Ns Ar value
-Change the default TCP/UDP name server port to 
-.Ar value .
-.Pp
-(Default = 53; 
-abbreviation = 
-.Ic \&po )
-.It Ic querytype= Ns Ar value
-.It Ic type= Ns Ar value
-Change the type of information query to one of:
-.Bl -tag -width "HINFO   "
-.It Dv A
-the host's Internet address.
-.It Dv CNAME
-the canonical name for an alias.
-.It Dv HINFO
-the host CPU and operating system type.
-.It Dv MINFO
-the mailbox or mail list information.
-.It Dv MX
-the mail exchanger.
-.It Dv NS
-the name server for the named zone.
-.It Dv PTR
-the host name if the query is an Internet address;
-otherwise, the pointer to other information.
-.It Dv SOA
-the domain's 
-.Dq start-of-authority 
-information.
-.It Dv TXT
-the text information.
-.It Dv UINFO
-the user information.
-.It Dv WKS
-the supported well-known services.
-.El
-.Pp
-Other types 
-.Pq Dv ANY, AXFR, MB, MD, MF, NULL 
-are described in the RFC-1035 document.
-.Pp
-(Default = 
-.Dv A ; 
-abbreviations = 
-.Ic q , ty )
-.It Xo Op Ic no
-.Ns Ic recurse
-.Xc
-Tell the name server to query other servers if it does not have the
-information.
-.Pp
-(Default = 
-.Ic recurse ; 
-abbreviation =
-.Xo Op Ic no
-.Ns Ic rec )
-.Xc
-.It Ic retry= Ns Ar number
-Set the number of retries to 
-.Ar number .
-When a reply to a request is not received within a certain 
-amount of time (changed with 
-.Dq Ic set timeout ) , 
-the timeout period is doubled and the request is resent. 
-The retry value controls how many times a request is resent before giving up.
-.Pp
-(Default = 4, abbreviation = 
-.Ic ret )
-.It Ic root= Ns Ar host
-Change the name of the root server to 
-.Ar host . 
-This affects the 
-.Dq Ic root 
-command. 
-.Pp
-(Default = 
-.Ic ns.internic.net. ;
-abbreviation = 
-.Ic ro )
-.It Ic timeout= Ns Ar number
-Change the initial timeout interval for waiting for a reply to 
-.Ar number 
-seconds. Each retry doubles the timeout period.
-.Pp
-(Default = 5 seconds; abbreviation = 
-.Ic ti )
-.It Xo Op Ic no
-.Ns Ic vc
-.Xc
-Always use a virtual circuit when sending requests to the server.
-.Pp
-(Default = 
-.Ic novc ; 
-abbreviation = 
-.Xo Op Ic no
-.Ns Ic v )
-.Xc
-.It Xo Op Ic no
-.Ns Ic ignoretc
-.Xc 
-Ignore packet truncation errors.
-.Pp
-(Default = 
-.Ic noignoretc ; 
-abbreviation = 
-.Xo Op Ic no
-.Ns Ic ig )
-.Xc 
-.El
-.El
-.Sh DIAGNOSTICS
-If the lookup request was not successful, an error message is printed.
-Possible errors are:
-.Bl -tag -width "Timed"
-.It Li Timed out
-The server did not respond to a request after a certain amount of
-time (changed with 
-.Dq Ic set timeout= Ns Ar value ) 
-and a certain number of retries (changed with 
-.Dq Ic set retry= Ns Ar value ) .
-.It Li \&No response from server
-No name server is running on the server machine.
-.It Li \&No records
-The server does not have resource records of the current query type for the
-host, although the host name is valid.
-The query type is specified with the 
-.Dq Ic set querytype 
-command.
-.It Li Non-existent domain
-The host or domain name does not exist.
-.It Li Connection refused
-.It Li Network is unreachable
-The connection to the name or finger server could not be made 
-at the current time.
-This error commonly occurs with 
-.Ic ls 
-and 
-.Ic finger 
-requests. 
-.It Li Server failure
-The name server found an internal inconsistency in its database
-and could not return a valid answer.
-.It Li Refused
-The name server refused to service the request.
-.It Li Format error
-The name server found that the request packet was not in the proper format.
-It may indicate an error in 
-.Nm nslookup .
-.El
-.Sh FILES
-.Bl -tag -width "/usr/share/misc/nslookup.helpXXX" -compact
-.It Pa /etc/resolv.conf
-initial domain name and name server addresses
-.It Pa $HOME/.nslookuprc
-user's initial options
-.It Pa /usr/share/misc/nslookup.help
-summary of commands
-.Sh ENVIRONMENT
-.Bl -tag -width "HOSTALIASESXXXX" -compact
-.It Ev HOSTALIASES
-file containing host aliases
-.It Ev LOCALDOMAIN
-overrides default domain
-.Sh SEE ALSO
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ ;
-RFC-1034,
-.Dq Domain Names - Concepts and Facilities ;
-RFC-1035,
-.Dq Domain Names - Implementation and Specification .
-.Sh AUTHOR
-Andrew Cherenson
diff --git a/contrib/bind/doc/man/nsupdate.8 b/contrib/bind/doc/man/nsupdate.8
deleted file mode 100644
index feaa64c083e64..0000000000000
--- a/contrib/bind/doc/man/nsupdate.8
+++ /dev/null
@@ -1,214 +0,0 @@
-.\" $Id: nsupdate.8,v 8.4 1999/10/17 06:26:18 cyarnell Exp $
-.\"
-.\"Copyright (c) 1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.Dd March 5, 1999
-.Dt NSUPDATE @SYS_OPS_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm nsupdate 
-.Nd update Internet name servers interactively
-.Sh SYNOPSIS
-.Nm nsupdate
-.Op Fl Ar k  keydir:keyname 
-.Op Fl Ar d
-.Op Fl Ar v
-.Op Ar filename
-.Sh DESCRIPTION
-.Ic Nsupdate
-is a program to update Internet domain name servers
-supporting dynamic update.
-.Ic Nsupdate
-uses the DNS resolver library to pass messages
-to a DNS server requesting the additional or deletion of
-DNS resource records (RRs).
-.Ic Nsupdate
-reads input from
-.Ar filename
-or standard input.
-.Sh ARGUMENTS
-.Bl -tag -width Fl
-.It Fl k
-Sign updates with TSIG.
-.It Fl d
-Debug mode.
-.It Fl v
-Virtual circuit - use TCP to communication with server.
-Default is UDP.
-.Sh INPUT FORMAT
-.Ic Nsupdate
-reads input records, one per line,
-each line contributing a resource record to an
-update request.
-All domain names used in a single update request
-must belong to the same DNS zone.
-A blank line causes the accumulated
-records to be formated into a single update request
-and transmitted to the zone's authoritative name servers.
-Additional records may follow,
-which are formed into additional,
-completely independent update requests.
-For the last request to be transmitted, a blank line
-must end the input.
-.Pp
-Records take one of two general forms.
-.Em Prerequisite
-records specify conditions that must be satisfied before
-the request will be processed.
-.Em Update
-records specify changes to be made to the DNS database.
-A update request consists of zero or more prerequisites
-and one or more updates.
-Each update request is processed atomically -
-all prerequisites must be satisfied, then all updates
-will be performed.
-.Pp
-.Ic Nsupdate
-understands the following input record formats:
-.Pp
-
-.Bl -ohang
-
-.It Ic prereq nxdomain Va domain-name
-Requires that no RR of any type exists with name
-.Va domain-name .
-
-.It Ic prereq yxdomain Va domain-name
-Requires that at least one RR named
-.Va domain-name
-must exist.
-
-.It Xo
-.Ic prereq nxrrset Va domain-name Op class
-.Va type
-.Xc
-Requires that no RR exists of the specified
-.Va type
-and
-.Va domain-name .
-
-.It Xo
-.Ic prereq yxrrset
-.Va domain-name Op class
-.Va type Op data...
-.Xc
-Requires that a RR exists of the specified
-.Va type
-and
-.Va domain-name .
-If
-.Va data
-is specified, it must match exactly.
-
-.It Xo
-.Ic update delete
-.Va domain-name Op class
-.Va Op type Op data...
-.Xc
-Deletes RRs named
-.Va domain-name .
-If
-.Va type
-(and possibly
-.Va data )
-is specified,
-only matching records will be deleted.
-
-.It Xo
-.Ic update add
-.Va domain-name ttl Op class
-.Va type data...
-.Xc
-Adds a new RR with specified
-.Va ttl , type ,
-and
-.Va data .
-
-.El
-
-.Sh EXAMPLES
-The following example illustrates the interactive use of
-.Ic nsupdate
-to change an IP address by deleting any existing A records
-for a domain name and then inserting a new one.
-Since no prerequisites are specified,
-the new record will be added even if
-there were no existing records to delete.
-Note the
-trailing blank line, required to process the request.
-.Bd -literal -offset indent
-$ nsupdate
-> update delete test.example.com A
-> update add test.example.com 3600 A 10.1.1.1
->
-
-.Ed
-.Pp
-In this example, a CNAME alias is added to the database
-only if there are no existing A or CNAME records for
-the domain name.
-.Bd -literal -offset indent
-$ nsupdate
-> prereq nxrrset www.example.com A
-> prereq nxrrset www.example.com CNAME
-> update add www.example.com 3600 CNAME test.example.com
->
-
-.Ed
-.Pp
-In this example, the nsupdate will be signed with the key "mykey", which
-is in the directory "/var/named/keys".
-.Bd -literal -offset indent
-$ nsupdate -k /var/named/keys:mykey
-> update add ftp.example.com 60 A 192.168.5.1
->
-
-.Ed
-
-.Sh DIAGNOSTICS
-.Bl -ohang
-
-.It Qq send error
-Typically indicates that the authoritative nameservers could not be reached
-
-.It Qq failed update packet
-Typically indicates that the nameserver has rejected the update,
-either because the nameserver doesn't support dynamic update,
-or due to an authentication failure
-
-.It Qq res_mkupdate: packet size = Va size
-(and no other messages)
-The update was successfully received and authenticated by the nameserver.
-The prerequisites, however, may have prevented the update from actually
-being performed.  The only way to determine if the update was performed
-is to use debug mode
-.Fl ( d )
-and examine the status field in the nameserver's reply.
-
-.Sh FILES
-.It Pa /etc/resolv.conf
-initial domain name and name server addresses
-.Sh SEE ALSO
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ ;
-RFC-1034,
-.Dq Domain Names - Concepts and Facilities ;
-RFC-1035,
-.Dq Domain Names - Implementation and Specification ;
-RFC-2136,
-Dynamic Updates in the Domain Name System.
-.Sh AUTHOR
-Brent Baccala
diff --git a/contrib/bind/doc/man/resolver.3 b/contrib/bind/doc/man/resolver.3
deleted file mode 100644
index 6ddfe11ddc791..0000000000000
--- a/contrib/bind/doc/man/resolver.3
+++ /dev/null
@@ -1,581 +0,0 @@
-.\" Copyright (c) 1985, 1995 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted provided
-.\" that: (1) source distributions retain this entire copyright notice and
-.\" comment, and (2) distributions including binaries display the following
-.\" acknowledgement:  ``This product includes software developed by the
-.\" University of California, Berkeley and its contributors'' in the
-.\" documentation or other materials provided with the distribution and in
-.\" all advertising materials mentioning features or use of this software.
-.\" Neither the name of the University nor the names of its contributors may
-.\" be used to endorse or promote products derived from this software without
-.\" specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
-.\" WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
-.\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)resolver.3	6.5 (Berkeley) 6/23/90
-.\"	$Id: resolver.3,v 8.11 1999/09/13 23:33:24 vixie Exp $
-.\"
-.Dd October 19, 1998
-.Dt RESOLVER @LIB_NETWORK_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm res_ninit ,
-.Nm res_nisourserver ,
-.Nm fp_resstat ,
-.Nm res_npquery ,
-.Nm res_hostalias ,
-.Nm res_nquery ,
-.Nm res_nsearch ,
-.Nm res_nquerydomain ,
-.Nm res_nmkquery ,
-.Nm res_nsend ,
-.Nm res_nupdate ,
-.Nm res_nmkupdate ,
-.Nm res_nclose ,
-.Nm res_nsendsigned ,
-.Nm res_nsendupdate ,
-.Nm res_findzonecut ,
-.Nm dn_comp ,
-.Nm dn_expand ,
-.Nm hstrerror ,
-.Nm res_init ,
-.Nm res_isourserver ,
-.Nm p_nquery ,
-.Mm p_query ,
-.Mm hostalias ,
-.Nm res_query ,
-.Nm res_search ,
-.Nm res_querydomain ,
-.Nm res_mkquery ,
-.Nm res_send ,
-.Nm res_update ,
-.Nm res_close ,
-.Nm herror
-.Nd resolver routines
-.Sh SYNOPSIS
-.Fd #include <sys/types.h>
-.Fd #include <netinet/in.h>
-.Fd #include <arpa/nameser.h>
-.Fd #include <resolv.h>
-.Fn res_ninit "res_state statp"
-.Fn res_nisourserver "const res_state statp" "const struct sockaddr_in *addr"
-.Fn fp_resstat "const res_state statp" "FILE *fp"
-.Fn res_npquery "const res_state statp" "const u_char *msg" "int msglen" "FILE *fp"
-.Fn res_hostalias "const res_state statp" "const char *name" "char *buf" "size_t buflen"
-.Fn res_nquery "res_state statp" "const char *dname" "int class" "int type" "u_char *answer" "int anslen"
-.Fn res_nsearch "res_state statp" "const char *dname" "int class" "int type" "u_char * answer" "int anslen"
-.Fn res_nquerydomain "res_state statp" "const char *name" "const char *domain" "int class" "int type" "u_char *answer" "int anslen"
-.Fn res_nmkquery "res_state statp, int op, const char *dname" "int class" "int type" "const u_char *data" "int datalen" "const u_char *newrr" "u_char *buf" "int buflen"
-.Fn res_nsend "res_state statp" "const u_char *msg" "int msglen" "u_char *answer" "int anslen"
-.Fn res_nupdate "res_state statp" "ns_updrec *rrecp_in"
-.Fn res_nmkupdate "res_state statp" "ns_updrec *rrecp_in" "u_char *buf" "int buflen"
-.Fn res_nclose "res_state statp"
-.Fn res_nsendsigned "res_state statp" "const u_char *msg" "int msglen" "ns_tsig_key *key" "u_char *answer" "int anslen"
-.Fn res_findzonecut "res_state statp" "const char *dname" "ns_class class" "int options" "char *zname" "size_t zsize" "struct in_addr *addrs" "int naddrs"
-.Fn res_nsendupdate "res_state statp" "ns_updrec *rrecp_in" "ns_tsig_key *key" "char *zname" "struct in_addr addr"
-.Fn dn_comp "const char *exp_dn" "u_char *comp_dn" "int length" "u_char **dnptrs, **lastdnptr"
-.Fn dn_expand "const u_char *msg, *eomorig, *comp_dn" "char *exp_dn" "int  length"
-.Fn hstrerror "int err"
-.Sh DEPRECATED
-.nr nS 1
-.Fd #include <sys/types.h>
-.Fd #include <netinet/in.h>
-.Fd #include <arpa/nameser.h>
-.Fd #include <resolv.h>
-.Fn res_init "void"
-.Fn res_isourserver "const struct sockaddr_in *addr"
-.Fn p_nquery "const u_char *msg" "int msglen" "FILE *fp"
-.Fn p_query "const u_char *msg" "FILE *fp"
-.Fn hostalias "const char *name"
-.Fn res_query "const char *dname" "int class, type" "u_char *answer" "int anslen"
-.Fn res_search "const char *dname" "int class, type" "u_char *answer" "int anslen"
-.Fn res_querydomain "const char *name" "const char *domain" "int class" "int type" "u_char *answer" "int anslen"
-.Fn res_mkquery "int op" "const char *dname, int class, type" "const char *data" "int datalen" "struct rrec *newrr" "u_char *buf" "int buflen"
-.Fn res_send "const u_char *msg" "int msglen" "u_char *answer" "int anslen"
-.Fn res_update "ns_updrec *rrecp_in"
-.Fn res_close "void"
-.Fn herror "const char *s"
-.Sh DESCRIPTION
-These routines are used for making, sending and interpreting
-query and reply messages with Internet domain name servers.
-.Pp
-State information is kept in
-.Fa statp
-and is used to control the behavior of these functions.
-.Fa statp
-should be set to all zeros prior to the first call to any of these functions.
-.Pp
-The functions
-.Fn res_init ,
-.Fn res_isourserver ,
-.Fn p_nquery ,
-.Fn p_query ,
-.Fn hostalias ,
-.Fn res_query ,
-.Fn res_search ,
-.Fn res_querydomain ,
-.Fn res_mkquery ,
-.Fn res_send ,
-.Fn res_update ,
-.Fn res_close
-and
-.Fn herror
-are deprecated and are supplied for compatability with old source
-code.
-They use global configuration and state information that is
-kept in the structure
-.Ft _res
-rather than that referenced through
-.Ft statp .
-.Pp
-Most of the values in 
-.Ft statp
-and
-.Ft _res
-are initialized on the first call to
-.Fn res_ninit
-/
-.Fn res_init
-to reasonable defaults and can be ignored.
-Options
-stored in
-.Ft statp->options
-/
-.Ft _res.options
-are defined in
-.Pa resolv.h
-and are as follows.
-Options are stored as a simple bit mask containing the bitwise 
-.Dq OR
-of the options enabled.
-.Bl -tag -width "RES_DEB"
-.It Dv RES_INIT
-True if the initial name server address and default domain name are
-initialized (i.e.,
-.Fn res_ninit
-/
-.Fn res_init
-has been called).
-.It Dv RES_DEBUG
-Print debugging messages.
-.It Dv RES_AAONLY
-Accept authoritative answers only.
-should continue until it finds an authoritative answer or finds an error.
-Currently this is not implemented.
-.It Dv RES_USEVC
-Use TCP connections for queries instead of UDP datagrams.
-.It Dv RES_STAYOPEN
-Used with 
-.Dv RES_USEVC 
-to keep the TCP connection open between queries.
-This is useful only in programs that regularly do many queries.
-UDP should be the normal mode used.
-.It Dv RES_IGNTC
-Ignore truncation errors, i.e., don't retry with TCP.
-.It Dv RES_RECURSE
-Set the recursion-desired bit in queries.
-This is the default.
-(\c
-.Fn res_nsend
-/
-.Fn res_send
-does not do iterative queries and expects the name server
-to handle recursion.)
-.It Dv RES_DEFNAMES
-If set,
-.Fn res_nsearch
-/
-.Fn res_search
-will append the default domain name to single-component names
-(those that do not contain a dot).
-This option is enabled by default.
-.It Dv RES_DNSRCH
-If this option is set,
-.Fn res_nsearch
-/
-.Fn res_search
-will search for host names in the current domain and in parent domains; see
-.Xr hostname @DESC_EXT@ .
-This is used by the standard host lookup routine
-.Xr gethostbyname @LIB_NETWORK_EXT@ .
-This option is enabled by default.
-.It Dv RES_NOALIASES
-This option turns off the user level aliasing feature controlled by
-the 
-.Ev HOSTALIASES 
-environment variable.
-Network daemons should set this option.
-.It Dv RES_USE_INET6
-This option causes 
-.Xr gethostbyname @LIB_NETWORK_EXT@
-to look for AAAA records before looking for A records if none are found.
-.It Dv RES_ROTATE
-This options causes the
-.Fn res_nsend
-/
-.Fn res_send
-to rotate the list of nameservers in
-.Fa statp->nsaddr_list
-/
-.Fa _res.nsaddr_list .
-.It Dv RES_KEEPTSIG
-This option causes
-.Fn res_nsendsigned
-to leave the message unchanged after TSIG verification; otherwise the TSIG
-record would be removed and the header updated.
-.El
-.Pp
-The
-.Fn res_ninit
-/
-.Fn res_init
-routine
-reads the configuration file (if any; see
-.Xr resolver @FORMAT_EXT@ )
-to get the default domain name, search list and
-the Internet address of the local name server(s).
-If no server is configured, the host running the resolver is tried.
-The current domain name is defined by the hostname
-if not specified in the configuration file;
-it can be overridden by the environment variable 
-.Ev LOCALDOMAIN .
-This environment variable may contain several blank-separated
-tokens if you wish to override the
-.Dq search list
-on a per-process basis.  This is similar to the
-.Ic search
-command in the configuration file.
-Another environment variable 
-.Pq Dq Ev RES_OPTIONS 
-can be set to override certain internal resolver options which are otherwise
-set by changing fields in the
-.Ft statp
-/
-.Ft _res
-structure or are inherited from the configuration file's
-.Ic options
-command.  The syntax of the 
-.Dq Ev RES_OPTIONS 
-environment variable is explained in
-.Xr resolver @FORMAT_EXT@ .
-Initialization normally occurs on the first call
-to one of the other resolver routines.
-.Pp
-The
-.Fn res_nquery
-/
-.Fn res_query
-functions provides interfaces to the server query mechanism.
-They constructs a query, sends it to the local server,
-awaits a response, and makes preliminary checks on the reply.
-The query requests information of the specified
-.Fa type
-and
-.Fa class
-for the specified fully-qualified domain name
-.Fa dname .
-The reply message is left in the
-.Fa answer
-buffer with length
-.Fa anslen
-supplied by the caller.
-.Fn res_nquery
-/
-.Fn res_query
-return -1 on error or the length of the answer.
-.Pp
-The
-.Fn res_nsearch
-/
-.Fn res_search
-routines make a query and awaits a response like
-.Fn res_nquery
-/
-.Fn res_query ,
-but in addition, it implements the default and search rules
-controlled by the 
-.Dv RES_DEFNAMES 
-and 
-.Dv RES_DNSRCH 
-options.
-It returns the length of the first successful reply which is stored in
-.Ft answer
-or -1 on error.
-.Pp
-The remaining routines are lower-level routines used by
-.Fn res_nquery
-/
-.Fn res_query .
-The
-.Fn res_nmkquery
-/
-.Fn res_mkquery
-functions
-constructs a standard query message and places it in
-.Fa buf .
-It returns the size of the query, or \-1 if the query is
-larger than
-.Fa buflen .
-The query type
-.Fa op
-is usually 
-.Dv QUERY , 
-but can be any of the query types defined in
-.Pa <arpa/nameser.h> .
-The domain name for the query is given by
-.Fa dname .
-.Fa Newrr
-is currently unused but is intended for making update messages.
-.Pp
-The
-.Fn res_nsend
-/
-.Fn res_send
-/
-.Fn res_nsendsigned
-routines
-sends a pre-formatted query and returns an answer.
-It will call
-.Fn res_ninit
-/
-.Fn res_init
-if 
-.Dv RES_INIT 
-is not set, send the query to the local name server, and
-handle timeouts and retries.  Additionally,
-.Fn res_nsendsigned
-will use TSIG signatures to add authentication to the query and verify the
-response.  In this case, only one nameserver will be contacted.
-The length of the reply message is returned, or \-1 if there were errors.
-.Pp
-.Fn res_nquery
-/
-.Fn res_query ,
-.Fn res_nsearch
-/
-.Fn res_search
-and
-.Fn res_nsend
-/
-.Fn res_send
-return a length that may be bigger than
-.Fa anslen .
-In that case the query should be retried with a bigger buffer.
-NOTE the answer to the second query may be larger still so supplying
-a buffer that bigger that the answer returned by the previous
-query is recommended.
-.Pp
-.Fa answer
-MUST be big enough to receive a maximum UDP response from the server or 
-parts of the answer will be silently discarded.
-The default maximum UDP response size is 512 bytes.
-.Pp
-The functions
-.Fn res_nisourserver
-/
-.Fn res_isourserver
-return true when 
-.Fa inp
-is one of the servers in
-.Fa statp->nsaddr_list
-/
-.Fa _res.nsaddr_list .
-.Pp
-The functions
-.Fn res_npquery
-/
-.Fn p_nquery
-/
-.Fn p_query
-print out the query and any answer in
-.Fa msg
-on
-.Fa fp .
-.Fn p_query
-is equivalent to
-.Fn p_nquery
-with
-.Fa msglen
-set to 512.
-.Pp
-The function
-.Fn fp_resstat
-prints out the active flag bits in
-.Fa statp->options
-preceeded by the text ";; res options:" on 
-.Fa file .
-.Pp
-The functions
-.Fn res_hostalias
-/
-.Fn hostalias
-lookup up name in the file referred to by the
-.Ev HOSTALIASES files return a fully qualified hostname if found or NULL if
-not found or an error occurred.
-.Fn res_hostalias
-uses
-.Fa buf
-to store the result in,
-.Fn hostalias
-uses a static buffer.
-.Pp
-The functions
-.Fn res_nupdate
-/
-.Fn res_update
-take a list of ns_updrec
-.Fa rrecp_in .
-Identifies the containing zone for each record and groups the records
-according to containing zone maintaining in zone order then sends and
-update request to the servers for these zones.
-The number of zones updated is returned or -1 on error.
-.Pp
-The function
-.Fn res_findzonecut
-discovers the closest enclosing zone cut for a specified domain name,
-and finds the IP addresses of the zone's master servers.
-.Pp
-The function
-.Fn res_nsendupdate
-is used to perform TSIG authenticated dynamic update operations.
-.Fn res_nsendupdate
-sends a dynamic update to the specified IP address, authenticating the update
-if the key is not NULL.
-.Pp
-The functions 
-.Fn res_nmkupdate
-/
-.Fn res_mkupdate
-take a linked list of ns_updrec
-.Fa rrecp_in
-and construct a UPDATE message in
-.Fa buf .
-.Fn res_nmkupdate
-/
-.Fn res_mkupdate
-return the length of the constructed message on no error or one of the
-following error values.
-.Bl -inset -width "-5"
-.It -1
-An error occurred parsing 
-.Fa rrecp_in .
-.It -2
-The buffer 
-.Fa buf
-was too small.
-.It -3
-The first record was not a zone section or there was a section order problem.
-The section order is S_ZONE, S_PREREQ and S_UPDATE. 
-.It -4
-A number overflow occurred.
-.It -5
-Unknown operation or no records.
-.El
-.Pp
-The functions
-.Fn res_nclose
-/
-.Fn res_close
-close any open files referenced through
-.Fa statp
-/
-.Fa _res .
-.Pp
-The
-.Fn dn_comp
-function
-compresses the domain name
-.Fa exp_dn
-and stores it in
-.Fa comp_dn .
-The size of the compressed name is returned or \-1 if there were errors.
-The size of the array pointed to by
-.Fa comp_dn
-is given by
-.Fa length .
-The compression uses
-an array of pointers
-.Fa dnptrs
-to previously-compressed names in the current message.
-The first pointer points to
-to the beginning of the message and the list ends with 
-.Dv NULL .
-The limit to the array is specified by
-.Fa lastdnptr .
-A side effect of
-.Fn dn_comp
-is to update the list of pointers for labels inserted into the message
-as the name is compressed.  If
-.Fa dnptr
-is 
-.Dv NULL , 
-names are not compressed.  If
-.Fa lastdnptr
-is 
-.Dv NULL , 
-the list of labels is not updated.
-.Pp
-The
-.Fn dn_expand
-entry
-expands the compressed domain name
-.Fa comp_dn
-to a full domain name.
-The compressed name is contained in a query or reply message;
-.Fa msg
-is a pointer to the beginning of the message.
-The uncompressed name is placed in the buffer indicated by
-.Fa exp_dn
-which is of size
-.Fa length .
-The size of compressed name is returned or \-1 if there was an error.
-.Pp
-The variables
-.Ft statp->res_h_errno
-/
-.Ft _res.res_h_errno
-and external variable
-.Ft h_errno
-is set whenever an error occurs during resolver operation.  The following
-definitions are given in
-.Pa <netdb.h> :
-.Bd -literal
-#define NETDB_INTERNAL -1  /* see errno */
-#define NETDB_SUCCESS  0   /* no problem */
-#define HOST_NOT_FOUND 1   /* Authoritative Answer Host not found */
-#define TRY_AGAIN      2   /* Non-Authoritative not found, or SERVFAIL */
-#define NO_RECOVERY    3   /* Non-Recoverable: FORMERR, REFUSED, NOTIMP */
-#define NO_DATA        4   /* Valid name, no data for requested type */
-.Ed
-.Pp
-The
-.Fn herror
-function writes a message to the diagnostic output consisting of the string
-parameter
-.Fa s ,
-the constant string ": ", and a message corresponding to the value of
-.Ft h_errno .
-.Pp
-The
-.Fn hstrerror
-function returns a string which is the message text corresponding to the
-value of the
-.Fa err
-parameter.
-.Sh FILES
-.Bl -tag -width "/etc/resolv.conf    "
-.It Pa /etc/resolv.conf	
-See 
-.Xr resolver @FORMAT_EXT@ . 
-.El
-.Sh SEE ALSO
-.Xr gethostbyname @LIB_NETWORK_EXT@ , 
-.Xr hostname @DESC_EXT@ ,
-.Xr @INDOT@named @SYS_OPS_EXT@ , 
-.Xr resolver @FORMAT_EXT@ ;
-RFC1032, RFC1033, RFC1034, RFC1035, RFC974;
-SMM:11, 
-.Dq Name Server Operations Guide for Sy BIND
diff --git a/contrib/bind/doc/man/resolver.5 b/contrib/bind/doc/man/resolver.5
deleted file mode 100644
index 21298933f0b0e..0000000000000
--- a/contrib/bind/doc/man/resolver.5
+++ /dev/null
@@ -1,224 +0,0 @@
-.\" Copyright (c) 1986 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)resolver.5	5.9 (Berkeley) 12/14/89
-.\"	$Id: resolver.5,v 8.6 1999/05/21 00:01:02 vixie Exp $
-.\"
-.Dd November 11, 1993
-.Dt RESOLVER @FORMAT_EXT_U@ 
-.Os BSD 4
-.Sh NAME
-.Nm resolver 
-.Nd resolver configuration file
-.Sh SYNOPSIS
-.Pa /etc/resolv.conf
-.Sh DESCRIPTION
-The
-.Nm resolver
-is a set of routines in the C library
-.Pq Xr resolve @LIB_NETWORK_EXT@
-that provide access to the Internet Domain Name System.
-The 
-.Nm resolver 
-configuration file contains information that is read
-by the 
-.Nm resolver 
-routines the first time they are invoked by a process.
-The file is designed to be human readable and contains a list of
-keywords with values that provide various types of 
-.Nm resolver 
-information.
-.Pp
-On a normally configured system, this file should not be necessary.
-The only name server to be queried will be on the local machine,
-the domain name is determined from the host name,
-and the domain search path is constructed from the domain name.
-.Pp
-The different configuration directives are:
-.Bl -tag -width "nameser"
-.It Li nameserver
-Internet address (in dot notation) of a name server that the 
-.Nm resolver 
-should query.  Up to 
-.Dv MAXNS 
-(see
-.Pa <resolv.h> )
-name servers may be listed, one per keyword.
-If there are multiple servers, the 
-.Nm resolver 
-library queries them in the order listed.
-If no 
-.Li nameserver 
-entries are present, the default is to use the name server on the local machine.
-(The algorithm used is to try a name server, and if the query times out,
-try the next, until out of name servers,
-then repeat trying all the name servers
-until a maximum number of retries are made).
-.It Li domain
-Local domain name.
-Most queries for names within this domain can use short names
-relative to the local domain.
-If no 
-.Li domain 
-entry is present, the domain is determined from the local host name returned by
-.Xr gethostname @BSD_SYSCALL_EXT@ ;
-the domain part is taken to be everything after the first 
-.Sq \&. .
-Finally, if the host name does not contain a domain part, the root
-domain is assumed.
-.It Li search
-Search list for host-name lookup.
-The search list is normally determined from the local domain name;
-by default, it contains only the local domain name.
-This may be changed by listing the desired domain search path
-following the 
-.Li search 
-keyword with spaces or tabs separating the names.
-Most 
-.Nm resolver 
-queries will be attempted using each component
-of the search path in turn until a match is found.
-Note that this process may be slow and will generate a lot of network
-traffic if the servers for the listed domains are not local,
-and that queries will time out if no server is available
-for one of the domains.
-.Pp
-The search list is currently limited to six domains
-with a total of 256 characters.
-.It Li sortlist
-Allows addresses returned by gethostbyname to be sorted.
-A 
-.Li sortlist 
-is specified by IP address netmask pairs. The netmask is
-optional and defaults to the natural netmask of the net. The IP address
-and optional network pairs are separated by slashes. Up to 10 pairs may
-be specified.  For example:
-.Bd -literal -offset indent
-sortlist 130.155.160.0/255.255.240.0 130.155.0.0
-.Ed
-.It Li options
-Allows certain internal 
-.Nm resolver 
-variables to be modified.
-The syntax is
-.D1 Li options Ar option ...
-where 
-.Ar option 
-is one of the following:
-.Bl -tag -width "ndots:n " 
-.It Li debug 
-sets 
-.Dv RES_DEBUG 
-in 
-.Ft _res.options .
-.It Li ndots: Ns Ar n 
-sets a threshold for the number of dots which
-must appear in a name given to 
-.Fn res_query 
-(see 
-.Xr resolver @LIB_NETWORK_EXT@ )
-before an 
-.Em initial absolute query 
-will be made.  The default for
-.Ar n 
-is 
-.Dq 1 , 
-meaning that if there are 
-.Em any 
-dots in a name, the name will be tried first as an absolute name before any 
-.Em search list
-elements are appended to it.
-.It Li timeout: Ns Ar n
-sets the amount of time the resolver will wait for a response from a remote
-name server before retrying the query via a different name server.  Measured in
-seconds, the default is
-.Dv RES_TIMEOUT
-(see
-.Pa <resolv.h> ).
-.It Li attempts: Ns Ar n
-sets the number of times the resolver will send a query to its name servers
-before giving up and returning an error to the calling application.  The
-default is
-.Dv RES_DFLRETRY
-(see
-.Pa <resolv.h> ).
-.It Li rotate
-sets
-.Dv RES_ROTATE
-in
-.Ft _res.options ,
-which causes round robin selection of nameservers from among those listed.
-This has the effect of spreading the query load among all listed servers,
-rather than having all clients try the first listed server first every time.
-.It Li no-check-names
-sets
-.Dv RES_NOCHECKNAME
-in
-.Ft _res.options ,
-which disables the modern BIND checking of incoming host names and mail names
-for invalid characters such as underscore (_), non-ASCII, or control characters.
-.It Li inet6
-sets 
-.Dv RES_USE_INET6
-in 
-.Ft _res.options .
-This has the effect of trying a AAAA query before an A query inside the
-.Ft gethostbyname
-function, and of mapping IPv4 responses in IPv6 ``tunnelled form'' if no
-AAAA records are found but an A record set exists.
-.El
-.El
-.Pp
-The 
-.Li domain 
-and 
-.Li search 
-keywords are mutually exclusive.
-If more than one instance of these keywords is present,
-the last instance wins.
-.Pp
-The 
-.Li search 
-keyword of a system's 
-.Pa resolv.conf 
-file can be
-overridden on a per-process basis by setting the environment variable
-.Dq Ev LOCALDOMAIN 
-to a space-separated list of search domains.
-.Pp
-The 
-.Li options 
-keyword of a system's 
-.Pa resolv.conf 
-file can be amended on a per-process basis by setting the environment variable
-.Dq Ev RES_OPTIONS to a space-separated list of 
-.Nm resolver 
-options as explained above under 
-.Li options .
-.Pp
-The keyword and value must appear on a single line, and the keyword
-(e.g., 
-.Li nameserver ) 
-must start the line.  The value follows the keyword, separated by white space.
-.Sh FILES
-.Pa /etc/resolv.conf
-.Pa <resolv.h>
-.Sh SEE ALSO
-.Xr gethostbyname @LIB_NETWORK_EXT@ , 
-.Xr hostname @DESC_EXT@ , 
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr resolver @LIB_NETWORK_EXT@ , 
-.Xr resolver @FORMAT_EXT@ .
-.Dq Name Server Operations Guide for Sy BIND
diff --git a/contrib/bind/doc/man/tsig.3 b/contrib/bind/doc/man/tsig.3
deleted file mode 100644
index fa852eeceb1f2..0000000000000
--- a/contrib/bind/doc/man/tsig.3
+++ /dev/null
@@ -1,240 +0,0 @@
-.\" $Id: tsig.3,v 8.2 1999/01/08 18:54:28 vixie Exp $
-.\"
-.\"Copyright (c) 1995-1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd January 1, 1996
-.Os BSD 4
-.Dt TSIG @SYSCALL_EXT@
-.Sh NAME
-.Nm ns_sign ,
-.Nm ns_sign_tcp ,
-.Nm ns_sign_tcp_init ,
-.Nm ns_verify ,
-.Nm ns_verify_tcp ,
-.Nm ns_verify_tcp_init ,
-.Nm ns_find_tsig
-.Nd TSIG system
-.Sh SYNOPSIS
-.Ft int
-.Fo ns_sign
-.Fa "u_char *msg"
-.Fa "int *msglen"
-.Fa "int msgsize"
-.Fa "int error"
-.Fa "void *k"
-.Fa "const u_char *querysig"
-.Fa "int querysiglen"
-.Fa "u_char *sig"
-.Fa "int *siglen"
-.Fa "time_t in_timesigned"
-.Fc
-.Ft int
-.Fn ns_sign_tcp "u_char *msg" "int *msglen" "int msgsize" "int error" \
-    "ns_tcp_tsig_state *state" "int done"
-.Ft int
-.Fn ns_sign_tcp_init "void *k" "const u_char *querysig" "int querysiglen" \
-    "ns_tcp_tsig_state *state"
-.Ft int
-.Fo ns_verify
-.Fa "u_char *msg"
-.Fa "int *msglen"
-.Fa "void *k"
-.Fa "const u_char *querysig"
-.Fa "int querysiglen"
-.Fa "u_char *sig"
-.Fa "int *siglen"
-.Fa "time_t in_timesigned"
-.Fa "int nostrip"
-.Fc
-.Ft int
-.Fn ns_verify_tcp "u_char *msg" "int *msglen" "ns_tcp_tsig_state *state" \
-    "int required"
-.Ft int
-.Fn ns_verify_tcp_init "void *k" "const u_char *querysig" "int querysiglen" \
-    "ns_tcp_tsig_state *state"
-.Ft u_char *
-.Fn ns_find_tsig "u_char *msg" "u_char *eom"
-.Sh DESCRIPTION
-The TSIG routines are used to implement transaction/request security of
-DNS messages.
-.Pp
-.Fn ns_sign
-and
-.Fn ns_verify
-are the basic routines.
-.Fn ns_sign_tcp
-and
-.Fn ns_verify_tcp
-are used to sign/verify TCP messages that may be split into multiple packets,
-such as zone transfers, and
-.Fn ns_sign_tcp_init,
-.Fn ns_verify_tcp_init
-initialize the state structure necessary for TCP operations.
-.Fn ns_find_tsig
-locates the TSIG record in a message, if one is present.
-.Pp
-.Fn ns_sign
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv msg
-the incoming DNS message, which will be modified
-.It Dv msglen
-the length of the DNS message, on input and output
-.It Dv msgsize
-the size of the buffer containing the DNS message on input
-.It Dv error
-the value to be placed in the TSIG error field
-.It Dv key
-the (DST_KEY *) to sign the data
-.It Dv querysig
-for a response, the signature contained in the query
-.It Dv querysiglen
-the length of the query signature
-.It Dv sig
-a buffer to be filled with the generated signature
-.It Dv siglen
-the length of the signature buffer on input, the signature length on output
-.El
-.Pp
-.Fn ns_sign_tcp
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv msg
-the incoming DNS message, which will be modified
-.It Dv msglen
-the length of the DNS message, on input and output
-.It Dv msgsize
-the size of the buffer containing the DNS message on input
-.It Dv error
-the value to be placed in the TSIG error field
-.It Dv state
-the state of the operation
-.It Dv done
-non-zero value signifies that this is the last packet
-.El
-.Pp
-.Fn ns_sign_tcp_init
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv k
-the (DST_KEY *) to sign the data
-.It Dv querysig
-for a response, the signature contained in the query
-.It Dv querysiglen
-the length of the query signature
-.It Dv state
-the state of the operation, which this initializes
-.El
-.Pp
-.Fn ns_verify
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv msg
-the incoming DNS message, which will be modified
-.It Dv msglen
-the length of the DNS message, on input and output
-.It Dv key
-the (DST_KEY *) to sign the data
-.It Dv querysig
-for a response, the signature contained in the query
-.It Dv querysiglen
-the length of the query signature
-.It Dv sig
-a buffer to be filled with the signature contained
-.It Dv siglen
-the length of the signature buffer on input, the signature length on output
-.It Dv nostrip
-non-zero value means that the TSIG is left intact
-.El
-.Pp
-.Fn ns_verify_tcp
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv msg
-the incoming DNS message, which will be modified
-.It Dv msglen
-the length of the DNS message, on input and output
-.It Dv state
-the state of the operation
-.It Dv required
-non-zero value signifies that a TSIG record must be present at this step
-.El
-.Pp
-.Fn ns_verify_tcp_init
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv k
-the (DST_KEY *) to verify the data
-.It Dv querysig
-for a response, the signature contained in the query
-.It Dv querysiglen
-the length of the query signature
-.It Dv state
-the state of the operation, which this initializes
-.El
-.Pp
-.Fn ns_find_tsig
-.Bl -tag -width "in_timesigned" -compact -offset indent
-.It Dv msg
-the incoming DNS message
-.It Dv msglen
-the length of the DNS message
-.El
-.Sh RETURN VALUES
-.Fn ns_find_tsig
-returns a pointer to the TSIG record if one is found, and NULL otherwise.
-.Pp
-All other routines return 0 on success, modifying arguments when necessary.
-.Pp
-.Fn ns_sign
-and
-.Fn ns_sign_tcp
-return the following errors:
-.Bl -tag -width "NS_TSIG_ERROR_NO_SPACE" -compact -offset indent
-.It Dv (-1)
-bad input data
-.It Dv (-ns_r_badkey)
-The key was invalid, or the signing failed
-.It Dv NS_TSIG_ERROR_NO_SPACE
-the message buffer is too small.
-.El
-.Pp
-.Fn ns_verify
-and
-.Fn ns_verify_tcp
-return the following errors:
-.Bl -tag -width "NS_TSIG_ERROR_NO_SPACE" -compact -offset indent
-.It Dv (-1)
-bad input data
-.It Dv NS_TSIG_ERROR_FORMERR
-The message is malformed
-.It Dv NS_TSIG_ERROR_NO_TSIG
-The message does not contain a TSIG record
-.It Dv NS_TSIG_ERROR_ID_MISMATCH
-The TSIG original ID field does not match the message ID
-.It Dv (-ns_r_badkey)
-Verification failed due to an invalid key
-.It Dv (-ns_r_badsig)
-Verification failed due to an invalid signature
-.It Dv (-ns_r_badtime)
-Verification failed due to an invalid timestamp
-.It Dv ns_r_badkey
-Verification succeeded but the message had an error of BADKEY
-.It Dv ns_r_badsig
-Verification succeeded but the message had an error of BADSIG
-.It Dv ns_r_badtime
-Verification succeeded but the message had an error of BADTIME
-.El
-.Pp
-.Sh SEE ALSO
-.Xr resolver 3 .
-.Sh AUTHORS
-Brian Wellington, TISLabs at Network Associates
-.\" .Sh BUGS
diff --git a/contrib/bind/doc/misc/DynamicUpdate b/contrib/bind/doc/misc/DynamicUpdate
deleted file mode 100644
index fb4152c74f77b..0000000000000
--- a/contrib/bind/doc/misc/DynamicUpdate
+++ /dev/null
@@ -1,284 +0,0 @@
- 
- 
-		Description of Dynamic Update and T_UNSPEC Code
- 
- 
- 
- 
-                         Added by Mike Schwartz
-          University of Washington Computer Science Department
-                                  11/86
-                       schwartz@cs.washington.edu
- 
- 
- 
- 
-I have incorporated 2 new features into BIND:
-	1. Code to allow (unauthenticated) dynamic updates: surrounded by
-	   #ifdef ALLOW_UPDATES
-	2. Code to allow data of unspecified type: surrounded by
-	   #ifdef ALLOW_T_UNSPEC
- 
-Note that you can have one or the other or both (or neither) of these
-modifications running, by appropriately modifying the makefiles.  Also,
-the external interface isn't changed (other than being extended), i.e.,
-a BIND server that allows dynamic updates and/or T_UNSPEC data can
-still talk to a 'vanilla' server using the 'vanilla' operations.
- 
-The description that follows is broken into 3 parts: a functional
-description of the dynamic update facility, a functional description of
-the T_UNSPEC facility, and a discussion of the implementation of
-dynamic updates.  The implementation description is mostly intended for
-those who want to make future enhancements (especially the addition of
-a good authentication mechanism).  If you make enhancements, I would be
-interested in hearing about them.
- 
- 
- 
- 
- 
-			1. Dynamic Update Facility
- 
-I added this code in conjunction with my research into naming in large
-heterogeneous systems.  For the purposes of this research, I ignored
-security issues.  In other words, no authentication/authorization
-mechanism exists to control updates.  Authentication will hopefully be
-addressed at some future point (although probably not by me). In the
-mean time, BIND Internet name servers (as opposed to "private" name
-server networks operating with their own port numbers, as I use in my
-research) should be compiled *without* -DALLOW_UPDATES, so that the
-integrity of the Internet name database won't be compromised by this
-code.
- 
- 
-There are 5 different dynamic update interfaces:
-	UPDATEA  - add a resource record
-	UPDATED  - delete a specific resource record
-	UPDATEDA - delete all named resource records
-	UPDATEM  - modify a specific resource record
-	UPDATEMA - modify all named resource records
- 
-These all work through the normal resolver interface, i.e., these
-interfaces are opcodes, and the data in the buffers passed to
-res_mkquery must conform to what is expected for the particular
-operation (see the #ifdef ALLOW_UPDATES extensions to nstest.c for
-example usage).
- 
-UPDATEM is logically equivalent to an UPDATED followed by an UPDATEA,
-except that the updates occur atomically at the primary server (as
-usual with Domain servers, secondaries may become temporarily
-inconsistent).  The difference between UPDATED and UPDATEDA is that the
-latter allows you to delete all RRs associated with a name; similarly
-for UPDATEM and UPDATEMA.  The reason for the UPDATE{D,M}A interfaces
-is two-fold:
- 
-	1. Sometimes you want to delete/modify some data, but you know you'll
-	   only have a single RR for that data; in such a case, it's more
-	   convenient to delete/modify the RR by just giving the name;
-	   otherwise, you would have to first look it up, and then
-	   delete/modify it.
- 
-	2. It is sometimes useful to be able to delete/modify multiple RRs
-	   this way, since one can then perform the operation atomically.
-	   Otherwise, one would have to delete/modify the RRs one-by-one.
- 
-One additional point to note about UPDATEMA is that it will return a
-success status if there were *zero* or more RRs associated with the given
-name (and the RR add succeeds), whereas UPDATEM, UPDATED, and UPDATEDA
-will return a success status if there were *one* or more RRs associated
-with the given name.  The reason for the difference is to handle the
-(probably common) case where what you want to do is set a particular
-name to contain a single RR, irrespective of whether or not it was
-already set.
- 
- 
- 
- 
-			2. T_UNSPEC Facility
- 
-Type T_UNSPEC allows you to store data whose layout BIND doesn't
-understand.  Data of this type is not marshalled (i.e., converted
-between host and network representation, as is done, for example, with
-Internet addresses) by BIND, so it is up to the client to make sure
-things work out ok w.r.t. heterogeneous data representations.  The way
-I use this type is to have the client marshal data, store it, retrieve
-it, and demarshal it.  This way I can store arbitrary data in BIND
-without having to add new code for each specific type.
- 
-T_UNSPEC data is dumped in an ASCII-encoded, checksummed format so
-that, although it's not human-readable, it at least doesn't fill the
-dump file with unprintable characters.
- 
-Type T_UNSPEC is important for my research environment, where
-potentially lots of people want to store data in the name service, and
-each person's data looks different.  Instead of having BIND understand
-the format of each of their data types, the clients define marshaling
-routines and pass buffers of marshalled data to BIND; BIND never tries
-to demarshal the data...it just holds on to it, and gives it back to
-the client when the client requests it, and the client must then
-demarshal it.
- 
-The Xerox Network System's name service (the Clearinghouse) works this
-way.  The reason 'vanilla' BIND understands the format of all the data
-it holds is probably that BIND is tailored for a very specific
-application, and wants to make sure the data it holds makes sense (and,
-for some types, BIND needs to take additional action depending on the
-data's semantics).  For more general purpose name services (like the
-Clearinghouse and my usage of BIND), this approach is less tractable.
- 
-See the #ifdef ALLOW_T_UNSPEC extensions to nstest.c for example usage of
-this type.
- 
- 
- 
- 
- 
- 
-		3. Dynamic Update Implementation Description
- 
-This section is divided into 3 subsections: General Discussion,
-Miscellaneous Points, and Known Defects.
- 
- 
- 
- 
-		3.1 General Discussion
- 
-The basic scheme is this: When an update message arrives, a call is
-made to InitDynUpdate, which first looks up the SOA record for the zone
-the update affects.  If this is the primary server for that zone, we do
-the update and then update the zone serial number (so that secondaries
-will refresh later).  If this is a secondary server, we forward the
-update to the primary, and if that's successful, we update our copy
-afterwards.  If it's neither, we refuse the update.  (One might think
-to try to propagate the update to an authoritative server; I figured
-that updates will probably be most likely within an administrative
-domain anyway; this could be changed if someone has strong feelings
-about it).
- 
-Note that this mechanism disallows updates when the primary is
-down, preserving the Domain scheme's consistency requirements,
-but making the primary a critical point for updates.  This seemed
-reasonable to me because
-	1. Alternative schemes must deal with potentially complex
-	   situations involving merging of inconsistent secondary
-	   updates
-	2. Updates are presumed to be rare relative to read accesses,
-	   so this increased restrictiveness for updates over reads is
-	   probably not critical
- 
-I have placed comments through out the code, so it shouldn't be
-too hard to see what I did.  The majority of the processing is in
-doupdate() and InitDynUpdate().  Also, I added a field to the zone
-struct, to keep track of when zones get updated, so that only changed
-zones get checkpointed.
- 
- 
- 
- 
- 
-		3.2 Miscellaneous Points
- 
-I use ns_maint to call zonedump() if the database changes, to
-provide a checkpointing mechanism.  I use the zone refresh times to
-set up ns_maint interrupts if there are either secondaries or
-primaries.  Hence, if there is a secondary, this interrupt can cause
-zoneref (as before), and if there is a primary, this interrupt can
-cause doadump.  I also checkpoint if needed before shutting down.
- 
-You can force a server to checkpoint any changed zones by sending the
-maint signal (SIGALRM) to the process.  Otherwise it just checkpoints
-during maint. interrupts, or when being shutdown (with SIGTERM).
-Sending it the dump signal causes the database to be dumped into the
-(single) dump file, but doesn't checkpoint (i.e., update the boot
-files).  Note that the boot files will be overwritten with checkpoint
-files, so if you want to preserve the comments, you should keep copies
-of the original boot files separate from the versions that are actually
-used.
- 
-I disallow T_SOA updates, for several reasons:
-	- T_SOA deletes at the primary wont be discovered by the secondaries
-	  until they try to request them at maint time, which will cause
-	  a failure
-	- the corresponding NS record would have to be deleted at the same
-	  time (atomically) to avoid various problems
-	- T_SOA updates would have to be done in the right order, or else
-	  the primary and secondaries will be out-of-sync for that zone.
-My feeling is that changing the zone topology is a weighty enough thing
-to do that it should involve changing the load file and reloading all
-affected servers.
- 
-There are alot of places where bind exits due to catastrophic failures
-(mainly malloc failures).  I don't try to dump the database in these
-places because it's probably inconsistent anyway.  It's probably better
-to depend on the most recent dump.
- 
- 
- 
- 
- 
-		3.2 Known Defects
- 
-1. I put the following comment in nlookup (db_lookup.c):
- 
-	Note: at this point, if np->n_data is NULL, we could be in one
-	of two situations: Either we have come across a name for which
-	all the RRs have been (dynamically) deleted, or else we have
-	come across a name which has no RRs associated with it because
-	it is just a place holder (e.g., EDU).  In the former case, we
-	would like to delete the namebuf, since it is no longer of use,
-	but in the latter case we need to hold on to it, so future
-	lookups that depend on it don't fail.  The only way I can see
-	of doing this is to always leave the namebufs around (although
-	then the memory usage continues to grow whenever names are
-	added, and can never shrink back down completely when all their
-	associated RRs are deleted).
- 
-   Thus, there is a problem that the memory usage will keep growing for
-   the situation described.  You might just choose to ignore this
-   problem (since I don't see any good way out), since things probably
-   wont grow fast anyway (how many names are created and then deleted
-   during a single server incarnation, after all?)
- 
-   The problem is that one can't delete old namebufs because one would
-   want to do it from db_update, but db_update calls nlookup to do the
-   actual work, and can't do it there, since we need to maintain place
-   holders.  One could make db_update not call nlookup, so we know it's
-   ok to delete the namebuf (since we know the call is part of a delete
-   call); but then there is code with alot of overlapping functionality
-   in the 2 routines.
- 
-   This also causes another problem:  If you create a name and then do
-   UPDATEDA, all it's RRs get deleted, but the name remains; then, if you
-   do a lookup on that name later, the name is found in the hash table,
-   but no RRs are found for it.  It then forwards the query to itself (for
-   some reason), and then somehow decides there is no such domain, and then
-   returns (with the correct answer, but after going through extra work).
-   But the name remains, and each time it is looked up, we go through
-   these same steps.  This should be fixed, but I don't have time right
-   now (and the right answer seems to come back anyway, so it's good
-   enough for now).
- 
-2. There are 2 problems that crop up when you store data (other than
-   T_SOA and T_NS records) in the root:
-   a. Can't get primary to doaxfr RRs other than SOA and NS to
-      secondary.
-   b. Upon checkpoint (zonedump), this data sometimes comes out after other
-      data in the root, so that (since the SOA and NS records have null
-      names), they will get interpreted as being records under the
-      other names upon the next boot up.  For example, if you have a
-      T_A record called ABC, the checkpoint may look like:
-	 $ORIGIN .
-	 ABC     IN      A       128.95.1.3
-	 99999999        IN      NS      UW-BORNEO.
-	 IN      SOA     UW-BORNEO. SCHWARTZ.CS.WASHINGTON.EDU.
-	 ( 50 3600 300 3600000 3600 )
-      Then when booting up the next time, the SOA and NS records get
-      interpreted as being called "ABC" rather than the null root
-      name.
- 
-3. The secondary server caches the T_A RR for the primary, and hence when
-   it tries to ns_forw an update, it won't find the address of the primary
-   using nslookup unless that T_A RR is *also* stored in the main hashtable
-   (by putting it in a named.db file as well as the named.ca file).
- 
diff --git a/contrib/bind/doc/misc/FAQ.1of2 b/contrib/bind/doc/misc/FAQ.1of2
deleted file mode 100644
index 99619eb37a250..0000000000000
--- a/contrib/bind/doc/misc/FAQ.1of2
+++ /dev/null
@@ -1,1602 +0,0 @@
-Newsgroups: comp.protocols.tcp-ip.domains,comp.answers,news.answers
-Path: vixie!news1.digital.com!su-news-hub1.bbnplanet.com!cpk-news-hub1.bbnplanet.com!news.bbnplanet.com!cam-news-hub1.bbnplanet.com!news.mathworks.com!news.kei.com!uhog.mit.edu!rutgers!njitgw.njit.edu!hertz.njit.edu!cdp2582
-From: cdp2582@hertz.njit.edu (Chris Peckham)
-Subject: comp.protocols.tcp-ip.domains Frequently Asked Questions (FAQ) (Part 1 of 2)
-Message-ID: <cptd-faq-1-849940949@njit.edu>
-Followup-To: comp.protocols.tcp-ip.domains
-Originator: cdp2582@hertz.njit.edu
-Keywords: BIND,DOMAIN,DNS
-Sender: news@njit.edu
-Supersedes: <cptd-faq-1-847336183@njit.edu>
-Nntp-Posting-Host: hertz.njit.edu
-X-Posting-Frequency: posted during the first week of each month
-Reply-To: domain-faq@njit.edu (comp.protocols.tcp-ip.domains FAQ comments)
-Organization: NJIT.EDU - New Jersey Institute of Technology, Newark, NJ, USA
-Date: Sat, 7 Dec 1996 06:42:36 GMT
-Approved: news-answers-request@MIT.EDU
-Expires: Sat 11 Jan 97 02:42:29 EDT
-Lines: 1582
-Xref: vixie comp.protocols.tcp-ip.domains:12904 comp.answers:22440 news.answers:85682
-
-Posted-By: auto-faq 3.1.1.2
-Archive-name: internet/tcp-ip/domains-faq/part1
-Revision: 1.14 1996/12/07 06:42:05
-
-
-Note that this posting has been split into two parts because of its size.
-
-$Id: FAQ.1of2,v 8.4 1996/12/18 04:22:33 vixie Exp $
-
-A new version of this document appears monthly.  If this copy is more
-than a month old it may be out of date.
-
-This FAQ is edited and maintained by Chris Peckham, <cdp@pfmc.net>.  The
-most recently posted version may be found for anonymous ftp from
-
-rtfm.mit.edu : /pub/usenet/news.answers/internet/tcp-ip/domains-faq
-
-It is also available in HTML from
-http://www.users.pfmc.net/~cdp/cptd-faq/.
-
-If you can contribute any answers for items in the TODO section, please do
-so by sending e-mail to <domain-faq@pfmc.net> !  If you know of any items
-that  are not included and you feel that they should be,  send the
-relevant information to <domain-faq@pfmc.net>.
-
-===============================================================================
-
-Index
-
- Section 1.  TO DO / UPDATES
- Q1.1        Contributions needed 
- Q1.2        UPDATES / Changes since last posting 
-
- Section 2.  INTRODUCTION / MISCELLANEOUS
- Q2.1        What is this newsgroup ?
- Q2.2        More information
- Q2.3        What is BIND  ?
- Q2.4        What is the difference between BIND and DNS ?
- Q2.5        Where is the latest version of BIND located ?
- Q2.6        How can I find the path taken between two systems/domains ?
- Q2.7        How do you find the hostname given the TCP-IP address ?
- Q2.8        How do I register a domain ?
- Q2.9        How can I change the IP address of our server ?
- Q2.10       Issues when changing your domain name
- Q2.11       How memory and CPU does DNS use ?
- Q2.12       Other things to consider when planning your servers  
- Q2.13       Proper way to get NS and reverse IP records into DNS
- Q2.14       How do I get my address assigned from the NIC ?
- Q2.15       Is there a block of private IP addresses I can use?
- Q2.16       Does BIND cache negative answers (failed DNS lookups) ?
- Q2.17       What does an NS record really do ?
- Q2.18       DNS ports
- Q2.19       What is the cache file 
- Q2.20       Obtaining the latest cache file
- Q2.21       Selecting a nameserver/root cache
- Q2.22       InterNIC and domain names
-
- Section 3.  UTILITIES 
- Q3.1        Utilities to administer DNS zone files
- Q3.2        DIG - Domain Internet Groper
- Q3.3        DNS packet analyser
- Q3.4        host
- Q3.5        How can I use DNS information in my program?
- Q3.6        A source of information relating to DNS
-
- Section 4.  DEFINITIONS  
- Q4.1        TCP/IP Host Naming Conventions
- Q4.2        What are slaves and forwarders ?
- Q4.3        When is a server authoritative?
- Q4.4        My server does not consider itself authoritative !
- Q4.5        NS records don't configure servers as authoritative ?
- Q4.6        underscore in host-/domainnames
- Q4.7        What is lame delegation ?
- Q4.8        How can I see if the server is "lame" ?
- Q4.9        What does opt-class field in a zone file do?
- Q4.10       Top level domains
- Q4.11       Classes of networks
- Q4.12       What is CIDR ?
- Q4.13       What is the rule for glue ?
-
- Section 5.  CONFIGURATION
- Q5.1        Changing a Secondary server to a Primary server ?
- Q5.2        Moving a Primary server to another server
- Q5.3        How do I subnet a Class B Address ?
- Q5.4        Subnetted domain name service
- Q5.5        Recommended format/style of DNS files
- Q5.6        DNS on a system not connected to the Internet
- Q5.7        Multiple Domain configuration
- Q5.8        wildcard MX records
- Q5.9        How do you identify a wildcard MX record ?
- Q5.10       Why are fully qualified domain names recommended ?
- Q5.11       Distributing load using named
- Q5.12       Order of returned records
- Q5.13       resolv.conf
- Q5.14       How do I delegate authority for sub-domains ?
- Q5.15       DNS instead of NIS on a Sun OS 4.1.x system
- Q5.16       Patches to add functionality to BIND 
- Q5.17       How to serve multiple domains from one server
-
- Section 6.  PROBLEMS
- Q6.1        No address for root server
- Q6.2        Error - No Root Nameservers for Class XX
- Q6.3        Bind 4.9.x and MX querying?
- Q6.4        Do I need to define an A record for localhost ?
- Q6.5        MX records, CNAMES and A records for MX targets
- Q6.6        Can an NS record point to a CNAME ?
- Q6.7        Nameserver forgets own A record
- Q6.8        General problems (core dumps !)
- Q6.9        malloc and DECstations
- Q6.10       Can't resolve names without a "."
- Q6.11       Err/TO errors being reported
- Q6.12       Why does swapping kill BIND ?
-
- Section 7.  ACKNOWLEDGEMENTS
- Q7.1        How is this FAQ generated ?
- Q7.2        What formats are available ?
- Q7.3        Contributors
-
-===============================================================================
-
-Section 1.  TO DO / UPDATES
-
- Q1.1        Contributions needed 
- Q1.2        UPDATES / Changes since last posting 
-
------------------------------------------------------------------------------
-
-Question 1.1.  Contributions needed
-
-Date: Fri Dec  6 00:40:00 EST 1996
-
-* Expand the slave/forward section
-
------------------------------------------------------------------------------
-
-Question 1.2.  UPDATES / Changes since last posting
-
-Date: Fri Dec  6 00:40:00 EST 1996
-
-* The FAQ is now maintained in BFNN (Bizzare format with No Name).  This
-  allows me to create ASCII, HTML, and GNU info (postscript coming soon)
-  from one source file.
-* References to 4.9.4 changed to 4.9.5.
-* memory/CPU usage question - removed uunet map reference.  Not there...
-* Minor edits of information and questions for new format.
-* How do I delegate authority for sub-domains ? - edited answer
-
-===============================================================================
-
-Section 2.  INTRODUCTION / MISCELLANEOUS
-
- Q2.1        What is this newsgroup ?
- Q2.2        More information
- Q2.3        What is BIND  ?
- Q2.4        What is the difference between BIND and DNS ?
- Q2.5        Where is the latest version of BIND located ?
- Q2.6        How can I find the path taken between two systems/domains ?
- Q2.7        How do you find the hostname given the TCP-IP address ?
- Q2.8        How do I register a domain ?
- Q2.9        How can I change the IP address of our server ?
- Q2.10       Issues when changing your domain name
- Q2.11       How memory and CPU does DNS use ?
- Q2.12       Other things to consider when planning your servers  
- Q2.13       Proper way to get NS and reverse IP records into DNS
- Q2.14       How do I get my address assigned from the NIC ?
- Q2.15       Is there a block of private IP addresses I can use?
- Q2.16       Does BIND cache negative answers (failed DNS lookups) ?
- Q2.17       What does an NS record really do ?
- Q2.18       DNS ports
- Q2.19       What is the cache file 
- Q2.20       Obtaining the latest cache file
- Q2.21       Selecting a nameserver/root cache
- Q2.22       InterNIC and domain names
-
------------------------------------------------------------------------------
-
-Question 2.1.  What is this newsgroup ?
-
-Date: Thu Dec  1 11:08:28 EST 1994
-
-comp.protocols.tcp-ip.domains is the usenet newsgroup for discussion on
-issues relating to the Domain Name System (DNS).
-
-This newsgroup is not for issues directly relating to IP routing and
-addressing.  Issues of that nature should be directed towards
-comp.protocols.tcp-ip.
-
------------------------------------------------------------------------------
-
-Question 2.2.  More information
-
-Date: Fri Dec  6 00:41:03 EST 1996
-
-You can find more information concerning DNS in the following places:
-
-* The BOG (BIND Operations Guide) - in the BIND distribution
-* The FAQ included with BIND 4.9.5 in doc/misc/FAQ
-* DNS and BIND by Albitz and Liu (an O'Reilly & Associates Nutshell
-  handbook)
-* A number of RFCs (920, 974, 1032, 1034, 1101, 1123, 1178, 1183, 1348,
-  1535, 1536, 1537, 1591, 1706, 1712, 1713, 1912, 1918)
-* The DNS Resources Directory (DNSRD) http://www.dns.net/dnsrd/
-* If you are having troubles relating to sendmail and DNS, you may wish to
-  refer to the USEnet newsgroup comp.mail.sendmail and/or the FAQ for that
-  newsgroup which may be found for anonymous ftp at rtfm.mit.edu :
-  /pub/usenet/news.answers/mail/sendmail-faq
-* Information concerning some frequently asked questions relating to the
-  Internet (i.e., what is the InterNIC, what is an RFC, what is the IETF,
-  etc) may be found for anonymous ftp from ds.internic.net : /fyi/fyi4.txt
-  A version may also be obtained with the URL
-  gopher://ds.internic.net/00/fyi/fyi4.txt.
-* Information on performing an initial installation of BIND may be found
-  using the DNS Resources Directory at
-  http://www.dns.net/dnsrd/docs/basic.txt
-* Three other USEnet newsgroups:
-
-  * comp.protocols.dns.bind
-  * comp.protocols.dns.ops
-  * comp.protocols.dns.std
-
------------------------------------------------------------------------------
-
-Question 2.3.  What is BIND  ?
-
-Date: Tue Sep 10 23:15:58 EDT 1996
-
-From the BOG Introduction -
-
-The Berkeley Internet Name Domain (BIND)  implements an  Internet name
-server  for the BSD operating system.  The BIND consists of  a server (or
-``daemon'')  and  a resolver  library.   A  name server is a network
-service that enables clients to name  resources or  objects and share this
-information with other objects in the network.  This in effect is a
-distributed  data  base  system  for objects  in a computer network.  BIND
-is fully integrated into BSD (4.3 and later releases) network  programs
-for use  in  storing and  retrieving host names and address.  The system
-administrator can configure the system to  use BIND as  a replacement to
-the older host table lookup of information in the network hosts file
-/etc/hosts.   The default configuration for BSD uses BIND.
-
------------------------------------------------------------------------------
-
-Question 2.4.  What is the difference between BIND and DNS ?
-
-Date: Tue Sep 10 23:15:58 EDT 1996
-
-(text provided by Andras Salamon) DNS is the Domain Name System, a set of
-protocols for a distributed database that was originally designed to
-replace /etc/hosts files.  DNS is most commonly used by applications to
-translate domain names of hosts to IP addresses.  A client of the DNS is
-called a resolver; resolvers are typically located in the application
-layer of the networking software of each TCP/IP capable machine.  Users
-typically do not interact directly with the resolver.  Resolvers query the
-DNS by directing queries at name servers that contain parts of the
-distributed database that is accessed by using the DNS protocols.  In
-common usage, `the DNS' usually refers just to the data in the database.
-
-BIND (Berkeley Internet Name Domain) is an implementation of DNS, both
-server and client.  Development of BIND is funded by the Internet Software
-Consortium and is coordinated by Paul Vixie.  BIND has been ported to
-Windows NT and VMS, but is most often found on Unix.  BIND source code is
-freely available and very complex; most of the development on the DNS
-protocols is based on this code; and most Unix vendors ship BIND-derived
-DNS implementations.  As a result, the BIND name server is the most widely
-used name server on the Internet.  In common usage, `BIND' usually refers
-to the name server that is part of the BIND distribution, and sometimes to
-name servers in general (whether BIND-derived or not).
-
------------------------------------------------------------------------------
-
-Question 2.5.  Where is the latest version of BIND located ?
-
-Fri Dec  6 00:23:19 EST 1996
-
-This information may be found at http://www.vix.com/isc/bind.html
-
-At this time, BIND version of 4.9.5 may be found for anonymous ftp from
-
-ftp.vix.com : /pub/bind/release/4.9.5/bind-4.9.5-REL.tar.gz
-
-Other sites that officially mirror the BIND distribution are
-
-* bind.fit.qut.edu.au : /pub/bind
-* ftp.funet.fi : /pub/unix/tcpip/dns/bind
-* ftp.univ-lyon1.fr : /pub/mirrors/unix/bind
-* ftp.oleane.net : /pub/mirrors/unix/bind
-* ftp.ucr.ac.cr : /pub/Unix/dns/bind
-* ftp.luth.se : /pub/unix/dns/bind/beta
-
-You may need GNU zip, Larry Wall's patch program (if there are any patch
-files), and a C compiler to get BIND running from the above mentioned
-source.
-
-GNU zip is available for anonymous ftp from
-
-prep.ai.mit.edu : /pub/gnu/gzip-1.2.4.tar
-
-patch is available for anonymous ftp from
-
-prep.ai.mit.edu : /pub/gnu/patch-2.1.tar.gz
-
-A version of BIND for Windows NT is available for anonymous ftp from
-
-ftp.vix.com : /pub/bind/release/4.9.5/contrib/ntdns495relbin.zip
-
-and
-
-ftp.vix.com : /pub/bind/release/4.9.5/contrib/ntbind495rel.zip
-
------------------------------------------------------------------------------
-
-Question 2.6.  How can I find the path taken between two systems/domains ?
-
-Date: Fri Dec  6 00:10:31 EST 1996
-
-On a Unix system, use traceroute.  If it is not available to you, you may
-obtain the source source for 'traceroute', compile it and install it on
-your system.
-
-One version of this program with additional functionality may be found for
-anonymous ftp from
-
-ftp.nikhef.nl : /pub/network/traceroute.tar.Z
-
-Another version may be found for anonymous ftp from
-
-ftp.psc.edu : /pub/net_tools/traceroute.tar
-
------------------------------------------------------------------------------
-
-Question 2.7.  How do you find the hostname given the TCP-IP address ?
-
-Date: Thu Dec  1 09:55:24 EST 1994
-
-For an address a.b.c.d you can always do:
-
-         % nslookup
-         > set q=ptr
-         > d.c.b.a.in-addr.arpa.
-
-Most newer version of nslookup (since 4.8.3) will recognize an address, so
-you can just say:
-
-         % nslookup a.b.c.d
-
-DiG will work like this also:
-
-         % dig -x a.b.c.d
-
-host from the contrib/host from the bind distribution may also be used.
-
------------------------------------------------------------------------------
-
-Question 2.8.  How do I register a domain ?
-
-Date: Wed Sep  4 23:59:42 EDT 1996
-
-You can talk to your Internet Service Provider (ISP).  They can submit the
-registration for you.  If you are not going to be directly connected, they
-should be able to offer MX records for your domain for mail delivery (so
-that mail sent to the new domain will be sent to your "standard" account).
-In the case where the registration is done by the organization itself, it
-still makes the whole process much easier if the ISP is approached for
-secondary servers _before_ the InterNIC is approached for registration.
-
-For information about making the registration yourself, look to the
-InterNIC  (or other similar organization).
-
-* anonymout ftp from internic.net : /templates
-* gopher://rs.internic.net/
-* http://rs.internic.net/reg/reg-forms.html
-* http://www.ripe.net/
-
-You will need at least two domain name servers when you register your
-domain.  Many ISP's are willing to provide primary and/or secondary name
-service for their customers.
-
-Please note that the InterNIC is now charging a fee for domain names    in
-the "COM", "ORG", and "NET".  More information may be found from  the
-Internic at
-
-http://rs.internic.net/domain-info/fee-policy.html
-
-Many times, registration of a domain name can be initiated by sending
-e-mail to the zone contact. You can obtain the contact in the  SOA record
-for the country, or in a whois server:
-
-         $ nslookup -type=SOA fr.
-         origin = ns1.nic.fr
-         mail addr = nic.nic.fr
-         ...
-
-The mail address to contact in this case is 'nic@nic.fr' (you must
-substitute an '@' for the first dot in the mail addr field).
-
-An alternate method to obtain the e-mail address of the national NIC is
-the 'whois' server at InterNIC.
-
-You may be requested to make your request to another email address or
-using a certain information template/application.
-
------------------------------------------------------------------------------
-
-Question 2.9.  How can I change the IP address of our server ?
-
-Date: Sun May  5 22:46:28 EDT 1996
-
-(From Mark Andrews) Before the move.
-
-* Ensure you are running a modern nameserver. BIND 4.9.3-REL + Patch1 is a
-  good choice.
-* Inform all your secondaries that you are going to change.  Have them
-  install both the current and new addresses in their named.boot's.
-* Drop the ttl of the A's associated with the nameserver to something
-  small (5 min is usually good).
-* Drop the refesh and retry times of the zone containing the  forward
-  records for the server.
-* Configure the new reverse zone before the move and make sure it is
-  operational.
-* On the day of the move add the new A record(s) for the server.  Don't
-  forget to have these added to parent domains. You will look like you are
-  multihomed with one interface dead.
-
-Move the machine after gracefully terminating any other services it is
-offering. Then,
-
-* Fixup the A's, ttl, refresh and retry counters.  (If you are running an
-  all server EDIT out all references to the old addresses in the cache
-  files).
-* Inform all the secondaries the move is complete.
-* Inform the parents of all zones you are primary of the new NS/A pairs
-  for the relevent zones.
-* Inform all the administators of zones you are secondaring that the
-  machine  has moved.
-* For good measure update the serial no for all zones you are primary for.
-  This will flush out old A's.
-
------------------------------------------------------------------------------
-
-Question 2.10.  Issues when changing your domain name
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-If you are changing your domain name from abc.foobar.com to foobar.net,
-the forward zones are easy and there are a number of ways to do it.   One
-way is the following:
-
-Have a single db file for the 2 domains, and have a single machine be the
-primary server for both abc.foobar.com and foobar.net.
-
-To resolve the host foo in both domains, use a single zone file which
-merely uses this for the host:
-
-foo             IN      A       1.2.3.4
-
-Use a "@" wherever the domain would be used ie for the SOA:
-
-@               IN      SOA     (...
-
-Then use this pair of lines in your named.boot:
-
-primary         abc.foobar.com  db.foobar
-primary         foobar.net      db.foobar
-
-The reverse zones should either contain PTRs to both names, or to
-whichever name you believe to be canonical currently.
-
------------------------------------------------------------------------------
-
-Question 2.11.  How memory and CPU does DNS use ?
-
-Date: Fri Dec  6 01:07:56 EST 1996
-
-It can use quite a bit !  The main thing that BIND needs is memory.   It
-uses very little CPU or network bandwidth.   The main  considerations to
-keep in mind when planning are:
-
-* How many zones do you have and how large are they ?
-* How many clients do you expect to serve and how active are they ?
-
-As an example, here is a snapshot of memory usage from CSIRO Division  of
-Mathematics and Statistics, Australia
-
-      Named takes several days to stabalize its memory usage.
- 
-      Our main server stabalises at ~10Mb. It takes about 3 days to
-      reach this size from 6 M at startup. This is under Sun OS 4.1.3U1.
-
-As another example, here is the configuration of ns.uu.net (from late
-1994):
-
-      ns.uu.net only does nameservice.  It is running a version of BIND
-      4.9.3 on a Sun Classic with 96 MB of RAM, 220 MB of swap (remember
-      that Sun OS will reserve swap for each fork, even if it is not needed)
-      running Sun OS 4.1.3_U1.
-
-      Joseph Malcolm, of Alternet, states that named generally hovers at 
-      5-10% of the CPU, except after a reload, when it eats it all. 
-
------------------------------------------------------------------------------
-
-Question 2.12.  Other things to consider when planning your servers
-
-Date: Mon Jan  2 14:24:51 EST 1995
-
-When making the plans to set up your servers, you may want to also
-consider the following issues:
-
-        A) Server O/S limitations/capacities (which tend to be widely
-           divergent from vendor to vendor)
-        B) Client resolver behavior (even more widely divergent)
-        C) Expected query response time
-        D) Redundancy
-        E) Desired speed of change propagation
-        F) Network bandwidth availability
-        G) Number of zones/subdomain-levels desired
-        H) Richness of data stored (redundant MX records? HINFO records?)
-        I) Ease of administration desired
-        J) Network topology (impacts reverse-zone volume)
- 
-  Assuming a best-possible case for the factors above, particularly (A), (B),
-  (C), (F), (G) & (H), it would be possible to run a 1000-node domain
-  using a single lowly 25 or 40 MHz 386 PC with a fairly modest amount of RAM 
-  by today's standards, e.g. 4 or 8 Meg.   However, this configuration would 
-  be slow, unreliable, and would provide no functionality beyond your basic 
-  address-to-name and name-to-address mappings.
- 
-  Beyond that baseline case, depending on what factors listed above,
-  you may want look at other strategies, such splitting up the DNS
-  traffic among several machines strategically located, possibly larger ones,
-  and/or subdividing your domain itself. There are many options, tradeoffs, 
-  and DNS architectural paradigms from which to choose.
------------------------------------------------------------------------------
-
-Question 2.13.  Proper way to get NS and reverse IP records into DNS
-
-Date: Mon Jan  2 13:03:53 EST 1995
-
-Reverse domain registration is separate from forward domain registration.
-Blocks of network addresses have been delegated by the InterNIC.  Check if
-your network a.b.c.0 is in such a block by using nslookup:
-
-   nslookup -type=soa c.b.a.in-addr.arpa.
-   nslookup -type=soa b.a.in-addr.arpa.
-   nslookup -type=soa a.in-addr.arpa.
-
-One of the above should give you the information you are looking for (the
-others will return with an error something like `*** No start of authority
-(SOA) records available for ...') This will give you the email address of
-the person to whom you should address your change request.
-
-If none of these works, your network probably has not been delegated by
-the InterNIC and you need to contact them directly.
-
-CIDR has meant that the registration is delegated, but registration of
-in-addr.arpa has always been separate from forward zones - and for good
-reason - in that the forward and reverse zones may have different
-policies, contents etc, may be served by a different set of nameservers,
-and exist at different times (usually only at point of creation).  There
-isn't a one-to-one mapping between the two, so merging the registration
-would probably cause more problems than people forgetting/not-knowing that
-they had to register in-addr.arpa zones separately.  For example, there
-are organizations that have hundreds of networks and two or more domains,
-with a sprinkling of machines from each network in each of the domains.
-
------------------------------------------------------------------------------
-
-Question 2.14.  How do I get my address assigned from the NIC ?
-
-Date: Fri Dec  6 01:11:34 EST 1996
-
-You should probably ask your Internet provider to give you an address.
-These days, addresses are being distributed through the providers, so that
-they can assign adjacent blocks of addresses to sites that go through the
-same provider, to permit more efficient routing on the backbones.
-
-Unless you have thousands of hosts, you probably won't be able to get a
-class B these days.  Instead, you can get a series of class C networks.
-Large requests will be queried, so be ready to provide a network plan if
-you ask for more than 16 class C networks.
-
-If you can't do this through your Internet provider, you can look for a
-subnet registration form on rs.internic.net.  See the answer in this FAQ
-to the question "How do I register a domain" for a URL to these forms.
-
------------------------------------------------------------------------------
-
-Question 2.15.  Is there a block of private IP addresses I can use?
-
-Date: Sun May  5 23:02:49 EDT 1996
-
-Yes there is.  Please refer to RFC 1918:
-
-   1918 Address Allocation for Private Internets. Y. Rekhter, B.
-        Moskowitz, D. Karrenberg, G. de Groot, & E. Lear. February 1996.
-        (Format: TXT=22270 bytes)
- 
-RFC 1918 documents the allocation of the following addresses for use by
-``private internets'':
-
-        10.0.0.0        -   10.255.255.255
-        172.16.0.0      -   172.31.255.255
-        192.168.0.0     -   192.168.255.255
-
------------------------------------------------------------------------------
-
-Question 2.16.  Does BIND cache negative answers (failed DNS lookups) ?
-
-Date: Mon Jan  2 13:55:50 EST 1995
-
-Yes, BIND 4.9.3 and more recent versions will cache negative answers.
-
------------------------------------------------------------------------------
-
-Question 2.17.  What does an NS record really do ?
-
-Date: Wed Sep  4 22:52:18 EDT 1996
-
-The NS records in your zone data file pointing to the zone's name  servers
-(as opposed to the servers of delegated subdomains) don't do  much.
-They're essentially unused, though they are returned in the  authority
-section of reply packets from your name servers.
-
-However, the NS records in the zone file of the parent domain are used to
-find the right servers to query for the zone in question.  These records
-are more important than the records in the zone itself.
-
------------------------------------------------------------------------------
-
-Question 2.18.  DNS ports
-
-Date: Fri Feb 10 15:40:10 EST 1995
-
-The following table shows what TCP/UDP ports DNS uses to send and  receive
-queries:
-
-   Prot Src   Dst   Use
-   udp  53    53    Queries between servers (eg, recursive queries)
-                    Replies to above
-   tcp  53    53    Queries with long replies between servers, zone 
-                    transfers Replies to above
-   udp  >1023 53    Client queries (sendmail, nslookup, etc ...)
-   udp  53    >1023 Replies to above
-   tcp  >1023 53    Client queries with long replies
-   tcp  53    >1023 Replies to above
-
-   Note: >1023 is for non-priv ports on Un*x clients. On other client 
-         types, the limit may be more or less.
-
-Another point to keep in mind when designing filters for DNS is that a DNS
-server uses port 53 both as the source and destination for it's queries.
-So, a client queries an initial server from an unreserved port number to
-UDP port 53.  If the server needs to query another server to get the
-required info, it sends a UDP query to that server with both source and
-destination ports set to 53.  The response is then sent with the same
-src=53 dest=53 to the first server which then responds to the original
-client from port 53 to the original source port number.
-
-The point of all this is that putting in filters to only allow UDP between
-a high port and port 53 will not work correctly, you must also allow the
-port 53 to port 53 UDP to get through.
-
-Also, ALL versions of BIND use TCP for queries in some cases.  The
-original query is tried using UDP.  If the response is longer than the
-allocated buffer, the resolver will retry the query using a TCP
-connection.  If you block access to TCP port 53 as suggested above, you
-may find that some things don't work.
-
-Newer version of BIND allow you to configure a list of IP addresses from
-which to allow zone transfers.  This mechanism can be used to prevent
-people from outside downloading your entire namespace.
-
------------------------------------------------------------------------------
-
-Question 2.19.  What is the cache file
-
-Date: Fri Dec  6 01:15:22 EST 1996
-
-From the "Name Server Operations Guide"
-
-      6.3.  Cache Initialization
- 
-         6.3.1.  root.cache
- 
-                 The name server needs to know the servers that
-            are  the  authoritative  name  servers for the root
-            domain of the network.  To do this we have to prime
-            the name server's cache with the addresses of these
-            higher authorities.  The location of this  file  is
-            specified  in  the  boot  file. ...
-
------------------------------------------------------------------------------
-
-Question 2.20.  Obtaining the latest cache file
-
-Date: Fri Dec  6 01:15:22 EST 1996
-
-If you have a version of dig running, you may obtain the information with
-the command
-
-      dig @a.root-servers.net. . ns
-
-A perl script to handle some possible problems when using this method
-from behind a firewall and that can also be used to periodically obtain
-the latest cache file was posted to comp.protocols.tcp-ip.domains  during
-early October, 1996.  It was posted with the subject "Keeping  db.cache
-current". It is available at
-http://www.users.pfmc.net/~cdp/cptd-faq/current_db_cache.txt.
-
-The latest cache file may also be obtained from the InterNIC via ftp  or
-gopher:
-
-      ;       This file is made available by InterNIC registration services
-      ;       under anonymous FTP as
-      ;           file                /domain/named.root
-      ;           on server           FTP.RS.INTERNIC.NET
-      ;       -OR- under Gopher at    RS.INTERNIC.NET
-      ;           under menu          InterNIC Registration Services (NSI)
-      ;              submenu          InterNIC Registration Archives
-      ;           file                named.root
-
------------------------------------------------------------------------------
-
-Question 2.21.  Selecting a nameserver/root cache
-
-Date: Mon Aug  5 22:54:11 EDT 1996
-
-Exactly how is the a root server selected from the root cache? Does the
-resolver attempt to pick the closest host or is it random or is it via
-sortlist-type workings?  If the root server selected is not available (for
-whatever reason), will the the query fail instead of attempting another
-root server in the list ?
-
-Every recursive BIND name server (that is, one which is willing to go out
-and find something for you if you ask it something it doesn't know) will
-remember the measured round trip time to each server it sends queries to.
-If it has a choice of several servers for some domain (like "." for
-example) it will use the one whose measured RTT is lowest.
-
-Since the measured RTT of all NS RRs starts at zero (0), every one gets
-tried one time.  Once all have responded, all RTT's will be nonzero, and
-the "fastest server" will get all queries henceforth, until it slows down
-for some reason.
-
-To promote dispersion and good recordkeeping, BIND will penalize the RTT
-by a little bit each time a server is reused, and it will penalize the RTT
-a _lot_ if it ever has to retransmit a query.  For a server to stay "#1",
-it has to keep on answering quickly and consistently.
-
-Note that this is something BIND does that the DNS Specification does not
-mention at all.  So other servers, those not based on BIND, might behave
-very differently.
-
------------------------------------------------------------------------------
-
-Question 2.22.  InterNIC and domain names
-
-Date: Sun Jun  2 11:23:49 EDT 1996
-
-The current InterNIC policy on what to do if someone wants to use a domain
-name that is already in use may be found at
-
-rs.internic.net : /policy/internic/internic-domain-4.txt
-
-or
-
-http://rs.internic.net/domain-info/internic-domain-4.html.
-
-The following information was submitted by Carl Oppedahl
-<oppedahl@patents.com> :
-
-If the jealous party happens to have a trademark registration, it is quite
-likely that the domain name owner will lose the domain name, even if they
-aren't infringing the trademark.  This presents a substantial risk of loss
-of a domain name on only 30 days' notice.  Anyone who is the manager of an
-Internet-connected site should be aware of this risk and should plan for
-it.
-
-See "How do I protect myself from loss of my domain name?" at
-http://www.patents.com/weblaw.sht#domloss.
-
-For an example of an ISP's battle to keep its domain name, see
-http://www.patents.com/nsi.sht.
-
-A compendium of information on the subject may be found at
-http://www.law.georgetown.edu/lc/internic/domain1.html.
-
-===============================================================================
-
-Section 3.  UTILITIES
-
- Q3.1        Utilities to administer DNS zone files
- Q3.2        DIG - Domain Internet Groper
- Q3.3        DNS packet analyser
- Q3.4        host
- Q3.5        How can I use DNS information in my program?
- Q3.6        A source of information relating to DNS
-
------------------------------------------------------------------------------
-
-Question 3.1.  Utilities to administer DNS zone files
-
-Date: Wed Sep  4 22:53:53 EDT 1996
-
-There are a few utilities available to ease the administration of zone
-files in the DNS.
-
-Two common ones are h2n and makezones.  Both are perl scripts.  h2n is
-used to convert host tables into zone data files.  It is available for
-anonymous ftp from
-
-ftp.uu.net : /published/oreilly/nutshell/dnsbind/dns.tar.Z
-
-makezones works from a single file that looks like a forward zone file,
-with some additional syntax for special cases.  It is included in the
-current BIND distribution.  The newest version is always available for
-anonymous ftp from
-
-ftp.cus.cam.ac.uk : /pub/software/programs/DNS/makezones
-
-More information may be found using the DNS Resources Directory
-
-http://www.dns.net/dnsrd/.
-
------------------------------------------------------------------------------
-
-Question 3.2.  DIG - Domain Internet Groper
-
-Date: Thu Dec  1 11:09:11 EST 1994
-
-The latest and greatest, official, accept-no-substitutes version of the
-Domain Internet Groper (DiG) is the one that comes with BIND.   Get the
-latest kit.
-
------------------------------------------------------------------------------
-
-Question 3.3.  DNS packet analyser
-
-Date: Wed Sep  4 23:43:57 EDT 1996
-
-There is a free ethernet analyser called Ethload available for PC's
-running DOS. The latest filename is ETHLD104.ZIP. It understands lots  of
-protocols including TCP/UDP. It'll look inside there and display
-DNS/BOOTP/ICMP packets etc. (Ed. note: something nice for someone to add
-to tcpdump ;^) ).  Depending on the ethernet controller it's given  it'll
-perform slightly differently. It handles NDIS/Novell/Packet  drivers.  It
-works best with Novell's promiscuous mode drivers.   A SimTel mirror site
-should have the program available for anonymous ftp.   One is
-
-ftp.coast.net : /SimTel/msdos/lan/ethld104.zip
-
------------------------------------------------------------------------------
-
-Question 3.4.  host
-
-Date: Sun Dec  4 21:15:38 EST 1994
-
-A section from the host man page:
-
-     host looks for information about Internet hosts and domain
-     names.  It gets this information from a set of intercon-
-     nected servers that are spread across the world. The infor-
-     mation is stored in the form of "resource records" belonging
-     to hierarchically organized "zones".
-
-     By default, the program simply converts between host names
-     and Internet addresses. However, with the -t, -a and -v
-     options, it can be used to find all of the information about
-     domain names that is maintained by the domain nameserver
-     system.  The information printed consists of various fields
-     of the associated resource records that were retrieved.
-
-     The arguments can be either host names (domain names) or
-     numeric Internet addresses.
-
-'host' is compatible with both BIND 4.9 and BIND 4.8
-
-'host' may be found in contrib/host in the BIND distribution.  The latest
-version always available for anonymous ftp from
-
-ftp.nikhef.nl : /pub/network/host.tar.Z
-
-It may also be found for anonymous ftp from
-
-ftp.uu.net : /networking/ip/dns/host.tar.Z
-
------------------------------------------------------------------------------
-
-Question 3.5.  How can I use DNS information in my program?
-
-Date: Fri Feb 10 15:25:11 EST 1995
-
-It depends on precisely what you want to do:
-
-* Consider whether you need to write a program at all.  It may well be
-  easier to write a shell program (e.g. using awk or perl) to parse the
-  output of dig, host or nslookup.
-* If all you need is names and addresses, there will probably be system
-  routines 'gethostbyname' and 'gethostbyaddr' to provide this
-  information.
-* If you need more details, then there are system routines (res_query and
-  res_search) to assist with making and sending DNS queries.  However,
-  these do not include a routine to parse the resulting answer (although
-  routines to assist in this task are provided).  There is a separate
-  library available that will take a DNS response and unpick it into its
-  constituent parts, returning a C structure that can be used by the
-  program.  The source for this library is available for anonymous ftp at
-
-  hpux.csc.liv.ac.uk : /hpux/Networking/Admin/resparse-1.2
-
------------------------------------------------------------------------------
-
-Question 3.6.  A source of information relating to DNS
-
-Date: Tue Nov  5 23:42:21 EST 1996
-
-You may find utilities and tools to help you manage your zone files
-(including WWW front-ends) in the "tools" section of the DNS  resources
-directory:
-
-http://www.dns.net/dnsrd/tools.html
-
-There are also a number of IP management tools available.  Data
-Communications had an article on the subject in Sept/Oct of 1996.  The
-tools mentioned in the article and a few others may be found at the
-following sites:
-
-* IP Address management, http://www.accugraph.com
-* IP-Track, http://www.on.com
-* NetID, http://www.isotro.com
-* QIP, http://www.quadritek.com
-* UName-It, http://www.esm.com
-
-===============================================================================
-
-Section 4.  DEFINITIONS
-
- Q4.1        TCP/IP Host Naming Conventions
- Q4.2        What are slaves and forwarders ?
- Q4.3        When is a server authoritative?
- Q4.4        My server does not consider itself authoritative !
- Q4.5        NS records don't configure servers as authoritative ?
- Q4.6        underscore in host-/domainnames
- Q4.7        What is lame delegation ?
- Q4.8        How can I see if the server is "lame" ?
- Q4.9        What does opt-class field in a zone file do?
- Q4.10       Top level domains
- Q4.11       Classes of networks
- Q4.12       What is CIDR ?
- Q4.13       What is the rule for glue ?
-
------------------------------------------------------------------------------
-
-Question 4.1.  TCP/IP Host Naming Conventions
-
-Date: Mon Aug  5 22:49:46 EDT 1996
-
-One guide that may be used when naming hosts is RFC 1178, "Choosing a Name
-for Your Computer", which is available via anonymous FTP from
-
-ftp.internic.net : /rfc/rfc1178.txt
-
-RFCs (Request For Comments) are specifications and guidelines for how many
-aspects of TCP/IP and the Internet (should) work.  Most RFCs are fairly
-technical documents, and some have semantics that are hotly contested in
-the newsgroups.  But a few, like RFC 1178, are actually good to read for
-someone who's just starting along a TCP/IP path.
-
------------------------------------------------------------------------------
-
-Question 4.2.  What are slaves and forwarders ?
-
-Date: Thu Dec  1 10:32:43 EST 1994
-
-"forwarders" is a list of NS records that are _prepended_ to a list of NS
-records to query if the data is not available locally.  This allows a rich
-cache of records to be built up at a centralized location.  This is good
-for sites that have sporadic or very slow connections to the Internet.
-(demand dial-up, for example)  It's also just a good idea for very large
-distributed sites to increase the chance that you don't have to go off to
-the Internet to get an IP address. (sometimes for addresses across the
-street!)
-
-"slave" modifies this to say to replace the list of NS records with the
-forwarders entry, instead of prepending to it.  This is for firewalled
-environments, where the nameserver can't directly get out to the Internet
-at all.
-
-"slave" is meaningless (and invalid, in late-model BINDs) without
-"forwarders".  "forwarders" is an entry in named.boot, and therefore
-applies only to the nameserver (not to resolvers).
-
------------------------------------------------------------------------------
-
-Question 4.3.  When is a server authoritative?
-
-Date: Mon Jan  2 13:15:13 EST 1995
-
-In the case of BIND:
-
-* The server contains current data in files for the zone in question (Data
-  must be current for secondaries, as defined in the SOA)
-* The server is told that it is authoritative for the zone, by a 'primary'
-  or 'secondary' keyword in /etc/named.boot.
-* The server does an error-free load of the zone.
-
------------------------------------------------------------------------------
-
-Question 4.4.  My server does not consider itself authoritative !
-
-Date: Mon Jan  2 13:15:13 EST 1995
-
-The question was:
-
-  What if I have set up a DNS where there is an SOA record for
-  the domain, but the server still does not consider itself
-  authoritative.  (when using nslookup and set server=the correct machine.)
-  It seems that something is not matching up somewhere.  I suspect
-  that this is because the service provider has not given us control
-  over the IP numbers in our own domain, and so while the machine listed
-  has an A record for an address, there is no corresponding PTR record.
-With the answer:
-
-  That's possible too, but is unrelated to the first question.
-  You need to be delegated a zone before outside people will start
-  talking to your server.  However, a server can still be authoritative
-  for a zone even though it hasn't been delegated authority (it's just 
-  that only the people who use that as their server will see the data).
-    
-  A server may consider itself non-authoritative even though it's a
-  primary if there is a syntax error in the zone (see the list in the 
-  previous question).
------------------------------------------------------------------------------
-
-Question 4.5.  NS records don't configure servers as authoritative ?
-
-Date: Fri Dec  6 16:13:34 EST 1996
-
-Nope, delegation is a separate issue from authoritativeness.  You can
-still be authoritative, but not delegated.  (you can also be  delegated,
-but not authoritative -- that's a "lame delegation")
-
------------------------------------------------------------------------------
-
-Question 4.6.  underscore in host-/domainnames
-
-Date: Mon Aug  5 22:39:02 EDT 1996
-
-The question is "Are underscores are allowed in host- or domainnames" ?
-        RFC 1033 allows them.
-        RFC 1035 doesn't.
-        RFC 1123 doesn't.
-        dnswalk complains about them.
-
-
-Which RFC is the final authority these days?
-
-Actually RFC 1035 deals with names of machines or names of mail domains.
-i.e "_" is not permitted in a hostname or on the RHS of the "@" in
-local@domain.
-
-Underscore is permitted where ever the domain is NOT one of these types
-of addresses.
-
-In general the DNS mostly contains hostnames and mail domainnames.  This
-will change as new resource record types for authenticating DNS  queries
-start to appear.
-
-The latest version of 'host' checks for illegal characters in A/MX record
-names and the NS/MX target names.
-
-After saying all of that, remember that RFC 1123 is a Required Internet
-Standard (per RFC 1720), and RFC 1033 isn't.  Even  RFC 1035 isn't a
-required standard.  Therefore, RFC 1123 wins, no contest.
-
-From RFC 1123, Section 2.1
-
-   2.1  Host Names and Numbers
-
-      The syntax of a legal Internet host name was specified in RFC-952
-      [DNS:4].  One aspect of host name syntax is hereby changed: the
-      restriction on the first character is relaxed to allow either a
-      letter or a digit.  Host software MUST support this more liberal
-      syntax.
-
-   And described by Dave Barr in RFC1912:
-
-      Allowable characters in a label for a host name are only ASCII
-      letters, digits, and the `-' character.  Labels may not be all
-      numbers, but may have a leading digit  (e.g., 3com.com).  Labels must
-      end and begin only with a letter or digit.  See [RFC 1035] and [RFC
-      1123].  (Labels were initially restricted in [RFC 1035] to start with
-      a letter, and some older hosts still reportedly have problems with
-      the relaxation in [RFC 1123].)  Note there are some Internet
-      hostnames which violate this rule (411.org, 1776.com).
-
-Finally, one more piece of information (From Paul Vixie):
-
-   RFC 1034 says only that domain names have characters in them, though it
-   says so with enough fancy and indirection that it's hard to tell exactly.
-
-   Generally, for second level domains (i.e., something you would get from
-   InterNIC or from the US Domain Registrar and probably other ISO 3166
-   country code TLDs), RFC 952 is thought to apply.  RFC 952 was about host
-   names rather than domain names, but the rules seemed good enough.
-
-        <domainname> ::= <hname>
-
-        <hname> ::= <name>*["."<name>]
-        <name>  ::= <let>[*[<let-or-digit-or-hyphen>]<let-or-digit>]
- 
-There has been a recent update on this subject which may be found in
-
-ftp.internic.net : /internet-drafts/draft-andrews-dns-hostnames-03.txt.
-
------------------------------------------------------------------------------
-
-Question 4.7.  What is lame delegation ?
-
-Date: Mon Aug  5 22:45:02 EDT 1996
-
-Two things are required for a lame delegation:
-
-* A nameserver X is delegated as authoritative for a zone.
-* Nameserver X is not performing nameservice for that zone.
-
-Try to think of a lame delegation as a long-term condition, brought about
-by a misconfiguration somewhere.  Bryan Beecher's 1992 LISA paper on lame
-delegations is good to read on this.  The problem really lies in
-misconfigured nameservers, not "lameness" brought about by transient
-outages.  The latter is common on the Internet and hard to avoid, while
-the former is correctable.
-
-In order to be performing nameservice for a zone, it must have (presumed
-correct) data for that zone, and it must be answering authoritatively to
-resolver queries for that zone.  (The AA bit is set in the flags section)
-
-The "classic" lame delegation case is when nameserver X is delegated as
-authoritative for domain Y, yet when you ask Y about X, it returns
-non-authoritative data.
-
-Here's an example that shows what happens most often (using dig, dnswalk,
-and doc to find).
-
-Let's say the domain bogus.com gets registered at the NIC and they have
-listed 2 primary name servers, both from their *upstream* provider:
-
- bogus.com      IN      NS      ns.bogus.com
- bogus.com      IN      NS      upstream.com
- bogus.com      IN      NS      upstream1.com
-
-So the root servers have this info.  But when the admins at bogus.com
-actually set up their zone files they put something like:
-
- bogus.com      IN      NS      upstream.com
- bogus.com      IN      NS      upstream1.com
-
-So your name server may have the nameserver info cached (which it may have
-gotten from the root).  The root says "go ask ns.bogus.com" since they are
-authoritative
-
-This is usually from stuff being registered at the NIC (either nic.ddn.mil
-or rs.internic.net), and then updated later, but the folks who make the
-updates later never let the folks at the NIC know about it.
-
------------------------------------------------------------------------------
-
-Question 4.8.  How can I see if the server is "lame" ?
-
-Date: Mon Aug  5 22:45:02 EDT 1996
-
-Go to the authoritative servers one level up, and ask them who they think
-is authoritative, and then go ask each one of those delegees if they think
-that they themselves are authoritative.  If any responds "no", then you
-know who the lame delegation is, and who is delegating lamely to them.
-You can then send off a message to the administrators of the level above.
-
-The 'lamers' script from Byran Beecher really takes care of all this for
-you.  It parses the lame delegation notices from BIND's syslog and
-summarizes them for you.  It may be found in the contrib section of the
-latest BIND distribution.  The latest version is available for anonymous
-ftp from
-
-terminator.cc.umich.edu : /dns/lame-delegations/
-
-   If you want to actively check for lame delegations, you can use 'doc'
-and 'dnswalk'.   You can check things manually with 'dig'.
-
-The InterNIC recently announced a new lame delegation that will be in
-effect on 01 October, 1996.  Here is a summary:
-
-* After receipt/processing of a name registration template, and at random
-  intervals thereafter, the InterNIC will perform a DNS query  via UDP
-  Port 53 on domain names for an SOA response for the name  being
-  registered.
-* If the query of the domain name returns a non-authoritative response
-  from all the listed name servers, the query will be repeated four times
-  over the next 30 days at random intervals approximately 7 days apart,
-  with notification to all listed whois and nameserver contacts of the
-  possible pending deletion.  If at least one server answers correctly,
-  but one or more are lame, FYI notifications will be sent to all contacts
-  and checking will be discontinued.  Additionally, e-mail notices will be
-  provided to the contact for the name servers holding the delegation to
-  alert them to the "lame" condition.  Notifications will state explicitly
-  the consequences of not correcting the "lame" condition and will be
-  assigned a descriptive subject as follows:
-
-     Subject: Lame Delegation Notice: DOMAIN_NAME
-
-  The notification will include a timestamp for when the query was
-  performed.
-* If, following 30 days, the name servers still provide no SOA response,
-  the name will be placed in a "hold" status and the DNS information will
-  no longer be propagated.  The administrative contact will be notified by
-  postal mail and all whois contacts will be notified by e-mail, with
-  instructions for taking corrective action.
-* Following 60 days in a "hold" status, the name will be deleted and made
-  available for reregistration.  Notification of the final deletion will
-  be sent to the name server and domain name contacts  listed in the NIC
-  database.
-
------------------------------------------------------------------------------
-
-Question 4.9.  What does opt-class field in a zone file do?
-
-Date: Thu Dec  1 11:10:39 EST 1994
-
-This field is the address class.  From the BOG -
-
-      ...is the address class; currently, only one class
-      is supported: IN  for  internet  addresses  and  other
-      internet information.  Limited support is included for
-      the HS  class,  which  is  for  MIT/Athena  ``Hesiod''
-      information.
------------------------------------------------------------------------------
-
-Question 4.10.  Top level domains
-
-Date: Fri Dec  6 15:13:35 EST 1996
-
-A section from RFC 1591:
-
-   2.  The Top Level Structure of the Domain Names
-
-   In the Domain Name System (DNS) naming of computers there is a
-   hierarchy of names.  The root of system is unnamed.  There are a set
-   of what are called "top-level domain names" (TLDs).  These are the
-   generic TLDs (EDU, COM, NET, ORG, GOV, MIL, and INT), and the two
-   letter country codes from ISO-3166.  It is extremely unlikely that
-   any other TLDs will be created.
-
------
-
-[ Ed note:  the ISO-3166 country codes may be found for anonymous ftp
-from:
-
-* ftp.isi.edu : /in-notes/iana/assignments/country-codes
-* ftp.ripe.net : /iso3166-codes
-
-]
-
-[ Ed note: Since the Internic started charging for registration services,
-(and for other reasons) there are a number of groups that want to offer
-an alternative to registering a domain under a "standard" TLD.  More
-information on some of these options may be found at:
-
-*      http://www.alternic.net/
-*      http://www.eu.org/
-*      http://www.ml.org/mljoin.html
-
-You may participate in one of the discussions on iTLD proposals at
-
-* To sign up: http://www.newdom.com/lists
-* Old postings: http://www.newdom.com/archive
-
-]
-
------
-
-   ...
-   Under each TLD may be created a hierarchy of names.  Generally, under
-   the generic TLDs the structure is very flat.  That is, many
-   organizations are registered directly under the TLD, and any further
-   structure is up to the individual organizations.
-
-   In the country TLDs, there is a wide variation in the structure, in
-   some countries the structure is very flat, in others there is
-   substantial structural organization.  In some country domains the
-   second levels are generic categories (such as, AC, CO, GO, and RE),
-   in others they are based on political geography, and in still others,
-   organization names are listed directly under the country code.  The
-   organization for the US country domain is described in RFC 1480.
-
-   Each of the generic TLDs was created for a general category of
-   organizations.  The country code domains (for example, FR, NL, KR,
-   US) are each organized by an administrator for that country.  These
-   administrators may further delegate the management of portions of the
-   naming tree.  These administrators are performing a public service on
-   behalf of the Internet community.  Descriptions of the generic
-   domains and the US country domain follow.
-
-   Of these generic domains, five are international in nature, and two
-   are restricted to use by entities in the United States.
-
-   World Wide Generic Domains:
-
-   COM - This domain is intended for commercial entities, that is
-         companies.  This domain has grown very large and there is
-         concern about the administrative load and system performance if
-         the current growth pattern is continued.  Consideration is
-         being taken to subdivide the COM domain and only allow future
-         commercial registrations in the subdomains.
-
-   EDU - This domain was originally intended for all educational
-         institutions.  Many Universities, colleges, schools,
-         educational service organizations, and educational consortia
-         have registered here.  More recently a decision has been taken
-         to limit further registrations to 4 year colleges and
-         universities.  Schools and 2-year colleges will be registered
-         in the country domains (see US Domain, especially K12 and CC,
-         below).
-
-   NET - This domain is intended to hold only the computers of network
-         providers, that is the NIC and NOC computers, the
-         administrative computers, and the network node computers.  The
-         customers of the network provider would have domain names of
-         their own (not in the NET TLD).
-
-   ORG - This domain is intended as the miscellaneous TLD for
-         organizations that didn't fit anywhere else.  Some non-
-         government organizations may fit here.
-
-   INT - This domain is for organizations established by international
-         treaties, or international databases.
-
-   United States Only Generic Domains:
-
-   GOV - This domain was originally intended for any kind of government
-         office or agency.  More recently a decision was taken to
-         register only agencies of the US Federal government in this
-         domain.  State and local agencies are registered in the country
-         domains (see US Domain, below).
-
-   MIL - This domain is used by the US military.
-
-   Example country code Domain:
-
-   US - As an example of a country domain, the US domain provides for 
-	the registration of all kinds of entities in the United States
-	on the basis of political geography, that is, a hierarchy of
-	<entity-name>.<locality>.<state-code>.US.  For example,
-	"IBM.Armonk.NY.US".  In addition, branches of the US domain are
-	provided within each state for schools (K12), community
-	colleges (CC), technical schools (TEC), state government
-	agencies (STATE), councils of governments (COG),libraries
-	(LIB), museums (MUS), and several other generic types of
-	entities (see RFC 1480 for details).
-
-
-A section from RFC 1480:
-
-   2. NAMING STRUCTURE
-
-       The US Domain hierarchy is based on political geography.  The
-       basic name space under US is the state name space, then the
-       "locality" name space, (like a city, or county) then
-       organization or computer name and so on.
-    
-       For example:
-    
-              BERKELEY.CA.US
-              PORTLAND.WA.US
-    
-       There is of course no problem with running out of names.
-    
-       The things that are named are individual computers.
-    
-       If you register now in one city and then move, the database can
-       be updated with a new name in your new city, and a pointer can
-       be set up from your old name to your new name.  This type of
-       pointer is called a CNAME record.
-    
-       The use of unregistered names is not effective and causes problems
-       for other users.  Inventing your own name and using it without
-       registering is not a good idea.
-    
-       In addition to strictly geographically names, some special names
-       are used, such as FED, STATE, AGENCY, DISTRICT, K12, LIB, CC,
-       CITY, and COUNTY.  Several new name spaces have been created,
-       DNI, GEN, and TEC, and a minor change under the "locality" name
-       space was made to the existing CITY and COUNTY subdomains by
-       abbreviating them to CI and CO.  A detailed description
-       follows.
-    
-       Below US, Parallel to States:
-       -----------------------------
-    
-       "FED" - This branch may be used for agencies of the federal
-       government.  For example: <org-name>.<city>.FED.US
-    
-       "DNI" - DISTRIBUTED NATIONAL INSTITUTES - The "DNI" branch was
-       created directly under the top-level US.  This branch is to be used
-       for distributed national institutes; organizations that span state,
-       regional, and other organizational boundaries; that are national in
-       scope, and have distributed facilities.  For example:
-       <org-name>.DNI.US.
-    
-       Name Space Within States:
-       ------------------------
-    
-       "locality" - cities, counties, parishes, and townships.  Subdomains
-       under the "locality" would be like CI.<city>.<state>.US,
-       CO.<county>.<state>.US, or businesses. For example:
-       Petville.Marvista.CA.US.
-    
-       "CI" - This branch is used for city government agencies and is a
-       subdomain under the "locality" name (like Los Angeles). For example:
-       Fire-Dept.CI.Los-Angeles.CA.US.
-    
-       "CO" - This branch is used for county government agencies and is a
-       subdomain under the "locality" name (like Los Angeles).  For example:
-       Fire-Dept.CO.San-Diego.CA.US.
-    
-       "K12" - This branch may be used for public school districts.  A
-       special name "PVT" can be used in the place of a school district name
-       for private schools.  For example: <school-name>.K12.<state>.US and
-       <school-name>.PVT.K12.<state>.US.
-    
-       "CC" - COMMUNITY COLLEGES - This branch was established for all state
-       wide community colleges.  For example: <school-name>.CC.<state>.US.
-    
-       "TEC" - TECHNICAL AND VOCATIONAL SCHOOLS - The branch "TEC" was
-       established for technical and vocational schools and colleges. For
-       example: <school-name>.TEC.<state>.US.
-    
-       "LIB" - LIBRARIES (STATE, REGIONAL, CITY, COUNTY) - This branch may
-       be used for libraries only.  For example:  <lib-name>.LIB.<state>.US.
-    
-       "STATE" - This branch may be used for state government agencies.  For
-       example:  <org-name>.STATE.<state>.US.
-    
-       "GEN" - GENERAL INDEPENDENT ENTITY - This branch is for the things
-       that don't fit easily into any other structure listed -- things that
-       might fit in to something like ORG at the top-level.  It is best not
-       to use the same keywords (ORG, EDU, COM, etc.) that are used at the
-       top-level to avoid confusion.  GEN would be used for such things as,
-       state-wide organizations, clubs, or domain parks.  For example:
-       <org-name>.GEN.<state-code>.US.
-
-The application form for the US domain may be found:
-
-* for anonymous ftp from internic.net : /templates/us-domain-template.txt
-* http://www.isi.edu/us-domain/
-
-The application form for the EDU, COM, NET, ORG, and  GOV domains may be
-found for anonymous ftp from:
-
-internic.net : /templates/domain-template.txt
-
------------------------------------------------------------------------------
-
-Question 4.11.  Classes of networks
-
-Date: Wed Sep  4 22:59:27 EDT 1996
-
-The usage of 'classes of networks' (class A, B, C) are historical and have
-been replaced by CIDR blocks on the Internet.  That being said...
-
-An Internet Protocol (IP) address is 32 bit in length, divided into  two
-or three parts (the network address, the subnet address (if present), and
-the host address.  The subnet addresses are only present if the network
-has been divided into subnetworks.  The length of the network, subnet, and
-host field are all variable.
-
-There are five different network classes.  The leftmost bits indicate  the
-class of the network.
-
-       # of     # of
-      bits in  bits in
-      network   host
-Class  field    field   Internet Protocol address in binary  Ranges
-============================================================================
-  A      7       24      0NNNNNNN.HHHHHHHH.HHHHHHHH.HHHHHHHH    1-127.x.x.x
-  B     14       16      10NNNNNN.NNNNNNNN.HHHHHHHH.HHHHHHHH  128-191.x.x.x
-  C     22        8      110NNNNN.NNNNNNNN.NNNNNNNN.HHHHHHHH  192-223.x.x.x
-  D     NOTE 1           1110xxxx.xxxxxxxx.xxxxxxxx.xxxxxxxx  224-239.x.x.x
-  E     NOTE 2           11110xxx.xxxxxxxx.xxxxxxxx.xxxxxxxx  240-247.x.x.x
-
-   where N represents part of the network address and H represents part of 
-   the host address.   When the subnet address is defined, the needed bits 
-   are assigned from the host address space.
-
-   NOTE 1: Reserved for multicast groups - RFC 1112
-   NOTE 2: Reserved for future use
-
-   127.0.0.1 is reserved for local loopback.
-
------------------------------------------------------------------------------
-
-Question 4.12.  What is CIDR ?
-
-Date: Tue Nov  5 23:47:29 EST 1996
-
-CIDR is "Classless Inter-Domain Routing (CIDR).  From RFC 1517:
-
-      ...Classless Inter-Domain Routing (CIDR) attempts to deal with
-      these problems by defining a mechanism to slow the growth of 
-      routing tables and reduce the need to allocate new IP network 
-      numbers.  
-
-Much more information may be obtained in RFCs 1467, 1517, 1518, 1520;
-with primary reference 1519.
-
-Also please see the CIDR FAQ at
-
-* http://www.ibm.net.il/~hank/cidr.html
-* http://www.rain.net/faqs/cidr.faq.html
-* http://www.lab.unisource.ch/services/internet/direct/cidr.html
-
------------------------------------------------------------------------------
-
-Question 4.13.  What is the rule for glue ?
-
-Date: Fri Apr 28 13:31:24 EDT 1995
-
-A glue record is an A record for a name that appears on the right-hand
-side of a NS record.  So, if you have this:
-
- 
-        sub.foobar.com.        IN      NS      dns.sub.foobar.com.
-        dns.sub.foobar.com.    IN      A       1.2.3.4
-
-then the second record is a glue record (for the NS record above it).
-
-You need glue records when -- and only when -- you are delegating
-authority to a nameserver that "lives" in the domain you are delegating
-*and* you aren't a secondary server for that domain.
-
-In other words, in the example above, you need to add an A record for
-dns.sub.foobar.com since it "lives" in the domain it serves.  This boot
-strapping information is necessary:  How are you supposed to find out the
-IP address of the nameserver for domain FOO if the nameserver for FOO
-"lives" in FOO?
-
-If you have this NS record:
-
-        sub.foobar.com.         IN      NS      dns.xyz123.com.
-
-you do NOT need a glue record, and, in fact, adding one is a very bad
-idea.  If you add one, and then the folks at xyz123.com change the
-address, then you will be passing out incorrect data.
-
-Also, unless you actually have a machine called something.IN-ADDR.ARPA,
-you will never have any glue records present in any of your "reverse"
-files.
-
-There is also a sort of implicit glue record that can be useful (or
-confusing :^) ).  If the parent server (abc.foobar.com domain in example
-above) is a secondary server for the child, then the A record will be
-fetched from the child server when the zone transfer is done.  The glue is
-still there but it's a little different, it's in the ip address in  the
-named.boot line instead of explicitly in the data.  In this case  you can
-leave out the explicit glue A record and leave the manually  configured
-"glue" in just the one place in the named.boot file.
-
-RFC 1537 says it quite nicely:
-
-      2. Glue records
- 
-         Quite often, people put unnecessary glue (A) records in their 
-         zone files. Even worse is that I've even seen *wrong* glue records 
-         for an external host in a primary zone file! Glue records need only 
-         be in a zone file if the server host is within the zone and there 
-         is no A record for that host elsewhere in the zone file.
- 
-         Old BIND versions ("native" 4.8.3 and older versions) showed the
-         problem that wrong glue records could enter secondary servers in
-         a zone transfer.
-
-
-The remainder of the FAQ is in the next part (Part 2 of 2).
-
diff --git a/contrib/bind/doc/misc/FAQ.2of2 b/contrib/bind/doc/misc/FAQ.2of2
deleted file mode 100644
index 40e16494b5bfb..0000000000000
--- a/contrib/bind/doc/misc/FAQ.2of2
+++ /dev/null
@@ -1,1298 +0,0 @@
-Newsgroups: comp.protocols.tcp-ip.domains,comp.answers,news.answers
-Path: vixie!news1.digital.com!su-news-hub1.bbnplanet.com!news.bbnplanet.com!cam-news-hub1.bbnplanet.com!news.mathworks.com!news.kei.com!uhog.mit.edu!rutgers!njitgw.njit.edu!hertz.njit.edu!cdp2582
-From: cdp2582@hertz.njit.edu (Chris Peckham)
-Subject: comp.protocols.tcp-ip.domains Frequently Asked Questions (FAQ) (Part 2 of 2)
-Message-ID: <cptd-faq-2-849940949@njit.edu>
-Followup-To: comp.protocols.tcp-ip.domains
-Originator: cdp2582@hertz.njit.edu
-Keywords: BIND,DOMAIN,DNS
-Sender: news@njit.edu
-Supersedes: <cptd-faq-2-847336183@njit.edu>
-Nntp-Posting-Host: hertz.njit.edu
-X-Posting-Frequency: posted during the first week of each month
-Reply-To: domain-faq@njit.edu (comp.protocols.tcp-ip.domains FAQ comments)
-Organization: NJIT.EDU - New Jersey Institute of Technology, Newark, NJ, USA
-References: <cptd-faq-1-849940949@njit.edu> 
-Date: Sat, 7 Dec 1996 06:42:49 GMT
-Approved: news-answers-request@MIT.EDU
-Expires: Sat 11 Jan 97 02:42:29 EDT
-Lines: 1277
-Xref: vixie comp.protocols.tcp-ip.domains:12905 comp.answers:22441 news.answers:85683
-
-Posted-By: auto-faq 3.1.1.2
-Archive-name: internet/tcp-ip/domains-faq/part2
-Revision: 1.13 1996/12/07 06:42:15
-
-
-(Continued from Part 1, where you'll find the introduction and 
-table of contents.)
-
-
-===============================================================================
-
-Section 5.  CONFIGURATION
-
- Q5.1        Changing a Secondary server to a Primary server ?
- Q5.2        Moving a Primary server to another server
- Q5.3        How do I subnet a Class B Address ?
- Q5.4        Subnetted domain name service
- Q5.5        Recommended format/style of DNS files
- Q5.6        DNS on a system not connected to the Internet
- Q5.7        Multiple Domain configuration
- Q5.8        wildcard MX records
- Q5.9        How do you identify a wildcard MX record ?
- Q5.10       Why are fully qualified domain names recommended ?
- Q5.11       Distributing load using named
- Q5.12       Order of returned records
- Q5.13       resolv.conf
- Q5.14       How do I delegate authority for sub-domains ?
- Q5.15       DNS instead of NIS on a Sun OS 4.1.x system
- Q5.16       Patches to add functionality to BIND 
- Q5.17       How to serve multiple domains from one server
-
------------------------------------------------------------------------------
-
-Question 5.1.  Changing a Secondary server to a Primary server ?
-
-Date: Fri Jul  5 23:54:35 EDT 1996
-
-For 4.8.3,  it's prudent to kill and restart following any changes to
-named.boot.
-
-In BIND 4.9.3, you only have to kill and restart named if you change a
-primary zone to a secondary or v-v, or if you delete a zone and remain
-authoritative for its parent.  Every other case should be taken care of by
-a HUP.  (Ed. note: 4.9.3b9 may still require you to kill and restart the
-server due to some bugs in the HUP code).
-
-You will also need to update the server information on the root servers.
-You can do this by filing a new domain registration form to inform
-InterNIC of the change.  They will then update the root server's SOA
-records.  This process usually takes 10-12 business days after they
-receive the request.
-
------------------------------------------------------------------------------
-
-Question 5.2.  Moving a Primary server to another server
-
-Date: Fri Jul  5 23:54:35 EDT 1996
-
-The usual solution is to move the primary to ns.newserver.com, and have
-ns.oldserver.com be configured as a secondary server until the change  to
-the root servers takes place after the request has been made to the
-InterNIC.
-
-If you are moving to a different ISP which will change your IP's, the
-recommened setting for the SOA that would minimize problems for your name
-servers using the old settings can be done as follows:
-
-Gradually lower the TTL value in your SOA (that's the last one of the five
-numbers) to always be equal to the time left until you change over.
-(assuming that none of your resource records have individual TTL's set, if
-so, do likewise witht them.)  So, the day before, lower  to 43200 seconds
-(12 hours).  Then lower every few hours to be the time  remaining until
-the change-over.  So, an hour before the change, you may  just want to
-lower it all the way to 60 seconds or so.  That way no one  can cache
-information past the change-over.
-
-After the change, start gradually incrementing the TTL value, because
-you'll probably be making changes to work out problems.  Once everything
-stabilizes, move the TTL up to whatever your normal values are.
-
-To minimize name servers from using the "old settings", you can do the
-same thing with the "refresh" interval in the SOA (the second number of
-the SOA).  That will tell the secondaries to refresh every X seconds.
-Lower that value as you approach the changeover date.  You probably don't
-want to go much below an hour or you'll start the primary thrashing as all
-the secondaries perpetually refresh.
-
-Also see the answer to the "How can I change the IP address of our server
-?" in the INTRODUCTION section.
-
------------------------------------------------------------------------------
-
-Question 5.3.  How do I subnet a Class B Address ?
-
-Date: Fri Apr 28 13:34:52 EDT 1995
-
-That you need to subnet at all is something of a misconception.  You can
-also think of a class B network as giving you 65,534 individual hosts, and
-such a network will work. You can also configure your class B as 16,384
-networks of 2 hosts each.  That's obviously not very practical, but it
-needs to be made clear that you are not constrained by the size of an
-octet (remember that many older devices would not work in a network
-configured in this manner).
-
-So, the question is: why do you need to subnet?   One reason is that it is
-easier to manage a subnetted network, and in fact, you can delegate the
-responsibility for address space management to local administrators on the
-various subnets.  Also, IP based problems will end up localized rather
-than affecting your entire network.
-
-If your network is a large backbone with numerous segments individually
-branching off the backbone, that too suggests subnetting.
-
-Subnetting can also be used to improve routing conditions.
-
-You may wish to partition your network to disallow certain protocols  on
-certain segments of your net.  You can, for example, restrict IP or IPX to
-certain segments only by adding a router routing high level  protocols,
-and across the router you may have to subnet.
-
-Finally, as far as how many subnets you need depends on the answer to the
-above question.  As far as subnet masks are concerned, the mask can be
-anything from 255.0.0.0 to 255.255.255.252.  You'll probably be looking at
-9 or 10 bits for the subnet (last octet 128 or 192 respectively).  RFC
-1219 discusses the issue of subnetting very well  and leaves the network
-administrator with a large amount of flexibility for future growth.
-
------------------------------------------------------------------------------
-
-Question 5.4.  Subnetted domain name service
-
-Date: Mon Aug  5 23:00:16 EDT 1996
-
-If you are looking for some examples of handling subnetted class C
-networks as separate DNS domains, see the Internet Draft
-
-draft-ietf-cidrd-classless-inaddr-02.txt
-
-for more information.   This file is available for anonymous ftp at
-
-ds.internic.net :
-/internet-drafts/draft-ietf-cidrd-classless-inaddr-02.txt
-
-or other IETF mirror sites (ftp.is.ca.za [Africa], nic.nordu.net [Europe],
-munnari.oz.au [Pacific Rim], ds.internic.net [US East Coast], or
-ftp.isi.edu [US West Coast]).
-
-Details follow- You need to delegate down to the fourth octet, so you will
-have one domain per IP address !  Here is how you can subdelegate a
-in-addr.arpa address for non-byte aligned subnet masks:
-
-Take as an example the net 192.1.1.x, and example subnet mask
-255.255.255.240.
-
-We first define the domain for the class C net,
-
-   $origin  1.1.192.in-addr.arpa
-   @       SOA   (usual stuff)
-   @       ns  some.nameserver
-           ns  some.other.nameserver
-   ; delegate a subdomain
-   one     ns  one.nameserver
-           ns  some.nameserver
-   ; delegate another
-   two     ns  two.nameserver
-           ns  some.nameserver
-   ; CNAME pointers to subdomain one
-   0       CNAME 0.one
-   1       CNAME 1.one
-   ;    through
-   15      CNAME 15.one
-   ; CNAME pointers to subdomain two
-   16      CNAME 16.two
-   17      CNAME 17.two
-   31      CNAME 31.two
-   ; CNAME as many as required.
-
-Now, in the delegated nameserver, one.nameserver
-
-   $origin one.1.1.192.in-addr.arpa
-   @       SOA (usual stuff)
-           NS  one.nameserver
-           NS  some.nameserver   ;  secondary for us
-   0       PTR  onenet.one.domain
-   1       PTR  onehost.one.domain
-   ;   through
-   15      PTR  lasthost.one.domain
-
-And similar for the two.1.1.192.in-addr.arpa delegated domain.
-
-There is additional documentation and a perl script that may be used for
-this purpose available for anonymous ftp from:
-
-ftp.vix.com : /pub/bind/contrib/gencidrzone
-
------------------------------------------------------------------------------
-
-Question 5.5.  Recommended format/style of DNS files
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-This answer is quoted from an article posted by Paul Vixie:
-
-   I've gone back and forth on the question of whether the BOG should
-   include a section on this topic.  I know what I myself prefer, but
-   I'm wary of ramming my own stylistic preferences down the throat of
-   every BOG reader.  But since you ask :-)...
- 
-   Create /var/named.  If your system is too old to have a /var, either
-   create one or use /usr/local/adm/named instead.  Put your named.boot
-   in it, and make /etc/named.boot a symlink to it.  If your system
-   doesn't have symlinks, you're S-O-L (but you knew that).  In
-   named.boot, put a "directory" directive that specifies your actual
-   BIND working directory:
- 
-        directory       /var/named
- 
-   All relative pathnames used in "primary", "secondary", and "cache"
-   directives will be evaluated relative to this directory.  Create two
-   subdirectories, /var/named/pri and /var/named/sec.  Whenever you add
-   a "primary" directive to your named.boot, use "pri/WHATEVER" as the
-   path name.  And then put the primary zone file into "pri/WHATEVER".
-   Likewise when you add "secondary" directives, use "sec/WHATEVER" and
-   BIND (really named-xfer) will create the files in that
-   subdirectory.
- 
-   (Variations: (1) make a midlevel directory "zones" and put "pri" and
-   "sec" into it; (2) if you tend to pick up a lot of secondaries from
-   a few hosts, group them together in their own subdirectories --
-   something like /var/named/zones/uucp if you're a UUCP Project name
-   server.)
- 
-   For your forward files, name them after the zone.  dec.com becomes
-   "/var/named/zones/pri/dec.com".  For your reverse files, name them
-   after the network number.  0.1.16.in-addr.arpa becomes
-   "/var/named/zones/pri/16.1.0".
-
-   When creating or maintaining primary zone files, try to use the same
-   SOA values everywhere, except for the serial number which varies per
-   zone.  Put a $ORIGIN directive at the top of the primary zone file,
-   not because its needed (it's not since the default origin is the
-   zone named in the "primary" directive) but because it make it easier
-   to remember what you're working on when you have a lot of primary
-   zones.  Put some comments up there indicating contact information
-   for the real owner if you're proxying.  Use RCS and put the "Id"
-   in a ";" comment near the top of the zone file.
- 
-   The SOA and other top level information should all be listed
-   together.  But don't put IN on every line, it defaults nicely.  For
-   example:
- 
-==============
-@       IN      SOA     gw.home.vix.com. postmaster.vix.com. (
-                        1994082501      ; serial
-                        3600    ; refresh (1 hour)
-                        1800    ; retry (30 mins)
-                        604800  ; expire (7 days)
-                        3600 )  ; minimum (1 hour)
- 
-                NS      gw.home.vix.com.
-                NS      ns.uu.net.
-                NS      uucp-gw-1.pa.dec.com.
-                NS      uucp-gw-2.pa.dec.com.
- 
-                MX      10 gw.home.vix.com.
-                MX      20 uucp-gw-1.pa.dec.com.
-                MX      20 uucp-gw-1.pa.dec.com.
-==============
- 
-   I don't necessarily recommend those SOA values.  Not every zone is
-   as volatile as the example shown.  I do recommend that serial number
-   format; it's in date format with a 2-digit per-day revision number.
-   This format will last us until 2147 A.D. at which point I expect a
-   better solution will have been found :-).  (Note that it would last
-   until 4294 A.D. except that there are some old BINDs out there that
-   use a signed quantity for representing serial number interally; I
-   suppose that as long as none of these are still running after 2047
-   A.D., that we can use the above serial number format until 4294
-   A.D., at which point a better solution will HAVE to be found.)
- 
-   You'll note that I use a tab stop for "IN" even though I never again
-   specify it.  This leaves room for names longer than 7 bytes without
-   messing up the columns.  You might also note that I've put the MX
-   priority and destination in the same tab stop; this is because both
-   are part of the RRdata and both are very different from MX which is
-   an RRtype.  Some folks seem to prefer to group "MX" and the priority
-   together in one tab stop.  While this looks neat it's very confusing
-   to newcomers and for them it violates the law of least
-   astonishment.
- 
-   If you have a multi-level zone (one which contains names that have
-   dots in them), you can use additional $ORIGIN statements but I
-   recommend against it since there is no "back" operator.  That is,
-   given the above example you can add:
- 
-=============
-$ORIGIN home
-gw              A       192.5.5.1
-=============
- 
-   The problem with this is that subsequent RR's had better be
-   somewhere under the "home.vix.com" name or else the $ORIGIN that
-   introduces them will have to use a fully qualified name.  FQDN
-   $ORIGIN's aren't bad and I won't be mad if you use them.
-   Unqualified ones as shown above are real trouble.  I usually stay
-   away from them and just put the whole name in:
- 
-=============
-gw.home         A       192.5.5.1
-=============
- 
-   In your reverse zones, you're usually in some good luck because the
-   owner name is usually a single short token or sometimes two.
- 
-=============
-$ORIGIN 5.5.192.in-addr.arpa.
-@       IN      SOA     ...
-                NS      ...
-1               PTR     gw.home.vix.com.
-=========================================
-$ORIGIN 1.16.in-addr.arpa.
-@       IN      SOA     ...
-                NS      ...
-2.0             PTR     gatekeeper.dec.com.
-=============
-
-   It is usually pretty hard to keep your forward and reverse zones in
-   synch.  You can avoid that whole problem by just using "h2n" (see
-   the ORA book, DNS and BIND, and its sample toolkit, included in the
-   BIND distribution or on ftp.uu.net (use the QUOTE SITE EXEC INDEX
-   command there to find this -- I never can remember where it's at).
-   "h2n" and many tools like it can just read your old /etc/hosts file
-   and churn it into DNS zone files.  (May I recommend
-   contrib/decwrl/mkdb.pl from the BIND distribution?)  However, if you
-   (like me) prefer to edit these things by hand, you need to follow
-   the simple convention of making all of your holes consistent.  If
-   you use 192.5.5.1 and 192.5.5.3 but not (yet) 192.5.5.2, then in
-   your forward file you will have something like
- 
-=============
-...
-gw.home         A       192.5.5.1
-;avail          A       192.5.5.2
-pc.home         A       192.5.5.3
-=============
- 
-   and in your reverse file you will have something like
- 
-=============
-...
-1               PTR     gw.home.vix.com.
-;2              PTR     avail
-3               PTR     pc.home.vix.com.
-=============
- 
-   This convention will allow you to keep your sanity and make fewer
-   errors.  Any kind of automation (h2n, mkdb, or your own
-   perl/tcl/awk/python tools) will help you maintain a consistent
-   universe even if it's also a complex one.  Editing by hand doesn't
-   have to be deadly but you MUST take care.
-
------------------------------------------------------------------------------
-
-Question 5.6.  DNS on a system not connected to the Internet
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-You need to create your own root domain name server until you connect  to
-the internet.  Your roots need to delegate to mydomain.com and any
-in-addr.arpa subdomains you might have, and that's about it.  As soon as
-you're connected, rip out the fake roots and use the real ones.
-
-It does not actually have to be another server pretending to be the root.
-You can set up the name server so that it is primary for each domain above
-you and leave them empty (i.e. you are foo.bar.com - claim to be primary
-for bar.com and com)
-
-If you connect intermittently and want DNS to work when you are connected,
-and "fail" when you are not, you can point the resolver at the name server
-at the remote site and if the connection (SLIP/PPP) isn't up, the resolver
-doesn't have a route to the remote server and since there's only one name
-server in resolv.conf, the resolver quickly backs off the using
-/etc/hosts.  No problem.  You could do the same with multiple name server
-and a resolver that did configurable /etc/hosts fallback.
-
------------------------------------------------------------------------------
-
-Question 5.7.  Multiple Domain configuration
-
-Date: Fri Dec  2 15:40:49 EST 1994
-
-If you want to have multiple domain names pointing to the same
-destination, such as:
-
-      ftp ftp.biff.com connects user to -> ftp.biff.com
-      ftp ftp.fred.com connects user to -> ftp.biff.com
-      ftp ftp.bowser.com connects user to -> ftp.biff.com
-
-You may do this by using CNAMEs:
-
-      ftp.bowser.com.         IN      CNAME ftp.biff.com.
-
-You can also do the same thing with multiple A records.
-
------------------------------------------------------------------------------
-
-Question 5.8.  wildcard MX records
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-Does BIND not understand wildcard MX records such as the following?
-
-     *.foo.com       MX      0       mail.foo.com.
-
-No. It just doesn't work.
-
-Explicit RR's at one level of specificity will, by design, "block" a
-wildcard at a lesser level of specificity. I suspect that you have an RR
-(an A RR, perhaps?) for "bar.foo.com" which is blocking the application of
-your "*.foo.com" wildcard. The initial MX query is thus failing (NOERROR
-but an answer count of 0), and the backup query finds the A RR for
-"bar.foo.com" and uses it to deliver the mail directly (which is what you
-DIDN'T want it to do).  Adding an explicit MX RR for the host is therefore
-the right way to handle this situation.
-
-See RFC 1034, Section 4.3.3 ("Wildcards") for more information on this
-"blocking" behavior, along with an illustrative example. See also RFC 974
-for an explanation of standard mailer behavior in the face of an "empty"
-response to one's MX query.
-
-Basically, what it boils down to is, there is no point in trying to use a
-wildcard MX for a host which is otherwise listed in the DNS.
-
-It just doesn't work.
-
------------------------------------------------------------------------------
-
-Question 5.9.  How do you identify a wildcard MX record ?
-
-Date: Thu Dec  1 11:10:39 EST 1994
-
-You don't really need to "identify" a wildcard MX RR.  The precedence  for
-u@dom is:
-
-        exact match MX
-        exact match A
-        wildcard MX
-
-One way to implement this is to query for ("dom",IN,MX) and if the answer
-name that comes back is "*." something, you know it's a wildcard,
-therefore you know there is no exact match MX, and you therefore query for
-("dom",IN,A) and if you get something, use it.  if you don't, use the
-previous wildcard response.
-
-RFC 974 explains this pretty well.
-
------------------------------------------------------------------------------
-
-Question 5.10.  Why are fully qualified domain names recommended ?
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-The documentation for BIND 4.9.2 says that the hostname should be set  to
-the full domain style name (i.e host.our.domain rather than host).  What
-advantages are there in this, and are there any adverse consequences if we
-don't?
-
-Paul Vixie likes to do it :-)  He lists a few reasons -
-
-* Sendmail can be configured to just use Dj$w rather than Dj$w.mumble
-  where "mumble" is something you have to edit in by hand.  Granted, most
-  people use "mumble" elsewhere in their config files ("tack on local
-  domain", etc) but why should it be a requirement ?
-* The real reason is that not doing it violates a very useful invariant:
-    gethostbyname(gethostname) == gethostbyaddr(primary_interface_address)
-
-  If you take an address and go "backwards" through the PTR's with it,
-  you'll get a FQDN, and if you push that back through the A RR's, you get
-  the same address.  Or you should.  Many multi-homed hosts violate this
-  uncaringly.
-
-  If you take a non-FQDN hostname and push it "forwards" through the A
-  RR's, you get an address which, if you push it through the PTR's, comes
-  back as a FQDN which is not the same as the hostname you started with.
-  Consider the fact that, absent NIS/YP, there is no "domainname" command
-  analogous to the "hostname" command.  (NIS/YP's doesn't count, of
-  course, since it's sometimes-but-only-rarely the same as the Internet
-  domain or subdomain above a given host's name.)  The "domain" keyword in
-  resolv.conf doesn't specify the parent domain of the current host; it
-  specifies the default domain of queries initiated on the current host,
-  which can be a very different thing.  (As of RFC 1535 and BIND 4.9.2's
-  compliance with it, most people use "search" in resolv.conf, which
-  overrides "domain", anyway.)
-
-  What this means is that there is NO authoritative way to
-  programmatically discover your host's FQDN unless it is set in the
-  hostname, or unless every application is willing to grovel the "netstat
-  -in" tables, find what it hopes is the primary address, and do a PTR
-  query on it.
-
-  FQDN /bin/hostnames are, intuitively or not, the simplest way to go.
-
------------------------------------------------------------------------------
-
-Question 5.11.  Distributing load using named
-
-Date: Wed Mar  1 11:04:43 EST 1995
-
-When you attempt to distribute the load on a system using named, the first
-response be cached, and then later queries use the cached value (This
-would be for requests that come through the same server).  Therefore, it
-can be useful to use a lower TTL on records where this is important.  You
-can use values like 300 or 500 seconds.
-
-If your local caching server has ROUND_ROBIN, it does not matter what the
-authoritative servers have -- every response from the cache is rotated.
-
-But if it doesn't, and the authoritative server site is depending on this
-feature (or the old "shuffle-A") to do load balancing, then if one doesn't
-use small TTLs, one could conceivably end up with a really nasty
-situation, e.g., hundreds of workstations at a branch campus pounding on
-the same front end at the authoritative server's site during class
-registration.
-
-Not nice.
-
-Paul Vixie has an example of the ROUND_ROBIN code in action.  Here is
-something that he wrote regarding his example:
-
-     >I want users to be distributed evenly among those 3 hosts.
-
-     Believe it or not :-), BIND offers an ugly way to do this.  I offer
-     for your collective amusement the following snippet from the
-     ugly.vix.com zone file:
-
-       hydra           cname        hydra1
-                       cname        hydra2
-                       cname        hydra3
-       hydra1          a            10.1.0.1
-                       a            10.1.0.2
-                       a            10.1.0.3
-       hydra2          a            10.2.0.1
-                       a            10.2.0.2
-                       a            10.2.0.3
-       hydra3          a            10.3.0.1
-                       a            10.3.0.2
-                       a            10.3.0.3
-       
-      Note that having multiple CNAME RR's at a given name is
-      meaningless according to the DNS RFCs but BIND doesn't mind (in
-      fact it doesn't even complain).  If you call
-      gethostbyname("hydra.ugly.vix.com") (try it!) you will get
-      results like the following.  Note that there are two round robin
-      rotations going on: one at ("hydra",CNAME) and one at each
-      ("hydra1",A) et al.  I used a layer of CNAME's above the layer of
-      A's to keep the response size down.  If you don't have nine
-      addresses you probably don't care and would just use a pile of
-      CNAME's pointing directly at real host names.
-
-      {hydra.ugly.vix.com
-      name: hydra2.ugly.vix.com
-      aliases: hydra.ugly.vix.com
-      addresses: 10.2.0.2 10.2.0.3 10.2.0.1
-
-      {hydra.ugly.vix.com
-      name: hydra3.ugly.vix.com
-      aliases: hydra.ugly.vix.com
-      addresses: 10.3.0.2 10.3.0.3 10.3.0.1
-
-      {hydra.ugly.vix.com
-      name: hydra1.ugly.vix.com
-      aliases: hydra.ugly.vix.com
-      addresses: 10.1.0.2 10.1.0.3 10.1.0.1
-
-      {hydra.ugly.vix.com
-      name: hydra2.ugly.vix.com
-      aliases: hydra.ugly.vix.com
-      addresses: 10.2.0.3 10.2.0.1 10.2.0.2
-
-      {hydra.ugly.vix.com
-      name: hydra3.ugly.vix.com
-      aliases: hydra.ugly.vix.com
-      addresses: 10.3.0.3 10.3.0.1 10.3.0.2
-
------------------------------------------------------------------------------
-
-Question 5.12.  Order of returned records
-
-Sorting, is the *resolver's* responsibility.  RFC 1123:
-
-
-         6.1.3.4  Multihomed Hosts
-
-            When the host name-to-address function encounters a host
-            with multiple addresses, it SHOULD rank or sort the
-            addresses using knowledge of the immediately connected
-            network number(s) and any other applicable performance or
-            history information.
-
-            DISCUSSION:
-                 The different addresses of a multihomed host generally
-                 imply different Internet paths, and some paths may be
-                 preferable to others in performance, reliability, or
-                 administrative restrictions.  There is no general way
-                 for the domain system to determine the best path.  A
-                 recommended approach is to base this decision on local
-                 configuration information set by the system
-                 administrator.
-
-In BIND 4.9.x's resolver code, the "sortlist" directive in resolv.conf
-can be used to configure this.
-
------------------------------------------------------------------------------
-
-Question 5.13.  resolv.conf
-
-Date: Fri Feb 10 15:46:17 EST 1995
-
-The question was asked one time, "Why should I use 'real' IP addresses in
-/etc/resolv.conf and not 0.0.0.0 or 127.0.0.1" ?
-
-Paul Vixie writes on the issue of the contents of resolv.conf:
-
-   It's historical.  Some kernels can't unbind a UDP socket's source
-   address, and some resolver versions (notably not including BIND
-   4.9.2 or 4.9.3's) try to do this.  The result can be wide area
-   network traffic with 127.0.0.1 as the source address.  Rather than
-   giving out a long and detailed map of version/vendor combinations of
-   kernels/BINDs that have/don't this problem, I just tell folks not to
-   use 127.0.0.1 at all.
- 
-   0.0.0.0 is just an alias for the first interface address assigned
-   after a system boot, and if that interface is a up-and-down point to
-   point link (PPP, SLIP, whatever), there's no guarantee that you'll
-   be able to reach yourself via 0.0.0.0 during the entire lifetime of
-   any system instance.  On most kernels you can finesse this by adding
-   static routes to 127.0.0.1 for each of your interface addresses, but
-   some kernels don't like that trick and rather than give a detailed
-   map of which ones work and which ones don't, I just globally
-   recommend against 0.0.0.0.
- 
-   If you know enough to know that 127.0.0.1 or 0.0.0.0 is safe on your
-   kernel and resolver, then feel free to use them.  If you don't know
-   for sure that it is safe, don't use them.  I never use them (except
-   on my laptop, whose hostname is "localhost" and whose 0.0.0.0 is
-   127.0.0.1 since I ifconfig my lo0 before any other interface).  The
-   operational advantage to using a real IP address rather than an
-   wormhole like 0.0.0.0 or 127.0.0.1, is that you can then "rdist" or
-   otherwise share identical copies of your resolv.conf on all the
-   systems on any given subnet, not all of which will be servers.
-
-The problem was with older versions of the resolver (4.8.X).  If you
-listed 127.0.0.1 as the first entry in resolv.conf, and for whatever
-reason the local name server wasn't running and the resolver fell back to
-the second name server listed, it would send queries to the name server
-with the source IP address set to 127.0.0.1 (as it was set when the
-resolver was trying to send to 127.0.0.1--you use the loopback address to
-send to the loopback address).
-
------------------------------------------------------------------------------
-
-Question 5.14.  How do I delegate authority for sub-domains ?
-
-Date: Sat Dec  7 02:04:17 EST 1996
-
-When you start having a very big domain that can be broken into logical
-and separate entities that can look after their own DNS information, you
-will probably want to do this.  Maintain a central area for the things
-that everyone needs to see and delegate the authority for the other parts
-of the organization so that they can manage themselves.
-
-Another essential piece of information is that every domain that exists
-must have it NS records associated with it.  These NS records denote the
-name servers that are queried for information about that zone.  For your
-zone to be recognized by the outside world, the server responsible for the
-zone above you must have created a NS record for your your new servers
-(NOTE that the new servers DO NOT  have to be in the new domain).  For
-example, putting the computer club onto the network and giving them
-control over their own part  of the domain space we have the following.
-
-The machine authorative for gu.uwa.edu.au is mackerel and the machine
-authorative for ucc.gu.uwa.edu.au is marlin.
-
-in mackerel's data for gu.uwa.edu.au we have the following
-
-   @               IN      SOA ...
-                   IN      A       130.95.100.3
-                   IN      MX      mackerel.gu.uwa.edu.au.
-                   IN      MX      uniwa.uwa.edu.au.
-    
-   marlin          IN      A       130.95.100.4
- 
-   ucc             IN      NS      marlin.gu.uwa.edu.au.
-                   IN      NS      mackerel.gu.uwa.edu.au.
-
-Marlin is also given an IP in our domain as a convenience.  If they blow
-up their name serving there is less that can go wrong because people can
-still see that machine which is a start.  You could place "marlin.ucc" in
-the first column and leave the machine totally inside the ucc domain as
-well.
-
-The second NS line is because mackerel will be acting as secondary name
-server for the ucc.gu domain.  Do not include this line if you are not
-authorative for the information included in the sub-domain.
-
------------------------------------------------------------------------------
-
-Question 5.15.  DNS instead of NIS on a Sun OS 4.1.x system
-
-Date: Sat Dec  7 01:14:17 EST 1996
-
-Comments relating to running bind 4.9.x on a Sun OS 4.1.x system and the
-effect on sendmail, ftp, telnet and other TCP/IP services bypassing NIS
-and directly using named is documented quite well in the
-comp.sys.sun.admin FAQ in questions one and two.  You can get them from:
-
-* ftp.ece.uc.edu : /pub/sun-faq/FAQs/sun-faq.general
-* http://www.cis.ohio-state.edu/hypertext/faq/usenet/comp-sys-sun-faq
-
-as well as from rtfm.mit.edu in the usual place, etc.
-
------------------------------------------------------------------------------
-
-Question 5.16.  Patches to add functionality to BIND
-
-Date: Tue Nov  5 23:53:47 EST 1996
-
-There are others, but these are listed here:
-
-* When using the round robin DNS and assigning 3 IPs to a host (for
-  example), a process to guarantee that all 3 IPs are reachable may be
-  found  at
-  http://www-leland.stanford.edu/~schemers/docs/lbnamed/lbnamed.html
-
-* Patches for 4.9.3-REL that will support the IPv6 AAAA record format may
-  be  found at ftp.inria.fr : /network/ipv6/
-
-* A patch for 4.9.3-REL that will allow you to turn off forwarding of
-  information from my server may be found at ftp.vix.com :
-  /pub/bind/release/4.9.3/contrib/noforward.tar.gz
-
-* How do I tell a server to listen to a particular interface to listen and
-  respond to DNS queries on ?
-
-  Mark Andrews has a patch that will tell a 4.9.4 server to listen to a
-  particular interface and respond to DNS queries.  It may be found at an
-  unofficial location: http://www.ultra.net/~jzp/andrews.patch.txt
-
------------------------------------------------------------------------------
-
-Question 5.17.  How to serve multiple domains from one server
-
-Date: Tue Nov  5 23:44:02 EST 1996
-
-Most name server implementations allow information about multiple domains
-to be kept on one server, and questions about those domains  to be
-answered by that one server.  For instance, there are many large  servers
-on the Internet that each serve information about more than  1000
-different domains.
-
-To be completely accurate, a server contains information about zones,
-which are parts of domains that are kept as a single unit.  [Ed note: for
-a definition of zones and domains, see Section 2: The Name Service in the
-"Name Server Operations Guide" included with the BIND 4.9.5 distribution.]
-
-In the configuration of the name server, the additional zones need to be
-specified.  An important consideration is whether a particular server is
-primary or secondary for any specific zone--a secondary server maintains
-only a copy of the zone, periodically refreshing its copy from another,
-specified, server.  In BIND, to set up a server as a secondary server for
-the x.y.z zone, to the configuration file /etc/named.boot add the line
-
-      secondary   x.y.z   10.0.0.1        db.x.y.z
-
-where 10.0.0.1 is the IP address of the server that the zone will be
-copied from, and db.x.y.z is a local filename that will contain the copy
-of the zone.
-
-If this is a question related to how to set up multiple IP numbers on one
-system, which you do not need to do to act as a domain server for
-multiple domains, see
-
-http://www.thesphere.com/%7Edlp/TwoServers/.
-
-===============================================================================
-
-Section 6.  PROBLEMS
-
- Q6.1        No address for root server
- Q6.2        Error - No Root Nameservers for Class XX
- Q6.3        Bind 4.9.x and MX querying?
- Q6.4        Do I need to define an A record for localhost ?
- Q6.5        MX records, CNAMES and A records for MX targets
- Q6.6        Can an NS record point to a CNAME ?
- Q6.7        Nameserver forgets own A record
- Q6.8        General problems (core dumps !)
- Q6.9        malloc and DECstations
- Q6.10       Can't resolve names without a "."
- Q6.11       Err/TO errors being reported
- Q6.12       Why does swapping kill BIND ?
-
------------------------------------------------------------------------------
-
-Question 6.1.  No address for root server
-
-Date: Mon Jan  2 13:49:43 EST 1995
-
-Q: I've been getting the following messages lately from bind-4.9.2..
-        ns_req: no address for root server
- 
-We are behind a firewall and have the following for our named.cache file -
- 
-        ; list of servers
-        .               99999999    IN  NS  POBOX.FOOBAR.COM.
-                        99999999    IN  NS  FOOHOST.FOOBAR.COM.
-        foobar.com.     99999999    IN  NS  pobox.foobar.com.
-You can't do that.  Your nameserver contacts POBOX.FOOBAR.COM, gets the
-correct list of root servers from it, then tries again and fails because
-of your firewall.
-
-You will need a 'forwarder' definition, to ensure that all requests are
-forwarded to a host which can penetrate the firewall.  And it is unwise to
-put phony data into 'named.cache'.
-
------------------------------------------------------------------------------
-
-Question 6.2.  Error - No Root Nameservers for Class XX
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-Q: I've received errors before about "No root nameservers for class XX"
-   but they've been because of network connectivity problems.
-   I believe that Class 1 is Internet Class data.
-   And I think I heard someone say that Class 4 is Hesiod??
-   Does anyone know what the various Class numbers are?
-From RFC 1700:
-
-       DOMAIN NAME SYSTEM PARAMETERS
-       The Internet Domain Naming System (DOMAIN) includes several
-       parameters.  These are documented in [RFC1034] and [RFC1035].  The
-       CLASS parameter is listed here.  The per CLASS parameters are 
-       defined in separate RFCs as indicated.
-
-       Domain System Parameters:
-
-       Decimal   Name                                          References
-       --------  ----                                          ----------
-              0  Reserved                                           [PM1]
-              1  Internet (IN)                              [RFC1034,PM1]
-              2  Unassigned                                         [PM1]
-              3  Chaos (CH)                                         [PM1]
-              4  Hesoid (HS)                                       [PM1]
-        5-65534  Unassigned                                         [PM1]
-          65535  Reserved                                           [PM1]
-
-DNS information for RFC 1700 was taken from
-ftp.isi.edu : /in-notes/iana/assignments/dns-parameters
-
-Hesiod is class 4, and there are no official root nameservers for class 4,
-so you can safely declare yourself one if you like.  You might want  to
-put up a packet filter so that no one outside your network is capable  of
-making Hesiod queries of your machines, if you define yourself to be  a
-root nameserver for class 4.
-
------------------------------------------------------------------------------
-
-Question 6.3.  Bind 4.9.x and MX querying?
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-If you query a 4.9.x DNS server for MX records, a list of the MX records
-as well as a list of the authorative nameservers is returned.  This
-happens because bind 4.9.2 returns the list of nameserver that are
-authorative for a domain in the response packet, along with their IP
-addresses in the additional section.
-
------------------------------------------------------------------------------
-
-Question 6.4.  Do I need to define an A record for localhost ?
-
-Date: Sat Sep  9 00:36:01 EDT 1995
-
-Somewhere deep in the BOG (BIND Operations Guide) that came with 4.9.3
-(section 5.4.3), it says that you define this yourself  (if need be) in
-the same zone files as your "real" IP addresses  for your domain.  Quoting
-the BOG:
-
-
-                                 ... As  implied by this PTR
-         record, there should be a  ``localhost.my.dom.ain''
-         A  record  (with address 127.0.0.1) in every domain
-         that contains hosts.  ``localhost.'' will lose  its
-         trailing dot when 1.0.0.127.in-addr.arpa is queried
-         for;...
-
-The sample files in the BIND distribution show you what needs to be done
-(see the BOG).
-
-Some HP boxen (especially those running HP OpenView) will also need
-"loopback" defined with this IP address.   You may set it as a CNAME
-record pointing to the "localhost." record.
-
------------------------------------------------------------------------------
-
-Question 6.5.  MX records, CNAMES and A records for MX targets
-
-Date: Sun Nov 27 23:32:41 EST 1994
-
-The O'Reilly "DNS and Bind" book warns against using non-canonical names
-in MX records, however, this warning is given in the context of mail hubs
-that MX to each other for backup purposes.  How does this apply to mail
-spokes.  RFC 974 has a similar warning, but where is it specifically
-prohibited to us an alias in an MX record ?
-
-Without the restrictions in the RFC, a MTA must request the A records  for
-every MX listed to determine if it is in the MX list then reduce the list.
-This introduces many more lookups than would other wise be required. If
-you are behind a 1200 bps link YOU DON'T WANT TO DO THIS. The addresses
-associated with CNAMES are not passed as additional data so you will force
-additional traffic to result even if you are running a caching server
-locally.
-
-There is also the problem of how does the MTA find all of it's IP
-addresses. This is not straight forward. You have to be able to do this is
-you allow CNAMEs (or extra A's) as MX targets.
-
-The letter of the law is that an MX record should point to an A record.
-
-There is no "real" reason to use CNAMEs for MX targets or separate As for
-nameservers any more. CNAMEs for services other than mail should be used
-because there is no specified method for locating the desired server yet.
-
-People don't care what the names of MX targets are.  They're invisible to
-the process anyway.  If you have mail for "mary" redirected to "sue" is
-totally irrelevant.  Having CNAMEs as the targets of MX's just needlessly
-complicates things, and is more work for the resolver.
-
-Having separate A's for nameservers like "ns.your.domain" is pointless
-too, since again nobody cares what the name of your nameserver is, since
-that too is invisible to the process.  If you move your nameserver from
-"mary.your.domain" to "sue.your.domain" nobody need care except you and
-your parent domain administrator (and the InterNIC).  Even less so for
-mail servers, since only you are affected.
-
-Q: Given the example - 
-
-     hello in cname     realname
-     mailx in mx        0 hello
-
-   Now, while reading the operating manual of bind it clearly states
-   that this is *not* valid.  These two statements clearly contradict
-   each other.  Is there some later rfc than 974 that overrides what is
-   said in there with respect to MX and CNAMEs?  Anyone have the
-   reference handy?
-
-A: This isn't what the BOG says at all.  See below.  You can have a CNAME 
-   that points to some other RR type; in fact, all CNAMEs have to point
-   to other names (Canonical ones, hence the C in CNAME).  What you
-   can't have is an MX that points to a CNAME.  MX RR's that point to
-   names which have only CNAME RR's will not work in many cases, and
-   RFC 974 intimates that it's a bad idea:
-
-      Note that the algorithm to delete irrelevant RRs breaks if LOCAL has
-      a alias and the alias is listed in the MX records for REMOTE.  (E.g.
-      REMOTE has an MX of ALIAS, where ALIAS has a CNAME of LOCAL).  This
-      can be avoided if aliases are never used in the data section of MX
-      RRs.
-
-   Here's the relevant BOG snippet:
-
-         aliases    {ttl   addr-class   CNAME   Canonical name
-         ucbmonet           IN           CNAME   monet
-
-         The  Canonical  Name resource record, CNAME, speci-
-         fies an alias or  nickname  for  the  official,  or
-         canonical,  host  name.   This record should be the
-         only one associated with the alias name.  All other
-         resource  records  should  be associated  with the
-         canonical  name,  not  with  the   nickname.  Any
-         resource  records  that  include  a  domain name as
-         their value (e.g., NS or MX) must list the  canoni-
-         cal name, not the nickname.
-
------------------------------------------------------------------------------
-
-Question 6.6.  Can an NS record point to a CNAME ?
-
-Date: Wed Mar  1 11:14:10 EST 1995
-
-Can I do this ?  Is it legal ?
-
-
-   @                       SOA     (.........)
-                           NS      ns.host.this.domain.
-                           NS      second.host.another.domain.
-   ns                      CNAME   third
-   third           IN      A       xxx.xxx.xxx.xxx
-
-No.  Only one RR type is allowed to refer, in its data field, to a CNAME,
-and that's CNAME itself.  So CNAMEs can refer to CNAMEs but  NSs and MXs
-cannot.
-
-BIND 4.9.3 (Beta11 and later) explicitly syslogs this case rather than
-simply failing as pre-4.9 servers did.  Here's a current example:
-
-      Dec  7 00:52:18 gw named[17561]: "foobar.com IN NS" \
-             points to a CNAME (foobar.foobar.com)
-
-Here is the reason why:
-
-Nameservers are not required to include CNAME records in the Additional
-Info section returned after a query.  It's partly an implementation
-decision and partly a part of the spec.  The algorithm described in RFC
-1034 (pp24,25; info also in RFC 1035, section 3.3.11, p 18) says 'Put
-whatever addresses are available into the additional section, using glue
-RRs [if necessary]'.  Since NS records are speced to contain only primary
-names of hosts, not CNAMEs, then there's no reason for algorithm to
-mention them. If, on the other hand, it's decided to allow CNAMEs in NS
-records (and indeed in other records) then there's no reason that CNAME
-records might not be included along with A records.  The Additional Info
-section is intended for any information that might be useful but which
-isn't strictly the answer to the DNS query processed.  It's an
-implementation decision in as much as some servers used to follow CNAMEs
-in  NS references.
-
------------------------------------------------------------------------------
-
-Question 6.7.  Nameserver forgets own A record
-
-Date: Fri Dec  2 16:17:31 EST 1994
-
-Q: Lately, I've been having trouble with named 4.9.2 and 4.9.3.  
-   Periodically, the nameserver will seem to "forget" its own A record,
-   although the other information stays intact.  One theory I had was
-   that somehow a site that the nameserver was secondary for was
-   "corrupting" the A record somehow.
- 
-A: This is invariably due to not removing ALL of the cached zones
-   when you moved to 4.9.X. Remove ALL cached zones and restart
-   your nameservers.
- 
-   You get "ignoreds" because the primaries for the relevant zones are
-   running old versions of BIND which pass out more glue than is
-   required. named-xfer trims off this extra glue.
-
------------------------------------------------------------------------------
-
-Question 6.8.  General problems (core dumps !)
-
-Date: Sun Dec  4 22:21:22 EST 1994
-
-Paul Vixie says:
-
-   I'm always interested in hearing about cases where BIND dumps core.
-   However, I need a stack trace.   Compile with -g and not -O (unless
-   you are using gcc and know what you are doing) and then when it
-   dumps core, get into dbx or gdb using the executable and the core
-   file and use "bt" to get a stack trace.   Send it to me
-   <paul@vix.com> along with specific circumstances leading to or
-   surrounding the crash (test data, tail of the debug log, tail of the
-   syslog... whatever matters) and ideally you should save your core
-   dump for a day or so in case I have questions you can answer via
-   gdb/dbx.
-
------------------------------------------------------------------------------
-
-Question 6.9.  malloc and DECstations
-
-Date: Mon Jan  2 14:19:22 EST 1995
-
-We have replaced malloc on our DECstations with a malloc that is more
-compact in memory usage, and this helped the operation of bind a lot.  The
-source is now available for anonymous ftp from
-
-ftp.cs.wisc.edu : /pub/misc/malloc.tar.gz
-
------------------------------------------------------------------------------
-
-Question 6.10.  Can't resolve names without a "."
-
-(Answer written by Mark Andrews) You are not using a RFC 1535 aware
-resolver. Depending upon the age of your resolver you could try  adding a
-search directive to resolv.conf.
-
-	e.g.
-	domain <domain>
-	search <domain> [<domain2> ...]
-
-If that doesn't work you can configure you server to serve the parent and
-grandparent domains as this is the default search list.
-
-"domain langley.af.mil" has an implicit "search langley.af.mil af.mil mil"
-in the old resolvers, and you are timing out trying to resolve the
-address with one of these domains tacked on.
-
-When resolving internic.net the following will be tried in order.
-        internic.net.langley.af.mil
-        internic.net.af.mil
-        internic.net.mil
-        internic.net.
-
-RFC 1535 aware resolvers try qualified address first.
-
-        internic.net.
-        internic.net.langley.af.mil
-        internic.net.af.mil
-        internic.net.mil
-RFC 1535 documents the problems associated with the old search
-algorithim,  including security issues, and how to alleviate some of the
-problems.
-
------------------------------------------------------------------------------
-
-Question 6.11.  Err/TO errors being reported
-
-Date: Sun May  5 23:46:32 EDT 1996
-
-Why are errors like
-
-     Apr  2 20:41:58 nameserver named[25846]: Err/TO getting serial# for 
-     "foobar.domain1.com"
-     Apr  2 20:41:59 nameserver named[25846]: Err/TO getting serial# for 
-     "foobar.domain2.com"
-
-reported ?  These generally indicate that there is one of the following
-problems:
-
-* A network problem between you and the primary,
-* A bad IP address in named.boot,
-* The primary is Lame for the zone.
-
-An external check to see if you can retrieve the SOA is the best way to
-work out which it is.
-
------------------------------------------------------------------------------
-
-Question 6.12.  Why does swapping kill BIND ?
-
-Date: Thu Jul  4 23:20:20 EDT 1996
-
-The question was:
-
-   I've been diagnosing a problem with BIND 4.9.x (where x is usually 3BETA9 
-   or 3REL) for several months now.  I finally tracked it down to swap space
-   utilization on the unix boxes.
-
-   This happens under (at least) under Linux 1.2.9 & 1.2.13, SunOS 4.1.3U1, 
-   4.1.1, and Solaris 2.5.  The symptom is that if these machines get into 
-   swap at all bind quits resolving most, if not all queries.  Mind you that 
-   these machines are not "swapping hard", but rather we're talking about a 
-   several hundred K TEMPORARY deficiency.   I have noticed while digging 
-   through various archives that there is some referral to "bind thrashing
-   itself to death".   Is this what is happening ?
-
-And the answer is:
-
-   Yes it is. Bind can't tolerate having even a few pages swapped out.  
-   The time required to send responses climbs to several seconds/request,
-   and the request queue fills and overflows.
-
-   It's possible to shrink memory consumption a lot by undefining STATS
-   and XSTATS, and recompiling.  You could nuke DEBUG too, which will
-   cut the code size down some, but probably not the data size.  If that
-   doesn't do the job then it sounds like you'll need to move DNS onto a
-   separate box.
-
-   BIND tends to touch all of its resident pages all of the time with
-   normal activity... if you look at the RSS verses the total process
-   size, you will always see the RSS within, usually, 90% of the total
-   size of the process.  This means that *any* paging of named-owned
-   pages will stall named.  Thus, a machine running a heavily accessed
-   named process cannot afford to swap *at all*.
-
-   (Paul Vixie continues on this subject):
-   I plan to try to get BIND to exhibit slightly better locality of
-   reference in some future release.  Of course, I can only do this if
-   the query names also exhibit some kind of hot spots.  If someone
-   queries all your names often, BIND will have to touch all of its VM
-   pool that often.  (Right now, BIND touches everything pretty often
-   even if you're just hammering on some hot spots -- that's the part
-   I'd like to fix.  Malloc isn't cooperating.)
-
-===============================================================================
-
-Section 7.  ACKNOWLEDGEMENTS
-
- Q7.1        How is this FAQ generated ?
- Q7.2        What formats are available ?
- Q7.3        Contributors
-
------------------------------------------------------------------------------
-
-Question 7.1.  How is this FAQ generated ?
-
-Date: Fri Dec  6 16:51:31 EST 1996
-
-This FAQ is maintained in BFNN (Bizzarre Format with No Name).  This
-allows me to create ASCII, HTML, and GNU info (postscript coming soon)
-from one source file.
-
-The perl script "bfnnconv.pl" that is available with the linux FAQ is used
-to generate the various output files from the BFNN source.
-
------------------------------------------------------------------------------
-
-Question 7.2.  What formats are available ?
-
-Date: Fri Dec  6 16:51:31 EST 1996
-
-You may obtain one of the following formats for this document:
-
-* ASCII: http://www.users.pfmc.net/~cdp/cptd-faq/cptd-faq.ascii
-* BFNN: http://www.users.pfmc.net/~cdp/cptd-faq/cptd-faq.bfnn
-* GNU info: http://www.users.pfmc.net/~cdp/cptd-faq/cptd-faq.info
-* HTML: http://www.users.pfmc.net/~cdp/cptd-faq/index.html
-
------------------------------------------------------------------------------
-
-Question 7.3.  Contributors
-
-Date: Sat Dec  7 01:29:29 EST 1996
-
-Many people have helped put this list together.  Listed in e-mail address
-alphabetical order, the following people have contributed to this FAQ:
-
-* <Benoit.Grange@inria.fr> (Benoit.Grange)
-* <D.T.Shield@csc.liv.ac.uk> (Dave Shield)
-* <Todd.Aven@BankersTrust.Com>
-* <adam@comptech.demon.co.uk> (Adam Goodfellow)
-* <andras@is.co.za> (Andras Salamon)
-* <barmar@nic.near.net> (Barry Margolin)
-* <barr@pop.psu.edu> (David Barr)
-* <bj@herbison.com> (B.J. Herbison)
-* <bje@cbr.fidonet.org> (Ben Elliston)
-* <brad@birch.ims.disa.mil> (Brad Knowles)
-* <ckd@kei.com> (Christopher Davis)
-* <cdp2582@hertz.njit.edu> (Chris Peckham)
-* <cricket@hp.com> (Cricket Liu)
-* <cudep@csv.warwick.ac.uk> (Ian 'Vato' Dickinson [ID17])
-* <dillon@best.com> (Matthew Dillon)
-* <dparter@cs.wisc.edu> (David Parter)
-* <e07@nikhef.nl> (Eric Wassenaar)
-* <fitz@think.com> (Tom Fitzgerald)
-* <fwp@CC.MsState.Edu> (Frank Peters)
-* <gah@cco.caltech.edu> (Glen A. Herrmannsfeldt)
-* <glenn@popco.com> (Glenn Fleishman)
-* <harvey@indyvax.iupui.edu> (James Harvey)
-* <hubert@cac.washington.edu> (Steve Hubert)
-* <ivanl@pacific.net.sg> (Ivan Leong)
-* <jhawk@panix.com> (John Hawkinson)
-* <jmalcolm@uunet.uu.net> (Joseph Malcolm)
-* <jprovo@augustus.ultra.net> (Joe Provo)
-* <kevin@cfc.com> (Kevin Darcy)
-* <lamont@abstractsoft.com> (Sean T. Lamont)
-* <lavondes@tidtest.total.fr> (Michel Lavondes)
-* <mark@ucsalf.ac.uk> (Mark Powell)
-* <marka@syd.dms.CSIRO.AU> (Mark Andrews)
-* <mathias@unicorn.swi.com.sg> (Mathias Koerber)
-* <mjo@iao.ford.com> (Mike O'Connor)
-* <nick@flapjack.ieunet.ie> (Nick Hilliard)
-* <oppedahl@popserver.panix.com> (Carl Oppedahl)
-* <patrick@oes.amdahl.com> (Patrick J. Horgan)
-* <paul@software.com> (Paul Wren)
-* <pb@fasterix.frmug.fr.net> (Pierre Beyssac)
-* <ph10@cus.cam.ac.uk> (Philip Hazel)
-* <phil@netpart.com> (Phil Trubey)
-* <rocky@panix.com> (R. Bernstein)
-* <rv@seins.Informatik.Uni-Dortmund.DE> (Ruediger Volk)
-* <shields@tembel.org> (Michael Shields)
-* <tanner@george.arc.nasa.gov> (Rob Tanner)
-* <vixie@vix.com> (Paul A Vixie)
-* <wag@swl.msd.ray.com> (William Gianopoulos {84718)
-* <whg@inel.gov> (Bill Gray)
-* <wolf@pasteur.fr> (Christophe Wolfhugel)
-
-Thank you !
-
diff --git a/contrib/bind/doc/misc/IPv6 b/contrib/bind/doc/misc/IPv6
deleted file mode 100644
index 49fc3f5ec37cc..0000000000000
--- a/contrib/bind/doc/misc/IPv6
+++ /dev/null
@@ -1,72 +0,0 @@
-IPv6 notes for BIND 4.9.3 Patch 2 Candidate 5 (and later?)
-Paul Vixie, May 20, 1996
-doc/misc/IPv6
-
-			*** Introduction ***
-
-The IPv6 support in this release is latent, in that its presence is not
-documented.  The support is not optional, since its presence ought not to
-affect anyone who does not go looking for it.  The support includes:
-
-	inet_ntop()	new function.
-	inet_pton()	new function.
-	RES_USE_INET6	causes gethostby*() to return either real IPv6
-			addresses (if available) or mapped (::FFFF:a.b.c.d)
-			addresses if only IPv4 address records are found.
-	gethostbyname()	can search for T_AAAA in preference to T_A.
-	gethostbyaddr()	can search in IP6.INT for PTR RR's.
-	named		can load, transfer, cache, and dump T_AAAA RRs.
-
-		*** Some notes on the new functions ***
-
-The inet_pton() and inet_ntop() functions differ from the current (as of
-this writing) IPv6 BSD API draft.  Discussions were held, primarily between
-myself and Rich Stevens, on the ipng@sunroof.eng.sun.com mailing list, and
-the BIND definitions of these functions are likely to go into the next draft.
-(If not, and BIND has to change its definitions of these functions, then you
-will know why I chose not to document them yet!)
-
-These functions can return error values, and as such the process of porting
-code that used inet_aton() to use inet_pton() is not just syntactic.  Not all
-nonzero values indicate success; consider "-1".  Likewise, inet_ntoa() is not
-just smaller than inet_ntop() -- it's a whole new approach.  Inet_ntop() does
-not return a static pointer, the caller has to supply a sized buffer.  Also,
-inet_ntop() can return NULL, so you should only printf() the result if you
-have verified that your arguments will be seen as error free.
-
-The inet_pton() function is much pickier about its input format than the old
-inet_aton() function has been.  You can't abbreviate 10.0.0.53 as 10.53 any
-more.  Hexadecimal isn't accepted.  You have to supply four decimal numeric
-strings, each of whose value is within the range from 0 to 255.  No spaces
-are allowed either before, after, or within an address.  If you need the older
-functionality with all the shortcuts and exceptions, continue using inet_aton()
-for your IPv4 address parsing needs.
-
-		   *** Some notes on RES_USE_INET6 ***
-
-You can set this by modifying _res.options after calling res_init(), or you
-can turn it on globally by setting "options inet6" in /etc/resolv.conf.  This
-latter option ought to be used carefully, since _all_ applications will then
-receive IPv6 style h_addr_list's from their gethostby*() calls.  Once you know
-that every application on your system can cope with IPv6 addressing, it is safe
-and reasonable to turn on the global option.  Otherwise, don't do it.
-
-		*** Some notes on mapped IPv4 addresses ***
-
-There are two IPv6 prefixes set aside for IPv4 address encapsulation.  See
-RFC 1884 for a detailed explaination.  The ::a.b.c.d form is used for
-tunnelling, which means wrapping an IPv4 header around IPv6 packets and using
-the existing IPv4 routing infrastructure to reach what are actually IPv6
-endpoints.  The ::FFFF:a.b.c.d form can be used on dual-stack (IPv4 and IPv6)
-hosts to signal a predominantly IPv6 stack that it should use ``native'' IPv4
-to reach a given destination, even though the socket's address family is
-AF_INET6.
-
-BIND supports both of these address forms, to the extent that inet_pton() will
-parse them, inet_ntop() will generate them, gethostby*() will map IPv4 into
-IPv6 if the RES_USE_INET6 option is set, and gethostbyaddr() will search the
-IN-ADDR.ARPA domain rather than the IP6.INT domain when it needs a PTR RR.
-This last bit of behaviour is still under discussion and it's not clear that
-tunnelled addresses should be mapped using IN-ADDR.ARPA.  In other words, this
-bit of behaviour may change in a subsequent BIND release.  So now you know
-another reason why none of this stuff is ``officially'' documented.
diff --git a/contrib/bind/doc/misc/dns-setup b/contrib/bind/doc/misc/dns-setup
deleted file mode 100644
index 19f0197f7e81d..0000000000000
--- a/contrib/bind/doc/misc/dns-setup
+++ /dev/null
@@ -1,1081 +0,0 @@
-                Setting up a basic DNS server for a domain
-                            Revision 1.1.1
-
-                            Craig Richmond
-                         craig@ecel.uwa.edu.au
-                           15th August 1993
-
-
-About this document
-
-I have written this file because it seems that the same questions seem to
-pop up time and time again and when I had to install DNS from scratch the
-first time, we found very little to help us.
-
-This document covers setting up a Domain Name Server with authority over
-your domain and using a few of the more useful but less well known
-(hopefully this document will take care of that) features of nslookup to
-get information about the DNS and to work out why yours isn't working.
-
-If you are using a Sun Workstation and you want to make NIS interact with
-the DNS, then this is not the FAQ for you (but it may well be when you try
-to set up the DNS).  Mark J. McIntosh <Mark.McIntosh@engr.UVic.CA> points
-out that it is included in the comp.sys.sun.admin FAQ and for the benefit
-of those of you who can't get that (it is posted in comp.sys.sun.admin,
-comp.sys.sun.misc, comp.unix.solaris, comp.answers and news.answers) I have
-included the relevant parts at the bottom in appendix C.
-
-Contents:
-
-   Contents
-   An Overview of the DNS
-   Installing the DNS
-    *The Boot File
-    *The Cache File
-    *The Forward Mapping File
-    *The Reverse Mapping File
-   Delegating authority for domains within your domain
-   Troubleshooting your named
-    *Named doesn't work!  What is wrong?
-    *I changed my named database and my local machine has noticed,
-     but nobody else has the new information?
-    *My local machine knows about all the name server information,
-     but no other sites know about me?
-    *My forward domain names work, but the backward names do not?
-   How to get useful information from nslookup
-    *Getting number to name mappings.
-    *Finding where mail goes when a machine has no IP number.
-    *Getting a list of machines in a domain from nslookup.
-   Appendicies
-    *Appendix A  sample root.cache file
-    *Appendix B  Excerpt from RFC 1340 - Assigned Numbers - July 1992
-    *Appendix C  Installing DNS on a Sun when running NIS
-
-
-An Overview of the DNS:
-
-The Domain Name System is the software that lets you have name to number
-mappings on your computers.  The name decel.ecel.uwa.edu.au is the number
-130.95.4.2 and vice versa.  This is achieved through the DNS.  The DNS is a
-heirarchy.  There are a small number of root domain name servers that are
-responsible for tracking the top level domains and who is under them.  The
-root domain servers between them know about all the people who have name
-servers that are authoritive for domains under the root.
-
-Being authoritive means that if a server is asked about something in that
-domain, it can say with no ambiguity whether or not a given piece of
-information is true.  For example.  We have domains x.z and y.z.  There are
-by definition authoritive name servers for both of these domains and we
-shall assume that the name server in both of these cases is a machine
-called nic.x.z and nic.y.z but that really makes no difference.
-
-If someone asks nic.x.z whether there is a machine called a.x.z, then
-nic.x.z can authoritively say, yes or no because it is the authoritive name
-server for that domain.  If someone asks nic.x.z whether there is a machine
-called a.y.z then nic.x.z asks nic.y.z whether such a machine exists (and
-caches this for future requests).  It asks nic.y.z because nic.y.z is the
-authoritive name server for the domain y.z.  The information about
-authoritive name servers is stored in the DNS itself and as long as you
-have a pointer to a name server who is more knowledgable than yourself then
-you are set.
-
-When a change is made, it propogates slowly out through the internet to
-eventually reach all machines.  The following was supplied by Mark Andrews
-Mark.Andrews@syd.dms.csiro.au.
-
-        If both the primary and all secondaries are up and talking when
-        a zone update occurs and for the refresh period after the
-        update the old data will live for max(refresh + mininum)
-        average (refresh/2 +mininum) for the zone. New information will
-        be available from all servers after refresh.
-
-So with a refresh of 3 hours and a minimum of a day, you can expect
-everything to be working a day after it is changed.  If you have a longer
-minimum, it may take a couple of days before things return to normal.
-
-There is also a difference between a zone and a domain.  The domain is the
-entire set of machines that are contained within an organisational domain
-name.  For example, the domain uwa.edu.au contains all the machines at the
-University of Western Australia.  A Zone is the area of the DNS for which a
-server is responsible.  The University of Western Australia is a large
-organisation and trying to track all changes to machines at a central
-location would be difficult.  The authoritive name server for the zone
-uwa.edu.au delegates the authority for the zone ecel.uwa.edu.au to
-decel.ecel.uwa.edu.au.  Machine foo.ecel.uwa.edu.au is in the zone that
-decel is authoritive for.  Machine bar.uwa.edu.au is in the zone that
-uniwa.uwa.edu.au is authoritive for.
-
-Installing the DNS:
-
-First I'll assume you already have a copy of the Domain Name Server
-software.  It is probably called named or in.named depending on your
-flavour of unix.  I never had to get a copy, but if anyone thinks that
-information should be here then by all means tell me and I'll put it in.
-If you intend on using the package called Bind, then you should be sure
-that you get version 4.9, which is the most recent version at this point in
-time.
-
-The Boot File:
-
-First step is to create the file named.boot.  This describes to named
-(we'll dispense with the in.named.  Take them to be the same) where the
-information that it requires can be found.  This file is normally found in
-/etc/named.boot and I personally tend to leave it there because then I know
-where to find it.  If you don't want to leave it there but place it in a
-directory with the rest of your named files, then there is usually an
-option on named to specify the location of the boot file.
-
-Your typical boot file will look like this if you are an unimportant leaf
-node and there are other name servers at your site.
-
-directory	/etc/namedfiles
-
-cache		.	       				root.cache
-primary		ecel.uwa.edu.au				ecel.uwa.domain
-primary		0.0.127.in-addr.arpa			0.0.127.domain
-primary		4.95.130.in-addr.arpa			4.95.130.domain
-forwarders      130.95.128.1
-
-Here is an alternative layout used by Christophe Wolfhugel
-<Christophe.Wolfhugel@grasp.insa-lyon.fr>  He finds this easier because of
-the large number of domains he has.  The structure is essentially the same,
-but the file names use the domain name rather than the IP subnet to
-describe the contents.
-
-directory       /usr/local/etc/bind
-cache     .                      p/root
-;
-; Primary servers
-;
-primary   fr.net                        p/fr.net
-primary   frmug.fr.net                  p/frmug.fr.net
-primary   127.in-addr.arpa              p/127
-;
-; Secondary servers
-;
-secondary ensta.fr                 147.250.1.1     s/ensta.fr
-secondary gatelink.fr.net          134.214.100.1   s/gatelink.fr.net
-secondary insa-lyon.fr             134.214.100.1   s/insa-lyon.fr
-secondary loesje.org               145.18.226.21   s/loesje.org
-secondary nl.loesje.org            145.18.226.21   s/nl.loesje.org
-secondary pcl.ac.uk                161.74.160.5    s/pcl.ac.uk
-secondary univ-lyon1.fr            134.214.100.1   s/univ-lyon1.fr
-secondary wmin.ac.uk               161.74.160.5    s/wmin.ac.uk
-secondary westminster.ac.uk        161.74.160.5    s/westminster.ac.uk
-;
-;
-; Secondary for addresses
-;
-secondary 74.161.in-addr.arpa      161.74.160.5    s/161.74
-secondary 214.134.in-addr.arpa     134.214.100.1   s/134.214
-secondary 250.147.in-addr.arpa     147.250.1.1     s/147.250
-;
-; Classes C
-;
-secondary 56.44.192.in-addr.arpa   147.250.1.1     s/192.44.56
-secondary 57.44.192.in-addr.arpa   147.250.1.1     s/192.44.57
-
-The lines in the named.boot file have the following meanings.
-
-directory
-
-This is the path that named will place in front of all file names
-referenced from here on.  If no directory is specified, it looks for files
-relative to /etc.
-
-cache
-
-This is the information that named uses to get started.  Named must know
-the IP number of some other name servers at least to get started.
-Information in the cache is treated differently depending on your version
-of named.  Some versions of named use the information included in the cache
-permenantly and others retain but ignore the cache information once up and
-running.
-
-primary
-
-This is one of the domains for which this machine is authorative for.  You
-put the entire domain name in.  You need forwards and reverse lookups.  The
-first value is the domain to append to every name included in that file.
-(There are some exceptions, but they will be explained later)  The name at
-the end of the line is the name of the file (relative to /etc of the
-directory if you specified one).  The filename can have slashes in it to
-refer to subdirectories so if you have a lot of domains you may want to
-split it up.
-
-BE VERY CAREFUL TO PUT THE NUMBERS BACK TO FRONT FOR THE REVERSE LOOK UP
-FILE.  The example given above is for the subnet ecel.uwa.edu.au whose IP
-address is 130.95.4.*.  The reverse name must be 4.95.130.in-addr.arpa.
-It must be backwards and it must end with .in-addr.arpa.  If your reverse
-name lookups don't work, check this.  If they still don't work, check this
-again.
-
-forwarders
-
-This is a list of IP numbers for forward requests for sites about which we
-are unsure.  A good choice here is the name server which is authoritive for
-the zone above you.
-
-secondary (This line is not in the example, but is worth mentioning.)
-
-A secondary line indicates that you wish to be a secondary name server for
-this domain.  You do not need to do this usually.  All it does is help make
-the DNS more robust.  You should have at least one secondary server for
-your site, but you do not need to be a secondary server for anyone else.
-You can by all means, but you don't need to be.  If you want to be a
-secondary server for another domain, then place the line
-
-secondary         gu.uwa.edu.au   130.95.100.3 130.95.128.1
-
-in your named.boot.  This will make your named try the servers on both of
-the machines specified to see if it can obtain the information about those
-domains.  You can specify a number of IP addresses for the machines to
-query that probably depends on your machine.  Your copy of named will upon
-startup go and query all the information it can get about the domain in
-question and remember it and act as though it were authoritive for that
-domain.
-
-Next you will want to start creating the data files that contain the name
-definitions.
-
-The cache file:
-
-You can get a copy of the cache file from FTP.RS.INTERNIC.NET.  The current
-copy can be found in Appendix A.
-
-The Forward Mapping file:
-The file ecel.uwa.edu.au. will be used for the example with a couple of
-machines left in for the purpose of the exercise.  Here is a copy of what
-the file looks like with explanations following.
-
-; Authoritative data for ecel.uwa.edu.au
-;
-@		IN	SOA decel.ecel.uwa.edu.au. postmaster.ecel.uwa.edu.au. (
-				93071200	; Serial (yymmddxx)
-				10800		; Refresh 3 hours
-				3600		; Retry   1 hour
-				3600000 	; Expire  1000 hours
-				86400 )		; Minimum 24 hours
-		IN	A		130.95.4.2
-		IN	MX	100  	decel
-		IN	MX	150	uniwa.uwa.edu.au.
-		IN	MX	200	relay1.uu.net.
-		IN	MX	200	relay2.uu.net.
-
-localhost	IN	A		127.0.0.1
-
-decel		IN	A		130.95.4.2
-		IN	HINFO	SUN4/110	 UNIX
-		IN	MX	100	decel
-		IN	MX	150	uniwa.uwa.edu.au.
-		IN	MX	200	relay1.uu.net
-		IN	MX	200	relay2.uu.net
-
-gopher		IN	CNAME		decel.ecel.uwa.edu.au.
-
-accfin		IN	A		130.95.4.3
-		IN	HINFO	SUN4/110	 UNIX
-		IN	MX	100	decel
-		IN	MX	150	uniwa.uwa.edu.au.
-		IN	MX	200	relay1.uu.net
-		IN	MX	200	relay2.uu.net
-
-chris-mac	IN	A		130.95.4.5
-		IN	HINFO	MAC-II	MACOS
-
-The comment character is ';' so the first two lines are just comments
-indicating the contents of the file.
-
-All values from here on have IN in them.  This indicates that the value is
-an InterNet record.  There are a couple of other types, but all you need
-concern yourself with is internet ones.
-
-The SOA record is the Start Of Authority record.  It contains the
-information that other nameservers will learn about this domain and how to
-treat the information they are given about it.  The '@' as the first
-character in the line indicates that you wish to define things about the
-domain for which this file is responsible.  The domain name is found in the
-named.boot file in the corresponding line to this filename.  All
-information listed refers to the most recent machine/domain name so all
-records from the '@' until 'localhost' refer to the '@'.  The SOA record
-has 5 magic numbers.  First magic number is the serial number.  If you
-change the file, change the serial number.  If you don't, no other name
-servers will update their information.  The old information will sit around
-for a very long time.
-
-Refresh is the time between refreshing information about the SOA (correct
-me if I am wrong).  Retry is the frequency of retrying if an authorative
-server cannot be contacted.  Expire is how long a secondary name server
-will keep information about a zone without successfully updating it or
-confirming that the data is up to date.  This is to help the information
-withstand fairly lengthy downtimes of machines or connections in the
-network without having to recollect all the information.  Minimum is the
-default time to live value handed out by a nameserver for all records in
-a zone without an explicit TTL value. This is how long the data will live
-after being handed out.  The two pieces of information before the 5 magic
-numbers are the machine that is considered the origin of all of this
-information.  Generally the machine that is running your named is a good
-one for here.  The second is an email address for someone who can fix any
-problems that may occur with the DNS.  Good ones here are postmaster,
-hostmaster or root.  NOTE: You use dots and not '@' for the email address.
-
-eg  root.decel.ecel.uwa.edu.au is correct
-     and
-    root@decel.ecel.uwa.edu.au is incorrect.
-
-We now have an address to map ecel.uwa.edu.au to.  The address is
-130.95.4.2 which happens to be decel, our main machine.  If you try to find
-an IP number for the domain ecel.uwa.edu.au it will get you the machine
-decel.ecel.uwa.edu.au's IP number.  This is a nicety which means that
-people who have non-MX record mailers can still mail fred@ecel.uwa.edu.au
-and don't have to find the name of a machine name under the domain to mail.
-
-Now we have a couple of MX records for the domain itself.  The MX records
-specify where to send mail destined for the machine/domain that the MX
-record is for.  In this case we would prefer if all mail for
-fred@ecel.uwa.edu.au is sent to decel.ecel.uwa.edu.au.  If that does not
-work, we would like it to go to uniwa.uwa.edu.au because there are a number
-of machines that might have no idea how to get to us, but may be able to get
-to uniwa.  And failing that, try the site relay1.uu.net.  A small number
-indicates that this site should be tried first.  The larget the number the
-further down the list of sites to try the site is.  NOTE: Not all machines
-have mailers that pay attention to MX records.  Some only pay attention to
-IP numbers, which is really stupid.  All machines are required to have
-MX-capable Mail Transfer Agents (MTA) as there are many addresses that can
-only be reached via this means.
-
-There is an entry for localhost now.  Note that this is somewhat of a
-kludge and should probably be handled far more elegantly.  By placing
-localhost here, a machine comes into existance called
-localhost.ecel.uwa.edu.au.  If you finger it, or telnet to it, you get your
-own machine, because the name lookup returns 127.0.0.1 which is the special
-case for your own machine.  I have used a couple of different DNS packages.
-The old BSD one let you put things into the cache which would always work,
-but would not be exported to other nameservers.  In the newer Sun one, they
-are left in the cache and are mostly ignored once named is up and running.
-This isn't a bad solution, its just not a good one.
-
-Decel is the main machine in our domain.  It has the IP number 130.95.4.2
-and that is what this next line shows.  It also has a HINFO entry.  HINFO
-is Host Info which is meant to be some sort of an indication of what the
-machine is and what it runs.  The values are two white space seperated
-values.  First being the hardware and second being the software.  HINFO is
-not compulsory, its just nice to have sometimes.  We also have some MX
-records so that mail destined for decel has some other avenues before it
-bounces back to the sender if undeliverable.
-
-It is a good idea to give all machines capable of handling mail an MX
-record because this can be cached on remote machines and will help to
-reduce the load on the network.
-
-gopher.ecel.uwa.edu.au is the gopher server in our division.  Now because
-we are cheapskates and don't want to go and splurge on a seperate machine
-just for handling gopher requests we have made it a CNAME to our main
-machine.  While it may seem pointless it does have one main advantage.
-When we discover that our placing terrabytes of popular quicktime movies
-on our gopher server (no we haven't and we don't intend to) causes an
-unbearable load on our main machine, we can quickly move the CNAME to
-point at a new machine by changing the name mentioned in the CNAME.  Then
-the slime of the world can continue to get their essential movies with a
-minimal interuption to the network.  Other good CNAMEs to maintain are
-things like ftp, mailhost, netfind, archie, whois, and even dns (though the
-most obvious use for this fails).  It also makes it easier for people to
-find these services in your domain.
-
-We should probably start using WKS records for things like gopher and whois
-rather than making DNS names for them.  The tools are not in wide
-circulation for this to work though.  (Plus all those comments in many DNS
-implementation of "Not implemented" next to the WKS record)
-
-Finally we have a macintosh which belongs to my boss.  All it needs is an
-IP number, and we have included the HINFO so that you can see that it is in
-fact a macII running a Mac System.  To get the list of preferred values,
-you should get a copy of RFC 1340.  It lists lots of useful information
-such as /etc/services values, ethernet manufacturer hardware addresses,
-HINFO defualts and many others.  I will include the list as it stands at
-the moment, but if any RFC superceeds 1340, then it will have a more
-complete list.  See Appendix B for that list.
-
-NOTE:  If Chris had a very high profile and wanted his mac to appear like a
-fully connected unix machine as far as internet services were concerned, he
-could simply place an MX record such as 
-
-	IN	MX	100  decel
-
-after his machine and any mail sent to chris@chris-mac.ecel.uwa.edu.au
-would be automatically rerouted to decel.
-
-The Reverse Mapping File
-
-The reverse name lookup is handled in a most bizarre fashion.  Well it all
-makes sense, but it is not immediately obvious.
-
-All of the reverse name lookups are done by finding the PTR record
-associated with the name w.x.y.z.in-addr.arpa.  So to find the name
-associated with the IP number 1.2.3.4, we look for information stored in
-the DNS under the name 4.3.2.1.in-addr.arpa.  They are organised this way
-so that when you are allocated a B class subnet for example, you get all of
-the IP numbers in the domain 130.95.  Now to turn that into a reverse name
-lookup domain, you have to invert the numbers or your registered domains
-will be spread all over the place.  It is a mess and you need not understand
-the finer points of it all.  All you need to know is that you put the
-reverse name lookup files back to front.
-
-Here is the sample reverse name lookup files to go with our example.
-
-0.0.127.in-addr.arpa
---
-;  Reverse mapping of domain names 0.0.127.in-addr.arpa
-;  Nobody pays attention to this, it is only so 127.0.0.1 -> localhost.
-@		IN	SOA decel.ecel.uwa.edu.au. postmaster.ecel.uwa.edu.au. (
-				91061801	; Serial (yymmddxx)
-				10800		; Refresh 3 hours
-				3600		; Retry   1 hour
-				3600000 	; Expire  1000 hours
-				86400 )		; Minimum 24 hours
-;
-1		IN	PTR	    localhost.ecel.uwa.edu.au.
---
-
-4.95.130.in-addr.arpa
---
-;	reverse mapping of domain names 4.95.130.in-addr.arpa
-;
-@		IN	SOA decel.ecel.uwa.edu.au. postmaster.ecel.uwa.edu.au. (
-				92050300	; Serial (yymmddxx format)
-				10800		; Refresh	3hHours
-				3600		; Retry		1 hour
-				3600000		; Expire	1000 hours
-				86400 )		; Minimum	24 hours
-2		IN	PTR	decel.ecel.uwa.edu.au.
-3		IN	PTR	accfin.ecel.uwa.edu.au.
-5		IN	PTR	chris-mac.ecel.uwa.edu.au.
---
-
-It is important to remember that you must have a second start of authority
-record for the reverse name lookups.  Each reverse name lookup file must
-have its own SOA record.  The reverse name lookup on the 127 domain is
-debatable seeing as there is likely to be only one number in the file and
-it is blatantly obvious what it is going to map to.
-
-The SOA details are the same as in the forward mapping.
-
-Each of the numbers listed down the left hand side indicates that the line
-contains information for that number of the subnet.  Each of the subnets
-must be the more significant digits.  eg the 130.95.4 of an IP number
-130.95.4.2 is implicit for all numbers mentioned in the file.
-
-The PTR must point to a machine that can be found in the DNS.  If the name
-is not in the DNS, some versions of named just bomb out at this point.
-
-Reverse name lookups are not compulsory, but nice to have.  It means that
-when people log into machines, they get names indicating where they are
-logged in from.  It makes it easier for you to spot things that are wrong
-and it is far less cryptic than having lots of numbers everywhere.  Also if
-you do not have a name for your machine, some brain dead protocols such as
-talk will not allow you to connect.
-
-Since I had this I had one suggestion of an alternative way to do the
-localhost entry.  I think it is a matter of personal opinion so I'll
-include it here in case anyone things that this is a more appropriate
-method.
-
-The following is courtesy of jep@convex.nl (JEP de Bie)
-
-  The way I did it was:
-
-  1) add in /etc/named.boot:
-
-     primary   .                             localhost
-     primary   127.in-addr.ARPA.             IP127
-
-(Craig: It has been suggested by Mark Andrews that this is a bad practice
- particularly if you have upgraded to Bind 4.9.  You also run the risk of
- polluting the root name servers.  This comes down to a battle of idealogy
- and practicality.  Think twice before declaring yourself authorative for
- the root domain.)
-
-  So I not only declare myself (falsely? - probably, but nobody is going to
-  listen anyway most likely [CPR]:-) athorative in the 127.in-addr.ARPA domain
-  but also in the . (root) domain.
-
-  2) the file localhost has:
-
-     $ORIGIN .
-     localhost       IN      A       127.0.0.1
-
-  3) and the file IP127:
-
-     $ORIGIN 127.in-addr.ARPA.
-     1.0.0   IN      PTR     localhost.
-
-  4) and I have in my own domain file (convex.nl) the line:
-
-     $ORIGIN convex.nl.
-     localhost       IN      CNAME   localhost.
-
-  The advantage (elegancy?) is that a query (A) of localhost. gives the
-  reverse of the query of 1.0.0.127.in-addr.ARPA. And it also shows that
-  localhost.convex.nl is only a nickname to something more absolute.
-  (While the notion of localhost is of course relative :-)).
-
-  And I also think there is a subtle difference between the lines
-
-    primary   127.in-addr.ARPA.             IP127
-      and
-    primary   0.0.127.in-addr.ARPA.         4.95.130.domain
-                                        =============
-                                         JEP de Bie
-                                        jep@convex.nl
-                                        =============
-
-
-
-Delegating authority for domains within your domain:
-
-When you start having a very big domain that can be broken into logical and
-seperate entities that can look after their own DNS information, you will
-probably want to do this.  Maintain a central area for the things that
-everyone needs to see and delegate the authority for the other parts of the
-organisation so that they can manage themselves.
-
-Another essential piece of information is that every domain that exists
-must have it NS records associated with it.  These NS records denote the
-name servers that are queried for information about that zone.  For your
-zone to be recognised by the outside world, the server responsible for the
-zone above you must have created a NS record for your machine in your
-domain.  For example, putting the computer club onto the network and giving
-them control over their own part of the domain space we have the following.
-
-The machine authorative for gu.uwa.edu.au is mackerel and the machine
-authorative for ucc.gu.uwa.edu.au is marlin.
-
-in mackerel's data for gu.uwa.edu.au we have the following
-
-@		IN	SOA ...
-		IN	A	130.95.100.3
-		IN	MX	mackerel.gu.uwa.edu.au.
-		IN	MX	uniwa.uwa.edu.au.
-
-marlin		IN	A	130.95.100.4
-
-ucc		IN	NS	marlin.gu.uwa.edu.au.
-		IN	NS	mackerel.gu.uwa.edu.au.
-
-Marlin is also given an IP in our domain as a convenience.  If they blow up
-their name serving there is less that can go wrong because people can still
-see that machine which is a start.  You could place "marlin.ucc" in the
-first column and leave the machine totally inside the ucc domain as well.
-
-The second NS line is because mackerel will be acting as secondary name
-server for the ucc.gu domain.  Do not include this line if you are not
-authorative for the information included in the sub-domain.
-
-
-Troubleshooting your named:
-
-Named doesn't work!  What is wrong?
-
-Step 1:  Run nslookup and see what nameserver it tries to connect you to.
-If nslookup connects you to the wrong nameserver, create a /etc/resolv.conf
-file that points your machine at the correct nameserver.  If there is no
-resolv.conf file, the the resolver uses the nameserver on the local
-machine.
-
-Step 2:  Make sure that named is actually running.
-
-Step 3:  Restart named and see if you get any error messages on the
-console and in also check /usr/adm/messages.
-
-Step 4:  If named is running, nslookup connects to the appropriate
-nameserver and nslookup can answer simple questions, but other programs
-such as 'ping' do not work with names, then you need to install resolv+
-most likely.
-
-
-I changed my named database and my local machine has noticed, but nobody
-else has the new information?
-
-Change the serial number in the SOA for any domains that you modified and
-restart named.  Wait an hour and check again.  The information propogates
-out.  It won't change immediately.
-
-
-My local machine knows about all the name server information, but no other
-sites know about me?
-
-Find an upstream nameserver (one that has an SOA for something in your
-domain) and ask them to be a secondary name server for you.  eg if you are
-ecel.uwa.edu.au, ask someone who has an SOA for the domain uwa.edu.au.
-Get NS records (and glue) added to your parent zone for your zone. This is
-called delegating. It should be done formally like this or you will get
-inconsistant answers out of the DNS.  ALL NAMSERVERS FOR YOUR ZONE SHOULD
-BE LISTED IN THIS MANNER.
-
-
-My forward domain names work, but the backward names do not?
-
-Make sure the numbers are back to front and have the in-addr.arpa on the
-end.
-Make sure you reverse zone is registered. For Class C nets this can be done
-by mailing to hostmaster@internic.net. For class A & B nets make sure that
-you are registeres with the primary for your net and that the net itself
-is registered with hostmaster@internic.net.
-
-
-How to get useful information from nslookup:
-
-Nslookup is a very useful program but I'm sure there are less than 20
-people worldwide who know how to use it to its full usefulness.  I'm most
-certainly not one of them.  If you don't like using nslookup, there is at
-least one other program called dig, that has most/all(?) of the
-functionality of nslookup and is a hell of a lot easier to use.
-
-I won't go into dig much here except to say that it is a lot easier to get
-this information out of.  I won't bother because nslookup ships with almost
-all machines that come with network software.
-
-To run nslookup, you usually just type nslookup.  It will tell you the
-server it connects to.  You can specify a different server if you want.
-This is useful when you want to tell if your named information is
-consistent with other servers.
-
-Getting name to number mappings.
-
-Type the name of the machine.  Typing 'decel' is enough if the machine is
-local.
-
-(Once you have run nslookup successfully)
-> decel
-Server:  ecel.uwa.edu.au
-Address:  130.95.4.2
-
-Name:    decel.ecel.uwa.edu.au
-Address:  130.95.4.2
-
->
-
-One curious quirk of some name resolvers is that if you type a
-machine name, they will try a number of permutations.  For example if my
-machine is in the domain ecel.uwa.edu.au and I try to find a machine
-called fred, the resolver will try the following.
-
-  fred.ecel.uwa.edu.au.
-  fred.uwa.edu.au.
-  fred.edu.au.
-  fred.au.
-  fred.
-
-This can be useful, but more often than not, you would simply prefer a good
-way to make aliases for machines that are commonly referenced.  If you are
-running resolv+, you should just be able to put common machines into the
-host file.
-
-DIG: dig <machine name>
-
-Getting number to name mappings.
-
-Nslookup defaults to finding you the Address of the name specified.  For
-reverse lookups you already have the address and you want to find the
-name that goes with it.  If you read and understood the bit above where it
-describes how to create the number to name mapping file, you would guess
-that you need to find the PTR record instead of the A record.  So you do
-the following.
-
-> set type=ptr
-> 2.4.95.130.in-addr.arpa
-Server:  decel.ecel.uwa.edu.au
-Address:  130.95.4.2
-
-2.4.95.130.in-addr.arpa host name = decel.ecel.uwa.edu.au
->
-
-nslookup tells you that the ptr for the machine name
-2.4.95.130.in-addr.arpa points to the host decel.ecel.uwa.edu.au.
-
-DIG: dig -x <machine number>
-
-Finding where mail goes when a machine has no IP number.
-
-When a machine is not IP connected, it needs to specify to the world, where
-to send the mail so that it can dial up and collect it every now and then.
-This is accomplished by setting up an MX record for the site and not giving
-it an IP number.  To get the information out of nslookup as to where the
-mail goes, do the following.
-
-> set type=mx
-> dialix.oz.au
-Server:  decel.ecel.uwa.oz.au
-Address:  130.95.4.2
-
-Non-authoritative answer:
-dialix.oz.au    preference = 100, mail exchanger = uniwa.uwa.OZ.AU
-dialix.oz.au    preference = 200, mail exchanger = munnari.OZ.AU
-Authoritative answers can be found from:
-uniwa.uwa.OZ.AU inet address = 130.95.128.1
-munnari.OZ.AU   inet address = 128.250.1.21
-munnari.OZ.AU   inet address = 192.43.207.1
-mulga.cs.mu.OZ.AU       inet address = 128.250.35.21
-mulga.cs.mu.OZ.AU       inet address = 192.43.207.2
-dmssyd.syd.dms.CSIRO.AU inet address = 130.155.16.1
-ns.UU.NET       inet address = 137.39.1.3
-
-You tell nslookup that you want to search for mx records and then you give
-it the name of the machine.  It tells you the preference for the mail
-(small means more preferable), and who the mail should be sent to.  It also
-includes sites that are authorative (have this name in their named database
-files) for this MX record.  There are multiple sites as a backup.  As can
-be seen, our local public internet access company dialix would like all of
-their mail to be sent to uniwa, where they collect it from.  If uniwa is
-not up, send it to munnari and munnari will get it to uniwa eventually.
-
-NOTE: For historical reasons Australia used to be .oz which was changed to
-.oz.au to move to the ISO standard extensions upon the advent of IP.  We
-are now moving to a more normal heirarchy which is where the .edu.au comes
-from.  Pity, I liked having oz.
-
-DIG: dig <zone> mx
-
-Getting a list of machines in a domain from nslookup.
-
-Find a server that is authorative for the domain or just generally all
-knowing.  To find a good server, find all the soa records for a given
-domain.  To do this, you set type=soa and enter the domain just like in the
-two previous examples.
-
-Once you have a server type 
-
-> ls gu.uwa.edu.au.
-[uniwa.uwa.edu.au]
-Host or domain name            Internet address
- gu                             server = mackerel.gu.uwa.edu.au
- gu                             server = uniwa.uwa.edu.au
- gu                             130.95.100.3
- snuffle-upagus                 130.95.100.131
- mullet                         130.95.100.2
- mackerel                       130.95.100.3
- marlin                         130.95.100.4
- gugate                         130.95.100.1
- gugate                         130.95.100.129
- helpdesk                       130.95.100.180
- lan                            130.95.100.0
- big-bird                       130.95.100.130
-
-To get a list of all the machines in the domain.
-
-If you wanted to find a list of all of the MX records for the domain, you
-can put a -m flag in the ls command.
-
-> ls -m gu.uwa.edu.au.
-[uniwa.uwa.edu.au]
-Host or domain name            Metric Host
- gu                             100  mackerel.gu.uwa.edu.au
- gu                             200  uniwa.uwa.edu.au
-
-This only works for a limited selection of the different types.
-
-DIG: dig axfr <zone> @<server>
-
-
-
-Appendix A
-
-
-;
-;       This file holds the information on root name servers needed to
-;       initialize cache of Internet domain name servers
-;       (e.g. reference this file in the "cache  .  <file>"
-;       configuration file of BIND domain name servers).
-;
-;       This file is made available by InterNIC registration services
-;       under anonymous FTP as
-;           file                /domain/named.root
-;           on server           FTP.RS.INTERNIC.NET
-;       -OR- under Gopher at RS.INTERNIC.NET
-;           under menu          InterNIC Registration Services (NSI)
-;              submenu          InterNIC Registration Archives
-;           file                named.root
-;
-;       last update:    April 21, 1993
-;       related version of root zone:   930421
-;
-.                        99999999 IN  NS    NS.INTERNIC.NET.
-NS.INTERNIC.NET.         99999999     A     198.41.0.4
-.                        99999999     NS    KAVA.NISC.SRI.COM.
-KAVA.NISC.SRI.COM.       99999999     A     192.33.33.24
-.                        99999999     NS    C.NYSER.NET.
-C.NYSER.NET.             99999999     A     192.33.4.12
-.                        99999999     NS    TERP.UMD.EDU.
-TERP.UMD.EDU.            99999999     A     128.8.10.90
-.                        99999999     NS    NS.NASA.GOV.
-NS.NASA.GOV.             99999999     A     128.102.16.10
-                         99999999     A     192.52.195.10
-.                        99999999     NS    NS.NIC.DDN.MIL.
-NS.NIC.DDN.MIL.          99999999     A     192.112.36.4
-.                        99999999     NS    AOS.ARL.ARMY.MIL.
-AOS.ARL.ARMY.MIL.        99999999     A     128.63.4.82
-                         99999999     A     192.5.25.82
-.                        99999999     NS    NIC.NORDU.NET.
-NIC.NORDU.NET.           99999999     A     192.36.148.17
-; End of File
-
-
-Appendix B
-
-An Excerpt from
-RFC 1340		    Assigned Numbers		       July 1992
-
-
-			       MACHINE NAMES
-
-   These are the Official Machine Names	as they	appear in the Domain Name
-   System HINFO	records	and the	NIC Host Table.	 Their use is described	in
-   RFC-952 [53].
-
-   A machine name or CPU type may be up	to 40 characters taken from the
-   set of uppercase letters, digits, and the two punctuation characters
-   hyphen and slash.  It must start with a letter, and end with	a letter
-   or digit.
-
-      ALTO				    DEC-1080
-      ALTOS-6800			    DEC-1090
-      AMDAHL-V7				    DEC-1090B
-      APOLLO				    DEC-1090T
-      ATARI-104ST			    DEC-2020T
-      ATT-3B1				    DEC-2040
-      ATT-3B2				    DEC-2040T
-      ATT-3B20				    DEC-2050T
-      ATT-7300				    DEC-2060
-      BBN-C/60				    DEC-2060T
-      BURROUGHS-B/29			    DEC-2065
-      BURROUGHS-B/4800			    DEC-FALCON
-      BUTTERFLY				    DEC-KS10
-      C/30				    DEC-VAX-11730
-      C/70				    DORADO
-      CADLINC				    DPS8/70M
-      CADR				    ELXSI-6400
-      CDC-170				    EVEREX-386
-      CDC-170/750			    FOONLY-F2
-      CDC-173				    FOONLY-F3
-      CELERITY-1200			    FOONLY-F4
-      CLUB-386				    GOULD
-      COMPAQ-386/20			    GOULD-6050
-      COMTEN-3690			    GOULD-6080
-      CP8040				    GOULD-9050
-      CRAY-1				    GOULD-9080
-      CRAY-X/MP				    H-316
-      CRAY-2				    H-60/68
-      CTIWS-117				    H-68
-      DANDELION				    H-68/80
-      DEC-10				    H-89
-      DEC-1050				    HONEYWELL-DPS-6
-      DEC-1077				    HONEYWELL-DPS-8/70
-      HP3000				    ONYX-Z8000
-      HP3000/64				    PDP-11
-      IBM-158				    PDP-11/3
-      IBM-360/67			    PDP-11/23
-      IBM-370/3033			    PDP-11/24
-      IBM-3081				    PDP-11/34
-      IBM-3084QX			    PDP-11/40
-      IBM-3101				    PDP-11/44
-      IBM-4331				    PDP-11/45
-      IBM-4341				    PDP-11/50
-      IBM-4361				    PDP-11/70
-      IBM-4381				    PDP-11/73
-      IBM-4956				    PE-7/32
-      IBM-6152				    PE-3205
-      IBM-PC				    PERQ
-      IBM-PC/AT				    PLEXUS-P/60
-      IBM-PC/RT				    PLI
-      IBM-PC/XT				    PLURIBUS
-      IBM-SERIES/1			    PRIME-2350
-      IMAGEN				    PRIME-2450
-      IMAGEN-8/300			    PRIME-2755
-      IMSAI				    PRIME-9655
-      INTEGRATED-SOLUTIONS		    PRIME-9755
-      INTEGRATED-SOLUTIONS-68K		    PRIME-9955II
-      INTEGRATED-SOLUTIONS-CREATOR	    PRIME-2250
-      INTEGRATED-SOLUTIONS-CREATOR-8	    PRIME-2655
-      INTEL-386				    PRIME-9955
-      INTEL-IPSC			    PRIME-9950
-      IS-1				    PRIME-9650
-      IS-68010				    PRIME-9750
-      LMI				    PRIME-2250
-      LSI-11				    PRIME-750
-      LSI-11/2				    PRIME-850
-      LSI-11/23				    PRIME-550II
-      LSI-11/73				    PYRAMID-90
-      M68000				    PYRAMID-90MX
-      MAC-II				    PYRAMID-90X
-      MASSCOMP				    RIDGE
-      MC500				    RIDGE-32
-      MC68000				    RIDGE-32C
-      MICROPORT				    ROLM-1666
-      MICROVAX				    S1-MKIIA
-      MICROVAX-I			    SMI
-      MV/8000				    SEQUENT-BALANCE-8000
-      NAS3-5				    SIEMENS
-      NCR-COMTEN-3690			    SILICON-GRAPHICS
-      NEXT/N1000-316			    SILICON-GRAPHICS-IRIS
-      NOW				    SGI-IRIS-2400
-      SGI-IRIS-2500			    SUN-3/50
-      SGI-IRIS-3010			    SUN-3/60
-      SGI-IRIS-3020			    SUN-3/75
-      SGI-IRIS-3030			    SUN-3/80
-      SGI-IRIS-3110			    SUN-3/110
-      SGI-IRIS-3115			    SUN-3/140
-      SGI-IRIS-3120			    SUN-3/150
-      SGI-IRIS-3130			    SUN-3/160
-      SGI-IRIS-4D/20			    SUN-3/180
-      SGI-IRIS-4D/20G			    SUN-3/200
-      SGI-IRIS-4D/25			    SUN-3/260
-      SGI-IRIS-4D/25G			    SUN-3/280
-      SGI-IRIS-4D/25S			    SUN-3/470
-      SGI-IRIS-4D/50			    SUN-3/480
-      SGI-IRIS-4D/50G			    SUN-4/60
-      SGI-IRIS-4D/50GT			    SUN-4/110
-      SGI-IRIS-4D/60			    SUN-4/150
-      SGI-IRIS-4D/60G			    SUN-4/200
-      SGI-IRIS-4D/60T			    SUN-4/260
-      SGI-IRIS-4D/60GT			    SUN-4/280
-      SGI-IRIS-4D/70			    SUN-4/330
-      SGI-IRIS-4D/70G			    SUN-4/370
-      SGI-IRIS-4D/70GT			    SUN-4/390
-      SGI-IRIS-4D/80GT			    SUN-50
-      SGI-IRIS-4D/80S			    SUN-100
-      SGI-IRIS-4D/120GTX		    SUN-120
-      SGI-IRIS-4D/120S			    SUN-130
-      SGI-IRIS-4D/210GTX		    SUN-150
-      SGI-IRIS-4D/210S			    SUN-170
-      SGI-IRIS-4D/220GTX		    SUN-386i/250
-      SGI-IRIS-4D/220S			    SUN-68000
-      SGI-IRIS-4D/240GTX		    SYMBOLICS-3600
-      SGI-IRIS-4D/240S			    SYMBOLICS-3670
-      SGI-IRIS-4D/280GTX		    SYMMETRIC-375
-      SGI-IRIS-4D/280S			    SYMULT
-      SGI-IRIS-CS/12			    TANDEM-TXP
-      SGI-IRIS-4SERVER-8		    TANDY-6000
-      SPERRY-DCP/10			    TEK-6130
-      SUN				    TI-EXPLORER
-      SUN-2				    TP-4000
-      SUN-2/50				    TRS-80
-      SUN-2/100				    UNIVAC-1100
-      SUN-2/120				    UNIVAC-1100/60
-      SUN-2/130				    UNIVAC-1100/62
-      SUN-2/140				    UNIVAC-1100/63
-      SUN-2/150				    UNIVAC-1100/64
-      SUN-2/160				    UNIVAC-1100/70
-      SUN-2/170				    UNIVAC-1160
-      UNKNOWN
-      VAX-11/725
-      VAX-11/730
-      VAX-11/750
-      VAX-11/780
-      VAX-11/785
-      VAX-11/790
-      VAX-11/8600
-      VAX-8600
-      WANG-PC002
-      WANG-VS100
-      WANG-VS400
-      WYSE-386
-      XEROX-1108
-      XEROX-8010
-      ZENITH-148
-
-			       SYSTEM NAMES
-
-   These are the Official System Names as they appear in the Domain Name
-   System HINFO	records	and the	NIC Host Table.	 Their use is described
-   in RFC-952 [53].
-
-   A system name may be	up to 40 characters taken from the set of upper-
-   case	letters, digits, and the three punctuation characters hyphen,
-   period, and slash.  It must start with a letter, and	end with a
-   letter or digit.
-
-   AEGIS		     LISP		       SUN OS 3.5
-   APOLLO		     LISPM		       SUN OS 4.0
-   AIX/370		     LOCUS		       SWIFT
-   AIX-PS/2		     MACOS		       TAC
-   BS-2000		     MINOS		       TANDEM
-   CEDAR		     MOS		       TENEX
-   CGW			     MPE5		       TOPS10
-   CHORUS		     MSDOS		       TOPS20
-   CHRYSALIS		     MULTICS		       TOS
-   CMOS			     MUSIC		       TP3010
-   CMS			     MUSIC/SP		       TRSDOS
-   COS			     MVS		       ULTRIX
-   CPIX			     MVS/SP		       UNIX
-   CTOS			     NEXUS		       UNIX-BSD
-   CTSS			     NMS		       UNIX-V1AT
-   DCN			     NONSTOP		       UNIX-V
-   DDNOS		     NOS-2		       UNIX-V.1
-   DOMAIN		     NTOS		       UNIX-V.2
-   DOS			     OS/DDP		       UNIX-V.3
-   EDX			     OS/2		       UNIX-PC
-   ELF			     OS4		       UNKNOWN
-   EMBOS		     OS86		       UT2D
-   EMMOS		     OSX		       V
-   EPOS			     PCDOS		       VM
-   FOONEX		     PERQ/OS		       VM/370
-   FUZZ			     PLI		       VM/CMS
-   GCOS			     PSDOS/MIT		       VM/SP
-   GPOS			     PRIMOS		       VMS
-   HDOS			     RMX/RDOS		       VMS/EUNICE
-   IMAGEN		     ROS		       VRTX
-   INTERCOM		     RSX11M		       WAITS
-   IMPRESS		     RTE-A		       WANG
-   INTERLISP		     SATOPS		       WIN32
-   IOS			     SCO-XENIX/386	       X11R3
-   IRIX			     SCS		       XDE
-   ISI-68020		     SIMP		       XENIX
-   ITS			     SUN
-
-
-
-Appendix C     Installing DNS on a Sun when running NIS
-
-====================
- 2)     How to get DNS to be used when running NIS ?
-
-        First setup the appropriate /etc/resolv.conf file.
-        Something like this should do the "trick".
-
-        ;
-        ; Data file for a client.
-        ;
-        domain          local domain
-        nameserver      address of primary domain nameserver
-        nameserver      address of secondary domain nameserver
-
-        where:  "local domain" is the domain part of the hostnames.
-                 For example, if your hostname is "thor.ece.uc.edu"
-                 your "local domain" is "ece.uc.edu".
-
-        You will need to put a copy of this resolv.conf on
-        all NIS(YP) servers including slaves.
-
-        Under SunOS 4.1 and greater, change the "B=" at the top
-        of the /var/yp/Makefile to "B=-b" and setup NIS in the
-        usual fashion.
-
-        You will need reboot or restart ypserv for these changes
-        to take affect.
-
-        Under 4.0.x, edit the Makefile or apply the following "diff":
-
-*** Makefile.orig       Wed Jan 10 13:22:11 1990
---- Makefile    Wed Jan 10 13:22:01 1990
-***************
-*** 63 ****
-!                   | $(MAKEDBM) - $(YPDBDIR)/$(DOM)/hosts.byname; \
---- 63 ----
-!                   | $(MAKEDBM) -b - $(YPDBDIR)/$(DOM)/hosts.byname; \
-***************
-*** 66 ****
-!                   | $(MAKEDBM) - $(YPDBDIR)/$(DOM)/hosts.byaddr; \
---- 66 ----
-!                   | $(MAKEDBM) -b - $(YPDBDIR)/$(DOM)/hosts.byaddr; \
-====================
-
diff --git a/contrib/bind/doc/misc/style.txt b/contrib/bind/doc/misc/style.txt
deleted file mode 100644
index a966066074dd3..0000000000000
--- a/contrib/bind/doc/misc/style.txt
+++ /dev/null
@@ -1,172 +0,0 @@
-Path: vixie!vixie
-From: vixie@vix.com (Paul A Vixie)
-Newsgroups: comp.protocols.tcp-ip.domains
-Subject: Re: Format of DNS files (style question)
-Date: 28 Aug 94 03:17:08
-Organization: Vixie Enterprises
-Lines: 159
-Distribution: inet
-Message-ID: <VIXIE.94Aug28031708@office.home.vix.com>
-References: <33onnr$i4u@zombie.ncsc.mil>
-NNTP-Posting-Host: office.home.vix.com
-In-reply-to: sjr@zombie.ncsc.mil's message of 27 Aug 1994 21:02:51 -0400
-
-> (Style) Suggestions for how to layout DNS configuration files (both
-> forward and reverse)?
-
-I've gone back and forth on the question of whether the BOG should include a
-section on this topic.  I know what I myself prefer, but I'm wary of ramming
-my own stylistic preferences down the throat of every BOG reader.  But since
-you ask :-)...
-
-Create /var/named.  If your system is too old to have a /var, either create
-one or use /usr/local/adm/named instead.  Put your named.boot in it, and make
-/etc/named.boot a symlink to it.  If your system doesn't have symlinks, you're
-S-O-L (but you knew that).  In named.boot, put a "directory" directive that
-specifies your actual BIND working directory:
-
-	directory	/var/named
-
-All relative pathnames used in "primary", "secondary", and "cache" directives
-will be evaluated relative to this directory.  Create two subdirectories,
-/var/named/pri and /var/named/sec.  Whenever you add a "primary" directive
-to your named.boot, use "pri/WHATEVER" as the path name.  And then put the
-primary zone file into "pri/WHATEVER".  Likewise when you add "secondary"
-directives, use "sec/WHATEVER" and BIND (really named-xfer) will create the
-files in that subdirectory.
-
-(Variations: (1) make a midlevel directory "zones" and put "pri" and "sec"
-into it; (2) if you tend to pick up a lot of secondaries from a few hosts,
-group them together in their own subdirectories -- something like
-/var/named/zones/uucp if you're a UUCP Project name server.)
-
-For your forward files, name them after the zone.  dec.com becomes
-"/var/named/zones/pri/dec.com".  For your reverse files, name them after the
-network number.  0.1.16.in-addr.arpa becomes "/var/named/zones/pri/16.1.0".
-
-When creating or maintaining primary zone files, try to use the same SOA
-values everywhere, except for the serial number which varies per zone.  Put
-a $ORIGIN directive at the top of the primary zone file, not because it's
-needed (it's not since the default origin is the zone named in the "primary"
-directive) but because it make it easier to remember what you're working on
-when you have a lot of primary zones.  Put some comments up there indicating
-contact information for the real owner if you're proxying.  Use RCS and put
-the "$Id: style.txt,v 8.1 1995/12/22 21:59:52 vixie Exp $" in a ";" comment near the top of the zone file.
-
-The SOA and other top level information should all be listed together.  But
-don't put IN on every line, it defaults nicely.  For example:
-
-==============
-@	IN	SOA	gw.home.vix.com. postmaster.vix.com. (
-			1994082501      ; serial
-                        3600    ; refresh (1 hour)
-                        1800    ; retry (30 mins)
-                        604800  ; expire (7 days)
-                        3600 )  ; minimum (1 hour)
-
-		NS	gw.home.vix.com.
-		NS	ns.uu.net.
-		NS	uucp-gw-1.pa.dec.com.
-		NS	uucp-gw-2.pa.dec.com.
-
-		MX	10 gw.home.vix.com.
-		MX	20 uucp-gw-1.pa.dec.com.
-		MX	20 uucp-gw-1.pa.dec.com.
-==============
-
-I don't necessarily recommend those SOA values.  Not every zone is as volatile
-as the example shown.  I do recommend that serial number format; it's in date
-format with a 2-digit per-day revision number.  This format will last us until
-2147 A.D. at which point I expect a better solution will have been found :-).
-(Note that it would last until 4294 A.D. except that there are some old BINDs
-out there that use a signed quantity for representing serial number interally;
-I suppose that as long as none of these are still running after 2047 A.D.,
-that we can use the above serial number format until 4294 A.D., at which point
-a better solution will HAVE to be found.)
-
-You'll note that I use a tab stop for "IN" even though I never again specify
-it.  This leaves room for names longer than 7 bytes without messing up the
-columns.  You might also note that I've put the MX priority and destination
-in the same tab stop; this is because both are part of the RRdata and both 
-are very different from MX which is an RRtype.  Some folks seem to prefer to
-group "MX" and the priority together in one tab stop.  While this looks neat
-it's very confusing to newcomers and for them it violates the law of least
-astonishment.
-
-If you have a multi-level zone (one which contains names that have dots in
-them), you can use additional $ORIGIN statements but I recommend against it
-since there is no "back" operator.  That is, given the above example you can
-add:
-
-=============
-$ORIGIN home
-gw		A	192.5.5.1
-=============
-
-The problem with this is that subsequent RR's had better be somewhere under
-the "home.vix.com" name or else the $ORIGIN that introduces them will have
-to use a fully qualified name.  FQDN $ORIGIN's aren't bad and I won't be mad
-if you use them.  Unqualified ones as shown above are real trouble.  I usually
-stay away from them and just put the whole name in:
-
-=============
-gw.home		A	192.5.5.1
-=============
-
-In your reverse zones, you're usually in some good luck because the owner name
-is usually a single short token or sometimes two.
-
-=============
-$ORIGIN 5.5.192.in-addr.arpa.
-@	IN	SOA	...
-		NS	...
-1		PTR	gw.home.vix.com.
--------------
-$ORIGIN 1.16.in-addr.arpa.
-@	IN	SOA	...
-		NS	...
-2.0		PTR	gatekeeper.dec.com.
-=============
-
-It is usually pretty hard to keep your forward and reverse zones in synch.
-You can avoid that whole problem by just using "h2n" (see the ORA book, DNS
-and BIND, and its sample toolkit, included in the BIND distribution or on
-ftp.uu.net (use the QUOTE SITE EXEC INDEX command there to find this -- I
-never can remember where it's at).  "h2n" and many tools like it can just
-read your old /etc/hosts file and churn it into DNS zone files.  (May I
-recommend contrib/decwrl/mkdb.pl from the BIND distribution?)  However, if
-you (like me) prefer to edit these things by hand, you need to follow the
-simple convention of making all of your holes consistent.  If you use
-192.5.5.1 and 192.5.5.3 but not (yet) 192.5.5.2, then in your forward file
-you will have something like
-
-=============
-...
-gw.home		A	192.5.5.1
-;avail		A	192.5.5.2
-pc.home		A	192.5.5.3
-=============
-
-and in your reverse file you will have something like
-
-=============
-...
-1		PTR	gw.home.vix.com.
-;2		PTR	avail
-3		PTR	pc.home.vix.com.
-=============
-
-This convention will allow you to keep your sanity and make fewer errors.
-Any kind of automation (h2n, mkdb, or your own perl/tcl/awk/python tools)
-will help you maintain a consistent universe even if it's also a complex
-one.  Editing by hand doesn't have to be deadly but you MUST take care.
-
-Anyone who wants to know how to maintain nonleaf zones, i.e., zones which
-have few or no hosts in them but have hundreds or thousands of delegations,
-should attend Usenix LISA in San Diego and be there for the SENDS talk.
-Contact office@usenix.org for conference information.
---
-Paul Vixie
-Redwood City, CA
-decwrl!vixie!paul
-<paul@vix.com>
diff --git a/contrib/bind/doc/notes/data b/contrib/bind/doc/notes/data
deleted file mode 100644
index e522392a38303..0000000000000
--- a/contrib/bind/doc/notes/data
+++ /dev/null
@@ -1,51 +0,0 @@
-/*
- * We need a registy of name server addresses.  For each, we retain an RTT
- * and a list of name server names which have used this address.
- */
-tree_t	*by_nsaddr;
-struct by_nsaddr {
-	u_int32_t	rtt;		/* measured. */
-	char		**names;	/* NULL terminated array; strdup'd. */
-};
-
-/*
- * "struct server" is a name server, which can have many addresses.  There
- * is no central registry of servers, since each creator can have a different
- * idea of what the addresses are.
- */
-struct server {
-	char		*name;		/* made with strdup. */
-	struct sockaddr_in *addrs;	/* counted array. */
-	int		n_addrs;	/* array size. */
-};
-
-/*
- * "struct zone" is a zone cut.
- */
-tree_t	*by_class;	/* zone[class]. */
-struct zone {
-	enum {master, slave, cache, boot}
-			type;
-
-	/* Servers learned from boot cache, a parent zone, or !auth answer. */
-	struct server	*servers_notauth;
-
-	/* Servers learned from authoritative answer or local zone. */
-	struct server	*servers_auth;
-
-	/* Root node of zone. */
-	struct node	*root;
-};
-
-struct node {
-	char		*label;		/* made with strdup. */
-	tree_t		*subs;		/* subdomains (node[label]). */
-	/* really this is "data" since for the zone cut tree we have no sets.*/
-	tree_t		*rrsets;	/* rr sets (rrset[type]). */
-};
-
-struct rrset {
-	rrtype		type;
-	u_int32_t	ttl;
-	u_char		data[1];	/* struct size constrains this. */
-};
diff --git a/contrib/bind/doc/notes/db_names.c b/contrib/bind/doc/notes/db_names.c
deleted file mode 100644
index 0b4e62c78b833..0000000000000
--- a/contrib/bind/doc/notes/db_names.c
+++ /dev/null
@@ -1,184 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include "named.h"
-#include "tree.h"
-
-struct node {
-	struct node	*parent;		/* NULL for "."'s node. */
-	tree		*children;		/* Nodes using us as parent. */
-	/*void		*userdata;*/		/* For future use. */
-	char		name[sizeof(void*)];	/* Open array. */
-};
-
-static	struct node	rootNode;
-
-static int
-nodeCompare(t1, t2)
-	const tree_t t1, t2;
-{
-	const char	*n1 = ((struct node *)t1)->name + sizeof(u_char),
-			*n2 = ((struct node *)t2)->name + sizeof(u_char);
-
-	return (strcasecmp(n1, n2));
-}
-
-/* void *
- * db_findname(const char *name, int storeflag)
- *	find or store a presentation format domain name.
- * returns:
- *	NULL if an error occurred (check errno)
- *	else, node's unique, opaque address.
- */
-void *
-db_findname(name, storeflag)
-	const char *name;
-	int storeflag;
-{
-	struct node *node, *tnode;
-	const char *tname;
-	size_t len;
-	int ch;
-
-	/* The root domain has its own static node. */
-	if (name[0] == '\0')
-		return (&rootNode);
-
-	/* Locate the end of the first label. */
-	for (tname = name; (ch = *tname) != '\0'; tname++) {
-		/* Is this the end of the first label? */
-		if (ch == '.')
-			break;
-		/* Is it an escaped character? */
-		if (ch == '\\') {
-			ch = *++tname;
-			if (ch == '\0')
-				break;
-		}
-	}
-
-	/* Make sure the label's length will fit in our length byte. */
-	len = tname - name;
-	if (len > 255) {
-		errno = ENAMETOOLONG;
-		return (NULL);
-	}
-
-	/* If nothing but unescaped dots after this, elide them. */
-	while (ch == '.')
-		ch = *tname++;
-
-	/*
-	 * Make a new node since the comparison function needs it
-	 * and we may yet end up adding it to our parent's tree.
-	 *
-	 * Note that by recursing for tnode->parent, we might be
-	 * creating our parents and grandparents and so on.
-	 */
-	tnode = (struct node *)malloc(sizeof(struct node) - sizeof(void *)
-				      + sizeof(u_char) + len + sizeof(char));
-	tnode->parent = db_findname(tname);
-	tnode->children = NULL;
-	*((u_char *)tnode->name) = (u_char)len;
-	memcpy(tnode->name + sizeof(u_char), name, len);
-	tnode->name[sizeof(u_char) + len] = '\0';
-
-	/* If our first label isn't in our parent's tree, put it there. */
-	node = tree_srch(&tnode->parent->children, nodeCompare, (tree_t)tnode);
-	if (node == NULL)
-		if (storeflag)
-			if (tree_add(&tnode->parent->children, nodeCompare,
-				     (tree_t)tnode, NULL))
-				node = tnode, tnode = NULL;
-			else
-				errno = ENOMEM;
-		else
-			errno = ENOENT;
-
-	/* Get rid of tnode if we didn't consume it. */
-	if (tnode != NULL)
-		free(tnode);
-
-	/* Return the (possibly new) node, or NULL, as appropriate. */
-	return (node);
-}
-
-/* int
- * db_getname(void *node, char *name, size_t size)
- *	given a node's unique, opaque address, format its name.
- * returns:
- *	-1 = error occurred, check errno
- *	0 = success
- */
-int
-db_getname(vnode, name, size)
-	const void *vnode;
-	char *name;
-	size_t size;
-{
-	const struct node *node = vnode;
-
-	while (node != NULL) {
-		size_t len = (size_t)node->name[0];
-
-		if (size < len + 1)
-			goto too_long;
-		memcpy(name, node->name + sizeof(u_char), len);
-		name += len;
-		*name++ = '.';
-		size -= len + sizeof(char);
-		node = node->parent;
-	}
-
-	if (size < sizeof(char)) {
- too_long:
-		errno = ENAMETOOLONG;
-		return (-1);
-	}
-	*name = '\0';
-	return (0);
-}
-
-/*
- * char *
- * db_makename(void *node)
- *	given a node's unique, opaque address, format and return its name.
- * returns:
- *	pointer to the name or NULL on errors (check errno).
- * notes:
- *	returns pointer to a static buffer, be careful how you call it.
- */
-char *
-db_makename(vnode)
-	void *vnode;
-{
-	static char name[MAXDNAME*2];
-
-	if (db_getname(vnode, name, sizeof name) < 0)
-		return (NULL);
-	return (name);
-}
diff --git a/contrib/bind/doc/notes/irp.txt b/contrib/bind/doc/notes/irp.txt
deleted file mode 100644
index f2b59e263ea1f..0000000000000
--- a/contrib/bind/doc/notes/irp.txt
+++ /dev/null
@@ -1,521 +0,0 @@
-IRP Commands
-
-This document describes version 1 of IRP.
-
-IRP is a text-based command/response protocol like NNTP or SMTP.
-
-1.0 Response types: textual and status.
-
-1.1 Textual responses
-
-Textual responses are sent after a status response which indicates the text
-will follow. The text is a series of CR-LF terminated lines. On the last line a 
-single period ``.'' will appear. If a normal text line starts with a period
-then this will be doubled before sending.
-
-There is no maximum line length for responses. Commands have a maximum line
-length of 1024 characters.
-
-The lines that make up the transmitted data are divided into fields. The fields
-are spearated by the colon character ``:'', except in one case (for host data)
-where the at-sign ``@'' is used instead. Some fields, such as alias names for
-hosts, can have multiple values, and these values are separated by commas.
-
-Most transmission of data requires no special character changes. The field
-separators and subfield separators don't normally appear in the data. However
-in one case they can (network names). So to avoid trouble, all ``special''
-characters found in any data fields are encoded in URL-encoding form. That is
-they are replaced with the 3-character sequence ``%xx'', where xx is the
-hexidecimal value of the ascii-code for the chatacter.  i,e, ``:'' becomes
-``%58'', ``,'' becomes ``%44'' and ``%'' becomes ``%37''.
-
-For version 1 of IRP the set of special characters for purposes of encoding,
-is:
-
-	`,', '%', ':', '@'
-
-In a couple cases (password structure and group structure), there may be
-encrypted passwords as part of the data. If the client is a privileged user
-that the server can verify (e.g. through the use of SunOS doors(2)), then the
-encrypted password will be sent back to the client. If the client is not
-privileged the password will be replaced with the string ``*''.
-
-
-1.2 Status responses.
-
-Status responses follow a numbering pattern similar to NNTP.
-
-      1xx - Informative message
-      2xx - Command ok
-      3xx - Command ok so far, send the rest of it.
-      4xx - Command was correct, but couldn't be performed for
-            some reason.
-      5xx - Command unimplemented, or incorrect, or a serious
-            program error occurred.
-
-   The next digit in the code indicates the function response category.
-
-      x0x - Connection, setup, and miscellaneous messages
-      x1x - Host lookup
-      x2x - Network lookup
-      x3x - User lookup
-      x4x - Group lookup
-      x5x - Service lookup
-      x6x - Protocol lookup
-      x7x - Netgroup lookup
-      x8x - Misc. Information Lookup
-      x9x - Debugging output
-
-    The final digit in the code indicates whether textual data follows
-
-      xx0 - No textual data follows.
-      xx1 - Textual data follows.
-
-2.0 Connection Establishment
-
-    When the client connects to the server, the server will issue a welcome
-    banner. If the server will accetp commands, then the banner will start with
-    a status code indicating this, followed by a version number of the protocol
-    it accepts. Other words may come on the line afterwards to indicate to
-    humans the state of the server,
-
-    If the server wont accept commands then it will issue a banner indicating
-    that and will then drop the connection.
-
-2.1 Responses
-
-    200 1 Ready to go.     ; note: The server handles version 1 of the protocol
-    200 2 Ready            ; note: The server handles version 2 of the protocol
-    400 Sorry. Down to due to nightly backups.
-
-3.0 Commands
-
-3.1 The HOST commands
-
-3.1.1 GETHOSTBYNAME hostname
-3.1.2 GETHOSTBYNAME2 hostname address-family
-3.1.2 GETHOSTBYADDR address address-family
-3.1.3 GETHOSTENT
-
-    Returns a textual response containing the information for the given host(s)
-    (a struct hostent) encoded in an ascii format.  gethostbyaddr and
-    gethostbyname look up a specific host. GETHOSTENT returns the contents
-    of the /etc/hosts file. The GETHOSTENT command is optional may not be
-    supported by the server. The address-family paramater is the value
-    "AF_INET" or "AF_INET6"
-
-{ XXX GETHOSTENT is optional as the gethostent(3) call isn't always available }
-
-3.1.4 Responses
-
-    210 No such host
-    211 Host found
-
-    If the hostname given as the command argument doesn't exist, then the 210
-    response will be returned. If the host is successfully looked up, then the
-    211 response is sent and a textual message is sent after. The textual
-    message contains the host information encoded in an ascii form. The fields
-    of the host data are separated by at-signs. Fields that have multiple values
-    (like the aliases field) have their sub values separated by commas.
-
-        hostname@aliases@address-type@address-length@address-list@
-
-    - hostname is the FQDN of the host.
-
-    - aliases is a comma separated list of FQDNs for the host aliases.
-
-    - address-type is either the strings "AF_INET" or "AF_INET6"
-
-    - address-length is the length of each address in bytes (after conversion
-      back to binary form).
-
-    - address-list is a comma separated list of dotted IPv4 if IPv6 addresses. 
-
-{ XXX if we're going to include TTLs where should they go? Perhaps the
-address-list field should be "addr/ttl,addr/ttl,..." }
-
-    For example:
-
-        C: GETHOSTBYNAME gw.downtown.vix.com
-
-	S: 210 No such host.
-
-        C: GETHOSTBYNAME gw.home.vix.com
-
-	S: 211 OK
-	   gw.home.vix.com@ftp.vix.com,www.vix.com@AF_INET@4@192.5.5.1,192.5.5.1@
-	   .
-
-	C: GETHOSTBYNAME2 gw.home.vix.com AF_INET6
-	   gw.home.vix.com@@AF_INET6@ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255@
-	   .
-	   
-	C: GETHOSTBYADDR 192.5.5.1
-
-	S: 211 OK
-	   gw.home.vix.com@ftp.vix.com,www.vix.com@AF_INET@4@192.5.5.1,192.5.5.1@
-	   .
-
-	C: GETHOSTENT
-
-	S: 211 OK
-	   gw.home.vix.com@ftp.vix.com,www.vix.com@AF_INET@4@192.5.5.1,192.5.5.1@
-	   data.pa.vix.com@@AF_INET@4@204.152.184.37@
-	   .
-
-
-3.2 The USER commands.
-
-3.2.1 GETPWNAM username
-3.2.2 GETPWUID uid
-3.2.3 GETPWENT
-
-    Returns a textual response with the user information (a struct passwd)
-    enocoded in an ascii format. The optional GETPWENT command transmits the
-    entire /etc/password file
-
-{ XXX It's optional only cause it doesn't seem right to spit the password out
-to whoever wants it, even with encrypted passwords not being sent }
-
-3.2.4 Reponses
-
-    230 No such user
-    231 User found
-
-    If the username or uid given as the command argument doesn't exist, then
-    the 230 response will be returned. If the user is successfully looked up,
-    then the 231 response is sent and a textual message is sent after. The
-    textual message contains the user information encoded in an ascii form. The
-    fields of the user data are separated by colons. The format is very similar
-    to the /etc/password format (see passwd(5))
-
-        username:password:uid:gid:class:change:expire:gecos:home_dir:shell:
-
-    - username is the user's login name
-
-    - password  User's encrypted password (or the string "*" if the client is
-    		unprivileged) 
-
-    - uid       User's numeric id.
-
-    - gid       User's numeric login group id.
-
-    - class     User's general classification (a string)
-
-    - change    Password change time (integer seconds from epoch)
-
-    - expire    Account expiration time (integer seconds from epoch)
-
-    - gecos     General information about the user.
-
-    - home_dir  User's home directory.
-
-    - shell     User's login shell.
-
-    For example. Client being a non-privileged user:
-
-        C: GETPWNAM brister 
-
-	S: 231 User found
-	   brister:*:1364:100:James Brister:/udir/brister:/bin/csh:
-	   .
-
-	C: GETPWUID 6
-	   games:*:7:13:Games Pseudo-user:/usr/games:nologin
-	   .
-
-	S: GETPWENT
-	   root:*:0:0:System Administrator:/root:/bin/csh
-	   postmast:*:4:4:Postmaster:/:/nologin
-	   daemon:*:1:1:System Daemon:/:nologin
-	   sys:*:2:2:Operating System:/tmp:nologin
-	   bin:*:3:7:BSDI Software:/usr/bsdi:nologin
-	   operator:*:5:5:System Operator:/usr/opr:/bin/csh
-	   uucp:*:6:6:UNIX-to-UNIX Copy:/var/spool/uucppublic:/usr/libexec/uucico
-	   .
-
-    If a priviled user looks up a username:
-
-        C: GETPWNAM www
-
-	S: 231 User found
-	   www:WZajcgFCaAd8s:51:84::0:0:WWW-server:/var/www:/bin/sh
-	   .
-
-3.3 The NETWORK commands
-
-3.3.1 GETNETBYNAME network
-3.3.2 GETNETBYADDR dotted-ip-address address-family
-3.3.4 GETNETENT
-
-    Returns a textual response with the network information (an IRS struct
-    nwent, *not* a struct netent) enocoded in an ascii format. The optionally
-    supported GETNETENT command transmits the entire /etc/networks file
-
-{ XXX should it be optional? }
-
-3.2.4 Reponses
-
-    220 No such network
-    221 Netork found
-
-    If the network given as the command argument doesn't exist, then the 220
-    response will be returned.  If the network is successfully looked up, then
-    the 221 response is sent and a textual message is sent after. The textual
-    message contains the network information encoded in an ascii form. The fields
-    of the network data are separated by colons.
-
-    	network-name:aliases:address-type:address-length:network-address:
-
-    - network-name is the name of the network
-
-    - aliases is a comma separated list of aliases for the network
-
-    - address-type is ``AF_INET'' or ``AF_INET6''.
-
-    - address-length is the number of bits the following network address uses.
-
-    - address is the network address in a dotted ascii format. AF_INET address
-      are padded with 0 bits to the full 32 bits before conversion to ascii for
-      transmission. AF_INET6 addresses are padded to the full 128 bits with 0
-      bits before conversion.
-
-    For example:
-
-        C: GETNETBYNAME vixie-net
-
-	S: 221 Network found
-	   vixie-net::AF_INET:24:192.5.5.0:
-	   .
-
-	C: GETNETBYADDR 10.0.0.1
-
-	S: 221 Network found
-	   private-net:home-net,upstairs-net:AF_INET:8:10.0.0.0:
-	   .
-
-	C: GETNETENT
-
-	S: 221 OK
-	   vixie-net::AF_INET:24:192.5.5.0:
-	   private-net:home-net,upstairs-net:AF_INET:8:10.0.0.0:
-	   lookback-net::AF_INET:8:127.0.0.0
-	   .
-
-3.4 The GROUP commands
-
-3.4.1 GETGRNAM group
-3.4.2 GETGRGID gid
-3.4.3 GETGRENT
-
-    Returns a textual response with the group information (a struct group)
-    enocoded in an ascii format. The optionally supported GETGRENT command
-    transmits the entire /etc/group file.
-
-3.4.4 Reponses
-
-    240 No such group
-    241 Group found
-
-    If the group given as the command argument doesn't exist, then the 240
-    response will be returned.  If the group is successfully looked up, then
-    the 241 response is sent and a textual message is sent after. The textual
-    message contains the group information encoded in an ascii form. The fields
-    of the group data are separated by colons.
-
-        group-name:group-password:group-gid:group-members:
-
-    - group-name is the name of the group.
-
-    - group-password is the group's password. This will be correct if the
-      client has appropriate privileges (see discussion above on the USER
-      commands). Otherwise it will be the string ``*''
-
-    - group-gid is the numeric id for the group
-
-    - group-members is a comma separated list of usernames for all the members
-      of the group.
-
-    For example:
-
-        C: GETGRNAM wheel
-
-	S: 241 Group found
-	   wheel:*:0:root,brister,nathalie,tester:
-
-	C: GETGRGID 20
-
-	S: 241 Group found
-	   staff:*:20:root,brister:
-
-	C: GETGRENT
-
-	S: 241 OK
-	   wheel:*:0:root,brister,nathalie,tester:
-	   daemon:*:1:daemon:
-	   kmem:*:2:root:
-	   sys:*:3:root:
-	   tty:*:4:root:
-	   operator:*:5:root:
-	   uucp:*:6:brister:
-	   bin:*:7::
-	   news:*:8:brister:
-	   utmp:*:12::
-	   games:*:13::
-	   mail:*:14::
-	   staff:*:20:root,brister:
-	   .
-
-3.5 The SERVICE commands
-
-3.5.1 GETSERVBYNAME name protocol
-3.5.2 GETSERVBYPORT port protocol
-3.5.3 GETSERVENT
-
-    Returns a textual response with the service information (a struct servent)
-    enocoded in an ascii format. The optionally supported GETSERVENT command
-    transmits the entire /etc/services file.
-
-3.5.4 Reponses
-
-    250 No such service
-    251 Group found
-
-    If the group given as the command argument doesn't exist, then the 250
-    response will be returned.  If the service is successfully looked up, then
-    the 251 response is sent and a textual message is sent after. The textual
-    message contains the service information encoded in an ascii form. The fields
-    of the service data are separated by colons.
-
-        service-name:aliases:port-number:protocol:
-
-    - The service name is the offical name of the services.
-
-    - aliases is a comma separated list of aliases for the service.
-
-    - port-number is the decimal number of the port used for the service.
-
-    - protocol is the name of the protocol the service operates under. Usually
-      either ``TCP'' or ``UCP''
-
-    For example:
-
-        C: GETSERVBYNAME nntp tcp
-
-	S: 251 Service found
-	   nntp:readnews,untp:119:tcp:
-	   .
-
-	C: GETSERVBYPORT 514 udp
-	   syslog::514:ucp:
-	   .
-
-	C: GETSERVENT
-	   251 OK
-	   tcpmux::1:tcp:
-	   echo::7:tcp:
-	   echo::7:udp:
-	   discard:sink,null:9:tcp:
-	   discard:sink,null:9:udp:
-	   systat:users:11:tcp:
-	   systat:users:11:udp:
-	   daytime::13:tcp:
-	   daytime::13:udp:
-	   netstat::15:tcp:
-	   qotd:quote:17:tcp:
-	   qotd:quote:17:udp:
-	   .
-
-3.6 The PROTOCOL commands
-
-3.6.1 GETPROTOBYNAME protocol-name
-3.6.2 GETPROTOBYNUMBER protocol-number
-3.6.3 GETPROTOENT
-
-    Returns a textual response with the protocol information (a struct protoent)
-    enocoded in an ascii format. The optionally supported GETPROTOENT command
-    transmits the entire /etc/protocols file.
-
-3.6.4 Reponses
-
-    260 No such protocol
-    261 Protocol found
-
-    If the protocol given as the command argument doesn't exist, then the 260
-    response will be returned.  If the service is successfully looked up, then
-    the 261 response is sent and a textual message is sent after. The textual
-    message contains the protocol information encoded in an ascii form. The fields
-    of the protocol data are separated by colons.
-
-        protocol-name:aliases:protocol-number:
-
-    - protocol-name is the offical name of the protocol
-
-    - aliases is a comma separated list of aliases for the protocol
-
-    - protocol-nunber is the number of the protocol in decimal.
-
-
-    For example:
-
-        C: GETPROTOBYNAME ip
-
-	S: 261 Protocol found
-	   ip:IP:0:
-	   .
-
-	C: GETPROTOBYNUMBER 17
-	
-	S: 261 Protocol found
-	   udp:UDP:17:
-	   .
-
-	C: GETPROTOENT
-	
-	S: 261 OK
-	   ip:IP:0:
-	   icmp:ICMP:1:
-	   igmp:IGMP:2:
-	   ggp:GGP:3:
-	   tcp:TCP:6:
-	   egp:EGP:8:
-	   pup:PUP:12:
-	   udp:UDP:17:
-	   hmp:HMP:20:
-	   xns-idp:XNS-IDP:22:
-	   rdp:RDP:27:
-	   iso-tp4:ISO-TP4:29:
-	   iso-ip:ISO-IP:80:
-	   encap:ENCAP:98:
-	   .
-
-3.7 The NETGROUP commands
-
-3.7.1 GETNETGRENT netgrouup
-
-    Returns a textual response with the netgroup information enocoded in an
-    ascii format.
-
-3.6.4 Reponses
-
-    270 No such netgroup
-    271 Netgroups found
-
-    For the given netgroup a list of the netgroup entries will be
-    returned. Each netgroup entry is three fields separated by colons. A field
-    may be empty to indicate wildcarding.
-
-        :hostname:username:domainname:
-
-   For example:
-
-       C: GETNETGRENT devlopers
-
-       S: 271 OK
-          :gw.home.vix.com:brister:vix.com:
-	  :bb.rc.vix.com:vixie::
-	  .
-
-
-          
-
diff --git a/contrib/bind/doc/secure/copyright.txt b/contrib/bind/doc/secure/copyright.txt
deleted file mode 100644
index cc38356089062..0000000000000
--- a/contrib/bind/doc/secure/copyright.txt
+++ /dev/null
@@ -1,28 +0,0 @@
-/*
- * Portions Copyright (c) 1995,1996 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL TRUSTED INFORMATION 
- * SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- *
- * Trusted Information Systems, Inc. has received approval from the
- * United States Government for export and reexport of TIS/DNSSEC
- * software from the United States of America under the provisions of
- * the Export Administration Regulations (EAR) General Software Note
- * (GSN) license exception for mass market software.  Under the
- * provisions of this license, this software may be exported or
- * reexported to all destinations except for the embargoed countries of
- * Cuba, Iran, Iraq, Libya, North Korea, Sudan and Syria.  Any export
- * or reexport of TIS/DNSSEC software to the embargoed countries
- * requires additional, specific licensing approval from the United
- * States Government. 
- */
diff --git a/contrib/bind/doc/secure/install.txt b/contrib/bind/doc/secure/install.txt
deleted file mode 100644
index bb5bc94c211d9..0000000000000
--- a/contrib/bind/doc/secure/install.txt
+++ /dev/null
@@ -1,155 +0,0 @@
-
-INSTALL_SEC
-
-		 Bind with Secure DNS (TIS/DNSSEC)
-			Version 1.3.0 Beta
-			  September 1996
-
-This version has been compiled and tested on SUNOS 4.1.3,
-FreeBSD-2.1.5-REL and Linux 2.0.11.
-There may be still be portability problems. 
-If you have access to other hardware platforms please let us know if
-there are any problems porting and send us patches, to include in
-future releases. 
-
-This version of secure Bind uses RSAREF-2.0 library from RSA,
-First you should get/read the RSAREF FAQ 
-		http://www.consensus.com/rsaref-faq.html
-Then you can copy RSAREF from 
-		ftp://ftp.rsa.com/rsaref/README
-
-You need to read this README file carefully for further instructions.
-
-Installation: (this version is based on 4.9.4-REL-P1). 
-
-1. The tar ball will create a directory sec_bind in the current	directory 
-	untar the archive
-	The content of the sec_bind directory has the same directory 
-	structure as bind distribution with the addition of the directories 
-	dnssec_lib/ and signer/, some named directories have been 
-	deleted from the distribution. 
-
-	dnssec_lib/ contains the library files for signature generation 
-	signer/     contains tools for signing bind boot files and 
-	            generating keys.  
-
-	In addition, there is a new file, "res/res_sign.c", which 
-	contains library routines that are required in the resolver
-	for displaying new RR types. 
-
-	You need to tailor sec_bind/Makefile to your system as you do
-	with bind distributions.  
-
-	The sec_bind distribution expects to find RSAREF in the
-	rsaref/ subdirectory. If you install RSAREF in a different
-	place you can place a pointer to the RSAREF installation
-	directory in place of sec_bind/rsaref. 
-
-	sec_bind/Makefile expects to find the RSAREF library file
-	at  sec_bind/rsaref/lib/rsaref.a. The RSAREF distribution 
-	does not contain that directory. If you are installing RSAREF
-	for the first time create that directory copy the correct
-	Makefile from the appropriate rsaref/install/ subdirectory.  
-	Sec_bind will compile RSAREF for you. 	
-
-	We recommend that you use an ANSI C compliant compiler to
-	compile this distribution. 
-
-2. Follow Bind installation guidelines on your system 
-
-	Set your normal configuration in conf/options.h with the
-	following exceptions/additions:
-		ROUND_ROBIN  must be OFF  (for right now)
-		DNS_SECURITY must be ON 
-		RSAREF       must be ON if you have a copy of RSAREF.
-	This version of sec_bind does not work well without RSAREF. 
-
-3. make
-	If you are going to use make install everything will work right 
-	out of the box. If you are going to run programs out of the
-	sec_bind directory you need to set the DESTEXEC variables
-	accordingly. 
-
-4. Once everything compiles you can run the simple test that is include in
-	the distribution. 
-	
-	First you need to edit the file signer/simple_test/test.boot to
-	set directory directive to the full path of the directory this
-	file is in.
-
-	Now the signer program can be run to sign the simple_test data.
-	The signed zone will be	written to /tmp
-		% cd sec_bind/signer
-		% make test
-	The passwords for the keys in the distribution are:
-		Key:			Password:
-		foo.bar			foo.bar
-		mobile.foo.bar		mobile
-		fix.foo.bar		fix.foo.bar
-		sub.foo.bar		sub.foo.bar
-		some.bar		some.bar
-
-	Notice the differences between simple_test/test.boot and
-	/tmp/test.boot. The pubkey directive are required for correct
-	behavior of new named.  	
-
-	To check the if named can read the new zone files and verify
-	the signatures run following commands 
-		% cd ../named
-		% make test
-
-	Exit/error code 66 indicates that program completed normally
-	in "load-only" mode (new -l flag).  
-
-	If you want to load up named run same command as make test does 
-	without -l flag. (the -d 3 flag is to make sure the process
-	does not do a fork). 
-		% ./named -p 12345 -b /tmp/test.boot  -d 3
-	
-		% cd ../tools
-		% ./dig @localhost snore.foo.bar. -p 12345
-	This should return an A record + SIG(A) record 
-		% ./dig @localhost no_such_name.foo.bar. -p 12345
-	This should return a NXT record +SIG(NXT) for *.foo.bar.
-
-	You can also test against our nameserver for zone sd-bogus.tis.com
-		the host is uranus.hq.tis.com(192.94.214.95)
-		% ./dig @uranus.hq.tis.com sd-bogus.tis.com. soa 
-	will return the SOA and SIG(SOA) + KEY
-		% ./dig @uranus.hq.tis.com sd-bogus.tis.com. mb    
-	will return NXT   for sd-bogus.tis.com
-		% ./dig @uranus.hq.tis.com foo.sd-bogus.tis.com. ns 
-	will NS +KEY for foo.sd-bog.tis.com. 
-
-5. Converting your setup to secure DNS zones. 
-	need to create a key for your zone.
-	If you have a copy of the last release of sec_bind the key file 
-	format has changed and you need to regenerate all your keys, Sorry.
-	The new format for private key files is portable between
-	different architectures and operating systems, the encryption
-	of the key file is compatible with the des program.
-	
-	To generate key use sec_bind/signer/key_gen.  To generate zone key
-	for name you.bar, with 512 bit modulus and exponent of 3, 
-	execute following command
-
-		% cd signer
-		% ./key_gen -z -g 512 you.bar
-
-	key_gen will ask for an encryption password for the private
-	key file, if you do not want to encrypt the key hit <Return>.
-	The program will output resource record suitable for zone file.
-	key_gen creates two files you.bar.priv and foo.bar.public. 
-
-	If you want, at any time, to display the public key for foo.bar
-	run key_gen without the -g flag or cat file foo.bar.public. 
-	key_gen without any flags will print out the usage information.  
-	key_gen has extensive error checking on flags.
-
-	To modify the flags field for an existing key run key_gen with
-	the new flags but without the -g flag. 
-	
-	Note: The key above is suitable for signing records but not for
-	encrypting data.
-
-6. Send problems, fixes and suggestions to dns-security@tis.com. 
diff --git a/contrib/bind/doc/secure/readme.txt b/contrib/bind/doc/secure/readme.txt
deleted file mode 100644
index d7b422ab1caab..0000000000000
--- a/contrib/bind/doc/secure/readme.txt
+++ /dev/null
@@ -1,93 +0,0 @@
-
-			Secure DNS (TIS/DNSSEC)
-			    September 1996
-
-Copyright (C) 1995,1996 Trusted Information Systems, Incorporated
-
-Trusted Information Systems, Inc. has received approval from the
-United States Government for export and reexport of TIS/DNSSEC
-software from the United States of America under the provisions of
-the Export Administration Regulations (EAR) General Software Note
-(GSN) license exception for mass market software.  Under the
-provisions of this license, this software may be exported or
-reexported to all destinations except for the embargoed countries of
-Cuba, Iran, Iraq, Libya, North Korea, Sudan and Syria.  Any export
-or reexport of TIS/DNSSEC software to the embargoed countries
-requires additional, specific licensing approval from the United
-States Government.
-
-Trusted Information Systems, Inc., is pleased to
-provide a reference implementation of the secure Domain Name System
-(TIS/DNSSEC).  In order to foster acceptance of secure DNS and provide
-the community with a usable, working version of this technology,
-TIS/DNSSEC is being made available for broad use on the following basis.
-
-- Trusted Information Systems makes no representation about the
-  suitability of this software for any purpose.  It is provided "as is"
-  without express or implied warranty.
-
-- TIS/DNSSEC is distributed in source code form, with all modules written
-  in the C programming language.  It runs on many UNIX derived platforms
-  and is integrated with the Bind implementation of the DNS protocol.
-
-- This beta version of TIS/DNSSEC may be used, copied, and modified for
-  testing and evaluation purposes without fee during the beta test
-  period, provided that this notice appears in supporting documentation
-  and is retained in all software modules in which it appears.  Any other
-  use requires specific, written prior permission from Trusted Information
-  Systems.
-
-TIS maintains the email distribution list dns-security@tis.com for
-discussion of secure DNS.  To join, send email to
-	dns-security-request@tis.com.
-
-TIS/DNSSEC technical questions and bug reports should be addressed to
-	dns-security@tis.com. 
-
-To reach the maintainers of TIS/DNSSEC send mail to
-	tisdnssec-support@tis.com
-
-TIS/DNSSEC is a product of Trusted Information Systems, Inc.
-
-This is an beta version of Bind with secure DNS extensions it uses 
-RSAREF which you must obtain separately.
-
-Implemented and tested in this version:
-	Portable key storage format. 
-	Improved authentication API 
-	Support for using different authentication packages.
-	All Security RRs including KEY SIG, NXT, and support for wild cards
-	tool for generating KEYs 
-	tool for signing RRs in boot files
-	verification of RRs on load 
-	verification of RRs over the wire
-	transmission of SIG RRs
-	returns NXT when name and/or type does not exist
-	storage of NXT, KEY, and SIG RRs with CNAME RR
-	AD/ID bits added to header and setting of these bits
-	key storage and retrieval
-	dig and nslookup can display new header bits and RRs
-	AXFR signature RR
-	keyfile directive 
-	$SIGNER directive (to turn on and off signing)
-	adding KEY to answers with NS or SOA
-	SOA sequence numbers are now set each time zone is signed
-	SIG AXFR ignores label count of names
-	generation and inclusion of .PARENT files
-	Returns only one NXT at delegation points unless two are required
-	Expired SIG records are now returned in response to query
-	
-Implemented but not fully tested:
-
-Known bugs:
-	
-Not implemented:
-	ROUND_ROBIN behaviour 
-	zone transfer in SIG(AXFR) sort order. 
-	transaction SIGs
-	verification in resolver. (stub resolvers must trust local servers
-		resolver library is to low level to implement security)
-	knowing when to trust the AD bit in responses
-
-Read files INSTALL_SEC and USAGE_SEC for installation and user
-instructions, respectively.
diff --git a/contrib/bind/doc/secure/usage.txt b/contrib/bind/doc/secure/usage.txt
deleted file mode 100644
index aa8eebc670aa9..0000000000000
--- a/contrib/bind/doc/secure/usage.txt
+++ /dev/null
@@ -1,215 +0,0 @@
-
-			   USAGE_SEC
-			Secure DNS (TIS/DNSSEC)
-			   September 1996
-
-This is the usage documentation for TIS' Secure DNS (TIS/DNSSEC) version
-BETA-1.3.  This looks like a standard named distribution, with
-the following exceptions
-
-	this version is coded against BIND-4.9.4-P1
-
-	there are three new directories in this distribution
-		dnssec_lib
-		signer
-		rsaref
-		
-
-	rsaref/ is place holder directory for RSAREF distribution.
-	You must get RSAREF on your own. 
-
-	signer/  contains two applications needed by DNSSEC: 
-		signer:  tool to sign zones
-		key_gen: tool to generate keys
-	dnssec_lib/ contains common library routines that are used by
-		named, key_gen and signer. 
-		This is where most of the DNSSEC work is done. 
-
-Before compiling you need to do your standard configurations for named
-and the edits explained in INSTALL_SEC.  This version has been tested
-on SUNOS4.1.3. This version includes portability fixes from previous
-beta releases for Linux, Solaris-2.4, HPUX-9 and FreeBSD.
-
-CHANGES TO BIND
-
-res/
-
-	There are minor changes to the files in the res directory.  Most of
-	the changes have to do with displaying NXT
-	records. There are also some changes related to translating
-	domain names into uncompressed lower case names upon request.
-
-tools/
-	Minor changes to recognize NXT records and display them.
-
-named/
-	Added code to read and write new record types. 
-	Added code to do signature validation on read. 
-	Added code to return appropriate SIG records.
-	Added security flags to databuf and zoneinfo structures. 
-	Names can now have CNAME record and security RR's. 
-	Records are stored and transmitted in DNS SEC sort order.
-
-conf/
-
-	Turned off ROUND_ROBIN option and installed new sorting required
-	for signature verification. 
-
-signer/
-	NXT record generation.
-	Key generation
-	Signing of zones
-	Converting data records to format required for signatures.
-
-dnssec_lib/
-	Interfacing with Crypto library.
-	Verifying signatures, 
-	preparing data for signing and verification
-
-The role of <zone>.PARENT files:
-
-DNSSEC specification requires change who is authorative for certain
-resource records. In order to support certification hierarchy each
-zone KEY RR must be signed by parent zone. The parent signed KEY RR
-must be distributed by the zone itself as it is the most authorative
-for its own records. 
-
-To facilitate this TIS/DNSSEC signer program creates a <name>.PARENT
-file for every name in a zone that has a NS record. This file contains
-the KEY records stored under this name and 
-NXT record and corresponding SIG records. If no KEY record is found
-for a name with a NS record a NULL-KEY record is generated to indicate
-that the child is INSECURE. 
-
-Each <zone>.PARENT file must be sent via an out of band mechanism to
-the appropriate primary for the zone, for inclusion.  signer program
-adds an $INCLUDE <zone>.PARENT command at the end of each zone file,
-if no file exists an warning message is printed.
-
-Potential PROBLEM: It is likely that the parent and child are on a
-different signing schedule. If new <zone>.PARENT file is put on the
-primary, due to the fact that the zone data changed but the SOA did
-not, it may take a long time for new records to propagate to the
-secondaries.  This is only a problem if zone has added/deleted a KEY
-or if the the signatures will expire in the near future. To overcome
-this problem, resign your zone when any of above conditions is true.
-DNS NOTIFY and/or DNS DYNUPDATE may fix this problem in the future.
-
-TIS/DNSSEC SOA serial numbers. To facilitate prompt distribution of
-zone data to secondaries, signer takes over the management of SOA
-serial numbers. Each time signer signs a zone it sets the serial
-number to a value reflecting the time the zone was signed, in standard
-Unix time seconds since 1970/1/1 0:0:0 GMT.
-
-How to configure a secure zone. 
-	Create a directory <zone> to contain your zone files.
-	Create a output directory <outdir> for the signer output.
-	Put in <zone> a boot file that includes the files from that zone.
-	Create a KEY for the zone by running key_gen, Name the key <domain>.
-
-	Run signer on your zone writing to the output directory <outdir>. 
-	Signer will rewrite the boot file to include new directive 
-		"pubkey" of the key used to sign the file. If there where
-		any pubkey declarations in the input boot file they will be
-		deleted. 
-	Signer generates files that correspond to the load files specified.
-
-	In case of load file that $INCLUDEs another load file, signer will 
-		merge them to the output file. 
-	You will notice that the output files are significantly larger. 
-	The output files will be in a different order than the input files,
-		all records are sorted into DNSSEC sort order. 
-	NXT and SIG records have been added. 
-
-	If there are any NS records for a name other than the zone name of
-		each input file you will see messages that NULL KEY records 
-		have been created, if this is not correct behavior, add 
-		the correct KEY RRs.
-	For each domain name that has a NS record but is not a zone name 
-		of load file you will see a file named  <name>.PARENT, 
-		this file contains the KEY record for that name and an 
-		NXT record + 2 SIG records. 
-	This file needs to be sent to the nameserver that is primary for that
-		zone. There are two reasons for this: 
-		1. To support Certification Hierarchy, each zone key is 
-	        signed by the parent zone key. 
-		2. Zone is the most trustworthy source for itself unless 
-		these records are loaded into the primary server for
-		the zone, the records may not get propagated.
-
-how to run SEC_NAMED:
-
-Included in the distribution there is a small test setup:
-
-# run signer 
-./signer boot-f simple_test/test.boot [out-dir /tmp] 
-# or 
-make test
-# This takes few minutes to run depending on your machine and the size
-# of the key selected 
-# all output files will be stored in /tmp unless out-dir is specified
-
-# 
-# Now we are ready to run named 
-cd ../named
-./named -p 12345 -b /tmp/test.boot.save [-d x] 
-
-# 
-# you can now check for data in the data base
-# using the new dig. 
-#
-cd ../tools
-./dig @yourhost snore.foo.bar. any in -p 12345 
-
-#
-# Output from new dig will be something like this
-#
-; <<>> DiG 2.1 <<>> @dnssrv snore.foo.bar. any in -p 
-; (1 server found)
-;; res options: init recurs defnam dnsrch
-;; got answer:
-;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
-;; flags: qr rd ra; Ques: 1, Ans: 11, Auth: 0, Addit: 1
-;; QUESTIONS:
-;;      snore.foo.bar, type = ANY, class = IN
-
-;; ANSWERS:
-snore.foo.bar.  259200  A       10.17.3.20
-snore.foo.bar.  259200  SIG     A (
-                 1 3; alg labels
-        259200  ; TTL
-        19950506200636  ; Signature expiration
-        19950406200659  ; time signed 
-        47437   ; Key foot print
-        foo.bar.        ; Signers name  
-                FsqeW3hstM8Q6v8PMCGPsVMfO6dEpHjFgKm2dJRaofFtCQ/CT9O6Vo7J5zgkV+5ciWQwuZwvzW071jnZ1i27Ip/8vqdKGHC63tjWkCHSZV0=
-        ) ; END Signature
-snore.foo.bar.  259200  MX      96 who.foo.bar.
-snore.foo.bar.  259200  MX      100 foo.bar.
-snore.foo.bar.  259200  MX      120 xxx.foo.bar.
-snore.foo.bar.  259200  MX      130 maGellan.foo.bar.
-snore.foo.bar.  259200  MX      140 bozo.foo.bar.
-snore.foo.bar.  259200  SIG     MX (
-                 1 3; alg labels
-        259200  ; TTL
-        19950506200636  ; Signature expiration
-        19950406200659  ; time signed 
-        47437   ; Key foot print
-        foo.bar.        ; Signers name
-                EV0cJqF3pUOgktggTrFf55YGwQFbUqPJAMTnAkHK3+Z/Ya6GgwwNOGRzq/FYm5P4E+yIj6WUYFh9Ex5eX5TwiIsjM/hy173lSa3qm/ljDk8=
-        ) ; END Signature
-snore.foo.bar.  259200  NXT     xxx.foo.bar.
-snore.foo.bar.  259200  SIG     NXT (
-                 1 3; alg labels
-        259200  ; TTL
-        19950506200636  ; Signature expiration
-        19950406200659  ; time signed 
-        47437   ; Key foot print
-        foo.bar.        ; Signers name
-                eJUHVm5Q5qYQYFVOW0L5Of67HQvQ9+7T7sQqHv7ayTT2sMnXudxviYv43vALMMwBcJFXFEhLhwYwN7pUDssD/w5si/6JJQTi1o30S8si3zE=
-        ) ; END Signature
-
-;; Total query time: 195 msec
-;; FROM: dnssrv to SERVER: dnssrv  10.17.3.1
-;; WHEN: Thu Apr  6 16:20:32 1995
-;; MSG SIZE  sent: 31  rcvd: 662
diff --git a/contrib/bind/include/Makefile b/contrib/bind/include/Makefile
deleted file mode 100644
index 168c0d23791a8..0000000000000
--- a/contrib/bind/include/Makefile
+++ /dev/null
@@ -1,54 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-SUBDIRS = arpa isc
-HFILES = netdb.h resolv.h res_update.h irs.h irp.h hesiod.h
-
-DESTDIR=
-DESTINC= /usr/local/bind/include
-INSTALL= install
-INSTALL_INC=
-
-MARGS= DESTDIR="${DESTDIR}" DESTINC="${DESTINC}" INSTALL="${INSTALL}" \
-	MAKE="${MAKE}" INSTALL_INC=${INSTALL_INC}
-
-all depend clean distclean install::
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-distclean:: clean
-
-clean:: FRC
-	rm -f *~ *.BAK *.CKP *.orig
-
-install:: ${DESTDIR}${DESTINC}
-	@set -x; for x in ${HFILES}; do \
-		${INSTALL} -c ${INSTALL_INC} -m 444 $$x ${DESTDIR}${DESTINC}/$$x; \
-	done
-
-${DESTDIR}${DESTINC}:
-	mkdir -p ${DESTDIR}${DESTINC}; 
-
-links:: FRC
-	@set -e; ln -s SRC/*.h .; \
-	for x in $(SUBDIRS); do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		  cp SRC/Makefile Makefile; chmod +w Makefile; \
-		  $(MAKE) $(MARGS) links; \
-		); \
-	done
-
-FRC:
diff --git a/contrib/bind/include/arpa/Makefile b/contrib/bind/include/arpa/Makefile
deleted file mode 100644
index 1aa6bd6f6efa9..0000000000000
--- a/contrib/bind/include/arpa/Makefile
+++ /dev/null
@@ -1,39 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-HFILES = inet.h nameser.h nameser_compat.h
-
-DESTDIR =
-DESTINC = /usr/local/bind/include
-
-all depend:
-
-distclean: clean
-
-clean: FRC
-	rm -f *~ *.BAK *.CKP *.orig
-
-install: ${DESTDIR}${DESTINC}/arpa
-	set -x; for x in ${HFILES}; do \
-		${INSTALL} -c ${INSTALL_INC} -m 444 $$x ${DESTDIR}${DESTINC}/arpa/$$x; \
-	done
-
-${DESTDIR}${DESTINC}/arpa:
-	mkdir -p ${DESTDIR}${DESTINC}/arpa
-
-links: FRC
-	@set -e; ln -s SRC/*.h .
-
-FRC:
diff --git a/contrib/bind/include/arpa/inet.h b/contrib/bind/include/arpa/inet.h
deleted file mode 100644
index 58a6f9a82ef8c..0000000000000
--- a/contrib/bind/include/arpa/inet.h
+++ /dev/null
@@ -1,110 +0,0 @@
-/*
- * ++Copyright++ 1983, 1993
- * -
- * Copyright (c) 1983, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- *	@(#)inet.h	8.1 (Berkeley) 6/2/93
- *	$Id: inet.h,v 8.8 1999/05/14 18:16:54 vixie Exp $
- */
-
-#ifndef _INET_H_
-#define	_INET_H_
-
-/* External definitions for functions in inet(3) */
-
-#include <sys/param.h>
-#if (!defined(BSD)) || (BSD < 199306)
-# include <sys/bitypes.h>
-#else
-# include <sys/types.h>
-#endif
-#include <sys/cdefs.h>
-
-#define	inet_addr		__inet_addr
-#define	inet_aton		__inet_aton
-#define	inet_lnaof		__inet_lnaof
-#define	inet_makeaddr		__inet_makeaddr
-#define	inet_neta		__inet_neta
-#define	inet_netof		__inet_netof
-#define	inet_network		__inet_network
-#define	inet_net_ntop		__inet_net_ntop
-#define	inet_net_pton		__inet_net_pton
-#define	inet_cidr_ntop		__inet_cidr_ntop
-#define	inet_cidr_pton		__inet_cidr_pton
-#define	inet_ntoa		__inet_ntoa
-#define	inet_pton		__inet_pton
-#define	inet_ntop		__inet_ntop
-#define	inet_nsap_addr		__inet_nsap_addr
-#define	inet_nsap_ntoa		__inet_nsap_ntoa
-
-__BEGIN_DECLS
-unsigned long	 inet_addr __P((const char *));
-int		 inet_aton __P((const char *, struct in_addr *));
-unsigned long	 inet_lnaof __P((struct in_addr));
-struct in_addr	 inet_makeaddr __P((u_long , u_long));
-char *		 inet_neta __P((u_long, char *, size_t));
-unsigned long	 inet_netof __P((struct in_addr));
-unsigned long	 inet_network __P((const char *));
-char		*inet_net_ntop __P((int, const void *, int, char *, size_t));
-int		 inet_net_pton __P((int, const char *, void *, size_t));
-char		*inet_cidr_ntop __P((int, const void *, int, char *, size_t));
-int		 inet_cidr_pton __P((int, const char *, void *, int *));
-/*const*/ char	*inet_ntoa __P((struct in_addr));
-int		 inet_pton __P((int, const char *, void *));
-const char	*inet_ntop __P((int, const void *, char *, size_t));
-u_int		 inet_nsap_addr __P((const char *, u_char *, int));
-char		*inet_nsap_ntoa __P((int, const u_char *, char *));
-__END_DECLS
-
-#endif /* !_INET_H_ */
diff --git a/contrib/bind/include/arpa/nameser.h b/contrib/bind/include/arpa/nameser.h
deleted file mode 100644
index 3de42fd68d174..0000000000000
--- a/contrib/bind/include/arpa/nameser.h
+++ /dev/null
@@ -1,559 +0,0 @@
-/*
- * Copyright (c) 1983, 1989, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- *	$Id: nameser.h,v 8.37 2000/03/30 21:16:49 vixie Exp $
- */
-
-#ifndef _ARPA_NAMESER_H_
-#define _ARPA_NAMESER_H_
-
-#define BIND_4_COMPAT
-
-#include <sys/param.h>
-#if (!defined(BSD)) || (BSD < 199306)
-# include <sys/bitypes.h>
-#else
-# include <sys/types.h>
-#endif
-#include <sys/cdefs.h>
-
-/*
- * Revision information.  This is the release date in YYYYMMDD format.
- * It can change every day so the right thing to do with it is use it
- * in preprocessor commands such as "#if (__NAMESER > 19931104)".  Do not
- * compare for equality; rather, use it to determine whether your libbind.a
- * contains a new enough lib/nameser/ to support the feature you need.
- */
-
-#define __NAMESER	19991006	/* New interface version stamp. */
-
-/*
- * Define constants based on RFC 883, RFC 1034, RFC 1035
- */
-#define NS_PACKETSZ	512	/* maximum packet size */
-#define NS_MAXDNAME	1025	/* maximum domain name */
-#define NS_MAXCDNAME	255	/* maximum compressed domain name */
-#define NS_MAXLABEL	63	/* maximum length of domain label */
-#define NS_HFIXEDSZ	12	/* #/bytes of fixed data in header */
-#define NS_QFIXEDSZ	4	/* #/bytes of fixed data in query */
-#define NS_RRFIXEDSZ	10	/* #/bytes of fixed data in r record */
-#define NS_INT32SZ	4	/* #/bytes of data in a u_int32_t */
-#define NS_INT16SZ	2	/* #/bytes of data in a u_int16_t */
-#define NS_INT8SZ	1	/* #/bytes of data in a u_int8_t */
-#define NS_INADDRSZ	4	/* IPv4 T_A */
-#define NS_IN6ADDRSZ	16	/* IPv6 T_AAAA */
-#define NS_CMPRSFLGS	0xc0	/* Flag bits indicating name compression. */
-#define NS_DEFAULTPORT	53	/* For both TCP and UDP. */
-
-/*
- * These can be expanded with synonyms, just keep ns_parse.c:ns_parserecord()
- * in synch with it.
- */
-typedef enum __ns_sect {
-	ns_s_qd = 0,		/* Query: Question. */
-	ns_s_zn = 0,		/* Update: Zone. */
-	ns_s_an = 1,		/* Query: Answer. */
-	ns_s_pr = 1,		/* Update: Prerequisites. */
-	ns_s_ns = 2,		/* Query: Name servers. */
-	ns_s_ud = 2,		/* Update: Update. */
-	ns_s_ar = 3,		/* Query|Update: Additional records. */
-	ns_s_max = 4
-} ns_sect;
-
-/*
- * This is a message handle.  It is caller allocated and has no dynamic data.
- * This structure is intended to be opaque to all but ns_parse.c, thus the
- * leading _'s on the member names.  Use the accessor functions, not the _'s.
- */
-typedef struct __ns_msg {
-	const u_char	*_msg, *_eom;
-	u_int16_t	_id, _flags, _counts[ns_s_max];
-	const u_char	*_sections[ns_s_max];
-	ns_sect		_sect;
-	int		_rrnum;
-	const u_char	*_ptr;
-} ns_msg;
-
-/* Private data structure - do not use from outside library. */
-struct _ns_flagdata {  int mask, shift;  };
-extern struct _ns_flagdata _ns_flagdata[];
-
-/* Accessor macros - this is part of the public interface. */
-#define ns_msg_getflag(handle, flag) ( \
-			((handle)._flags & _ns_flagdata[flag].mask) \
-			 >> _ns_flagdata[flag].shift \
-			)
-#define ns_msg_id(handle) ((handle)._id + 0)
-#define ns_msg_base(handle) ((handle)._msg + 0)
-#define ns_msg_end(handle) ((handle)._eom + 0)
-#define ns_msg_size(handle) ((handle)._eom - (handle)._msg)
-#define ns_msg_count(handle, section) ((handle)._counts[section] + 0)
-
-/*
- * This is a parsed record.  It is caller allocated and has no dynamic data.
- */
-typedef	struct __ns_rr {
-	char		name[NS_MAXDNAME];
-	u_int16_t	type;
-	u_int16_t	rr_class;
-	u_int32_t	ttl;
-	u_int16_t	rdlength;
-	const u_char *	rdata;
-} ns_rr;
-
-/* Accessor macros - this is part of the public interface. */
-#define ns_rr_name(rr)	(((rr).name[0] != '\0') ? (rr).name : ".")
-#define ns_rr_type(rr)	((ns_type)((rr).type + 0))
-#define ns_rr_class(rr)	((ns_class)((rr).rr_class + 0))
-#define ns_rr_ttl(rr)	((rr).ttl + 0)
-#define ns_rr_rdlen(rr)	((rr).rdlength + 0)
-#define ns_rr_rdata(rr)	((rr).rdata + 0)
-
-/*
- * These don't have to be in the same order as in the packet flags word,
- * and they can even overlap in some cases, but they will need to be kept
- * in synch with ns_parse.c:ns_flagdata[].
- */
-typedef enum __ns_flag {
-	ns_f_qr,		/* Question/Response. */
-	ns_f_opcode,		/* Operation code. */
-	ns_f_aa,		/* Authoritative Answer. */
-	ns_f_tc,		/* Truncation occurred. */
-	ns_f_rd,		/* Recursion Desired. */
-	ns_f_ra,		/* Recursion Available. */
-	ns_f_z,			/* MBZ. */
-	ns_f_ad,		/* Authentic Data (DNSSEC). */
-	ns_f_cd,		/* Checking Disabled (DNSSEC). */
-	ns_f_rcode,		/* Response code. */
-	ns_f_max
-} ns_flag;
-
-/*
- * Currently defined opcodes.
- */
-typedef enum __ns_opcode {
-	ns_o_query = 0,		/* Standard query. */
-	ns_o_iquery = 1,	/* Inverse query (deprecated/unsupported). */
-	ns_o_status = 2,	/* Name server status query (unsupported). */
-				/* Opcode 3 is undefined/reserved. */
-	ns_o_notify = 4,	/* Zone change notification. */
-	ns_o_update = 5,	/* Zone update message. */
-	ns_o_max = 6
-} ns_opcode;
-
-/*
- * Currently defined response codes.
- */
-typedef	enum __ns_rcode {
-	ns_r_noerror = 0,	/* No error occurred. */
-	ns_r_formerr = 1,	/* Format error. */
-	ns_r_servfail = 2,	/* Server failure. */
-	ns_r_nxdomain = 3,	/* Name error. */
-	ns_r_notimpl = 4,	/* Unimplemented. */
-	ns_r_refused = 5,	/* Operation refused. */
-	/* these are for BIND_UPDATE */
-	ns_r_yxdomain = 6,	/* Name exists */
-	ns_r_yxrrset = 7,	/* RRset exists */
-	ns_r_nxrrset = 8,	/* RRset does not exist */
-	ns_r_notauth = 9,	/* Not authoritative for zone */
-	ns_r_notzone = 10,	/* Zone of record different from zone section */
-	ns_r_max = 11,
-	/* The following are TSIG extended errors */
-	ns_r_badsig = 16,
-	ns_r_badkey = 17,
-	ns_r_badtime = 18
-} ns_rcode;
-
-/* BIND_UPDATE */
-typedef enum __ns_update_operation {
-	ns_uop_delete = 0,
-	ns_uop_add = 1,
-	ns_uop_max = 2
-} ns_update_operation;
-
-/*
- * This structure is used for TSIG authenticated messages
- */
-struct ns_tsig_key {
-        char name[NS_MAXDNAME], alg[NS_MAXDNAME];
-        unsigned char *data;
-        int len;
-};
-typedef struct ns_tsig_key ns_tsig_key;
-
-/*
- * This structure is used for TSIG authenticated TCP messages
- */
-struct ns_tcp_tsig_state {
-	int counter;
-	struct dst_key *key;
-	void *ctx;
-	unsigned char sig[NS_PACKETSZ];
-	int siglen;
-};
-typedef struct ns_tcp_tsig_state ns_tcp_tsig_state;
-
-#define NS_TSIG_FUDGE 300
-#define NS_TSIG_TCP_COUNT 100
-#define NS_TSIG_ALG_HMAC_MD5 "HMAC-MD5.SIG-ALG.REG.INT"
-
-#define NS_TSIG_ERROR_NO_TSIG -10
-#define NS_TSIG_ERROR_NO_SPACE -11
-#define NS_TSIG_ERROR_FORMERR -12
-
-/*
- * Currently defined type values for resources and queries.
- */
-typedef enum __ns_type {
-	ns_t_invalid = 0,	/* Cookie. */
-	ns_t_a = 1,		/* Host address. */
-	ns_t_ns = 2,		/* Authoritative server. */
-	ns_t_md = 3,		/* Mail destination. */
-	ns_t_mf = 4,		/* Mail forwarder. */
-	ns_t_cname = 5,		/* Canonical name. */
-	ns_t_soa = 6,		/* Start of authority zone. */
-	ns_t_mb = 7,		/* Mailbox domain name. */
-	ns_t_mg = 8,		/* Mail group member. */
-	ns_t_mr = 9,		/* Mail rename name. */
-	ns_t_null = 10,		/* Null resource record. */
-	ns_t_wks = 11,		/* Well known service. */
-	ns_t_ptr = 12,		/* Domain name pointer. */
-	ns_t_hinfo = 13,	/* Host information. */
-	ns_t_minfo = 14,	/* Mailbox information. */
-	ns_t_mx = 15,		/* Mail routing information. */
-	ns_t_txt = 16,		/* Text strings. */
-	ns_t_rp = 17,		/* Responsible person. */
-	ns_t_afsdb = 18,	/* AFS cell database. */
-	ns_t_x25 = 19,		/* X_25 calling address. */
-	ns_t_isdn = 20,		/* ISDN calling address. */
-	ns_t_rt = 21,		/* Router. */
-	ns_t_nsap = 22,		/* NSAP address. */
-	ns_t_nsap_ptr = 23,	/* Reverse NSAP lookup (deprecated). */
-	ns_t_sig = 24,		/* Security signature. */
-	ns_t_key = 25,		/* Security key. */
-	ns_t_px = 26,		/* X.400 mail mapping. */
-	ns_t_gpos = 27,		/* Geographical position (withdrawn). */
-	ns_t_aaaa = 28,		/* Ip6 Address. */
-	ns_t_loc = 29,		/* Location Information. */
-	ns_t_nxt = 30,		/* Next domain (security). */
-	ns_t_eid = 31,		/* Endpoint identifier. */
-	ns_t_nimloc = 32,	/* Nimrod Locator. */
-	ns_t_srv = 33,		/* Server Selection. */
-	ns_t_atma = 34,		/* ATM Address */
-	ns_t_naptr = 35,	/* Naming Authority PoinTeR */
-	ns_t_kx = 36,		/* Key Exchange */
-	ns_t_cert = 37,		/* Certification record */
-	ns_t_a6 = 38,		/* IPv6 address (deprecates AAAA) */
-	ns_t_dname = 39,	/* Non-terminal DNAME (for IPv6) */
-	ns_t_sink = 40,		/* Kitchen sink (experimentatl) */
-	ns_t_opt = 41,		/* EDNS0 option (meta-RR) */
-	ns_t_tsig = 250,	/* Transaction signature. */
-	ns_t_ixfr = 251,	/* Incremental zone transfer. */
-	ns_t_axfr = 252,	/* Transfer zone of authority. */
-	ns_t_mailb = 253,	/* Transfer mailbox records. */
-	ns_t_maila = 254,	/* Transfer mail agent records. */
-	ns_t_any = 255,		/* Wildcard match. */
-	ns_t_zxfr = 256,	/* BIND-specific, nonstandard. */
-	ns_t_max = 65536
-} ns_type;
-
-/* Exclusively a QTYPE? (not also an RTYPE) */
-#define	ns_t_qt_p(t) (ns_t_xfr_p(t) || (t) == ns_t_any || \
-		      (t) == ns_t_mailb || (t) == ns_t_maila)
-/* Some kind of meta-RR? (not a QTYPE, but also not an RTYPE) */
-#define	ns_t_mrr_p(t) ((t) == ns_t_tsig || (t) == ns_t_opt)
-/* Exclusively an RTYPE? (not also a QTYPE or a meta-RR) */
-#define ns_t_rr_p(t) (!ns_t_qt_p(t) && !ns_t_mrr_p(t))
-#define ns_t_udp_p(t) ((t) != ns_t_axfr && (t) != ns_t_zxfr)
-#define ns_t_xfr_p(t) ((t) == ns_t_axfr || (t) == ns_t_ixfr || \
-		       (t) == ns_t_zxfr)
-
-/*
- * Values for class field
- */
-typedef enum __ns_class {
-	ns_c_invalid = 0,	/* Cookie. */
-	ns_c_in = 1,		/* Internet. */
-	ns_c_2 = 2,		/* unallocated/unsupported. */
-	ns_c_chaos = 3,		/* MIT Chaos-net. */
-	ns_c_hs = 4,		/* MIT Hesiod. */
-	/* Query class values which do not appear in resource records */
-	ns_c_none = 254,	/* for prereq. sections in update requests */
-	ns_c_any = 255,		/* Wildcard match. */
-	ns_c_max = 65536
-} ns_class;
-
-/* DNSSEC constants. */
-
-typedef enum __ns_key_types {
-	ns_kt_rsa = 1,		/* key type RSA/MD5 */
-	ns_kt_dh  = 2,		/* Diffie Hellman */
-	ns_kt_dsa = 3,		/* Digital Signature Standard (MANDATORY) */
-	ns_kt_private = 254	/* Private key type starts with OID */
-} ns_key_types;
-
-typedef enum __ns_cert_types {
-	cert_t_pkix = 1,	/* PKIX (X.509v3) */
-	cert_t_spki = 2,	/* SPKI */
-	cert_t_pgp  = 3,	/* PGP */
-	cert_t_url  = 253,	/* URL private type */
-	cert_t_oid  = 254	/* OID private type */
-} ns_cert_types;
-
-/* Flags field of the KEY RR rdata. */
-#define	NS_KEY_TYPEMASK		0xC000	/* Mask for "type" bits */
-#define	NS_KEY_TYPE_AUTH_CONF	0x0000	/* Key usable for both */
-#define	NS_KEY_TYPE_CONF_ONLY	0x8000	/* Key usable for confidentiality */
-#define	NS_KEY_TYPE_AUTH_ONLY	0x4000	/* Key usable for authentication */
-#define	NS_KEY_TYPE_NO_KEY	0xC000	/* No key usable for either; no key */
-/* The type bits can also be interpreted independently, as single bits: */
-#define	NS_KEY_NO_AUTH		0x8000	/* Key unusable for authentication */
-#define	NS_KEY_NO_CONF		0x4000	/* Key unusable for confidentiality */
-#define	NS_KEY_RESERVED2	0x2000	/* Security is *mandatory* if bit=0 */
-#define	NS_KEY_EXTENDED_FLAGS	0x1000	/* reserved - must be zero */
-#define	NS_KEY_RESERVED4	0x0800  /* reserved - must be zero */
-#define	NS_KEY_RESERVED5	0x0400  /* reserved - must be zero */
-#define	NS_KEY_NAME_TYPE	0x0300	/* these bits determine the type */
-#define	NS_KEY_NAME_USER	0x0000	/* key is assoc. with user */
-#define	NS_KEY_NAME_ENTITY	0x0200	/* key is assoc. with entity eg host */
-#define	NS_KEY_NAME_ZONE	0x0100	/* key is zone key */
-#define	NS_KEY_NAME_RESERVED	0x0300	/* reserved meaning */
-#define	NS_KEY_RESERVED8	0x0080  /* reserved - must be zero */
-#define	NS_KEY_RESERVED9	0x0040  /* reserved - must be zero */
-#define	NS_KEY_RESERVED10	0x0020  /* reserved - must be zero */
-#define	NS_KEY_RESERVED11	0x0010  /* reserved - must be zero */
-#define	NS_KEY_SIGNATORYMASK	0x000F	/* key can sign RR's of same name */
-#define	NS_KEY_RESERVED_BITMASK ( NS_KEY_RESERVED2 | \
-				  NS_KEY_RESERVED4 | \
-				  NS_KEY_RESERVED5 | \
-				  NS_KEY_RESERVED8 | \
-				  NS_KEY_RESERVED9 | \
-				  NS_KEY_RESERVED10 | \
-				  NS_KEY_RESERVED11 )
-#define NS_KEY_RESERVED_BITMASK2 0xFFFF /* no bits defined here */
-
-/* The Algorithm field of the KEY and SIG RR's is an integer, {1..254} */
-#define	NS_ALG_MD5RSA		1	/* MD5 with RSA */
-#define	NS_ALG_DH               2	/* Diffie Hellman KEY */
-#define	NS_ALG_DSA              3	/* DSA KEY */
-#define	NS_ALG_DSS              NS_ALG_DSA
-#define	NS_ALG_EXPIRE_ONLY	253	/* No alg, no security */
-#define	NS_ALG_PRIVATE_OID	254	/* Key begins with OID giving alg */
-
-/* Protocol values  */
-/* value 0 is reserved */
-#define NS_KEY_PROT_TLS         1
-#define NS_KEY_PROT_EMAIL       2
-#define NS_KEY_PROT_DNSSEC      3
-#define NS_KEY_PROT_IPSEC       4
-#define NS_KEY_PROT_ANY		255
-
-/* Signatures */
-#define	NS_MD5RSA_MIN_BITS	 512	/* Size of a mod or exp in bits */
-#define	NS_MD5RSA_MAX_BITS	2552
-	/* Total of binary mod and exp */
-#define	NS_MD5RSA_MAX_BYTES	((NS_MD5RSA_MAX_BITS+7/8)*2+3)
-	/* Max length of text sig block */
-#define	NS_MD5RSA_MAX_BASE64	(((NS_MD5RSA_MAX_BYTES+2)/3)*4)
-#define NS_MD5RSA_MIN_SIZE	((NS_MD5RSA_MIN_BITS+7)/8)
-#define NS_MD5RSA_MAX_SIZE	((NS_MD5RSA_MAX_BITS+7)/8)
-
-#define NS_DSA_SIG_SIZE         41
-#define NS_DSA_MIN_SIZE         213
-#define NS_DSA_MAX_BYTES        405
-
-/* Offsets into SIG record rdata to find various values */
-#define	NS_SIG_TYPE	0	/* Type flags */
-#define	NS_SIG_ALG	2	/* Algorithm */
-#define	NS_SIG_LABELS	3	/* How many labels in name */
-#define	NS_SIG_OTTL	4	/* Original TTL */
-#define	NS_SIG_EXPIR	8	/* Expiration time */
-#define	NS_SIG_SIGNED	12	/* Signature time */
-#define	NS_SIG_FOOT	16	/* Key footprint */
-#define	NS_SIG_SIGNER	18	/* Domain name of who signed it */
-
-/* How RR types are represented as bit-flags in NXT records */
-#define	NS_NXT_BITS 8
-#define	NS_NXT_BIT_SET(  n,p) (p[(n)/NS_NXT_BITS] |=  (0x80>>((n)%NS_NXT_BITS)))
-#define	NS_NXT_BIT_CLEAR(n,p) (p[(n)/NS_NXT_BITS] &= ~(0x80>>((n)%NS_NXT_BITS)))
-#define	NS_NXT_BIT_ISSET(n,p) (p[(n)/NS_NXT_BITS] &   (0x80>>((n)%NS_NXT_BITS)))
-#define NS_NXT_MAX 127
-
-/*
- * Inline versions of get/put short/long.  Pointer is advanced.
- */
-#define NS_GET16(s, cp) do { \
-	register u_char *t_cp = (u_char *)(cp); \
-	(s) = ((u_int16_t)t_cp[0] << 8) \
-	    | ((u_int16_t)t_cp[1]) \
-	    ; \
-	(cp) += NS_INT16SZ; \
-} while (0)
-
-#define NS_GET32(l, cp) do { \
-	register u_char *t_cp = (u_char *)(cp); \
-	(l) = ((u_int32_t)t_cp[0] << 24) \
-	    | ((u_int32_t)t_cp[1] << 16) \
-	    | ((u_int32_t)t_cp[2] << 8) \
-	    | ((u_int32_t)t_cp[3]) \
-	    ; \
-	(cp) += NS_INT32SZ; \
-} while (0)
-
-#define NS_PUT16(s, cp) do { \
-	register u_int16_t t_s = (u_int16_t)(s); \
-	register u_char *t_cp = (u_char *)(cp); \
-	*t_cp++ = t_s >> 8; \
-	*t_cp   = t_s; \
-	(cp) += NS_INT16SZ; \
-} while (0)
-
-#define NS_PUT32(l, cp) do { \
-	register u_int32_t t_l = (u_int32_t)(l); \
-	register u_char *t_cp = (u_char *)(cp); \
-	*t_cp++ = t_l >> 24; \
-	*t_cp++ = t_l >> 16; \
-	*t_cp++ = t_l >> 8; \
-	*t_cp   = t_l; \
-	(cp) += NS_INT32SZ; \
-} while (0)
-
-/*
- * ANSI C identifier hiding for bind's lib/nameser.
- */
-#define ns_get16		__ns_get16
-#define ns_get32		__ns_get32
-#define ns_put16		__ns_put16
-#define ns_put32		__ns_put32
-#define ns_initparse		__ns_initparse
-#define ns_skiprr		__ns_skiprr
-#define ns_parserr		__ns_parserr
-#define	ns_sprintrr		__ns_sprintrr
-#define	ns_sprintrrf		__ns_sprintrrf
-#define	ns_format_ttl		__ns_format_ttl
-#define	ns_parse_ttl		__ns_parse_ttl
-#define ns_datetosecs		__ns_datetosecs
-#define	ns_name_ntol		__ns_name_ntol
-#define	ns_name_ntop		__ns_name_ntop
-#define	ns_name_pton		__ns_name_pton
-#define	ns_name_unpack		__ns_name_unpack
-#define	ns_name_pack		__ns_name_pack
-#define	ns_name_compress	__ns_name_compress
-#define	ns_name_uncompress	__ns_name_uncompress
-#define	ns_name_skip		__ns_name_skip
-#define	ns_name_rollback	__ns_name_rollback
-#define	ns_sign			__ns_sign
-#define	ns_sign_tcp		__ns_sign_tcp
-#define	ns_sign_tcp_init	__ns_sign_tcp_init
-#define ns_find_tsig		__ns_find_tsig
-#define	ns_verify		__ns_verify
-#define	ns_verify_tcp		__ns_verify_tcp
-#define	ns_verify_tcp_init	__ns_verify_tcp_init
-#define	ns_samedomain		__ns_samedomain
-#define	ns_subdomain		__ns_subdomain
-#define	ns_makecanon		__ns_makecanon
-#define	ns_samename		__ns_samename
-
-__BEGIN_DECLS
-u_int		ns_get16 __P((const u_char *));
-u_long		ns_get32 __P((const u_char *));
-void		ns_put16 __P((u_int, u_char *));
-void		ns_put32 __P((u_long, u_char *));
-int		ns_initparse __P((const u_char *, int, ns_msg *));
-int		ns_skiprr __P((const u_char *, const u_char *, ns_sect, int));
-int		ns_parserr __P((ns_msg *, ns_sect, int, ns_rr *));
-int		ns_sprintrr __P((const ns_msg *, const ns_rr *,
-				 const char *, const char *, char *, size_t));
-int		ns_sprintrrf __P((const u_char *, size_t, const char *,
-				  ns_class, ns_type, u_long, const u_char *,
-				  size_t, const char *, const char *,
-				  char *, size_t));
-int		ns_format_ttl __P((u_long, char *, size_t));
-int		ns_parse_ttl __P((const char *, u_long *));
-u_int32_t	ns_datetosecs __P((const char *cp, int *errp));
-int		ns_name_ntol __P((const u_char *, u_char *, size_t));
-int		ns_name_ntop __P((const u_char *, char *, size_t));
-int		ns_name_pton __P((const char *, u_char *, size_t));
-int		ns_name_unpack __P((const u_char *, const u_char *,
-				    const u_char *, u_char *, size_t));
-int		ns_name_pack __P((const u_char *, u_char *, int,
-				  const u_char **, const u_char **));
-int		ns_name_uncompress __P((const u_char *, const u_char *,
-					const u_char *, char *, size_t));
-int		ns_name_compress __P((const char *, u_char *, size_t,
-				      const u_char **, const u_char **));
-int		ns_name_skip __P((const u_char **, const u_char *));
-void		ns_name_rollback __P((const u_char *, const u_char **,
-				      const u_char **));
-int		ns_sign __P((u_char *, int *, int, int, void *,
-			     const u_char *, int, u_char *, int *, time_t));
-int		ns_sign_tcp __P((u_char *, int *, int, int,
-				 ns_tcp_tsig_state *, int));
-int		ns_sign_tcp_init __P((void *, const u_char *, int,
-					ns_tcp_tsig_state *));
-u_char		*ns_find_tsig __P((u_char *, u_char *));
-int		ns_verify __P((u_char *, int *, void *,
-			       const u_char *, int, u_char *, int *,
-			       time_t *, int));
-int		ns_verify_tcp __P((u_char *, int *, ns_tcp_tsig_state *, int));
-int		ns_verify_tcp_init __P((void *, const u_char *, int,
-					ns_tcp_tsig_state *));
-int		ns_samedomain __P((const char *, const char *));
-int		ns_subdomain __P((const char *, const char *));
-int		ns_makecanon __P((const char *, char *, size_t));
-int		ns_samename __P((const char *, const char *));
-__END_DECLS
-
-#ifdef BIND_4_COMPAT
-#include <arpa/nameser_compat.h>
-#endif
-
-#endif /* !_ARPA_NAMESER_H_ */
diff --git a/contrib/bind/include/arpa/nameser_compat.h b/contrib/bind/include/arpa/nameser_compat.h
deleted file mode 100644
index 292669d0c3b72..0000000000000
--- a/contrib/bind/include/arpa/nameser_compat.h
+++ /dev/null
@@ -1,229 +0,0 @@
-/* Copyright (c) 1983, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- *      from nameser.h	8.1 (Berkeley) 6/2/93
- *	$Id: nameser_compat.h,v 8.11 1999/01/02 08:00:58 vixie Exp $
- */
-
-#ifndef _ARPA_NAMESER_COMPAT_
-#define	_ARPA_NAMESER_COMPAT_
-
-#define	__BIND		19950621	/* (DEAD) interface version stamp. */
-
-#ifndef BYTE_ORDER
-#if (BSD >= 199103)
-# include <machine/endian.h>
-#else
-#ifdef linux
-# include <endian.h>
-#else
-#define	LITTLE_ENDIAN	1234	/* least-significant byte first (vax, pc) */
-#define	BIG_ENDIAN	4321	/* most-significant byte first (IBM, net) */
-#define	PDP_ENDIAN	3412	/* LSB first in word, MSW first in long (pdp)*/
-
-#if defined(vax) || defined(ns32000) || defined(sun386) || defined(i386) || \
-    defined(MIPSEL) || defined(_MIPSEL) || defined(BIT_ZERO_ON_RIGHT) || \
-    defined(__alpha__) || defined(__alpha) || \
-    (defined(__Lynx__) && defined(__x86__))
-#define BYTE_ORDER	LITTLE_ENDIAN
-#endif
-
-#if defined(sel) || defined(pyr) || defined(mc68000) || defined(sparc) || \
-    defined(is68k) || defined(tahoe) || defined(ibm032) || defined(ibm370) || \
-    defined(MIPSEB) || defined(_MIPSEB) || defined(_IBMR2) || defined(DGUX) ||\
-    defined(apollo) || defined(__convex__) || defined(_CRAY) || \
-    defined(__hppa) || defined(__hp9000) || \
-    defined(__hp9000s300) || defined(__hp9000s700) || \
-    defined (BIT_ZERO_ON_LEFT) || defined(m68k) || \
-    (defined(__Lynx__) && \
-     (defined(__68k__) || defined(__sparc__) || defined(__powerpc__)))
-#define BYTE_ORDER	BIG_ENDIAN
-#endif
-#endif /* linux */
-#endif /* BSD */
-#endif /* BYTE_ORDER */
-
-#if !defined(BYTE_ORDER) || \
-    (BYTE_ORDER != BIG_ENDIAN && BYTE_ORDER != LITTLE_ENDIAN && \
-    BYTE_ORDER != PDP_ENDIAN)
-	/* you must determine what the correct bit order is for
-	 * your compiler - the next line is an intentional error
-	 * which will force your compiles to bomb until you fix
-	 * the above macros.
-	 */
-  error "Undefined or invalid BYTE_ORDER";
-#endif
-
-/*
- * Structure for query header.  The order of the fields is machine- and
- * compiler-dependent, depending on the byte/bit order and the layout
- * of bit fields.  We use bit fields only in int variables, as this
- * is all ANSI requires.  This requires a somewhat confusing rearrangement.
- */
-
-typedef struct {
-	unsigned	id :16;		/* query identification number */
-#if BYTE_ORDER == BIG_ENDIAN
-			/* fields in third byte */
-	unsigned	qr: 1;		/* response flag */
-	unsigned	opcode: 4;	/* purpose of message */
-	unsigned	aa: 1;		/* authoritive answer */
-	unsigned	tc: 1;		/* truncated message */
-	unsigned	rd: 1;		/* recursion desired */
-			/* fields in fourth byte */
-	unsigned	ra: 1;		/* recursion available */
-	unsigned	unused :1;	/* unused bits (MBZ as of 4.9.3a3) */
-	unsigned	ad: 1;		/* authentic data from named */
-	unsigned	cd: 1;		/* checking disabled by resolver */
-	unsigned	rcode :4;	/* response code */
-#endif
-#if BYTE_ORDER == LITTLE_ENDIAN || BYTE_ORDER == PDP_ENDIAN
-			/* fields in third byte */
-	unsigned	rd :1;		/* recursion desired */
-	unsigned	tc :1;		/* truncated message */
-	unsigned	aa :1;		/* authoritive answer */
-	unsigned	opcode :4;	/* purpose of message */
-	unsigned	qr :1;		/* response flag */
-			/* fields in fourth byte */
-	unsigned	rcode :4;	/* response code */
-	unsigned	cd: 1;		/* checking disabled by resolver */
-	unsigned	ad: 1;		/* authentic data from named */
-	unsigned	unused :1;	/* unused bits (MBZ as of 4.9.3a3) */
-	unsigned	ra :1;		/* recursion available */
-#endif
-			/* remaining bytes */
-	unsigned	qdcount :16;	/* number of question entries */
-	unsigned	ancount :16;	/* number of answer entries */
-	unsigned	nscount :16;	/* number of authority entries */
-	unsigned	arcount :16;	/* number of resource entries */
-} HEADER;
-
-#define PACKETSZ	NS_PACKETSZ
-#define MAXDNAME	NS_MAXDNAME
-#define MAXCDNAME	NS_MAXCDNAME
-#define MAXLABEL	NS_MAXLABEL
-#define	HFIXEDSZ	NS_HFIXEDSZ
-#define QFIXEDSZ	NS_QFIXEDSZ
-#define RRFIXEDSZ	NS_RRFIXEDSZ
-#define	INT32SZ		NS_INT32SZ
-#define	INT16SZ		NS_INT16SZ
-#define	INADDRSZ	NS_INADDRSZ
-#define	IN6ADDRSZ	NS_IN6ADDRSZ
-#define	INDIR_MASK	NS_CMPRSFLGS
-#define NAMESERVER_PORT	NS_DEFAULTPORT
-
-#define S_ZONE		ns_s_zn
-#define S_PREREQ	ns_s_pr
-#define S_UPDATE	ns_s_ud
-#define S_ADDT		ns_s_ar
-
-#define QUERY		ns_o_query
-#define IQUERY		ns_o_iquery
-#define STATUS		ns_o_status
-#define	NS_NOTIFY_OP	ns_o_notify
-#define	NS_UPDATE_OP	ns_o_update
-
-#define NOERROR		ns_r_noerror
-#define FORMERR		ns_r_formerr
-#define SERVFAIL	ns_r_servfail
-#define NXDOMAIN	ns_r_nxdomain
-#define NOTIMP		ns_r_notimpl
-#define REFUSED		ns_r_refused
-#define YXDOMAIN	ns_r_yxdomain
-#define YXRRSET		ns_r_yxrrset
-#define NXRRSET		ns_r_nxrrset
-#define NOTAUTH		ns_r_notauth
-#define NOTZONE		ns_r_notzone
-/*#define BADSIG		ns_r_badsig*/
-/*#define BADKEY		ns_r_badkey*/
-/*#define BADTIME		ns_r_badtime*/
-
-
-#define DELETE		ns_uop_delete
-#define ADD		ns_uop_add
-
-#define T_A		ns_t_a
-#define T_NS		ns_t_ns
-#define T_MD		ns_t_md
-#define T_MF		ns_t_mf
-#define T_CNAME		ns_t_cname
-#define T_SOA		ns_t_soa
-#define T_MB		ns_t_mb
-#define T_MG		ns_t_mg
-#define T_MR		ns_t_mr
-#define T_NULL		ns_t_null
-#define T_WKS		ns_t_wks
-#define T_PTR		ns_t_ptr
-#define T_HINFO		ns_t_hinfo
-#define T_MINFO		ns_t_minfo
-#define T_MX		ns_t_mx
-#define T_TXT		ns_t_txt
-#define	T_RP		ns_t_rp
-#define T_AFSDB		ns_t_afsdb
-#define T_X25		ns_t_x25
-#define T_ISDN		ns_t_isdn
-#define T_RT		ns_t_rt
-#define T_NSAP		ns_t_nsap
-#define T_NSAP_PTR	ns_t_nsap_ptr
-#define	T_SIG		ns_t_sig
-#define	T_KEY		ns_t_key
-#define	T_PX		ns_t_px
-#define	T_GPOS		ns_t_gpos
-#define	T_AAAA		ns_t_aaaa
-#define	T_LOC		ns_t_loc
-#define	T_NXT		ns_t_nxt
-#define	T_EID		ns_t_eid
-#define	T_NIMLOC	ns_t_nimloc
-#define	T_SRV		ns_t_srv
-#define T_ATMA		ns_t_atma
-#define T_NAPTR		ns_t_naptr
-#define	T_TSIG		ns_t_tsig
-#define	T_IXFR		ns_t_ixfr
-#define T_AXFR		ns_t_axfr
-#define T_MAILB		ns_t_mailb
-#define T_MAILA		ns_t_maila
-#define T_ANY		ns_t_any
-
-#define C_IN		ns_c_in
-#define C_CHAOS		ns_c_chaos
-#define C_HS		ns_c_hs
-/* BIND_UPDATE */
-#define C_NONE		ns_c_none
-#define C_ANY		ns_c_any
-
-#define	GETSHORT		NS_GET16
-#define	GETLONG			NS_GET32
-#define	PUTSHORT		NS_PUT16
-#define	PUTLONG			NS_PUT32
-
-#endif /* _ARPA_NAMESER_COMPAT_ */
diff --git a/contrib/bind/include/fd_setsize.h b/contrib/bind/include/fd_setsize.h
deleted file mode 100644
index 235b1ad1c2221..0000000000000
--- a/contrib/bind/include/fd_setsize.h
+++ /dev/null
@@ -1,9 +0,0 @@
-#ifndef _FD_SETSIZE_H
-#define _FD_SETSIZE_H
-
-/*
- * If you need a bigger FD_SETSIZE, this is NOT the place to set it.
- * This file is a fallback for BIND ports which don't specify their own.
- */
-
-#endif /* _FD_SETSIZE_H */
diff --git a/contrib/bind/include/hesiod.h b/contrib/bind/include/hesiod.h
deleted file mode 100644
index a110bd0d347a0..0000000000000
--- a/contrib/bind/include/hesiod.h
+++ /dev/null
@@ -1,40 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * This file is primarily maintained by <tytso@mit.edu> and <ghudson@mit.edu>.
- */
-
-/*
- * $Id: hesiod.h,v 1.7 1999/01/08 19:22:45 vixie Exp $
- */
-
-#ifndef _HESIOD_H_INCLUDED
-#define _HESIOD_H_INCLUDED
-
-int		hesiod_init __P((void **context));
-void		hesiod_end __P((void *context));
-char *		hesiod_to_bind __P((void *context, const char *name,
-				    const char *type));
-char **		hesiod_resolve __P((void *context, const char *name,
-				    const char *type));
-void		hesiod_free_list __P((void *context, char **list));
-struct __res_state * __hesiod_res_get __P((void *context));
-void		__hesiod_res_set __P((void *context, struct __res_state *,
-				      void (*)(void *)));
-
-#endif /*_HESIOD_H_INCLUDED*/
diff --git a/contrib/bind/include/irp.h b/contrib/bind/include/irp.h
deleted file mode 100644
index 2402383042800..0000000000000
--- a/contrib/bind/include/irp.h
+++ /dev/null
@@ -1,99 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: irp.h,v 8.1 1999/01/18 07:46:46 vixie Exp $
- */
-
-#ifndef _IRP_H_INCLUDED
-#define _IRP_H_INCLUDED
-
-#define IRPD_TIMEOUT 30			/* seconds */
-#define IRPD_MAXSESS 50			/* number of simultaneous sessions. */
-#define IRPD_PORT 6660			/* 10 times the number of the beast. */
-#define IRPD_PATH "/var/run/irpd"	/* af_unix socket path */
-
-/* If sets the environment variable IRPDSERVER to an IP address
-   (e.g. "192.5.5.1"), then that's the host the client expects irpd to be
-   running on. */
-#define IRPD_HOST_ENV "IRPDSERVER"
-
-/* Protocol response codes.  */
-#define IRPD_WELCOME_CODE 200
-#define IRPD_NOT_WELCOME_CODE 500
-
-#define IRPD_GETHOST_ERROR 510
-#define IRPD_GETHOST_NONE 210
-#define IRPD_GETHOST_OK 211
-#define IRPD_GETHOST_SETOK 212
-
-#define IRPD_GETNET_ERROR 520
-#define IRPD_GETNET_NONE 220
-#define IRPD_GETNET_OK 221
-#define IRPD_GETNET_SETOK 222
-
-#define IRPD_GETUSER_ERROR 530
-#define IRPD_GETUSER_NONE 230
-#define IRPD_GETUSER_OK 231
-#define IRPD_GETUSER_SETOK 232
-
-#define IRPD_GETGROUP_ERROR 540
-#define IRPD_GETGROUP_NONE 240
-#define IRPD_GETGROUP_OK 241
-#define IRPD_GETGROUP_SETOK 242
-
-#define IRPD_GETSERVICE_ERROR 550
-#define IRPD_GETSERVICE_NONE 250
-#define IRPD_GETSERVICE_OK 251
-#define IRPD_GETSERVICE_SETOK 252
-
-#define IRPD_GETPROTO_ERROR 560
-#define IRPD_GETPROTO_NONE 260
-#define IRPD_GETPROTO_OK 261
-#define IRPD_GETPROTO_SETOK 262
-
-#define IRPD_GETNETGR_ERROR 570
-#define IRPD_GETNETGR_NONE 270
-#define IRPD_GETNETGR_OK 271
-#define IRPD_GETNETGR_NOMORE 272
-#define IRPD_GETNETGR_MATCHES 273
-#define IRPD_GETNETGR_NOMATCH 274
-#define IRPD_GETNETGR_SETOK 275
-#define IRPD_GETNETGR_SETERR 276
-
-#define	irs_irp_read_body __irs_irp_read_body
-#define irs_irp_read_response __irs_irp_read_response
-#define irs_irp_disconnect __irs_irp_disconnect
-#define irs_irp_connect __irs_irp_connect
-#define irs_irp_connection_setup __irs_irp_connection_setup
-#define irs_irp_send_command __irs_irp_send_command
-
-struct irp_p;
-
-char   *irs_irp_read_body(struct irp_p *pvt, size_t *size);
-int	irs_irp_read_response(struct irp_p *pvt, char *text, size_t len);
-void	irs_irp_disconnect(struct irp_p *pvt);
-int	irs_irp_connect(struct irp_p *pvt);
-int	irs_irp_is_connected(struct irp_p *pvt);
-int	irs_irp_connection_setup(struct irp_p *cxndata, int *warned);
-int	irs_irp_send_command(struct irp_p *pvt, const char *fmt, ...);
-int	irs_irp_get_full_response(struct irp_p *pvt, int *code, char *text,
-				  size_t textlen, char **body,
-				  size_t *bodylen);
-int	irs_irp_read_line(struct irp_p *pvt, char *buffer, int len);
-
-#endif
diff --git a/contrib/bind/include/irs.h b/contrib/bind/include/irs.h
deleted file mode 100644
index 17d3f20687523..0000000000000
--- a/contrib/bind/include/irs.h
+++ /dev/null
@@ -1,319 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: irs.h,v 8.4 1999/01/18 07:46:46 vixie Exp $
- */
-
-#ifndef _IRS_H_INCLUDED
-#define _IRS_H_INCLUDED
-
-#include <sys/types.h>
-
-#include <arpa/nameser.h>
-
-#include <grp.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <pwd.h>
-
-/*
- * This is the group map class.
- */
-struct irs_gr {
-	void *		private;
-	void		(*close) __P((struct irs_gr *));
-	struct group *	(*next) __P((struct irs_gr *));
-	struct group *	(*byname) __P((struct irs_gr *, const char *));
-	struct group *	(*bygid) __P((struct irs_gr *, gid_t));
-	int		(*list) __P((struct irs_gr *, const char *,
-				     gid_t, gid_t *, int *));
-	void		(*rewind) __P((struct irs_gr *));
-	void		(*minimize) __P((struct irs_gr *));
-	struct __res_state * (*res_get) __P((struct irs_gr *));
-	void		(*res_set) __P((struct irs_gr *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is the password map class.
- */
-struct irs_pw {
-	void *		private;
-	void		(*close) __P((struct irs_pw *));
-	struct passwd *	(*next) __P((struct irs_pw *));
-	struct passwd *	(*byname) __P((struct irs_pw *, const char *));
-	struct passwd *	(*byuid) __P((struct irs_pw *, uid_t));
-	void		(*rewind) __P((struct irs_pw *));
-	void		(*minimize) __P((struct irs_pw *));
-	struct __res_state * (*res_get) __P((struct irs_pw *));
-	void		(*res_set) __P((struct irs_pw *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is the service map class.
- */
-struct irs_sv {
-	void *		private;
-	void		(*close) __P((struct irs_sv *));
-	struct servent *(*byname) __P((struct irs_sv *,
-				       const char *, const char *));
-	struct servent *(*byport) __P((struct irs_sv *, int, const char *));
-	struct servent *(*next) __P((struct irs_sv *));
-	void		(*rewind) __P((struct irs_sv *));
-	void		(*minimize) __P((struct irs_sv *));
-	struct __res_state * (*res_get) __P((struct irs_sv *));
-	void		(*res_set) __P((struct irs_sv *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is the protocols map class.
- */
-struct irs_pr {
-	void *		private;
-	void		(*close) __P((struct irs_pr *));
-	struct protoent	*(*byname) __P((struct irs_pr *, const char *));
-	struct protoent	*(*bynumber) __P((struct irs_pr *, int));
-	struct protoent	*(*next) __P((struct irs_pr *));
-	void		(*rewind) __P((struct irs_pr *));
-	void		(*minimize) __P((struct irs_pr *));
-	struct __res_state * (*res_get) __P((struct irs_pr *));
-	void		(*res_set) __P((struct irs_pr *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is the hosts map class.
- */
-struct irs_ho {
-	void *		private;
-	void		(*close) __P((struct irs_ho *));
-	struct hostent *(*byname) __P((struct irs_ho *, const char *));
-	struct hostent *(*byname2) __P((struct irs_ho *, const char *, int));
-	struct hostent *(*byaddr) __P((struct irs_ho *,
-				       const void *, int, int));
-	struct hostent *(*next) __P((struct irs_ho *));
-	void		(*rewind) __P((struct irs_ho *));
-	void		(*minimize) __P((struct irs_ho *));
-	struct __res_state * (*res_get) __P((struct irs_ho *));
-	void		(*res_set) __P((struct irs_ho *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is the networks map class.
- */
-struct irs_nw {
-	void *		private;
-	void		(*close) __P((struct irs_nw *));
-	struct nwent *	(*byname) __P((struct irs_nw *, const char *, int));
-	struct nwent *	(*byaddr) __P((struct irs_nw *, void *, int, int));
-	struct nwent *	(*next) __P((struct irs_nw *));
-	void		(*rewind) __P((struct irs_nw *));
-	void		(*minimize) __P((struct irs_nw *));
-	struct __res_state * (*res_get) __P((struct irs_nw *));
-	void		(*res_set) __P((struct irs_nw *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is the netgroups map class.
- */
-struct irs_ng {
-	void *		private;
-	void		(*close) __P((struct irs_ng *));
-	int		(*next) __P((struct irs_ng *, char **, char **,
-				     char **));
-	int		(*test) __P((struct irs_ng *, const char *,
-				     const char *, const char *,
-				     const char *));
-	void		(*rewind) __P((struct irs_ng *, const char *));
-	void		(*minimize) __P((struct irs_ng *));
-};
-
-/*
- * This is the generic map class, which copies the front of all others.
- */
-struct irs_map {
-	void *		private;
-	void		(*close) __P((void *));
-};
-
-/*
- * This is the accessor class.  It contains pointers to all of the
- * initializers for the map classes for a particular accessor.
- */
-struct irs_acc {
-	void *		private;
-	void		(*close) __P((struct irs_acc *));
-	struct irs_gr *	(*gr_map) __P((struct irs_acc *));
-	struct irs_pw *	(*pw_map) __P((struct irs_acc *));
-	struct irs_sv *	(*sv_map) __P((struct irs_acc *));
-	struct irs_pr *	(*pr_map) __P((struct irs_acc *));
-	struct irs_ho *	(*ho_map) __P((struct irs_acc *));
-	struct irs_nw *	(*nw_map) __P((struct irs_acc *));
-	struct irs_ng *	(*ng_map) __P((struct irs_acc *));
-	struct __res_state * (*res_get) __P((struct irs_acc *));
-	void		(*res_set) __P((struct irs_acc *, res_state,
-					void (*)(void *)));
-};
-
-/*
- * This is because the official definition of "struct netent" has no
- * concept of CIDR even though it allows variant address families (on
- * output but not input).  The compatibility stubs convert the structs
- * below into "struct netent"'s.
- */
-struct nwent {
-	char		*n_name;	/* official name of net */
-	char		**n_aliases;	/* alias list */
-	int		n_addrtype;	/* net address type */
-	void		*n_addr;	/* network address */
-	int		n_length;	/* address length, in bits */
-};
-
-/*
- * Hide external function names from POSIX.
- */
-#define	irs_gen_acc	__irs_gen_acc
-#define	irs_lcl_acc	__irs_lcl_acc
-#define	irs_dns_acc	__irs_dns_acc
-#define	irs_nis_acc	__irs_nis_acc
-#define	irs_irp_acc	__irs_irp_acc
-
-/*
- * Externs.
- */
-extern struct irs_acc *	irs_gen_acc __P((const char *options, 
-					 const char *conf_file));
-extern struct irs_acc *	irs_lcl_acc __P((const char *options));
-extern struct irs_acc *	irs_dns_acc __P((const char *options));
-extern struct irs_acc *	irs_nis_acc __P((const char *options));
-extern struct irs_acc *	irs_irp_acc __P((const char *options));
-
-/*
- * These forward declarations are for the semi-private functions in
- * the get*.c files. Each of these funcs implements the real get*
- * functionality and the standard versions are just wrappers that
- * call these. Apart from the wrappers, only irpd is expected to
- * call these directly, hence these decls are put here and not in
- * the /usr/include replacements.
- */
-
-struct net_data;			/* forward */
-
-/*
- * net_data_create gets a singleton net_data object.  net_data_init
- * creates as many net_data objects as times it is called.  Clients using
- * the default interface will use net_data_create by default.  Servers will
- * probably want net_data_init (one call per client)
- */
-struct net_data *net_data_create(const char *conf_file);
-struct net_data *net_data_init(const char *conf_file);
-void		net_data_destroy(void *p);
-	
-extern struct group    *getgrent_p __P((struct net_data *net_data));
-extern struct group    *getgrnam_p __P((const char *name,
-					struct net_data *net_data));
-extern struct group    *getgrgid_p __P((gid_t gid,
-					struct net_data *net_data));
-extern int 		setgroupent_p __P((int stayopen,
-					   struct net_data *net_data));
-extern void 		endgrent_p __P((struct net_data *net_data));
-extern int		getgrouplist_p __P((const char *name,
-					    gid_t basegid,
-					    gid_t *groups,
-					    int *ngroups,
-					    struct net_data *net_data));
-
-#ifdef SETGRENT_VOID
-extern void 		setgrent_p __P((struct net_data *net_data));
-#else
-extern int 		setgrent_p __P((struct net_data *net_data));
-#endif
-
-extern struct hostent 	*gethostbyname_p __P((const char *name,
-					      struct net_data *net_data));
-extern struct hostent 	*gethostbyname2_p __P((const char *name, int af,
-					       struct net_data *net_data));
-extern struct hostent 	*gethostbyaddr_p __P((const char *addr, int len,
-					      int af,
-					      struct net_data *net_data));
-extern struct hostent 	*gethostent_p __P((struct net_data *net_data));
-extern void 		sethostent_p __P((int stayopen,
-					  struct net_data *net_data));
-extern void 		endhostent_p __P((struct net_data *net_data));
-
-extern struct netent 	*getnetent_p __P((struct net_data *net_data));
-extern struct netent 	*getnetbyname_p __P((const char *name,
-					     struct net_data *net_data));
-extern struct netent 	*getnetbyaddr_p __P((unsigned long net, int type,
-					     struct net_data *net_data));
-extern void		setnetent_p __P((int stayopen,
-					 struct net_data *net_data));
-extern void		endnetent_p __P((struct net_data *net_data));
-
-extern void		setnetgrent_p __P((const char *netgroup,
-					   struct net_data *net_data));
-extern void		endnetgrent_p __P((struct net_data *net_data));
-extern int		innetgr_p __P((const char *netgroup,
-				       const char *host,
-				       const char *user,
-				       const char *domain,
-				       struct net_data *net_data));
-extern int		getnetgrent_p __P((char **host, char **user,
-					   char **domain,
-					   struct net_data *net_data));
-
-extern struct protoent  *getprotoent_p __P((struct net_data *net_data));
-extern struct protoent  *getprotobyname_p __P((const char *name,
-					       struct net_data *net_data));
-extern struct protoent	*getprotobynumber_p __P((int proto,
-						 struct net_data *net_data));
-extern void		setprotoent_p __P((int stayopen,
-					   struct net_data *net_data));
-extern void		endprotoent_p __P((struct net_data *net_data));
-
-
-extern struct passwd 	*getpwent_p __P((struct net_data *net_data));
-extern struct passwd 	*getpwnam_p __P((const char *name,
-					 struct net_data *net_data));
-extern struct passwd 	*getpwuid_p __P((uid_t uid,
-					 struct net_data *net_data));
-extern int		setpassent_p __P((int stayopen,
-					  struct net_data *net_data));
-extern void		endpwent_p __P((struct net_data *net_data));
-
-#ifdef SETPWENT_VOID
-extern void		setpwent_p __P((struct net_data *net_data));
-#else
-extern int		setpwent_p __P((struct net_data *net_data));
-#endif
-
-extern struct servent 	*getservent_p __P((struct net_data *net_data));
-extern struct servent 	*getservbyname_p __P((const char *name,
-					      const char *proto,
-					      struct net_data *net_data));
-extern struct servent 	*getservbyport_p __P((int port, const char *proto,
-					      struct net_data *net_data));
-extern void		setservent_p __P((int stayopen,
-					  struct net_data *net_data));
-extern void		endservent_p __P((struct net_data *net_data));
-
-#endif /*_IRS_H_INCLUDED*/
diff --git a/contrib/bind/include/isc/Makefile b/contrib/bind/include/isc/Makefile
deleted file mode 100644
index b0184fcb5286f..0000000000000
--- a/contrib/bind/include/isc/Makefile
+++ /dev/null
@@ -1,40 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-HFILES = eventlib.h misc.h tree.h logging.h heap.h memcluster.h \
-	assertions.h list.h dst.h irpmarshall.h
-
-DESTDIR =
-DESTINC = /usr/local/bind/include
-
-all depend:
-
-distclean: clean
-
-clean: FRC
-	rm -f *~ *.BAK *.CKP *.orig
-
-install: ${DESTDIR}${DESTINC}/isc
-	set -x; for x in ${HFILES}; do \
-		${INSTALL} -c ${INSTALL_INC} -m 444 $$x ${DESTDIR}${DESTINC}/isc/$$x; \
-	done
-
-${DESTDIR}${DESTINC}/isc:
-	mkdir -p ${DESTDIR}${DESTINC}/isc
-
-links: FRC
-	@set -e; ln -s SRC/*.h .
-
-FRC:
diff --git a/contrib/bind/include/isc/assertions.h b/contrib/bind/include/isc/assertions.h
deleted file mode 100644
index 44089d15cbc88..0000000000000
--- a/contrib/bind/include/isc/assertions.h
+++ /dev/null
@@ -1,122 +0,0 @@
-/*
- * Copyright (c) 1997-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: assertions.h,v 8.2 1999/01/08 19:23:01 vixie Exp $
- */
-
-#ifndef ASSERTIONS_H
-#define ASSERTIONS_H		1
-
-typedef enum {
-	assert_require, assert_ensure, assert_insist, assert_invariant
-} assertion_type;
-
-typedef void (*assertion_failure_callback)(char *, int, assertion_type, char *,
-					   int);
-
-extern assertion_failure_callback __assertion_failed;
-void set_assertion_failure_callback(assertion_failure_callback f);
-char *assertion_type_to_text(assertion_type type);
-
-#ifdef CHECK_ALL
-#define CHECK_REQUIRE		1
-#define CHECK_ENSURE		1
-#define CHECK_INSIST		1
-#define CHECK_INVARIANT		1
-#endif
-
-#ifdef CHECK_NONE
-#define CHECK_REQUIRE		0
-#define CHECK_ENSURE		0
-#define CHECK_INSIST		0
-#define CHECK_INVARIANT		0
-#endif
-
-#ifndef CHECK_REQUIRE
-#define CHECK_REQUIRE		1
-#endif
-
-#ifndef CHECK_ENSURE
-#define CHECK_ENSURE		1
-#endif
-
-#ifndef CHECK_INSIST
-#define CHECK_INSIST		1
-#endif
-
-#ifndef CHECK_INVARIANT
-#define CHECK_INVARIANT		1
-#endif
-
-#if CHECK_REQUIRE != 0
-#define REQUIRE(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_require, \
-				       #cond, 0), 0)))
-#define REQUIRE_ERR(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_require, \
-				       #cond, 1), 0)))
-#else
-#define REQUIRE(cond)		((void) 0)
-#define REQUIRE_ERR(cond)	((void) 0)
-#endif /* CHECK_REQUIRE */
-
-#if CHECK_ENSURE != 0
-#define ENSURE(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_ensure, \
-				       #cond, 0), 0)))
-#define ENSURE_ERR(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_ensure, \
-				       #cond, 1), 0)))
-#else
-#define ENSURE(cond)		((void) 0)
-#define ENSURE_ERR(cond)	((void) 0)
-#endif /* CHECK_ENSURE */
-
-#if CHECK_INSIST != 0
-#define INSIST(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_insist, \
-				       #cond, 0), 0)))
-#define INSIST_ERR(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_insist, \
-				       #cond, 1), 0)))
-#else
-#define INSIST(cond)		((void) 0)
-#define INSIST_ERR(cond)	((void) 0)
-#endif /* CHECK_INSIST */
-
-#if CHECK_INVARIANT != 0
-#define INVARIANT(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_invariant, \
-				       #cond, 0), 0)))
-#define INVARIANT_ERR(cond) \
-	((void) ((cond) || \
-		 ((__assertion_failed)(__FILE__, __LINE__, assert_invariant, \
-				       #cond, 1), 0)))
-#else
-#define INVARIANT(cond)		((void) 0)
-#define INVARIANT_ERR(cond)	((void) 0)
-#endif /* CHECK_INVARIANT */
-
-#endif /* ASSERTIONS_H */
diff --git a/contrib/bind/include/isc/ctl.h b/contrib/bind/include/isc/ctl.h
deleted file mode 100644
index 3c6e565ff9e75..0000000000000
--- a/contrib/bind/include/isc/ctl.h
+++ /dev/null
@@ -1,104 +0,0 @@
-#ifndef ISC_CTL_H
-#define ISC_CTL_H
-
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: ctl.h,v 8.9 1999/08/08 20:16:45 vixie Exp $
- */
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <isc/eventlib.h>
-
-/* Macros. */
-
-#define	CTL_MORE	0x0001	/* More will be / should be sent. */
-#define	CTL_EXIT	0x0002	/* Close connection after this. */
-#define	CTL_DATA	0x0004	/* Go into / this is DATA mode. */
-
-/* Types. */
-
-struct ctl_cctx;
-struct ctl_sctx;
-struct ctl_sess;
-struct ctl_verb;
-
-enum ctl_severity { ctl_debug, ctl_warning, ctl_error };
-
-typedef void (*ctl_logfunc)(enum ctl_severity, const char *fmt, ...);
-
-typedef void (*ctl_verbfunc)(struct ctl_sctx *, struct ctl_sess *,
-			     const struct ctl_verb *, const char *rest,
-			     u_int respflags, void *respctx, void *uctx);
-
-typedef void (*ctl_srvrdone)(struct ctl_sctx *, struct ctl_sess *, void *);
-
-typedef void (*ctl_clntdone)(struct ctl_cctx *, void *, const char *, u_int);
-
-struct ctl_verb {
-	const char *	name;
-	ctl_verbfunc	func;
-	const char *	help;
-};
-
-/* General symbols. */
-
-#define	ctl_logger	__ctl_logger
-
-void			ctl_logger(enum ctl_severity, const char *, ...);
-
-/* Client symbols. */
-
-#define	ctl_client	__ctl_client
-#define	ctl_endclient	__ctl_endclient
-#define	ctl_command	__ctl_command
-
-struct ctl_cctx *	ctl_client(evContext, const struct sockaddr *, size_t,
-				   const struct sockaddr *, size_t,
-				   ctl_clntdone, void *,
-				   u_int, ctl_logfunc);
-void			ctl_endclient(struct ctl_cctx *);
-int			ctl_command(struct ctl_cctx *, const char *, size_t,
-				    ctl_clntdone, void *);
-
-/* Server symbols. */
-
-#define	ctl_server	__ctl_server
-#define	ctl_endserver	__ctl_endserver
-#define	ctl_response	__ctl_response
-#define	ctl_sendhelp	__ctl_sendhelp
-#define ctl_getcsctx	__ctl_getcsctx
-#define ctl_setcsctx	__ctl_setcsctx
-
-struct ctl_sctx *	ctl_server(evContext, const struct sockaddr *, size_t,
-				   const struct ctl_verb *,
-				   u_int, u_int,
-				   u_int, int, int,
-				   ctl_logfunc, void *);
-void			ctl_endserver(struct ctl_sctx *);
-void			ctl_response(struct ctl_sess *, u_int,
-				     const char *, u_int, void *,
-				     ctl_srvrdone, void *,
-				     const char *, size_t);
-void			ctl_sendhelp(struct ctl_sess *, u_int);
-void *			ctl_getcsctx(struct ctl_sess *);
-void *			ctl_setcsctx(struct ctl_sess *, void *);
-
-#endif /*ISC_CTL_H*/
diff --git a/contrib/bind/include/isc/dst.h b/contrib/bind/include/isc/dst.h
deleted file mode 100644
index 9e68a103a7c15..0000000000000
--- a/contrib/bind/include/isc/dst.h
+++ /dev/null
@@ -1,141 +0,0 @@
-#ifndef DST_H
-#define DST_H
-
-#ifndef HAS_DST_KEY
-typedef struct dst_key {
-	char	*dk_key_name;   /* name of the key */
-	int	dk_key_size;    /* this is the size of the key in bits */
-	int	dk_proto;       /* what protocols this key can be used for */
-	int	dk_alg;         /* algorithm number from key record */
-	u_int32_t dk_flags;     /* and the flags of the public key */
-	u_int16_t dk_id;        /* identifier of the key */
-} DST_KEY;
-#endif /* HAS_DST_KEY */
-
-/* 
- * DST Crypto API defintions 
- */
-void     dst_init(void);
-int      dst_check_algorithm(const int);
-
-int dst_sign_data(const int mode,	 /* specifies INIT/UPDATE/FINAL/ALL */
-		  DST_KEY *in_key,	 /* the key to use */
-		  void **context,	 /* pointer to state structure */
-		  const u_char *data,	 /* data to be signed */
-		  const int len,	 /* length of input data */
-		  u_char *signature,	 /* buffer to write signature to */
-		  const int sig_len);	 /* size of output buffer */
-
-int dst_verify_data(const int mode,	 /* specifies INIT/UPDATE/FINAL/ALL */
-		    DST_KEY *in_key,	 /* the key to use */
-		    void **context,	 /* pointer to state structure */
-		    const u_char *data,  /* data to be verified */
-		    const int len,	 /* length of input data */
-		    const u_char *signature,/* buffer containing signature */
-		    const int sig_len);	 /* length of signature */
-
-
-DST_KEY *dst_read_key(const char *in_name,   /* name of key */
-		      const u_int16_t in_id, /* key tag identifier */
-		      const int in_alg,      /* key algorithm */
-		      const int key_type);   /* Private/PublicKey wanted*/
-
-int      dst_write_key(const DST_KEY *key,  /* key to write out */
-		       const int key_type); /* Public/Private */
-
-DST_KEY *dst_dnskey_to_key(const char *in_name,	/* KEY record name */
-			   const u_char *key,	/* KEY RDATA */
-			   const int len);	/* size of input buffer*/
-
-
-int      dst_key_to_dnskey(const DST_KEY *key,	/* key to translate */
-			   u_char *out_storage,	/* output buffer */
-			   const int out_len);	/* size of out_storage*/
-
-
-DST_KEY *dst_buffer_to_key(const char *key_name,  /* name of the key */
-			   const int alg,	  /* algorithm */
-			   const int flags,	  /* dns flags */
-			   const int protocol,	  /* dns protocol */
-			   const u_char *key_buf, /* key in dns wire fmt */
-			   const int key_len);	  /* size of key */
-
-
-int     dst_key_to_buffer(DST_KEY *key, u_char *out_buff, int buf_len);
-
-DST_KEY *dst_generate_key(const char *name,    /* name of new key */
-			  const int alg,       /* key algorithm to generate */
-			  const int bits,      /* size of new key */
-			  const int exp,       /* alg dependent parameter*/
-			  const int flags,     /* key DNS flags */
-			  const int protocol); /* key DNS protocol */
-
-DST_KEY *dst_free_key(DST_KEY *f_key);
-int      dst_compare_keys(const DST_KEY *key1, const DST_KEY *key2);
-
-int	dst_sig_size(DST_KEY *key);
-
-int     dst_random(const int mode, int wanted, u_char *outran);
-
-
-/* support for dns key tags/ids */
-u_int16_t dst_s_dns_key_id(const u_char *dns_key_rdata, const int rdata_len);
-u_int16_t dst_s_id_calc(const u_char *key_data, const int key_len);
-
-/* Used by callers as well as by the library.  */
-#define RAW_KEY_SIZE    8192        /* large enough to store any key */
-
-/* DST_API control flags */
-/* These are used used in functions dst_sign_data and dst_verify_data */
-#define SIG_MODE_INIT		1  /* initalize digest */
-#define SIG_MODE_UPDATE		2  /* add data to digest */
-#define SIG_MODE_FINAL		4  /* generate/verify signature */
-#define SIG_MODE_ALL		(SIG_MODE_INIT|SIG_MODE_UPDATE|SIG_MODE_FINAL)
-
-/* Flags for dst_read_private_key()  */
-#define DST_FORCE_READ		0x1000000
-#define DST_CAN_SIGN		0x010F
-#define DST_NO_AUTHEN		0x8000
-#define DST_EXTEND_FLAG         0x1000
-#define DST_STANDARD		0
-#define DST_PRIVATE             0x2000000
-#define DST_PUBLIC              0x4000000
-#define DST_RAND_SEMI           1
-#define DST_RAND_STD            2
-#define DST_RAND_KEY            3
-#define DST_RAND_DSS            4
-
-
-/* DST algorithm codes */
-#define KEY_RSA			1
-#define KEY_DH			2
-#define KEY_DSA			3
-#define KEY_PRIVATE		254
-#define KEY_EXPAND		255
-#define KEY_HMAC_MD5		157
-#define KEY_HMAC_SHA1		158
-#define UNKNOWN_KEYALG		0
-#define DST_MAX_ALGS            KEY_HMAC_SHA1
-
-/* DST constants to locations in KEY record  changes in new KEY record */
-#define DST_FLAGS_SIZE		2
-#define DST_KEY_PROT		2
-#define DST_KEY_ALG		3
-#define DST_EXT_FLAG            4
-#define DST_KEY_START		4
-
-#ifndef SIGN_F_NOKEY 
-#define SIGN_F_NOKEY		0xC000
-#endif
-
-/* error codes from dst routines */
-#define SIGN_INIT_FAILURE	(-23)
-#define SIGN_UPDATE_FAILURE	(-24)
-#define SIGN_FINAL_FAILURE	(-25)
-#define VERIFY_INIT_FAILURE	(-26)
-#define VERIFY_UPDATE_FAILURE	(-27)
-#define VERIFY_FINAL_FAILURE	(-28)
-#define MISSING_KEY_OR_SIGNATURE (-30)
-#define UNSUPPORTED_KEYALG	(-31)
-
-#endif /* DST_H */
diff --git a/contrib/bind/include/isc/eventlib.h b/contrib/bind/include/isc/eventlib.h
deleted file mode 100644
index 6b9b077f5a939..0000000000000
--- a/contrib/bind/include/isc/eventlib.h
+++ /dev/null
@@ -1,196 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* eventlib.h - exported interfaces for eventlib
- * vix 09sep95 [initial]
- *
- * $Id: eventlib.h,v 1.22 1999/08/18 22:09:04 vixie Exp $
- */
-
-#ifndef _EVENTLIB_H
-#define _EVENTLIB_H
-
-#include <sys/types.h>
-#include <sys/uio.h>
-#include <sys/time.h>
-#include <stdio.h>
-
-#ifndef __P
-# define __EVENTLIB_P_DEFINED
-# ifdef __STDC__
-#  define __P(x) x
-# else
-#  define __P(x) ()
-# endif
-#endif
-
-/* In the absence of branded types... */
-typedef struct { void *opaque; } evConnID;
-typedef struct { void *opaque; } evFileID;
-typedef struct { void *opaque; } evStreamID;
-typedef struct { void *opaque; } evTimerID;
-typedef struct { void *opaque; } evWaitID;
-typedef struct { void *opaque; } evContext;
-typedef struct { void *opaque; } evEvent;
-
-#define	evInitID(id) ((id)->opaque = NULL)
-#define	evTestID(id) ((id).opaque != NULL)
-
-typedef void (*evConnFunc)__P((evContext ctx, void *uap, int fd,
-			       const void *la, int lalen,
-			       const void *ra, int ralen));
-typedef void (*evFileFunc)__P((evContext ctx, void *uap, int fd, int evmask));
-typedef	void (*evStreamFunc)__P((evContext ctx, void *uap, int fd, int bytes));
-typedef void (*evTimerFunc)__P((evContext ctx, void *uap,
-				struct timespec due, struct timespec inter));
-typedef	void (*evWaitFunc)__P((evContext ctx, void *uap, const void *tag));
-
-typedef	struct { unsigned char mask[256/8]; } evByteMask;
-#define	EV_BYTEMASK_BYTE(b) ((b) / 8)
-#define	EV_BYTEMASK_MASK(b) (1 << ((b) % 8))
-#define	EV_BYTEMASK_SET(bm, b) \
-	((bm).mask[EV_BYTEMASK_BYTE(b)] |= EV_BYTEMASK_MASK(b))
-#define	EV_BYTEMASK_CLR(bm, b) \
-	((bm).mask[EV_BYTEMASK_BYTE(b)] &= ~EV_BYTEMASK_MASK(b))
-#define	EV_BYTEMASK_TST(bm, b) \
-	((bm).mask[EV_BYTEMASK_BYTE(b)] & EV_BYTEMASK_MASK(b))
-
-#define	EV_POLL		1
-#define	EV_WAIT		2
-#define	EV_NULL		4
-
-#define	EV_READ		1
-#define	EV_WRITE	2
-#define	EV_EXCEPT	4
-
-/* eventlib.c */
-#define evCreate	__evCreate
-#define evSetDebug	__evSetDebug
-#define evDestroy	__evDestroy
-#define evGetNext	__evGetNext
-#define evDispatch	__evDispatch
-#define evDrop		__evDrop
-#define evMainLoop	__evMainLoop
-#define evHighestFD	__evHighestFD
-
-int  evCreate __P((evContext *ctx));
-void evSetDebug __P((evContext ctx, int lev, FILE *out));
-int  evDestroy __P((evContext ctx));
-int  evGetNext __P((evContext ctx, evEvent *ev, int options));
-int  evDispatch __P((evContext ctx, evEvent ev));
-void evDrop __P((evContext ctx, evEvent ev));
-int  evMainLoop __P((evContext ctx));
-int  evHighestFD __P((evContext ctx));
-
-/* ev_connects.c */
-#define evListen	__evListen
-#define evConnect	__evConnect
-#define evCancelConn	__evCancelConn
-#define evHold		__evHold
-#define evUnhold	__evUnhold
-#define evTryAccept	__evTryAccept
-
-int evListen __P((evContext ctx, int fd, int maxconn,
-		  evConnFunc func, void *uap, evConnID *id));
-int evConnect __P((evContext ctx, int fd, void *ra, int ralen,
-		   evConnFunc func, void *uap, evConnID *id));
-int evCancelConn __P((evContext ctx, evConnID id));
-int evHold __P((evContext, evConnID));
-int evUnhold __P((evContext, evConnID));
-int evTryAccept __P((evContext, evConnID, int *));
-
-/* ev_files.c */
-#define evSelectFD	__evSelectFD
-#define evDeselectFD	__evDeselectFD
-
-int evSelectFD __P((evContext ctx, int fd, int eventmask,
-		    evFileFunc func, void *uap, evFileID *id));
-int evDeselectFD __P((evContext ctx, evFileID id));
-
-/* ev_streams.c */
-#define evConsIovec	__evConsIovec
-#define evWrite		__evWrite
-#define evRead		__evRead
-#define evTimeRW	__evTimeRW
-#define evUntimeRW	__evUntimeRW
-#define	evCancelRW	__evCancelRW
-
-struct iovec evConsIovec __P((void *buf, size_t cnt));
-int evWrite __P((evContext ctx, int fd, const struct iovec *iov, int cnt,
-		 evStreamFunc func, void *uap, evStreamID *id));
-int evRead __P((evContext ctx, int fd, const struct iovec *iov, int cnt,
-		evStreamFunc func, void *uap, evStreamID *id));
-int evTimeRW __P((evContext ctx, evStreamID id, evTimerID timer));
-int evUntimeRW __P((evContext ctx, evStreamID id));
-int evCancelRW __P((evContext ctx, evStreamID id));
-
-/* ev_timers.c */
-#define evConsTime	__evConsTime
-#define evAddTime	__evAddTime
-#define evSubTime	__evSubTime
-#define evCmpTime	__evCmpTime
-#define	evTimeSpec	__evTimeSpec
-#define	evTimeVal	__evTimeVal
-
-#define evNowTime		__evNowTime
-#define evLastEventTime		__evLastEventTime
-#define evSetTimer		__evSetTimer
-#define evClearTimer		__evClearTimer
-#define evResetTimer		__evResetTimer
-#define evSetIdleTimer		__evSetIdleTimer
-#define evClearIdleTimer	__evClearIdleTimer
-#define evResetIdleTimer	__evResetIdleTimer
-#define evTouchIdleTimer	__evTouchIdleTimer
-
-struct timespec evConsTime __P((time_t sec, long nsec));
-struct timespec evAddTime __P((struct timespec add1, struct timespec add2));
-struct timespec evSubTime __P((struct timespec minu, struct timespec subtra));
-struct timespec evNowTime __P((void));
-struct timespec evLastEventTime __P((evContext));
-struct timespec evTimeSpec __P((struct timeval));
-struct timeval evTimeVal __P((struct timespec));
-int evCmpTime __P((struct timespec a, struct timespec b));
-int evSetTimer __P((evContext ctx, evTimerFunc func, void *uap,
-		    struct timespec due, struct timespec inter,
-		    evTimerID *id));
-int evClearTimer __P((evContext ctx, evTimerID id));
-int evResetTimer __P((evContext, evTimerID, evTimerFunc, void *,
-		      struct timespec, struct timespec));
-int evSetIdleTimer __P((evContext, evTimerFunc, void *, struct timespec,
-			evTimerID *));
-int evClearIdleTimer __P((evContext, evTimerID));
-int evResetIdleTimer __P((evContext, evTimerID, evTimerFunc, void *,
-			  struct timespec));
-int evTouchIdleTimer __P((evContext, evTimerID));
-
-/* ev_waits.c */
-#define evWaitFor	__evWaitFor
-#define evDo		__evDo
-#define evUnwait	__evUnwait
-#define evDefer		__evDefer
-
-int evWaitFor __P((evContext ctx, const void *tag, evWaitFunc func, void *uap,
-		   evWaitID *id));
-int evDo __P((evContext ctx, const void *tag));
-int evUnwait __P((evContext ctx, evWaitID id));
-int evDefer __P((evContext, evWaitFunc, void *));
-
-#ifdef __EVENTLIB_P_DEFINED
-# undef __P
-#endif
-
-#endif /*_EVENTLIB_H*/
diff --git a/contrib/bind/include/isc/heap.h b/contrib/bind/include/isc/heap.h
deleted file mode 100644
index 45c867c9d1c75..0000000000000
--- a/contrib/bind/include/isc/heap.h
+++ /dev/null
@@ -1,47 +0,0 @@
-/*
- * Copyright (c) 1997,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-typedef int (*heap_higher_priority_func)(void *, void *);
-typedef void (*heap_index_func)(void *, int);
-typedef void (*heap_for_each_func)(void *, void *);
-
-typedef struct heap_context {
-	int array_size;
-	int array_size_increment;
-	int heap_size;
-	void **heap;
-	heap_higher_priority_func higher_priority;
-	heap_index_func index;
-} *heap_context;
-
-#define heap_new	__heap_new
-#define heap_free	__heap_free
-#define heap_insert	__heap_insert
-#define heap_delete	__heap_delete
-#define heap_increased	__heap_increased
-#define heap_decreased	__heap_decreased
-#define heap_element	__heap_element
-#define heap_for_each	__heap_for_each
-
-heap_context	heap_new(heap_higher_priority_func, heap_index_func, int);
-int		heap_free(heap_context);
-int		heap_insert(heap_context, void *);
-int		heap_delete(heap_context, int);
-int		heap_increased(heap_context, int);
-int		heap_decreased(heap_context, int);
-void *		heap_element(heap_context, int);
-int		heap_for_each(heap_context, heap_for_each_func, void *);
diff --git a/contrib/bind/include/isc/irpmarshall.h b/contrib/bind/include/isc/irpmarshall.h
deleted file mode 100644
index d8afe325b99e5..0000000000000
--- a/contrib/bind/include/isc/irpmarshall.h
+++ /dev/null
@@ -1,115 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: irpmarshall.h,v 8.1 1999/01/18 07:46:47 vixie Exp $
- */
-
-#ifndef _IRPMARSHALL_H_INCLUDED
-#define _IRPMARSHALL_H_INCLUDED
-
-/* Hide function names */
-#define irp_marshall_gr __irp_marshall_gr
-#define irp_marshall_ho __irp_marshall_ho
-#define irp_marshall_ne __irp_marshall_ne
-#define irp_marshall_ng __irp_marshall_ng
-#define irp_marshall_nw __irp_marshall_nw
-#define irp_marshall_pr __irp_marshall_pr
-#define irp_marshall_pw __irp_marshall_pw
-#define irp_marshall_sv __irp_marshall_sv
-#define irp_unmarshall_gr __irp_unmarshall_gr
-#define irp_unmarshall_ho __irp_unmarshall_ho
-#define irp_unmarshall_ne __irp_unmarshall_ne
-#define irp_unmarshall_ng __irp_unmarshall_ng
-#define irp_unmarshall_nw __irp_unmarshall_nw
-#define irp_unmarshall_pr __irp_unmarshall_pr
-#define irp_unmarshall_pw __irp_unmarshall_pw
-#define irp_unmarshall_sv __irp_unmarshall_sv
-
-#define MAXPADDRSIZE (sizeof "255.255.255.255" + 1)
-#define ADDR_T_STR(x) (x == AF_INET ? "AF_INET" :\
-		       (x == AF_INET6 ? "AF_INET6" : "UNKNOWN"))
-
-/* See comment below on usage */
-int irp_marshall_pw(const struct passwd *pw, char **buffer, size_t *len);
-int irp_unmarshall_pw(struct passwd *pw, char *buffer);
-int irp_marshall_gr(const struct group *gr, char **buffer, size_t *len);
-int irp_unmarshall_gr(struct group *gr, char *buffer);
-int irp_marshall_sv(const struct servent *sv, char **buffer, size_t *len);
-int irp_unmarshall_sv(struct servent *sv, char *buffer);
-int irp_marshall_pr(struct protoent *pr, char **buffer, size_t *len);
-int irp_unmarshall_pr(struct protoent *pr, char *buffer);
-int irp_marshall_ho(struct hostent *ho, char **buffer, size_t *len);
-int irp_unmarshall_ho(struct hostent *ho, char *buffer);
-int irp_marshall_ng(const char *host, const char *user, const char *domain,
-		    char **buffer, size_t *len);
-int irp_unmarshall_ng(char **host, char **user, char **domain, char *buffer);
-int irp_marshall_nw(struct nwent *ne, char **buffer, size_t *len);
-int irp_unmarshall_nw(struct nwent *ne, char *buffer);
-int irp_marshall_ne(struct netent *ne, char **buffer, size_t *len);
-int irp_unmarshall_ne(struct netent *ne, char *buffer);
-
-/*
- * Functions to marshall and unmarshall various system data structures. We
- * use a printable ascii format that is as close to various system config
- * files as reasonable (e.g. /etc/passwd format).
- *
- * We are not forgiving with unmarhsalling misformatted buffers. In
- * particular whitespace in fields is not ignored. So a formatted password
- * entry "brister  :1364:100:...." will yield a username of "brister   "
- *
- * We potentially do a lot of mallocs to fill fields that are of type
- * (char **) like a hostent h_addr field. Building (for example) the
- * h_addr field and its associated addresses all in one buffer is
- * certainly possible, but not done here.
- *
- * The following description is true for all the marshalling functions:
- *
- */
-
-/* int irp_marshall_XX(struct yyyy *XX, char **buffer, size_t *len);
- *
- * The argument XX (of type struct passwd for example) is marshalled in the
- * buffer pointed at by *BUFFER, which is of length *LEN. Returns 0
- * on success and -1 on failure. Failure will occur if *LEN is
- * smaller than needed.
- *
- * If BUFFER is NULL, then *LEN is set to the size of the buffer
- * needed to marshall the data and no marshalling is actually done.
- *
- * If *BUFFER is NULL, then a buffer large enough will be allocated
- * with memget() and the size allocated will be stored in *LEN. An extra 2
- * bytes will be allocated for the client to append CRLF if wanted. The
- * value of *LEN will include these two bytes.
- *
- * All the marshalling functions produce a buffer with the fields
- * separated by colons (except for the hostent marshalling, which uses '@'
- * to separate fields). Fields that have multiple subfields (like the
- * gr_mem field in struct group) have their subparts separated by
- * commas.
- */
-
-/*
- * int irp_unmarshall_XX(struct YYYYY *XX, char *buffer);
- *
- * The unmashalling functions break apart the buffer and store the
- * values in the struct pointed to by XX. All pointer values inside
- * XX are allocated with malloc. All arrays of pointers have a NULL
- * as the last element.
- */
-
-#endif
diff --git a/contrib/bind/include/isc/list.h b/contrib/bind/include/isc/list.h
deleted file mode 100644
index febfbf88ac86f..0000000000000
--- a/contrib/bind/include/isc/list.h
+++ /dev/null
@@ -1,102 +0,0 @@
-/*
- * Copyright (c) 1997,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef LIST_H
-#define LIST_H 1
-
-#define LIST(type) struct { type *head, *tail; }
-#define INIT_LIST(list) \
-	do { (list).head = NULL; (list).tail = NULL; } while (0)
-
-#define LINK(type) struct { type *prev, *next; }
-#define INIT_LINK(elt, link) \
-	do { \
-		(elt)->link.prev = (void *)(-1); \
-		(elt)->link.next = (void *)(-1); \
-	} while (0)
-#define LINKED(elt, link) ((elt)->link.prev != (void *)(-1))
-
-#define HEAD(list) ((list).head)
-#define TAIL(list) ((list).tail)
-#define EMPTY(list) ((list).head == NULL)
-
-#define PREPEND(list, elt, link) \
-	do { \
-		if ((list).head != NULL) \
-			(list).head->link.prev = (elt); \
-		else \
-			(list).tail = (elt); \
-		(elt)->link.prev = NULL; \
-		(elt)->link.next = (list).head; \
-		(list).head = (elt); \
-	} while (0)
-
-#define APPEND(list, elt, link) \
-	do { \
-		if ((list).tail != NULL) \
-			(list).tail->link.next = (elt); \
-		else \
-			(list).head = (elt); \
-		(elt)->link.prev = (list).tail; \
-		(elt)->link.next = NULL; \
-		(list).tail = (elt); \
-	} while (0)
-
-#define UNLINK(list, elt, link) \
-	do { \
-		if ((elt)->link.next != NULL) \
-			(elt)->link.next->link.prev = (elt)->link.prev; \
-		else \
-			(list).tail = (elt)->link.prev; \
-		if ((elt)->link.prev != NULL) \
-			(elt)->link.prev->link.next = (elt)->link.next; \
-		else \
-			(list).head = (elt)->link.next; \
-		INIT_LINK(elt, link); \
-	} while (0)
-
-#define PREV(elt, link) ((elt)->link.prev)
-#define NEXT(elt, link) ((elt)->link.next)
-
-#define INSERT_BEFORE(list, before, elt, link) \
-	do { \
-		if ((before)->link.prev == NULL) \
-			PREPEND(list, elt, link); \
-		else { \
-			(elt)->link.prev = (before)->link.prev; \
-			(before)->link.prev = (elt); \
-			(elt)->link.prev->link.next = (elt); \
-			(elt)->link.next = (before); \
-		} \
-	} while (0)
-
-#define INSERT_AFTER(list, after, elt, link) \
-	do { \
-		if ((after)->link.next == NULL) \
-			APPEND(list, elt, link); \
-		else { \
-			(elt)->link.next = (after)->link.next; \
-			(after)->link.next = (elt); \
-			(elt)->link.next->link.prev = (elt); \
-			(elt)->link.prev = (after); \
-		} \
-	} while (0)
-
-#define ENQUEUE(list, elt, link) APPEND(list, elt, link)
-#define DEQUEUE(list, elt, link) UNLINK(list, elt, link)
-
-#endif /* LIST_H */
diff --git a/contrib/bind/include/isc/logging.h b/contrib/bind/include/isc/logging.h
deleted file mode 100644
index 3d3d3132a09eb..0000000000000
--- a/contrib/bind/include/isc/logging.h
+++ /dev/null
@@ -1,102 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef LOGGING_H
-#define LOGGING_H
-
-#include <sys/types.h>
-#include <stdio.h>
-#include <stdarg.h>
-#include <unistd.h>
-
-#define log_critical		(-5)
-#define log_error   		(-4)
-#define log_warning 		(-3)
-#define log_notice  		(-2)
-#define log_info  		(-1)
-#define log_debug(level)	(level)
-
-typedef enum { log_syslog, log_file, log_null } log_channel_type;
-
-#define LOG_MAX_VERSIONS 99
-
-#define LOG_CLOSE_STREAM		0x0001
-#define LOG_TIMESTAMP			0x0002
-#define LOG_TRUNCATE			0x0004
-#define LOG_USE_CONTEXT_LEVEL		0x0008
-#define LOG_PRINT_LEVEL			0x0010
-#define LOG_REQUIRE_DEBUG		0x0020
-#define LOG_CHANNEL_BROKEN		0x0040
-#define LOG_PRINT_CATEGORY		0x0080
-#define LOG_CHANNEL_OFF			0x0100
-
-typedef struct log_context *log_context;
-typedef struct log_channel *log_channel;
-
-#define LOG_OPTION_DEBUG		0x01
-#define LOG_OPTION_LEVEL		0x02
-
-#define log_open_stream		__log_open_stream
-#define log_close_stream	__log_close_stream
-#define log_get_stream		__log_get_stream
-#define log_get_filename	__log_get_filename
-#define log_check_channel	__log_check_channel
-#define log_check		__log_check
-#define log_vwrite		__log_vwrite
-#define log_write		__log_write
-#define log_new_context		__log_new_context
-#define log_free_context	__log_free_context
-#define log_add_channel		__log_add_channel
-#define log_remove_channel	__log_remove_channel
-#define log_option		__log_option
-#define log_category_is_active	__log_category_is_active
-#define log_new_syslog_channel	__log_new_syslog_channel
-#define log_new_file_channel	__log_new_file_channel
-#define log_set_file_owner	__log_set_file_owner
-#define log_new_null_channel	__log_new_null_channel
-#define log_inc_references	__log_inc_references
-#define log_dec_references	__log_dec_references
-#define log_get_channel_type	__log_get_channel_type
-#define log_free_channel	__log_free_channel
-
-FILE *			log_open_stream(log_channel);
-int			log_close_stream(log_channel);
-FILE *			log_get_stream(log_channel);
-char *			log_get_filename(log_channel);
-int			log_check_channel(log_context, int, log_channel);
-int			log_check(log_context, int, int);
-void			log_vwrite(log_context, int, int, const char *, 
-				   va_list args);
-void			log_write(log_context, int, int, const char *, ...);
-int			log_new_context(int, char **, log_context *);
-void			log_free_context(log_context);
-int			log_add_channel(log_context, int, log_channel);
-int			log_remove_channel(log_context, int, log_channel);
-int			log_option(log_context, int, int);
-int			log_category_is_active(log_context, int);
-log_channel		log_new_syslog_channel(unsigned int, int, int);
-log_channel		log_new_file_channel(unsigned int, int, char *,
-					     FILE *, unsigned int,
-					     unsigned long);
-int			log_set_file_owner(log_channel, uid_t, gid_t);
-log_channel		log_new_null_channel(void);
-int			log_inc_references(log_channel);
-int			log_dec_references(log_channel);
-log_channel_type	log_get_channel_type(log_channel);
-int			log_free_channel(log_channel);
-
-#endif /* !LOGGING_H */
diff --git a/contrib/bind/include/isc/memcluster.h b/contrib/bind/include/isc/memcluster.h
deleted file mode 100644
index b6f4191fd5caf..0000000000000
--- a/contrib/bind/include/isc/memcluster.h
+++ /dev/null
@@ -1,47 +0,0 @@
-/*
- * Copyright (c) 1997,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef MEMCLUSTER_H
-#define MEMCLUSTER_H
-
-#include <stdio.h>
-
-#define meminit		__meminit
-#ifdef MEMCLUSTER_DEBUG
-#define memget(s)	__memget_debug(s, __FILE__, __LINE__)
-#define memput(p, s)	__memput_debug(p, s, __FILE__, __LINE__)
-#else /*MEMCLUSTER_DEBUG*/
-#ifdef MEMCLUSTER_RECORD
-#define memget(s)	__memget_record(s, __FILE__, __LINE__)
-#define memput(p, s)	__memput_record(p, s, __FILE__, __LINE__)
-#else /*MEMCLUSTER_RECORD*/
-#define memget		__memget
-#define memput		__memput
-#endif /*MEMCLUSTER_RECORD*/
-#endif /*MEMCLUSTER_DEBUG*/
-#define memstats	__memstats
-
-int	meminit(size_t, size_t);
-void *	__memget(size_t);
-void 	__memput(void *, size_t);
-void *	__memget_debug(size_t, const char *, int);
-void 	__memput_debug(void *, size_t, const char *, int);
-void *	__memget_record(size_t, const char *, int);
-void 	__memput_record(void *, size_t, const char *, int);
-void 	memstats(FILE *);
-
-#endif /* MEMCLUSTER_H */
diff --git a/contrib/bind/include/isc/misc.h b/contrib/bind/include/isc/misc.h
deleted file mode 100644
index d13e1d30ad239..0000000000000
--- a/contrib/bind/include/isc/misc.h
+++ /dev/null
@@ -1,29 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: misc.h,v 8.2 1999/01/08 19:23:10 vixie Exp $
- */
-
-#ifndef _ISC_MISC_H
-#define _ISC_MISC_H
-
-#define	bitncmp		__bitncmp
-
-extern int		bitncmp(const void *l, const void *r, int n);
-
-#endif /*_ISC_MISC_H*/
diff --git a/contrib/bind/include/isc/tree.h b/contrib/bind/include/isc/tree.h
deleted file mode 100644
index 24e2a10f72f5e..0000000000000
--- a/contrib/bind/include/isc/tree.h
+++ /dev/null
@@ -1,48 +0,0 @@
-/* tree.h - declare structures used by tree library
- *
- * vix 22jan93 [revisited; uses RCS, ANSI, POSIX; has bug fixes]
- * vix 27jun86 [broken out of tree.c]
- *
- * $Id: tree.h,v 8.2 1996/10/25 18:11:03 vixie Exp $
- */
-
-
-#ifndef	_TREE_H_INCLUDED
-#define	_TREE_H_INCLUDED
-
-
-#ifndef __P
-# if defined(__STDC__) || defined(__GNUC__)
-#  define __P(x) x
-# else
-#  define __P(x) ()
-# endif
-#endif
-
-/*
- * tree_t is our package-specific anonymous pointer.
- */
-#if defined(__STDC__) || defined(__GNUC__)
-typedef	void *tree_t;
-#else
-typedef	char *tree_t;
-#endif
-
-
-typedef	struct tree_s {
-		tree_t		data;
-		struct tree_s	*left, *right;
-		short		bal;
-	}
-	tree;
-
-
-void	tree_init	__P((tree **));
-tree_t	tree_srch	__P((tree **, int (*)(), tree_t));
-tree_t	tree_add	__P((tree **, int (*)(), tree_t, void (*)()));
-int	tree_delete	__P((tree **, int (*)(), tree_t, void (*)()));
-int	tree_trav	__P((tree **, int (*)()));
-void	tree_mung	__P((tree **, void (*)()));
-
-
-#endif	/* _TREE_H_INCLUDED */
diff --git a/contrib/bind/include/netdb.h b/contrib/bind/include/netdb.h
deleted file mode 100644
index 4ffefada1436e..0000000000000
--- a/contrib/bind/include/netdb.h
+++ /dev/null
@@ -1,474 +0,0 @@
-/*
- * ++Copyright++ 1980, 1983, 1988, 1993
- * -
- * Copyright (c) 1980, 1983, 1988, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
- * All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    This product includes software developed by WIDE Project and
- *    its contributors.
- * 4. Neither the name of the project nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * --Copyright--
- */
-
-/*
- *      @(#)netdb.h	8.1 (Berkeley) 6/2/93
- *	$Id: netdb.h,v 8.15 1999/09/18 06:23:46 vixie Exp $
- */
-
-#ifndef _NETDB_H_
-#define _NETDB_H_
-
-#include <sys/param.h>
-#if (!defined(BSD)) || (BSD < 199306)
-# include <sys/bitypes.h>
-#endif
-#include <sys/cdefs.h>
-#include <netinet/in.h>
-#include <stdio.h>
-
-#ifndef _PATH_HEQUIV
-#define _PATH_HEQUIV	"/etc/hosts.equiv"
-#endif
-#ifndef _PATH_HOSTS
-#define	_PATH_HOSTS	"/etc/hosts"
-#endif
-#ifndef _PATH_NETWORKS
-#define	_PATH_NETWORKS	"/etc/networks"
-#endif
-#ifndef _PATH_PROTOCOLS
-#define	_PATH_PROTOCOLS	"/etc/protocols"
-#endif
-#ifndef _PATH_SERVICES
-#define	_PATH_SERVICES	"/etc/services"
-#endif
-
-#ifdef _REENTRANT
-__BEGIN_DECLS
-extern int * __h_errno __P((void));
-__END_DECLS
-#define	h_errno (*__h_errno())
-#else
-extern int h_errno;
-#endif
-
-/*
- * Structures returned by network data base library.  All addresses are
- * supplied in host order, and returned in network order (suitable for
- * use in system calls).
- */
-struct	hostent {
-	char	*h_name;	/* official name of host */
-	char	**h_aliases;	/* alias list */
-	int	h_addrtype;	/* host address type */
-	int	h_length;	/* length of address */
-	char	**h_addr_list;	/* list of addresses from name server */
-#define	h_addr	h_addr_list[0]	/* address, for backward compatiblity */
-};
-
-/*
- * Assumption here is that a network number
- * fits in an unsigned long -- probably a poor one.
- */
-struct	netent {
-	char		*n_name;	/* official name of net */
-	char		**n_aliases;	/* alias list */
-	int		n_addrtype;	/* net address type */
-	unsigned long	n_net;		/* network # */
-};
-
-struct	servent {
-	char	*s_name;	/* official service name */
-	char	**s_aliases;	/* alias list */
-	int	s_port;		/* port # */
-	char	*s_proto;	/* protocol to use */
-};
-
-struct	protoent {
-	char	*p_name;	/* official protocol name */
-	char	**p_aliases;	/* alias list */
-	int	p_proto;	/* protocol # */
-};
-
-struct	addrinfo {
-	int		ai_flags;	/* AI_PASSIVE, AI_CANONNAME */
-	int		ai_family;	/* PF_xxx */
-	int		ai_socktype;	/* SOCK_xxx */
-	int		ai_protocol;	/* 0 or IPPROTO_xxx for IPv4 and IPv6 */
-	size_t		ai_addrlen;	/* length of ai_addr */
-	char		*ai_canonname;	/* canonical name for hostname */
-	struct sockaddr	*ai_addr; 	/* binary address */
-	struct addrinfo	*ai_next; 	/* next structure in linked list */
-};
-
-/*
- * Error return codes from gethostbyname() and gethostbyaddr()
- * (left in extern int h_errno).
- */
-
-#define	NETDB_INTERNAL	-1	/* see errno */
-#define	NETDB_SUCCESS	0	/* no problem */
-#define	HOST_NOT_FOUND	1 /* Authoritative Answer Host not found */
-#define	TRY_AGAIN	2 /* Non-Authoritive Host not found, or SERVERFAIL */
-#define	NO_RECOVERY	3 /* Non recoverable errors, FORMERR, REFUSED, NOTIMP */
-#define	NO_DATA		4 /* Valid name, no data record of requested type */
-#define	NO_ADDRESS	NO_DATA		/* no address, look for MX record */
-
-/*
- * Error return codes from getaddrinfo()
- */
-
-#define	EAI_ADDRFAMILY	 1	/* address family for hostname not supported */
-#define	EAI_AGAIN	 2	/* temporary failure in name resolution */
-#define	EAI_BADFLAGS	 3	/* invalid value for ai_flags */
-#define	EAI_FAIL	 4	/* non-recoverable failure in name resolution */
-#define	EAI_FAMILY	 5	/* ai_family not supported */
-#define	EAI_MEMORY	 6	/* memory allocation failure */
-#define	EAI_NODATA	 7	/* no address associated with hostname */
-#define	EAI_NONAME	 8	/* hostname nor servname provided, or not known */
-#define	EAI_SERVICE	 9	/* servname not supported for ai_socktype */
-#define	EAI_SOCKTYPE	10	/* ai_socktype not supported */
-#define	EAI_SYSTEM	11	/* system error returned in errno */
-#define EAI_BADHINTS	12
-#define EAI_PROTOCOL	13
-#define EAI_MAX		14
-
-/*
- * Flag values for getaddrinfo()
- */
-#define	AI_PASSIVE	0x00000001
-#define	AI_CANONNAME	0x00000002
-#define AI_NUMERICHOST	0x00000004
-#define	AI_MASK		0x00000007
-
-/*
- * Flag values for getipnodebyname()
- */
-#define AI_V4MAPPED	0x00000008
-#define AI_ALL		0x00000010
-#define AI_ADDRCONFIG	0x00000020
-#define AI_DEFAULT	(AI_V4MAPPED|AI_ADDRCONFIG)
-
-/*
- * Constants for getnameinfo()
- */
-#define	NI_MAXHOST	1025
-#define	NI_MAXSERV	32
-
-/*
- * Flag values for getnameinfo()
- */
-#define	NI_NOFQDN	0x00000001
-#define	NI_NUMERICHOST	0x00000002
-#define	NI_NAMEREQD	0x00000004
-#define	NI_NUMERICSERV	0x00000008
-#define	NI_DGRAM	0x00000010
-
-
-#ifdef _REENTRANT
-#if defined (__hpux) || defined(__osf__)
-#define	_MAXALIASES	35
-#define	_MAXLINELEN	1024
-#define	_MAXADDRS	35
-#define	_HOSTBUFSIZE	(BUFSIZ + 1)
-
-struct hostent_data {
-	struct in_addr	host_addr;
-	char		*h_addr_ptrs[_MAXADDRS + 1];
-	char		hostaddr[_MAXADDRS];
-	char		hostbuf[_HOSTBUFSIZE];
-	char		*host_aliases[_MAXALIASES];
-	char		*host_addrs[2];
-	FILE		*hostf;
-#ifdef __osf__
-	int		svc_gethostflag;
-	int		svc_gethostbind;
-#endif
-#ifdef __hpux
-	short		_nsw_src;
-	short		_flags;
-	char		*current;
-	int		currentlen;
-#endif
-};
-
-struct  netent_data {
-	FILE	*net_fp;
-#ifdef __osf__
-	char	line[_MAXLINELEN];
-#endif
-#ifdef __hpux
-	char	line[_MAXLINELEN+1];
-#endif
-	char	*net_aliases[_MAXALIASES];
-#ifdef __osf__
-	int	_net_stayopen;
-	int	svc_getnetflag;
-#endif
-#ifdef __hpux
-	short	_nsw_src;
-	short	_flags;
-	char	*current;
-	int	currentlen;
-#endif
-};
-
-struct	protoent_data {
-	FILE	*proto_fp;
-#ifdef __osf__
-	char	line[1024];
-#endif
-#ifdef __hpux
-	char	line[_MAXLINELEN+1];
-#endif
-	char	*proto_aliases[_MAXALIASES];
-#ifdef __osf__
-	int	_proto_stayopen;
-	int	svc_getprotoflag;
-#endif
-#ifdef __hpux
-	short	_nsw_src;
-	short	_flags;
-	char	*current;
-	int	currentlen;
-#endif
-};
-
-struct	servent_data {
-	FILE	*serv_fp;
-#ifdef __osf__
-	char	line[_MAXLINELEN];
-#endif
-#ifdef __hpux
-	char	line[_MAXLINELEN+1];
-#endif
-	char	*serv_aliases[_MAXALIASES];
-#ifdef __osf__
-	int	_serv_stayopen;
-	int	svc_getservflag;
-#endif
-#ifdef __hpux
-	short	_nsw_src;
-	short	_flags;
-	char	*current;
-	int	currentlen;
-#endif
-};
-#endif
-#endif
-__BEGIN_DECLS
-void		endhostent __P((void));
-void		endnetent __P((void));
-void		endprotoent __P((void));
-void		endservent __P((void));
-struct hostent	*gethostbyaddr __P((const char *, int, int));
-struct hostent	*gethostbyname __P((const char *));
-struct hostent	*gethostbyname2 __P((const char *, int));
-struct hostent	*gethostent __P((void));
-struct netent	*getnetbyaddr __P((unsigned long, int));
-struct netent	*getnetbyname __P((const char *));
-struct netent	*getnetent __P((void));
-struct protoent	*getprotobyname __P((const char *));
-struct protoent	*getprotobynumber __P((int));
-struct protoent	*getprotoent __P((void));
-struct servent	*getservbyname __P((const char *, const char *));
-struct servent	*getservbyport __P((int, const char *));
-struct servent	*getservent __P((void));
-void		herror __P((const char *));
-const char	*hstrerror __P((int));
-void		sethostent __P((int));
-/* void		sethostfile __P((const char *)); */
-void		setnetent __P((int));
-void		setprotoent __P((int));
-void		setservent __P((int));
-int		getaddrinfo __P((const char *, const char *,
-				 const struct addrinfo *, struct addrinfo **));
-int		getnameinfo __P((const struct sockaddr *, size_t, char *,
-				 size_t, char *, size_t, int));
-void		freeaddrinfo __P((struct addrinfo *));
-char		*gai_strerror __P((int));
-struct hostent  *getipnodebyname __P((const char *, int, int, int *));
-struct hostent	*getipnodebyaddr __P((const void *, size_t, int, int *));
-void		freehostent __P((struct hostent *));
-
-
-#ifdef _REENTRANT
-#if defined(__hpux) || defined(__osf__)
-int		gethostbyaddr_r __P((const char *, int, int, struct hostent *,
-					struct hostent_data *));
-int		gethostbyname_r __P((const char *, struct hostent *, 
-					struct hostent_data *));
-int		gethostent_r __P((struct hostent *, struct hostent_data *));
-int		sethostent_r __P((int, struct hostent_data *));
-#if defined(__hpux)
-int		endhostent_r __P((struct hostent_data *));
-#else
-void		endhostent_r __P((struct hostent_data *));
-#endif
-
-#ifdef __hpux
-int		getnetbyaddr_r __P((int, int,
-				struct netent *, struct netent_data *));
-#else
-int		getnetbyaddr_r __P((long, int,
-				struct netent *, struct netent_data *));
-#endif
-int		getnetbyname_r __P((const char *,
-				struct netent *, struct netent_data *));
-int		getnetent_r __P((struct netent *, struct netent_data *));
-int		setnetent_r __P((int, struct netent_data *));
-#ifdef __hpux
-int		endnetent_r __P((struct netent_data *buffer));
-#else
-void		endnetent_r __P((struct netent_data *buffer));
-#endif
-
-int		getprotobyname_r __P((const char *,
-				struct protoent *, struct protoent_data *));
-int		getprotobynumber_r __P((int,
-				struct protoent *, struct protoent_data *));
-int		getprotoent_r __P((struct protoent *, struct protoent_data *));
-int		setprotoent_r __P((int, struct protoent_data *));
-#ifdef __hpux
-int		endprotoent_r __P((struct protoent_data *));
-#else
-void		endprotoent_r __P((struct protoent_data *));
-#endif
-
-int		getservbyname_r __P((const char *, const char *,
-				struct servent *, struct servent_data *));
-int		getservbyport_r __P((int, const char *,
-				struct servent *, struct servent_data *));
-int		getservent_r __P((struct servent *, struct servent_data *));
-int		setservent_r __P((int, struct servent_data *));
-#ifdef __hpux
-int		endservent_r __P((struct servent_data *));
-#else
-void		endservent_r __P((struct servent_data *));
-#endif
-#endif
-#if defined(sun) || defined(bsdi)
-struct hostent	*gethostbyaddr_r __P((const char *, int, int, struct hostent *,
-					char *, int, int *));
-struct hostent	*gethostbyname_r __P((const char *, struct hostent *,
-					char *, int, int *));
-struct hostent	*gethostent_r __P((struct hostent *, char *, int, int *));
-void		sethostent_r __P((int));
-void		endhostent_r __P((void));
-
-struct netent	*getnetbyname_r __P((const char *, struct netent *,
-					char *, int));
-struct netent	*getnetbyaddr_r __P((long, int, struct netent *,
-					char *, int));
-struct netent	*getnetent_r __P((struct netent *, char *, int));
-void		setnetent_r __P((int));
-void		endnetent_r __P((void));
-
-struct protoent	*getprotobyname_r __P((const char *,
-				struct protoent *, char *, int));
-struct protoent	*getprotobynumber_r __P((int,
-				struct protoent *, char *, int));
-struct protoent	*getprotoent_r __P((struct protoent *, char *, int));
-void		setprotoent_r __P((int));
-void		endprotoent_r __P((void));
-
-struct servent	*getservbyname_r __P((const char *name, const char *,
-					struct servent *, char *, int));
-struct servent	*getservbyport_r __P((int port, const char *,
-					struct servent *, char *, int));
-struct servent	*getservent_r __P((struct servent *, char *, int));
-void		setservent_r __P((int));
-void		endservent_r __P((void));
-
-#endif
-#endif
-__END_DECLS
-
-/* This is nec'y to make this include file properly replace the sun version. */
-#ifdef sun
-#ifdef __GNU_LIBRARY__
-#include <rpc/netdb.h>
-#else
-struct rpcent {
-	char	*r_name;	/* name of server for this rpc program */
-	char	**r_aliases;	/* alias list */
-	int	r_number;	/* rpc program number */
-};
-struct rpcent	*getrpcbyname(), *getrpcbynumber(), *getrpcent();
-#endif /* __GNU_LIBRARY__ */
-#endif /* sun */
-
-#endif /* !_NETDB_H_ */
diff --git a/contrib/bind/include/res_update.h b/contrib/bind/include/res_update.h
deleted file mode 100644
index cbbf9b8c555a8..0000000000000
--- a/contrib/bind/include/res_update.h
+++ /dev/null
@@ -1,65 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium, Inc.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- *	$Id: res_update.h,v 8.1 1999/10/07 08:24:13 vixie Exp $
- */
-
-#ifndef __RES_UPDATE_H
-#define __RES_UPDATE_H
-
-#include <sys/types.h>
-#include <arpa/nameser.h>
-#include <isc/list.h>
-#include <resolv.h>
-
-/*
- * This RR-like structure is particular to UPDATE.
- */
-struct ns_updrec {
-	LINK(struct ns_updrec) r_link, r_glink;
-	ns_sect		r_section;	/* ZONE/PREREQUISITE/UPDATE */
-	char *		r_dname;	/* owner of the RR */
-	ns_class	r_class;	/* class number */
-	ns_type		r_type;		/* type number */
-	u_int32_t	r_ttl;		/* time to live */
-	u_char *	r_data;		/* rdata fields as text string */
-	u_int		r_size;		/* size of r_data field */
-	int		r_opcode;	/* type of operation */
-	/* following fields for private use by the resolver/server routines */
-	struct databuf *r_dp;		/* databuf to process */
-	struct databuf *r_deldp;	/* databuf's deleted/overwritten */
-	u_int		r_zone;		/* zone number on server */
-};
-typedef struct ns_updrec ns_updrec;
-typedef	LIST(ns_updrec)	ns_updque;
-
-#define res_mkupdate		__res_mkupdate
-#define res_update		__res_update
-#define res_mkupdrec		__res_mkupdrec
-#define res_freeupdrec		__res_freeupdrec
-#define res_nmkupdate		__res_nmkupdate
-#define res_nupdate		__res_nupdate
-
-int		res_mkupdate __P((ns_updrec *, u_char *, int));
-int		res_update __P((ns_updrec *));
-ns_updrec *	res_mkupdrec __P((int, const char *, u_int, u_int, u_long));
-void		res_freeupdrec __P((ns_updrec *));
-int		res_nmkupdate __P((res_state, ns_updrec *, u_char *, int));
-int		res_nupdate __P((res_state, ns_updrec *, ns_tsig_key *));
-
-#endif /*__RES_UPDATE_H*/
diff --git a/contrib/bind/include/resolv.h b/contrib/bind/include/resolv.h
deleted file mode 100644
index 414fe081b9255..0000000000000
--- a/contrib/bind/include/resolv.h
+++ /dev/null
@@ -1,407 +0,0 @@
-/*
- * Copyright (c) 1983, 1987, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- *	@(#)resolv.h	8.1 (Berkeley) 6/2/93
- *	$Id: resolv.h,v 8.31 2000/03/30 20:16:50 vixie Exp $
- */
-
-#ifndef _RESOLV_H_
-#define	_RESOLV_H_
-
-#include <sys/param.h>
-#if (!defined(BSD)) || (BSD < 199306)
-# include <sys/bitypes.h>
-#else
-# include <sys/types.h>
-#endif
-#include <sys/cdefs.h>
-#include <stdio.h>
-
-/*
- * Revision information.  This is the release date in YYYYMMDD format.
- * It can change every day so the right thing to do with it is use it
- * in preprocessor commands such as "#if (__RES > 19931104)".  Do not
- * compare for equality; rather, use it to determine whether your resolver
- * is new enough to contain a certain feature.
- */
-
-#define	__RES	19991006
-
-/*
- * This used to be defined in res_query.c, now it's in herror.c.
- * [XXX no it's not.  It's in irs/irs_data.c]
- * It was
- * never extern'd by any *.h file before it was placed here.  For thread
- * aware programs, the last h_errno value set is stored in res->h_errno.
- *
- * XXX:	There doesn't seem to be a good reason for exposing RES_SET_H_ERRNO
- *	(and __h_errno_set) to the public via <resolv.h>.
- * XXX:	__h_errno_set is really part of IRS, not part of the resolver.
- *	If somebody wants to build and use a resolver that doesn't use IRS,
- *	what do they do?  Perhaps something like
- *		#ifdef WANT_IRS
- *		# define RES_SET_H_ERRNO(r,x) __h_errno_set(r,x)
- *		#else
- *		# define RES_SET_H_ERRNO(r,x) (h_errno = (r)->res_h_errno = (x))
- *		#endif
- */
-
-#define RES_SET_H_ERRNO(r,x) __h_errno_set(r,x)
-struct __res_state; /* forward */
-void __h_errno_set(struct __res_state *res, int err);
-
-/*
- * Resolver configuration file.
- * Normally not present, but may contain the address of the
- * inital name server(s) to query and the domain search list.
- */
-
-#ifndef _PATH_RESCONF
-#define _PATH_RESCONF        "/etc/resolv.conf"
-#endif
-
-typedef enum { res_goahead, res_nextns, res_modified, res_done, res_error }
-	res_sendhookact;
-
-typedef res_sendhookact (*res_send_qhook)__P((struct sockaddr_in * const *ns,
-					      const u_char **query,
-					      int *querylen,
-					      u_char *ans,
-					      int anssiz,
-					      int *resplen));
-
-typedef res_sendhookact (*res_send_rhook)__P((const struct sockaddr_in *ns,
-					      const u_char *query,
-					      int querylen,
-					      u_char *ans,
-					      int anssiz,
-					      int *resplen));
-
-struct res_sym {
-	int	number;		/* Identifying number, like T_MX */
-	char *	name;		/* Its symbolic name, like "MX" */
-	char *	humanname;	/* Its fun name, like "mail exchanger" */
-};
-
-/*
- * Global defines and variables for resolver stub.
- */
-#define	MAXNS			3	/* max # name servers we'll track */
-#define	MAXDFLSRCH		3	/* # default domain levels to try */
-#define	MAXDNSRCH		6	/* max # domains in search path */
-#define	LOCALDOMAINPARTS	2	/* min levels in name that is "local" */
-
-#define	RES_TIMEOUT		5	/* min. seconds between retries */
-#define	MAXRESOLVSORT		10	/* number of net to sort on */
-#define	RES_MAXNDOTS		15	/* should reflect bit field size */
-#define	RES_MAXRETRANS		30	/* only for resolv.conf/RES_OPTIONS */
-#define	RES_MAXRETRY		5	/* only for resolv.conf/RES_OPTIONS */
-#define	RES_DFLRETRY		2	/* Default #/tries. */
-#define	RES_MAXTIME		65535	/* Infinity, in milliseconds. */
-
-struct __res_state {
-	int	retrans;	 	/* retransmition time interval */
-	int	retry;			/* number of times to retransmit */
-	u_long	options;		/* option flags - see below. */
-	int	nscount;		/* number of name servers */
-	struct sockaddr_in
-		nsaddr_list[MAXNS];	/* address of name server */
-#define	nsaddr	nsaddr_list[0]		/* for backward compatibility */
-	u_short	id;			/* current message id */
-	char	*dnsrch[MAXDNSRCH+1];	/* components of domain to search */
-	char	defdname[256];		/* default domain (deprecated) */
-	u_long	pfcode;			/* RES_PRF_ flags - see below. */
-	unsigned ndots:4;		/* threshold for initial abs. query */
-	unsigned nsort:4;		/* number of elements in sort_list[] */
-	char	unused[3];
-	struct {
-		struct in_addr	addr;
-		u_int32_t	mask;
-	} sort_list[MAXRESOLVSORT];
-	res_send_qhook qhook;		/* query hook */
-	res_send_rhook rhook;		/* response hook */
-	int	res_h_errno;		/* last one set for this context */
-	int	_vcsock;		/* PRIVATE: for res_send VC i/o */
-	u_int	_flags;			/* PRIVATE: see below */
-	union {
-		char	pad[52];	/* On an i386 this means 512b total. */
-		struct {
-			u_int16_t		nscount;
-			u_int16_t		nstimes[MAXNS];	/* ms. */
-			int			nssocks[MAXNS];
-			struct sockaddr_in	nsaddrs[MAXNS];
-		} _ext;
-	} _u;
-};
-
-typedef struct __res_state *res_state;
-
-/*
- * Resolver flags (used to be discrete per-module statics ints).
- */
-#define	RES_F_VC	0x00000001	/* socket is TCP */
-#define	RES_F_CONN	0x00000002	/* socket is connected */
-
-/* res_findzonecut() options */
-#define	RES_EXHAUSTIVE	0x00000001	/* always do all queries */
-
-/*
- * Resolver options (keep these in synch with res_debug.c, please)
- */
-#define RES_INIT	0x00000001	/* address initialized */
-#define RES_DEBUG	0x00000002	/* print debug messages */
-#define RES_AAONLY	0x00000004	/* authoritative answers only (!IMPL)*/
-#define RES_USEVC	0x00000008	/* use virtual circuit */
-#define RES_PRIMARY	0x00000010	/* query primary server only (!IMPL) */
-#define RES_IGNTC	0x00000020	/* ignore trucation errors */
-#define RES_RECURSE	0x00000040	/* recursion desired */
-#define RES_DEFNAMES	0x00000080	/* use default domain name */
-#define RES_STAYOPEN	0x00000100	/* Keep TCP socket open */
-#define RES_DNSRCH	0x00000200	/* search up local domain tree */
-#define	RES_INSECURE1	0x00000400	/* type 1 security disabled */
-#define	RES_INSECURE2	0x00000800	/* type 2 security disabled */
-#define	RES_NOALIASES	0x00001000	/* shuts off HOSTALIASES feature */
-#define	RES_USE_INET6	0x00002000	/* use/map IPv6 in gethostbyname() */
-#define RES_ROTATE	0x00004000	/* rotate ns list after each query */
-#define	RES_NOCHECKNAME	0x00008000	/* do not check names for sanity. */
-#define	RES_KEEPTSIG	0x00010000	/* do not strip TSIG records */
-#define	RES_BLAST	0x00020000	/* blast all recursive servers */
-
-#define RES_DEFAULT	(RES_RECURSE | RES_DEFNAMES | RES_DNSRCH)
-
-/*
- * Resolver "pfcode" values.  Used by dig.
- */
-#define RES_PRF_STATS	0x00000001
-#define RES_PRF_UPDATE	0x00000002
-#define RES_PRF_CLASS   0x00000004
-#define RES_PRF_CMD	0x00000008
-#define RES_PRF_QUES	0x00000010
-#define RES_PRF_ANS	0x00000020
-#define RES_PRF_AUTH	0x00000040
-#define RES_PRF_ADD	0x00000080
-#define RES_PRF_HEAD1	0x00000100
-#define RES_PRF_HEAD2	0x00000200
-#define RES_PRF_TTLID	0x00000400
-#define RES_PRF_HEADX	0x00000800
-#define RES_PRF_QUERY	0x00001000
-#define RES_PRF_REPLY	0x00002000
-#define RES_PRF_INIT	0x00004000
-/*			0x00008000	*/
-
-/* Things involving an internal (static) resolver context. */
-#ifdef _REENTRANT
-extern struct __res_state *__res_state(void);
-#define _res (*__res_state())
-#else
-#ifndef __BIND_NOSTATIC
-extern struct __res_state _res;
-#endif
-#endif
-
-#ifndef __BIND_NOSTATIC
-#define fp_nquery		__fp_nquery
-#define fp_query		__fp_query
-#define hostalias		__hostalias
-#define p_query			__p_query
-#define res_close		__res_close
-#define res_init		__res_init
-#define res_isourserver		__res_isourserver
-#define res_mkquery		__res_mkquery
-#define res_query		__res_query
-#define res_querydomain		__res_querydomain
-#define res_search		__res_search
-#define res_send		__res_send
-#define res_sendsigned		__res_sendsigned
-
-__BEGIN_DECLS
-void		fp_nquery __P((const u_char *, int, FILE *));
-void		fp_query __P((const u_char *, FILE *));
-const char *	hostalias __P((const char *));
-void		p_query __P((const u_char *));
-void		res_close __P((void));
-int		res_init __P((void));
-int		res_isourserver __P((const struct sockaddr_in *));
-int		res_mkquery __P((int, const char *, int, int, const u_char *,
-				 int, const u_char *, u_char *, int));
-int		res_query __P((const char *, int, int, u_char *, int));
-int		res_querydomain __P((const char *, const char *, int, int,
-				     u_char *, int));
-int		res_search __P((const char *, int, int, u_char *, int));
-int		res_send __P((const u_char *, int, u_char *, int));
-int		res_sendsigned __P((const u_char *, int, ns_tsig_key *,
-				    u_char *, int));
-__END_DECLS
-#endif
-
-#if !defined(SHARED_LIBBIND) || defined(LIB)
-/*
- * If libbind is a shared object (well, DLL anyway)
- * these externs break the linker when resolv.h is 
- * included by a lib client (like named)
- * Make them go away if a client is including this
- *
- */
-extern const struct res_sym __p_key_syms[];
-extern const struct res_sym __p_cert_syms[];
-extern const struct res_sym __p_class_syms[];
-extern const struct res_sym __p_type_syms[];
-extern const struct res_sym __p_rcode_syms[];
-#endif /* SHARED_LIBBIND */
-
-#define b64_ntop		__b64_ntop
-#define b64_pton		__b64_pton
-#define dn_comp			__dn_comp
-#define dn_count_labels		__dn_count_labels
-#define dn_expand		__dn_expand
-#define dn_skipname		__dn_skipname
-#define fp_resstat		__fp_resstat
-#define loc_aton		__loc_aton
-#define loc_ntoa		__loc_ntoa
-#define p_cdname		__p_cdname
-#define p_cdnname		__p_cdnname
-#define p_class			__p_class
-#define p_fqname		__p_fqname
-#define p_fqnname		__p_fqnname
-#define p_option		__p_option
-#define p_secstodate		__p_secstodate
-#define p_section		__p_section
-#define p_time			__p_time
-#define p_type			__p_type
-#define p_rcode			__p_rcode
-#define putlong			__putlong
-#define putshort		__putshort
-#define res_dnok		__res_dnok
-#define res_findzonecut		__res_findzonecut
-#define res_hnok		__res_hnok
-#define res_hostalias		__res_hostalias
-#define res_mailok		__res_mailok
-#define res_nameinquery		__res_nameinquery
-#define res_nclose		__res_nclose
-#define res_ninit		__res_ninit
-#define res_nmkquery		__res_nmkquery
-#define res_npquery		__res_npquery
-#define res_nquery		__res_nquery
-#define res_nquerydomain	__res_nquerydomain
-#define res_nsearch		__res_nsearch
-#define res_nsend		__res_nsend
-#define res_nsendsigned		__res_nsendsigned
-#define res_nisourserver	__res_nisourserver
-#define res_ownok		__res_ownok
-#define res_queriesmatch	__res_queriesmatch
-#define res_randomid		__res_randomid
-#define sym_ntop		__sym_ntop
-#define sym_ntos		__sym_ntos
-#define sym_ston		__sym_ston
-__BEGIN_DECLS
-int		res_hnok __P((const char *));
-int		res_ownok __P((const char *));
-int		res_mailok __P((const char *));
-int		res_dnok __P((const char *));
-int		sym_ston __P((const struct res_sym *, const char *, int *));
-const char *	sym_ntos __P((const struct res_sym *, int, int *));
-const char *	sym_ntop __P((const struct res_sym *, int, int *));
-int		b64_ntop __P((u_char const *, size_t, char *, size_t));
-int		b64_pton __P((char const *, u_char *, size_t));
-int		loc_aton __P((const char *ascii, u_char *binary));
-const char *	loc_ntoa __P((const u_char *binary, char *ascii));
-int		dn_skipname __P((const u_char *, const u_char *));
-void		putlong __P((u_int32_t, u_char *));
-void		putshort __P((u_int16_t, u_char *));
-const char *	p_class __P((int));
-const char *	p_time __P((u_int32_t));
-const char *	p_type __P((int));
-const char *	p_rcode __P((int));
-const u_char *	p_cdnname __P((const u_char *, const u_char *, int, FILE *));
-const u_char *	p_cdname __P((const u_char *, const u_char *, FILE *));
-const u_char *	p_fqnname __P((const u_char *cp, const u_char *msg,
-			       int, char *, int));
-const u_char *	p_fqname __P((const u_char *, const u_char *, FILE *));
-const char *	p_option __P((u_long option));
-char *		p_secstodate __P((u_long));
-int		dn_count_labels __P((const char *));
-int		dn_comp __P((const char *, u_char *, int,
-			     u_char **, u_char **));
-int		dn_expand __P((const u_char *, const u_char *, const u_char *,
-			       char *, int));
-u_int		res_randomid __P((void));
-int		res_nameinquery __P((const char *, int, int,
-				     const u_char *, const u_char *));
-int		res_queriesmatch __P((const u_char *, const u_char *,
-				      const u_char *, const u_char *));
-const char *	p_section __P((int section, int opcode));
-/* Things involving a resolver context. */
-int		res_ninit __P((res_state));
-int		res_nisourserver __P((const res_state,
-				      const struct sockaddr_in *));
-void		fp_resstat __P((const res_state, FILE *));
-void		res_npquery __P((const res_state, const u_char *, int, FILE *));
-const char *	res_hostalias __P((const res_state, const char *,
-				   char *, size_t));
-int		res_nquery __P((res_state,
-				const char *, int, int, u_char *, int));
-int		res_nsearch __P((res_state, const char *, int,
-				 int, u_char *, int));
-int		res_nquerydomain __P((res_state,
-				      const char *, const char *, int, int,
-				      u_char *, int));
-int		res_nmkquery __P((res_state,
-				  int, const char *, int, int, const u_char *,
-				  int, const u_char *, u_char *, int));
-int		res_nsend __P((res_state, const u_char *, int, u_char *, int));
-int		res_nsendsigned __P((res_state, const u_char *, int,
-				     ns_tsig_key *, u_char *, int));
-int		res_findzonecut __P((res_state, const char *, ns_class, int,
-				     char *, size_t, struct in_addr *, int));
-void		res_nclose __P((res_state));
-__END_DECLS
-
-#endif /* !_RESOLV_H_ */
diff --git a/contrib/bind/lib/Makefile b/contrib/bind/lib/Makefile
deleted file mode 100644
index 15aa6558acf29..0000000000000
--- a/contrib/bind/lib/Makefile
+++ /dev/null
@@ -1,109 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 8.22 1999/06/08 01:42:57 vixie Exp $
-
-SUBDIRS = resolv irs isc bsd inet nameser dst cylink dnssafe
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-SHELL= /bin/sh
-O=o
-A=a
-DESTDIR=
-DESTINC= /usr/local/bind/include
-DESTLIB= /usr/local/bind/lib
-TOP= ..
-INCL= ${TOP}/include
-PORTINCL= ${TOP}/port/${SYSTYPE}/include
-LIBBIND= ${TOP}/lib/libbind.${A}
-LIBBINDR= ${TOP}/lib/libbind_r.${A}
-LIBPORT= ${TOP}/port/libport.${A}
-RANLIB= ranlib
-AR= ar cru
-INSTALL= install
-CDEBUG= -g
-REENTRANT=-D_REENTRANT
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-
-# Warning: this MARGS has RANLIB=: to prevent submakes from running ranlib
-MARGS =	"SYSTYPE=${SYSTYPE}" "SHELL=${SHELL}" "A=${A}" "O=${O}" \
-	"CC=${CC}" "LEX=${LEX}" "YACC=${YACC}" "CDEBUG=${CDEBUG}" \
-	"SYSLIBS=${SYSLIBS}" "LDFLAGS=${LDFLAGS}" \
-	"DESTDIR=${DESTDIR}" "DESTMAN=${DESTMAN}" \
-	"DESTBIN=${DESTBIN}" "DESTSBIN=${DESTSBIN}" "DESTEXEC=${DESTEXEC}" \
-	"DESTLIB=${DESTLIB}" "DESTINC=${DESTINC}" "DESTHELP=${DESTHELP}" \
-	"RANLIB=:" "AR=${AR}" "ARPREF=${ARPREF}" "ARSUFF=${ARSUFF}" \
-	"INCL=../${INCL}" "PORTINCL=../${PORTINCL}" "EXE=${EXE}" \
-	"LIBBIND=../${LIBBIND}" "LIBPORT=../${LIBPORT}" \
-	"INSTALL=${INSTALL}" "CPPFLAGS=${CPPFLAGS}" "TOP=../${TOP}" \
-	"REENTRANT=${REENTRANT}" "INSTALL_LIB=${INSTALL_LIB}" \
-	"INSTALL_EXEC=${INSTALL_EXEC}" "BOUNDS=${BOUNDS}"
-
-LIB = libbind.${A}
-LIBTS = ${TOP}/lib/libbind.ts
-LIBR = libbind_r.${A}
-LIBRTS = ${TOP}/lib/libbindr.ts
-
-all depend clean install distclean::
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-all:: ${LIBTS} ${LIBRTS}
-
-${LIBRTS}: ${LIBBINDR}
-	${RANLIB} ${LIBBINDR}
-	sleep 1 && touch ${LIBRTS}
-
-${LIBTS}: ${LIBBIND}
-	${RANLIB} ${LIBBIND}
-	sleep 1 && touch ${LIBTS}
-
-distclean:: clean
-
-clean:: FRC
-	rm -f *~ *.BAK *.CKP *.orig
-	rm -f ${LIBBIND} ${LIBTS}
-	rm -f ${LIBBINDR} ${LIBRTS}
-
-install:: ${DESTDIR}${DESTLIB} ${DESTDIR}${DESTLIB}/${LIB}
-install:: ${DESTDIR}${DESTLIB} ${DESTDIR}${DESTLIB}/${LIBR}
-
-${DESTDIR}${DESTLIB}:
-	mkdir -p ${DESTDIR}${DESTLIB}
-
-${DESTDIR}${DESTLIB}/${LIBR}: ${LIBBINDR}
-	${INSTALL} -c ${INSTALL_LIB} -m 644 ${LIBBINDR} \
-		${DESTDIR}${DESTLIB}/${LIBR}
-	( cd ${DESTDIR}${DESTLIB} ; ${RANLIB} ${LIBR} )
-
-${DESTDIR}${DESTLIB}/${LIB}: ${LIBBIND}
-	${INSTALL} -c ${INSTALL_LIB} -m 644 ${LIBBIND} \
-		${DESTDIR}${DESTLIB}/${LIB}
-	( cd ${DESTDIR}${DESTLIB} ; ${RANLIB} ${LIB} )
-
-links:: FRC
-	@set -e; for x in ${SUBDIRS}; do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		  cp SRC/Makefile Makefile; chmod +w Makefile; \
-		  ${MAKE} ${MARGS} links; \
-		); \
-	done
-
-FRC:
diff --git a/contrib/bind/lib/dst/Makefile b/contrib/bind/lib/dst/Makefile
deleted file mode 100644
index 28befe83b7337..0000000000000
--- a/contrib/bind/lib/dst/Makefile
+++ /dev/null
@@ -1,97 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 1.16 2000/02/29 03:38:21 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBBINDR = ../${TOP}/lib/libbind_r.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-THREADED= threaded
-
-HDRS=   md5.h md5_locl.h 
-
-SRCS=	dst_api.c prandom.c rsaref_link.c support.c bsafe_link.c \
-	cylink_link.c hmac_link.c md5_dgst.c eay_dss_link.c
-
-OBJS=	dst_api.${O} prandom.${O} rsaref_link.${O} support.${O} \
-	bsafe_link.${O} cylink_link.${O} hmac_link.${O} md5_dgst.${O} \
-	eay_dss_link.${O}
-
-CRYPTINCL=	-I../cylink -I../dnssafe
-CRYPTFLAGS=	-DCYLINK_DSS -DHMAC_MD5 -DUSE_MD5 -DDNSSAFE
-
-all: ${LIBBIND}
-
-${LIBBIND}: ${OBJS}
-	( cd ${THREADED} ; \
-	${AR} ${LIBBINDR} ${ARPREF} ${OBJS} ${ARSUFF} ; \
-	${RANLIB} ${LIBBINDR} )
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	if test ! -d ${THREADED} ; then mkdir ${THREADED} ; else true ; fi
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} ${REENTRANT} ${CRYPTINCL} ${CRYPTFLAGS} -c $*.c -o ${THREADED}/$*.${O}
-	-${LDS} ${LD} ${LD_LIBFLAGS} ${THREADED}/$*.${O} \
-	 -o ${THREADED}/$*.out && \
-	 ${LDS} mv ${THREADED}/$*.out ${THREADED}/$*.${O}
-	${CC} ${CPPFLAGS} ${CFLAGS} ${CRYPTINCL} ${CRYPTFLAGS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} -o $*.out && \
-	 ${LDS} mv $*.out $*.${O}
-
-$(SRCS):: $(HDRS)
-
-distclean: clean
-
-clean: FRC
-	rm -f .depend a.out core ${LIB} tags
-	rm -f *.${O} *.BAK *.CKP *~
-	rm -f prand_conf.h
-	rm -f ${THREADED}/*.${O}
-	-if test -d ${THREADED} ; then rmdir ${THREADED}; else true; fi
-
-depend: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] SRC/*.pl .
-
-install:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/lib/dst/README b/contrib/bind/lib/dst/README
deleted file mode 100644
index 6283e589b6e10..0000000000000
--- a/contrib/bind/lib/dst/README
+++ /dev/null
@@ -1,27 +0,0 @@
-This directory in BIND contains the Domain Signature Tools (dst)
-library.  It was written by Trusted Information Systems, Inc. and
-integrated into BIND by John Gilmore.  It is used as a generic
-crypto library interface by the DNS Security code in BIND.
-
-	  Installing Domain Signature Tools Library - dst
-
-1. Assess available crypto libraries:
-
-	if you have DNSSAFE (the default)
-		CRYPTFLAGS must include -DDNSSAFE
-		CRYPTINCL must include -I../dnssafe
-
-	if you have RSAREF 
-		CRYPTFLAGS must include -DRSAREF 
-		CRYPTINCL must include -I<path to rsa include files>
-		
-	if you have BSAFE 
-		CRYPTFLAGS must include -DBSAFE
-		CRYPTINCL must include -I<path to bsafe include files>
-
-	if you want HMAC-MD5 support 
-		CRYPTFLAGs must include -DHMAC	
-
-2. Building BIND as usual will include the dst library routines into
-   libbind.a, and link them into the BIND programs that use crypto
-   support.
diff --git a/contrib/bind/lib/dst/bsafe_link.c b/contrib/bind/lib/dst/bsafe_link.c
deleted file mode 100644
index 8b24d99fb971e..0000000000000
--- a/contrib/bind/lib/dst/bsafe_link.c
+++ /dev/null
@@ -1,1125 +0,0 @@
-#if defined(BSAFE) || defined(DNSSAFE)
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/bsafe_link.c,v 1.11 1999/10/13 16:39:22 vixie Exp $";
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-/* 
- * This file contains two components 
- * 1. Interface to the BSAFE library to allow compilation of Bind 
- *    with TIS/DNSSEC when BSAFE is not available 
- *    all calls to BSAFE are contained inside this file.
- * 2. The glue to connvert RSA KEYS to and from external formats
- */
-#include "port_before.h"
-
-#include <stdio.h>
-#include <unistd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <memory.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include "dst_internal.h"
-
-#  ifdef __STDC__
-#    define PROTOTYPES 1
-#  else
-#    define PROTOTYPES 0
-#  endif
-
-#  ifdef BSAFE
-#    include <aglobal.h>
-#    include <bsafe.h>
-#  else
-#    include <global.h>
-#    include <bsafe2.h>
-#    include <bigmaxes.h>
-#  endif
-
-#include "port_after.h"
-
-typedef struct bsafekey {
-	char *rk_signer;
-	B_KEY_OBJ rk_Private_Key;
-	B_KEY_OBJ rk_Public_Key;
-} RSA_Key;
-
-#ifndef MAX_RSA_MODULUS_BITS
-#define MAX_RSA_MODULUS_BITS 4096
-#define MAX_RSA_MODULUS_LEN (MAX_RSA_MODULUS_BITS/8)
-#define MAX_RSA_PRIME_LEN (MAX_RSA_MODULUS_LEN/2)
-#endif
-
-#define NULL_SURRENDER (A_SURRENDER_CTX *)NULL_PTR
-#define NULL_RANDOM (B_ALGORITHM_OBJ)NULL_PTR
-
-B_ALGORITHM_METHOD *CHOOSER[] =
-{
-	&AM_MD5,
-	&AM_MD5_RANDOM,
-	&AM_RSA_KEY_GEN,
-	&AM_RSA_ENCRYPT,
-	&AM_RSA_DECRYPT,
-	&AM_RSA_CRT_ENCRYPT,
-	&AM_RSA_CRT_DECRYPT,
-	(B_ALGORITHM_METHOD *) NULL_PTR
-};
-
-static u_char pkcs1[] =
-{
-	0x30, 0x20, 0x30, 0x0c, 0x06, 0x08, 0x2a, 0x86,
-	0x48, 0x86, 0xf7, 0x0d, 0x02, 0x05, 0x05, 0x00,
-	0x04, 0x10
-};
-
-static int dst_bsafe_md5digest(const int mode, B_ALGORITHM_OBJ *digest_obj,
-			       const u_char *data, const int len,
-			       u_char *digest, const int digest_len);
-
-static int dst_bsafe_key_size(RSA_Key *r_key);
-
-static int dst_bsafe_sign(const int mode, DST_KEY *dkey, void **context,
-			  const u_char *data, const int len,
-			  u_char *signature, const int sig_len);
-static int dst_bsafe_verify(const int mode, DST_KEY *dkey, void **context,
-			    const u_char *data, const int len,
-			    const u_char *signature, const int sig_len);
-static int dst_bsafe_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-				const int out_len);
-static int dst_bsafe_from_dns_key(DST_KEY *s_key, const u_char *key,
-				  const int len);
-static int dst_bsafe_key_to_file_format(const DST_KEY *key, char *buff,
-					const int buff_len);
-static int dst_bsafe_key_from_file_format(DST_KEY *d_key,
-					  const char *buff,
-					  const int buff_len);
-static int dst_bsafe_generate_keypair(DST_KEY *key, int exp);
-static int dst_bsafe_compare_keys(const DST_KEY *key1, const DST_KEY *key2);
-static void *dst_bsafe_free_key_structure(void *key);
-
-/*
- * dst_bsafe_init()  Function to answer set up function pointers for 
- *	   BSAFE/DNSSAFE related functions 
- */
-int
-dst_bsafe_init()
-{
-	if (dst_t_func[KEY_RSA] != NULL)
-		return (1);
-	dst_t_func[KEY_RSA] = malloc(sizeof(struct dst_func));
-	if (dst_t_func[KEY_RSA] == NULL)
-		return (0);
-	memset(dst_t_func[KEY_RSA], 0, sizeof(struct dst_func));
-	dst_t_func[KEY_RSA]->sign = dst_bsafe_sign;
-	dst_t_func[KEY_RSA]->verify = dst_bsafe_verify;
-	dst_t_func[KEY_RSA]->compare = dst_bsafe_compare_keys;
-	dst_t_func[KEY_RSA]->generate = dst_bsafe_generate_keypair;
-	dst_t_func[KEY_RSA]->destroy = dst_bsafe_free_key_structure;
-	dst_t_func[KEY_RSA]->from_dns_key = dst_bsafe_from_dns_key;
-	dst_t_func[KEY_RSA]->to_dns_key = dst_bsafe_to_dns_key;
-	dst_t_func[KEY_RSA]->from_file_fmt = dst_bsafe_key_from_file_format;
-	dst_t_func[KEY_RSA]->to_file_fmt = dst_bsafe_key_to_file_format;
-	return (1);
-}
-
-/*
- * dst_bsafe_sign
- *     Call BSAFE signing functions to sign a block of data.
- *     There are three steps to signing, INIT (initialize structures), 
- *     UPDATE (hash (more) data), FINAL (generate a signature).  This
- *     routine performs one or more of these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     dkey      structure holds context for a sign done in multiple calls.
- *     context   the context to use for this computation
- *     data	data to be signed.
- *     len	 length in bytes of data.
- *     priv_key    key to use for signing.
- *     signature   location to store signature.
- *     sig_len     size in bytes of signature field.
- * returns 
- *	N  Success on SIG_MODE_FINAL = returns signature length in bytes
- *	0  Success on SIG_MODE_INIT  and UPDATE
- *	 <0  Failure
- */
-
-static int
-dst_bsafe_sign(const int mode, DST_KEY *dkey, void **context,
-	       const u_char *data, const int len, 
-	       u_char *signature, const int sig_len)
-{
-	u_int sign_len = 0;
-	int status = 0;
-	B_ALGORITHM_OBJ *md5_ctx = NULL;
-	int w_bytes = 0;
-	u_int u_bytes = 0;
-	u_char work_area[NS_MD5RSA_MAX_SIZE];
-
-	if (mode & SIG_MODE_INIT) { 
-		md5_ctx = (B_ALGORITHM_OBJ *) malloc(sizeof(B_ALGORITHM_OBJ));
-		if ((status = B_CreateAlgorithmObject(md5_ctx)))
-			return (-1);
-		if ((status = B_SetAlgorithmInfo(*md5_ctx, AI_MD5, NULL)))
-			return (-1);
-	}
-	else if (context) 
-		md5_ctx = (B_ALGORITHM_OBJ *) *context;
-	if (md5_ctx == NULL) 
-		return (-1);
-
-	w_bytes = dst_bsafe_md5digest(mode, md5_ctx, 
-				      data, len,work_area, sizeof(work_area));
-        if (w_bytes < 0 || (mode & SIG_MODE_FINAL)) {
-		B_DestroyAlgorithmObject(md5_ctx);
-		SAFE_FREE(md5_ctx);
-		if (w_bytes < 0)
-			return (w_bytes);
-	}
-
-	if (mode & SIG_MODE_FINAL) {
-		RSA_Key *key;
-		int ret = 0;
-		B_ALGORITHM_OBJ rsaEncryptor = (B_ALGORITHM_OBJ) NULL_PTR;
-		
-		if (dkey == NULL || dkey->dk_KEY_struct == NULL)
-			return (-1);
-		key = (RSA_Key *) dkey->dk_KEY_struct;
-		if (key == NULL || key->rk_Private_Key == NULL)
-			return (-1);
-
-		if ((status = B_CreateAlgorithmObject(&rsaEncryptor)))
-			return (SIGN_FINAL_FAILURE);
-		if ((status = B_SetAlgorithmInfo(rsaEncryptor,
-						 AI_PKCS_RSAPrivate,
-						 NULL_PTR)))
-
-			ret = SIGN_FINAL_FAILURE;
-		if (ret == 0 && 
-		    (status = B_EncryptInit(rsaEncryptor,
-					    key->rk_Private_Key,
-					    CHOOSER, NULL_SURRENDER)))
-			ret = SIGN_FINAL_FAILURE;
-		if (ret == 0 &&
-		    (status = B_EncryptUpdate(rsaEncryptor, signature,
-					      &u_bytes, sig_len, pkcs1,
-					      sizeof(pkcs1), NULL_PTR,
-					      NULL_SURRENDER)))
-			ret = SIGN_FINAL_FAILURE;
-		if (ret == 0 &&
-		    (status = B_EncryptUpdate(rsaEncryptor, signature,
-					      &u_bytes, sig_len, work_area,
-					      w_bytes, NULL_PTR,
-					      NULL_SURRENDER)))
-			ret = SIGN_FINAL_FAILURE;
-
-		if (ret == 0 &&
-		    (status = B_EncryptFinal(rsaEncryptor, signature + u_bytes,
-					     &sign_len, sig_len - u_bytes,
-					     NULL_PTR, NULL_SURRENDER)))
-			ret = SIGN_FINAL_FAILURE;
-		B_DestroyAlgorithmObject(&rsaEncryptor);
-		if (ret != 0) 
-			return (ret);
-
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) md5_ctx;
-	}
-	return (sign_len);
-}
-
-
-/*
- * Dst_bsafe_verify 
- *     Calls BSAFE verification routines.  There are three steps to 
- *     verification, INIT (initialize structures), UPDATE (hash (more) data), 
- *     FINAL (generate a signature).  This routine performs one or more of 
- *     these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     dkey      structure holds context for a verify done in multiple calls.
- *     context   the context to use for this computation
- *     data	data signed.
- *     len	 length in bytes of data.
- *     pub_key     key to use for verify.
- *     signature   signature.
- *     sig_len     length in bytes of signature.
- * returns 
- *     0  Success 
- *    <0  Failure
- */
-
-static int
-dst_bsafe_verify(const int mode, DST_KEY *dkey, void **context,
-		 const u_char *data, const int len,
-		 const u_char *signature, const int sig_len)
-{
-	B_ALGORITHM_OBJ *md5_ctx = NULL;
-	u_char digest[DST_HASH_SIZE];
-	u_char work_area[DST_HASH_SIZE + sizeof(pkcs1)];
-	int status = 0, w_bytes = 0;
-	u_int u_bytes = 0;
-
-	if (mode & SIG_MODE_INIT) { 
-		md5_ctx = (B_ALGORITHM_OBJ *) malloc(sizeof(B_ALGORITHM_OBJ));
-		if ((status = B_CreateAlgorithmObject(md5_ctx)))
-			return (-1);
-		if ((status = B_SetAlgorithmInfo(*md5_ctx, AI_MD5, NULL)))
-			return (-1);
-	}
-	else if (context) 
-		md5_ctx = (B_ALGORITHM_OBJ *) *context;
-	if (md5_ctx == NULL) 
-		return (-1);
-
-	w_bytes = dst_bsafe_md5digest(mode, md5_ctx, data, len, 
-				      digest, sizeof(digest));
-
-	if (w_bytes < 0 || (mode & SIG_MODE_FINAL)) {
-		B_DestroyAlgorithmObject(md5_ctx);
-		SAFE_FREE(md5_ctx);
-		if (w_bytes < 0)
-			return (-1);
-	}
-
-	if (mode & SIG_MODE_FINAL) {
-		RSA_Key *key;
-		int ret = 0;
-		B_ALGORITHM_OBJ rsaEncryptor = (B_ALGORITHM_OBJ) NULL_PTR;
-
-		if (dkey == NULL || dkey->dk_KEY_struct == NULL)
-			return (-1);
-		key = (RSA_Key *) dkey->dk_KEY_struct;
-		if (key->rk_Public_Key == NULL)
-			return (-2);
-		if (rsaEncryptor == NULL_PTR) {
-			if ((status = B_CreateAlgorithmObject(&rsaEncryptor)))
-				ret = SIGN_FINAL_FAILURE;
-			if (ret == 0 &&
-			    (status = B_SetAlgorithmInfo(rsaEncryptor,
-							 AI_PKCS_RSAPublic,
-							 NULL_PTR)))
-				ret = VERIFY_FINAL_FAILURE;
-		}
-		if (ret == 0 &&
-		    (status = B_DecryptInit(rsaEncryptor, key->rk_Public_Key,
-					    CHOOSER, NULL_SURRENDER)))
-			ret = VERIFY_FINAL_FAILURE;
-
-		if (ret == 0 && 
-		    (status = B_DecryptUpdate(rsaEncryptor, work_area,
-					      &u_bytes, 0,
-					      (u_char *) signature, sig_len,
-					      NULL_PTR, NULL_SURRENDER)))
-			ret = VERIFY_FINAL_FAILURE;
-
-		if (ret == 0 && 
-		    (status = B_DecryptFinal(rsaEncryptor, work_area + u_bytes,
-					     &u_bytes,
-					     sizeof(work_area) - u_bytes,
-					     NULL_PTR, NULL_SURRENDER)))
-			ret = VERIFY_FINAL_FAILURE;
-		B_DestroyAlgorithmObject(&rsaEncryptor);
-		/* skip PKCS#1 header in output from Decrypt function */
-		if (ret)
-			return (ret);
-		ret = memcmp(digest, &work_area[sizeof(pkcs1)], w_bytes);
-		if (ret == 0)
-			return(0);
-		else
-			return(VERIFY_FINAL_FAILURE);
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) md5_ctx;
-	}
-	return (0);
-}
-
-
-/*
- * dst_bsafe_to_dns_key
- *     Converts key from RSA to DNS distribution format
- *     This function gets in a pointer to the public key and a work area
- *     to write the key into.
- * Parameters
- *     public    KEY structure 
- *     out_str   buffer to write encoded key into 
- *     out_len   size of out_str
- * Return
- *	N >= 0 length of encoded key 
- *	n < 0  error 
- */
-
-static int
-dst_bsafe_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-		     const int out_len)
-{
-	B_KEY_OBJ public;
-	A_RSA_KEY *pub = NULL;
-	u_char *op = out_str;
-	int n = 0;
-
-	if (in_key == NULL || in_key->dk_KEY_struct == NULL ||
-	    out_len <= 0 || out_str == NULL)
-		return (-1);
-	public = (B_KEY_OBJ)((RSA_Key *) in_key->dk_KEY_struct)->rk_Public_Key;
-
-	n = B_GetKeyInfo((POINTER *) &pub, public, KI_RSAPublic);
-
-	if (out_len < pub->exponent.len) /* not enough space */
-		return (-1);
-	if (pub->exponent.len < 256)  /* key exponent is <= 2040 bits */
-		*op++ = (u_int8_t) pub->exponent.len;
-	else {                       /*  key exponent is > 2040 bits */
-		u_int16_t e = (u_int16_t) pub->exponent.len;
-		*op++ = 0;          /* 3 byte lenght field */
-		dst_s_put_int16(op, e);
-		op += sizeof(e);
-		n = 2;
-	}
-	n += pub->exponent.len;
-	memcpy(op, pub->exponent.data, n);
-	op += n;
-	n++;
-
-	if ((out_len - n) > pub->modulus.len) {
-		/*copy exponent */
-		memcpy(op, pub->modulus.data, pub->modulus.len);
-		n += pub->modulus.len;
-	}
-	else 
-		n = -1;
-	return (n);
-}
-
-
-/*
- * dst_bsafe_from_dns_key
- *     Converts from a DNS KEY RR format to an RSA KEY. 
- * Parameters
- *     len    Length in bytes of DNS key
- *     key    DNS key
- *     name   Key name
- *     s_key  DST structure that will point to the RSA key this routine
- *		will build.
- * Return
- *     0   The input key, s_key or name was null.
- *     1   Success
- */
-static int
-dst_bsafe_from_dns_key(DST_KEY *s_key, const u_char *key, const int len)
-{
-	int bytes;
-	const u_char *key_ptr;
-	RSA_Key *r_key;
-	A_RSA_KEY *public;
-
-	if (s_key == NULL || len < 0 || key == NULL)
-		return (0);
-
-	r_key = (RSA_Key *) s_key->dk_KEY_struct;
-	if (r_key != NULL)	/* do not reuse */
-		s_key->dk_func->destroy(r_key);
-
-	if (len == 0)
-		return (1);
-
-	if ((r_key = (RSA_Key *) malloc(sizeof(RSA_Key))) == NULL) {
-		EREPORT(("dst_bsafe_from_dns_key(): Memory allocation error 1"));
-		return (0);
-	}
-	memset(r_key, 0, sizeof(RSA_Key));
-	s_key->dk_KEY_struct = (void *) r_key;
-	r_key->rk_signer = strdup(s_key->dk_key_name);
-
-	if (B_CreateKeyObject(&r_key->rk_Public_Key) != 0) {
-		EREPORT(("dst_bsafe_from_dns_key(): Memory allocation error 3"));
-		s_key->dk_func->destroy(r_key);
-		return (0);
-	}
-	key_ptr = key;
-	bytes = (int) *key_ptr++;	/* length of exponent in bytes */
-	if (bytes == 0)  {             /* special case for long exponents */
-		bytes = (int) dst_s_get_int16(key_ptr);
-		key_ptr += sizeof(u_int16_t);
-	}
-	if (bytes > MAX_RSA_MODULUS_LEN) { 
-		dst_bsafe_free_key_structure(r_key);
-		return (-1);
-	}
-	if ((public = (A_RSA_KEY *) malloc(sizeof(A_RSA_KEY))) == NULL)
-		return (0);
-	memset(public, 0, sizeof(*public));
-	public->exponent.len = bytes;
-	if ((public->exponent.data = (u_char *) malloc(bytes)) == NULL)
-		return (0);
-	memcpy(public->exponent.data, key_ptr, bytes);
-
-	key_ptr += bytes;	/* beginning of modulus */
-	bytes = len - bytes - 1;	/* length of modulus */
-
-	if (bytes > MAX_RSA_MODULUS_LEN) { 
-		dst_bsafe_free_key_structure(r_key);
-		return (-1);
-	}
-	public->modulus.len = bytes;
-	if ((public->modulus.data = (u_char *) malloc(bytes)) == NULL)
-		return (0);
-	memcpy(public->modulus.data, key_ptr, bytes);
-
-	B_SetKeyInfo(r_key->rk_Public_Key, KI_RSAPublic, (POINTER) public);
-
-	s_key->dk_id = (u_int16_t)
-		dst_s_get_int16(&public->modulus.data[public->modulus.len - 3]);
-	s_key->dk_key_size = dst_bsafe_key_size(r_key);
-	SAFE_FREE(public->modulus.data);
-	SAFE_FREE(public->exponent.data);
-	SAFE_FREE(public);	
-	return (1);
-}
-
-
-/*
- *  dst_bsafe_key_to_file_format
- *	Encodes an RSA Key into the portable file format.
- *  Parameters 
- *	rkey      RSA KEY structure 
- *	buff      output buffer
- *	buff_len  size of output buffer 
- *  Return
- *	0  Failure - null input rkey
- *     -1  Failure - not enough space in output area
- *	N  Success - Length of data returned in buff
- */
-
-static int
-dst_bsafe_key_to_file_format(const DST_KEY *key, char *buff,
-			     const int buff_len)
-{
-	char *bp;
-	int len, b_len;
-	B_KEY_OBJ rkey;
-	A_PKCS_RSA_PRIVATE_KEY *private = NULL;
-
-	if (key == NULL || key->dk_KEY_struct == NULL)	/* no output */
-		return (0);
-	if (buff == NULL || buff_len <= (int) strlen(key_file_fmt_str))
-		return (-1);	/* no OR not enough space in output area */
-
-	rkey = (B_KEY_OBJ)((RSA_Key *) key->dk_KEY_struct)->rk_Private_Key;
-
-	B_GetKeyInfo((POINTER *) &private, rkey, KI_PKCS_RSAPrivate);
-
-	    memset(buff, 0, buff_len);	/* just in case */
-	/* write file header */
-	sprintf(buff, key_file_fmt_str, KEY_FILE_FORMAT, KEY_RSA, "RSA");
-
-	bp = strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Modulus: ",
-					       private->modulus.data,
-					       private->modulus.len)) <= 0)
-		return (-1);
-
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "PublicExponent: ",
-					       private->publicExponent.data,
-					 private->publicExponent.len)) <= 0)
-		return (-2);
-
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "PrivateExponent: ",
-					       private->privateExponent.data,
-					private->privateExponent.len)) <= 0)
-		return (-3);
-	bp += len;
-	b_len -= len;
-
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Prime1: ",
-					       private->prime[0].data,
-					       private->prime[0].len)) < 0)
-		return (-4);
-	bp += len;
-	b_len -= len;
-
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Prime2: ",
-					       private->prime[1].data,
-					       private->prime[1].len)) < 0)
-		return (-5);
-	bp += len;
-	b_len -= len;
-
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Exponent1: ",
-					     private->primeExponent[0].data,
-					private->primeExponent[0].len)) < 0)
-		return (-6);
-	bp += len;
-	b_len -= len;
-
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Exponent2: ",
-					     private->primeExponent[1].data,
-					private->primeExponent[1].len)) < 0)
-		return (-7);
-	bp += len;
-	b_len -= len;
-
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Coefficient: ",
-					       private->coefficient.data,
-					     private->coefficient.len)) < 0)
-		return (-8);
-	bp += len;
-	b_len -= len;
-	return (buff_len - b_len);
-}
-
-
-/*
- * dst_bsafe_key_from_file_format
- *     Converts contents of a private key file into a private RSA key. 
- * Parameters 
- *     RSA_Key    structure to put key into 
- *     buff       buffer containing the encoded key 
- *     buff_len   the length of the buffer
- * Return
- *     n >= 0 Foot print of the key converted 
- *     n <  0 Error in conversion 
- */
-
-static int
-dst_bsafe_key_from_file_format(DST_KEY *d_key, const char *buff,
-			       const int buff_len)
-{
-	int status;
-	char s[RAW_KEY_SIZE];
-	int len, s_len = sizeof(s);
-	int tag = -1;
-	const char *p = buff;
-	RSA_Key *b_key;
-	A_RSA_KEY *public;
-	A_PKCS_RSA_PRIVATE_KEY *private;
-
-	if (d_key == NULL || buff == NULL || buff_len <= 0)
-		return (-1);
-
-	b_key = (RSA_Key *) malloc(sizeof(RSA_Key));
-	public = (A_RSA_KEY *) malloc(sizeof(A_RSA_KEY));
-	private = (A_PKCS_RSA_PRIVATE_KEY *)
-		malloc(sizeof(A_PKCS_RSA_PRIVATE_KEY));
-	if (b_key == NULL || private == NULL || public == NULL) {
-		SAFE_FREE(b_key);
-		SAFE_FREE(public);
-		SAFE_FREE(private);
-		return (-2);
-	}
-	memset(b_key, 0, sizeof(*b_key));
-	memset(public, 0, sizeof(A_RSA_KEY));
-	memset(private, 0, sizeof(A_PKCS_RSA_PRIVATE_KEY));
-	d_key->dk_KEY_struct = (void *) b_key;
-	if (!dst_s_verify_str(&p, "Modulus: "))
-		return (-3);
-	memset(s, 0, s_len);
-	if ((len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s, s_len)) == 0)
-		return (-4);
-
-	private->modulus.len = len;
-	if ((private->modulus.data = malloc(len)) == NULL)
-		return (-5);
-	memcpy(private->modulus.data, s + s_len - len, len);
-
-	while (*(++p) && p < (const char *) &buff[buff_len]) {
-		if (dst_s_verify_str(&p, "PublicExponent: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s, s_len)))
-				return (-5);
-			private->publicExponent.len = len;
-			if ((private->publicExponent.data = malloc(len))
-			    == NULL)
-				return (-6);
-			memcpy(private->publicExponent.data,
-			       s + s_len - len, len);
-		} else if (dst_s_verify_str(&p, "PrivateExponent: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s, s_len)))
-				return (-6);
-			private->privateExponent.len = len;
-			if ((private->privateExponent.data = malloc(len))
-			    == NULL)
-				return (-7);
-			memcpy(private->privateExponent.data, s + s_len - len,
-			       len);
-		} else if (dst_s_verify_str(&p, "Prime1: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s,
-							MAX_RSA_PRIME_LEN)))
-				return (-7);
-			private->prime[0].len = len;
-			if ((private->prime[0].data = malloc(len)) == NULL)
-				return (-8);
-			memcpy(private->prime[0].data,
-			       s + MAX_RSA_PRIME_LEN - len, len);
-		} else if (dst_s_verify_str(&p, "Prime2: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s,
-							MAX_RSA_PRIME_LEN)))
-				return (-8);
-			private->prime[1].len = len;
-			if ((private->prime[1].data = malloc(len)) == NULL)
-				return (-9);
-			memcpy(private->prime[1].data,
-			       s + MAX_RSA_PRIME_LEN - len, len);
-		} else if (dst_s_verify_str(&p, "Exponent1: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s,
-							MAX_RSA_PRIME_LEN)))
-				return (-9);
-			private->primeExponent[0].len = len;
-			if ((private->primeExponent[0].data = malloc(len))
-			    == NULL)
-				return (-10);
-			memcpy(private->primeExponent[0].data,
-			       s + MAX_RSA_PRIME_LEN - len, len);
-		} else if (dst_s_verify_str(&p, "Exponent2: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s,
-							MAX_RSA_PRIME_LEN)))
-				return (-10);
-			private->primeExponent[1].len = len;
-			if ((private->primeExponent[1].data = malloc(len))
-			    == NULL)
-				return (-11);
-			memcpy(private->primeExponent[1].data,
-			       s + MAX_RSA_PRIME_LEN - len, len);
-		} else if (dst_s_verify_str(&p, "Coefficient: ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, (u_char *)s,
-							MAX_RSA_PRIME_LEN)))
-				return (-11);
-			private->coefficient.len = len;
-			if ((private->coefficient.data = malloc(len)) == NULL)
-				return (-12);
-			memcpy(private->coefficient.data,
-			       s + MAX_RSA_PRIME_LEN - len, len);
-		} else {
-			EREPORT(("Decode_RSAKey(): Bad keyword %s\n", p));
-			return (-12);
-		}
-	}			/* while p */
-
-	public->modulus.len = private->modulus.len;
-	if ((public->modulus.data = (u_char *) malloc(public->modulus.len)) ==
-	    NULL)
-		return (-13);
-	memcpy(public->modulus.data, private->modulus.data,
-	       private->modulus.len);
-
-	public->exponent.len = private->publicExponent.len;
-	if ((public->exponent.data = (u_char *) malloc(public->exponent.len))
-	    == NULL)
-		return (-14);
-	memcpy(public->exponent.data, private->publicExponent.data,
-	       private->publicExponent.len);
-
-	status = B_CreateKeyObject(&(b_key->rk_Public_Key));
-	if (status)
-		return (-1);
-	status = B_SetKeyInfo(b_key->rk_Public_Key, KI_RSAPublic,
-			      (POINTER) public);
-	if (status)
-		return (-1);
-
-	status = B_CreateKeyObject(&b_key->rk_Private_Key);
-	if (status)
-		return (-1);
-	status = B_SetKeyInfo(b_key->rk_Private_Key, KI_PKCS_RSAPrivate,
-			      (POINTER) private);
-	if (status)
-		return (-1);
-
-	tag = (int)(u_int16_t)
-		dst_s_get_int16(&public->modulus.data[public->modulus.len - 3]);
-	d_key->dk_key_size = dst_bsafe_key_size(b_key);
-
-	SAFE_FREE(private->modulus.data);
-	SAFE_FREE(private->publicExponent.data);
-	SAFE_FREE(private->privateExponent.data);
-	SAFE_FREE(private->prime[0].data);
-	SAFE_FREE(private->prime[1].data);
-	SAFE_FREE(private->primeExponent[0].data);
-	SAFE_FREE(private->primeExponent[1].data);
-	SAFE_FREE(private->coefficient.data);
-	SAFE_FREE(private);	/* is this the right thing to do ??? XXXX */
-	SAFE_FREE(public->modulus.data);
-	SAFE_FREE(public->exponent.data);
-	SAFE_FREE(public);
-	return (tag);
-}
-
-
-/*
- * dst_bsafe_free_key_structure
- *     Frees all dynamicly allocated structures in RSA_Key.
- */
-
-static void *
-dst_bsafe_free_key_structure(void *key)
-{
-	RSA_Key *r_key = (RSA_Key *) key;
-	if (r_key != NULL) {
-		if (r_key->rk_Private_Key)
-			B_DestroyKeyObject(&r_key->rk_Private_Key);
-		if (r_key->rk_Public_Key)
-			B_DestroyKeyObject(&r_key->rk_Public_Key);
-		SAFE_FREE2(r_key->rk_signer, strlen(r_key->rk_signer));
-		SAFE_FREE(r_key);
-	}
-	return (NULL);
-}
-
-
-/*
- *  dst_bsafe_generate_keypair
- *	Generates unique keys that are hard to predict.
- *  Parameters
- *	key    generic Key structure
- *	exp    the public exponent
- *  Return 
- *	0 Failure 
- *	1 Success
- */
-
-static int
-dst_bsafe_generate_keypair(DST_KEY *key, int exp)
-{
-	int i, status;
-	B_KEY_OBJ private;
-	B_KEY_OBJ public;
-	B_ALGORITHM_OBJ keypairGenerator;
-	B_ALGORITHM_OBJ randomAlgorithm;
-	A_RSA_KEY_GEN_PARAMS keygenParams;
-	char exponent[4];
-	int exponent_len;
-	RSA_Key *rsa;
-	POINTER randomSeed = NULL_PTR;
-	int randomSeedLen;
-	A_RSA_KEY *pk_access = NULL;
-
-	if (key == NULL || key->dk_alg != KEY_RSA)
-		return (0);
-
-	if ((rsa = (RSA_Key *) malloc(sizeof(RSA_Key))) == NULL) {
-		EREPORT(("dst_bsafe_generate_keypair: Memory allocation error 3"));
-		return (0);
-	}
-	memset(rsa, 0, sizeof(*rsa));
-
-	if ((status = B_CreateAlgorithmObject(&keypairGenerator)) != 0)
-		return (0);
-
-	keygenParams.modulusBits = key->dk_key_size;
-
-	/* exp = 0 or 1 are special (mean 3 or F4) */
-	if (exp == 0)
-		exp = 3;
-	else if (exp == 1)
-		exp = 65537;
-
-	/* Now encode the exponent and its length */
-	if (exp < 256) {
-		exponent_len = 1;
-		exponent[0] = exp;
-	} else if (exp < (1 << 16)) {
-		exponent_len = 2;
-		exponent[0] = exp >> 8;
-		exponent[1] = exp;
-	} else if (exp < (1 << 24)) {
-		exponent_len = 3;
-		exponent[0] = exp >> 16;
-		exponent[1] = exp >> 8;
-		exponent[2] = exp;
-	} else {
-		exponent_len = 4;
-		exponent[0] = exp >> 24;
-		exponent[1] = exp >> 16;
-		exponent[2] = exp >> 8;
-		exponent[3] = exp;
-	}
-
-	if ((keygenParams.publicExponent.data = (u_char *) malloc(exponent_len))
-	    == NULL)
-		return (0);
-	memcpy(keygenParams.publicExponent.data, exponent, exponent_len);
-	keygenParams.publicExponent.len = exponent_len;
-	if ((status = B_SetAlgorithmInfo
-	     (keypairGenerator, AI_RSAKeyGen, (POINTER) &keygenParams)) != 0)
-		return (0);
-
-	if ((status = B_GenerateInit(keypairGenerator, CHOOSER,
-				     NULL_SURRENDER)) != 0)
-		return (0);
-
-	if ((status = B_CreateKeyObject(&public)) != 0)
-		return (0);
-
-	if ((status = B_CreateKeyObject(&private)) != 0)
-		return (0);
-
-	if ((status = B_CreateAlgorithmObject(&randomAlgorithm)) != 0)
-		return (0);
-
-	if ((status = B_SetAlgorithmInfo(randomAlgorithm, AI_MD5Random,
-					 NULL_PTR))
-	    != 0)
-		return (0);
-
-	if ((status = B_RandomInit(randomAlgorithm, CHOOSER,
-				   NULL_SURRENDER)) != 0)
-		return (0);
-
-	randomSeedLen = 256;
-	if ((randomSeed = malloc(randomSeedLen)) == NULL)
-		return (0);
-	if ((status = (randomSeed == NULL_PTR)) != 0)
-		return (0);
-
-	/* gets random seed from /dev/random if present, generates random
-	 * values if it is not present. 
-	 * first fill the buffer with semi random data 
-	 * then fill as much as possible with good random data 
-	 */
-	i = dst_random(DST_RAND_SEMI, randomSeedLen, randomSeed);
-	i += dst_random(DST_RAND_KEY,  randomSeedLen, randomSeed);
-
-	if (i <= randomSeedLen) {
-		SAFE_FREE(rsa);
-		return(0);
-	}
-	if ((status = B_RandomUpdate(randomAlgorithm, randomSeed, 
-				     randomSeedLen, NULL_SURRENDER)) != 0) {
-		SAFE_FREE(rsa);
-		return (0);
-	}
-	SAFE_FREE2(randomSeed, randomSeedLen);
-	if ((status = B_GenerateKeypair(keypairGenerator, public, private,
-					randomAlgorithm, NULL_SURRENDER))
-	    != 0) {
-		SAFE_FREE(rsa);
-		return (0);
-	}
-	rsa->rk_signer = strdup(key->dk_key_name);
-	rsa->rk_Private_Key = private;
-	rsa->rk_Public_Key = public;
-	key->dk_KEY_struct = (void *) rsa;
-
-	/* fill in the footprint on generate key */
-	B_GetKeyInfo((POINTER *) &pk_access, public, KI_RSAPublic);
-	key->dk_id = (u_int16_t)
-		dst_s_get_int16(&pk_access->modulus.data[pk_access->modulus.len - 3]);
-	return (1);
-}
-
-
-/************************************************************************** 
- *  dst_bsafe_compare_keys
- *	Compare two keys for equality.
- *  Return
- *	0	  The keys are equal
- *	NON-ZERO   The keys are not equal
- */
-
-static int
-dst_s_bsafe_itemcmp(ITEM i1, ITEM i2)
-{
-	if (i1.len != i2.len || memcmp (i1.data, i2.data, i1.len))
-		return (1);
-	else
-		return (0);
-}
-
-static int
-dst_bsafe_compare_keys(const DST_KEY *key1, const DST_KEY *key2)
-{
-	int status, s1 = 0, s2 = 0;
-	RSA_Key *rkey1 = (RSA_Key *) key1->dk_KEY_struct;
-	RSA_Key *rkey2 = (RSA_Key *) key2->dk_KEY_struct;
-	A_RSA_KEY *public1 = NULL, *public2 = NULL;
-	A_PKCS_RSA_PRIVATE_KEY *p1 = NULL, *p2 = NULL;
-
-	if (rkey1 == NULL && rkey2 == NULL) 
-		return(0);
-	else if (rkey1 == NULL) 
-		return (1);
-	else if (rkey2 == NULL)
-		return (2);
-
-	if (rkey1->rk_Public_Key) 
-		B_GetKeyInfo((POINTER *) &public1, rkey1->rk_Public_Key, 
-			     KI_RSAPublic);
-	if (rkey2->rk_Public_Key) 
-		B_GetKeyInfo((POINTER *) &public2, rkey2->rk_Public_Key, 
-			     KI_RSAPublic);
-	if (public1 == NULL && public2 == NULL)
-		return (0);
-	else if (public1 == NULL || public2 == NULL)
-		return (1);
-
-	status = dst_s_bsafe_itemcmp(public1->modulus, public2->modulus) ||
-		 dst_s_bsafe_itemcmp(public1->exponent, public2->exponent);
-
-	if (status) 
-		return (status);
-
-	if (rkey1->rk_Private_Key == NULL || rkey2->rk_Private_Key == NULL)
-		/* if neither or only one is private key consider identical */
-		return (status);  
-	if (rkey1->rk_Private_Key)
-		s1 = B_GetKeyInfo((POINTER *) &p1, rkey1->rk_Private_Key,
-				  KI_PKCS_RSAPrivate);
-	if (rkey2->rk_Private_Key)
-		s2 = B_GetKeyInfo((POINTER *) &p2, rkey2->rk_Private_Key,
-				  KI_PKCS_RSAPrivate);
-	if (p1 == NULL || p2 == NULL) 
-		return (0);
-
-	status = dst_s_bsafe_itemcmp(p1->modulus, p2->modulus) ||
-		dst_s_bsafe_itemcmp (p1->publicExponent, 
-				     p2->publicExponent) ||
-		dst_s_bsafe_itemcmp (p1->privateExponent, 
-				     p2->privateExponent) ||
-		dst_s_bsafe_itemcmp (p1->prime[0], p2->prime[0]) ||
-		dst_s_bsafe_itemcmp (p1->prime[1], p2->prime[1]) ||
-		dst_s_bsafe_itemcmp (p1->primeExponent[0], 
-				     p2->primeExponent[0])||
-		dst_s_bsafe_itemcmp (p1->primeExponent[1], 
-				     p2->primeExponent[1])||
-		dst_s_bsafe_itemcmp (p1->coefficient, p2->coefficient);
-	return (status);
-}
-
-
-/* 
- * dst_bsafe_key_size() 
- * Function to calculate how the size of the key in bits
- */
-static int
-dst_bsafe_key_size(RSA_Key *r_key)
-{
-	int size;
-	A_PKCS_RSA_PRIVATE_KEY *private = NULL;
-
-	if (r_key == NULL)
-		return (-1);
-	if (r_key->rk_Private_Key)
-		B_GetKeyInfo((POINTER *) &private, r_key->rk_Private_Key,
-			     KI_PKCS_RSAPrivate);
-	else if (r_key->rk_Public_Key)
-		B_GetKeyInfo((POINTER *) &private, r_key->rk_Public_Key,
-			     KI_RSAPublic);
-	size = dst_s_calculate_bits(private->modulus.data,
-				    private->modulus.len * 8);
-	return (size);
-}
-
-/* 
- * dst_bsafe_md5digest(): function to digest data using MD5 digest function 
- * if needed 
- */
-static int
-dst_bsafe_md5digest(const int mode, B_ALGORITHM_OBJ *digest_obj,
-		    const u_char *data, const int len,
-		    u_char *digest, const int digest_len)
-{
-	int status = 0;
-	u_int work_size = 0;
-
-	if (digest_obj == NULL || *digest_obj == NULL) {
-		printf("NO digest obj\n");
-		exit(-33);
-	}
-
-	if ((mode & SIG_MODE_INIT) &&
-	    (status = B_DigestInit(*digest_obj, (B_KEY_OBJ) NULL,
-				   CHOOSER, NULL_SURRENDER)))
-		return (SIGN_INIT_FAILURE);
-
-	if ((mode & SIG_MODE_UPDATE) && data && (len > 0) &&
-	    (status = B_DigestUpdate(*digest_obj, (u_char *) data, len,
-				     NULL_SURRENDER)))
-		return (SIGN_UPDATE_FAILURE);
-
-	if (mode & SIG_MODE_FINAL) {
-		if (digest == NULL ||
-		    (status = B_DigestFinal(*digest_obj, digest, &work_size,
-					    digest_len, NULL_SURRENDER)))
-			return (SIGN_FINAL_FAILURE);
-		return (work_size);
-	}
-	return (0);
-}
-
-/* 
- * just use the standard memory functions for bsafe 
- */
-void
-T_free(POINTER block)
-{
-	free(block);
-}
-
-POINTER
-T_malloc(unsigned int len)
-{
-	return (malloc(len));
-}
-
-int
-T_memcmp(POINTER firstBlock, POINTER secondBlock, unsigned int len)
-{
-	return (memcmp(firstBlock, secondBlock, len));
-}
-
-void
-T_memcpy(POINTER output, POINTER input, unsigned int len)
-{
-	memcpy(output, input, len);
-}
-
-void
-T_memmove(POINTER output, POINTER input, unsigned int len)
-{
-	memmove(output, input, len);
-}
-
-void
-T_memset(POINTER output, int value, unsigned int len)
-{
-	memset(output, value, len);
-}
-
-POINTER
-T_realloc(POINTER block, unsigned int len)
-{
-	return (realloc(block, len));
-}
-
-#else  /* BSAFE NOT available */
-int
-dst_bsafe_init()
-{
-	return (0);
-}
-#endif /* BSAFE */
diff --git a/contrib/bind/lib/dst/cylink_link.c b/contrib/bind/lib/dst/cylink_link.c
deleted file mode 100644
index c7cb2767410b6..0000000000000
--- a/contrib/bind/lib/dst/cylink_link.c
+++ /dev/null
@@ -1,676 +0,0 @@
-#ifdef CYLINK_DSS
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/cylink_link.c,v 1.7 1999/10/13 16:39:22 vixie Exp $";
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-/* 
- * This file contains two components 
- * 1. Interface to the CYLINK library to allow compilation of Bind 
- *    with TIS/DNSSEC when CYLINK is not available 
- *    all calls to CYLINK are contained inside this file.
- * 2. The glue to connvert DSA KEYS to and from external formats
- */
-#include "port_before.h"
-
-#include <stdio.h>
-#include <unistd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <memory.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-
-#include "dst_internal.h"
-#include <toolkit.h>
-
-#include "port_after.h"
-
-typedef struct cylinkkey {
-	char *dk_signer;
-	uchar *dk_p;
-	uchar *dk_q;
-	uchar *dk_g;
-	uchar *dk_x;
-	uchar *dk_y;
-	ushort dk_p_bytes;
-} DSA_Key;
-
-#define NULL_PRIV_KEY(k)(k == NULL || k->dk_p == NULL || k->dk_q == NULL || \
-			  k->dk_g == NULL || k->dk_x == NULL)
-#define NULL_PUB_KEY(k)(k == NULL || k->dk_p == NULL || k->dk_q == NULL || \
-			 k->dk_g == NULL || k->dk_y == NULL)
-
-static int dst_cylink_sign(const int mode, DST_KEY *dkey, void **context,
-			   const u_char *data, const int len,
-			   u_char *signature, const int sig_len);
-
-static int dst_cylink_verify(const int mode, DST_KEY *dkey, void **context,
-			     const u_char *data, const int len,
-			     const u_char *signature, const int sig_len);
-
-static int dst_cylink_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-				 const int out_len);
-static int dst_cylink_from_dns_key(DST_KEY *s_key, const u_char *key,
-				   const int len);
-static int dst_cylink_key_to_file_format(const DST_KEY *key, char *buff,
-					 const int buff_len);
-static int dst_cylink_key_from_file_format(DST_KEY *d_key,
-					   const char *buff,
-					   const int buff_len);
-static void *dst_cylink_free_key_structure(void *key);
-
-static int dst_cylink_generate_keypair(DST_KEY *key, int exp);
-static int dst_cylink_compare_keys(const DST_KEY *key1, const DST_KEY *key2);
-
-static void *memcpyend(void *dest, const void *src, size_t n, size_t size);
-
-/*
- * dst_cylink_init()  Function to answer set up function pointers for 
- *	    CYLINK related functions 
- */
-int
-dst_cylink_init()
-{
-	if (dst_t_func[KEY_DSA] != NULL)
-		return (1);
-	dst_t_func[KEY_DSA] = malloc(sizeof(struct dst_func));
-	if (dst_t_func[KEY_DSA] == NULL)
-		return (0);
-	memset(dst_t_func[KEY_DSA], 0, sizeof(struct dst_func));
-	dst_t_func[KEY_DSA]->sign = dst_cylink_sign;
-	dst_t_func[KEY_DSA]->verify = dst_cylink_verify;
-	dst_t_func[KEY_DSA]->compare = dst_cylink_compare_keys;
-	dst_t_func[KEY_DSA]->generate = dst_cylink_generate_keypair;
-	dst_t_func[KEY_DSA]->destroy = dst_cylink_free_key_structure;
-	dst_t_func[KEY_DSA]->from_dns_key = dst_cylink_from_dns_key;
-	dst_t_func[KEY_DSA]->to_dns_key = dst_cylink_to_dns_key;
-	dst_t_func[KEY_DSA]->from_file_fmt = dst_cylink_key_from_file_format;
-	dst_t_func[KEY_DSA]->to_file_fmt = dst_cylink_key_to_file_format;
-	SetDataOrder(1);
-	return (1);
-}
-
-/*
- * dst_cylink_sign
- *     Call CYLINK signing functions to sign a block of data.
- *     There are three steps to signing, INIT (initialize structures), 
- *     UPDATE (hash (more) data), FINAL (generate a signature).  This
- *     routine performs one or more of these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     algobj      structure holds context for a sign done in multiple calls.
- *     context   the context to use for this computation
- *     data	data to be signed.
- *     len	 length in bytes of data.
- *     priv_key    key to use for signing.
- *     signature   location to store signature.
- *     sig_len     size in bytes of signature field.
- * returns 
- *	N  Success on SIG_MODE_FINAL = returns signature length in bytes
- *         N is 41 for DNS
- *	0  Success on SIG_MODE_INIT  and UPDATE
- *	 <0  Failure
- */
-
-static int
-dst_cylink_sign(const int mode, DST_KEY *dkey, void **context,
-		const u_char *data, const int len, 
-		u_char *signature, const int sig_len)
-{
-	int sign_len = 0;
-	int status;
-	SHA_context *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT) 
-		ctx = (SHA_context *) malloc(sizeof(SHA_context));
-	else if (context)
-		ctx = (SHA_context *) *context;
-	if (ctx == NULL)
-		return (-1);
-
-	if (mode & SIG_MODE_INIT)
-		SHAInit(ctx);
-
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0)) {
-		status = SHAUpdate(ctx, (u_char *) data, len);
-		if (status != SUCCESS)
-			return (SIGN_UPDATE_FAILURE);
-	}
-	if (mode & SIG_MODE_FINAL) {
-		DSA_Key *key;
-		uchar digest[SHA_LENGTH];
-		uchar rand[SHA_LENGTH];
-		uchar r[SHA_LENGTH], s[SHA_LENGTH];
-
-		if (signature == NULL || sig_len < 2 * SHA_LENGTH)
-			return (SIGN_FINAL_FAILURE);
-		if ((status = SHAFinal(ctx, digest)) != SUCCESS)
-			return (SIGN_FINAL_FAILURE);
-		SAFE_FREE(ctx);
-		if (dkey == NULL || dkey->dk_KEY_struct == NULL)
-			return (-1);
-		key = (DSA_Key *) dkey->dk_KEY_struct;
-		if (NULL_PRIV_KEY(key))
-			return (-2);
-		dst_random(DST_RAND_STD, sizeof(rand), rand);
-		status = GenDSSSignature(key->dk_p_bytes, key->dk_p,
-					 key->dk_q, key->dk_g, key->dk_x,
-					 rand, r, s, digest);
-		if (status != SUCCESS)
-			return (SIGN_FINAL_FAILURE);
-		*signature = (dkey->dk_key_size - 512)/64;
-		sign_len = 1;
-		memcpy(signature + sign_len, r, SHA_LENGTH);
-		sign_len += SHA_LENGTH;
-		memcpy(signature + sign_len, s, SHA_LENGTH);
-		sign_len += SHA_LENGTH;
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}
-	return (sign_len);
-}
-
-
-/*
- * Dst_cylink_verify 
- *     Calls CYLINK verification routines.  There are three steps to 
- *     verification, INIT (initialize structures), UPDATE (hash (more) data), 
- *     FINAL (generate a signature).  This routine performs one or more of 
- *     these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     dkey      structure holds context for a verify done in multiple calls.
- *     context   algorithm specific context for the current context processing
- *     data	data signed.
- *     len	 length in bytes of data.
- *     pub_key     key to use for verify.
- *     signature   signature.
- *     sig_len     length in bytes of signature.
- * returns 
- *     0  Success 
- *    <0  Failure
- */
-
-static int
-dst_cylink_verify(const int mode, DST_KEY *dkey, void **context,
-		  const u_char *data, const int len,
-		  const u_char *signature, const int sig_len)
-{
-	int status;
-	SHA_context *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT) 
-		ctx = (SHA_context *) malloc(sizeof(SHA_context));
-	else if (context)
-		ctx = (SHA_context *) *context;
-	if (ctx == NULL)
-		return (-1);
-
-	if (mode & SIG_MODE_INIT)
-		SHAInit(ctx);
-
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0)) {
-		status = SHAUpdate(ctx, (u_char *) data, len);
-		if (status != SUCCESS)
-			return (VERIFY_UPDATE_FAILURE);
-	}
-	if (mode & SIG_MODE_FINAL) {
-		DSA_Key *key;
-		uchar digest[SHA_LENGTH];
-		uchar r[SHA_LENGTH], s[SHA_LENGTH];
-
-		if (dkey == NULL || dkey->dk_KEY_struct == NULL)
-			return (-1);
-		key = (DSA_Key *) dkey->dk_KEY_struct;
-		if (NULL_PUB_KEY(key))
-			return (-2);
-		if (signature == NULL || sig_len != (2 * SHA_LENGTH +1))
-			return (SIGN_FINAL_FAILURE);
-		status = SHAFinal(ctx, digest);
-		SAFE_FREE(ctx);
-		if (status != SUCCESS)
-			return (SIGN_FINAL_FAILURE);
-		if (((int)*signature) != ((key->dk_p_bytes -64)/8))
-			return(VERIFY_FINAL_FAILURE);
-
-		memcpy(r, signature +1, SHA_LENGTH);
-		memcpy(s, signature + SHA_LENGTH +1, SHA_LENGTH);
-		status = VerDSSSignature(key->dk_p_bytes, key->dk_p,
-					 key->dk_q, key->dk_g, key->dk_y,
-					 r, s, digest);
-		if (status != SUCCESS)
-			return (VERIFY_FINAL_FAILURE);
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}
-	return (0);
-}
-
-
-/*
- * dst_cylink_to_dns_key
- *     Converts key from DSA to DNS distribution format
- *     This function gets in a pointer to the public key and a work area
- *     to write the key into.
- * Parameters
- *     public    KEY structure 
- *     out_str   buffer to write encoded key into 
- *     out_len   size of out_str
- * Return
- *	N >= 0 length of encoded key 
- *	n < 0  error 
- */
-
-static int
-dst_cylink_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-		      const int out_len)
-{
-	u_char *op = out_str;
-	int t;
-	DSA_Key *key;
-
-	if (in_key == NULL || in_key->dk_KEY_struct == NULL ||
-	    out_len <= 0 || out_str == NULL)
-		return (-1);
-	key = (DSA_Key *) in_key->dk_KEY_struct;
-
-	t = (key->dk_p_bytes - 64) / 8;
-
-	*op++ = t;
-	memcpy(op, key->dk_q, SHA_LENGTH);
-	op += SHA_LENGTH;
-	memcpy(op, key->dk_p, key->dk_p_bytes);
-	op += key->dk_p_bytes;
-	memcpy(op, key->dk_g, key->dk_p_bytes);
-	op += key->dk_p_bytes;
-	memcpy(op, key->dk_y, key->dk_p_bytes);
-	op += key->dk_p_bytes;
-
-	return (op - out_str);
-}
-
-
-/*
- * dst_cylink_from_dns_key
- *     Converts from a DNS KEY RR format to an RSA KEY. 
- * Parameters
- *     len    Length in bytes of DNS key
- *     key    DNS key
- *     name   Key name
- *     s_key  DST structure that will point to the RSA key this routine
- *		will build.
- * Return
- *     0   The input key, s_key or name was null.
- *     1   Success
- */
-static int
-dst_cylink_from_dns_key(DST_KEY *s_key, const u_char *key, const int len)
-{
-	int t;
-	const u_char *key_ptr = key;
-	DSA_Key *d_key;
-
-	if (s_key == NULL || len < 0 || key == NULL)
-		return (0);
-
-	if (len == 0)  /* process null key */
-		return (1);
-
-	if (key_ptr == NULL)  
-		return (0);
-	t = (int) *key_ptr++;	/* length of exponent in bytes */
-
-	if ((3 * (t * 8 + 64) + SHA_LENGTH + 1) != len)
-		return (0);
-
-	if ((d_key = (DSA_Key *) malloc(sizeof(DSA_Key))) == NULL) {
-		EREPORT(("dst_cylink_from_dns_key(): Memory allocation error 1"));
-		return (0);
-	}
-	memset(d_key, 0, sizeof(DSA_Key));
-	s_key->dk_KEY_struct = (void *) d_key;
-	d_key->dk_signer = strdup(s_key->dk_key_name);
-	d_key->dk_p_bytes = 64 + 8 * t;
-
-	if ((d_key->dk_q = (uchar *) malloc(SHA_LENGTH)) == NULL)
-		return (0);
-	memcpy(d_key->dk_q, key_ptr, SHA_LENGTH);
-	key_ptr += SHA_LENGTH;
-
-	if ((d_key->dk_p = (uchar *) malloc(d_key->dk_p_bytes)) == NULL)
-		return (0);
-	memcpy(d_key->dk_p, key_ptr, d_key->dk_p_bytes);
-	key_ptr += d_key->dk_p_bytes;
-
-	if ((d_key->dk_g = (uchar *) malloc(d_key->dk_p_bytes)) == NULL)
-		return (0);
-	memcpy(d_key->dk_g, key_ptr, d_key->dk_p_bytes);
-	key_ptr += d_key->dk_p_bytes;
-
-	if ((d_key->dk_y = (uchar *) malloc(d_key->dk_p_bytes)) == NULL)
-		return (0);
-	memcpy(d_key->dk_y, key_ptr, d_key->dk_p_bytes);
-	key_ptr += d_key->dk_p_bytes;
-
-	s_key->dk_id = dst_s_id_calc(key, len); 
-	s_key->dk_key_size = d_key->dk_p_bytes * 8;
-	return (1);
-}
-
-
-/************************************************************************** 
- *  dst_cylink_key_to_file_format
- *	Encodes an DSA Key into the portable file format.
- *  Parameters 
- *	key      DSA KEY structure 
- *	buff      output buffer
- *	buff_len  size of output buffer 
- *  Return
- *	0  Failure - null input rkey
- *     -1  Failure - not enough space in output area
- *	N  Success - Length of data returned in buff
- */
-
-static int
-dst_cylink_key_to_file_format(const DST_KEY *key, char *buff,
-			      const int buff_len)
-{
-	char *bp;
-	int len, b_len;
-	DSA_Key *dkey;
-	u_char num[256]; /* More than long enough for DSA keys */
-
-	if (key == NULL || key->dk_KEY_struct == NULL)	/* no output */
-		return (0);
-	if (buff == NULL || buff_len <= (int) strlen(key_file_fmt_str))
-		return (-1);	/* no OR not enough space in output area */
-
-	dkey = (DSA_Key *) key->dk_KEY_struct;
-
-	    memset(buff, 0, buff_len);	/* just in case */
-	/* write file header */
-	sprintf(buff, key_file_fmt_str, KEY_FILE_FORMAT, KEY_DSA, "DSA");
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->dk_p, dkey->dk_p_bytes);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Prime(p): ",
-					       num, dkey->dk_p_bytes)) <= 0)
-		return (-1);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->dk_q, dkey->dk_p_bytes);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Subprime(q): ",
-					       num, SHA_LENGTH)) <= 0)
-		return (-2);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->dk_g, dkey->dk_p_bytes);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Base(g): ",
-					       num, dkey->dk_p_bytes)) <= 0)
-		return (-3);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->dk_x, dkey->dk_p_bytes);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Private_value(x): ",
-					       num, SHA_LENGTH)) <= 0)
-		return (-4);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->dk_y, dkey->dk_p_bytes);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Public_value(y): ",
-					       num, dkey->dk_p_bytes)) <= 0)
-		return (-4);
-
-	bp += len;
-	b_len -= len;
-	return (buff_len - b_len);
-}
-
-
-/************************************************************************** 
- * dst_cylink_key_from_file_format
- *     Converts contents of a private key file into a private DSA key. 
- * Parameters 
- *     DSA_Key    structure to put key into 
- *     buff       buffer containing the encoded key 
- *     buff_len   the length of the buffer
- * Return
- *     n >= 0 Foot print of the key converted 
- *     n <  0 Error in conversion 
- */
-
-static int
-dst_cylink_key_from_file_format(DST_KEY *d_key, const char *buff,
-				const int buff_len)
-{
-	u_char s[DSS_LENGTH_MAX];
-	u_char dns[1024];
-	int len, s_len = sizeof(s);
-	int foot = -1, dnslen;
-	const char *p = buff;
-	DSA_Key *dsa_key;
-
-	if (d_key == NULL || buff == NULL || buff_len <= 0)
-		return (-1);
-
-	dsa_key = (DSA_Key *) malloc(sizeof(DSA_Key));
-	if (dsa_key == NULL) {
-		return (-2);
-	}
-	memset(dsa_key, 0, sizeof(*dsa_key));
-	d_key->dk_KEY_struct = (void *) dsa_key;
-
-	if (!dst_s_verify_str(&p, "Prime(p): "))
-		return (-3);
-	memset(s, 0, s_len);
-	if ((len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)) == 0)
-		return (-4);
-	dsa_key->dk_p_bytes = len;
-	if ((dsa_key->dk_p = malloc(len)) == NULL)
-		return (-5);
-	memcpy(dsa_key->dk_p, s + s_len - len, len);
-
-	while (*++p && p < (const char *) &buff[buff_len]) {
-		if (dst_s_verify_str(&p, "Subprime(q): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-6);
-			if ((dsa_key->dk_q = malloc(SHA_LENGTH)) == NULL)
-				return (-7);
-			memcpyend(dsa_key->dk_q, s + s_len - len, len,
-				  SHA_LENGTH);
-		} else if (dst_s_verify_str(&p, "Base(g): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-8);
-			if ((dsa_key->dk_g = malloc(dsa_key->dk_p_bytes))
-			    == NULL)
-				return (-9);
-			memcpyend(dsa_key->dk_g, s + s_len - len, len,
-				  dsa_key->dk_p_bytes);
-		} else if (dst_s_verify_str(&p, "Private_value(x): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-10);
-			if ((dsa_key->dk_x = malloc(SHA_LENGTH)) == NULL)
-				return (-11);
-			memcpyend(dsa_key->dk_x, s + s_len - len, len,
-				  SHA_LENGTH);
-		} else if (dst_s_verify_str(&p, "Public_value(y): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-10);
-			if ((dsa_key->dk_y = malloc(dsa_key->dk_p_bytes))
-			    == NULL)
-				return (-11);
-			memcpyend(dsa_key->dk_y, s + s_len - len, len,
-				  dsa_key->dk_p_bytes);
-		} else {
-			EREPORT(("Decode_DSAKey(): Bad keyword %s\n", p));
-			return (-12);
-		}
-	}			/* while p */
-
-	d_key->dk_key_size = dsa_key->dk_p_bytes * 8;
-	dnslen = d_key->dk_func->to_dns_key(d_key, dns, sizeof(dns));
-	foot = dst_s_id_calc(dns, dnslen);
-
-	return (foot);
-}
-
-
-/************************************************************************** 
- * dst_cylink_free_key_structure
- *     Frees all dynamicly allocated structures in DSA_Key.
- */
-
-static void *
-dst_cylink_free_key_structure(void *key)
-{
-	DSA_Key *d_key = (DSA_Key *) key;
-	if (d_key != NULL) {
-		SAFE_FREE(d_key->dk_signer);
-		SAFE_FREE(d_key->dk_p);
-		SAFE_FREE(d_key->dk_q);
-		SAFE_FREE(d_key->dk_g);
-		SAFE_FREE(d_key->dk_x);
-		SAFE_FREE(d_key->dk_y);
-		SAFE_FREE(d_key);
-	}
-	return (NULL);
-}
-
-
-/************************************************************************** 
- *  dst_cylink_generate_keypair
- *	Generates unique keys that are hard to predict.
- *  Parameters
- *	key    generic Key structure
- *	exp    the public exponent
- *  Return 
- *	0 Failure 
- *	1 Success
- */
-
-static int
-dst_cylink_generate_keypair(DST_KEY *key, int nothing)
-{
-	int status, dnslen, n;
-	DSA_Key *dsa;
-	u_char rand[SHA_LENGTH];
-	u_char dns[1024];
-
-	if (key == NULL || key->dk_alg != KEY_DSA)
-		return (0);
-
-	if ((dsa = (DSA_Key *) malloc(sizeof(DSA_Key))) == NULL) {
-		EREPORT(("dst_cylink_generate_keypair: Memory allocation error 3"));
-		return (0);
-	}
-	memset(dsa, 0, sizeof(*dsa));
-
-	dsa->dk_p_bytes = key->dk_key_size / 8;
-	dsa->dk_p = (uchar *) malloc(dsa->dk_p_bytes);
-	dsa->dk_q = (uchar *) malloc(SHA_LENGTH);
-	dsa->dk_g = (uchar *) malloc(dsa->dk_p_bytes);
-	dsa->dk_x = (uchar *) malloc(SHA_LENGTH);
-	dsa->dk_y = (uchar *) malloc(dsa->dk_p_bytes);
-	if (!dsa->dk_p || !dsa->dk_q || !dsa->dk_g || !dsa->dk_x || !dsa->dk_y) {
-		EREPORT(("dst_cylink_generate_keypair: Memory allocation error 4"));
-		return (0);
-	}
-	n = dst_random(DST_RAND_KEY, sizeof(rand), rand);
-	if (n != sizeof(rand))
-		return (0);
-	status = GenDSSParameters(dsa->dk_p_bytes, dsa->dk_p, dsa->dk_q,
-				  dsa->dk_g, rand, NULL);
-	if (status != SUCCESS)
-		return (0);
-
-	status = GenDSSKey(dsa->dk_p_bytes, dsa->dk_p, dsa->dk_q, dsa->dk_g,
-			   dsa->dk_x, dsa->dk_y, rand);
-	if (status != SUCCESS)
-		return (0);
-	memset(rand, 0, sizeof(rand));
-	key->dk_KEY_struct = (void *) dsa;
-	dnslen = key->dk_func->to_dns_key(key, dns, sizeof(dns));
-	key->dk_id = dst_s_id_calc(dns, dnslen);
-	return (1);
-}
-
-
-/*
- *  dst_cylink_compare_keys
- *	Compare two keys for equality.
- *  Return
- *	0	  The keys are equal
- *	NON-ZERO   The keys are not equal
- */
-
-static int
-dst_cylink_compare_keys(const DST_KEY *key1, const DST_KEY *key2)
-{
-	int status;
-	DSA_Key *dkey1 = (DSA_Key *) key1->dk_KEY_struct;
-	DSA_Key *dkey2 = (DSA_Key *) key2->dk_KEY_struct;
-
-	if (dkey1 == NULL && dkey2 == NULL)
-		return (0);
-	else if (dkey1 == NULL) 
-		return (2);
-	else if (dkey2 == NULL)
-		return(1);
-
-	if (dkey1->dk_p_bytes != dkey2->dk_p_bytes)
-		return (201);
-	status = memcmp(dkey1->dk_p, dkey2->dk_p, dkey1->dk_p_bytes) ||
-		memcmp(dkey1->dk_q, dkey2->dk_q, SHA_LENGTH) ||
-		memcmp(dkey1->dk_g, dkey2->dk_g, dkey1->dk_p_bytes) ||
-		memcmp(dkey1->dk_y, dkey2->dk_y, dkey1->dk_p_bytes);
-	if (status)
-		return (status);
-	if (dkey1->dk_x || dkey2->dk_x) {
-		if (dkey1->dk_x == NULL || dkey2->dk_x == NULL)
-			return (202);
-		return (memcmp(dkey1->dk_x, dkey2->dk_x, dkey1->dk_p_bytes));
-	} else
-		return (0);
-}
-
-static void *
-memcpyend(void *dest, const void *src, size_t n, size_t size) {
-	if (n < size)
-		memset(dest, 0, size - n);
-	memcpy((char *)dest + size - n, src, n);
-	return dest;
-}
-
-#else 
-int
-dst_cylink_init() 
-{
-	return (0);
-}
-#endif /* CYLINK */
diff --git a/contrib/bind/lib/dst/dst_api.c b/contrib/bind/lib/dst/dst_api.c
deleted file mode 100644
index f25438ed6ef9e..0000000000000
--- a/contrib/bind/lib/dst/dst_api.c
+++ /dev/null
@@ -1,1068 +0,0 @@
-#ifndef LINT
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/dst_api.c,v 1.14 2000/02/28 07:51:50 vixie Exp $";
-#endif
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-/*
- * This file contains the interface between the DST API and the crypto API.
- * This is the only file that needs to be changed if the crypto system is
- * changed.  Exported functions are:
- * void dst_init()	 Initialize the toolkit
- * int  dst_check_algorithm()   Function to determines if alg is suppored.
- * int  dst_compare_keys()      Function to compare two keys for equality.
- * int  dst_sign_data()         Incremental signing routine.
- * int  dst_verify_data()       Incremental verify routine.
- * int  dst_generate_key()      Function to generate new KEY
- * DST_KEY *dst_read_key()      Function to retrieve private/public KEY.
- * void dst_write_key()         Function to write out a key.
- * DST_KEY *dst_dnskey_to_key() Function to convert DNS KEY RR to a DST
- *				KEY structure.
- * int dst_key_to_dnskey() 	Function to return a public key in DNS 
- *				format binary
- * DST_KEY *dst_buffer_to_key() Converst a data in buffer to KEY
- * int *dst_key_to_buffer()	Writes out DST_KEY key matterial in buffer
- * void dst_free_key()       	Releases all memory referenced by key structure
- */
-
-#include "port_before.h"
-#include <stdio.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <stdlib.h>
-#include <unistd.h>
-#include <string.h>
-#include <memory.h>
-#include <ctype.h>
-#include <time.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include "dst_internal.h"
-#include "port_after.h"
-
-/* static variables */
-static int done_init = 0;
-dst_func *dst_t_func[DST_MAX_ALGS];
-char *key_file_fmt_str = "Private-key-format: v%s\nAlgorithm: %d (%s)\n";
-char *dst_path = "";
-
-/* internal I/O functions */
-static DST_KEY *dst_s_read_public_key(const char *in_name, 
-				      const u_int16_t in_id, int in_alg);
-static int dst_s_read_private_key_file(char *name, DST_KEY *pk_key,
-				       u_int16_t in_id, int in_alg);
-static int dst_s_write_public_key(const DST_KEY *key);
-static int dst_s_write_private_key(const DST_KEY *key);
-
-/* internal function to set up data structure */
-static DST_KEY *dst_s_get_key_struct(const char *name, const int alg,
-				     const int flags, const int protocol,
-				     const int bits);
-
-/*
- *  dst_init
- *	This function initializes the Digital Signature Toolkit.
- *	Right now, it just checks the DSTKEYPATH environment variable.
- *  Parameters
- *	none
- *  Returns
- *	none
- */
-void
-dst_init()
-{
-	char *s;
-	int len;
-
-	if (done_init != 0)
-		return;
-	done_init = 1;
-
-	s = getenv("DSTKEYPATH");
-	len = 0;
-	if (s) {
-		struct stat statbuf;
-
-		len = strlen(s);
-		if (len > PATH_MAX) {
-			EREPORT(("%s is longer than %d characters, ignoring\n",
-				 s, PATH_MAX));
-		} else if (stat(s, &statbuf) != 0 || !S_ISDIR(statbuf.st_mode)) {
-			EREPORT(("%s is not a valid directory\n", s));
-		} else {
-			dst_path = (char *) malloc(len + 2);
-			memcpy(dst_path, s, len + 1);
-			if (dst_path[strlen(dst_path) - 1] != '/') {
-				dst_path[strlen(dst_path) + 1] = 0;
-				dst_path[strlen(dst_path)] = '/';
-			}
-		}
-	}
-	memset(dst_t_func, 0, sizeof(dst_t_func));
-	/* first one is selected */
-	dst_bsafe_init();
-	dst_rsaref_init(); 
-	dst_hmac_md5_init();
-	dst_eay_dss_init();
-	dst_cylink_init();
-}
-
-/*
- *  dst_check_algorithm
- *	This function determines if the crypto system for the specified
- *	algorithm is present.
- *  Parameters
- *	alg     1       KEY_RSA
- *		3       KEY_DSA
- *	      157     KEY_HMAC_MD5
- *		      future algorithms TBD and registered with IANA.
- *  Returns
- *	1 - The algorithm is available.
- *	0 - The algorithm is not available.
- */
-int
-dst_check_algorithm(const int alg)
-{
-	return (dst_t_func[alg] != NULL);
-}
-
-/* 
- * dst_s_get_key_struct 
- *	This function allocates key structure and fills in some of the 
- *	fields of the structure. 
- * Parameters: 
- *	name:     the name of the key 
- *	alg:      the algorithm number 
- *	flags:    the dns flags of the key
- *	protocol: the dns protocol of the key
- *	bits:     the size of the key
- * Returns:
- *       NULL if error
- *       valid pointer otherwise
- */
-static DST_KEY *
-dst_s_get_key_struct(const char *name, const int alg, const int flags,
-		     const int protocol, const int bits)
-{
-	DST_KEY *new_key = NULL; 
-
-	if (dst_check_algorithm(alg)) /* make sure alg is available */
-		new_key = (DST_KEY *) malloc(sizeof(*new_key));
-	if (new_key == NULL)
-		return (NULL);
-
-	memset(new_key, 0, sizeof(*new_key));
-	new_key->dk_key_name = strdup(name);
-	new_key->dk_alg = alg;
-	new_key->dk_flags = flags;
-	new_key->dk_proto = protocol;
-	new_key->dk_KEY_struct = NULL;
-	new_key->dk_key_size = bits;
-	new_key->dk_func = dst_t_func[alg];
-	return (new_key);
-}
-
-/*
- *  dst_compare_keys
- *	Compares two keys for equality.
- *  Parameters
- *	key1, key2      Two keys to be compared.
- *  Returns
- *	0	       The keys are equal.
- *	non-zero	The keys are not equal.
- */
-
-int
-dst_compare_keys(const DST_KEY *key1, const DST_KEY *key2)
-{
-	if (key1 == key2)
-		return (0);
-	if (key1 == NULL || key2 == NULL)
-		return (4);
-	if (key1->dk_alg != key2->dk_alg)
-		return (1);
-	if (key1->dk_key_size != key2->dk_key_size)
-		return (2);
-	if (key1->dk_id != key2->dk_id)
-		return (3);
-	return (key1->dk_func->compare(key1, key2));
-}
-
-
-/*
- * dst_sign_data
- *	An incremental signing function.  Data is signed in steps.
- *	First the context must be initialized (SIG_MODE_INIT).
- *	Then data is hashed (SIG_MODE_UPDATE).  Finally the signature
- *	itself is created (SIG_MODE_FINAL).  This function can be called
- *	once with INIT, UPDATE and FINAL modes all set, or it can be
-
- *	called separately with a different mode set for each step.  The
- *	UPDATE step can be repeated.
- * Parameters
- *	mode    A bit mask used to specify operation(s) to be performed.
- *		  SIG_MODE_INIT	   1   Initialize digest
- *		  SIG_MODE_UPDATE	 2   Add data to digest
- *		  SIG_MODE_FINAL	  4   Generate signature
- *					      from signature
- *		  SIG_MODE_ALL (SIG_MODE_INIT,SIG_MODE_UPDATE,SIG_MODE_FINAL
- *	data    Data to be signed.
- *	len     The length in bytes of data to be signed.
- *	in_key  Contains a private key to sign with.
- *		  KEY structures should be handled (created, converted,
- *		  compared, stored, freed) by the DST.
- *	signature
- *	      The location to which the signature will be written.
- *	sig_len Length of the signature field in bytes.
- * Return
- *	 0      Successfull INIT or Update operation
- *	>0      success FINAL (sign) operation
- *	<0      failure
- */
-
-int
-dst_sign_data(const int mode, DST_KEY *in_key, void **context, 
-	      const u_char *data, const int len,
-	      u_char *signature, const int sig_len)
-{
-	DUMP(data, mode, len, "dst_sign_data()");
-
-	if (mode & SIG_MODE_FINAL &&
-	    (in_key->dk_KEY_struct == NULL || signature == NULL))
-		return (MISSING_KEY_OR_SIGNATURE);
-
-	if (in_key->dk_func && in_key->dk_func->sign)
-		return (in_key->dk_func->sign(mode, in_key, context, data, len,
-					      signature, sig_len));
-	return (UNKNOWN_KEYALG);
-}
-
-
-/*
- *  dst_verify_data
- *	An incremental verify function.  Data is verified in steps.
- *	First the context must be initialized (SIG_MODE_INIT).
- *	Then data is hashed (SIG_MODE_UPDATE).  Finally the signature
- *	is verified (SIG_MODE_FINAL).  This function can be called
- *	once with INIT, UPDATE and FINAL modes all set, or it can be
- *	called separately with a different mode set for each step.  The
- *	UPDATE step can be repeated.
- *  Parameters
- *	mode	Operations to perform this time.
- *		      SIG_MODE_INIT       1   Initialize digest
- *		      SIG_MODE_UPDATE     2   add data to digest
- *		      SIG_MODE_FINAL      4   verify signature
- *		      SIG_MODE_ALL
- *			  (SIG_MODE_INIT,SIG_MODE_UPDATE,SIG_MODE_FINAL)
- *	data	Data to pass through the hash function.
- *	len	 Length of the data in bytes.
- *	in_key      Key for verification.
- *	signature   Location of signature.
- *	sig_len     Length of the signature in bytes.
- *  Returns
- *	0	   Verify success
- *	Non-Zero    Verify Failure
- */
-
-int
-dst_verify_data(const int mode, DST_KEY *in_key, void **context, 
-		const u_char *data, const int len,
-		const u_char *signature, const int sig_len)
-{
-	DUMP(data, mode, len, "dst_verify_data()");
-	if (mode & SIG_MODE_FINAL &&
-	    (in_key->dk_KEY_struct == NULL || signature == NULL))
-		return (MISSING_KEY_OR_SIGNATURE);
-
-	if (in_key->dk_func == NULL || in_key->dk_func->verify == NULL)
-		return (UNSUPPORTED_KEYALG);
-	return (in_key->dk_func->verify(mode, in_key, context, data, len,
-					signature, sig_len));
-}
-
-
-/*
- *  dst_read_private_key
- *	Access a private key.  First the list of private keys that have
- *	already been read in is searched, then the key accessed on disk.
- *	If the private key can be found, it is returned.  If the key cannot
- *	be found, a null pointer is returned.  The options specify required
- *	key characteristics.  If the private key requested does not have
- *	these characteristics, it will not be read.
- *  Parameters
- *	in_keyname  The private key name.
- *	in_id	    The id of the private key.
- *	options     DST_FORCE_READ  Read from disk - don't use a previously
- *				      read key.
- *		  DST_CAN_SIGN    The key must be useable for signing.
- *		  DST_NO_AUTHEN   The key must be useable for authentication.
- *		  DST_STANDARD    Return any key 
- *  Returns
- *	NULL	If there is no key found in the current directory or
- *		      this key has not been loaded before.
- *	!NULL       Success - KEY structure returned.
- */
-
-DST_KEY *
-dst_read_key(const char *in_keyname, const u_int16_t in_id, 
-	     const int in_alg, const int type)
-{
-	char keyname[PATH_MAX];
-	DST_KEY *dg_key = NULL, *pubkey = NULL;
-
-	if (!dst_check_algorithm(in_alg)) { /* make sure alg is available */
-		EREPORT(("dst_read_private_key(): Algorithm %d not suppored\n",
-			 in_alg));
-		return (NULL);
-	}
-	if ((type & (DST_PUBLIC | DST_PRIVATE)) == 0) 
-		return (NULL);
-	if (in_keyname == NULL) {
-		EREPORT(("dst_read_private_key(): Null key name passed in\n"));
-		return (NULL);
-	} else
-		strcpy(keyname, in_keyname);
-
-	/* before I read in the public key, check if it is allowed to sign */
-	if ((pubkey = dst_s_read_public_key(keyname, in_id, in_alg)) == NULL)
-		return (NULL);
-
-	if (type == DST_PUBLIC) 
-		return pubkey; 
-
-	if (!(dg_key = dst_s_get_key_struct(keyname, pubkey->dk_alg,
-					 pubkey->dk_flags, pubkey->dk_proto,
-					    0)))
-		return (dg_key);
-	/* Fill in private key and some fields in the general key structure */
-	if (dst_s_read_private_key_file(keyname, dg_key, pubkey->dk_id,
-					pubkey->dk_alg) == 0)
-		dg_key = dst_free_key(dg_key);
-
-	pubkey = dst_free_key(pubkey);
-	return (dg_key);
-}
-
-int 
-dst_write_key(const DST_KEY *key, const int type)
-{
-	int pub = 0, priv = 0;
-
-	if (key == NULL) 
-		return (0);
-	if (!dst_check_algorithm(key->dk_alg)) { /* make sure alg is available */
-		EREPORT(("dst_write_key(): Algorithm %d not suppored\n", 
-			 key->dk_alg));
-		return (UNSUPPORTED_KEYALG);
-	}
-	if ((type & (DST_PRIVATE|DST_PUBLIC)) == 0)
-		return (0);
-
-	if (type & DST_PUBLIC) 
-		if ((pub = dst_s_write_public_key(key)) < 0)
-			return (pub);
-	if (type & DST_PRIVATE)
-		if ((priv = dst_s_write_private_key(key)) < 0)
-			return (priv);
-	return (priv+pub);
-}
-
-/*
- *  dst_write_private_key
- *	Write a private key to disk.  The filename will be of the form:
- *	K<key->dk_name>+<key->dk_alg>+<key->dk_id>.<private key suffix>.
- *	If there is already a file with this name, an error is returned.
- *
- *  Parameters
- *	key     A DST managed key structure that contains
- *	      all information needed about a key.
- *  Return
- *	>= 0    Correct behavior.  Returns length of encoded key value
- *		  written to disk.
- *	<  0    error.
- */
-
-static int
-dst_s_write_private_key(const DST_KEY *key)
-{
-	u_char encoded_block[RAW_KEY_SIZE];
-	char file[PATH_MAX];
-	int len;
-	FILE *fp;
-
-	/* First encode the key into the portable key format */
-	if (key == NULL)
-		return (-1);
-	if (key->dk_KEY_struct == NULL)
-		return (0);	/* null key has no private key */
-
-	if (key->dk_func == NULL || key->dk_func->to_file_fmt == NULL) {
-		EREPORT(("dst_write_private_key(): Unsupported operation %d\n",
-			 key->dk_alg));
-		return (-5);
-	} else if ((len = key->dk_func->to_file_fmt(key, (char *)encoded_block,
-					     sizeof(encoded_block))) <= 0) {
-		EREPORT(("dst_write_private_key(): Failed encoding private RSA bsafe key %d\n", len));
-		return (-8);
-	}
-	/* Now I can create the file I want to use */
-	dst_s_build_filename(file, key->dk_key_name, key->dk_id, key->dk_alg,
-			     PRIVATE_KEY, PATH_MAX);
-
-	/* Do not overwrite an existing file */
-	if ((fp = dst_s_fopen(file, "w", 0600)) != NULL) {
-		int nn;
-		if ((nn = fwrite(encoded_block, 1, len, fp)) != len) {
-			EREPORT(("dst_write_private_key(): Write failure on %s %d != %d errno=%d\n",
-				 file, out_len, nn, errno));
-			return (-5);
-		}
-		fclose(fp);
-	} else {
-		EREPORT(("dst_write_private_key(): Can not create file %s\n"
-			 ,file));
-		return (-6);
-	}
-	memset(encoded_block, 0, len);
-	return (len);
-}
-
-/*
-*
- *  dst_read_public_key
- *	Read a public key from disk and store in a DST key structure.
- *  Parameters
- *	in_name	 K<in_name><in_id>.<public key suffix> is the
- *		      filename of the key file to be read.
- *  Returns
- *	NULL	    If the key does not exist or no name is supplied.
- *	NON-NULL	Initalized key structure if the key exists.
- */
-
-static DST_KEY *
-dst_s_read_public_key(const char *in_name, const u_int16_t in_id, int in_alg)
-{
-	int flags, proto, alg, len, dlen;
-	int c;
-	char name[PATH_MAX], enckey[RAW_KEY_SIZE], *notspace;
-	u_char deckey[RAW_KEY_SIZE];
-	FILE *fp;
-
-	if (in_name == NULL) {
-		EREPORT(("dst_read_public_key(): No key name given\n"));
-		return (NULL);
-	}
-	if (dst_s_build_filename(name, in_name, in_id, in_alg, PUBLIC_KEY,
-				 PATH_MAX) == -1) {
-		EREPORT(("dst_read_public_key(): Cannot make filename from %s, %d, and %s\n",
-			 in_name, in_id, PUBLIC_KEY));
-		return (NULL);
-	}
-	/*
-	 * Open the file and read it's formatted contents up to key
-	 * File format:
-	 *    domain.name [ttl] [IN] KEY  <flags> <protocol> <algorithm> <key>
-	 * flags, proto, alg stored as decimal (or hex numbers FIXME).
-	 * (FIXME: handle parentheses for line continuation.)
-	 */
-	if ((fp = dst_s_fopen(name, "r", 0)) == NULL) {
-		EREPORT(("dst_read_public_key(): Public Key not found %s\n",
-			 name));
-		return (NULL);
-	}
-	/* Skip domain name, which ends at first blank */
-	while ((c = getc(fp)) != EOF)
-		if (isspace(c))
-			break;
-	/* Skip blank to get to next field */
-	while ((c = getc(fp)) != EOF)
-		if (!isspace(c))
-			break;
-
-	/* Skip optional TTL -- if initial digit, skip whole word. */
-	if (isdigit(c)) {
-		while ((c = getc(fp)) != EOF)
-			if (isspace(c))
-				break;
-		while ((c = getc(fp)) != EOF)
-			if (!isspace(c))
-				break;
-	}
-	/* Skip optional "IN" */
-	if (c == 'I' || c == 'i') {
-		while ((c = getc(fp)) != EOF)
-			if (isspace(c))
-				break;
-		while ((c = getc(fp)) != EOF)
-			if (!isspace(c))
-				break;
-	}
-	/* Locate and skip "KEY" */
-	if (c != 'K' && c != 'k') {
-		EREPORT(("\"KEY\" doesn't appear in file: %s", name));
-		return NULL;
-	}
-	while ((c = getc(fp)) != EOF)
-		if (isspace(c))
-			break;
-	while ((c = getc(fp)) != EOF)
-		if (!isspace(c))
-			break;
-	ungetc(c, fp);		/* return the charcter to the input field */
-	/* Handle hex!! FIXME.  */
-
-	if (fscanf(fp, "%d %d %d", &flags, &proto, &alg) != 3) {
-		EREPORT(("dst_read_public_key(): Can not read flag/proto/alg field from %s\n"
-			 ,name));
-		return (NULL);
-	}
-	/* read in the key string */
-	fgets(enckey, sizeof(enckey), fp);
-
-	/* If we aren't at end-of-file, something is wrong.  */
-	while ((c = getc(fp)) != EOF)
-		if (!isspace(c))
-			break;
-	if (!feof(fp)) {
-		EREPORT(("Key too long in file: %s", name));
-		return NULL;
-	}
-	fclose(fp);
-
-	if ((len = strlen(enckey)) <= 0)
-		return (NULL);
-
-	/* discard \n */
-	enckey[--len] = '\0';
-
-	/* remove leading spaces */
-	for (notspace = (char *) enckey; isspace(*notspace); len--)
-		notspace++;
-
-	dlen = b64_pton(notspace, deckey, sizeof(deckey));
-	if (dlen < 0) {
-		EREPORT(("dst_read_public_key: bad return from b64_pton = %d",
-			 dlen));
-		return (NULL);
-	}
-	/* store key and info in a key structure that is returned */
-/*	return dst_store_public_key(in_name, alg, proto, 666, flags, deckey,
-				    dlen);*/
-	return dst_buffer_to_key(in_name, alg, flags, proto, deckey, dlen);
-}
-
-
-/*
- *  dst_write_public_key
- *	Write a key to disk in DNS format.
- *  Parameters
- *	key     Pointer to a DST key structure.
- *  Returns
- *	0       Failure
- *	1       Success
- */
-
-static int
-dst_s_write_public_key(const DST_KEY *key)
-{
-	FILE *fp;
-	char filename[PATH_MAX];
-	u_char out_key[RAW_KEY_SIZE];
-	char enc_key[RAW_KEY_SIZE];
-	int len = 0;
-
-	memset(out_key, 0, sizeof(out_key));
-	if (key == NULL) {
-		EREPORT(("dst_write_public_key(): No key specified \n"));
-		return (0);
-	} else if ((len = dst_key_to_dnskey(key, out_key, sizeof(out_key)))< 0)
-		return (0);
-
-	/* Make the filename */
-	if (dst_s_build_filename(filename, key->dk_key_name, key->dk_id,
-				 key->dk_alg, PUBLIC_KEY, PATH_MAX) == -1) {
-		EREPORT(("dst_write_public_key(): Cannot make filename from %s, %d, and %s\n",
-			 key->dk_key_name, key->dk_id, PUBLIC_KEY));
-		return (0);
-	}
-	/* create public key file */
-	if ((fp = dst_s_fopen(filename, "w+", 0644)) == NULL) {
-		EREPORT(("DST_write_public_key: open of file:%s failed (errno=%d)\n",
-			 filename, errno));
-		return (0);
-	}
-	/*write out key first base64 the key data */
-	if (key->dk_flags & DST_EXTEND_FLAG)
-		b64_ntop(&out_key[6], len - 6, enc_key, sizeof(enc_key));
-	else
-		b64_ntop(&out_key[4], len - 4, enc_key, sizeof(enc_key));
-	fprintf(fp, "%s IN KEY %d %d %d %s\n",
-		key->dk_key_name,
-		key->dk_flags, key->dk_proto, key->dk_alg, enc_key);
-	fclose(fp);
-	return (1);
-}
-
-
-/*
- *  dst_dnskey_to_public_key
- *	This function converts the contents of a DNS KEY RR into a DST
- *	key structure.
- *  Paramters
- *	len	 Length of the RDATA of the KEY RR RDATA
- *	rdata	 A pointer to the the KEY RR RDATA.
- *	in_name     Key name to be stored in key structure.
- *  Returns
- *	NULL	    Failure
- *	NON-NULL	Success.  Pointer to key structure.
- *			Caller's responsibility to free() it.
- */
-
-DST_KEY *
-dst_dnskey_to_key(const char *in_name, const u_char *rdata, const int len)
-{
-	DST_KEY *key_st;
-	int alg ;
-	int start = DST_KEY_START;
-
-	if (rdata == NULL || len <= DST_KEY_ALG) /* no data */
-		return (NULL);
-	alg = (u_int8_t) rdata[DST_KEY_ALG];
-	if (!dst_check_algorithm(alg)) { /* make sure alg is available */
-		EREPORT(("dst_dnskey_to_key(): Algorithm %d not suppored\n",
-			 alg));
-		return (NULL);
-	}
-	if ((key_st = dst_s_get_key_struct(in_name, alg, 0, 0, 0)) == NULL)
-		return (NULL);
-
-	if (in_name == NULL)
-		return (NULL);
-	key_st->dk_flags = dst_s_get_int16(rdata);
-	key_st->dk_proto = (u_int16_t) rdata[DST_KEY_PROT];
-	if (key_st->dk_flags & DST_EXTEND_FLAG) {
-		u_int32_t ext_flags;
-		ext_flags = (u_int32_t) dst_s_get_int16(&rdata[DST_EXT_FLAG]);
-		key_st->dk_flags = key_st->dk_flags | (ext_flags << 16);
-		start += 2;
-	}
-	/*
-	 * now point to the begining of the data representing the encoding
-	 * of the key
-	 */
-	if (key_st->dk_func && key_st->dk_func->from_dns_key) {
-		if (key_st->dk_func->from_dns_key(key_st, &rdata[start],
-						  len - start) > 0)
-			return (key_st);
-	} else
-		EREPORT(("dst_dnskey_to_public_key(): unsuppored alg %d\n",
-			 alg));
-
-	SAFE_FREE(key_st);
-	return (key_st);
-}
-
-
-/*
- *  dst_public_key_to_dnskey
- *	Function to encode a public key into DNS KEY wire format 
- *  Parameters
- *	key	     Key structure to encode.
- *	out_storage     Location to write the encoded key to.
- *	out_len	 Size of the output array.
- *  Returns
- *	<0      Failure
- *	>=0     Number of bytes written to out_storage
- */
-
-int
-dst_key_to_dnskey(const DST_KEY *key, u_char *out_storage,
-			 const int out_len)
-{
-	u_int16_t val;
-	int loc = 0;
-	int enc_len = 0;
-	if (key == NULL)
-		return (-1);
-
-	if (!dst_check_algorithm(key->dk_alg)) { /* make sure alg is available */
-		EREPORT(("dst_key_to_dnskey(): Algorithm %d not suppored\n",
-			 key->dk_alg));
-		return (UNSUPPORTED_KEYALG);
-	}
-	memset(out_storage, 0, out_len);
-	val = (u_int16_t)(key->dk_flags & 0xffff);
-	dst_s_put_int16(out_storage, val);
-	loc += 2;
-
-	out_storage[loc++] = (u_char) key->dk_proto;
-	out_storage[loc++] = (u_char) key->dk_alg;
-
-	if (key->dk_flags > 0xffff) {	/* Extended flags */
-		val = (u_int16_t)((key->dk_flags >> 16) & 0xffff);
-		dst_s_put_int16(&out_storage[loc], val);
-		loc += 2;
-	}
-	if (key->dk_KEY_struct == NULL)
-		return (loc);
-	if (key->dk_func && key->dk_func->to_dns_key) {
-		enc_len = key->dk_func->to_dns_key(key,
-						 (u_char *) &out_storage[loc],
-						   out_len - loc);
-		if (enc_len > 0)
-			return (enc_len + loc);
-		else
-			return (-1);
-	} else
-		EREPORT(("dst_key_to_dnskey(): Unsupported ALG %d\n",
-			 key->dk_alg));
-	return (-1);
-}
-
-
-/*
- *  dst_buffer_to_key
- *	Function to encode a string of raw data into a DST key
- *  Parameters
- *	alg		The algorithm (HMAC only)
- *	key		A pointer to the data
- *	keylen		The length of the data
- *  Returns
- *	NULL	    an error occurred
- *	NON-NULL	the DST key
- */
-DST_KEY *
-dst_buffer_to_key(const char *key_name,		/* name of the key */
-		  const int alg,		/* algorithm */
-		  const int flags,		/* dns flags */
-		  const int protocol,		/* dns protocol */
-		  const u_char *key_buf,	/* key in dns wire fmt */
-		  const int key_len)		/* size of key */
-{
-	
-	DST_KEY *dkey = NULL; 
-
-	if (!dst_check_algorithm(alg)) { /* make sure alg is available */
-		EREPORT(("dst_buffer_to_key(): Algorithm %d not suppored\n", alg));
-		return (NULL);
-	}
-
-	dkey = dst_s_get_key_struct(key_name, alg, flags, 
-					     protocol, -1);
-
-	if (dkey == NULL)
-		return (NULL);
-	if (dkey->dk_func != NULL &&
-	    dkey->dk_func->from_dns_key != NULL) {
-		if (dkey->dk_func->from_dns_key(dkey, key_buf, key_len) < 0) {
-			EREPORT(("dst_buffer_to_key(): dst_buffer_to_hmac failed\n"));
-			return (dst_free_key(dkey));
-		}
-		return (dkey);
-	}
-	return (NULL);
-}
-
-int 
-dst_key_to_buffer(DST_KEY *key, u_char *out_buff, int buf_len)
-{
-	int len;
-  /* this function will extrac the secret of HMAC into a buffer */
-	if(key == NULL) 
-		return (0);
-	if(key->dk_func != NULL && key->dk_func != NULL) {
-		len = key->dk_func->to_dns_key(key, out_buff, buf_len);
-		if (len < 0)
-			return (0);
-		return (len);
-	}
-	return (0);
-}
-
-
-/*
- * dst_s_read_private_key_file
- *     Function reads in private key from a file.
- *     Fills out the KEY structure.
- * Parameters
- *     name    Name of the key to be read.
- *     pk_key  Structure that the key is returned in.
- *     in_id   Key identifier (tag)
- * Return
- *     1 if everthing works
- *     0 if there is any problem
- */
-
-static int
-dst_s_read_private_key_file(char *name, DST_KEY *pk_key, u_int16_t in_id,
-			    int in_alg)
-{
-	int cnt, alg, len, major, minor, file_major, file_minor;
-	int id;
-	char filename[PATH_MAX];
-	u_char in_buff[RAW_KEY_SIZE], *p;
-	FILE *fp;
-
-	if (name == NULL || pk_key == NULL) {
-		EREPORT(("dst_read_private_key_file(): No key name given\n"));
-		return (0);
-	}
-	/* Make the filename */
-	if (dst_s_build_filename(filename, name, in_id, in_alg, PRIVATE_KEY,
-				 PATH_MAX) == -1) {
-		EREPORT(("dst_read_private_key(): Cannot make filename from %s, %d, and %s\n",
-			 name, in_id, PRIVATE_KEY));
-		return (0);
-	}
-	/* first check if we can find the key file */
-	if ((fp = dst_s_fopen(filename, "r", 0)) == NULL) {
-		EREPORT(("dst_s_read_private_key_file: Could not open file %s in directory %s\n",
-			 filename, dst_path[0] ? dst_path :
-			 (char *) getcwd(NULL, PATH_MAX - 1)));
-		return (0);
-	}
-	/* now read the header info from the file */
-	if ((cnt = fread(in_buff, 1, sizeof(in_buff), fp)) < 5) {
-		fclose(fp);
-		EREPORT(("dst_s_read_private_key_file: error reading file %s (empty file)\n",
-			 filename));
-		return (0);
-	}
-	/* decrypt key */
-	fclose(fp);
-	if (memcmp(in_buff, "Private-key-format: v", 20) != 0)
-		goto fail;
-	len = cnt;
-	p = in_buff;
-
-	if (!dst_s_verify_str((const char **) &p, "Private-key-format: v")) {
-		EREPORT(("dst_s_read_private_key_file(): Not a Key file/Decrypt failed %s\n", name));
-		goto fail;
-	}
-	/* read in file format */
-	sscanf((char *)p, "%d.%d", &file_major, &file_minor);
-	sscanf(KEY_FILE_FORMAT, "%d.%d", &major, &minor);
-	if (file_major < 1) {
-		EREPORT(("dst_s_read_private_key_file(): Unknown keyfile %d.%d version for %s\n",
-			 file_major, file_minor, name));
-		goto fail;
-	} else if (file_major > major || file_minor > minor)
-		EREPORT((
-				"dst_s_read_private_key_file(): Keyfile %s version higher than mine %d.%d MAY FAIL\n",
-				name, file_major, file_minor));
-
-	while (*p++ != '\n') ;	/* skip to end of line */
-
-	if (!dst_s_verify_str((const char **) &p, "Algorithm: "))
-		goto fail;
-
-	if (sscanf((char *)p, "%d", &alg) != 1)
-		goto fail;
-	while (*p++ != '\n') ;	/* skip to end of line */
-
-	if (pk_key->dk_key_name && !strcmp(pk_key->dk_key_name, name))
-		SAFE_FREE2(pk_key->dk_key_name, strlen(pk_key->dk_key_name));
-	pk_key->dk_key_name = (char *) strdup(name);
-
-	/* allocate and fill in key structure */
-	if (pk_key->dk_func == NULL || pk_key->dk_func->from_file_fmt == NULL)
-		goto fail;
-
-	id = pk_key->dk_func->from_file_fmt(pk_key, (char *)p, &in_buff[len] - p);
-	if (id < 0)
-		goto fail;
-
-	/* Make sure the actual key tag matches the input tag used in the filename
-	 */
-	if (id != in_id) {
-		EREPORT(("dst_s_read_private_key_file(): actual tag of key read %d != input tag used to build filename %d.\n", id, in_id));
-		goto fail;
-	}
-	pk_key->dk_id = (u_int16_t) id;
-	pk_key->dk_alg = alg;
-	memset(in_buff, 0, cnt);
-	return (1);
-
- fail:
-	memset(in_buff, 0, cnt);
-	return (0);
-}
-
-
-/*
- *  dst_generate_key
- *	Generate and store a public/private keypair.
- *	Keys will be stored in formatted files.
- *  Parameters
- *	name    Name of the new key.  Used to create key files
- *		  K<name>+<alg>+<id>.public and K<name>+<alg>+<id>.private.
- *	bits    Size of the new key in bits.
- *	exp     What exponent to use:
- *		  0	   use exponent 3
- *		  non-zero    use Fermant4
- *	flags   The default value of the DNS Key flags.
- *		  The DNS Key RR Flag field is defined in RFC 2065,
- *		  section 3.3.  The field has 16 bits.
- *	protocol
- *	      Default value of the DNS Key protocol field.
- *		  The DNS Key protocol field is defined in RFC 2065,
- *		  section 3.4.  The field has 8 bits.
- *	alg     What algorithm to use.  Currently defined:
- *		  KEY_RSA       1
- *		  KEY_DSA       3
- *		  KEY_HMAC    157
- *	out_id The key tag is returned.
- *
- *  Return
- *	NULL		Failure
- *	non-NULL 	the generated key pair
- *			Caller frees the result, and its dk_name pointer.
- */
-DST_KEY *
-dst_generate_key(const char *name, const int bits, const int exp,
-		 const int flags, const int protocol, const int alg)
-{
-	DST_KEY *new_key = NULL;
-	int res;
-	if (name == NULL)
-		return (NULL);
-
-	if (!dst_check_algorithm(alg)) { /* make sure alg is available */
-		EREPORT(("dst_generate_key(): Algorithm %d not suppored\n", alg));
-		return (NULL);
-	}
-
-	new_key = dst_s_get_key_struct(name, alg, flags, protocol, bits);
-	if (new_key == NULL)
-		return (NULL);
-	if (bits == 0) /* null key we are done */
-		return (new_key);
-	if (new_key->dk_func == NULL || new_key->dk_func->generate == NULL) {
-		EREPORT(("dst_generate_key_pair():Unsupported algorithm %d\n",
-			 alg));
-		return (dst_free_key(new_key));
-	}
-	if ((res = new_key->dk_func->generate(new_key, exp)) <= 0) {
-		EREPORT(("dst_generate_key_pair(): Key generation failure %s %d %d %d\n",
-			 new_key->dk_key_name, new_key->dk_alg,
-			 new_key->dk_key_size, exp));
-		return (dst_free_key(new_key));
-	}
-	return (new_key);
-}
-
-
-/*
- *  dst_free_key
- *	Release all data structures pointed to by a key structure.
- *  Parameters
- *	f_key   Key structure to be freed.
- */
-
-DST_KEY *
-dst_free_key(DST_KEY *f_key)
-{
-
-	if (f_key == NULL)
-		return (f_key);
-	if (f_key->dk_func && f_key->dk_func->destroy)
-		f_key->dk_KEY_struct =
-			f_key->dk_func->destroy(f_key->dk_KEY_struct);
-	else {
-		EREPORT(("dst_free_key(): Unknown key alg %d\n",
-			 f_key->dk_alg));
-		free(f_key->dk_KEY_struct);	/* SHOULD NOT happen */
-	}
-	if (f_key->dk_KEY_struct) {
-		free(f_key->dk_KEY_struct);
-		f_key->dk_KEY_struct = NULL;
-	}
-	if (f_key->dk_key_name)
-		SAFE_FREE(f_key->dk_key_name);
-	SAFE_FREE(f_key);
-	return (NULL);
-}
-
-/*
- * dst_sig_size
- *	Return the maximim size of signature from the key specified in bytes
- * Parameters
- *      key 
- * Returns
- *     bytes
- */
-int
-dst_sig_size(DST_KEY *key) {
-	switch (key->dk_alg) {
-	    case KEY_HMAC_MD5:
-		return (16);
-	    case KEY_HMAC_SHA1:
-		return (20);
-	    case KEY_RSA:
-		return (key->dk_key_size + 7) / 8;
-	    case KEY_DSA:
-		return (40);
-	    default:
-		EREPORT(("dst_sig_size(): Unknown key alg %d\n", key->dk_alg));
-		return -1;
-	}
-}
-
-/* 
- * dst_random 
- *  function that multiplexes number of random number generators
- * Parameters  
- *   mode: select the random number generator
- *   wanted is how many bytes of random data are requested 
- *   outran is a buffer of size at least wanted for the output data
- *
- * Returns
- *    number of bytes written to outran
- */
-int 
-dst_random(const int mode, int wanted, u_char *outran)
-{
-	u_int32_t *buff = NULL, *bp = NULL;
-	int i;
-	if (wanted <= 0 || outran == NULL) 
-		return (0);
-
-	switch (mode) {
-	case DST_RAND_SEMI: 
-		bp = buff = (u_int32_t *) malloc(wanted+sizeof(u_int32_t));
-		for (i = 0; i < wanted; i+= sizeof(u_int32_t), bp++) {
-			*bp = dst_s_quick_random(i);
-		}
-		memcpy(outran, buff, wanted);
-		SAFE_FREE(buff);
-		return (wanted);
-	case DST_RAND_STD:
-		return (dst_s_semi_random(outran, wanted));
-	case DST_RAND_KEY:
-		return (dst_s_random(outran, wanted));
-	case DST_RAND_DSS:
-	default:
-		/* need error case here XXX OG */
-		return (0);
-	}
-}
-
diff --git a/contrib/bind/lib/dst/dst_internal.h b/contrib/bind/lib/dst/dst_internal.h
deleted file mode 100644
index 66bfed4066a95..0000000000000
--- a/contrib/bind/lib/dst/dst_internal.h
+++ /dev/null
@@ -1,163 +0,0 @@
-#ifndef DST_INTERNAL_H
-#define DST_INTERNAL_H
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-#include <limits.h>
-#include <sys/param.h>
-#if (!defined(BSD)) || (BSD < 199306)
-# include <sys/bitypes.h>
-#else
-# include <sys/types.h>
-#endif
-
-#ifndef PATH_MAX
-# ifdef POSIX_PATH_MAX
-#  define PATH_MAX POSIX_PATH_MAX
-# else
-#  define PATH_MAX 255 /* this is the value of POSIX_PATH_MAX */
-# endif
-#endif 
-
-typedef struct dst_key {
-	char	*dk_key_name;   /* name of the key */
-	int	dk_key_size;    /* this is the size of the key in bits */
-	int	dk_proto;       /* what protocols this key can be used for */
-	int	dk_alg;         /* algorithm number from key record */
-	u_int32_t dk_flags;     /* and the flags of the public key */
-	u_int16_t dk_id;        /* identifier of the key */
-	void	*dk_KEY_struct; /* pointer to key in crypto pkg fmt */
-	struct dst_func *dk_func; /* point to cryptto pgk specific function table */
-} DST_KEY;
-#define HAS_DST_KEY 
-
-#include <isc/dst.h>
-/* 
- * define what crypto systems are supported for RSA, 
- * BSAFE is prefered over RSAREF; only one can be set at any time
- */
-#if defined(BSAFE) && defined(RSAREF)
-# error "Cannot have both BSAFE and RSAREF defined"
-#endif
-
-/* Declare dst_lib specific constants */
-#define KEY_FILE_FORMAT "1.2"
-
-/* suffixes for key file names */
-#define PRIVATE_KEY		"private"
-#define PUBLIC_KEY		"key"
-
-/* error handling */
-#ifdef REPORT_ERRORS
-#define EREPORT(str)		printf str
-#else
-#define EREPORT(str)
-#endif
-
-/* use our own special macro to FRRE memory */
-
-#ifndef SAFE_FREE
-#define SAFE_FREE(a) if(a != NULL){memset(a,0, sizeof(*a)); free(a); a=NULL;}
-#define SAFE_FREE2(a,s) if (a != NULL && s > 0){memset(a,0, s);free(a); a=NULL;}
-#endif
-
-typedef struct dst_func {
-	int (*sign)(const int mode, DST_KEY *key, void **context,
-		     const u_int8_t *data, const int len,
-		     u_int8_t *signature, const int sig_len);
-	int (*verify)(const int mode, DST_KEY *key, void **context,
-		       const u_int8_t *data, const int len,
-		       const u_int8_t *signature, const int sig_len);
-	int (*compare)(const DST_KEY *key1, const DST_KEY *key2);
-	int (*generate)(DST_KEY *key, int parms);
-	void *(*destroy)(void *key);
-	/* conversion functions */
-	int (*to_dns_key)(const DST_KEY *key, u_int8_t *out,
-			   const int out_len);
-	int (*from_dns_key)(DST_KEY *key, const u_int8_t *str,
-			     const int str_len);
-	int (*to_file_fmt)(const DST_KEY *key, char *out,
-			    const int out_len);
-	int (*from_file_fmt)(DST_KEY *key, const char *out,
-			      const int out_len);
-
-} dst_func;
-
-extern dst_func *dst_t_func[DST_MAX_ALGS];
-extern char *key_file_fmt_str;
-extern char *dst_path;
-
-#ifndef DST_HASH_SIZE
-#define DST_HASH_SIZE 20	/* RIPEMD160 and SHA-1 are 20 bytes MD5 is 16 */
-#endif
-
-int dst_bsafe_init();
-
-int dst_rsaref_init();
-
-int dst_hmac_md5_init();
-
-int dst_cylink_init();
-
-int dst_eay_dss_init();
-
-/* support functions */
-/* base64 to bignum conversion routines */
-int       dst_s_conv_bignum_u8_to_b64( char *out_buf, const int out_len, 
-			               const char *header,
-				       const u_int8_t *bin_data,
-				       const int bin_len);
-int       dst_s_conv_bignum_b64_to_u8( const char **buf, u_int8_t *loc,
-				       const int loclen) ;
-/* from higher level support routines */
-int       dst_s_calculate_bits( const u_int8_t *str, const int max_bits); 
-int       dst_s_verify_str( const char **buf, const char *str);
-
-
-/* conversion between dns names and key file names */
-size_t    dst_s_filename_length( const char *name, const char *suffix); 
-int       dst_s_build_filename(  char *filename, const char *name, 
-			         u_int16_t id, int alg, const char *suffix, 
-			         size_t filename_length);
-
-FILE      *dst_s_fopen (const char *filename, const char *mode, int perm);
-
-/* from file prandom.c */
-int       dst_s_random( u_int8_t *output, int size);
-int       dst_s_semi_random( u_int8_t *output, int size);
-u_int32_t dst_s_quick_random( int inc);
-void	  dst_s_quick_random_set( u_int32_t val, u_int32_t cnt);
-
-/* 
- * read and write network byte order into u_int?_t  
- *  all of these should be retired
- */
-u_int16_t dst_s_get_int16( const u_int8_t *buf);
-void      dst_s_put_int16( u_int8_t *buf, const u_int16_t val);
-
-u_int32_t dst_s_get_int32( const u_int8_t *buf);
-void      dst_s_put_int32( u_int8_t *buf, const u_int32_t val);
-
-#ifdef DUMP
-# undef DUMP
-# define DUMP(a,b,c,d) dst_s_dump(a,b,c,d)
-#else
-# define DUMP(a,b,c,d)
-#endif
-
-
-#endif /* DST_INTERNAL_H */
diff --git a/contrib/bind/lib/dst/eay_dss_link.c b/contrib/bind/lib/dst/eay_dss_link.c
deleted file mode 100644
index b060bf0368632..0000000000000
--- a/contrib/bind/lib/dst/eay_dss_link.c
+++ /dev/null
@@ -1,624 +0,0 @@
-#ifdef EAY_DSS
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/eay_dss_link.c,v 1.4 1999/10/13 16:39:23 vixie Exp $";
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-/* 
- * This file contains two components 
- * 1. Interface to the EAY libcrypto library to allow compilation of Bind 
- *    with TIS/DNSSEC when EAY libcrypto is not available 
- *    all calls to libcrypto are contained inside this file.
- * 2. The glue to connvert DSA KEYS to and from external formats
- */
-#include "port_before.h"
-
-#include <stdio.h>
-#include <unistd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <memory.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-
-#include "dst_internal.h"
-
-#include "crypto.h"
-#include "bn.h"
-#include "dsa.h"
-#include "sha.h"
-
-#include "port_after.h"
-
-static int dst_eay_dss_sign(const int mode, DST_KEY *dkey, void **context,
-			    const u_char *data, const int len,
-			    u_char *signature, const int sig_len);
-
-static int dst_eay_dss_verify(const int mode, DST_KEY *dkey, void **context,
-			      const u_char *data, const int len,
-			      const u_char *signature, const int sig_len);
-
-static int dst_eay_dss_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-				  const int out_len);
-static int dst_eay_dss_from_dns_key(DST_KEY *s_key, const u_char *key,
-				    const int len);
-static int dst_eay_dss_key_to_file_format(const DST_KEY *key, u_char *buff,
-					  const int buff_len);
-static int dst_eay_dss_key_from_file_format(DST_KEY *d_key,
-					    const u_char *buff,
-					    const int buff_len);
-static void *dst_eay_dss_free_key_structure(void *key);
-
-static int dst_eay_dss_generate_keypair(DST_KEY *key, int exp);
-static int dst_eay_dss_compare_keys(const DST_KEY *key1, const DST_KEY *key2);
-
-/*
- * dst_eay_dss_init()  Function to answer set up function pointers for 
- *	    EAY DSS related functions 
- */
-int
-dst_eay_dss_init()
-{
-	if (dst_t_func[KEY_DSA] != NULL)
-		return (1);
-	dst_t_func[KEY_DSA] = malloc(sizeof(struct dst_func));
-	if (dst_t_func[KEY_DSA] == NULL)
-		return (0);
-	memset(dst_t_func[KEY_DSA], 0, sizeof(struct dst_func));
-	dst_t_func[KEY_DSA]->sign = dst_eay_dss_sign;
-	dst_t_func[KEY_DSA]->verify = dst_eay_dss_verify;
-	dst_t_func[KEY_DSA]->compare = dst_eay_dss_compare_keys;
-	dst_t_func[KEY_DSA]->generate = dst_eay_dss_generate_keypair;
-	dst_t_func[KEY_DSA]->destroy = dst_eay_dss_free_key_structure;
-	dst_t_func[KEY_DSA]->from_dns_key = dst_eay_dss_from_dns_key;
-	dst_t_func[KEY_DSA]->to_dns_key = dst_eay_dss_to_dns_key;
-	dst_t_func[KEY_DSA]->from_file_fmt = dst_eay_dss_key_from_file_format;
-	dst_t_func[KEY_DSA]->to_file_fmt = dst_eay_dss_key_to_file_format;
-	return (1);
-}
-
-/*
- * dst_eay_dss_sign
- *     Call EAY DSS signing functions to sign a block of data.
- *     There are three steps to signing, INIT (initialize structures), 
- *     UPDATE (hash (more) data), FINAL (generate a signature).  This
- *     routine performs one or more of these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     algobj      structure holds context for a sign done in multiple calls.
- *     context   the context to use for this computation
- *     data	data to be signed.
- *     len	 length in bytes of data.
- *     priv_key    key to use for signing.
- *     signature   location to store signature.
- *     sig_len     size in bytes of signature field.
- * returns 
- *	N  Success on SIG_MODE_FINAL = returns signature length in bytes
- *         N is 41 for DNS
- *	0  Success on SIG_MODE_INIT  and UPDATE
- *	 <0  Failure
- */
-
-static int
-dst_eay_dss_sign(const int mode, DST_KEY *dkey, void **context,
-		 const u_char *data, const int len, 
-		 u_char *signature, const int sig_len)
-{
-	int sign_len = 0;
-	int status;
-	SHA_CTX *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT) 
-		ctx = (SHA_CTX *) malloc(sizeof(SHA_CTX));
-	else if (context)
-		ctx = (SHA_CTX *) *context;
-	if (ctx == NULL)
-		return (-1);
-
-	if (mode & SIG_MODE_INIT)
-		SHA1_Init(ctx);
-
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0)) {
-		SHA1_Update(ctx, (u_char *) data, len);
-	}
-	if (mode & SIG_MODE_FINAL) {
-		DSA *key;
-		u_char digest[SHA_DIGEST_LENGTH];
-		u_char rand[SHA_DIGEST_LENGTH];
-		u_char r[SHA_DIGEST_LENGTH], s[SHA_DIGEST_LENGTH];
-
-		if (dkey == NULL || dkey->dk_KEY_struct == NULL)
-			return (-1);
-		key = dkey->dk_KEY_struct;
-		if (key == NULL)
-			return(-2);
-		SHA1_Final(digest, ctx);
-		status = DSA_sign(0, digest, SHA_DIGEST_LENGTH,
-				  signature, &sign_len, key);
-		if (status != 0)
-			return (SIGN_FINAL_FAILURE);
-
-		*signature = (dkey->dk_key_size - 512)/64;
-		sign_len = 1;
-		memcpy(signature + sign_len, r, SHA_DIGEST_LENGTH);
-		sign_len += SHA_DIGEST_LENGTH;
-		memcpy(signature + sign_len, s, SHA_DIGEST_LENGTH);
-		sign_len += SHA_DIGEST_LENGTH;
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}
-	return (sign_len);
-}
-
-
-/*
- * dst_eay_dss_verify 
- *     Calls EAY DSS verification routines.  There are three steps to 
- *     verification, INIT (initialize structures), UPDATE (hash (more) data), 
- *     FINAL (generate a signature).  This routine performs one or more of 
- *     these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     dkey      structure holds context for a verify done in multiple calls.
- *     context   algorithm specific context for the current context processing
- *     data	data signed.
- *     len	 length in bytes of data.
- *     pub_key     key to use for verify.
- *     signature   signature.
- *     sig_len     length in bytes of signature.
- * returns 
- *     0  Success 
- *    <0  Failure
- */
-
-static int
-dst_eay_dss_verify(const int mode, DST_KEY *dkey, void **context,
-		   const u_char *data, const int len,
-		   const u_char *signature, const int sig_len)
-{
-	int status;
-	SHA_CTX *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT) 
-		ctx = (SHA_CTX *) malloc(sizeof(SHA_CTX));
-	else if (context)
-		ctx = (SHA_CTX *) *context;
-	if (ctx == NULL)
-		return (-1);
-
-	if (mode & SIG_MODE_INIT)
-		SHA1_Init(ctx);
-
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0)) {
-		SHA1_Update(ctx, (u_char *) data, len);
-	}
-	if (mode & SIG_MODE_FINAL) {
-		DSA *key;
-		u_char digest[SHA_DIGEST_LENGTH];
-		u_char r[SHA_DIGEST_LENGTH], s[SHA_DIGEST_LENGTH];
-
-		if (dkey == NULL || dkey->dk_KEY_struct == NULL)
-			return (-1);
-		key = (DSA *) dkey->dk_KEY_struct;
-		if (key = NULL)
-			return (-2);
-		if (signature == NULL || sig_len != (2 * SHA_DIGEST_LENGTH +1))
-			return (SIGN_FINAL_FAILURE);
-		SHA1_Final(digest, ctx);
-		SAFE_FREE(ctx);
-		if (status != 0)
-			return (SIGN_FINAL_FAILURE);
-		if (((int)*signature) != ((BN_num_bytes(key->p) -64)/8))
-			return(VERIFY_FINAL_FAILURE);
-
-		memcpy(r, signature +1, SHA_DIGEST_LENGTH);
-		memcpy(s, signature + SHA_DIGEST_LENGTH +1, SHA_DIGEST_LENGTH);
-		status = DSA_verify(0, digest, SHA_DIGEST_LENGTH,
-				    (u_char *)signature, sig_len, key);
-		if (status != 0)
-			return (VERIFY_FINAL_FAILURE);
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}
-	return (0);
-}
-
-
-/*
- * dst_eay_dss_to_dns_key
- *     Converts key from DSA to DNS distribution format
- *     This function gets in a pointer to the public key and a work area
- *     to write the key into.
- * Parameters
- *     public    KEY structure 
- *     out_str   buffer to write encoded key into 
- *     out_len   size of out_str
- * Return
- *	N >= 0 length of encoded key 
- *	n < 0  error 
- */
-
-static int
-dst_eay_dss_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-		       const int out_len)
-{
-	u_char *op = out_str;
-	int t;
-	DSA *key;
-
-	if (in_key == NULL || in_key->dk_KEY_struct == NULL ||
-	    out_len <= 0 || out_str == NULL)
-		return (-1);
-	key = (DSA *) in_key->dk_KEY_struct;
-
-	t = (BN_num_bytes(key->p) - 64) / 8;
-
-	*op++ = t;
-	BN_bn2bin(key->q, op);
-	op += BN_num_bytes(key->q);
-	BN_bn2bin(key->p, op);
-	op += BN_num_bytes(key->p);
-	BN_bn2bin(key->g, op);
-	op += BN_num_bytes(key->g);
-	BN_bn2bin(key->pub_key, op);
-	op += BN_num_bytes(key->pub_key);
-
-	return (op - out_str);
-}
-
-
-/*
- * dst_eay_dss_from_dns_key
- *     Converts from a DNS KEY RR format to an RSA KEY. 
- * Parameters
- *     len    Length in bytes of DNS key
- *     key    DNS key
- *     name   Key name
- *     s_key  DST structure that will point to the RSA key this routine
- *		will build.
- * Return
- *     0   The input key, s_key or name was null.
- *     1   Success
- */
-static int
-dst_eay_dss_from_dns_key(DST_KEY *s_key, const u_char *key, const int len)
-{
-	int t;
-	u_char *key_ptr = (u_char *)key;
-	DSA *d_key;
-	int p_bytes;
-
-	if (s_key == NULL || len < 0 || key == NULL)
-		return (0);
-
-	if (len == 0)  /* process null key */
-		return (1);
-
-	if (key_ptr == NULL)  
-		return (0);
-	t = (int) *key_ptr++;	/* length of exponent in bytes */
-	p_bytes = 64 + 8 * t;
-
-	if ((3 * (t * 8 + 64) + SHA_DIGEST_LENGTH + 1) != len)
-		return (0);
-
-	if ((d_key = (DSA *) malloc(sizeof(DSA))) == NULL) {
-		EREPORT(("dst_eay_dss_from_dns_key(): Memory allocation error 1"));
-		return (0);
-	}
-	memset(d_key, 0, sizeof(DSA));
-	s_key->dk_KEY_struct = (void *) d_key;
-
-	d_key->q = BN_bin2bn(key_ptr, SHA_DIGEST_LENGTH, NULL);
-	key_ptr += SHA_DIGEST_LENGTH;
-
-	d_key->p = BN_bin2bn(key_ptr, p_bytes, NULL);
-	key_ptr += p_bytes;
-
-	d_key->g = BN_bin2bn(key_ptr, p_bytes, NULL);
-	key_ptr += p_bytes;
-
-	d_key->pub_key = BN_bin2bn(key_ptr, p_bytes, NULL);
-	key_ptr += p_bytes;
-
-	s_key->dk_id = dst_s_id_calc(key, len); 
-	s_key->dk_key_size = p_bytes * 8;
-	return (1);
-}
-
-
-/************************************************************************** 
- *  dst_eay_dss_key_to_file_format
- *	Encodes an DSA Key into the portable file format.
- *  Parameters 
- *	key      DSA KEY structure 
- *	buff      output buffer
- *	buff_len  size of output buffer 
- *  Return
- *	0  Failure - null input rkey
- *     -1  Failure - not enough space in output area
- *	N  Success - Length of data returned in buff
- */
-
-static int
-dst_eay_dss_key_to_file_format(const DST_KEY *key, u_char *buff,
-			       const int buff_len)
-{
-	u_char *bp;
-	int len, b_len;
-	DSA *dkey;
-	char num[256]; /* More than long enough for DSA keys */
-
-	if (key == NULL || key->dk_KEY_struct == NULL)	/* no output */
-		return (0);
-	if (buff == NULL || buff_len <= (int) strlen(key_file_fmt_str))
-		return (-1);	/* no OR not enough space in output area */
-
-	dkey = (DSA *) key->dk_KEY_struct;
-
-	memset(buff, 0, buff_len);	/* just in case */
-	/* write file header */
-	sprintf(buff, key_file_fmt_str, KEY_FILE_FORMAT, KEY_DSA, "DSA");
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->p, BN_num_bytes(dkey->p));
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Prime(p): ", num,
-					       BN_num_bytes(dkey->p))) <= 0)
-		return (-1);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->q, BN_num_bytes(dkey->q));
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Subprime(q): ", num,
-					       BN_num_bytes(dkey->q))) <= 0)
-		return (-2);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->g, BN_num_bytes(dkey->g));
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Base(g): ", num,
-					       BN_num_bytes(dkey->g))) <= 0)
-		return (-3);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->priv_key, BN_num_bytes(dkey->priv_key));
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Private_value(x): ",
-					       num,
-					       BN_num_bytes(dkey->priv_key)))
-	    <= 0)
-		return (-4);
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	memcpy(num, dkey->pub_key, BN_num_bytes(dkey->pub_key));
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Public_value(y): ",
-					       num,
-					       BN_num_bytes(dkey->pub_key)))
-	    <= 0)
-		return (-5);
-
-	bp += len;
-	b_len -= len;
-	return (buff_len - b_len);
-}
-
-
-/************************************************************************** 
- * dst_eay_dss_key_from_file_format
- *     Converts contents of a private key file into a private DSA key. 
- * Parameters 
- *     d_key    structure to put key into 
- *     buff       buffer containing the encoded key 
- *     buff_len   the length of the buffer
- * Return
- *     n >= 0 Foot print of the key converted 
- *     n <  0 Error in conversion 
- */
-
-static int
-dst_eay_dss_key_from_file_format(DST_KEY *d_key, const u_char *buff,
-				const int buff_len)
-{
-	char s[128];
-	char dns[1024];
-	int len, s_len = sizeof(s);
-	int foot = -1, dnslen;
-	const char *p = buff;
-	DSA *dsa_key;
-
-	if (d_key == NULL || buff == NULL || buff_len <= 0)
-		return (-1);
-
-	dsa_key = (DSA *) malloc(sizeof(DSA));
-	if (dsa_key == NULL) {
-		return (-2);
-	}
-	memset(dsa_key, 0, sizeof(*dsa_key));
-	d_key->dk_KEY_struct = (void *) dsa_key;
-
-	if (!dst_s_verify_str(&p, "Prime(p): "))
-		return (-3);
-	memset(s, 0, s_len);
-	if ((len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)) == 0)
-		return (-4);
-	dsa_key->p = BN_bin2bn (s, len, NULL);
-	if (dsa_key->p == NULL)
-		return(-5);
-
-	while (*++p && p < (const char *) &buff[buff_len]) {
-		if (dst_s_verify_str(&p, "Subprime(q): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-6);
-			dsa_key->q = BN_bin2bn (s, len, NULL);
-			if (dsa_key->q == NULL)
-				return (-7);	
-		} else if (dst_s_verify_str(&p, "Base(g): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-8);
-			dsa_key->g = BN_bin2bn (s, len, NULL);
-			if (dsa_key->g == NULL)
-				return (-9);	
-		} else if (dst_s_verify_str(&p, "Private_value(x): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-10);
-			dsa_key->priv_key = BN_bin2bn (s, len, NULL);
-			if (dsa_key->priv_key == NULL)
-				return (-11);	
-		} else if (dst_s_verify_str(&p, "Public_value(y): ")) {
-			if (!(len = dst_s_conv_bignum_b64_to_u8(&p, s, s_len)))
-				return (-12);
-			dsa_key->pub_key = BN_bin2bn (s, len, NULL);
-			if (dsa_key->pub_key == NULL)
-				return (-13);	
-		} else {
-			EREPORT(("Decode_DSAKey(): Bad keyword %s\n", p));
-			return (-14);
-		}
-	}			/* while p */
-
-	d_key->dk_key_size = BN_num_bytes(dsa_key->p);
-	dnslen = d_key->dk_func->to_dns_key(d_key, dns, sizeof(dns));
-	foot = dst_s_id_calc(dns, dnslen);
-
-	return (foot);
-}
-
-
-/************************************************************************** 
- * dst_eay_dss_free_key_structure
- *     Frees all dynamicly allocated structures in DSA.
- */
-
-static void *
-dst_eay_dss_free_key_structure(void *key)
-{
-	DSA *d_key = (DSA *) key;
-	if (d_key != NULL) {
-		BN_free(d_key->p);
-		BN_free(d_key->q);
-		BN_free(d_key->g);
-		if (d_key->pub_key)
-			BN_free(d_key->pub_key);
-		if (d_key->priv_key)
-			BN_free(d_key->priv_key);
-		SAFE_FREE(d_key);
-	}
-	return (NULL);
-}
-
-
-/************************************************************************** 
- *  dst_eay_dss_generate_keypair
- *	Generates unique keys that are hard to predict.
- *  Parameters
- *	key    generic Key structure
- *	exp    the public exponent
- *  Return 
- *	0 Failure 
- *	1 Success
- */
-
-static int
-dst_eay_dss_generate_keypair(DST_KEY *key, int nothing)
-{
-	int status, dnslen, n;
-	DSA *dsa;
-	u_char rand[SHA_DIGEST_LENGTH];
-	char dns[1024];
-
-	if (key == NULL || key->dk_alg != KEY_DSA)
-		return (0);
-
-	if ((dsa = (DSA *) malloc(sizeof(DSA))) == NULL) {
-		EREPORT(("dst_eay_dss_generate_keypair: Memory allocation error 3"));
-		return (0);
-	}
-	memset(dsa, 0, sizeof(*dsa));
-
-	n = dst_random(DST_RAND_KEY, sizeof(rand), rand);
-	if (n != sizeof(rand))
-		return (0);
-	dsa = DSA_generate_parameters(key->dk_key_size, rand, 20, NULL, NULL,
-				      NULL, NULL);
-
-	if (!dsa) {
-		EREPORT(("dst_eay_dss_generate_keypair: Generate Parameters failed"));
-		return (0);
-	}
-	if (DSA_generate_key(dsa) == 0) {
-		EREPORT(("dst_eay_dss_generate_keypair: Generate Key failed"));
-		return(0);
-	}
-	key->dk_KEY_struct = (void *) dsa;
-	dnslen = key->dk_func->to_dns_key(key, dns, sizeof(dns));
-	key->dk_id = dst_s_id_calc(dns, dnslen);
-	return (1);
-}
-
-
-/*
- *  dst_eay_dss_compare_keys
- *	Compare two keys for equality.
- *  Return
- *	0	  The keys are equal
- *	NON-ZERO   The keys are not equal
- */
-
-static int
-dst_eay_dss_compare_keys(const DST_KEY *key1, const DST_KEY *key2)
-{
-	int status;
-	DSA *dkey1 = (DSA *) key1->dk_KEY_struct;
-	DSA *dkey2 = (DSA *) key2->dk_KEY_struct;
-
-	if (dkey1 == NULL && dkey2 == NULL)
-		return (0);
-	else if (dkey1 == NULL) 
-		return (2);
-	else if (dkey2 == NULL)
-		return(1);
-
-	status = BN_cmp(dkey1->p, dkey2->p) ||
-		 BN_cmp(dkey1->q, dkey2->q) ||
-		 BN_cmp(dkey1->g, dkey2->g) ||
-		 BN_cmp(dkey1->pub_key, dkey2->pub_key);
-	
-	if (status)
-		return (status);
-
-	if (dkey1->priv_key || dkey2->priv_key) {
-		if (dkey1->priv_key == NULL || dkey2->priv_key == NULL)
-			return (202);
-		return (BN_cmp(dkey1->priv_key, dkey2->priv_key));
-	} else
-		return (0);
-}
-#else 
-int
-dst_eay_dss_init() 
-{
-	return (0);
-}
-#endif /* EAY_DSS */
diff --git a/contrib/bind/lib/dst/hmac_link.c b/contrib/bind/lib/dst/hmac_link.c
deleted file mode 100644
index 1f96bcab4245e..0000000000000
--- a/contrib/bind/lib/dst/hmac_link.c
+++ /dev/null
@@ -1,493 +0,0 @@
-#ifdef HMAC_MD5
-#ifndef LINT
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/hmac_link.c,v 1.8 1999/10/15 21:30:07 vixie Exp $";
-#endif
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-
-/* 
- * This file contains an implementation of the HMAC-MD5 algorithm.
- */
-#include "port_before.h"
-
-#include <stdio.h>
-#include <unistd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <memory.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include "dst_internal.h"
-#ifdef USE_MD5
-# include "md5.h"
-# ifndef _MD5_H_
-#  define _MD5_H_ 1	/* make sure we do not include rsaref md5.h file */
-# endif
-#endif
-
-#include "port_after.h"
-
-
-#define HMAC_LEN	64
-#define HMAC_IPAD	0x36
-#define HMAC_OPAD	0x5c
-#define MD5_LEN		16
-
-
-typedef struct hmackey {
-	u_char hk_ipad[64], hk_opad[64];
-} HMAC_Key;
-
-
-/************************************************************************** 
- * dst_hmac_md5_sign
- *     Call HMAC signing functions to sign a block of data.
- *     There are three steps to signing, INIT (initialize structures), 
- *     UPDATE (hash (more) data), FINAL (generate a signature).  This
- *     routine performs one or more of these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     priv_key    key to use for signing.
- *     context   the context to be used in this digest
- *     data	data to be signed.
- *     len	 length in bytes of data.
- *     signature   location to store signature.
- *     sig_len     size of the signature location
- * returns 
- *	N  Success on SIG_MODE_FINAL = returns signature length in bytes
- *	0  Success on SIG_MODE_INIT  and UPDATE
- *	 <0  Failure
- */
-
-static int
-dst_hmac_md5_sign(const int mode, DST_KEY *d_key, void **context, 
-		  const u_char *data, const int len, 
-		  u_char *signature, const int sig_len)
-{
-	HMAC_Key *key;
-	int sign_len = 0;
-	MD5_CTX *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT) 
-		ctx = (MD5_CTX *) malloc(sizeof(*ctx));
-	else if (context)
-		ctx = (MD5_CTX *) *context;
-	if (ctx == NULL) 
-		return (-1);
-
-	if (d_key == NULL || d_key->dk_KEY_struct == NULL)
-		return (-1);
-	key = (HMAC_Key *) d_key->dk_KEY_struct;
-
-	if (mode & SIG_MODE_INIT) {
-		MD5Init(ctx);
-		MD5Update(ctx, key->hk_ipad, HMAC_LEN);
-	}
-
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0))
-		MD5Update(ctx, (u_char *)data, len);
-
-	if (mode & SIG_MODE_FINAL) {
-		if (signature == NULL || sig_len < MD5_LEN)
-			return (SIGN_FINAL_FAILURE);
-		MD5Final(signature, ctx);
-
-		/* perform outer MD5 */
-		MD5Init(ctx);
-		MD5Update(ctx, key->hk_opad, HMAC_LEN);
-		MD5Update(ctx, signature, MD5_LEN);
-		MD5Final(signature, ctx);
-		sign_len = MD5_LEN;
-		SAFE_FREE(ctx);
-	}
-	else { 
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}		
-	return (sign_len);
-}
-
-
-/************************************************************************** 
- * dst_hmac_md5_verify() 
- *     Calls HMAC verification routines.  There are three steps to 
- *     verification, INIT (initialize structures), UPDATE (hash (more) data), 
- *     FINAL (generate a signature).  This routine performs one or more of 
- *     these steps.
- * Parameters
- *     mode	SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     dkey	key to use for verify.
- *     data	data signed.
- *     len	 length in bytes of data.
- *     signature   signature.
- *     sig_len     length in bytes of signature.
- * returns 
- *     0  Success 
- *    <0  Failure
- */
-
-static int
-dst_hmac_md5_verify(const int mode, DST_KEY *d_key, void **context,
-		const u_char *data, const int len,
-		const u_char *signature, const int sig_len)
-{
-	HMAC_Key *key;
-	MD5_CTX *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT) 
-		ctx = (MD5_CTX *) malloc(sizeof(*ctx));
-	else if (context)
-		ctx = (MD5_CTX *) *context;
-	if (ctx == NULL) 
-		return (-1);
-
-	if (d_key == NULL || d_key->dk_KEY_struct == NULL)
-		return (-1);
-
-	key = (HMAC_Key *) d_key->dk_KEY_struct;
-	if (mode & SIG_MODE_INIT) {
-		MD5Init(ctx);
-		MD5Update(ctx, key->hk_ipad, HMAC_LEN);
-	}
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0))
-		MD5Update(ctx, (u_char *)data, len);
-
-	if (mode & SIG_MODE_FINAL) {
-		u_char digest[MD5_LEN];
-		if (signature == NULL || key == NULL || sig_len != MD5_LEN)
-			return (VERIFY_FINAL_FAILURE);
-		MD5Final(digest, ctx);
-
-		/* perform outer MD5 */
-		MD5Init(ctx);
-		MD5Update(ctx, key->hk_opad, HMAC_LEN);
-		MD5Update(ctx, digest, MD5_LEN);
-		MD5Final(digest, ctx);
-
-		SAFE_FREE(ctx);
-		if (memcmp(digest, signature, MD5_LEN) != 0)
-			return (VERIFY_FINAL_FAILURE);
-	}
-	else { 
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}		
-	return (0);
-}
-
-
-/************************************************************************** 
- * dst_buffer_to_hmac_md5
- *     Converts key from raw data to an HMAC Key
- *     This function gets in a pointer to the data
- * Parameters
- *     hkey	the HMAC key to be filled in
- *     key	the key in raw format
- *     keylen	the length of the key
- * Return
- *	0	Success
- *	<0	Failure
- */
-static int
-dst_buffer_to_hmac_md5(DST_KEY *dkey, const u_char *key, const int keylen)
-{
-	int i;
-	HMAC_Key *hkey = NULL;
-	MD5_CTX ctx;
-	int local_keylen = keylen;
-
-	if (dkey == NULL || key == NULL || keylen < 0)
-		return (-1);
-
-	if ((hkey = (HMAC_Key *) malloc(sizeof(HMAC_Key))) == NULL)
-		  return (-2);
-
-	memset(hkey->hk_ipad, 0, sizeof(hkey->hk_ipad));
-	memset(hkey->hk_opad, 0, sizeof(hkey->hk_opad));
-
-	/* if key is longer than HMAC_LEN bytes reset it to key=MD5(key) */
-	if (keylen > HMAC_LEN) {
-		u_char tk[MD5_LEN];
-		MD5Init(&ctx);
-		MD5Update(&ctx, (u_char *)key, keylen);
-		MD5Final(tk, &ctx);
-		memset((void *) &ctx, 0, sizeof(ctx));
-		key = tk;
-		local_keylen = MD5_LEN;
-	}
-	/* start out by storing key in pads */
-	memcpy(hkey->hk_ipad, key, local_keylen);
-	memcpy(hkey->hk_opad, key, local_keylen);
-
-	/* XOR key with hk_ipad and opad values */
-	for (i = 0; i < HMAC_LEN; i++) {
-		hkey->hk_ipad[i] ^= HMAC_IPAD;
-		hkey->hk_opad[i] ^= HMAC_OPAD;
-	}
-	dkey->dk_key_size = local_keylen;
-	dkey->dk_KEY_struct = (void *) hkey;
-	return (1);
-}
-
-
-/************************************************************************** 
- *  dst_hmac_md5_key_to_file_format
- *	Encodes an HMAC Key into the portable file format.
- *  Parameters 
- *	hkey      HMAC KEY structure 
- *	buff      output buffer
- *	buff_len  size of output buffer 
- *  Return
- *	0  Failure - null input hkey
- *     -1  Failure - not enough space in output area
- *	N  Success - Length of data returned in buff
- */
-
-static int
-dst_hmac_md5_key_to_file_format(const DST_KEY *dkey, char *buff,
-			    const int buff_len)
-{
-	char *bp;
-	int len, b_len, i, key_len;
-	u_char key[HMAC_LEN];
-	HMAC_Key *hkey;
-
-	if (dkey == NULL || dkey->dk_KEY_struct == NULL) 
-		return (0);
-	if (buff == NULL || buff_len <= (int) strlen(key_file_fmt_str))
-		return (-1);	/* no OR not enough space in output area */
-
-	hkey = (HMAC_Key *) dkey->dk_KEY_struct;
-	memset(buff, 0, buff_len);	/* just in case */
-	/* write file header */
-	sprintf(buff, key_file_fmt_str, KEY_FILE_FORMAT, KEY_HMAC_MD5, "HMAC");
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-
-	memset(key, 0, HMAC_LEN);
-	for (i = 0; i < HMAC_LEN; i++)
-		key[i] = hkey->hk_ipad[i] ^ HMAC_IPAD;
-	for (i = HMAC_LEN - 1; i >= 0; i--)
-		if (key[i] != 0)
-			break;
-	key_len = i + 1;
-
-	strcat(bp, "Key: ");
-	bp += strlen("Key: ");
-	b_len = buff_len - (bp - buff);
-
-	len = b64_ntop(key, key_len, bp, b_len);
-	if (len < 0) 
-		return (-1);
-	bp += len;
-	*(bp++) = '\n';
-	*bp = '\0';
-	b_len = buff_len - (bp - buff);
-
-	return (buff_len - b_len);
-}
-
-
-/************************************************************************** 
- * dst_hmac_md5_key_from_file_format
- *     Converts contents of a key file into an HMAC key. 
- * Parameters 
- *     hkey    structure to put key into 
- *     buff       buffer containing the encoded key 
- *     buff_len   the length of the buffer
- * Return
- *     n >= 0 Foot print of the key converted 
- *     n <  0 Error in conversion 
- */
-
-static int
-dst_hmac_md5_key_from_file_format(DST_KEY *dkey, const char *buff,
-			      const int buff_len)
-{
-	const char *p = buff, *eol;
-	u_char key[HMAC_LEN+1];	/* b64_pton needs more than 64 bytes do decode
-							 * it should probably be fixed rather than doing
-							 * this
-							 */
-	u_char *tmp;
-	int key_len, len;
-
-	if (dkey == NULL)
-		return (-2);
-	if (buff == NULL || buff_len < 0)
-		return (-1);
-
-	memset(key, 0, sizeof(key));
-
-	if (!dst_s_verify_str(&p, "Key: "))
-		return (-3);
-
-	eol = strchr(p, '\n');
-	if (eol == NULL)
-		return (-4);
-	len = eol - p;
-	tmp = malloc(len + 2);
-	memcpy(tmp, p, len);
-	*(tmp + len) = 0x0;
-	key_len = b64_pton((char *)tmp, key, HMAC_LEN+1);	/* see above */
-	SAFE_FREE2(tmp, len + 2);
-
-	if (dst_buffer_to_hmac_md5(dkey, key, key_len) < 0) {
-		return (-6);
-	}
-	return (0);
-}
-
-/*
- * dst_hmac_md5_to_dns_key() 
- *         function to extract hmac key from DST_KEY structure 
- * intput: 
- *      in_key:  HMAC-MD5 key 
- * output: 
- *	out_str: buffer to write ot
- *      out_len: size of output buffer 
- * returns:
- *      number of bytes written to output buffer 
- */
-static int
-dst_hmac_md5_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-			const int out_len)
-{
-
-	HMAC_Key *hkey;
-	int i;
-	
-	if (in_key == NULL || in_key->dk_KEY_struct == NULL ||
-	    out_len <= in_key->dk_key_size || out_str == NULL)
-		return (-1);
-
-	hkey = (HMAC_Key *) in_key->dk_KEY_struct;
-	for (i = 0; i < in_key->dk_key_size; i++)
-		out_str[i] = hkey->hk_ipad[i] ^ HMAC_IPAD;
-	return (i);
-}
-
-/************************************************************************** 
- *  dst_hmac_md5_compare_keys
- *	Compare two keys for equality.
- *  Return
- *	0	  The keys are equal
- *	NON-ZERO   The keys are not equal
- */
-
-static int
-dst_hmac_md5_compare_keys(const DST_KEY *key1, const DST_KEY *key2)
-{
-	HMAC_Key *hkey1 = (HMAC_Key *) key1->dk_KEY_struct;
-	HMAC_Key *hkey2 = (HMAC_Key *) key2->dk_KEY_struct;
-	return memcmp(hkey1->hk_ipad, hkey2->hk_ipad, HMAC_LEN);
-}
-
-/************************************************************************** 
- * dst_hmac_md5_free_key_structure
- *     Frees all (none) dynamically allocated structures in hkey
- */
-
-static void *
-dst_hmac_md5_free_key_structure(void *key)
-{
-	HMAC_Key *hkey = key;
-	SAFE_FREE(hkey);
-	return (NULL);
-}
-
-
-/*************************************************************************** 
- * dst_hmac_md5_generate_key
- *     Creates a HMAC key of size size with a maximum size of 63 bytes
- *     generating a HMAC key larger than 63 bytes makes no sense as that key 
- *     is digested before use. 
- */
-
-static int
-dst_hmac_md5_generate_key(DST_KEY *key, const int nothing)
-{
-	u_char *buff;
-	int i, n, size;
-
-	if (key == NULL || key->dk_alg != KEY_HMAC_MD5)
-		return (0);
-	size = (key->dk_key_size + 7) / 8; /* convert to bytes */
-	if (size <= 0)
-		return(0);
-	
-	i = size > 64 ? 64 : size;
-	buff = malloc(i+8);
-
-	n = dst_random(DST_RAND_SEMI, i, buff);
-	n += dst_random(DST_RAND_KEY, i, buff);
-	if (n <= i) {	/* failed getting anything */
-		SAFE_FREE2(buff, i);
-		return (-1);
-	}
-	n = dst_buffer_to_hmac_md5(key, buff, i);
-	SAFE_FREE2(buff, i);
-	if (n <= 0)
-		return (n);
-	return (1);
-}
-
-/*
- * dst_hmac_md5_init()  Function to answer set up function pointers for HMAC
- *	   related functions 
- */
-int
-dst_hmac_md5_init()
-{
-	if (dst_t_func[KEY_HMAC_MD5] != NULL)
-		return (1);
-	dst_t_func[KEY_HMAC_MD5] = malloc(sizeof(struct dst_func));
-	if (dst_t_func[KEY_HMAC_MD5] == NULL)
-		return (0);
-	memset(dst_t_func[KEY_HMAC_MD5], 0, sizeof(struct dst_func));
-	dst_t_func[KEY_HMAC_MD5]->sign = dst_hmac_md5_sign;
-	dst_t_func[KEY_HMAC_MD5]->verify = dst_hmac_md5_verify;
-	dst_t_func[KEY_HMAC_MD5]->compare = dst_hmac_md5_compare_keys;
-	dst_t_func[KEY_HMAC_MD5]->generate = dst_hmac_md5_generate_key;
-	dst_t_func[KEY_HMAC_MD5]->destroy = dst_hmac_md5_free_key_structure;
-	dst_t_func[KEY_HMAC_MD5]->to_dns_key = dst_hmac_md5_to_dns_key;
-	dst_t_func[KEY_HMAC_MD5]->from_dns_key = dst_buffer_to_hmac_md5;
-	dst_t_func[KEY_HMAC_MD5]->to_file_fmt = dst_hmac_md5_key_to_file_format;
-	dst_t_func[KEY_HMAC_MD5]->from_file_fmt = dst_hmac_md5_key_from_file_format;
-	return (1);
-}
-
-#else 
-int
-dst_hmac_md5_init(){
-	return (0);
-}
-#endif
-
-
-
-
-
-
-
diff --git a/contrib/bind/lib/dst/md5.h b/contrib/bind/lib/dst/md5.h
deleted file mode 100644
index c8b1580364b22..0000000000000
--- a/contrib/bind/lib/dst/md5.h
+++ /dev/null
@@ -1,101 +0,0 @@
-/* crypto/md/md5.h */
-/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
- * All rights reserved.
- *
- * This package is an SSL implementation written
- * by Eric Young (eay@cryptsoft.com).
- * The implementation was written so as to conform with Netscapes SSL.
- * 
- * This library is free for commercial and non-commercial use as long as
- * the following conditions are aheared to.  The following conditions
- * apply to all code found in this distribution, be it the RC4, RSA,
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
- * included with this distribution is covered by the same copyright terms
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
- * 
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from 
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- * 
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * 
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
- */
-
-#ifndef HEADER_MD5_H
-#define HEADER_MD5_H
-
-#ifdef  __cplusplus
-extern "C" {
-#endif
-
-#define MD5_CBLOCK	64
-#define MD5_LBLOCK	16
-#define MD5_BLOCK	16
-#define MD5_LAST_BLOCK  56
-#define MD5_LENGTH_BLOCK 8
-#define MD5_DIGEST_LENGTH 16
-
-typedef struct MD5state_st
-	{
-	unsigned long A,B,C,D;
-	unsigned long Nl,Nh;
-	unsigned long data[MD5_LBLOCK];
-	int num;
-	} MD5_CTX;
-
-#ifndef NOPROTO
-void MD5_Init(MD5_CTX *c);
-void MD5_Update(MD5_CTX *c, unsigned char *data, unsigned long len);
-void MD5_Final(unsigned char *md, MD5_CTX *c);
-unsigned char *MD5(unsigned char *d, unsigned long n, unsigned char *md);
-#else
-void MD5_Init();
-void MD5_Update();
-void MD5_Final();
-unsigned char *MD5();
-#endif
-
-/* to provide backward compatabilty to RSAREF calls ogud@tis.com 1997/11/14 */
-#define MD5Init(c)             MD5_Init(c)
-#define MD5Update(c,data, len) MD5_Update(c,data,len)
-#define MD5Final(md, c)        MD5_Final(md, c) 
-#ifdef  __cplusplus
-}
-#endif
-
-#endif
diff --git a/contrib/bind/lib/dst/md5_dgst.c b/contrib/bind/lib/dst/md5_dgst.c
deleted file mode 100644
index 82e5a3829a0c7..0000000000000
--- a/contrib/bind/lib/dst/md5_dgst.c
+++ /dev/null
@@ -1,368 +0,0 @@
-/* crypto/md/md5_dgst.c */
-/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
- * All rights reserved.
- *
- * This package is an SSL implementation written
- * by Eric Young (eay@cryptsoft.com).
- * The implementation was written so as to conform with Netscapes SSL.
- * 
- * This library is free for commercial and non-commercial use as long as
- * the following conditions are aheared to.  The following conditions
- * apply to all code found in this distribution, be it the RC4, RSA,
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
- * included with this distribution is covered by the same copyright terms
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
- * 
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from 
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- * 
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * 
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
- */
-
-#include <stdio.h>
-#ifdef USE_MD5 /* Added by ogud@tis.com 1998/1/26 */
-#include "md5_locl.h"
-
-char *MD5_version="MD5 part of SSLeay 0.8.1 19-Jul-1997";
-
-/* Implemented from RFC1321 The MD5 Message-Digest Algorithm
- */
-
-#define INIT_DATA_A (unsigned long)0x67452301L
-#define INIT_DATA_B (unsigned long)0xefcdab89L
-#define INIT_DATA_C (unsigned long)0x98badcfeL
-#define INIT_DATA_D (unsigned long)0x10325476L
-
-#ifndef NOPROTO
-static void md5_block(MD5_CTX *c, unsigned long *p);
-#else
-static void md5_block();
-#endif
-
-void MD5_Init(c)
-MD5_CTX *c;
-	{
-	c->A=INIT_DATA_A;
-	c->B=INIT_DATA_B;
-	c->C=INIT_DATA_C;
-	c->D=INIT_DATA_D;
-	c->Nl=0;
-	c->Nh=0;
-	c->num=0;
-	}
-
-void MD5_Update(c, data, len)
-MD5_CTX *c;
-register unsigned char *data;
-unsigned long len;
-	{
-	register ULONG *p;
-	int sw,sc;
-	ULONG l;
-
-	if (len == 0) return;
-
-	l=(c->Nl+(len<<3))&0xffffffffL;
-	/* 95-05-24 eay Fixed a bug with the overflow handling, thanks to
-	 * Wei Dai <weidai@eskimo.com> for pointing it out. */
-	if (l < c->Nl) /* overflow */
-		c->Nh++;
-	c->Nh+=(len>>29);
-	c->Nl=l;
-
-	if (c->num != 0)
-		{
-		p=c->data;
-		sw=c->num>>2;
-		sc=c->num&0x03;
-
-		if ((c->num+len) >= MD5_CBLOCK)
-			{
-			l= p[sw];
-			p_c2l(data,l,sc);
-			p[sw++]=l;
-			for (; sw<MD5_LBLOCK; sw++)
-				{
-				c2l(data,l);
-				p[sw]=l;
-				}
-			len-=(MD5_CBLOCK-c->num);
-
-			md5_block(c,p);
-			c->num=0;
-			/* drop through and do the rest */
-			}
-		else
-			{
-			int ew,ec;
-
-			c->num+=(int)len;
-			if ((sc+len) < 4) /* ugly, add char's to a word */
-				{
-				l= p[sw];
-				p_c2l_p(data,l,sc,len);
-				p[sw]=l;
-				}
-			else
-				{
-				ew=(c->num>>2);
-				ec=(c->num&0x03);
-				l= p[sw];
-				p_c2l(data,l,sc);
-				p[sw++]=l;
-				for (; sw < ew; sw++)
-					{ c2l(data,l); p[sw]=l; }
-				if (ec)
-					{
-					c2l_p(data,l,ec);
-					p[sw]=l;
-					}
-				}
-			return;
-			}
-		}
-	/* we now can process the input data in blocks of MD5_CBLOCK
-	 * chars and save the leftovers to c->data. */
-	p=c->data;
-	while (len >= MD5_CBLOCK)
-		{
-#if defined(L_ENDIAN) || defined(B_ENDIAN)
-		memcpy(p,data,MD5_CBLOCK);
-		data+=MD5_CBLOCK;
-#ifdef B_ENDIAN
-		for (sw=(MD5_LBLOCK/4); sw; sw--)
-			{
-			Endian_Reverse32(p[0]);
-			Endian_Reverse32(p[1]);
-			Endian_Reverse32(p[2]);
-			Endian_Reverse32(p[3]);
-			p+=4;
-			}
-#endif
-#else
-		for (sw=(MD5_LBLOCK/4); sw; sw--)
-			{
-			c2l(data,l); *(p++)=l;
-			c2l(data,l); *(p++)=l;
-			c2l(data,l); *(p++)=l;
-			c2l(data,l); *(p++)=l; 
-			} 
-#endif
-		p=c->data;
-		md5_block(c,p);
-		len-=MD5_CBLOCK;
-		}
-	sc=(int)len;
-	c->num=sc;
-	if (sc)
-		{
-		sw=sc>>2;	/* words to copy */
-#ifdef L_ENDIAN
-		p[sw]=0;
-		memcpy(p,data,sc);
-#else
-		sc&=0x03;
-		for ( ; sw; sw--)
-			{ c2l(data,l); *(p++)=l; }
-		c2l_p(data,l,sc);
-		*p=l;
-#endif
-		}
-	}
-
-static void md5_block(c, X)
-MD5_CTX *c;
-register ULONG *X;
-	{
-	register ULONG A,B,C,D;
-
-	A=c->A;
-	B=c->B;
-	C=c->C;
-	D=c->D;
-
-	/* Round 0 */
-	R0(A,B,C,D,X[ 0], 7,0xd76aa478L);
-	R0(D,A,B,C,X[ 1],12,0xe8c7b756L);
-	R0(C,D,A,B,X[ 2],17,0x242070dbL);
-	R0(B,C,D,A,X[ 3],22,0xc1bdceeeL);
-	R0(A,B,C,D,X[ 4], 7,0xf57c0fafL);
-	R0(D,A,B,C,X[ 5],12,0x4787c62aL);
-	R0(C,D,A,B,X[ 6],17,0xa8304613L);
-	R0(B,C,D,A,X[ 7],22,0xfd469501L);
-	R0(A,B,C,D,X[ 8], 7,0x698098d8L);
-	R0(D,A,B,C,X[ 9],12,0x8b44f7afL);
-	R0(C,D,A,B,X[10],17,0xffff5bb1L);
-	R0(B,C,D,A,X[11],22,0x895cd7beL);
-	R0(A,B,C,D,X[12], 7,0x6b901122L);
-	R0(D,A,B,C,X[13],12,0xfd987193L);
-	R0(C,D,A,B,X[14],17,0xa679438eL);
-	R0(B,C,D,A,X[15],22,0x49b40821L);
-	/* Round 1 */
-	R1(A,B,C,D,X[ 1], 5,0xf61e2562L);
-	R1(D,A,B,C,X[ 6], 9,0xc040b340L);
-	R1(C,D,A,B,X[11],14,0x265e5a51L);
-	R1(B,C,D,A,X[ 0],20,0xe9b6c7aaL);
-	R1(A,B,C,D,X[ 5], 5,0xd62f105dL);
-	R1(D,A,B,C,X[10], 9,0x02441453L);
-	R1(C,D,A,B,X[15],14,0xd8a1e681L);
-	R1(B,C,D,A,X[ 4],20,0xe7d3fbc8L);
-	R1(A,B,C,D,X[ 9], 5,0x21e1cde6L);
-	R1(D,A,B,C,X[14], 9,0xc33707d6L);
-	R1(C,D,A,B,X[ 3],14,0xf4d50d87L);
-	R1(B,C,D,A,X[ 8],20,0x455a14edL);
-	R1(A,B,C,D,X[13], 5,0xa9e3e905L);
-	R1(D,A,B,C,X[ 2], 9,0xfcefa3f8L);
-	R1(C,D,A,B,X[ 7],14,0x676f02d9L);
-	R1(B,C,D,A,X[12],20,0x8d2a4c8aL);
-	/* Round 2 */
-	R2(A,B,C,D,X[ 5], 4,0xfffa3942L);
-	R2(D,A,B,C,X[ 8],11,0x8771f681L);
-	R2(C,D,A,B,X[11],16,0x6d9d6122L);
-	R2(B,C,D,A,X[14],23,0xfde5380cL);
-	R2(A,B,C,D,X[ 1], 4,0xa4beea44L);
-	R2(D,A,B,C,X[ 4],11,0x4bdecfa9L);
-	R2(C,D,A,B,X[ 7],16,0xf6bb4b60L);
-	R2(B,C,D,A,X[10],23,0xbebfbc70L);
-	R2(A,B,C,D,X[13], 4,0x289b7ec6L);
-	R2(D,A,B,C,X[ 0],11,0xeaa127faL);
-	R2(C,D,A,B,X[ 3],16,0xd4ef3085L);
-	R2(B,C,D,A,X[ 6],23,0x04881d05L);
-	R2(A,B,C,D,X[ 9], 4,0xd9d4d039L);
-	R2(D,A,B,C,X[12],11,0xe6db99e5L);
-	R2(C,D,A,B,X[15],16,0x1fa27cf8L);
-	R2(B,C,D,A,X[ 2],23,0xc4ac5665L);
-	/* Round 3 */
-	R3(A,B,C,D,X[ 0], 6,0xf4292244L);
-	R3(D,A,B,C,X[ 7],10,0x432aff97L);
-	R3(C,D,A,B,X[14],15,0xab9423a7L);
-	R3(B,C,D,A,X[ 5],21,0xfc93a039L);
-	R3(A,B,C,D,X[12], 6,0x655b59c3L);
-	R3(D,A,B,C,X[ 3],10,0x8f0ccc92L);
-	R3(C,D,A,B,X[10],15,0xffeff47dL);
-	R3(B,C,D,A,X[ 1],21,0x85845dd1L);
-	R3(A,B,C,D,X[ 8], 6,0x6fa87e4fL);
-	R3(D,A,B,C,X[15],10,0xfe2ce6e0L);
-	R3(C,D,A,B,X[ 6],15,0xa3014314L);
-	R3(B,C,D,A,X[13],21,0x4e0811a1L);
-	R3(A,B,C,D,X[ 4], 6,0xf7537e82L);
-	R3(D,A,B,C,X[11],10,0xbd3af235L);
-	R3(C,D,A,B,X[ 2],15,0x2ad7d2bbL);
-	R3(B,C,D,A,X[ 9],21,0xeb86d391L);
-
-	c->A+=A&0xffffffffL;
-	c->B+=B&0xffffffffL;
-	c->C+=C&0xffffffffL;
-	c->D+=D&0xffffffffL;
-	}
-
-void MD5_Final(md, c)
-unsigned char *md;
-MD5_CTX *c;
-	{
-	register int i,j;
-	register ULONG l;
-	register ULONG *p;
-	static unsigned char end[4]={0x80,0x00,0x00,0x00};
-	unsigned char *cp=end;
-
-	/* c->num should definitly have room for at least one more byte. */
-	p=c->data;
-	j=c->num;
-	i=j>>2;
-
-	/* purify often complains about the following line as an
-	 * Uninitialized Memory Read.  While this can be true, the
-	 * following p_c2l macro will reset l when that case is true.
-	 * This is because j&0x03 contains the number of 'valid' bytes
-	 * already in p[i].  If and only if j&0x03 == 0, the UMR will
-	 * occur but this is also the only time p_c2l will do
-	 * l= *(cp++) instead of l|= *(cp++)
-	 * Many thanks to Alex Tang <altitude@cic.net> for pickup this
-	 * 'potential bug' */
-#ifdef PURIFY
-	if ((j&0x03) == 0) p[i]=0;
-#endif
-	l=p[i];
-	p_c2l(cp,l,j&0x03);
-	p[i]=l;
-	i++;
-	/* i is the next 'undefined word' */
-	if (c->num >= MD5_LAST_BLOCK)
-		{
-		for (; i<MD5_LBLOCK; i++)
-			p[i]=0;
-		md5_block(c,p);
-		i=0;
-		}
-	for (; i<(MD5_LBLOCK-2); i++)
-		p[i]=0;
-	p[MD5_LBLOCK-2]=c->Nl;
-	p[MD5_LBLOCK-1]=c->Nh;
-	md5_block(c,p);
-	cp=md;
-	l=c->A; l2c(l,cp);
-	l=c->B; l2c(l,cp);
-	l=c->C; l2c(l,cp);
-	l=c->D; l2c(l,cp);
-
-	/* clear stuff, md5_block may be leaving some stuff on the stack
-	 * but I'm not worried :-) */
-	c->num=0;
-/*	memset((char *)&c,0,sizeof(c));*/
-	}
-
-#ifdef undef
-int printit(l)
-unsigned long *l;
-	{
-	int i,ii;
-
-	for (i=0; i<2; i++)
-		{
-		for (ii=0; ii<8; ii++)
-			{
-			fprintf(stderr,"%08lx ",l[i*8+ii]);
-			}
-		fprintf(stderr,"\n");
-		}
-	}
-#endif
-#endif /* USE_MD5 */
diff --git a/contrib/bind/lib/dst/md5_locl.h b/contrib/bind/lib/dst/md5_locl.h
deleted file mode 100644
index b2f0028fbd368..0000000000000
--- a/contrib/bind/lib/dst/md5_locl.h
+++ /dev/null
@@ -1,190 +0,0 @@
-/* crypto/md/md5_locl.h */
-/* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
- * All rights reserved.
- *
- * This package is an SSL implementation written
- * by Eric Young (eay@cryptsoft.com).
- * The implementation was written so as to conform with Netscapes SSL.
- * 
- * This library is free for commercial and non-commercial use as long as
- * the following conditions are aheared to.  The following conditions
- * apply to all code found in this distribution, be it the RC4, RSA,
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
- * included with this distribution is covered by the same copyright terms
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
- * 
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from 
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- * 
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * 
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
- */
-
-#include <stdlib.h>
-#include <string.h>
-#include "md5.h"
-
-#define ULONG	unsigned long
-#define UCHAR	unsigned char
-#define UINT	unsigned int
-
-#if defined(NOCONST)
-#define const
-#endif
-
-#undef c2l
-#define c2l(c,l)	(l = ((unsigned long)(*((c)++)))     , \
-			 l|=(((unsigned long)(*((c)++)))<< 8), \
-			 l|=(((unsigned long)(*((c)++)))<<16), \
-			 l|=(((unsigned long)(*((c)++)))<<24))
-
-#undef p_c2l
-#define p_c2l(c,l,n)	{ \
-			switch (n) { \
-			case 0: l =((unsigned long)(*((c)++))); \
-			case 1: l|=((unsigned long)(*((c)++)))<< 8; \
-			case 2: l|=((unsigned long)(*((c)++)))<<16; \
-			case 3: l|=((unsigned long)(*((c)++)))<<24; \
-				} \
-			}
-
-/* NOTE the pointer is not incremented at the end of this */
-#undef c2l_p
-#define c2l_p(c,l,n)	{ \
-			l=0; \
-			(c)+=n; \
-			switch (n) { \
-			case 3: l =((unsigned long)(*(--(c))))<<16; \
-			case 2: l|=((unsigned long)(*(--(c))))<< 8; \
-			case 1: l|=((unsigned long)(*(--(c))))    ; \
-				} \
-			}
-
-#undef p_c2l_p
-#define p_c2l_p(c,l,sc,len) { \
-			switch (sc) \
-				{ \
-			case 0: l =((unsigned long)(*((c)++))); \
-				if (--len == 0) break; \
-			case 1: l|=((unsigned long)(*((c)++)))<< 8; \
-				if (--len == 0) break; \
-			case 2: l|=((unsigned long)(*((c)++)))<<16; \
-				} \
-			}
-
-#undef l2c
-#define l2c(l,c)	(*((c)++)=(unsigned char)(((l)    )&0xff), \
-			 *((c)++)=(unsigned char)(((l)>> 8)&0xff), \
-			 *((c)++)=(unsigned char)(((l)>>16)&0xff), \
-			 *((c)++)=(unsigned char)(((l)>>24)&0xff))
-
-/* NOTE - c is not incremented as per l2c */
-#undef l2cn
-#define l2cn(l1,l2,c,n)	{ \
-			c+=n; \
-			switch (n) { \
-			case 8: *(--(c))=(unsigned char)(((l2)>>24)&0xff); \
-			case 7: *(--(c))=(unsigned char)(((l2)>>16)&0xff); \
-			case 6: *(--(c))=(unsigned char)(((l2)>> 8)&0xff); \
-			case 5: *(--(c))=(unsigned char)(((l2)    )&0xff); \
-			case 4: *(--(c))=(unsigned char)(((l1)>>24)&0xff); \
-			case 3: *(--(c))=(unsigned char)(((l1)>>16)&0xff); \
-			case 2: *(--(c))=(unsigned char)(((l1)>> 8)&0xff); \
-			case 1: *(--(c))=(unsigned char)(((l1)    )&0xff); \
-				} \
-			}
-
-/* A nice byte order reversal from Wei Dai <weidai@eskimo.com> */
-#if defined(WIN32)
-/* 5 instructions with rotate instruction, else 9 */
-#define Endian_Reverse32(a) \
-	{ \
-	unsigned long l=(a); \
-	(a)=((ROTATE(l,8)&0x00FF00FF)|(ROTATE(l,24)&0xFF00FF00)); \
-	}
-#else
-/* 6 instructions with rotate instruction, else 8 */
-#define Endian_Reverse32(a) \
-	{ \
-	unsigned long l=(a); \
-	l=(((l&0xFF00FF00)>>8L)|((l&0x00FF00FF)<<8L)); \
-	(a)=ROTATE(l,16L); \
-	}
-#endif
-/*
-#define	F(x,y,z)	(((x) & (y))  |  ((~(x)) & (z)))
-#define	G(x,y,z)	(((x) & (z))  |  ((y) & (~(z))))
-*/
-
-/* As pointed out by Wei Dai <weidai@eskimo.com>, the above can be
- * simplified to the code below.  Wei attributes these optimisations
- * to Peter Gutmann's SHS code, and he attributes it to Rich Schroeppel.
- */
-#define	F(x,y,z)	((((y) ^ (z)) & (x)) ^ (z))
-#define	G(x,y,z)	((((x) ^ (y)) & (z)) ^ (y))
-#define	H(x,y,z)	((x) ^ (y) ^ (z))
-#define	I(x,y,z)	(((x) | (~(z))) ^ (y))
-
-#undef ROTATE
-#if defined(WIN32)
-#define ROTATE(a,n)     _lrotl(a,n)
-#else
-#define ROTATE(a,n)     (((a)<<(n))|(((a)&0xffffffff)>>(32-(n))))
-#endif
-
-
-#define R0(a,b,c,d,k,s,t) { \
-	a+=((k)+(t)+F((b),(c),(d))); \
-	a=ROTATE(a,s); \
-	a+=b; };\
-
-#define R1(a,b,c,d,k,s,t) { \
-	a+=((k)+(t)+G((b),(c),(d))); \
-	a=ROTATE(a,s); \
-	a+=b; };
-
-#define R2(a,b,c,d,k,s,t) { \
-	a+=((k)+(t)+H((b),(c),(d))); \
-	a=ROTATE(a,s); \
-	a+=b; };
-
-#define R3(a,b,c,d,k,s,t) { \
-	a+=((k)+(t)+I((b),(c),(d))); \
-	a=ROTATE(a,s); \
-	a+=b; };
diff --git a/contrib/bind/lib/dst/prandom.c b/contrib/bind/lib/dst/prandom.c
deleted file mode 100644
index 0a66e61512e4c..0000000000000
--- a/contrib/bind/lib/dst/prandom.c
+++ /dev/null
@@ -1,851 +0,0 @@
-#ifndef LINT
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/prandom.c,v 1.8 1999/10/13 16:39:24 vixie Exp $";
-#endif
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <stdio.h>
-#include <sys/types.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-#include <fcntl.h>
-#include <time.h>
-#include <dirent.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/time.h>
-
-#include "dst_internal.h"
-#include "prand_conf.h"
-
-#include "port_after.h"
-
-#ifndef DST_NUM_HASHES
-#define DST_NUM_HASHES 4
-#endif
-#ifndef DST_NUMBER_OF_COUNTERS
-#define DST_NUMBER_OF_COUNTERS 5	/* 32 * 5 == 160 == SHA(1) > MD5 */
-#endif
-
-/* 
- * the constant below is a prime number to make fixed data structues like 
- * stat and time wrap over blocks. This adds certain uncertanty to what is 
- * in each digested block. 
- * The prime number 2879 has the special property that when 
- * divided by 2,4 and 6 the result is also a prime numbers
- */
-
-#ifndef DST_RANDOM_BLOCK_SIZE
-#define DST_RANDOM_BLOCK_SIZE 2879
-#endif
-
-/* 
- * This constant dictatates how many bits we shift to the right before using a 
- */
-#ifndef DST_SHIFT
-#define DST_SHIFT 9
-#endif
-
-/*
- * An initalizer that is as bad as any other with half the bits set 
- */
-#ifndef DST_RANDOM_PATTERN
-#define DST_RANDOM_PATTERN 0x8765CA93
-#endif
-/* 
- * things must have changed in the last 3600 seconds to be used 
- */
-#define MAX_OLD 3600
-
-
-/*  
- *  these two data structure are used to process input data into digests, 
- *
- *  The first structure is containts a pointer to a DST HMAC key 
- *  the variables accompanying are used for 
- *	step : select every step byte from input data for the hash
- *	block: number of data elements going into each hash
- *	digested: number of data elements digested so far
- *	curr: offset into the next input data for the first byte. 
- */
-typedef struct hash {
-	DST_KEY *key;
-	void *ctx;
-	int digested, block, step, curr;
-} prand_hash;
-
-/*
- *  This data structure controlls number of hashes and keeps track of 
- *  overall progress in generating correct number of bytes of output.
- *	output  : array to store the output data in
- *	needed  : how many bytes of output are needed
- *	filled  : number of bytes in output so far. 
- *	bytes   : total number of bytes processed by this structure
- *	file_digest : the HMAC key used to digest files.
- */
-typedef struct work {
-	int needed, filled, bytes;
-	u_char *output;
-	prand_hash *hash[DST_NUM_HASHES];
-	DST_KEY *file_digest;
-} dst_work;
-
-
-/* 
- * forward function declarations 
- */
-static int get_dev_random(u_char *output, int size);
-static int do_time(dst_work *work);
-static int do_ls(dst_work *work);
-static int unix_cmd(dst_work *work);
-static int digest_file(dst_work *work);
-
-static void force_hash(dst_work *work, prand_hash *hash);
-static int do_hash(dst_work *work, prand_hash *hash, u_char *input,
-		   int size);
-static int my_digest(dst_work *tmp, u_char *input, int size);
-static prand_hash *get_hmac_key(int step, int block);
-
-static int own_random(dst_work *work);
-
-
-/* 
- * variables used in the quick random number generator 
- */
-static u_int32_t ran_val = DST_RANDOM_PATTERN;
-static u_int32_t ran_cnt = (DST_RANDOM_PATTERN >> 10);
-
-/* 
- * setting the quick_random generator to particular values or if both 
- * input parameters are 0 then set it to initial vlaues
- */
-
-void
-dst_s_quick_random_set(u_int32_t val, u_int32_t cnt)
-{
-	ran_val = (val == 0) ? DST_RANDOM_PATTERN : val;
-	ran_cnt = (cnt == 0) ? (DST_RANDOM_PATTERN >> 10) : cnt;
-}
-
-/* 
- * this is a quick and random number generator that seems to generate quite 
- * good distribution of data 
- */
-u_int32_t
-dst_s_quick_random(int inc)
-{
-	ran_val = ((ran_val >> 13) ^ (ran_val << 19)) ^
-		((ran_val >> 7) ^ (ran_val << 25));
-	if (inc > 0)		/* only increasing values accepted */
-		ran_cnt += inc;
-	ran_val += ran_cnt++;
-	return (ran_val);
-}
-
-/* 
- * get_dev_random: Function to read /dev/random reliably
- * this function returns how many bytes where read from the device.
- * port_after.h should set the control variable HAVE_DEV_RANDOM 
- */
-static int
-get_dev_random(u_char *output, int size)
-{
-#ifdef HAVE_DEV_RANDOM
-	struct stat st;
-	int n = 0, fd = -1, s;
-
-	s = stat("/dev/random", &st);
-	if (s == 0 && S_ISCHR(st.st_mode)) {
-		if ((fd = open("/dev/random", O_RDONLY | O_NONBLOCK)) != -1) {
-			if ((n = read(fd, output, size)) < 0)
-				n = 0;
-			close(fd);
-		}
-		return (n);
-	}
-#endif
-	return (0);
-}
-
-/*
- * Portable way of getting the time values if gettimeofday is missing 
- * then compile with -DMISSING_GETTIMEOFDAY  time() is POSIX compliant but
- * gettimeofday() is not.
- * Time of day is predictable, we are looking for the randomness that comes 
- * the last few bits in the microseconds in the timer are hard to predict when 
- * this is invoked at the end of other operations
- */
-struct timeval *mtime;
-static int
-do_time(dst_work *work)
-{
-	int cnt = 0;
-	static u_char tmp[sizeof(struct timeval) + sizeof(struct timezone)];
-	struct timezone *zone;
-
-	zone = (struct timezone *) tmp;
-	mtime = (struct timeval *)(tmp + sizeof(struct timezone));
-	gettimeofday(mtime, zone);
-	cnt = sizeof(tmp);
-	my_digest(work, tmp, sizeof(tmp));
-
-	return (cnt);
-}
-
-/*
- * this function simulates the ls command, but it uses stat which gives more
- * information and is harder to guess 
- * Each call to this function will visit the next directory on the list of 
- * directories, in a circular manner. 
- * return value is the number of bytes added to the temp buffer
- *
- * do_ls() does not visit subdirectories
- * if attacker has access to machine it can guess most of the values seen
- * thus it is important to only visit directories that are freqently updated
- * Attacker that has access to the network can see network traffic 
- * when NFS mounted directories are accessed and know exactly the data used
- * but may not know exactly in what order data is used. 
- * Returns the number of bytes that where returned in stat structures
- */
-static int
-do_ls(dst_work *work)
-{
-	struct dir_info { 
-		uid_t  uid;
-		gid_t  gid;
-		off_t size;
-		time_t atime, mtime, ctime;
-	};
-	static struct dir_info dir_info;
-	struct stat buf;
-	struct dirent *entry;
-	static int i = 0;
-	static unsigned long d_round = 0;
-	struct timeval tv;
-	int n = 0, dir_len, tb_i = 0, out = 0;
-
-	char file_name[1024];
-	u_char tmp_buff[1024]; 
-	DIR *dir = NULL;
-
-	if (dirs[i] == NULL) 	/* if at the end of the list start over */
-		i = 0;
-	if (stat(dirs[i++], &buf))  /* directory does not exist */
-		return (0);
-
-	gettimeofday(&tv,NULL);
-	if (d_round == 0) 
-		d_round = tv.tv_sec - MAX_OLD;
-	else if (i==1) /* if starting a new round cut what we accept */
-		d_round += (tv.tv_sec - d_round)/2;
-
-	if (buf.st_atime < d_round) 
-		return (0);
-
-	EREPORT(("do_ls i %d filled %4d in_temp %4d\n",
-		 i-1, work->filled, work->in_temp));
-	memcpy(tmp_buff, &buf, sizeof(buf)); 
-	tb_i += sizeof(buf);
-
-
-	if ((dir = opendir(dirs[i-1])) == NULL)/* open it for read */
-		return (0);
-	strcpy(file_name, dirs[i-1]);
-	dir_len = strlen(file_name);
-	file_name[dir_len++] = '/';
-	while ((entry = readdir(dir))) {
-		int len = strlen(entry->d_name);
-		out += len;
-		if (my_digest(work, (u_char *)entry->d_name, len))
-			break;
-	
-		memcpy(&file_name[dir_len], entry->d_name, len);
-		file_name[dir_len + len] = 0x0;
-		/* for all entries in dir get the stats */
-		if (stat(file_name, &buf) == 0) {
-			n++;	/* count successfull stat calls */
-			/* copy non static fields */
-			dir_info.uid   += buf.st_uid;
-			dir_info.gid   += buf.st_gid;
-			dir_info.size  += buf.st_size;
-			dir_info.atime += buf.st_atime;
-			dir_info.mtime += buf.st_mtime;
-			dir_info.ctime += buf.st_ctime;
-			out += sizeof(dir_info);
-			if(my_digest(work, (u_char *)&dir_info, 
-				     sizeof(dir_info)))
-				break; 
-		}
-	}
-	closedir(dir);	/* done */
-	out += do_time(work);	/* add a time stamp */
-	return (out);
-}
-
-
-/* 
- * unix_cmd() 
- * this function executes the a command from the cmds[] list of unix commands 
- * configured in the prand_conf.h file
- * return value is the number of bytes added to the randomness temp buffer
- * 
- * it returns the number of bytes that where read in
- * if more data is needed at the end time is added to the data.
- * This function maintains a state to selects the next command to run
- * returns the number of bytes read in from the command 
- */
-static int
-unix_cmd(dst_work *work)
-{
-	static int cmd_index = 0;
-	int cnt = 0, n;
-	FILE *pipe;
-	u_char buffer[4096];
-
-	if (cmds[cmd_index] == NULL)
-		cmd_index = 0;
-	EREPORT(("unix_cmd() i %d filled %4d in_temp %4d\n",
-		 cmd_index, work->filled, work->in_temp));
-	pipe = popen(cmds[cmd_index++], "r");	/* execute the command */
-
-	while ((n = fread(buffer, sizeof(char), sizeof(buffer), pipe)) > 0) {
-		cnt += n;	/* process the output */
-		if (my_digest(work, buffer, n))
-			break;
-		/* this adds some randomness to the output */
-		cnt += do_time(work);
-	}
-	while ((n = fread(buffer, sizeof(char), sizeof(buffer), pipe)) > 0)
-		NULL; /* drain the pipe */
-	pclose(pipe);
-	return (cnt);		/* read how many bytes where read in */
-}
-
-/* 
- * digest_file() This function will read a file and run hash over it
- * input is a file name 
- */ 
-static int 
-digest_file(dst_work *work) 
-{
-	static int f_cnt = 0;
-	static unsigned long f_round = 0;
-	FILE *fp; 
-	void *ctx;
-	const char *name;
-	int no, i; 
-	struct stat st;
-	struct timeval tv;
-	u_char buf[1024];
-
-	if (f_round == 0 || files[f_cnt] == NULL || work->file_digest == NULL) 
-		if (gettimeofday(&tv, NULL)) /* only do this if needed */
-			return (0);
-	if (f_round == 0)   /* first time called set to one hour ago */
-		f_round = (tv.tv_sec - MAX_OLD); 
-	name = files[f_cnt++]; 
-	if (files[f_cnt] == NULL) {  /* end of list of files */
-		if(f_cnt <= 1)       /* list is too short */
-			return (0);
-		f_cnt = 0;           /* start again on list */
-		f_round += (tv.tv_sec - f_round)/2; /* set new cutoff */
-		work->file_digest = dst_free_key(work->file_digest);
-	}
-	if (work->file_digest == NULL) {
-		work->file_digest  = dst_buffer_to_key("", KEY_HMAC_MD5, 0, 0, 
-					    (u_char *)&tv, sizeof(tv));
-		if (work->file_digest == NULL)
-			return (0);
-	}
-	if (access(name, R_OK) || stat(name, &st))
-		return (0); /* no such file or not allowed to read it */
-	if (strncmp(name, "/proc/", 6) && st.st_mtime < f_round)  
-		return(0); /* file has not changed recently enough */
-	if (dst_sign_data(SIG_MODE_INIT, work->file_digest, &ctx, 
-			  NULL, 0, NULL, 0)) {
-		work->file_digest = dst_free_key(work->file_digest);
-		return (0);
-	}
-	if ((fp = fopen(name, "r")) == NULL) 
-		return (0);
-	for (no = 0; (i = fread(buf, sizeof(*buf), sizeof(buf), fp)) > 0; 
-	     no += i) 
-		dst_sign_data(SIG_MODE_UPDATE, work->file_digest, &ctx, 
-			      buf, i, NULL, 0);
-
-	fclose(fp);
-	if (no >= 64) {
-		i = dst_sign_data(SIG_MODE_FINAL, work->file_digest, &ctx, 
-				  NULL, 0, &work->output[work->filled], 
-				  DST_HASH_SIZE);	  
-		if (i > 0) 
-			work->filled += i;
-	}
-	else if (i > 0)
-		my_digest(work, buf, i);
-	my_digest(work, (u_char *)name, strlen(name));
-	return (no + strlen(name));
-}
-
-/* 
- * function to perform the FINAL and INIT operation on a hash if allowed
- */
-static void
-force_hash(dst_work *work, prand_hash *hash)
-{
-	int i = 0;
-
-	/* 
-	 * if more than half a block then add data to output 
-	 * otherwise adde the digest to the next hash 
-	 */
-	if ((hash->digested * 2) > hash->block) {
-		i = dst_sign_data(SIG_MODE_FINAL, hash->key, &hash->ctx,
-				  NULL, 0, &work->output[work->filled],
-				  DST_HASH_SIZE);
-
-		hash->digested = 0;
-		dst_sign_data(SIG_MODE_INIT, hash->key, &hash->ctx, 
-			      NULL, 0, NULL, 0);
-		if (i > 0)
-			work->filled += i;
-	}
-	return;
-}
-
-/* 
- * This function takes the input data does the selection of data specified
- * by the hash control block.
- * The step varialbe in the work sturcture determines which 1/step bytes
- * are used, 
- *
- */
-static int
-do_hash(dst_work *work, prand_hash *hash, u_char *input, int size)
-{
-	u_char *tmp = input, *tp;
-	int i, cnt = size, n, needed, avail, dig, tmp_size = 0;
-
-	if (cnt <= 0 || input == NULL)
-		return (0);
-
-	if (hash->step > 1) {	/* if using subset of input data */
-		tmp_size = size / hash->step + 2;
-		tp = tmp = malloc(tmp_size);
-		for (cnt = 0, i = hash->curr; i < size; i += hash->step, cnt++)
-			*(tp++) = input[i];
-		/* calcutate the starting point in the next input set */
-		hash->curr = (hash->step - (i - size)) % hash->step;
-	}
-	/* digest the data in block sizes */
-	for (n = 0; n < cnt; n += needed) {
-		avail = (cnt - n);
-		needed = hash->block - hash->digested;
-		dig = (avail < needed) ? avail : needed;
-		dst_sign_data(SIG_MODE_UPDATE, hash->key, &hash->ctx, 
-			      &tmp[n], dig, NULL, 0);
-		hash->digested += dig;
-		if (hash->digested >= hash->block)
-			force_hash(work, hash);
-		if (work->needed < work->filled) {
-			if (tmp != input) 
-				SAFE_FREE2(tmp, tmp_size);
-			return (1);
-		}
-	}
-	if (tmp_size > 0)
-		SAFE_FREE2(tmp, tmp_size);
-	return (0);
-}
-
-/*
- * Copy data from INPUT for length SIZE into the work-block TMP.
- * If we fill the work-block, digest it; then,
- * if work-block needs more data, keep filling with the rest of the input.
- */
-static int
-my_digest(dst_work *work, u_char *input, int size)
-{
-
-	int i, full = 0;
-	static unsigned counter;
-	
-	counter += size;
-	/* first do each one of the hashes */
-	for (i = 0; i < DST_NUM_HASHES && full == 0; i++) 
-		full = do_hash(work, work->hash[i], input, size) +
-		       do_hash(work, work->hash[i], (u_char *) &counter, 
-				sizeof(counter));
-/* 
- * if enough data has be generated do final operation on all hashes 
- *  that have enough date for that 
- */
-	for (i = 0; full && (i < DST_NUM_HASHES); i++)
-		force_hash(work, work->hash[i]);
-
-	return (full);
-}
-
-/*
- * this function gets some semi random data and sets that as an HMAC key
- * If we get a valid key this function returns that key initalized
- * otherwise it returns NULL;
- */
-static prand_hash *
-get_hmac_key(int step, int block)
-{
-
-	u_char *buff;
-	int temp = 0, n = 0, size = 70;
-	DST_KEY *new_key = NULL;
-	prand_hash *new = NULL;
-
-	/* use key that is larger than  digest algorithms (64) for key size */
-	buff = malloc(size);
-	if (buff == NULL)
-		return (NULL);
-	/* do not memset the allocated memory to get random bytes there */
-	/* time of day is somewhat random  expecialy in the last bytes */
-	gettimeofday((struct timeval *) &buff[n], NULL);
-	n += sizeof(struct timeval);
-
-/* get some semi random stuff in here stir it with micro seconds */
-	if (n < size) {
-		temp = dst_s_quick_random((int) buff[n - 1]);
-		memcpy(&buff[n], &temp, sizeof(temp));
-		n += sizeof(temp);
-	}
-/* get the pid of this process and its parent */
-	if (n < size) {
-		temp = (int) getpid();
-		memcpy(&buff[n], &temp, sizeof(temp));
-		n += sizeof(temp);
-	}
-	if (n < size) {
-		temp = (int) getppid();
-		memcpy(&buff[n], &temp, sizeof(temp));
-		n += sizeof(temp);
-	}
-/* get the user ID */
-	if (n < size) {
-		temp = (int) getuid();
-		memcpy(&buff[n], &temp, sizeof(temp));
-		n += sizeof(temp);
-	}
-#ifndef GET_HOST_ID_MISSING
-	if (n < size) {
-		temp = (int) gethostid();
-		memcpy(&buff[n], &temp, sizeof(temp));
-		n += sizeof(temp);
-	}
-#endif
-/* get some more random data */
-	if (n < size) {
-		temp = dst_s_quick_random((int) buff[n - 1]);
-		memcpy(&buff[n], &temp, sizeof(temp));
-		n += sizeof(temp);
-	}
-/* covert this into a HMAC key */
-	new_key = dst_buffer_to_key("", KEY_HMAC_MD5, 0, 0, buff, size);
-	SAFE_FREE(buff);
-
-/* get the control structure */
-	if ((new = malloc(sizeof(prand_hash))) == NULL)
-		return (NULL);
-	new->digested = new->curr = 0;
-	new->step = step;
-	new->block = block;
-	new->key = new_key;
-	if (dst_sign_data(SIG_MODE_INIT, new_key, &new->ctx, NULL, 0, NULL, 0))
-		return (NULL);
-
-	return (new);
-}
-
-/* 
- * own_random() 
- * This function goes out and from various sources tries to generate enough
- * semi random data that a hash function can generate a random data. 
- * This function will iterate between the two main random source sources, 
- *  information from programs and directores in random order. 
- * This function return the number of bytes added to the random output buffer. 
- */
-static int
-own_random(dst_work *work)
-{
-	int dir = 0, b;
-	int bytes, n, cmd = 0, dig = 0;
-	int start =0;
-/* 
- * now get the initial seed to put into the quick random function from 
- * the address of the work structure 
- */
-	bytes = (int) getpid();
-/*
- * proceed while needed 
- */
-	while (work->filled < work->needed) {
-		EREPORT(("own_random r %08x b %6d t %6d f %6d\n",
-			 ran_val, bytes, work->in_temp, work->filled));
-/* pick a random number in the range of 0..7 based on that random number
- * perform some operations that yield random data
- */
-		start = work->filled;
-		n = (dst_s_quick_random(bytes) >> DST_SHIFT) & 0x07;
-		switch (n) {
-		    case 0:
-		    case 3:
-			if (sizeof(cmds) > 2 *sizeof(*cmds)) {
-				b = unix_cmd(work);
-				cmd += b;
-			}
-			break;
-
-		    case 1:
-		    case 7:
-			if (sizeof(dirs) > 2 *sizeof(*dirs)) {
-				b = do_ls(work);
-				dir += b;
-			}
-			break;
-
-		    case 4:
-		    case 5:
-			/* retry getting data from /dev/random */
-			b = get_dev_random(&work->output[work->filled], 
-					   work->needed - work->filled);
-			if (b > 0)
-				work->filled += b;
-			break;
-
-		    case 6:
-			if (sizeof(files) > 2 * sizeof(*files)) {
-				b = digest_file(work);
-				dig += b;
-			}
-			break;
-
-		    case 2:
-		    default:	/* to make sure we make some progress */
-			work->output[work->filled++] = 0xff &
-				dst_s_quick_random(bytes);
-			b = 1;
-			break;
-		}
-		if (b > 0) 
-			bytes += b;
-	}
-	return (work->filled);
-}
-
-
-/* 
- * dst_s_random() This function will return the requested number of bytes 
- * of randomness to the caller it will use the best available sources of 
- * randomness.
- * The current order is to use /dev/random, precalculated randomness, and 
- * finaly use some system calls and programs to generate semi random data that 
- * is then digested to generate randomness. 
- * This function is thread safe as each thread uses its own context, but
- * concurrent treads will affect each other as they update shared state 
- * information.
- * It is strongly recommended that this function be called requesting a size 
- * that is not a multiple of the output of the hash function used. 
- * 
- * If /dev/random is not available this function is not suitable to generate 
- * large ammounts of data, rather it is suitable to seed a pseudo-random 
- * generator 
- * Returns the number of bytes put in the output buffer 
- */
-int
-dst_s_random(u_char *output, int size)
-{
-	int n = 0, s, i;
-	static u_char old_unused[DST_HASH_SIZE * DST_NUM_HASHES];
-	static int unused = 0;
-
-	if (size <= 0 || output == NULL)
-		return (0);
-
-	if (size >= 2048)
-		return (-1);
-	/* 
-	 * Read from /dev/random 
-	 */
-	n = get_dev_random(output, size);
-	/* 
-	 *  If old data is available and needed use it 
-	 */
-	if (n < size && unused > 0) {
-		int need = size - n;
-		if (unused <= need) {
-			memcpy(output, old_unused, unused);
-			n += unused;
-			unused = 0;
-		} else {
-			memcpy(output, old_unused, need);
-			n += need;
-			unused -= need;
-			memcpy(old_unused, &old_unused[need], unused);
-		}
-	}
-	/*
-	 * If we need more use the simulated randomness here.
-	 */
-	if (n < size) {
-		dst_work *my_work = (dst_work *) malloc(sizeof(dst_work));
-		if (my_work == NULL)
-			return (n);
-		my_work->needed = size - n;
-		my_work->filled = 0;
-		my_work->output = (u_char *) malloc(my_work->needed +
-						    DST_HASH_SIZE *
-						    DST_NUM_HASHES);
-		my_work->file_digest = NULL;
-		if (my_work->output == NULL)
-			return (n);
-		memset(my_work->output, 0x0, my_work->needed);
-/* allocate upto 4 different HMAC hash functions out of order */
-#if DST_NUM_HASHES >= 3
-		my_work->hash[2] = get_hmac_key(3, DST_RANDOM_BLOCK_SIZE / 2);
-#endif
-#if DST_NUM_HASHES >= 2
-		my_work->hash[1] = get_hmac_key(7, DST_RANDOM_BLOCK_SIZE / 6);
-#endif
-#if DST_NUM_HASHES >= 4
-		my_work->hash[3] = get_hmac_key(5, DST_RANDOM_BLOCK_SIZE / 4);
-#endif
-		my_work->hash[0] = get_hmac_key(1, DST_RANDOM_BLOCK_SIZE);
-		if (my_work->hash[0] == NULL)	/* if failure bail out */
-			return (n);
-		s = own_random(my_work);
-/* if more generated than needed store it for future use */
-		if (s >= my_work->needed) {
-			EREPORT(("dst_s_random(): More than needed %d >= %d\n",
-				 s, my_work->needed));
-			memcpy(&output[n], my_work->output, my_work->needed);
-			n += my_work->needed;
-			/* saving unused data for next time */
-			unused = s - my_work->needed;
-			memcpy(old_unused, &my_work->output[my_work->needed],
-			       unused);
-		} else {
-			/* XXXX This should not happen */
-			EREPORT(("Not enough %d >= %d\n", s, my_work->needed));
-			memcpy(&output[n], my_work->output, s);
-			n += my_work->needed;
-		}
-
-/* delete the allocated work area */
-		for (i = 0; i < DST_NUM_HASHES; i++) {
-			dst_free_key(my_work->hash[i]->key);
-			SAFE_FREE(my_work->hash[i]);
-		}
-		SAFE_FREE(my_work->output);
-		SAFE_FREE(my_work);
-	}
-	return (n);
-}
-
-/*
- * A random number generator that is fast and strong 
- * this random number generator is based on HASHing data,
- * the input to the digest function is a collection of <NUMBER_OF_COUNTERS>
- * counters that is incremented between digest operations
- * each increment operation amortizes to 2 bits changed in that value
- * for 5 counters thus the input will amortize to have 10 bits changed 
- * The counters are initaly set using the strong random function above
- * the HMAC key is selected by the same methold as the HMAC keys for the 
- * strong random function. 
- * Each set of counters is used for 2^25 operations 
- * 
- * returns the number of bytes written to the output buffer 
- * or       negative number in case of error 
- */
-int
-dst_s_semi_random(u_char *output, int size)
-{
-	static u_int32_t counter[DST_NUMBER_OF_COUNTERS];
-	static u_char semi_old[DST_HASH_SIZE];
-	static int semi_loc = 0, cnt = 0, hb_size = 0;
-	static DST_KEY *my_key = NULL;
-	prand_hash *hash;
-	int out = 0, i, n;
-
-	if (output == NULL || size <= 0)
-		return (-2);
-
-/* check if we need a new key */
-	if (my_key == NULL || cnt > (1 << 25)) {	/* get HMAC KEY */
-		if (my_key)
-			my_key->dk_func->destroy(my_key);
-		if ((hash = get_hmac_key(1, DST_RANDOM_BLOCK_SIZE)) == NULL)
-			return (0);
-		my_key = hash->key;
-/* check if the key works stir the new key using some old random data */
-		hb_size = dst_sign_data(SIG_MODE_ALL, my_key, NULL, 
-				        (u_char *) counter, sizeof(counter),
-					semi_old, sizeof(semi_old));
-		if (hb_size <= 0) {
-			EREPORT(("dst_s_semi_random() Sign of alg %d failed %d\n",
-				 my_key->dk_alg, hb_size));
-			return (-1);
-		}
-/* new set the counters to random values */
-		dst_s_random((u_char *) counter, sizeof(counter));
-		cnt = 0;
-	}
-/* if old data around use it first */
-	if (semi_loc < hb_size) {
-		if (size <= hb_size - semi_loc) {	/* need less */
-			memcpy(output, &semi_old[semi_loc], size);
-			semi_loc += size;
-			return (size);	/* DONE */
-		} else {
-			out = hb_size - semi_loc;
-			memcpy(output, &semi_old[semi_loc], out);
-			semi_loc += out;
-		}
-	}
-/* generate more randome stuff */
-	while (out < size) {
-		/* 
-		 * modify at least one bit by incrementing at least one counter
-		 * based on the last bit of the last counter updated update
-		 * the next one.
-		 * minimaly this  operation will modify at least 1 bit, 
-		 * amortized 2 bits
-		 */
-		for (n = 0; n < DST_NUMBER_OF_COUNTERS; n++)
-			i = (int) counter[n]++;
-
-		i = dst_sign_data(SIG_MODE_ALL, my_key, NULL, 
-				  (u_char *) counter, hb_size,
-				  semi_old, sizeof(semi_old));
-		if (i != hb_size)
-			EREPORT(("HMAC SIGNATURE FAILURE %d\n", i));
-		cnt++;
-		if (size - out < i)	/* Not all data is needed */
-			semi_loc = i = size - out;
-		memcpy(&output[out], semi_old, i);
-		out += i;
-	}
-	return (out);
-}
diff --git a/contrib/bind/lib/dst/rsaref_link.c b/contrib/bind/lib/dst/rsaref_link.c
deleted file mode 100644
index 19c9a6703e901..0000000000000
--- a/contrib/bind/lib/dst/rsaref_link.c
+++ /dev/null
@@ -1,754 +0,0 @@
-#ifdef RSAREF
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/rsaref_link.c,v 1.6 1999/10/13 16:39:24 vixie Exp $";
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-
-/*
- * This file contains two components
- * 1. Interface to the rsaref library to allow compilation when RSAREF is
- *    not available all calls to RSAREF are contained inside this file.
- * 2. The glue to connvert RSA{REF} KEYS to and from external formats
- */
-#include "port_before.h"
-
-#include <stdio.h>
-#include <unistd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <memory.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-
-#include "dst_internal.h"
-
-# ifdef __STDC__
-#   define PROTOTYPES 1
-# else
-#   define PROTOTYPES 0
-# endif
-
-# include <global.h>
-# include <rsaref.h>
-
-#include "port_after.h"
-
-
-typedef struct rsakey {
-	char *rk_signer;
-	R_RSA_PRIVATE_KEY *rk_Private_Key;
-	R_RSA_PUBLIC_KEY *rk_Public_Key;
-} RSA_Key;
-
-
-static int dst_rsaref_sign(const int mode, DST_KEY *key, void **context,
-			   const u_char *data, const int len,
-			   u_char *signature, const int sig_len);
-static int dst_rsaref_verify(const int mode, DST_KEY *key, void **context,
-			     const u_char *data, const int len,
-			     const u_char *signature, const int sig_len);
-
-static int dst_rsaref_to_dns_key(const DST_KEY *public, u_char *out_str,
-				 const int out_len);
-static int dst_rsaref_from_dns_key(DST_KEY *s_key, const u_char *key,
-				   const int len);
-
-static int dst_rsaref_key_to_file_format(const DST_KEY *dkey,
-					 u_char *buff,
-					 const int buff_len);
-static int dst_rsaref_key_from_file_format(DST_KEY *dkey,
-					   const u_char *buff,
-					   const int buff_len);
-
-static int dst_rsaref_compare_keys(const DST_KEY *rkey1,
-				   const DST_KEY *rkey2);
-static void *dst_rsaref_free_key_structure(void *d_key);
-
-static int dst_rsaref_generate_keypair(DST_KEY *key, const int exp);
-
-static void dst_rsaref_init_random_struct(R_RANDOM_STRUCT * randomstruct);
-
-/*
- * dst_rsaref_init()  Function to answer set up function pointers for RSAREF
- *	     related functions 
- */
-int
-dst_rsaref_init()
-{
-	if (dst_t_func[KEY_RSA] != NULL)
-		return (1);
-	dst_t_func[KEY_RSA] = malloc(sizeof(struct dst_func));
-	if (dst_t_func[KEY_RSA] == NULL)
-		return (0);
-	memset(dst_t_func[KEY_RSA], 0, sizeof(struct dst_func));
-	dst_t_func[KEY_RSA]->sign = dst_rsaref_sign;
-	dst_t_func[KEY_RSA]->verify = dst_rsaref_verify;
-	dst_t_func[KEY_RSA]->compare = dst_rsaref_compare_keys;
-	dst_t_func[KEY_RSA]->generate = dst_rsaref_generate_keypair;
-	dst_t_func[KEY_RSA]->destroy = dst_rsaref_free_key_structure;
-	dst_t_func[KEY_RSA]->to_dns_key = dst_rsaref_to_dns_key;
-	dst_t_func[KEY_RSA]->from_dns_key = dst_rsaref_from_dns_key;
-	dst_t_func[KEY_RSA]->to_file_fmt = dst_rsaref_key_to_file_format;
-	dst_t_func[KEY_RSA]->from_file_fmt = dst_rsaref_key_from_file_format;
-	return (1);
-}
-
-/*
- * dst_rsa_sign
- *     Call RSAREF signing functions to sign a block of data.
- *     There are three steps to signing, INIT (initialize structures),
- *     UPDATE (hash (more) data), FINAL (generate a signature).	 This
- *     routine performs one or more of these steps.
- * Parameters
- *     mode	   SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     key	   pointer to a RSA key structure that points to public key
- *		   and context to use.
- *     data	   data to be signed.
- *     len	   length in bytes of data.
- *     signature   location to store signature.
- *     sig_len	   size of the signature storage area
- * returns
- *	  N  Success on SIG_MODE_FINAL = returns signature length in bytes
- *	  0  Success on SIG_MODE_INIT  and UPDATE
- *	 <0  Failure
- */
-
-
-static int
-dst_rsaref_sign(const int mode, DST_KEY *dkey, void **context,
-		const u_char *data, const int len,
-		u_char *signature, const int sig_len)
-{
-	int sign_len = 0;
-	R_SIGNATURE_CTX *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT)
-		ctx = malloc(sizeof(*ctx));
-	else if (context) 
-		ctx = (R_SIGNATURE_CTX *) *context;
-	if (ctx == NULL) 
-		return (-1);
-
-	if ((mode & SIG_MODE_INIT) && R_SignInit(ctx, DA_MD5))
-		return (SIGN_INIT_FAILURE);
-
-	/* equivalent of SIG_MODE_UPDATE */
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0) &&
-	    R_SignUpdate(ctx, (u_char *) data, len))
-		return (SIGN_UPDATE_FAILURE);
-
-	if (mode & SIG_MODE_FINAL) {
-		RSA_Key *key = (RSA_Key *) dkey->dk_KEY_struct;
-		if (signature == NULL ||
-		    sig_len < (int)(key->rk_Public_Key->bits + 7) / 8)
-			return (SIGN_FINAL_FAILURE);
-		if(key == NULL || key->rk_Private_Key == NULL)
-			return (-1);
-		if (R_SignFinal(ctx, signature, &sign_len,
-				key->rk_Private_Key))
-			return (SIGN_FINAL_FAILURE);
-		SAFE_FREE(ctx);
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}
-	return (sign_len);
-}
-
-
-/*
- * dst_rsaref_verify()
- *     Calls RSAREF verification routines.  There are three steps to
- *     verification, INIT (initialize structures), UPDATE (hash (more) data),
- *     FINAL (generate a signature).  This routine performs one or more of
- *     these steps.
- * Parameters
- *     mode	   SIG_MODE_INIT, SIG_MODE_UPDATE and/or SIG_MODE_FINAL.
- *     key	   pointer to a RSA key structure that points to public key
- *		   and context to use.
- *     data	   data signed.
- *     len	   length in bytes of data.
- *     signature   signature.
- *     sig_len	   length in bytes of signature.
- * returns
- *     0  Success
- *    <0  Failure
- */
-
-static int
-dst_rsaref_verify(const int mode, DST_KEY *dkey, void **context,
-		  const u_char *data,	const int len, 
-		  const u_char *signature, const int sig_len)
-{
-	R_SIGNATURE_CTX *ctx = NULL;
-
-	if (mode & SIG_MODE_INIT)
-		ctx = malloc(sizeof(*ctx));
-	else if (context) 
-		ctx = (R_SIGNATURE_CTX *) *context;
-	if (ctx == NULL) 
-		return (-1);
-
-	if ((mode & SIG_MODE_INIT) && R_VerifyInit(ctx, DA_MD5))
-		return (VERIFY_INIT_FAILURE);
-
-	if ((mode & SIG_MODE_UPDATE) && (data && len > 0) &&
-	    R_VerifyUpdate(ctx, (u_char *) data, len))
-		return (VERIFY_UPDATE_FAILURE);
-
-	if ((mode & SIG_MODE_FINAL)) {
-		RSA_Key *key = (RSA_Key *) dkey->dk_KEY_struct;
-
-		if (key == NULL || key->rk_Public_Key == NULL)
-			return (-1);
-		if (signature == NULL || sig_len <= 0)
-			return (VERIFY_FINAL_FAILURE);
-		if (R_VerifyFinal(ctx, (u_char *) signature, sig_len, 
-				  key->rk_Public_Key))
-			return (VERIFY_FINAL_FAILURE);
-	}
-	else {
-		if (context == NULL) 
-			return (-1);
-		*context = (void *) ctx;
-	}
-
-	return (0);
-}
-
-
-/*
- * dst_rsaref_to_dns_key
- *     Converts key in RSAREF to DNS distribution format
- *     This function gets in a pointer to the public key and a work area
- *     to write the key into.
- * Parameters
- *     public	 KEY structure
- *     out_str	 buffer to write encoded key into
- *     out_len	 size of out_str
- * Return
- *	N >= 0 length of encoded key
- *	n < 0  error
- */
-
-static int
-dst_rsaref_to_dns_key(const DST_KEY *in_key, u_char *out_str,
-		      const int out_len)
-{
-	int n, loc;
-	R_RSA_PUBLIC_KEY *public;
-	u_char *op = (u_char *) out_str;
-
-	if (in_key == NULL || in_key->dk_KEY_struct == NULL ||
-	    out_len <= 0 || out_str == NULL)
-		return (-1);
-	public = (R_RSA_PUBLIC_KEY *)
-		((RSA_Key *) in_key->dk_KEY_struct)->rk_Public_Key;
-	if (public == NULL)
-		return (-1);
-
-	memset(op, 0, out_len);
-
-	/* find first non zero */
-	for (n = 0; public->exponent[n] == 0x0; n++) ;	
-
-	n = (MAX_RSA_MODULUS_LEN - n);	/* find lenght of exponent */
-	*op++ = (u_int8_t) n;
-
-	if (n > (out_len - (op-out_str)))
-		return (-1);
-	memcpy(op, &public->exponent[MAX_RSA_MODULUS_LEN - n], n);
-	op += n;
-	n++;			/* include the lenght field in this count */
-
-	/* find first non zero */
-	for (loc = 0; public->modulus[loc] == 0x0; loc++) ;
-
-	/*copy exponent */
-	if ((MAX_RSA_MODULUS_LEN - loc) > (out_len - (op-out_str)))
-		return (-1);
-	memcpy(op, &public->modulus[loc], MAX_RSA_MODULUS_LEN - loc);
-	n += (MAX_RSA_MODULUS_LEN - loc);
-	return (n);
-}
-
-
-/*
- * dst_rsaref_from_dns_key
- *     Converts from a DNS KEY RR format to an RSA KEY.
- * Parameters
- *     len    Length in bytes of DNS key
- *     key    DNS key
- *     name   Key name
- *     s_key  DST structure that will point to the RSA key this routine
- *		  will build.
- * Return
- *    -1   The input key has fields that are larger than this package supports
- *     0   The input key, s_key or name was null.
- *     1   Success
- */
-static int
-dst_rsaref_from_dns_key(DST_KEY *s_key, const u_char *key, const int len)
-{
-	int bytes;
-	u_char *key_ptr;
-	RSA_Key *r_key;
-
-	if (key == NULL || s_key == NULL || len < 0)
-		return (0);
-
-	if (s_key->dk_KEY_struct) {	/* do not reuse */
-		dst_rsaref_free_key_structure(s_key->dk_KEY_struct);
-		s_key->dk_KEY_struct = NULL;
-	}
-	if (len == 0)		/* null key no conversion needed */
-		return (1);
-
-	if ((r_key = (RSA_Key *) malloc(sizeof(RSA_Key))) == NULL) {
-		EREPORT(("dst_rsaref_from_dns_key(): Memory allocation error 1\n"));
-		return (0);
-	}
-	memset(r_key, 0, sizeof(RSA_Key));
-	s_key->dk_KEY_struct = (void *) r_key;
-	r_key->rk_signer = strdup(s_key->dk_key_name);
-	r_key->rk_Public_Key = (R_RSA_PUBLIC_KEY *)
-		malloc(sizeof(R_RSA_PUBLIC_KEY));
-	if (r_key->rk_Public_Key == NULL) {
-		EREPORT(("dst_rsaref_from_dns_key(): Memory allocation error 3\n"));
-		return (0);
-	}
-	memset(r_key->rk_Public_Key, 0, sizeof(R_RSA_PUBLIC_KEY));
-	key_ptr = (u_char *) key;
-	bytes = (int) *key_ptr++;	/* length of exponent in bytes */
-	if (bytes == 0) {		/* special case for long exponents */
-		bytes = (int) dst_s_get_int16(key_ptr);
-		key_ptr += sizeof(u_int16_t);
-	}
-	if (bytes > MAX_RSA_MODULUS_LEN) { 
-		dst_rsaref_free_key_structure(r_key);
-		return (-1);
-	}
-	memcpy(&r_key->rk_Public_Key->exponent[MAX_RSA_MODULUS_LEN - bytes],
-	       key_ptr, bytes);
-
-	key_ptr += bytes;	/* beginning of modulus */
-	bytes = len - bytes - 1;	/* length of modulus */
-	if (bytes > MAX_RSA_MODULUS_LEN) { 
-		dst_rsaref_free_key_structure(r_key);
-		return (-1);
-	}
-	memcpy(&r_key->rk_Public_Key->modulus[MAX_RSA_MODULUS_LEN - bytes],
-	       key_ptr, bytes);
-	r_key->rk_Public_Key->bits = bytes * 8;
-	s_key->dk_id = (u_int16_t) dst_s_get_int16((u_char *)
-		   &r_key->rk_Public_Key->modulus[MAX_RSA_MODULUS_LEN - 3]);
-	s_key->dk_key_size = r_key->rk_Public_Key->bits;
-
-	return (1);
-}
-
-
-/*
- *  dst_rsaref_key_to_file_format
- *	Encodes an RSA Key into the portable file format.
- *  Parameters
- *	rkey	  RSA KEY structure
- *	buff	  output buffer
- *	buff_len  size of output buffer
- *  Return
- *	0  Failure - null input rkey
- *     -1  Failure - not enough space in output area
- *	N  Success - Length of data returned in buff
- */
-
-static int
-dst_rsaref_key_to_file_format(const DST_KEY *in_key, u_char *buff,
-			      const int buff_len)
-{
-	u_char *bp;
-	int len, b_len;
-	R_RSA_PRIVATE_KEY *rkey;
-
-	if (in_key == NULL || in_key->dk_KEY_struct == NULL)
-		return (-1);
-	rkey = (R_RSA_PRIVATE_KEY *)
-		((RSA_Key *) in_key->dk_KEY_struct)->rk_Private_Key;
-	if (rkey == NULL)	/* no output */
-		return (0);
-	if (buff == NULL || buff_len <= (int) strlen(key_file_fmt_str))
-		return (-1);	/* no OR not enough space in output area */
-
-	    memset(buff, 0, buff_len);	/* just in case */
-	/* write file header */
-	sprintf(buff, key_file_fmt_str, KEY_FILE_FORMAT, KEY_RSA, "RSA");
-
-	bp = (char *) strchr(buff, '\0');
-	b_len = buff_len - (bp - buff);
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Modulus: ",
-					       rkey->modulus,
-					       MAX_RSA_MODULUS_LEN)) <= 0)
-		return (-1);
-
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "PublicExponent: ",
-					       rkey->publicExponent,
-					       MAX_RSA_MODULUS_LEN)) <= 0)
-		return (-2);
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "PrivateExponent: ",
-					       rkey->exponent,
-					       MAX_RSA_MODULUS_LEN)) <= 0)
-		return (-3);
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Prime1: ",
-					       rkey->prime[0],
-					       MAX_RSA_PRIME_LEN)) < 0)
-		return (-4);
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Prime2: ",
-					       rkey->prime[1],
-					       MAX_RSA_PRIME_LEN)) < 0)
-		return (-5);
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Exponent1: ",
-					       rkey->primeExponent[0],
-					       MAX_RSA_PRIME_LEN)) < 0)
-		return (-6);
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Exponent2: ",
-					       rkey->primeExponent[1],
-					       MAX_RSA_PRIME_LEN)) < 0)
-		return (-7);
-	bp += len;
-	b_len -= len;
-	if ((len = dst_s_conv_bignum_u8_to_b64(bp, b_len, "Coefficient: ",
-					       rkey->coefficient,
-					       MAX_RSA_PRIME_LEN)) < 0)
-		return (-8);
-	bp += len;
-	b_len -= len;
-	return (buff_len - b_len);
-}
-
-
-/*
- * dst_rsaref_key_from_file_format
- *     Converts contents of a private key file into a private RSA key.
- * Parameters
- *     r_key	  structure to put key into
- *     buff	  buffer containing the encoded key
- *     buff_len	  the length of the buffer
- * Return
- *     n >= 0 Foot print of the key converted
- *     n <  0 Error in conversion
- */
-
-static int
-dst_rsaref_key_from_file_format(DST_KEY *d_key, const u_char *buff,
-				const int buff_len)
-{
-	const char *p = (char *) buff;
-	R_RSA_PRIVATE_KEY key;
-	int foot = -1;
-	RSA_Key *r_key;
-
-	if (d_key == NULL || buff == NULL || buff_len < 0)
-		return (-1);
-
-	memset(&key, 0, sizeof(key));
-
-	if (!dst_s_verify_str(&p, "Modulus: "))
-		return (-3);
-
-	if (!dst_s_conv_bignum_b64_to_u8(&p, key.modulus, MAX_RSA_MODULUS_LEN))
-		return (-4);
-
-	key.bits = dst_s_calculate_bits(key.modulus, MAX_RSA_MODULUS_BITS);
-
-	while (*++p && p < (char *) &buff[buff_len]) {
-		if (dst_s_verify_str(&p, "PublicExponent: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p,
-							 key.publicExponent,
-						       MAX_RSA_MODULUS_LEN))
-				return (-5);
-		} else if (dst_s_verify_str(&p, "PrivateExponent: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p, key.exponent,
-						       MAX_RSA_MODULUS_LEN))
-				return (-6);
-		} else if (dst_s_verify_str(&p, "Prime1: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p, key.prime[0],
-							 MAX_RSA_PRIME_LEN))
-				return (-7);
-		} else if (dst_s_verify_str(&p, "Prime2: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p, key.prime[1],
-							 MAX_RSA_PRIME_LEN))
-				return (-8);
-		} else if (dst_s_verify_str(&p, "Exponent1: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p,
-						       key.primeExponent[0],
-							 MAX_RSA_PRIME_LEN))
-				return (-9);
-		} else if (dst_s_verify_str(&p, "Exponent2: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p,
-						       key.primeExponent[1],
-							 MAX_RSA_PRIME_LEN))
-				return (-10);
-		} else if (dst_s_verify_str(&p, "Coefficient: ")) {
-			if (!dst_s_conv_bignum_b64_to_u8(&p, key.coefficient,
-							 MAX_RSA_PRIME_LEN))
-				return (-11);
-		} else {
-			EREPORT(("dst_rsaref_key_from_file_format: Bad keyword %s\n", p));
-			return (-12);
-		}
-	}			/* while p */
-
-	r_key = (RSA_Key *) malloc(sizeof(RSA_Key));
-	if (r_key == NULL) {
-		return (-2);
-	}
-	memset(r_key, 0, sizeof(*r_key));
-
-	r_key->rk_Private_Key =
-		(R_RSA_PRIVATE_KEY *) malloc(sizeof(R_RSA_PRIVATE_KEY));
-	if (r_key->rk_Private_Key == NULL) {
-		EREPORT(("dst_rsaref_key_from_file_format: Memory allocation error\n"));
-		return (-13);
-	}
-	r_key->rk_Public_Key = (R_RSA_PUBLIC_KEY *) r_key->rk_Private_Key;
-	memcpy(r_key->rk_Private_Key, &key, sizeof(R_RSA_PRIVATE_KEY));
-
-	r_key->rk_signer = strdup(d_key->dk_key_name);
-	d_key->dk_KEY_struct = (void *) r_key;
-	d_key->dk_key_size = r_key->rk_Private_Key->bits;
-	d_key->dk_id = (u_int16_t) dst_s_get_int16((u_char *)
-		   &r_key->rk_Public_Key->modulus[MAX_RSA_MODULUS_LEN - 3]);
-	foot = (int) d_key->dk_id;
-	return (foot);
-}
-
-
-
-/*
- *  dst_rsaref_compare_keys
- *	Compare two keys for equality.
- *  Return
- *	0	   The keys are equal
- *	NON-ZERO   The keys are not equal
- */
-
-static int
-dst_rsaref_compare_keys(const DST_KEY *dkey1, const DST_KEY *dkey2)
-{
-	RSA_Key *rkey1 = (RSA_Key *) dkey1->dk_KEY_struct;
-	RSA_Key *rkey2 = (RSA_Key *) dkey2->dk_KEY_struct;
-       
-	if (rkey1 == NULL && rkey2 == NULL)
-		return (0); /* same */
-	else if (rkey1 == NULL)
-		return (1);
-	else if (rkey2 == NULL)
-		return (2);
-	return (memcmp(rkey1->rk_Public_Key, rkey2->rk_Public_Key,
-		       sizeof(R_RSA_PUBLIC_KEY)));
-}
-
-/*
- *  dst_rsaref_generate_keypair
- *	Generates unique keys that are hard to predict.
- *  Parameters
- *	key    generic Key structure
- *	exp    the public exponent
- *  Return
- *	0 Failure
- *	1 Success
- */
-
-static int
-dst_rsaref_generate_keypair(DST_KEY *key, const int exp)
-{
-	R_RSA_PUBLIC_KEY *public;
-	R_RSA_PRIVATE_KEY *private;
-	R_RSA_PROTO_KEY proto;
-	R_RANDOM_STRUCT randomStruct;
-	RSA_Key *rsa;
-	int status;
-
-	if (key == NULL || key->dk_alg != KEY_RSA)
-		return (0);
-	if (key->dk_key_size < MIN_RSA_MODULUS_BITS ||
-	    key->dk_key_size > MAX_RSA_MODULUS_BITS) {
-		EREPORT(("dst_rsaref_generate_keypair: Invalid key size\n"));
-		return (0);	/* these are the limits on key size in RSAREF */
-	}
-	/* allocate space */
-	if ((public = (R_RSA_PUBLIC_KEY *) malloc(sizeof(R_RSA_PUBLIC_KEY)))
-	    == NULL) {
-		EREPORT(("dst_rsaref_generate_keypair: Memory allocation error 1\n"));
-		return (0);
-	}
-	if ((private = (R_RSA_PRIVATE_KEY *) malloc(sizeof(R_RSA_PRIVATE_KEY)))
-	    == NULL) {
-		EREPORT(("dst_rsaref_generate_keypair: Memory allocation error 2\n"));
-		return (0);
-	}
-	if ((rsa = (RSA_Key *) malloc(sizeof(RSA_Key))) == NULL) {
-		EREPORT(("dst_rsaref_generate_keypair: Memory allocation error 3\n"));
-		return (0);
-	}
-	memset(public, 0, sizeof(*public));
-	memset(private, 0, sizeof(*private));
-
-	proto.bits = key->dk_key_size;
-	proto.useFermat4 = exp ? 0x1 : 0x0;	/* 1 for f4=65537, 0 for f0=3 */
-	EREPORT(("\ndst_rsaref_generate_keypair: Generating KEY for %s Please wait\n",
-		 key->dk_key_name));
-
-	/* set up random seed */
-	dst_rsaref_init_random_struct(&randomStruct);
-
-	/* generate keys */
-	status = R_GeneratePEMKeys(public, private, &proto, &randomStruct);
-	if (status) {
-		EREPORT(("dst_rsaref_generate_keypair: No Key Pair generated %d\n",
-			 status));
-		SAFE_FREE(public);
-		SAFE_FREE(private);
-		SAFE_FREE(rsa);
-		return (0);
-	}
-	memset(rsa, 0, sizeof(*rsa));
-	rsa->rk_signer = key->dk_key_name;
-	rsa->rk_Private_Key = private;
-	rsa->rk_Public_Key = public;
-	key->dk_KEY_struct = (void *) rsa;
-
-	key->dk_id = (u_int16_t) dst_s_get_int16((u_char *)
-		     &rsa->rk_Public_Key->modulus[MAX_RSA_MODULUS_LEN - 3]);
-	return (1);
-}
-
-
-/*
- * dst_rsaref_free_key_structure
- *     Frees all dynamicly allocated structures in r_key
- */
-
-static void *
-dst_rsaref_free_key_structure(void *v_key)
-{
-	RSA_Key *r_key = (RSA_Key *) v_key;
-
-	if (r_key != NULL) {
-		if ((void *) r_key->rk_Private_Key == (void *) r_key->rk_Public_Key)
-			r_key->rk_Public_Key = NULL;
-		SAFE_FREE(r_key->rk_Private_Key);
-		SAFE_FREE(r_key->rk_Public_Key);
-		SAFE_FREE(r_key->rk_signer);
-		SAFE_FREE(r_key);
-	}
-	return (NULL);
-}
-
-
-/*
- * dst_rsaref_init_random_struct
- *     A random seed value is used in key generation.
- *     This routine gets a bunch of system values to randomize the
- *     randomstruct.  A number of system calls are used to get somewhat
- *     unpredicable values, then a special function dst_s_prandom() is called
- *     that will do some magic depending on the system used.
- *     If this function is executed on reasonably busy machine then the values
- *     that prandom uses are hard to
- *	 1. Predict
- *	 2. Regenerate
- *	 3. Hard to spy on as nothing is stored to disk and data is consumed
- *	    as fast as it is generated.
- */
-
-static void
-dst_rsaref_init_random_struct(R_RANDOM_STRUCT * randomstruct)
-{
-	unsigned bytesNeeded;
-	struct timeval tv;
-	u_char *array;
-	int n;
-
-	R_RandomInit(randomstruct);
-
-	/* The runtime of the script is unpredictable within some range
-	 * thus I'm getting the time of day again as this is an hard to guess
-	 * value and the number of characters of the output from the script is
-	 * hard to guess.
-	 * This must be the FIRST CALL
-	 */
-	gettimeofday(&tv, 0);
-	R_RandomUpdate(randomstruct, (u_char *) &tv,
-		       sizeof(struct timeval));
-
-	/*
-	 * first find out how many bytes I need
-	 */
-	R_GetRandomBytesNeeded(&bytesNeeded, randomstruct);
-
-	/*
-	 * get a storage area for it  addjust the area for the possible
-	 * side effects of digest functions writing out in blocks
-	 */
-	array = (u_char *) malloc(bytesNeeded);
-
-	/* extract the random data from /dev/random if present, generate
-	 *   it if not present 
-	 * first fill the buffer with semi random data 
-	 *  then fill as much as possible with good random data 
-	 */
-	n = dst_random(DST_RAND_SEMI, bytesNeeded, array);
-	n += dst_random(DST_RAND_KEY, bytesNeeded, array);
-	if (n <= bytesNeeded) {
-		SAFE_FREE(array);
-		return(0);
-	}
-
-	/* supply the random data (even if it is larger than requested) */
-	R_RandomUpdate(randomstruct, array, bytesNeeded);
-
-	SAFE_FREE(array);
-
-	R_GetRandomBytesNeeded(&bytesNeeded, randomstruct);
-	if (bytesNeeded) {
-		EREPORT(("InitRandomStruct() didn't initialize enough randomness\n"));
-		exit(33);
-	}
-}
-
-
-#else 
-int /* rsaref is not available */
-dst_rsaref_init()
-{
-	return (0);
-}
-#endif /* RSAREF */
diff --git a/contrib/bind/lib/dst/support.c b/contrib/bind/lib/dst/support.c
deleted file mode 100644
index d50aa075ac8b0..0000000000000
--- a/contrib/bind/lib/dst/support.c
+++ /dev/null
@@ -1,461 +0,0 @@
-static const char rcsid[] = "$Header: /proj/cvs/isc/bind/src/lib/dst/support.c,v 1.8 1999/10/13 16:39:24 vixie Exp $";
-
-
-/*
- * Portions Copyright (c) 1995-1998 by Trusted Information Systems, Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND TRUSTED INFORMATION SYSTEMS
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- */
-
-#include "port_before.h"
-
-#include <stdio.h>
-#include <unistd.h>
-#include <memory.h>
-#include <string.h>
-#include <errno.h>
-#include <sys/stat.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include "dst_internal.h"
-
-#include "port_after.h"
-/*
- * dst_s_conv_bignum_u8_to_b64
- *	This function converts binary data stored as a u_char[] to a
- *	base-64 string.  Leading zeroes are discarded.  If a header is
- *	supplied, it is prefixed to the input prior to encoding.  The
- *	output is \n\0 terminated (the \0 is not included in output length).
- * Parameters
- *     out_buf   binary data to convert
- *     header    character string to prefix to the output (label)
- *     bin_data  binary data
- *     bin_len   size of binary data
- * Return
- *     -1     not enough space in output work area
- *	0     no output
- *     >0     number of bytes written to output work area
- */
-
-int
-dst_s_conv_bignum_u8_to_b64(char *out_buf, const int out_len,
-			    const char *header, const u_char *bin_data,
-			    const int bin_len)
-{
-	const u_char *bp = bin_data;
-	char *op = out_buf;
-	int lenh = 0, len64 = 0;
-	int local_in_len = bin_len;
-	int local_out_len = out_len;
-
-	if (bin_data == NULL || bin_len <= 0)	/* no data no */
-		return (0);
-
-	if (out_buf == NULL || out_len <= 0)	/* no output_work area */
-		return (-1);
-
-	/* suppress leading \0  */
-	for (; (*bp == 0x0) && (local_in_len > 0); local_in_len--)
-		bp++;
-
-	if (header) {		/* add header to output string */
-		lenh = strlen(header);
-		if (lenh < out_len)
-			memcpy(op, header, lenh);
-		else
-			return (-1);
-		local_out_len -= lenh;
-		op += lenh;
-	}
-	len64 = b64_ntop(bp, local_in_len, op, local_out_len - 2);
-	if (len64 < 0)
-		return (-1);
-	op += len64++;
-	*(op++) = '\n';		/* put CR in the output */
-	*op = '\0';		/* make sure output is 0 terminated */
-	return (lenh + len64);
-}
-
-
-/*
- * dst_s_verify_str()
- *     Validate that the input string(*str) is at the head of the input
- *     buffer(**buf).  If so, move the buffer head pointer (*buf) to
- *     the first byte of data following the string(*str).
- * Parameters
- *     buf     Input buffer.
- *     str     Input string.
- * Return
- *	0       *str is not the head of **buff
- *	1       *str is the head of **buff, *buf is is advanced to
- *	the tail of **buf.
- */
-
-int
-dst_s_verify_str(const char **buf, const char *str)
-{
-	int b, s;
-	if (*buf == NULL)	/* error checks */
-		return (0);
-	if (str == NULL || *str == '\0')
-		return (1);
-
-	b = strlen(*buf);	/* get length of strings */
-	s = strlen(str);
-	if (s > b || strncmp(*buf, str, s))	/* check if same */
-		return (0);	/* not a match */
-	(*buf) += s;		/* advance pointer */
-	return (1);
-}
-
-
-/*
- * dst_s_conv_bignum_b64_to_u8
- *     Read a line of base-64 encoded string from the input buffer,
- *     convert it to binary, and store it in an output area.  The
- *     input buffer is read until reaching a newline marker or the
- *     end of the buffer.  The binary data is stored in the last X
- *     number of bytes of the output area where X is the size of the
- *     binary output.  If the operation is successful, the input buffer
- *     pointer is advanced.  This procedure does not do network to host
- *     byte order conversion.
- * Parameters
- *     buf     Pointer to encoded input string. Pointer is updated if
- *	   function is successfull.
- *     loc     Output area.
- *     loclen  Size in bytes of output area.
- * Return
- *	>0      Return = number of bytes of binary data stored in loc.
- *	 0      Failure.
- */
-
-int
-dst_s_conv_bignum_b64_to_u8(const char **buf, u_char *loc, const int loclen)
-{
-	int blen;
-	char *bp;
-	u_char bstr[RAW_KEY_SIZE];
-
-	if (buf == NULL || *buf == NULL) {	/* error checks */
-		EREPORT(("dst_s_conv_bignum_b64_to_u8: null input buffer.\n"));
-		return (0);
-	}
-	bp = strchr(*buf, '\n');	/* find length of input line */
-	if (bp != NULL)
-		*bp = (u_char) NULL;
-
-	blen = b64_pton(*buf, bstr, sizeof(bstr));
-	if (blen <= 0) {
-		EREPORT(("dst_s_conv_bignum_b64_to_u8: decoded value is null.\n"));
-		return (0);
-	}
-	else if (loclen < blen) {
-		EREPORT(("dst_s_conv_bignum_b64_to_u8: decoded value is longer than output buffer.\n"));
-		return (0);
-	}
-	if (bp)
-		*buf = bp;	/* advancing buffer past \n */
-	memset(loc, 0, loclen - blen);	/* clearing unused output area */
-	memcpy(loc + loclen - blen, bstr, blen);	/* write last blen bytes  */
-	return (blen);
-}
-
-
-/*
- * dst_s_calculate_bits
- *     Given a binary number represented in a u_char[], determine
- *     the number of significant bits used.
- * Parameters
- *     str       An input character string containing a binary number.
- *     max_bits The maximum possible significant bits.
- * Return
- *     N       The number of significant bits in str.
- */
-
-int
-dst_s_calculate_bits(const u_char *str, const int max_bits)
-{
-	const u_char *p = str;
-	u_char i, j = 0x80;
-	int bits;
-	for (bits = max_bits; *p == 0x00 && bits > 0; p++)
-		bits -= 8;
-	for (i = *p; (i & j) != j; j >>= 1)
-		bits--;
-	return (bits);
-}
-
-
-/*
- * calculates a checksum used in kmt for a id.
- * takes an array of bytes and a length.
- * returns a 16  bit checksum.
- */
-u_int16_t
-dst_s_id_calc(const u_char *key, const int keysize)
-{
-	u_int32_t ac;
-	const u_char *kp = key;
-	int size = keysize;
-
-	if (!key || (keysize <= 0))
-		return (-1);
- 
-	for (ac = 0; size > 1; size -= 2, kp += 2)
-		ac += ((*kp) << 8) + *(kp + 1);
-
-	if (size > 0)
-		ac += ((*kp) << 8);
-	ac += (ac >> 16) & 0xffff;
-
-	return (ac & 0xffff);
-}
-
-/* 
- * dst_s_dns_key_id() Function to calculated DNSSEC footprint from KEY reocrd
- *   rdata (all of  record)
- * Input:
- *	dns_key_rdata: the raw data in wire format 
- *      rdata_len: the size of the input data 
- * Output:
- *      the key footprint/id calcuated from the key data 
- */ 
-u_int16_t
-dst_s_dns_key_id(const u_char *dns_key_rdata, const int rdata_len)
-{
-	int key_data = 4;
-
-	if (!dns_key_rdata || (rdata_len < key_data))
-		return 0;
-
-	/* check the extended parameters bit in the DNS Key RR flags */
-	if (dst_s_get_int16(dns_key_rdata) & DST_EXTEND_FLAG)
-		key_data += 2;
-
-	/* compute id */
-	if (dns_key_rdata[3] == KEY_RSA)	/* Algorithm RSA */
-		return dst_s_get_int16((u_char *)
-				       &dns_key_rdata[rdata_len - 3]);
-	else
-		/* compute a checksum on the key part of the key rr */
-		return dst_s_id_calc(&dns_key_rdata[key_data],
-				     (rdata_len - key_data));
-}
-
-/*
- * dst_s_get_int16
- *     This routine extracts a 16 bit integer from a two byte character
- *     string.  The character string is assumed to be in network byte
- *     order and may be unaligned.  The number returned is in host order.
- * Parameter
- *     buf     A two byte character string.
- * Return
- *     The converted integer value.
- */
-
-u_int16_t
-dst_s_get_int16(const u_char *buf)
-{
-	register u_int16_t a = 0;
-	a = ((u_int16_t)(buf[0] << 8)) | ((u_int16_t)(buf[1]));
-	return (a);
-}
-
-
-/*
- * dst_s_get_int32
- *     This routine extracts a 32 bit integer from a four byte character
- *     string.  The character string is assumed to be in network byte
- *     order and may be unaligned.  The number returned is in host order.
- * Parameter
- *     buf     A four byte character string.
- * Return
- *     The converted integer value.
- */
-
-u_int32_t
-dst_s_get_int32(const u_char *buf)
-{
-	register u_int32_t a = 0;
-	a = ((u_int32_t)(buf[0] << 24)) | ((u_int32_t)(buf[1] << 16)) |
-		((u_int32_t)(buf[2] << 8)) | ((u_int32_t)(buf[3]));
-	return (a);
-}
-
-
-/*
- * dst_s_put_int16
- *     Take a 16 bit integer and store the value in a two byte
- *     character string.  The integer is assumed to be in network
- *     order and the string is returned in host order.
- *
- * Parameters
- *     buf     Storage for a two byte character string.
- *     val     16 bit integer.
- */
-
-void
-dst_s_put_int16(u_int8_t *buf, const u_int16_t val)
-{
-	buf[0] = (u_int8_t)(val >> 8);
-	buf[1] = (u_int8_t)(val);
-}
-
-
-/*
- * dst_s_put_int32
- *     Take a 32 bit integer and store the value in a four byte
- *     character string.  The integer is assumed to be in network
- *     order and the string is returned in host order.
- *
- * Parameters
- *     buf     Storage for a four byte character string.
- *     val     32 bit integer.
- */
-
-void
-dst_s_put_int32(u_int8_t *buf, const u_int32_t val)
-{
-	buf[0] = (u_int8_t)(val >> 24);
-	buf[1] = (u_int8_t)(val >> 16);
-	buf[2] = (u_int8_t)(val >> 8);
-	buf[3] = (u_int8_t)(val);
-}
-
-
-/*
- *  dst_s_filename_length
- *
- *	This function returns the number of bytes needed to hold the
- *	filename for a key file.  '/', '\' and ':' are not allowed.
- *	form:  K<keyname>+<alg>+<id>.<suffix>
- *
- *	Returns 0 if the filename would contain either '\', '/' or ':'
- */
-size_t
-dst_s_filename_length(const char *name, const char *suffix)
-{
-	if (name == NULL)
-		return (0);
-	if (strrchr(name, '\\'))
-		return (0);
-	if (strrchr(name, '/'))
-		return (0);
-	if (strrchr(name, ':'))
-		return (0);
-	if (suffix == NULL)
-		return (0);
-	if (strrchr(suffix, '\\'))
-		return (0);
-	if (strrchr(suffix, '/'))
-		return (0);
-	if (strrchr(suffix, ':'))
-		return (0);
-	return (1 + strlen(name) + 6 + strlen(suffix));
-}
-
-
-/*
- *  dst_s_build_filename ()
- *	Builds a key filename from the key name, it's id, and a
- *	suffix.  '\', '/' and ':' are not allowed. fA filename is of the
- *	form:  K<keyname><id>.<suffix>
- *	form: K<keyname>+<alg>+<id>.<suffix>
- *
- *	Returns -1 if the conversion fails:
- *	  if the filename would be too long for space allotted
- *	  if the filename would contain a '\', '/' or ':'
- *	Returns 0 on success
- */
-
-int
-dst_s_build_filename(char *filename, const char *name, u_int16_t id,
-		     int alg, const char *suffix, size_t filename_length)
-{
-	u_int32_t my_id;
-	if (filename == NULL)
-		return (-1);
-	memset(filename, 0, filename_length);
-	if (name == NULL)
-		return (-1);
-	if (suffix == NULL)
-		return (-1);
-	if (filename_length < 1 + strlen(name) + 4 + 6 + 1 + strlen(suffix))
-		return (-1);
-	my_id = id;
-	sprintf(filename, "K%s+%03d+%05d.%s", name, alg, my_id,
-		(char *) suffix);
-	if (strrchr(filename, '/'))
-		return (-1);
-	if (strrchr(filename, '\\'))
-		return (-1);
-	if (strrchr(filename, ':'))
-		return (-1);
-	return (0);
-}
-
-/*
- *  dst_s_fopen ()
- *     Open a file in the dst_path directory.  If perm is specified, the
- *     file is checked for existence first, and not opened if it exists.
- *  Parameters
- *     filename  File to open
- *     mode       Mode to open the file (passed directly to fopen)
- *     perm       File permission, if creating a new file.
- *  Returns
- *     NULL       Failure
- *     NON-NULL  (FILE *) of opened file.
- */
-FILE *
-dst_s_fopen(const char *filename, const char *mode, int perm)
-{
-	FILE *fp;
-	char pathname[PATH_MAX];
-	int plen = sizeof(pathname);
-
-	if (*dst_path != '\0') {
-		strcpy(pathname, dst_path);
-		plen -= strlen(pathname);
-	}
-	else 
-		pathname[0] = '\0';
-
-	if (plen > strlen(filename))
-		strncpy(&pathname[PATH_MAX - plen], filename, plen-1);
-	else 
-		return (NULL);
-	
-	fp = fopen(pathname, mode);
-	if (perm)
-		chmod(pathname, perm);
-	return (fp);
-}
-
-void
-dst_s_dump(const int mode, const u_char *data, const int size, 
-	    const char *msg)
-{
-	if (size > 0) {
-#ifdef LONG_TEST
-		static u_char scratch[1000];
-		int n ;
-		n = b64_ntop(data, scratch, size, sizeof(scratch));
-		printf("%s: %x %d %s\n", msg, mode, n, scratch);
-#else
-		printf("%s,%x %d\n", msg, mode, size);
-#endif
-	}
-}
diff --git a/contrib/bind/lib/inet/Makefile b/contrib/bind/lib/inet/Makefile
deleted file mode 100644
index b00741206a8ee..0000000000000
--- a/contrib/bind/lib/inet/Makefile
+++ /dev/null
@@ -1,94 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 8.19 2000/02/29 03:38:22 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBBINDR = ../${TOP}/lib/libbind_r.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-THREADED= threaded
-
-SRCS=	nsap_addr.c inet_addr.c inet_ntop.c inet_pton.c \
-	inet_ntoa.c inet_neta.c inet_net_ntop.c inet_net_pton.c \
-	inet_cidr_ntop.c inet_cidr_pton.c \
-	inet_lnaof.c inet_makeaddr.c inet_netof.c inet_network.c
-
-OBJS=	nsap_addr.${O} inet_addr.${O} inet_ntop.${O} inet_pton.${O} \
-	inet_ntoa.${O} inet_neta.${O} inet_net_ntop.${O} inet_net_pton.${O} \
-	inet_cidr_ntop.${O} inet_cidr_pton.${O} \
-	inet_lnaof.${O} inet_makeaddr.${O} inet_netof.${O} inet_network.${O}
-
-all: ${LIBBIND}
-
-${LIBBIND}: ${OBJS}
-	( cd ${THREADED} ; \
-	${AR} ${LIBBINDR} ${ARPREF} ${OBJS} ${ARSUFF} ; \
-	${RANLIB} ${LIBBINDR} )
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	if test ! -d ${THREADED} ; then mkdir ${THREADED} ; else true ; fi
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} ${REENTRANT} -c $*.c \
-	 -o ${THREADED}/$*.${O}
-	-${LDS} ${LD} ${LD_LIBFLAGS} ${THREADED}/$*.${O} \
-	 -o ${THREADED}/$*.out && \
-	 ${LDS} mv ${THREADED}/$*.out ${THREADED}/$*.${O}
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} -o $*.out && \
-	 ${LDS} mv $*.out $*.${O}
-
-distclean: clean
-
-clean: FRC
-	rm -f .depend a.out core ${LIB} tags
-	rm -f *.${O} *.BAK *.CKP *~
-	rm -f ${THREADED}/*.${O}
-	-if test -d ${THREADED} ; then rmdir ${THREADED}; else true; fi
-
-
-depend: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-install:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/lib/inet/hostnamelen.c b/contrib/bind/lib/inet/hostnamelen.c
deleted file mode 100644
index 93880627fda20..0000000000000
--- a/contrib/bind/lib/inet/hostnamelen.c
+++ /dev/null
@@ -1,94 +0,0 @@
-/*
- * ++Copyright++ 1995
- * -
- * Copyright (c) 1995
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char rcsid[] = "$Id: hostnamelen.c,v 8.2 1995/08/22 05:01:47 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#if defined(BSD) && (BSD >= 199103)
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-#if defined(USE_OPTIONS_H)
-# include <../conf/options.h>
-#endif
-
-#ifndef ultrix
-int __local_hostname_length_unneeded;
-#else
-int
-local_hostname_length(hostname)
-	const char *hostname;
-{
-	int len_host, len_domain;
-
-	if (!*_res.defdname)
-		res_init();
-	len_host = strlen(hostname);
-	len_domain = strlen(_res.defdname);
-	if (len_host > len_domain &&
-	    !strcasecmp(hostname + len_host - len_domain, _res.defdname) &&
-	    hostname[len_host - len_domain - 1] == '.')
-		return (len_host - len_domain - 1);
-	return (0);
-}
-#endif
diff --git a/contrib/bind/lib/inet/inet_addr.c b/contrib/bind/lib/inet/inet_addr.c
deleted file mode 100644
index 3b54aa84797ed..0000000000000
--- a/contrib/bind/lib/inet/inet_addr.c
+++ /dev/null
@@ -1,205 +0,0 @@
-/*
- * Copyright (c) 1983, 1990, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)inet_addr.c	8.1 (Berkeley) 6/17/93";
-static const char rcsid[] = "$Id: inet_addr.c,v 8.11 1999/10/13 16:39:25 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-
-#include "port_after.h"
-
-/*
- * Ascii internet address interpretation routine.
- * The value returned is in network order.
- */
-u_long
-inet_addr(const char *cp) {
-	struct in_addr val;
-
-	if (inet_aton(cp, &val))
-		return (val.s_addr);
-	return (INADDR_NONE);
-}
-
-/* 
- * Check whether "cp" is a valid ascii representation
- * of an Internet address and convert to a binary address.
- * Returns 1 if the address is valid, 0 if not.
- * This replaces inet_addr, the return value from which
- * cannot distinguish between failure and a local broadcast address.
- */
-int
-inet_aton(const char *cp, struct in_addr *addr) {
-	u_long val;
-	int base, n;
-	char c;
-	u_int8_t parts[4];
-	u_int8_t *pp = parts;
-	int digit;
-
-	c = *cp;
-	for (;;) {
-		/*
-		 * Collect number up to ``.''.
-		 * Values are specified as for C:
-		 * 0x=hex, 0=octal, isdigit=decimal.
-		 */
-		if (!isdigit(c))
-			return (0);
-		val = 0; base = 10; digit = 0;
-		if (c == '0') {
-			c = *++cp;
-			if (c == 'x' || c == 'X')
-				base = 16, c = *++cp;
-			else {
-				base = 8;
-				digit = 1 ;
-			}
-		}
-		for (;;) {
-			if (isascii(c) && isdigit(c)) {
-				if (base == 8 && (c == '8' || c == '9'))
-					return (0);
-				val = (val * base) + (c - '0');
-				c = *++cp;
-				digit = 1;
-			} else if (base == 16 && isascii(c) && isxdigit(c)) {
-				val = (val << 4) |
-					(c + 10 - (islower(c) ? 'a' : 'A'));
-				c = *++cp;
-				digit = 1;
-			} else
-				break;
-		}
-		if (c == '.') {
-			/*
-			 * Internet format:
-			 *	a.b.c.d
-			 *	a.b.c	(with c treated as 16 bits)
-			 *	a.b	(with b treated as 24 bits)
-			 */
-			if (pp >= parts + 3 || val > 0xff)
-				return (0);
-			*pp++ = val;
-			c = *++cp;
-		} else
-			break;
-	}
-	/*
-	 * Check for trailing characters.
-	 */
-	if (c != '\0' && (!isascii(c) || !isspace(c)))
-		return (0);
-	/*
-	 * Did we get a valid digit?
-	 */
-	if (!digit)
-		return (0);
-	/*
-	 * Concoct the address according to
-	 * the number of parts specified.
-	 */
-	n = pp - parts + 1;
-	switch (n) {
-	case 1:				/* a -- 32 bits */
-		break;
-
-	case 2:				/* a.b -- 8.24 bits */
-		if (val > 0xffffff)
-			return (0);
-		val |= parts[0] << 24;
-		break;
-
-	case 3:				/* a.b.c -- 8.8.16 bits */
-		if (val > 0xffff)
-			return (0);
-		val |= (parts[0] << 24) | (parts[1] << 16);
-		break;
-
-	case 4:				/* a.b.c.d -- 8.8.8.8 bits */
-		if (val > 0xff)
-			return (0);
-		val |= (parts[0] << 24) | (parts[1] << 16) | (parts[2] << 8);
-		break;
-	}
-	if (addr != NULL)
-		addr->s_addr = htonl(val);
-	return (1);
-}
diff --git a/contrib/bind/lib/inet/inet_cidr_ntop.c b/contrib/bind/lib/inet/inet_cidr_ntop.c
deleted file mode 100644
index 08352abf2a170..0000000000000
--- a/contrib/bind/lib/inet/inet_cidr_ntop.c
+++ /dev/null
@@ -1,129 +0,0 @@
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_cidr_ntop.c,v 8.4 1999/10/07 20:44:02 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-static char *	inet_cidr_ntop_ipv4 __P((const u_char *src, int bits,
-					 char *dst, size_t size));
-
-/*
- * char *
- * inet_cidr_ntop(af, src, bits, dst, size)
- *	convert network address from network to presentation format.
- *	"src"'s size is determined from its "af".
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * note:
- *	192.5.5.1/28 has a nonzero host part, which means it isn't a network
- *	as called for by inet_net_ntop() but it can be a host address with
- *	an included netmask.
- * author:
- *	Paul Vixie (ISC), October 1998
- */
-char *
-inet_cidr_ntop(int af, const void *src, int bits, char *dst, size_t size) {
-	switch (af) {
-	case AF_INET:
-		return (inet_cidr_ntop_ipv4(src, bits, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-}
-
-/*
- * static char *
- * inet_cidr_ntop_ipv4(src, bits, dst, size)
- *	convert IPv4 network address from network to presentation format.
- *	"src"'s size is determined from its "af".
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * note:
- *	network byte order assumed.  this means 192.5.5.240/28 has
- *	0b11110000 in its fourth octet.
- * author:
- *	Paul Vixie (ISC), October 1998
- */
-static char *
-inet_cidr_ntop_ipv4(const u_char *src, int bits, char *dst, size_t size) {
-	char *odst = dst;
-	char *t;
-	size_t len = 4;
-	int b, tb;
-
-	if ((bits < -1) || (bits > 32)) {
-		errno = EINVAL;
-		return (NULL);
-	}
-
-	/* Find number of significant bytes in address. */
-	if (bits == -1)
-		len = 3;
-	else
-		for (len = 0,b = 1 ; b < 4; b++)
-			if (*(src + b))
-				len = b;
-
-	/* Format whole octets plus nonzero trailing octets. */
-	tb = (bits <= 0) ? 1 : (bits - 1);
-	for (b = 0; b <= (tb / 8) || (b <= len); b++) {
-		if (size < sizeof "255.")
-			goto emsgsize;
-		t = dst;
-		dst += SPRINTF((dst, "%u", *src++));
-		if (b + 1 <= (tb / 8) || (b + 1 <= len)) {
-			*dst++ = '.';
-			*dst = '\0';
-		}
-		size -= (size_t)(dst - t);
-	}
-
-	if (bits != -1) {
-		/* Format CIDR /width. */
-		if (size < sizeof "/32")
-			goto emsgsize;
-		dst += SPRINTF((dst, "/%u", bits));
-	}
-
-	return (odst);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (NULL);
-}
diff --git a/contrib/bind/lib/inet/inet_cidr_pton.c b/contrib/bind/lib/inet/inet_cidr_pton.c
deleted file mode 100644
index 4fae2c68fed0e..0000000000000
--- a/contrib/bind/lib/inet/inet_cidr_pton.c
+++ /dev/null
@@ -1,153 +0,0 @@
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_cidr_pton.c,v 8.3 1999/01/08 19:23:41 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <isc/assertions.h>
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-static int	inet_cidr_pton_ipv4 __P((const char *src, u_char *dst,
-					 int *bits));
-
-/*
- * int
- * inet_cidr_pton(af, src, dst, *bits)
- *	convert network address from presentation to network format.
- *	accepts inet_pton()'s input for this "af" plus trailing "/CIDR".
- *	"dst" is assumed large enough for its "af".  "bits" is set to the
- *	/CIDR prefix length, which can have defaults (like /32 for IPv4).
- * return:
- *	-1 if an error occurred (inspect errno; ENOENT means bad format).
- *	0 if successful conversion occurred.
- * note:
- *	192.5.5.1/28 has a nonzero host part, which means it isn't a network
- *	as called for by inet_net_pton() but it can be a host address with
- *	an included netmask.
- * author:
- *	Paul Vixie (ISC), October 1998
- */
-int
-inet_cidr_pton(int af, const char *src, void *dst, int *bits) {
-	switch (af) {
-	case AF_INET:
-		return (inet_cidr_pton_ipv4(src, dst, bits));
-	default:
-		errno = EAFNOSUPPORT;
-		return (-1);
-	}
-}
-
-static int
-inet_cidr_pton_ipv4(const char *src, u_char *dst, int *pbits) {
-	static const char digits[] = "0123456789";
-	const u_char *odst = dst;
-	int n, ch, tmp, bits;
-	size_t size = 4;
-
-	/* Get the mantissa. */
-	while (ch = *src++, (isascii(ch) && isdigit(ch))) {
-		tmp = 0;
-		do {
-			n = strchr(digits, ch) - digits;
-			INSIST(n >= 0 && n <= 9);
-			tmp *= 10;
-			tmp += n;
-			if (tmp > 255)
-				goto enoent;
-		} while ((ch = *src++) != '\0' && isascii(ch) && isdigit(ch));
-		if (size-- == 0)
-			goto emsgsize;
-		*dst++ = (u_char) tmp;
-		if (ch == '\0' || ch == '/')
-			break;
-		if (ch != '.')
-			goto enoent;
-	}
-
-	/* Get the prefix length if any. */
-	bits = -1;
-	if (ch == '/' && isascii(src[0]) && isdigit(src[0]) && dst > odst) {
-		/* CIDR width specifier.  Nothing can follow it. */
-		ch = *src++;	/* Skip over the /. */
-		bits = 0;
-		do {
-			n = strchr(digits, ch) - digits;
-			INSIST(n >= 0 && n <= 9);
-			bits *= 10;
-			bits += n;
-		} while ((ch = *src++) != '\0' && isascii(ch) && isdigit(ch));
-		if (ch != '\0')
-			goto enoent;
-		if (bits > 32)
-			goto emsgsize;
-	}
-
-	/* Firey death and destruction unless we prefetched EOS. */
-	if (ch != '\0')
-		goto enoent;
-
-	/* Prefix length can default to /32 only if all four octets spec'd. */
-	if (bits == -1)
-		if (dst - odst == 4)
-			bits = 32;
-		else
-			goto enoent;
-
-	/* If nothing was written to the destination, we found no address. */
-	if (dst == odst)
-		goto enoent;
-
-	/* If prefix length overspecifies mantissa, life is bad. */
-	if ((bits / 8) > (dst - odst))
-		goto enoent;
-
-	/* Extend address to four octets. */
-	while (size-- > 0)
-		*dst++ = 0;
-
-	*pbits = bits;
-	return (0);
-
- enoent:
-	errno = ENOENT;
-	return (-1);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (-1);
-}
diff --git a/contrib/bind/lib/inet/inet_lnaof.c b/contrib/bind/lib/inet/inet_lnaof.c
deleted file mode 100644
index 97b80cffdb5b3..0000000000000
--- a/contrib/bind/lib/inet/inet_lnaof.c
+++ /dev/null
@@ -1,63 +0,0 @@
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)inet_lnaof.c	8.1 (Berkeley) 6/4/93";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include "port_after.h"
-
-/*
- * Return the local network address portion of an
- * internet address; handles class a/b/c network
- * number formats.
- */
-u_long
-inet_lnaof(in)
-	struct in_addr in;
-{
-	register u_long i = ntohl(in.s_addr);
-
-	if (IN_CLASSA(i))
-		return ((i)&IN_CLASSA_HOST);
-	else if (IN_CLASSB(i))
-		return ((i)&IN_CLASSB_HOST);
-	else
-		return ((i)&IN_CLASSC_HOST);
-}
diff --git a/contrib/bind/lib/inet/inet_makeaddr.c b/contrib/bind/lib/inet/inet_makeaddr.c
deleted file mode 100644
index 49ea023df901e..0000000000000
--- a/contrib/bind/lib/inet/inet_makeaddr.c
+++ /dev/null
@@ -1,66 +0,0 @@
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)inet_makeaddr.c	8.1 (Berkeley) 6/4/93";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include "port_after.h"
-
-/*
- * Formulate an Internet address from network + host.  Used in
- * building addresses stored in the ifnet structure.
- */
-struct in_addr
-inet_makeaddr(net, host)
-	u_long net, host;
-{
-	u_long addr;
-
-	if (net < 128)
-		addr = (net << IN_CLASSA_NSHIFT) | (host & IN_CLASSA_HOST);
-	else if (net < 65536)
-		addr = (net << IN_CLASSB_NSHIFT) | (host & IN_CLASSB_HOST);
-	else if (net < 16777216L)
-		addr = (net << IN_CLASSC_NSHIFT) | (host & IN_CLASSC_HOST);
-	else
-		addr = net | host;
-	addr = htonl(addr);
-	return (*(struct in_addr *)&addr);
-}
diff --git a/contrib/bind/lib/inet/inet_net_ntop.c b/contrib/bind/lib/inet/inet_net_ntop.c
deleted file mode 100644
index 4e2f91fcd1b58..0000000000000
--- a/contrib/bind/lib/inet/inet_net_ntop.c
+++ /dev/null
@@ -1,144 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_net_ntop.c,v 1.6 1999/01/08 19:23:42 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-static char *	inet_net_ntop_ipv4 __P((const u_char *src, int bits,
-					char *dst, size_t size));
-
-/*
- * char *
- * inet_net_ntop(af, src, bits, dst, size)
- *	convert network number from network to presentation format.
- *	generates CIDR style result always.
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * author:
- *	Paul Vixie (ISC), July 1996
- */
-char *
-inet_net_ntop(af, src, bits, dst, size)
-	int af;
-	const void *src;
-	int bits;
-	char *dst;
-	size_t size;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_net_ntop_ipv4(src, bits, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-}
-
-/*
- * static char *
- * inet_net_ntop_ipv4(src, bits, dst, size)
- *	convert IPv4 network number from network to presentation format.
- *	generates CIDR style result always.
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * note:
- *	network byte order assumed.  this means 192.5.5.240/28 has
- *	0b11110000 in its fourth octet.
- * author:
- *	Paul Vixie (ISC), July 1996
- */
-static char *
-inet_net_ntop_ipv4(src, bits, dst, size)
-	const u_char *src;
-	int bits;
-	char *dst;
-	size_t size;
-{
-	char *odst = dst;
-	char *t;
-	u_int m;
-	int b;
-
-	if (bits < 0 || bits > 32) {
-		errno = EINVAL;
-		return (NULL);
-	}
-	if (bits == 0) {
-		if (size < sizeof "0")
-			goto emsgsize;
-		*dst++ = '0';
-		size--;
-		*dst = '\0';
-	}
-
-	/* Format whole octets. */
-	for (b = bits / 8; b > 0; b--) {
-		if (size < sizeof "255.")
-			goto emsgsize;
-		t = dst;
-		dst += SPRINTF((dst, "%u", *src++));
-		if (b > 1) {
-			*dst++ = '.';
-			*dst = '\0';
-		}
-		size -= (size_t)(dst - t);
-	}
-
-	/* Format partial octet. */
-	b = bits % 8;
-	if (b > 0) {
-		if (size < sizeof ".255")
-			goto emsgsize;
-		t = dst;
-		if (dst != odst)
-			*dst++ = '.';
-		m = ((1 << b) - 1) << (8 - b);
-		dst += SPRINTF((dst, "%u", *src & m));
-		size -= (size_t)(dst - t);
-	}
-
-	/* Format CIDR /width. */
-	if (size < sizeof "/32")
-		goto emsgsize;
-	dst += SPRINTF((dst, "/%u", bits));
-	return (odst);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (NULL);
-}
diff --git a/contrib/bind/lib/inet/inet_net_pton.c b/contrib/bind/lib/inet/inet_net_pton.c
deleted file mode 100644
index 4d265b2742c60..0000000000000
--- a/contrib/bind/lib/inet/inet_net_pton.c
+++ /dev/null
@@ -1,215 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_net_pton.c,v 1.11 1999/01/08 19:23:44 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <isc/assertions.h>
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-static int	inet_net_pton_ipv4 __P((const char *src, u_char *dst,
-					size_t size));
-
-/*
- * static int
- * inet_net_pton(af, src, dst, size)
- *	convert network number from presentation to network format.
- *	accepts hex octets, hex strings, decimal octets, and /CIDR.
- *	"size" is in bytes and describes "dst".
- * return:
- *	number of bits, either imputed classfully or specified with /CIDR,
- *	or -1 if some failure occurred (check errno).  ENOENT means it was
- *	not a valid network specification.
- * author:
- *	Paul Vixie (ISC), June 1996
- */
-int
-inet_net_pton(af, src, dst, size)
-	int af;
-	const char *src;
-	void *dst;
-	size_t size;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_net_pton_ipv4(src, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (-1);
-	}
-}
-
-/*
- * static int
- * inet_net_pton_ipv4(src, dst, size)
- *	convert IPv4 network number from presentation to network format.
- *	accepts hex octets, hex strings, decimal octets, and /CIDR.
- *	"size" is in bytes and describes "dst".
- * return:
- *	number of bits, either imputed classfully or specified with /CIDR,
- *	or -1 if some failure occurred (check errno).  ENOENT means it was
- *	not an IPv4 network specification.
- * note:
- *	network byte order assumed.  this means 192.5.5.240/28 has
- *	0b11110000 in its fourth octet.
- * author:
- *	Paul Vixie (ISC), June 1996
- */
-static int
-inet_net_pton_ipv4(src, dst, size)
-	const char *src;
-	u_char *dst;
-	size_t size;
-{
-	static const char
-		xdigits[] = "0123456789abcdef",
-		digits[] = "0123456789";
-	int n, ch, tmp, dirty, bits;
-	const u_char *odst = dst;
-
-	ch = *src++;
-	if (ch == '0' && (src[0] == 'x' || src[0] == 'X')
-	    && isascii(src[1]) && isxdigit(src[1])) {
-		/* Hexadecimal: Eat nybble string. */
-		if (size <= 0)
-			goto emsgsize;
-		dirty = 0;
-		src++;	/* skip x or X. */
-		while ((ch = *src++) != '\0' && isascii(ch) && isxdigit(ch)) {
-			if (isupper(ch))
-				ch = tolower(ch);
-			n = strchr(xdigits, ch) - xdigits;
-			INSIST(n >= 0 && n <= 15);
-			if (dirty == 0)
-				tmp = n;
-			else
-				tmp = (tmp << 4) | n;
-			if (++dirty == 2) {
-				if (size-- <= 0)
-					goto emsgsize;
-				*dst++ = (u_char) tmp;
-				dirty = 0;
-			}
-		}
-		if (dirty) {  /* Odd trailing nybble? */
-			if (size-- <= 0)
-				goto emsgsize;
-			*dst++ = (u_char) (tmp << 4);
-		}
-	} else if (isascii(ch) && isdigit(ch)) {
-		/* Decimal: eat dotted digit string. */
-		for (;;) {
-			tmp = 0;
-			do {
-				n = strchr(digits, ch) - digits;
-				INSIST(n >= 0 && n <= 9);
-				tmp *= 10;
-				tmp += n;
-				if (tmp > 255)
-					goto enoent;
-			} while ((ch = *src++) != '\0' &&
-				 isascii(ch) && isdigit(ch));
-			if (size-- <= 0)
-				goto emsgsize;
-			*dst++ = (u_char) tmp;
-			if (ch == '\0' || ch == '/')
-				break;
-			if (ch != '.')
-				goto enoent;
-			ch = *src++;
-			if (!isascii(ch) || !isdigit(ch))
-				goto enoent;
-		}
-	} else
-		goto enoent;
-
-	bits = -1;
-	if (ch == '/' && isascii(src[0]) && isdigit(src[0]) && dst > odst) {
-		/* CIDR width specifier.  Nothing can follow it. */
-		ch = *src++;	/* Skip over the /. */
-		bits = 0;
-		do {
-			n = strchr(digits, ch) - digits;
-			INSIST(n >= 0 && n <= 9);
-			bits *= 10;
-			bits += n;
-		} while ((ch = *src++) != '\0' && isascii(ch) && isdigit(ch));
-		if (ch != '\0')
-			goto enoent;
-		if (bits > 32)
-			goto emsgsize;
-	}
-
-	/* Firey death and destruction unless we prefetched EOS. */
-	if (ch != '\0')
-		goto enoent;
-
-	/* If nothing was written to the destination, we found no address. */
-	if (dst == odst)
-		goto enoent;
-	/* If no CIDR spec was given, infer width from net class. */
-	if (bits == -1) {
-		if (*odst >= 240)	/* Class E */
-			bits = 32;
-		else if (*odst >= 224)	/* Class D */
-			bits = 4;
-		else if (*odst >= 192)	/* Class C */
-			bits = 24;
-		else if (*odst >= 128)	/* Class B */
-			bits = 16;
-		else			/* Class A */
-			bits = 8;
-		/* If imputed mask is narrower than specified octets, widen. */
-		if (bits >= 8 && bits < ((dst - odst) * 8))
-			bits = (dst - odst) * 8;
-	}
-	/* Extend network to cover the actual mask. */
-	while (bits > ((dst - odst) * 8)) {
-		if (size-- <= 0)
-			goto emsgsize;
-		*dst++ = '\0';
-	}
-	return (bits);
-
- enoent:
-	errno = ENOENT;
-	return (-1);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (-1);
-}
diff --git a/contrib/bind/lib/inet/inet_neta.c b/contrib/bind/lib/inet/inet_neta.c
deleted file mode 100644
index 8665a9a3991eb..0000000000000
--- a/contrib/bind/lib/inet/inet_neta.c
+++ /dev/null
@@ -1,87 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_neta.c,v 1.6 1999/01/08 19:23:45 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/*
- * char *
- * inet_neta(src, dst, size)
- *	format a u_long network number into presentation format.
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * note:
- *	format of ``src'' is as for inet_network().
- * author:
- *	Paul Vixie (ISC), July 1996
- */
-char *
-inet_neta(src, dst, size)
-	u_long src;
-	char *dst;
-	size_t size;
-{
-	char *odst = dst;
-	char *tp;
-
-	while (src & 0xffffffff) {
-		u_char b = (src & 0xff000000) >> 24;
-
-		src <<= 8;
-		if (b) {
-			if (size < sizeof "255.")
-				goto emsgsize;
-			tp = dst;
-			dst += SPRINTF((dst, "%u", b));
-			if (src != 0L) {
-				*dst++ = '.';
-				*dst = '\0';
-			}
-			size -= (size_t)(dst - tp);
-		}
-	}
-	if (dst == odst) {
-		if (size < sizeof "0.0.0.0")
-			goto emsgsize;
-		strcpy(dst, "0.0.0.0");
-	}
-	return (odst);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (NULL);
-}
diff --git a/contrib/bind/lib/inet/inet_netof.c b/contrib/bind/lib/inet/inet_netof.c
deleted file mode 100644
index e887530088a1b..0000000000000
--- a/contrib/bind/lib/inet/inet_netof.c
+++ /dev/null
@@ -1,62 +0,0 @@
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)inet_netof.c	8.1 (Berkeley) 6/4/93";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include "port_after.h"
-
-/*
- * Return the network number from an internet
- * address; handles class a/b/c network #'s.
- */
-u_long
-inet_netof(in)
-	struct in_addr in;
-{
-	register u_long i = ntohl(in.s_addr);
-
-	if (IN_CLASSA(i))
-		return (((i)&IN_CLASSA_NET) >> IN_CLASSA_NSHIFT);
-	else if (IN_CLASSB(i))
-		return (((i)&IN_CLASSB_NET) >> IN_CLASSB_NSHIFT);
-	else
-		return (((i)&IN_CLASSC_NET) >> IN_CLASSC_NSHIFT);
-}
diff --git a/contrib/bind/lib/inet/inet_network.c b/contrib/bind/lib/inet/inet_network.c
deleted file mode 100644
index d26369cf16414..0000000000000
--- a/contrib/bind/lib/inet/inet_network.c
+++ /dev/null
@@ -1,103 +0,0 @@
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)inet_network.c	8.1 (Berkeley) 6/4/93";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <ctype.h>
-
-#include "port_after.h"
-
-/*
- * Internet network address interpretation routine.
- * The library routines call this routine to interpret
- * network numbers.
- */
-u_long
-inet_network(cp)
-	register const char *cp;
-{
-	register u_long val, base, n, i;
-	register char c;
-	u_long parts[4], *pp = parts;
-	int digit;
-
-again:
-	val = 0; base = 10; digit = 0;
-	if (*cp == '0')
-		digit = 1, base = 8, cp++;
-	if (*cp == 'x' || *cp == 'X')
-		base = 16, cp++;
-	while ((c = *cp) != 0) {
-		if (isdigit(c)) {
-			if (base == 8 && (c == '8' || c == '9'))
-				return (INADDR_NONE);
-			val = (val * base) + (c - '0');
-			cp++;
-			digit = 1;
-			continue;
-		}
-		if (base == 16 && isxdigit(c)) {
-			val = (val << 4) + (c + 10 - (islower(c) ? 'a' : 'A'));
-			cp++;
-			digit = 1;
-			continue;
-		}
-		break;
-	}
-	if (!digit)
-		return (INADDR_NONE);
-	if (*cp == '.') {
-		if (pp >= parts + 4 || val > 0xff)
-			return (INADDR_NONE);
-		*pp++ = val, cp++;
-		goto again;
-	}
-	if (*cp && !isspace(*cp))
-		return (INADDR_NONE);
-	*pp++ = val;
-	n = pp - parts;
-	if (n > 4)
-		return (INADDR_NONE);
-	for (val = 0, i = 0; i < n; i++) {
-		val <<= 8;
-		val |= parts[i] & 0xff;
-	}
-	return (val);
-}
diff --git a/contrib/bind/lib/inet/inet_ntoa.c b/contrib/bind/lib/inet/inet_ntoa.c
deleted file mode 100644
index aaedcb642c714..0000000000000
--- a/contrib/bind/lib/inet/inet_ntoa.c
+++ /dev/null
@@ -1,62 +0,0 @@
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)inet_ntoa.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: inet_ntoa.c,v 1.7 1999/05/14 18:16:55 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <stdio.h>
-#include <string.h>
-
-#include "port_after.h"
-
-/*
- * Convert network-format internet address
- * to base 256 d.d.d.d representation.
- */
-/*const*/ char *
-inet_ntoa(struct in_addr in) {
-	static char ret[18];
-
-	strcpy(ret, "[inet_ntoa error]");
-	(void) inet_ntop(AF_INET, &in, ret, sizeof ret);
-	return (ret);
-}
diff --git a/contrib/bind/lib/inet/inet_ntop.c b/contrib/bind/lib/inet/inet_ntop.c
deleted file mode 100644
index 0b85e703a4af0..0000000000000
--- a/contrib/bind/lib/inet/inet_ntop.c
+++ /dev/null
@@ -1,202 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_ntop.c,v 1.8 1999/10/13 16:39:28 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/*
- * WARNING: Don't even consider trying to compile this on a system where
- * sizeof(int) < 4.  sizeof(int) > 4 is fine; all the world's not a VAX.
- */
-
-static const char *inet_ntop4 __P((const u_char *src, char *dst, size_t size));
-static const char *inet_ntop6 __P((const u_char *src, char *dst, size_t size));
-
-/* char *
- * inet_ntop(af, src, dst, size)
- *	convert a network format address to presentation format.
- * return:
- *	pointer to presentation format address (`dst'), or NULL (see errno).
- * author:
- *	Paul Vixie, 1996.
- */
-const char *
-inet_ntop(af, src, dst, size)
-	int af;
-	const void *src;
-	char *dst;
-	size_t size;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_ntop4(src, dst, size));
-	case AF_INET6:
-		return (inet_ntop6(src, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-	/* NOTREACHED */
-}
-
-/* const char *
- * inet_ntop4(src, dst, size)
- *	format an IPv4 address
- * return:
- *	`dst' (as a const)
- * notes:
- *	(1) uses no statics
- *	(2) takes a u_char* not an in_addr as input
- * author:
- *	Paul Vixie, 1996.
- */
-static const char *
-inet_ntop4(src, dst, size)
-	const u_char *src;
-	char *dst;
-	size_t size;
-{
-	static const char fmt[] = "%u.%u.%u.%u";
-	char tmp[sizeof "255.255.255.255"];
-
-	if (SPRINTF((tmp, fmt, src[0], src[1], src[2], src[3])) > size) {
-		errno = ENOSPC;
-		return (NULL);
-	}
-	strcpy(dst, tmp);
-	return (dst);
-}
-
-/* const char *
- * inet_ntop6(src, dst, size)
- *	convert IPv6 binary address into presentation (printable) format
- * author:
- *	Paul Vixie, 1996.
- */
-static const char *
-inet_ntop6(src, dst, size)
-	const u_char *src;
-	char *dst;
-	size_t size;
-{
-	/*
-	 * Note that int32_t and int16_t need only be "at least" large enough
-	 * to contain a value of the specified size.  On some systems, like
-	 * Crays, there is no such thing as an integer variable with 16 bits.
-	 * Keep this in mind if you think this function should have been coded
-	 * to use pointer overlays.  All the world's not a VAX.
-	 */
-	char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"], *tp;
-	struct { int base, len; } best, cur;
-	u_int words[NS_IN6ADDRSZ / NS_INT16SZ];
-	int i;
-
-	/*
-	 * Preprocess:
-	 *	Copy the input (bytewise) array into a wordwise array.
-	 *	Find the longest run of 0x00's in src[] for :: shorthanding.
-	 */
-	memset(words, '\0', sizeof words);
-	for (i = 0; i < NS_IN6ADDRSZ; i++)
-		words[i / 2] |= (src[i] << ((1 - (i % 2)) << 3));
-	best.base = -1;
-	cur.base = -1;
-	for (i = 0; i < (NS_IN6ADDRSZ / NS_INT16SZ); i++) {
-		if (words[i] == 0) {
-			if (cur.base == -1)
-				cur.base = i, cur.len = 1;
-			else
-				cur.len++;
-		} else {
-			if (cur.base != -1) {
-				if (best.base == -1 || cur.len > best.len)
-					best = cur;
-				cur.base = -1;
-			}
-		}
-	}
-	if (cur.base != -1) {
-		if (best.base == -1 || cur.len > best.len)
-			best = cur;
-	}
-	if (best.base != -1 && best.len < 2)
-		best.base = -1;
-
-	/*
-	 * Format the result.
-	 */
-	tp = tmp;
-	for (i = 0; i < (NS_IN6ADDRSZ / NS_INT16SZ); i++) {
-		/* Are we inside the best run of 0x00's? */
-		if (best.base != -1 && i >= best.base &&
-		    i < (best.base + best.len)) {
-			if (i == best.base)
-				*tp++ = ':';
-			continue;
-		}
-		/* Are we following an initial run of 0x00s or any real hex? */
-		if (i != 0)
-			*tp++ = ':';
-		/* Is this address an encapsulated IPv4? */
-		if (i == 6 && best.base == 0 &&
-		    (best.len == 6 || (best.len == 5 && words[5] == 0xffff))) {
-			if (!inet_ntop4(src+12, tp, sizeof tmp - (tp - tmp)))
-				return (NULL);
-			tp += strlen(tp);
-			break;
-		}
-		tp += SPRINTF((tp, "%x", words[i]));
-	}
-	/* Was it a trailing run of 0x00's? */
-	if (best.base != -1 && (best.base + best.len) == 
-	    (NS_IN6ADDRSZ / NS_INT16SZ))
-		*tp++ = ':';
-	*tp++ = '\0';
-
-	/*
-	 * Check for overflow, copy, and we're done.
-	 */
-	if ((size_t)(tp - tmp) > size) {
-		errno = ENOSPC;
-		return (NULL);
-	}
-	strcpy(dst, tmp);
-	return (dst);
-}
diff --git a/contrib/bind/lib/inet/inet_pton.c b/contrib/bind/lib/inet/inet_pton.c
deleted file mode 100644
index 0a2927de39a26..0000000000000
--- a/contrib/bind/lib/inet/inet_pton.c
+++ /dev/null
@@ -1,220 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_pton.c,v 1.7 1999/10/13 16:39:28 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <string.h>
-#include <errno.h>
-#include "port_after.h"
-
-/*
- * WARNING: Don't even consider trying to compile this on a system where
- * sizeof(int) < 4.  sizeof(int) > 4 is fine; all the world's not a VAX.
- */
-
-static int	inet_pton4 __P((const char *src, u_char *dst));
-static int	inet_pton6 __P((const char *src, u_char *dst));
-
-/* int
- * inet_pton(af, src, dst)
- *	convert from presentation format (which usually means ASCII printable)
- *	to network format (which is usually some kind of binary format).
- * return:
- *	1 if the address was valid for the specified address family
- *	0 if the address wasn't valid (`dst' is untouched in this case)
- *	-1 if some other error occurred (`dst' is untouched in this case, too)
- * author:
- *	Paul Vixie, 1996.
- */
-int
-inet_pton(af, src, dst)
-	int af;
-	const char *src;
-	void *dst;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_pton4(src, dst));
-	case AF_INET6:
-		return (inet_pton6(src, dst));
-	default:
-		errno = EAFNOSUPPORT;
-		return (-1);
-	}
-	/* NOTREACHED */
-}
-
-/* int
- * inet_pton4(src, dst)
- *	like inet_aton() but without all the hexadecimal and shorthand.
- * return:
- *	1 if `src' is a valid dotted quad, else 0.
- * notice:
- *	does not touch `dst' unless it's returning 1.
- * author:
- *	Paul Vixie, 1996.
- */
-static int
-inet_pton4(src, dst)
-	const char *src;
-	u_char *dst;
-{
-	static const char digits[] = "0123456789";
-	int saw_digit, octets, ch;
-	u_char tmp[NS_INADDRSZ], *tp;
-
-	saw_digit = 0;
-	octets = 0;
-	*(tp = tmp) = 0;
-	while ((ch = *src++) != '\0') {
-		const char *pch;
-
-		if ((pch = strchr(digits, ch)) != NULL) {
-			u_int new = *tp * 10 + (pch - digits);
-
-			if (new > 255)
-				return (0);
-			*tp = new;
-			if (! saw_digit) {
-				if (++octets > 4)
-					return (0);
-				saw_digit = 1;
-			}
-		} else if (ch == '.' && saw_digit) {
-			if (octets == 4)
-				return (0);
-			*++tp = 0;
-			saw_digit = 0;
-		} else
-			return (0);
-	}
-	if (octets < 4)
-		return (0);
-	memcpy(dst, tmp, NS_INADDRSZ);
-	return (1);
-}
-
-/* int
- * inet_pton6(src, dst)
- *	convert presentation level address to network order binary form.
- * return:
- *	1 if `src' is a valid [RFC1884 2.2] address, else 0.
- * notice:
- *	(1) does not touch `dst' unless it's returning 1.
- *	(2) :: in a full address is silently ignored.
- * credit:
- *	inspired by Mark Andrews.
- * author:
- *	Paul Vixie, 1996.
- */
-static int
-inet_pton6(src, dst)
-	const char *src;
-	u_char *dst;
-{
-	static const char xdigits_l[] = "0123456789abcdef",
-			  xdigits_u[] = "0123456789ABCDEF";
-	u_char tmp[NS_IN6ADDRSZ], *tp, *endp, *colonp;
-	const char *xdigits, *curtok;
-	int ch, saw_xdigit;
-	u_int val;
-
-	memset((tp = tmp), '\0', NS_IN6ADDRSZ);
-	endp = tp + NS_IN6ADDRSZ;
-	colonp = NULL;
-	/* Leading :: requires some special handling. */
-	if (*src == ':')
-		if (*++src != ':')
-			return (0);
-	curtok = src;
-	saw_xdigit = 0;
-	val = 0;
-	while ((ch = *src++) != '\0') {
-		const char *pch;
-
-		if ((pch = strchr((xdigits = xdigits_l), ch)) == NULL)
-			pch = strchr((xdigits = xdigits_u), ch);
-		if (pch != NULL) {
-			val <<= 4;
-			val |= (pch - xdigits);
-			if (val > 0xffff)
-				return (0);
-			saw_xdigit = 1;
-			continue;
-		}
-		if (ch == ':') {
-			curtok = src;
-			if (!saw_xdigit) {
-				if (colonp)
-					return (0);
-				colonp = tp;
-				continue;
-			} else if (*src == '\0') {
-				return (0);
-			}
-			if (tp + NS_INT16SZ > endp)
-				return (0);
-			*tp++ = (u_char) (val >> 8) & 0xff;
-			*tp++ = (u_char) val & 0xff;
-			saw_xdigit = 0;
-			val = 0;
-			continue;
-		}
-		if (ch == '.' && ((tp + NS_INADDRSZ) <= endp) &&
-		    inet_pton4(curtok, tp) > 0) {
-			tp += NS_INADDRSZ;
-			saw_xdigit = 0;
-			break;	/* '\0' was seen by inet_pton4(). */
-		}
-		return (0);
-	}
-	if (saw_xdigit) {
-		if (tp + NS_INT16SZ > endp)
-			return (0);
-		*tp++ = (u_char) (val >> 8) & 0xff;
-		*tp++ = (u_char) val & 0xff;
-	}
-	if (colonp != NULL) {
-		/*
-		 * Since some memmove()'s erroneously fail to handle
-		 * overlapping regions, we'll do the shift by hand.
-		 */
-		const int n = tp - colonp;
-		int i;
-
-		if (tp == endp)
-			return (0);
-		for (i = 1; i <= n; i++) {
-			endp[- i] = colonp[n - i];
-			colonp[n - i] = 0;
-		}
-		tp = endp;
-	}
-	if (tp != endp)
-		return (0);
-	memcpy(dst, tmp, NS_IN6ADDRSZ);
-	return (1);
-}
diff --git a/contrib/bind/lib/inet/nsap_addr.c b/contrib/bind/lib/inet/nsap_addr.c
deleted file mode 100644
index b28acec800e48..0000000000000
--- a/contrib/bind/lib/inet/nsap_addr.c
+++ /dev/null
@@ -1,101 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAI!
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANT!
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF TH!
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nsap_addr.c,v 8.10 1999/10/13 16:39:28 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <resolv.h>
-
-#include "port_after.h"
-
-static char
-xtob(int c) {
-	return (c - (((c >= '0') && (c <= '9')) ? '0' : '7'));
-}
-
-u_int
-inet_nsap_addr(const char *ascii, u_char *binary, int maxlen) {
-	u_char c, nib;
-	u_int len = 0;
-
-	while ((c = *ascii++) != '\0' && len < (u_int)maxlen) {
-		if (c == '.' || c == '+' || c == '/')
-			continue;
-		if (!isascii(c))
-			return (0);
-		if (islower(c))
-			c = toupper(c);
-		if (isxdigit(c)) {
-			nib = xtob(c);
-			c = *ascii++;
-			if (c != '\0') {
-				c = toupper(c);
-				if (isxdigit(c)) {
-					*binary++ = (nib << 4) | xtob(c);
-					len++;
-				} else
-					return (0);
-			}
-			else
-				return (0);
-		}
-		else
-			return (0);
-	}
-	return (len);
-}
-
-char *
-inet_nsap_ntoa(int binlen, const u_char *binary, char *ascii) {
-	int nib;
-	int i;
-	static char tmpbuf[255*3];
-	char *start;
-
-	if (ascii)
-		start = ascii;
-	else {
-		ascii = tmpbuf;
-		start = tmpbuf;
-	}
-
-	if (binlen > 255)
-		binlen = 255;
-
-	for (i = 0; i < binlen; i++) {
-		nib = *binary >> 4;
-		*ascii++ = nib + (nib < 10 ? '0' : '7');
-		nib = *binary++ & 0x0f;
-		*ascii++ = nib + (nib < 10 ? '0' : '7');
-		if (((i % 2) == 0 && (i + 1) < binlen))
-			*ascii++ = '.';
-	}
-	*ascii = '\0';
-	return (start);
-}
diff --git a/contrib/bind/lib/irs/Makefile b/contrib/bind/lib/irs/Makefile
deleted file mode 100644
index 2c50e6257cb35..0000000000000
--- a/contrib/bind/lib/irs/Makefile
+++ /dev/null
@@ -1,118 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 8.19 2000/02/29 03:38:22 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g 
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBBINDR = ../${TOP}/lib/libbind_r.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-# -D__BIND_NOSTATIC -Wimplicit
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-THREADED= threaded
-
-SRCS=	dns.c dns_gr.c dns_ho.c dns_nw.c dns_pr.c dns_pw.c \
-	dns_sv.c gai_strerror.c gen.c gen_gr.c gen_ho.c \
-	gen_ng.c gen_nw.c gen_pr.c gen_pw.c gen_sv.c \
-	getaddrinfo.c getgrent.c getgrent_r.c gethostent.c \
-	gethostent_r.c getnameinfo.c getnetent.c getnetent_r.c \
-	getnetgrent.c getnetgrent_r.c getprotoent.c \
-	getprotoent_r.c getpwent.c getpwent_r.c getservent.c \
-	getservent_r.c hesiod.c irs_data.c \
-	irp.c irp_gr.c irp_ho.c irp_ng.c irp_nw.c \
-	irp_pr.c irp_pw.c irp_sv.c irpmarshall.c \
-	lcl.c lcl_gr.c \
-	lcl_ho.c lcl_ng.c lcl_nw.c lcl_pr.c lcl_pw.c \
-	lcl_sv.c nis.c nis_gr.c nis_ho.c nis_ng.c nis_nw.c \
-	nis_pr.c nis_pw.c nis_sv.c nul_ng.c util.c
-
-OBJS=	dns.${O} dns_gr.${O} dns_ho.${O} dns_nw.${O} dns_pr.${O} dns_pw.${O} \
-	dns_sv.${O} gai_strerror.${O} gen.${O} gen_gr.${O} gen_ho.${O} \
-	gen_ng.${O} gen_nw.${O} gen_pr.${O} gen_pw.${O} gen_sv.${O} \
-	getaddrinfo.${O} getgrent.${O} getgrent_r.${O} gethostent.${O} \
-	gethostent_r.${O} getnameinfo.${O} getnetent.${O} getnetent_r.${O} \
-	getnetgrent.${O} getnetgrent_r.${O} getprotoent.${O} \
-	getprotoent_r.${O} getpwent.${O} getpwent_r.${O} getservent.${O} \
-	getservent_r.${O} hesiod.${O} irs_data.${O} \
-	irp.${O} irp_gr.${O} irp_ho.${O} irp_ng.${O} irp_nw.${O} \
-	irp_pr.${O} irp_pw.${O} irp_sv.${O} irpmarshall.${O} \
-	lcl.${O} lcl_gr.${O} \
-	lcl_ho.${O} lcl_ng.${O} lcl_nw.${O} lcl_pr.${O} lcl_pw.${O} \
-	lcl_sv.${O} nis.${O} nis_gr.${O} nis_ho.${O} nis_ng.${O} nis_nw.${O} \
-	nis_pr.${O} nis_pw.${O} nis_sv.${O} nul_ng.${O} util.${O}
-
-all: ${LIBBIND}
-
-${LIBBIND}: ${OBJS}
-	-( cd ${THREADED} ; \
-	${AR} ${LIBBINDR} ${ARPREF} ${OBJS} ${ARSUFF} ; \
-	${RANLIB} ${LIBBINDR} )
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	if test ! -d ${THREADED} ; then mkdir ${THREADED} ; else true ; fi
-	-(${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} ${REENTRANT} -c $*.c \
-	 -o ${THREADED}/$*.${O} ; \
-	 ${LDS} ${LD} ${LD_LIBFLAGS} ${THREADED}/$*.${O} \
-	 -o ${THREADED}/$*.out && \
-	 ${LDS} mv ${THREADED}/$*.out ${THREADED}/$*.${O})
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} -o $*.out && \
-	 ${LDS} mv $*.out $*.${O}
-
-distclean: clean
-
-clean: FRC
-	rm -f .depend a.out core ${LIB} tags
-	rm -f *.${O} *.BAK *.CKP *~
-	rm -f ${THREADED}/*.${O}
-	-if test -d ${THREADED} ; then rmdir ${THREADED}; else true; fi
-
-depend: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-testirpd: testirpd.o ${LIBBIND}
-	${CC} ${CDEBUG} ${LDFLAGS} -o testirpd testirpd.o ${LIBBIND} ${SYSLIBS}
-
-	
-install:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/lib/irs/Makefile.BSD b/contrib/bind/lib/irs/Makefile.BSD
deleted file mode 100644
index d30c417dc10da..0000000000000
--- a/contrib/bind/lib/irs/Makefile.BSD
+++ /dev/null
@@ -1,25 +0,0 @@
-#	BSDI $Id: Makefile.BSD,v 1.5 1999/01/18 07:46:47 vixie Exp $
-#
-#	@(#)Makefile	5.12 (Berkeley) 7/15/92
-
-CFLAGS= -g
-
-CC= gcc2
-CFLAGS+= -Wall -Wno-unused
-
-LIB=	irs
-CFLAGS+= -I${.CURDIR}/..
-SRCS=	lcl.c lcl_gr.c lcl_pw.c lcl_sv.c lcl_pr.c lcl_ho.c lcl_nw.c lcl_ng.c \
-	dns.c dns_gr.c dns_pw.c dns_sv.c dns_pr.c dns_ho.c dns_nw.c \
-	nis.c nis_gr.c nis_pw.c nis_sv.c nis_pr.c nis_ho.c nis_nw.c nis_ng.c \
-	gen.c gen_gr.c gen_pw.c gen_sv.c gen_pr.c gen_ho.c gen_nw.c gen_ng.c \
-	getgrent.c getpwent.c getservent.c getprotoent.c gethostent.c \
-	getnetent.c getnetgrent.c \
-	nul_ng.c irs_data.c irp.c irp_gr.c irp_ho.c irp_ng.c irp_nw.c \
-	irp_pr.c irp_pw.c irp_sv.c irpd.c irpmarshall.c \
-	hesiod.c util.c bitncmp.c
-NOMAN=
-
-all: libirs.a
-
-.include <bsd.lib.mk>
diff --git a/contrib/bind/lib/irs/README b/contrib/bind/lib/irs/README
deleted file mode 100644
index cb81a9a5b501a..0000000000000
--- a/contrib/bind/lib/irs/README
+++ /dev/null
@@ -1,56 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-This is the Information Retrieval Service (IRS).
-Designed by Paul Vixie (ISC) and Ted T'so (MIT), 1995.
-Written by Paul Vixie, Ted T'so and Sam Stoller, 1996.
-$Id: README,v 1.5 1999/01/08 19:23:52 vixie Exp $
-
-Introduction:
-
-	The /etc/irs.conf file defines access methods (like DNS or NIS or
-LOCAL) for each map (like PASSWD or GROUP or HOSTS).  One of the access
-methods is "generic" in that it uses the rules from /etc/irs.conf to decide
-which of potentially several different access methods to use for any given
-map.  Stubs have been written for all of the system getXbyY() functions so
-that old programs can get this new "multiple access method" capability without
-any source code changes.
-
-Thread Safety:
-
-	It is possible for a thread safe program to be altered to call the
-underlying interface (rather than the standard getXbyY() stubs) and get some
-reentrance capabilities.  Note that the underlying libraries (which we call)
-are not all thread-safe, for example, the YP and DNS resolvers.  A lot more
-work will need to be done before we have full thread safety.  But we believe
-that the native API for this system does not impose any reentrancy problems.
-We don't use global or static variables anywhere except in the getXbyY() stubs.
-
-Apologies:
-
-	We did cheap object orientation without using C++.  This stuff is
-standard C, and it suffers from some of the defects shared by all object
-systems implemented in C.  Even so, this is the smallest design we could
-think of that would be extensible to more access methods, more map types,
-and more map operations (like BYNAME or BYGID or whatever) in the future.
-
-	There's a fair amount of duplicated code between the different
-access methods for a given map.  For example, the code that parses the
-passwd entries is almost identical between the DNS and NIS map objects.  To
-clean this up, the almost-identical functions need to be split into similar
-and dissimilar parts, and some parts of the "struct pvt"'s need to be made
-shared via substructures.
diff --git a/contrib/bind/lib/irs/dns.c b/contrib/bind/lib/irs/dns.c
deleted file mode 100644
index 66bdbf56f0d5d..0000000000000
--- a/contrib/bind/lib/irs/dns.c
+++ /dev/null
@@ -1,151 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns.c,v 1.15 2000/02/28 07:52:16 vixie Exp $";
-#endif
-
-/*
- * dns.c --- this is the top-level accessor function for the dns
- */
-
-#include "port_before.h"
-
-#include <stdlib.h>
-#include <string.h>
-#include <errno.h>
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "dns_p.h"
-
-/* forward */
-
-static void		dns_close(struct irs_acc *);
-static struct __res_state *	dns_res_get(struct irs_acc *);
-static void		dns_res_set(struct irs_acc *, struct __res_state *,
-				void (*)(void *));
-
-/* public */
-
-struct irs_acc *
-irs_dns_acc(const char *options) {
-	struct irs_acc *acc;
-	struct dns_p *dns;
-
-	if (!(acc = memget(sizeof *acc))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(acc, 0x5e, sizeof *acc);
-	if (!(dns = memget(sizeof *dns))) {
-		errno = ENOMEM;
-		memput(acc, sizeof *acc);
-		return (NULL);
-	}
-	memset(dns, 0x5e, sizeof *dns);
-	dns->res = NULL;
-	dns->free_res = NULL;
-	if (hesiod_init(&dns->hes_ctx) < 0) {
-		/*
-		 * We allow the dns accessor class to initialize
-		 * despite hesiod failing to initialize correctly,
-		 * since dns host queries don't depend on hesiod.
-		 */
-		dns->hes_ctx = NULL;
-	}
-	acc->private = dns;
-#ifdef WANT_IRS_GR
-	acc->gr_map = irs_dns_gr;
-#else
-	acc->gr_map = NULL;
-#endif
-#ifdef WANT_IRS_PW
-	acc->pw_map = irs_dns_pw;
-#else
-	acc->pw_map = NULL;
-#endif
-	acc->sv_map = irs_dns_sv;
-	acc->pr_map = irs_dns_pr;
-	acc->ho_map = irs_dns_ho;
-	acc->nw_map = irs_dns_nw;
-	acc->ng_map = irs_nul_ng;
-	acc->res_get = dns_res_get;
-	acc->res_set = dns_res_set;
-	acc->close = dns_close;
-	return (acc);
-}
-
-/* methods */
-static struct __res_state *
-dns_res_get(struct irs_acc *this) {
-	struct dns_p *dns = (struct dns_p *)this->private;
-
-	if (dns->res == NULL) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (res == NULL)
-			return (NULL);
-		memset(dns->res, 0, sizeof *dns->res);
-		dns_res_set(this, res, free);
-	}
-
-	if ((dns->res->options & RES_INIT) == 0 &&
-	    res_ninit(dns->res) < 0)
-		return (NULL);
-
-	return (dns->res);
-}
-
-static void
-dns_res_set(struct irs_acc *this, struct __res_state *res,
-	    void (*free_res)(void *)) {
-	struct dns_p *dns = (struct dns_p *)this->private;
-
-	if (dns->res && dns->free_res) {
-		res_nclose(dns->res);
-		(*dns->free_res)(dns->res);
-	}
-	dns->res = res;
-	dns->free_res = free_res;
-}
-
-static void
-dns_close(struct irs_acc *this) {
-	struct dns_p *dns;
-
-	dns = (struct dns_p *)this->private;
-	if (dns->res && dns->free_res)
-		(*dns->free_res)(dns->res);
-	if (dns->hes_ctx)
-		hesiod_end(dns->hes_ctx);
-	memput(dns, sizeof *dns);
-	memput(this, sizeof *this);
-}
-
diff --git a/contrib/bind/lib/irs/dns_gr.c b/contrib/bind/lib/irs/dns_gr.c
deleted file mode 100644
index 64cbe9b4dcf40..0000000000000
--- a/contrib/bind/lib/irs/dns_gr.c
+++ /dev/null
@@ -1,280 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns_gr.c,v 1.19 1999/01/18 07:46:48 vixie Exp $";
-#endif
-
-/*
- * dns_gr.c --- this file contains the functions for accessing
- * 	group information from Hesiod.
- */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_GR
-static int __bind_irs_gr_unneeded;
-#else
-
-#include <sys/param.h>
-#include <sys/types.h>
-
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <errno.h>
-#include <unistd.h>
-
-#include <sys/types.h>
-#include <netinet/in.h> 
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "dns_p.h"
-
-/* Types. */
-
-struct pvt {
-	/*
-	 * This is our private accessor data.  It has a shared hesiod context.
-	 */
-	struct dns_p *	dns;
-	/*
-	 * Need space to store the entries read from the group file.
-	 * The members list also needs space per member, and the
-	 * strings making up the user names must be allocated
-	 * somewhere.  Rather than doing lots of small allocations,
-	 * we keep one buffer and resize it as needed.
-	 */
-	struct group	group;
-	size_t		nmemb;		/* Malloc'd max index of gr_mem[]. */
-	char *		membuf;
-	size_t		membufsize;
-};
-
-/* Forward. */
-
-static struct group *	gr_next(struct irs_gr *);
-static struct group *	gr_byname(struct irs_gr *, const char *);
-static struct group *	gr_bygid(struct irs_gr *, gid_t);
-static void		gr_rewind(struct irs_gr *);
-static void		gr_close(struct irs_gr *);
-static int		gr_list(struct irs_gr *, const char *,
-				gid_t, gid_t *, int *);
-static void		gr_minimize(struct irs_gr *);
-static struct __res_state * gr_res_get(struct irs_gr *);
-static void		gr_res_set(struct irs_gr *,
-				   struct __res_state *,
-				   void (*)(void *));
-
-static struct group *	get_hes_group(struct irs_gr *this,
-				      const char *name,
-				      const char *type);
-
-/* Public. */
-
-struct irs_gr *
-irs_dns_gr(struct irs_acc *this) {
-	struct dns_p *dns = (struct dns_p *)this->private;
-	struct irs_gr *gr;
-	struct pvt *pvt;
-
-	if (!dns || !dns->hes_ctx) {
-		errno = ENODEV;
-		return (NULL);
-	}
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->dns = dns;
-	if (!(gr = memget(sizeof *gr))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(gr, 0x5e, sizeof *gr);
-	gr->private = pvt;
-	gr->next = gr_next;
-	gr->byname = gr_byname;
-	gr->bygid = gr_bygid;
-	gr->rewind = gr_rewind;
-	gr->close = gr_close;
-	gr->list = gr_list;
-	gr->minimize = gr_minimize;
-	gr->res_get = gr_res_get;
-	gr->res_set = gr_res_set;
-	return (gr);
-}
-
-/* methods */
-
-static void
-gr_close(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->group.gr_mem)
-		free(pvt->group.gr_mem);
-	if (pvt->membuf)
-		free(pvt->membuf);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct group *
-gr_next(struct irs_gr *this) {
-	return (NULL);
-}
-
-static struct group *
-gr_byname(struct irs_gr *this, const char *name) {
-	return (get_hes_group(this, name, "group"));
-}
-
-static struct group *
-gr_bygid(struct irs_gr *this, gid_t gid) {
-	char name[32];
-
-	sprintf(name, "%ld", (long)gid);
-	return (get_hes_group(this, name, "gid"));
-}
-
-static void
-gr_rewind(struct irs_gr *this) {
-	/* NOOP */
-}
-
-static int
-gr_list(struct irs_gr *this, const char *name,
-	gid_t basegid, gid_t *groups, int *ngroups)
-{
-	*ngroups = 0;
-	/* There's some way to do this in Hesiod. */
-	return (-1);
-}
-
-static void
-gr_minimize(struct irs_gr *this) {
-	/* NOOP */
-}
-
-/* Private. */
-
-static struct group *
-get_hes_group(struct irs_gr *this, const char *name, const char *type) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char **hes_list, *cp, **new;
-	size_t num_members = 0;
-	u_long t;
-
-	hes_list = hesiod_resolve(pvt->dns->hes_ctx, name, type);
-	if (!hes_list)
-		return (NULL);
-
-	/*
-	 * Copy the returned hesiod string into storage space.
-	 */
-	if (pvt->membuf)
-		free(pvt->membuf);
-	pvt->membuf = strdup(*hes_list);
-	hesiod_free_list(pvt->dns->hes_ctx, hes_list);
-
-	cp = pvt->membuf;
-	pvt->group.gr_name = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-	
-	pvt->group.gr_passwd = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	errno = -1;
-	t = strtoul(cp, NULL, 10);
-	if (errno == ERANGE)
-		goto cleanup;
-	pvt->group.gr_gid = (gid_t) t;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	cp++;
-
-	/*
-	 * Parse the members out.
-	 */
-	while (*cp) {
-		if (num_members+1 >= pvt->nmemb || pvt->group.gr_mem == NULL) {
-			pvt->nmemb += 10;
-			new = realloc(pvt->group.gr_mem,
-				      pvt->nmemb * sizeof(char *));
-			if (new == NULL)
-				goto cleanup;
-			pvt->group.gr_mem = new;
-		}
-		pvt->group.gr_mem[num_members++] = cp;
-		if (!(cp = strchr(cp, ',')))
-			break;
-		*cp++ = '\0';
-	}
-	if (!pvt->group.gr_mem) {
-		pvt->group.gr_mem = malloc(sizeof(char*));
-		if (!pvt->group.gr_mem)
-			goto cleanup;
-	}
-	pvt->group.gr_mem[num_members] = NULL;
-	
-	return (&pvt->group);
-	
- cleanup:	
-	if (pvt->group.gr_mem) {
-		free(pvt->group.gr_mem);
-		pvt->group.gr_mem = NULL;
-	}
-	if (pvt->membuf) {
-		free(pvt->membuf);
-		pvt->membuf = NULL;
-	}
-	return (NULL);
-}
-
-static struct __res_state *
-gr_res_get(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	return (__hesiod_res_get(dns->hes_ctx));
-}
-
-static void
-gr_res_set(struct irs_gr *this, struct __res_state * res,
-	   void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	__hesiod_res_set(dns->hes_ctx, res, free_res);
-}
-
-#endif /* WANT_IRS_GR */
diff --git a/contrib/bind/lib/irs/dns_ho.c b/contrib/bind/lib/irs/dns_ho.c
deleted file mode 100644
index 8b2df772ef160..0000000000000
--- a/contrib/bind/lib/irs/dns_ho.c
+++ /dev/null
@@ -1,717 +0,0 @@
-/*
- * Copyright (c) 1985, 1988, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* from gethostnamadr.c	8.1 (Berkeley) 6/4/93 */
-/* BIND Id: gethnamaddr.c,v 8.15 1996/05/22 04:56:30 vixie Exp $ */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns_ho.c,v 1.28 2000/04/20 07:47:54 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdlib.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "dns_p.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) sprintf x
-#endif
-
-/* Definitions. */
-
-#define	MAXALIASES	35
-#define	MAXADDRS	35
-
-#if PACKETSZ > 1024
-#define	MAXPACKET	PACKETSZ
-#else
-#define	MAXPACKET	1024
-#endif
-
-#define BOUNDS_CHECK(ptr, count) \
-	if ((ptr) + (count) > eom) { \
-		had_error++; \
-		continue; \
-	} else (void)0
-
-struct pvt {
-	struct hostent	host;
-	char *		h_addr_ptrs[MAXADDRS + 1];
-	char *		host_aliases[MAXALIASES];
-	char		hostbuf[8*1024];
-	u_char		host_addr[16];	/* IPv4 or IPv6 */
-	struct __res_state  *res;
-	void		(*free_res)(void *);
-};
-
-typedef union {
-	int32_t al;
-	char ac;
-} align;
-
-static const u_char mapped[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0xff,0xff };
-static const u_char tunnelled[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0,0 };
-/* Note: the IPv6 loopback address is in the "tunnel" space */
-static const u_char v6local[] = { 0,0, 0,1 }; /* last 4 bytes of IPv6 addr */
-
-/* Forwards. */
-
-static void		ho_close(struct irs_ho *this);
-static struct hostent *	ho_byname(struct irs_ho *this, const char *name);
-static struct hostent *	ho_byname2(struct irs_ho *this, const char *name,
-				   int af);
-static struct hostent *	ho_byaddr(struct irs_ho *this, const void *addr,
-				  int len, int af);
-static struct hostent *	ho_next(struct irs_ho *this);
-static void		ho_rewind(struct irs_ho *this);
-static void		ho_minimize(struct irs_ho *this);
-static struct __res_state * ho_res_get(struct irs_ho *this);
-static void		ho_res_set(struct irs_ho *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static void		map_v4v6_hostent(struct hostent *hp, char **bp,
-					 int *len);
-static void		addrsort(res_state, char **, int);
-static struct hostent *	gethostans(struct irs_ho *this,
-				   const u_char *ansbuf, int anslen,
-				   const char *qname, int qtype,
-				   int af, int size);
-static int		init(struct irs_ho *this);
-
-/* Exports. */
-
-struct irs_ho *
-irs_dns_ho(struct irs_acc *this) {
-	struct irs_ho *ho;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-
-	if (!(ho = memget(sizeof *ho))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ho, 0x5e, sizeof *ho);
-	ho->private = pvt;
-	ho->close = ho_close;
-	ho->byname = ho_byname;
-	ho->byname2 = ho_byname2;
-	ho->byaddr = ho_byaddr;
-	ho->next = ho_next;
-	ho->rewind = ho_rewind;
-	ho->minimize = ho_minimize;
-	ho->res_get = ho_res_get;
-	ho->res_set = ho_res_set;
-	return (ho);
-}
-
-/* Methods. */
-
-static void
-ho_close(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	ho_minimize(this);
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	if (pvt)
-		memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct hostent *
-ho_byname(struct irs_ho *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *hp;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	if (pvt->res->options & RES_USE_INET6) {
-		hp = ho_byname2(this, name, AF_INET6);
-		if (hp)
-			return (hp);
-	}
-	return (ho_byname2(this, name, AF_INET));
-}
-
-static struct hostent *
-ho_byname2(struct irs_ho *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int n, size, type;
-	u_char buf[MAXPACKET];
-	char tmp[NS_MAXDNAME];
-	const char *cp;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	switch (af) {
-	case AF_INET:
-		size = INADDRSZ;
-		type = T_A;
-		break;
-	case AF_INET6:
-		size = IN6ADDRSZ;
-		type = T_AAAA;
-		break;
-	default:
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-
-	/*
-	 * if there aren't any dots, it could be a user-level alias.
-	 * this is also done in res_nquery() since we are not the only
-	 * function that looks up host names.
-	 */
-	if (!strchr(name, '.') && (cp = res_hostalias(pvt->res, name,
-						      tmp, sizeof tmp)))
-		name = cp;
-
-	if ((n = res_nsearch(pvt->res, name, C_IN, type,
-			     buf, sizeof buf)) < 0)
-		return (NULL);
-	return (gethostans(this, buf, n, name, type, af, size));
-}
-
-static struct hostent *
-ho_byaddr(struct irs_ho *this, const void *addr, int len, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	const u_char *uaddr = addr;
-	char qbuf[MAXDNAME+1], *qp;
-	u_char buf[MAXPACKET];
-	struct hostent *hp;
-	int n, size;
-	
-	if (init(this) == -1)
-		return (NULL);
-
-	if (af == AF_INET6 && len == IN6ADDRSZ &&
-	    (!memcmp(uaddr, mapped, sizeof mapped) ||
-           (!memcmp(uaddr, tunnelled, sizeof tunnelled) &&
-            memcmp(&uaddr[sizeof tunnelled], v6local, sizeof(v6local))))) {
-		/* Unmap. */
-		addr = (char *)addr + sizeof mapped;
-		uaddr += sizeof mapped;
-		af = AF_INET;
-		len = INADDRSZ;
-	}
-	switch (af) {
-	case AF_INET:
-		size = INADDRSZ;
-		break;
-	case AF_INET6:
-		size = IN6ADDRSZ;
-		break;
-	default:
-		errno = EAFNOSUPPORT;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	if (size > len) {
-		errno = EINVAL;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	switch (af) {
-	case AF_INET:
-		(void) sprintf(qbuf, "%u.%u.%u.%u.in-addr.arpa",
-			       (uaddr[3] & 0xff),
-			       (uaddr[2] & 0xff),
-			       (uaddr[1] & 0xff),
-			       (uaddr[0] & 0xff));
-		break;
-	case AF_INET6:
-		qp = qbuf;
-		for (n = IN6ADDRSZ - 1; n >= 0; n--) {
-			qp += SPRINTF((qp, "%x.%x.",
-				       uaddr[n] & 0xf,
-				       (uaddr[n] >> 4) & 0xf));
-		}
-		strcpy(qp, "ip6.int");
-		break;
-	default:
-		abort();
-	}
-	n = res_nquery(pvt->res, qbuf, C_IN, T_PTR, buf, sizeof buf);
-	if (n < 0)
-		return (NULL);
-	hp = gethostans(this, buf, n, qbuf, T_PTR, af, size);
-	if (!hp)
-		return (NULL);	/* H_ERRNO was set by gethostans() */
-        memcpy(pvt->host_addr, addr, len);
-	pvt->h_addr_ptrs[0] = (char *)pvt->host_addr;
-	pvt->h_addr_ptrs[1] = NULL;
-	if (af == AF_INET && (pvt->res->options & RES_USE_INET6)) {
-		map_v4v6_address((char*)pvt->host_addr, (char*)pvt->host_addr);
-		pvt->host.h_addrtype = AF_INET6;
-		pvt->host.h_length = IN6ADDRSZ;
-	}
-	RES_SET_H_ERRNO(pvt->res, NETDB_SUCCESS);
-	return (hp);
-}
-
-static struct hostent *
-ho_next(struct irs_ho *this) {
-	return (NULL);
-}
-
-static void
-ho_rewind(struct irs_ho *this) {
-	/* NOOP */
-}
-
-static void
-ho_minimize(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-}
-
-static struct __res_state *
-ho_res_get(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		ho_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-ho_res_set(struct irs_ho *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-}
-
-/* Private. */
-
-static struct hostent *
-gethostans(struct irs_ho *this,
-	   const u_char *ansbuf, int anslen, const char *qname, int qtype,
-	   int af, int size)
-{
-	struct pvt *pvt = (struct pvt *)this->private;
-	int type, class, buflen, ancount, qdcount, n, haveanswer, had_error;
-	int (*name_ok)(const char *);
-	const HEADER *hp;
-	const u_char *eom;
-	const u_char *cp;
-	const char *tname, **tap;
-	char *bp, **ap, **hap;
-	char tbuf[MAXDNAME+1];
-
-	tname = qname;
-	eom = ansbuf + anslen;
-	switch (qtype) {
-	case T_A:
-	case T_AAAA:
-		name_ok = res_hnok;
-		break;
-	case T_PTR:
-		name_ok = res_dnok;
-		break;
-	default:
-		abort();
-	}
-
-	pvt->host.h_addrtype = af;
-	pvt->host.h_length = size;
-	pvt->host.h_name = NULL;
-
-	/*
-	 * Find first satisfactory answer.
-	 */
-	if (ansbuf + HFIXEDSZ > eom) {
-		RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-		return (NULL);
-	}
-	hp = (HEADER *)ansbuf;
-	ancount = ntohs(hp->ancount);
-	qdcount = ntohs(hp->qdcount);
-	bp = pvt->hostbuf;
-	buflen = sizeof pvt->hostbuf;
-	cp = ansbuf + HFIXEDSZ;
-	if (qdcount != 1) {
-		RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-		return (NULL);
-	}
-	n = dn_expand(ansbuf, eom, cp, bp, buflen);
-	if (n < 0 || !maybe_ok(pvt->res, bp, name_ok)) {
-		RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-		return (NULL);
-	}
-	cp += n + QFIXEDSZ;
-	if (cp > eom) {
-		RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-		return (NULL);
-	}
-	if (qtype == T_A || qtype == T_AAAA) {
-		/* res_nsend() has already verified that the query name is the
-		 * same as the one we sent; this just gets the expanded name
-		 * (i.e., with the succeeding search-domain tacked on).
-		 */
-		n = strlen(bp) + 1;		/* for the \0 */
-		if (n > MAXHOSTNAMELEN) {
-			RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-			return (NULL);
-		}
-		pvt->host.h_name = bp;
-		bp += n;
-		buflen -= n;
-		/* The qname can be abbreviated, but h_name is now absolute. */
-		qname = pvt->host.h_name;
-	}
-	ap = pvt->host_aliases;
-	*ap = NULL;
-	pvt->host.h_aliases = pvt->host_aliases;
-	hap = pvt->h_addr_ptrs;
-	*hap = NULL;
-	pvt->host.h_addr_list = pvt->h_addr_ptrs;
-	haveanswer = 0;
-	had_error = 0;
-	while (ancount-- > 0 && cp < eom && !had_error) {
-		n = dn_expand(ansbuf, eom, cp, bp, buflen);
-		if (n < 0 || !maybe_ok(pvt->res, bp, name_ok)) {
-			had_error++;
-			continue;
-		}
-		cp += n;			/* name */
-		BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-		type = ns_get16(cp);
- 		cp += INT16SZ;			/* type */
-		class = ns_get16(cp);
- 		cp += INT16SZ + INT32SZ;	/* class, TTL */
-		n = ns_get16(cp);
-		cp += INT16SZ;			/* len */
-		BOUNDS_CHECK(cp, n);
-		if (class != C_IN) {
-			cp += n;
-			continue;
-		}
-		if ((qtype == T_A || qtype == T_AAAA) && type == T_CNAME) {
-			if (ap >= &pvt->host_aliases[MAXALIASES-1])
-				continue;
-			n = dn_expand(ansbuf, eom, cp, tbuf, sizeof tbuf);
-			if (n < 0 || !maybe_ok(pvt->res, tbuf, name_ok)) {
-				had_error++;
-				continue;
-			}
-			cp += n;
-			/* Store alias. */
-			*ap++ = bp;
-			n = strlen(bp) + 1;	/* for the \0 */
-			bp += n;
-			buflen -= n;
-			/* Get canonical name. */
-			n = strlen(tbuf) + 1;	/* for the \0 */
-			if (n > buflen || n > MAXHOSTNAMELEN) {
-				had_error++;
-				continue;
-			}
-			strcpy(bp, tbuf);
-			pvt->host.h_name = bp;
-			bp += n;
-			buflen -= n;
-			continue;
-		}
-		if (qtype == T_PTR && type == T_CNAME) {
-			n = dn_expand(ansbuf, eom, cp, tbuf, sizeof tbuf);
-			if (n < 0 || !maybe_dnok(pvt->res, tbuf)) {
-				had_error++;
-				continue;
-			}
-			cp += n;
-			/* Get canonical name. */
-			n = strlen(tbuf) + 1;	/* for the \0 */
-			if (n > buflen) {
-				had_error++;
-				continue;
-			}
-			strcpy(bp, tbuf);
-			tname = bp;
-			bp += n;
-			buflen -= n;
-			continue;
-		}
-		if (type != qtype) {
-			cp += n;
-			continue;
-		}
-		switch (type) {
-		case T_PTR:
-			if (ns_samename(tname, bp) != 1) {
-				cp += n;
-				continue;
-			}
-			n = dn_expand(ansbuf, eom, cp, bp, buflen);
-			if (n < 0 || !maybe_hnok(pvt->res, bp) ||
-			    n >= MAXHOSTNAMELEN) {
-				had_error++;
-				break;
-			}
-			cp += n;
-			if (!haveanswer)
-				pvt->host.h_name = bp;
-			else if (ap < &pvt->host_aliases[MAXALIASES-1])
-				*ap++ = bp;
-			else
-				n = -1;
-			if (n != -1) {
-				n = strlen(bp) + 1;	/* for the \0 */
-				bp += n;
-				buflen -= n;
-			}
-			break;
-		case T_A:
-		case T_AAAA:
-			if (ns_samename(pvt->host.h_name, bp) != 1) {
-				cp += n;
-				continue;
-			}
-			if (n != pvt->host.h_length) {
-				cp += n;
-				continue;
-			}
-			if (!haveanswer) {
-				int nn;
-
-				nn = strlen(bp) + 1;	/* for the \0 */
-				if (nn >= MAXHOSTNAMELEN) {
-					cp += n;
-					had_error++;
-					continue;
-				}
-				pvt->host.h_name = bp;
-				bp += nn;
-				buflen -= nn;
-			}
-			/* Ensure alignment. */
-			bp += sizeof(align) - ((u_long)bp % sizeof(align));
-			/* Avoid overflows. */
-			if (bp + n >= &pvt->hostbuf[sizeof pvt->hostbuf]) {
-				had_error++;
-				continue;
-			}
-			if (hap >= &pvt->h_addr_ptrs[MAXADDRS-1]) {
-				cp += n;
-				continue;
-			}
-			/* Suppress duplicates. */
-			for (tap = (const char **)pvt->h_addr_ptrs;
-			     *tap != NULL;
-			     tap++)
-				if (memcmp(*tap, cp, n) == 0)
-					break;
-			if (*tap != NULL) {
-				cp += n;
-				continue;
-			}
-			/* Store address. */
-			memcpy(*hap++ = bp, cp, n);
-			*hap = NULL;
-			bp += n;
-			cp += n;
-			break;
-		default:
-			abort();
-		}
-		if (!had_error)
-			haveanswer++;
-	}
-	if (haveanswer) {
-		*ap = NULL;
-
-		if (pvt->res->nsort && haveanswer > 1 && qtype == T_A)
-			addrsort(pvt->res, pvt->h_addr_ptrs, haveanswer);
-		if (!pvt->host.h_name) {
-			n = strlen(qname) + 1;	/* for the \0 */
-			if (n > buflen || n >= MAXHOSTNAMELEN)
-				goto no_recovery;
-			strcpy(bp, qname);
-			pvt->host.h_name = bp;
-			bp += n;
-			buflen -= n;
-		}
-		if (pvt->res->options & RES_USE_INET6)
-			map_v4v6_hostent(&pvt->host, &bp, &buflen);
-		RES_SET_H_ERRNO(pvt->res, NETDB_SUCCESS);
-		return (&pvt->host);
-	}
- no_recovery:
-	RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-	return (NULL);
-}
-
-static void
-map_v4v6_hostent(struct hostent *hp, char **bpp, int *lenp) {
-	char **ap;
-
-	if (hp->h_addrtype != AF_INET || hp->h_length != INADDRSZ)
-		return;
-	hp->h_addrtype = AF_INET6;
-	hp->h_length = IN6ADDRSZ;
-	for (ap = hp->h_addr_list; *ap; ap++) {
-		int i = sizeof(align) - ((u_long)*bpp % sizeof(align));
-
-		if (*lenp < (i + IN6ADDRSZ)) {
-			/* Out of memory.  Truncate address list here. */
-			*ap = NULL;
-			return;
-		}
-		*bpp += i;
-		*lenp -= i;
-		map_v4v6_address(*ap, *bpp);
-		*ap = *bpp;
-		*bpp += IN6ADDRSZ;
-		*lenp -= IN6ADDRSZ;
-	}
-}
-
-static void
-addrsort(res_state statp, char **ap, int num) {
-	int i, j, needsort = 0, aval[MAXADDRS];
-	char **p;
-
-	p = ap;
-	for (i = 0; i < num; i++, p++) {
-		for (j = 0 ; (unsigned)j < statp->nsort; j++)
-			if (statp->sort_list[j].addr.s_addr == 
-			    (((struct in_addr *)(*p))->s_addr &
-			     statp->sort_list[j].mask))
-				break;
-		aval[i] = j;
-		if (needsort == 0 && i > 0 && j < aval[i-1])
-			needsort = i;
-	}
-	if (!needsort)
-		return;
-
-	while (needsort < num) {
-		for (j = needsort - 1; j >= 0; j--) {
-			if (aval[j] > aval[j+1]) {
-				char *hp;
-
-				i = aval[j];
-				aval[j] = aval[j+1];
-				aval[j+1] = i;
-
-				hp = ap[j];
-				ap[j] = ap[j+1];
-				ap[j+1] = hp;
-
-			} else
-				break;
-		}
-		needsort++;
-	}
-}
-
-static int
-init(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !ho_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
diff --git a/contrib/bind/lib/irs/dns_nw.c b/contrib/bind/lib/irs/dns_nw.c
deleted file mode 100644
index 66ef66489444b..0000000000000
--- a/contrib/bind/lib/irs/dns_nw.c
+++ /dev/null
@@ -1,560 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns_nw.c,v 1.19 1999/10/15 19:49:10 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports. */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "dns_p.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) sprintf x
-#endif
-
-/* Definitions. */
-
-#define	MAXALIASES	35
-
-#if PACKETSZ > 1024
-#define	MAXPACKET	PACKETSZ
-#else
-#define	MAXPACKET	1024
-#endif
-
-struct pvt {
-	struct nwent	net;
-	char *		ali[MAXALIASES];
-	char		buf[BUFSIZ+1];
-	struct __res_state * res;
-	void		(*free_res)(void *);
-};
-
-typedef union {
-	long	al;
-	char	ac;
-} align;
-
-enum by_what { by_addr, by_name };
-
-/* Forwards. */
-
-static void		nw_close(struct irs_nw *);
-static struct nwent *	nw_byname(struct irs_nw *, const char *, int);
-static struct nwent *	nw_byaddr(struct irs_nw *, void *, int, int);
-static struct nwent *	nw_next(struct irs_nw *);
-static void		nw_rewind(struct irs_nw *);
-static void		nw_minimize(struct irs_nw *);
-static struct __res_state * nw_res_get(struct irs_nw *this);
-static void		nw_res_set(struct irs_nw *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static struct nwent *	get1101byaddr(struct irs_nw *, u_char *, int);
-static struct nwent *	get1101byname(struct irs_nw *, const char *);
-static struct nwent *	get1101answer(struct irs_nw *,
-				      u_char *ansbuf, int anslen,
-				      enum by_what by_what,
-				      int af, const char *name,
-				      const u_char *addr, int addrlen);
-static struct nwent *	get1101mask(struct irs_nw *this, struct nwent *);
-static int		make1101inaddr(const u_char *, int, char *, int);
-static void		normalize_name(char *name);
-static int		init(struct irs_nw *this);
-
-/* Exports. */
-
-struct irs_nw *
-irs_dns_nw(struct irs_acc *this) {
-	struct irs_nw *nw;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(nw = memget(sizeof *nw))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(nw, 0x5e, sizeof *nw);
-	nw->private = pvt;
-	nw->close = nw_close;
-	nw->byname = nw_byname;
-	nw->byaddr = nw_byaddr;
-	nw->next = nw_next;
-	nw->rewind = nw_rewind;
-	nw->minimize = nw_minimize;
-	nw->res_get = nw_res_get;
-	nw->res_set = nw_res_set;
-	return (nw);
-}
-
-/* Methods. */
-
-static void
-nw_close(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	nw_minimize(this);
-
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct nwent *
-nw_byname(struct irs_nw *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	switch (af) {
-	case AF_INET:
-		return (get1101byname(this, name));
-	default:
-		(void)NULL;
-	}
-	RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-	errno = EAFNOSUPPORT;
-	return (NULL);
-}
-
-static struct nwent *
-nw_byaddr(struct irs_nw *this, void *net, int len, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	switch (af) {
-	case AF_INET:
-		return (get1101byaddr(this, net, len));
-	default:
-		(void)NULL;
-	}
-	RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-	errno = EAFNOSUPPORT;
-	return (NULL);
-}
-
-static struct nwent *
-nw_next(struct irs_nw *this) {
-	return (NULL);
-}
-
-static void
-nw_rewind(struct irs_nw *this) {
-	/* NOOP */
-}
-
-static void
-nw_minimize(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-}
-
-static struct __res_state *
-nw_res_get(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		nw_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-nw_res_set(struct irs_nw *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-}
-
-/* Private. */
-
-static struct nwent *
-get1101byname(struct irs_nw *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	u_char ansbuf[MAXPACKET];
-	int anslen;
-
-	anslen = res_nsearch(pvt->res, name, C_IN, T_PTR,
-			     ansbuf, sizeof ansbuf);
-	if (anslen < 0)
-		return (NULL);
-	return (get1101mask(this, get1101answer(this, ansbuf, anslen, by_name,
-						AF_INET, name, NULL, 0)));
-}
-
-static struct nwent *
-get1101byaddr(struct irs_nw *this, u_char *net, int len) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char qbuf[sizeof "255.255.255.255.in-addr.arpa"];
-	u_char ansbuf[MAXPACKET];
-	int anslen;
-
-	if (len < 1 || len > 32) {
-		errno = EINVAL;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	if (make1101inaddr(net, len, qbuf, sizeof qbuf) < 0)
-		return (NULL);
-	anslen = res_nquery(pvt->res, qbuf, C_IN, T_PTR,
-			    ansbuf, sizeof ansbuf);
-	if (anslen < 0)
-		return (NULL);
-	return (get1101mask(this, get1101answer(this, ansbuf, anslen, by_addr,
-						AF_INET, NULL, net, len)));
-}
-
-static struct nwent *
-get1101answer(struct irs_nw *this,
-	      u_char *ansbuf, int anslen, enum by_what by_what,
-	      int af, const char *name, const u_char *addr, int addrlen)
-{
-	struct pvt *pvt = (struct pvt *)this->private;
-	int type, class, buflen, ancount, qdcount, haveanswer;
-	char *bp, **ap;
-	u_char *cp, *eom;
-	HEADER *hp;
-
-	/* Initialize, and parse header. */
-	eom = ansbuf + anslen;
-	if (ansbuf + HFIXEDSZ > eom) {
-		RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-		return (NULL);
-	}
-	hp = (HEADER *)ansbuf;
-	cp = ansbuf + HFIXEDSZ;
-	qdcount = ntohs(hp->qdcount);
-	while (qdcount-- > 0) {
-		int n = dn_skipname(cp, eom);
-		cp += n + QFIXEDSZ;
-		if (n < 0 || cp > eom) {
-			RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-			return (NULL);
-		}
-	}
-	ancount = ntohs(hp->ancount);
-	if (!ancount) {
-		if (hp->aa)
-			RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		else
-			RES_SET_H_ERRNO(pvt->res, TRY_AGAIN);
-		return (NULL);
-	}
-
-	/* Prepare a return structure. */
-	bp = pvt->buf;
-	buflen = sizeof pvt->buf;
-	pvt->net.n_name = NULL;
-	pvt->net.n_aliases = pvt->ali;
-	pvt->net.n_addrtype = af;
-	pvt->net.n_addr = NULL;
-	pvt->net.n_length = addrlen;
-
-	/* Save input key if given. */
-	switch (by_what) {
-	case by_name:
-		if (name != NULL) {
-			int n = strlen(name) + 1;
-
-			if (n > buflen) {
-				RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-				return (NULL);
-			}
-			pvt->net.n_name = strcpy(bp, name);
-			bp += n;
-			buflen -= n;
-		}
-		break;
-	case by_addr:
-		if (addr != NULL && addrlen != 0) {
-			int n = addrlen / 8 + ((addrlen % 8) != 0);
-
-			if (INADDRSZ > buflen) {
-				RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-				return (NULL);
-			}
-			memset(bp, 0, INADDRSZ);
-			memcpy(bp, addr, n);
-			pvt->net.n_addr = bp;
-			bp += INADDRSZ;
-			buflen -= INADDRSZ;
-		}
-		break;
-	default:
-		abort();
-	}
-
-	/* Parse the answer, collect aliases. */
-	ap = pvt->ali;
-	haveanswer = 0;
-	while (--ancount >= 0 && cp < eom) {
-		int n = dn_expand(ansbuf, eom, cp, bp, buflen);
-
-		cp += n;		/* Owner */
-		if (n < 0 || !maybe_dnok(pvt->res, bp) ||
-		    cp + 3 * INT16SZ + INT32SZ > eom) {
-			RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-			return (NULL);
-		}
-		GETSHORT(type, cp);	/* Type */
-		GETSHORT(class, cp);	/* Class */
-		cp += INT32SZ;		/* TTL */
-		GETSHORT(n, cp);	/* RDLENGTH */
-		if (class == C_IN && type == T_PTR) {
-			int nn;
-
-			nn = dn_expand(ansbuf, eom, cp, bp, buflen);
-			if (nn < 0 || !maybe_hnok(pvt->res, bp) || nn != n) {
-				RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-				return (NULL);
-			}
-			normalize_name(bp);
-			switch (by_what) {
-			case by_addr: {
-				if (pvt->net.n_name == NULL)
-					pvt->net.n_name = bp;
-				else if (ns_samename(pvt->net.n_name, bp) == 1)
-					break;
-				else
-					*ap++ = bp;
-				nn = strlen(bp) + 1;
-				bp += nn;
-				buflen -= nn;
-				haveanswer++;
-				break;
-			    }
-			case by_name: {
-				u_int b1, b2, b3, b4;
-
-				if (pvt->net.n_addr != NULL ||
-				    sscanf(bp, "%u.%u.%u.%u.in-addr.arpa",
-					   &b1, &b2, &b3, &b4) != 4)
-					break;
-				if (buflen < INADDRSZ) {
-					RES_SET_H_ERRNO(pvt->res, NO_RECOVERY);
-					return (NULL);
-				}
-				pvt->net.n_addr = bp;
-				*bp++ = b4;
-				*bp++ = b3;
-				*bp++ = b2;
-				*bp++ = b1;
-				buflen -= INADDRSZ;
-				pvt->net.n_length = INADDRSZ * 8;
-				haveanswer++;
-			    }
-			}
-		}
-		cp += n;		/* RDATA */
-	}
-	if (!haveanswer) {
-		RES_SET_H_ERRNO(pvt->res, TRY_AGAIN);
-		return (NULL);
-	}
-	*ap = NULL;
-
-	return (&pvt->net);
-}
-
-static struct nwent *
-get1101mask(struct irs_nw *this, struct nwent *nwent) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char qbuf[sizeof "255.255.255.255.in-addr.arpa"], owner[MAXDNAME];
-	int anslen, type, class, ancount, qdcount;
-	u_char ansbuf[MAXPACKET], *cp, *eom;
-	HEADER *hp;
-
-	if (!nwent)
-		return (NULL);
-	if (make1101inaddr(nwent->n_addr, nwent->n_length, qbuf, sizeof qbuf)
-	    < 0) {
-		/* "First, do no harm." */
-		return (nwent);
-	}
-
-	/* Query for the A RR that would hold this network's mask. */
-	anslen = res_nquery(pvt->res, qbuf, C_IN, T_A, ansbuf, sizeof ansbuf);
-	if (anslen < HFIXEDSZ)
-		return (nwent);
-
-	/* Initialize, and parse header. */
-	hp = (HEADER *)ansbuf;
-	cp = ansbuf + HFIXEDSZ;
-	eom = ansbuf + anslen;
-	qdcount = ntohs(hp->qdcount);
-	while (qdcount-- > 0) {
-		int n = dn_skipname(cp, eom);
-		cp += n + QFIXEDSZ;
-		if (n < 0 || cp > eom)
-			return (nwent);
-	}
-	ancount = ntohs(hp->ancount);
-
-	/* Parse the answer, collect aliases. */
-	while (--ancount >= 0 && cp < eom) {
-		int n = dn_expand(ansbuf, eom, cp, owner, sizeof owner);
-
-		if (n < 0 || !maybe_dnok(pvt->res, owner))
-			break;
-		cp += n;		/* Owner */
-		if (cp + 3 * INT16SZ + INT32SZ > eom)
-			break;
-		GETSHORT(type, cp);	/* Type */
-		GETSHORT(class, cp);	/* Class */
-		cp += INT32SZ;		/* TTL */
-		GETSHORT(n, cp);	/* RDLENGTH */
-		if (cp + n > eom)
-			break;
-		if (n == INADDRSZ && class == C_IN && type == T_A &&
-		    ns_samename(qbuf, owner) == 1) {
-			/* This A RR indicates the actual netmask. */
-			int nn, mm;
-
-			nwent->n_length = 0;
-			for (nn = 0; nn < INADDRSZ; nn++)
-				for (mm = 7; mm >= 0; mm--)
-					if (cp[nn] & (1 << mm))
-						nwent->n_length++;
-					else
-						break;
-		}
-		cp += n;		/* RDATA */
-	}
-	return (nwent);
-}
-
-static int
-make1101inaddr(const u_char *net, int bits, char *name, int size) {
-	int n, m;
-
-	/* Zero fill any whole bytes left out of the prefix. */
-	for (n = (32 - bits) / 8; n > 0; n--) {
-		if (size < (int)(sizeof "0."))
-			goto emsgsize;
-		m = SPRINTF((name, "0."));
-		name += m;
-		size -= m;
-	}
-
-	/* Format the partial byte, if any, within the prefix. */
-	if ((n = bits % 8) != 0) {
-		if (size < (int)(sizeof "255."))
-			goto emsgsize;
-		m = SPRINTF((name, "%u.",
-			     net[bits / 8] & ~((1 << (8 - n)) - 1)));
-		name += m;
-		size -= m;
-	}
-
-	/* Format the whole bytes within the prefix. */
-	for (n = bits / 8; n > 0; n--) {
-		if (size < (int)(sizeof "255."))
-			goto emsgsize;
-		m = SPRINTF((name, "%u.", net[n - 1]));
-		name += m;
-		size -= m;
-	}
-
-	/* Add the static text. */
-	if (size < (int)(sizeof "in-addr.arpa"))
-		goto emsgsize;
-	(void) SPRINTF((name, "in-addr.arpa"));
-	return (0);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (-1);
-}
-
-static void
-normalize_name(char *name) {
-	char *t;
-
-	/* Make lower case. */
-	for (t = name; *t; t++)
-		if (isascii(*t) && isupper(*t))
-			*t = tolower(*t);
-
-	/* Remove trailing dots. */
-	while (t > name && t[-1] == '.')
-		*--t = '\0';
-}
-
-static int
-init(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !nw_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
diff --git a/contrib/bind/lib/irs/dns_p.h b/contrib/bind/lib/irs/dns_p.h
deleted file mode 100644
index 6b5fe11de7852..0000000000000
--- a/contrib/bind/lib/irs/dns_p.h
+++ /dev/null
@@ -1,50 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: dns_p.h,v 1.11 1999/06/03 20:50:36 vixie Exp $
- */
-
-#ifndef _DNS_P_H_INCLUDED
-#define	_DNS_P_H_INCLUDED
-
-#define	maybe_ok(res, nm, ok) (((res)->options & RES_NOCHECKNAME) != 0 || \
-			       (ok)(nm) != 0)
-#define maybe_hnok(res, hn) maybe_ok((res), (hn), res_hnok)
-#define maybe_dnok(res, dn) maybe_ok((res), (dn), res_dnok)
-
-/*
- * Object state.
- */
-struct dns_p {
-	void			*hes_ctx;
-	struct __res_state	*res;
-	void                    (*free_res) __P((void *));
-};
-
-/*
- * Methods.
- */
-
-extern struct irs_gr *	irs_dns_gr __P((struct irs_acc *));
-extern struct irs_pw *	irs_dns_pw __P((struct irs_acc *));
-extern struct irs_sv *	irs_dns_sv __P((struct irs_acc *));
-extern struct irs_pr *	irs_dns_pr __P((struct irs_acc *));
-extern struct irs_ho *	irs_dns_ho __P((struct irs_acc *));
-extern struct irs_nw *	irs_dns_nw __P((struct irs_acc *));
-
-#endif /*_DNS_P_H_INCLUDED*/
diff --git a/contrib/bind/lib/irs/dns_pr.c b/contrib/bind/lib/irs/dns_pr.c
deleted file mode 100644
index 77c6a93754ef5..0000000000000
--- a/contrib/bind/lib/irs/dns_pr.c
+++ /dev/null
@@ -1,263 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns_pr.c,v 1.14 1999/09/04 22:06:14 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <stdio.h>
-#include <string.h>
-#include <netdb.h>
-#include <ctype.h>
-#include <stdlib.h>
-#include <errno.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "dns_p.h"
-
-/* Types. */
-
-struct pvt {
-	struct dns_p *		dns;
-	struct protoent		proto;
-	char *			prbuf;
-};
-
-/* Forward. */
-
-static void 			pr_close(struct irs_pr *);
-static struct protoent *	pr_byname(struct irs_pr *, const char *);
-static struct protoent *	pr_bynumber(struct irs_pr *, int);
-static struct protoent *	pr_next(struct irs_pr *);
-static void			pr_rewind(struct irs_pr *);
-static void			pr_minimize(struct irs_pr *);
-static struct __res_state *	pr_res_get(struct irs_pr *);
-static void			pr_res_set(struct irs_pr *,
-					   struct __res_state *,
-					   void (*)(void *));
-
-static struct protoent *	parse_hes_list(struct irs_pr *, char **);
-
-/* Public. */
-
-struct irs_pr *
-irs_dns_pr(struct irs_acc *this) {
-	struct dns_p *dns = (struct dns_p *)this->private;
-	struct pvt *pvt;
-	struct irs_pr *pr;
-
-	if (!dns->hes_ctx) {
-		errno = ENODEV;
-		return (NULL);
-	}
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(pr = memget(sizeof *pr))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pr, 0x5e, sizeof *pr);
-	pvt->dns = dns;
-	pr->private = pvt;
-	pr->byname = pr_byname;
-	pr->bynumber = pr_bynumber;
-	pr->next = pr_next;
-	pr->rewind = pr_rewind;
-	pr->close = pr_close;
-	pr->minimize = pr_minimize;
-	pr->res_get = pr_res_get;
-	pr->res_set = pr_res_set;
-	return (pr);
-}
-
-/* Methods. */
-
-static void
-pr_close(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->proto.p_aliases)
-		free(pvt->proto.p_aliases);
-	if (pvt->prbuf)
-		free(pvt->prbuf);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct protoent *
-pr_byname(struct irs_pr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-	struct protoent *proto;
-	char **hes_list;
-
-	if (!(hes_list = hesiod_resolve(dns->hes_ctx, name, "protocol")))
-		return (NULL);
-
-	proto = parse_hes_list(this, hes_list);
-	hesiod_free_list(dns->hes_ctx, hes_list);
-	return (proto);
-}
-
-static struct protoent *
-pr_bynumber(struct irs_pr *this, int num) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-	struct protoent *proto;
-	char numstr[16];
-	char **hes_list;
-
-	sprintf(numstr, "%d", num);
-	if (!(hes_list = hesiod_resolve(dns->hes_ctx, numstr, "protonum")))
-		return (NULL);
-	
-	proto = parse_hes_list(this, hes_list);
-	hesiod_free_list(dns->hes_ctx, hes_list);
-	return (proto);
-}
-
-static struct protoent *
-pr_next(struct irs_pr *this) {
-	errno = ENODEV;
-	return (NULL);
-}
-
-static void
-pr_rewind(struct irs_pr *this) {
-	/* NOOP */
-}
-
-static void
-pr_minimize(struct irs_pr *this) {
-	/* NOOP */
-}
-
-static struct __res_state *
-pr_res_get(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	return (__hesiod_res_get(dns->hes_ctx));
-}
-
-static void
-pr_res_set(struct irs_pr *this, struct __res_state * res,
-	   void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	__hesiod_res_set(dns->hes_ctx, res, free_res);
-}
-
-/* Private. */
-
-static struct protoent *
-parse_hes_list(struct irs_pr *this, char **hes_list) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *p, *cp, **cpp, **new;
-	int num = 0;
-	int max = 0;
-	
-	for (cpp = hes_list; *cpp; cpp++) {
-		cp = *cpp;
-
-		/* Strip away comments, if any. */
-		if ((p = strchr(cp, '#')))
-			*p = 0;
-
-		/* Skip blank lines. */
-		p = cp;
-		while (*p && !isspace(*p))
-			p++;
-		if (!*p)
-			continue;
-
-		/* OK, we've got a live one.  Let's parse it for real. */
-		if (pvt->prbuf)
-			free(pvt->prbuf);
-		pvt->prbuf = strdup(cp);
-
-		p = pvt->prbuf;
-		pvt->proto.p_name = p;
-		while (*p && !isspace(*p))
-			p++;
-		if (!*p)
-			continue;
-		*p++ = '\0';
-
-		pvt->proto.p_proto = atoi(p);
-		while (*p && !isspace(*p))
-			p++;
-		if (*p)
-			*p++ = '\0';
-
-		while (*p) {
-			if ((num + 1) >= max || !pvt->proto.p_aliases) {
-				max += 10;
-				new = realloc(pvt->proto.p_aliases,
-					      max * sizeof(char *));
-				if (!new) {
-					errno = ENOMEM;
-					goto cleanup;
-				}
-				pvt->proto.p_aliases = new;
-			}
-			pvt->proto.p_aliases[num++] = p;
-			while (*p && !isspace(*p))
-				p++;
-			if (*p)
-				*p++ = '\0';
-		}
-		if (!pvt->proto.p_aliases)
-			pvt->proto.p_aliases = malloc(sizeof(char *));
-		if (!pvt->proto.p_aliases)
-			goto cleanup;
-		pvt->proto.p_aliases[num] = NULL;
-		return (&pvt->proto);
-	}
-	
- cleanup:
-	if (pvt->proto.p_aliases) {
-		free(pvt->proto.p_aliases);
-		pvt->proto.p_aliases = NULL;
-	}
-	if (pvt->prbuf) {
-		free(pvt->prbuf);
-		pvt->prbuf = NULL;
-	}
-	return (NULL);
-}
diff --git a/contrib/bind/lib/irs/dns_pw.c b/contrib/bind/lib/irs/dns_pw.c
deleted file mode 100644
index 5344c6e39b5da..0000000000000
--- a/contrib/bind/lib/irs/dns_pw.c
+++ /dev/null
@@ -1,228 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns_pw.c,v 1.18 1999/09/04 22:06:14 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_PW
-static int __bind_irs_pw_unneeded;
-#else
-
-#include <stdio.h>
-#include <stdlib.h>
-#include <errno.h>
-#include <string.h>
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "dns_p.h"
-
-/* Types. */
-
-struct pvt {
-	struct dns_p *	dns;
-	struct passwd	passwd;
-	char *		pwbuf;
-};
-
-/* Forward. */
-
-static void 			pw_close(struct irs_pw *);
-static struct passwd *		pw_byname(struct irs_pw *, const char *);
-static struct passwd *		pw_byuid(struct irs_pw *, uid_t);
-static struct passwd *		pw_next(struct irs_pw *);
-static void 			pw_rewind(struct irs_pw *);
-static void			pw_minimize(struct irs_pw *);
-static struct __res_state *	pw_res_get(struct irs_pw *);
-static void			pw_res_set(struct irs_pw *,
-					   struct __res_state *,
-					   void (*)(void *));
-
-static struct passwd *		getpwcommon(struct irs_pw *, const char *,
-					    const char *);
-
-/* Public. */
-
-struct irs_pw *
-irs_dns_pw(struct irs_acc *this) {
-	struct dns_p *dns = (struct dns_p *)this->private;
-	struct irs_pw *pw;
-	struct pvt *pvt;
-
-	if (!dns || !dns->hes_ctx) {
-		errno = ENODEV;
-		return (NULL);
-	}
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->dns = dns;
-	if (!(pw = memget(sizeof *pw))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pw, 0x5e, sizeof *pw);
-	pw->private = pvt;
-	pw->close = pw_close;
-	pw->byname = pw_byname;
-	pw->byuid = pw_byuid;
-	pw->next = pw_next;
-	pw->rewind = pw_rewind;
-	pw->minimize = pw_minimize;
-	pw->res_get = pw_res_get;
-	pw->res_set = pw_res_set;
-	return (pw);
-}
-
-/* Methods. */
-
-static void
-pw_close(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->pwbuf)
-		free(pvt->pwbuf);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct passwd *
-pw_byname(struct irs_pw *this, const char *nam) {
-	return (getpwcommon(this, nam, "passwd"));
-}
-
-static struct passwd *
-pw_byuid(struct irs_pw *this, uid_t uid) {
-	char uidstr[16];
-
-	sprintf(uidstr, "%lu", (u_long)uid);
-	return (getpwcommon(this, uidstr, "uid"));
-}
-
-static struct passwd *
-pw_next(struct irs_pw *this) {
-	errno = ENODEV;
-	return (NULL);
-}
-
-static void
-pw_rewind(struct irs_pw *this) {
-	/* NOOP */
-}
-
-static void
-pw_minimize(struct irs_pw *this) {
-	/* NOOP */
-}
-
-static struct __res_state *
-pw_res_get(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	return (__hesiod_res_get(dns->hes_ctx));
-}
-
-static void
-pw_res_set(struct irs_pw *this, struct __res_state * res,
-	   void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	__hesiod_res_set(dns->hes_ctx, res, free_res);
-}
-
-/* Private. */
-
-static struct passwd *
-getpwcommon(struct irs_pw *this, const char *arg, const char *type) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char **hes_list, *cp;
-
-	if (!(hes_list = hesiod_resolve(pvt->dns->hes_ctx, arg, type)))
-		return (NULL);
-	if (!*hes_list) {
-		hesiod_free_list(pvt->dns->hes_ctx, hes_list);
-		errno = ENOENT;
-		return (NULL);
-	}
-
-	memset(&pvt->passwd, 0, sizeof pvt->passwd);
-	if (pvt->pwbuf)
-		free(pvt->pwbuf);
-	pvt->pwbuf = strdup(*hes_list);
-	hesiod_free_list(pvt->dns->hes_ctx, hes_list);
-
-	cp = pvt->pwbuf;
-	pvt->passwd.pw_name = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_passwd = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-	
-	pvt->passwd.pw_uid = atoi(cp);
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_gid = atoi(cp);
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_gecos = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_dir = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_shell = cp;
-	return (&pvt->passwd);
-	
- cleanup:
-	free(pvt->pwbuf);
-	pvt->pwbuf = NULL;
-	return (NULL);
-}
-
-#endif /* WANT_IRS_PW */
diff --git a/contrib/bind/lib/irs/dns_sv.c b/contrib/bind/lib/irs/dns_sv.c
deleted file mode 100644
index e6cb2df3b2aa4..0000000000000
--- a/contrib/bind/lib/irs/dns_sv.c
+++ /dev/null
@@ -1,286 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: dns_sv.c,v 1.19 2000/03/30 22:53:56 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-
-#include <stdio.h>
-#include <string.h>
-#include <netdb.h>
-#include <ctype.h>
-#include <stdlib.h>
-#include <errno.h>
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "dns_p.h"
-
-/* Definitions */
-
-struct pvt {
-	struct dns_p *		dns;
-	struct servent		serv;
-	char *			svbuf;
-	struct __res_state *	res;
-	void			(*free_res)(void *);
-};
-
-/* Forward. */
-
-static void 			sv_close(struct irs_sv *);
-static struct servent *		sv_byname(struct irs_sv *,
-					  const char *, const char *);
-static struct servent *		sv_byport(struct irs_sv *, int, const char *);
-static struct servent *		sv_next(struct irs_sv *);
-static void			sv_rewind(struct irs_sv *);
-static void			sv_minimize(struct irs_sv *);
-static struct __res_state *	sv_res_get(struct irs_sv *);
-static void			sv_res_set(struct irs_sv *,
-					   struct __res_state *,
-					   void (*)(void *));
-
-static struct servent *		parse_hes_list(struct irs_sv *,
-					       char **, const char *);
-
-/* Public */
-
-struct irs_sv *
-irs_dns_sv(struct irs_acc *this) {
-	struct dns_p *dns = (struct dns_p *)this->private;
-	struct irs_sv *sv;
-	struct pvt *pvt;
-
-	if (!dns || !dns->hes_ctx) {
-		errno = ENODEV;
-		return (NULL);
-	}
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->dns = dns;
-	if (!(sv = memget(sizeof *sv))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(sv, 0x5e, sizeof *sv);
-	sv->private = pvt;
-	sv->byname = sv_byname;
-	sv->byport = sv_byport;
-	sv->next = sv_next;
-	sv->rewind = sv_rewind;
-	sv->close = sv_close;
-	sv->minimize = sv_minimize;
-	sv->res_get = NULL; /* sv_res_get; */
-	sv->res_set = NULL; /* sv_res_set; */
-	return (sv);
-}
-
-/* Methods */
-
-static void
-sv_close(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->serv.s_aliases)
-		free(pvt->serv.s_aliases);
-	if (pvt->svbuf)
-		free(pvt->svbuf);
-
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct servent *
-sv_byname(struct irs_sv *this, const char *name, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-	struct servent *s;
-	char **hes_list;
-
-	if (!(hes_list = hesiod_resolve(dns->hes_ctx, name, "service")))
-		return (NULL);
-
-	s = parse_hes_list(this, hes_list, proto);
-	hesiod_free_list(dns->hes_ctx, hes_list);
-	return (s);
-}
-
-static struct servent *
-sv_byport(struct irs_sv *this, int port, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-	struct servent *s;
-	char portstr[16];
-	char **hes_list;
-
-	sprintf(portstr, "%d", ntohs(port));
-	if (!(hes_list = hesiod_resolve(dns->hes_ctx, portstr, "port")))
-		return (NULL);
-	
-	s = parse_hes_list(this, hes_list, proto);
-	hesiod_free_list(dns->hes_ctx, hes_list);
-	return (s);
-}
-
-static struct servent *
-sv_next(struct irs_sv *this) {
-	errno = ENODEV;
-	return (NULL);
-}
-
-static void
-sv_rewind(struct irs_sv *this) {
-	/* NOOP */
-}
-
-/* Private */
-
-static struct servent *
-parse_hes_list(struct irs_sv *this, char **hes_list, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *p, *cp, **cpp, **new;
-	int proto_len;
-	int num = 0;
-	int max = 0;
-	
-	for (cpp = hes_list; *cpp; cpp++) {
-		cp = *cpp;
-
-		/* Strip away comments, if any. */
-		if ((p = strchr(cp, '#')))
-			*p = 0;
-
-		/* Check to make sure the protocol matches. */
-		p = cp;
-		while (*p && !isspace(*p))
-			p++;
-		if (!*p)
-			continue;
-		if (proto) {
-		     proto_len = strlen(proto);
-		     if (strncasecmp(++p, proto, proto_len) != 0)
-			  continue;
-		     if (p[proto_len] && !isspace(p[proto_len]))
-			  continue;
-		}
-		/* OK, we've got a live one.  Let's parse it for real. */
-		if (pvt->svbuf)
-			free(pvt->svbuf);
-		pvt->svbuf = strdup(cp);
-
-		p = pvt->svbuf;
-		pvt->serv.s_name = p;
-		while (*p && !isspace(*p))
-			p++;
-		if (!*p)
-			continue;
-		*p++ = '\0';
-
-		pvt->serv.s_proto = p;
-		while (*p && !isspace(*p))
-			p++;
-		if (!*p)
-			continue;
-		*p++ = '\0';
-
-		pvt->serv.s_port = htons((u_short) atoi(p));
-		while (*p && !isspace(*p))
-			p++;
-		if (*p)
-			*p++ = '\0';
-
-		while (*p) {
-			if ((num + 1) >= max || !pvt->serv.s_aliases) {
-				max += 10;
-				new = realloc(pvt->serv.s_aliases,
-					      max * sizeof(char *));
-				if (!new) {
-					errno = ENOMEM;
-					goto cleanup;
-				}
-				pvt->serv.s_aliases = new;
-			}
-			pvt->serv.s_aliases[num++] = p;
-			while (*p && !isspace(*p))
-				p++;
-			if (*p)
-				*p++ = '\0';
-		}
-		if (!pvt->serv.s_aliases)
-			pvt->serv.s_aliases = malloc(sizeof(char *));
-		if (!pvt->serv.s_aliases)
-			goto cleanup;
-		pvt->serv.s_aliases[num] = NULL;
-		return (&pvt->serv);
-	}
-	
- cleanup:
-	if (pvt->serv.s_aliases) {
-		free(pvt->serv.s_aliases);
-		pvt->serv.s_aliases = NULL;
-	}
-	if (pvt->svbuf) {
-		free(pvt->svbuf);
-		pvt->svbuf = NULL;
-	}
-	return (NULL);
-}
-
-static void
-sv_minimize(struct irs_sv *this) {
-	/* NOOP */
-}
-
-static struct __res_state *
-sv_res_get(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	return (__hesiod_res_get(dns->hes_ctx));
-}
-
-static void
-sv_res_set(struct irs_sv *this, struct __res_state * res,
-	   void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct dns_p *dns = pvt->dns;
-
-	__hesiod_res_set(dns->hes_ctx, res, free_res);
-}
diff --git a/contrib/bind/lib/irs/gai_strerror.c b/contrib/bind/lib/irs/gai_strerror.c
deleted file mode 100644
index f56c6f544a713..0000000000000
--- a/contrib/bind/lib/irs/gai_strerror.c
+++ /dev/null
@@ -1,45 +0,0 @@
-/*
-%%% copyright-cmetz-97
-This software is Copyright 1997-1998 by Craig Metz, All Rights Reserved.
-The Inner Net License Version 2 applies to this software.
-You should have received a copy of the license with this software. If
-you didn't get a copy, you may request one from <license@inner.net>.
-
-*/
-
-#include <port_before.h>
-#include <netdb.h>
-#include <errno.h>
-#include <port_after.h>
-
-char *
-gai_strerror(int errnum) {
-	switch(errnum) {
-	case 0:
-		return "no error";
-	case EAI_BADFLAGS:
-		return "invalid value for ai_flags";
-	case EAI_NONAME:
-		return "name or service is not known";
-	case EAI_AGAIN:
-		return "temporary failure in name resolution";
-	case EAI_FAIL:
-		return "non-recoverable failure in name resolution";
-	case EAI_NODATA:
-		return "no address associated with name";
-	case EAI_FAMILY:
-		return "ai_family not supported";
-	case EAI_SOCKTYPE:
-		return "ai_socktype not supported";
-	case EAI_SERVICE:
-		return "service not supported for ai_socktype";
-	case EAI_ADDRFAMILY:
-		return "address family for name not supported";
-	case EAI_MEMORY:
-		return "memory allocation failure";
-	case EAI_SYSTEM:
-		return "system error";
-	default:
-		return "unknown error";
-	};
-}
diff --git a/contrib/bind/lib/irs/gen.c b/contrib/bind/lib/irs/gen.c
deleted file mode 100644
index fe410881595ed..0000000000000
--- a/contrib/bind/lib/irs/gen.c
+++ /dev/null
@@ -1,427 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen.c,v 1.25 1999/10/13 16:39:29 vixie Exp $";
-#endif
-
-/*
- * this is the top level dispatcher
- *
- * The dispatcher is implemented as an accessor class; it is an
- * accessor class that calls other accessor classes, as controlled by a
- * configuration file.
- * 
- * A big difference between this accessor class and others is that the
- * map class initializers are NULL, and the map classes are already
- * filled in with method functions that will do the right thing.
- */
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <isc/assertions.h>
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <sys/types.h>
-#include <netinet/in.h> 
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Definitions */
-
-struct nameval {
-	const char *	name;
-	int		val;
-};
-
-static const struct nameval acc_names[irs_nacc+1] = {
-	{ "local", irs_lcl },
-	{ "dns", irs_dns },
-	{ "nis", irs_nis },
-	{ "irp", irs_irp },
-	{ NULL, irs_nacc }
-};
-
-typedef struct irs_acc *(*accinit) __P((const char *options));
-
-static const accinit accs[irs_nacc+1] = {
-	irs_lcl_acc,
-	irs_dns_acc,
-#ifdef WANT_IRS_NIS
-	irs_nis_acc,
-#else
-	NULL,
-#endif
-	irs_irp_acc,
-	NULL
-};
-
-static const struct nameval map_names[irs_nmap+1] = {
-	{ "group", irs_gr },
-	{ "passwd", irs_pw },
-	{ "services", irs_sv },
-	{ "protocols", irs_pr },
-	{ "hosts", irs_ho },
-	{ "networks", irs_nw },
-	{ "netgroup", irs_ng },
-	{ NULL, irs_nmap }
-};
-
-static const struct nameval option_names[] = {
-	{ "merge", IRS_MERGE },
-	{ "continue", IRS_CONTINUE },
-	{ NULL, 0 }
-};
-
-/* Forward */
-
-static void		gen_close(struct irs_acc *);
-static struct __res_state * gen_res_get(struct irs_acc *);
-static void		gen_res_set(struct irs_acc *, struct __res_state *,
-				    void (*)(void *));
-static int		find_name(const char *, const struct nameval nv[]);
-static void 		init_map_rules(struct gen_p *, const char *conf_file);
-static struct irs_rule *release_rule(struct irs_rule *);
-static int		add_rule(struct gen_p *,
-				 enum irs_map_id, enum irs_acc_id,
-				 const char *);
-
-/* Public */
-
-struct irs_acc *
-irs_gen_acc(const char *options, const char *conf_file) {
-	struct irs_acc *acc;
-	struct gen_p *irs;
-		
-	if (!(acc = memget(sizeof *acc))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(acc, 0x5e, sizeof *acc);
-	if (!(irs = memget(sizeof *irs))) {
-		errno = ENOMEM;
-		memput(acc, sizeof *acc);
-		return (NULL);
-	}
-	memset(irs, 0x5e, sizeof *irs);
-	irs->options = strdup(options);
-	irs->res = NULL;
-	irs->free_res = NULL;
-	memset(irs->accessors, 0, sizeof irs->accessors);
-	memset(irs->map_rules, 0, sizeof irs->map_rules);
-	init_map_rules(irs, conf_file);
-	acc->private = irs;
-#ifdef WANT_IRS_GR
-	acc->gr_map = irs_gen_gr;
-#else
-	acc->gr_map = NULL;
-#endif
-#ifdef WANT_IRS_PW
-	acc->pw_map = irs_gen_pw;
-#else
-	acc->pw_map = NULL;
-#endif
-	acc->sv_map = irs_gen_sv;
-	acc->pr_map = irs_gen_pr;
-	acc->ho_map = irs_gen_ho;
-	acc->nw_map = irs_gen_nw;
-	acc->ng_map = irs_gen_ng;
-	acc->res_get = gen_res_get;
-	acc->res_set = gen_res_set;
-	acc->close = gen_close;
-	return (acc);
-}
-
-/* Methods */
-
-static struct __res_state *
-gen_res_get(struct irs_acc *this) {
-	struct gen_p *irs = (struct gen_p *)this->private;
-
-	if (irs->res == NULL) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (res == NULL)
-			return (NULL);
-		memset(res, 0, sizeof *res);
-		gen_res_set(this, res, free);
-	}
-
-	if (((irs->res->options & RES_INIT) == 0) && res_ninit(irs->res) < 0)
-		return (NULL);
-
-	return (irs->res);
-}
-
-static void
-gen_res_set(struct irs_acc *this, struct __res_state *res,
-	    void (*free_res)(void *)) {
-	struct gen_p *irs = (struct gen_p *)this->private;
-#if 0
-	struct irs_rule *rule;
-	struct irs_ho *ho;
-	struct irs_nw *nw;
-#endif
-
-	if (irs->res && irs->free_res) {
-		res_nclose(irs->res);
-		(*irs->free_res)(irs->res);
-	}
-
-	irs->res = res;
-	irs->free_res = free_res;
-
-#if 0
-	for (rule = irs->map_rules[irs_ho]; rule; rule = rule->next) {
-                ho = rule->inst->ho;
-
-                (*ho->res_set)(ho, res, NULL);
-	}
-	for (rule = irs->map_rules[irs_nw]; rule; rule = rule->next) {
-                nw = rule->inst->nw;
-
-                (*nw->res_set)(nw, res, NULL);
-	}
-#endif
-}
-
-static void
-gen_close(struct irs_acc *this) {
-	struct gen_p *irs = (struct gen_p *)this->private;
-	int n;
-	
-	/* Search rules. */
-	for (n = 0; n < irs_nmap; n++)
-		while (irs->map_rules[n] != NULL)
-			irs->map_rules[n] = release_rule(irs->map_rules[n]);
-
-	/* Access methods. */
-	for (n = 0; n < irs_nacc; n++) {
-		/* Map objects. */
-		if (irs->accessors[n].gr != NULL)
-			(*irs->accessors[n].gr->close)(irs->accessors[n].gr);
-		if (irs->accessors[n].pw != NULL)
-			(*irs->accessors[n].pw->close)(irs->accessors[n].pw);
-		if (irs->accessors[n].sv != NULL)
-			(*irs->accessors[n].sv->close)(irs->accessors[n].sv);
-		if (irs->accessors[n].pr != NULL)
-			(*irs->accessors[n].pr->close)(irs->accessors[n].pr);
-		if (irs->accessors[n].ho != NULL)
-			(*irs->accessors[n].ho->close)(irs->accessors[n].ho);
-		if (irs->accessors[n].nw != NULL)
-			(*irs->accessors[n].nw->close)(irs->accessors[n].nw);
-		if (irs->accessors[n].ng != NULL)
-			(*irs->accessors[n].ng->close)(irs->accessors[n].ng);
-		/* Enclosing accessor. */
-		if (irs->accessors[n].acc != NULL)
-			(*irs->accessors[n].acc->close)(irs->accessors[n].acc);
-	}
-
-	/* The options string was strdup'd. */
-	free((void*)irs->options);
-
-	if (irs->res && irs->free_res)
-		(*irs->free_res)(irs->res);
-
-	/* The private data container. */
-	memput(irs, sizeof *irs);
-
-	/* The object. */
-	memput(this, sizeof *this);
-}
-
-/* Private */
-
-static int
-find_name(const char *name, const struct nameval names[]) {
-	int n;
-
-	for (n = 0; names[n].name != NULL; n++)
-		if (strcmp(name, names[n].name) == 0)
-			return (names[n].val);
-	return (-1);
-}
-
-static struct irs_rule *
-release_rule(struct irs_rule *rule) {
-	struct irs_rule *next = rule->next;
-
-	memput(rule, sizeof *rule);
-	return (next);
-}
-
-static int
-add_rule(struct gen_p *irs,
-	 enum irs_map_id map, enum irs_acc_id acc,
-	 const char *options)
-{
-	struct irs_rule **rules, *last, *tmp, *new;
-	struct irs_inst *inst;
-	const char *cp;
-	int n;
-
-#ifndef WANT_IRS_GR
-	if (map == irs_gr)
-		return (-1);
-#endif
-#ifndef WANT_IRS_PW
-	if (map == irs_pw)
-		return (-1);
-#endif
-#ifndef WANT_IRS_NIS
-	if (acc == irs_nis)
-		return (-1);
-#endif
-	new = memget(sizeof *new);
-	if (new == NULL)
-		return (-1);
-	memset(new, 0x5e, sizeof *new);
-	new->next = NULL;
-
-	new->inst = &irs->accessors[acc];
-
-	new->flags = 0;
-	cp = options;
-	while (cp && *cp) {
-		char option[50], *next;
-
-		next = strchr(cp, ',');
-		if (next)
-			n = next++ - cp;
-		else
-			n = strlen(cp);
-		if ((size_t)n > sizeof option - 1)
-			n = sizeof option - 1;
-		strncpy(option, cp, n);
-		option[n] = '\0';
-
-		n = find_name(option, option_names);
-		if (n >= 0)
-			new->flags |= n;
-
-		cp = next;
-	}
-
-	rules = &irs->map_rules[map];
-	for (last = NULL, tmp = *rules;
-	     tmp != NULL;
-	     last = tmp, tmp = tmp->next)
-		(void)NULL;
-	if (last == NULL)
-		*rules = new;
-	else
-		last->next = new;
-
-	/* Try to instantiate map accessors for this if necessary & approp. */
-	inst = &irs->accessors[acc];
-	if (inst->acc == NULL && accs[acc] != NULL)
-		inst->acc = (*accs[acc])(irs->options);
-	if (inst->acc != NULL) {
-		if (inst->gr == NULL && inst->acc->gr_map != NULL)
-			inst->gr = (*inst->acc->gr_map)(inst->acc);
-		if (inst->pw == NULL && inst->acc->pw_map != NULL)
-			inst->pw = (*inst->acc->pw_map)(inst->acc);
-		if (inst->sv == NULL && inst->acc->sv_map != NULL)
-			inst->sv = (*inst->acc->sv_map)(inst->acc);
-		if (inst->pr == NULL && inst->acc->pr_map != NULL)
-			inst->pr = (*inst->acc->pr_map)(inst->acc);
-		if (inst->ho == NULL && inst->acc->ho_map != NULL)
-			inst->ho = (*inst->acc->ho_map)(inst->acc);
-		if (inst->nw == NULL && inst->acc->nw_map != NULL)
-			inst->nw = (*inst->acc->nw_map)(inst->acc);
-		if (inst->ng == NULL && inst->acc->ng_map != NULL)
-			inst->ng = (*inst->acc->ng_map)(inst->acc);
-	}
-
-	return (0);
-}
-
-static void
-default_map_rules(struct gen_p *irs) {
-	/* Install time honoured and proved BSD style rules as default. */
-	add_rule(irs, irs_gr, irs_lcl, "");
-	add_rule(irs, irs_pw, irs_lcl, "");
-	add_rule(irs, irs_sv, irs_lcl, "");
-	add_rule(irs, irs_pr, irs_lcl, "");
-	add_rule(irs, irs_ho, irs_dns, "continue");
-	add_rule(irs, irs_ho, irs_lcl, "");
-	add_rule(irs, irs_nw, irs_dns, "continue");
-	add_rule(irs, irs_nw, irs_lcl, "");
-	add_rule(irs, irs_ng, irs_lcl, "");
-}
-
-static void
-init_map_rules(struct gen_p *irs, const char *conf_file) {
-	char line[1024], pattern[40], mapname[20], accname[20], options[100];
-	FILE *conf;
-
-	if (conf_file == NULL) 
-		conf_file = _PATH_IRS_CONF ;
-
-	/* A conf file of "" means compiled in defaults. Irpd wants this */
-	if (conf_file[0] == '\0' || (conf = fopen(conf_file, "r")) == NULL) {
-		default_map_rules(irs);
-		return;
-	}
-	(void) sprintf(pattern, "%%%ds %%%ds %%%ds\n",
-		       sizeof mapname, sizeof accname, sizeof options);
-	while (fgets(line, sizeof line, conf)) {
-		enum irs_map_id map;
-		enum irs_acc_id acc;
-		char *tmp;
-		int n;
-
-		for (tmp = line; isascii(*tmp) && isspace(*tmp); tmp++)
-			(void)NULL;
-		if (*tmp == '#' || *tmp == '\n' || *tmp == '\0')
-			continue;
-		n = sscanf(tmp, pattern, mapname, accname, options);
-		if (n < 2)
-			continue;
-		if (n < 3)
-			options[0] = '\0';
-
-		n = find_name(mapname, map_names);
-		INSIST(n < irs_nmap);
-		if (n < 0)
-			continue;
-		map = (enum irs_map_id) n;
-
-		n = find_name(accname, acc_names);
-		INSIST(n < irs_nacc);
-		if (n < 0)
-			continue;
-		acc = (enum irs_acc_id) n;
-
-		add_rule(irs, map, acc, options);
-	}
-	fclose(conf);
-}
diff --git a/contrib/bind/lib/irs/gen_gr.c b/contrib/bind/lib/irs/gen_gr.c
deleted file mode 100644
index ae23d2c0563f8..0000000000000
--- a/contrib/bind/lib/irs/gen_gr.c
+++ /dev/null
@@ -1,450 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen_gr.c,v 1.21 1999/10/13 16:39:29 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_GR
-static int __bind_irs_gr_unneeded;
-#else
-
-#include <sys/types.h>
-
-#include <isc/assertions.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Definitions */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	struct irs_gr *		gr;
-	/*
-	 * Need space to store the entries read from the group file.
-	 * The members list also needs space per member, and the
-	 * strings making up the user names must be allocated
-	 * somewhere.  Rather than doing lots of small allocations,
-	 * we keep one buffer and resize it as needed.
-	 */
-	struct group		group;
-	size_t			nmemb;    /* Malloc'd max index of gr_mem[]. */
-	char *			membuf;
-	size_t			membufsize;
-	struct __res_state *	res;
-	void			(*free_res)(void *);
-};
-
-/* Forward */
-
-static void		gr_close(struct irs_gr *);
-static struct group *	gr_next(struct irs_gr *);
-static struct group *	gr_byname(struct irs_gr *, const char *);
-static struct group *	gr_bygid(struct irs_gr *, gid_t);
-static void		gr_rewind(struct irs_gr *);
-static int		gr_list(struct irs_gr *, const char *,
-				gid_t, gid_t *, int *);
-static void		gr_minimize(struct irs_gr *);
-static struct __res_state * gr_res_get(struct irs_gr *);
-static void		gr_res_set(struct irs_gr *,
-				      struct __res_state *,
-				      void (*)(void *));
-
-static void		grmerge(struct irs_gr *gr, const struct group *src,
-				int preserve);
-
-static int		countvec(char **vec);
-static int		isnew(char **old, char *new);
-static int		countnew(char **old, char **new);
-static size_t		sizenew(char **old, char **new);
-static int		newgid(int, gid_t *, gid_t);
-
-/* Public */
-
-struct irs_gr *
-irs_gen_gr(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_gr *gr;
-	struct pvt *pvt;
-
-	if (!(gr = memget(sizeof *gr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(gr, 0x5e, sizeof *gr);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(gr, sizeof *gr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->rules = accpvt->map_rules[irs_gr];
-	pvt->rule = pvt->rules;
-	gr->private = pvt;
-	gr->close = gr_close;
-	gr->next = gr_next;
-	gr->byname = gr_byname;
-	gr->bygid = gr_bygid;
-	gr->rewind = gr_rewind;
-	gr->list = gr_list;
-	gr->minimize = gr_minimize;
-	gr->res_get = gr_res_get;
-	gr->res_set = gr_res_set;
-	return (gr);
-}
-
-/* Methods. */
-
-static void
-gr_close(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct group *
-gr_next(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct group *rval;
-	struct irs_gr *gr;
-
-	while (pvt->rule) {
-		gr = pvt->rule->inst->gr;
-		rval = (*gr->next)(gr);
-		if (rval)
-			return (rval);
-		if (!(pvt->rule->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			gr = pvt->rule->inst->gr;
-			(*gr->rewind)(gr);
-		}
-	}
-	return (NULL);
-}
-
-static struct group *
-gr_byname(struct irs_gr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct group *tval;
-	struct irs_gr *gr;
-	int dirty;
-
-	dirty = 0;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		gr = rule->inst->gr;
-		tval = (*gr->byname)(gr, name);
-		if (tval) {
-			grmerge(this, tval, dirty++);
-			if (!(rule->flags & IRS_MERGE))
-				break;
-		} else {
-			if (!(rule->flags & IRS_CONTINUE))
-				break;
-		}
-	}
-	if (dirty)
-		return (&pvt->group);
-	return (NULL);
-}
-
-static struct group *
-gr_bygid(struct irs_gr *this, gid_t gid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct group *tval;
-	struct irs_gr *gr;
-	int dirty;
-
-	dirty = 0;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		gr = rule->inst->gr;
-		tval = (*gr->bygid)(gr, gid);
-		if (tval) {
-			grmerge(this, tval, dirty++);
-			if (!(rule->flags & IRS_MERGE))
-				break;
-		} else {
-			if (!(rule->flags & IRS_CONTINUE))
-				break;
-		}
-	}
-	if (dirty)
-		return (&pvt->group);
-	return (NULL);
-}
-
-static void
-gr_rewind(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_gr *gr;
-
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		gr = pvt->rule->inst->gr;
-		(*gr->rewind)(gr);
-	}
-}
-
-static int
-gr_list(struct irs_gr *this, const char *name,
-	gid_t basegid, gid_t *groups, int *ngroups)
-{
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct irs_gr *gr;
-	int t_ngroups, maxgroups;
-	gid_t *t_groups;
-	int n, t, rval = 0;
-
-	maxgroups = *ngroups;
-	*ngroups = 0;
-	t_groups = (gid_t *)malloc(maxgroups * sizeof(gid_t));
-	if (!t_groups) {
-		errno = ENOMEM;
-		return (-1);
-	}
-
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		t_ngroups = maxgroups;
-		gr = rule->inst->gr;
-		t = (*gr->list)(gr, name, basegid, t_groups, &t_ngroups);
-		for (n = 0; n < t_ngroups; n++) {
-			if (newgid(*ngroups, groups, t_groups[n])) {
-				if (*ngroups == maxgroups) {
-					rval = -1;
-					goto done;
-				}
-				groups[(*ngroups)++] = t_groups[n];
-			}
-		}
-		if (t == 0) {
-			if (!(rule->flags & IRS_MERGE))
-				break;
-		} else {
-			if (!(rule->flags & IRS_CONTINUE))
-				break;
-		}
-	}
- done:
-	free(t_groups);
-	return (rval);
-}
-
-static void
-gr_minimize(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_gr *gr = rule->inst->gr;
-
-		(*gr->minimize)(gr);
-	}
-}
-
-static struct __res_state *
-gr_res_get(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		gr_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-gr_res_set(struct irs_gr *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_gr *gr = rule->inst->gr;
-
-		if (gr->res_set)
-			(*gr->res_set)(gr, pvt->res, NULL);
-	}
-}
-
-/* Private. */
-
-static void
-grmerge(struct irs_gr *this, const struct group *src, int preserve) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *cp, **m, **p;
-	int n, ndst, nnew;
-
-	if (!preserve) {
-		pvt->group.gr_gid = src->gr_gid;
-		if (pvt->nmemb < 1) {
-			m = malloc(sizeof *m);
-			if (!m) {
-				/* No harm done, no work done. */
-				return;
-			}
-			pvt->group.gr_mem = m;
-			pvt->nmemb = 1;
-		}
-		pvt->group.gr_mem[0] = NULL;
-	}
-	ndst = countvec(pvt->group.gr_mem);
-	nnew = countnew(pvt->group.gr_mem, src->gr_mem);
-
-	/*
-	 * Make sure destination member array is large enough.
-	 * p points to new portion.
-	 */
-	n = ndst + nnew + 1;
-	if ((size_t)n > pvt->nmemb) {
-		m = realloc(pvt->group.gr_mem, n * sizeof *m);
-		if (!m) {
-			/* No harm done, no work done. */
-			return;
-		}
-		pvt->group.gr_mem = m;
-		pvt->nmemb = n;
-	}
-	p = pvt->group.gr_mem + ndst;
-
-	/*
-	 * Enlarge destination membuf; cp points at new portion.
-	 */
-	n = sizenew(pvt->group.gr_mem, src->gr_mem);
-	INSIST((nnew == 0) == (n == 0));
-	if (!preserve) {
-		n += strlen(src->gr_name) + 1;
-		n += strlen(src->gr_passwd) + 1;
-	}
-	if (n == 0) {
-		/* No work to do. */
-		return;
-	}
-	cp = realloc(pvt->membuf, pvt->membufsize + n);
-	if (!cp) {
-		/* No harm done, no work done. */
-		return;
-	}
-	pvt->membuf = cp;
-	cp += pvt->membufsize;
-	pvt->membufsize += n;
-
-	/*
-	 * Add new elements.
-	 */
-	for (m = src->gr_mem; *m; m++)
-		if (isnew(pvt->group.gr_mem, *m)) {
-			*p++ = cp;
-			*p = NULL;
-			strcpy(cp, *m);
-			cp += strlen(cp) + 1;
-		}
-	if (!preserve) {
-		pvt->group.gr_name = cp;
-		strcpy(cp, src->gr_name);
-		cp += strlen(src->gr_name) + 1;
-		pvt->group.gr_passwd = cp;
-		strcpy(cp, src->gr_passwd);
-		cp += strlen(src->gr_passwd) + 1;
-	}
-	INSIST(cp >= pvt->membuf && cp <= &pvt->membuf[pvt->membufsize]);
-}
-
-static int
-countvec(char **vec) {
-	int n = 0;
-
-	while (*vec++)
-		n++;
-	return (n);
-}
-
-static int
-isnew(char **old, char *new) {
-	for (; *old; old++)
-		if (strcmp(*old, new) == 0)
-			return (0);
-	return (1);
-}
-
-static int
-countnew(char **old, char **new) {
-	int n = 0;
-
-	for (; *new; new++)
-		n += isnew(old, *new);
-	return (n);
-}
-
-static size_t
-sizenew(char **old, char **new) {
-	size_t n = 0;
-
-	for (; *new; new++)
-		if (isnew(old, *new))
-			n += strlen(*new) + 1;
-	return (n);
-}
-
-static int
-newgid(int ngroups, gid_t *groups, gid_t group) {
-	ngroups--, groups++;
-	for (; ngroups-- > 0; groups++)
-		if (*groups == group)
-			return (0);
-	return (1);
-}
-
-#endif /* WANT_IRS_GR */
diff --git a/contrib/bind/lib/irs/gen_ho.c b/contrib/bind/lib/irs/gen_ho.c
deleted file mode 100644
index 9e7a4292a55b9..0000000000000
--- a/contrib/bind/lib/irs/gen_ho.c
+++ /dev/null
@@ -1,343 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: gen_ho.c,v 1.15 1999/10/13 16:39:29 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <stdlib.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Definitions */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	struct irs_ho *		ho;
-	struct __res_state *	res;
-	void			(*free_res)(void *);
-};
-
-/* Forwards */
-
-static void		ho_close(struct irs_ho *this);
-static struct hostent *	ho_byname(struct irs_ho *this, const char *name);
-static struct hostent *	ho_byname2(struct irs_ho *this, const char *name,
-				   int af);
-static struct hostent *	ho_byaddr(struct irs_ho *this, const void *addr,
-				  int len, int af);
-static struct hostent *	ho_next(struct irs_ho *this);
-static void		ho_rewind(struct irs_ho *this);
-static void		ho_minimize(struct irs_ho *this);
-static struct __res_state * ho_res_get(struct irs_ho *this);
-static void		ho_res_set(struct irs_ho *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static int		init(struct irs_ho *this);
-
-/* Exports */
-
-struct irs_ho *
-irs_gen_ho(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_ho *ho;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(ho = memget(sizeof *ho))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ho, 0x5e, sizeof *ho);
-	pvt->rules = accpvt->map_rules[irs_ho];
-	pvt->rule = pvt->rules;
-	ho->private = pvt;
-	ho->close = ho_close;
-	ho->byname = ho_byname;
-	ho->byname2 = ho_byname2;
-	ho->byaddr = ho_byaddr;
-	ho->next = ho_next;
-	ho->rewind = ho_rewind;
-	ho->minimize = ho_minimize;
-	ho->res_get = ho_res_get;
-	ho->res_set = ho_res_set;
-	return (ho);
-}
-
-/* Methods. */
-
-static void
-ho_close(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	ho_minimize(this);
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct hostent *
-ho_byname(struct irs_ho *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct hostent *rval;
-	struct irs_ho *ho;
-	int therrno = NETDB_INTERNAL;
-	int softerror = 0;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		ho = rule->inst->ho;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		errno = 0;
-		rval = (*ho->byname)(ho, name);
-		if (rval != NULL)
-			return (rval);
-		if (softerror == 0 &&
-		    pvt->res->res_h_errno != HOST_NOT_FOUND &&
-		    pvt->res->res_h_errno != NETDB_INTERNAL) {
-			softerror = 1;
-			therrno = pvt->res->res_h_errno;
-		}
-		if (rule->flags & IRS_CONTINUE)
-			continue;
-		/*
-		 * The value TRY_AGAIN can mean that the service
-		 * is not available, or just that this particular name
-		 * cannot be resolved now.  We use the errno ECONNREFUSED
-		 * to distinguish.  If a lookup sets that errno when
-		 * H_ERRNO is TRY_AGAIN, we continue to try other lookup
-		 * functions, otherwise we return the TRY_AGAIN error.
-		 */
-		if (pvt->res->res_h_errno != TRY_AGAIN || errno != ECONNREFUSED)
-			break;
-	}
-	if (softerror != 0 && pvt->res->res_h_errno == HOST_NOT_FOUND)
-		RES_SET_H_ERRNO(pvt->res, therrno);
-	return (NULL);
-}
-
-static struct hostent *
-ho_byname2(struct irs_ho *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct hostent *rval;
-	struct irs_ho *ho;
-	int therrno = NETDB_INTERNAL;
-	int softerror = 0;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		ho = rule->inst->ho;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		errno = 0;
-		rval = (*ho->byname2)(ho, name, af);
-		if (rval != NULL)
-			return (rval);
-		if (softerror == 0 &&
-		    pvt->res->res_h_errno != HOST_NOT_FOUND &&
-		    pvt->res->res_h_errno != NETDB_INTERNAL) {
-			softerror = 1;
-			therrno = pvt->res->res_h_errno;
-		}
-		if (rule->flags & IRS_CONTINUE)
-			continue;
-		/*
-		 * See the comments in ho_byname() explaining
-		 * the interpretation of TRY_AGAIN and ECONNREFUSED.
-		 */
-		if (pvt->res->res_h_errno != TRY_AGAIN || errno != ECONNREFUSED)
-			break;
-	}
-	if (softerror != 0 && pvt->res->res_h_errno == HOST_NOT_FOUND)
-		RES_SET_H_ERRNO(pvt->res, therrno);
-	return (NULL);
-}
-
-static struct hostent *
-ho_byaddr(struct irs_ho *this, const void *addr, int len, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct hostent *rval;
-	struct irs_ho *ho;
-	int therrno = NETDB_INTERNAL;
-	int softerror = 0;
-
-
-	if (init(this) == -1)
-		return (NULL);
-
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		ho = rule->inst->ho;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		errno = 0;
-		rval = (*ho->byaddr)(ho, addr, len, af);
-		if (rval != NULL)
-			return (rval);
-		if (softerror == 0 &&
-		    pvt->res->res_h_errno != HOST_NOT_FOUND &&
-		    pvt->res->res_h_errno != NETDB_INTERNAL) {
-			softerror = 1;
-			therrno = pvt->res->res_h_errno;
-		}
-
-		if (rule->flags & IRS_CONTINUE)
-			continue;
-		/*
-		 * See the comments in ho_byname() explaining
-		 * the interpretation of TRY_AGAIN and ECONNREFUSED.
-		 */
-		if (pvt->res->res_h_errno != TRY_AGAIN || errno != ECONNREFUSED)
-			break;
-	}
-	if (softerror != 0 && pvt->res->res_h_errno == HOST_NOT_FOUND)
-		RES_SET_H_ERRNO(pvt->res, therrno);
-	return (NULL);
-}
-
-static struct hostent *
-ho_next(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *rval;
-	struct irs_ho *ho;
-
-	while (pvt->rule) {
-		ho = pvt->rule->inst->ho;
-		rval = (*ho->next)(ho);
-		if (rval)
-			return (rval);
-		if (!(pvt->rule->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			ho = pvt->rule->inst->ho;
-			(*ho->rewind)(ho);
-		}
-	}
-	return (NULL);
-}
-
-static void
-ho_rewind(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_ho *ho;
-
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		ho = pvt->rule->inst->ho;
-		(*ho->rewind)(ho);
-	}
-}
-
-static void
-ho_minimize(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_ho *ho = rule->inst->ho;
-
-		(*ho->minimize)(ho);
-	}
-}
-
-static struct __res_state *
-ho_res_get(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		ho_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-ho_res_set(struct irs_ho *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_ho *ho = rule->inst->ho;
-
-		(*ho->res_set)(ho, pvt->res, NULL);
-	}
-}
-
-static int
-init(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-        if (!pvt->res && !ho_res_get(this))
-                return (-1);
-
-        if (((pvt->res->options & RES_INIT) == 0) &&
-            (res_ninit(pvt->res) == -1))
-                return (-1);
-
-        return (0);
-}
diff --git a/contrib/bind/lib/irs/gen_ng.c b/contrib/bind/lib/irs/gen_ng.c
deleted file mode 100644
index 064d61647508b..0000000000000
--- a/contrib/bind/lib/irs/gen_ng.c
+++ /dev/null
@@ -1,169 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen_ng.c,v 1.14 1999/10/13 16:39:29 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <errno.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Types */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	char *			curgroup;
-};
-
-/* Forward */
-
-static void		ng_close(struct irs_ng *);
-static int		ng_next(struct irs_ng *, char **, char **, char **);
-static int 		ng_test(struct irs_ng *, const char *,
-				const char *, const char *,
-				const char *);
-static void 		ng_rewind(struct irs_ng *, const char *);
-static void		ng_minimize(struct irs_ng *);
-
-/* Public */
-
-struct irs_ng *
-irs_gen_ng(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_ng *ng;
-	struct pvt *pvt;
-	
-	if (!(ng = memget(sizeof *ng))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ng, 0x5e, sizeof *ng);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(ng, sizeof *ng);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->rules = accpvt->map_rules[irs_ng];
-	pvt->rule = pvt->rules;
-	ng->private = pvt;
-	ng->close = ng_close;
-	ng->next = ng_next;
-	ng->test = ng_test;
-	ng->rewind = ng_rewind;
-	ng->minimize = ng_minimize;
-	return (ng);
-}
-
-/* Methods */
-
-static void 
-ng_close(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	ng_minimize(this);
-	if (pvt->curgroup)
-		free(pvt->curgroup);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static int
-ng_next(struct irs_ng *this, char **host, char **user, char **domain) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_ng *ng;
-	
-	while (pvt->rule) {
-		ng = pvt->rule->inst->ng;
-		if ((*ng->next)(ng, host, user, domain) == 1)
-			return (1);
-		if (!(pvt->rule->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			ng = pvt->rule->inst->ng;
-			(*ng->rewind)(ng, pvt->curgroup);
-		}
-	}
-	return (0);
-}
-
-static int
-ng_test(struct irs_ng *this, const char *name,
-	const char *user, const char *host, const char *domain)
-{
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct irs_ng *ng;
-	int rval;
-	
-	rval = 0;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		ng = rule->inst->ng;
-		rval = (*ng->test)(ng, name, user, host, domain);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}
-
-static void
-ng_rewind(struct irs_ng *this, const char *group) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_ng *ng;
-	
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		if (pvt->curgroup)
-			free(pvt->curgroup);
-		pvt->curgroup = strdup(group);
-		ng = pvt->rule->inst->ng;
-		(*ng->rewind)(ng, pvt->curgroup);
-	}
-}
-
-static void
-ng_minimize(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_ng *ng = rule->inst->ng;
-
-		(*ng->minimize)(ng);
-	}
-}
diff --git a/contrib/bind/lib/irs/gen_nw.c b/contrib/bind/lib/irs/gen_nw.c
deleted file mode 100644
index fad436c153b40..0000000000000
--- a/contrib/bind/lib/irs/gen_nw.c
+++ /dev/null
@@ -1,262 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen_nw.c,v 1.13 1999/10/13 16:39:29 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Types */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	struct __res_state *	res;
-	void 			(*free_res)(void *);
-};
-
-/* Forward */
-
-static void		nw_close(struct irs_nw*);
-static struct nwent *	nw_next(struct irs_nw *);
-static struct nwent *	nw_byname(struct irs_nw *, const char *, int);
-static struct nwent *	nw_byaddr(struct irs_nw *, void *, int, int);
-static void    		nw_rewind(struct irs_nw *);
-static void		nw_minimize(struct irs_nw *);
-static struct __res_state * nw_res_get(struct irs_nw *this);
-static void		nw_res_set(struct irs_nw *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static int		init(struct irs_nw *this);
-
-/* Public */
-
-struct irs_nw *
-irs_gen_nw(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_nw *nw;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(nw = memget(sizeof *nw))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(nw, 0x5e, sizeof *nw);
-	pvt->rules = accpvt->map_rules[irs_nw];
-	pvt->rule = pvt->rules;
-	nw->private = pvt;
-	nw->close = nw_close;
-	nw->next = nw_next;
-	nw->byname = nw_byname;
-	nw->byaddr = nw_byaddr;
-	nw->rewind = nw_rewind;
-	nw->minimize = nw_minimize;
-	nw->res_get = nw_res_get;
-	nw->res_set = nw_res_set;
-	return (nw);
-}
-
-/* Methods */
-
-static void
-nw_close(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	nw_minimize(this);
-
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct nwent *
-nw_next(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct nwent *rval;
-	struct irs_nw *nw;
-
-	if (init(this) == -1)
-		return(NULL);
-
-	while (pvt->rule) {
-		nw = pvt->rule->inst->nw;
-		rval = (*nw->next)(nw);
-		if (rval)
-			return (rval);
-		if (!(pvt->rules->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			nw = pvt->rule->inst->nw;
-			(*nw->rewind)(nw);
-		}
-	}
-	return (NULL);
-}
-
-static struct nwent *
-nw_byname(struct irs_nw *this, const char *name, int type) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct nwent *rval;
-	struct irs_nw *nw;
-	
-	if (init(this) == -1)
-		return(NULL);
-
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		nw = rule->inst->nw;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		rval = (*nw->byname)(nw, name, type);
-		if (rval != NULL)
-			return (rval);
-		if (pvt->res->res_h_errno != TRY_AGAIN &&
-		    !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (NULL);
-}
-
-static struct nwent *
-nw_byaddr(struct irs_nw *this, void *net, int length, int type) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct nwent *rval;
-	struct irs_nw *nw;
-	
-	if (init(this) == -1)
-		return(NULL);
-
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		nw = rule->inst->nw;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		rval = (*nw->byaddr)(nw, net, length, type);
-		if (rval != NULL)
-			return (rval);
-		if (pvt->res->res_h_errno != TRY_AGAIN &&
-		    !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (NULL);
-}
-
-static void
-nw_rewind(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_nw *nw;
-
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		nw = pvt->rule->inst->nw;
-		(*nw->rewind)(nw);
-	}
-}
-
-static void
-nw_minimize(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_nw *nw = rule->inst->nw;
-
-		(*nw->minimize)(nw);
-	}
-}
-
-static struct __res_state *
-nw_res_get(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		nw_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-nw_res_set(struct irs_nw *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_nw *nw = rule->inst->nw;
-
-		(*nw->res_set)(nw, pvt->res, NULL);
-	}
-}
-
-static int
-init(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !nw_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
diff --git a/contrib/bind/lib/irs/gen_p.h b/contrib/bind/lib/irs/gen_p.h
deleted file mode 100644
index b8210b0af2522..0000000000000
--- a/contrib/bind/lib/irs/gen_p.h
+++ /dev/null
@@ -1,113 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: gen_p.h,v 1.10 1999/01/18 07:46:50 vixie Exp $
- */
-
-/* Notes:
- *	We hope to create a complete set of thread-safe entry points someday,
- *	which will mean a set of getXbyY() functions that take as an argument
- *	a pointer to the map class, which will have a pointer to the private
- *	data, which will be used preferentially to the static variables that
- *	are necessary to support the "classic" interface.  This "classic"
- *	interface will then be reimplemented as stubs on top of the thread
- *	safe modules, and will keep the map class pointers as their only
- *	static data.  HOWEVER, we are not there yet.  So while we will call
- *	the just-barely-converted map class methods with map class pointers,
- *	right now they probably all still use statics.  We're not fooling
- *	anybody, and we're not trying to (yet).
- */
-
-#ifndef _GEN_P_H_INCLUDED
-#define _GEN_P_H_INCLUDED
-
-/*
- * These are the access methods.
- */
-enum irs_acc_id {
-	irs_lcl,	/* Local. */
-	irs_dns,	/* DNS or Hesiod. */
-	irs_nis,	/* Sun NIS ("YP"). */
-	irs_irp,	/* IR protocol.  */
-	irs_nacc
-};
-
-/*
- * These are the map types.
- */
-enum irs_map_id {
-	irs_gr,		/* "group" */
-	irs_pw,		/* "passwd" */
-	irs_sv,		/* "services" */
-	irs_pr,		/* "protocols" */
-	irs_ho,		/* "hosts" */
-	irs_nw,		/* "networks" */
-	irs_ng,		/* "netgroup" */
-	irs_nmap
-};
-
-/*
- * This is an accessor instance.
- */
-struct irs_inst {
-	struct irs_acc *acc;
-	struct irs_gr *	gr;
-	struct irs_pw *	pw;
-	struct irs_sv *	sv;
-	struct irs_pr *	pr;
-	struct irs_ho *	ho;
-	struct irs_nw *	nw;
-	struct irs_ng *	ng;
-};
-
-/*
- * This is a search rule for some map type.
- */
-struct irs_rule {
-	struct irs_rule *	next;
-	struct irs_inst *	inst;
-	int			flags;
-};
-#define IRS_MERGE		0x0001	/* Don't stop if acc. has data? */
-#define	IRS_CONTINUE		0x0002	/* Don't stop if acc. has no data? */
-
-/*
- * This is the private data for a search access class.
- */
-struct gen_p {
-	const char *		options;
-	struct irs_rule *	map_rules[(int)irs_nmap];
-	struct irs_inst		accessors[(int)irs_nacc];
-	struct __res_state *	res;
-	void			(*free_res) __P((void *));
-};
-
-/*
- * Externs.
- */
-
-extern struct irs_acc *	irs_gen_acc __P((const char *, const char *conf_file));
-extern struct irs_gr *	irs_gen_gr __P((struct irs_acc *));
-extern struct irs_pw *	irs_gen_pw __P((struct irs_acc *));
-extern struct irs_sv *	irs_gen_sv __P((struct irs_acc *));
-extern struct irs_pr *	irs_gen_pr __P((struct irs_acc *));
-extern struct irs_ho *	irs_gen_ho __P((struct irs_acc *));
-extern struct irs_nw *	irs_gen_nw __P((struct irs_acc *));
-extern struct irs_ng *	irs_gen_ng __P((struct irs_acc *));
-
-#endif /*_IRS_P_H_INCLUDED*/
diff --git a/contrib/bind/lib/irs/gen_pr.c b/contrib/bind/lib/irs/gen_pr.c
deleted file mode 100644
index de0957165bf7f..0000000000000
--- a/contrib/bind/lib/irs/gen_pr.c
+++ /dev/null
@@ -1,226 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen_pr.c,v 1.12 1999/10/13 16:39:30 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Types */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	struct __res_state *	res;
-	void			(*free_res)(void *);
-};
-
-/* Forward */
-
-static void			pr_close(struct irs_pr*);
-static struct protoent *	pr_next(struct irs_pr *);
-static struct protoent *	pr_byname(struct irs_pr *, const char *);
-static struct protoent * 	pr_bynumber(struct irs_pr *, int);
-static void 			pr_rewind(struct irs_pr *);
-static void			pr_minimize(struct irs_pr *);
-static struct __res_state *	pr_res_get(struct irs_pr *);
-static void			pr_res_set(struct irs_pr *,
-					   struct __res_state *,
-					   void (*)(void *));
-
-/* Public */
-
-struct irs_pr *
-irs_gen_pr(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_pr *pr;
-	struct pvt *pvt;
-
-	if (!(pr = memget(sizeof *pr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pr, 0x5e, sizeof *pr);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(pr, sizeof *pr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->rules = accpvt->map_rules[irs_pr];
-	pvt->rule = pvt->rules;
-	pr->private = pvt;
-	pr->close = pr_close;
-	pr->next = pr_next;
-	pr->byname = pr_byname;
-	pr->bynumber = pr_bynumber;
-	pr->rewind = pr_rewind;
-	pr->minimize = pr_minimize;
-	pr->res_get = pr_res_get;
-	pr->res_set = pr_res_set;
-	return (pr);
-}
-
-/* Methods */
-
-static void
-pr_close(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct protoent *
-pr_next(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct protoent *rval;
-	struct irs_pr *pr;
-
-	while (pvt->rule) {
-		pr = pvt->rule->inst->pr;
-		rval = (*pr->next)(pr);
-		if (rval)
-			return (rval);
-		if (!(pvt->rules->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			pr = pvt->rule->inst->pr;
-			(*pr->rewind)(pr);
-		}
-	}
-	return (NULL);
-}
-
-static struct protoent *
-pr_byname(struct irs_pr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct protoent *rval;
-	struct irs_pr *pr;
-	
-	rval = NULL;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		pr = rule->inst->pr;
-		rval = (*pr->byname)(pr, name);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}
-
-static struct protoent *
-pr_bynumber(struct irs_pr *this, int proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct protoent *rval;
-	struct irs_pr *pr;
-	
-	rval = NULL;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		pr = rule->inst->pr;
-		rval = (*pr->bynumber)(pr, proto);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}
-
-static void
-pr_rewind(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_pr *pr;
-
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		pr = pvt->rule->inst->pr;
-		(*pr->rewind)(pr);
-	}
-}
-
-static void
-pr_minimize(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_pr *pr = rule->inst->pr;
-
-		(*pr->minimize)(pr);
-	}
-}
-
-static struct __res_state *
-pr_res_get(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		pr_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-pr_res_set(struct irs_pr *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_pr *pr = rule->inst->pr;
-
-		if (pr->res_set)
-			(*pr->res_set)(pr, pvt->res, NULL);
-	}
-}
diff --git a/contrib/bind/lib/irs/gen_pw.c b/contrib/bind/lib/irs/gen_pw.c
deleted file mode 100644
index d80a64be6fd5f..0000000000000
--- a/contrib/bind/lib/irs/gen_pw.c
+++ /dev/null
@@ -1,233 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen_pw.c,v 1.14 1999/10/13 16:39:30 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_PW
-static int __bind_irs_pw_unneeded;
-#else
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <errno.h>
-#include <pwd.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Types */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	struct __res_state *	res;
-	void			(*free_res)(void *);
-};
-
-/* Forward */
-
-static void			pw_close(struct irs_pw *);
-static struct passwd *		pw_next(struct irs_pw *);
-static struct passwd *		pw_byname(struct irs_pw *, const char *);
-static struct passwd *		pw_byuid(struct irs_pw *, uid_t);
-static void			pw_rewind(struct irs_pw *);
-static void			pw_minimize(struct irs_pw *);
-static struct __res_state *	pw_res_get(struct irs_pw *);
-static void			pw_res_set(struct irs_pw *,
-					   struct __res_state *,
-					   void (*)(void *));
-
-/* Public */
-
-struct irs_pw *
-irs_gen_pw(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_pw *pw;
-	struct pvt *pvt;
-
-	if (!(pw = memget(sizeof *pw))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pw, 0x5e, sizeof *pw);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(pw, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->rules = accpvt->map_rules[irs_pw];
-	pvt->rule = pvt->rules;
-	pw->private = pvt;
-	pw->close = pw_close;
-	pw->next = pw_next;
-	pw->byname = pw_byname;
-	pw->byuid = pw_byuid;
-	pw->rewind = pw_rewind;
-	pw->minimize = pw_minimize;
-	pw->res_get = pw_res_get;
-	pw->res_set = pw_res_set;
-	return (pw);
-}
-
-/* Methods */
-
-static void
-pw_close(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct passwd *
-pw_next(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct passwd *rval;
-	struct irs_pw *pw;
-	
-	while (pvt->rule) {
-		pw = pvt->rule->inst->pw;
-		rval = (*pw->next)(pw);
-		if (rval)
-			return (rval);
-		if (!(pvt->rule->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			pw = pvt->rule->inst->pw;
-			(*pw->rewind)(pw);
-		}
-	}
-	return (NULL);
-}
-
-static void
-pw_rewind(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_pw *pw;
-	
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		pw = pvt->rule->inst->pw;
-		(*pw->rewind)(pw);
-	}
-}
-
-static struct passwd *
-pw_byname(struct irs_pw *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct passwd *rval;
-	struct irs_pw *pw;
-	
-	rval = NULL;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		pw = rule->inst->pw;
-		rval = (*pw->byname)(pw, name);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}
-
-static struct passwd *
-pw_byuid(struct irs_pw *this, uid_t uid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct passwd *rval;
-	struct irs_pw *pw;
-	
-	rval = NULL;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		pw = rule->inst->pw;
-		rval = (*pw->byuid)(pw, uid);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}	
-
-static void
-pw_minimize(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_pw *pw = rule->inst->pw;
-
-		(*pw->minimize)(pw);
-	}
-}
-
-static struct __res_state *
-pw_res_get(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		pw_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-pw_res_set(struct irs_pw *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_pw *pw = rule->inst->pw;
-
-		if (pw->res_set)
-			(*pw->res_set)(pw, pvt->res, NULL);
-	}
-}
-
-#endif /* WANT_IRS_PW */
diff --git a/contrib/bind/lib/irs/gen_sv.c b/contrib/bind/lib/irs/gen_sv.c
deleted file mode 100644
index e0c1cb6271edf..0000000000000
--- a/contrib/bind/lib/irs/gen_sv.c
+++ /dev/null
@@ -1,227 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gen_sv.c,v 1.12 1999/10/13 16:39:30 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <errno.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "gen_p.h"
-
-/* Types */
-
-struct pvt {
-	struct irs_rule *	rules;
-	struct irs_rule *	rule;
-	struct __res_state *	res;
-	void			(*free_res)(void *);
-};
-
-/* Forward */
-
-static void			sv_close(struct irs_sv*);
-static struct servent *		sv_next(struct irs_sv *);
-static struct servent *		sv_byname(struct irs_sv *, const char *,
-					  const char *);
-static struct servent *		sv_byport(struct irs_sv *, int, const char *);
-static void			sv_rewind(struct irs_sv *);
-static void			sv_minimize(struct irs_sv *);
-static struct __res_state *	sv_res_get(struct irs_sv *);
-static void			sv_res_set(struct irs_sv *,
-					      struct __res_state *,
-					      void (*)(void *));
-
-/* Public */
-
-struct irs_sv *
-irs_gen_sv(struct irs_acc *this) {
-	struct gen_p *accpvt = (struct gen_p *)this->private;
-	struct irs_sv *sv;
-	struct pvt *pvt;
-
-	if (!(sv = memget(sizeof *sv))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(sv, 0x5e, sizeof *sv);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(sv, sizeof *sv);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->rules = accpvt->map_rules[irs_sv];
-	pvt->rule = pvt->rules;
-	sv->private = pvt;
-	sv->close = sv_close;
-	sv->next = sv_next;
-	sv->byname = sv_byname;
-	sv->byport = sv_byport;
-	sv->rewind = sv_rewind;
-	sv->minimize = sv_minimize;
-	sv->res_get = sv_res_get;
-	sv->res_set = sv_res_set;
-	return (sv);
-}
-
-/* Methods */
-
-static void
-sv_close(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct servent *
-sv_next(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct servent *rval;
-	struct irs_sv *sv;
-	
-	while (pvt->rule) {
-		sv = pvt->rule->inst->sv;
-		rval = (*sv->next)(sv);
-		if (rval)
-			return (rval);
-		if (!(pvt->rule->flags & IRS_CONTINUE))
-			break;
-		pvt->rule = pvt->rule->next;
-		if (pvt->rule) {
-			sv = pvt->rule->inst->sv;
-			(*sv->rewind)(sv);
-		}
-	}
-	return (NULL);
-}
-
-static struct servent *
-sv_byname(struct irs_sv *this, const char *name, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct servent *rval;
-	struct irs_sv *sv;
-	
-	rval = NULL;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		sv = rule->inst->sv;
-		rval = (*sv->byname)(sv, name, proto);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}
-
-static struct servent *
-sv_byport(struct irs_sv *this, int port, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-	struct servent *rval;
-	struct irs_sv *sv;
-	
-	rval = NULL;
-	for (rule = pvt->rules; rule; rule = rule->next) {
-		sv = rule->inst->sv;
-		rval = (*sv->byport)(sv, port, proto);
-		if (rval || !(rule->flags & IRS_CONTINUE))
-			break;
-	}
-	return (rval);
-}
-
-static void
-sv_rewind(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_sv *sv;
-
-	pvt->rule = pvt->rules;
-	if (pvt->rule) {
-		sv = pvt->rule->inst->sv;
-		(*sv->rewind)(sv);
-	}
-}
-
-static void
-sv_minimize(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_sv *sv = rule->inst->sv;
-
-		(*sv->minimize)(sv);
-	}
-}
-
-static struct __res_state *
-sv_res_get(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		sv_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-sv_res_set(struct irs_sv *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct irs_rule *rule;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-
-	for (rule = pvt->rules; rule != NULL; rule = rule->next) {
-		struct irs_sv *sv = rule->inst->sv;
-
-		if (sv->res_set)
-			(*sv->res_set)(sv, pvt->res, NULL);
-	}
-}
diff --git a/contrib/bind/lib/irs/getaddrinfo.c b/contrib/bind/lib/irs/getaddrinfo.c
deleted file mode 100644
index f95a68195d611..0000000000000
--- a/contrib/bind/lib/irs/getaddrinfo.c
+++ /dev/null
@@ -1,505 +0,0 @@
-/*-
- * Copyright (c) 1997 Berkeley Software Design, Inc. All rights reserved.
- * The Berkeley Software Design Inc. software License Agreement specifies
- * the terms and conditions for redistribution.
- *
- *	BSDI $Id: getaddrinfo.c,v 8.3 1999/06/11 01:25:58 vixie Exp $
- */
-
-#include <port_before.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-#include <netinet/in.h>
-#include <netdb.h>
-#include <errno.h>
-#include <string.h>
-#include <stdlib.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <arpa/inet.h>
-#include <port_after.h>
-
-#define SA(addr)	((struct sockaddr *)(addr))
-#define SIN(addr)	((struct sockaddr_in *)(addr))
-#define SIN6(addr)	((struct sockaddr_in6 *)(addr))
-#define SUN(addr)	((struct sockaddr_un *)(addr))
-
-static struct addrinfo
-	*ai_reverse(struct addrinfo *oai),
-	*ai_clone(struct addrinfo *oai, int family),
-	*ai_alloc(int family, int addrlen);
-#ifdef AF_LOCAL
-static int get_local(const char *name, int socktype, struct addrinfo **res);
-#endif
-
-static int add_ipv4(const char *hostname, int flags, struct addrinfo **aip,
-    int socktype, int port);
-static int add_ipv6(const char *hostname, int flags, struct addrinfo **aip,
-    int socktype, int port);
-static void set_order(int, int (**)());
-
-#define FOUND_IPV4	0x1
-#define FOUND_IPV6	0x2
-#define FOUND_MAX	2
-
-int
-getaddrinfo(const char *hostname, const char *servname,
-	const struct addrinfo *hints, struct addrinfo **res)
-{
-	struct servent *sp;
-	char *proto;
-	int family, socktype, flags, protocol;
-	struct addrinfo *ai, *ai_list;
-	int port, err, i;
-	int (*net_order[FOUND_MAX+1])();
-
-	if (hostname == NULL && servname == NULL)
-		return (EAI_NONAME);
-
-	proto = NULL;
-	if (hints != NULL) {
-		if (hints->ai_flags & ~(AI_MASK))
-			return (EAI_BADFLAGS);
-		if (hints->ai_addrlen || hints->ai_canonname ||
-		    hints->ai_addr || hints->ai_next) {
-			errno = EINVAL;
-			return (EAI_SYSTEM);
-		}
-		family = hints->ai_family;
-		socktype = hints->ai_socktype;
-		protocol = hints->ai_protocol;
-		flags = hints->ai_flags;
-		switch (family) {
-		case AF_UNSPEC:
-			switch (hints->ai_socktype) {
-			case SOCK_STREAM:	proto = "tcp"; break;
-			case SOCK_DGRAM:	proto = "udp"; break;
-			}
-			break;
-		case AF_INET:
-		case AF_INET6:
-			switch (hints->ai_socktype) {
-			case 0:			break;
-			case SOCK_STREAM:	proto = "tcp"; break;
-			case SOCK_DGRAM:	proto = "udp"; break;
-			case SOCK_RAW:		break;
-			default:		return (EAI_SOCKTYPE);
-			}
-			break;
-#ifdef	AF_LOCAL
-		case AF_LOCAL:
-			switch (hints->ai_socktype) {
-			case 0:			break;
-			case SOCK_STREAM:	break;
-			case SOCK_DGRAM:	break;
-			default:		return (EAI_SOCKTYPE);
-			}
-			break;
-#endif
-		default:
-			return (EAI_FAMILY);
-		}
-	} else {
-		protocol = 0;
-		family = 0;
-		socktype = 0;
-		flags = 0;
-	}
-
-#ifdef	AF_LOCAL
-	/*
-	 * First, deal with AF_LOCAL.  If the family was not set,
-	 * then assume AF_LOCAL if the first character of the
-	 * hostname/servname is '/'.
-	 */
-
-	if (hostname &&
-	    (family == AF_LOCAL || (family == 0 && *hostname == '/')))
-		return (get_local(hostname, socktype, res));
-
-	if (servname &&
-	    (family == AF_LOCAL || (family == 0 && *servname == '/')))
-		return (get_local(servname, socktype, res));
-#endif
-
-	/*
-	 * Ok, only AF_INET and AF_INET6 left.
-	 */
-	ai_list = NULL;
-
-	/*
-	 * First, look up the service name (port) if it was
-	 * requested.  If the socket type wasn't specified, then
-	 * try and figure it out.
-	 */
-	if (servname) {
-		char *e;
-
-		port = strtol(servname, &e, 10);
-		if (*e == '\0') {
-			if (socktype == 0)
-				return (EAI_SOCKTYPE);
-			if (port < 0 || port > 65535)
-				return (EAI_SERVICE);
-			port = htons(port);
-		} else {
-			sp = getservbyname(servname, proto);
-			if (sp == NULL)
-				return (EAI_SERVICE);
-			port = sp->s_port;
-			if (socktype == 0) {
-				if (strcmp(sp->s_proto, "tcp"))
-					socktype = SOCK_STREAM;
-				else if (strcmp(sp->s_proto, "udp"))
-					socktype = SOCK_DGRAM;
-			}
-		}
-	} else
-		port = 0;
-
-	/*
-	 * Next, deal with just a service name, and no hostname.
-	 * (we verified that one of them was non-null up above).
-	 */
-	if (hostname == NULL && (flags & AI_PASSIVE) != 0) {
-		if (family == AF_INET || family == 0) {
-			ai = ai_alloc(AF_INET, sizeof(struct sockaddr_in));
-			if (ai == NULL)
-				return (EAI_MEMORY);
-			ai->ai_socktype = socktype;
-			ai->ai_protocol = protocol;
-			SIN(ai->ai_addr)->sin_port = port;
-			ai->ai_next = ai_list;
-			ai_list = ai;
-		}
-
-		if (family == AF_INET6 || family == 0) {
-			ai = ai_alloc(AF_INET6, sizeof(struct sockaddr_in6));
-			if (ai == NULL) {
-				freeaddrinfo(ai_list);
-				return (EAI_MEMORY);
-			}
-			ai->ai_socktype = socktype;
-			ai->ai_protocol = protocol;
-			SIN6(ai->ai_addr)->sin6_port = port;
-			ai->ai_next = ai_list;
-			ai_list = ai;
-		}
-
-		*res = ai_list;
-		return (0);
-	}
-
-	/*
-	 * If the family isn't specified or AI_NUMERICHOST specified,
-	 * check first to see if it * is a numeric address.
-	 * Though the gethostbyname2() routine
-	 * will recognize numeric addresses, it will only recognize
-	 * the format that it is being called for.  Thus, a numeric
-	 * AF_INET address will be treated by the AF_INET6 call as
-	 * a domain name, and vice versa.  Checking for both numerics
-	 * here avoids that.
-	 */
-	if (hostname != NULL &&
-	    (family == 0 || (flags & AI_NUMERICHOST) != 0)) {
-		char abuf[sizeof(struct in6_addr)];
-		char nbuf[sizeof("xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx00")];
-		int addrsize, addroff;
-
-		if (inet_aton(hostname, (struct in_addr *)abuf)) {
-			if (family == AF_INET6) {
-				/* Convert to a V4 mapped address */
-				struct in6_addr *a6 = (struct in6_addr *)abuf;
-				memcpy(&a6->s6_addr[12], &a6->s6_addr[0], 4);
-				memset(&a6->s6_addr[10], 0xff, 2);
-				memset(&a6->s6_addr[0], 0, 10);
-				goto inet6_addr;
-			}
-			addrsize = sizeof(struct in_addr);
-			addroff = (char *)(&SIN(0)->sin_addr) - (char *)0;
-			family = AF_INET;
-			goto common;
-
-		} else if (inet_pton(AF_INET6, hostname, abuf)) {
-			if (family && family != AF_INET6)
-				return (EAI_NONAME);
-		inet6_addr:
-			addrsize = sizeof(struct in6_addr);
-			addroff = (char *)(&SIN6(0)->sin6_addr) - (char *)0;
-			family = AF_INET6;
-
-		common:
-			if ((ai = ai_clone(ai_list, family)) == NULL)
-				return (EAI_MEMORY);
-			ai_list = ai;
-			ai->ai_socktype = socktype;
-			SIN(ai->ai_addr)->sin_port = port;
-			memcpy((char *)ai->ai_addr + addroff, abuf, addrsize);
-			if (flags & AI_CANONNAME) {
-				inet_ntop(family, abuf, nbuf, sizeof(nbuf));
-				ai->ai_canonname = strdup(nbuf);
-			}
-			goto done;
-		} else if ((flags & AI_NUMERICHOST) != 0){
-			return (EAI_NONAME);
-		}
-	}
-
-	set_order(family, net_order);
-	for (i = 0; i < FOUND_MAX; i++) {
-		if (net_order[i] == NULL)
-			break;
-		if ((err = (net_order[i])(hostname, flags, &ai_list,
-		    socktype, port)) != 0)
-			return(err);
-	}
-
-	if (ai_list == NULL)
-		return (EAI_NODATA);
-
-done:
-	ai_list = ai_reverse(ai_list);
-
-	*res = ai_list;
-	return (0);
-}
-
-static void
-set_order(family, net_order)
-	int family;
-	int (**net_order)();
-{
-	char *order, *tok;
-	int found;
-
-	if (family) {
-		switch (family) {
-		case AF_INET:
-			*net_order++ = add_ipv4;
-			break;
-		case AF_INET6:
-			*net_order++ = add_ipv6;
-			break;
-		}
-	} else {
-		order = getenv("NET_ORDER");
-		found = 0;
-		while (order != NULL) {
-			/* We ignore any unknown names.  */
-			tok = strsep(&order, ":");
-			if (strcasecmp(tok, "inet6") == 0) {
-				if ((found & FOUND_IPV6) == 0)
-					*net_order++ = add_ipv6;
-				found |= FOUND_IPV6;
-			} else if (strcasecmp(tok, "inet") == 0 ||
-			    strcasecmp(tok, "inet4") == 0) {
-				if ((found & FOUND_IPV4) == 0)
-					*net_order++ = add_ipv4;
-				found |= FOUND_IPV4;
-			}
-		}
-
-		/* Add in anything that we didn't find */
-		if ((found & FOUND_IPV4) == 0)
-			*net_order++ = add_ipv4;
-		if ((found & FOUND_IPV6) == 0)
-			*net_order++ = add_ipv6;
-	}
-	*net_order = NULL;
-	return;
-}
-
-static char v4_loop[4] = { 127, 0, 0, 1 };
-
-static int
-add_ipv4(const char *hostname, int flags, struct addrinfo **aip,
-    int socktype, int port)
-{
-	struct addrinfo *ai;
-	struct hostent *hp;
-	char **addr;
-
-	if (hostname == NULL && (flags & AI_PASSIVE) == 0) {
-		if ((ai = ai_clone(*aip, AF_INET)) == NULL) {
-			freeaddrinfo(*aip);
-			return(EAI_MEMORY);
-		}
-
-		*aip = ai;
-		ai->ai_socktype = socktype;
-		SIN(ai->ai_addr)->sin_port = port;
-		memcpy(&SIN(ai->ai_addr)->sin_addr, v4_loop, 4);
-	} else if ((hp = gethostbyname2(hostname, AF_INET)) != NULL) {
-		for (addr = hp->h_addr_list; *addr; addr++) {
-			if ((ai = ai_clone(*aip, hp->h_addrtype)) == NULL) {
-				freeaddrinfo(*aip);
-				return(EAI_MEMORY);
-			}
-			*aip = ai;
-			ai->ai_socktype = socktype;
-
-			/* We get IPv6 addresses if RES_USE_INET6 is set */
-			if (hp->h_addrtype == AF_INET6) {
-				SIN6(ai->ai_addr)->sin6_port = port;
-				memcpy(&SIN6(ai->ai_addr)->sin6_addr, *addr,
-				    hp->h_length);
-			} else {
-				SIN(ai->ai_addr)->sin_port = port;
-				memcpy(&SIN(ai->ai_addr)->sin_addr, *addr,
-				    hp->h_length);
-			}
-			if (flags & AI_CANONNAME)
-				ai->ai_canonname = strdup(hp->h_name);
-		}
-	}
-	return(0);
-}
-
-static char v6_loop[16] = { 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1 };
-
-static int
-add_ipv6(const char *hostname, int flags, struct addrinfo **aip,
-	 int socktype, int port)
-{
-	struct addrinfo *ai;
-	struct hostent *hp;
-	char **addr;
-
-	if (hostname == NULL && (flags & AI_PASSIVE) == 0) {
-		if ((ai = ai_clone(*aip, AF_INET6)) == NULL) {
-			freeaddrinfo(*aip);
-			return(EAI_MEMORY);
-		}
-
-		*aip = ai;
-		ai->ai_socktype = socktype;
-		SIN6(ai->ai_addr)->sin6_port = port;
-		memcpy(&SIN6(ai->ai_addr)->sin6_addr, v6_loop, 16);
-	} else if ((hp = gethostbyname2(hostname, AF_INET6)) != NULL) {
-		for (addr = hp->h_addr_list; *addr; addr++) {
-			if ((ai = ai_clone(*aip, AF_INET6)) == NULL) {
-				freeaddrinfo(*aip);
-				return (EAI_MEMORY);
-			}
-			*aip = ai;
-			ai->ai_socktype = socktype;
-			SIN6(ai->ai_addr)->sin6_port = port;
-			memcpy(&SIN6(ai->ai_addr)->sin6_addr, *addr,
-			    hp->h_length);
-			if (flags & AI_CANONNAME)
-				ai->ai_canonname = strdup(hp->h_name);
-		}
-	}
-	return (0);
-}
-
-void
-freeaddrinfo(struct addrinfo *ai) {
-	struct addrinfo *ai_next;
-
-	while (ai != NULL) {
-		ai_next = ai->ai_next;
-		if (ai->ai_addr)
-			free(ai->ai_addr);
-		if (ai->ai_canonname)
-			free(ai->ai_canonname);
-		free(ai);
-		ai = ai_next;
-	}
-}
-
-#ifdef AF_LOCAL
-static int
-get_local(const char *name, int socktype, struct addrinfo **res) {
-	struct addrinfo *ai;
-	struct sockaddr_un *sun;
-
-	if (socktype == 0)
-		return (EAI_SOCKTYPE);
-
-	if ((ai = ai_alloc(AF_LOCAL, sizeof(*sun))) == NULL)
-		return (EAI_MEMORY);
-
-	sun = SUN(ai->ai_addr);
-	strncpy(sun->sun_path, name, sizeof(sun->sun_path));
-
-	ai->ai_socktype = socktype;
-	/*
-	 * ai->ai_flags, ai->ai_protocol, ai->ai_canonname,
-	 * and ai->ai_next were initialized to zero.
-	 */
-
-	*res = ai;
-	return (0);
-}
-#endif
-
-/*
- * Allocate an addrinfo structure, and a sockaddr structure
- * of the specificed length.  We initialize:
- *	ai_addrlen
- *	ai_family
- *	ai_addr
- *	ai_addr->sa_family
- *	ai_addr->sa_len	(HAVE_SA_LEN)
- * and everything else is initialized to zero.
- */
-static struct addrinfo *
-ai_alloc(int family, int addrlen) {
-	struct addrinfo *ai;
-
-	if ((ai = (struct addrinfo *)calloc(1, sizeof(*ai))) == NULL)
-		return (NULL);
-
-	if ((ai->ai_addr = SA(calloc(1, addrlen))) == NULL) {
-		free(ai);
-		return (NULL);
-	}
-	ai->ai_addrlen = addrlen;
-	ai->ai_family = family;
-	ai->ai_addr->sa_family = family;
-#ifdef	HAVE_SA_LEN
-	ai->ai_addr->sa_len = addrlen;
-#endif
-	return (ai);
-}
-
-static struct addrinfo *
-ai_clone(struct addrinfo *oai, int family) {
-	struct addrinfo *ai;
-
-	ai = ai_alloc(family, ((family == AF_INET6) ?
-	    sizeof(struct sockaddr_in6) : sizeof(struct sockaddr_in)));
-
-	if (ai == NULL) {
-		freeaddrinfo(oai);
-		return (NULL);
-	}
-	if (oai == NULL)
-		return (ai);
-
-	ai->ai_flags = oai->ai_flags;
-	ai->ai_socktype = oai->ai_socktype;
-	ai->ai_protocol = oai->ai_protocol;
-	ai->ai_canonname = NULL;
-	ai->ai_next = oai;
-	return (ai);
-}
-
-static struct addrinfo *
-ai_reverse(struct addrinfo *oai) {
-	struct addrinfo *nai, *tai;
-
-	nai = NULL;
-
-	while (oai) {
-		/* grab one off the old list */
-		tai = oai;
-		oai = oai->ai_next;
-		/* put it on the front of the new list */
-		tai->ai_next = nai;
-		nai = tai;
-	}
-	return (nai);
-}
diff --git a/contrib/bind/lib/irs/getgrent.c b/contrib/bind/lib/irs/getgrent.c
deleted file mode 100644
index 866e8c52cdc23..0000000000000
--- a/contrib/bind/lib/irs/getgrent.c
+++ /dev/null
@@ -1,221 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: getgrent.c,v 1.19 1999/10/13 16:39:30 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(WANT_IRS_GR) || defined(__BIND_NOSTATIC)
-static int __bind_irs_gr_unneeded;
-#else
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <grp.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_data.h"
-
-/* Forward */
-
-static struct net_data *init(void);
-void			endgrent(void);
-
-/* Public */
-
-struct group *
-getgrent() {
-	struct net_data *net_data = init();
-
-	return (getgrent_p(net_data));
-}
-
-struct group *
-getgrnam(const char *name) {
-	struct net_data *net_data = init();
-
-	return (getgrnam_p(name, net_data));
-}
-
-struct group *
-getgrgid(gid_t gid) {
-	struct net_data *net_data = init();
-
-	return (getgrgid_p(gid, net_data));
-}
-
-int
-setgroupent(int stayopen) {
-	struct net_data *net_data = init();
-
-	return (setgroupent_p(stayopen, net_data));
-}
-
-#ifdef SETGRENT_VOID
-void
-setgrent() {
-	struct net_data *net_data = init();
-
-	return (setgrent_p(net_data));
-}
-#else
-int
-setgrent() {
-	struct net_data *net_data = init();
-
-	return (setgrent_p(net_data));
-}
-#endif /* SETGRENT_VOID */
-
-void
-endgrent() {
-	struct net_data *net_data = init();
-
-	endgrent_p(net_data);
-}
-
-int
-getgrouplist(const char *name, gid_t basegid, gid_t *groups, int *ngroups) {
-	struct net_data *net_data = init();
-
-	return (getgrouplist_p(name, basegid, groups, ngroups, net_data));
-}
-
-/* Shared private. */
-
-struct group *
-getgrent_p(struct net_data *net_data) {
-	struct irs_gr *gr;
-
-	if (!net_data || !(gr = net_data->gr))
-		return (NULL);
-	net_data->gr_last = (*gr->next)(gr);
-	return (net_data->gr_last);
-}
-
-struct group *
-getgrnam_p(const char *name, struct net_data *net_data) {
-	struct irs_gr *gr;
-
-	if (!net_data || !(gr = net_data->gr))
-		return (NULL);
-	if (net_data->gr_stayopen && net_data->gr_last &&
-	    !strcmp(net_data->gr_last->gr_name, name))
-		return (net_data->gr_last);
-	net_data->gr_last = (*gr->byname)(gr, name);
-	if (!net_data->gr_stayopen)
-		endgrent();
-	return (net_data->gr_last);
-}
-
-struct group *
-getgrgid_p(gid_t gid, struct net_data *net_data) {
-	struct irs_gr *gr;
-
-	if (!net_data || !(gr = net_data->gr))
-		return (NULL);
-	if (net_data->gr_stayopen && net_data->gr_last &&
-	    net_data->gr_last->gr_gid == gid)
-		return (net_data->gr_last);
-	net_data->gr_last = (*gr->bygid)(gr, gid);
-	if (!net_data->gr_stayopen)
-		endgrent();
-	return (net_data->gr_last);
-}
-
-int
-setgroupent_p(int stayopen, struct net_data *net_data) {
-	struct irs_gr *gr;
-
-	if (!net_data || !(gr = net_data->gr))
-		return (0);
-	(*gr->rewind)(gr);
-	net_data->gr_stayopen = (stayopen != 0);
-	if (stayopen == 0)
-		net_data_minimize(net_data);
-	return (1);
-}
-
-#ifdef SETGRENT_VOID
-void
-setgrent_p(struct net_data *net_data) {
-	(void)setgroupent_p(0, net_data);
-}
-#else
-int
-setgrent_p(struct net_data *net_data) {
-	return (setgroupent_p(0, net_data));
-}
-#endif /* SETGRENT_VOID */
-
-void
-endgrent_p(struct net_data *net_data) {
-	struct irs_gr *gr;
-
-	if ((net_data != NULL) && ((gr = net_data->gr) != NULL))
-		(*gr->minimize)(gr);
-}
-
-int
-getgrouplist_p(const char *name, gid_t basegid, gid_t *groups, int *ngroups,
-	       struct net_data *net_data) {
-	struct irs_gr *gr;
-
-	if (!net_data || !(gr = net_data->gr)) {
-		*ngroups = 0;
-		return (-1);
-	}
-	return ((*gr->list)(gr, name, basegid, groups, ngroups));
-}
-
-/* Private */
-
-static struct net_data *
-init() {
-	struct net_data *net_data;
-
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->gr) {
-		net_data->gr = (*net_data->irs->gr_map)(net_data->irs);
-
-		if (!net_data->gr || !net_data->res) {
- error: 
-			errno = EIO;
-			return (NULL);
-		}
-		(*net_data->gr->res_set)(net_data->gr, net_data->res,
-					 NULL);
-	}
-	
-	return (net_data);
-}
-
-#endif /* WANT_IRS_GR */
diff --git a/contrib/bind/lib/irs/getgrent_r.c b/contrib/bind/lib/irs/getgrent_r.c
deleted file mode 100644
index df055db4fa21a..0000000000000
--- a/contrib/bind/lib/irs/getgrent_r.c
+++ /dev/null
@@ -1,219 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getgrent_r.c,v 8.4 1999/01/18 07:46:51 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS) || !defined(WANT_IRS_PW)
-	static int getgrent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <grp.h>
-#include <sys/param.h>
-#include <port_after.h>
-
-#ifdef GROUP_R_RETURN
-
-static int
-copy_group(struct group *, struct group *, char *buf, int buflen);
-
-/* POSIX 1003.1c */
-#ifdef POSIX_GETGRNAM_R
-int
-__posix_getgrnam_r(const char *name,  struct group *gptr,
-		char *buf, int buflen, struct group **result) {
-#else
-int
-getgrnam_r(const char *name,  struct group *gptr,
-		char *buf, size_t buflen, struct group **result) {
-#endif
-	struct group *ge = getgrnam(name);
-	int res;
-
-	if (ge == NULL) {
-		*result = NULL;
-		return (-1);
-	}
-
-	res = copy_group(ge, gptr, buf, buflen);
-	*result = res ? NULL : gptr;
-	return (res);
-}
-
-#ifdef POSIX_GETGRNAM_R
-struct group *
-getgrnam_r(const char *name,  struct group *gptr,
-		char *buf, int buflen) {
-	struct group *ge = getgrnam(name);
-	int res;
-
-	if (ge == NULL)
-		return (NULL);
-	res = copy_group(ge, gptr, buf, buflen);
-	return (res ? NULL : gptr);
-}
-#endif /* POSIX_GETGRNAM_R */
-
-/* POSIX 1003.1c */
-#ifdef POSIX_GETGRGID_R
-int
-__posix_getgrgid_r(const gid_t gid, struct group *gptr,
-		char *buf, int buflen, struct group **result) {
-#else /* POSIX_GETGRGID_R */
-int
-getgrgid_r(const gid_t gid, struct group *gptr,
-		char *buf, size_t buflen, struct group **result) {
-#endif /* POSIX_GETGRGID_R */
-	struct group *ge = getgrgid(gid);
-	int res;
-
-	if (ge == NULL) {
-		*result = NULL;
-		return (-1);
-	}
-
-	res = copy_group(ge, gptr, buf, buflen);
-	*result = res ? NULL : gptr;
-	return (res);
-}
-
-#ifdef POSIX_GETGRGID_R
-struct group *
-getgrgid_r(const gid_t gid, struct group *gptr,
-		char *buf, int buflen) {
-	struct group *ge = getgrgid(gid);
-	int res;
-
-	if (ge == NULL)
-		return (NULL);
-
-	res = copy_group(ge, gptr, buf, buflen);
-	return (res ? NULL : gptr);
-}
-#endif
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-GROUP_R_RETURN
-getgrent_r(struct group *gptr, GROUP_R_ARGS) {
-	struct group *ge = getgrent();
-	int res;
-
-	if (ge == NULL) {
-		return (GROUP_R_BAD);
-	}
-
-	res = copy_group(ge, gptr, buf, buflen);
-	return (res ? GROUP_R_BAD : GROUP_R_OK);
-}
-
-GROUP_R_SET_RETURN
-setgrent_r(GROUP_R_ENT_ARGS) {
-
-	setgrent();
-#ifdef GROUP_R_SET_RESULT
-	return (GROUP_R_SET_RESULT);
-#endif
-}
-
-GROUP_R_END_RETURN
-endgrent_r(GROUP_R_ENT_ARGS) {
-
-	endgrent();
-	GROUP_R_END_RESULT(GROUP_R_OK);
-}
-
-
-#if 0
-	/* XXX irs does not have a fgetgrent() */
-GROUP_R_RETURN
-fgetgrent_r(FILE *f, struct group *gptr, GROUP_R_ARGS) {
-	struct group *ge = fgetgrent(f);
-	int res;
-
-	if (ge == NULL)
-		return (GROUP_R_BAD);
-
-	res = copy_group(ge, gptr, buf, buflen);
-	return (res ? GROUP_R_BAD : GROUP_R_OK);
-}
-#endif
-
-/* Private */
-
-static int
-copy_group(struct group *ge, struct group *gptr, char *buf, int buflen) {
-	char *cp;
-	int i, n;
-	int numptr, len;
-
-	/* Find out the amount of space required to store the answer. */
-	numptr = 1; /* NULL ptr */
-	len = (char *)ALIGN(buf) - buf;
-	for (i = 0; ge->gr_mem[i]; i++, numptr++) {
-		len += strlen(ge->gr_mem[i]) + 1;
-	}
-	len += strlen(ge->gr_name) + 1;
-	len += strlen(ge->gr_passwd) + 1;
-	len += numptr * sizeof(char*);
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (-1);
-	}
-
-	/* copy group id */
-	gptr->gr_gid = ge->gr_gid;
-
-	cp = (char *)ALIGN(buf) + numptr * sizeof(char *);
-
-	/* copy official name */
-	n = strlen(ge->gr_name) + 1;
-	strcpy(cp, ge->gr_name);
-	gptr->gr_name = cp;
-	cp += n;
-
-	/* copy member list */
-	gptr->gr_mem = (char **)ALIGN(buf);
-	for (i = 0 ; ge->gr_mem[i]; i++) {
-		n = strlen(ge->gr_mem[i]) + 1;
-		strcpy(cp, ge->gr_mem[i]);
-		gptr->gr_mem[i] = cp;
-		cp += n;
-	}
-	gptr->gr_mem[i] = NULL;
-
-	/* copy password */
-	n = strlen(ge->gr_passwd) + 1;
-	strcpy(cp, ge->gr_passwd);
-	gptr->gr_passwd = cp;
-	cp += n;
-
-	return (0);
-}
-#else /* GROUP_R_RETURN */
-	static int getgrent_r_unknown_system = 0;
-#endif /* GROUP_R_RETURN */
-#endif /* !def(_REENTRANT) || !def(DO_PTHREADS) || !def(WANT_IRS_PW) */
diff --git a/contrib/bind/lib/irs/gethostent.c b/contrib/bind/lib/irs/gethostent.c
deleted file mode 100644
index 5d316c8e78be3..0000000000000
--- a/contrib/bind/lib/irs/gethostent.c
+++ /dev/null
@@ -1,891 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: gethostent.c,v 1.27 2000/04/20 07:10:33 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(__BIND_NOSTATIC)
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/ioctl.h>
-#include <netinet/in.h>
-#include <net/if.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdlib.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "irs_data.h"
-
-/* Definitions */
-
-struct pvt {
-	char *		aliases[1];
-	char *		addrs[2];
-	char		addr[NS_IN6ADDRSZ];
-	char		name[NS_MAXDNAME + 1];
-	struct hostent	host;
-};
-
-/* Forward */
-
-static struct net_data *init(void);
-static void		freepvt(struct net_data *);
-static struct hostent  *fakeaddr(const char *, int, struct net_data *);
-
-
-/* Public */
-
-struct hostent *
-gethostbyname(const char *name) {
-	struct net_data *net_data = init();
-
-	return (gethostbyname_p(name, net_data));
-}
-
-struct hostent *
-gethostbyname2(const char *name, int af) {
-	struct net_data *net_data = init();
-
-	return (gethostbyname2_p(name, af, net_data));
-}
-
-struct hostent *
-gethostbyaddr(const char *addr, int len, int af) {
-	struct net_data *net_data = init();
-
-	return (gethostbyaddr_p(addr, len, af, net_data));
-}
-
-struct hostent *
-gethostent() {
-	struct net_data *net_data = init();
-
-	return (gethostent_p(net_data));
-}
-
-void
-sethostent(int stayopen) {
-	struct net_data *net_data = init();
-	sethostent_p(stayopen, net_data);
-}
-
-
-void
-endhostent() {
-	struct net_data *net_data = init();
-	endhostent_p(net_data);
-}
-
-/* Shared private. */
-
-struct hostent *
-gethostbyname_p(const char *name, struct net_data *net_data) {
-	struct hostent *hp;
-
-	if (!net_data)
-		return (NULL);
-
-	if (net_data->res->options & RES_USE_INET6) {
-		hp = gethostbyname2_p(name, AF_INET6, net_data);
-		if (hp)
-			return (hp);
-	}
-	return (gethostbyname2_p(name, AF_INET, net_data));
-}
-
-struct hostent *
-gethostbyname2_p(const char *name, int af, struct net_data *net_data) {
-	struct irs_ho *ho;
-	char tmp[NS_MAXDNAME];
-	struct hostent *hp;
-	const char *cp;
-	char **hap;
-
-	if (!net_data || !(ho = net_data->ho))
-		return (NULL);
-	if (net_data->ho_stayopen && net_data->ho_last) {
-		if (ns_samename(name, net_data->ho_last->h_name) == 1)
-			return (net_data->ho_last);
-		for (hap = net_data->ho_last->h_aliases; hap && *hap; hap++)
-			if (ns_samename(name, *hap) == 1)
-				return (net_data->ho_last);
-	}
-	if (!strchr(name, '.') && (cp = res_hostalias(net_data->res, name,
-						      tmp, sizeof tmp)))
-		name = cp;
-	if ((hp = fakeaddr(name, af, net_data)) != NULL)
-		return (hp);
-	net_data->ho_last = (*ho->byname2)(ho, name, af);
-	if (!net_data->ho_stayopen)
-		endhostent();
-	return (net_data->ho_last);
-}
-
-struct hostent *
-gethostbyaddr_p(const char *addr, int len, int af, struct net_data *net_data) {
-	struct irs_ho *ho;
-	char **hap;
-
-	if (!net_data || !(ho = net_data->ho))
-		return (NULL);
-	if (net_data->ho_stayopen && net_data->ho_last &&
-	    net_data->ho_last->h_length == len)
-		for (hap = net_data->ho_last->h_addr_list;
-		     hap && *hap;
-		     hap++)
-			if (!memcmp(addr, *hap, len))
-				return (net_data->ho_last);
-	net_data->ho_last = (*ho->byaddr)(ho, addr, len, af);
-	if (!net_data->ho_stayopen)
-		endhostent();
-	return (net_data->ho_last);
-}
-
-
-struct hostent *
-gethostent_p(struct net_data *net_data) {
-	struct irs_ho *ho;
-	struct hostent *hp;
-
-	if (!net_data || !(ho = net_data->ho))
-		return (NULL);
-	while ((hp = (*ho->next)(ho)) != NULL &&
-	       hp->h_addrtype == AF_INET6 &&
-	       (net_data->res->options & RES_USE_INET6) == 0)
-		continue;
-	net_data->ho_last = hp;
-	return (net_data->ho_last);
-}
-
-
-void
-sethostent_p(int stayopen, struct net_data *net_data) {
-	struct irs_ho *ho;
-
-	if (!net_data || !(ho = net_data->ho))
-		return;
-	freepvt(net_data);
-	(*ho->rewind)(ho);
-	net_data->ho_stayopen = (stayopen != 0);
-	if (stayopen == 0)
-		net_data_minimize(net_data);
-}
-
-void
-endhostent_p(struct net_data *net_data) {
-	struct irs_ho *ho;
-
-	if ((net_data != NULL) && ((ho = net_data->ho) != NULL))
-		(*ho->minimize)(ho);
-}
-
-#if !defined(HAS_INET6_STRUCTS) || defined(MISSING_IN6ADDR_ANY)
-static const struct in6_addr in6addr_any;
-#endif
-
-#ifndef IN6_IS_ADDR_V4COMPAT
-static const unsigned char in6addr_compat[12] = {
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0 };
-#define IN6_IS_ADDR_V4COMPAT(x) (!memcmp((x)->s6_addr, in6addr_compat, 12) && \
-				 ((x)->s6_addr[12] != 0 || \
-				  (x)->s6_addr[13] != 0 || \
-				  (x)->s6_addr[14] != 0 || \
-				   ((x)->s6_addr[15] != 0 && \
-				    (x)->s6_addr[15] != 1)))
-#endif
-#ifndef IN6_IS_ADDR_V4MAPPED
-#define IN6_IS_ADDR_V4MAPPED(x) (!memcmp((x)->s6_addr, in6addr_mapped, 12))
-#endif
-
-static const unsigned char in6addr_mapped[12] = {
-	0, 0, 0, 0,  0, 0, 0, 0,  0, 0, 0xff, 0xff };
-
-static int scan_interfaces(int *, int *);
-static struct hostent *copyandmerge(struct hostent *, struct hostent *, int, int *);
-
-/*
- *	Public functions
- */
-
-/*
- *	AI_V4MAPPED + AF_INET6
- *	If no IPv6 address then a query for IPv4 and map returned values.
- *
- *	AI_ALL + AI_V4MAPPED + AF_INET6
- *	Return IPv6 and IPv4 mapped.
- *
- *	AI_ADDRCONFIG
- *	Only return IPv6 / IPv4 address if there is an interface of that
- *	type active.
- */
-
-struct hostent *
-getipnodebyname(const char *name, int af, int flags, int *error_num) {
-	int have_v4 = 1, have_v6 = 1;
-	struct in_addr in4;
-	struct in6_addr in6;
-	struct hostent he, *he1 = NULL, *he2 = NULL, *he3;
-	int v4 = 0, v6 = 0;
-	struct net_data *net_data = init();
-	u_long options;
-	int tmp_err;
-
-	if (net_data == NULL) {
-		*error_num = NO_RECOVERY;
-		return (NULL);
-	}
-
-	/* If we care about active interfaces then check. */
-	if ((flags & AI_ADDRCONFIG) != 0)
-		if (scan_interfaces(&have_v4, &have_v6) == -1) {
-			*error_num = NO_RECOVERY;
-			return (NULL);
-		}
-
-	/* Check for literal address. */
-	if ((v4 = inet_pton(AF_INET, name, &in4)) != 1)
-		v6 = inet_pton(AF_INET6, name, &in6);
-
-	/* Impossible combination? */
-	 
-	if ((af == AF_INET6 && (flags & AI_V4MAPPED) == 0 && v4 == 1) ||
-	    (af == AF_INET && v6 == 1) ||
-	    (have_v4 == 0 && v4 == 1) ||
-	    (have_v6 == 0 && v6 == 1) ||
-	    (have_v4 == 0 && af == AF_INET) ||
-	    (have_v6 == 0 && af == AF_INET6)) {
-		*error_num = HOST_NOT_FOUND;
-		return (NULL);
-	}
-
-	/* Literal address? */
-	if (v4 == 1 || v6 == 1) {
-		char *addr_list[2];
-		char *aliases[1];
-
-		he.h_name = (char *)name;
-		he.h_addr_list = addr_list;
-		he.h_addr_list[0] = (v4 == 1) ? (char *)&in4 : (char *)&in6;
-		he.h_addr_list[1] = NULL;
-		he.h_aliases = aliases;
-		he.h_aliases[0] = NULL;
-		he.h_length = (v4 == 1) ? INADDRSZ : IN6ADDRSZ;
-		he.h_addrtype = (v4 == 1) ? AF_INET : AF_INET6;
-		return (copyandmerge(&he, NULL, af, error_num));
-	}
-
-	options = net_data->res->options;
-	net_data->res->options &= ~RES_USE_INET6;
-
-	tmp_err = NO_RECOVERY;
-	if (have_v6 && af == AF_INET6) {
-		he2 = gethostbyname2_p(name, AF_INET6, net_data);
-		if (he2 != NULL) {
-			he1 = copyandmerge(he2, NULL, af, error_num);
-			if (he1 == NULL)
-				return (NULL);
-			he2 = NULL;
-		} else {
-			tmp_err = net_data->res->res_h_errno;
-		}
-	}
-
-	if (have_v4 &&
-	    ((af == AF_INET) ||
-	     (af == AF_INET6 && (flags & AI_V4MAPPED) != 0 &&
-	      (he1 == NULL || (flags & AI_ALL) != 0)))) {
-		he2 = gethostbyname2_p(name, AF_INET, net_data);
-		if (he1 == NULL && he2 == NULL) {
-			*error_num = net_data->res->res_h_errno;
-			return (NULL);
-		} 
-	} else
-		*error_num = tmp_err;
-
-	net_data->res->options = options;
-
-	he3 = copyandmerge(he1, he2, af, error_num);
-
-	if (he1 != NULL)
-		freehostent(he1);
-	return (he3);
-}
-
-struct hostent *
-getipnodebyaddr(const void *src, size_t len, int af, int *error_num) {
-	struct hostent *he1, *he2;
-	struct net_data *net_data = init();
-
-	/* Sanity Checks. */
-	if (src == NULL) {
-		*error_num = NO_RECOVERY;
-		return (NULL);
-	}
-		
-	switch (af) {
-	case AF_INET:
-		if (len != INADDRSZ) {
-			*error_num = NO_RECOVERY;
-			return (NULL);
-		}
-		break;
-	case AF_INET6:
-		if (len != IN6ADDRSZ) {
-			*error_num = NO_RECOVERY;
-			return (NULL);
-		}
-		break;
-	default:
-		*error_num = NO_RECOVERY;
-		return (NULL);
-	}
-
-	/*
-	 * Lookup IPv4 and IPv4 mapped/compatible addresses
-	 */
-	if ((af == AF_INET6 && IN6_IS_ADDR_V4COMPAT((struct in6_addr *)src)) ||
-	    (af == AF_INET6 && IN6_IS_ADDR_V4MAPPED((struct in6_addr *)src)) ||
-	    (af == AF_INET)) {
-		const char *cp = src;
-
-		if (af == AF_INET6)
-			cp += 12;
-		he1 = gethostbyaddr_p(cp, 4, AF_INET, net_data);
-		if (he1 == NULL) {
-			*error_num = net_data->res->res_h_errno;
-			return (NULL);
-		}
-		he2 = copyandmerge(he1, NULL, af, error_num);
-		if (he2 == NULL)
-			return (NULL);
-		/*
-		 * Restore original address if mapped/compatible.
-		 */
-		if (af == AF_INET6)
-			memcpy(he1->h_addr, src, len);
-		return (he2);
-	}
-
-	/*
-	 * Lookup IPv6 address.
-	 */
-	if (memcmp((struct in6_addr *)src, &in6addr_any, 16) == 0) {
-		*error_num = HOST_NOT_FOUND;
-		return (NULL);
-	}
-
-	he1 = gethostbyaddr_p(src, 16, AF_INET6, net_data);
-	if (he1 == NULL) {
-		*error_num = net_data->res->res_h_errno;
-		return (NULL);
-	}
-	return (copyandmerge(he1, NULL, af, error_num));
-}
-
-void
-freehostent(struct hostent *he) {
-	char **cpp;
-	int names = 1;
-	int addresses = 1;
-
-	memput(he->h_name, strlen(he->h_name) + 1);
-
-	cpp = he->h_addr_list;
-	while (*cpp != NULL) {
-		memput(*cpp, (he->h_addrtype == AF_INET) ?
-			     INADDRSZ : IN6ADDRSZ);
-		*cpp = NULL;
-		cpp++;
-		addresses++;
-	}
-
-	cpp = he->h_aliases;
-	while (*cpp != NULL) {
-		memput(*cpp, strlen(*cpp) + 1);
-		cpp++;
-		names++;
-	}
-
-	memput(he->h_aliases, sizeof(char *) * (names));
-	memput(he->h_addr_list, sizeof(char *) * (addresses));
-	memput(he, sizeof *he);
-}
-
-/*
- * Private
- */
-
-/*
- * Scan the interface table and set have_v4 and have_v6 depending
- * upon whether there are IPv4 and IPv6 interface addresses.
- *
- * Returns:
- *	0 on success
- *	-1 on failure.
- */
-
-static int
-scan_interfaces(int *have_v4, int *have_v6) {
-#ifndef SIOCGLIFCONF
-/* map new to old */
-#define SIOCGLIFCONF SIOCGIFCONF
-#define lifc_len ifc_len
-#define lifc_buf ifc_buf
-	struct ifconf lifc;
-#else
-#define SETFAMILYFLAGS
-	struct lifconf lifc;
-#endif
-
-#ifndef SIOCGLIFADDR
-/* map new to old */
-#define SIOCGLIFADDR SIOCGIFADDR
-#endif
-
-#ifndef SIOCGLIFFLAGS
-#define SIOCGLIFFLAGS SIOCGIFFLAGS
-#define lifr_addr ifr_addr
-#define lifr_name ifr_name
-#define lifr_flags ifr_flags
-#define ss_family sa_family
-	struct ifreq lifreq;
-#else
-	struct lifreq lifreq;
-#endif
-	struct in_addr in4;
-	struct in6_addr in6;
-	char *buf = NULL, *cp, *cplim;
-	static int bufsiz = 4095;
-	int s, cpsize, n;
-
-	/* Set to zero.  Used as loop terminators below. */
-	*have_v4 = *have_v6 = 0;
-
-	/* Get interface list from system. */
-	if ((s = socket(AF_INET, SOCK_DGRAM, 0)) == -1)
-		goto err_ret;
-
-	/*
-	 * Grow buffer until large enough to contain all interface
-	 * descriptions.
-	 */
-	for (;;) {
-		buf = memget(bufsiz);
-		if (buf == NULL)
-			goto err_ret;
-#ifdef SETFAMILYFLAGS
-		lifc.lifc_family = AF_UNSPEC;
-		lifc.lifc_flags = 0;
-#endif
-		lifc.lifc_len = bufsiz;
-		lifc.lifc_buf = buf;
-#ifdef IRIX_EMUL_IOCTL_SIOCGIFCONF
-		/*
-		 * This is a fix for IRIX OS in which the call to ioctl with
-		 * the flag SIOCGIFCONF may not return an entry for all the
-		 * interfaces like most flavors of Unix.
-		 */
-		if (emul_ioctl(&lifc) >= 0)
-			break;
-#else
-		if ((n = ioctl(s, SIOCGLIFCONF, (char *)&lifc)) != -1) {
-			/*
-			 * Some OS's just return what will fit rather
-			 * than set EINVAL if the buffer is too small
-			 * to fit all the interfaces in.  If 
-			 * lifc.lifc_len is too near to the end of the
-			 * buffer we will grow it just in case and
-			 * retry.
-			 */
-			if (lifc.lifc_len + 2 * sizeof(lifreq) < bufsiz)
-				break;
-		}
-#endif
-		if ((n == -1) && errno != EINVAL)
-			goto err_ret;
-
-		if (bufsiz > 1000000)
-			goto err_ret;
-
-		memput(buf, bufsiz);
-		bufsiz += 4096;
-	}
-
-	/* Parse system's interface list. */
-	cplim = buf + lifc.lifc_len;    /* skip over if's with big ifr_addr's */
-	for (cp = buf;
-	     (*have_v4 == 0 || *have_v6 == 0) && cp < cplim;
-	     cp += cpsize) {
-		memcpy(&lifreq, cp, sizeof lifreq);
-#ifdef HAVE_SA_LEN
-#ifdef FIX_ZERO_SA_LEN
-		if (lifreq.lifr_addr.sa_len == 0)
-			lifreq.lifr_addr.sa_len = 16;
-#endif
-#ifdef HAVE_MINIMUM_IFREQ
-		cpsize = sizeof lifreq;
-		if (lifreq.lifr_addr.sa_len > sizeof (struct sockaddr))
-			cpsize += (int)lifreq.lifr_addr.sa_len -
-				(int)(sizeof (struct sockaddr));
-#else
-		cpsize = sizeof lifreq.lifr_name + lifreq.lifr_addr.sa_len;
-#endif /* HAVE_MINIMUM_IFREQ */
-#elif defined SIOCGIFCONF_ADDR
-		cpsize = sizeof lifreq;
-#else
-		cpsize = sizeof lifreq.lifr_name;
-		/* XXX maybe this should be a hard error? */
-		if (ioctl(s, SOICGLIFADDR, (char *)&lifreq) < 0)
-			continue;
-#endif
-		switch (lifreq.lifr_addr.ss_family) {
-		case AF_INET:
-			if (*have_v4 == 0) {
-				memcpy(&in4,
-				       &((struct sockaddr_in *)
-				       &lifreq.lifr_addr)->sin_addr,
-				       sizeof in4);
-				if (in4.s_addr == INADDR_ANY)
-					break;
-				n = ioctl(s, SIOCGLIFFLAGS, (char *)&lifreq);
-				if (n < 0)
-					break;
-				if ((lifreq.lifr_flags & IFF_UP) == 0)
-					break;
-				*have_v4 = 1;
-			} 
-			break;
-		case AF_INET6:
-			if (*have_v6 == 0) {
-				memcpy(&in6,
-				       &((struct sockaddr_in6 *)
-				       &lifreq.lifr_addr)->sin6_addr, sizeof in6);
-				if (memcmp(&in6, &in6addr_any, sizeof in6) == 0)
-					break;
-				n = ioctl(s, SIOCGLIFFLAGS, (char *)&lifreq);
-				if (n < 0)
-					break;
-				if ((lifreq.lifr_flags & IFF_UP) == 0)
-					break;
-				*have_v6 = 1;
-			}
-			break;
-		}
-	}
-	if (buf != NULL)
-		memput(buf, bufsiz);
-	close(s);
-	/* printf("scan interface -> 4=%d 6=%d\n", *have_v4, *have_v6); */
-	return (0);
- err_ret:
-	if (buf != NULL)
-		memput(buf, bufsiz);
-	if (s != -1)
-		close(s);
-	/* printf("scan interface -> 4=%d 6=%d\n", *have_v4, *have_v6); */
-	return (-1);
-}
-
-static struct hostent *
-copyandmerge(struct hostent *he1, struct hostent *he2, int af, int *error_num) {
-	struct hostent *he = NULL;
-	int addresses = 1;	/* NULL terminator */
-	int names = 1;		/* NULL terminator */
-	int len = 0;
-	char **cpp, **npp;
-
-	/*
-	 * Work out array sizes;
-	 */
-	if (he1 != NULL) {
-		cpp = he1->h_addr_list;
-		while (*cpp != NULL) {
-			addresses++;
-			cpp++;
-		}
-		cpp = he1->h_aliases;
-		while (*cpp != NULL) {
-			names++;
-			cpp++;
-		}
-	}
-
-	if (he2 != NULL) {
-		cpp = he2->h_addr_list;
-		while (*cpp != NULL) {
-			addresses++;
-			cpp++;
-		}
-		if (he1 == NULL) {
-			cpp = he2->h_aliases;
-			while (*cpp != NULL) {
-				names++;
-				cpp++;
-			}
-		}
-	}
-
-	if (addresses == 1) {
-		*error_num = NO_ADDRESS;
-		return (NULL);
-	}
-
-	he = memget(sizeof *he);
-	if (he == NULL)
-		goto no_recovery;
-
-	he->h_addr_list = memget(sizeof(char *) * (addresses));
-	if (he->h_addr_list == NULL)
-		goto cleanup0;
-	memset(he->h_addr_list, 0, sizeof(char *) * (addresses));
-
-	/* copy addresses */
-	npp = he->h_addr_list;
-	if (he1 != NULL) {
-		cpp = he1->h_addr_list;
-		while (*cpp != NULL) {
-			*npp = memget((af == AF_INET) ? INADDRSZ : IN6ADDRSZ);
-			if (*npp == NULL)
-				goto cleanup1;
-			/* convert to mapped if required */
-			if (af == AF_INET6 && he1->h_addrtype == AF_INET) {
-				memcpy(*npp, in6addr_mapped,
-				       sizeof in6addr_mapped);
-				memcpy(*npp + sizeof in6addr_mapped, *cpp,
-				       INADDRSZ);
-			} else {
-				memcpy(*npp, *cpp,
-				       (af == AF_INET) ? INADDRSZ : IN6ADDRSZ);
-			}
-			cpp++;
-			npp++;
-		}
-	}
-
-	if (he2 != NULL) {
-		cpp = he2->h_addr_list;
-		while (*cpp != NULL) {
-			*npp = memget((af == AF_INET) ? INADDRSZ : IN6ADDRSZ);
-			if (*npp == NULL)
-				goto cleanup1;
-			/* convert to mapped if required */
-			if (af == AF_INET6 && he2->h_addrtype == AF_INET) {
-				memcpy(*npp, in6addr_mapped,
-				       sizeof in6addr_mapped);
-				memcpy(*npp + sizeof in6addr_mapped, *cpp,
-				       INADDRSZ);
-			} else {
-				memcpy(*npp, *cpp,
-				       (af == AF_INET) ? INADDRSZ : IN6ADDRSZ);
-			}
-			cpp++;
-			npp++;
-		}
-	}
-
-	he->h_aliases = memget(sizeof(char *) * (names));
-	if (he->h_aliases == NULL)
-		goto cleanup1;
-	memset(he->h_aliases, 0, sizeof(char *) * (names));
-
-	/* copy aliases */
-	npp = he->h_aliases;
-	cpp = (he1 != NULL) ? he1->h_aliases : he2->h_aliases;
-	while (*cpp != NULL) {
-		len = strlen (*cpp) + 1;
-		*npp = memget(len);
-		if (*npp == NULL)
-			goto cleanup2;
-		strcpy(*npp, *cpp);
-		npp++;
-		cpp++;
-	}
-
-	/* copy hostname */
-	he->h_name = memget(strlen((he1 != NULL) ?
-			    he1->h_name : he2->h_name) + 1);
-	if (he->h_name == NULL)
-		goto cleanup2;
-	strcpy(he->h_name, (he1 != NULL) ? he1->h_name : he2->h_name);
-
-	/* set address type and length */
-	he->h_addrtype = af;
-	he->h_length = (af == AF_INET) ? INADDRSZ : IN6ADDRSZ;
-	return(he);
-
- cleanup2:
-	cpp = he->h_aliases;
-	while (*cpp != NULL) {
-		memput(*cpp, strlen(*cpp) + 1);
-		cpp++;
-	}
-	memput(he->h_aliases, sizeof(char *) * (names));
-
- cleanup1:
-	cpp = he->h_addr_list;
-	while (*cpp != NULL) {
-		memput(*cpp, (af == AF_INET) ? INADDRSZ : IN6ADDRSZ);
-		*cpp = NULL;
-		cpp++;
-	}
-	memput(he->h_addr_list, sizeof(char *) * (addresses));
-
- cleanup0:
-	memput(he, sizeof *he);
-
- no_recovery:
-	*error_num = NO_RECOVERY;
-	return (NULL);
-}
-
-static struct net_data *
-init() {
-	struct net_data *net_data;
-
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->ho) {
-		net_data->ho = (*net_data->irs->ho_map)(net_data->irs);
-		if (!net_data->ho || !net_data->res) {
-  error:
-			errno = EIO;
-			if (net_data && net_data->res)
-				RES_SET_H_ERRNO(net_data->res, NETDB_INTERNAL);
-			return (NULL);
-		}
-	
-		(*net_data->ho->res_set)(net_data->ho, net_data->res, NULL);
-	}
-	
-	return (net_data);
-}
-
-static void
-freepvt(struct net_data *net_data) {
-	if (net_data->ho_data) {
-		free(net_data->ho_data);
-		net_data->ho_data = NULL;
-	}
-}
-
-static struct hostent *
-fakeaddr(const char *name, int af, struct net_data *net_data) {
-	struct pvt *pvt;
-
-	freepvt(net_data);
-	net_data->ho_data = malloc(sizeof (struct pvt));
-	if (!net_data->ho_data) {
-		errno = ENOMEM;
-		RES_SET_H_ERRNO(net_data->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	pvt = net_data->ho_data;
-	/*
-	 * Unlike its forebear(inet_aton), our friendly inet_pton() is strict
-	 * in its interpretation of its input, and it will only return "1" if
-	 * the input string is a formally valid(and thus unambiguous with
-	 * respect to host names) internet address specification for this AF.
-	 *
-	 * This means "telnet 0xdeadbeef" and "telnet 127.1" are dead now.
-	 */
-	if (inet_pton(af, name, pvt->addr) != 1) {
-		RES_SET_H_ERRNO(net_data->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-	strncpy(pvt->name, name, NS_MAXDNAME);
-	pvt->name[NS_MAXDNAME] = '\0';
-	if (af == AF_INET && (net_data->res->options & RES_USE_INET6) != 0) {
-		map_v4v6_address(pvt->addr, pvt->addr);
-		af = AF_INET6;
-	}
-	pvt->host.h_addrtype = af;
-	switch(af) {
-	case AF_INET:
-		pvt->host.h_length = NS_INADDRSZ;
-		break;
-	case AF_INET6:
-		pvt->host.h_length = NS_IN6ADDRSZ;
-		break;
-	default:
-		errno = EAFNOSUPPORT;
-		RES_SET_H_ERRNO(net_data->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	pvt->host.h_name = pvt->name;
-	pvt->host.h_aliases = pvt->aliases;
-	pvt->aliases[0] = NULL;
-	pvt->addrs[0] = (char *)pvt->addr;
-	pvt->addrs[1] = NULL;
-	pvt->host.h_addr_list = pvt->addrs;
-	RES_SET_H_ERRNO(net_data->res, NETDB_SUCCESS);
-	return (&pvt->host);
-}
-
-#ifdef grot	/* for future use in gethostbyaddr(), for "SUNSECURITY" */
-	struct hostent *rhp;
-	char **haddr;
-	u_long old_options;
-	char hname2[MAXDNAME+1];
-
-	if (af == AF_INET) {
-	    /*
-	     * turn off search as the name should be absolute,
-	     * 'localhost' should be matched by defnames
-	     */
-	    strncpy(hname2, hp->h_name, MAXDNAME);
-	    hname2[MAXDNAME] = '\0';
-	    old_options = net_data->res->options;
-	    net_data->res->options &= ~RES_DNSRCH;
-	    net_data->res->options |= RES_DEFNAMES;
-	    if (!(rhp = gethostbyname(hname2))) {
-		net_data->res->options = old_options;
-		RES_SET_H_ERRNO(net_data->res, HOST_NOT_FOUND);
-		return (NULL);
-	    }
-	    net_data->res->options = old_options;
-	    for (haddr = rhp->h_addr_list; *haddr; haddr++)
-		if (!memcmp(*haddr, addr, INADDRSZ))
-			break;
-	    if (!*haddr) {
-		RES_SET_H_ERRNO(net_data->res, HOST_NOT_FOUND);
-		return (NULL);
-	    }
-	}
-#endif /* grot */
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/gethostent_r.c b/contrib/bind/lib/irs/gethostent_r.c
deleted file mode 100644
index 5da1a9629e32f..0000000000000
--- a/contrib/bind/lib/irs/gethostent_r.c
+++ /dev/null
@@ -1,228 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: gethostent_r.c,v 8.4 1999/01/18 07:46:52 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS)
-	static int gethostent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <netinet/in.h>
-#include <netdb.h>
-#include <sys/param.h>
-#include <port_after.h>
-
-#ifdef HOST_R_RETURN
-
-static HOST_R_RETURN 
-copy_hostent(struct hostent *, struct hostent *, HOST_R_COPY_ARGS);
-
-HOST_R_RETURN
-gethostbyname_r(const char *name,  struct hostent *hptr, HOST_R_ARGS) {
-	struct hostent *he = gethostbyname(name);
-
-	HOST_R_ERRNO;
-
-	if (he == NULL)
-		return (HOST_R_BAD);
-
-	return (copy_hostent(he, hptr, HOST_R_COPY));
-}
-
-HOST_R_RETURN
-gethostbyaddr_r(const char *addr, int len, int type,
-		struct hostent *hptr, HOST_R_ARGS) {
-	struct hostent *he = gethostbyaddr(addr, len, type);
-
-	HOST_R_ERRNO;
-
-	if (he == NULL)
-		return (HOST_R_BAD);
-
-	return (copy_hostent(he, hptr, HOST_R_COPY));
-}
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-HOST_R_RETURN
-gethostent_r(struct hostent *hptr, HOST_R_ARGS) {
-	struct hostent *he = gethostent();
-
-	HOST_R_ERRNO;
-
-	if (he == NULL)
-		return (HOST_R_BAD);
-
-	return (copy_hostent(he, hptr, HOST_R_COPY));
-}
-
-HOST_R_SET_RETURN
-#ifdef HOST_R_ENT_ARGS
-sethostent_r(int stay_open, HOST_R_ENT_ARGS)
-#else
-sethostent_r(int stay_open)
-#endif
-{
-	sethostent(stay_open);
-#ifdef	HOST_R_SET_RESULT
-	return (HOST_R_SET_RESULT);
-#endif
-}
-
-HOST_R_END_RETURN
-#ifdef HOST_R_ENT_ARGS
-endhostent_r(HOST_R_ENT_ARGS)
-#else
-endhostent_r()
-#endif
-{
-	endhostent();
-	HOST_R_END_RESULT(HOST_R_OK);
-}
-
-/* Private */
-
-#ifndef HOSTENT_DATA
-static HOST_R_RETURN
-copy_hostent(struct hostent *he, struct hostent *hptr, HOST_R_COPY_ARGS) {
-	char *cp;
-	char **ptr;
-	int i, n;
-	int nptr, len;
-
-	/* Find out the amount of space required to store the answer. */
-	nptr = 2; /* NULL ptrs */
-	len = (char *)ALIGN(buf) - buf;
-	for (i = 0; he->h_addr_list[i]; i++, nptr++) {
-		len += he->h_length;
-	}
-	for (i = 0; he->h_aliases[i]; i++, nptr++) {
-		len += strlen(he->h_aliases[i]) + 1;
-	}
-	len += strlen(he->h_name) + 1;
-	len += nptr * sizeof(char*);
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (HOST_R_BAD);
-	}
-
-	/* copy address size and type */
-	hptr->h_addrtype = he->h_addrtype;
-	n = hptr->h_length = he->h_length;
-
-	ptr = (char **)ALIGN(buf);
-	cp = (char *)ALIGN(buf) + nptr * sizeof(char *);
-
-	/* copy address list */
-	hptr->h_addr_list = ptr;
-	for (i = 0; he->h_addr_list[i]; i++ , ptr++) {
-		memcpy(cp, he->h_addr_list[i], n);
-		hptr->h_addr_list[i] = cp;
-		cp += n;
-		i++;
-	}
-	hptr->h_addr_list[i] = NULL;
-	ptr++;
-
-	/* copy official name */
-	n = strlen(he->h_name) + 1;
-	strcpy(cp, he->h_name);
-	hptr->h_name = cp;
-	cp += n;
-
-	/* copy aliases */
-	hptr->h_aliases = ptr;
-	for (i = 0 ; he->h_aliases[i]; i++) {
-		n = strlen(he->h_aliases[i]) + 1;
-		strcpy(cp, he->h_aliases[i]);
-		hptr->h_aliases[i] = cp;
-		cp += n;
-	}
-	hptr->h_aliases[i] = NULL;
-
-	return (HOST_R_OK);
-}
-#else /* !HOSTENT_DATA */
-static int
-copy_hostent(struct hostent *he, struct hostent *hptr, HOST_R_COPY_ARGS) {
-	char *cp, *eob;
-	int i, n;
-
-	/* copy address size and type */
-	hptr->h_addrtype = he->h_addrtype;
-	n = hptr->h_length = he->h_length;
-
-	/* copy up to first 35 addresses */
-	i = 0;
-	cp = hdptr->hostaddr;
-	eob = hdptr->hostaddr + sizeof(hdptr->hostaddr);
-	hptr->h_addr_list = hdptr->h_addr_ptrs;
-	while (he->h_addr_list[i] && i < (_MAXADDRS)) {
-		if (n < (eob - cp)) {
-			memcpy(cp, he->h_addr_list[i], n);
-			hptr->h_addr_list[i] = cp;
-			cp += n;
-		} else {
-			break;
-		}
-		i++;
-	}
-	hptr->h_addr_list[i] = NULL;
-
-	/* copy official name */
-	cp = hdptr->hostbuf;
-	eob = hdptr->hostbuf + sizeof(hdptr->hostbuf);
-	if ((n = strlen(he->h_name) + 1) < (eob - cp)) {
-		strcpy(cp, he->h_name);
-		hptr->h_name = cp;
-		cp += n;
-	} else {
-		return (-1);
-	}
-
-	/* copy aliases */
-	i = 0;
-	hptr->h_aliases = hdptr->host_aliases;
-	while (he->h_aliases[i] && i < (_MAXALIASES-1)) {
-		if ((n = strlen(he->h_aliases[i]) + 1) < (eob - cp)) {
-			strcpy(cp, he->h_aliases[i]);
-			hptr->h_aliases[i] = cp;
-			cp += n;
-		} else {
-			break;
-		}
-		i++;
-	}
-	hptr->h_aliases[i] = NULL;
-
-	return (HOST_R_OK);
-}
-#endif /* !HOSTENT_DATA */
-#else /* HOST_R_RETURN */
-	static int gethostent_r_unknown_systemm = 0;
-#endif /* HOST_R_RETURN */
-#endif /* !defined(_REENTRANT) || !defined(DO_PTHREADS) */
diff --git a/contrib/bind/lib/irs/getnameinfo.c b/contrib/bind/lib/irs/getnameinfo.c
deleted file mode 100644
index 7bd30ae5687c0..0000000000000
--- a/contrib/bind/lib/irs/getnameinfo.c
+++ /dev/null
@@ -1,225 +0,0 @@
-/*
- * Issues to be discussed:
- * - Thread safe-ness must be checked
- * - Return values.  There seems to be no standard for return value (RFC2133)
- *   but INRIA implementation returns EAI_xxx defined for getaddrinfo().
- */
-
-/*
- * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
- * All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    This product includes software developed by WIDE Project and
- *    its contributors.
- * 4. Neither the name of the project nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#include <port_before.h>
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <netdb.h>
-#include <resolv.h>
-#include <string.h>
-
-#include <port_after.h>
-
-#define SUCCESS 0
-#define ANY 0
-#define YES 1
-#define NO  0
-
-/*
- * Note that a_off will be dynamically adjusted so that to be consistent
- * with the definition of sockaddr_in{,6}.
- * The value presented below is just a guess.
- */
-static struct afd {
-	int a_af;
-	int a_addrlen;
-	int a_socklen;
-	int a_off;
-} afdl [] = {
-	/* first entry is linked last... */
-	{PF_INET, sizeof(struct in_addr), sizeof(struct sockaddr_in),
-		4 /*XXX*/},
-	{PF_INET6, sizeof(struct in6_addr), sizeof(struct sockaddr_in6),
-		8 /*XXX*/},
-	{0, 0, 0},
-};
-
-struct sockinet {
-	u_char	si_len;
-	u_char	si_family;
-	u_short	si_port;
-};
-
-#define ENI_NOSOCKET 	0
-#define ENI_NOSERVNAME	1
-#define ENI_NOHOSTNAME	2
-#define ENI_MEMORY	3
-#define ENI_SYSTEM	4
-#define ENI_FAMILY	5
-#define ENI_SALEN	6
-
-int
-getnameinfo(sa, salen, host, hostlen, serv, servlen, flags)
-	const struct sockaddr *sa;
-	size_t salen;
-	char *host;
-	size_t hostlen;
-	char *serv;
-	size_t servlen;
-	int flags;
-{
-	struct afd *afd;
-	struct servent *sp;
-	struct hostent *hp;
-	u_short port;
-#ifdef HAVE_SA_LEN
-	int len;
-#endif
-	int family, i;
-	char *addr, *p;
-	u_char pfx;
-	static int firsttime = 1;
-	static char numserv[512];
-	static char numaddr[512];
-
-
-	/* dynamically adjust a_off */
-	if (firsttime) {
-		struct afd *p;
-		u_char *q;
-		struct sockaddr_in sin;
-		struct sockaddr_in6 sin6;
-
-		for (p = &afdl[0]; p->a_af; p++) {
-			switch (p->a_af) {
-			case PF_INET:
-				q = (u_char *)&sin.sin_addr.s_addr;
-				p->a_off = q - (u_char *)&sin;
-				break;
-			case PF_INET6:
-				q = (u_char *)&sin6.sin6_addr.s6_addr;
-				p->a_off = q - (u_char *)&sin6;
-				break;
-			default:
-				break;
-			}
-		}
-		firsttime = 0;
-	}
-
-	if (sa == NULL)
-		return ENI_NOSOCKET;
-
-#ifdef HAVE_SA_LEN
-	len = sa->sa_len;
-	if (len != salen) return ENI_SALEN;
-#endif
-	
-	family = sa->sa_family;
-	for (i = 0; afdl[i].a_af; i++)
-		if (afdl[i].a_af == family) {
-			afd = &afdl[i];
-			goto found;
-		}
-	return ENI_FAMILY;
-	
- found:
-	if (salen != afd->a_socklen) return ENI_SALEN;
-	
-	port = ((struct sockinet *)sa)->si_port; /* network byte order */
-	addr = (char *)sa + afd->a_off;
-
-	if (serv == NULL || servlen == 0) {
-		/* what we should do? */
-	} else if (flags & NI_NUMERICSERV) {
-		snprintf(numserv, strlen(numserv), "%d", ntohs(port));
-		if (strlen(numserv) > servlen)
-			return ENI_MEMORY;
-		strcpy(serv, numserv);
-	} else {
-		sp = getservbyport(port, (flags & NI_DGRAM) ? "udp" : "tcp");
-		if (sp) {
-			if (strlen(sp->s_name) > servlen)
-				return ENI_MEMORY;
-			strcpy(serv, sp->s_name);
-		} else
-			return ENI_NOSERVNAME;
-	}
-
-	switch (sa->sa_family) {
-	case AF_INET:
-		if (ntohl(*(u_long *)addr) >> IN_CLASSA_NSHIFT == 0)
-			flags |= NI_NUMERICHOST;			
-		break;
-	case AF_INET6:
-		pfx = *addr;
-		if (pfx == 0 || pfx == 0xfe || pfx == 0xff)
-			flags |= NI_NUMERICHOST;
-		break;
-	}
-	if (host == NULL || hostlen == 0) {
-		/* what should we do? */
-	} else if (flags & NI_NUMERICHOST) {
-		if (inet_ntop(afd->a_af, addr, numaddr, sizeof(numaddr))
-		    == NULL)
-			return ENI_SYSTEM;
-		if (strlen(numaddr) > hostlen)
-			return ENI_MEMORY;
-		strcpy(host, numaddr);
-	} else {
-		hp = gethostbyaddr(addr, afd->a_addrlen, afd->a_af);
-
-		if (hp) {
-			if (flags & NI_NOFQDN) {
-				p = strchr(hp->h_name, '.');
-				if (p) *p = '\0';
-			}
-			if (strlen(hp->h_name) > hostlen)
-				return ENI_MEMORY;
-			strcpy(host, hp->h_name);
-		} else {
-			if (flags & NI_NAMEREQD)
-				return ENI_NOHOSTNAME;
-			if (inet_ntop(afd->a_af, addr, numaddr, sizeof(numaddr))
-			    == NULL)
-				return ENI_NOHOSTNAME;
-			if (strlen(numaddr) > hostlen)
-				return ENI_MEMORY;
-			strcpy(host, numaddr);
-		}
-	}
-	return SUCCESS;
-}
diff --git a/contrib/bind/lib/irs/getnetent.c b/contrib/bind/lib/irs/getnetent.c
deleted file mode 100644
index b63ddaf3c82e3..0000000000000
--- a/contrib/bind/lib/irs/getnetent.c
+++ /dev/null
@@ -1,340 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: getnetent.c,v 1.17 1999/10/13 16:39:30 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(__BIND_NOSTATIC)
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "irs_data.h"
-
-/* Definitions */
-
-struct pvt {
-	struct netent	netent;
-	char *		aliases[1];
-	char		name[MAXDNAME + 1];
-};
-
-/* Forward */
-
-static struct net_data *init(void);
-static struct netent   *nw_to_net(struct nwent *, struct net_data *);
-static void		freepvt(struct net_data *);
-static struct netent   *fakeaddr(const char *, int af, struct net_data *);
-
-/* Portability */
-
-#ifndef INADDR_NONE
-# define INADDR_NONE 0xffffffff
-#endif
-
-/* Public */
-
-struct netent *
-getnetent() {
-	struct net_data *net_data = init();
-
-	return (getnetent_p(net_data));
-}
-
-struct netent *
-getnetbyname(const char *name) {
-	struct net_data *net_data = init();
-
-	return (getnetbyname_p(name, net_data));
-}
-
-struct netent *
-getnetbyaddr(unsigned long net, int type) {
-	struct net_data *net_data = init();
-
-	return (getnetbyaddr_p(net, type, net_data));
-}
-
-void
-setnetent(int stayopen) {
-	struct net_data *net_data = init();
-
-	setnetent_p(stayopen, net_data);
-}
-
-
-void
-endnetent() {
-	struct net_data *net_data = init();
-
-	endnetent_p(net_data);
-}
-
-/* Shared private. */
-
-struct netent *
-getnetent_p(struct net_data *net_data) {
-	struct irs_nw *nw;
-
-	if (!net_data || !(nw = net_data->nw))
-		return (NULL);
-	net_data->nww_last = (*nw->next)(nw);
-	net_data->nw_last = nw_to_net(net_data->nww_last, net_data);
-	return (net_data->nw_last);
-}
-
-struct netent *
-getnetbyname_p(const char *name, struct net_data *net_data) {
-	struct irs_nw *nw;
-	struct netent *np;
-	char **nap;
-
-	if (!net_data || !(nw = net_data->nw))
-		return (NULL);
-	if (net_data->nw_stayopen && net_data->nw_last) {
-		if (!strcmp(net_data->nw_last->n_name, name))
-			return (net_data->nw_last);
-		for (nap = net_data->nw_last->n_aliases; nap && *nap; nap++)
-			if (!strcmp(name, *nap))
-				return (net_data->nw_last);
-	}
-	if ((np = fakeaddr(name, AF_INET, net_data)) != NULL)
-		return (np);
-	net_data->nww_last = (*nw->byname)(nw, name, AF_INET);
-	net_data->nw_last = nw_to_net(net_data->nww_last, net_data);
-	if (!net_data->nw_stayopen)
-		endnetent();
-	return (net_data->nw_last);
-}
-
-struct netent *
-getnetbyaddr_p(unsigned long net, int type, struct net_data *net_data) {
-	struct irs_nw *nw;
-	u_char addr[4];
-	int bits;
-
-	if (!net_data || !(nw = net_data->nw))
-		return (NULL);
-	if (net_data->nw_stayopen && net_data->nw_last)
-		if (type == net_data->nw_last->n_addrtype &&
-		    net == net_data->nw_last->n_net)
-			return (net_data->nw_last);
-
-	/* cannonize net(host order) */
-	if (net < 256) {
-		net <<= 24;
-		bits = 8;
-	} else if (net < 65536) {
-		net <<= 16;
-		bits = 16;
-	} else if (net < 16777216) {
-		net <<= 8;
-		bits = 24;
-	} else
-		bits = 32;
-
-	/* convert to net order */
-	addr[0] = (0xFF000000 & net) >> 24;
-	addr[1] = (0x00FF0000 & net) >> 16;
-	addr[2] = (0x0000FF00 & net) >> 8;
-	addr[3] = (0x000000FF & net);
-
-	/* reduce bits to as close to natural number as possible */
-	if ((bits == 32) && (addr[0] < 224) && (addr[3] == 0))
-		if ((addr[0] < 192) && (addr[2] == 0))
-			if ((addr[0] < 128) && (addr[1] == 0))
-				bits = 8;
-			else
-				bits = 16;
-		else
-			bits = 24;
-
-	net_data->nww_last = (*nw->byaddr)(nw, addr, bits, AF_INET);
-	net_data->nw_last = nw_to_net(net_data->nww_last, net_data);
-	if (!net_data->nw_stayopen)
-		endnetent();
-	return (net_data->nw_last);
-}
-
-
-
-
-void
-setnetent_p(int stayopen, struct net_data *net_data) {
-	struct irs_nw *nw;
-
-	if (!net_data || !(nw = net_data->nw))
-		return;
-	freepvt(net_data);
-	(*nw->rewind)(nw);
-	net_data->nw_stayopen = (stayopen != 0);
-	if (stayopen == 0)
-		net_data_minimize(net_data);
-}
-
-void
-endnetent_p(struct net_data *net_data) {
-	struct irs_nw *nw;
-
-	if ((net_data != NULL) && ((nw	= net_data->nw) != NULL))
-		(*nw->minimize)(nw);
-}
-
-/* Private */
-
-static struct net_data *
-init() {
-	struct net_data *net_data;
-
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->nw) {
-		net_data->nw = (*net_data->irs->nw_map)(net_data->irs);
-
-		if (!net_data->nw || !net_data->res) {
- error:		
-			errno = EIO;
-			return (NULL);
-		}
-		(*net_data->nw->res_set)(net_data->nw, net_data->res, NULL);
-	}
-	
-	return (net_data);
-}
-
-static void
-freepvt(struct net_data *net_data) {
-	if (net_data->nw_data) {
-		free(net_data->nw_data);
-		net_data->nw_data = NULL;
-	}
-}
-
-static struct netent *
-fakeaddr(const char *name, int af, struct net_data *net_data) {
-	struct pvt *pvt;
-	const char *cp;
-	u_long tmp;
-
-	if (af != AF_INET) {
-		/* XXX should support IPv6 some day */
-		errno = EAFNOSUPPORT;
-		RES_SET_H_ERRNO(net_data->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	if (!isascii(name[0]) || !isdigit(name[0]))
-		return (NULL);
-	for (cp = name; *cp; ++cp)
-		if (!isascii(*cp) || (!isdigit(*cp) && *cp != '.'))
-			return (NULL);
-	if (*--cp == '.')
-		return (NULL);
-
-	/* All-numeric, no dot at the end. */
-
-	tmp = inet_network(name);
-	if (tmp == INADDR_NONE) {
-		RES_SET_H_ERRNO(net_data->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-
-	/* Valid network number specified.
-	 * Fake up a netent as if we'd actually
-	 * done a lookup.
-	 */
-	freepvt(net_data);
-	net_data->nw_data = malloc(sizeof (struct pvt));
-	if (!net_data->nw_data) {
-		errno = ENOMEM;
-		RES_SET_H_ERRNO(net_data->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	pvt = net_data->nw_data;
-
-	strncpy(pvt->name, name, MAXDNAME);
-	pvt->name[MAXDNAME] = '\0';
-	pvt->netent.n_name = pvt->name;
-	pvt->netent.n_addrtype = AF_INET;
-	pvt->netent.n_aliases = pvt->aliases;
-	pvt->aliases[0] = NULL;
-	pvt->netent.n_net = tmp;
-
-	return (&pvt->netent);
-}
-
-static struct netent *
-nw_to_net(struct nwent *nwent, struct net_data *net_data) {
-	struct pvt *pvt;
-	u_long addr = 0;
-	int i;
-	int msbyte;
-
-	if (!nwent || nwent->n_addrtype != AF_INET)
-		return (NULL);
-	freepvt(net_data);
-	net_data->nw_data = malloc(sizeof (struct pvt));
-	if (!net_data->nw_data) {
-		errno = ENOMEM;
-		RES_SET_H_ERRNO(net_data->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	pvt = net_data->nw_data;
-	pvt->netent.n_name = nwent->n_name;
-	pvt->netent.n_aliases = nwent->n_aliases;
-	pvt->netent.n_addrtype = nwent->n_addrtype;
-
-/*
- * What this code does: Converts net addresses from network to host form.
- *
- * msbyte: the index of the most significant byte in the n_addr array.
- *
- * Shift bytes in significant order into addr. When all signicant
- * bytes are in, zero out bits in the LSB that are not part of the network.
- */
-	msbyte = nwent->n_length / 8 +
-		((nwent->n_length % 8) != 0 ? 1 : 0) - 1;
-	for (i = 0; i <= msbyte; i++)
-		addr = (addr << 8) | ((unsigned char *)nwent->n_addr)[i];
-	i = (32 - nwent->n_length) % 8;
-	if (i != 0)
-		addr &= ~((1 << (i + 1)) - 1);
-	pvt->netent.n_net = addr;
-	return (&pvt->netent);
-}
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/getnetent_r.c b/contrib/bind/lib/irs/getnetent_r.c
deleted file mode 100644
index b78b45a74e347..0000000000000
--- a/contrib/bind/lib/irs/getnetent_r.c
+++ /dev/null
@@ -1,191 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getnetent_r.c,v 8.4 1999/01/18 07:46:52 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS)
-	static int getnetent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <netinet/in.h>
-#include <netdb.h>
-#include <sys/param.h>
-#include <port_after.h>
-
-#ifdef NET_R_RETURN
-
-static NET_R_RETURN 
-copy_netent(struct netent *, struct netent *, NET_R_COPY_ARGS);
-
-NET_R_RETURN
-getnetbyname_r(const char *name,  struct netent *nptr, NET_R_ARGS) {
-	struct netent *ne = getnetbyname(name);
-
-	if (ne == NULL)
-		return (NET_R_BAD);
-
-	return (copy_netent(ne, nptr, NET_R_COPY));
-}
-
-#ifndef GETNETBYADDR_ADDR_T
-#define GETNETBYADDR_ADDR_T long
-#endif
-NET_R_RETURN
-getnetbyaddr_r(GETNETBYADDR_ADDR_T addr, int type, struct netent *nptr, NET_R_ARGS) {
-	struct netent *ne = getnetbyaddr(addr, type);
-
-	if (ne == NULL)
-		return (NET_R_BAD);
-
-	return (copy_netent(ne, nptr, NET_R_COPY));
-}
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-NET_R_RETURN
-getnetent_r(struct netent *nptr, NET_R_ARGS) {
-	struct netent *ne = getnetent();
-
-	if (ne == NULL)
-		return (NET_R_BAD);
-
-	return (copy_netent(ne, nptr, NET_R_COPY));
-}
-
-NET_R_SET_RETURN
-#ifdef NET_R_ENT_ARGS
-setnetent_r(int stay_open, NET_R_ENT_ARGS)
-#else
-setnetent_r(int stay_open)
-#endif
-{
-	setnetent(stay_open);
-#ifdef NET_R_SET_RESULT
-	return (NET_R_SET_RESULT);
-#endif
-}
-
-NET_R_END_RETURN
-#ifdef NET_R_ENT_ARGS
-endnetent_r(NET_R_ENT_ARGS)
-#else
-endnetent_r()
-#endif
-{
-	endnetent();
-	NET_R_END_RESULT(NET_R_OK);
-}
-
-/* Private */
-
-#ifndef NETENT_DATA
-static NET_R_RETURN
-copy_netent(struct netent *ne, struct netent *nptr, NET_R_COPY_ARGS) {
-	char *cp;
-	int i, n;
-	int numptr, len;
-
-	/* Find out the amount of space required to store the answer. */
-	numptr = 1; /* NULL ptr */
-	len = (char *)ALIGN(buf) - buf;
-	for (i = 0; ne->n_aliases[i]; i++, numptr++) {
-		len += strlen(ne->n_aliases[i]) + 1;
-	}
-	len += strlen(ne->n_name) + 1;
-	len += numptr * sizeof(char*);
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (NET_R_BAD);
-	}
-
-	/* copy net value and type */
-	nptr->n_addrtype = ne->n_addrtype;
-	nptr->n_net = ne->n_net;
-
-	cp = (char *)ALIGN(buf) + numptr * sizeof(char *);
-
-	/* copy official name */
-	n = strlen(ne->n_name) + 1;
-	strcpy(cp, ne->n_name);
-	nptr->n_name = cp;
-	cp += n;
-
-	/* copy aliases */
-	nptr->n_aliases = (char **)ALIGN(buf);
-	for (i = 0 ; ne->n_aliases[i]; i++) {
-		n = strlen(ne->n_aliases[i]) + 1;
-		strcpy(cp, ne->n_aliases[i]);
-		nptr->n_aliases[i] = cp;
-		cp += n;
-	}
-	nptr->n_aliases[i] = NULL;
-
-	return (NET_R_OK);
-}
-#else /* !NETENT_DATA */
-static int
-copy_netent(struct netent *ne, struct netent *nptr, NET_R_COPY_ARGS) {
-	char *cp, *eob;
-	int i, n;
-
-	/* copy net value and type */
-	nptr->n_addrtype = ne->n_addrtype;
-	nptr->n_net = ne->n_net;
-
-	/* copy official name */
-	cp = ndptr->line;
-	eob = ndptr->line + sizeof(ndptr->line);
-	if ((n = strlen(ne->n_name) + 1) < (eob - cp)) {
-		strcpy(cp, ne->n_name);
-		nptr->n_name = cp;
-		cp += n;
-	} else {
-		return (-1);
-	}
-
-	/* copy aliases */
-	i = 0;
-	nptr->n_aliases = ndptr->net_aliases;
-	while (ne->n_aliases[i] && i < (_MAXALIASES-1)) {
-		if ((n = strlen(ne->n_aliases[i]) + 1) < (eob - cp)) {
-			strcpy(cp, ne->n_aliases[i]);
-			nptr->n_aliases[i] = cp;
-			cp += n;
-		} else {
-			break;
-		}
-		i++;
-	}
-	nptr->n_aliases[i] = NULL;
-
-	return (NET_R_OK);
-}
-#endif /* !NETENT_DATA */
-#else /* NET_R_RETURN */
-	static int getnetent_r_unknown_systemm = 0;
-#endif /* NET_R_RETURN */
-#endif /* !defined(_REENTRANT) || !defined(DO_PTHREADS) */
diff --git a/contrib/bind/lib/irs/getnetgrent.c b/contrib/bind/lib/irs/getnetgrent.c
deleted file mode 100644
index 8c5f5f894a669..0000000000000
--- a/contrib/bind/lib/irs/getnetgrent.c
+++ /dev/null
@@ -1,141 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getnetgrent.c,v 1.14 1999/10/07 20:44:03 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(__BIND_NOSTATIC)
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_data.h"
-
-/* Forward */
-
-static struct net_data *init(void);
-
-
-/* Public */
-
-void
-setnetgrent(const char *netgroup) {
-	struct net_data *net_data = init();
-
-	setnetgrent_p(netgroup, net_data);
-}
-
-void
-endnetgrent(void) {
-	struct net_data *net_data = init();
-
-	endnetgrent_p(net_data);
-}
-
-int
-innetgr(const char *netgroup, const char *host,
-	const char *user, const char *domain) {
-	struct net_data *net_data = init();
-
-	return (innetgr_p(netgroup, host, user, domain, net_data));
-}
-
-int
-getnetgrent(char **host, char **user, char **domain) {
-	struct net_data *net_data = init();
-
-	return (getnetgrent_p(host, user, domain, net_data));
-}
-
-/* Shared private. */
-
-void
-setnetgrent_p(const char *netgroup, struct net_data *net_data) {
-	struct irs_ng *ng;
-
-	if ((net_data != NULL) && ((ng = net_data->ng) != NULL))
-		(*ng->rewind)(ng, netgroup);
-}
-
-void
-endnetgrent_p(struct net_data *net_data) {
-	struct irs_ng *ng;
-
-	if (!net_data)
-		return;
-	if ((ng = net_data->ng) != NULL)
-		(*ng->close)(ng);
-	net_data->ng = NULL;
-}
-
-int
-innetgr_p(const char *netgroup, const char *host,
-	  const char *user, const char *domain,
-	  struct net_data *net_data) {
-	struct irs_ng *ng;
-
-	if (!net_data || !(ng = net_data->ng))
-		return (0);
-	return ((*ng->test)(ng, netgroup, host, user, domain));
-}
-
-int
-getnetgrent_p(char **host, char **user, char **domain,
-	      struct net_data *net_data ) {
-	struct irs_ng *ng;
-
-	if (!net_data || !(ng = net_data->ng))
-		return (0);
-	return ((*ng->next)(ng, host, user, domain));
-}
-
-/* Private */
-
-static struct net_data *
-init(void) {
-	struct net_data *net_data;
-
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->ng) {
-		net_data->ng = (*net_data->irs->ng_map)(net_data->irs);
-		if (!net_data->ng) {
-  error:
-			errno = EIO;
-			return (NULL);
-		}
-	}
-	
-	return (net_data);
-}
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/getnetgrent_r.c b/contrib/bind/lib/irs/getnetgrent_r.c
deleted file mode 100644
index e0c366c05bbbe..0000000000000
--- a/contrib/bind/lib/irs/getnetgrent_r.c
+++ /dev/null
@@ -1,134 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getnetgrent_r.c,v 8.4 1999/01/18 07:46:52 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS)
-	static int getnetgrent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <netinet/in.h>
-#include <netdb.h>
-#include <port_after.h>
-
-#ifdef NGR_R_RETURN
-
-static NGR_R_RETURN 
-copy_protoent(char **, char **, char **, char *, char *, char *,
-		NGR_R_COPY_ARGS);
-
-NGR_R_RETURN
-innetgr_r(const char *netgroup, const char *host, const char *user,
-	const char *domain) {
-
-	return (innetgr(netgroup, host, user, domain));
-}
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-NGR_R_RETURN
-getnetgrent_r(char **machinep, char **userp, char **domainp, NGR_R_ARGS) {
-	char *mp, *up, *dp;
-	int res = getnetgrent(&mp, &up, &dp);
-
-	if (res != 1) 
-		return (res);
-
-	return (copy_protoent(machinep, userp, domainp,
-				mp, up, dp, NGR_R_COPY));
-}
-
-NGR_R_SET_RETURN
-#ifdef NGR_R_ENT_ARGS
-setnetgrent_r(const char *netgroup, NGR_R_ENT_ARGS)
-#else
-setnetgrent_r(const char *netgroup)
-#endif
-{
-	setnetgrent(netgroup);
-#ifdef NGR_R_SET_RESULT
-	return (NGR_R_SET_RESULT);
-#endif
-}
-
-NGR_R_END_RETURN
-endnetgrent_r(NGR_R_ENT_ARGS) {
-	endnetgrent();
-	NGR_R_END_RESULT(NGR_R_OK);
-}
-
-/* Private */
-
-static int
-copy_protoent(char **machinep, char **userp, char **domainp,
-		char *mp, char *up, char *dp, NGR_R_COPY_ARGS) {
-	char *cp;
-	int i, n;
-	int len;
-
-	/* Find out the amount of space required to store the answer. */
-	len = 0;
-	if (mp != NULL) len += strlen(mp) + 1;
-	if (up != NULL) len += strlen(up) + 1;
-	if (dp != NULL) len += strlen(dp) + 1;
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (NGR_R_BAD);
-	}
-
-	cp = buf;
-
-	if (mp != NULL) {
-		n = strlen(mp) + 1;
-		strcpy(cp, mp);
-		*machinep = cp;
-		cp += n;
-	} else
-		*machinep = NULL;
-
-	if (up != NULL) {
-		n = strlen(up) + 1;
-		strcpy(cp, up);
-		*userp = cp;
-		cp += n;
-	} else
-		*userp = NULL;
-
-	if (dp != NULL) {
-		n = strlen(dp) + 1;
-		strcpy(cp, dp);
-		*domainp = cp;
-		cp += n;
-	} else
-		*domainp = NULL;
-
-	return (NGR_R_OK);
-}
-#else /* NGR_R_RETURN */
-	static int getnetgrent_r_unknown_system = 0;
-#endif /* NGR_R_RETURN */
-#endif /* !defined(_REENTRANT) || !defined(DO_PTHREADS) */
diff --git a/contrib/bind/lib/irs/getprotoent.c b/contrib/bind/lib/irs/getprotoent.c
deleted file mode 100644
index e3bfc371c06bc..0000000000000
--- a/contrib/bind/lib/irs/getprotoent.c
+++ /dev/null
@@ -1,173 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: getprotoent.c,v 1.15 1999/10/13 16:39:31 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(__BIND_NOSTATIC)
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_data.h"
-
-/* Forward */
-
-static struct net_data *init(void);
-
-/* Public */
-
-struct protoent *
-getprotoent() {
-	struct net_data *net_data = init();
-
-	return (getprotoent_p(net_data));
-}
-
-struct protoent *
-getprotobyname(const char *name) {
-	struct net_data *net_data = init();
-
-	return (getprotobyname_p(name, net_data));
-}
-
-struct protoent *
-getprotobynumber(int proto) {
-	struct net_data *net_data = init();
-
-	return (getprotobynumber_p(proto, net_data));
-}
-
-void
-setprotoent(int stayopen) {
-	struct net_data *net_data = init();
-
-	setprotoent_p(stayopen, net_data);
-}
-
-void
-endprotoent() {
-	struct net_data *net_data = init();
-
-	endprotoent_p(net_data);
-}
-
-/* Shared private. */
-
-struct protoent *
-getprotoent_p(struct net_data *net_data) {
-	struct irs_pr *pr;
-
-	if (!net_data || !(pr = net_data->pr))
-		return (NULL);
-	net_data->pr_last = (*pr->next)(pr);
-	return (net_data->pr_last);
-}
-
-struct protoent *
-getprotobyname_p(const char *name, struct net_data *net_data) {
-	struct irs_pr *pr;
-	char **pap;
-
-	if (!net_data || !(pr = net_data->pr))
-		return (NULL);
-	if (net_data->pr_stayopen && net_data->pr_last) {
-		if (!strcmp(net_data->pr_last->p_name, name))
-			return (net_data->pr_last);
-		for (pap = net_data->pr_last->p_aliases; pap && *pap; pap++)
-			if (!strcmp(name, *pap))
-				return (net_data->pr_last);
-	}
-	net_data->pr_last = (*pr->byname)(pr, name);
-	if (!net_data->pr_stayopen)
-		endprotoent();
-	return (net_data->pr_last);
-}
-
-struct protoent *
-getprotobynumber_p(int proto, struct net_data *net_data) {
-	struct irs_pr *pr;
-
-	if (!net_data || !(pr = net_data->pr))
-		return (NULL);
-	if (net_data->pr_stayopen && net_data->pr_last)
-		if (net_data->pr_last->p_proto == proto)
-			return (net_data->pr_last);
-	net_data->pr_last = (*pr->bynumber)(pr, proto);
-	if (!net_data->pr_stayopen)
-		endprotoent();
-	return (net_data->pr_last);
-}
-
-void
-setprotoent_p(int stayopen, struct net_data *net_data) {
-	struct irs_pr *pr;
-
-	if (!net_data || !(pr = net_data->pr))
-		return;
-	(*pr->rewind)(pr);
-	net_data->pr_stayopen = (stayopen != 0);
-	if (stayopen == 0)
-		net_data_minimize(net_data);
-}
-
-void
-endprotoent_p(struct net_data *net_data) {
-	struct irs_pr *pr;
-
-	if ((net_data != NULL) && ((pr = net_data->pr) != NULL))
-		(*pr->minimize)(pr);
-}
-
-/* Private */
-
-static struct net_data *
-init() {
-	struct net_data *net_data;
-
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->pr) {
-		net_data->pr = (*net_data->irs->pr_map)(net_data->irs);
-
-		if (!net_data->pr || !net_data->res) {
- error:		
-			errno = EIO;
-			return (NULL);
-		}
-		(*net_data->pr->res_set)(net_data->pr, net_data->res, NULL);
-	}
-	
-	return (net_data);
-}
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/getprotoent_r.c b/contrib/bind/lib/irs/getprotoent_r.c
deleted file mode 100644
index e5c54d7d06c78..0000000000000
--- a/contrib/bind/lib/irs/getprotoent_r.c
+++ /dev/null
@@ -1,185 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getprotoent_r.c,v 8.4 1999/01/18 07:46:52 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS)
-	static int getprotoent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <netinet/in.h>
-#include <netdb.h>
-#include <port_after.h>
-
-#ifdef PROTO_R_RETURN
-
-static PROTO_R_RETURN 
-copy_protoent(struct protoent *, struct protoent *, PROTO_R_COPY_ARGS);
-
-PROTO_R_RETURN
-getprotobyname_r(const char *name, struct protoent *pptr, PROTO_R_ARGS) {
-	struct protoent *pe = getprotobyname(name);
-
-	if (pe == NULL)
-		return (PROTO_R_BAD);
-
-	return (copy_protoent(pe, pptr, PROTO_R_COPY));
-}
-
-PROTO_R_RETURN
-getprotobynumber_r(int proto, struct protoent *pptr, PROTO_R_ARGS) {
-	struct protoent *pe = getprotobynumber(proto);
-
-	if (pe == NULL)
-		return (PROTO_R_BAD);
-
-	return (copy_protoent(pe, pptr, PROTO_R_COPY));
-}
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-PROTO_R_RETURN
-getprotoent_r(struct protoent *pptr, PROTO_R_ARGS) {
-	struct protoent *pe = getprotoent();
-
-	if (pe == NULL)
-		return (PROTO_R_BAD);
-
-	return (copy_protoent(pe, pptr, PROTO_R_COPY));
-}
-
-PROTO_R_SET_RETURN
-#ifdef PROTO_R_ENT_ARGS
-setprotoent_r(int stay_open, PROTO_R_ENT_ARGS)
-#else
-setprotoent_r(int stay_open)
-#endif
-{
-	setprotoent(stay_open);
-#ifdef PROTO_R_SET_RESULT
-	return (PROTO_R_SET_RESULT);
-#endif
-}
-
-PROTO_R_END_RETURN
-#ifdef PROTO_R_ENT_ARGS
-endprotoent_r(PROTO_R_ENT_ARGS)
-#else
-endprotoent_r()
-#endif
-{
-	endprotoent();
-	PROTO_R_END_RESULT(PROTO_R_OK);
-}
-
-/* Private */
-
-#ifndef PROTOENT_DATA
-static PROTO_R_RETURN
-copy_protoent(struct protoent *pe, struct protoent *pptr, PROTO_R_COPY_ARGS) {
-	char *cp;
-	int i, n;
-	int numptr, len;
-
-	/* Find out the amount of space required to store the answer. */
-	numptr = 1; /* NULL ptr */
-	len = (char *)ALIGN(buf) - buf;
-	for (i = 0; pe->p_aliases[i]; i++, numptr++) {
-		len += strlen(pe->p_aliases[i]) + 1;
-	}
-	len += strlen(pe->p_name) + 1;
-	len += numptr * sizeof(char*);
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (PROTO_R_BAD);
-	}
-
-	/* copy protocol value*/
-	pptr->p_proto = pe->p_proto;
-
-	cp = (char *)ALIGN(buf) + numptr * sizeof(char *);
-
-	/* copy official name */
-	n = strlen(pe->p_name) + 1;
-	strcpy(cp, pe->p_name);
-	pptr->p_name = cp;
-	cp += n;
-
-	/* copy aliases */
-	pptr->p_aliases = (char **)ALIGN(buf);
-	for (i = 0 ; pe->p_aliases[i]; i++) {
-		n = strlen(pe->p_aliases[i]) + 1;
-		strcpy(cp, pe->p_aliases[i]);
-		pptr->p_aliases[i] = cp;
-		cp += n;
-	}
-	pptr->p_aliases[i] = NULL;
-
-	return (PROTO_R_OK);
-}
-#else /* !PROTOENT_DATA */
-static int
-copy_protoent(struct protoent *pe, struct protoent *pptr, PROTO_R_COPY_ARGS) {
-	char *cp, *eob;
-	int i, n;
-
-	/* copy protocol value */
-	pptr->p_proto = pe->p_proto;
-
-	/* copy official name */
-	cp = pdptr->line;
-	eob = pdptr->line + sizeof(pdptr->line);
-	if ((n = strlen(pe->p_name) + 1) < (eob - cp)) {
-		strcpy(cp, pe->p_name);
-		pptr->p_name = cp;
-		cp += n;
-	} else {
-		return (-1);
-	}
-
-	/* copy aliases */
-	i = 0;
-	pptr->p_aliases = pdptr->proto_aliases;
-	while (pe->p_aliases[i] && i < (_MAXALIASES-1)) {
-		if ((n = strlen(pe->p_aliases[i]) + 1) < (eob - cp)) {
-			strcpy(cp, pe->p_aliases[i]);
-			pptr->p_aliases[i] = cp;
-			cp += n;
-		} else {
-			break;
-		}
-		i++;
-	}
-	pptr->p_aliases[i] = NULL;
-
-	return (PROTO_R_OK);
-}
-#endif /* PROTOENT_DATA */
-#else /* PROTO_R_RETURN */
-	static int getprotoent_r_unknown_systemm = 0;
-#endif /* PROTO_R_RETURN */
-#endif /* !defined(_REENTRANT) || !defined(DO_PTHREADS) */
diff --git a/contrib/bind/lib/irs/getpwent.c b/contrib/bind/lib/irs/getpwent.c
deleted file mode 100644
index 7f536a46274d5..0000000000000
--- a/contrib/bind/lib/irs/getpwent.c
+++ /dev/null
@@ -1,199 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: getpwent.c,v 1.21 2000/02/21 21:40:56 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(WANT_IRS_PW) || defined(__BIND_NOSTATIC)
-static int __bind_irs_pw_unneeded;
-#else
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <pwd.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_data.h"
-
-/* Forward */
-
-static struct net_data * init(void);
-
-/* Public */
-
-struct passwd *
-getpwent(void) {
-	struct net_data *net_data = init();
-
-	return (getpwent_p(net_data));
-}
-
-struct passwd *
-getpwnam(const char *name) {
-	struct net_data *net_data = init();
-
-	return (getpwnam_p(name, net_data));
-}
-
-struct passwd *
-getpwuid(uid_t uid) {
-	struct net_data *net_data = init();
-
-	return (getpwuid_p(uid, net_data));
-}
-
-int
-setpassent(int stayopen) {
-	struct net_data *net_data = init();
-
-	return (setpassent_p(stayopen, net_data));
-}
-
-#ifdef SETPWENT_VOID
-void
-setpwent() {
-	struct net_data *net_data = init();
-
-	setpwent_p(net_data);
-}
-#else
-int
-setpwent() {
-	struct net_data *net_data = init();
-
-	return (setpwent_p(net_data));
-}
-#endif
-
-void
-endpwent() {
-	struct net_data *net_data = init();
-
-	endpwent_p(net_data);
-}
-
-/* Shared private. */
-
-struct passwd *
-getpwent_p(struct net_data *net_data) {
-	struct irs_pw *pw;
-
-	if (!net_data || !(pw = net_data->pw))
-		return (NULL);
-	net_data->pw_last = (*pw->next)(pw);
-	return (net_data->pw_last);
-}
-
-struct passwd *
-getpwnam_p(const char *name, struct net_data *net_data) {
-	struct irs_pw *pw;
-
-	if (!net_data || !(pw = net_data->pw))
-		return (NULL);
-	if (net_data->pw_stayopen && net_data->pw_last &&
-	    !strcmp(net_data->pw_last->pw_name, name))
-		return (net_data->pw_last);
-	net_data->pw_last = (*pw->byname)(pw, name);
-	if (!net_data->pw_stayopen)
-		endpwent();
-	return (net_data->pw_last);
-}
-
-struct passwd *
-getpwuid_p(uid_t uid, struct net_data *net_data) {
-	struct irs_pw *pw;
-
-	if (!net_data || !(pw = net_data->pw))
-		return (NULL);
-	if (net_data->pw_stayopen && net_data->pw_last &&
-	    net_data->pw_last->pw_uid == uid)
-		return (net_data->pw_last);
-	net_data->pw_last = (*pw->byuid)(pw, uid);
-	if (!net_data->pw_stayopen)
-		endpwent();
-	return (net_data->pw_last);
-}
-
-int
-setpassent_p(int stayopen, struct net_data *net_data) {
-	struct irs_pw *pw;
-
-	if (!net_data || !(pw = net_data->pw))
-		return (0);
-	(*pw->rewind)(pw);
-	net_data->pw_stayopen = (stayopen != 0);
-	if (stayopen == 0)
-		net_data_minimize(net_data);
-	return (1);
-}
-
-#ifdef SETPWENT_VOID
-void
-setpwent_p(struct net_data *net_data) {
-	(void) setpassent_p(0, net_data);
-}
-#else
-int
-setpwent_p(struct net_data *net_data) {
-	return (setpassent_p(0, net_data));
-}
-#endif
-
-void
-endpwent_p(struct net_data *net_data) {
-	struct irs_pw *pw;
-
-	if ((net_data != NULL) && ((pw = net_data->pw) != NULL))
-		(*pw->minimize)(pw);
-}
-
-/* Private */
-
-static struct net_data *
-init() {
-	struct net_data *net_data;
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->pw) {
-		net_data->pw = (*net_data->irs->pw_map)(net_data->irs);
-
-		if (!net_data->pw || !net_data->res) {
- error: 
-			errno = EIO;
-			return (NULL);
-		}
-		(*net_data->pw->res_set)(net_data->pw, net_data->res, NULL);
-	}
-	
-	return (net_data);
-}
-
-#endif /* WANT_IRS_PW */
diff --git a/contrib/bind/lib/irs/getpwent_r.c b/contrib/bind/lib/irs/getpwent_r.c
deleted file mode 100644
index 761fa459d5659..0000000000000
--- a/contrib/bind/lib/irs/getpwent_r.c
+++ /dev/null
@@ -1,253 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getpwent_r.c,v 8.3 1999/01/08 19:24:33 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS) || !defined(WANT_IRS_PW)
-	static int getpwent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <sys/types.h>
-#include <pwd.h>
-#include <port_after.h>
-
-#ifdef PASS_R_RETURN
-
-static int 
-copy_passwd(struct passwd *, struct passwd *, char *buf, int buflen);
-
-/* POSIX 1003.1c */
-#ifdef POSIX_GETPWNAM_R
-int
-__posix_getpwnam_r(const char *login,  struct passwd *pwptr,
-		char *buf, size_t buflen, struct passwd **result) {
-#else
-int
-getpwnam_r(const char *login,  struct passwd *pwptr,
-		char *buf, size_t buflen, struct passwd **result) {
-#endif
-	struct passwd *pw = getpwnam(login);
-	int res;
-
-	if (pw == NULL) {
-		*result = NULL;
-		return (-1);
-	}
-
-	res = copy_passwd(pw, pwptr, buf, buflen);
-	*result = res ? NULL : pwptr;
-	return (res);
-}
-
-#ifdef POSIX_GETPWNAM_R
-struct passwd *
-getpwnam_r(const char *login,  struct passwd *pwptr, char *buf, int buflen) {
-	struct passwd *pw = getpwnam(login);
-	int res;
-
-	if (pw == NULL)
-		return (NULL);
-
-	res = copy_passwd(pw, pwptr, buf, buflen);
-	return (res ? NULL : pwptr);
-}
-#endif
-
-/* POSIX 1003.1c */
-#ifdef POSIX_GETPWUID_R
-int
-__posix_getpwuid_r(uid_t uid, struct passwd *pwptr,
-		char *buf, int buflen, struct passwd **result) {
-#else
-int
-getpwuid_r(uid_t uid, struct passwd *pwptr,
-		char *buf, size_t buflen, struct passwd **result) {
-#endif
-	struct passwd *pw = getpwuid(uid);
-	int res;
-
-	if (pw == NULL) {
-		*result = NULL;
-		return (-1);
-	}
-
-	res = copy_passwd(pw, pwptr, buf, buflen);
-	*result = res ? NULL : pwptr;
-	return (res);
-}
-
-#ifdef POSIX_GETPWUID_R
-struct passwd *
-getpwuid_r(uid_t uid,  struct passwd *pwptr, char *buf, int buflen) {
-	struct passwd *pw = getpwuid(uid);
-	int res;
-
-	if (pw == NULL)
-		return (NULL);
-
-	res = copy_passwd(pw, pwptr, buf, buflen);
-	return (res ? NULL : pwptr);
-}
-#endif
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-PASS_R_RETURN
-getpwent_r(struct passwd *pwptr, PASS_R_ARGS) {
-	struct passwd *pw = getpwent();
-	int res;
-
-	if (pw == NULL)
-		return (PASS_R_BAD);
-
-	res = copy_passwd(pw, pwptr, buf, buflen);
-	return (res ? PASS_R_BAD : PASS_R_OK);
-}
-
-PASS_R_SET_RETURN
-#ifdef PASS_R_ENT_ARGS
-setpassent_r(int stayopen, PASS_R_ENT_ARGS)
-#else
-setpassent_r(int stayopen)
-#endif
-{
-
-	setpassent(stayopen);
-#ifdef PASS_R_SET_RESULT
-	return (PASS_R_SET_RESULT);
-#endif
-}
-
-PASS_R_SET_RETURN
-setpwent_r(PASS_R_ENT_ARGS) {
-
-	setpwent();
-#ifdef PASS_R_SET_RESULT
-	return (PASS_R_SET_RESULT);
-#endif
-}
-
-PASS_R_END_RETURN
-endpwent_r(PASS_R_ENT_ARGS) {
-
-	endpwent();
-	PASS_R_END_RESULT(PASS_R_OK);
-}
-
-
-#ifdef HAS_FGETPWENT
-PASS_R_RETURN
-fgetpwent_r(FILE *f, struct passwd *pwptr, PASS_R_COPY_ARGS) {
-	struct passwd *pw = fgetpwent(f);
-	int res;
-
-	if (pw == NULL)
-		return (PASS_R_BAD);
-
-	res = copy_passwd(pw, pwptr, PASS_R_COPY);
-	return (res ? PASS_R_BAD : PASS_R_OK );
-}
-#endif
-
-/* Private */
-
-static int
-copy_passwd(struct passwd *pw, struct passwd *pwptr, char *buf, int buflen) {
-	char *cp;
-	int i, n;
-	int numptr, len;
-
-	/* Find out the amount of space required to store the answer. */
-	len = strlen(pw->pw_name) + 1;
-	len += strlen(pw->pw_passwd) + 1;
-#ifdef HAVE_PW_CLASS
-	len += strlen(pw->pw_class) + 1;
-#endif
-	len += strlen(pw->pw_gecos) + 1;
-	len += strlen(pw->pw_dir) + 1;
-	len += strlen(pw->pw_shell) + 1;
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (-1);
-	}
-
-	/* copy fixed atomic values*/
-	pwptr->pw_uid = pw->pw_uid;
-	pwptr->pw_gid = pw->pw_gid;
-#ifdef HAVE_PW_CHANGE
-	pwptr->pw_change = pw->pw_change;
-#endif
-#ifdef HAVE_PW_EXPIRE
-	pwptr->pw_expire = pw->pw_expire;
-#endif
-
-	cp = buf;
-
-	/* copy official name */
-	n = strlen(pw->pw_name) + 1;
-	strcpy(cp, pw->pw_name);
-	pwptr->pw_name = cp;
-	cp += n;
-
-	/* copy password */
-	n = strlen(pw->pw_passwd) + 1;
-	strcpy(cp, pw->pw_passwd);
-	pwptr->pw_passwd = cp;
-	cp += n;
-
-#ifdef HAVE_PW_CLASS
-	/* copy class */
-	n = strlen(pw->pw_class) + 1;
-	strcpy(cp, pw->pw_class);
-	pwptr->pw_class = cp;
-	cp += n;
-#endif
-
-	/* copy gecos */
-	n = strlen(pw->pw_gecos) + 1;
-	strcpy(cp, pw->pw_gecos);
-	pwptr->pw_gecos = cp;
-	cp += n;
-
-	/* copy directory */
-	n = strlen(pw->pw_dir) + 1;
-	strcpy(cp, pw->pw_dir);
-	pwptr->pw_dir = cp;
-	cp += n;
-
-	/* copy login shell */
-	n = strlen(pw->pw_shell) + 1;
-	strcpy(cp, pw->pw_shell);
-	pwptr->pw_shell = cp;
-	cp += n;
-
-	return (0);
-}
-#else /* PASS_R_RETURN */
-	static int getpwent_r_unknown_systemm = 0;
-#endif /* PASS_R_RETURN */
-#endif /* !def(_REENTRANT) || !def(DO_PTHREADS) || !def(WANT_IRS_PW) */
diff --git a/contrib/bind/lib/irs/getservent.c b/contrib/bind/lib/irs/getservent.c
deleted file mode 100644
index d2b8b5048ef8f..0000000000000
--- a/contrib/bind/lib/irs/getservent.c
+++ /dev/null
@@ -1,176 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: getservent.c,v 1.16 1999/10/13 16:39:31 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(__BIND_NOSTATIC)
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_data.h"
-
-/* Forward */
-
-static struct net_data *init(void);
-
-/* Public */
-
-struct servent *
-getservent(void) {
-	struct net_data *net_data = init();
-
-	return (getservent_p(net_data));
-}
-
-struct servent *
-getservbyname(const char *name, const char *proto) {
-	struct net_data *net_data = init();
-
-	return (getservbyname_p(name, proto, net_data));
-}
-
-struct servent *
-getservbyport(int port, const char *proto) {
-	struct net_data *net_data = init();
-
-	return (getservbyport_p(port, proto, net_data));
-}
-
-void
-setservent(int stayopen) {
-	struct net_data *net_data = init();
-
-	setservent_p(stayopen, net_data);
-}
-
-void
-endservent() {
-	struct net_data *net_data = init();
-
-	endservent_p(net_data);
-}
-
-/* Shared private. */
-
-struct servent *
-getservent_p(struct net_data *net_data) {
-	struct irs_sv *sv;
-
-	if (!net_data || !(sv = net_data->sv))
-		return (NULL);
-	net_data->sv_last = (*sv->next)(sv);
-	return (net_data->sv_last);
-}
-
-struct servent *
-getservbyname_p(const char *name, const char *proto,
-		struct net_data *net_data) {
-	struct irs_sv *sv;
-	char **sap;
-
-	if (!net_data || !(sv = net_data->sv))
-		return (NULL);
-	if (net_data->sv_stayopen && net_data->sv_last)
-		if (!proto || !strcmp(net_data->sv_last->s_proto, proto)) {
-			if (!strcmp(net_data->sv_last->s_name, name))
-				return (net_data->sv_last);
-			for (sap = net_data->sv_last->s_aliases;
-			     sap && *sap; sap++)
-				if (!strcmp(name, *sap))
-					return (net_data->sv_last);
-		}
-	net_data->sv_last = (*sv->byname)(sv, name, proto);
-	if (!net_data->sv_stayopen)
-		endservent();
-	return (net_data->sv_last);
-}
-
-struct servent *
-getservbyport_p(int port, const char *proto, struct net_data *net_data) {
-	struct irs_sv *sv;
-
-	if (!net_data || !(sv = net_data->sv))
-		return (NULL);
-	if (net_data->sv_stayopen && net_data->sv_last)
-		if (port == net_data->sv_last->s_port &&
-		    ( !proto ||
-		     !strcmp(net_data->sv_last->s_proto, proto)))
-			return (net_data->sv_last);
-	net_data->sv_last = (*sv->byport)(sv, port, proto);
-	return (net_data->sv_last);
-}
-
-void
-setservent_p(int stayopen, struct net_data *net_data) {
-	struct irs_sv *sv;
-
-	if (!net_data || !(sv = net_data->sv))
-		return;
-	(*sv->rewind)(sv);
-	net_data->sv_stayopen = (stayopen != 0);
-	if (stayopen == 0)
-		net_data_minimize(net_data);
-}
-
-void
-endservent_p(struct net_data *net_data) {
-	struct irs_sv *sv;
-
-	if ((net_data != NULL) && ((sv = net_data->sv) != NULL))
-		(*sv->minimize)(sv);
-}
-
-/* Private */
-
-static struct net_data *
-init() {
-	struct net_data *net_data;
-
-	if (!(net_data = net_data_init(NULL)))
-		goto error;
-	if (!net_data->sv) {
-		net_data->sv = (*net_data->irs->sv_map)(net_data->irs);
-
-		if (!net_data->sv || !net_data->res) {
- error:		
-			errno = EIO;
-			return (NULL);
-		}
-		(*net_data->sv->res_set)(net_data->sv, net_data->res, NULL);
-	}
-	
-	return (net_data);
-}
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/getservent_r.c b/contrib/bind/lib/irs/getservent_r.c
deleted file mode 100644
index 4da9dc20945c0..0000000000000
--- a/contrib/bind/lib/irs/getservent_r.c
+++ /dev/null
@@ -1,206 +0,0 @@
-/*
- * Copyright (c) 1998-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: getservent_r.c,v 8.3 1999/01/08 19:24:36 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <port_before.h>
-#if !defined(_REENTRANT) || !defined(DO_PTHREADS)
-	static int getservent_r_not_required = 0;
-#else
-#include <errno.h>
-#include <string.h>
-#include <stdio.h>
-#include <netinet/in.h>
-#include <netdb.h>
-#include <sys/param.h>
-#include <port_after.h>
-
-#ifdef SERV_R_RETURN
-
-static SERV_R_RETURN 
-copy_servent(struct servent *, struct servent *, SERV_R_COPY_ARGS);
-
-SERV_R_RETURN
-getservbyname_r(const char *name, const char *proto,
-		struct servent *sptr, SERV_R_ARGS) {
-	struct servent *se = getservbyname(name, proto);
-
-	if (se == NULL)
-		return (SERV_R_BAD);
-
-	return (copy_servent(se, sptr, SERV_R_COPY));
-}
-
-SERV_R_RETURN
-getservbyport_r(int port, const char *proto,
-		struct servent *sptr, SERV_R_ARGS) {
-	struct servent *se = getservbyport(port, proto);
-
-	if (se == NULL)
-		return (SERV_R_BAD);
-
-	return (copy_servent(se, sptr, SERV_R_COPY));
-}
-
-/*
- *	These assume a single context is in operation per thread.
- *	If this is not the case we will need to call irs directly
- *	rather than through the base functions.
- */
-
-SERV_R_RETURN
-getservent_r(struct servent *sptr, SERV_R_ARGS) {
-	struct servent *se = getservent();
-
-	if (se == NULL)
-		return (SERV_R_BAD);
-
-	return (copy_servent(se, sptr, SERV_R_COPY));
-}
-
-SERV_R_SET_RETURN
-#ifdef SERV_R_ENT_ARGS
-setservent_r(int stay_open, SERV_R_ENT_ARGS)
-#else
-setservent_r(int stay_open)
-#endif
-{
-
-	setservent(stay_open);
-#ifdef SERV_R_SET_RESULT
-	return (SERV_R_SET_RESULT);
-#endif
-}
-
-SERV_R_END_RETURN
-#ifdef SERV_R_ENT_ARGS
-endservent_r(SERV_R_ENT_ARGS)
-#else
-endservent_r()
-#endif
-{
-
-	endservent();
-	SERV_R_END_RESULT(SERV_R_OK);
-}
-
-/* Private */
-
-#ifndef SERVENT_DATA
-static SERV_R_RETURN
-copy_servent(struct servent *se, struct servent *sptr, SERV_R_COPY_ARGS) {
-	char *cp;
-	int i, n;
-	int numptr, len;
-
-	/* Find out the amount of space required to store the answer. */
-	numptr = 1; /* NULL ptr */
-	len = (char *)ALIGN(buf) - buf;
-	for (i = 0; se->s_aliases[i]; i++, numptr++) {
-		len += strlen(se->s_aliases[i]) + 1;
-	}
-	len += strlen(se->s_name) + 1;
-	len += strlen(se->s_proto) + 1;
-	len += numptr * sizeof(char*);
-	
-	if (len > buflen) {
-		errno = ERANGE;
-		return (SERV_R_BAD);
-	}
-
-	/* copy port value */
-	sptr->s_port = se->s_port;
-
-	cp = (char *)ALIGN(buf) + numptr * sizeof(char *);
-
-	/* copy official name */
-	n = strlen(se->s_name) + 1;
-	strcpy(cp, se->s_name);
-	sptr->s_name = cp;
-	cp += n;
-
-	/* copy aliases */
-	sptr->s_aliases = (char **)ALIGN(buf);
-	for (i = 0 ; se->s_aliases[i]; i++) {
-		n = strlen(se->s_aliases[i]) + 1;
-		strcpy(cp, se->s_aliases[i]);
-		sptr->s_aliases[i] = cp;
-		cp += n;
-	}
-	sptr->s_aliases[i] = NULL;
-
-	/* copy proto */
-	n = strlen(se->s_proto) + 1;
-	strcpy(cp, se->s_proto);
-	sptr->s_proto = cp;
-	cp += n;
-
-	return (SERV_R_OK);
-}
-#else /* !SERVENT_DATA */
-static int
-copy_servent(struct servent *se, struct servent *sptr, SERV_R_COPY_ARGS) {
-	char *cp, *eob;
-	int i, n;
-
-	/* copy port value */
-	sptr->s_port = se->s_port;
-
-	/* copy official name */
-	cp = ndptr->line;
-	eob = ndptr->line + sizeof(ndptr->line);
-	if ((n = strlen(se->s_name) + 1) < (eob - cp)) {
-		strcpy(cp, se->s_name);
-		sptr->s_name = cp;
-		cp += n;
-	} else {
-		return (-1);
-	}
-
-	/* copy aliases */
-	i = 0;
-	sptr->s_aliases = ndptr->serv_aliases;
-	while (se->s_aliases[i] && i < (_MAXALIASES-1)) {
-		if ((n = strlen(se->s_aliases[i]) + 1) < (eob - cp)) {
-			strcpy(cp, se->s_aliases[i]);
-			sptr->s_aliases[i] = cp;
-			cp += n;
-		} else {
-			break;
-		}
-		i++;
-	}
-	sptr->s_aliases[i] = NULL;
-
-	/* copy proto */
-	if ((n = strlen(se->s_proto) + 1) < (eob - cp)) {
-		strcpy(cp, se->s_proto);
-		sptr->s_proto = cp;
-		cp += n;
-	} else {
-		return (-1);
-	}
-
-	return (SERV_R_OK);
-}
-#endif /* !SERVENT_DATA */
-#else /*SERV_R_RETURN */
-	static int getservent_r_unknown_systemm = 0;
-#endif /*SERV_R_RETURN */
-#endif /* !defined(_REENTRANT) || !defined(DO_PTHREADS) */
diff --git a/contrib/bind/lib/irs/hesiod.c b/contrib/bind/lib/irs/hesiod.c
deleted file mode 100644
index 40826eb8895c1..0000000000000
--- a/contrib/bind/lib/irs/hesiod.c
+++ /dev/null
@@ -1,504 +0,0 @@
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: hesiod.c,v 1.21 2000/02/28 14:51:08 vixie Exp $";
-#endif
-
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * This file is primarily maintained by <tytso@mit.edu> and <ghudson@mit.edu>.
- */
-
-/*
- * hesiod.c --- the core portion of the hesiod resolver.
- *
- * This file is derived from the hesiod library from Project Athena;
- * It has been extensively rewritten by Theodore Ts'o to have a more
- * thread-safe interface.
- */
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#include "pathnames.h"
-#include "hesiod.h"
-#include "hesiod_p.h"
-
-/* Forward */
-
-int		hesiod_init(void **context);
-void		hesiod_end(void *context);
-char *		hesiod_to_bind(void *context, const char *name,
-			       const char *type);
-char **		hesiod_resolve(void *context, const char *name,
-			       const char *type);
-void		hesiod_free_list(void *context, char **list);
-
-static int	parse_config_file(struct hesiod_p *ctx, const char *filename);
-static char **	get_txt_records(struct hesiod_p *ctx, int class,
-				const char *name);
-static int	init(struct hesiod_p *ctx);
-
-/* Public */
-
-/*
- * This function is called to initialize a hesiod_p.
- */
-int
-hesiod_init(void **context) {
-	struct hesiod_p *ctx;
-	char *cp;
-
-	ctx = malloc(sizeof(struct hesiod_p));
-	if (ctx == 0) {
-		errno = ENOMEM;
-		return (-1);
-	}
-
-	ctx->LHS = NULL;
-	ctx->RHS = NULL;
-	ctx->res = NULL;
-
-	if (parse_config_file(ctx, _PATH_HESIOD_CONF) < 0) {
-#ifdef DEF_RHS
-		/*
-		 * Use compiled in defaults.
-		 */
-		ctx->LHS = malloc(strlen(DEF_LHS)+1);
-		ctx->RHS = malloc(strlen(DEF_RHS)+1);
-		if (ctx->LHS == 0 || ctx->RHS == 0) {
-			errno = ENOMEM;
-			goto cleanup;
-		}
-		strcpy(ctx->LHS, DEF_LHS);
-		strcpy(ctx->RHS, DEF_RHS);
-#else
-		goto cleanup;
-#endif
-	}
-	/*
-	 * The default RHS can be overridden by an environment
-	 * variable.
-	 */
-	if ((cp = getenv("HES_DOMAIN")) != NULL) {
-		if (ctx->RHS)
-			free(ctx->RHS);
-		ctx->RHS = malloc(strlen(cp)+2);
-		if (!ctx->RHS) {
-			errno = ENOMEM;
-			goto cleanup;
-		}
-		if (cp[0] == '.')
-			strcpy(ctx->RHS, cp);
-		else {
-			strcpy(ctx->RHS, ".");
-			strcat(ctx->RHS, cp);
-		}
-	}
-
-	/*
-	 * If there is no default hesiod realm set, we return an
-	 * error.
-	 */
-	if (!ctx->RHS) {
-		errno = ENOEXEC;
-		goto cleanup;
-	}
-	
-#if 0
-	if (res_ninit(ctx->res) < 0)
-		goto cleanup;
-#endif
-
-	*context = ctx;
-	return (0);
-
- cleanup:
-	hesiod_end(ctx);
-	return (-1);
-}
-
-/*
- * This function deallocates the hesiod_p
- */
-void
-hesiod_end(void *context) {
-	struct hesiod_p *ctx = (struct hesiod_p *) context;
-	int save_errno = errno;
-
-	if (ctx->res)
-		res_nclose(ctx->res);
-	if (ctx->RHS)
-		free(ctx->RHS);
-	if (ctx->LHS)
-		free(ctx->LHS);
-	if (ctx->res && ctx->free_res)
-		(*ctx->free_res)(ctx->res);
-	free(ctx);
-	errno = save_errno;
-}
-
-/*
- * This function takes a hesiod (name, type) and returns a DNS
- * name which is to be resolved.
- */
-char *
-hesiod_to_bind(void *context, const char *name, const char *type) {
-	struct hesiod_p *ctx = (struct hesiod_p *) context;
-	char *bindname;
-	char **rhs_list = NULL;
-	const char *RHS, *cp;
-
-	/* Decide what our RHS is, and set cp to the end of the actual name. */
-	if ((cp = strchr(name, '@')) != NULL) {
-		if (strchr(cp + 1, '.'))
-			RHS = cp + 1;
-		else if ((rhs_list = hesiod_resolve(context, cp + 1,
-		    "rhs-extension")) != NULL)
-			RHS = *rhs_list;
-		else {
-			errno = ENOENT;
-			return (NULL);
-		}
-	} else {
-		RHS = ctx->RHS;
-		cp = name + strlen(name);
-	}
-
-	/*
-	 * Allocate the space we need, including up to three periods and
-	 * the terminating NUL.
-	 */
-	if ((bindname = malloc((cp - name) + strlen(type) + strlen(RHS) +
-	    (ctx->LHS ? strlen(ctx->LHS) : 0) + 4)) == NULL) {
-		errno = ENOMEM;
-		if (rhs_list)
-			hesiod_free_list(context, rhs_list);
-		return NULL;
-	}
-
-	/* Now put together the DNS name. */
-	memcpy(bindname, name, cp - name);
-	bindname[cp - name] = '\0';
-	strcat(bindname, ".");
-	strcat(bindname, type);
-	if (ctx->LHS) {
-		if (ctx->LHS[0] != '.')
-			strcat(bindname, ".");
-		strcat(bindname, ctx->LHS);
-	}
-	if (RHS[0] != '.')
-		strcat(bindname, ".");
-	strcat(bindname, RHS);
-
-	if (rhs_list)
-		hesiod_free_list(context, rhs_list);
-
-	return (bindname);
-}
-
-/*
- * This is the core function.  Given a hesiod (name, type), it
- * returns an array of strings returned by the resolver.
- */
-char **
-hesiod_resolve(void *context, const char *name, const char *type) {
-	struct hesiod_p *ctx = (struct hesiod_p *) context;
-	char *bindname = hesiod_to_bind(context, name, type);
-	char **retvec;
-
-	if (bindname == NULL)
-		return (NULL);
-	if (init(ctx) == -1) {
-		free(bindname);
-		return (NULL);
-	}
-
-	if ((retvec = get_txt_records(ctx, C_IN, bindname))) {
-		free(bindname);
-		return (retvec);
-	}
-	
-	if (errno != ENOENT)
-		return (NULL);
-
-	retvec = get_txt_records(ctx, C_HS, bindname);
-	free(bindname);
-	return (retvec);
-}
-
-void
-hesiod_free_list(void *context, char **list) {
-	char **p;
-
-	for (p = list; *p; p++)
-		free(*p);
-	free(list);
-}
-
-/*
- * This function parses the /etc/hesiod.conf file
- */
-static int
-parse_config_file(struct hesiod_p *ctx, const char *filename) {
-	char *key, *data, *cp, **cpp;
-	char buf[MAXDNAME+7];
-	FILE *fp;
-
-	/*
-	 * Clear the existing configuration variable, just in case
-	 * they're set.
-	 */
-	if (ctx->RHS)
-		free(ctx->RHS);
-	if (ctx->LHS)
-		free(ctx->LHS);
-	ctx->RHS = ctx->LHS = 0;
-
-	/*
-	 * Now open and parse the file...
-	 */
-	if (!(fp = fopen(filename, "r")))
-		return (-1);
-	
-	while (fgets(buf, sizeof(buf), fp) != NULL) {
-		cp = buf;
-		if (*cp == '#' || *cp == '\n' || *cp == '\r')
-			continue;
-		while(*cp == ' ' || *cp == '\t')
-			cp++;
-		key = cp;
-		while(*cp != ' ' && *cp != '\t' && *cp != '=')
-			cp++;
-		*cp++ = '\0';
-		
-		while(*cp == ' ' || *cp == '\t' || *cp == '=')
-			cp++;
-		data = cp;
-		while(*cp != ' ' && *cp != '\n' && *cp != '\r')
-			cp++;
-		*cp++ = '\0';
-
-		if (strcmp(key, "lhs") == 0)
-			cpp = &ctx->LHS;
-		else if (strcmp(key, "rhs") == 0)
-			cpp = &ctx->RHS;
-		else
-			continue;
-
-		*cpp = malloc(strlen(data) + 1);
-		if (!*cpp) {
-			errno = ENOMEM;
-			goto cleanup;
-		}
-		strcpy(*cpp, data);
-	}
-	fclose(fp);
-	return (0);
-	
- cleanup:
-	fclose(fp);
-	if (ctx->RHS)
-		free(ctx->RHS);
-	if (ctx->LHS)
-		free(ctx->LHS);
-	ctx->RHS = ctx->LHS = 0;
-	return (-1);
-}
-
-/*
- * Given a DNS class and a DNS name, do a lookup for TXT records, and
- * return a list of them.
- */
-static char **
-get_txt_records(struct hesiod_p *ctx, int class, const char *name) {
-	struct {
-		int type;		/* RR type */
-		int class;		/* RR class */
-		int dlen;		/* len of data section */
-		u_char *data;		/* pointer to data */
-	} rr;
-	HEADER *hp;
-	u_char qbuf[MAX_HESRESP], abuf[MAX_HESRESP];
-	u_char *cp, *erdata, *eom;
-	char *dst, *edst, **list;
-	int ancount, qdcount;
-	int i, j, n, skip;
-
-	/*
-	 * Construct the query and send it.
-	 */
-	n = res_nmkquery(ctx->res, QUERY, name, class, T_TXT, NULL, 0,
-			 NULL, qbuf, MAX_HESRESP);
-	if (n < 0) {
-		errno = EMSGSIZE;
-		return (NULL);
-	}
-	n = res_nsend(ctx->res, qbuf, n, abuf, MAX_HESRESP);
-	if (n < 0) {
-		errno = ECONNREFUSED;
-		return (NULL);
-	}
-	if (n < HFIXEDSZ) {
-		errno = EMSGSIZE;
-		return (NULL);
-	}
-
-	/*
-	 * OK, parse the result.
-	 */
-	hp = (HEADER *) abuf;
-	ancount = ntohs(hp->ancount);
-	qdcount = ntohs(hp->qdcount);
-	cp = abuf + sizeof(HEADER);
-	eom = abuf + n;
-
-	/* Skip query, trying to get to the answer section which follows. */
-	for (i = 0; i < qdcount; i++) {
-		skip = dn_skipname(cp, eom);
-		if (skip < 0 || cp + skip + QFIXEDSZ > eom) {
-			errno = EMSGSIZE;
-			return (NULL);
-		}
-		cp += skip + QFIXEDSZ;
-	}
-
-	list = malloc((ancount + 1) * sizeof(char *));
-	if (!list) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	j = 0;
-	for (i = 0; i < ancount; i++) {
-		skip = dn_skipname(cp, eom);
-		if (skip < 0) {
-			errno = EMSGSIZE;
-			goto cleanup;
-		}
-		cp += skip;
-		if (cp + 3 * INT16SZ + INT32SZ > eom) {
-			errno = EMSGSIZE;
-			goto cleanup;
-		}
-		rr.type = ns_get16(cp);
-		cp += INT16SZ;
-		rr.class = ns_get16(cp);
-		cp += INT16SZ + INT32SZ;	/* skip the ttl, too */
-		rr.dlen = ns_get16(cp);
-		cp += INT16SZ;
-		if (cp + rr.dlen > eom) {
-			errno = EMSGSIZE;
-			goto cleanup;
-		}
-		rr.data = cp;
-		cp += rr.dlen;
-		if (rr.class != class || rr.type != T_TXT)
-			continue;
-		if (!(list[j] = malloc(rr.dlen)))
-			goto cleanup;
-		dst = list[j++];
-		edst = dst + rr.dlen;
-		erdata = rr.data + rr.dlen;
-		cp = rr.data;
-		while (cp < erdata) {
-			n = (unsigned char) *cp++;
-			if (cp + n > eom || dst + n > edst) {
-				errno = EMSGSIZE;
-				goto cleanup;
-			}
-			memcpy(dst, cp, n);
-			cp += n;
-			dst += n;
-		}
-		if (cp != erdata) {
-			errno = EMSGSIZE;
-			goto cleanup;
-		}
-		*dst = '\0';
-	}
-	list[j] = NULL;
-	if (j == 0) {
-		errno = ENOENT;
-		goto cleanup;
-	}
-	return (list);
-
- cleanup:
-	for (i = 0; i < j; i++)
-		free(list[i]);
-	free(list);
-	return (NULL);
-}
-
-struct __res_state *
-__hesiod_res_get(void *context) {
-	struct hesiod_p *ctx = context;
-
-	if (!ctx->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (res == NULL) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		__hesiod_res_set(ctx, res, free);
-	}
-
-	return (ctx->res);
-}
-
-void
-__hesiod_res_set(void *context, struct __res_state *res,
-	         void (*free_res)(void *)) {
-	struct hesiod_p *ctx = context;
-
-	if (ctx->res && ctx->free_res) {
-		res_nclose(ctx->res);
-		(*ctx->free_res)(ctx->res);
-	}
-
-	ctx->res = res;
-	ctx->free_res = free_res;
-}
-
-static int
-init(struct hesiod_p *ctx) {
-	
-	if (!ctx->res && !__hesiod_res_get(ctx))
-		return (-1);
-
-	if (((ctx->res->options & RES_INIT) == 0) &&
-	    (res_ninit(ctx->res) == -1))
-		return (-1);
-
-	return (0);
-}
diff --git a/contrib/bind/lib/irs/hesiod_p.h b/contrib/bind/lib/irs/hesiod_p.h
deleted file mode 100644
index eb3216629f830..0000000000000
--- a/contrib/bind/lib/irs/hesiod_p.h
+++ /dev/null
@@ -1,48 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * This file is primarily maintained by <tytso@mit.edu> and <ghudson@mit.edu>.
- */
-
-/*
- * $Id: hesiod_p.h,v 1.9 1999/01/08 19:24:39 vixie Exp $
- */
-
-/*
- * hesiod_p.h -- private definitions for the hesiod library
- */
-
-#ifndef _HESIOD_P_H_INCLUDED
-#define _HESIOD_P_H_INCLUDED
-
-#define DEF_RHS		".Athena.MIT.EDU"	/* Defaults if HESIOD_CONF */
-#define DEF_LHS		".ns"			/*    file is not */
-						/*    present. */
-struct hesiod_p {
-	char *		LHS;		/* normally ".ns" */
-	char *		RHS;		/* AKA the default hesiod domain */
-	struct __res_state * res;	/* resolver context */
-	void		(*free_res)(void *);
-	void		(*res_set)(struct hesiod_p *, struct __res_state *,
-				   void (*)(void *));
-	struct __res_state * (*res_get)(struct hesiod_p *);
-};
-
-#define MAX_HESRESP	1024
-
-#endif /*_HESIOD_P_H_INCLUDED*/
diff --git a/contrib/bind/lib/irs/irp.c b/contrib/bind/lib/irs/irp.c
deleted file mode 100644
index a6c8f4ff9916b..0000000000000
--- a/contrib/bind/lib/irs/irp.c
+++ /dev/null
@@ -1,590 +0,0 @@
-/*
- * Copyright (c) 1996, 1998 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: irp.c,v 8.6 2000/02/04 08:28:33 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <syslog.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <stdlib.h>
-#include <errno.h>
-#include <string.h>
-#include <stdarg.h>
-#include <fcntl.h>
-#include <syslog.h>
-#include <ctype.h>
-#include <unistd.h>
-
-#include <isc/memcluster.h>
-
-#include <irs.h>
-#include <irp.h>
-
-#include "irs_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-/* Forward. */
-
-static void		irp_close(struct irs_acc *);
-
-#define LINEINCR 128
-
-#if !defined(SUN_LEN)
-#define SUN_LEN(su) \
-	(sizeof (*(su)) - sizeof ((su)->sun_path) + strlen((su)->sun_path))
-#endif
-
-
-/* Public */
-
-
-/* send errors to syslog if true. */
-int irp_log_errors = 1;
-
-/*
- * This module handles the irp module connection to irpd.
- *
- * The client expects a synchronous interface to functions like
- * getpwnam(3), so we can't use the ctl_* i/o library on this end of
- * the wire (it's used in the server).
- */
-
-/*
- * irs_acc *irs_irp_acc(const char *options);
- *
- *	Initialize the irp module.
- */
-struct irs_acc *
-irs_irp_acc(const char *options) {
-	struct irs_acc *acc;
-	struct irp_p *irp;
-
-	if (!(acc = memget(sizeof *acc))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(acc, 0x5e, sizeof *acc);
-	if (!(irp = memget(sizeof *irp))) {
-		errno = ENOMEM;
-		free(acc);
-		return (NULL);
-	}
-	irp->inlast = 0;
-	irp->incurr = 0;
-	irp->fdCxn = -1;
-	acc->private = irp;
-
-#ifdef WANT_IRS_GR
-	acc->gr_map = irs_irp_gr;
-#else
-	acc->gr_map = NULL;
-#endif
-#ifdef WANT_IRS_PW
-	acc->pw_map = irs_irp_pw;
-#else
-	acc->pw_map = NULL;
-#endif
-	acc->sv_map = irs_irp_sv;
-	acc->pr_map = irs_irp_pr;
-	acc->ho_map = irs_irp_ho;
-	acc->nw_map = irs_irp_nw;
-	acc->ng_map = irs_irp_ng;
-	acc->close = irp_close;
-	return (acc);
-}
-
-
-int
-irs_irp_connection_setup(struct irp_p *cxndata, int *warned) {
-	if (irs_irp_is_connected(cxndata)) {
-		return (0);
-	} else if (irs_irp_connect(cxndata) != 0) {
-		if (warned != NULL && !*warned) {
-			syslog(LOG_ERR, "irpd connection failed: %m\n");
-			(*warned)++;
-		}
-
-		return (-1);
-	}
-
-	return (0);
-}
-
-
-/*
- * int irs_irp_connect(void);
- *
- *	Sets up the connection to the remote irpd server.
- *
- * Returns:
- *
- *	0 on success, -1 on failure.
- *
- */
-int
-irs_irp_connect(struct irp_p *pvt) {
-	int flags;
-	struct sockaddr *addr;
-	struct sockaddr_in iaddr;
-#ifndef NO_SOCKADDR_UN
-	struct sockaddr_un uaddr;
-#endif
-	long ipaddr;
-	const char *irphost;
-	int code;
-	char text[256];
-	int socklen = 0;
-
-	if (pvt->fdCxn != -1) {
-		perror("fd != 1");
-		return (-1);
-	}
-
-#ifndef NO_SOCKADDR_UN
-	memset(&uaddr, 0, sizeof uaddr);
-#endif
-	memset(&iaddr, 0, sizeof iaddr);
-
-	irphost = getenv(IRPD_HOST_ENV);
-	if (irphost == NULL) {
-		irphost = "127.0.0.1";
-	}
-
-#ifndef NO_SOCKADDR_UN
-	if (irphost[0] == '/') {
-		addr = (struct sockaddr *)&uaddr;
-		strncpy(uaddr.sun_path, irphost, sizeof uaddr.sun_path);
-		uaddr.sun_family = AF_UNIX;
-		socklen = SUN_LEN(&uaddr);
-#ifdef HAVE_SA_LEN
-		uaddr.sun_len = socklen;
-#endif
-	} else
-#endif
-	{
-		if (inet_pton(AF_INET, irphost, &ipaddr) != 1) {
-			errno = EADDRNOTAVAIL;
-			perror("inet_pton");
-			return (-1);
-		}
-
-		addr = (struct sockaddr *)&iaddr;
-		socklen = sizeof iaddr;
-#ifdef HAVE_SA_LEN
-		iaddr.sin_len = socklen;
-#endif
-		iaddr.sin_family = AF_INET;
-		iaddr.sin_port = htons(IRPD_PORT);
-		iaddr.sin_addr.s_addr = ipaddr;
-	}
-
-
-	pvt->fdCxn = socket(addr->sa_family, SOCK_STREAM, PF_UNSPEC);
-	if (pvt->fdCxn < 0) {
-		perror("socket");
-		return (-1);
-	}
-
-	if (connect(pvt->fdCxn, addr, socklen) != 0) {
-		perror("connect");
-		return (-1);
-	}
-
-	flags = fcntl(pvt->fdCxn, F_GETFL, 0);
-	if (flags < 0) {
-		close(pvt->fdCxn);
-		perror("close");
-		return (-1);
-	}
-
-#if 0
-	flags |= O_NONBLOCK;
-	if (fcntl(pvt->fdCxn, F_SETFL, flags) < 0) {
-		close(pvt->fdCxn);
-		perror("fcntl");
-		return (-1);
-	}
-#endif
-
-	code = irs_irp_read_response(pvt, text, sizeof text);
-	if (code != IRPD_WELCOME_CODE) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "Connection failed: %s", text);
-		}
-		irs_irp_disconnect(pvt);
-		return (-1);
-	}
-
-	return (0);
-}
-
-
-
-/*
- * int	irs_irp_is_connected(struct irp_p *pvt);
- *
- * Returns:
- *
- *	Non-zero if streams are setup to remote.
- *
- */
-
-int
-irs_irp_is_connected(struct irp_p *pvt) {
-	return (pvt->fdCxn >= 0);
-}
-
-
-
-/*
- * void
- * irs_irp_disconnect(struct irp_p *pvt);
- *
- *	Closes streams to remote.
- */
-
-void
-irs_irp_disconnect(struct irp_p *pvt) {
-	if (pvt->fdCxn != -1) {
-		close(pvt->fdCxn);
-		pvt->fdCxn = -1;
-	}
-}
-
-
-
-int
-irs_irp_read_line(struct irp_p *pvt, char *buffer, int len) {
-	char *realstart = &pvt->inbuffer[0];
-	char *p, *start, *end;
-	int spare;
-	int i;
-	int buffpos = 0;
-	int left = len - 1;
-
-	while (left > 0) {
-		start = p = &pvt->inbuffer[pvt->incurr];
-		end = &pvt->inbuffer[pvt->inlast];
-
-		while (p != end && *p != '\n')
-			p++;
-
-		if (p == end) {
-			/* Found no newline so shift data down if necessary
-			 * and append new data to buffer
-			 */
-			if (start > realstart) {
-				memmove(realstart, start, end - start);
-				pvt->inlast = end - start;
-				start = realstart;
-				pvt->incurr = 0;
-				end = &pvt->inbuffer[pvt->inlast];
-			}
-
-			spare = sizeof (pvt->inbuffer) - pvt->inlast;
-
-			p = end;
-			i = read(pvt->fdCxn, end, spare);
-			if (i < 0) {
-				close(pvt->fdCxn);
-				pvt->fdCxn = -1;
-				return (buffpos > 0 ? buffpos : -1);
-			} else if (i == 0) {
-				return (buffpos);
-			}
-
-			end += i;
-			pvt->inlast += i;
-
-			while (p != end && *p != '\n')
-				p++;
-		}
-
-		if (p == end) {
-			/* full buffer and still no newline */
-			i = sizeof pvt->inbuffer;
-		} else {
-			/* include newline */
-			i = p - start + 1;
-		}
-
-		if (i > left)
-			i = left;
-		memcpy(buffer + buffpos, start, i);
-		pvt->incurr += i;
-		buffpos += i;
-		buffer[buffpos] = '\0';
-
-		if (p != end) {
-			left = 0;
-		} else {
-			left -= i;
-		}
-	}
-
-#if 0
-	fprintf(stderr, "read line: %s\n", buffer);
-#endif
-	return (buffpos);
-}
-
-
-
-
-
-/*
- * int irp_read_response(struct irp_p *pvt);
- *
- * Returns:
- *
- *	The number found at the beginning of the line read from
- *	FP. 0 on failure(0 is not a legal response code). The
- *	rest of the line is discarded.
- *
- */
-
-int
-irs_irp_read_response(struct irp_p *pvt, char *text, size_t textlen) {
-	char line[1024];
-	int code;
-	char *p;
-
-	if (irs_irp_read_line(pvt, line, sizeof line) <= 0) {
-		return (0);
-	}
-
-	p = strchr(line, '\n');
-	if (p == NULL) {
-		return (0);
-	}
-
-	if (sscanf(line, "%d", &code) != 1) {
-		code = 0;
-	} else if (text != NULL && textlen > 0) {
-		p = line;
-		while (isspace(*p)) p++;
-		while (isdigit(*p)) p++;
-		while (isspace(*p)) p++;
-		strncpy(text, p, textlen - 1);
-		p[textlen - 1] = '\0';
-	}
-
-	return (code);
-}
-
-
-
-/*
- * char *irp_read_body(struct irp_p *pvt, size_t *size);
- *
- *	Read in the body of a response. Terminated by a line with
- *	just a dot on it. Lines should be terminated with a CR-LF
- *	sequence, but we're nt piccky if the CR is missing.
- *	No leading dot escaping is done as the protcol doesn't
- *	use leading dots anywhere.
- *
- * Returns:
- *
- *	Pointer to null-terminated buffer allocated by memget.
- *	*SIZE is set to the length of the buffer.
- *
- */
-
-char *
-irs_irp_read_body(struct irp_p *pvt, size_t *size) {
-	char line[1024];
-	u_int linelen;
-	size_t len = LINEINCR;
-	char *buffer = memget(len);
-	int idx = 0;
-
-	for (;;) {
-		if (irs_irp_read_line(pvt, line, sizeof line) <= 0 ||
-		    strchr(line, '\n') == NULL)
-			goto death;
-
-		linelen = strlen(line);
-
-		if (line[linelen - 1] != '\n')
-			goto death;
-
-		/* We're not strict about missing \r. Should we be??  */
-		if (linelen > 2 && line[linelen - 2] == '\r') {
-			line[linelen - 2] = '\n';
-			line[linelen - 1] = '\0';
-			linelen--;
-		}
-
-		if (linelen == 2 && line[0] == '.') {
-			*size = len;
-			buffer[idx] = '\0';
-
-			return (buffer);
-		}
-
-		if (linelen > (len - (idx + 1))) {
-			char *p = memget(len + LINEINCR);
-
-			if (p == NULL)
-				goto death;
-			memcpy(p, buffer, len);
-			memput(buffer, len);
-			buffer = p;
-			len += LINEINCR;
-		}
-
-		memcpy(buffer + idx, line, linelen);
-		idx += linelen;
-	}
- death:
-	memput(buffer, len);
-	return (NULL);
-}
-
-
-/*
- * int irs_irp_get_full_response(struct irp_p *pvt, int *code,
- *			char **body, size_t *bodylen);
- *
- *	Gets the response to a command. If the response indicates
- *	there's a body to follow(code % 10 == 1), then the
- *	body buffer is allcoated with memget and stored in
- *	*BODY. The length of the allocated body buffer is stored
- *	in *BODY. The caller must give the body buffer back to
- *	memput when done. The results code is stored in *CODE.
- *
- * Returns:
- *
- *	0 if a result was read. -1 on some sort of failure.
- *
- */
-
-int
-irs_irp_get_full_response(struct irp_p *pvt, int *code, char *text,
-			  size_t textlen, char **body, size_t *bodylen) {
-	int result = irs_irp_read_response(pvt, text, textlen);
-
-	*body = NULL;
-
-	if (result == 0) {
-		return (-1);
-	}
-
-	*code = result;
-
-	/* Code that matches 2xx is a good result code.
-	 * Code that matches xx1 means there's a response body coming.
-	 */
-	if ((result / 100) == 2 && (result % 10) == 1) {
-		*body = irs_irp_read_body(pvt, bodylen);
-		if (*body == NULL) {
-			return (-1);
-		}
-	}
-
-	return (0);
-}
-
-
-/*
- * int irs_irp_send_command(struct irp_p *pvt, const char *fmt, ...);
- *
- *	Sends command to remote connected via the PVT
- *	struture. FMT and args after it are fprintf-like
- *	arguments for formatting.
- *
- * Returns:
- *
- *	0 on success, -1 on failure.
- */
-
-int
-irs_irp_send_command(struct irp_p *pvt, const char *fmt, ...) {
-	va_list ap;
-	char buffer[1024];
-	int pos = 0;
-	int i, todo;
-
-
-	if (pvt->fdCxn < 0) {
-		return (-1);
-	}
-
-	va_start(ap, fmt);
-	todo = vsprintf(buffer, fmt, ap);
-	if (todo > sizeof buffer - 2) {
-		syslog(LOG_CRIT, "memory overrun in irs_irp_send_command()");
-		exit(1);
-	}
-	strcat(buffer, "\r\n");
-	todo = strlen(buffer);
-
-	while (todo > 0) {
-		i = write(pvt->fdCxn, buffer + pos, todo);
-#if 0
-		/* XXX brister */
-		fprintf(stderr, "Wrote: \"");
-		fwrite(buffer + pos, sizeof (char), todo, stderr);
-		fprintf(stderr, "\"\n");
-#endif
-		if (i < 0) {
-			close(pvt->fdCxn);
-			pvt->fdCxn = -1;
-			return (-1);
-		}
-		todo -= i;
-	}
-	va_end(ap);
-
-	return (0);
-}
-
-
-/* Methods */
-
-
-
-/*
- * void irp_close(struct irs_acc *this)
- *
- */
-
-static void
-irp_close(struct irs_acc *this) {
-	struct irp_p *irp = (struct irp_p *)this->private;
-
-	if (irp != NULL) {
-		irs_irp_disconnect(irp);
-		memput(irp, sizeof *irp);
-	}
-
-	memput(this, sizeof *this);
-}
-
-
-
diff --git a/contrib/bind/lib/irs/irp_gr.c b/contrib/bind/lib/irs/irp_gr.c
deleted file mode 100644
index 4e2a28cba990c..0000000000000
--- a/contrib/bind/lib/irs/irp_gr.c
+++ /dev/null
@@ -1,405 +0,0 @@
-/*
- * Portions Copyright(c) 1996, 1998 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irp_gr.c,v 8.1 1999/01/18 07:46:53 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* extern */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_PW
-static int __bind_irs_gr_unneeded;
-#else
-
-#include <syslog.h>
-#include <sys/param.h>
-#include <sys/types.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <grp.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-#include <syslog.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/memcluster.h>
-#include <isc/irpmarshall.h>
-
-#include "irs_p.h"
-#include "lcl_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-
-/* Types. */
-
-/*
- * Module for the getnetgrent(3) family to use when connected to a
- * remote irp daemon.
- *
- * See irpd.c for justification of caching done here.
- *
- */
-
-struct pvt {
-	struct irp_p   *girpdata;	/* global IRP data */
-	int		warned;
-	struct group	group;
-};
-
-/* Forward. */
-
-static void		gr_close(struct irs_gr *);
-static struct group *	gr_next(struct irs_gr *);
-static struct group *	gr_byname(struct irs_gr *, const char *);
-static struct group *	gr_bygid(struct irs_gr *, gid_t);
-static void		gr_rewind(struct irs_gr *);
-static void		gr_minimize(struct irs_gr *);
-
-/* Private */
-static void		free_group(struct group *gr);
-
-
-/* Public. */
-
-
-
-
-
-/*
- * struct irs_gr * irs_irp_gr(struct irs_acc *this)
- *
- * Notes:
- *
- *	Initialize the group sub-module.
- *
- * Notes:
- *
- *	Module data.
- *
- */
-
-struct irs_gr *
-irs_irp_gr(struct irs_acc *this) {
-	struct irs_gr *gr;
-	struct pvt *pvt;
-
-	if (!(gr = memget(sizeof *gr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(gr, 0x0, sizeof *gr);
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(gr, sizeof *gr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0x0, sizeof *pvt);
-	pvt->girpdata = this->private;
-
-	gr->private = pvt;
-	gr->close = gr_close;
-	gr->next = gr_next;
-	gr->byname = gr_byname;
-	gr->bygid = gr_bygid;
-	gr->rewind = gr_rewind;
-	gr->list = make_group_list;
-	gr->minimize = gr_minimize;
-	return (gr);
-}
-
-/* Methods. */
-
-
-
-/*
- * void gr_close(struct irs_gr *this)
- *
- * Notes:
- *
- *	Close the sub-module.
- *
- */
-
-static void
-gr_close(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	gr_minimize(this);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-
-/*
- * struct group * gr_next(struct irs_gr *this)
- *
- * Notes:
- *
- *	Gets the next group out of the cached data and returns it.
- *
- */
-
-static struct group *
-gr_next(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct group *gr = &pvt->group;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getgrent") != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "getgrent failed: %s", text);
-		}
-		return (NULL);
-	}
-
-	if (code == IRPD_GETGROUP_OK) {
-		free_group(gr);
-		if (irp_unmarshall_gr(gr, body) != 0) {
-			gr = NULL;
-		}
-	} else {
-		gr = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (gr);
-}
-
-
-
-
-
-/*
- * struct group * gr_byname(struct irs_gr *this, const char *name)
- *
- * Notes:
- *
- *	Gets a group by name from irpd and returns it.
- *
- */
-
-static struct group *
-gr_byname(struct irs_gr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct group *gr = &pvt->group;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-
-	if (gr->gr_name != NULL && strcmp(name, gr->gr_name) == 0) {
-		return (gr);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getgrnam %s", name) != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETGROUP_OK) {
-		free_group(gr);
-		if (irp_unmarshall_gr(gr, body) != 0) {
-			gr = NULL;
-		}
-	} else {
-		gr = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (gr);
-}
-
-
-
-
-
-/*
- * struct group * gr_bygid(struct irs_gr *this, gid_t gid)
- *
- * Notes:
- *
- *	Gets a group by gid from irpd and returns it.
- *
- */
-
-static struct group *
-gr_bygid(struct irs_gr *this, gid_t gid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct group *gr = &pvt->group;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (gr->gr_name != NULL && gr->gr_gid == gid) {
-		return (gr);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getgrgid %d", gid) != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETGROUP_OK) {
-		free_group(gr);
-		if (irp_unmarshall_gr(gr, body) != 0) {
-			gr = NULL;
-		}
-	} else {
-		gr = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (gr);
-}
-
-
-
-
-/*
- * void gr_rewind(struct irs_gr *this)
- *
- */
-
-static void
-gr_rewind(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "setgrent") != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETGROUP_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "setgrent failed: %s", text);
-		}
-	}
-
-	return;
-}
-
-
-
-
-/*
- * void gr_minimize(struct irs_gr *this)
- *
- * Notes:
- *
- *	Frees up cached data and disconnects(if necessary) from the remote.
- *
- */
-
-static void
-gr_minimize(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	free_group(&pvt->group);
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-/* Private. */
-
-
-
-/*
- * static void free_group(struct group *gr);
- *
- *	Deallocate all the memory irp_unmarshall_gr allocated.
- *
- */
-
-static void
-free_group(struct group *gr) {
-	char **p;
-
-	if (gr == NULL)
-		return;
-
-	if (gr->gr_name != NULL)
-		free(gr->gr_name);
-
-	if (gr->gr_passwd != NULL)
-		free(gr->gr_passwd);
-
-	for (p = gr->gr_mem ; p != NULL && *p != NULL ; p++)
-		free(*p);
-
-	if (p != NULL)
-		free(p);
-}
-
-
-#endif /* WANT_IRS_GR */
diff --git a/contrib/bind/lib/irs/irp_ho.c b/contrib/bind/lib/irs/irp_ho.c
deleted file mode 100644
index 7bfd0e2ba7012..0000000000000
--- a/contrib/bind/lib/irs/irp_ho.c
+++ /dev/null
@@ -1,418 +0,0 @@
-/*
- * Portions Copyright (c) 1996,1998 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irp_ho.c,v 8.2 1999/10/13 16:39:31 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports. */
-
-#include "port_before.h"
-
-#include <syslog.h>
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/irpmarshall.h>
-#include <isc/memcluster.h>
-
-#include "irs_p.h"
-#include "dns_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-/* Definitions. */
-
-#define	MAXALIASES	35
-#define	MAXADDRS	35
-#define	Max(a,b)	((a) > (b) ? (a) : (b))
-
-
-struct pvt {
-	struct irp_p	       *girpdata;
-	int			warned;
-	struct hostent		host;
-};
-
-/* Forward. */
-
-static void		ho_close(struct irs_ho *this);
-static struct hostent *	ho_byname(struct irs_ho *this, const char *name);
-static struct hostent *	ho_byname2(struct irs_ho *this, const char *name,
-				   int af);
-static struct hostent *	ho_byaddr(struct irs_ho *this, const void *addr,
-				  int len, int af);
-static struct hostent *	ho_next(struct irs_ho *this);
-static void		ho_rewind(struct irs_ho *this);
-static void		ho_minimize(struct irs_ho *this);
-
-static void		free_host(struct hostent *ho);
-
-
-/* Public. */
-
-
-
-/*
- * struct irs_ho * irs_irp_ho(struct irs_acc *this)
- *
- * Notes:
- *
- *	Initializes the irp_ho module.
- *
- */
-
-struct irs_ho *
-irs_irp_ho(struct irs_acc *this) {
-	struct irs_ho *ho;
-	struct pvt *pvt;
-
-	if (!(ho = memget(sizeof *ho))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ho, 0x0, sizeof *ho);
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(ho, sizeof *ho);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->girpdata = this->private;
-
-	ho->private = pvt;
-	ho->close = ho_close;
-	ho->byname = ho_byname;
-	ho->byname2 = ho_byname2;
-	ho->byaddr = ho_byaddr;
-	ho->next = ho_next;
-	ho->rewind = ho_rewind;
-	ho->minimize = ho_minimize;
-
-	return (ho);
-}
-
-/* Methods. */
-
-
-
-/*
- * void ho_close(struct irs_ho *this)
- *
- * Notes:
- *
- *	Closes down the module.
- *
- */
-
-static void
-ho_close(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	ho_minimize(this);
-
-	free_host(&pvt->host);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-/*
- * struct hostent * ho_byname(struct irs_ho *this, const char *name)
- *
- */
-
-static struct hostent *
-ho_byname(struct irs_ho *this, const char *name) {
-	return (ho_byname2(this, name, AF_INET));
-}
-
-
-
-
-
-/*
- * struct hostent * ho_byname2(struct irs_ho *this, const char *name, int af)
- *
- */
-
-static struct hostent *
-ho_byname2(struct irs_ho *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *ho = &pvt->host;
-	char *body = NULL;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (ho->h_name != NULL &&
-	    strcmp(name, ho->h_name) == 0 &&
-	    af == ho->h_addrtype) {
-		return (ho);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "gethostbyname2 %s %s",
-				 name, ADDR_T_STR(af)) != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETHOST_OK) {
-		free_host(ho);
-		if (irp_unmarshall_ho(ho, body) != 0) {
-			ho = NULL;
-		}
-	} else {
-		ho = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (ho);
-}
-
-
-
-/*
- * struct hostent * ho_byaddr(struct irs_ho *this, const void *addr,
- *			   int len, int af)
- *
- */
-
-static struct hostent *
-ho_byaddr(struct irs_ho *this, const void *addr, int len, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *ho = &pvt->host;
-	char *body = NULL;
-	size_t bodylen;
-	int code;
-	char **p;
-	char paddr[MAXPADDRSIZE];
-	char text[256];
-
-	if (ho->h_name != NULL &&
-	    af == ho->h_addrtype &&
-	    len == ho->h_length) {
-		for (p = ho->h_addr_list ; *p != NULL ; p++) {
-			if (memcmp(*p, addr, len) == 0)
-				return (ho);
-		}
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (inet_ntop(af, addr, paddr, sizeof paddr) == NULL) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "gethostbyaddr %s %s",
-				 paddr, ADDR_T_STR(af)) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETHOST_OK) {
-		free_host(ho);
-		if (irp_unmarshall_ho(ho, body) != 0) {
-			ho = NULL;
-		}
-	} else {
-		ho = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (ho);
-}
-
-
-
-
-
-/*
- * struct hostent * ho_next(struct irs_ho *this)
- *
- * Notes:
- *
- *	The implementation for gethostent(3). The first time it's
- *	called all the data is pulled from the remote(i.e. what
- *	the maximum number of gethostent(3) calls would return)
- *	and that data is cached.
- *
- */
-
-static struct hostent *
-ho_next(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *ho = &pvt->host;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "gethostent") != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETHOST_OK) {
-		free_host(ho);
-		if (irp_unmarshall_ho(ho, body) != 0) {
-			ho = NULL;
-		}
-	} else {
-		ho = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (ho);
-}
-
-
-
-
-
-/*
- * void ho_rewind(struct irs_ho *this)
- *
- */
-
-static void
-ho_rewind(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "sethostent") != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETHOST_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "sethostent failed: %s", text);
-		}
-	}
-
-	return;
-}
-
-
-
-
-/*
- * void ho_minimize(struct irs_ho *this)
- *
- */
-
-static void
-ho_minimize(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	free_host(&pvt->host);
-
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-
-
-
-/*
- * void free_host(struct hostent *ho)
- *
- */
-
-static void
-free_host(struct hostent *ho) {
-	char **p;
-
-	if (ho == NULL) {
-		return;
-	}
-
-	if (ho->h_name != NULL)
-		free(ho->h_name);
-
-	if (ho->h_aliases != NULL) {
-		for (p = ho->h_aliases ; *p != NULL ; p++)
-			free(*p);
-		free(ho->h_aliases);
-	}
-
-	if (ho->h_addr_list != NULL) {
-		for (p = ho->h_addr_list ; *p != NULL ; p++)
-			free(*p);
-		free(ho->h_addr_list);
-	}
-}
-
diff --git a/contrib/bind/lib/irs/irp_ng.c b/contrib/bind/lib/irs/irp_ng.c
deleted file mode 100644
index e96f66c5889c1..0000000000000
--- a/contrib/bind/lib/irs/irp_ng.c
+++ /dev/null
@@ -1,266 +0,0 @@
-/*
- * Copyright (c) 1996, 1998 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: irp_ng.c,v 8.2 1999/10/13 16:39:31 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-#include <syslog.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/memcluster.h>
-#include <isc/irpmarshall.h>
-
-#include "irs_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-/* Definitions */
-
-struct pvt {
-	struct irp_p	       *girpdata;
-	int			warned;
-};
-
-
-/* Forward */
-
-static void		ng_rewind(struct irs_ng *, const char*);
-static void		ng_close(struct irs_ng *);
-static int		ng_next(struct irs_ng *, char **, char **, char **);
-static int		ng_test(struct irs_ng *, const char *,
-				const char *, const char *,
-				const char *);
-static void		ng_minimize(struct irs_ng *);
-
-
-/* Public */
-
-
-
-/*
- * struct irs_ng * irs_irp_ng(struct irs_acc *this)
- *
- * Notes:
- *
- *	Intialize the irp netgroup module.
- *
- */
-
-struct irs_ng *
-irs_irp_ng(struct irs_acc *this) {
-	struct irs_ng *ng;
-	struct pvt *pvt;
-
-	if (!(ng = memget(sizeof *ng))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ng, 0x5e, sizeof *ng);
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(ng, sizeof *ng);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->girpdata = this->private;
-
-	ng->private = pvt;
-	ng->close = ng_close;
-	ng->next = ng_next;
-	ng->test = ng_test;
-	ng->rewind = ng_rewind;
-	ng->minimize = ng_minimize;
-	return (ng);
-}
-
-/* Methods */
-
-
-
-/*
- * void ng_close(struct irs_ng *this)
- *
- */
-
-static void
-ng_close(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	ng_minimize(this);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-
-/*
- * void ng_rewind(struct irs_ng *this, const char *group)
- *
- *
- */
-
-static void
-ng_rewind(struct irs_ng *this, const char *group) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata,
-				 "setnetgrent %s", group) != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETNETGR_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "setnetgrent(%s) failed: %s",
-			       group, text);
-		}
-	}
-
-	return;
-}
-
-
-
-
-/*
- * int ng_next(struct irs_ng *this, char **host, char **user, char **domain)
- *
- * Notes:
- *
- *	Get the next netgroup item from the cache.
- *
- */
-
-static int
-ng_next(struct irs_ng *this, char **host, char **user, char **domain) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int code;
-	char *body = NULL;
-	size_t bodylen;
-	int rval = 0;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (0);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getnetgrent") != 0)
-		return (0);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (0);
-	}
-
-	if (code == IRPD_GETNETGR_OK) {
-		if (irp_unmarshall_ng(host, user, domain, body) == 0) {
-			rval = 1;
-		}
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (rval);
-}
-
-
-
-/*
- * int ng_test(struct irs_ng *this, const char *name, const char *host,
- *		const char *user, const char *domain)
- *
- * Notes:
- *
- *	Search for a match in a netgroup.
- *
- */
-
-static int
-ng_test(struct irs_ng *this, const char *name,
-	const char *host, const char *user, const char *domain)
-{
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *body = NULL;
-	size_t bodylen = 0;
-	int code;
-	char text[256];
-	int rval = 0;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (0);
-	}
-
-	if (irp_marshall_ng(host, user, domain, &body, &bodylen) != 0) {
-		return (0);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "innetgr %s", body) == 0) {
-		memput(body, bodylen);
-
-		code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-		if (code == IRPD_GETNETGR_MATCHES) {
-			rval = 1;
-		}
-	}
-
-	return (rval);
-}
-
-
-
-
-/*
- * void ng_minimize(struct irs_ng *this)
- *
- */
-
-static void
-ng_minimize(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-
-
-
-/* Private */
-
diff --git a/contrib/bind/lib/irs/irp_nw.c b/contrib/bind/lib/irs/irp_nw.c
deleted file mode 100644
index c0bcbfaf6636c..0000000000000
--- a/contrib/bind/lib/irs/irp_nw.c
+++ /dev/null
@@ -1,375 +0,0 @@
-/*
- * Portions Copyright (c) 1996,1998 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irp_nw.c,v 8.1 1999/01/18 07:46:54 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#if 0
-
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <syslog.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/irpmarshall.h>
-
-#include <isc/memcluster.h>
-#include <isc/misc.h>
-
-#include "irs_p.h"
-#include "lcl_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-#define MAXALIASES 35
-#define MAXADDRSIZE 4
-
-struct pvt {
-	struct irp_p	       *girpdata;
-	int			warned;
-	struct nwent		net;
-};
-
-/* Forward */
-
-static void		nw_close(struct irs_nw *);
-static struct nwent *	nw_byname(struct irs_nw *, const char *, int);
-static struct nwent *	nw_byaddr(struct irs_nw *, void *, int, int);
-static struct nwent *	nw_next(struct irs_nw *);
-static void		nw_rewind(struct irs_nw *);
-static void		nw_minimize(struct irs_nw *);
-
-static void		free_nw(struct nwent *nw);
-
-
-/* Public */
-
-
-
-/*
- * struct irs_nw * irs_irp_nw(struct irs_acc *this) 
- *
- */
-
-struct irs_nw *
-irs_irp_nw(struct irs_acc *this) {
-	struct irs_nw *nw;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-
-	if (!(nw = memget(sizeof *nw))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(nw, 0x0, sizeof *nw);
-	pvt->girpdata = this->private;
-
-	nw->private = pvt;
-	nw->close = nw_close;
-	nw->byname = nw_byname;
-	nw->byaddr = nw_byaddr;
-	nw->next = nw_next;
-	nw->rewind = nw_rewind;
-	nw->minimize = nw_minimize;
-	return (nw);
-}
-
-/* Methods */
-
-
-
-/*
- * void nw_close(struct irs_nw *this) 
- *
- */
-
-static void
-nw_close(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	nw_minimize(this);
-
-	free_nw(&pvt->net);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-
-/*
- * struct nwent * nw_byaddr(struct irs_nw *this, void *net, 
- * 				int length, int type) 
- *
- */
-
-static struct nwent *
-nw_byaddr(struct irs_nw *this, void *net, int length, int type) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct nwent *nw = &pvt->net;
-	char *body = NULL;
-	size_t bodylen;
-	int code;
-	char paddr[24];			/* bigenough for ip4 w/ cidr spec. */
-	char text[256];
-
-	if (inet_net_ntop(type, net, length, paddr, sizeof paddr) == NULL) {
-		return (NULL);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getnetbyaddr %s %s",
-				 paddr, ADDR_T_STR(type)) != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETNET_OK) {
-		free_nw(nw);
-		if (irp_unmarshall_nw(nw, body) != 0) {
-			nw = NULL;
-		}
-	} else {
-		nw = NULL;
-	}
-		
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-	
-	return (nw);
-}
-
-
-
-
-/*
- * struct nwent * nw_byname(struct irs_nw *this, const char *name, int type) 
- *
- */
-
-static struct nwent *
-nw_byname(struct irs_nw *this, const char *name, int type) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct nwent *nw = &pvt->net;
-	char *body = NULL;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (nw->n_name != NULL &&
-	    strcmp(name, nw->n_name) == 0 &&
-	    nw->n_addrtype == type) {
-		return (nw);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getnetbyname %s", name) != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETNET_OK) {
-		free_nw(nw);
-		if (irp_unmarshall_nw(nw, body) != 0) {
-			nw = NULL;
-		}
-	} else {
-		nw = NULL;
-	}
-	
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-	
-	return (nw);
-}
-
-
-
-
-/*
- * void nw_rewind(struct irs_nw *this) 
- *
- */
-
-static void
-nw_rewind(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "setnetent") != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETNET_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "setnetent failed: %s", text);
-		}
-	}
-	
-	return;
-}
-
-
-
-
-
-
-/*
- * struct nwent * nw_next(struct irs_nw *this) 
- *
- * Notes:
- * 	
- * 	Prepares the cache if necessary and returns the first, or 
- * 	next item from it.
- */
-
-static struct nwent *
-nw_next(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct nwent *nw = &pvt->net;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getnetent") != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETNET_OK) {
-		free_nw(nw);
-		if (irp_unmarshall_nw(nw, body) != 0) {
-			nw = NULL;
-		}
-	} else {
-		nw = NULL;
-	}
-
-	return (nw);
-}
-
-
-
-
-
-
-/*
- * void nw_minimize(struct irs_nw *this) 
- *
- */
-
-static void
-nw_minimize(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-
-
-
-/* private. */
-
-
-
-/*
- * static void free_passwd(struct passwd *pw);
- *
- *	deallocate all the memory irp_unmarshall_pw allocated.
- *
- */
-
-static void
-free_nw(struct nwent *nw) {
-	char **p;
-
-	if (nw == NULL)
-		return;
-
-	if (nw->n_name != NULL)
-		free(nw->n_name);
-
-	if (nw->n_aliases != NULL) {
-		for (p = nw->n_aliases ; *p != NULL ; p++) {
-			free(*p);
-		}
-		free(nw->n_aliases);
-	}
-
-	if (nw->n_addr != NULL)
-		free(nw->n_addr);
-}
diff --git a/contrib/bind/lib/irs/irp_p.h b/contrib/bind/lib/irs/irp_p.h
deleted file mode 100644
index adf81746e8a03..0000000000000
--- a/contrib/bind/lib/irs/irp_p.h
+++ /dev/null
@@ -1,61 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: irp_p.h,v 8.1 1999/01/18 07:46:54 vixie Exp $
- */
-
-#ifndef _IRP_P_H_INCLUDED
-#define _IRP_P_H_INCLUDED
-
-#include <stdio.h>
-
-struct irp_p {
-	char inbuffer[1024];
-	int inlast; /* index of one past the last char in buffer */
-	int incurr; /* index of the next char to be read from buffer */
-
-	int fdCxn;
-};
-
-/*
- * Externs.
- */
-
-extern struct irs_acc *	irs_irp_acc __P((const char *));
-extern struct irs_gr *	irs_irp_gr __P((struct irs_acc *));
-extern struct irs_pw *	irs_irp_pw __P((struct irs_acc *));
-extern struct irs_sv *	irs_irp_sv __P((struct irs_acc *));
-extern struct irs_pr *	irs_irp_pr __P((struct irs_acc *));
-extern struct irs_ho *	irs_irp_ho __P((struct irs_acc *));
-extern struct irs_nw *	irs_irp_nw __P((struct irs_acc *));
-extern struct irs_ng *	irs_irp_ng __P((struct irs_acc *));
-
-int irs_irp_connect(struct irp_p *pvt);
-int irs_irp_is_connected(struct irp_p *pvt);
-void irs_irp_disconnect(struct irp_p *pvt);
-int irs_irp_read_response(struct irp_p *pvt, char *text, size_t textlen);
-char *irs_irp_read_body(struct irp_p *pvt, size_t *size);
-int irs_irp_get_full_response(struct irp_p *pvt, int *code,
-			      char *text, size_t textlen,
-			      char **body, size_t *bodylen);
-int irs_irp_send_command(struct irp_p *pvt, const char *fmt, ...);
-
-
-extern int irp_log_errors;
-
-#endif
diff --git a/contrib/bind/lib/irs/irp_pr.c b/contrib/bind/lib/irs/irp_pr.c
deleted file mode 100644
index 1de304e74be7d..0000000000000
--- a/contrib/bind/lib/irs/irp_pr.c
+++ /dev/null
@@ -1,353 +0,0 @@
-/*
- * Portions Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irp_pr.c,v 8.1 1999/01/18 07:46:54 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* extern */
-
-#include "port_before.h"
-
-#include <syslog.h>
-#include <sys/types.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <string.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <netdb.h>
-#include <syslog.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/memcluster.h>
-#include <isc/irpmarshall.h>
-
-#include "irs_p.h"
-#include "lcl_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-
-#define MAXALIASES	35
-
-/* Types */
-
-struct pvt {
-	struct irp_p	       *girpdata;
-	int			warned;
-	struct protoent		proto;
-};
-
-/* Forward */
-
-static void			pr_close(struct irs_pr *);
-static struct protoent *	pr_next(struct irs_pr *);
-static struct protoent *	pr_byname(struct irs_pr *, const char *);
-static struct protoent *	pr_bynumber(struct irs_pr *, int);
-static void			pr_rewind(struct irs_pr *);
-static void			pr_minimize(struct irs_pr *);
-
-static void			free_proto(struct protoent *pr);
-
-/* Public */
-
-
-
-/*
- * struct irs_pr * irs_irp_pr(struct irs_acc *this)
- *
- */
-
-struct irs_pr *
-irs_irp_pr(struct irs_acc *this) {
-	struct irs_pr *pr;
-	struct pvt *pvt;
-
-	if (!(pr = memget(sizeof *pr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pr, 0x0, sizeof *pr);
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(pr, sizeof *pr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->girpdata = this->private;
-
-	pr->private = pvt;
-	pr->close = pr_close;
-	pr->byname = pr_byname;
-	pr->bynumber = pr_bynumber;
-	pr->next = pr_next;
-	pr->rewind = pr_rewind;
-	pr->minimize = pr_minimize;
-	return (pr);
-}
-
-/* Methods */
-
-
-
-/*
- * void pr_close(struct irs_pr *this)
- *
- */
-
-static void
-pr_close(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pr_minimize(this);
-
-	free_proto(&pvt->proto);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-/*
- * struct protoent * pr_byname(struct irs_pr *this, const char *name)
- *
- */
-
-static struct protoent *
-pr_byname(struct irs_pr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct protoent *pr = &pvt->proto;
-	char *body = NULL;
-	size_t bodylen;
-	int code;
-	int i;
-	char text[256];
-
-	if (pr->p_name != NULL && strcmp(name, pr->p_name) == 0) {
-		return (pr);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	i = irs_irp_send_command(pvt->girpdata, "getprotobyname %s", name);
-	if (i != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETPROTO_OK) {
-		free_proto(pr);
-		if (irp_unmarshall_pr(pr, body) != 0) {
-			pr = NULL;
-		}
-	} else {
-		pr = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (pr);
-}
-
-
-
-/*
- * struct protoent * pr_bynumber(struct irs_pr *this, int proto)
- *
- */
-
-static struct protoent *
-pr_bynumber(struct irs_pr *this, int proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct protoent *pr = &pvt->proto;
-	char *body = NULL;
-	size_t bodylen;
-	int code;
-	int i;
-	char text[256];
-
-	if (pr->p_name != NULL && proto == pr->p_proto) {
-		return (pr);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	i = irs_irp_send_command(pvt->girpdata, "getprotobynumber %d", proto);
-	if (i != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETPROTO_OK) {
-		free_proto(pr);
-		if (irp_unmarshall_pr(pr, body) != 0) {
-			pr = NULL;
-		}
-	} else {
-		pr = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (pr);
-}
-
-
-
-
-/*
- * void pr_rewind(struct irs_pr *this)
- *
- */
-
-static void
-pr_rewind(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "setprotoent") != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETPROTO_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "setprotoent failed: %s", text);
-		}
-	}
-
-	return;
-}
-
-
-
-
-/*
- * struct protoent * pr_next(struct irs_pr *this)
- *
- * Notes:
- *
- *	Prepares the cache if necessary and returns the next item in it.
- *
- */
-
-static struct protoent *
-pr_next(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct protoent *pr = &pvt->proto;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getprotoent") != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETPROTO_OK) {
-		free_proto(pr);
-		if (irp_unmarshall_pr(pr, body) != 0) {
-			pr = NULL;
-		}
-	} else {
-		pr = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (pr);
-}
-
-
-
-
-/*
- * void pr_minimize(struct irs_pr *this)
- *
- */
-
-static void
-pr_minimize(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-
-
-
-
-
-/*
- * static void free_proto(struct protoent *pw);
- *
- *	Deallocate all the memory irp_unmarshall_pr allocated.
- *
- */
-
-static void
-free_proto(struct protoent *pr) {
-	char **p;
-
-	if (pr == NULL)
-		return;
-
-	if (pr->p_name != NULL)
-		free(pr->p_name);
-
-	for (p = pr->p_aliases ; p != NULL && *p != NULL ; p++)
-		free(*p);
-}
diff --git a/contrib/bind/lib/irs/irp_pw.c b/contrib/bind/lib/irs/irp_pw.c
deleted file mode 100644
index f23cb734c24a2..0000000000000
--- a/contrib/bind/lib/irs/irp_pw.c
+++ /dev/null
@@ -1,356 +0,0 @@
-/*
- * Portions Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irp_pw.c,v 8.1 1999/01/18 07:46:54 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Extern */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_PW
-static int __bind_irs_pw_unneeded;
-#else
-
-#include <syslog.h>
-#include <sys/param.h>
-
-#include <db.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <limits.h>
-#include <pwd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <utmp.h>
-#include <unistd.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/memcluster.h>
-#include <isc/irpmarshall.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "irp_p.h"
-
-
-/* Types */
-
-struct	pvt {
-	struct irp_p   *girpdata; /* global IRP data */
-	int		warned;
-	struct passwd	passwd;		/* password structure */
-};
-
-/* Forward */
-
-static void			pw_close(struct irs_pw *);
-static struct passwd *		pw_next(struct irs_pw *);
-static struct passwd *		pw_byname(struct irs_pw *, const char *);
-static struct passwd *		pw_byuid(struct irs_pw *, uid_t);
-static void			pw_rewind(struct irs_pw *);
-static void			pw_minimize(struct irs_pw *);
-
-static void			free_passwd(struct passwd *pw);
-
-/* Public */
-struct irs_pw *
-irs_irp_pw(struct irs_acc *this) {
-	struct irs_pw *pw;
-	struct pvt *pvt;
-
-	if (!(pw = memget(sizeof *pw))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pw, 0, sizeof *pw);
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(pw, sizeof *pw);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->girpdata = this->private;
-
-	pw->private = pvt;
-	pw->close = pw_close;
-	pw->next = pw_next;
-	pw->byname = pw_byname;
-	pw->byuid = pw_byuid;
-	pw->rewind = pw_rewind;
-	pw->minimize = pw_minimize;
-
-	return (pw);
-}
-
-/* Methods */
-
-
-
-/*
- * void pw_close(struct irs_pw *this)
- *
- */
-
-static void
-pw_close(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pw_minimize(this);
-
-	free_passwd(&pvt->passwd);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-
-/*
- * struct passwd * pw_next(struct irs_pw *this)
- *
- */
-
-static struct passwd *
-pw_next(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct passwd *pw = &pvt->passwd;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getpwent") != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETUSER_OK) {
-		free_passwd(pw);
-		if (irp_unmarshall_pw(pw, body) != 0) {
-			pw = NULL;
-		}
-	} else {
-		pw = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (pw);
-}
-
-
-
-
-/*
- * struct passwd * pw_byname(struct irs_pw *this, const char *name)
- *
- */
-
-static struct passwd *
-pw_byname(struct irs_pw *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct passwd *pw = &pvt->passwd;
-	char *body = NULL;
-	char text[256];
-	size_t bodylen;
-	int code;
-
-	if (pw->pw_name != NULL && strcmp(name, pw->pw_name) == 0) {
-		return (pw);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getpwnam %s", name) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETUSER_OK) {
-		free_passwd(pw);
-		if (irp_unmarshall_pw(pw, body) != 0) {
-			pw = NULL;
-		}
-	} else {
-		pw = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (pw);
-}
-
-
-
-
-/*
- * struct passwd * pw_byuid(struct irs_pw *this, uid_t uid)
- *
- */
-
-static struct passwd *
-pw_byuid(struct irs_pw *this, uid_t uid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *body;
-	char text[256];
-	size_t bodylen;
-	int code;
-	struct passwd *pw = &pvt->passwd;
-
-	if (pw->pw_name != NULL && pw->pw_uid == uid) {
-		return (pw);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getpwuid %d", uid) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETUSER_OK) {
-		free_passwd(pw);
-		if (irp_unmarshall_pw(pw, body) != 0) {
-			pw = NULL;
-		}
-	} else {
-		pw = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (pw);
-}
-
-
-
-
-/*
- * void pw_rewind(struct irs_pw *this)
- *
- */
-
-static void
-pw_rewind(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "setpwent") != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETUSER_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "setpwent failed: %s", text);
-		}
-	}
-
-	return;
-}
-
-
-/*
- * void pw_minimize(struct irs_pw *this)
- *
- */
-
-static void
-pw_minimize(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-
-/* Private. */
-
-
-
-/*
- * static void free_passwd(struct passwd *pw);
- *
- *	Deallocate all the memory irp_unmarshall_pw allocated.
- *
- */
-
-static void
-free_passwd(struct passwd *pw) {
-	if (pw == NULL)
-		return;
-
-	if (pw->pw_name != NULL)
-		free(pw->pw_name);
-
-	if (pw->pw_passwd != NULL)
-		free(pw->pw_passwd);
-
-	if (pw->pw_class != NULL)
-		free(pw->pw_class);
-
-	if (pw->pw_gecos != NULL)
-		free(pw->pw_gecos);
-
-	if (pw->pw_dir != NULL)
-		free(pw->pw_dir);
-
-	if (pw->pw_shell != NULL)
-		free(pw->pw_shell);
-}
-
-#endif /* WANT_IRS_PW */
diff --git a/contrib/bind/lib/irs/irp_sv.c b/contrib/bind/lib/irs/irp_sv.c
deleted file mode 100644
index 6a12c5bdabdb0..0000000000000
--- a/contrib/bind/lib/irs/irp_sv.c
+++ /dev/null
@@ -1,369 +0,0 @@
-/*
- * Portions Copyright (c) 1996,1998 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irp_sv.c,v 8.1 1999/01/18 07:46:54 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* extern */
-
-#include "port_before.h"
-
-#include <syslog.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#ifdef IRS_LCL_SV_DB
-#include <db.h>
-#endif
-#include <errno.h>
-#include <fcntl.h>
-#include <limits.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-#include <syslog.h>
-
-#include <irs.h>
-#include <irp.h>
-#include <isc/irpmarshall.h>
-#include <isc/memcluster.h>
-
-#include "irs_p.h"
-#include "lcl_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-/* Types */
-
-struct pvt {
-	struct irp_p	       *girpdata;
-	int			warned;
-	struct servent		service;
-};
-
-/* Forward */
-
-static void			sv_close(struct irs_sv*);
-static struct servent *		sv_next(struct irs_sv *);
-static struct servent *		sv_byname(struct irs_sv *, const char *,
-					  const char *);
-static struct servent *		sv_byport(struct irs_sv *, int, const char *);
-static void			sv_rewind(struct irs_sv *);
-static void			sv_minimize(struct irs_sv *);
-
-static void			free_service(struct servent *sv);
-
-
-
-/* Public */
-
-
-
-/*
- * struct irs_sv * irs_irp_sv(struct irs_acc *this)
- *
- */
-
-struct irs_sv *
-irs_irp_sv(struct irs_acc *this) {
-	struct irs_sv *sv;
-	struct pvt *pvt;
-
-	if ((sv = memget(sizeof *sv)) == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(sv, 0x0, sizeof *sv);
-
-	if ((pvt = memget(sizeof *pvt)) == NULL) {
-		memput(sv, sizeof *sv);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->girpdata = this->private;
-
-	sv->private = pvt;
-	sv->close = sv_close;
-	sv->next = sv_next;
-	sv->byname = sv_byname;
-	sv->byport = sv_byport;
-	sv->rewind = sv_rewind;
-	sv->minimize = sv_minimize;
-
-	return (sv);
-}
-
-/* Methods */
-
-
-
-/*
- * void sv_close(struct irs_sv *this)
- *
- */
-
-static void
-sv_close(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	sv_minimize(this);
-
-	free_service(&pvt->service);
-
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-
-
-
-/*
- * struct servent * sv_next(struct irs_sv *this)
- *
- * Notes:
- *
- *	Fills the cache if necessary and returns the next item from it.
- *
- */
-
-static struct servent *
-sv_next(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct servent *sv = &pvt->service;
-	char *body;
-	size_t bodylen;
-	int code;
-	char text[256];
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getservent") != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETSERVICE_OK) {
-		free_service(sv);
-		if (irp_unmarshall_sv(sv, body) != 0) {
-			sv = NULL;
-		}
-	} else {
-		sv = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (sv);
-}
-
-
-
-
-/*
- * struct servent * sv_byname(struct irs_sv *this, const char *name,
- *				const char *proto)
- *
- */
-
-static struct servent *
-sv_byname(struct irs_sv *this, const char *name, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct servent *sv = &pvt->service;
-	char *body;
-	char text[256];
-	size_t bodylen;
-	int code;
-
-	if (sv->s_name != NULL &&
-	    strcmp(name, sv->s_name) == 0 &&
-	    strcasecmp(proto, sv->s_proto) == 0) {
-		return (sv);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getservbyname %s %s",
-				 name, proto) != 0)
-		return (NULL);
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETSERVICE_OK) {
-		free_service(sv);
-		if (irp_unmarshall_sv(sv, body) != 0) {
-			sv = NULL;
-		}
-	} else {
-		sv = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (sv);
-}
-
-
-
-
-/*
- * struct servent * sv_byport(struct irs_sv *this, int port,
- *				const char *proto)
- *
- */
-
-static struct servent *
-sv_byport(struct irs_sv *this, int port, const char *proto) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct servent *sv = &pvt->service;
-	char *body;
-	size_t bodylen;
-	char text[256];
-	int code;
-
-	if (sv->s_name != NULL &&
-	    port == sv->s_port &&
-	    strcasecmp(proto, sv->s_proto) == 0) {
-		return (sv);
-	}
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "getservbyport %d %s",
-				 ntohs((short)port), proto) != 0) {
-		return (NULL);
-	}
-
-	if (irs_irp_get_full_response(pvt->girpdata, &code,
-				      text, sizeof text,
-				      &body, &bodylen) != 0) {
-		return (NULL);
-	}
-
-	if (code == IRPD_GETSERVICE_OK) {
-		free_service(sv);
-		if (irp_unmarshall_sv(sv, body) != 0) {
-			sv = NULL;
-		}
-	} else {
-		sv = NULL;
-	}
-
-	if (body != NULL) {
-		memput(body, bodylen);
-	}
-
-	return (sv);
-}
-
-
-
-
-
-/*
- * void sv_rewind(struct irs_sv *this)
- *
- */
-
-static void
-sv_rewind(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char text[256];
-	int code;
-
-	if (irs_irp_connection_setup(pvt->girpdata, &pvt->warned) != 0) {
-		return;
-	}
-
-	if (irs_irp_send_command(pvt->girpdata, "setservent") != 0) {
-		return;
-	}
-
-	code = irs_irp_read_response(pvt->girpdata, text, sizeof text);
-	if (code != IRPD_GETSERVICE_SETOK) {
-		if (irp_log_errors) {
-			syslog(LOG_WARNING, "setservent failed: %s", text);
-		}
-	}
-
-	return;
-}
-
-
-
-
-
-/*
- * void sv_minimize(struct irs_sv *this)
- *
- */
-
-static void
-sv_minimize(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	irs_irp_disconnect(pvt->girpdata);
-}
-
-
-
-
-
-
-static void
-free_service(struct servent *sv) {
-	char **p;
-
-	if (sv == NULL) {
-		return;
-	}
-
-	if (sv->s_name != NULL) {
-		free(sv->s_name);
-	}
-
-	for (p = sv->s_aliases ; p != NULL && *p != NULL ; p++) {
-		free(*p);
-	}
-
-	if (sv->s_proto != NULL) {
-		free(sv->s_proto);
-	}
-}
-
-
diff --git a/contrib/bind/lib/irs/irpmarshall.c b/contrib/bind/lib/irs/irpmarshall.c
deleted file mode 100644
index 8f7c330913d31..0000000000000
--- a/contrib/bind/lib/irs/irpmarshall.c
+++ /dev/null
@@ -1,2332 +0,0 @@
-/*
- * Copyright(c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: irpmarshall.c,v 8.5 1999/10/13 17:11:19 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#if 0
-
-Check values are in approrpriate endian order.
-
-Double check memory allocations on unmarhsalling
-
-#endif
-
-
-/* Extern */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <ctype.h>
-#include <pwd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <utmp.h>
-#include <unistd.h>
-#include <assert.h>
-#include <errno.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-#include <isc/irpmarshall.h>
-
-#include "port_after.h"
-
-
-static char    *strndup(const char *str, size_t len);
-static char   **splitarray(const char *buffer, const char *buffend, char delim);
-static int	joinarray(char * const * argv, char *buffer, char delim);
-static char    *getfield(char **res, size_t reslen, char **buffer, char delim);
-static size_t	joinlength(char * const *argv);
-static void	free_array(char **argv, size_t entries);
-
-#define ADDR_T_STR(x) (x == AF_INET ? "AF_INET" :\
-		       (x == AF_INET6 ? "AF_INET6" : "UNKNOWN"))
-
-#define MAXPADDRSIZE (sizeof "255.255.255.255" + 1)
-
-static char COMMA = ',';
-
-static const char *COMMASTR = ",";
-static const char *COLONSTR = ":";
-
-
-
-/* See big comment at bottom of irpmarshall.h for description. */
-
-
-#ifdef WANT_IRS_PW
-/* +++++++++++++++++++++++++ struct passwd +++++++++++++++++++++++++ */
-
-
-/*
- * int irp_marshall_pw(const struct passwd *pw, char **buffer, size_t *len)
- *
- * notes:
- *
- *	See above
- *
- * return:
- *
- *	0 on sucess, -1 on failure.
- *
- */
-
-int
-irp_marshall_pw(const struct passwd *pw, char **buffer, size_t *len) {
-	size_t need = 1 ;		/* for null byte */
-	char pwUid[24];
-	char pwGid[24];
-	char pwChange[24];
-	char pwExpire[24];
-	char *pwClass;
-	const char *fieldsep = COLONSTR;
-
-	if (pw == NULL || len == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	sprintf(pwUid, "%ld", (long)pw->pw_uid);
-	sprintf(pwGid, "%ld", (long)pw->pw_gid);
-
-#ifdef HAVE_PW_CHANGE
-	sprintf(pwChange, "%ld", (long)pw->pw_change);
-#else
-	pwChange[0] = '0';
-	pwChange[1] = '\0';
-#endif
-
-#ifdef HAVE_PW_EXPIRE
-	sprintf(pwExpire, "%ld", (long)pw->pw_expire);
-#else
-	pwExpire[0] = '0';
-	pwExpire[1] = '\0';
-#endif
-
-#ifdef HAVE_PW_CLASS
-	pwClass = pw->pw_class;
-#else
-	pwClass = "";
-#endif
-
-	need += strlen(pw->pw_name)	+ 1; /* one for fieldsep */
-	need += strlen(pw->pw_passwd)	+ 1;
-	need += strlen(pwUid)		+ 1;
-	need += strlen(pwGid)		+ 1;
-	need += strlen(pwClass)		+ 1;
-	need += strlen(pwChange)	+ 1;
-	need += strlen(pwExpire)	+ 1;
-	need += strlen(pw->pw_gecos)	+ 1;
-	need += strlen(pw->pw_dir)	+ 1;
-	need += strlen(pw->pw_shell)	+ 1;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	strcpy(*buffer, pw->pw_name);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pw->pw_passwd);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pwUid);			strcat(*buffer, fieldsep);
-	strcat(*buffer, pwGid);			strcat(*buffer, fieldsep);
-	strcat(*buffer, pwClass);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pwChange);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pwExpire);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pw->pw_gecos);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pw->pw_dir);		strcat(*buffer, fieldsep);
-	strcat(*buffer, pw->pw_shell);		strcat(*buffer, fieldsep);
-
-	return (0);
-}
-
-
-
-
-
-/*
- * int irp_unmarshall_pw(struct passwd *pw, char *buffer)
- *
- * notes:
- *
- *	see above
- *
- * return:
- *
- *	0 on success, -1 on failure
- *
- */
-
-int
-irp_unmarshall_pw(struct passwd *pw, char *buffer) {
-	char *name, *pass, *class, *gecos, *dir, *shell;
-	uid_t pwuid;
-	gid_t pwgid;
-	time_t pwchange;
-	time_t pwexpire;
-	char *p;
-	long t;
-	char tmpbuf[24];
-	char *tb = &tmpbuf[0];
-	char fieldsep = ':';
-	int myerrno = EINVAL;
-
-	name = pass = class = gecos = dir = shell = NULL;
-	p = buffer;
-
-	/* pw_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-	/* pw_passwd field */
-	pass = NULL;
-	if (getfield(&pass, 0, &p, fieldsep) == NULL) { /* field can be empty */
-		goto error;
-	}
-
-
-	/* pw_uid field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	pwuid = (uid_t)t;
-	if ((long) pwuid != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-
-
-	/* pw_gid field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	pwgid = (gid_t)t;
-	if ((long)pwgid != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-
-
-	/* pw_class field */
-	class = NULL;
-	if (getfield(&class, 0, &p, fieldsep) == NULL) {
-		goto error;
-	}
-
-
-
-	/* pw_change field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	pwchange = (time_t)t;
-	if ((long)pwchange != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-
-
-	/* pw_expire field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	pwexpire = (time_t)t;
-	if ((long) pwexpire != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-
-
-	/* pw_gecos field */
-	gecos = NULL;
-	if (getfield(&gecos, 0, &p, fieldsep) == NULL) {
-		goto error;
-	}
-
-
-
-	/* pw_dir field */
-	dir = NULL;
-	if (getfield(&dir, 0, &p, fieldsep) == NULL) {
-		goto error;
-	}
-
-
-
-	/* pw_shell field */
-	shell = NULL;
-	if (getfield(&shell, 0, &p, fieldsep) == NULL) {
-		goto error;
-	}
-
-
-
-	pw->pw_name = name;
-	pw->pw_passwd = pass;
-	pw->pw_uid = pwuid;
-	pw->pw_gid = pwgid;
-	pw->pw_gecos = gecos;
-	pw->pw_dir = dir;
-	pw->pw_shell = shell;
-
-#ifdef HAVE_PW_CHANGE
-	pw->pw_change = pwchange;
-#endif
-#ifdef HAVE_PW_CLASS
-	pw->pw_class = class;
-#endif
-#ifdef HAVE_PW_EXPIRE
-	pw->pw_expire = pwexpire;
-#endif
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	if (pass != NULL) free(pass);
-	if (gecos != NULL) free(gecos);
-	if (dir != NULL) free(dir);
-	if (shell != NULL) free(shell);
-
-	return (-1);
-}
-
-/* ------------------------- struct passwd ------------------------- */
-#endif /* WANT_IRS_PW */
-
-
-
-/* +++++++++++++++++++++++++ struct group +++++++++++++++++++++++++ */
-
-
-
-/*
- * int irp_marshall_gr(const struct group *gr, char **buffer, size_t *len)
- *
- * notes:
- *
- *	see above.
- *
- * return:
- *
- *	0 on success, -1 on failure
- */
-
-int
-irp_marshall_gr(const struct group *gr, char **buffer, size_t *len) {
-	size_t need = 1;	/* for null byte */
-	char grGid[24];
-	const char *fieldsep = COLONSTR;
-
-	if (gr == NULL || len == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	sprintf(grGid, "%ld", (long)gr->gr_gid);
-
-	need += strlen(gr->gr_name) + 1;
-#ifndef MISSING_GR_PASSWD
-	need += strlen(gr->gr_passwd) + 1;
-#else
-	need++;
-#endif
-	need += strlen(grGid) + 1;
-	need += joinlength(gr->gr_mem) + 1;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	strcpy(*buffer, gr->gr_name);		strcat(*buffer, fieldsep);
-#ifndef MISSING_GR_PASSWD
-	strcat(*buffer, gr->gr_passwd);
-#endif
-	strcat(*buffer, fieldsep);
-	strcat(*buffer, grGid);			strcat(*buffer, fieldsep);
-	joinarray(gr->gr_mem, *buffer, COMMA) ;	strcat(*buffer, fieldsep);
-
-	return (0);
-}
-
-
-
-
-/*
- * int irp_unmarshall_gr(struct group *gr, char *buffer)
- *
- * notes:
- *
- *	see above
- *
- * return:
- *
- *	0 on success and -1 on failure.
- *
- */
-
-int
-irp_unmarshall_gr(struct group *gr, char *buffer) {
-	char *p, *q;
-	gid_t grgid;
-	long t;
-	char *name = NULL;
-	char *pass = NULL;
-	char **members = NULL;
-	char tmpbuf[24];
-	char *tb;
-	char fieldsep = ':';
-	int myerrno = EINVAL;
-
-	if (gr == NULL || buffer == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	p = buffer;
-
-	/* gr_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-
-	/* gr_passwd field */
-	pass = NULL;
-	if (getfield(&pass, 0, &p, fieldsep) == NULL) {
-		goto error;
-	}
-
-
-	/* gr_gid field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	grgid = (gid_t)t;
-	if ((long) grgid != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-
-	/* gr_mem field. Member names are separated by commas */
-	q = strchr(p, fieldsep);
-	if (q == NULL) {
-		goto error;
-	}
-	members = splitarray(p, q, COMMA);
-	if (members == NULL) {
-		myerrno = errno;
-		goto error;
-	}
-	p = q + 1;
-
-
-	gr->gr_name = name;
-#ifndef MISSING_GR_PASSWD
-	gr->gr_passwd = pass;
-#endif
-	gr->gr_gid = grgid;
-	gr->gr_mem = members;
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	if (pass != NULL) free(pass);
-
-	return (-1);
-}
-
-
-/* ------------------------- struct group ------------------------- */
-
-
-
-
-/* +++++++++++++++++++++++++ struct servent +++++++++++++++++++++++++ */
-
-
-
-/*
- * int irp_marshall_sv(const struct servent *sv, char **buffer, size_t *len)
- *
- * notes:
- *
- *	see above
- *
- * return:
- *
- *	0 on success, -1 on failure.
- *
- */
-
-int
-irp_marshall_sv(const struct servent *sv, char **buffer, size_t *len) {
-	size_t need = 1;	/* for null byte */
-	char svPort[24];
-	const char *fieldsep = COLONSTR;
-	short realport;
-
-	if (sv == NULL || len == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	/* the int s_port field is actually a short in network order. We
-	   want host order to make the marshalled data look correct */
-	realport = ntohs((short)sv->s_port);
-	sprintf(svPort, "%d", realport);
-
-	need += strlen(sv->s_name) + 1;
-	need += joinlength(sv->s_aliases) + 1;
-	need += strlen(svPort) + 1;
-	need += strlen(sv->s_proto) + 1;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	strcpy(*buffer, sv->s_name);		strcat(*buffer, fieldsep);
-	joinarray(sv->s_aliases, *buffer, COMMA); strcat(*buffer, fieldsep);
-	strcat(*buffer, svPort);		strcat(*buffer, fieldsep);
-	strcat(*buffer, sv->s_proto);		strcat(*buffer, fieldsep);
-
-	return (0);
-}
-
-
-
-
-
-/*
- * int irp_unmarshall_sv(struct servent *sv, char *buffer)
- *
- * notes:
- *
- *	see above
- *
- * return:
- *
- *	0 on success, -1 on failure.
- *
- */
-
-int
-irp_unmarshall_sv(struct servent *sv, char *buffer) {
-	char *p, *q;
-	short svport;
-	long t;
-	char *name = NULL;
-	char *proto = NULL;
-	char **aliases = NULL;
-	char tmpbuf[24];
-	char *tb;
-	char fieldsep = ':';
-	int myerrno = EINVAL;
-
-	if (sv == NULL || buffer == NULL)
-		return (-1);
-
-	p = buffer;
-
-
-	/* s_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-
-	/* s_aliases field */
-	q = strchr(p, fieldsep);
-	if (q == NULL) {
-		goto error;
-	}
-	aliases = splitarray(p, q, COMMA);
-	if (aliases == NULL) {
-		myerrno = errno;
-		goto error;
-	}
-	p = q + 1;
-
-
-	/* s_port field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	svport = (short)t;
-	if ((long) svport != t) {	/* value must have been too big. */
-		goto error;
-	}
-	svport = htons(svport);
-
-	/* s_proto field */
-	proto = NULL;
-	if (getfield(&proto, 0, &p, fieldsep) == NULL) {
-		goto error;
-	}
-
-	sv->s_name = name;
-	sv->s_aliases = aliases;
-	sv->s_port = svport;
-	sv->s_proto = proto;
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	if (proto != NULL) free(proto);
-	free_array(aliases, 0);
-
-	return (-1);
-}
-
-
-/* ------------------------- struct servent ------------------------- */
-
-/* +++++++++++++++++++++++++ struct protoent +++++++++++++++++++++++++ */
-
-
-
-/*
- * int irp_marshall_pr(struct protoent *pr, char **buffer, size_t *len)
- *
- * notes:
- *
- *	see above
- *
- * return:
- *
- *	0 on success and -1 on failure.
- *
- */
-
-int
-irp_marshall_pr(struct protoent *pr, char **buffer, size_t *len) {
-	size_t need = 1;	/* for null byte */
-	char prProto[24];
-	const char *fieldsep = COLONSTR;
-
-	if (pr == NULL || len == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	sprintf(prProto, "%d", (int)pr->p_proto);
-
-	need += strlen(pr->p_name) + 1;
-	need += joinlength(pr->p_aliases) + 1;
-	need += strlen(prProto) + 1;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	strcpy(*buffer, pr->p_name);		strcat(*buffer, fieldsep);
-	joinarray(pr->p_aliases, *buffer, COMMA); strcat(*buffer, fieldsep);
-	strcat(*buffer, prProto);		strcat(*buffer, fieldsep);
-
-	return (0);
-
-}
-
-
-
-/*
- * int irp_unmarshall_pr(struct protoent *pr, char *buffer)
- *
- * notes:
- *
- *	See above
- *
- * return:
- *
- *	0 on success, -1 on failure
- *
- */
-
-int irp_unmarshall_pr(struct protoent *pr, char *buffer) {
-	char *p, *q;
-	int prproto;
-	long t;
-	char *name = NULL;
-	char **aliases = NULL;
-	char tmpbuf[24];
-	char *tb;
-	char fieldsep = ':';
-	int myerrno = EINVAL;
-
-	if (pr == NULL || buffer == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	p = buffer;
-
-	/* p_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-
-	/* p_aliases field */
-	q = strchr(p, fieldsep);
-	if (q == NULL) {
-		goto error;
-	}
-	aliases = splitarray(p, q, COMMA);
-	if (aliases == NULL) {
-		myerrno = errno;
-		goto error;
-	}
-	p = q + 1;
-
-
-	/* p_proto field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	prproto = (int)t;
-	if ((long) prproto != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-	pr->p_name = name;
-	pr->p_aliases = aliases;
-	pr->p_proto = prproto;
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	free_array(aliases, 0);
-
-	return (-1);
-}
-
-/* ------------------------- struct protoent ------------------------- */
-
-
-
-/* +++++++++++++++++++++++++ struct hostent +++++++++++++++++++++++++ */
-
-
-/*
- * int irp_marshall_ho(struct hostent *ho, char **buffer, size_t *len)
- *
- * notes:
- *
- *	see above.
- *
- * return:
- *
- *	0 on success, -1 on failure.
- *
- */
-
-int
-irp_marshall_ho(struct hostent *ho, char **buffer, size_t *len) {
-	size_t need = 1;	/* for null byte */
-	char hoaddrtype[24];
-	char holength[24];
-	char **av;
-	char *p;
-	int addrlen;
-	int malloced = 0;
-	size_t remlen;
-	const char *fieldsep = "@";
-
-	if (ho == NULL || len == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	switch(ho->h_addrtype) {
-	case AF_INET:
-		strcpy(hoaddrtype, "AF_INET");
-		break;
-
-	case AF_INET6:
-		strcpy(hoaddrtype, "AF_INET6");
-		break;
-
-	default:
-		errno = EINVAL;
-		return (-1);
-	}
-
-	sprintf(holength, "%d", ho->h_length);
-
-	need += strlen(ho->h_name) + 1;
-	need += joinlength(ho->h_aliases) + 1;
-	need += strlen(hoaddrtype) + 1;
-	need += strlen(holength) + 1;
-
-	/* we determine an upper bound on the string length needed, not an
-	   exact length. */
-	addrlen = (ho->h_addrtype == AF_INET ? 16 : 46) ; /* XX other AF's?? */
-	for (av = ho->h_addr_list; av != NULL && *av != NULL ; av++)
-		need += addrlen;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-		malloced = 1;
-	}
-
-	strcpy(*buffer, ho->h_name);		strcat(*buffer, fieldsep);
-	joinarray(ho->h_aliases, *buffer, COMMA); strcat(*buffer, fieldsep);
-	strcat(*buffer, hoaddrtype);		strcat(*buffer, fieldsep);
-	strcat(*buffer, holength);		strcat(*buffer, fieldsep);
-
-	p = *buffer + strlen(*buffer);
-	remlen = need - strlen(*buffer);
-	for (av = ho->h_addr_list ; av != NULL && *av != NULL ; av++) {
-		if (inet_ntop(ho->h_addrtype, *av, p, remlen) == NULL) {
-			goto error;
-		}
-		if (*(av + 1) != NULL)
-			strcat(p, COMMASTR);
-		remlen -= strlen(p);
-		p += strlen(p);
-	}
-	strcat(*buffer, fieldsep);
-
-	return (0);
-
- error:
-	if (malloced) {
-		memput(*buffer, need);
-	}
-
-	return (-1);
-}
-
-
-
-/*
- * int irp_unmarshall_ho(struct hostent *ho, char *buffer)
- *
- * notes:
- *
- *	See above.
- *
- * return:
- *
- *	0 on success, -1 on failure.
- *
- */
-
-int
-irp_unmarshall_ho(struct hostent *ho, char *buffer) {
-	char *p, *q, *r;
-	int hoaddrtype;
-	int holength;
-	long t;
-	char *name = NULL;
-	char **aliases = NULL;
-	char **hohaddrlist = NULL;
-	size_t hoaddrsize;
-	char tmpbuf[24];
-	char *tb;
-	char **alist;
-	int addrcount;
-	char fieldsep = '@';
-	int myerrno = EINVAL;
-
-	if (ho == NULL || buffer == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	p = buffer;
-
-	/* h_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-
-	/* h_aliases field */
-	q = strchr(p, fieldsep);
-	if (q == NULL) {
-		goto error;
-	}
-	aliases = splitarray(p, q, COMMA);
-	if (aliases == NULL) {
-		myerrno = errno;
-		goto error;
-	}
-	p = q + 1;
-
-
-	/* h_addrtype field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	if (strcmp(tmpbuf, "AF_INET") == 0)
-		hoaddrtype = AF_INET;
-	else if (strcmp(tmpbuf, "AF_INET6") == 0)
-		hoaddrtype = AF_INET6;
-	else
-		goto error;
-
-
-	/* h_length field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	t = strtol(tmpbuf, &tb, 10);
-	if (*tb) {
-		goto error;	/* junk in value */
-	}
-	holength = (int)t;
-	if ((long) holength != t) {	/* value must have been too big. */
-		goto error;
-	}
-
-
-	/* h_addr_list field */
-	q = strchr(p, fieldsep);
-	if (q == NULL)
-		goto error;
-
-	/* count how many addresss are in there */
-	if (q > p + 1) {
-		for (addrcount = 1, r = p ; r != q ; r++) {
-			if (*r == COMMA)
-				addrcount++;
-		}
-	} else {
-		addrcount = 0;
-	}
-
-	hoaddrsize = (addrcount + 1) * sizeof (char *);
-	hohaddrlist = malloc(hoaddrsize);
-	if (hohaddrlist == NULL) {
-		myerrno = ENOMEM;
-		goto error;
-	}
-
-	memset(hohaddrlist, 0x0, hoaddrsize);
-
-	alist = hohaddrlist;
-	for (t = 0, r = p ; r != q ; p = r + 1, t++) {
-		char saved;
-		while (r != q && *r != COMMA) r++;
-		saved = *r;
-		*r = 0x0;
-
-		alist[t] = malloc(hoaddrtype == AF_INET ? 4 : 16);
-		if (alist[t] == NULL) {
-			myerrno = ENOMEM;
-			goto error;
-		}
-
-		if (inet_pton(hoaddrtype, p, alist[t]) == -1)
-			goto error;
-		*r = saved;
-	}
-	alist[t] = NULL;
-
-	ho->h_name = name;
-	ho->h_aliases = aliases;
-	ho->h_addrtype = hoaddrtype;
-	ho->h_length = holength;
-	ho->h_addr_list = hohaddrlist;
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	free_array(aliases, 0);
-
-	return (-1);
-}
-
-/* ------------------------- struct hostent------------------------- */
-
-
-
-/* +++++++++++++++++++++++++ struct netgrp +++++++++++++++++++++++++ */
-
-
-/*
- * int irp_marshall_ng(const char *host, const char *user,
- *		       const char *domain, char *buffer, size_t *len)
- *
- * notes:
- *
- *	See note for irp_marshall_ng_start
- *
- * return:
- *
- *	0 on success, 0 on failure.
- *
- */
-
-int
-irp_marshall_ng(const char *host, const char *user, const char *domain,
-		char **buffer, size_t *len) {
-	size_t need = 1; /* for nul byte */
-	const char *fieldsep = ",";
-
-	if (len == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	need += 4;		       /* two parens and two commas */
-	need += (host == NULL ? 0 : strlen(host));
-	need += (user == NULL ? 0 : strlen(user));
-	need += (domain == NULL ? 0 : strlen(domain));
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	} else if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	(*buffer)[0] = '(';
-	(*buffer)[1] = '\0';
-
-	if (host != NULL)
-		strcat(*buffer, host);
-	strcat(*buffer, fieldsep);
-
-	if (user != NULL)
-		strcat(*buffer, user);
-	strcat(*buffer, fieldsep);
-
-	if (domain != NULL)
-		strcat(*buffer, domain);
-	strcat(*buffer, ")");
-
-	return (0);
-}
-
-
-
-/* ---------- */
-
-
-/*
- * int irp_unmarshall_ng(char **host, char **user, char **domain,
- *			 char *buffer)
- *
- * notes:
- *
- *	Unpacks the BUFFER into 3 character arrays it allocates and assigns
- *	to *HOST, *USER and *DOMAIN. If any field of the value is empty,
- *	then the corresponding paramater value will be set to NULL.
- *
- * return:
- *
- *	0 on success and -1 on failure.
- */
-
-int
-irp_unmarshall_ng(char **host, char **user, char **domain, char *buffer) {
-	char *p, *q;
-	char fieldsep = ',';
-	int myerrno = EINVAL;
-
-	if (user == NULL || host == NULL || domain == NULL || buffer == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	*host = *user = *domain = NULL;
-
-	p = buffer;
-	while (isspace(*p)) {
-		p++;
-	}
-	if (*p != '(') {
-		goto error;
-	}
-
-	q = p + 1;
-	while (*q && *q != fieldsep)
-		q++;
-	if (!*q) {
-		goto error;
-	} else if (q > p + 1) {
-		*host = strndup(p, q - p);
-	}
-
-	p = q + 1;
-	if (!*p) {
-		goto error;
-	} else if (*p != fieldsep) {
-		q = p + 1;
-		while (*q && *q != fieldsep)
-			q++;
-		if (!*q) {
-			goto error;
-		}
-		*user = strndup(p, q - p);
-	} else {
-		p++;
-	}
-
-	if (!*p) {
-		goto error;
-	} else if (*p != ')') {
-		q = p + 1;
-		while (*q && *q != ')')
-			q++;
-		if (!*q) {
-			goto error;
-		}
-		*domain = strndup(p, q - p);
-	}
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (*host != NULL) free(*host);
-	if (*user != NULL) free(*user);
-	if (*domain != NULL) free(*domain);
-
-	return (-1);
-}
-
-/* ------------------------- struct netgrp ------------------------- */
-
-
-
-
-/* +++++++++++++++++++++++++ struct nwent +++++++++++++++++++++++++ */
-
-
-/*
- * int irp_marshall_nw(struct nwent *ne, char **buffer, size_t *len)
- *
- * notes:
- *
- *	See at top.
- *
- * return:
- *
- *	0 on success and -1 on failure.
- *
- */
-
-int
-irp_marshall_nw(struct nwent *ne, char **buffer, size_t *len) {
-	size_t need = 1;	/* for null byte */
-	char nAddrType[24];
-	char nNet[MAXPADDRSIZE];
-	const char *fieldsep = COLONSTR;
-
-	if (ne == NULL || len == NULL) {
-		return (-1);
-	}
-
-	strcpy(nAddrType, ADDR_T_STR(ne->n_addrtype));
-
-	if (inet_net_ntop(ne->n_addrtype, ne->n_addr, ne->n_length,
-			  nNet, sizeof nNet) == NULL) {
-		return (-1);
-	}
-
-
-	need += strlen(ne->n_name) + 1;
-	need += joinlength(ne->n_aliases) + 1;
-	need += strlen(nAddrType) + 1;
-	need += strlen(nNet) + 1;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	strcpy(*buffer, ne->n_name);		strcat(*buffer, fieldsep);
-	joinarray(ne->n_aliases, *buffer, COMMA) ; strcat(*buffer, fieldsep);
-	strcat(*buffer, nAddrType);		strcat(*buffer, fieldsep);
-	strcat(*buffer, nNet);			strcat(*buffer, fieldsep);
-
-	return (0);
-}
-
-
-
-/*
- * int irp_unmarshall_nw(struct nwent *ne, char *buffer)
- *
- * notes:
- *
- *	See note up top.
- *
- * return:
- *
- *	0 on success and -1 on failure.
- *
- */
-
-int
-irp_unmarshall_nw(struct nwent *ne, char *buffer) {
-	char *p, *q;
-	int naddrtype;
-	long nnet;
-	int bits;
-	char *name = NULL;
-	char **aliases = NULL;
-	char tmpbuf[24];
-	char *tb;
-	char fieldsep = ':';
-	int myerrno = EINVAL;
-
-	if (ne == NULL || buffer == NULL) {
-		goto error;
-	}
-
-	p = buffer;
-
-	/* n_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-
-	/* n_aliases field. Aliases are separated by commas */
-	q = strchr(p, fieldsep);
-	if (q == NULL) {
-		goto error;
-	}
-	aliases = splitarray(p, q, COMMA);
-	if (aliases == NULL) {
-		myerrno = errno;
-		goto error;
-	}
-	p = q + 1;
-
-
-	/* h_addrtype field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	if (strcmp(tmpbuf, "AF_INET") == 0)
-		naddrtype = AF_INET;
-	else if (strcmp(tmpbuf, "AF_INET6") == 0)
-		naddrtype = AF_INET6;
-	else
-		goto error;
-
-
-	/* n_net field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	nnet = 0;
-	bits = inet_net_pton(naddrtype, tmpbuf, &nnet, sizeof nnet);
-	if (bits < 0) {
-		goto error;
-	}
-
-	/* nnet = ntohl(nnet); */ /* keep in network order for nwent */
-
-	ne->n_name = name;
-	ne->n_aliases = aliases;
-	ne->n_addrtype = naddrtype;
-	ne->n_length = bits;
-	ne->n_addr = malloc(sizeof nnet);
-	if (ne->n_addr == NULL) {
-		goto error;
-	}
-
-	memcpy(ne->n_addr, &nnet, sizeof nnet);
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	free_array(aliases, 0);
-
-	return (-1);
-}
-
-
-/* ------------------------- struct nwent ------------------------- */
-
-
-/* +++++++++++++++++++++++++ struct netent +++++++++++++++++++++++++ */
-
-
-/*
- * int irp_marshall_ne(struct netent *ne, char **buffer, size_t *len)
- *
- * notes:
- *
- *	See at top.
- *
- * return:
- *
- *	0 on success and -1 on failure.
- *
- */
-
-int
-irp_marshall_ne(struct netent *ne, char **buffer, size_t *len) {
-	size_t need = 1;	/* for null byte */
-	char nAddrType[24];
-	char nNet[MAXPADDRSIZE];
-	const char *fieldsep = COLONSTR;
-	long nval;
-
-	if (ne == NULL || len == NULL) {
-		return (-1);
-	}
-
-	strcpy(nAddrType, ADDR_T_STR(ne->n_addrtype));
-
-	nval = htonl(ne->n_net);
-	if (inet_ntop(ne->n_addrtype, &nval, nNet, sizeof nNet) == NULL) {
-		return (-1);
-	}
-
-	need += strlen(ne->n_name) + 1;
-	need += joinlength(ne->n_aliases) + 1;
-	need += strlen(nAddrType) + 1;
-	need += strlen(nNet) + 1;
-
-	if (buffer == NULL) {
-		*len = need;
-		return (0);
-	}
-
-	if (*buffer != NULL && need > *len) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (*buffer == NULL) {
-		need += 2;		/* for CRLF */
-		*buffer = memget(need);
-		if (*buffer == NULL) {
-			errno = ENOMEM;
-			return (-1);
-		}
-
-		*len = need;
-	}
-
-	strcpy(*buffer, ne->n_name);		strcat(*buffer, fieldsep);
-	joinarray(ne->n_aliases, *buffer, COMMA) ; strcat(*buffer, fieldsep);
-	strcat(*buffer, nAddrType);		strcat(*buffer, fieldsep);
-	strcat(*buffer, nNet);			strcat(*buffer, fieldsep);
-
-	return (0);
-}
-
-
-
-/*
- * int irp_unmarshall_ne(struct netent *ne, char *buffer)
- *
- * notes:
- *
- *	See note up top.
- *
- * return:
- *
- *	0 on success and -1 on failure.
- *
- */
-
-int
-irp_unmarshall_ne(struct netent *ne, char *buffer) {
-	char *p, *q;
-	int naddrtype;
-	long nnet;
-	int bits;
-	char *name = NULL;
-	char **aliases = NULL;
-	char tmpbuf[24];
-	char *tb;
-	char fieldsep = ':';
-	int myerrno = EINVAL;
-
-	if (ne == NULL || buffer == NULL) {
-		goto error;
-	}
-
-	p = buffer;
-
-	/* n_name field */
-	name = NULL;
-	if (getfield(&name, 0, &p, fieldsep) == NULL || strlen(name) == 0) {
-		goto error;
-	}
-
-
-	/* n_aliases field. Aliases are separated by commas */
-	q = strchr(p, fieldsep);
-	if (q == NULL) {
-		goto error;
-	}
-	aliases = splitarray(p, q, COMMA);
-	if (aliases == NULL) {
-		myerrno = errno;
-		goto error;
-	}
-	p = q + 1;
-
-
-	/* h_addrtype field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	if (strcmp(tmpbuf, "AF_INET") == 0)
-		naddrtype = AF_INET;
-	else if (strcmp(tmpbuf, "AF_INET6") == 0)
-		naddrtype = AF_INET6;
-	else
-		goto error;
-
-
-	/* n_net field */
-	tb = tmpbuf;
-	if (getfield(&tb, sizeof tmpbuf, &p, fieldsep) == NULL ||
-	    strlen(tb) == 0) {
-		goto error;
-	}
-	bits = inet_net_pton(naddrtype, tmpbuf, &nnet, sizeof nnet);
-	if (bits < 0) {
-		goto error;
-	}
-	nnet = ntohl(nnet);
-
-	ne->n_name = name;
-	ne->n_aliases = aliases;
-	ne->n_addrtype = naddrtype;
-	ne->n_net = nnet;
-
-	return (0);
-
- error:
-	errno = myerrno;
-
-	if (name != NULL) free(name);
-	free_array(aliases, 0);
-
-	return (-1);
-}
-
-
-/* ------------------------- struct netent ------------------------- */
-
-
-/* =========================================================================== */
-
-
-/*
- * static char ** splitarray(const char *buffer, const char *buffend, char delim)
- *
- * notes:
- *
- *	Split a delim separated astring. Not allowed
- *	to have two delims next to each other. BUFFER points to begining of
- *	string, BUFFEND points to one past the end of the string
- *	(i.e. points at where the null byte would be if null
- *	terminated).
- *
- * return:
- *
- *	Returns a malloced array of pointers, each pointer pointing to a
- *	malloced string. If BUFEER is an empty string, then return values is
- *	array of 1 pointer that is NULL. Returns NULL on failure.
- *
- */
-
-static char **
-splitarray(const char *buffer, const char *buffend, char delim) {
-	const char *p, *q;
-	int count = 0;
-	char **arr = NULL;
-	char **aptr;
-
-	if (buffend < buffer)
-		return (NULL);
-	else if (buffend > buffer && *buffer == delim)
-		return (NULL);
-	else if (buffend > buffer && *(buffend - 1) == delim)
-		return (NULL);
-
-	/* count the number of field and make sure none are empty */
-	if (buffend > buffer + 1) {
-		for (count = 1, q = buffer ; q != buffend ; q++) {
-			if (*q == delim) {
-				if (q > buffer && (*(q - 1) == delim)) {
-					errno = EINVAL;
-					return (NULL);
-				}
-				count++;
-			}
-		}
-	}
-
-	if (count > 0) {
-		count++ ;		/* for NULL at end */
-		aptr = arr = malloc(count * sizeof (char *));
-		if (aptr == NULL) {
-			 errno = ENOMEM;
-			 return (NULL);
-		 }
-
-		memset(arr, 0x0, count * sizeof (char *));
-		for (p = buffer ; p < buffend ; p++) {
-			for (q = p ; *q != delim && q != buffend ; q++)
-				/* nothing */;
-			*aptr = strndup(p, q - p);
-
-			p = q;
-			aptr++;
-		}
-		*aptr = NULL;
-	} else {
-		arr = malloc(sizeof (char *));
-		if (arr == NULL) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-
-		*arr = NULL;
-	}
-
-	return (arr);
-}
-
-
-
-
-/*
- * static size_t joinlength(char * const *argv)
- *
- * return:
- *
- *	the number of bytes in all the arrays pointed at
- *	by argv, including their null bytes(which will usually be turned
- *	into commas).
- *
- *
- */
-
-static size_t
-joinlength(char * const *argv) {
-	int len = 0;
-
-	while (argv && *argv) {
-		len += (strlen(*argv) + 1);
-		argv++;
-	}
-
-	return (len);
-}
-
-
-
-/*
- * int joinarray(char * const *argv, char *buffer, char delim)
- *
- * notes:
- *
- *	Copy all the ARGV strings into the end of BUFFER
- *	separating them with DELIM.  BUFFER is assumed to have
- *	enough space to hold everything and to be already null-terminated.
- *
- * return:
- *
- *	0 unless argv or buffer is NULL.
- *
- *
- */
-
-static int
-joinarray(char * const *argv, char *buffer, char delim) {
-	char * const *p;
-	char sep[2];
-
-	if (argv == NULL || buffer == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	sep[0] = delim;
-	sep[1] = 0x0;
-
-	for (p = argv ; *p != NULL ; p++) {
-		strcat(buffer, *p);
-		if (*(p + 1) != NULL) {
-			strcat(buffer, sep);
-		}
-	}
-
-	return (0);
-}
-
-
-/*
- * static char * getfield(char **res, size_t reslen, char **ptr, char delim)
- *
- * notes:
- *
- *	Stores in *RES, which is a buffer of length RESLEN, a
- *	copy of the bytes from *PTR up to and including the first
- *	instance of DELIM. If *RES is NULL, then it will be
- *	assigned a malloced buffer to hold the copy. *PTR is
- *	modified to point at the found delimiter.
- *
- * return:
- *
- *	If there was no delimiter, then NULL is returned,
- *	otherewise *RES is returned.
- *
- */
-
-static char *
-getfield(char **res, size_t reslen, char **ptr, char delim) {
-	char *q;
-
-	if (res == NULL || ptr == NULL || *ptr == NULL) {
-		errno = EINVAL;
-		return (NULL);
-	}
-
-	q = strchr(*ptr, delim);
-
-	if (q == NULL) {
-		errno = EINVAL;
-		return (NULL);
-	} else {
-		if (*res == NULL) {
-			*res = strndup(*ptr, q - *ptr);
-		} else {
-			if (q - *ptr + 1 > reslen) { /* to big for res */
-				errno = EINVAL;
-				return (NULL);
-			} else {
-				strncpy(*res, *ptr, q - *ptr);
-				(*res)[q - *ptr] = 0x0;
-			}
-		}
-		*ptr = q + 1;
-	}
-
-	return (*res);
-}
-
-
-
-
-
-/*
- * static char * strndup(const char *str, size_t len)
- *
- * notes:
- *
- *	like strdup, except do len bytes instead of the whole string. Always
- *	null-terminates.
- *
- * return:
- *
- *	The newly malloced string.
- *
- */
-
-static char *
-strndup(const char *str, size_t len) {
-	char *p = malloc(len + 1);
-
-	if (p == NULL)
-		return (NULL);
-	strncpy(p, str, len);
-	p[len] = 0x0;
-	return (p);
-}
-
-#if WANT_MAIN
-
-/*
- * static int strcmp_nws(const char *a, const char *b)
- *
- * notes:
- *
- *	do a strcmp, except uneven lengths of whitespace compare the same
- *
- * return:
- *
- */
-
-static int
-strcmp_nws(const char *a, const char *b) {
-	while (*a && *b) {
-		if (isspace(*a) && isspace(*b)) {
-			do {
-				a++;
-			} while (isspace(*a));
-			do {
-				b++;
-			} while (isspace(*b));
-		}
-		if (*a < *b)
-			return (-1);
-		else if (*a > *b)
-			return (1);
-
-		a++;
-		b++;;
-	}
-
-	if (*a == *b)
-		return (0);
-	else if (*a > *b)
-		return (1);
-	else
-		return (-1);
-}
-
-#endif
-
-
-
-
-
-/*
- * static void free_array(char **argv, size_t entries)
- *
- * notes:
- *
- *	Free argv and each of the pointers inside it. The end of
- *	the array is when a NULL pointer is found inside. If
- *	entries is > 0, then NULL pointers inside the array do
- *	not indicate the end of the array.
- *
- */
-
-static void
-free_array(char **argv, size_t entries) {
-	char **p = argv;
-	int useEntries = (entries > 0);
-
-	if (argv == NULL)
-		return;
-
-	while ((useEntries && entries > 0) || *p) {
-		if (*p)
-			free(*p);
-		p++;
-		if (useEntries)
-			entries--;
-	}
-	free(argv);
-}
-
-
-
-
-
-/* ************************************************** */
-
-#if WANT_MAIN
-
-/* takes an option to indicate what sort of marshalling(read the code) and
-   an argument. If the argument looks like a marshalled buffer(has a ':'
-   embedded) then it's unmarshalled and the remarshalled and the new string
-   is compared to the old one.
-*/
-
-int
-main(int argc, char **argv) {
-	char buffer[1024];
-	char *b = &buffer[0];
-	size_t len = sizeof buffer;
-	char option;
-
-	if (argc < 2 || argv[1][0] != '-')
-		exit(1);
-
-	option = argv[1][1];
-	argv++;
-	argc--;
-
-
-#if 0
-	{
-		char buff[10];
-		char *p = argv[1], *q = &buff[0];
-
-		while (getfield(&q, sizeof buff, &p, ':') != NULL) {
-			printf("field: \"%s\"\n", q);
-			p++;
-		}
-		printf("p is now \"%s\"\n", p);
-	}
-#endif
-
-#if 0
-	{
-		char **x = splitarray(argv[1], argv[1] + strlen(argv[1]),
-				      argv[2][0]);
-		char **p;
-
-		if (x == NULL)
-			printf("split failed\n");
-
-		for (p = x ; p != NULL && *p != NULL ; p++) {
-			printf("\"%s\"\n", *p);
-		}
-	}
-#endif
-
-#if 1
-	switch(option) {
-	case 'n': {
-		struct nwent ne;
-		int i;
-
-		if (strchr(argv[1], ':') != NULL) {
-			if (irp_unmarshall_nw(&ne, argv[1]) != 0) {
-				printf("Unmarhsalling failed\n");
-				exit(1);
-			}
-
-			printf("Name: \"%s\"\n", ne.n_name);
-			printf("Aliases:");
-			for (i = 0 ; ne.n_aliases[i] != NULL ; i++)
-				printf("\n\t\"%s\"", ne.n_aliases[i]);
-			printf("\nAddrtype: %s\n", ADDR_T_STR(ne.n_addrtype));
-			inet_net_ntop(ne.n_addrtype, ne.n_addr, ne.n_length,
-				      buffer, sizeof buffer);
-			printf("Net: \"%s\"\n", buffer);
-			*((long*)ne.n_addr) = htonl(*((long*)ne.n_addr));
-			inet_net_ntop(ne.n_addrtype, ne.n_addr, ne.n_length,
-				      buffer, sizeof buffer);
-			printf("Corrected Net: \"%s\"\n", buffer);
-		} else {
-			struct netent *np1 = getnetbyname(argv[1]);
-			ne.n_name = np1->n_name;
-			ne.n_aliases = np1->n_aliases;
-			ne.n_addrtype = np1->n_addrtype;
-			ne.n_addr = &np1->n_net;
-			ne.n_length = (IN_CLASSA(np1->n_net) ?
-				       8 :
-				       (IN_CLASSB(np1->n_net) ?
-					16 :
-					(IN_CLASSC(np1->n_net) ?
-					 24 : -1)));
-			np1->n_net = htonl(np1->n_net);
-			if (irp_marshall_nw(&ne, &b, &len) != 0) {
-				printf("Marshalling failed\n");
-			}
-			printf("%s\n", b);
-		}
-		break;
-	}
-
-
-	case 'r': {
-		char **hosts, **users, **domains;
-		size_t entries;
-		int i;
-		char *buff;
-		size_t size;
-		char *ngname;
-
-		if (strchr(argv[1], '(') != NULL) {
-			if (irp_unmarshall_ng(&ngname, &entries,
-					      &hosts, &users, &domains,
-					      argv[1]) != 0) {
-				printf("unmarshall failed\n");
-				exit(1);
-			}
-
-#define STRVAL(x) (x == NULL ? "*" : x)
-
-			printf("%s {\n", ngname);
-			for (i = 0 ; i < entries ; i++)
-				printf("\t\"%s\" : \"%s\" : \"%s\"\n",
-				       STRVAL(hosts[i]),
-				       STRVAL(users[i]),
-				       STRVAL(domains[i]));
-			printf("}\n\n\n");
-
-
-			irp_marshall_ng_start(ngname, NULL, &size);
-			for (i = 0 ; i < entries ; i++)
-				irp_marshall_ng_next(hosts[i], users[i],
-						     domains[i], NULL, &size);
-			irp_marshall_ng_end(NULL, &size);
-
-			buff = malloc(size);
-
-			irp_marshall_ng_start(ngname, buff, &size);
-			for (i = 0 ; i < entries ; i++) {
-				if (irp_marshall_ng_next(hosts[i], users[i],
-							 domains[i], buff,
-							 &size) != 0)
-					printf("next marshalling failed.\n");
-			}
-			irp_marshall_ng_end(buff, &size);
-
-			if (strcmp_nws(argv[1], buff) != 0) {
-				printf("compare failed:\n\t%s\n\t%s\n",
-				       buffer, argv[1]);
-			} else {
-				printf("compare ok\n");
-			}
-		} else {
-			char *h, *u, *d, *buff;
-			size_t size;
-
-			/* run through two times. First to figure out how
-			   much of a buffer we need. Second to do the
-			   actual marshalling */
-
-			setnetgrent(argv[1]);
-			irp_marshall_ng_start(argv[1], NULL, &size);
-			while (getnetgrent(&h, &u, &d) == 1)
-				irp_marshall_ng_next(h, u, d, NULL, &size);
-			irp_marshall_ng_end(NULL, &size);
-			endnetgrent(argv[1]);
-
-			buff = malloc(size);
-
-			setnetgrent(argv[1]);
-			if (irp_marshall_ng_start(argv[1], buff, &size) != 0)
-				printf("Marshalling start failed\n");
-
-			while (getnetgrent(&h, &u, &d) == 1) {
-				if (irp_marshall_ng_next(h, u, d, buff, &size)
-				    != 0) {
-					printf("Marshalling failed\n");
-				}
-			}
-
-			irp_marshall_ng_end(buff, &size);
-			endnetgrent();
-
-			printf("success: %s\n", buff);
-		}
-		break;
-	}
-
-
-
-	case 'h': {
-		struct hostent he, *hp;
-		int i;
-
-
-		if (strchr(argv[1], '@') != NULL) {
-			if (irp_unmarshall_ho(&he, argv[1]) != 0) {
-				printf("unmarshall failed\n");
-				exit(1);
-			}
-
-			printf("Host: \"%s\"\nAliases:", he.h_name);
-			for (i = 0 ; he.h_aliases[i] != NULL ; i++)
-				printf("\n\t\t\"%s\"", he.h_aliases[i]);
-			printf("\nAddr Type: \"%s\"\n",
-			       ADDR_T_STR(he.h_addrtype));
-			printf("Length: %d\nAddresses:", he.h_length);
-			for (i = 0 ; he.h_addr_list[i] != 0 ; i++) {
-				inet_ntop(he.h_addrtype, he.h_addr_list[i],
-					  buffer, sizeof buffer);
-				printf("\n\t\"%s\"\n", buffer);
-			}
-			printf("\n\n");
-
-			irp_marshall_ho(&he, &b, &len);
-			if (strcmp(argv[1], buffer) != 0) {
-				printf("compare failed:\n\t\"%s\"\n\t\"%s\"\n",
-				       buffer, argv[1]);
-			} else {
-				printf("compare ok\n");
-			}
-		} else {
-			if ((hp = gethostbyname(argv[1])) == NULL) {
-				perror("gethostbyname");
-				printf("\"%s\"\n", argv[1]);
-				exit(1);
-			}
-
-			if (irp_marshall_ho(hp, &b, &len) != 0) {
-				printf("irp_marshall_ho failed\n");
-				exit(1);
-			}
-
-			printf("success: \"%s\"\n", buffer);
-		}
-		break;
-	}
-
-
-	case 's': {
-		struct servent *sv;
-		struct servent sv1;
-
-		if (strchr(argv[1], ':') != NULL) {
-			sv = &sv1;
-			memset(sv, 0xef, sizeof (struct servent));
-			if (irp_unmarshall_sv(sv, argv[1]) != 0) {
-				printf("unmarshall failed\n");
-
-			}
-
-			irp_marshall_sv(sv, &b, &len);
-			if (strcmp(argv[1], buffer) != 0) {
-				printf("compare failed:\n\t\"%s\"\n\t\"%s\"\n",
-				       buffer, argv[1]);
-			} else {
-				printf("compare ok\n");
-			}
-		} else {
-			if ((sv = getservbyname(argv[1], argv[2])) == NULL) {
-				perror("getservent");
-				exit(1);
-			}
-
-			if (irp_marshall_sv(sv, &b, &len) != 0) {
-				printf("irp_marshall_sv failed\n");
-				exit(1);
-			}
-
-			printf("success: \"%s\"\n", buffer);
-		}
-		break;
-	}
-
-	case 'g': {
-		struct group *gr;
-		struct group gr1;
-
-		if (strchr(argv[1], ':') != NULL) {
-			gr = &gr1;
-			memset(gr, 0xef, sizeof (struct group));
-			if (irp_unmarshall_gr(gr, argv[1]) != 0) {
-				printf("unmarshall failed\n");
-
-			}
-
-			irp_marshall_gr(gr, &b, &len);
-			if (strcmp(argv[1], buffer) != 0) {
-				printf("compare failed:\n\t\"%s\"\n\t\"%s\"\n",
-				       buffer, argv[1]);
-			} else {
-				printf("compare ok\n");
-			}
-		} else {
-			if ((gr = getgrnam(argv[1])) == NULL) {
-				perror("getgrnam");
-				exit(1);
-			}
-
-			if (irp_marshall_gr(gr, &b, &len) != 0) {
-				printf("irp_marshall_gr failed\n");
-				exit(1);
-			}
-
-			printf("success: \"%s\"\n", buffer);
-		}
-		break;
-	}
-
-
-	case 'p': {
-		struct passwd *pw;
-		struct passwd pw1;
-
-		if (strchr(argv[1], ':') != NULL) {
-			pw = &pw1;
-			memset(pw, 0xef, sizeof (*pw));
-			if (irp_unmarshall_pw(pw, argv[1]) != 0) {
-				printf("unmarshall failed\n");
-				exit(1);
-			}
-
-			printf("User: \"%s\"\nPasswd: \"%s\"\nUid: %ld\nGid: %ld\n",
-			       pw->pw_name, pw->pw_passwd, (long)pw->pw_uid,
-			       (long)pw->pw_gid);
-			printf("Class: \"%s\"\nChange: %ld\nGecos: \"%s\"\n",
-			       pw->pw_class, (long)pw->pw_change, pw->pw_gecos);
-			printf("Shell: \"%s\"\nDirectory: \"%s\"\n",
-			       pw->pw_shell, pw->pw_dir);
-
-			pw = getpwnam(pw->pw_name);
-			irp_marshall_pw(pw, &b, &len);
-			if (strcmp(argv[1], buffer) != 0) {
-				printf("compare failed:\n\t\"%s\"\n\t\"%s\"\n",
-				       buffer, argv[1]);
-			} else {
-				printf("compare ok\n");
-			}
-		} else {
-			if ((pw = getpwnam(argv[1])) == NULL) {
-				perror("getpwnam");
-				exit(1);
-			}
-
-			if (irp_marshall_pw(pw, &b, &len) != 0) {
-				printf("irp_marshall_pw failed\n");
-				exit(1);
-			}
-
-			printf("success: \"%s\"\n", buffer);
-		}
-		break;
-	}
-
-	default:
-		printf("Wrong option: %c\n", option);
-		break;
-	}
-
-#endif
-
-	return (0);
-}
-
-#endif
diff --git a/contrib/bind/lib/irs/irs_data.c b/contrib/bind/lib/irs/irs_data.c
deleted file mode 100644
index f31fe69a1dbd0..0000000000000
--- a/contrib/bind/lib/irs/irs_data.c
+++ /dev/null
@@ -1,194 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: irs_data.c,v 1.14 1999/10/13 16:39:31 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#ifndef __BIND_NOSTATIC
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <resolv.h>
-#include <stdio.h>
-#include <isc/memcluster.h>
-
-#ifdef DO_PTHREADS
-#include <pthread.h>
-#endif
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_data.h"
-#undef _res
-#undef h_errno
-
-extern struct __res_state _res;
-extern int h_errno;
-
-#ifdef	DO_PTHREADS
-static pthread_key_t	key;
-static int		once = 0;
-#else
-static struct net_data	*net_data;
-#endif
-
-void
-irs_destroy() {
-#ifndef DO_PTHREADS
-	if (net_data != NULL)
-		net_data_destroy(net_data);
-	net_data = NULL;
-#endif
-}
-
-void
-net_data_destroy(void *p) {
-	struct net_data *net_data = p;
-
-	
-	res_nclose(net_data->res);
-	if (net_data->gr != NULL) {
-		(*net_data->gr->close)(net_data->gr);
-		net_data->gr = NULL;
-	}
-	if (net_data->pw != NULL) {
-		(*net_data->pw->close)(net_data->pw);
-		net_data->pw = NULL;
-	}
-	if (net_data->sv != NULL) {
-		(*net_data->sv->close)(net_data->sv);
-		net_data->sv = NULL;
-	}
-	if (net_data->pr != NULL) {
-		(*net_data->pr->close)(net_data->pr);
-		net_data->pr = NULL;
-	}
-	if (net_data->ho != NULL) {
-		(*net_data->ho->close)(net_data->ho);
-		net_data->ho = NULL;
-	}
-	if (net_data->nw != NULL) {
-		(*net_data->nw->close)(net_data->nw);
-		net_data->nw = NULL;
-	}
-	if (net_data->ng != NULL) {
-		(*net_data->ng->close)(net_data->ng);
-		net_data->ng = NULL;
-	}
-
-	(*net_data->irs->close)(net_data->irs);
-	memput(net_data, sizeof *net_data);
-}
-
-/* applications that need a specific config file other than
- * _PATH_IRS_CONF should call net_data_init directly rather than letting
- *   the various wrapper functions make the first call. - brister
- */
-
-struct net_data *
-net_data_init(const char *conf_file) {
-#ifdef	DO_PTHREADS
-	static pthread_mutex_t keylock = PTHREAD_MUTEX_INITIALIZER;
-	struct net_data *net_data;
-
-	if (!once) {
-		pthread_mutex_lock(&keylock);
-		if (!once++)
-			pthread_key_create(&key, net_data_destroy);
-		pthread_mutex_unlock(&keylock);
-	}
-	net_data = pthread_getspecific(key);
-#endif
-
-	if (net_data == NULL) {
-		net_data = net_data_create(conf_file);
-		if (net_data == NULL)
-			return (NULL);
-#ifdef	DO_PTHREADS
-		pthread_setspecific(key, net_data);
-#endif
-	}
-
-	return (net_data);
-}
-
-struct net_data *
-net_data_create(const char *conf_file) {
-	struct net_data *net_data;
-
-	net_data = memget(sizeof (struct net_data));
-	if (net_data == NULL)
-		return (NULL);
-	memset(net_data, 0, sizeof (struct net_data));
-
-	if ((net_data->irs = irs_gen_acc("", conf_file)) == NULL)
-		return (NULL);
-#ifndef DO_PTHREADS
-	(*net_data->irs->res_set)(net_data->irs, &_res, NULL);
-#endif
-
-	net_data->res = (*net_data->irs->res_get)(net_data->irs);
-	if (net_data->res == NULL)
-		return (NULL);
-
-	if (res_ninit(net_data->res) == -1)
-		return (NULL);
-
-	return (net_data);
-}
-
-
-
-void
-net_data_minimize(struct net_data *net_data) {
-	res_nclose(net_data->res);
-}
-
-struct __res_state *
-__res_state(void) {
-	/* NULL param here means use the default config file. */
-	struct net_data *net_data = net_data_init(NULL);
-	if (net_data && net_data->res)
-		return (net_data->res);
-
-	return (&_res);
-}
-
-int *
-__h_errno(void) {
-	/* NULL param here means use the default config file. */
-	struct net_data *net_data = net_data_init(NULL);
-	if (net_data && net_data->res)
-		return (&net_data->res->res_h_errno);
-	return (&h_errno);
-}
-
-void
-__h_errno_set(struct __res_state *res, int err) {
-
-	h_errno = res->res_h_errno = err;
-}
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/irs_data.h b/contrib/bind/lib/irs/irs_data.h
deleted file mode 100644
index c82d767bf9af5..0000000000000
--- a/contrib/bind/lib/irs/irs_data.h
+++ /dev/null
@@ -1,62 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: irs_data.h,v 1.12 1999/01/18 07:46:55 vixie Exp $
- */
-
-#ifndef __BIND_NOSTATIC
-
-#define	net_data_init		__net_data_init
-
-struct net_data {
-	struct irs_acc *	irs;
-
-	struct irs_gr *		gr;
-	struct irs_pw *		pw;
-	struct irs_sv *		sv;
-	struct irs_pr *		pr;
-	struct irs_ho *		ho;
-	struct irs_nw *		nw;
-	struct irs_ng *		ng;
-
-	struct group *		gr_last;
-	struct passwd *		pw_last;
-	struct servent *	sv_last;
-	struct protoent *	pr_last;
-	struct netent *		nw_last; /* should have been ne_last */
-	struct nwent *		nww_last;
-	struct hostent *	ho_last;
-
-	unsigned int		gr_stayopen :1;
-	unsigned int		pw_stayopen :1;
-	unsigned int		sv_stayopen :1;
-	unsigned int		pr_stayopen :1;
-	unsigned int		ho_stayopen :1;
-	unsigned int		nw_stayopen :1;
-
-	void *			nw_data;
-	void *			ho_data;
-
-	struct __res_state *	res;	/* for gethostent.c */
-
-};
-
-extern struct net_data *	net_data_init(const char *conf_file);
-extern void			net_data_minimize(struct net_data *);
-
-#endif /*__BIND_NOSTATIC*/
diff --git a/contrib/bind/lib/irs/irs_p.h b/contrib/bind/lib/irs/irs_p.h
deleted file mode 100644
index d14f7d17f7a89..0000000000000
--- a/contrib/bind/lib/irs/irs_p.h
+++ /dev/null
@@ -1,49 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: irs_p.h,v 1.8 1999/01/08 19:24:42 vixie Exp $
- */
-
-#ifndef _IRS_P_H_INCLUDED
-#define _IRS_P_H_INCLUDED
-
-#include <stdio.h>
-
-#include "pathnames.h"
-
-#define IRS_SV_MAXALIASES	35
-
-struct lcl_sv {
-	FILE *		fp;
-	char		line[BUFSIZ+1];
-	struct servent	serv;
-	char *		serv_aliases[IRS_SV_MAXALIASES];
-};
-
-#define	irs_nul_ng	__irs_nul_ng
-#define	map_v4v6_address __map_v4v6_address
-#define	make_group_list	__make_group_list
-#define	irs_lclsv_fnxt	__irs_lclsv_fnxt
-
-extern void		map_v4v6_address(const char *src, char *dst);
-extern int		make_group_list(struct irs_gr *, const char *,
-					gid_t, gid_t *, int *);
-extern struct irs_ng *	irs_nul_ng(struct irs_acc *);
-extern struct servent * irs_lclsv_fnxt(struct lcl_sv *);
-
-#endif
diff --git a/contrib/bind/lib/irs/lcl.c b/contrib/bind/lib/irs/lcl.c
deleted file mode 100644
index 16e167f23169d..0000000000000
--- a/contrib/bind/lib/irs/lcl.c
+++ /dev/null
@@ -1,138 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: lcl.c,v 1.16 2000/02/28 07:52:16 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <stdlib.h>
-#include <errno.h>
-#include <string.h>
-
-#include <sys/types.h>
-#include <netinet/in.h> 
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "lcl_p.h"
-
-/* Forward. */
-
-static void		lcl_close(struct irs_acc *);
-static struct __res_state *	lcl_res_get(struct irs_acc *);
-static void		lcl_res_set(struct irs_acc *, struct __res_state *,
-				void (*)(void *));
-
-/* Public */
-
-struct irs_acc *
-irs_lcl_acc(const char *options) {
-	struct irs_acc *acc;
-	struct lcl_p *lcl;
-
-	if (!(acc = memget(sizeof *acc))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(acc, 0x5e, sizeof *acc);
-	if (!(lcl = memget(sizeof *lcl))) {
-		errno = ENOMEM;
-		free(acc);
-		return (NULL);
-	}
-	memset(lcl, 0x5e, sizeof *lcl);
-	lcl->res = NULL;
-	lcl->free_res = NULL;
-	acc->private = lcl;
-#ifdef WANT_IRS_GR
-	acc->gr_map = irs_lcl_gr;
-#else
-	acc->gr_map = NULL;
-#endif
-#ifdef WANT_IRS_PW
-	acc->pw_map = irs_lcl_pw;
-#else
-	acc->pw_map = NULL;
-#endif
-	acc->sv_map = irs_lcl_sv;
-	acc->pr_map = irs_lcl_pr;
-	acc->ho_map = irs_lcl_ho;
-	acc->nw_map = irs_lcl_nw;
-	acc->ng_map = irs_lcl_ng;
-	acc->res_get = lcl_res_get;
-	acc->res_set = lcl_res_set;
-	acc->close = lcl_close;
-	return (acc);
-}
-
-/* Methods */
-static struct __res_state *
-lcl_res_get(struct irs_acc *this) {
-	struct lcl_p *lcl = (struct lcl_p *)this->private;
-
-	if (lcl->res == NULL) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (res == NULL)
-			return (NULL);
-		memset(res, 0, sizeof *res);
-		lcl_res_set(this, res, free);
-	}
-
-	if ((lcl->res->options & RES_INIT) == 0 &&
-	    res_ninit(lcl->res) < 0)
-		return (NULL);
-
-	return (lcl->res);
-}
-
-static void
-lcl_res_set(struct irs_acc *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct lcl_p *lcl = (struct lcl_p *)this->private;
-
-	if (lcl->res && lcl->free_res) {
-		res_nclose(lcl->res);
-		(*lcl->free_res)(lcl->res);
-	}
-
-	lcl->res = res;
-	lcl->free_res = free_res;
-}
-
-static void
-lcl_close(struct irs_acc *this) {
-	struct lcl_p *lcl = (struct lcl_p *)this->private;
-
-	if (lcl) {
-		if (lcl->free_res)
-			(*lcl->free_res)(lcl->res);
-		memput(lcl, sizeof *lcl);
-	}
-	memput(this, sizeof *this);
-}
diff --git a/contrib/bind/lib/irs/lcl_gr.c b/contrib/bind/lib/irs/lcl_gr.c
deleted file mode 100644
index acb85ee4fac66..0000000000000
--- a/contrib/bind/lib/irs/lcl_gr.c
+++ /dev/null
@@ -1,352 +0,0 @@
-/*
- * Copyright (c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: lcl_gr.c,v 1.25 1999/10/13 17:11:19 vixie Exp $";
-/* from getgrent.c 8.2 (Berkeley) 3/21/94"; */
-/* from BSDI Id: getgrent.c,v 2.8 1996/05/28 18:15:14 bostic Exp $	*/
-#endif /* LIBC_SCCS and not lint */
-
-/* extern */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_PW
-static int __bind_irs_gr_unneeded;
-#else
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <grp.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "irs_p.h"
-#include "lcl_p.h"
-#include "irp_p.h"
-
-#include "port_after.h"
-
-
-/* Types. */
-
-struct pvt {
-	FILE *		fp;
-	/*
-	 * Need space to store the entries read from the group file.
-	 * The members list also needs space per member, and the
-	 * strings making up the user names must be allocated
-	 * somewhere.  Rather than doing lots of small allocations,
-	 * we keep one buffer and resize it as needed.
-	 */
-	struct group	group;
-	size_t		nmemb;		/* Malloc'd max index of gr_mem[]. */
-	char *		membuf;
-	size_t		membufsize;
-};
-
-/* Forward. */
-
-static void		gr_close(struct irs_gr *);
-static struct group *	gr_next(struct irs_gr *);
-static struct group *	gr_byname(struct irs_gr *, const char *);
-static struct group *	gr_bygid(struct irs_gr *, gid_t);
-static void		gr_rewind(struct irs_gr *);
-static void		gr_minimize(struct irs_gr *);
-
-static int		grstart(struct pvt *);
-static char *		grnext(struct pvt *);
-static struct group *	grscan(struct irs_gr *, int, gid_t, const char *);
-
-/* Portability. */
-
-#ifndef SEEK_SET
-# define SEEK_SET 0
-#endif
-
-/* Public. */
-
-struct irs_gr *
-irs_lcl_gr(struct irs_acc *this) {
-	struct irs_gr *gr;
-	struct pvt *pvt;
-
-	if (!(gr = memget(sizeof *gr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(gr, 0x5e, sizeof *gr);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(gr, sizeof *gr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	gr->private = pvt;
-	gr->close = gr_close;
-	gr->next = gr_next;
-	gr->byname = gr_byname;
-	gr->bygid = gr_bygid;
-	gr->rewind = gr_rewind;
-	gr->list = make_group_list;
-	gr->minimize = gr_minimize;
-	gr->res_get = NULL;
-	gr->res_set = NULL;
-	return (gr);
-}
-
-/* Methods. */
-
-static void
-gr_close(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp)
-		(void)fclose(pvt->fp);
-	if (pvt->group.gr_mem)
-		free(pvt->group.gr_mem);
-	if (pvt->membuf)
-		free(pvt->membuf);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct group *
-gr_next(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->fp && !grstart(pvt))
-		return (NULL);
-	return (grscan(this, 0, 0, NULL));
-}
-
-static struct group *
-gr_byname(struct irs_gr *this, const char *name) {
-	if (!grstart((struct pvt *)this->private))
-		return (NULL);
-	return (grscan(this, 1, 0, name));
-}
-
-static struct group *
-gr_bygid(struct irs_gr *this, gid_t gid) {
-	if (!grstart((struct pvt *)this->private))
-		return (NULL);
-	return (grscan(this, 1, gid, NULL));
-}
-
-static void
-gr_rewind(struct irs_gr *this) {
-	(void) grstart((struct pvt *)this->private);
-}
-
-static void
-gr_minimize(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp != NULL) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
-
-/* Private. */
-
-static int
-grstart(struct pvt *pvt) {
-	if (pvt->fp) {
-		if (fseek(pvt->fp, 0L, SEEK_SET) == 0)
-			return (1);
-		(void)fclose(pvt->fp);
-	}
-	if (!(pvt->fp = fopen(_PATH_GROUP, "r")))
-		return (0);
-	if (fcntl(fileno(pvt->fp), F_SETFD, 1) < 0) {
-		fclose(pvt->fp);
-		return (0);
-	}
-	return (1);
-}
-
-#define	INITIAL_NMEMB	30			/* about 120 bytes */
-#define	INITIAL_BUFSIZ	(INITIAL_NMEMB * 8)	/* about 240 bytes */
-
-static char *
-grnext(struct pvt *pvt) {
-	char *w, *e;
-	int ch;
-
-	/* Make sure we have a buffer. */
-	if (pvt->membuf == NULL) {
-		pvt->membuf = malloc(INITIAL_BUFSIZ);
-		if (pvt->membuf == NULL) {
- enomem:
-			errno = ENOMEM;
-			return (NULL);
-		}
-		pvt->membufsize = INITIAL_BUFSIZ;
-	}
-
-	/* Read until EOF or EOL. */
-	w = pvt->membuf;
-	e = pvt->membuf + pvt->membufsize;
-	while ((ch = fgetc(pvt->fp)) != EOF && ch != '\n') {
-		/* Make sure we have room for this character and a \0. */
-		if (w + 1 == e) {
-			size_t o = w - pvt->membuf;
-			size_t n = pvt->membufsize * 2;
-			char *t = realloc(pvt->membuf, n);
-
-			if (t == NULL)
-				goto enomem;
-			pvt->membuf = t;
-			pvt->membufsize = n;
-			w = pvt->membuf + o;
-			e = pvt->membuf + pvt->membufsize;
-		}
-		/* Store it. */
-		*w++ = (char)ch;
-	}
-
-	/* Hitting EOF on the first character really does mean EOF. */
-	if (w == pvt->membuf && ch == EOF) {
-		errno = ENOENT;
-		return (NULL);
-	}
-
-	/* Last line of /etc/group need not end with \n; we don't care. */
-	*w = '\0';
-	return (pvt->membuf);
-}
-
-static struct group *
-grscan(struct irs_gr *this, int search, gid_t gid, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	size_t n;
-	char *bp, **m, *p;
-
-	/* Read lines until we find one that matches our search criteria. */
-	for (;;) {
-		if ((bp = grnext(pvt)) == NULL)
-			return (NULL);
-
-		/* Optimize the usual case of searching for a name. */
-		pvt->group.gr_name = strsep(&bp, ":");
-		if (search && name != NULL &&
-		    strcmp(pvt->group.gr_name, name) != 0)
-			continue;
-		if (bp == NULL || *bp == '\0')
-			goto corrupt;
-
-		/* Skip past the password field. */
-		pvt->group.gr_passwd = strsep(&bp, ":");
-		if (bp == NULL || *bp == '\0')
-			goto corrupt;
-
-		/* Checking for a gid. */
-		if ((p = strsep(&bp, ":")) == NULL)
-			continue;
-		/*
-		 * Unlike the tests above, the test below is supposed to be
-		 * testing 'p' and not 'bp', in case you think it's a typo.
-		 */
-		if (p == NULL || *p == '\0') {
- corrupt:
-			/* warning: corrupted %s file!", _PATH_GROUP */
-			continue;
-		}
-		pvt->group.gr_gid = atoi(p);
-		if (search && name == NULL && pvt->group.gr_gid != gid)
-			continue;
-
-		/* We want this record. */
-		break;
-	}
-
-	/*
-	 * Count commas to find out how many members there might be.
-	 * Note that commas separate, so if there is one comma there
-	 * can be two members (group:*:id:user1,user2).  Add another
-	 * to account for the NULL terminator.  As above, allocate
-	 * largest of INITIAL_NMEMB, or 2*n.
-	 */
-	n = 1;
-	if (bp != NULL)
-		for (n = 2, p = bp; (p = strpbrk(p, ", ")) != NULL; ++n)
-			p += strspn(p, ", ");
-	if (n > pvt->nmemb || pvt->group.gr_mem == NULL) {
-		if ((n *= 2) < INITIAL_NMEMB)
-			n = INITIAL_NMEMB;
-		if ((m = realloc(pvt->group.gr_mem, n * sizeof *m)) == NULL)
-			return (NULL);
-		pvt->group.gr_mem = m;
-		pvt->nmemb = n;
-	}
-
-	/* Set the name pointers. */
-	for (m = pvt->group.gr_mem; (p = strsep(&bp, ", ")) != NULL;)
-		if (p[0] != '\0')
-			*m++ = p;
-	*m = NULL;
-
-	return (&pvt->group);
-}
-
-#endif /* WANT_IRS_GR */
diff --git a/contrib/bind/lib/irs/lcl_ho.c b/contrib/bind/lib/irs/lcl_ho.c
deleted file mode 100644
index 59392076d745a..0000000000000
--- a/contrib/bind/lib/irs/lcl_ho.c
+++ /dev/null
@@ -1,503 +0,0 @@
-/*
- * Copyright (c) 1985, 1988, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* from gethostnamadr.c	8.1 (Berkeley) 6/4/93 */
-/* BIND Id: gethnamaddr.c,v 8.15 1996/05/22 04:56:30 vixie Exp $ */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: lcl_ho.c,v 1.25 1999/10/13 17:11:19 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "dns_p.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) sprintf x
-#endif
-
-/* Definitions. */
-
-#define	MAXALIASES	35
-#define	MAXADDRS	35
-#define	Max(a,b)	((a) > (b) ? (a) : (b))
-
-#if PACKETSZ > 1024
-#define	MAXPACKET	PACKETSZ
-#else
-#define	MAXPACKET	1024
-#endif
-
-struct pvt {
-	FILE *		fp;
-	struct hostent	host;
-	char *		h_addr_ptrs[MAXADDRS + 1];
-	char *		host_aliases[MAXALIASES];
-	char		hostbuf[8*1024];
-	u_char		host_addr[16];	/* IPv4 or IPv6 */
-	struct __res_state  *res;
-	void		(*free_res)(void *);
-};
-
-typedef union {
-	int32_t al;
-	char ac;
-} align;
-
-static const u_char mapped[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0xff,0xff };
-static const u_char tunnelled[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0,0 };
-
-/* Forward. */
-
-static void		ho_close(struct irs_ho *this);
-static struct hostent *	ho_byname(struct irs_ho *this, const char *name);
-static struct hostent *	ho_byname2(struct irs_ho *this, const char *name,
-				   int af);
-static struct hostent *	ho_byaddr(struct irs_ho *this, const void *addr,
-				  int len, int af);
-static struct hostent *	ho_next(struct irs_ho *this);
-static void		ho_rewind(struct irs_ho *this);
-static void		ho_minimize(struct irs_ho *this);
-static struct __res_state * ho_res_get(struct irs_ho *this);
-static void		ho_res_set(struct irs_ho *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static size_t		ns_namelen(const char *);
-static int		init(struct irs_ho *this);
-
-/* Portability. */
-
-#ifndef SEEK_SET
-# define SEEK_SET 0
-#endif
-
-/* Public. */
-
-struct irs_ho *
-irs_lcl_ho(struct irs_acc *this) {
-	struct irs_ho *ho;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(ho = memget(sizeof *ho))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ho, 0x5e, sizeof *ho);
-	ho->private = pvt;
-	ho->close = ho_close;
-	ho->byname = ho_byname;
-	ho->byname2 = ho_byname2;
-	ho->byaddr = ho_byaddr;
-	ho->next = ho_next;
-	ho->rewind = ho_rewind;
-	ho->minimize = ho_minimize;
-	ho->res_get = ho_res_get;
-	ho->res_set = ho_res_set;
-	return (ho);
-}
-
-/* Methods. */
-
-static void
-ho_close(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	ho_minimize(this);
-	if (pvt->fp)
-		(void) fclose(pvt->fp);
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct hostent *
-ho_byname(struct irs_ho *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *hp;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	if (pvt->res->options & RES_USE_INET6) {
-		hp = ho_byname2(this, name, AF_INET6);
-		if (hp)
-			return (hp);
-	}
-	return (ho_byname2(this, name, AF_INET));
-}
-
-static struct hostent *
-ho_byname2(struct irs_ho *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *hp;
-	char **hap;
-	size_t n;
-	
-	if (init(this) == -1)
-		return (NULL);
-
-	ho_rewind(this);
-	n = ns_namelen(name);
-	while ((hp = ho_next(this)) != NULL) {
-		size_t nn;
-
-		if (hp->h_addrtype != af)
-			continue;
-		nn = ns_namelen(hp->h_name);
-		if (strncasecmp(hp->h_name, name, Max(n, nn)) == 0)
-			goto found;
-		for (hap = hp->h_aliases; *hap; hap++) {
-			nn = ns_namelen(*hap);
-			if (strncasecmp(*hap, name, Max(n, nn)) == 0)
-				goto found;
-		}
-	}
- found:
-	if (!hp) {
-		RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-	RES_SET_H_ERRNO(pvt->res, NETDB_SUCCESS);
-	return (hp);
-}
-
-static struct hostent *
-ho_byaddr(struct irs_ho *this, const void *addr, int len, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	const u_char *uaddr = addr;
-	struct hostent *hp;
-	int size;
-	
-	if (init(this) == -1)
-		return (NULL);
-
-	if (af == AF_INET6 && len == IN6ADDRSZ &&
-	    (!memcmp(uaddr, mapped, sizeof mapped) ||
-	     !memcmp(uaddr, tunnelled, sizeof tunnelled))) {
-		/* Unmap. */
-		addr = (u_char *)addr + sizeof mapped;
-		uaddr += sizeof mapped;
-		af = AF_INET;
-		len = INADDRSZ;
-	}
-	switch (af) {
-	case AF_INET:
-		size = INADDRSZ;
-		break;
-	case AF_INET6:
-		size = IN6ADDRSZ;
-		break;
-	default:
-		errno = EAFNOSUPPORT;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	if (size > len) {
-		errno = EINVAL;
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-
-	/*
-	 * Do the search.
-	 */
-	ho_rewind(this);
-	while ((hp = ho_next(this)) != NULL) {
-		char **hap;
-
-		for (hap = hp->h_addr_list; *hap; hap++) {
-			const u_char *taddr = (const u_char *)*hap;
-			int taf = hp->h_addrtype;
-			int tlen = hp->h_length;
-
-			if (taf == AF_INET6 && tlen == IN6ADDRSZ &&
-			    (!memcmp(taddr, mapped, sizeof mapped) ||
-			     !memcmp(taddr, tunnelled, sizeof tunnelled))) {
-				/* Unmap. */
-				taddr += sizeof mapped;
-				taf = AF_INET;
-				tlen = INADDRSZ;
-			}
-			if (taf == af && tlen == len &&
-			    !memcmp(taddr, uaddr, tlen))
-				goto found;
-		}
-	}
- found:
-	if (!hp) {
-		RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-	RES_SET_H_ERRNO(pvt->res, NETDB_SUCCESS);
-	return (hp);
-}
-
-static struct hostent *
-ho_next(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *cp, **q, *p;
-	char *bufp, *ndbuf, *dbuf = NULL;
-	int c, af, len, bufsiz, offset;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	if (!pvt->fp)
-		ho_rewind(this);
-	if (!pvt->fp) {
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	bufp = pvt->hostbuf;
-	bufsiz = sizeof pvt->hostbuf;
-	offset = 0;
- again:
-	if (!(p = fgets(bufp + offset, bufsiz - offset, pvt->fp))) {
-		RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		if (dbuf)
-			free(dbuf);
-		return (NULL);
-	}
-	if (!strchr(p, '\n') && !feof(pvt->fp)) {
-#define GROWBUF 1024
-		/* allocate space for longer line */
-		if (dbuf == NULL) {
-			if ((ndbuf = malloc(bufsiz + GROWBUF)) != NULL)
-				strcpy(ndbuf, bufp);
-		} else
-			ndbuf = realloc(dbuf, bufsiz + GROWBUF);
-		if (ndbuf) {
-			dbuf = ndbuf;
-			bufp = dbuf;
-			bufsiz += GROWBUF;
-			offset = strlen(dbuf);
-		} else {
-			/* allocation failed; skip this long line */
-			while ((c = getc(pvt->fp)) != EOF)
-				if (c == '\n')
-					break;
-			if (c != EOF)
-				ungetc(c, pvt->fp);
-		}
-		goto again;
-	}
-
-	p -= offset;
-	offset = 0;
-
-	if (*p == '#')
-		goto again;
-	if ((cp = strpbrk(p, "#\n")) != NULL)
-		*cp = '\0';
-	if (!(cp = strpbrk(p, " \t")))
-		goto again;
-	*cp++ = '\0';
-	if (inet_pton(AF_INET6, p, pvt->host_addr) > 0) {
-		af = AF_INET6;
-		len = IN6ADDRSZ;
-	} else if (inet_aton(p, (struct in_addr *)pvt->host_addr) > 0) {
-		if (pvt->res->options & RES_USE_INET6) {
-			map_v4v6_address((char*)pvt->host_addr,
-					 (char*)pvt->host_addr);
-			af = AF_INET6;
-			len = IN6ADDRSZ;
-		} else {
-			af = AF_INET;
-			len = INADDRSZ;
-		}
-	} else {
-		goto again;
-	}
-	pvt->h_addr_ptrs[0] = (char *)pvt->host_addr;
-	pvt->h_addr_ptrs[1] = NULL;
-	pvt->host.h_addr_list = pvt->h_addr_ptrs;
-	pvt->host.h_length = len;
-	pvt->host.h_addrtype = af;
-	while (*cp == ' ' || *cp == '\t')
-		cp++;
-	pvt->host.h_name = cp;
-	q = pvt->host.h_aliases = pvt->host_aliases;
-	if ((cp = strpbrk(cp, " \t")) != NULL)
-		*cp++ = '\0';
-	while (cp && *cp) {
-		if (*cp == ' ' || *cp == '\t') {
-			cp++;
-			continue;
-		}
-		if (q < &pvt->host_aliases[MAXALIASES - 1])
-			*q++ = cp;
-		if ((cp = strpbrk(cp, " \t")) != NULL)
-			*cp++ = '\0';
-	}
-	*q = NULL;
-	if (dbuf)
-		free(dbuf);
-	RES_SET_H_ERRNO(pvt->res, NETDB_SUCCESS);
-	return (&pvt->host);
-}
-
-static void
-ho_rewind(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp) {
-		if (fseek(pvt->fp, 0L, SEEK_SET) == 0)
-			return;
-		(void)fclose(pvt->fp);
-	}
-	if (!(pvt->fp = fopen(_PATH_HOSTS, "r")))
-		return;
-	if (fcntl(fileno(pvt->fp), F_SETFD, 1) < 0) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
-
-static void
-ho_minimize(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp != NULL) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-	if (pvt->res)
-		res_nclose(pvt->res);
-} 
-
-static struct __res_state *
-ho_res_get(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		ho_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-ho_res_set(struct irs_ho *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-}
-
-/* Private. */
-
-static size_t
-ns_namelen(const char *s) {
-	int i;
-
-	for (i = strlen(s); i > 0 && s[i-1] == '.'; i--)
-		(void)NULL;
-	return ((size_t) i);
-}
-
-static int
-init(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !ho_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
diff --git a/contrib/bind/lib/irs/lcl_ng.c b/contrib/bind/lib/irs/lcl_ng.c
deleted file mode 100644
index 03acbf609ae27..0000000000000
--- a/contrib/bind/lib/irs/lcl_ng.c
+++ /dev/null
@@ -1,438 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: lcl_ng.c,v 1.16 1999/10/13 16:39:32 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-
-/* Definitions */
-
-#define NG_HOST         0       /* Host name */
-#define NG_USER         1       /* User name */
-#define NG_DOM          2       /* and Domain name */
-#define LINSIZ		1024    /* Length of netgroup file line */
-
-/*
- * XXX Warning XXX
- * This code is a hack-and-slash special.  It realy needs to be
- * rewritten with things like strdup, and realloc in mind.
- * More reasonable data structures would not be a bad thing.
- */
-
-/*
- * Static Variables and functions used by setnetgrent(), getnetgrent() and
- * endnetgrent().
- * There are two linked lists:
- * - linelist is just used by setnetgrent() to parse the net group file via.
- *   parse_netgrp()
- * - netgrp is the list of entries for the current netgroup
- */
-struct linelist {
-	struct linelist *l_next;	/* Chain ptr. */
-	int		l_parsed;	/* Flag for cycles */
-	char *		l_groupname;	/* Name of netgroup */
-	char *		l_line;		/* Netgroup entrie(s) to be parsed */
-};
-
-struct ng_old_struct {
-	struct ng_old_struct *ng_next;	/* Chain ptr */
-	char *		ng_str[3];	/* Field pointers, see below */
-};
-
-struct pvt {
-	FILE			*fp;
-	struct linelist		*linehead;
-	struct ng_old_struct    *nextgrp;
-	struct {
-		struct ng_old_struct	*gr;
-		char			*grname;
-	} grouphead;
-};
-
-/* Forward */
-
-static void 		ng_rewind(struct irs_ng *, const char*);
-static void 		ng_close(struct irs_ng *);
-static int		ng_next(struct irs_ng *, char **, char **, char **);
-static int 		ng_test(struct irs_ng *, const char *,
-				const char *, const char *,
-				const char *);
-static void		ng_minimize(struct irs_ng *);
-
-static int 		parse_netgrp(struct irs_ng *, const char*);
-static struct linelist *read_for_group(struct irs_ng *, const char *);
-static void		freelists(struct irs_ng *);
-
-/* Public */
-
-struct irs_ng *
-irs_lcl_ng(struct irs_acc *this) {
-	struct irs_ng *ng;
-	struct pvt *pvt;
-	
-	if (!(ng = memget(sizeof *ng))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ng, 0x5e, sizeof *ng);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(ng, sizeof *ng);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	ng->private = pvt;
-	ng->close = ng_close;
-	ng->next = ng_next;
-	ng->test = ng_test;
-	ng->rewind = ng_rewind;
-	ng->minimize = ng_minimize;
-	return (ng);
-}
-
-/* Methods */
-
-static void
-ng_close(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->fp != NULL)
-		fclose(pvt->fp);
-	freelists(this);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-	
-/*
- * Parse the netgroup file looking for the netgroup and build the list
- * of netgrp structures. Let parse_netgrp() and read_for_group() do
- * most of the work.
- */
-static void
-ng_rewind(struct irs_ng *this, const char *group) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->fp != NULL && fseek(pvt->fp, SEEK_CUR, 0L) == -1) {
-		fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-
-	if (pvt->fp == NULL || pvt->grouphead.gr == NULL || 
-	    strcmp(group, pvt->grouphead.grname)) {
-		freelists(this);
-		if (pvt->fp != NULL)
-			fclose(pvt->fp);
-		pvt->fp = fopen(_PATH_NETGROUP, "r");
-		if (pvt->fp != NULL) {
-			if (parse_netgrp(this, group))
-				freelists(this);
-			if (!(pvt->grouphead.grname = strdup(group)))
-				freelists(this);
-			fclose(pvt->fp);
-			pvt->fp = NULL;
-		}
-	}
-	pvt->nextgrp = pvt->grouphead.gr;
-}
-
-/*
- * Get the next netgroup off the list.
- */
-static int
-ng_next(struct irs_ng *this, char **host, char **user, char **domain) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->nextgrp) {
-		*host = pvt->nextgrp->ng_str[NG_HOST];
-		*user = pvt->nextgrp->ng_str[NG_USER];
-		*domain = pvt->nextgrp->ng_str[NG_DOM];
-		pvt->nextgrp = pvt->nextgrp->ng_next;
-		return (1);
-	}
-	return (0);
-}
-
-/*
- * Search for a match in a netgroup.
- */
-static int
-ng_test(struct irs_ng *this, const char *name,
-	const char *host, const char *user, const char *domain)
-{
-	char *ng_host, *ng_user, *ng_domain;
-
-	ng_rewind(this, name);
-	while (ng_next(this, &ng_host, &ng_user, &ng_domain))
-		if ((host == NULL || ng_host == NULL || 
-		     !strcmp(host, ng_host)) &&
-		    (user ==  NULL || ng_user == NULL || 
-		     !strcmp(user, ng_user)) &&
-		    (domain == NULL || ng_domain == NULL ||
-		     !strcmp(domain, ng_domain))) {
-			freelists(this);
-			return (1);
-		}
-	freelists(this);
-	return (0);
-}
-
-static void
-ng_minimize(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp != NULL) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
-
-/* Private */
-
-/*
- * endnetgrent() - cleanup
- */
-static void
-freelists(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct linelist *lp, *olp;
-	struct ng_old_struct *gp, *ogp;
-
-	lp = pvt->linehead;
-	while (lp) {
-		olp = lp;
-		lp = lp->l_next;
-		free(olp->l_groupname);
-		free(olp->l_line);
-		free((char *)olp);
-	}
-	pvt->linehead = NULL;
-	if (pvt->grouphead.grname) {
-		free(pvt->grouphead.grname);
-		pvt->grouphead.grname = NULL;
-	}
-	gp = pvt->grouphead.gr;
-	while (gp) {
-		ogp = gp;
-		gp = gp->ng_next;
-		if (ogp->ng_str[NG_HOST])
-			free(ogp->ng_str[NG_HOST]);
-		if (ogp->ng_str[NG_USER])
-			free(ogp->ng_str[NG_USER]);
-		if (ogp->ng_str[NG_DOM])
-			free(ogp->ng_str[NG_DOM]);
-		free((char *)ogp);
-	}
-	pvt->grouphead.gr = NULL;
-}
-
-/*
- * Parse the netgroup file setting up the linked lists.
- */
-static int
-parse_netgrp(struct irs_ng *this, const char *group) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *spos, *epos;
-	int len, strpos;
-	char *pos, *gpos;
-	struct ng_old_struct *grp;
-	struct linelist *lp = pvt->linehead;
-
-        /*
-         * First, see if the line has already been read in.
-         */
-	while (lp) {
-		if (!strcmp(group, lp->l_groupname))
-			break;
-		lp = lp->l_next;
-	}
-	if (lp == NULL &&
-	    (lp = read_for_group(this, group)) == NULL)
-		return (1);
-	if (lp->l_parsed) {
-		/*fprintf(stderr, "Cycle in netgroup %s\n", lp->l_groupname);*/
-		return (1);
-	} else
-		lp->l_parsed = 1;
-	pos = lp->l_line;
-	while (*pos != '\0') {
-		if (*pos == '(') {
-			if (!(grp = malloc(sizeof (struct ng_old_struct)))) {
-				freelists(this);
-				errno = ENOMEM;
-				return (1);
-			}
-			memset(grp, 0, sizeof (struct ng_old_struct));
-			grp->ng_next = pvt->grouphead.gr;
-			pvt->grouphead.gr = grp;
-			pos++;
-			gpos = strsep(&pos, ")");
-			for (strpos = 0; strpos < 3; strpos++) {
-				if ((spos = strsep(&gpos, ","))) {
-					while (*spos == ' ' || *spos == '\t')
-						spos++;
-					if ((epos = strpbrk(spos, " \t"))) {
-						*epos = '\0';
-						len = epos - spos;
-					} else
-						len = strlen(spos);
-					if (len > 0) {
-						if(!(grp->ng_str[strpos] 
-						   =  (char *)
-						   malloc(len + 1))) {
-							freelists(this);
-							return (1);
-						}
-						memcpy(grp->ng_str[strpos],
-						       spos,
-						       len + 1);
-					}
-				} else
-					goto errout;
-			}
-		} else {
-			spos = strsep(&pos, ", \t");
-			if (spos != NULL && parse_netgrp(this, spos)) {
-				freelists(this);
-				return (1);
-			}
-		}
-		if (pos == NULL)
-			break;
-		while (*pos == ' ' || *pos == ',' || *pos == '\t')
-			pos++;
-	}
-	return (0);
- errout:
-	/*fprintf(stderr, "Bad netgroup %s at ..%s\n", lp->l_groupname,
-		  spos);*/
-	return (1);
-}
-
-/*
- * Read the netgroup file and save lines until the line for the netgroup
- * is found. Return 1 if eof is encountered.
- */
-static struct linelist *
-read_for_group(struct irs_ng *this, const char *group) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *pos, *spos, *linep, *olinep;
-	int len, olen, cont;
-	struct linelist *lp;
-	char line[LINSIZ + 1];
-	
-	while (fgets(line, LINSIZ, pvt->fp) != NULL) {
-		pos = line;
-		if (*pos == '#')
-			continue;
-		while (*pos == ' ' || *pos == '\t')
-			pos++;
-		spos = pos;
-		while (*pos != ' ' && *pos != '\t' && *pos != '\n' &&
-			*pos != '\0')
-			pos++;
-		len = pos - spos;
-		while (*pos == ' ' || *pos == '\t')
-			pos++;
-		if (*pos != '\n' && *pos != '\0') {
-			if (!(lp = malloc(sizeof (*lp)))) {
-				freelists(this);
-				return (NULL);
-			}
-			lp->l_parsed = 0;
-			if (!(lp->l_groupname = malloc(len + 1))) {
-				free(lp);
-				freelists(this);
-				return (NULL);
-			}
-			memcpy(lp->l_groupname, spos,  len);
-			*(lp->l_groupname + len) = '\0';
-			len = strlen(pos);
-			olen = 0;
-			olinep = NULL;
-
-			/*
-			 * Loop around handling line continuations.
-			 */
-			do {
-				if (*(pos + len - 1) == '\n')
-					len--;
-				if (*(pos + len - 1) == '\\') {
-					len--;
-					cont = 1;
-				} else
-					cont = 0;
-				if (len > 0) {
-					if (!(linep = malloc(olen + len + 1))){
-						if (olen > 0)
-							free(olinep);
-						free(lp->l_groupname);
-						free(lp);
-						freelists(this);
-						errno = ENOMEM;
-						return (NULL);
-					}
-					if (olen > 0) {
-						memcpy(linep, olinep, olen);
-						free(olinep);
-					}
-					memcpy(linep + olen, pos, len);
-					olen += len;
-					*(linep + olen) = '\0';
-					olinep = linep;
-				}
-				if (cont) {
-					if (fgets(line, LINSIZ, pvt->fp)) {
-						pos = line;
-						len = strlen(pos);
-					} else
-						cont = 0;
-				}
-			} while (cont);
-			lp->l_line = linep;
-			lp->l_next = pvt->linehead;
-			pvt->linehead = lp;
-			
-			/*
-			 * If this is the one we wanted, we are done.
-			 */
-			if (!strcmp(lp->l_groupname, group))
-				return (lp);
-		}
-	}
-	return (NULL);
-}
diff --git a/contrib/bind/lib/irs/lcl_nw.c b/contrib/bind/lib/irs/lcl_nw.c
deleted file mode 100644
index 0d41ec409e97c..0000000000000
--- a/contrib/bind/lib/irs/lcl_nw.c
+++ /dev/null
@@ -1,369 +0,0 @@
-/*
- * Copyright (c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: lcl_nw.c,v 1.21 1999/10/15 19:49:10 vixie Exp $";
-/* from getgrent.c 8.2 (Berkeley) 3/21/94"; */
-/* from BSDI Id: getgrent.c,v 2.8 1996/05/28 18:15:14 bostic Exp $	*/
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include <isc/misc.h>
-#include "irs_p.h"
-#include "lcl_p.h"
-
-#define MAXALIASES 35
-#define MAXADDRSIZE 4
-
-struct pvt {
-	FILE *		fp;
-	char 		line[BUFSIZ+1];
-	struct nwent 	net;
-	char *		aliases[MAXALIASES];
-	char		addr[MAXADDRSIZE];
-	struct __res_state *  res;
-	void		(*free_res)(void *);
-};
-
-/* Forward */
-
-static void 		nw_close(struct irs_nw *);
-static struct nwent *	nw_byname(struct irs_nw *, const char *, int);
-static struct nwent *	nw_byaddr(struct irs_nw *, void *, int, int);
-static struct nwent *	nw_next(struct irs_nw *);
-static void		nw_rewind(struct irs_nw *);
-static void		nw_minimize(struct irs_nw *);
-static struct __res_state * nw_res_get(struct irs_nw *this);
-static void		nw_res_set(struct irs_nw *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static int		init(struct irs_nw *this);
-
-/* Portability. */
-
-#ifndef SEEK_SET
-# define SEEK_SET 0
-#endif
-
-/* Public */
-
-struct irs_nw *
-irs_lcl_nw(struct irs_acc *this) {
-	struct irs_nw *nw;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(nw = memget(sizeof *nw))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(nw, 0x5e, sizeof *nw);
-	nw->private = pvt;
-	nw->close = nw_close;
-	nw->byname = nw_byname;
-	nw->byaddr = nw_byaddr;
-	nw->next = nw_next;
-	nw->rewind = nw_rewind;
-	nw->minimize = nw_minimize;
-	nw->res_get = nw_res_get;
-	nw->res_set = nw_res_set;
-	return (nw);
-}
-
-/* Methods */
-
-static void
-nw_close(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	nw_minimize(this);
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	if (pvt->fp)
-		(void)fclose(pvt->fp);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct nwent *
-nw_byaddr(struct irs_nw *this, void *net, int length, int type) {
-	struct nwent *p;
-	
-	if (init(this) == -1)
-		return(NULL);
-
-	nw_rewind(this);
-	while ((p = nw_next(this)) != NULL)
-		if (p->n_addrtype == type && p->n_length == length)
-			if (bitncmp(p->n_addr, net, length) == 0)
-				break;
-	return (p);
-}
-
-static struct nwent *
-nw_byname(struct irs_nw *this, const char *name, int type) {
-	struct nwent *p;
-	char **ap;
-	
-	if (init(this) == -1)
-		return(NULL);
-
-	nw_rewind(this);
-	while ((p = nw_next(this)) != NULL) {
-		if (ns_samename(p->n_name, name) == 1 &&
-		    p->n_addrtype == type)
-			break;
-		for (ap = p->n_aliases; *ap; ap++)
-			if ((ns_samename(*ap, name) == 1) &&
-			    (p->n_addrtype == type))
-				goto found;
-	}
- found:
-	return (p);
-}
-
-static void
-nw_rewind(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->fp) {
-		if (fseek(pvt->fp, 0L, SEEK_SET) == 0)
-			return;
-		(void)fclose(pvt->fp);
-	}
-	if (!(pvt->fp = fopen(_PATH_NETWORKS, "r")))
-		return;
-	if (fcntl(fileno(pvt->fp), F_SETFD, 1) < 0) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
-
-static struct nwent *
-nw_next(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct nwent *ret = NULL;
-	char *p, *cp, **q;
-	char *bufp, *ndbuf, *dbuf = NULL;
-	int c, bufsiz, offset = 0;
-
-	if (init(this) == -1)
-		return(NULL);
-
-	if (pvt->fp == NULL)
-		nw_rewind(this);
-	if (pvt->fp == NULL) {
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	bufp = pvt->line;
-	bufsiz = sizeof(pvt->line);
-
- again:
-	p = fgets(bufp + offset, bufsiz - offset, pvt->fp);
-	if (p == NULL)
-		goto cleanup;
-	if (!strchr(p, '\n') && !feof(pvt->fp)) {
-#define GROWBUF 1024
-		/* allocate space for longer line */
-	  	if (dbuf == NULL) {
-			if ((ndbuf = malloc(bufsiz + GROWBUF)) != NULL)
-				strcpy(ndbuf, bufp);
-		} else
-			ndbuf = realloc(dbuf, bufsiz + GROWBUF);
-		if (ndbuf) {
-			dbuf = ndbuf;
-			bufp = dbuf;
-			bufsiz += GROWBUF;
-			offset = strlen(dbuf);
-		} else {
-			/* allocation failed; skip this long line */
-			while ((c = getc(pvt->fp)) != EOF)
-				if (c == '\n')
-					break;
-			if (c != EOF)
-				ungetc(c, pvt->fp);
-		}
-		goto again;
-	}
-
-	p -= offset;
-	offset = 0;
-
-	if (*p == '#')
-		goto again;
-
-	cp = strpbrk(p, "#\n");
-	if (cp != NULL)
-		*cp = '\0';
-	pvt->net.n_name = p;
-	cp = strpbrk(p, " \t");
-	if (cp == NULL)
-		goto again;
-	*cp++ = '\0';
-	while (*cp == ' ' || *cp == '\t')
-		cp++;
-	p = strpbrk(cp, " \t");
-	if (p != NULL)
-		*p++ = '\0';
-	pvt->net.n_length = inet_net_pton(AF_INET, cp, pvt->addr,
-					  sizeof pvt->addr);
-	if (pvt->net.n_length < 0)
-		goto again;
-	pvt->net.n_addrtype = AF_INET;
-	pvt->net.n_addr = pvt->addr;
-	q = pvt->net.n_aliases = pvt->aliases;
-	if (p != NULL) {
-		cp = p;
-		while (cp && *cp) {
-			if (*cp == ' ' || *cp == '\t') {
-				cp++;
-				continue;
-			}
-			if (q < &pvt->aliases[MAXALIASES - 1])
-				*q++ = cp;
-			cp = strpbrk(cp, " \t");
-			if (cp != NULL)
-				*cp++ = '\0';
-		}
-	}
-	*q = NULL;
-	ret = &pvt->net;
-
- cleanup:
-	if (dbuf)
-		free(dbuf);
-
-	return (ret);
-}
-
-static void
-nw_minimize(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-	if (pvt->fp != NULL) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
-
-static struct __res_state *
-nw_res_get(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		nw_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-nw_res_set(struct irs_nw *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-}
-
-static int
-init(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !nw_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
diff --git a/contrib/bind/lib/irs/lcl_p.h b/contrib/bind/lib/irs/lcl_p.h
deleted file mode 100644
index b9e3b3e9482f1..0000000000000
--- a/contrib/bind/lib/irs/lcl_p.h
+++ /dev/null
@@ -1,50 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: lcl_p.h,v 1.7 1999/01/08 19:24:51 vixie Exp $
- */
-
-/*
- * lcl_p.h - private include file for the local accessor functions.
- */
-
-#ifndef _LCL_P_H_INCLUDED
-#define _LCL_P_H_INCLUDED
-
-/*
- * Object state.
- */
-struct lcl_p {
-	struct __res_state *	res;
-	void                    (*free_res) __P((void *));
-};
-
-/*
- * Externs.
- */
-
-extern struct irs_acc *	irs_lcl_acc __P((const char *));
-extern struct irs_gr *	irs_lcl_gr __P((struct irs_acc *));
-extern struct irs_pw *	irs_lcl_pw __P((struct irs_acc *));
-extern struct irs_sv *	irs_lcl_sv __P((struct irs_acc *));
-extern struct irs_pr *	irs_lcl_pr __P((struct irs_acc *));
-extern struct irs_ho *	irs_lcl_ho __P((struct irs_acc *));
-extern struct irs_nw *	irs_lcl_nw __P((struct irs_acc *));
-extern struct irs_ng *	irs_lcl_ng __P((struct irs_acc *));
-
-#endif /*_LCL_P_H_INCLUDED*/
diff --git a/contrib/bind/lib/irs/lcl_pr.c b/contrib/bind/lib/irs/lcl_pr.c
deleted file mode 100644
index 5162115ffd567..0000000000000
--- a/contrib/bind/lib/irs/lcl_pr.c
+++ /dev/null
@@ -1,284 +0,0 @@
-/*
- * Copyright (c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: lcl_pr.c,v 1.18 1999/10/13 17:11:20 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* extern */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <string.h>
-#include <stdio.h>
-#include <stdlib.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "lcl_p.h"
-
-#ifndef _PATH_PROTOCOLS
-#define _PATH_PROTOCOLS "/etc/protocols"
-#endif
-#define MAXALIASES      35
-
-/* Types */
-
-struct pvt {
-	FILE *		fp;
-	char		line[BUFSIZ+1];
-	struct protoent	proto;
-	char *		proto_aliases[MAXALIASES];
-};
-
-/* Forward */
-
-static void			pr_close(struct irs_pr *);
-static struct protoent *	pr_next(struct irs_pr *);
-static struct protoent *	pr_byname(struct irs_pr *, const char *);
-static struct protoent *	pr_bynumber(struct irs_pr *, int);
-static void			pr_rewind(struct irs_pr *);
-static void			pr_minimize(struct irs_pr *);
-
-/* Portability. */
-
-#ifndef SEEK_SET
-# define SEEK_SET 0
-#endif
-
-/* Public */
-
-struct irs_pr *
-irs_lcl_pr(struct irs_acc *this) {
-	struct irs_pr *pr;
-	struct pvt *pvt;
-	
-	if (!(pr = memget(sizeof *pr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(pr, sizeof *this);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pr->private = pvt;
-	pr->close = pr_close;
-	pr->byname = pr_byname;
-	pr->bynumber = pr_bynumber;
-	pr->next = pr_next;
-	pr->rewind = pr_rewind;
-	pr->minimize = pr_minimize;
-	pr->res_get = NULL;
-	pr->res_set = NULL;
-	return (pr);
-}
-
-/* Methods */
-
-static void
-pr_close(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp)
-		(void) fclose(pvt->fp);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct protoent *
-pr_byname(struct irs_pr *this, const char *name) {
-		
-	struct protoent *p;
-	char **cp;
-
-	pr_rewind(this);
-	while ((p = pr_next(this))) {
-		if (!strcmp(p->p_name, name))
-			goto found;
-		for (cp = p->p_aliases; *cp; cp++)
-			if (!strcmp(*cp, name))
-				goto found;
-	}
- found:
-	return (p);
-}
-
-static struct protoent *
-pr_bynumber(struct irs_pr *this, int proto) {
-	struct protoent *p;
-
-	pr_rewind(this);
-	while ((p = pr_next(this)))
-		if (p->p_proto == proto)
-			break;
-	return (p);
-}
-
-static void
-pr_rewind(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->fp) {
-		if (fseek(pvt->fp, 0L, SEEK_SET) == 0)
-			return;
-		(void)fclose(pvt->fp);
-	}
-	if (!(pvt->fp = fopen(_PATH_PROTOCOLS, "r" )))
-		return;
-	if (fcntl(fileno(pvt->fp), F_SETFD, 1) < 0) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
-
-static struct protoent *
-pr_next(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *p, *cp, **q;
-	char *bufp, *ndbuf, *dbuf = NULL;
-	int c, bufsiz, offset;
-
-	if (!pvt->fp)
-		pr_rewind(this);
-	if (!pvt->fp)
-		return (NULL);
-	bufp = pvt->line;
-	bufsiz = BUFSIZ;
-	offset = 0;
- again:
-	if ((p = fgets(bufp + offset, bufsiz - offset, pvt->fp)) == NULL) {
-		if (dbuf)
-			free(dbuf);
-		return (NULL);
-	}
-	if (!strchr(p, '\n') && !feof(pvt->fp)) {
-#define GROWBUF 1024
-		/* allocate space for longer line */
-		if (dbuf == NULL) {
-			if ((ndbuf = malloc(bufsiz + GROWBUF)) != NULL)
-				strcpy(ndbuf, bufp);
-		} else
-			ndbuf = realloc(dbuf, bufsiz + GROWBUF);
-		if (ndbuf) {
-			dbuf = ndbuf;
-			bufp = dbuf;
-			bufsiz += GROWBUF;
-			offset = strlen(dbuf);
-		} else {
-			/* allocation failed; skip this long line */
-			while ((c = getc(pvt->fp)) != EOF)
-				if (c == '\n')
-					break;
-			if (c != EOF)
-				ungetc(c, pvt->fp);
-		}
-		goto again;
-	}
-
-	p -= offset;
-	offset = 0;
-
-	if (*p == '#')
-		goto again;
-	cp = strpbrk(p, "#\n");
-	if (cp != NULL)
-		*cp = '\0';
-	pvt->proto.p_name = p;
-	cp = strpbrk(p, " \t");
-	if (cp == NULL)
-		goto again;
-	*cp++ = '\0';
-	while (*cp == ' ' || *cp == '\t')
-		cp++;
-	p = strpbrk(cp, " \t");
-	if (p != NULL)
-		*p++ = '\0';
-	pvt->proto.p_proto = atoi(cp);
-	q = pvt->proto.p_aliases = pvt->proto_aliases;
-	if (p != NULL) {
-		cp = p;
-		while (cp && *cp) {
-			if (*cp == ' ' || *cp == '\t') {
-				cp++;
-				continue;
-			}
-			if (q < &pvt->proto_aliases[MAXALIASES - 1])
-				*q++ = cp;
-			cp = strpbrk(cp, " \t");
-			if (cp != NULL)
-				*cp++ = '\0';
-		}
-	}
-	*q = NULL;
-	return (&pvt->proto);
-}
-
-static void
-pr_minimize(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->fp != NULL) {
-		(void)fclose(pvt->fp);
-		pvt->fp = NULL;
-	}
-}
diff --git a/contrib/bind/lib/irs/lcl_pw.c b/contrib/bind/lib/irs/lcl_pw.c
deleted file mode 100644
index 2655677b0f518..0000000000000
--- a/contrib/bind/lib/irs/lcl_pw.c
+++ /dev/null
@@ -1,306 +0,0 @@
-/*
- * Copyright (c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: lcl_pw.c,v 1.19 1999/01/18 07:46:57 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Extern */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_PW
-static int __bind_irs_pw_unneeded;
-#else
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <db.h>
-#include <errno.h>
-#include <fcntl.h>
-#include <limits.h>
-#include <pwd.h>
-#include <stdlib.h>
-#include <string.h>
-#include <syslog.h>
-#include <utmp.h>
-#include <unistd.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "lcl_p.h"
-
-/*
- * The lookup techniques and data extraction code here must be kept
- * in sync with that in `pwd_mkdb'.
- */
- 
-
-/* Types */
-
-struct  pvt {
-	struct passwd	passwd;		/* password structure */
-	DB 		*pw_db;		/* password database */
-	int		pw_keynum;	/* key counter */
-	int		warned;
-	u_int		max;
-	char *		line;
-};
-
-/* Forward */
-
-static void			pw_close(struct irs_pw *);
-static struct passwd *		pw_next(struct irs_pw *);
-static struct passwd *		pw_byname(struct irs_pw *, const char *);
-static struct passwd *		pw_byuid(struct irs_pw *, uid_t);
-static void			pw_rewind(struct irs_pw *);
-static void			pw_minimize(struct irs_pw *);
-
-static int			initdb(struct pvt *);
-static int			hashpw(struct irs_pw *, DBT *);
-
-/* Public */
-struct irs_pw *
-irs_lcl_pw(struct irs_acc *this) {
-	struct irs_pw *pw;
-	struct pvt *pvt;
-		 
-        if (!(pw = memget(sizeof *pw))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pw, 0x5e, sizeof *pw);
-	if (!(pvt = memget(sizeof *pvt))) {
-		free(pw);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pw->private = pvt;
-	pw->close = pw_close;
-	pw->next = pw_next;
-	pw->byname = pw_byname;
-	pw->byuid = pw_byuid;
-	pw->rewind = pw_rewind;
-	pw->minimize = pw_minimize;
-	pw->res_get = NULL;
-	pw->res_set = NULL;
-	return (pw);
-}
-
-/* Methods */
-
-static void
-pw_close(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->pw_db) {
-		(void)(pvt->pw_db->close)(pvt->pw_db);
-		pvt->pw_db = NULL;
-	}
-	if (pvt->line)
-		memput(pvt->line, pvt->max);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct passwd *
-pw_next(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	DBT key;
-	char bf[sizeof(pvt->pw_keynum) + 1];
- 
-	if (!initdb(pvt))
-		return (NULL);
- 
-	++pvt->pw_keynum;
-	bf[0] = _PW_KEYBYNUM;
-	memcpy(bf + 1, (char *)&pvt->pw_keynum, sizeof(pvt->pw_keynum));
-	key.data = (u_char *)bf;
-	key.size = sizeof(pvt->pw_keynum) + 1;
-	return (hashpw(this, &key) ? &pvt->passwd : NULL);
-}
- 
-static struct passwd *
-pw_byname(struct irs_pw *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	DBT key;
-	int len, rval;
-	char bf[UT_NAMESIZE + 1];
- 
-	if (!initdb(pvt))
-		return (NULL);
- 
-	bf[0] = _PW_KEYBYNAME;
-	len = strlen(name);
-	memcpy(bf + 1, name, MIN(len, UT_NAMESIZE));
-	key.data = (u_char *)bf;
-	key.size = len + 1;
-	rval = hashpw(this, &key);
- 
-	return (rval ? &pvt->passwd : NULL);
-}
- 
-
-static struct passwd *
-pw_byuid(struct irs_pw *this, uid_t uid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	DBT key;
-	int keyuid, rval;
-	char bf[sizeof(keyuid) + 1];
- 
-	if (!initdb(pvt))
-		return (NULL);
- 
-	bf[0] = _PW_KEYBYUID;
-	keyuid = uid;
-	memcpy(bf + 1, &keyuid, sizeof(keyuid));
-	key.data = (u_char *)bf;
-	key.size = sizeof(keyuid) + 1;
-	rval = hashpw(this, &key);
- 
-	return (rval ? &pvt->passwd : NULL);
-}
-
-static void
-pw_rewind(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->pw_keynum = 0;
-}
-
-static void
-pw_minimize(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->pw_db != NULL) {
-		(void) (*pvt->pw_db->close)(pvt->pw_db);
-		pvt->pw_db = NULL;
-	}
-}
-
-/* Private. */
-
-static int
-initdb(struct pvt *pvt) {
-	const char *p;
-
-	if (pvt->pw_db) {
-		if (lseek((*pvt->pw_db->fd)(pvt->pw_db), 0L, SEEK_CUR) >= 0L)
-			return (1);
-		else
-			(void) (*pvt->pw_db->close)(pvt->pw_db);
-	}
-	pvt->pw_db = dbopen((p = _PATH_SMP_DB), O_RDONLY, 0, DB_HASH, NULL);
-	if (!pvt->pw_db)
-		pvt->pw_db = dbopen((p =_PATH_MP_DB), O_RDONLY,
-				    0, DB_HASH, NULL);
-	if (pvt->pw_db)
-		return (1);
-	if (!pvt->warned) {
-		syslog(LOG_ERR, "%s: %m", p);
-		pvt->warned++;
-	}
-	return (0);
-}
-
-static int
-hashpw(struct irs_pw *this, DBT *key) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *p, *t, *l;
-	DBT data;
- 
-	if ((pvt->pw_db->get)(pvt->pw_db, key, &data, 0))
-		return (0);
-	p = (char *)data.data;
-	if (data.size > pvt->max) {
-		size_t newlen = pvt->max + 1024;
-		char *p = memget(newlen);
-		if (p == NULL) {
-			return (0);
-		}
-		if (pvt->line != NULL) {
-			memcpy(p, pvt->line, pvt->max);
-			memput(pvt->line, pvt->max);
-		}
-		pvt->max = newlen;
-		pvt->line = p;
-	}
-
-	/* THIS CODE MUST MATCH THAT IN pwd_mkdb. */
-	t = pvt->line;
-	l = pvt->line + pvt->max;
-#define EXPAND(e) if ((e = t) == NULL) return (0); else \
-		  do if (t >= l) return (0); while ((*t++ = *p++) != '\0')
-#define SCALAR(v) if (t + sizeof v >= l) return (0); else \
-		  (memmove(&(v), p, sizeof v), p += sizeof v)
-	EXPAND(pvt->passwd.pw_name);
-	EXPAND(pvt->passwd.pw_passwd);
-	SCALAR(pvt->passwd.pw_uid);
-	SCALAR(pvt->passwd.pw_gid);
-	SCALAR(pvt->passwd.pw_change);
-	EXPAND(pvt->passwd.pw_class);
-	EXPAND(pvt->passwd.pw_gecos);
-	EXPAND(pvt->passwd.pw_dir);
-	EXPAND(pvt->passwd.pw_shell);
-	SCALAR(pvt->passwd.pw_expire);
-	return (1);
-}
-
-#endif /* WANT_IRS_PW */
diff --git a/contrib/bind/lib/irs/lcl_sv.c b/contrib/bind/lib/irs/lcl_sv.c
deleted file mode 100644
index 7e5bec9f4d512..0000000000000
--- a/contrib/bind/lib/irs/lcl_sv.c
+++ /dev/null
@@ -1,432 +0,0 @@
-/*
- * Copyright (c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: lcl_sv.c,v 1.20 1999/10/07 20:44:03 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* extern */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#ifdef IRS_LCL_SV_DB
-#include <db.h>
-#endif
-#include <errno.h>
-#include <fcntl.h>
-#include <limits.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "lcl_p.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/* Types */
-
-struct pvt {
-#ifdef IRS_LCL_SV_DB
-	DB *		dbh;
-	int		dbf;
-#endif
-	struct lcl_sv	sv;
-};
-
-/* Forward */
-
-static void			sv_close(struct irs_sv*);
-static struct servent *		sv_next(struct irs_sv *);
-static struct servent *		sv_byname(struct irs_sv *, const char *,
-					  const char *);
-static struct servent *		sv_byport(struct irs_sv *, int, const char *);
-static void			sv_rewind(struct irs_sv *);
-static void			sv_minimize(struct irs_sv *);
-/*global*/ struct servent *	irs_lclsv_fnxt(struct lcl_sv *);
-#ifdef IRS_LCL_SV_DB
-static struct servent *		sv_db_rec(struct lcl_sv *, DBT *, DBT *);
-#endif
-
-/* Portability */
-
-#ifndef SEEK_SET
-# define SEEK_SET 0
-#endif
-
-/* Public */
-
-struct irs_sv *
-irs_lcl_sv(struct irs_acc *this) {
-	struct irs_sv *sv;
-	struct pvt *pvt;
-	
-	if ((sv = memget(sizeof *sv)) == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(sv, 0x5e, sizeof *sv);
-	if ((pvt = memget(sizeof *pvt)) == NULL) {
-		memput(sv, sizeof *sv);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	sv->private = pvt;
-	sv->close = sv_close;
-	sv->next = sv_next;
-	sv->byname = sv_byname;
-	sv->byport = sv_byport;
-	sv->rewind = sv_rewind;
-	sv->minimize = sv_minimize;
-	sv->res_get = NULL;
-	sv->res_set = NULL;
-#ifdef IRS_LCL_SV_DB
-	pvt->dbf = R_FIRST;
-#endif
-	return (sv);
-}
-
-/* Methods */
-
-static void
-sv_close(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-#ifdef IRS_LCL_SV_DB
-	if (pvt->dbh != NULL)
-		(*pvt->dbh->close)(pvt->dbh);
-#endif
-	if (pvt->sv.fp)
-		fclose(pvt->sv.fp);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct servent *
-sv_byname(struct irs_sv *this, const char *name, const char *proto) {
-#ifdef IRS_LCL_SV_DB
-	struct pvt *pvt = (struct pvt *)this->private;
-#endif
-	struct servent *p;
-	char **cp;
-
-	sv_rewind(this);
-#ifdef IRS_LCL_SV_DB
-	if (pvt->dbh != NULL) {
-		DBT key, data;
-
-		/* Note that (sizeof "/") == 2. */
-		if ((strlen(name) + sizeof "/" + proto ? strlen(proto) : 0)
-		    > sizeof pvt->sv.line)
-			goto try_local;
-		key.data = pvt->sv.line;
-		key.size = SPRINTF((pvt->sv.line, "%s/%s", name,
-				    proto ? proto : "")) + 1;
-		if (proto != NULL) {
-			if ((*pvt->dbh->get)(pvt->dbh, &key, &data, 0) != 0)
-				return (NULL);
-		} else if ((*pvt->dbh->seq)(pvt->dbh, &key, &data, R_CURSOR)
-			   != 0)
-			return (NULL);
-		return (sv_db_rec(&pvt->sv, &key, &data));
-	}
- try_local:
-#endif
-
-	while ((p = sv_next(this))) {
-		if (strcmp(name, p->s_name) == 0)
-			goto gotname;
-		for (cp = p->s_aliases; *cp; cp++)
-			if (strcmp(name, *cp) == 0)
-				goto gotname;
-		continue;
- gotname:
-		if (proto == NULL || strcmp(p->s_proto, proto) == 0)
-			break;
-	}
-	return (p);
-}
-
-static struct servent *
-sv_byport(struct irs_sv *this, int port, const char *proto) {
-#ifdef IRS_LCL_SV_DB
-	struct pvt *pvt = (struct pvt *)this->private;
-#endif
-	struct servent *p;
-
-	sv_rewind(this);
-#ifdef IRS_LCL_SV_DB
-	if (pvt->dbh != NULL) {
-		DBT key, data;
-		u_short *ports;
-
-		ports = (u_short *)pvt->sv.line;
-		ports[0] = 0;
-		ports[1] = port;
-		key.data = ports;
-		key.size = sizeof(u_short) * 2;
-		if (proto && *proto) {
-			strncpy((char *)ports + key.size, proto,
-				BUFSIZ - key.size);
-			key.size += strlen((char *)ports + key.size) + 1;
-			if ((*pvt->dbh->get)(pvt->dbh, &key, &data, 0) != 0)
-				return (NULL);
-		} else {
-			if ((*pvt->dbh->seq)(pvt->dbh, &key, &data, R_CURSOR)
-			    != 0)
-				return (NULL);
-		}
-		return (sv_db_rec(&pvt->sv, &key, &data));
-	}
-#endif
-	while ((p = sv_next(this))) {
-		if (p->s_port != port)
-			continue;
-		if (proto == NULL || strcmp(p->s_proto, proto) == 0)
-			break;
-	}
-	return (p);
-}
-
-static void
-sv_rewind(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->sv.fp) {
-		if (fseek(pvt->sv.fp, 0L, SEEK_SET) == 0)
-			return;
-		(void)fclose(pvt->sv.fp);
-		pvt->sv.fp = NULL;
-	}
-#ifdef IRS_LCL_SV_DB
-	pvt->dbf = R_FIRST;
-	if (pvt->dbh != NULL)
-		return;
-	pvt->dbh = dbopen(_PATH_SERVICES_DB, O_RDONLY,O_RDONLY,DB_BTREE, NULL);
-	if (pvt->dbh != NULL) {
-		if (fcntl((*pvt->dbh->fd)(pvt->dbh), F_SETFD, 1) < 0) {
-			(*pvt->dbh->close)(pvt->dbh);
-			pvt->dbh = NULL;
-		}
-		return;
-	}
-#endif
-	if ((pvt->sv.fp = fopen(_PATH_SERVICES, "r")) == NULL)
-		return;
-	if (fcntl(fileno(pvt->sv.fp), F_SETFD, 1) < 0) {
-		(void)fclose(pvt->sv.fp);
-		pvt->sv.fp = NULL;
-	}
-}
-
-static struct servent *
-sv_next(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-#ifdef IRS_LCL_SV_DB
-	if (pvt->dbh != NULL)
-		NULL;
-	else
-#endif
-	     if (pvt->sv.fp != NULL)
-		NULL;
-	else
-		sv_rewind(this);
-
-#ifdef IRS_LCL_SV_DB
-	if (pvt->dbh != NULL) {
-		DBT key, data;
-
-		while ((*pvt->dbh->seq)(pvt->dbh, &key, &data, pvt->dbf) == 0){
-			pvt->dbf = R_NEXT;
-			if (((char *)key.data)[0])
-				continue;
-			return (sv_db_rec(&pvt->sv, &key, &data));
-		}
-	}
-#endif
-
-	if (pvt->sv.fp == NULL)
-		return (NULL);
-	return (irs_lclsv_fnxt(&pvt->sv));
-}
-
-static void
-sv_minimize(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-#ifdef IRS_LCL_SV_DB
-	if (pvt->dbh != NULL) {
-		(*pvt->dbh->close)(pvt->dbh);
-		pvt->dbh = NULL;
-	}
-#endif
-	if (pvt->sv.fp != NULL) {
-		(void)fclose(pvt->sv.fp);
-		pvt->sv.fp = NULL;
-	}
-}
-
-/* Quasipublic. */
-
-struct servent *
-irs_lclsv_fnxt(struct lcl_sv *sv) {
-	char *p, *cp, **q;
-
- again:
-	if ((p = fgets(sv->line, BUFSIZ, sv->fp)) == NULL)
-		return (NULL);
-	if (*p == '#')
-		goto again;
-	sv->serv.s_name = p;
-	while (*p && *p != '\n' && *p != ' ' && *p != '\t' && *p != '#')
-		++p;
-	if (*p == '\0' || *p == '#' || *p == '\n')
-		goto again;
-	*p++ = '\0';
-	while (*p == ' ' || *p == '\t')
-		p++;
-	if (*p == '\0' || *p == '#' || *p == '\n')
-		goto again;
-	sv->serv.s_port = htons((u_short)strtol(p, &cp, 10));
-	if (cp == p || (*cp != '/' && *cp != ','))
-		goto again;
-	p = cp + 1;
-	sv->serv.s_proto = p;
-
-	q = sv->serv.s_aliases = sv->serv_aliases;
-
-	while (*p && *p != '\n' && *p != ' ' && *p != '\t' && *p != '#')
-		++p;
-
-	while (*p == ' ' || *p == '\t') {
-		*p++ = '\0';
-		while (*p == ' ' || *p == '\t')
-			++p;
-		if (*p == '\0' || *p == '#' || *p == '\n')
-			break;
-		if (q < &sv->serv_aliases[IRS_SV_MAXALIASES - 1])
-			*q++ = p;
-		while (*p && *p != '\n' && *p != ' ' && *p != '\t' && *p != '#')
-			++p;
-	}
-		
-	*p = '\0';
-	*q = NULL;
-	return (&sv->serv);
-}
-
-/* Private. */
-
-#ifdef IRS_LCL_SV_DB
-static struct servent *
-sv_db_rec(struct lcl_sv *sv, DBT *key, DBT *data) {
-	char *p, **q;
-	int n;
-
-	p = data->data;
-	p[data->size - 1] = '\0';	/* should be, but we depend on it */
-
-	if (((char *)key->data)[0] == '\0') {
-		if (key->size < sizeof(u_short)*2 || data->size < 2)
-			return (NULL);
-		sv->serv.s_port = ((u_short *)key->data)[1];
-		n = strlen(p) + 1;
-		if (n > sizeof(sv->line)) {
-			n = sizeof(sv->line);
-		}
-		memcpy(sv->line, p, n);
-		sv->serv.s_name = sv->line;
-		if ((sv->serv.s_proto = strchr(sv->line, '/')) != NULL)
-			*(sv->serv.s_proto)++ = '\0';
-		p += n;
-		data->size -= n;
-	} else {
-		if (data->size < sizeof(u_short) + 1)
-			return (NULL);
-		if (key->size > sizeof(sv->line))
-			key->size = sizeof(sv->line);
-		((char *)key->data)[key->size - 1] = '\0';
-		memcpy(sv->line, key->data, key->size);
-		sv->serv.s_name = sv->line;
-		if ((sv->serv.s_proto = strchr(sv->line, '/')) != NULL)
-			*(sv->serv.s_proto)++ = '\0';
-		sv->serv.s_port = *(u_short *)data->data;
-		p += sizeof(u_short);
-		data->size -= sizeof(u_short);
-	}
-	q = sv->serv.s_aliases = sv->serv_aliases;
-	while (data->size > 0 && q < &sv->serv_aliases[IRS_SV_MAXALIASES - 1]) {
-
-		*q++ = p;
-		n = strlen(p) + 1;
-		data->size -= n;
-		p += n;
-	}
-	*q = NULL;
-	return (&sv->serv);
-}
-#endif
diff --git a/contrib/bind/lib/irs/nis.c b/contrib/bind/lib/irs/nis.c
deleted file mode 100644
index e19068af59549..0000000000000
--- a/contrib/bind/lib/irs/nis.c
+++ /dev/null
@@ -1,149 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis.c,v 1.14 2000/02/28 07:52:16 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifdef WANT_IRS_NIS
-
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <stdlib.h>
-#include <string.h>
-#include <errno.h>
-
-#include <sys/types.h>
-#include <netinet/in.h> 
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "nis_p.h"
-
-/* Forward */
-
-static void		nis_close(struct irs_acc *);
-static struct __res_state * nis_res_get(struct irs_acc *);
-static void		nis_res_set(struct irs_acc *, struct __res_state *,
-				void (*)(void *));
-
-/* Public */
-
-struct irs_acc *
-irs_nis_acc(const char *options) {
-	struct nis_p *nis;
-	struct irs_acc *acc;
-	char *domain;
-
-	if (yp_get_default_domain(&domain) != 0)
-		return (NULL);
-	if (!(nis = memget(sizeof *nis))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(nis, 0, sizeof *nis);
-	if (!(acc = memget(sizeof *acc))) {
-		memput(nis, sizeof *nis);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(acc, 0x5e, sizeof *acc);
-	acc->private = nis;
-	nis->domain = strdup(domain);
-#ifdef WANT_IRS_GR
-	acc->gr_map = irs_nis_gr;
-#else
-	acc->gr_map = NULL;
-#endif
-#ifdef WANT_IRS_PW
-	acc->pw_map = irs_nis_pw;
-#else
-	acc->pw_map = NULL;
-#endif
-	acc->sv_map = irs_nis_sv;
-	acc->pr_map = irs_nis_pr;
-	acc->ho_map = irs_nis_ho;
-	acc->nw_map = irs_nis_nw;
-	acc->ng_map = irs_nis_ng;
-	acc->res_get = nis_res_get;
-	acc->res_set = nis_res_set;
-	acc->close = nis_close;
-	return (acc);
-}
-
-/* Methods */
-
-static struct __res_state *
-nis_res_get(struct irs_acc *this) {
-	struct nis_p *nis = (struct nis_p *)this->private;
-
-	if (nis->res == NULL) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (res == NULL)
-			return (NULL);
-		memset(res, 0, sizeof *res);
-		nis_res_set(this, res, free);
-	}
-
-	if ((nis->res->options & RES_INIT) == 0 &&
-	    res_ninit(nis->res) < 0)
-		return (NULL);
-
-	return (nis->res);
-}
-
-static void
-nis_res_set(struct irs_acc *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct nis_p *nis = (struct nis_p *)this->private;
-
-	if (nis->res && nis->free_res) {
-		res_nclose(nis->res);
-		(*nis->free_res)(nis->res);
-	}
-
-	nis->res = res;
-	nis->free_res = free_res;
-}
-
-static void
-nis_close(struct irs_acc *this) {
-	struct nis_p *nis = (struct nis_p *)this->private;
-
-	if (nis->res && nis->free_res)
-		(*nis->free_res)(nis->res);
-	free(nis->domain);
-	memput(nis, sizeof *nis);
-	memput(this, sizeof *this);
-}
-
-#endif /*WANT_IRS_NIS*/
diff --git a/contrib/bind/lib/irs/nis_gr.c b/contrib/bind/lib/irs/nis_gr.c
deleted file mode 100644
index 713437a64af61..0000000000000
--- a/contrib/bind/lib/irs/nis_gr.c
+++ /dev/null
@@ -1,352 +0,0 @@
-/*
- * Copyright (c) 1989, 1993, 1995
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_gr.c,v 1.20 1999/01/30 00:53:16 vixie Exp $";
-/* from getgrent.c 8.2 (Berkeley) 3/21/94"; */
-/* from BSDI Id: getgrent.c,v 2.8 1996/05/28 18:15:14 bostic Exp $	*/
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(WANT_IRS_GR) || !defined(WANT_IRS_NIS)
-static int __bind_irs_gr_unneeded;
-#else
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <isc/memcluster.h>
-
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <errno.h>
-#include <grp.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <isc/memcluster.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-struct pvt {
-	int		needrewind;
-	char *		nis_domain;
-	char *		curkey_data;
-	int		curkey_len;
-	char *		curval_data;
-	int		curval_len;
-	/*
-	 * Need space to store the entries read from the group file.
-	 * The members list also needs space per member, and the
-	 * strings making up the user names must be allocated
-	 * somewhere.  Rather than doing lots of small allocations,
-	 * we keep one buffer and resize it as needed.
-	 */
-	struct group	group;
-	size_t		nmemb;		/* Malloc'd max index of gr_mem[]. */
-	char *		membuf;
-	size_t		membufsize;
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static /*const*/ char group_bygid[] =	"group.bygid";
-static /*const*/ char group_byname[] =	"group.byname";
-
-/* Forward */
-
-static void		gr_close(struct irs_gr *);
-static struct group *	gr_next(struct irs_gr *);
-static struct group *	gr_byname(struct irs_gr *, const char *);
-static struct group *	gr_bygid(struct irs_gr *, gid_t);
-static void		gr_rewind(struct irs_gr *);
-static void		gr_minimize(struct irs_gr *);
-
-static struct group *	makegroupent(struct irs_gr *);
-static void		nisfree(struct pvt *, enum do_what);
-
-/* Public */
-
-struct irs_gr *
-irs_nis_gr(struct irs_acc *this) {
-	struct irs_gr *gr;
-	struct pvt *pvt;
-
-	if (!(gr = memget(sizeof *gr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(gr, 0x5e, sizeof *gr);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(gr, sizeof *gr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->needrewind = 1;
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	gr->private = pvt;
-	gr->close = gr_close;
-	gr->next = gr_next;
-	gr->byname = gr_byname;
-	gr->bygid = gr_bygid;
-	gr->rewind = gr_rewind;
-	gr->list = make_group_list;
-	gr->minimize = gr_minimize;
-	gr->res_get = NULL;
-	gr->res_set = NULL;
-	return (gr);
-}
-
-/* Methods */
-
-static void
-gr_close(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->group.gr_mem)
-		free(pvt->group.gr_mem);
-	if (pvt->membuf)
-		free(pvt->membuf);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct group *
-gr_next(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct group *rval;
-	int r;
-
-	do {
-		if (pvt->needrewind) {
-			nisfree(pvt, do_all);
-			r = yp_first(pvt->nis_domain, group_byname,
-				     &pvt->curkey_data, &pvt->curkey_len,
-				     &pvt->curval_data, &pvt->curval_len);
-			pvt->needrewind = 0;
-		} else {
-			char *newkey_data;
-			int newkey_len;
-
-			nisfree(pvt, do_val);
-			r = yp_next(pvt->nis_domain, group_byname,
-				    pvt->curkey_data, pvt->curkey_len,
-				    &newkey_data, &newkey_len,
-				    &pvt->curval_data, &pvt->curval_len);
-			nisfree(pvt, do_key);
-			pvt->curkey_data = newkey_data;
-			pvt->curkey_len = newkey_len;
-		}
-		if (r != 0) {
-			errno = ENOENT;
-			return (NULL);
-		}
-		rval = makegroupent(this);
-	} while (rval == NULL);
-	return (rval);
-}
-
-static struct group *
-gr_byname(struct irs_gr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int r;
-
-	nisfree(pvt, do_val);
-	r = yp_match(pvt->nis_domain, group_byname, (char *)name, strlen(name),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		errno = ENOENT;
-		return (NULL);
-	}
-	return (makegroupent(this));
-}
-
-static struct group *
-gr_bygid(struct irs_gr *this, gid_t gid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char tmp[sizeof "4294967295"];
-	int r;
-
-	nisfree(pvt, do_val);
-	(void) sprintf(tmp, "%u", (unsigned int)gid);
-	r = yp_match(pvt->nis_domain, group_bygid, tmp, strlen(tmp),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		errno = ENOENT;
-		return (NULL);
-	}
-	return (makegroupent(this));
-}
-
-static void
-gr_rewind(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->needrewind = 1;
-}
-
-static void
-gr_minimize(struct irs_gr *this) {
-	/* NOOP */
-}
-
-/* Private */
-
-static struct group *
-makegroupent(struct irs_gr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int num_members = 0;
-	char *cp, **new;
-	u_long t;
-
-	if (pvt->group.gr_mem) {
-		free(pvt->group.gr_mem);
-		pvt->group.gr_mem = NULL;
-		pvt->nmemb = 0;
-	}
-	if (pvt->membuf)
-		free(pvt->membuf);
-	pvt->membuf = pvt->curval_data;
-	pvt->curval_data = NULL;
-
-	cp = pvt->membuf;
-	pvt->group.gr_name = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-	
-	pvt->group.gr_passwd = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	errno = -1;
-	t = strtoul(cp, NULL, 10);
-	if (errno == ERANGE)
-		goto cleanup;
-	pvt->group.gr_gid = (gid_t) t;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	cp++;
-
-        if (*cp && cp[strlen(cp)-1] == '\n')
-          cp[strlen(cp)-1] = '\0';
-
-	/*
-	 * Parse the members out.
-	 */
-	while (*cp) {
-		if (num_members+1 >= pvt->nmemb || pvt->group.gr_mem == NULL) {
-			pvt->nmemb += 10;
-			new = realloc(pvt->group.gr_mem,
-				      pvt->nmemb * sizeof(char *));
-			if (new == NULL)
-				goto cleanup;
-			pvt->group.gr_mem = new;
-		}
-		pvt->group.gr_mem[num_members++] = cp;
-		if (!(cp = strchr(cp, ',')))
-			break;
-		*cp++ = '\0';
-	}
-	if (pvt->group.gr_mem == NULL) {
-		pvt->group.gr_mem = malloc(sizeof(char*));
-		if (!pvt->group.gr_mem)
-			goto cleanup;
-		pvt->nmemb = 1;
-	}
-	pvt->group.gr_mem[num_members] = NULL;
-	
-	return (&pvt->group);
-	
- cleanup:	
-	if (pvt->group.gr_mem) {
-		free(pvt->group.gr_mem);
-		pvt->group.gr_mem = NULL;
-		pvt->nmemb = 0;
-	}
-	if (pvt->membuf) {
-		free(pvt->membuf);
-		pvt->membuf = NULL;
-	}
-	return (NULL);
-}
-
-static void
-nisfree(struct pvt *pvt, enum do_what do_what) {
-	if ((do_what & do_key) && pvt->curkey_data) {
-		free(pvt->curkey_data);
-		pvt->curkey_data = NULL;
-	}
-	if ((do_what & do_val) && pvt->curval_data) {
-		free(pvt->curval_data);
-		pvt->curval_data = NULL;
-	}
-}
-
-#endif /* WANT_IRS_GR && WANT_IRS_NIS */
diff --git a/contrib/bind/lib/irs/nis_ho.c b/contrib/bind/lib/irs/nis_ho.c
deleted file mode 100644
index 07d2274c5f05c..0000000000000
--- a/contrib/bind/lib/irs/nis_ho.c
+++ /dev/null
@@ -1,390 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_ho.c,v 1.16 1999/10/13 16:39:32 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_NIS
-static int __bind_irs_nis_unneeded;
-#else
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdlib.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-#define	MAXALIASES	35
-#define	MAXADDRS	35
-
-#if PACKETSZ > 1024
-#define	MAXPACKET	PACKETSZ
-#else
-#define	MAXPACKET	1024
-#endif
-
-struct pvt {
-	int		needrewind;
-	char *		nis_domain;
-	char *		curkey_data;
-	int		curkey_len;
-	char *		curval_data;
-	int		curval_len;
-	struct hostent	host;
-	char *		h_addr_ptrs[MAXADDRS + 1];
-	char *		host_aliases[MAXALIASES + 1];
-	char		hostbuf[8*1024];
-	u_char		host_addr[16];	/* IPv4 or IPv6 */
-	struct __res_state  *res;
-	void		(*free_res)(void *);
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static const u_char mapped[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0xff,0xff };
-static const u_char tunnelled[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0,0 };
-static /*const*/ char hosts_byname[] = "hosts.byname";
-static /*const*/ char hosts_byaddr[] = "hosts.byaddr";
-
-/* Forwards */
-
-static void		ho_close(struct irs_ho *this);
-static struct hostent *	ho_byname(struct irs_ho *this, const char *name);
-static struct hostent *	ho_byname2(struct irs_ho *this, const char *name,
-					int af);
-static struct hostent *	ho_byaddr(struct irs_ho *this, const void *addr,
-				       int len, int af);
-static struct hostent *	ho_next(struct irs_ho *this);
-static void		ho_rewind(struct irs_ho *this);
-static void		ho_minimize(struct irs_ho *this);
-static struct __res_state * ho_res_get(struct irs_ho *this);
-static void		ho_res_set(struct irs_ho *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static struct hostent *	makehostent(struct irs_ho *this);
-static void		nisfree(struct pvt *, enum do_what);
-static int		init(struct irs_ho *this);
-
-/* Public */
-
-struct irs_ho *
-irs_nis_ho(struct irs_acc *this) {
-	struct irs_ho *ho;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(ho = memget(sizeof *ho))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ho, 0x5e, sizeof *ho);
-	pvt->needrewind = 1;
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	ho->private = pvt;
-	ho->close = ho_close;
-	ho->byname = ho_byname;
-	ho->byname2 = ho_byname2;
-	ho->byaddr = ho_byaddr;
-	ho->next = ho_next;
-	ho->rewind = ho_rewind;
-	ho->minimize = ho_minimize;
-	ho->res_set = ho_res_set;
-	ho->res_get = ho_res_get;
-	return (ho);
-}
-
-/* Methods */
-
-static void
-ho_close(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	ho_minimize(this);
-	nisfree(pvt, do_all);
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct hostent *
-ho_byname(struct irs_ho *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *hp;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	if (pvt->res->options & RES_USE_INET6) {
-		hp = ho_byname2(this, name, AF_INET6);
-		if (hp)
-			return (hp);
-	}
-	return (ho_byname2(this, name, AF_INET));
-}
-
-static struct hostent *
-ho_byname2(struct irs_ho *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int r;
-	
-	if (init(this) == -1)
-		return (NULL);
-
-	nisfree(pvt, do_val);
-	r = yp_match(pvt->nis_domain, hosts_byname, (char *)name, strlen(name),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-	return (makehostent(this));
-}
-
-static struct hostent *
-ho_byaddr(struct irs_ho *this, const void *addr, int len, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-	const u_char *uaddr = addr;
-	int r;
-	
-	if (init(this) == -1)
-		return (NULL);
-
-	if (af == AF_INET6 && len == IN6ADDRSZ &&
-	    (!memcmp(uaddr, mapped, sizeof mapped) ||
-	     !memcmp(uaddr, tunnelled, sizeof tunnelled))) {
-		/* Unmap. */
-		addr = (u_char *)addr + sizeof mapped;
-		uaddr += sizeof mapped;
-		af = AF_INET;
-		len = INADDRSZ;
-	}
-	if (inet_ntop(af, uaddr, tmp, sizeof tmp) == NULL) {
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	nisfree(pvt, do_val);
-	r = yp_match(pvt->nis_domain, hosts_byaddr, tmp, strlen(tmp),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-	return (makehostent(this));
-}
-
-static struct hostent *
-ho_next(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct hostent *rval;
-	int r;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	do {
-		if (pvt->needrewind) {
-			nisfree(pvt, do_all);
-			r = yp_first(pvt->nis_domain, hosts_byaddr,
-				     &pvt->curkey_data, &pvt->curkey_len,
-				     &pvt->curval_data, &pvt->curval_len);
-			pvt->needrewind = 0;
-		} else {
-			char *newkey_data;
-			int newkey_len;
-
-			nisfree(pvt, do_val);
-			r = yp_next(pvt->nis_domain, hosts_byaddr,
-				    pvt->curkey_data, pvt->curkey_len,
-				    &newkey_data, &newkey_len,
-				    &pvt->curval_data, &pvt->curval_len);
-			nisfree(pvt, do_key);
-			pvt->curkey_data = newkey_data;
-			pvt->curkey_len = newkey_len;
-		}
-		if (r != 0) {
-			RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-			return (NULL);
-		}
-		rval = makehostent(this);
-	} while (rval == NULL);
-	return (rval);
-}
-
-static void
-ho_rewind(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->needrewind = 1;
-}
-
-static void
-ho_minimize(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-}
-
-static struct __res_state *
-ho_res_get(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		ho_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-ho_res_set(struct irs_ho *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-}
-
-/* Private */
-
-static struct hostent *
-makehostent(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	static const char spaces[] = " \t";
-	char *cp, **q, *p;
-	int af, len;
-
-	p = pvt->curval_data;
-	if ((cp = strpbrk(p, "#\n")) != NULL)
-		*cp = '\0';
-	if (!(cp = strpbrk(p, spaces)))
-		return (NULL);
-	*cp++ = '\0';
-	if ((pvt->res->options & RES_USE_INET6) &&
-	    inet_pton(AF_INET6, p, pvt->host_addr) > 0) {
-		af = AF_INET6;
-		len = IN6ADDRSZ;
-	} else if (inet_pton(AF_INET, p, pvt->host_addr) > 0) {
-		if (pvt->res->options & RES_USE_INET6) {
-			map_v4v6_address((char*)pvt->host_addr,
-					 (char*)pvt->host_addr);
-			af = AF_INET6;
-			len = IN6ADDRSZ;
-		} else {
-			af = AF_INET;
-			len = INADDRSZ;
-		}
-	} else {
-		return (NULL);
-	}
-	pvt->h_addr_ptrs[0] = (char *)pvt->host_addr;
-	pvt->h_addr_ptrs[1] = NULL;
-	pvt->host.h_addr_list = pvt->h_addr_ptrs;
-	pvt->host.h_length = len;
-	pvt->host.h_addrtype = af;
-	cp += strspn(cp, spaces);
-	pvt->host.h_name = cp;
-	q = pvt->host.h_aliases = pvt->host_aliases;
-	if ((cp = strpbrk(cp, spaces)) != NULL)
-		*cp++ = '\0';
-	while (cp && *cp) {
-		if (*cp == ' ' || *cp == '\t') {
-			cp++;
-			continue;
-		}
-		if (q < &pvt->host_aliases[MAXALIASES])
-			*q++ = cp;
-		if ((cp = strpbrk(cp, spaces)) != NULL)
-			*cp++ = '\0';
-	}
-	*q = NULL;
-	RES_SET_H_ERRNO(pvt->res, NETDB_SUCCESS);
-	return (&pvt->host);
-}
-
-static void
-nisfree(struct pvt *pvt, enum do_what do_what) {
-	if ((do_what & do_key) && pvt->curkey_data) {
-		free(pvt->curkey_data);
-		pvt->curkey_data = NULL;
-	}
-	if ((do_what & do_val) && pvt->curval_data) {
-		free(pvt->curval_data);
-		pvt->curval_data = NULL;
-	}
-}
-
-static int
-init(struct irs_ho *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !ho_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
-#endif /*WANT_IRS_NIS*/
diff --git a/contrib/bind/lib/irs/nis_ng.c b/contrib/bind/lib/irs/nis_ng.c
deleted file mode 100644
index 88d97ff56b74e..0000000000000
--- a/contrib/bind/lib/irs/nis_ng.c
+++ /dev/null
@@ -1,295 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_ng.c,v 1.16 1999/01/18 07:46:58 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_NIS
-static int __bind_irs_nis_unneeded;
-#else
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <isc/assertions.h>
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-struct tmpgrp {
-	const char *	name;
-	const char *	host;
-	const char *	user;
-	const char *	domain;
-	struct tmpgrp *	next;
-};
-
-struct pvt {
-	char *		nis_domain;
-	struct tmpgrp *	tmp;
-	struct tmpgrp *	cur;
-	char *		tmpgroup;
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static /*const*/ char netgroup_map[]	= "netgroup";
-
-/* Forward */
-
-static void 		ng_close(struct irs_ng *);
-static int		ng_next(struct irs_ng *, char **, char **, char **);
-static int		ng_test(struct irs_ng *,
- 				const char *, const char *,
-				const char *, const char *);
-static void		ng_rewind(struct irs_ng *, const char *);
-static void		ng_minimize(struct irs_ng *);
-
-static void		add_group_to_list(struct pvt *, const char *, int);
-static void		add_tuple_to_list(struct pvt *, const char *, char *);
-static void		tmpfree(struct pvt *);
-
-/* Public */
-
-struct irs_ng *
-irs_nis_ng(struct irs_acc *this) {
-	struct irs_ng *ng;
-	struct pvt *pvt;
-
-	if (!(ng = memget(sizeof *ng))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ng, 0x5e, sizeof *ng);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(ng, sizeof *ng);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	ng->private = pvt;
-	ng->close = ng_close;
-	ng->next = ng_next;
-	ng->test = ng_test;
-	ng->rewind = ng_rewind;
-	ng->minimize = ng_minimize;
-	return (ng);
-}
-
-/* Methods */
-
-static void
-ng_close(struct irs_ng *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	tmpfree(pvt);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static int
-ng_next(struct irs_ng *this, char **host, char **user, char **domain) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->cur)
-		return (0);
-	*host = (/*const*/ char *)pvt->cur->host;
-	*user = (/*const*/ char *)pvt->cur->user;
-	*domain = (/*const*/ char *)pvt->cur->domain;
-	pvt->cur = pvt->cur->next;
-	return (1);
-}
-
-static int
-ng_test(struct irs_ng *this, const char *name,
-	const char *host, const char *user, const char *domain)
-{
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct tmpgrp *cur;
-
-	tmpfree(pvt);
-	add_group_to_list(pvt, name, strlen(name));
-	for (cur = pvt->tmp; cur; cur = cur->next) {
-		if ((!host || !cur->host || !strcmp(host, cur->host)) &&
-		    (!user || !cur->user || !strcmp(user, cur->user)) &&
-		    (!domain || !cur->domain || !strcmp(domain, cur->domain)))
-			break;
-	}
-	tmpfree(pvt);
-	return ((cur == NULL) ? 0 : 1);
-}
-
-static void
-ng_rewind(struct irs_ng *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	/* Either hand back or free the existing list. */
-	if (pvt->tmpgroup) {
-		if (pvt->tmp && !strcmp(pvt->tmpgroup, name))
-			goto reset;
-		tmpfree(pvt);
-	}
-	pvt->tmpgroup = strdup(name);
-	add_group_to_list(pvt, name, strlen(name));
- reset:
-	pvt->cur = pvt->tmp;
-}
-
-static void
-ng_minimize(struct irs_ng *this) {
-	/* NOOP */
-}
-
-/* Private */
-
-static void
-add_group_to_list(struct pvt *pvt, const char *name, int len) {
-	char *vdata, *cp, *np;
-	struct tmpgrp *tmp;
-	int vlen, r;
-
-	/* Don't add the same group to the list more than once. */
-	for (tmp = pvt->tmp; tmp; tmp = tmp->next)
-		if (!strcmp(tmp->name, name))
-			return;
-
-	r = yp_match(pvt->nis_domain, netgroup_map, (char *)name, len,
-		     &vdata, &vlen);
-	if (r == 0) {
-		cp = vdata;
-		if (*cp && cp[strlen(cp)-1] == '\n')
-                  cp[strlen(cp)-1] = '\0';
-		for ( ; cp; cp = np) {
-			np = strchr(cp, ' ');
-			if (np)
-				*np++ = '\0';
-			if (*cp == '(')
-				add_tuple_to_list(pvt, name, cp);
-			else
-				add_group_to_list(pvt, cp, strlen(cp));
-		}
-		free(vdata);
-	}
-}
-
-static void
-add_tuple_to_list(struct pvt *pvt, const char *name, char *cp) {
-	struct tmpgrp *tmp;
-	char *tp, *np;
-
-	INSIST(*cp++ == '(');
-
-	tmp = malloc(sizeof *tmp + strlen(name) + sizeof '\0' +
-		     strlen(cp) - sizeof ')');
-	if (!tmp)
-		return;
-	memset(tmp, 0, sizeof *tmp);
-	tp = ((char *)tmp) + sizeof *tmp;
-
-	/* Name */
-	strcpy(tp, name);
-	tmp->name = tp;
-	tp += strlen(tp) + 1;
-
-	/* Host */
-	if (!(np = strchr(cp, ',')))
-		goto cleanup;
-	*np++ = '\0';
-	strcpy(tp, cp);
-	tmp->host = tp;
-	tp += strlen(tp) + 1;
-	cp = np;
-
-	/* User */
-	if (!(np = strchr(cp, ',')))
-		goto cleanup;
-	*np++ = '\0';
-	strcpy(tp, cp);
-	tmp->user = tp;
-	tp += strlen(tp) + 1;
-	cp = np;
-
-	/* Domain */
-	if (!(np = strchr(cp, ')')))
-		goto cleanup;
-	*np++ = '\0';
-	strcpy(tp, cp);
-	tmp->domain = tp;
-
-	/*
-	 * Empty string in file means wildcard, but
-	 * NULL string in return value means wildcard.
-	 */
-	if (!*tmp->host)
-		tmp->host = NULL;
-	if (!*tmp->user)
-		tmp->user = NULL;
-	if (!*tmp->domain)
-		tmp->domain = NULL;
-
-	/* Add to list (LIFO). */
-	tmp->next = pvt->tmp;
-	pvt->tmp = tmp;
-	return;
-
- cleanup:
-	free(tmp);
-}
-
-static void
-tmpfree(struct pvt *pvt) {
-	struct tmpgrp *cur, *next;
-
-	if (pvt->tmpgroup) {
-		free(pvt->tmpgroup);
-		pvt->tmpgroup = NULL;
-	}
-	for (cur = pvt->tmp; cur; cur = next) {
-		next = cur->next;
-		free(cur);
-	}
-	pvt->tmp = NULL;
-}
-
-#endif /*WANT_IRS_NIS*/
diff --git a/contrib/bind/lib/irs/nis_nw.c b/contrib/bind/lib/irs/nis_nw.c
deleted file mode 100644
index 72ec391277b0d..0000000000000
--- a/contrib/bind/lib/irs/nis_nw.c
+++ /dev/null
@@ -1,379 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_nw.c,v 1.15 1999/01/18 07:46:58 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_NIS
-static int __bind_irs_nis_unneeded;
-#else
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-#define MAXALIASES 35
-#define MAXADDRSIZE 4
-
-struct pvt {
-	int		needrewind;
-	char *		nis_domain;
-	char *		curkey_data;
-	int		curkey_len;
-	char *		curval_data;
-	int		curval_len;
-
-	struct nwent 	nwent;
-	char *		nwbuf;
-
-	char *		aliases[MAXALIASES + 1];
-	u_char		addr[MAXADDRSIZE];
-
-	struct __res_state *  res;
-	void		(*free_res)(void *);
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static /*const*/ char networks_byname[] = "networks.byname";
-static /*const*/ char networks_byaddr[] = "networks.byaddr";
-
-/* Forward */
-
-static void 		nw_close(struct irs_nw *);
-static struct nwent *	nw_byname(struct irs_nw *, const char *, int);
-static struct nwent *	nw_byaddr(struct irs_nw *, void *, int, int);
-static struct nwent *	nw_next(struct irs_nw *);
-static void		nw_rewind(struct irs_nw *);
-static void		nw_minimize(struct irs_nw *);
-static struct __res_state * nw_res_get(struct irs_nw *this);
-static void		nw_res_set(struct irs_nw *this,
-				   struct __res_state *res,
-				   void (*free_res)(void *));
-
-static struct nwent *	makenwent(struct irs_nw *this);
-static void		nisfree(struct pvt *, enum do_what);
-static int		init(struct irs_nw *this);
-
-/* Public */
-
-struct irs_nw *
-irs_nis_nw(struct irs_acc *this) {
-	struct irs_nw *nw;
-	struct pvt *pvt;
-
-	if (!(pvt = memget(sizeof *pvt))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	if (!(nw = memget(sizeof *nw))) {
-		memput(pvt, sizeof *pvt);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(nw, 0x5e, sizeof *nw);
-	pvt->needrewind = 1;
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	nw->private = pvt;
-	nw->close = nw_close;
-	nw->byname = nw_byname;
-	nw->byaddr = nw_byaddr;
-	nw->next = nw_next;
-	nw->rewind = nw_rewind;
-	nw->minimize = nw_minimize;
-	nw->res_get = nw_res_get;
-	nw->res_set = nw_res_set;
-	return (nw);
-}
-
-/* Methods */
-
-static void
-nw_close(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;	
-
-	nw_minimize(this);
-	if (pvt->res && pvt->free_res)
-		(*pvt->free_res)(pvt->res);
-	if (pvt->nwbuf)
-		free(pvt->nwbuf);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct nwent *
-nw_byaddr(struct irs_nw *this, void *net, int length, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char tmp[sizeof "255.255.255.255/32"], *t;
-	int r;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	if (af != AF_INET) {
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-	nisfree(pvt, do_val);
-	/* Try it with /CIDR first. */
-	if (inet_net_ntop(AF_INET, net, length, tmp, sizeof tmp) == NULL) {
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		return (NULL);
-	}
-	r = yp_match(pvt->nis_domain, networks_byaddr, tmp, strlen(tmp),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		/* Give it a shot without the /CIDR. */
-		if ((t = strchr(tmp, '/')) != NULL) {
-			*t = '\0';
-			r = yp_match(pvt->nis_domain, networks_byaddr,
-				     tmp, strlen(tmp),
-				     &pvt->curval_data, &pvt->curval_len);
-		}
-		if (r != 0) {
-			RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-			return (NULL);
-		}
-	}
-	return (makenwent(this));
-}
-
-static struct nwent *
-nw_byname(struct irs_nw *this, const char *name, int af) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int r;
-	
-	if (init(this) == -1)
-		return (NULL);
-
-	if (af != AF_INET) {
-		RES_SET_H_ERRNO(pvt->res, NETDB_INTERNAL);
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-	nisfree(pvt, do_val);
-	r = yp_match(pvt->nis_domain, networks_byname, (char *)name,
-		     strlen(name), &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-		return (NULL);
-	}
-	return (makenwent(this));
-}
-
-static void
-nw_rewind(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->needrewind = 1;
-}
-
-static struct nwent *
-nw_next(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct nwent *rval;
-	int r;
-
-	if (init(this) == -1)
-		return (NULL);
-
-	do {
-		if (pvt->needrewind) {
-			nisfree(pvt, do_all);
-			r = yp_first(pvt->nis_domain, networks_byaddr,
-				     &pvt->curkey_data, &pvt->curkey_len,
-				     &pvt->curval_data, &pvt->curval_len);
-			pvt->needrewind = 0;
-		} else {
-			char *newkey_data;
-			int newkey_len;
-
-			nisfree(pvt, do_val);
-			r = yp_next(pvt->nis_domain, networks_byaddr,
-				    pvt->curkey_data, pvt->curkey_len,
-				    &newkey_data, &newkey_len,
-				    &pvt->curval_data, &pvt->curval_len);
-			nisfree(pvt, do_key);
-			pvt->curkey_data = newkey_data;
-			pvt->curkey_len = newkey_len;
-		}
-		if (r != 0) {
-			RES_SET_H_ERRNO(pvt->res, HOST_NOT_FOUND);
-			return (NULL);
-		}
-		rval = makenwent(this);
-	} while (rval == NULL);
-	return (rval);
-}
-
-static void
-nw_minimize(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res)
-		res_nclose(pvt->res);
-}
-
-static struct __res_state *
-nw_res_get(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (!pvt->res) {
-		struct __res_state *res;
-		res = (struct __res_state *)malloc(sizeof *res);
-		if (!res) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		memset(res, 0, sizeof *res);
-		nw_res_set(this, res, free);
-	}
-
-	return (pvt->res);
-}
-
-static void
-nw_res_set(struct irs_nw *this, struct __res_state *res,
-		void (*free_res)(void *)) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	if (pvt->res && pvt->free_res) {
-		res_nclose(pvt->res);
-		(*pvt->free_res)(pvt->res);
-	}
-
-	pvt->res = res;
-	pvt->free_res = free_res;
-}
-
-/* Private */
-
-static struct nwent *
-makenwent(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	static const char spaces[] = " \t";
-	char *t, *cp, **ap;
-
-	if (pvt->nwbuf)
-		free(pvt->nwbuf);
-	pvt->nwbuf = pvt->curval_data;
-	pvt->curval_data = NULL;
-
-	if ((cp = strpbrk(pvt->nwbuf, "#\n")) != NULL)
-		*cp = '\0';
-	cp = pvt->nwbuf;
-
-	/* Name */
-	pvt->nwent.n_name = cp;
-	cp += strcspn(cp, spaces);
-	if (!*cp)
-		goto cleanup;
-	*cp++ = '\0';
-	cp += strspn(cp, spaces);
-
-	/* Network */
-	pvt->nwent.n_addrtype = AF_INET;
-	t = cp + strcspn(cp, spaces);
-	if (*t)
-		*t++ = '\0';
-	pvt->nwent.n_length = inet_net_pton(AF_INET, cp,
-					    pvt->addr, sizeof pvt->addr);
-	if (pvt->nwent.n_length < 0)
-		goto cleanup;
-	pvt->nwent.n_addr = pvt->addr;
-	cp = t;
-
-	/* Aliases */
-	ap = pvt->nwent.n_aliases = pvt->aliases;
-	while (*cp) {
-		if (ap >= &pvt->aliases[MAXALIASES])
-			break;
-		*ap++ = cp;
-		cp += strcspn(cp, spaces);
-		if (!*cp)
-			break;
-		*cp++ = '\0';
-		cp += strspn(cp, spaces);
-	}
-	*ap = NULL;
-
-	return (&pvt->nwent);
-
- cleanup:
-	if (pvt->nwbuf) {
-		free(pvt->nwbuf);
-		pvt->nwbuf = NULL;
-	}
-	return (NULL);
-}
-
-static void
-nisfree(struct pvt *pvt, enum do_what do_what) {
-	if ((do_what & do_key) && pvt->curkey_data) {
-		free(pvt->curkey_data);
-		pvt->curkey_data = NULL;
-	}
-	if ((do_what & do_val) && pvt->curval_data) {
-		free(pvt->curval_data);
-		pvt->curval_data = NULL;
-	}
-}
-
-static int
-init(struct irs_nw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (!pvt->res && !nw_res_get(this))
-		return (-1);
-	if (((pvt->res->options & RES_INIT) == 0) &&
-	    res_ninit(pvt->res) == -1)
-		return (-1);
-	return (0);
-}
-
-#endif /*WANT_IRS_NIS*/
diff --git a/contrib/bind/lib/irs/nis_p.h b/contrib/bind/lib/irs/nis_p.h
deleted file mode 100644
index d3dc12652ba41..0000000000000
--- a/contrib/bind/lib/irs/nis_p.h
+++ /dev/null
@@ -1,46 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: nis_p.h,v 1.6 1999/01/08 19:25:03 vixie Exp $
- */
-
-/*
- * nis_p.h - private include file for the NIS functions.
- */
-
-/*
- * Object state.
- */
-struct nis_p {
-	char *			domain;
-	struct __res_state *	res;
-	void                    (*free_res) __P((void *));
-};
-
-
-/*
- * Methods.
- */
-
-extern struct irs_gr *	irs_nis_gr __P((struct irs_acc *));
-extern struct irs_pw *	irs_nis_pw __P((struct irs_acc *));
-extern struct irs_sv *	irs_nis_sv __P((struct irs_acc *));
-extern struct irs_pr *	irs_nis_pr __P((struct irs_acc *));
-extern struct irs_ho *	irs_nis_ho __P((struct irs_acc *));
-extern struct irs_nw *	irs_nis_nw __P((struct irs_acc *));
-extern struct irs_ng *	irs_nis_ng __P((struct irs_acc *));
diff --git a/contrib/bind/lib/irs/nis_pr.c b/contrib/bind/lib/irs/nis_pr.c
deleted file mode 100644
index 8dff084bdc2b9..0000000000000
--- a/contrib/bind/lib/irs/nis_pr.c
+++ /dev/null
@@ -1,294 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_pr.c,v 1.13 1999/01/18 07:46:59 vixie Exp $";
-#endif
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_NIS
-static int __bind_irs_nis_unneeded;
-#else
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <stdio.h>
-#include <string.h>
-#include <netdb.h>
-#include <ctype.h>
-#include <stdlib.h>
-#include <errno.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-struct pvt {
-	int		needrewind;
-	char *		nis_domain;
-	char *		curkey_data;
-	int		curkey_len;
-	char *		curval_data;
-	int		curval_len;
-	struct protoent	proto;
-	char *		prbuf;
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static /*const*/ char protocols_byname[] =	"protocols.byname";
-static /*const*/ char protocols_bynumber[] =	"protocols.bynumber";
-
-/* Forward */
-
-static void 			pr_close(struct irs_pr *);
-static struct protoent *	pr_byname(struct irs_pr *, const char *);
-static struct protoent *	pr_bynumber(struct irs_pr *, int);
-static struct protoent *	pr_next(struct irs_pr *);
-static void			pr_rewind(struct irs_pr *);
-static void			pr_minimize(struct irs_pr *);
-
-static struct protoent *	makeprotoent(struct irs_pr *this);
-static void			nisfree(struct pvt *, enum do_what);
-
-/* Public */
-
-struct irs_pr *
-irs_nis_pr(struct irs_acc *this) {
-	struct irs_pr *pr;
-	struct pvt *pvt;
-
-	if (!(pr = memget(sizeof *pr))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pr, 0x5e, sizeof *pr);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(pr, sizeof *pr);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->needrewind = 1;
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	pr->private = pvt;
-	pr->byname = pr_byname;
-	pr->bynumber = pr_bynumber;
-	pr->next = pr_next;
-	pr->rewind = pr_rewind;
-	pr->close = pr_close;
-	pr->minimize = pr_minimize;
-	pr->res_get = NULL;
-	pr->res_set = NULL;
-	return (pr);
-}
-
-/* Methods. */
-
-static void
-pr_close(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	nisfree(pvt, do_all);
-	if (pvt->proto.p_aliases)
-		free(pvt->proto.p_aliases);
-	if (pvt->prbuf)
-		free(pvt->prbuf);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct protoent *
-pr_byname(struct irs_pr *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int r;
-	
-	nisfree(pvt, do_val);
-	r = yp_match(pvt->nis_domain, protocols_byname, (char *)name,
-		     strlen(name), &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		errno = ENOENT;
-		return (NULL);
-	}
-	return (makeprotoent(this));
-}
-
-static struct protoent *
-pr_bynumber(struct irs_pr *this, int num) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char tmp[sizeof "-4294967295"];
-	int r;
-	
-	nisfree(pvt, do_val);
-	(void) sprintf(tmp, "%d", num);
-	r = yp_match(pvt->nis_domain, protocols_bynumber, tmp, strlen(tmp),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		errno = ENOENT;
-		return (NULL);
-	}
-	return (makeprotoent(this));
-}
-
-static struct protoent *
-pr_next(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct protoent *rval;
-	int r;
-
-	do {
-		if (pvt->needrewind) {
-			nisfree(pvt, do_all);
-			r = yp_first(pvt->nis_domain, protocols_bynumber,
-				     &pvt->curkey_data, &pvt->curkey_len,
-				     &pvt->curval_data, &pvt->curval_len);
-			pvt->needrewind = 0;
-		} else {
-			char *newkey_data;
-			int newkey_len;
-
-			nisfree(pvt, do_val);
-			r = yp_next(pvt->nis_domain, protocols_bynumber,
-				    pvt->curkey_data, pvt->curkey_len,
-				    &newkey_data, &newkey_len,
-				    &pvt->curval_data, &pvt->curval_len);
-			nisfree(pvt, do_key);
-			pvt->curkey_data = newkey_data;
-			pvt->curkey_len = newkey_len;
-		}
-		if (r != 0) {
-			errno = ENOENT;
-			return (NULL);
-		}
-		rval = makeprotoent(this);
-	} while (rval == NULL);
-	return (rval);
-}
-
-static void
-pr_rewind(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->needrewind = 1;
-}
-
-static void
-pr_minimize(struct irs_pr *this) {
-	/* NOOP */
-}
-
-/* Private */
-
-static struct protoent *
-makeprotoent(struct irs_pr *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *p, **t;
-	int n, m;
-
-	if (pvt->prbuf)
-		free(pvt->prbuf);
-	pvt->prbuf = pvt->curval_data;
-	pvt->curval_data = NULL;
-
-	for (p = pvt->prbuf; *p && *p != '#'; p++)
-		NULL;
-	while (p > pvt->prbuf && isspace(p[-1]))
-		p--;
-	*p = '\0';
-
-	p = pvt->prbuf;
-	n = m = 0;
-
-	pvt->proto.p_name = p;
-	while (*p && !isspace(*p))
-		p++;
-	if (!*p)
-		return (NULL);
-	*p++ = '\0';
-
-	while (*p && isspace(*p))
-		p++;
-	pvt->proto.p_proto = atoi(p);
-	while (*p && !isspace(*p))
-		p++;
-	*p++ = '\0';
-
-	while (*p) {
-		if ((n + 1) >= m || !pvt->proto.p_aliases) {
-			m += 10;
-			t = realloc(pvt->proto.p_aliases,
-				      m * sizeof(char *));
-			if (!t) {
-				errno = ENOMEM;
-				goto cleanup;
-			}
-			pvt->proto.p_aliases = t;
-		}
-		pvt->proto.p_aliases[n++] = p;
-		while (*p && !isspace(*p))
-			p++;
-		if (*p)
-			*p++ = '\0';
-	}
-	if (!pvt->proto.p_aliases)
-		pvt->proto.p_aliases = malloc(sizeof(char *));
-	if (!pvt->proto.p_aliases)
-		goto cleanup;
-	pvt->proto.p_aliases[n] = NULL;
-	return (&pvt->proto);
-	
- cleanup:
-	if (pvt->proto.p_aliases) {
-		free(pvt->proto.p_aliases);
-		pvt->proto.p_aliases = NULL;
-	}
-	if (pvt->prbuf) {
-		free(pvt->prbuf);
-		pvt->prbuf = NULL;
-	}
-	return (NULL);
-}
-
-static void
-nisfree(struct pvt *pvt, enum do_what do_what) {
-	if ((do_what & do_key) && pvt->curkey_data) {
-		free(pvt->curkey_data);
-		pvt->curkey_data = NULL;
-	}
-	if ((do_what & do_val) && pvt->curval_data) {
-		free(pvt->curval_data);
-		pvt->curval_data = NULL;
-	}
-}
-
-#endif /*WANT_IRS_NIS*/
diff --git a/contrib/bind/lib/irs/nis_pw.c b/contrib/bind/lib/irs/nis_pw.c
deleted file mode 100644
index ce90f203bf265..0000000000000
--- a/contrib/bind/lib/irs/nis_pw.c
+++ /dev/null
@@ -1,282 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_pw.c,v 1.16 1999/01/30 00:53:16 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#if !defined(WANT_IRS_PW) || !defined(WANT_IRS_NIS)
-static int __bind_irs_pw_unneeded;
-#else
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <isc/memcluster.h>
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <pwd.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <isc/memcluster.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-struct pvt {
-	int		needrewind;
-	char *		nis_domain;
-	char *		curkey_data;
-	int		curkey_len;
-	char *		curval_data;
-	int		curval_len;
-	struct passwd 	passwd;
-	char *		pwbuf;
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static /*const*/ char passwd_byname[] =	"passwd.byname";
-static /*const*/ char passwd_byuid[] =	"passwd.byuid";
-
-/* Forward */
-
-static void			pw_close(struct irs_pw *);
-static struct passwd *		pw_next(struct irs_pw *);
-static struct passwd *		pw_byname(struct irs_pw *, const char *);
-static struct passwd *		pw_byuid(struct irs_pw *, uid_t);
-static void			pw_rewind(struct irs_pw *);
-static void			pw_minimize(struct irs_pw *);
-
-static struct passwd *		makepasswdent(struct irs_pw *);
-static void			nisfree(struct pvt *, enum do_what);
-
-/* Public */
-
-struct irs_pw *
-irs_nis_pw(struct irs_acc *this) {
-	struct irs_pw *pw;
-	struct pvt *pvt;
-		 
-        if (!(pw = memget(sizeof *pw))) {
-                errno = ENOMEM;
-                return (NULL);
-        }
-        memset(pw, 0x5e, sizeof *pw);
-        if (!(pvt = memget(sizeof *pvt))) {
-                memput(pw, sizeof *pw);
-                errno = ENOMEM;
-                return (NULL);
-        }
-        memset(pvt, 0, sizeof *pvt);
-	pvt->needrewind = 1;
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	pw->private = pvt;
-	pw->close = pw_close;
-	pw->next = pw_next;
-	pw->byname = pw_byname;
-	pw->byuid = pw_byuid;
-	pw->rewind = pw_rewind;
-	pw->minimize = pw_minimize;
-	pw->res_get = NULL;
-	pw->res_set = NULL;
-	return (pw);
-}
-
-/* Methods */
-
-static void
-pw_close(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	if (pvt->pwbuf)
-		free(pvt->pwbuf);
-	nisfree(pvt, do_all);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct passwd *
-pw_next(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct passwd *rval;
-	int r;
-
-	do {
-		if (pvt->needrewind) {
-			nisfree(pvt, do_all);
-			r = yp_first(pvt->nis_domain, passwd_byname,
-				     &pvt->curkey_data, &pvt->curkey_len,
-				     &pvt->curval_data, &pvt->curval_len);
-			pvt->needrewind = 0;
-		} else {
-			char *newkey_data;
-			int newkey_len;
-
-			nisfree(pvt, do_val);
-			r = yp_next(pvt->nis_domain, passwd_byname,
-				    pvt->curkey_data, pvt->curkey_len,
-				    &newkey_data, &newkey_len,
-				    &pvt->curval_data, &pvt->curval_len);
-			nisfree(pvt, do_key);
-			pvt->curkey_data = newkey_data;
-			pvt->curkey_len = newkey_len;
-		}
-		if (r != 0) {
-			errno = ENOENT;
-			return (NULL);
-		}
-		rval = makepasswdent(this);
-	} while (rval == NULL);
-	return (rval);
-}
-
-static struct passwd *
-pw_byname(struct irs_pw *this, const char *name) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	int r;
-
-	nisfree(pvt, do_val);
-	r = yp_match(pvt->nis_domain, passwd_byname, name, strlen(name),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		errno = ENOENT;
-		return (NULL);
-	}
-	return (makepasswdent(this));
-}
-
-static struct passwd *
-pw_byuid(struct irs_pw *this, uid_t uid) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char tmp[sizeof "4294967295"];
-	int r;
-
-	nisfree(pvt, do_val);
-	(void) sprintf(tmp, "%u", (unsigned int)uid);
-	r = yp_match(pvt->nis_domain, passwd_byuid, tmp, strlen(tmp),
-		     &pvt->curval_data, &pvt->curval_len);
-	if (r != 0) {
-		errno = ENOENT;
-		return (NULL);
-	}
-	return (makepasswdent(this));
-}
-
-static void
-pw_rewind(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->needrewind = 1;
-}
-
-static void
-pw_minimize(struct irs_pw *this) {
-	/* NOOP */
-}
-
-/* Private */
-
-static struct passwd *
-makepasswdent(struct irs_pw *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	char *cp;
-
-	memset(&pvt->passwd, 0, sizeof pvt->passwd);
-	if (pvt->pwbuf)
-		free(pvt->pwbuf);
-	pvt->pwbuf = pvt->curval_data;
-	pvt->curval_data = NULL;
-
-	cp = pvt->pwbuf;
-	pvt->passwd.pw_name = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	pvt->passwd.pw_class = cp;	/* Needs to point at a \0. */
-	*cp++ = '\0';
-
-	pvt->passwd.pw_passwd = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-	
-	pvt->passwd.pw_uid = atoi(cp);
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_gid = atoi(cp);
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_gecos = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_dir = cp;
-	if (!(cp = strchr(cp, ':')))
-		goto cleanup;
-	*cp++ = '\0';
-
-	pvt->passwd.pw_shell = cp;
-
-	if ((cp = strchr(cp, '\n')) != NULL)
-		*cp = '\0';
-
-	return (&pvt->passwd);
-	
- cleanup:
-	free(pvt->pwbuf);
-	pvt->pwbuf = NULL;
-	return (NULL);
-}
-
-static void
-nisfree(struct pvt *pvt, enum do_what do_what) {
-	if ((do_what & do_key) && pvt->curkey_data) {
-		free(pvt->curkey_data);
-		pvt->curkey_data = NULL;
-	}
-	if ((do_what & do_val) && pvt->curval_data) {
-		free(pvt->curval_data);
-		pvt->curval_data = NULL;
-	}
-}
-
-#endif /* WANT_IRS_PW && WANT_IRS_NIS */
diff --git a/contrib/bind/lib/irs/nis_sv.c b/contrib/bind/lib/irs/nis_sv.c
deleted file mode 100644
index 8810fd267f0eb..0000000000000
--- a/contrib/bind/lib/irs/nis_sv.c
+++ /dev/null
@@ -1,304 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nis_sv.c,v 1.14 1999/01/18 07:46:59 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/* Imports */
-
-#include "port_before.h"
-
-#ifndef WANT_IRS_NIS
-static int __bind_irs_nis_unneeded;
-#else
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <sys/socket.h>
-#include <rpc/rpc.h>
-#include <rpc/xdr.h>
-#include <rpcsvc/yp_prot.h>
-#include <rpcsvc/ypclnt.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/memcluster.h>
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "nis_p.h"
-
-/* Definitions */
-
-struct pvt {
-	int		needrewind;
-	char *		nis_domain;
-	char *		curkey_data;
-	int		curkey_len;
-	char *		curval_data;
-	int		curval_len;
-	char		line[BUFSIZ+1];
-	struct servent	serv;
-	char *		svbuf;
-};
-
-enum do_what { do_none = 0x0, do_key = 0x1, do_val = 0x2, do_all = 0x3 };
-
-static /*const*/ char services_byname[] = "services.byname";
-
-/* Forward */
-
-static void			sv_close(struct irs_sv*);
-static struct servent *		sv_next(struct irs_sv *);
-static struct servent *		sv_byname(struct irs_sv *, const char *,
-					  const char *);
-static struct servent *		sv_byport(struct irs_sv *, int, const char *);
-static void			sv_rewind(struct irs_sv *);
-static void			sv_minimize(struct irs_sv *);
-
-static struct servent *		makeservent(struct irs_sv *this);
-static void			nisfree(struct pvt *, enum do_what);
-
-/* Public */
-
-struct irs_sv *
-irs_nis_sv(struct irs_acc *this) {
-	struct irs_sv *sv;
-	struct pvt *pvt;
-	
-	if (!(sv = memget(sizeof *sv))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(sv, 0x5e, sizeof *sv);
-	if (!(pvt = memget(sizeof *pvt))) {
-		memput(sv, sizeof *sv);
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(pvt, 0, sizeof *pvt);
-	pvt->needrewind = 1;
-	pvt->nis_domain = ((struct nis_p *)this->private)->domain;
-	sv->private = pvt;
-	sv->close = sv_close;
-	sv->next = sv_next;
-	sv->byname = sv_byname;
-	sv->byport = sv_byport;
-	sv->rewind = sv_rewind;
-	sv->minimize = sv_minimize;
-	sv->res_get = NULL;
-	sv->res_set = NULL;
-	return (sv);
-}
-
-/* Methods */
-
-static void
-sv_close(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	
-	nisfree(pvt, do_all);
-	if (pvt->serv.s_aliases)
-		free(pvt->serv.s_aliases);
-	if (pvt->svbuf)
-		free(pvt->svbuf);
-	memput(pvt, sizeof *pvt);
-	memput(this, sizeof *this);
-}
-
-static struct servent *
-sv_byname(struct irs_sv *this, const char *name, const char *proto) {
-	struct servent *serv;
-	char **sap;
-
-	sv_rewind(this);
-	while ((serv = sv_next(this)) != NULL) {
-		if (proto != NULL && strcmp(proto, serv->s_proto))
-			continue;
-		if (!strcmp(name, serv->s_name))
-			break;
-		for (sap = serv->s_aliases; sap && *sap; sap++)
-			if (!strcmp(name, *sap))
-				break;
-	}
-	return (serv);
-}
-
-static struct servent *
-sv_byport(struct irs_sv *this, int port, const char *proto) {
-	struct servent *serv;
-
-	sv_rewind(this);
-	while ((serv = sv_next(this)) != NULL) {
-		if (proto != NULL && strcmp(proto, serv->s_proto))
-			continue;
-		if (serv->s_port == port)
-			break;
-	}
-	return (serv);
-}
-
-static void
-sv_rewind(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-
-	pvt->needrewind = 1;
-}
-
-static struct servent *
-sv_next(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	struct servent *rval;
-	int r;
-
-	do {
-		if (pvt->needrewind) {
-			nisfree(pvt, do_all);
-			r = yp_first(pvt->nis_domain, services_byname,
-				     &pvt->curkey_data, &pvt->curkey_len,
-				     &pvt->curval_data, &pvt->curval_len);
-			pvt->needrewind = 0;
-		} else {
-			char *newkey_data;
-			int newkey_len;
-
-			nisfree(pvt, do_val);
-			r = yp_next(pvt->nis_domain, services_byname,
-				    pvt->curkey_data, pvt->curkey_len,
-				    &newkey_data, &newkey_len,
-				    &pvt->curval_data, &pvt->curval_len);
-			nisfree(pvt, do_key);
-			pvt->curkey_data = newkey_data;
-			pvt->curkey_len = newkey_len;
-		}
-		if (r != 0) {
-			errno = ENOENT;
-			return (NULL);
-		}
-		rval = makeservent(this);
-	} while (rval == NULL);
-	return (rval);
-}
-
-static void
-sv_minimize(struct irs_sv *this) {
-	/* NOOP */
-}
-
-/* Private */
-
-static struct servent *
-makeservent(struct irs_sv *this) {
-	struct pvt *pvt = (struct pvt *)this->private;
-	static const char spaces[] = " \t";
-	char *p, **t;
-	int n, m;
-
-	if (pvt->svbuf)
-		free(pvt->svbuf);
-	pvt->svbuf = pvt->curval_data;
-	pvt->curval_data = NULL;
-
-	if (pvt->serv.s_aliases) {
-		free(pvt->serv.s_aliases);
-		pvt->serv.s_aliases = NULL;
-	}
-
-	if ((p = strpbrk(pvt->svbuf, "#\n")))
-		*p = '\0';
-
-	p = pvt->svbuf;
-
-	pvt->serv.s_name = p;
-	p += strcspn(p, spaces);
-	if (!*p)
-		goto cleanup;
-	*p++ = '\0';
-	p += strspn(p, spaces);
-
-	pvt->serv.s_port = htons((u_short) atoi(p));
-	pvt->serv.s_proto = NULL;
-	
-	while (*p && !isspace(*p))
-		if (*p++ == '/')
-			pvt->serv.s_proto = p;
-	if (!pvt->serv.s_proto)
-		goto cleanup;
-	if (*p) {
-		*p++ = '\0';
-		p += strspn(p, spaces);
-	}
-
-	n = m = 0;
-	while (*p) {
-		if ((n + 1) >= m || !pvt->serv.s_aliases) {
-			m += 10;
-			t = realloc(pvt->serv.s_aliases, m * sizeof(char *));
-			if (!t) {
-				errno = ENOMEM;
-				goto cleanup;
-			}
-			pvt->serv.s_aliases = t;
-		}
-		pvt->serv.s_aliases[n++] = p;
-		p += strcspn(p, spaces);
-		if (!*p)
-			break;
-		*p++ = '\0';
-		p += strspn(p, spaces);
-	}
-	if (!pvt->serv.s_aliases)
-		pvt->serv.s_aliases = malloc(sizeof(char *));
-	if (!pvt->serv.s_aliases)
-		goto cleanup;
-	pvt->serv.s_aliases[n] = NULL;
-	return (&pvt->serv);
-	
- cleanup:
-	if (pvt->serv.s_aliases) {
-		free(pvt->serv.s_aliases);
-		pvt->serv.s_aliases = NULL;
-	}
-	if (pvt->svbuf) {
-		free(pvt->svbuf);
-		pvt->svbuf = NULL;
-	}
-	return (NULL);
-}
-
-static void
-nisfree(struct pvt *pvt, enum do_what do_what) {
-	if ((do_what & do_key) && pvt->curkey_data) {
-		free(pvt->curkey_data);
-		pvt->curkey_data = NULL;
-	}
-	if ((do_what & do_val) && pvt->curval_data) {
-		free(pvt->curval_data);
-		pvt->curval_data = NULL;
-	}
-}
-
-#endif /*WANT_IRS_NIS*/
diff --git a/contrib/bind/lib/irs/nul_ng.c b/contrib/bind/lib/irs/nul_ng.c
deleted file mode 100644
index cc5c80177c59d..0000000000000
--- a/contrib/bind/lib/irs/nul_ng.c
+++ /dev/null
@@ -1,109 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: nul_ng.c,v 1.10 1999/01/18 07:46:59 vixie Exp $";
-#endif
-
-/*
- * nul_ng.c - the netgroup accessor null map
- */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <stdio.h>
-#include <string.h>
-#include <netdb.h>
-#include <ctype.h>
-#include <stdlib.h>
-#include <errno.h>
-
-#include <irs.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-#include "hesiod.h"
-#include "dns_p.h"
-
-/* Forward. */
-
-static void 		ng_close(struct irs_ng *);
-static int		ng_next(struct irs_ng *, char **, char **, char **);
-static int		ng_test(struct irs_ng *,
- 				const char *, const char *,
-				const char *, const char *);
-static void		ng_rewind(struct irs_ng *, const char *);
-static void		ng_minimize(struct irs_ng *);
-
-/* Public. */
-
-struct irs_ng *
-irs_nul_ng(struct irs_acc *this) {
-	struct irs_ng *ng;
-
-	if (!(ng = memget(sizeof *ng))) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	memset(ng, 0x5e, sizeof *ng);
-	ng->private = NULL;
-	ng->close = ng_close;
-	ng->next = ng_next;
-	ng->test = ng_test;
-	ng->rewind = ng_rewind;
-	ng->minimize = ng_minimize;
-	return (ng);
-}
-
-/* Methods. */
-
-static void
-ng_close(struct irs_ng *this) {
-	memput(this, sizeof *this);
-}
-
-/* ARGSUSED */
-static int
-ng_next(struct irs_ng *this, char **host, char **user, char **domain) {
-	errno = ENOENT;
-	return (-1);
-}
-
-static int
-ng_test(struct irs_ng *this, const char *name,
-	const char *user, const char *host, const char *domain)
-{
-	errno = ENODEV;
-	return (-1);
-}
-
-static void
-ng_rewind(struct irs_ng *this, const char *netgroup) {
-	/* NOOP */
-}
-
-static void
-ng_minimize(struct irs_ng *this) {
-	/* NOOP */
-}
diff --git a/contrib/bind/lib/irs/pathnames.h b/contrib/bind/lib/irs/pathnames.h
deleted file mode 100644
index 1a225e509a1ae..0000000000000
--- a/contrib/bind/lib/irs/pathnames.h
+++ /dev/null
@@ -1,50 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * $Id: pathnames.h,v 1.7 1999/01/08 19:25:10 vixie Exp $
- */
-
-#ifndef _PATH_IRS_CONF
-#define	_PATH_IRS_CONF "/etc/irs.conf"
-#endif
-
-#ifndef _PATH_NETWORKS 
-#define _PATH_NETWORKS  "/etc/networks"
-#endif
-
-#ifndef _PATH_GROUP
-#define _PATH_GROUP "/etc/group"
-#endif
-
-#ifndef _PATH_NETGROUP
-#define _PATH_NETGROUP "/etc/netgroup"
-#endif
-
-#ifndef _PATH_SERVICES 
-#define _PATH_SERVICES "/etc/services"
-#endif
-
-#ifdef IRS_LCL_SV_DB
-#ifndef _PATH_SERVICES_DB
-#define	_PATH_SERVICES_DB _PATH_SERVICES ".db"
-#endif
-#endif
-
-#ifndef _PATH_HESIOD_CONF
-#define _PATH_HESIOD_CONF "/etc/hesiod.conf"
-#endif
diff --git a/contrib/bind/lib/irs/util.c b/contrib/bind/lib/irs/util.c
deleted file mode 100644
index 1d097c6b8561b..0000000000000
--- a/contrib/bind/lib/irs/util.c
+++ /dev/null
@@ -1,107 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: util.c,v 1.11 2000/02/04 08:28:33 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#include <irs.h>
-
-#include "port_after.h"
-
-#include "irs_p.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) sprintf x
-#endif
-
-void
-map_v4v6_address(const char *src, char *dst) {
-	u_char *p = (u_char *)dst;
-	char tmp[NS_INADDRSZ];
-	int i;
-
-	/* Stash a temporary copy so our caller can update in place. */
-	memcpy(tmp, src, NS_INADDRSZ);
-	/* Mark this ipv6 addr as a mapped ipv4. */
-	for (i = 0; i < 10; i++)
-		*p++ = 0x00;
-	*p++ = 0xff;
-	*p++ = 0xff;
-	/* Retrieve the saved copy and we're done. */
-	memcpy((void*)p, tmp, NS_INADDRSZ);
-}
-
-int
-make_group_list(struct irs_gr *this, const char *name,
-	gid_t basegid, gid_t *groups, int *ngroups)
-{
-	struct group *grp;
-	int i, ng;
-	int ret, maxgroups;
-
-	ret = -1;
-	ng = 0;
-	maxgroups = *ngroups;
-	/*
-	 * When installing primary group, duplicate it;
-	 * the first element of groups is the effective gid
-	 * and will be overwritten when a setgid file is executed.
-	 */
-	if (ng >= maxgroups)
-		goto done;
-	groups[ng++] = basegid;
-	if (ng >= maxgroups)
-		goto done;
-	groups[ng++] = basegid;
-	/*
-	 * Scan the group file to find additional groups.
-	 */
-	(*this->rewind)(this);
-	while ((grp = (*this->next)(this)) != NULL) {
-		if (grp->gr_gid == basegid)
-			continue;
-		for (i = 0; grp->gr_mem[i]; i++) {
-			if (!strcmp(grp->gr_mem[i], name)) {
-				if (ng >= maxgroups)
-					goto done;
-				groups[ng++] = grp->gr_gid;
-				break;
-			}
-		}
-	}
-	ret = 0;
- done:
-	*ngroups = ng;
-	return (ret);
-}
diff --git a/contrib/bind/lib/isc/Makefile b/contrib/bind/lib/isc/Makefile
deleted file mode 100644
index 364c442bb3988..0000000000000
--- a/contrib/bind/lib/isc/Makefile
+++ /dev/null
@@ -1,96 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 8.25 2000/02/29 03:38:23 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBBINDR = ../${TOP}/lib/libbind_r.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-# -Wimplicit
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-THREADED= threaded
-
-SRCS=	tree.c base64.c bitncmp.c assertions.c \
-	memcluster.c logging.c heap.c \
-	ctl_p.c ctl_srvr.c ctl_clnt.c \
-	eventlib.c ev_connects.c ev_files.c \
-	ev_timers.c ev_streams.c ev_waits.c
-
-OBJS=	tree.${O} base64.${O} bitncmp.${O} assertions.${O} \
-	memcluster.${O} logging.${O} heap.${O} \
-	ctl_p.${O} ctl_srvr.${O} ctl_clnt.${O} \
-	eventlib.${O} ev_connects.${O} ev_files.${O} \
-	ev_timers.${O} ev_streams.${O} ev_waits.${O}
-
-all: ${LIBBIND}
-
-${LIBBIND}: ${OBJS}
-	( cd ${THREADED} ; \
-	${AR} ${LIBBINDR} ${ARPREF} ${OBJS} ${ARSUFF} ; \
-	${RANLIB} ${LIBBINDR} )
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	if test ! -d ${THREADED} ; then mkdir ${THREADED} ; else true ; fi
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} ${REENTRANT} -c $*.c \
-	 -o ${THREADED}/$*.${O}
-	-${LDS} ${LD} ${LD_LIBFLAGS} ${THREADED}/$*.${O} \
-	 -o ${THREADED}/$*.out && \
-	 ${LDS} mv ${THREADED}/$*.out ${THREADED}/$*.${O}
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} -o $*.out && \
-	 ${LDS} mv $*.out $*.${O}
-
-distclean: clean
-
-clean: FRC
-	rm -f .depend a.out core ${LIB} tags
-	rm -f *.${O} *.BAK *.CKP *~
-	rm -f ${THREADED}/*.${O}
-	-if test -d ${THREADED} ; then rmdir ${THREADED}; else true; fi
-
-depend: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-install:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/lib/isc/assertions.c b/contrib/bind/lib/isc/assertions.c
deleted file mode 100644
index b53cc0ab69c69..0000000000000
--- a/contrib/bind/lib/isc/assertions.c
+++ /dev/null
@@ -1,90 +0,0 @@
-/*
- * Copyright (c) 1997,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: assertions.c,v 8.3 1999/01/08 19:25:14 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/assertions.h>
-
-#include "port_after.h"
-
-/*
- * Forward.
- */
-
-static void default_assertion_failed(char *, int, assertion_type, char *, int);
-
-/*
- * Public.
- */
-
-assertion_failure_callback __assertion_failed = default_assertion_failed;
-
-void
-set_assertion_failure_callback(assertion_failure_callback f) {
-	if (f == NULL)
-		__assertion_failed = default_assertion_failed;
-	else
-		__assertion_failed = f;
-}
-
-char *
-assertion_type_to_text(assertion_type type) {
-	char *result;
-
-	switch (type) {
-	case assert_require:
-		result = "REQUIRE";
-		break;
-	case assert_ensure:
-		result = "ENSURE";
-		break;
-	case assert_insist:
-		result = "INSIST";
-		break;
-	case assert_invariant:
-		result = "INVARIANT";
-		break;
-	default:
-		result = NULL;
-	}
-	return (result);
-}
-
-/*
- * Private.
- */
-
-static void
-default_assertion_failed(char *file, int line, assertion_type type, char *cond,
-			 int print_errno)
-{
-	fprintf(stderr, "%s:%d: %s(%s)%s%s failed.\n",
-		file, line, assertion_type_to_text(type), cond,
-		(print_errno) ? ": " : "",
-		(print_errno) ? strerror(errno) : "");
-	abort();
-	/* NOTREACHED */
-}
diff --git a/contrib/bind/lib/isc/assertions.mdoc b/contrib/bind/lib/isc/assertions.mdoc
deleted file mode 100644
index 3d8d103e727ce..0000000000000
--- a/contrib/bind/lib/isc/assertions.mdoc
+++ /dev/null
@@ -1,134 +0,0 @@
-.\" $Id: assertions.mdoc,v 8.2 1999/01/08 19:25:15 vixie Exp $
-.\"
-.\"Copyright (c) 1997,1999 by Internet Software Consortium.
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd November 17, 1997
-.Dt ASSERTIONS 3
-.Os ISC
-.Sh NAME
-.Nm REQUIRE ,
-.Nm REQUIRE_ERR ,
-.Nm ENSURE ,
-.Nm ENSURE_ERR ,
-.Nm INSIST ,
-.Nm INSIST_ERR ,
-.Nm INVARIANT ,
-.Nm INVARIANT_ERR ,
-.Nm set_assertion_failure_callback
-.Nd assertion system
-.Sh SYNOPSIS
-.Fd #include <isc/assertions.h>
-.Fo "typedef void (*assertion_failure_callback)"
-.Fa "char *filename"
-.Fa "int line"
-.Fa "assertion_type type"
-.Fa "char *condition"
-.Fa "int print_errno"
-.Fc
-.Fn REQUIRE "int boolean_expression"
-.Fn REQUIRE_ERR "int boolean_expression"
-.Fn ENSURE "int boolean_expression"
-.Fn ENSURE_ERR "int boolean_expression"
-.Fn INSIST "int boolean_expression"
-.Fn INSIST_ERR "int boolean_expression"
-.Fn INVARIANT "int boolean_expression"
-.Fn INVARIANT_ERR "int boolean_expression"
-.Ft void
-.Fn set_assertion_failure_callback "assertion_failure_callback callback"
-.Ft char *
-.Fn assertion_type_to_text "assertion_type type"
-.Sh DESCRIPTION
-The
-.Fn REQUIRE ,
-.Fn ENSURE ,
-.Fn INSIST ,
-and
-.Fn INVARIANT
-macros evaluate a boolean expression, and if it is false, they invoke the
-current assertion failure callback.  The default callback will print a message
-to 
-.Li stderr
-describing the failure, and then cause the program to dump core.
-If the
-.Dq Fn _ERR
-variant of the assertion is used, the callback will include
-.Fn strerror "errno"
-in its message.
-.Pp
-Each assertion type has an associated
-.Li CHECK
-macro.  If this macro's value is
-.Dq 0
-when
-.Dq "<isc/assertions.h>"
-is included, then assertions of that type will not be checked.  E.g.
-
-.Dl #define CHECK_ENSURE 0
-
-will disable checking of
-.Fn ENSURE
-and
-.Fn ENSURE_ERR .
-The macros
-.Li CHECK_ALL
-and
-.Li CHECK_NONE
-may also be used, respectively specifying that either all or none of the
-assertion types should be checked.
-.Pp
-.Fn set_assertion_failure_callback
-specifies the function to call when an assertion fails.
-.Pp
-When an
-.li
-assertion_failure_callback
-is called, the 
-.Fa filename
-and
-.Fa line
-arguments specify the filename and line number of the failing assertion.
-The
-.Fa type
-is one of:
-.Bd -literal -offset indent
-assert_require
-assert_ensure
-assert_insist
-assert_invariant
-.Ed
-
-and may be used by the callback to determine the type of the failing
-assertion.
-.Fa condition
-is the literal text of the assertion that failed. 
-.Fa print_errno
-will be non-zero if the callback should print
-.Fa strerror "errno"
-as part of its output.
-.Pp
-.Fn assertion_type_to_text
-returns a textual representation of
-.Fa type .
-For example,
-.Fn assertion_type_to_text "assert_require"
-returns the string
-.Dq REQUIRE .
-.Sh SEE ALSO
-Bertrand Meyer,
-.Sy Object-Oriented Software Construction,
-2nd edition, Prentice\-Hall, 1997, ISBN 0\-13\-629155\-4, chapter 11.
-.Sh AUTHOR
-Bob Halley (ISC).
diff --git a/contrib/bind/lib/isc/base64.c b/contrib/bind/lib/isc/base64.c
deleted file mode 100644
index c1eebe672d42f..0000000000000
--- a/contrib/bind/lib/isc/base64.c
+++ /dev/null
@@ -1,320 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: base64.c,v 8.7 1999/10/13 16:39:33 vixie Exp $";
-#endif /* not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#define Assert(Cond) if (!(Cond)) abort()
-
-static const char Base64[] =
-	"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
-static const char Pad64 = '=';
-
-/* (From RFC1521 and draft-ietf-dnssec-secext-03.txt)
-   The following encoding technique is taken from RFC 1521 by Borenstein
-   and Freed.  It is reproduced here in a slightly edited form for
-   convenience.
-
-   A 65-character subset of US-ASCII is used, enabling 6 bits to be
-   represented per printable character. (The extra 65th character, "=",
-   is used to signify a special processing function.)
-
-   The encoding process represents 24-bit groups of input bits as output
-   strings of 4 encoded characters. Proceeding from left to right, a
-   24-bit input group is formed by concatenating 3 8-bit input groups.
-   These 24 bits are then treated as 4 concatenated 6-bit groups, each
-   of which is translated into a single digit in the base64 alphabet.
-
-   Each 6-bit group is used as an index into an array of 64 printable
-   characters. The character referenced by the index is placed in the
-   output string.
-
-                         Table 1: The Base64 Alphabet
-
-      Value Encoding  Value Encoding  Value Encoding  Value Encoding
-          0 A            17 R            34 i            51 z
-          1 B            18 S            35 j            52 0
-          2 C            19 T            36 k            53 1
-          3 D            20 U            37 l            54 2
-          4 E            21 V            38 m            55 3
-          5 F            22 W            39 n            56 4
-          6 G            23 X            40 o            57 5
-          7 H            24 Y            41 p            58 6
-          8 I            25 Z            42 q            59 7
-          9 J            26 a            43 r            60 8
-         10 K            27 b            44 s            61 9
-         11 L            28 c            45 t            62 +
-         12 M            29 d            46 u            63 /
-         13 N            30 e            47 v
-         14 O            31 f            48 w         (pad) =
-         15 P            32 g            49 x
-         16 Q            33 h            50 y
-
-   Special processing is performed if fewer than 24 bits are available
-   at the end of the data being encoded.  A full encoding quantum is
-   always completed at the end of a quantity.  When fewer than 24 input
-   bits are available in an input group, zero bits are added (on the
-   right) to form an integral number of 6-bit groups.  Padding at the
-   end of the data is performed using the '=' character.
-
-   Since all base64 input is an integral number of octets, only the
-         -------------------------------------------------                       
-   following cases can arise:
-   
-       (1) the final quantum of encoding input is an integral
-           multiple of 24 bits; here, the final unit of encoded
-	   output will be an integral multiple of 4 characters
-	   with no "=" padding,
-       (2) the final quantum of encoding input is exactly 8 bits;
-           here, the final unit of encoded output will be two
-	   characters followed by two "=" padding characters, or
-       (3) the final quantum of encoding input is exactly 16 bits;
-           here, the final unit of encoded output will be three
-	   characters followed by one "=" padding character.
-   */
-
-int
-b64_ntop(u_char const *src, size_t srclength, char *target, size_t targsize) {
-	size_t datalength = 0;
-	u_char input[3];
-	u_char output[4];
-	size_t i;
-
-	while (2 < srclength) {
-		input[0] = *src++;
-		input[1] = *src++;
-		input[2] = *src++;
-		srclength -= 3;
-
-		output[0] = input[0] >> 2;
-		output[1] = ((input[0] & 0x03) << 4) + (input[1] >> 4);
-		output[2] = ((input[1] & 0x0f) << 2) + (input[2] >> 6);
-		output[3] = input[2] & 0x3f;
-		Assert(output[0] < 64);
-		Assert(output[1] < 64);
-		Assert(output[2] < 64);
-		Assert(output[3] < 64);
-
-		if (datalength + 4 > targsize)
-			return (-1);
-		target[datalength++] = Base64[output[0]];
-		target[datalength++] = Base64[output[1]];
-		target[datalength++] = Base64[output[2]];
-		target[datalength++] = Base64[output[3]];
-	}
-    
-	/* Now we worry about padding. */
-	if (0 != srclength) {
-		/* Get what's left. */
-		input[0] = input[1] = input[2] = '\0';
-		for (i = 0; i < srclength; i++)
-			input[i] = *src++;
-	
-		output[0] = input[0] >> 2;
-		output[1] = ((input[0] & 0x03) << 4) + (input[1] >> 4);
-		output[2] = ((input[1] & 0x0f) << 2) + (input[2] >> 6);
-		Assert(output[0] < 64);
-		Assert(output[1] < 64);
-		Assert(output[2] < 64);
-
-		if (datalength + 4 > targsize)
-			return (-1);
-		target[datalength++] = Base64[output[0]];
-		target[datalength++] = Base64[output[1]];
-		if (srclength == 1)
-			target[datalength++] = Pad64;
-		else
-			target[datalength++] = Base64[output[2]];
-		target[datalength++] = Pad64;
-	}
-	if (datalength >= targsize)
-		return (-1);
-	target[datalength] = '\0';	/* Returned value doesn't count \0. */
-	return (datalength);
-}
-
-/* skips all whitespace anywhere.
-   converts characters, four at a time, starting at (or after)
-   src from base - 64 numbers into three 8 bit bytes in the target area.
-   it returns the number of data bytes stored at the target, or -1 on error.
- */
-
-int
-b64_pton(src, target, targsize)
-	char const *src;
-	u_char *target;
-	size_t targsize;
-{
-	int tarindex, state, ch;
-	char *pos;
-
-	state = 0;
-	tarindex = 0;
-
-	while ((ch = *src++) != '\0') {
-		if (isspace(ch))	/* Skip whitespace anywhere. */
-			continue;
-
-		if (ch == Pad64)
-			break;
-
-		pos = strchr(Base64, ch);
-		if (pos == 0) 		/* A non-base64 character. */
-			return (-1);
-
-		switch (state) {
-		case 0:
-			if (target) {
-				if ((size_t)tarindex >= targsize)
-					return (-1);
-				target[tarindex] = (pos - Base64) << 2;
-			}
-			state = 1;
-			break;
-		case 1:
-			if (target) {
-				if ((size_t)tarindex + 1 >= targsize)
-					return (-1);
-				target[tarindex]   |=  (pos - Base64) >> 4;
-				target[tarindex+1]  = ((pos - Base64) & 0x0f)
-							<< 4 ;
-			}
-			tarindex++;
-			state = 2;
-			break;
-		case 2:
-			if (target) {
-				if ((size_t)tarindex + 1 >= targsize)
-					return (-1);
-				target[tarindex]   |=  (pos - Base64) >> 2;
-				target[tarindex+1]  = ((pos - Base64) & 0x03)
-							<< 6;
-			}
-			tarindex++;
-			state = 3;
-			break;
-		case 3:
-			if (target) {
-				if ((size_t)tarindex >= targsize)
-					return (-1);
-				target[tarindex] |= (pos - Base64);
-			}
-			tarindex++;
-			state = 0;
-			break;
-		default:
-			abort();
-		}
-	}
-
-	/*
-	 * We are done decoding Base-64 chars.  Let's see if we ended
-	 * on a byte boundary, and/or with erroneous trailing characters.
-	 */
-
-	if (ch == Pad64) {		/* We got a pad char. */
-		ch = *src++;		/* Skip it, get next. */
-		switch (state) {
-		case 0:		/* Invalid = in first position */
-		case 1:		/* Invalid = in second position */
-			return (-1);
-
-		case 2:		/* Valid, means one byte of info */
-			/* Skip any number of spaces. */
-			for ((void)NULL; ch != '\0'; ch = *src++)
-				if (!isspace(ch))
-					break;
-			/* Make sure there is another trailing = sign. */
-			if (ch != Pad64)
-				return (-1);
-			ch = *src++;		/* Skip the = */
-			/* Fall through to "single trailing =" case. */
-			/* FALLTHROUGH */
-
-		case 3:		/* Valid, means two bytes of info */
-			/*
-			 * We know this char is an =.  Is there anything but
-			 * whitespace after it?
-			 */
-			for ((void)NULL; ch != '\0'; ch = *src++)
-				if (!isspace(ch))
-					return (-1);
-
-			/*
-			 * Now make sure for cases 2 and 3 that the "extra"
-			 * bits that slopped past the last full byte were
-			 * zeros.  If we don't check them, they become a
-			 * subliminal channel.
-			 */
-			if (target && target[tarindex] != 0)
-				return (-1);
-		}
-	} else {
-		/*
-		 * We ended by seeing the end of the string.  Make sure we
-		 * have no partial bytes lying around.
-		 */
-		if (state != 0)
-			return (-1);
-	}
-
-	return (tarindex);
-}
diff --git a/contrib/bind/lib/isc/bitncmp.c b/contrib/bind/lib/isc/bitncmp.c
deleted file mode 100644
index 8dadca067c927..0000000000000
--- a/contrib/bind/lib/isc/bitncmp.c
+++ /dev/null
@@ -1,66 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: bitncmp.c,v 1.6 1999/01/08 19:25:20 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <string.h>
-
-#include "port_after.h"
-
-#include <isc/misc.h>
-
-/*
- * int
- * bitncmp(l, r, n)
- *	compare bit masks l and r, for n bits.
- * return:
- *	-1, 1, or 0 in the libc tradition.
- * note:
- *	network byte order assumed.  this means 192.5.5.240/28 has
- *	0x11110000 in its fourth octet.
- * author:
- *	Paul Vixie (ISC), June 1996
- */
-int
-bitncmp(const void *l, const void *r, int n) {
-	u_int lb, rb;
-	int x, b;
-
-	b = n / 8;
-	x = memcmp(l, r, b);
-	if (x)
-		return (x);
-
-	lb = ((u_char *)l)[b];
-	rb = ((u_char *)r)[b];
-	for (b = n % 8; b > 0; b--) {
-		if ((lb & 0x80) != (rb & 0x80)) {
-			if (lb & 0x80)
-				return (1);
-			return (-1);
-		}
-		lb <<= 1;
-		rb <<= 1;
-	}
-	return (0);
-}
diff --git a/contrib/bind/lib/isc/bitncmp.mdoc b/contrib/bind/lib/isc/bitncmp.mdoc
deleted file mode 100644
index 4fa12e8c95f47..0000000000000
--- a/contrib/bind/lib/isc/bitncmp.mdoc
+++ /dev/null
@@ -1,82 +0,0 @@
-.\" $Id: bitncmp.mdoc,v 8.2 1999/01/08 19:25:21 vixie Exp $
-.\"
-.\"Copyright (c) 1996,1999 by Internet Software Consortium.
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd June 1, 1996
-.Dt BITNCMP 3
-.Os BSD 4
-.Sh NAME
-.Nm bitncmp 
-.Nd compare bit masks
-.Sh SYNOPSIS
-.Ft int
-.Fn bitncmp "const void *l" "const void *r" "int n"
-.Sh DESCRIPTION
-The function
-.Fn bitncmp
-compares the
-.Dq Fa n
-most-significant bits of the two masks pointed to by
-.Dq Fa l
-and
-.Dq Fa r ,
-and returns an integer less than, equal to, or greater than 0, according to
-whether or not
-.Dq Fa l
-is lexicographically less than, equal to, or greater than
-.Dq Fa r
-when taken to be unsigned characters (this behaviour is just like that of
-.Xr memcmp 3 ) .
-.Pp
-.Sy NOTE:
-.Fn Bitncmp 
-assumes 
-.Sy network byte order ;
-this means that the fourth octet of 
-.Li 192.5.5.240/28 
-.Li 0x11110000 .
-.Sh RETURN VALUES
-.Fn Bitncmp
-returns values in the manner of
-.Xr memcmp 3 :
-.Bd -filled -offset indent
-+1 if 
-.Dq Fa 1
-is greater than 
-.Dq Fa r ;
-.Pp
--1 if 
-.Dq Fa l
-is less than 
-.Dq Fa r ; 
-and
-.Pp
-0 if 
-.Dq Fa l
-is equal to
-.Dq Fa r ,
-.Ed
-.Pp
-where 
-.Dq Fa l
-and 
-.Dq Fa r
-are both interpreted as strings of unsigned characters (through bit 
-.Dq Fa n .)
-.Sh SEE ALSO
-.Xr memcmp 3 .
-.Sh AUTHOR
-Paul Vixie (ISC). 
diff --git a/contrib/bind/lib/isc/ctl_clnt.c b/contrib/bind/lib/isc/ctl_clnt.c
deleted file mode 100644
index 66f32f8a25212..0000000000000
--- a/contrib/bind/lib/isc/ctl_clnt.c
+++ /dev/null
@@ -1,581 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ctl_clnt.c,v 8.14 1999/10/13 16:39:33 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Extern. */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/assertions.h>
-#include <isc/ctl.h>
-#include <isc/eventlib.h>
-#include <isc/list.h>
-#include <isc/memcluster.h>
-
-#include "ctl_p.h"
-
-#include "port_after.h"
-
-/* Constants. */
-
-
-/* Macros. */
-
-#define donefunc_p(ctx) ((ctx).donefunc != NULL)
-#define arpacode_p(line) (isdigit(line[0]) && isdigit(line[1]) && \
-			  isdigit(line[2]))
-#define arpacont_p(line) (line[3] == '-')
-#define arpadone_p(line) (line[3] == ' ' || line[3] == '\t' || \
-			  line[3] == '\r' || line[3] == '\0')
-
-/* Types. */
-
-enum state {
-	initializing = 0, connecting, connected, destroyed
-};
-
-struct ctl_tran {
-	LINK(struct ctl_tran)	link;
-	LINK(struct ctl_tran)	wlink;
-	struct ctl_cctx *	ctx;
-	struct ctl_buf		outbuf;
-	ctl_clntdone		donefunc;
-	void *			uap;
-};
-
-struct ctl_cctx {
-	enum state		state;
-	evContext		ev;
-	int			sock;
-	ctl_logfunc		logger;
-	ctl_clntdone		donefunc;
-	void *			uap;
-	evConnID		coID;
-	evTimerID		tiID;
-	evFileID		rdID;
-	evStreamID		wrID;
-	struct ctl_buf		inbuf;
-	struct timespec		timeout;
-	LIST(struct ctl_tran)	tran;
-	LIST(struct ctl_tran)	wtran;
-};
-
-/* Forward. */
-
-static struct ctl_tran *new_tran(struct ctl_cctx *, ctl_clntdone, void *, int);
-static void		start_write(struct ctl_cctx *);
-static void		destroy(struct ctl_cctx *, int);
-static void		error(struct ctl_cctx *);
-static void		new_state(struct ctl_cctx *, enum state);
-static void		conn_done(evContext, void *, int,
-				  const void *, int,
-				  const void *, int);
-static void		write_done(evContext, void *, int, int);
-static void		start_read(struct ctl_cctx *);
-static void		stop_read(struct ctl_cctx *);
-static void		readable(evContext, void *, int, int);
-static void		start_timer(struct ctl_cctx *);
-static void		stop_timer(struct ctl_cctx *);
-static void		touch_timer(struct ctl_cctx *);
-static void		timer(evContext, void *,
-			      struct timespec, struct timespec);
-
-/* Private data. */
-
-static const char * const state_names[] = {
-	"initializing", "connecting", "connected", "destroyed"
-};
-
-/* Public. */
-
-/*
- * void
- * ctl_client()
- *	create, condition, and connect to a listener on the control port.
- */
-struct ctl_cctx *
-ctl_client(evContext lev, const struct sockaddr *cap, size_t cap_len,
-	   const struct sockaddr *sap, size_t sap_len,
-	   ctl_clntdone donefunc, void *uap,
-	   u_int timeout, ctl_logfunc logger)
-{
-	static const char me[] = "ctl_client";
-	static const int on = 1;
-	struct ctl_cctx *ctx;
-
-	if (logger == NULL)
-		logger = ctl_logger;
-	ctx = memget(sizeof *ctx);
-	if (ctx == NULL) {
-		(*logger)(ctl_error, "%s: getmem: %s", me, strerror(errno));
-		goto fatal;
-	}
-	ctx->state = initializing;
-	ctx->ev = lev;
-	ctx->logger = logger;
-	ctx->timeout = evConsTime(timeout, 0);
-	ctx->donefunc = donefunc;
-	ctx->uap = uap;
-	ctx->coID.opaque = NULL;
-	ctx->tiID.opaque = NULL;
-	ctx->rdID.opaque = NULL;
-	ctx->wrID.opaque = NULL;
-	buffer_init(ctx->inbuf);
-	INIT_LIST(ctx->tran);
-	INIT_LIST(ctx->wtran);
-	ctx->sock = socket(sap->sa_family, SOCK_STREAM, PF_UNSPEC);
-	if (ctx->sock > evHighestFD(ctx->ev)) {
-		ctx->sock = -1;
-		errno = ENOTSOCK;
-	}
-	if (ctx->sock < 0) {
-		(*ctx->logger)(ctl_error, "%s: socket: %s",
-			       me, strerror(errno));
-		goto fatal;
-	}
-	if (cap != NULL) {
-		if (setsockopt(ctx->sock, SOL_SOCKET, SO_REUSEADDR,
-			       (char *)&on, sizeof on) != 0) {
-			(*ctx->logger)(ctl_warning,
-				       "%s: setsockopt(REUSEADDR): %s",
-				       me, strerror(errno));
-		}
-		if (bind(ctx->sock, cap, cap_len) < 0) {
-			(*ctx->logger)(ctl_error, "%s: bind: %s", me,
-				       strerror(errno));
-			goto fatal;
-		}
-	}
-	if (evConnect(lev, ctx->sock, (struct sockaddr *)sap, sap_len,
-		      conn_done, ctx, &ctx->coID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: evConnect(fd %d): %s",
-			       me, (void *)ctx->sock, strerror(errno));
- fatal:
-		if (ctx != NULL) {
-			if (ctx->sock >= 0)
-				close(ctx->sock);
-			memput(ctx, sizeof *ctx);
-		}
-		return (NULL);
-	}
-	new_state(ctx, connecting);
-	return (ctx);
-}
-
-/*
- * void
- * ctl_endclient(ctx)
- *	close a client and release all of its resources.
- */
-void
-ctl_endclient(struct ctl_cctx *ctx) {
-	if (ctx->state != destroyed)
-		destroy(ctx, 0);
-	memput(ctx, sizeof *ctx);
-}
-
-/*
- * int
- * ctl_command(ctx, cmd, len, donefunc, uap)
- *	Queue a transaction, which will begin with sending cmd
- *	and complete by calling donefunc with the answer.
- */
-int
-ctl_command(struct ctl_cctx *ctx, const char *cmd, size_t len,
-	    ctl_clntdone donefunc, void *uap)
-{
-	struct ctl_tran *tran;
-	char *pc;
-	int n;
-
-	switch (ctx->state) {
-	case destroyed:
-		errno = ENOTCONN;
-		return (-1);
-	case connecting:
-	case connected:
-		break;
-	default:
-		abort();
-	}
-	if (len >= MAX_LINELEN) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	tran = new_tran(ctx, donefunc, uap, 1);
-	if (tran == NULL)
-		return (-1);
-	if (ctl_bufget(&tran->outbuf, ctx->logger) < 0)
-		return (-1);
-	memcpy(tran->outbuf.text, cmd, len);
-	tran->outbuf.used = len;
-	for (pc = tran->outbuf.text, n = 0; n < tran->outbuf.used; pc++, n++)
-		if (!isascii(*pc) || !isprint(*pc))
-			*pc = '\040';
-	start_write(ctx);
-	return (0);
-}
-
-/* Private. */
-
-static struct ctl_tran *
-new_tran(struct ctl_cctx *ctx, ctl_clntdone donefunc, void *uap, int w) {
-	struct ctl_tran *new = memget(sizeof *new);
-
-	if (new == NULL)
-		return (NULL);
-	new->ctx = ctx;
-	buffer_init(new->outbuf);
-	new->donefunc = donefunc;
-	new->uap = uap;
-	APPEND(ctx->tran, new, link);
-	if (w)
-		APPEND(ctx->wtran, new, wlink);
-	else
-		INIT_LINK(new, wlink);
-	return (new);
-}
-
-static void
-start_write(struct ctl_cctx *ctx) {
-	static const char me[] = "isc/ctl_clnt::start_write";
-	struct ctl_tran *tran;
-	struct iovec iov[2], *iovp = iov;
-
-	REQUIRE(ctx->state == connecting || ctx->state == connected);
-	/* If there is a write in progress, don't try to write more yet. */
-	if (ctx->wrID.opaque != NULL)
-		return;
-	/* If there are no trans, make sure timer is off, and we're done. */
-	if (EMPTY(ctx->wtran)) {
-		if (ctx->tiID.opaque != NULL)
-			stop_timer(ctx);
-		return;
-	}
-	/* Pull it off the head of the write queue. */
-	tran = HEAD(ctx->wtran);
-	UNLINK(ctx->wtran, tran, wlink);
-	/* Since there are some trans, make sure timer is successfully "on". */
-	if (ctx->tiID.opaque != NULL)
-		touch_timer(ctx);
-	else
-		start_timer(ctx);
-	if (ctx->state == destroyed)
-		return;
-	/* Marshall a newline-terminated message and clock it out. */
-	*iovp++ = evConsIovec(tran->outbuf.text, tran->outbuf.used);
-	*iovp++ = evConsIovec("\r\n", 2);
-	if (evWrite(ctx->ev, ctx->sock, iov, iovp - iov,
-		    write_done, tran, &ctx->wrID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: evWrite: %s", me,
-			       strerror(errno));
-		error(ctx);
-		return;
-	}
-	if (evTimeRW(ctx->ev, ctx->wrID, ctx->tiID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: evTimeRW: %s", me,
-			       strerror(errno));
-		error(ctx);
-		return;
-	}
-}
-
-static void
-destroy(struct ctl_cctx *ctx, int notify) {
-	struct ctl_tran *this, *next;
-
-	if (ctx->sock != -1) {
-		(void) close(ctx->sock);
-		ctx->sock = -1;
-	}
-	switch (ctx->state) {
-	case connecting:
-		REQUIRE(ctx->wrID.opaque == NULL);
-		REQUIRE(EMPTY(ctx->tran));
-		/*
-		 * This test is nec'y since destroy() can be called from
-		 * start_read() while the state is still "connecting".
-		 */
-		if (ctx->coID.opaque != NULL) {
-			(void)evCancelConn(ctx->ev, ctx->coID);
-			ctx->coID.opaque = NULL;
-		}
-		break;
-	case connected:
-		REQUIRE(ctx->coID.opaque == NULL);
-		if (ctx->wrID.opaque != NULL) {
-			(void)evCancelRW(ctx->ev, ctx->wrID);
-			ctx->wrID.opaque = NULL;
-		}
-		if (ctx->rdID.opaque != NULL)
-			stop_read(ctx);
-		break;
-	case destroyed:
-		break;
-	default:
-		abort();
-	}
-	if (allocated_p(ctx->inbuf))
-		ctl_bufput(&ctx->inbuf);
-	for (this = HEAD(ctx->tran); this != NULL; this = next) {
-		next = NEXT(this, link);
-		if (allocated_p(this->outbuf))
-			ctl_bufput(&this->outbuf);
-		if (notify && this->donefunc != NULL)
-			(*this->donefunc)(ctx, this->uap, NULL, 0);
-		memput(this, sizeof *this);
-	}
-	if (ctx->tiID.opaque != NULL)
-		stop_timer(ctx);
-	new_state(ctx, destroyed);
-}
-
-static void
-error(struct ctl_cctx *ctx) {
-	REQUIRE(ctx->state != destroyed);
-	destroy(ctx, 1);
-}
-
-static void
-new_state(struct ctl_cctx *ctx, enum state new_state) {
-	static const char me[] = "isc/ctl_clnt::new_state";
-
-	(*ctx->logger)(ctl_debug, "%s: %s -> %s", me,
-		       state_names[ctx->state], state_names[new_state]);
-	ctx->state = new_state;
-}
-
-static void
-conn_done(evContext ev, void *uap, int fd,
-	  const void *la, int lalen,
-	  const void *ra, int ralen)
-{
-	static const char me[] = "isc/ctl_clnt::conn_done";
-	struct ctl_cctx *ctx = uap;
-	struct ctl_tran *tran;
-
-	ctx->coID.opaque = NULL;
-	if (fd < 0) {
-		(*ctx->logger)(ctl_error, "%s: evConnect: %s", me,
-			       strerror(errno));
-		error(ctx);
-		return;
-	}
-	new_state(ctx, connected);
-	tran = new_tran(ctx, ctx->donefunc, ctx->uap, 0);
-	if (tran == NULL) {
-		(*ctx->logger)(ctl_error, "%s: new_tran failed: %s", me,
-			       strerror(errno));
-		error(ctx);
-		return;
-	}
-	start_read(ctx);
-	if (ctx->state == destroyed) {
-		(*ctx->logger)(ctl_error, "%s: start_read failed: %s",
-			       me, strerror(errno));
-		error(ctx);
-		return;
-	}
-}
-
-static void
-write_done(evContext lev, void *uap, int fd, int bytes) {
-	struct ctl_tran *tran = (struct ctl_tran *)uap;
-	struct ctl_cctx *ctx = tran->ctx;
-
-	ctx->wrID.opaque = NULL;
-	if (ctx->tiID.opaque != NULL)
-		touch_timer(ctx);
-	ctl_bufput(&tran->outbuf);
-	start_write(ctx);
-	if (bytes < 0)
-		destroy(ctx, 1);
-	else
-		start_read(ctx);
-}
-
-static void
-start_read(struct ctl_cctx *ctx) {
-	static const char me[] = "isc/ctl_clnt::start_read";
-
-	REQUIRE(ctx->state == connecting || ctx->state == connected);
-	REQUIRE(ctx->rdID.opaque == NULL);
-	if (evSelectFD(ctx->ev, ctx->sock, EV_READ, readable, ctx,
-		       &ctx->rdID) < 0)
-	{
-		(*ctx->logger)(ctl_error, "%s: evSelect(fd %d): %s", me,
-			       ctx->sock, strerror(errno));
-		error(ctx);
-		return;
-	}
-}
-
-static void
-stop_read(struct ctl_cctx *ctx) {
-	REQUIRE(ctx->coID.opaque == NULL);
-	REQUIRE(ctx->rdID.opaque != NULL);
-	(void)evDeselectFD(ctx->ev, ctx->rdID);
-	ctx->rdID.opaque = NULL;
-}
-
-static void
-readable(evContext ev, void *uap, int fd, int evmask) {
-	static const char me[] = "isc/ctl_clnt::readable";
-	struct ctl_cctx *ctx = uap;
-	struct ctl_tran *tran;
-	ssize_t n;
-	char *eos;
-
-	REQUIRE(ctx != NULL);
-	REQUIRE(fd >= 0);
-	REQUIRE(evmask == EV_READ);
-	REQUIRE(ctx->state == connected);
-	REQUIRE(!EMPTY(ctx->tran));
-	tran = HEAD(ctx->tran);
-	if (!allocated_p(ctx->inbuf) &&
-	    ctl_bufget(&ctx->inbuf, ctx->logger) < 0) {
-		(*ctx->logger)(ctl_error, "%s: can't get an input buffer", me);
-		error(ctx);
-		return;
-	}
-	n = read(ctx->sock, ctx->inbuf.text + ctx->inbuf.used,
-		 MAX_LINELEN - ctx->inbuf.used);
-	if (n <= 0) {
-		(*ctx->logger)(ctl_warning, "%s: read: %s", me,
-			       (n == 0) ? "Unexpected EOF" : strerror(errno));
-		error(ctx);
-		return;
-	}
-	if (ctx->tiID.opaque != NULL)
-		touch_timer(ctx);
-	ctx->inbuf.used += n;
-	(*ctx->logger)(ctl_debug, "%s: read %d, used %d", me,
-		       n, ctx->inbuf.used);
- again:
-	eos = memchr(ctx->inbuf.text, '\n', ctx->inbuf.used);
-	if (eos != NULL && eos != ctx->inbuf.text && eos[-1] == '\r') {
-		int done = 0;
-
-		eos[-1] = '\0';
-		if (!arpacode_p(ctx->inbuf.text)) {
-			/* XXX Doesn't FTP do this sometimes? Is it legal? */
-			(*ctx->logger)(ctl_error, "%s: no arpa code (%s)", me,
-				       ctx->inbuf.text);
-			error(ctx);
-			return;
-		}
-		if (arpadone_p(ctx->inbuf.text))
-			done = 1;
-		else if (arpacont_p(ctx->inbuf.text))
-			done = 0;
-		else {
-			/* XXX Doesn't FTP do this sometimes? Is it legal? */
-			(*ctx->logger)(ctl_error, "%s: no arpa flag (%s)", me,
-				       ctx->inbuf.text);
-			error(ctx);
-			return;
-		}
-		(*tran->donefunc)(ctx, tran->uap, ctx->inbuf.text,
-				  (done ? 0 : CTL_MORE));
-		ctx->inbuf.used -= ((eos - ctx->inbuf.text) + 1);
-		if (ctx->inbuf.used == 0)
-			ctl_bufput(&ctx->inbuf);
-		else
-			memmove(ctx->inbuf.text, eos + 1, ctx->inbuf.used);
-		if (done) {
-			UNLINK(ctx->tran, tran, link);
-			memput(tran, sizeof *tran);
-			stop_read(ctx);
-			start_write(ctx);
-			return;
-		}
-		if (allocated_p(ctx->inbuf))
-			goto again;
-		return;
-	}
-	if (ctx->inbuf.used == MAX_LINELEN) {
-		(*ctx->logger)(ctl_error, "%s: line too long (%-10s...)", me,
-			       ctx->inbuf.text);
-		error(ctx);
-	}
-}
-
-/* Timer related stuff. */
-
-static void
-start_timer(struct ctl_cctx *ctx) {
-	static const char me[] = "isc/ctl_clnt::start_timer";
-
-	REQUIRE(ctx->tiID.opaque == NULL);
-	if (evSetIdleTimer(ctx->ev, timer, ctx, ctx->timeout, &ctx->tiID) < 0){
-		(*ctx->logger)(ctl_error, "%s: evSetIdleTimer: %s", me,
-			       strerror(errno));
-		error(ctx);
-		return;
-	}
-}
-
-static void
-stop_timer(struct ctl_cctx *ctx) {
-	static const char me[] = "isc/ctl_clnt::stop_timer";
-
-	REQUIRE(ctx->tiID.opaque != NULL);
-	if (evClearIdleTimer(ctx->ev, ctx->tiID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: evClearIdleTimer: %s", me,
-			       strerror(errno));
-		error(ctx);
-		return;
-	}
-	ctx->tiID.opaque = NULL;
-}
-
-static void
-touch_timer(struct ctl_cctx *ctx) {
-	REQUIRE(ctx->tiID.opaque != NULL);
-
-	evTouchIdleTimer(ctx->ev, ctx->tiID);
-}
-
-static void
-timer(evContext ev, void *uap, struct timespec due, struct timespec itv) {
-	static const char me[] = "isc/ctl_clnt::timer";
-	struct ctl_cctx *ctx = uap;
-
-	ctx->tiID.opaque = NULL;
-	(*ctx->logger)(ctl_error, "%s: timeout after %u seconds while %s", me,
-		       ctx->timeout.tv_sec, state_names[ctx->state]);
-	error(ctx);
-}
diff --git a/contrib/bind/lib/isc/ctl_p.c b/contrib/bind/lib/isc/ctl_p.c
deleted file mode 100644
index 7d9058c6b6e76..0000000000000
--- a/contrib/bind/lib/isc/ctl_p.c
+++ /dev/null
@@ -1,160 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ctl_p.c,v 8.7 2000/02/04 08:28:33 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Extern. */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <time.h>
-
-#include <isc/assertions.h>
-#include <isc/eventlib.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-#include <isc/ctl.h>
-
-#include "ctl_p.h"
-
-#include "port_after.h"
-
-/* Constants. */
-
-const char * const ctl_sevnames[] = {
-	"debug", "warning", "error"
-};
-
-/* Public. */
-
-/*
- * ctl_logger()
- *	if ctl_startup()'s caller didn't specify a logger, this one
- *	is used.  this pollutes stderr with all kinds of trash so it will
- *	probably never be used in real applications.
- */
-void
-ctl_logger(enum ctl_severity severity, const char *format, ...) {
-	va_list ap;
-	static const char me[] = "ctl_logger";
-
-	fprintf(stderr, "%s(%s): ", me, ctl_sevnames[severity]);
-	va_start(ap, format);
-	vfprintf(stderr, format, ap);
-	va_end(ap);
-	fputc('\n', stderr);
-}
-
-int
-ctl_bufget(struct ctl_buf *buf, ctl_logfunc logger) {
-	static const char me[] = "ctl_bufget";
-
-	REQUIRE(!allocated_p(*buf) && buf->used == 0);
-	buf->text = memget(MAX_LINELEN);
-	if (!allocated_p(*buf)) {
-		(*logger)(ctl_error, "%s: getmem: %s", me, strerror(errno));
-		return (-1);
-	}
-	buf->used = 0;
-	return (0);
-}
-
-void
-ctl_bufput(struct ctl_buf *buf) {
-
-	REQUIRE(allocated_p(*buf));
-	memput(buf->text, MAX_LINELEN);
-	buf->text = NULL;
-	buf->used = 0;
-}
-
-const char *
-ctl_sa_ntop(const struct sockaddr *sa,
-	    char *buf, size_t size,
-	    ctl_logfunc logger)
-{
-	static const char me[] = "ctl_sa_ntop";
-	static const char punt[] = "[0].-1";
-	char tmp[sizeof "255.255.255.255"];
-
-	switch (sa->sa_family) {
-	case AF_INET: {
-		const struct sockaddr_in *in = (struct sockaddr_in *) sa;
-
-		if (inet_ntop(in->sin_family, &in->sin_addr, tmp, sizeof tmp)
-		    == NULL) {
-			(*logger)(ctl_error, "%s: inet_ntop(%u %04x %08x): %s",
-				  me, in->sin_family,
-				  in->sin_port, in->sin_addr.s_addr,
-				  strerror(errno));
-			return (punt);
-		}
-		if (strlen(tmp) + sizeof "[].65535" > size) {
-			(*logger)(ctl_error, "%s: buffer overflow", me);
-			return (punt);
-		}
-		(void) sprintf(buf, "[%s].%u", tmp, ntohs(in->sin_port));
-		return (buf);
-	    }
-#ifndef NO_SOCKADDR_UN
-	case AF_UNIX: {
-		const struct sockaddr_un *un = (struct sockaddr_un *) sa;
-		int x = sizeof un->sun_path;
-
-		if (x > size)
-			x = size;
-		strncpy(buf, un->sun_path, x - 1);
-		buf[x - 1] = '\0';
-		return (buf);
-	    }
-#endif
-	default:
-		return (punt);
-	}
-}
-
-void
-ctl_sa_copy(const struct sockaddr *src, struct sockaddr *dst) {
-	switch (src->sa_family) {
-	case AF_INET:
-		*((struct sockaddr_in *)dst) =  *((struct sockaddr_in *)src);
-		break;
-#ifndef NO_SOCKADDR_UN
-	case AF_UNIX:
-		*((struct sockaddr_un *)dst) =  *((struct sockaddr_un *)src);
-		break;
-#endif
-	default:
-		*dst = *src;
-		break;
-	}
-}
diff --git a/contrib/bind/lib/isc/ctl_p.h b/contrib/bind/lib/isc/ctl_p.h
deleted file mode 100644
index 1ebb2542367a5..0000000000000
--- a/contrib/bind/lib/isc/ctl_p.h
+++ /dev/null
@@ -1,22 +0,0 @@
-struct ctl_buf {
-	char *			text;
-	size_t			used;
-};
-
-#define	MAX_LINELEN		990	/* Like SMTP. */
-#define	MAX_NTOP		(sizeof "[255.255.255.255].65535")
-
-#define	allocated_p(Buf) ((Buf).text != NULL)
-#define	buffer_init(Buf) ((Buf).text = 0, (Buf.used) = 0)
-
-#define	ctl_bufget	__ctl_bufget
-#define	ctl_bufput	__ctl_bufput
-#define	ctl_sa_ntop	__ctl_sa_ntop
-#define	ctl_sa_copy	__ctl_sa_copy
-
-int			ctl_bufget(struct ctl_buf *, ctl_logfunc);
-void			ctl_bufput(struct ctl_buf *);
-const char *		ctl_sa_ntop(const struct sockaddr *, char *, size_t,
-				    ctl_logfunc);
-void			ctl_sa_copy(const struct sockaddr *,
-				    struct sockaddr *);
diff --git a/contrib/bind/lib/isc/ctl_srvr.c b/contrib/bind/lib/isc/ctl_srvr.c
deleted file mode 100644
index ff1fc829aad1e..0000000000000
--- a/contrib/bind/lib/isc/ctl_srvr.c
+++ /dev/null
@@ -1,751 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: ctl_srvr.c,v 8.23 2000/02/04 08:28:33 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Extern. */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <sys/un.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <time.h>
-#include <unistd.h>
-#include <fcntl.h>
-
-#include <isc/assertions.h>
-#include <isc/ctl.h>
-#include <isc/eventlib.h>
-#include <isc/list.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "ctl_p.h"
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/* Macros. */
-
-#define	lastverb_p(verb)	(verb->name == NULL || verb->func == NULL)
-#define	address_expr		ctl_sa_ntop((struct sockaddr *)&sess->sa, \
-					    tmp, sizeof tmp, ctx->logger)
-
-/* Types. */
-
-enum state {
-	available = 0, initializing, writing, reading, reading_data,
-	processing, idling, quitting, closing
-};
-
-union sa_un {
-	struct sockaddr_in in;
-#ifndef NO_SOCKADDR_UN
-	struct sockaddr_un un;
-#endif
-};
-
-struct ctl_sess {
-	LINK(struct ctl_sess)	link;
-	struct ctl_sctx *	ctx;
-	enum state		state;
-	int			sock;
-	union sa_un		sa;
-	evFileID		rdID;
-	evStreamID		wrID;
-	evTimerID		rdtiID;
-	evTimerID		wrtiID;
-	struct ctl_buf		inbuf;
-	struct ctl_buf		outbuf;
-	const struct ctl_verb *	verb;
-	u_int			helpcode;
-	void *			respctx;
-	u_int			respflags;
-	ctl_srvrdone		donefunc;
-	void *			uap;
-	void *			csctx;
-};
-
-struct ctl_sctx {
-	evContext		ev;
-	void *			uctx;
-	u_int			unkncode;
-	u_int			timeoutcode;
-	const struct ctl_verb *	verbs;
-	const struct ctl_verb *	connverb;
-	int			sock;
-	int			max_sess;
-	int			cur_sess;
-	struct timespec		timeout;
-	ctl_logfunc		logger;
-	evConnID		acID;
-	LIST(struct ctl_sess)	sess;
-};
-
-/* Forward. */
-
-static void			ctl_accept(evContext, void *, int,
-					   const void *, int,
-					   const void *, int);
-static void			ctl_close(struct ctl_sess *);
-static void			ctl_new_state(struct ctl_sess *,
-					      enum state,
-					      const char *);
-static void			ctl_start_read(struct ctl_sess *);
-static void			ctl_stop_read(struct ctl_sess *);
-static void			ctl_readable(evContext, void *, int, int);
-static void			ctl_rdtimeout(evContext, void *,
-					      struct timespec,
-					      struct timespec);
-static void			ctl_wrtimeout(evContext, void *,
-					      struct timespec,
-					      struct timespec);
-static void			ctl_docommand(struct ctl_sess *);
-static void			ctl_writedone(evContext, void *, int, int);
-static void			ctl_morehelp(struct ctl_sctx *,
-					     struct ctl_sess *,
-					     const struct ctl_verb *,
-					     const char *,
-					     u_int, void *, void *);
-static void			ctl_signal_done(struct ctl_sctx *,
-						struct ctl_sess *);
-
-/* Private data. */
-
-static const char *		state_names[] = {
-	"available", "initializing", "writing", "reading",
-	"reading_data", "processing", "idling", "quitting", "closing"
-};
-
-static const char		space[] = " ";
-
-static const struct ctl_verb	fakehelpverb = { "fakehelp", ctl_morehelp };
-
-/* Public. */
-
-/*
- * void
- * ctl_server()
- *	create, condition, and start a listener on the control port.
- */
-struct ctl_sctx *
-ctl_server(evContext lev, const struct sockaddr *sap, size_t sap_len,
-	   const struct ctl_verb *verbs,
-	   u_int unkncode, u_int timeoutcode,
-	   u_int timeout, int backlog, int max_sess,
-	   ctl_logfunc logger, void *uctx)
-{
-	static const char me[] = "ctl_server";
-	static const int on = 1;
-	const struct ctl_verb *connverb;
-	struct ctl_sctx *ctx;
-	int save_errno;
-
-	if (logger == NULL)
-		logger = ctl_logger;
-	for (connverb = verbs;
-	     connverb->name != NULL && connverb->func != NULL;
-	     connverb++)
-		if (connverb->name[0] == '\0')
-			break;
-	if (connverb->func == NULL) {
-		(*logger)(ctl_error, "%s: no connection verb found", me);
-		return (NULL);
-	}
-	ctx = memget(sizeof *ctx);
-	if (ctx == NULL) {
-		(*logger)(ctl_error, "%s: getmem: %s", me, strerror(errno));
-		return (NULL);
-	}
-	ctx->ev = lev;
-	ctx->uctx = uctx;
-	ctx->unkncode = unkncode;
-	ctx->timeoutcode = timeoutcode;
-	ctx->verbs = verbs;
-	ctx->timeout = evConsTime(timeout, 0);
-	ctx->logger = logger;
-	ctx->connverb = connverb;
-	ctx->max_sess = max_sess;
-	ctx->cur_sess = 0;
-	INIT_LIST(ctx->sess);
-	ctx->sock = socket(sap->sa_family, SOCK_STREAM, PF_UNSPEC);
-	if (ctx->sock > evHighestFD(ctx->ev)) {
-		ctx->sock = -1;
-		errno = ENOTSOCK;
-	}
-	if (ctx->sock < 0) {
-		save_errno = errno;
-		(*ctx->logger)(ctl_error, "%s: socket: %s",
-			       me, strerror(errno));
-		memput(ctx, sizeof *ctx);
-		errno = save_errno;
-		return (NULL);
-	}
-	if (ctx->sock > evHighestFD(lev)) {
-		close(ctx->sock);
-		(*ctx->logger)(ctl_error, "%s: file descriptor > evHighestFD");
-		errno = ENFILE;
-		memput(ctx, sizeof *ctx);
-		return (NULL);
-	}
-#ifdef NO_UNIX_REUSEADDR
-	if (sap->sa_family != AF_UNIX)
-#endif
-		if (setsockopt(ctx->sock, SOL_SOCKET, SO_REUSEADDR,
-			       (char *)&on, sizeof on) != 0) {
-			(*ctx->logger)(ctl_warning,
-				       "%s: setsockopt(REUSEADDR): %s",
-				       me, strerror(errno));
-		}
-	if (bind(ctx->sock, sap, sap_len) < 0) {
-		char tmp[MAX_NTOP];
-		save_errno = errno;
-		(*ctx->logger)(ctl_error, "%s: bind: %s: %s",
-			       me, ctl_sa_ntop((struct sockaddr *)sap,
-			       tmp, sizeof tmp, ctx->logger),
-			       strerror(save_errno));
-		close(ctx->sock);
-		memput(ctx, sizeof *ctx);
-		errno = save_errno;
-		return (NULL);
-	}
-	if (fcntl(ctx->sock, F_SETFD, 1) < 0) {
-		(*ctx->logger)(ctl_warning, "%s: fcntl: %s", me,
-			       strerror(errno));
-	}
-	if (evListen(lev, ctx->sock, backlog, ctl_accept, ctx,
-		     &ctx->acID) < 0) {
-		save_errno = errno;
-		(*ctx->logger)(ctl_error, "%s: evListen(fd %d): %s",
-			       me, (void *)ctx->sock, strerror(errno));
-		close(ctx->sock);
-		memput(ctx, sizeof *ctx);
-		errno = save_errno;
-		return (NULL);
-	}
-	(*ctx->logger)(ctl_debug, "%s: new ctx %p, sock %d",
-		       me, ctx, ctx->sock);
-	return (ctx);
-}
-
-/*
- * void
- * ctl_endserver(ctx)
- *	if the control listener is open, close it.  clean out all eventlib
- *	stuff.  close all active sessions.
- */
-void
-ctl_endserver(struct ctl_sctx *ctx) {
-	static const char me[] = "ctl_endserver";
-	struct ctl_sess *this, *next;
-
-	(*ctx->logger)(ctl_debug, "%s: ctx %p, sock %d, acID %p, sess %p",
-		       me, ctx, ctx->sock, ctx->acID.opaque, ctx->sess);
-	if (ctx->acID.opaque != NULL) {
-		(void)evCancelConn(ctx->ev, ctx->acID);
-		ctx->acID.opaque = NULL;
-	}
-	if (ctx->sock != -1) {
-		(void) close(ctx->sock);
-		ctx->sock = -1;
-	}
-	for (this = HEAD(ctx->sess); this != NULL; this = next) {
-		next = NEXT(this, link);
-		ctl_close(this);
-	}
-	memput(ctx, sizeof *ctx);
-}
-
-/*
- * If body is non-NULL then it we add a "." line after it.
- * Caller must have  escaped lines with leading ".".
- */
-void
-ctl_response(struct ctl_sess *sess, u_int code, const char *text,
-	     u_int flags, void *respctx, ctl_srvrdone donefunc, void *uap,
-	     const char *body, size_t bodylen)
-{
-	static const char me[] = "ctl_response";
-	struct iovec iov[3], *iovp = iov;
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP], *pc;
-	int n;
-
-	REQUIRE(sess->state == initializing ||
-		sess->state == processing ||
-		sess->state == reading_data ||
-		sess->state == writing);
-	REQUIRE(sess->wrtiID.opaque == NULL);
-	REQUIRE(sess->wrID.opaque == NULL);
-	ctl_new_state(sess, writing, me);
-	sess->donefunc = donefunc;
-	sess->uap = uap;
-	if (!allocated_p(sess->outbuf) &&
-	    ctl_bufget(&sess->outbuf, ctx->logger) < 0) {
-		(*ctx->logger)(ctl_error, "%s: %s: cant get an output buffer",
-			       me, address_expr);
-		goto untimely;
-	}
-	if (sizeof "000-\r\n" + strlen(text) > MAX_LINELEN) {
-		(*ctx->logger)(ctl_error, "%s: %s: output buffer ovf, closing",
-			       me, address_expr);
-		goto untimely;
-	}
-	sess->outbuf.used = SPRINTF((sess->outbuf.text, "%03d%c%s\r\n",
-				     code, (flags & CTL_MORE) != 0 ? '-' : ' ',
-				     text));
-	for (pc = sess->outbuf.text, n = 0; n < sess->outbuf.used-2; pc++, n++)
-		if (!isascii(*pc) || !isprint(*pc))
-			*pc = '\040';
-	*iovp++ = evConsIovec(sess->outbuf.text, sess->outbuf.used);
-	if (body != NULL) {
-		*iovp++ = evConsIovec((char *)body, bodylen);
-		*iovp++ = evConsIovec(".\r\n", 3);
-	}
-	(*ctx->logger)(ctl_debug, "%s: [%d] %s", me,
-		       sess->outbuf.used, sess->outbuf.text);
-	if (evWrite(ctx->ev, sess->sock, iov, iovp - iov,
-		    ctl_writedone, sess, &sess->wrID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: %s: evWrite: %s", me,
-			       address_expr, strerror(errno));
-		goto untimely;
-	}
-	if (evSetIdleTimer(ctx->ev, ctl_wrtimeout, sess, ctx->timeout,
-			   &sess->wrtiID) < 0)
-	{
-		(*ctx->logger)(ctl_error, "%s: %s: evSetIdleTimer: %s", me,
-			       address_expr, strerror(errno));
-		goto untimely;
-	}
-	if (evTimeRW(ctx->ev, sess->wrID, sess->wrtiID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: %s: evTimeRW: %s", me,
-			       address_expr, strerror(errno));
- untimely:
-		ctl_signal_done(ctx, sess);
-		ctl_close(sess);
-		return;
-	}
-	sess->respctx = respctx;
-	sess->respflags = flags;
-}
-
-void
-ctl_sendhelp(struct ctl_sess *sess, u_int code) {
-	static const char me[] = "ctl_sendhelp";
-	struct ctl_sctx *ctx = sess->ctx;
-
-	sess->helpcode = code;
-	sess->verb = &fakehelpverb;
-	ctl_morehelp(ctx, sess, NULL, me, CTL_MORE, (void *)ctx->verbs, NULL);
-}
-
-void *
-ctl_getcsctx(struct ctl_sess *sess) {
-	return (sess->csctx);
-}
-
-void *
-ctl_setcsctx(struct ctl_sess *sess, void *csctx) {
-	void *old = sess->csctx;
-
-	sess->csctx = csctx;
-	return (old);
-}
-
-/* Private functions. */
-
-static void
-ctl_accept(evContext lev, void *uap, int fd,
-	   const void *lav, int lalen,
-	   const void *rav, int ralen)
-{
-	static const char me[] = "ctl_accept";
-	struct ctl_sctx *ctx = uap;
-	struct ctl_sess *sess = NULL;
-	char tmp[MAX_NTOP];
-
-	if (fd < 0) {
-		(*ctx->logger)(ctl_error, "%s: accept: %s",
-			       me, strerror(errno));
-		return;
-	}
-	if (ctx->cur_sess == ctx->max_sess) {
-		(*ctx->logger)(ctl_error, "%s: %s: too many control sessions",
-			       me, ctl_sa_ntop((struct sockaddr *)rav,
-					       tmp, sizeof tmp,
-					       ctx->logger));
-		(void) close(fd);
-		return;
-	}
-	sess = memget(sizeof *sess);
-	if (sess == NULL) {
-		(*ctx->logger)(ctl_error, "%s: memget: %s", me,
-			       strerror(errno));
-		(void) close(fd);
-		return;
-	}
-	if (fcntl(fd, F_SETFD, 1) < 0) {
-		(*ctx->logger)(ctl_warning, "%s: fcntl: %s", me,
-			       strerror(errno));
-	}
-	ctx->cur_sess++;
-	APPEND(ctx->sess, sess, link);
-	sess->ctx = ctx;
-	sess->sock = fd;
-	sess->wrID.opaque = NULL;
-	sess->rdID.opaque = NULL;
-	sess->wrtiID.opaque = NULL;
-	sess->rdtiID.opaque = NULL;
-	sess->respctx = NULL;
-	sess->csctx = NULL;
-	if (((struct sockaddr *)rav)->sa_family == AF_UNIX)
-		ctl_sa_copy((struct sockaddr *)lav,
-			    (struct sockaddr *)&sess->sa);
-	else
-		ctl_sa_copy((struct sockaddr *)rav,
-			    (struct sockaddr *)&sess->sa);
-	sess->donefunc = NULL;
-	buffer_init(sess->inbuf);
-	buffer_init(sess->outbuf);
-	sess->state = available;
-	ctl_new_state(sess, initializing, me);
-	sess->verb = ctx->connverb;
-	(*ctx->logger)(ctl_debug, "%s: %s: accepting (fd %d)",
-		       me, address_expr, sess->sock);
-	(*ctx->connverb->func)(ctx, sess, ctx->connverb, "", 0,
-			       (struct sockaddr *)rav, ctx->uctx);
-}
-
-static void
-ctl_new_state(struct ctl_sess *sess, enum state new_state, const char *reason)
-{
-	static const char me[] = "ctl_new_state";
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP];
-
-	(*ctx->logger)(ctl_debug, "%s: %s: %s -> %s (%s)",
-		       me, address_expr,
-		       state_names[sess->state],
-		       state_names[new_state], reason);
-	sess->state = new_state;
-}
-
-static void
-ctl_close(struct ctl_sess *sess) {
-	static const char me[] = "ctl_close";
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP];
-
-	REQUIRE(sess->state == initializing ||
-		sess->state == writing ||
-		sess->state == reading ||
-		sess->state == processing ||
-		sess->state == reading_data ||
-		sess->state == idling);
-	REQUIRE(sess->sock != -1);
-	if (sess->state == reading || sess->state == reading_data)
-		ctl_stop_read(sess);
-	else if (sess->state == writing) {
-		if (sess->wrID.opaque != NULL) {
-			(void) evCancelRW(ctx->ev, sess->wrID);
-			sess->wrID.opaque = NULL;
-		}
-		if (sess->wrtiID.opaque != NULL) {
-			(void) evClearIdleTimer(ctx->ev, sess->wrtiID);
-			sess->wrtiID.opaque = NULL;
-		}
-	}
-	ctl_new_state(sess, closing, me);
-	(void) close(sess->sock);
-	if (allocated_p(sess->inbuf))
-		ctl_bufput(&sess->inbuf);
-	if (allocated_p(sess->outbuf))
-		ctl_bufput(&sess->outbuf);
-	(*ctx->logger)(ctl_debug, "%s: %s: closed (fd %d)",
-		       me, address_expr, sess->sock);
-	UNLINK(ctx->sess, sess, link);
-	memput(sess, sizeof *sess);
-	ctx->cur_sess--;
-}
-
-static void
-ctl_start_read(struct ctl_sess *sess) {
-	static const char me[] = "ctl_start_read";
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP];
-
-	REQUIRE(sess->state == initializing ||
-		sess->state == writing ||
-		sess->state == processing ||
-		sess->state == idling);
-	REQUIRE(sess->rdtiID.opaque == NULL);
-	REQUIRE(sess->rdID.opaque == NULL);
-	sess->inbuf.used = 0;
-	if (evSetIdleTimer(ctx->ev, ctl_rdtimeout, sess, ctx->timeout,
-			   &sess->rdtiID) < 0)
-	{
-		(*ctx->logger)(ctl_error, "%s: %s: evSetIdleTimer: %s", me,
-			       address_expr, strerror(errno));
-		ctl_close(sess);
-		return;
-	}
-	if (evSelectFD(ctx->ev, sess->sock, EV_READ,
-		       ctl_readable, sess, &sess->rdID) < 0) {
-		(*ctx->logger)(ctl_error, "%s: %s: evSelectFD: %s", me,
-			       address_expr, strerror(errno));
-		return;
-	}
-	ctl_new_state(sess, reading, me);
-}
-
-static void
-ctl_stop_read(struct ctl_sess *sess) {
-	static const char me[] = "ctl_stop_read";
-	struct ctl_sctx *ctx = sess->ctx;
-
-	REQUIRE(sess->state == reading || sess->state == reading_data);
-	REQUIRE(sess->rdID.opaque != NULL);
-	(void) evDeselectFD(ctx->ev, sess->rdID);
-	sess->rdID.opaque = NULL;
-	if (sess->rdtiID.opaque != NULL) {
-		(void) evClearIdleTimer(ctx->ev, sess->rdtiID);
-		sess->rdtiID.opaque = NULL;
-	}
-	ctl_new_state(sess, idling, me);
-}
-
-static void
-ctl_readable(evContext lev, void *uap, int fd, int evmask) {
-	static const char me[] = "ctl_readable";
-	struct ctl_sess *sess = uap;
-	struct ctl_sctx *ctx = sess->ctx;
-	char *eos, tmp[MAX_NTOP];
-	ssize_t n;
-
-	REQUIRE(sess != NULL);
-	REQUIRE(fd >= 0);
-	REQUIRE(evmask == EV_READ);
-	REQUIRE(sess->state == reading || sess->state == reading_data);
-	evTouchIdleTimer(lev, sess->rdtiID);
-	if (!allocated_p(sess->inbuf) &&
-	    ctl_bufget(&sess->inbuf, ctx->logger) < 0) {
-		(*ctx->logger)(ctl_error, "%s: %s: cant get an input buffer",
-			       me, address_expr);
-		ctl_close(sess);
-		return;
-	}
-	n = read(sess->sock, sess->inbuf.text + sess->inbuf.used,
-		 MAX_LINELEN - sess->inbuf.used);
-	if (n <= 0) {
-		(*ctx->logger)(ctl_debug, "%s: %s: read: %s",
-			       me, address_expr,
-			       (n == 0) ? "Unexpected EOF" : strerror(errno));
-		ctl_close(sess);
-		return;
-	}
-	sess->inbuf.used += n;
-	eos = memchr(sess->inbuf.text, '\n', sess->inbuf.used);
-	if (eos != NULL && eos != sess->inbuf.text && eos[-1] == '\r') {
-		eos[-1] = '\0';
-		if ((sess->respflags & CTL_DATA) != 0) {
-			INSIST(sess->verb != NULL);
-			(*sess->verb->func)(sess->ctx, sess, sess->verb,
-					    sess->inbuf.text,
-					    CTL_DATA, sess->respctx,
-					    sess->ctx->uctx);
-		} else {
-			ctl_stop_read(sess);
-			ctl_docommand(sess);
-		}
-		sess->inbuf.used -= ((eos - sess->inbuf.text) + 1);
-		if (sess->inbuf.used == 0)
-			ctl_bufput(&sess->inbuf);
-		else
-			memmove(sess->inbuf.text, eos + 1, sess->inbuf.used);
-		return;
-	}
-	if (sess->inbuf.used == MAX_LINELEN) {
-		(*ctx->logger)(ctl_error, "%s: %s: line too long, closing",
-			       me, address_expr);
-		ctl_close(sess);
-	}
-}
-
-static void
-ctl_wrtimeout(evContext lev, void *uap,
-	      struct timespec due,
-	      struct timespec itv)
-{
-	static const char me[] = "ctl_wrtimeout";
-	struct ctl_sess *sess = uap;
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP];
-
-	REQUIRE(sess->state == writing);
-	sess->wrtiID.opaque = NULL;
-	(*ctx->logger)(ctl_warning, "%s: %s: write timeout, closing",
-		       me, address_expr);
-	if (sess->wrID.opaque != NULL) {
-		(void) evCancelRW(ctx->ev, sess->wrID);
-		sess->wrID.opaque = NULL;
-	}
-	ctl_signal_done(ctx, sess);
-	ctl_new_state(sess, processing, me);
-	ctl_close(sess);
-}
-
-static void
-ctl_rdtimeout(evContext lev, void *uap,
-	      struct timespec due,
-	      struct timespec itv)
-{
-	static const char me[] = "ctl_rdtimeout";
-	struct ctl_sess *sess = uap;
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP];
-
-	REQUIRE(sess->state == reading);
-	sess->rdtiID.opaque = NULL;
-	(*ctx->logger)(ctl_warning, "%s: %s: timeout, closing",
-		       me, address_expr);
-	if (sess->state == reading || sess->state == reading_data)
-		ctl_stop_read(sess);
-	ctl_signal_done(ctx, sess);
-	ctl_new_state(sess, processing, me);
-	ctl_response(sess, ctx->timeoutcode, "Timeout.", CTL_EXIT, NULL,
-		     NULL, NULL, NULL, 0);
-}
-
-static void
-ctl_docommand(struct ctl_sess *sess) {
-	static const char me[] = "ctl_docommand";
-	char *name, *rest, tmp[MAX_NTOP];
-	struct ctl_sctx *ctx = sess->ctx;
-	const struct ctl_verb *verb;
-
-	REQUIRE(allocated_p(sess->inbuf));
-	(*ctx->logger)(ctl_debug, "%s: %s: \"%s\" [%u]",
-		       me, address_expr,
-		       sess->inbuf.text, (u_int)sess->inbuf.used);
-	ctl_new_state(sess, processing, me);
-	name = sess->inbuf.text + strspn(sess->inbuf.text, space);
-	rest = name + strcspn(name, space);
-	if (*rest != '\0') {
-		*rest++ = '\0';
-		rest += strspn(rest, space);
-	}
-	for (verb = ctx->verbs;
-	     verb != NULL && verb->name != NULL && verb->func != NULL;
-	     verb++)
-		if (verb->name[0] != '\0' && strcasecmp(name, verb->name) == 0)
-			break;
-	if (verb != NULL && verb->name != NULL && verb->func != NULL) {
-		sess->verb = verb;
-		(*verb->func)(ctx, sess, verb, rest, 0, NULL, ctx->uctx);
-	} else {
-		char buf[1100];
-
-		if (sizeof "Unrecognized command \"\" (args \"\")" +
-		    strlen(name) + strlen(rest) > sizeof buf)
-			strcpy(buf, "Unrecognized command (buf ovf)");
-		else
-			sprintf(buf,
-				"Unrecognized command \"%s\" (args \"%s\")",
-				name, rest);
-		ctl_response(sess, ctx->unkncode, buf, 0, NULL, NULL, NULL,
-			     NULL, 0);
-	}
-}
-
-static void
-ctl_writedone(evContext lev, void *uap, int fd, int bytes) {
-	static const char me[] = "ctl_writedone";
-	struct ctl_sess *sess = uap;
-	struct ctl_sctx *ctx = sess->ctx;
-	char tmp[MAX_NTOP];
-	int save_errno = errno;
-
-	REQUIRE(sess->state == writing);
-	REQUIRE(fd == sess->sock);
-	REQUIRE(sess->wrtiID.opaque != NULL);
-	sess->wrID.opaque = NULL;
-	(void) evClearIdleTimer(ctx->ev, sess->wrtiID);
-	sess->wrtiID.opaque = NULL;
-	if (bytes < 0) {
-		(*ctx->logger)(ctl_error, "%s: %s: %s",
-			       me, address_expr, strerror(save_errno));
-		ctl_close(sess);
-		return;
-	}
-
-	INSIST(allocated_p(sess->outbuf));
-	ctl_bufput(&sess->outbuf);
-	if ((sess->respflags & CTL_EXIT) != 0) {
-		ctl_signal_done(ctx, sess);
-		ctl_close(sess);
-		return;
-	} else if ((sess->respflags & CTL_MORE) != 0) {
-		INSIST(sess->verb != NULL);
-		(*sess->verb->func)(sess->ctx, sess, sess->verb, "",
-				    CTL_MORE, sess->respctx, sess->ctx->uctx);
-	} else {
-		ctl_signal_done(ctx, sess);
-		ctl_start_read(sess);
-	}
-}
-
-static void
-ctl_morehelp(struct ctl_sctx *ctx, struct ctl_sess *sess,
-	     const struct ctl_verb *verb, const char *text,
-	     u_int respflags, void *respctx, void *uctx)
-{
-	struct ctl_verb *this = respctx, *next = this + 1;
-
-	REQUIRE(!lastverb_p(this));
-	REQUIRE((respflags & CTL_MORE) != 0);
-	if (lastverb_p(next))
-		respflags &= ~CTL_MORE;
-	ctl_response(sess, sess->helpcode, this->help, respflags, next,
-		     NULL, NULL, NULL, 0);
-}
-
-static void
-ctl_signal_done(struct ctl_sctx *ctx, struct ctl_sess *sess) {
-	if (sess->donefunc != NULL) {
-		(*sess->donefunc)(ctx, sess, sess->uap);
-		sess->donefunc = NULL;
-	}
-}
diff --git a/contrib/bind/lib/isc/ev_connects.c b/contrib/bind/lib/isc/ev_connects.c
deleted file mode 100644
index 1da5c1044ed77..0000000000000
--- a/contrib/bind/lib/isc/ev_connects.c
+++ /dev/null
@@ -1,349 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* ev_connects.c - implement asynch connect/accept for the eventlib
- * vix 16sep96 [initial]
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: ev_connects.c,v 8.26 2000/02/04 08:28:34 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/assertions.h>
-#include "eventlib_p.h"
-
-#include "port_after.h"
-
-/* Macros. */
-
-#define GETXXXNAME(f, s, sa, len) ( \
-	(f((s), (&sa), (&len)) >= 0) ? 0 : \
-		(errno != EAFNOSUPPORT && errno != EOPNOTSUPP) ? -1 : ( \
-			memset(&(sa), 0, sizeof (sa)), \
-			(len) = sizeof (sa), \
-			(sa).sa_family = AF_UNIX, \
-			0 \
-		) \
-	)
-
-/* Forward. */
-
-static void	listener(evContext ctx, void *uap, int fd, int evmask);
-static void	connector(evContext ctx, void *uap, int fd, int evmask);
-
-/* Public. */
-
-int
-evListen(evContext opaqueCtx, int fd, int maxconn,
-	 evConnFunc func, void *uap, evConnID *id)
-{
-	evContext_p *ctx = opaqueCtx.opaque;
-	evConn *new;
-	int mode;
-
-	OKNEW(new);
-	new->flags = EV_CONN_LISTEN;
-	OK(mode = fcntl(fd, F_GETFL, NULL));	/* side effect: validate fd. */
-	/*
-	 * Remember the nonblocking status.  We assume that either evSelectFD
-	 * has not been done to this fd, or that if it has then the caller
-	 * will evCancelConn before they evDeselectFD.  If our assumptions
-	 * are not met, then we might restore the old nonblocking status
-	 * incorrectly.
-	 */
-	if ((mode & PORT_NONBLOCK) == 0) {
-		OK(fcntl(fd, F_SETFL, mode | PORT_NONBLOCK));
-		new->flags |= EV_CONN_BLOCK;
-	}
-	OK(listen(fd, maxconn));
-	if (evSelectFD(opaqueCtx, fd, EV_READ, listener, new, &new->file) < 0){
-		int save = errno;
-
-		FREE(new);
-		errno = save;
-		return (-1);
-	}
-	new->flags |= EV_CONN_SELECTED;
-	new->func = func;
-	new->uap = uap;
-	new->fd = fd;
-	if (ctx->conns != NULL)
-		ctx->conns->prev = new;
-	new->prev = NULL;
-	new->next = ctx->conns;
-	ctx->conns = new;
-	if (id)
-		id->opaque = new;
-	return (0);
-}
-
-int
-evConnect(evContext opaqueCtx, int fd, void *ra, int ralen,
-	  evConnFunc func, void *uap, evConnID *id)
-{
-	evContext_p *ctx = opaqueCtx.opaque;
-	evConn *new;
-
-	OKNEW(new);
-	new->flags = 0;
-	/* Do the select() first to get the socket into nonblocking mode. */
-	if (evSelectFD(opaqueCtx, fd, EV_MASK_ALL,
-		       connector, new, &new->file) < 0) {
-		int save = errno;
-
-		FREE(new);
-		errno = save;
-		return (-1);
-	}
-	new->flags |= EV_CONN_SELECTED;
-	if (connect(fd, ra, ralen) < 0 &&
-	    errno != EWOULDBLOCK &&
-	    errno != EAGAIN &&
-	    errno != EINPROGRESS) {
-		int save = errno;
-
-		(void) evDeselectFD(opaqueCtx, new->file);
-		FREE(new);
-		errno = save;
-		return (-1);
-	}
-	/* No error, or EWOULDBLOCK.  select() tells when it's ready. */
-	new->func = func;
-	new->uap = uap;
-	new->fd = fd;
-	if (ctx->conns != NULL)
-		ctx->conns->prev = new;
-	new->prev = NULL;
-	new->next = ctx->conns;
-	ctx->conns = new;
-	if (id)
-		id->opaque = new;
-	return (0);
-}
-
-int
-evCancelConn(evContext opaqueCtx, evConnID id) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evConn *this = id.opaque;
-	evAccept *acc, *nxtacc;
-	int mode;
-
-	if ((this->flags & EV_CONN_SELECTED) != 0)
-		(void) evDeselectFD(opaqueCtx, this->file);
-	if ((this->flags & EV_CONN_BLOCK) != 0) {
-		mode = fcntl(this->fd, F_GETFL, NULL);
-		if (mode == -1) {
-			if (errno != EBADF)
-				return (-1);
-		} else
-			OK(fcntl(this->fd, F_SETFL, mode | PORT_NONBLOCK));
-	}
-	
-	/* Unlink from ctx->conns. */
-	if (this->prev != NULL)
-		this->prev->next = this->next;
-	else
-		ctx->conns = this->next;
-	if (this->next != NULL)
-		this->next->prev = this->prev;
-
-	/*
-	 * Remove `this' from the ctx->accepts list (zero or more times).
-	 */
-	for (acc = HEAD(ctx->accepts), nxtacc = NULL;
-	     acc != NULL;
-	     acc = nxtacc)
-	{
-		nxtacc = NEXT(acc, link);
-		if (acc->conn == this) {
-			UNLINK(ctx->accepts, acc, link);
-			close(acc->fd);
-			FREE(acc);
-		}
-	}
-
-	/* Wrap up and get out. */
-	FREE(this);
-	return (0);
-}
-
-int evHold(evContext opaqueCtx, evConnID id) {
-	evConn *this = id.opaque;
-
-	if ((this->flags & EV_CONN_LISTEN) == 0) {
-		errno = EINVAL;
-		return (-1);
-	}
-	if ((this->flags & EV_CONN_SELECTED) == 0)
-		return (0);
-	this->flags &= ~EV_CONN_SELECTED;
-	return (evDeselectFD(opaqueCtx, this->file));
-}
-
-int evUnhold(evContext opaqueCtx, evConnID id) {
-	evConn *this = id.opaque;
-	int ret;
-
-	if ((this->flags & EV_CONN_LISTEN) == 0) {
-		errno = EINVAL;
-		return (-1);
-	}
-	if ((this->flags & EV_CONN_SELECTED) != 0)
-		return (0);
-	ret = evSelectFD(opaqueCtx, this->fd, EV_READ, listener, this,
-			 &this->file);
-	if (ret == 0)
-		this->flags |= EV_CONN_SELECTED;
-	return (ret);
-}
-
-int
-evTryAccept(evContext opaqueCtx, evConnID id, int *sys_errno) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evConn *conn = id.opaque;
-	evAccept *new;
-
-	if ((conn->flags & EV_CONN_LISTEN) == 0) {
-		errno = EINVAL;
-		return (-1);
-	}
-	OKNEW(new);
-	new->conn = conn;
-	new->ralen = sizeof new->ra;
-	new->fd = accept(conn->fd, &new->ra.sa, &new->ralen);
-	if (new->fd > ctx->highestFD) {
-		close(new->fd);
-		new->fd = -1;
-		new->ioErrno = ENOTSOCK;
-	}
-	if (new->fd >= 0) {
-		new->lalen = sizeof new->la;
-		if (GETXXXNAME(getsockname, new->fd, new->la.sa, new->lalen) < 0) {
-			new->ioErrno = errno;
-			(void) close(new->fd);
-			new->fd = -1;
-		} else
-			new->ioErrno = 0;
-	} else {
-		new->ioErrno = errno;
-		if (errno == EAGAIN || errno == EWOULDBLOCK) {
-			FREE(new);
-			return (-1);
-		}
-	}
-	APPEND(ctx->accepts, new, link);
-	*sys_errno = new->ioErrno;
-	return (0);
-}
-
-/* Private. */
-
-static void
-listener(evContext opaqueCtx, void *uap, int fd, int evmask) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evConn *conn = uap;
-	union {
-		struct sockaddr    sa;
-		struct sockaddr_in in;
-#ifndef NO_SOCKADDR_UN
-		struct sockaddr_un un;
-#endif
-	} la, ra;
-	int new, lalen = 0, ralen;
-
-	REQUIRE((evmask & EV_READ) != 0);
-	ralen = sizeof ra;
-	new = accept(fd, &ra.sa, &ralen);
-	if (new > ctx->highestFD) {
-		close(new);
-		new = -1;
-		errno = ENOTSOCK;
-	}
-	if (new >= 0) {
-		lalen = sizeof la;
-		if (GETXXXNAME(getsockname, new, la.sa, lalen) < 0) {
-			int save = errno;
-
-			(void) close(new);
-			errno = save;
-			new = -1;
-		}
-	} else if (errno == EAGAIN || errno == EWOULDBLOCK)
-		return;
-	(*conn->func)(opaqueCtx, conn->uap, new, &la.sa, lalen, &ra.sa, ralen);
-}
-
-static void
-connector(evContext opaqueCtx, void *uap, int fd, int evmask) {
-	evConn *conn = uap;
-	union {
-		struct sockaddr    sa;
-		struct sockaddr_in in;
-#ifndef NO_SOCKADDR_UN
-		struct sockaddr_un un;
-#endif
-	} la, ra;
-	int lalen, ralen;
-	char buf[1];
-	void *conn_uap;
-	evConnFunc conn_func;
-	evConnID id;
-	int socket_errno = 0;
-	int optlen;
-
-	lalen = sizeof la;
-	ralen = sizeof ra;
-	conn_uap = conn->uap;
-	conn_func = conn->func;
-	id.opaque = conn;
-#ifdef SO_ERROR
-	optlen = sizeof socket_errno;
-	if (fd < 0 &&
-	    getsockopt(conn->fd, SOL_SOCKET, SO_ERROR, (char *)&socket_errno,
-		       &optlen) < 0)
-		socket_errno = errno;
-	else
-		errno = socket_errno;
-#endif
-	if (evCancelConn(opaqueCtx, id) < 0 ||
-	    socket_errno ||
-#ifdef NETREAD_BROKEN
-	    0 ||
-#else
-	    read(fd, buf, 0) < 0 ||
-#endif
-	    GETXXXNAME(getsockname, fd, la.sa, lalen) < 0 ||
-	    GETXXXNAME(getpeername, fd, ra.sa, ralen) < 0) {
-		int save = errno;
-
-		(void) close(fd);	/* XXX closing caller's fd */
-		errno = save;
-		fd = -1;
-	}
-	(*conn_func)(opaqueCtx, conn_uap, fd, &la.sa, lalen, &ra.sa, ralen);
-}
diff --git a/contrib/bind/lib/isc/ev_files.c b/contrib/bind/lib/isc/ev_files.c
deleted file mode 100644
index 434385c170088..0000000000000
--- a/contrib/bind/lib/isc/ev_files.c
+++ /dev/null
@@ -1,272 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* ev_files.c - implement asynch file IO for the eventlib
- * vix 11sep95 [initial]
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: ev_files.c,v 1.19 1999/10/07 20:44:04 vixie Exp $";
-#endif
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/time.h>
-
-#include <errno.h>
-#include <fcntl.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include "eventlib_p.h"
-
-#include "port_after.h"
-
-static evFile *FindFD(const evContext_p *ctx, int fd, int eventmask);
-
-int
-evSelectFD(evContext opaqueCtx,
-	   int fd,
-	   int eventmask,
-	   evFileFunc func,
-	   void *uap,
-	   evFileID *opaqueID
-) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evFile *id;
-	int mode;
-
-	evPrintf(ctx, 1,
-		 "evSelectFD(ctx %#x, fd %d, mask 0x%x, func %#x, uap %#x)\n",
-		 ctx, fd, eventmask, func, uap);
-	if (eventmask == 0 || (eventmask & ~EV_MASK_ALL) != 0)
-		ERR(EINVAL);
-	if (fd > ctx->highestFD)
-		ERR(EINVAL);
-	OK(mode = fcntl(fd, F_GETFL, NULL));	/* side effect: validate fd. */
-
-	/*
-	 * The first time we touch a file descriptor, we need to check to see
-	 * if the application already had it in O_NONBLOCK mode and if so, all
-	 * of our deselect()'s have to leave it in O_NONBLOCK.  If not, then
-	 * all but our last deselect() has to leave it in O_NONBLOCK.
-	 */
-	id = FindFD(ctx, fd, EV_MASK_ALL);
-	if (id == NULL) {
-		if (mode & PORT_NONBLOCK)
-			FD_SET(fd, &ctx->nonblockBefore);
-		else {
-			OK(fcntl(fd, F_SETFL, mode | PORT_NONBLOCK));
-			FD_CLR(fd, &ctx->nonblockBefore);
-		}
-	}
-
-	/*
-	 * If this descriptor is already in use, search for it again to see
-	 * if any of the eventmask bits we want to set are already captured.
-	 * We cannot usefully capture the same fd event more than once in the
-	 * same context.
-	 */
-	if (id != NULL && FindFD(ctx, fd, eventmask) != NULL)
-		ERR(ETOOMANYREFS);
-
-	/* Allocate and fill. */
-	OKNEW(id);
-	id->func = func;
-	id->uap = uap;
-	id->fd = fd;
-	id->eventmask = eventmask;
-
-	/*
-	 * Insert at head.  Order could be important for performance if we
-	 * believe that evGetNext()'s accesses to the fd_sets will be more
-	 * serial and therefore more cache-lucky if the list is ordered by
-	 * ``fd.''  We do not believe these things, so we don't do it.
-	 *
-	 * The interesting sequence is where GetNext() has cached a select()
-	 * result and the caller decides to evSelectFD() on some descriptor.
-	 * Since GetNext() starts at the head, it can miss new entries we add
-	 * at the head.  This is not a serious problem since the event being
-	 * evSelectFD()'d for has to occur before evSelectFD() is called for
-	 * the file event to be considered "missed" -- a real corner case.
-	 * Maintaining a "tail" pointer for ctx->files would fix this, but I'm
-	 * not sure it would be ``more correct.''
-	 */
-	if (ctx->files != NULL)
-		ctx->files->prev = id;
-	id->prev = NULL;
-	id->next = ctx->files;
-	ctx->files = id;
-
-	/* Insert into fd table. */
-	if (ctx->fdTable[fd] != NULL)
-		ctx->fdTable[fd]->fdprev = id;
-	id->fdprev = NULL;
-	id->fdnext = ctx->fdTable[fd];
-	ctx->fdTable[fd] = id;
-
-	/* Turn on the appropriate bits in the {rd,wr,ex}Next fd_set's. */
-	if (eventmask & EV_READ)
-		FD_SET(fd, &ctx->rdNext);
-	if (eventmask & EV_WRITE)
-		FD_SET(fd, &ctx->wrNext);
-	if (eventmask & EV_EXCEPT)
-		FD_SET(fd, &ctx->exNext);
-
-	/* Update fdMax. */
-	if (fd > ctx->fdMax)
-		ctx->fdMax = fd;
-
-	/* Remember the ID if the caller provided us a place for it. */
-	if (opaqueID)
-		opaqueID->opaque = id;
-
-	evPrintf(ctx, 5,
-		"evSelectFD(fd %d, mask 0x%x): new masks: 0x%lx 0x%lx 0x%lx\n",
-		 fd, eventmask,
-		 (u_long)ctx->rdNext.fds_bits[0],
-		 (u_long)ctx->wrNext.fds_bits[0],
-		 (u_long)ctx->exNext.fds_bits[0]);
-
-	return (0);
-}
-
-int
-evDeselectFD(evContext opaqueCtx, evFileID opaqueID) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evFile *del = opaqueID.opaque;
-	evFile *cur;
-	int mode, eventmask;
-
-	if (!del) {
-		evPrintf(ctx, 11, "evDeselectFD(NULL) ignored\n");
-		errno = EINVAL;
-		return (-1);
-	}
-
-	evPrintf(ctx, 1, "evDeselectFD(fd %d, mask 0x%x)\n",
-		 del->fd, del->eventmask);
-
-	/* Get the mode.  Unless the file has been closed, errors are bad. */
-	mode = fcntl(del->fd, F_GETFL, NULL);
-	if (mode == -1 && errno != EBADF)
-		ERR(errno);
-
-	/* Remove from the list of files. */
-	if (del->prev != NULL)
-		del->prev->next = del->next;
-	else
-		ctx->files = del->next;
-	if (del->next != NULL)
-		del->next->prev = del->prev;
-
-	/* Remove from the fd table. */
-	if (del->fdprev != NULL)
-		del->fdprev->fdnext = del->fdnext;
-	else
-		ctx->fdTable[del->fd] = del->fdnext;
-	if (del->fdnext != NULL)
-		del->fdnext->fdprev = del->fdprev;
-
-	/*
-	 * If the file descriptor does not appear in any other select() entry,
-	 * and if !EV_WASNONBLOCK, and if we got no EBADF when we got the mode
-	 * earlier, then: restore the fd to blocking status.
-	 */
-	if (!(cur = FindFD(ctx, del->fd, EV_MASK_ALL)) &&
-	    !FD_ISSET(del->fd, &ctx->nonblockBefore) &&
-	    mode != -1) {
-		/*
-		 * Note that we won't return an error status to the caller if
-		 * this fcntl() fails since (a) we've already done the work
-		 * and (b) the caller didn't ask us anything about O_NONBLOCK.
-		 */
-		(void) fcntl(del->fd, F_SETFL, mode & ~PORT_NONBLOCK);
-	}
-
-	/*
-	 * Now find all other uses of this descriptor and OR together an event
-	 * mask so that we don't turn off {rd,wr,ex}Next bits that some other
-	 * file event is using.  As an optimization, stop if the event mask
-	 * fills.
-	 */
-	eventmask = 0;
-	for ((void)NULL;
-	     cur != NULL && eventmask != EV_MASK_ALL;
-	     cur = cur->next)
-		if (cur->fd == del->fd)
-			eventmask |= cur->eventmask;
-
-	/* OK, now we know which bits we can clear out. */
-	if (!(eventmask & EV_READ)) {
-		FD_CLR(del->fd, &ctx->rdNext);
-		if (FD_ISSET(del->fd, &ctx->rdLast)) {
-			FD_CLR(del->fd, &ctx->rdLast);
-			ctx->fdCount--;
-		}
-	}
-	if (!(eventmask & EV_WRITE)) {
-		FD_CLR(del->fd, &ctx->wrNext);
-		if (FD_ISSET(del->fd, &ctx->wrLast)) {
-			FD_CLR(del->fd, &ctx->wrLast);
-			ctx->fdCount--;
-		}
-	}
-	if (!(eventmask & EV_EXCEPT)) {
-		FD_CLR(del->fd, &ctx->exNext);
-		if (FD_ISSET(del->fd, &ctx->exLast)) {
-			FD_CLR(del->fd, &ctx->exLast);
-			ctx->fdCount--;
-		}
-	}
-
-	/* If this was the maxFD, find the new one. */
-	if (del->fd == ctx->fdMax) {
-		ctx->fdMax = -1;
-		for (cur = ctx->files; cur; cur = cur->next)
-			if (cur->fd > ctx->fdMax)
-				ctx->fdMax = cur->fd;
-	}
-
-	/* If this was the fdNext, cycle that to the next entry. */
-	if (del == ctx->fdNext)
-		ctx->fdNext = del->next;
-
-	evPrintf(ctx, 5,
-	      "evDeselectFD(fd %d, mask 0x%x): new masks: 0x%lx 0x%lx 0x%lx\n",
-		 del->fd, eventmask,
-		 (u_long)ctx->rdNext.fds_bits[0],
-		 (u_long)ctx->wrNext.fds_bits[0],
-		 (u_long)ctx->exNext.fds_bits[0]);
-
-	/* Couldn't free it before now since we were using fields out of it. */
-	FREE(del);
-
-	return (0);
-}
-
-static evFile *
-FindFD(const evContext_p *ctx, int fd, int eventmask) {
-	evFile *id;
-
-	for (id = ctx->fdTable[fd]; id != NULL; id = id->fdnext)
-		if (id->fd == fd && (id->eventmask & eventmask) != 0)
-			break;
-	return (id);
-}
diff --git a/contrib/bind/lib/isc/ev_streams.c b/contrib/bind/lib/isc/ev_streams.c
deleted file mode 100644
index b25a666c355ae..0000000000000
--- a/contrib/bind/lib/isc/ev_streams.c
+++ /dev/null
@@ -1,298 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* ev_streams.c - implement asynch stream file IO for the eventlib
- * vix 04mar96 [initial]
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: ev_streams.c,v 8.21 1999/10/07 20:44:04 vixie Exp $";
-#endif
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/uio.h>
-
-#include <errno.h>
-
-#include <isc/eventlib.h>
-#include <isc/assertions.h>
-#include "eventlib_p.h"
-
-#include "port_after.h"
-
-static int	copyvec(evStream *str, const struct iovec *iov, int iocnt);
-static void	consume(evStream *str, size_t bytes);
-static void	done(evContext opaqueCtx, evStream *str);
-static void	writable(evContext opaqueCtx, void *uap, int fd, int evmask);
-static void	readable(evContext opaqueCtx, void *uap, int fd, int evmask);
-
-struct iovec
-evConsIovec(void *buf, size_t cnt) {
-	struct iovec ret;
-
-	memset(&ret, 0xf5, sizeof ret);
-	ret.iov_base = buf;
-	ret.iov_len = cnt;
-	return (ret);
-}
-
-int
-evWrite(evContext opaqueCtx, int fd, const struct iovec *iov, int iocnt,
-	evStreamFunc func, void *uap, evStreamID *id)
-{
-	evContext_p *ctx = opaqueCtx.opaque;
-	evStream *new;
-	int save;
-
-	OKNEW(new);
-	new->func = func;
-	new->uap = uap;
-	new->fd = fd;
-	new->flags = 0;
-	if (evSelectFD(opaqueCtx, fd, EV_WRITE, writable, new, &new->file) < 0)
-		goto free;
-	if (copyvec(new, iov, iocnt) < 0)
-		goto free;
-	new->prevDone = NULL;
-	new->nextDone = NULL;
-	if (ctx->streams != NULL)
-		ctx->streams->prev = new;
-	new->prev = NULL;
-	new->next = ctx->streams;
-	ctx->streams = new;
-	if (id != NULL)
-		id->opaque = new;
-	return (0);
- free:
-	save = errno;
-	FREE(new);
-	errno = save;
-	return (-1);
-}
-
-int
-evRead(evContext opaqueCtx, int fd, const struct iovec *iov, int iocnt,
-       evStreamFunc func, void *uap, evStreamID *id)
-{
-	evContext_p *ctx = opaqueCtx.opaque;
-	evStream *new;
-	int save;
-
-	OKNEW(new);
-	new->func = func;
-	new->uap = uap;
-	new->fd = fd;
-	new->flags = 0;
-	if (evSelectFD(opaqueCtx, fd, EV_READ, readable, new, &new->file) < 0)
-		goto free;
-	if (copyvec(new, iov, iocnt) < 0)
-		goto free;
-	new->prevDone = NULL;
-	new->nextDone = NULL;
-	if (ctx->streams != NULL)
-		ctx->streams->prev = new;
-	new->prev = NULL;
-	new->next = ctx->streams;
-	ctx->streams = new;
-	if (id)
-		id->opaque = new;
-	return (0);
- free:
-	save = errno;
-	FREE(new);
-	errno = save;
-	return (-1);
-}
-
-int
-evTimeRW(evContext opaqueCtx, evStreamID id, evTimerID timer) /*ARGSUSED*/ {
-	evStream *str = id.opaque;
-
-	str->timer = timer;
-	str->flags |= EV_STR_TIMEROK;
-	return (0);
-}
-
-int
-evUntimeRW(evContext opaqueCtx, evStreamID id) /*ARGSUSED*/ {
-	evStream *str = id.opaque;
-
-	str->flags &= ~EV_STR_TIMEROK;
-	return (0);
-}
-
-int
-evCancelRW(evContext opaqueCtx, evStreamID id) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evStream *old = id.opaque;
-
-	/*
-	 * The streams list is doubly threaded.  First, there's ctx->streams
-	 * that's used by evDestroy() to find and cancel all streams.  Second,
-	 * there's ctx->strDone (head) and ctx->strLast (tail) which thread
-	 * through the potentially smaller number of "IO completed" streams,
-	 * used in evGetNext() to avoid scanning the entire list.
-	 */
-
-	/* Unlink from ctx->streams. */
-	if (old->prev != NULL)
-		old->prev->next = old->next;
-	else
-		ctx->streams = old->next;
-	if (old->next != NULL)
-		old->next->prev = old->prev;
-
-	/*
-	 * If 'old' is on the ctx->strDone list, remove it.  Update
-	 * ctx->strLast if necessary.
-	 */
-	if (old->prevDone == NULL && old->nextDone == NULL) {
-		/*
-		 * Either 'old' is the only item on the done list, or it's
-		 * not on the done list.  If the former, then we unlink it
-		 * from the list.  If the latter, we leave the list alone.
-		 */
-		if (ctx->strDone == old) {
-			ctx->strDone = NULL;
-			ctx->strLast = NULL;
-		}
-	} else {
-		if (old->prevDone != NULL)
-			old->prevDone->nextDone = old->nextDone;
-		else
-			ctx->strDone = old->nextDone;
-		if (old->nextDone != NULL)
-			old->nextDone->prevDone = old->prevDone;
-		else
-			ctx->strLast = old->prevDone;
-	}
-
-	/* Deallocate the stream. */
-	if (old->file.opaque)
-		evDeselectFD(opaqueCtx, old->file);
-	memput(old->iovOrig, sizeof (struct iovec) * old->iovOrigCount);
-	FREE(old);
-	return (0);
-}
-
-/* Copy a scatter/gather vector and initialize a stream handler's IO. */
-static int
-copyvec(evStream *str, const struct iovec *iov, int iocnt) {
-	int i;
-
-	str->iovOrig = (struct iovec *)memget(sizeof(struct iovec) * iocnt);
-	if (str->iovOrig == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	str->ioTotal = 0;
-	for (i = 0; i < iocnt; i++) {
-		str->iovOrig[i] = iov[i];
-		str->ioTotal += iov[i].iov_len;
-	}
-	str->iovOrigCount = iocnt;
-	str->iovCur = str->iovOrig;
-	str->iovCurCount = str->iovOrigCount;
-	str->ioDone = 0;
-	return (0);
-}
-
-/* Pull off or truncate lead iovec(s). */
-static void
-consume(evStream *str, size_t bytes) {
-	while (bytes > 0) {
-		if (bytes < str->iovCur->iov_len) {
-			str->iovCur->iov_len -= bytes;
-			str->iovCur->iov_base = (void *)
-				((u_char *)str->iovCur->iov_base + bytes);
-			str->ioDone += bytes;
-			bytes = 0;
-		} else {
-			bytes -= str->iovCur->iov_len;
-			str->ioDone += str->iovCur->iov_len;
-			str->iovCur++;
-			str->iovCurCount--;
-		}
-	}
-}
-
-/* Add a stream to Done list and deselect the FD. */
-static void
-done(evContext opaqueCtx, evStream *str) {
-	evContext_p *ctx = opaqueCtx.opaque;
-
-	if (ctx->strLast != NULL) {
-		str->prevDone = ctx->strLast;
-		ctx->strLast->nextDone = str;
-		ctx->strLast = str;
-	} else {
-		INSIST(ctx->strDone == NULL);
-		ctx->strDone = ctx->strLast = str;
-	}
-	evDeselectFD(opaqueCtx, str->file);
-	str->file.opaque = NULL;
-	/* evDrop() will call evCancelRW() on us. */
-}
-
-/* Dribble out some bytes on the stream.  (Called by evDispatch().) */
-static void
-writable(evContext opaqueCtx, void *uap, int fd, int evmask) {
-	evStream *str = uap;
-	int bytes;
-
-	bytes = writev(fd, str->iovCur, str->iovCurCount);
-	if (bytes > 0) {
-		if ((str->flags & EV_STR_TIMEROK) != 0)
-			evTouchIdleTimer(opaqueCtx, str->timer);
-		consume(str, bytes);
-	} else {
-		if (bytes < 0 && errno != EINTR) {
-			str->ioDone = -1;
-			str->ioErrno = errno;
-		}
-	}
-	if (str->ioDone == -1 || str->ioDone == str->ioTotal)
-		done(opaqueCtx, str);
-}
-
-/* Scoop up some bytes from the stream.  (Called by evDispatch().) */
-static void
-readable(evContext opaqueCtx, void *uap, int fd, int evmask) {
-	evStream *str = uap;
-	int bytes;
-
-	bytes = readv(fd, str->iovCur, str->iovCurCount);
-	if (bytes > 0) {
-		if ((str->flags & EV_STR_TIMEROK) != 0)
-			evTouchIdleTimer(opaqueCtx, str->timer);
-		consume(str, bytes);
-	} else {
-		if (bytes == 0)
-			str->ioDone = 0;
-		else {
-			if (errno != EINTR) {
-				str->ioDone = -1;
-				str->ioErrno = errno;
-			}
-		}
-	}
-	if (str->ioDone <= 0 || str->ioDone == str->ioTotal)
-		done(opaqueCtx, str);
-}
diff --git a/contrib/bind/lib/isc/ev_timers.c b/contrib/bind/lib/isc/ev_timers.c
deleted file mode 100644
index 0db770c4daa0e..0000000000000
--- a/contrib/bind/lib/isc/ev_timers.c
+++ /dev/null
@@ -1,404 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* ev_timers.c - implement timers for the eventlib
- * vix 09sep95 [initial]
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: ev_timers.c,v 1.25 1999/10/07 20:44:04 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <errno.h>
-
-#include <isc/eventlib.h>
-#include "eventlib_p.h"
-
-#include "port_after.h"
-
-/* Constants. */
-
-#define BILLION 1000000000
-
-/* Forward. */
-
-static int due_sooner(void *, void *);
-static void set_index(void *, int);
-static void free_timer(void *, void *);
-static void print_timer(void *, void *);
-static void idle_timeout(evContext, void *, struct timespec, struct timespec);
-
-/* Private type. */
-
-typedef struct {
-	evTimerFunc	func;
-	void *		uap;
-	struct timespec	lastTouched;
-	struct timespec	max_idle;
-	evTimer *	timer;
-} idle_timer;
-
-/* Public. */
-
-struct timespec
-evConsTime(time_t sec, long nsec) {
-	struct timespec x;
-
-	x.tv_sec = sec;
-	x.tv_nsec = nsec;
-	return (x);
-}
-
-struct timespec
-evAddTime(struct timespec addend1, struct timespec addend2) {
-	struct timespec x;
-
-	x.tv_sec = addend1.tv_sec + addend2.tv_sec;
-	x.tv_nsec = addend1.tv_nsec + addend2.tv_nsec;
-	if (x.tv_nsec >= BILLION) {
-		x.tv_sec++;
-		x.tv_nsec -= BILLION;
-	}
-	return (x);
-}
-
-struct timespec
-evSubTime(struct timespec minuend, struct timespec subtrahend) {
-	struct timespec x;
-
-	x.tv_sec = minuend.tv_sec - subtrahend.tv_sec;
-	if (minuend.tv_nsec >= subtrahend.tv_nsec)
-		x.tv_nsec = minuend.tv_nsec - subtrahend.tv_nsec;
-	else {
-		x.tv_nsec = BILLION - subtrahend.tv_nsec + minuend.tv_nsec;
-		x.tv_sec--;
-	}
-	return (x);
-}
-
-int
-evCmpTime(struct timespec a, struct timespec b) {
-	long x = a.tv_sec - b.tv_sec;
-
-	if (x == 0L)
-		x = a.tv_nsec - b.tv_nsec;
-	return (x < 0L ? (-1) : x > 0L ? (1) : (0));
-}
-
-struct timespec
-evNowTime() {
-	struct timeval now;
-
-	if (gettimeofday(&now, NULL) < 0)
-		return (evConsTime(0, 0));
-	return (evTimeSpec(now));
-}
-
-struct timespec
-evLastEventTime(evContext opaqueCtx) {
-	evContext_p *ctx = opaqueCtx.opaque;
-
-	return (ctx->lastEventTime);
-}
-
-struct timespec
-evTimeSpec(struct timeval tv) {
-	struct timespec ts;
-
-	ts.tv_sec = tv.tv_sec;
-	ts.tv_nsec = tv.tv_usec * 1000;
-	return (ts);
-}
-
-struct timeval
-evTimeVal(struct timespec ts) {
-	struct timeval tv;
-
-	tv.tv_sec = ts.tv_sec;
-	tv.tv_usec = ts.tv_nsec / 1000;
-	return (tv);
-}
-
-int
-evSetTimer(evContext opaqueCtx,
-	   evTimerFunc func,
-	   void *uap,
-	   struct timespec due,
-	   struct timespec inter,
-	   evTimerID *opaqueID
-) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evTimer *id;
-
-	evPrintf(ctx, 1,
-"evSetTimer(ctx %#x, func %#x, uap %#x, due %d.%09ld, inter %d.%09ld)\n",
-		 ctx, func, uap,
-		 due.tv_sec, due.tv_nsec,
-		 inter.tv_sec, inter.tv_nsec);
-
-	/* due={0,0} is a magic cookie meaning "now." */
-	if (due.tv_sec == 0 && due.tv_nsec == 0L)
-		due = evNowTime();
-
-	/* Allocate and fill. */
-	OKNEW(id);
-	id->func = func;
-	id->uap = uap;
-	id->due = due;
-	id->inter = inter;
-
-	if (heap_insert(ctx->timers, id) < 0)
-		return (-1);
-
-	/* Remember the ID if the caller provided us a place for it. */
-	if (opaqueID)
-		opaqueID->opaque = id;
-
-	if (ctx->debug > 7) {
-		evPrintf(ctx, 7, "timers after evSetTimer:\n");
-		(void) heap_for_each(ctx->timers, print_timer, (void *)ctx);
-	}
-
-	return (0);
-}
-
-int
-evClearTimer(evContext opaqueCtx, evTimerID id) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evTimer *del = id.opaque;
-
-	if (ctx->cur != NULL &&
-	    ctx->cur->type == Timer &&
-	    ctx->cur->u.timer.this == del) {
-		evPrintf(ctx, 8, "deferring delete of timer (executing)\n");
-		/*
-		 * Setting the interval to zero ensures that evDrop() will
-		 * clean up the timer.
-		 */
-		del->inter = evConsTime(0, 0);
-		return (0);
-	}
-
-	if (heap_element(ctx->timers, del->index) != del)
-		ERR(ENOENT);
-
-	if (heap_delete(ctx->timers, del->index) < 0)
-		return (-1);
-	FREE(del);
-
-	if (ctx->debug > 7) {
-		evPrintf(ctx, 7, "timers after evClearTimer:\n");
-		(void) heap_for_each(ctx->timers, print_timer, (void *)ctx);
-	}
-
-	return (0);
-}
-
-int
-evResetTimer(evContext opaqueCtx,
-	     evTimerID id,
-	     evTimerFunc func,
-	     void *uap,
-	     struct timespec due,
-	     struct timespec inter
-) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evTimer *timer = id.opaque;
-	struct timespec old_due;
-	int result=0;
-
-	if (heap_element(ctx->timers, timer->index) != timer)
-		ERR(ENOENT);
-
-	old_due = timer->due;
-
-	timer->func = func;
-	timer->uap = uap;
-	timer->due = due;
-	timer->inter = inter;
-
-	switch (evCmpTime(due, old_due)) {
-	case -1:
-		result = heap_increased(ctx->timers, timer->index);
-		break;
-	case 0:
-		result = 0;
-		break;
-	case 1:
-		result = heap_decreased(ctx->timers, timer->index);
-		break;
-	}
-
-	if (ctx->debug > 7) {
-		evPrintf(ctx, 7, "timers after evResetTimer:\n");
-		(void) heap_for_each(ctx->timers, print_timer, (void *)ctx);
-	}
-
-	return (result);
-}
-
-int
-evSetIdleTimer(evContext opaqueCtx,
-		evTimerFunc func,
-		void *uap,
-		struct timespec max_idle,
-		evTimerID *opaqueID
-) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	idle_timer *tt;
-
-	/* Allocate and fill. */
-	OKNEW(tt);
-	tt->func = func;
-	tt->uap = uap;
-	tt->lastTouched = ctx->lastEventTime;
-	tt->max_idle = max_idle;
-
-	if (evSetTimer(opaqueCtx, idle_timeout, tt,
-		       evAddTime(ctx->lastEventTime, max_idle),
-		       max_idle, opaqueID) < 0) {
-		FREE(tt);
-		return (-1);
-	}
-
-	tt->timer = opaqueID->opaque;
-
-	return (0);
-}
-
-int
-evClearIdleTimer(evContext opaqueCtx, evTimerID id) {
-	evTimer *del = id.opaque;
-	idle_timer *tt = del->uap;
-
-	FREE(tt);
-	return (evClearTimer(opaqueCtx, id));
-}
-
-int
-evResetIdleTimer(evContext opaqueCtx,
-		 evTimerID opaqueID,
-		 evTimerFunc func,
-		 void *uap,
-		 struct timespec max_idle
-) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evTimer *timer = opaqueID.opaque;
-	idle_timer *tt = timer->uap;
-
-	tt->func = func;
-	tt->uap = uap;
-	tt->lastTouched = ctx->lastEventTime;
-	tt->max_idle = max_idle;
-
-	return (evResetTimer(opaqueCtx, opaqueID, idle_timeout, tt,
-			     evAddTime(ctx->lastEventTime, max_idle),
-			     max_idle));
-}
-
-int
-evTouchIdleTimer(evContext opaqueCtx, evTimerID id) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evTimer *t = id.opaque;
-	idle_timer *tt = t->uap;
-
-	tt->lastTouched = ctx->lastEventTime;
-
-	return (0);
-}
-
-/* Public to the rest of eventlib. */
-
-heap_context
-evCreateTimers(const evContext_p *ctx) {
-	return (heap_new(due_sooner, set_index, 2048));
-}
-
-void
-evDestroyTimers(const evContext_p *ctx) {
-	(void) heap_for_each(ctx->timers, free_timer, NULL);
-	(void) heap_free(ctx->timers);
-}
-
-/* Private. */
-
-static int
-due_sooner(void *a, void *b) {
-	evTimer *a_timer, *b_timer;
-
-	a_timer = a;
-	b_timer = b;
-	return (evCmpTime(a_timer->due, b_timer->due) < 0);
-}
-
-static void
-set_index(void *what, int index) {
-	evTimer *timer;
-
-	timer = what;
-	timer->index = index;
-}
-
-static void
-free_timer(void *what, void *uap) {
-	evTimer *t = what;
-	FREE(t);
-}
-
-static void
-print_timer(void *what, void *uap) {
-	evTimer *cur = what;
-	evContext_p *ctx = uap;
-
-	cur = what;
-	evPrintf(ctx, 7,
-	    "  func %p, uap %p, due %d.%09ld, inter %d.%09ld\n",
-		 cur->func, cur->uap,
-		 cur->due.tv_sec, cur->due.tv_nsec,
-		 cur->inter.tv_sec, cur->inter.tv_nsec);
-}
-
-static void
-idle_timeout(evContext opaqueCtx,
-	     void *uap,
-	     struct timespec due,
-	     struct timespec inter
-) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	idle_timer *this = uap;
-	struct timespec idle;
-	
-	idle = evSubTime(ctx->lastEventTime, this->lastTouched);
-	if (evCmpTime(idle, this->max_idle) >= 0) {
-		(this->func)(opaqueCtx, this->uap, this->timer->due,
-			     this->max_idle);
-		/*
-		 * Setting the interval to zero will cause the timer to
-		 * be cleaned up in evDrop().
-		 */
-		this->timer->inter = evConsTime(0, 0);
-		FREE(this);
-	} else {
-		/* evDrop() will reschedule the timer. */
-		this->timer->inter = evSubTime(this->max_idle, idle);
-	}
-}
diff --git a/contrib/bind/lib/isc/ev_waits.c b/contrib/bind/lib/isc/ev_waits.c
deleted file mode 100644
index e7bfbf771334f..0000000000000
--- a/contrib/bind/lib/isc/ev_waits.c
+++ /dev/null
@@ -1,246 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* ev_waits.c - implement deferred function calls for the eventlib
- * vix 05dec95 [initial]
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: ev_waits.c,v 8.10 2000/02/04 07:25:50 vixie Exp $";
-#endif
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <errno.h>
-
-#include <isc/eventlib.h>
-#include <isc/assertions.h>
-#include "eventlib_p.h"
-
-#include "port_after.h"
-
-/* Forward. */
-
-static void		print_waits(evContext_p *ctx);
-static evWaitList *	evNewWaitList(evContext_p *);
-static void		evFreeWaitList(evContext_p *, evWaitList *);
-static evWaitList *	evGetWaitList(evContext_p *, const void *, int);
-
-
-/* Public. */
-
-/*
- * Enter a new wait function on the queue.
- */
-int
-evWaitFor(evContext opaqueCtx, const void *tag,
-       evWaitFunc func, void *uap, evWaitID *id)
-{
-	evContext_p *ctx = opaqueCtx.opaque;
-	evWait *new;
-	evWaitList *wl = evGetWaitList(ctx, tag, 1);
-
-	OKNEW(new);
-	new->func = func;
-	new->uap = uap;
-	new->tag = tag;
-	new->next = NULL;
-	if (wl->last != NULL) {
-		wl->last->next = new;
-	} else {
-		wl->first = new;
-	}
-	wl->last = new;
-	if (id != NULL)
-		id->opaque = new;
-	if (ctx->debug >= 9)
-		print_waits(ctx);
-	return (0);
-}
-
-/*
- * Mark runnable all waiting functions having a certain tag.
- */
-int
-evDo(evContext opaqueCtx, const void *tag) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evWaitList *wl = evGetWaitList(ctx, tag, 0);
-	evWait *first;
-
-	if (!wl) {
-		errno = ENOENT;
-		return (-1);
-	}
-
-	first = wl->first;
-	INSIST(first != NULL);
-
-	if (ctx->waitDone.last != NULL)
-		ctx->waitDone.last->next = first;
-	else
-		ctx->waitDone.first = first;
-	ctx->waitDone.last = wl->last;
-	evFreeWaitList(ctx, wl);
-
-	return (0);
-}
-
-/*
- * Remove a waiting (or ready to run) function from the queue.
- */
-int
-evUnwait(evContext opaqueCtx, evWaitID id) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evWait *this, *prev;
-	evWaitList *wl;
-	int found = 0;
-
-	this = id.opaque;
-	INSIST(this != NULL);
-	wl = evGetWaitList(ctx, this->tag, 0);
-	if (wl != NULL) {
-		for (prev = NULL, this = wl->first;
-		     this != NULL;
-		     prev = this, this = this->next)
-			if (this == (evWait *)id.opaque) {
-				found = 1;
-				if (prev != NULL)
-					prev->next = this->next;
-				else
-					wl->first = this->next;
-				if (wl->last == this)
-					wl->last = prev;
-				if (wl->first == NULL)
-					evFreeWaitList(ctx, wl);
-				break;
-			}
-	}
-
-	if (!found) {
-		/* Maybe it's done */
-		for (prev = NULL, this = ctx->waitDone.first;
-		     this != NULL;
-		     prev = this, this = this->next)
-			if (this == (evWait *)id.opaque) {
-				found = 1;
-				if (prev != NULL)
-					prev->next = this->next;
-				else
-					ctx->waitDone.first = this->next;
-				if (ctx->waitDone.last == this)
-					ctx->waitDone.last = prev;
-				break;
-			}
-	}
-
-	if (!found) {
-		errno = ENOENT;
-		return (-1);
-	}
-
-	FREE(this);
-
-	if (ctx->debug >= 9)
-		print_waits(ctx);
-
-	return (0);
-}
-
-int
-evDefer(evContext opaqueCtx, evWaitFunc func, void *uap) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evWait *new;
-
-	OKNEW(new);
-	new->func = func;
-	new->uap = uap;
-	new->tag = NULL;
-	new->next = NULL;
-	if (ctx->waitDone.last != NULL)
-		ctx->waitDone.last->next = new;
-	else
-		ctx->waitDone.first = new;
-	ctx->waitDone.last = new;
-	if (ctx->debug >= 9)
-		print_waits(ctx);
-	return (0);
-}
-
-/* Private. */
-
-static void
-print_waits(evContext_p *ctx) {
-	evWaitList *wl;
-	evWait *this;
-
-	evPrintf(ctx, 9, "wait waiting:\n");
-	for (wl = ctx->waitLists; wl != NULL; wl = wl->next) {
-		INSIST(wl->first != NULL);
-		evPrintf(ctx, 9, "  tag %#x:", wl->first->tag);
-		for (this = wl->first; this != NULL; this = this->next)
-			evPrintf(ctx, 9, " %#x", this);
-		evPrintf(ctx, 9, "\n");
-	}
-	evPrintf(ctx, 9, "wait done:");
-	for (this = ctx->waitDone.first; this != NULL; this = this->next)
-		evPrintf(ctx, 9, " %#x", this);
-	evPrintf(ctx, 9, "\n");
-}
-
-static evWaitList *
-evNewWaitList(evContext_p *ctx) {
-	evWaitList *new;
-
-	NEW(new);
-	if (new == NULL)
-		return (NULL);
-	new->first = new->last = NULL;
-	new->prev = NULL;
-	new->next = ctx->waitLists;
-	if (new->next != NULL)
-		new->next->prev = new;
-	ctx->waitLists = new;
-	return (new);
-}
-
-static void
-evFreeWaitList(evContext_p *ctx, evWaitList *this) {
-
-	INSIST(this != NULL);
-
-	if (this->prev != NULL)
-		this->prev->next = this->next;
-	else
-		ctx->waitLists = this->next;
-	if (this->next != NULL)
-		this->next->prev = this->prev;
-	FREE(this);
-}
-
-static evWaitList *
-evGetWaitList(evContext_p *ctx, const void *tag, int should_create) {
-	evWaitList *this;
-
-	for (this = ctx->waitLists; this != NULL; this = this->next) {
-		if (this->first != NULL && this->first->tag == tag)
-			break;
-	}
-	if (this == NULL && should_create)
-		this = evNewWaitList(ctx);
-	return (this);
-}
diff --git a/contrib/bind/lib/isc/eventlib.c b/contrib/bind/lib/isc/eventlib.c
deleted file mode 100644
index cea98ac933ebc..0000000000000
--- a/contrib/bind/lib/isc/eventlib.c
+++ /dev/null
@@ -1,676 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* eventlib.c - implement glue for the eventlib
- * vix 09sep95 [initial]
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: eventlib.c,v 1.45 2000/02/04 07:25:39 vixie Exp $";
-#endif
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/time.h>
-#include <sys/stat.h>
-
-#include <errno.h>
-#include <signal.h>
-#include <stdarg.h>
-#include <stdlib.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-#include <isc/assertions.h>
-#include "eventlib_p.h"
-
-#include "port_after.h"
-
-/* Forward. */
-
-#ifdef NEED_PSELECT
-static int		pselect(int, void *, void *, void *,
-				struct timespec *,
-				const sigset_t *);
-#endif
-
-/* Public. */
-
-int
-evCreate(evContext *opaqueCtx) {
-	evContext_p *ctx;
-
-	/* Make sure the memory heap is initialized. */
-	if (meminit(0, 0) < 0 && errno != EEXIST)
-		return (-1);
-
-	OKNEW(ctx);
-
-	/* Global. */
-	ctx->cur = NULL;
-
-	/* Debugging. */
-	ctx->debug = 0;
-	ctx->output = NULL;
-
-	/* Connections. */
-	ctx->conns = NULL;
-	INIT_LIST(ctx->accepts);
-
-	/* Files. */
-	ctx->files = NULL;
-	FD_ZERO(&ctx->rdNext);
-	FD_ZERO(&ctx->wrNext);
-	FD_ZERO(&ctx->exNext);
-	FD_ZERO(&ctx->nonblockBefore);
-	ctx->fdMax = -1;
-	ctx->fdNext = NULL;
-	ctx->fdCount = 0;	/* Invalidate {rd,wr,ex}Last. */
-	ctx->highestFD = FD_SETSIZE - 1;
-#ifdef EVENTLIB_TIME_CHECKS
-	ctx->lastFdCount = 0;
-#endif
-	memset(ctx->fdTable, 0, sizeof ctx->fdTable);
-
-	/* Streams. */
-	ctx->streams = NULL;
-	ctx->strDone = NULL;
-	ctx->strLast = NULL;
-
-	/* Timers. */
-	ctx->lastEventTime = evNowTime();
-#ifdef EVENTLIB_TIME_CHECKS
-	ctx->lastSelectTime = ctx->lastEventTime;
-#endif
-	ctx->timers = evCreateTimers(ctx);
-	if (ctx->timers == NULL)
-		return (-1);
-
-	/* Waits. */
-	ctx->waitLists = NULL;
-	ctx->waitDone.first = ctx->waitDone.last = NULL;
-	ctx->waitDone.prev = ctx->waitDone.next = NULL;
-
-	opaqueCtx->opaque = ctx;
-	return (0);
-}
-
-void
-evSetDebug(evContext opaqueCtx, int level, FILE *output) {
-	evContext_p *ctx = opaqueCtx.opaque;
-
-	ctx->debug = level;
-	ctx->output = output;
-}
-
-int
-evDestroy(evContext opaqueCtx) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	int revs = 424242;	/* Doug Adams. */
-	evWaitList *this_wl, *next_wl;
-	evWait *this_wait, *next_wait;
-
-	/* Connections. */
-	while (revs-- > 0 && ctx->conns != NULL) {
-		evConnID id;
-
-		id.opaque = ctx->conns;
-		(void) evCancelConn(opaqueCtx, id);
-	}
-	INSIST(revs >= 0);
-
-	/* Streams. */
-	while (revs-- > 0 && ctx->streams != NULL) {
-		evStreamID id;
-
-		id.opaque = ctx->streams;
-		(void) evCancelRW(opaqueCtx, id);
-	}
-
-	/* Files. */
-	while (revs-- > 0 && ctx->files != NULL) {
-		evFileID id;
-
-		id.opaque = ctx->files;
-		(void) evDeselectFD(opaqueCtx, id);
-	}
-	INSIST(revs >= 0);
-
-	/* Timers. */
-	evDestroyTimers(ctx);
-
-	/* Waits. */
-	for (this_wl = ctx->waitLists;
-	     revs-- > 0 && this_wl != NULL;
-	     this_wl = next_wl) {
-		next_wl = this_wl->next;
-		for (this_wait = this_wl->first;
-		     revs-- > 0 && this_wait != NULL;
-		     this_wait = next_wait) {
-			next_wait = this_wait->next;
-			FREE(this_wait);
-		}
-		FREE(this_wl);
-	}
-	for (this_wait = ctx->waitDone.first;
-	     revs-- > 0 && this_wait != NULL;
-	     this_wait = next_wait) {
-		next_wait = this_wait->next;
-		FREE(this_wait);
-	}
-
-	FREE(ctx);
-	return (0);
-}
-
-int
-evGetNext(evContext opaqueCtx, evEvent *opaqueEv, int options) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	struct timespec nextTime;
-	evTimer *nextTimer;
-	evEvent_p *new;
-	int x, pselect_errno, timerPast;
-#ifdef EVENTLIB_TIME_CHECKS
-	struct timespec interval;
-#endif
-
-	/* Ensure that exactly one of EV_POLL or EV_WAIT was specified. */
-	x = ((options & EV_POLL) != 0) + ((options & EV_WAIT) != 0);
-	if (x != 1)
-		ERR(EINVAL);
-
-	/* Get the time of day.  We'll do this again after select() blocks. */
-	ctx->lastEventTime = evNowTime();
-
- again:
-	/* Finished accept()'s do not require a select(). */
-	if (!EMPTY(ctx->accepts)) {
-		OKNEW(new);
-		new->type = Accept;
-		new->u.accept.this = HEAD(ctx->accepts);
-		UNLINK(ctx->accepts, HEAD(ctx->accepts), link);
-		opaqueEv->opaque = new;
-		return (0);
-	}
-
-	/* Stream IO does not require a select(). */
-	if (ctx->strDone != NULL) {
-		OKNEW(new);
-		new->type = Stream;
-		new->u.stream.this = ctx->strDone;
-		ctx->strDone = ctx->strDone->nextDone;
-		if (ctx->strDone == NULL)
-			ctx->strLast = NULL;
-		opaqueEv->opaque = new;
-		return (0);
-	}
-
-	/* Waits do not require a select(). */
-	if (ctx->waitDone.first != NULL) {
-		OKNEW(new);
-		new->type = Wait;
-		new->u.wait.this = ctx->waitDone.first;
-		ctx->waitDone.first = ctx->waitDone.first->next;
-		if (ctx->waitDone.first == NULL)
-			ctx->waitDone.last = NULL;
-		opaqueEv->opaque = new;
-		return (0);
-	}
-
-	/* Get the status and content of the next timer. */
-	if ((nextTimer = heap_element(ctx->timers, 1)) != NULL) {
-		nextTime = nextTimer->due;
-		timerPast = (evCmpTime(nextTime, ctx->lastEventTime) <= 0);
-	} else
-		timerPast = 0;	/* Make gcc happy. */
-
-	evPrintf(ctx, 9, "evGetNext: fdCount %d\n", ctx->fdCount);
-	if (ctx->fdCount == 0) {
-		static const struct timespec NoTime = {0, 0L};
-		enum { JustPoll, Block, Timer } m;
-		struct timespec t, *tp;
-
-		/* Are there any events at all? */
-		if ((options & EV_WAIT) != 0 && !nextTimer && ctx->fdMax == -1)
-			ERR(ENOENT);
-
-		/* Figure out what select()'s timeout parameter should be. */
-		if ((options & EV_POLL) != 0) {
-			m = JustPoll;
-			t = NoTime;
-			tp = &t;
-		} else if (nextTimer == NULL) {
-			m = Block;
-			/* ``t'' unused. */
-			tp = NULL;
-		} else if (timerPast) {
-			m = JustPoll;
-			t = NoTime;
-			tp = &t;
-		} else {
-			m = Timer;
-			/* ``t'' filled in later. */
-			tp = &t;
-		}
-#ifdef EVENTLIB_TIME_CHECKS
-		if (ctx->debug > 0) {
-			interval = evSubTime(ctx->lastEventTime,
-					     ctx->lastSelectTime);
-			if (interval.tv_sec > 0)
-				evPrintf(ctx, 1,
-				   "time between pselect() %u.%09u count %d\n",
-					 interval.tv_sec, interval.tv_nsec,
-					 ctx->lastFdCount);
-		}
-#endif
-		do {
-			/* XXX need to copy only the bits we are using. */
-			ctx->rdLast = ctx->rdNext;
-			ctx->wrLast = ctx->wrNext;
-			ctx->exLast = ctx->exNext;
-
-			if (m == Timer) {
-				INSIST(tp == &t);
-				t = evSubTime(nextTime, ctx->lastEventTime);
-			}
-
-			evPrintf(ctx, 4,
-				"pselect(%d, 0x%lx, 0x%lx, 0x%lx, %d.%09ld)\n",
-				 ctx->fdMax+1,
-				 (u_long)ctx->rdLast.fds_bits[0],
-				 (u_long)ctx->wrLast.fds_bits[0],
-				 (u_long)ctx->exLast.fds_bits[0],
-				 tp ? tp->tv_sec : -1,
-				 tp ? tp->tv_nsec : -1);
-
-			/* XXX should predict system's earliness and adjust. */
-			x = pselect(ctx->fdMax+1,
-				    &ctx->rdLast, &ctx->wrLast, &ctx->exLast,
-				    tp, NULL);
-			pselect_errno = errno;
-
-			evPrintf(ctx, 4, "select() returns %d (err: %s)\n",
-				 x, (x == -1) ? strerror(errno) : "none");
-
-			/* Anything but a poll can change the time. */
-			if (m != JustPoll)
-				ctx->lastEventTime = evNowTime();
-
-			/* Select() likes to finish about 10ms early. */
-		} while (x == 0 && m == Timer &&
-			 evCmpTime(ctx->lastEventTime, nextTime) < 0);
-#ifdef EVENTLIB_TIME_CHECKS
-		ctx->lastSelectTime = ctx->lastEventTime;
-#endif
-		if (x < 0) {
-			if (pselect_errno == EINTR) {
-				if ((options & EV_NULL) != 0)
-					goto again;
-				OKNEW(new);
-				new->type = Null;
-				/* No data. */
-				opaqueEv->opaque = new;
-				return (0);
-			}
-			if (pselect_errno == EBADF) {
-				for (x = 0; x <= ctx->fdMax; x++) {
-					struct stat sb;
-
-					if (FD_ISSET(x, &ctx->rdNext) == 0 &&
-					    FD_ISSET(x, &ctx->wrNext) == 0 &&
-					    FD_ISSET(x, &ctx->exNext) == 0)
-						continue;
-					if (fstat(x, &sb) == -1 &&
-					    errno == EBADF)
-						evPrintf(ctx, 1, "EBADF: %d\n",
-							 x);
-				}
-				abort();
-			}
-			ERR(pselect_errno);
-		}
-		if (x == 0 && (nextTimer == NULL || !timerPast) &&
-		    (options & EV_POLL))
-			ERR(EWOULDBLOCK);
-		ctx->fdCount = x;
-#ifdef EVENTLIB_TIME_CHECKS
-		ctx->lastFdCount = x;
-#endif
-	}
-	INSIST(nextTimer || ctx->fdCount);
-
-	/* Timers go first since we'd like them to be accurate. */
-	if (nextTimer && !timerPast) {
-		/* Has anything happened since we blocked? */
-		timerPast = (evCmpTime(nextTime, ctx->lastEventTime) <= 0);
-	}
-	if (nextTimer && timerPast) {
-		OKNEW(new);
-		new->type = Timer;
-		new->u.timer.this = nextTimer;
-		opaqueEv->opaque = new;
-		return (0);
-	}
-
-	/* No timers, so there should be a ready file descriptor. */
-	x = 0;
-	while (ctx->fdCount > 0) {
-		evFile *fid;
-		int fd, eventmask;
-
-		if (ctx->fdNext == NULL) {
-			if (++x == 2) {
-				/*
-				 * Hitting the end twice means that the last
-				 * select() found some FD's which have since
-				 * been deselected.
-				 *
-				 * On some systems, the count returned by
-				 * selects is the total number of bits in
-				 * all masks that are set, and on others it's
-				 * the number of fd's that have some bit set,
-				 * and on others, it's just broken.  We 
-				 * always assume that it's the number of
-				 * bits set in all masks, because that's what
-				 * the man page says it should do, and
-				 * the worst that can happen is we do an
-				 * extra select().
-				 */
-				ctx->fdCount = 0;
-				break;
-			}
-			ctx->fdNext = ctx->files;
-		}
-		fid = ctx->fdNext;
-		ctx->fdNext = fid->next;
-
-		fd = fid->fd;
-		eventmask = 0;
-		if (FD_ISSET(fd, &ctx->rdLast))
-			eventmask |= EV_READ;
-		if (FD_ISSET(fd, &ctx->wrLast))
-			eventmask |= EV_WRITE;
-		if (FD_ISSET(fd, &ctx->exLast))
-			eventmask |= EV_EXCEPT;
-		eventmask &= fid->eventmask;
-		if (eventmask != 0) {
-			if ((eventmask & EV_READ) != 0) {
-				FD_CLR(fd, &ctx->rdLast);
-				ctx->fdCount--;
-			}
-			if ((eventmask & EV_WRITE) != 0) {
-				FD_CLR(fd, &ctx->wrLast);
-				ctx->fdCount--;
-			}
-			if ((eventmask & EV_EXCEPT) != 0) {
-				FD_CLR(fd, &ctx->exLast);
-				ctx->fdCount--;
-			}
-			OKNEW(new);
-			new->type = File;
-			new->u.file.this = fid;
-			new->u.file.eventmask = eventmask;
-			opaqueEv->opaque = new;
-			return (0);
-		}
-	}
-	if (ctx->fdCount < 0) {
-		/*
-		 * select()'s count is off on a number of systems, and
-		 * can result in fdCount < 0.
-		 */
-		evPrintf(ctx, 4, "fdCount < 0 (%d)\n", ctx->fdCount);
-		ctx->fdCount = 0;
-	}
-
-	/* We get here if the caller deselect()'s an FD. Gag me with a goto. */
-	goto again;
-}
-
-int
-evDispatch(evContext opaqueCtx, evEvent opaqueEv) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evEvent_p *ev = opaqueEv.opaque;
-#ifdef EVENTLIB_TIME_CHECKS
-	void *func;
-	struct timespec start_time;
-	struct timespec interval;
-#endif
-
-#ifdef EVENTLIB_TIME_CHECKS
-	if (ctx->debug > 0)
-		start_time = evNowTime();
-#endif
-	ctx->cur = ev;
-	switch (ev->type) {
-	    case Accept: {
-		evAccept *this = ev->u.accept.this;
-
-		evPrintf(ctx, 5,
-			"Dispatch.Accept: fd %d -> %d, func %#x, uap %#x\n",
-			 this->conn->fd, this->fd,
-			 this->conn->func, this->conn->uap);
-		errno = this->ioErrno;
-		(this->conn->func)(opaqueCtx, this->conn->uap, this->fd,
-				   &this->la, this->lalen,
-				   &this->ra, this->ralen);
-#ifdef EVENTLIB_TIME_CHECKS
-		func = this->conn->func;
-#endif
-		break;
-	    }
-	    case File: {
-		evFile *this = ev->u.file.this;
-		int eventmask = ev->u.file.eventmask;
-
-		evPrintf(ctx, 5,
-			"Dispatch.File: fd %d, mask 0x%x, func %#x, uap %#x\n",
-			 this->fd, this->eventmask, this->func, this->uap);
-		(this->func)(opaqueCtx, this->uap, this->fd, eventmask);
-#ifdef EVENTLIB_TIME_CHECKS
-		func = this->func;
-#endif
-		break;
-	    }
-	    case Stream: {
-		evStream *this = ev->u.stream.this;
-
-		evPrintf(ctx, 5,
-			 "Dispatch.Stream: fd %d, func %#x, uap %#x\n",
-			 this->fd, this->func, this->uap);
-		errno = this->ioErrno;
-		(this->func)(opaqueCtx, this->uap, this->fd, this->ioDone);
-#ifdef EVENTLIB_TIME_CHECKS
-		func = this->func;
-#endif
-		break;
-	    }
-	    case Timer: {
-		evTimer *this = ev->u.timer.this;
-
-		evPrintf(ctx, 5, "Dispatch.Timer: func %#x, uap %#x\n",
-			 this->func, this->uap);
-		(this->func)(opaqueCtx, this->uap, this->due, this->inter);
-#ifdef EVENTLIB_TIME_CHECKS
-		func = this->func;
-#endif
-		break;
-	    }
-	    case Wait: {
-		evWait *this = ev->u.wait.this;
-
-		evPrintf(ctx, 5,
-			 "Dispatch.Wait: tag %#x, func %#x, uap %#x\n",
-			 this->tag, this->func, this->uap);
-		(this->func)(opaqueCtx, this->uap, this->tag);
-#ifdef EVENTLIB_TIME_CHECKS
-		func = this->func;
-#endif
-		break;
-	    }
-	    case Null: {
-		/* No work. */
-#ifdef EVENTLIB_TIME_CHECKS
-		func = NULL;
-#endif
-		break;
-	    }
-	    default: {
-		abort();
-	    }
-	}
-#ifdef EVENTLIB_TIME_CHECKS
-	if (ctx->debug > 0) {
-		interval = evSubTime(evNowTime(), start_time);
-		/* 
-		 * Complain if it took longer than 50 milliseconds.
-		 *
-		 * We call getuid() to make an easy to find mark in a kernel
-		 * trace.
-		 */
-		if (interval.tv_sec > 0 || interval.tv_nsec > 50000000)
-			evPrintf(ctx, 1,
-			 "dispatch interval %u.%09u uid %d type %d func %p\n",
-				 interval.tv_sec, interval.tv_nsec,
-				 getuid(), ev->type, func);
-	}
-#endif
-	ctx->cur = NULL;
-	evDrop(opaqueCtx, opaqueEv);
-	return (0);
-}
-
-void
-evDrop(evContext opaqueCtx, evEvent opaqueEv) {
-	evContext_p *ctx = opaqueCtx.opaque;
-	evEvent_p *ev = opaqueEv.opaque;
-
-	switch (ev->type) {
-	    case Accept: {
-		FREE(ev->u.accept.this);
-		break;
-	    }
-	    case File: {
-		/* No work. */
-		break;
-	    }
-	    case Stream: {
-		evStreamID id;
-
-		id.opaque = ev->u.stream.this;
-		(void) evCancelRW(opaqueCtx, id);
-		break;
-	    }
-	    case Timer: {
-		evTimer *this = ev->u.timer.this;
-		evTimerID opaque;
-
-		/* Check to see whether the user func cleared the timer. */
-		if (heap_element(ctx->timers, this->index) != this) {
-			evPrintf(ctx, 5, "Dispatch.Timer: timer rm'd?\n");
-			break;
-		}
-		/*
-		 * Timer is still there.  Delete it if it has expired,
-		 * otherwise set it according to its next interval.
-		 */
-		if (this->inter.tv_sec == 0 && this->inter.tv_nsec == 0L) {
-			opaque.opaque = this;			
-			(void) evClearTimer(opaqueCtx, opaque);
-		} else {
-			opaque.opaque = this;
-			(void) evResetTimer(opaqueCtx, opaque, this->func,
-					    this->uap,
-					    evAddTime(ctx->lastEventTime,
-						      this->inter),
-					    this->inter);
-		}
-		break;
-	    }
-	    case Wait: {
-		FREE(ev->u.wait.this);
-		break;
-	    }
-	    case Null: {
-		/* No work. */
-		break;
-	    }
-	    default: {
-		abort();
-	    }
-	}
-	FREE(ev);
-}
-
-int
-evMainLoop(evContext opaqueCtx) {
-	evEvent event;
-	int x;
-
-	while ((x = evGetNext(opaqueCtx, &event, EV_WAIT)) == 0)
-		if ((x = evDispatch(opaqueCtx, event)) < 0)
-			break;
-	return (x);
-}
-
-int
-evHighestFD(evContext opaqueCtx) {
-	evContext_p *ctx = opaqueCtx.opaque;
-
-	return (ctx->highestFD);
-}
-
-void
-evPrintf(const evContext_p *ctx, int level, const char *fmt, ...) {
-	va_list ap;
-
-	va_start(ap, fmt);
-	if (ctx->output != NULL && ctx->debug >= level) {
-		vfprintf(ctx->output, fmt, ap);
-		fflush(ctx->output);
-	}
-	va_end(ap);
-}
-
-#ifdef NEED_PSELECT
-/* XXX needs to move to the porting library. */
-static int
-pselect(int nfds, void *rfds, void *wfds, void *efds,
-	struct timespec *tsp,
-	const sigset_t *sigmask)
-{
-	struct timeval tv, *tvp;
-	sigset_t sigs;
-	int n;
-
-	if (tsp) {
-		tvp = &tv;
-		tv = evTimeVal(*tsp);
-	} else
-		tvp = NULL;
-	if (sigmask)
-		sigprocmask(SIG_SETMASK, sigmask, &sigs);
-	n = select(nfds, rfds, wfds, efds, tvp);
-	if (sigmask)
-		sigprocmask(SIG_SETMASK, &sigs, NULL);
-	if (tsp)
-		*tsp = evTimeSpec(tv);
-	return (n);
-}
-#endif
diff --git a/contrib/bind/lib/isc/eventlib.mdoc b/contrib/bind/lib/isc/eventlib.mdoc
deleted file mode 100644
index 202b1cb405e2b..0000000000000
--- a/contrib/bind/lib/isc/eventlib.mdoc
+++ /dev/null
@@ -1,854 +0,0 @@
-.\" $Id: eventlib.mdoc,v 1.20 1999/08/18 22:09:04 vixie Exp $
-.\"
-.\"Copyright (c) 1995-1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd March 6, 1996
-.Dt EVENTLIB 3
-.Os BSD 4
-.Sh NAME
-.Nm evConnFunc ,
-.Nm evFileFunc ,
-.Nm evStreamFunc ,
-.Nm evTimerFunc ,
-.Nm evWaitFunc ,
-.Nm evCreate ,
-.Nm evDestroy ,
-.Nm evGetNext ,
-.Nm evDispatch ,
-.Nm evDrop ,
-.Nm evMainLoop ,
-.Nm evConsTime ,
-.Nm evTimeSpec ,
-.Nm evTimeVal ,
-.Nm evAddTime ,
-.Nm evSubTime ,
-.Nm evCmpTime ,
-.Nm evNowTime ,
-.Nm evLastEventTime ,
-.Nm evSetTimer ,
-.Nm evResetTimer ,
-.Nm evClearTimer ,
-.Nm evSetIdleTimer ,
-.Nm evTouchIdleTimer ,
-.Nm evClearIdleTimer ,
-.Nm evWaitFor ,
-.Nm evDo ,
-.Nm evUnwait ,
-.Nm evDefer ,
-.Nm evSelectFD ,
-.Nm evDeselectFD ,
-.Nm evWrite ,
-.Nm evRead ,
-.Nm evCancelRW ,
-.Nm evTimeRW ,
-.Nm evUntimeRW ,
-.Nm evListen ,
-.Nm evConnect ,
-.Nm evCancelConn ,
-.Nm evHold ,
-.Nm evUnhold ,
-.Nm evTryAccept ,
-.Nm evConsIovec ,
-.Nm evSetDebug ,
-.Nm evPrintf ,
-.Nm evInitID ,
-.Nm evTestID
-.Nd event handling library
-.Sh SYNOPSIS
-.Fd #include <isc/eventlib.h>
-.Ft typedef void
-.Fn (*evConnFunc) "evContext ctx" "void *uap" "int fd" \
-"const void *la" "int lalen" "const void *ra" "int ralen"
-.Ft typedef void
-.Fn (*evTimerFunc) "evContext ctx" "void *uap" \
-"struct timespec due" "struct timespec inter"
-.Ft typedef void
-.Fn (*evFileFunc) "evContext ctx" "void *uap" "int fd" "int eventmask"
-.Ft typedef void
-.Fn (*evStreamFunc) "evContext ctx" "void *uap" "int fd" "int bytes"
-.Ft typedef void
-.Fn (*evWaitFunc) "evContext ctx" "void *uap" "const void *tag"
-.Ft int
-.Fn evCreate "evContext *ctx"
-.Ft int
-.Fn evDestroy "evContext ctx"
-.Ft int
-.Fn evGetNext "evContext ctx" "evEvent *ev" "int options"
-.Ft int
-.Fn evDispatch "evContext ctx" "evEvent ev"
-.Ft void
-.Fn evDrop "evContext ctx" "evEvent ev"
-.Ft int
-.Fn evMainLoop "evContext ctx"
-.Ft struct timespec
-.Fn evConsTime "int sec" "int usec"
-.Ft struct timespec
-.Fn evTimeSpec "struct timeval tv"
-.Ft struct timeval
-.Fn evTimeVal "struct timespec ts"
-.Ft struct timespec
-.Fn evAddTime "struct timespec addend1" "struct timespec addend2"
-.Ft struct timespec
-.Fn evSubTime "struct timespec minuend" "struct timespec subtrahend"
-.Ft struct timespec
-.Fn evCmpTime "struct timespec a" "struct timespec b"
-.Ft struct timespec
-.Fn evNowTime "void"
-.Ft struct timespec
-.Fn evLastEventTime "evContext opaqueCtx"
-.Ft int
-.Fn evSetTimer "evContext ctx" "evTimerFunc func" "void *uap" \
-"struct timespec due" "struct timespec inter" "evTimerID *id"
-.Ft int
-.Fn evResetTimer "evContext ctx" "evTimerID id" "evTimerFunc func" \
-"void *uap" "struct timespec due" "struct timespec inter"
-.Ft int
-.Fn evClearTimer "evContext ctx" "evTimerID id"
-.Ft int
-.Fn evSetIdleTimer "evContext opaqueCtx" "evTimerFunc func" "void *uap" \
-"struct timespec max_idle" "evTimerID *opaqueID"
-.Ft int 
-.Fn evTouchIdleTimer "evContext opaqueCtx" "evTimerID id"
-.Ft int 
-.Fn evResetIdleTimer "evContext opaqueCtx" "evTimerID id" "evTimerFunc func" \
-"void *uap" "struct timespec max_idle"
-.Ft int
-.Fn evClearIdleTimer "evContext opaqueCtx" "evTimerID id"
-.Ft int
-.Fn evWaitFor "evContext opaqueCtx" "const void *tag" \
-"evWaitFunc func" "void *uap" "evWaitID *id"
-.Ft int
-.Fn evDo "evContext opaqueCtx" "const void *tag"
-.Ft int
-.Fn evUnwait "evContext opaqueCtx" "evWaitID id"
-.Ft int
-.Fn evDefer "evContext opaqueCtx" "evWaitFunc func" "void *uap"
-.Ft int
-.Fn evSelectFD "evContext ctx" "int fd" "int eventmask" \
-"evFileFunc func" "void *uap" "evFileID *id"
-.Ft int
-.Fn evDeselectFD "evContext ctx" "evFileID id"
-.Ft struct iovec
-.Fn evConsIovec "void *buf" "size_t cnt"
-.Ft int
-.Fn evWrite "evContext ctx" "int fd" "const struct iovec *iov" "int cnt" \
-"evStreamFunc func" "void *uap" "evStreamID *id"
-.Ft int
-.Fn evRead "evContext ctx" "int fd" "const struct iovec *iov" "int cnt" \
-"evStreamFunc func" "void *uap" "evStreamID *id"
-.Ft int
-.Fn evCancelRW "evContext ctx" "evStreamID id"
-.Ft int
-.Fn evTimeRW "evContext opaqueCtx" "evStreamID id" "evTimerID timer"
-.Ft int
-.Fn evUntimeRW "evContext opaqueCtx" "evStreamID id"
-.Ft int
-.Fn evListen "evContext ctx" "int fd" "int maxconn" \
-"evConnFunc func" "void *uap" "evConnID *id"
-.Ft int
-.Fn evConnect "evContext ctx" "int fd" "void *ra" "int ralen" \
-"evConnFunc func" "void *uap" "evConnID *id"
-.Ft int
-.Fn evCancelConn "evContext ctx" "evConnID id"
-.Ft int
-.Fn evHold "evContext ctx" "evConnID id"
-.Ft int
-.Fn evUnhold "evContext ctx" "evConnID id"
-.Ft int
-.Fn evTryAccept "evContext ctx" "evConnID id" "int *sys_errno"
-.Ft void
-.Fn evSetDebug "evContext ctx" "int level" "FILE *output"
-.Ft void
-.Fn evPrintf "const evContext_p *ctx" "int level" "const char *fmt" "..."
-.Ft void
-.Fn evInitID "*\s-1ID\s+1"
-.Ft int
-.Fn evTestID "\s-1ID\s+1"
-.Sh DESCRIPTION
-This library provides multiple outstanding asynchronous timers and I/O
-to a cooperating application.  The model is similar to that of the X
-Toolkit, in that events are registered with the library and the application
-spends most of its time in the
-.Fn evMainLoop
-function.  If an application already has a main loop, it can safely register
-events with this library as long as it periodically calls the
-.Fn evGetNext
-and
-.Fn evDispatch
-functions.  (Note that
-.Fn evGetNext
-has both polling and blocking modes.)
-.Pp
-The function
-.Fn evCreate
-creates an event context which is needed by all the other functions in this
-library.  All information used internally by this library is bound to this
-context, rather than to static storage.  This makes the library 
-.Dq thread safe, 
-and permits other library functions to use events without
-disrupting the application's use of events.
-.Pp
-The function
-.Fn evDestroy
-destroys a context that has been created by
-.Fn evCreate .
-All dynamic memory bound to this context will be freed.  An implicit
-.Fn evTimerClear
-will be done on all timers set in this event context.  An implicit
-.Fn evDeselectFD
-will be done on all file descriptors selected in this event context.
-.Pp
-The function
-.Fn evGetNext
-potentially waits for and then retrieves the next asynchronous event,
-placing it in the object of the
-.Fa ev
-pointer argument.  The following
-.Fa options
-are available:
-.Fa EV_POLL ,
-meaning that
-.Fn evGetNext
-should not block, but rather return
-.Dq Fa -1
-with
-.Fa errno
-set to
-.Fa EWOULDBLOCK
-if no events have occurred;
-.Fa EV_WAIT ,
-which tells
-.Fn evGetNext
-to block internally until the next event occurs; and
-.Fa EV_NULL ,
-which tells
-.Fn evGetNext
-that it should return a special 
-.Dq no-op 
-event, which is ignored by
-.Fn evDispatch
-but handled correctly by
-.Fn evDrop .
-.Fa EV_NULL
-can be necessary to the correct functioning of a caller\-written equivilent to
-.Fn evMainLoop ,
-wherein perterbations caused by external system events must be polled for, and
-the default behaviour of internally ignoring such events is undesirable.
-Note that
-.Fa EV_POLL
-and
-.Fa EV_WAIT
-are mutually exclusive.
-.Pp
-The function
-.Fn evDispatch
-dispatches an event retrieved by
-.Fn evGetNext .
-This usually involves calling the function that was associated with the event
-when the event was registered with
-.Fn evSetTimer ,
-.Fn evResetTimer ,
-or
-.Fn evSelectFD .
-All events retrieved by
-.Fn evGetNext
-must be given over to
-.Fn evDispatch
-at some point, since there is some dynamic memory associated with each event.
-.Pp
-The function
-.Fn evDrop
-deallocates dynamic memory that has been allocated by
-.Fn evGetNext .
-Calling
-.Fn evDispatch
-has the side effect of calling
-.Fn evDrop ,
-but if you are going to drop the event rather than dispatch it, you will have
-to call
-.Fn evDrop
-directly.
-.Pp
-The function
-.Fn evMainLoop
-is just:
-.Bd -literal -offset indent
-while ((x = evGetNext(opaqueCtx, &event, EV_WAIT)) == 0)
-	if ((x = evDispatch(opaqueCtx, event)) < 0)
-		break;
-return (x);
-.Ed
-.Pp
-In other words, get events and dispatch them until an error occurs.  One such
-error would be that all the events under this context become unregistered; in
-that event, there will be nothing to wait for and
-.Fn evGetNext
-becomes an undefined operation.
-.Pp
-The function
-.Fn evConsTime
-is a constructor for
-.Dq Fa struct timespec
-which allows these structures to be created and then passed as arguments to
-other functions without the use of temporary variables.  (If C had inline
-constructors, there would be no need for this function.)
-.Pp
-The functions
-.Fn evTimeSpec
-and
-.Fn evTimeVal 
-are utilities which allow the caller to convert a
-.Dq Fa struct timeval
-to a 
-.Dq Fa struct timespec
-(the function of
-.Fn evTimeSpec )
-or vice versa (the function of
-.Fn evTimeVal ) .
-Note that the name of the function indicates the type of the return value.
-.Pp
-The function
-.Fn evAddTime
-adds two
-.Dq Fa struct timespec
-values and returns the result as a
-.Dq Fa struct timespec.
-.Pp
-The function
-.Fn evSubTime
-subtracts its second
-.Dq Fa struct timespec
-argument from its first
-.Dq Fa struct timespec
-argument and returns the result as a
-.Dq Fa struct timespec.
-.Pp
-The function
-.Fn evCmpTime
-compares its two
-.Dq Fa struct timespec
-arguments and returns an
-.Dq Fa int
-that is less than zero if the first argument specifies an earlier time than
-the second, or more than zero if the first argument specifies a later time
-than the second, or equal to zero if both arguments specify the same time.
-.Pp
-The function
-.Fn evNowTime
-returns a
-.Dq Fa struct timespec
-which either describes the current time (using
-.Xr gettimeofday 2 ) ,
-if successful, or has its fields set to zero, if there is an error.
-(In the latter case, the caller can check
-.Va errno ,
-since it will be set by
-.Xr gettimeofday 2 . )
-.Pp
-The function
-.Fn evLastEventTime 
-returns the
-.Dq Fa struct timespec
-which describes the last time that certain events happened to the 
-event context indicated by 
-.Fa opaqueCtx .
-This value is updated by
-.Fn evCreate 
-and
-.Fn evGetNext 
-(upon entry and after
-.Xr select 2
-returns); it is routinely compared with other times in the internal handling
-of, e.g., timers.
-.Pp
-The function
-.Fn evSetTimer
-registers a timer event, which will be delivered as a function call to the
-function specified by the
-.Fa func
-argument.  The event will be delivered at absolute time
-.Fa due ,
-and then if time
-.Fa inter
-is not equal to
-.Dq Fa evConsTime(0,0) ,
-subsequently at intervals equal to time
-.Fa inter .
-As a special case, specifying a
-.Fa due
-argument equal to
-.Dq Fa evConsTime(0,0)
-means 
-.Dq due immediately.  
-The
-.Fa opaqueID
-argument, if specified as a value other than
-.Fa NULL ,
-will be used to store the resulting 
-.Dq timer \s-1ID\s+1 , 
-useful as an argument to
-.Fn evClearTimer .
-Note that in a 
-.Dq one\-shot 
-timer (which has an
-.Fa inter
-argument equal to
-.Dq Fa evConsTime(0,0)
-.\" putting the ) after the Dq Fa arg did not work well.  --vix
-) the user function
-.Fa func
-should deallocate any dynamic memory that is uniquely bound to the
-.Fa uap ,
-since no handles to this memory will exist within the event library
-after a one\-shot timer has been delivered.
-.Pp
-The function
-.Fn evResetTimer
-resets the values of the timer specified by
-.Fa id
-to the given arguments.  The arguments are the same as in the description of
-.Fn evSetTimer
-above.
-.Pp
-The function
-.Fn evClearTimer
-will unregister the timer event specified by
-.Fa id .
-Note that if the
-.Fa uap
-specified in the corresponding
-.Fn evSetTimer
-call is uniquely bound to any dynamic memory, then that dynamic memory should
-be freed by the caller before the handle is lost.  After a call to
-.Fn evClearTimer ,
-no handles to this
-.Fa uap
-will exist within the event library.
-.Pp
-The function
-.Fn evSetIdleTimer 
-is similar to (and built on)
-.Fn evSetTimer ;
-it registers an idle timer event which provides for the function call to
-.Fa func
-to occur.  However, for an
-.Em idle
-timer, the call will occur after at least
-.Dq Fa max_idle
-time has passed since the time the idle timer was
-.Dq last touched ;
-originally, this is set to the time returned by
-.Fn evLastEventTime 
-(described above) for the event context specified by 
-.Fa opaqueCtx .  
-This is a 
-.Dq one\-shot 
-timer, but the time at which the
-.Fa func
-is actually called can be changed by recourse to
-.Fn evTouchIdleTimer
-(described below).  The pointer to the underlying 
-.Dq timer \s-1ID\s+1 
-is returned in
-.Fa opaqueID ,
-if it is
-.No non- Ns Dv NULL .
-.Pp
-The
-.Fn evTouchIdleTimer 
-function updates the idle timer associated with
-.Fa id ,
-setting its idea of the time it was last accessed to the value returned by
-.Fn evLastEventTime
-(described above) for the event context specified by
-.Fa opaqueCtx .
-This means that the idle timer will expire after at least
-.Fa max_idle
-time has passed since this (possibly new) time, providing a caller mechanism
-for resetting the call to the
-.Fa func
-associated with the idle timer.  (See the description of
-.Fn evSetIdleTimer ,
-above, for information about
-.Fa func
-and
-.Fa max_idle . )
-.Pp
-The
-.Fn evResetIdleTimer
-function reschedules a timer and resets the callback function and its argument.
-Note that resetting a timer also ``touches'' it.
-.Pp
-The
-.Fn evClearIdleTimer
-function unregisters the idle timer associated with
-.Fa id .
-See the discussion under
-.Fn evClearTimer , 
-above, for information regarding caller handling of the
-.Fa uap
-associated with the corresponding
-.Fn evSetIdleTimer
-call.
-.Pp
-The function
-.Fn evWaitFor
-places the function
-.Fa func
-on the given event context's wait queue with the associated (possibly
-.Dv NULL )
-.Dq Fa tag ;
-if 
-.Fa id
-is 
-.No non- Ns Dv NULL ,
-then it will contain the 
-.Dq wait \s-1ID\s+1 
-associated with the created queue element.
-.Pp
-The function
-.Fn evDo 
-marks 
-.Em all
-of the 
-.Dq waiting 
-functions in the given event context's wait queue with the associated (possibly
-.Dv NULL )
-.Dq Fa tag
-as runnable.  This places these functions in a
-.Dq done
-queue which will be read by
-.Fn evGetNext .
-.Pp
-The function
-.Fn evUnwait 
-will search for the
-.Dq wait \s-1ID\s+1 
-.Fa id
-in the wait queue of the given event context; if an element with the given
-.Fa id 
-is not found, then the
-.Dq done
-queue of that context is searched.  If found, the queue element is removed
-from the appropriate list.
-.Pp
-The function
-.Fn evDefer
-causes a function (specified as
-.Fa func ,
-with argument
-.Fa uap )
-to be dispatched at some later time.  Note that the
-.Fa tag
-argument to
-.Fa func
-will always be
-.Fa NULL
-when dispatched.
-.Pp
-The function
-.Fn evSelectFD
-registers a file I/O event for the file descriptor specified by
-.Fa fd .
-Bits in the
-.Fa eventmask
-argument are named
-.Fa EV_READ ,
-.Fa EV_WRITE ,
-and
-.Fa EV_EXCEPT .
-At least one of these bits must be specified.  If the
-.Fa id
-argument is not equal to
-.Fa NULL ,
-it will be used to store a unique ``file event \s-1ID\s+1'' for this event,
-which is useful in subsequent calls to
-.Fn evDeselectFD .
-A file descriptor will be made nonblocking using the
-.Fa O_NONBLOCK
-flag with
-.Xr fcntl 2
-on its first concurrent registration via
-.Fn evSelectFD .
-An
-.Fn evSelectFD
-remains in effect until cancelled via
-.Fn evDeselectFD .
-.Pp
-The function
-.Fn evDeselectFD
-unregisters the ``file event'' specified by the
-.Fa id
-argument.  If the corresponding
-.Fa uap
-uniquely points to dynamic memory, that memory should be freed before its
-handle is lost, since after a call to
-.Fn evDeselectFD ,
-no handles to this event's
-.Fa uap
-will remain within the event library.  A file descriptor will be taken out of
-nonblocking mode (see
-.Fa O_NONBLOCK
-and
-.Xr fcntl 2 )
-when its last event registration is removed via
-.Fn evDeselectFD ,
-if it was in blocking mode before the first registration via
-.Fn evSelectFD .
-.Pp
-The function
-.Fn evConsIovec
-is a constructor for a single
-.Ft struct iovec
-structure, which is useful for
-.Fn evWrite
-and
-.Fn evRead .
-.Pp
-The functions
-.Fn evWrite
-and
-.Fn evRead
-start asynchronous stream I/O operations on file descriptor
-.Fa fd .
-The data to be written or read is in the scatter/gather descriptor specified by
-.Fa iov
-and
-.Fa cnt .
-The supplied function
-.Fa func
-will be called with argument
-.Fa uap
-when the I/O operation is complete.  If
-.Fa id
-is not
-.Fa NULL ,
-it will be filled a with the stream event identifier suitable for use with
-.Fn evCancelRW .
-.Pp
-The function
-.Fn evCancelRW
-extinguishes an outstanding
-.Fn evWrite
-or
-.Fn evRead
-call.  System I/O calls cannot always be cancelled, but you are guaranteed
-that the
-.Fa func
-function supplied to
-.Fn evWrite
-or
-.Fn evRead
-will not be called after a call to
-.Fn evCancelRW .
-Care should be taken not to deallocate or otherwise reuse the space pointed
-to by the segment descriptors in
-.Fa iov
-unless the underlying file descriptor is closed first.
-.Pp
-The function
-.Fn evTimeRW
-sets the stream associated with the given stream \s-1ID\s+1 
-.Dq Fa id
-to have the idle timer associated with the timer \s-1ID\s+1 
-.Dq Fa timer .
-.Pp
-The function
-.Fn evUntimeRW
-says that the stream associated with the given stream \s-1ID\s+1
-.Dq Fa id
-should ignore its idle timer, if present.
-.Pp
-The functions
-.Fn evListen ,
-.Fn evConnect ,
-and
-.Fn evCancelConn
-can be used to manage asynchronous incoming and outgoing socket connections.
-Sockets to be used with these functions should first be created with
-.Xr socket 2
-and given a local name with
-.Xr bind 2 .
-It is extremely unlikely that the same socket will ever be
-useful for both incoming and outgoing connections.  The
-.Fa id
-argument to
-.Fn evListen
-and
-.Fn evConnect
-is either
-.Fa NULL
-or the address of a
-.Ft evFileID
-variable which can then be used in a subsequent call to
-.Fn evCancelConn .
-.Pp
-After a call to
-.Fn evListen ,
-each incoming connection arriving on
-.Fa fd
-will cause
-.Fa func
-to be called with
-.Fa uap
-as one of its arguments.
-.Fn evConnect
-initiates an outgoing connection on
-.Fa fd
-to destination address
-.Fa ra
-(whose length is
-.Fa ralen ).
-When the connection is complete,
-.Fa func
-will be called with
-.Fa uap
-as one of its arguments.  The argument
-.Fa fd
-to
-.Fn (*func)()
-will be
-.Fa -1
-if an error occurred that prevented this connection from completing 
-successfully.  In this case
-.Fn errno
-will have been set and the socket described by
-.Fa fd
-will have been closed.  The
-.Fn evCancelConn
-function will prevent delivery of all pending and subsequent
-events for the outstanding connection.  The
-.Fn evHold
-function will suspend the acceptance of new connections on the listener
-specified by
-.Fa id .
-Connections will be queued by the protocol stack up to the system's limit.  The
-.Fn evUnhold
-function will reverse the effects of
-.Fn evHold ,
-allowing incoming connections to be delivered for listener
-.Fa id .
-The
-.Fn evTryAccept
-function will poll the listener specified by
-.Fa id ,
-accepting a new connection if one is available, and queuing a connection event
-for later retrieval by
-.Fn evGetNext .
-If the connection event queued is an accept error(), sys_errno will contain
-the error code; otherwise it will be zero.  All connection events queued by
-.Fn evTryAccept
-will be delivered by
-.Fn evGetNext
-before a new select is done on the listener.
-.Pp
-The function
-.Fn evSetDebug
-sets the debugging
-.Fa level
-and diagnostic
-.Fa output
-file handle for an event context.  Greater numeric levels will
-result in more verbose output being sent to the output FILE during program
-execution.
-.Pp
-The function
-.Fn evPrintf
-prints a message with the format
-.Dq Fa fmt
-and the following arguments (if any), on the output stream associated
-with the event context pointed to by
-.Fa ctx .
-The message is output if the event context's debug level is greater than
-or equal to the indicated
-.Fa level .
-.Pp
-The function
-.Fn evInitID
-will initialize an opaque 
-.Dq evConn \s-1ID\s+1 , 
-.Dq evFile \s-1ID\s+1 , 
-.Dq evStream \s-1ID\s+1 , 
-.Dq evTimer \s-1ID\s+1 , 
-.Dq evWait \s-1ID\s+1 , 
-.Dq evContext , 
-or
-.Dq evEvent ,
-which is passed by reference.
-.Pp
-The function
-.Fn evTestID
-will examine an opaque \s-1ID\s+1 and return
-.Dq TRUE
-only if it is not in its initialized state.
-.Sh RETURN VALUES
-All the functions whose return type is
-.Dq Fa int
-use the standard convention of returning zero (0) to indicate success, or
-returning
-.Dq Fa -1
-and setting
-.Fa errno
-to indicate failure.
-.Sh FILE
-.Pa heap.h ,
-which is in the 
-.Pa src/lib/isc
-directory of the current 
-.Sy BIND
-distribution.
-.Sh ERRORS
-The possible values for
-.Fa errno
-when one of the
-.Dq Fa int
-functions in this library returns
-.Dq Fa -1
-include those of the Standard C Library and also:
-.Bl -tag -width EWOULDBLOCKAA
-.It Bq Er EINVAL
-Some function argument has an unreasonable value.
-.It Bq Er EINVAL
-The specified file descriptor has an integer value greater than the default
-.Fa FD_SETSIZE ,
-meaning that the application's limit is higher than the library's.
-.It Bq Er ENOENT
-The specified 
-.Dq event \s-1ID\s+1 
-does not exist.
-.It Bq Er EWOULDBLOCK
-No events have occurred and the
-.Fa EV_POLL
-option was specified.
-.It Bq Er EBADF
-The specified signal was unblocked outside the library.
-.El
-.Sh SEE ALSO
-.Xr gettimeofday 2 ,
-.Xr select 2 ,
-.Xr fcntl 3 ,
-.Xr malloc 3 ,
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr readv 3 ,
-.Xr writev 3 .
-.Sh BUGS
-This huge man page needs to be broken up into a handful of smaller ones.
-.Sh HISTORY
-The
-.Nm eventlib
-library was designed by Paul Vixie with excellent advice from his friends
-and with tips 'o the cap to the X Consortium and the implementors of DEC SRC
-Modula-3.
diff --git a/contrib/bind/lib/isc/eventlib_p.h b/contrib/bind/lib/isc/eventlib_p.h
deleted file mode 100644
index b4d7eccb0573e..0000000000000
--- a/contrib/bind/lib/isc/eventlib_p.h
+++ /dev/null
@@ -1,213 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* eventlib_p.h - private interfaces for eventlib
- * vix 09sep95 [initial]
- *
- * $Id: eventlib_p.h,v 1.28 2000/02/04 08:28:34 vixie Exp $
- */
-
-#ifndef _EVENTLIB_P_H
-#define _EVENTLIB_P_H
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <sys/un.h>
-
-#define EVENTLIB_DEBUG 1
-
-#include <errno.h>
-#include <fcntl.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/heap.h>
-#include <isc/list.h>
-#include <isc/memcluster.h>
-
-#define	EV_MASK_ALL	(EV_READ | EV_WRITE | EV_EXCEPT)
-#define ERR(e)		return (errno = (e), -1)
-#define OK(x)		if ((x) < 0) ERR(errno); else (void)NULL
-
-#define	NEW(p)		if (((p) = memget(sizeof *(p))) != NULL) \
-				FILL(p); \
-			else \
-				(void)NULL;
-#define OKNEW(p)	if (!((p) = memget(sizeof *(p)))) { \
-				errno = ENOMEM; \
-				return (-1); \
-			} else \
-				FILL(p)
-#define FREE(p)		memput((p), sizeof *(p))
-
-#if EVENTLIB_DEBUG
-#define FILL(p)		memset((p), 0xF5, sizeof *(p))
-#else
-#define FILL(p)
-#endif
-
-typedef struct evConn {
-	evConnFunc	func;
-	void *		uap;
-	int		fd;
-	int		flags;
-#define EV_CONN_LISTEN		0x0001		/* Connection is a listener. */
-#define EV_CONN_SELECTED	0x0002		/* evSelectFD(conn->file). */
-#define EV_CONN_BLOCK		0x0004		/* Listener fd was blocking. */
-	evFileID	file;
-	struct evConn *	prev;
-	struct evConn *	next;
-} evConn;
-
-typedef struct evAccept {
-	int		fd;
-	union {
-		struct sockaddr		sa;
-		struct sockaddr_in	in;
-#ifndef NO_SOCKADDR_UN
-		struct sockaddr_un	un;
-#endif
-	}		la;
-	int		lalen;
-	union {
-		struct sockaddr		sa;
-		struct sockaddr_in	in;
-#ifndef NO_SOCKADDR_UN
-		struct sockaddr_un	un;
-#endif
-	}		ra;
-	int		ralen;
-	int		ioErrno;
-	evConn *	conn;
-	LINK(struct evAccept) link;
-} evAccept;
-
-typedef struct evFile {
-	evFileFunc	func;
-	void *		uap;
-	int		fd;
-	int		eventmask;
-	int		preemptive;
-	struct evFile *	prev;
-	struct evFile *	next;
-	struct evFile *	fdprev;
-	struct evFile *	fdnext;
-} evFile;
-
-typedef struct evStream {
-	evStreamFunc	func;
-	void *		uap;
-	evFileID	file;
-	evTimerID	timer;
-	int		flags;
-#define EV_STR_TIMEROK	0x0001	/* IFF timer valid. */
-	int		fd;
-	struct iovec *	iovOrig;
-	int		iovOrigCount;
-	struct iovec *	iovCur;
-	int		iovCurCount;
-	int		ioTotal;
-	int		ioDone;
-	int		ioErrno;
-	struct evStream	*prevDone, *nextDone;
-	struct evStream	*prev, *next;
-} evStream;
-
-typedef struct evTimer {
-	evTimerFunc	func;
-	void *		uap;
-	struct timespec	due, inter;
-	int		index;
-} evTimer;
-
-typedef struct evWait {
-	evWaitFunc	func;
-	void *		uap;
-	const void *	tag;
-	struct evWait *	next;
-} evWait;
-
-typedef struct evWaitList {
-	evWait *		first;
-	evWait *		last;
-	struct evWaitList *	prev;
-	struct evWaitList *	next;
-} evWaitList;
-
-typedef struct evEvent_p {
-	enum {  Accept, File, Stream, Timer, Wait, Free, Null  } type;
-	union {
-		struct {  evAccept *this;  }			accept;
-		struct {  evFile *this; int eventmask;  }	file;
-		struct {  evStream *this;  }			stream;
-		struct {  evTimer *this;  }			timer;
-		struct {  evWait *this;  }			wait;
-		struct {  struct evEvent_p *next;  }		free;
-		struct {  const void *placeholder;  }		null;
-	} u;
-} evEvent_p;
-
-typedef struct {
-	/* Global. */
-	const evEvent_p	*cur;
-	/* Debugging. */
-	int		debug;
-	FILE		*output;
-	/* Connections. */
-	evConn		*conns;
-	LIST(evAccept)	accepts;
-	/* Files. */
-	evFile		*files, *fdNext;
-	fd_set		rdLast, rdNext;
-	fd_set		wrLast, wrNext;
-	fd_set		exLast, exNext;
-	fd_set		nonblockBefore;
-	int		fdMax, fdCount, highestFD;
-	evFile		*fdTable[FD_SETSIZE];
-#ifdef EVENTLIB_TIME_CHECKS
-	struct timespec	lastSelectTime;
-	int		lastFdCount;
-#endif
-	/* Streams. */
-	evStream	*streams;
-	evStream	*strDone, *strLast;
-	/* Timers. */
-	struct timespec	lastEventTime;
-	heap_context	timers;
-	/* Waits. */
-	evWaitList	*waitLists;
-	evWaitList	waitDone;
-} evContext_p;
-
-/* eventlib.c */
-#define evPrintf __evPrintf
-void evPrintf(const evContext_p *ctx, int level, const char *fmt, ...);
-
-/* ev_timers.c */
-#define evCreateTimers __evCreateTimers
-heap_context evCreateTimers(const evContext_p *);
-#define evDestroyTimers __evDestroyTimers
-void evDestroyTimers(const evContext_p *);
-
-/* ev_waits.c */
-#define evFreeWait __evFreeWait
-evWait *evFreeWait(evContext_p *ctx, evWait *old);
-
-#endif /*_EVENTLIB_P_H*/
diff --git a/contrib/bind/lib/isc/heap.c b/contrib/bind/lib/isc/heap.c
deleted file mode 100644
index ba9c5036c77a1..0000000000000
--- a/contrib/bind/lib/isc/heap.c
+++ /dev/null
@@ -1,221 +0,0 @@
-/*
- * Copyright (c) 1997,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Heap implementation of priority queues adapted from the following:
- *
- *	_Introduction to Algorithms_, Cormen, Leiserson, and Rivest,
- *	MIT Press / McGraw Hill, 1990, ISBN 0-262-03141-8, chapter 7.
- *
- *	_Algorithms_, Second Edition, Sedgewick, Addison-Wesley, 1988,
- *	ISBN 0-201-06673-4, chapter 11.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: heap.c,v 8.7 1999/10/13 16:39:34 vixie Exp $";
-#endif /* not lint */
-
-#include "port_before.h"
-
-#include <stddef.h>
-#include <stdlib.h>
-#include <errno.h>
-
-#include "port_after.h"
-
-#include <isc/heap.h>
-
-/*
- * Note: to make heap_parent and heap_left easy to compute, the first
- * element of the heap array is not used; i.e. heap subscripts are 1-based,
- * not 0-based.
- */
-#define heap_parent(i) ((i) >> 1)
-#define heap_left(i) ((i) << 1)
-
-#define ARRAY_SIZE_INCREMENT 512
-
-heap_context
-heap_new(heap_higher_priority_func higher_priority, heap_index_func index,
-	 int array_size_increment) {
-	heap_context ctx;
-
-	ctx = (heap_context)malloc(sizeof (struct heap_context));
-	if (ctx == NULL || higher_priority == NULL)
-		return (NULL);
-	ctx->array_size = 0;
-	if (array_size_increment == 0)
-		ctx->array_size_increment = ARRAY_SIZE_INCREMENT;
-	else
-		ctx->array_size_increment = array_size_increment;
-	ctx->heap_size = 0;
-	ctx->heap = NULL;
-	ctx->higher_priority = higher_priority;
-	ctx->index = index;
-	return (ctx);
-}
-
-int
-heap_free(heap_context ctx) {
-	if (ctx == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	if (ctx->heap != NULL)
-		free(ctx->heap);
-	free(ctx);
-
-	return (0);
-}
-
-static int
-heap_resize(heap_context ctx) {
-	void **new_heap;
-
-	ctx->array_size += ctx->array_size_increment;
-	new_heap = (void **)realloc(ctx->heap,
-				    (ctx->array_size) * (sizeof (void *)));
-	if (new_heap == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	ctx->heap = new_heap;
-	return (0);
-}
-
-static void
-float_up(heap_context ctx, int i, void *elt) {
-	int p;
-
-	for ( p = heap_parent(i); 
-	      i > 1 && ctx->higher_priority(elt, ctx->heap[p]);
-	      i = p, p = heap_parent(i) ) {
-		ctx->heap[i] = ctx->heap[p];
-		if (ctx->index != NULL)
-			(ctx->index)(ctx->heap[i], i);
-	}
-	ctx->heap[i] = elt;
-	if (ctx->index != NULL)
-		(ctx->index)(ctx->heap[i], i);
-}
-
-static void
-sink_down(heap_context ctx, int i, void *elt) {
-	int j, size, half_size;
-
-	size = ctx->heap_size;
-	half_size = size / 2;
-	while (i <= half_size) {
-		/* find smallest of the (at most) two children */
-		j = heap_left(i);
-		if (j < size && ctx->higher_priority(ctx->heap[j+1],
-						     ctx->heap[j]))
-			j++;
-		if (ctx->higher_priority(elt, ctx->heap[j]))
-			break;
-		ctx->heap[i] = ctx->heap[j];
-		if (ctx->index != NULL)
-			(ctx->index)(ctx->heap[i], i);
-		i = j;
-	}
-	ctx->heap[i] = elt;
-	if (ctx->index != NULL)
-		(ctx->index)(ctx->heap[i], i);
-}
-
-int
-heap_insert(heap_context ctx, void *elt) {
-	int i;
-
-	if (ctx == NULL || elt == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	i = ++ctx->heap_size;
-	if (ctx->heap_size >= ctx->array_size && heap_resize(ctx) < 0)
-		return (-1);
-	
-	float_up(ctx, i, elt);
-
-	return (0);
-}
-
-int
-heap_delete(heap_context ctx, int i) {
-	void *elt;
-
-	if (ctx == NULL || i < 1 || i > ctx->heap_size) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	elt = ctx->heap[ctx->heap_size];
-	if (--ctx->heap_size > 0)
-		sink_down(ctx, i, elt);
-
-	return (0);
-}
-
-int
-heap_increased(heap_context ctx, int i) {
-     	if (ctx == NULL || i < 1 || i > ctx->heap_size) {
-		errno = EINVAL;
-		return (-1);
-	}
-	
-	float_up(ctx, i, ctx->heap[i]);
-
-	return (0);
-}
-
-int
-heap_decreased(heap_context ctx, int i) {
-     	if (ctx == NULL || i < 1 || i > ctx->heap_size) {
-		errno = EINVAL;
-		return (-1);
-	}
-	
-	sink_down(ctx, i, ctx->heap[i]);
-
-	return (0);
-}
-
-void *
-heap_element(heap_context ctx, int i) {
-	if (ctx == NULL || i < 1 || i > ctx->heap_size) {
-		errno = EINVAL;
-		return (NULL);
-	}
-
-	return (ctx->heap[i]);
-}
-
-int
-heap_for_each(heap_context ctx, heap_for_each_func action, void *uap) {
-	int i;
-
-	if (ctx == NULL || action == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	for (i = 1; i <= ctx->heap_size; i++)
-		(action)(ctx->heap[i], uap);
-	return (0);
-}
diff --git a/contrib/bind/lib/isc/heap.mdoc b/contrib/bind/lib/isc/heap.mdoc
deleted file mode 100644
index 516490b22ba9e..0000000000000
--- a/contrib/bind/lib/isc/heap.mdoc
+++ /dev/null
@@ -1,369 +0,0 @@
-.\" $Id: heap.mdoc,v 8.5 1999/01/08 19:25:38 vixie Exp $
-.\"
-.\"Copyright (c) 1997,1999 by Internet Software Consortium.
- *
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
- *
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd Jan 1, 1997
-.\"Os OPERATING_SYSTEM [version/release]
-.Os BSD 4
-.\" TODO--get correct section # below!!
-.Dt HEAP @SYSCALL_EXT@
-.Sh DESCRIPTION
-.Nm heap_new ,
-.Nm heap_free ,
-.Nm heap_insert ,
-.Nm heap_delete ,
-.Nm heap_increased ,
-.Nm heap_decreased ,
-.Nm heap_element ,
-.Nm heap_for_each 
-.Nd heap implementation of priority queues
-.Sh SYNOPSIS
-.Fd #include \&"heap.h\&"
-.Ft heap_context    
-.Fn heap_new "heap_higher_priority_func higher_priority" \
-"heap_index_func index" "int array_size_increment"
-.Ft int
-.Fn heap_free "heap_context ctx"
-.Ft int
-.Fn heap_insert "heap_context ctx" "void *elt"
-.Ft int
-.Fn heap_delete "heap_context ctx" "int i"
-.Ft int
-.Fn heap_increased "heap_context ctx" "int i"
-.Ft int
-.Fn heap_decreased "heap_context ctx" "int i"
-.Ft void *
-.Fn heap_element "heap_context ctx" "int i"
-.Ft int 
-.Fn heap_for_each "heap_context ctx" "heap_for_each_func action" "void *uap"
-.Sh DESCRIPTION
-These functions implement heap\-based priority queues.  The user defines a
-priority scheme, and provides a function for comparison of the priority
-of heap elements
-.Po see the description of the
-.Ft heap_higher_priority_func
-function pointer, below
-.Pc .
-.Pp
-Each of the functions depends upon the
-.Ft heap_context
-type, which is a pointer to a
-.Ft struct heap_context 
-.Pq see Pa heap.h No for more information .
-.Pp
-The
-.Pa heap.h
-header file also defines the following set of function
-function pointers:
-.Bd -literal -offset indent
-typedef int (*heap_higher_priority_func)(void *, void *);
-typedef void (*heap_index_func)(void *, int);
-typedef void (*heap_for_each_func)(void *, void *);
-.Ed
-.Pp
-These are pointers to user-defined functions.
-The 
-.Ft heap_higher_priority_func
-type is a pointer to a function which compares two
-different heap (queue) elements and returns an
-.Ft int
-which answers the question, "Does the first queue element 
-have a higher priority than the second?"  In other words, 
-a function pointer of this type 
-.Em must 
-return a number greater than zero
-if the element indicated by the first argument is of a higher priority than 
-that indicated by the second element, and zero otherwise.  
-.Pp
-The other two function pointers are documented in the descriptions
-of 
-.Fn heap_new
-.Pq Va heap_index_func
-and
-.Fn heap_for_each
-.Pq Va heap_for_each_func ,
-below.
-.Pp
-The function
-.Fn heap_new
-initializes a 
-.Ft struct heap_context
-and returns a pointer to it.  The
-.Fa higher_priority
-function pointer 
-.Em must 
-be 
-.No non\- Ns Dv NULL .
-As explained above, this refers to a 
-function supplied by the user which compares the priority of two different
-queue or heap elements; see above for more information. 
-The second argument, 
-.Fa index ,
-is a pointer to a user-defined function whose arguments are
-a heap element and its index in the heap.
-.Fa Index 
-is intended to provide the user a means of knowing the internal index
-of an element in the heap while maintaining the opacity of the implementation;
-since the user has to know the actual indexes of heap elements in order to use,
-e.g., 
-.Fn heap_delete
-or
-.Fn heap_element ,
-the user 
-.Fa index
-function could store the index in the heap element, itself.  If 
-.Fa index
-is 
-.No non\- Ns Dv NULL ,
-then it is called 
-.Em whenever 
-the index of an element changes, allowing the user to stay up\-to\-date
-with index changes.
-The last argument, 
-.Fa array_size_increment
-will be used, as its name suggests, by
-.Xr malloc 3
-or
-.Xr realloc 3
-to increment the array which implements the heap; if zero, a default value 
-will be used.
-.Pp
-The
-.Fn heap_free
-function frees the given
-.Ft heap_context
-argument 
-.Pq Fa ctx ,
-which also frees the entire
-.Nm heap ,
-if it is
-.No non\- Ns Dv NULL .
-The argument
-.Fa ctx
-should be
-.No non\- Ns Dv NULL .
-.Pp
-The 
-.Fn heap_insert
-function is used to insert the new heap element
-.Fa elt
-into the appropriate place (priority\-wise) in the
-.Ft heap
-indicated by 
-.Fa ctx
-.Po a pointer to a
-.Ft heap_context
-.Pc .
-If 
-.No non\- Ns Dv NULL ,
-the user-defined
-.Ft higher_priority
-function pointer associated with the indicated 
-.Nm heap
-is used to determine that
-.Dq appropriate place ;
-the highest\-priority elements are at the front of the queue (top of
-the heap).
-(See the description of 
-.Fn heap_new , 
-above, for more information.)
-.Pp
-The function
-.Fn heap_delete
-is used to delete the 
-.Fa i\- Ns th
-element of the queue (heap), and fixing up the queue (heap) from that
-element onward via the priority as determined by the user function
-pointed to by
-.Ft higher_priority 
-function pointer
-.Pq see description of Fn heap_new, No above .
-.Pp
-.Fn heap_increased
-.Pp
-.Fn heap_decreased
-.Pp
-The 
-.Fn heap_element
-function returns the
-.Fa i\- Ns th
-element of the queue/heap indicated by
-.Fa ctx ,
-if possible.
-.Pp
-The
-.Fn heap_for_each
-function provides a mechanism for the user to increment through the entire
-queue (heap) and perform some
-.Fa action 
-upon each of the queue elements.  This
-.Fa action 
-is pointer to a user\-defined function with two arguments, the first of
-which should be interpreted by the user's function as a heap element.  The 
-second value passed to the user function is just the
-.Fa uap
-argument to 
-.Fn heap_for_each ;
-this allows the user to specify additional arguments, if necessary, to
-the function pointed to by 
-.Fa action .
-.\" The following requests should be uncommented and
-.\" used where appropriate.  This next request is
-.\" for sections 2 and 3 function return values only.
-.Sh RETURN VALUES
-.Bl -tag -width "heap_decreased()"
-.It Fn heap_new
-.Dv NULL
-if unable to 
-.Xr malloc 3
-a 
-.Ft struct heap_context
-or if the
-.Fa higher_priority
-function pointer is 
-.Dv NULL;
-otherwise, a valid
-.Ft heap_context 
-.Ns .
-.It Fn heap_free
--1 if 
-.Fa ctx
-is 
-.Dv NULL 
-(with 
-.Va errno
-set to
-.Dv EINVAL ) ;
-otherwise, 0.
-.It Fn heap_insert
--1 
-if either
-.Fa ctx
-or 
-.Fa elt
-is 
-.Dv NULL ,
-or if an attempt to 
-.Xr malloc 3
-or 
-.Xr realloc 3
-the heap array fails (with
-.Va errno
-set to 
-.Dv EINVAL
-or 
-.Dv ENOMEM ,
-respectively).
-Otherwise, 0.
-.It Fn heap_delete
--1 if 
-.Fa ctx
-is 
-.Dv NULL
-or 
-.Fa i 
-is out\-of\-range (with
-.Va errno
-set to
-.Dv EINVAL ) ;
-0 otherwise.
-.It Fn heap_increased
-As for
-.Fn heap_delete .
-.It Fn heap_decreased
-As for
-.Fn heap_delete .
-.It Fn heap_element
-NULL if 
-.Fa ctx 
-is 
-.Dv NULL
-or
-.Fa i
-out\-of-bounds (with
-.Va errno
-set to
-.Dv EINVAL ) ;
-otherwise, a pointer to the
-.Fa i\- Ns th
-queue element.
-.It Fn heap_for_each
--1 if either
-.Fa ctx
-or 
-.Fa action
-is 
-.Dv NULL
-(with 
-.Va errno
-set to
-.Dv EINVAL ) ;
-0 otherwise.
-.El
-.\" This next request is for sections 1, 6, 7 & 8 only
-.\" .Sh ENVIRONMENT
-.Sh FILES
-.Bl -tag -width "heap.h000"
-.It Pa heap.h
- heap library header file
-.El
-.\" .Sh EXAMPLES
-.\" This next request is for sections 1, 6, 7 & 8 only
-.\"     (command return values (to shell) and
-.\"    fprintf/stderr type diagnostics)
-.Sh DIAGNOSTICS
-Please refer to
-.Sx RETURN VALUES .
-.\" The next request is for sections 2 and 3 error
-.\" and signal handling only.
-.Sh ERRORS
-The variable
-.Va errno
-is set by
-.Fn heap_free , 
-.Fn heap_insert , 
-.Fn heap_delete , 
-.Fn heap_increased , 
-and
-.Fn heap_decreased 
-under the conditions of invalid input
-.Pq Dv EINVAL
-or lack of memory
-.Pq Dv ENOMEM ;
-please refer to
-.Sx RETURN VALUES .
-.Sh SEE ALSO
-.Xr malloc 3 ,
-.Xr realloc 3 .
-.Pp
-Cormen, Leiserson, and Rivest,  
-.Sy Introduction to Algorithms,
-MIT Press / McGraw Hill, 1990, ISBN 0\-262\-03141\-8, chapter 7.
-.Pp
-Sedgewick, 
-.Sy Algorithms,
-2nd ed'n, Addison\-Wesley, 1988, ISBN 0\-201\-06673\-4, chapter 11.
-.\" .Sh STANDARDS
-.\" .Sh HISTORY
-.Sh AUTHORS
-The
-.Nm heap
-library was implemented by Bob Halley (halley@vix.com) of Vixie Enterprises, 
-Inc., for the Internet Software consortium, and was adapted from
-the two books listed in the 
-.Sx SEE ALSO
-section, above.
-.\" .Sh BUGS
diff --git a/contrib/bind/lib/isc/logging.c b/contrib/bind/lib/isc/logging.c
deleted file mode 100644
index 7d6964ba9b4b0..0000000000000
--- a/contrib/bind/lib/isc/logging.c
+++ /dev/null
@@ -1,700 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: logging.c,v 8.26 2000/04/23 02:19:02 vixie Exp $";
-#endif /* not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/time.h>
-#include <sys/stat.h>
-
-#include <fcntl.h>
-#include <limits.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <stdarg.h>
-#include <syslog.h>
-#include <errno.h>
-#include <time.h>
-#include <unistd.h>
-
-#include <isc/assertions.h>
-#include <isc/logging.h>
-#include <isc/memcluster.h>
-
-#include "port_after.h"
-
-#ifdef VSPRINTF_CHAR
-# define VSPRINTF(x) strlen(vsprintf/**/x)
-#else
-# define VSPRINTF(x) ((size_t)vsprintf x)
-#endif
-
-#include "logging_p.h"
-
-static const int syslog_priority[] = { LOG_DEBUG, LOG_INFO, LOG_NOTICE,
-				       LOG_WARNING, LOG_ERR, LOG_CRIT };
-
-static const char *months[] = { "Jan", "Feb", "Mar", "Apr", "May", "Jun",
-				"Jul", "Aug", "Sep", "Oct", "Nov", "Dec" };
-
-static char *level_text[] = { "info: ", "notice: ", "warning: ", "error: ",
-			      "critical: " };
-
-static void
-version_rename(log_channel chan) {
-	unsigned int ver;
-	char old_name[PATH_MAX+1];
-	char new_name[PATH_MAX+1];
-	
-	ver = chan->out.file.versions;
-	if (ver < 1)
-		return;
-	if (ver > LOG_MAX_VERSIONS)
-		ver = LOG_MAX_VERSIONS;
-	/*
-	 * Need to have room for '.nn' (XXX assumes LOG_MAX_VERSIONS < 100)
-	 */
-	if (strlen(chan->out.file.name) > (PATH_MAX-3))
-		return;
-	for (ver--; ver > 0; ver--) {
-		sprintf(old_name, "%s.%d", chan->out.file.name, ver-1);
-		sprintf(new_name, "%s.%d", chan->out.file.name, ver);
-		(void)rename(old_name, new_name);
-	}
-	sprintf(new_name, "%s.0", chan->out.file.name);
-	(void)rename(chan->out.file.name, new_name);
-}
-
-FILE *
-log_open_stream(log_channel chan) {
-	FILE *stream;
-	int fd, flags;
-	struct stat sb;
-	int regular;
-
-	if (chan == NULL || chan->type != log_file) {
-		errno = EINVAL;
-		return (NULL);
-	}
-	
-	/*
-	 * Don't open already open streams
-	 */
-	if (chan->out.file.stream != NULL)
-		return (chan->out.file.stream);
-
-	if (stat(chan->out.file.name, &sb) < 0) {
-		if (errno != ENOENT) {
-			syslog(LOG_ERR,
-			       "log_open_stream: stat of %s failed: %s",
-			       chan->out.file.name, strerror(errno));
-			chan->flags |= LOG_CHANNEL_BROKEN;
-			return (NULL);
-		}
-		regular = 1;
-	} else
-		regular = (sb.st_mode & S_IFREG);
-
-	if (chan->out.file.versions) {
-		if (!regular) {
-			syslog(LOG_ERR,
-       "log_open_stream: want versions but %s isn't a regular file",
-			       chan->out.file.name);
-			chan->flags |= LOG_CHANNEL_BROKEN;
-			errno = EINVAL;
-			return (NULL);
-		}
-	}
-
-	flags = O_WRONLY|O_CREAT|O_APPEND;
-
-	if ((chan->flags & LOG_TRUNCATE) != 0) {
-		if (regular) {
-			(void)unlink(chan->out.file.name);
-			flags |= O_EXCL;
-		} else {
-			syslog(LOG_ERR,
-       "log_open_stream: want truncation but %s isn't a regular file",
-			       chan->out.file.name);
-			chan->flags |= LOG_CHANNEL_BROKEN;
-			errno = EINVAL;
-			return (NULL);
-		}
-	}
-
-	fd = open(chan->out.file.name, flags,
-		  S_IRUSR|S_IWUSR|S_IRGRP|S_IWGRP|S_IROTH|S_IWOTH);
-	if (fd < 0) {
-		syslog(LOG_ERR, "log_open_stream: open(%s) failed: %s",
-		       chan->out.file.name, strerror(errno));
-		chan->flags |= LOG_CHANNEL_BROKEN;
-		return (NULL);
-	}
-	stream = fdopen(fd, "a");
-	if (stream == NULL) {
-		syslog(LOG_ERR, "log_open_stream: fdopen() failed");
-		chan->flags |= LOG_CHANNEL_BROKEN;
-		return (NULL);
-	}
-	(void) fchown(fd, chan->out.file.owner, chan->out.file.group);
-
-	chan->out.file.stream = stream;
-	return (stream);
-}
-
-int
-log_close_stream(log_channel chan) {
-	FILE *stream;
-
-	if (chan == NULL || chan->type != log_file) {
-		errno = EINVAL;
-		return (0);
-	}
-	stream = chan->out.file.stream;
-	chan->out.file.stream = NULL;
-	if (stream != NULL && fclose(stream) == EOF)
-		return (-1);
-	return (0);
-}
-
-FILE *
-log_get_stream(log_channel chan) {
-	if (chan == NULL || chan->type != log_file) {
-		errno = EINVAL;
-		return (NULL);
-	}
-	return (chan->out.file.stream);
-}
-
-char *
-log_get_filename(log_channel chan) {
-	if (chan == NULL || chan->type != log_file) {
-		errno = EINVAL;
-		return (NULL);
-	}
-	return (chan->out.file.name);
-}
-
-int
-log_check_channel(log_context lc, int level, log_channel chan) {
-	int debugging, chan_level;
-
-	REQUIRE(lc != NULL);
-
-	debugging = ((lc->flags & LOG_OPTION_DEBUG) != 0);
-
-	/*
-	 * If not debugging, short circuit debugging messages very early.
-	 */
-	if (level > 0 && !debugging)
-		return (0);
-
-	if ((chan->flags & (LOG_CHANNEL_BROKEN|LOG_CHANNEL_OFF)) != 0)
-		return (0);
-
-	/* Some channels only log when debugging is on. */
-	if ((chan->flags & LOG_REQUIRE_DEBUG) && !debugging)
-		return (0);
-
-	/* Some channels use the global level. */
-	if ((chan->flags & LOG_USE_CONTEXT_LEVEL) != 0) {
-		chan_level = lc->level;
-	} else
-		chan_level = chan->level;
-
-	if (level > chan_level)
-		return (0);
-
-	return (1);
-}
-
-int 
-log_check(log_context lc, int category, int level) {
-	log_channel_list lcl;
-	int debugging;
-
-	REQUIRE(lc != NULL);
-
-	debugging = ((lc->flags & LOG_OPTION_DEBUG) != 0);
-
-	/*
-	 * If not debugging, short circuit debugging messages very early.
-	 */
-	if (level > 0 && !debugging)
-		return (0);
-
-	if (category < 0 || category > lc->num_categories)
-		category = 0;		/* use default */
-	lcl = lc->categories[category];
-	if (lcl == NULL) {
-		category = 0;
-		lcl = lc->categories[0];
-	}
-
-	for ( /* nothing */; lcl != NULL; lcl = lcl->next) {
-		if (log_check_channel(lc, level, lcl->channel))
-			return (1);
-	}
-	return (0);
-}
-
-void
-log_vwrite(log_context lc, int category, int level, const char *format, 
-	   va_list args) {
-	log_channel_list lcl;
-	int pri, debugging, did_vsprintf = 0;
-	int original_category;
-	FILE *stream;
-	log_channel chan;
-	struct timeval tv;
-	struct tm *local_tm;
-	char *category_name;
-	char *level_str;
-	char time_buf[256];
-	char level_buf[256];
-
-	REQUIRE(lc != NULL);
-
-	debugging = (lc->flags & LOG_OPTION_DEBUG);
-
-	/*
-	 * If not debugging, short circuit debugging messages very early.
-	 */
-	if (level > 0 && !debugging)
-		return;
-
-	if (category < 0 || category > lc->num_categories)
-		category = 0;		/* use default */
-	original_category = category;
-	lcl = lc->categories[category];
-	if (lcl == NULL) {
-		category = 0;
-		lcl = lc->categories[0];
-	}
-
-	/*
-	 * Get the current time and format it.
-	 */
-	time_buf[0]='\0';
-	if (gettimeofday(&tv, NULL) < 0) {
-		syslog(LOG_INFO, "gettimeofday failed in log_vwrite()");
-	} else {
-#ifdef HAVE_TIME_R
-		localtime_r((time_t *)&tv.tv_sec, &local_tm);
-#else
-		local_tm = localtime((time_t *)&tv.tv_sec);
-#endif
-		if (local_tm != NULL) {
-			sprintf(time_buf, "%02d-%s-%4d %02d:%02d:%02d.%03ld ",
-				local_tm->tm_mday, months[local_tm->tm_mon],
-				local_tm->tm_year+1900, local_tm->tm_hour,
-				local_tm->tm_min, local_tm->tm_sec,
-				(long)tv.tv_usec/1000);
-		}
-	}
-
-	/*
-	 * Make a string representation of the current category and level
-	 */
-
-	if (lc->category_names != NULL &&
-	    lc->category_names[original_category] != NULL)
-		category_name = lc->category_names[original_category];
-	else
-		category_name = "";
-
-	if (level >= log_critical) {
-		if (level >= 0) {
-			sprintf(level_buf, "debug %d: ", level);
-			level_str = level_buf;
-		} else
-			level_str = level_text[-level-1];
-	} else {
-		sprintf(level_buf, "level %d: ", level);
-		level_str = level_buf;
-	}
-
-	/*
-	 * Write the message to channels.
-	 */
-	for ( /* nothing */; lcl != NULL; lcl = lcl->next) {
-		chan = lcl->channel;
-
-		if (!log_check_channel(lc, level, chan))
-			continue;
-
-		if (!did_vsprintf) {
-			if (VSPRINTF((lc->buffer, format, args)) >
-			    LOG_BUFFER_SIZE) {
-				syslog(LOG_CRIT,
-				       "memory overrun in log_vwrite()");
-				exit(1);
-			}
-			did_vsprintf = 1;
-		}
-
-		switch (chan->type) {
-		case log_syslog:
-			if (level >= log_critical)
-				pri = (level >= 0) ? 0 : -level;
-			else
-				pri = -log_critical;
-			syslog(chan->out.facility|syslog_priority[pri],
-			       "%s%s%s%s",
-			       (chan->flags & LOG_TIMESTAMP) ?	time_buf : "",
-			       (chan->flags & LOG_PRINT_CATEGORY) ?
-			       category_name : "",
-			       (chan->flags & LOG_PRINT_LEVEL) ?
-			       level_str : "",
-			       lc->buffer);
-			break;
-		case log_file:
-			stream = chan->out.file.stream;
-			if (stream == NULL) {
-				stream = log_open_stream(chan);
-				if (stream == NULL)
-					break;
-			}
-			if (chan->out.file.max_size != ULONG_MAX) {
-				long pos;
-				
-				pos = ftell(stream);
-				if (pos >= 0 &&
-				    (unsigned long)pos >
-				    chan->out.file.max_size) {
-					/*
-					 * try to roll over the log files,
-					 * ignoring all all return codes
-					 * except the open (we don't want
-					 * to write any more anyway)
-					 */
-					log_close_stream(chan);
-					version_rename(chan);
-					stream = log_open_stream(chan);
-					if (stream == NULL)
-						break;
-				}
-			}
-			fprintf(stream, "%s%s%s%s\n", 
-				(chan->flags & LOG_TIMESTAMP) ?	time_buf : "",
-				(chan->flags & LOG_PRINT_CATEGORY) ?
-				category_name : "",
-				(chan->flags & LOG_PRINT_LEVEL) ?
-				level_str : "",
-				lc->buffer);
-			fflush(stream);
-			break;
-		case log_null:
-			break;
-		default:
-			syslog(LOG_ERR,
-			       "unknown channel type in log_vwrite()");
-		}
-	}
-}
-
-void
-log_write(log_context lc, int category, int level, const char *format, ...) {
-	va_list args;
-
-	va_start(args, format);
-	log_vwrite(lc, category, level, format, args);
-	va_end(args);
-}
-
-/*
- * Functions to create, set, or destroy contexts
- */
-
-int
-log_new_context(int num_categories, char **category_names, log_context *lc) {
-	log_context nlc;
-
-	nlc = memget(sizeof (struct log_context));
-	if (nlc == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	nlc->num_categories = num_categories;
-	nlc->category_names = category_names;
-	nlc->categories = memget(num_categories * sizeof (log_channel_list));
-	if (nlc->categories == NULL) {
-		memput(nlc, sizeof (struct log_context));
-		errno = ENOMEM;
-		return (-1);
-	}
-	memset(nlc->categories, '\0',
-	       num_categories * sizeof (log_channel_list));
-	nlc->flags = 0U;
-	nlc->level = 0;
-	*lc = nlc;
-	return (0);
-}
-
-void
-log_free_context(log_context lc) {
-	log_channel_list lcl, lcl_next;
-	log_channel chan;
-	int i;
-
-	REQUIRE(lc != NULL);
-
-	for (i = 0; i < lc->num_categories; i++)
-		for (lcl = lc->categories[i]; lcl != NULL; lcl = lcl_next) {
-			lcl_next = lcl->next;
-			chan = lcl->channel;
-			(void)log_free_channel(chan);
-			memput(lcl, sizeof (struct log_channel_list));
-		}
-	memput(lc->categories,
-	       lc->num_categories * sizeof (log_channel_list));
-	memput(lc, sizeof (struct log_context));
-}
-
-int
-log_add_channel(log_context lc, int category, log_channel chan) {
-	log_channel_list lcl;
-
-	if (lc == NULL || category < 0 || category >= lc->num_categories) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	lcl = memget(sizeof (struct log_channel_list));
-	if (lcl == NULL) {
-		errno = ENOMEM;
-		return(-1);
-	}
-	lcl->channel = chan;
-	lcl->next = lc->categories[category];
-	lc->categories[category] = lcl;
-	chan->references++;
-	return (0);
-}
-
-int
-log_remove_channel(log_context lc, int category, log_channel chan) {
-	log_channel_list lcl, prev_lcl, next_lcl;
-	int found = 0;
-
-	if (lc == NULL || category < 0 || category >= lc->num_categories) {
-		errno = EINVAL;
-		return (-1);
-	}
-
-	for (prev_lcl = NULL, lcl = lc->categories[category];
-	     lcl != NULL;
-	     lcl = next_lcl) {
-		next_lcl = lcl->next;
-		if (lcl->channel == chan) {
-			log_free_channel(chan);
-			if (prev_lcl != NULL)
-				prev_lcl->next = next_lcl;
-			else
-				lc->categories[category] = next_lcl;
-			memput(lcl, sizeof (struct log_channel_list));
-			/*
-			 * We just set found instead of returning because
-			 * the channel might be on the list more than once.
-			 */
-			found = 1;
-		} else
-			prev_lcl = lcl;
-	}
-	if (!found) {
-		errno = ENOENT;
-		return (-1);
-	}
-	return (0);
-}
-
-int
-log_option(log_context lc, int option, int value) {
-	if (lc == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-	switch (option) {
-	case LOG_OPTION_DEBUG:
-		if (value)
-			lc->flags |= option;
-		else
-			lc->flags &= ~option;
-		break;
-	case LOG_OPTION_LEVEL:
-		lc->level = value;
-		break;
-	default:
-		errno = EINVAL;
-		return (-1);
-	}
-	return (0);
-}
-
-int
-log_category_is_active(log_context lc, int category) {
-	if (lc == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-	if (category >= 0 && category < lc->num_categories &&
-	    lc->categories[category] != NULL)
-		return (1);
-	return (0);
-}
-
-log_channel
-log_new_syslog_channel(unsigned int flags, int level, int facility) {
-	log_channel chan;
-
-	chan = memget(sizeof (struct log_channel));
-	if (chan == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	chan->type = log_syslog;
-	chan->flags = flags;
-	chan->level = level;
-	chan->out.facility = facility;
-	chan->references = 0;
-	return (chan);
-}
-
-log_channel
-log_new_file_channel(unsigned int flags, int level,
-		     char *name, FILE *stream, unsigned int versions,
-		     unsigned long max_size) {
-	log_channel chan;
-
-	chan = memget(sizeof (struct log_channel));
-	if (chan == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	chan->type = log_file;
-	chan->flags = flags;
-	chan->level = level;
-	if (name != NULL) {
-		size_t len;
-		
-		len = strlen(name);
-		/* 
-		 * Quantize length to a multiple of 256.  There's space for the
-		 * NUL, since if len is a multiple of 256, the size chosen will
-		 * be the next multiple.
-		 */
-		chan->out.file.name_size = ((len / 256) + 1) * 256;
-		chan->out.file.name = memget(chan->out.file.name_size);
-		if (chan->out.file.name == NULL) {
-			memput(chan, sizeof (struct log_channel));
-			errno = ENOMEM;
-			return (NULL);
-		}
-		/* This is safe. */
-		strcpy(chan->out.file.name, name);
-	} else {
-		chan->out.file.name_size = 0;
-		chan->out.file.name = NULL;
-	}
-	chan->out.file.stream = stream;
-	chan->out.file.versions = versions;
-	chan->out.file.max_size = max_size;
-	chan->out.file.owner = getuid();
-	chan->out.file.group = getgid();
-	chan->references = 0;
-	return (chan);
-}
-
-int
-log_set_file_owner(log_channel chan, uid_t owner, gid_t group) {
-	if (chan->type != log_file) {
-		errno = EBADF;
-		return (-1);
-	}
-	chan->out.file.owner = owner;
-	chan->out.file.group = group;
-	return (0);
-}
-
-log_channel
-log_new_null_channel() {
-	log_channel chan;
-
-	chan = memget(sizeof (struct log_channel));
-	if (chan == NULL) {
-		errno = ENOMEM;
-		return (NULL);
-	}
-	chan->type = log_null;
-	chan->flags = LOG_CHANNEL_OFF;
-	chan->level = log_info;
-	chan->references = 0;
-	return (chan);
-}
-
-int
-log_inc_references(log_channel chan) {
-	if (chan == NULL) {
-		errno = EINVAL;
-		return (-1);
-	}
-	chan->references++;
-	return (0);
-}
-
-int
-log_dec_references(log_channel chan) {
-	if (chan == NULL || chan->references <= 0) {
-		errno = EINVAL;
-		return (-1);
-	}
-	chan->references--;
-	return (0);
-}
-
-log_channel_type
-log_get_channel_type(log_channel chan) {
-	REQUIRE(chan != NULL);
-	
-	return (chan->type);
-}
-
-int
-log_free_channel(log_channel chan) {
-	if (chan == NULL || chan->references <= 0) {
-		errno = EINVAL;
-		return (-1);
-	}
-	chan->references--;
-	if (chan->references == 0) {
-		if (chan->type == log_file) {
-			if ((chan->flags & LOG_CLOSE_STREAM) &&
-			    chan->out.file.stream != NULL)
-				(void)fclose(chan->out.file.stream);
-			if (chan->out.file.name != NULL)
-				memput(chan->out.file.name,
-				       chan->out.file.name_size);
-		}
-		memput(chan, sizeof (struct log_channel));
-	}
-	return (0);
-}
diff --git a/contrib/bind/lib/isc/logging.mdoc b/contrib/bind/lib/isc/logging.mdoc
deleted file mode 100644
index 47d43129faba0..0000000000000
--- a/contrib/bind/lib/isc/logging.mdoc
+++ /dev/null
@@ -1,1052 +0,0 @@
-.\" $Id: logging.mdoc,v 8.4 2000/04/23 02:19:02 vixie Exp $
-.\"
-.\"Copyright (c) 1995-1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.\" The following six UNCOMMENTED lines are required.
-.Dd January 1, 1996
-.\"Os OPERATING_SYSTEM [version/release]
-.Os BSD 4
-.\"Dt DOCUMENT_TITLE [section number] [volume]
-.Dt LOGGING @SYSCALL_EXT@
-.Sh NAME
-.Nm log_open_stream ,
-.Nm log_close_stream ,
-.Nm log_get_stream ,
-.Nm log_get_filename ,
-.Nm log_vwrite ,
-.Nm log_write ,
-.Nm log_new_context ,
-.Nm log_free_context ,
-.Nm log_add_channel ,
-.Nm log_remove_channel ,
-.Nm log_option ,
-.Nm log_category_is_active ,
-.Nm log_new_syslog_channel ,
-.Nm log_new_file_channel ,
-.Nm log_set_file_owner ,
-.Nm log_new_null_channel ,
-.Nm log_inc_references ,
-.Nm log_dec_references ,
-.Nm log_free_channel
-.Nd logging system
-.Sh SYNOPSIS
-.Fd #include <isc/logging.h>
-.Ft FILE *
-.Fn log_open_stream "log_channel chan"
-.Ft int
-.Fn log_close_stream "log_channel chan"
-.Ft FILE * 
-.Fn log_get_stream "log_channel chan"
-.Ft char * 
-.Fn log_get_filename "log_channel chan"
-.Ft void 
-.Fn log_vwrite "log_context lc" "int category" "int level" \
-    "const char *format" va_list args"
-.Ft void 
-.Fn log_write "log_context lc" "int category" "int level" \
-    "const char *format" "..."
-.Ft int
-.Fn log_check_channel "log_context lc" "int level" "log_channel chan"
-.Ft int
-.Fn log_check "log_context lc" "int category" "int level"
-.Ft int 
-.Fn log_new_context "int num_categories" "char **category_names" \
-    "log_context *lc"
-.Ft void 
-.Fn log_free_context "log_context lc"
-.Ft int 
-.Fn log_add_channel "log_context lc" "int category" "log_channel chan"
-.Ft int 
-.Fn log_remove_channel "log_context lc" "int category" "log_channel chan"
-.Ft int 
-.Fn log_option "log_context lc" "int option" "int value"
-.Ft int 
-.Fn log_category_is_active "log_context lc" "int category"
-.Ft log_channel 
-.Fn log_new_syslog_channel "unsigned int flags" "int level" "int facility"
-.Ft log_channel 
-.Fn log_new_file_channel "unsigned int flags" "int level" \
-    "char *name" "FILE *stream" "unsigned int versions" \
-    "unsigned long max_size"
-.Ft int
-.Fn log_set_file_owner "log_channel chan" "uid_t owner" "gid_t group"
-.Ft log_channel 
-.Fn log_new_null_channel "void"
-.Ft int 
-.Fn log_inc_references "log_channel chan"
-.Ft int 
-.Fn log_dec_references "log_channel chan"
-.Ft int 
-.Fn log_free_channel "log_channel chan"
-.Sh DESCRIPTION
-The
-.Sy ISC
-.Nm logging library
-is flexible logging system which is based upon a set of concepts:
-.Nm logging channels ,
-.Nm categories ,
-and 
-.Nm logging contexts .
-.Pp
-The basic building block is the
-.Dq Nm logging channel , 
-which includes a 
-.Nm priority 
-(logging level), which type of logging is to occur, and other
-flags and information associated with technical aspects of the logging.  
-The set of priorities which are supported is shown below, in the section
-.Sx Message Priorities .
-A priority sets a threshold for message logging; a logging channel will
-.Em only
-log those messages which are 
-.Em at least as important
-as its priority indicates.  (The fact that 
-.Dq more important
-means 
-.Dq more negative ,
-under the current scheme, is an implementation detail; if a channel has
-a priority of
-.Dv log_error ,
-then it will
-.Em not
-log messages with the
-.Dv log_warning
-priority, but it
-.Em will
-log messages with the
-.Dv log_error
-or 
-.Dv log_critical
-priority.)
-.Pp
-The
-.Nm logging channel
-also has an indication of the type of logging performed.  Currently, 
-the supported
-.Nm logging types 
-include (see also 
-.Sx Logging Types ,
-below):
-.Bl -tag -width "log_syslog" -compact -offset indent
-.It Dv log_syslog
-for 
-.Xr syslog 3 Ns -style
-logging
-.It Dv log_file
-for use of a file
-.It Dv log_null
-for 
-.Em no
-logging
-.El
-A new logging channel is created by calling either
-.Fn log_new_syslog_channel ,
-.Fn log_new_file_channel ,
-or
-.Fn log_new_null_channel ,
-respectively.  
-When a channel is no longer to be used, it can be freed using
-.Fn log_free_channel .
-.Pp
-Both 
-.Dv log_syslog
-and
-.Dv log_file
-channel types can include more information; for instance, a
-.Dv log_syslog Ns -type 
-channel allows the specification of a 
-.Xr syslog 3 Ns -style
-.Dq facility , 
-and a
-.Dv log_file Ns -type
-channels allows the caller to set a maximum file size and number
-of versions.  (See 
-.Fn log_new_syslog_channel
-or
-.Fn log_new_file_channel ,
-below.)
-Additionally, once a logging channel of type
-.Dv log_file
-is defined, the functions
-.Fn log_open_stream
-and 
-.Fn log_close_stream
-can open or close the stream associated with the logging channel's logging
-filename.  The
-.Fn log_get_stream
-and
-.Fn log_get_filename
-functions return the stream or filename, respectively, of such a logging 
-channel.  Also unique to logging channels of type
-.Dv log_file
-is the
-.Fn log_set_file_owner
-function, which tells the logging system what user and group ought to own
-newly created files (which is only effective if the caller is privileged.)
-.Pp
-Callers provide
-.Dq Nm categories ,
-determining both the number of such categories and any (optional) names.
-Categories are like array indexes in C; if the caller declares 
-.Dq Va n
-categories, then they are considered to run from 0 to
-.Va n-1 ;
-with this scheme, a category number would be invalid if it were negative or 
-greater than/equal to 
-.Va n .
-Each category can have its own list of 
-.Nm logging channels 
-associated with it; we say that such a channel is 
-.Dq in 
-the particular category.
-.Sy NOTE:
-Individual logging channels can appear in more than one category.
-.Pp
-A
-.Dq Nm logging context
-is the set of all 
-.Nm logging channels 
-associated with the context's
-.Nm categories;
-thus, a particular 
-.Nm category 
-scheme is associated with a particular
-.Nm logging context.
-.Sy NOTE:
-A logging channel may appear in more than one logging context, and in 
-multiple categories within each logging context.
-.Pp
-Use 
-.Fn log_add_channel
-and
-.Fn log_remove_channel
-to add or remove a logging channel to some category in a logging context.
-To see if a given category in a logging context is being used, use the
-Boolean test
-.Fn log_category_is_active .
-.Pp
-A 
-.Nm logging context
-can also have a 
-.Nm priority
-(logging level)
-and various flags associated with the whole context; in order to alter the
-flags or change the priority of a context, use
-.Fn log_option .
-.Ss Message Priorities
-Currently, five 
-.Nm priorities
-(logging levels) are supported (they can also be found in the header file):
-.Bd -literal -offset indent
-#define log_critical            (-5)
-#define log_error               (-4)
-#define log_warning             (-3)
-#define log_notice              (-2)
-#define log_info                (-1)
-.Ed
-.Pp
-In the current implementation, logging messages which have a level greater
-than 0 are considered to be debugging messages.
-.Ss Logging Types
-The three different
-.Nm logging types 
-currently supported are different values of the enumerated type
-.Ft log_output_type 
-(these are also listed in the header file): 
-.Bd -literal -offset indent
-typedef enum { log_syslog, log_file, log_null } log_output_type;
-.Ed
-.Ss Logging Channel Flags 
-There are several flags which can be set on a logging channel; the flags 
-and their meanings are as follows (they are also found in the header file):
-.Bl -tag -width "LOG_USE_CONTEXT_LEVEL  " -offset indent
-.It Dv LOG_CHANNEL_BROKEN
-This is set only when some portion of 
-.Fn log_open_stream
-fails:
-.Xr open 2 
-or
-.Xr fdopen 3  
-fail;
-.Xr stat 2
-fails in a
-.Dq bad
-way; versioning or truncation is requested on a non-normal file.
-.It Dv LOG_CHANNEL_OFF
-This is set for channels opened by 
-.Fn log_new_null_channel .
-.It Dv LOG_CLOSE_STREAM
-If this flag is set, then 
-.Fn log_free_channel
-will free a 
-.No non- Dv NULL
-stream of a logging channel which is being
-.Xr free 3 Ns -d 
-(if the logging channel is of type
-.Dv log_file ,
-of course).
-.It Dv LOG_PRINT_CATEGORY
-If set, 
-.Fn log_vwrite
-will insert the category name, if available, into logging messages which are 
-logged to channels of type
-.Dv log_syslog
-or 
-.Dv log_file .
-.It Dv LOG_PRINT_LEVEL
-If set, 
-.Fn log_vwrite
-will insert a string identifying the message priority level into the 
-information logged to channels of type
-.Dv log_syslog
-or 
-.Dv log_file .
-.It Dv LOG_REQUIRE_DEBUG
-Only log debugging messages (i.e., those with a priority greater than zero).
-.It Dv LOG_TIMESTAMP
-If set, 
-.Fn log_vwrite
-will insert a timestamp into logging messages which are logged to channels of
-type
-.Dv log_syslog
-or 
-.Dv log_file .
-.It Dv LOG_TRUNCATE
-Truncate logging file when re-opened (
-.Fn log_open_stream 
-will
-.Xr unlink 2
-the file and then 
-.Xr open 2
-a new file of the same name with the
-.Dv O_EXCL
-bit set).
-.It Dv LOG_USE_CONTEXT_LEVEL
-Use the logging context's priority or logging level, rather than the logging 
-channel's own priority.  This can be useful for those channels which are 
-included in multiple logging contexts.
-.El
-.Ss FUNCTION DESCRIPTIONS
-The function
-.Fn log_open_stream 
-is for use with channels which log to a file; i.e., logging channels with a
-.Va type 
-field set to
-.Dq Dv log_file .
-If the logging channel pointed to by 
-.Dq Fa chan
-is valid, it attempts to open (and return) the stream associated with that
-channel.  If the stream is already opened, then it is returned; otherwise,
-.Xr stat 2
-is used to test the filename for the stream.
-.Pp
-At this point, if the logging file is supposed to have different
-.Va versions 
-(i.e., incremented version numbers; higher numbers indicate older versions
-of the logging file).  If so, then any existing versions are
-.Xr rename 2 Ns -d
-to have one version-number higher than previously, and the
-.Dq current
-filename for the stream is set to the
-.Dq \&.0
-form of the name.  Next, if the logging file is supposed to be truncated
-(i.e., the
-.Dv LOG_TRUNCATE
-bit of the
-.Va flags
-field of the logging channel structure is set), then any file with the
-.Dq current
-filename for the stream is
-.X4 unlink 2 Ns -d .
-.Sy NOTE:
-If the logging file is 
-.Em not 
-a regular file, and either of the above operations (version numbering
-or truncation) is supposed to take place, a
-.Dv NULL
-file pointer is returned.
-.Pp
-Finally, the filename associated with the logging channel is
-.Xr open 2 Ns -d
-using the appropriate flags and a mode which sets the read/write permissions
-for the user, group, and others.  The file descriptor returned by 
-.Xr open 2
-is then passed to
-.Xr fopen 3 ,
-with the append mode set, and the stream returned by this call is stored
-in the 
-.Fa chan
-structure and returned.
-.Pp
-If 
-.Fn log_open_stream
-fails at any point, then the 
-.Dv LOG_CHANNEL_BROKEN 
-bit of the
-.Va flags 
-field of the logging channel pointed to by
-.Fa chan
-is set, a 
-.Dv NULL
-is returned, and 
-.Va errno
-contains pertinent information.
-.Pp
-The
-.Fn log_close_stream
-function closes the stream associated with the logging channel pointed to by
-.Dq Fa chan 
-(if
-.Fa chan 
-is valid and the stream exists and can be closed properly by
-.Xr fclose 3 ) .  
-The stream is set to 
-.Dv NULL
-even if the call to 
-.Xr fclose 3
-fails.
-.Pp
-The function
-.Fn log_get_stream
-returns the stream associated with the logging channel pointed to by
-.Dq Fa chan ,
-if it is 
-.No non- Ns Dv NULL
-and specifies a logging channel which has a 
-.Dv FILE *
-or stream associated with it.
-.Pp
-The
-.Fn log_get_filename
-function returns the name of the file associated with the logging channel 
-pointed to by
-.Dq Fa chan ,
-if it is 
-.No non- Ns Dv NULL
-and specifies a logging channel which has a file associated with it.
-.Pp
-The
-.Fn log_vwrite 
-function performs the actual logging of a message to the various logging
-channels of a logging context
-.Fa lc .
-The message consists of an
-.Xr fprint 3 Ns -style
-.Fa format 
-and its associated
-.Fa args 
-(if any); it will be written to all logging channels in the given
-.Fa category
-which have a priority set to
-.Fa level
-or any 
-.Em less important
-priority value.  If the
-.Fa category
-is not valid or has no logging channels, then the category defaults to 0.
-.Pp
-There are a number of conditions under which a call to 
-.Fn log_vwrite
-will not result in actually logging the message: if there is no logging channel 
-at even the default category (0), or if a given channel is either 
-.Dq broken
-or
-.Dq off
-(i.e., its flags have 
-.Dv LOG_CHANNEL_BROKEN
-or
-.Dv LOG_CHANNEL_OFF
-set, respectively), or if the logging channel channel is of type
-.Dv log_null .
-Additionally, if the logging channel's flag has
-.Dv LOG_REQUIRE_DEBUG
-set and the message is not a debugging message (i.e., has a level greater
-than 0), then it will not be logged.
-Finally, if the message's priority is less important than the
-channel's logging level (the priority threshold), will not be logged.
-.Sy NOTE:
-If a logging channel's flag has
-.Dv LOG_USE_CONTEXT_LEVEL
-set, it will use the logging context's priority, rather than its own.
-.Pp
-If all of these hurdles are passed, then only
-.Dv log_syslog
-and
-.Dv log_file
-channels actually can have logging.  For channels which use
-.Xr syslog 3 ,
-the channel's 
-.Xr syslog 3
-facility is used in conjunction with a potentially modified form of the
-message's priority level, since 
-.Xr syslog 3
-has its own system of priorities
-.Pq Pa /usr/include/syslog.h . 
-All debug messages (priority >= 0) are mapped to 
-.Xr syslog 3 Ns 's
-.Dv LOG_DEBUG
-priority, all messages 
-.Dq more important
-than
-.Dv log_critical
-are mapped to
-.Dv LOG_CRIT ,
-and the priorities corresponding to the ones listed in the section
-.Sx Message Priorities
-are given the obvious corresponding 
-.Xr syslog 3
-priority.
-.Pp
-For 
-.Dv log_file
-type logging channels, if the file size is greater than the maximum file 
-size, then no logging occurs.  (The same thing happens if a 
-.Dv NULL
-stream is encountered and
-.Fn log_open_stream
-fails to open the channel's stream.)
-.Pp
-For both logging to normal files and logging via
-.Xr syslog 3 ,
-the value of the flags
-.Dv LOG_TIMESTAMP ,
-.Dv LOG_PRINT_CATEGORY , 
-and
-.Dv LOG_PRINT_LEVEL 
-are used in determining whether or not these items are included in the logged 
-information.
-.Pp
-The 
-.Fn log_write 
-function is merely a front-end to a call to 
-.Fn log_vwrite ;
-see the description of that function, above, for more information.
-.Pp
-.Fn log_check
-and
-.Fn log_check_channel
-are used to see if a contemplated logging call will actually generate any
-output, which is useful when creating a log message involves non-trivial
-work.
-.Fn log_check
-will return non-zero if a call to
-.Fn log_vwrite
-with the given 
-.Fa category
-and
-.Fa level
-would generate output on any channels, and zero otherwise.
-.Fn log_check_channel
-will return non-zero if writing to the
-.Fa chan
-at the given
-.Fa level
-would generate output.
-.Pp
-The function
-.Fn log_new_context 
-creates a new 
-.Nm logging context ,
-and stores this in the
-.Dq Va opaque
-field of the argument
-.Dq Fa lc , 
-and opaque structure used internally.  This new 
-.Nm context 
-will include the
-.Dq Fa num_categories
-and
-.Dq Fa category_names
-which are supplied; the latter can be
-.Dv NULL .
-.Sy NOTE:
-Since 
-.Dq Fa category_names
-is used directly, it 
-.Em must not 
-be freed by the caller, if it is 
-.No non- Ns Dv NULL .
-The initial logging flags and priority are both set to zero.
-.Pp
-The
-.Fn log_free_context 
-function is used to free the opaque structure 
-.Dq Va lc.opaque
-and its components.
-.Sy NOTE:
-The
-.Dq Va opaque
-field of 
-.Dq Fa lc
-.Em must 
-be
-.No non- Ns Dv NULL .
-For each of the various
-.Dq categories
-(indicated by the
-.Dq Va num_categories
-which were in the corresponding call to
-.Fn log_new_context ) 
-associated with the given 
-.Nm logging context ,
-.Em all 
-of the 
-.Nm logging channels
-are 
-.Xr free 3 Ns -d .
-The opaque structure itself is then
-.Xr free 3 Ns -d ,
-and 
-.Dq Va lc.opaque
-is set to
-.Dv NULL .
-.Pp
-.Sy NOTE:
-The function 
-.Fn log_free_context 
-does
-.Em not
-free the memory associated with 
-.Fa category_names ,
-since the logging library did not allocate the memory for it, originally;
-it was supplied in the call to
-.Fn log_new_context .
-.Pp
-The function
-.Fn log_add_channel 
-adds the 
-.Nm logging channel
-.Dq Fa chan
-to the list of logging channels in the given 
-.Fa category
-of the 
-.Nm logging context
-.Dq Fa lc .
-No checking is performed to see whether or not
-.Fa chan
-is already present in the given
-.Fa category ,
-so multiple instances in a single 
-.Fa category 
-can occur (but see
-.Fn log_remove_channel ,
-below).
-.Pp
-The
-.Fn log_remove_channel 
-function
-removes 
-.Em all
-occurrences of the
-.Nm logging channel
-.Dq Fa chan
-from the list of logging channels in the given 
-.Fa category
-of the 
-.Nm logging context
-.Dq Fa lc .
-It also attempts to free the channel by calling
-.Fn log_free_channel 
-(see its description, below).
-.Pp
-The
-.Fn log_option 
-function is used to change the
-.Fa option 
-of the indicated logging context
-.Fa lc
-to the given
-.Fa value .
-The 
-.Fa option
-can be either
-.Dv LOG_OPTION_LEVEL
-or
-.Dv LOG_OPTION_DEBUG ;
-in the first case, the log context's debugging level is reset to the
-indicated level.  If the
-.Fa option 
-is 
-.Dv LOG_OPTION_DEBUG , 
-then a non-zero
-.Fa value
-results in setting the debug flag of the logging context, while a zero
-.Fa value
-means that the debug flag is reset.
-.Pp
-The
-.Fn log_category_is_active 
-test returns a 1 if the given
-.Fa category
-of the indicated logging context
-.Fa lc
-has at least one logging channel, and 0, otherwise.
-.Pp
-The functions
-.Fn log_new_syslog_channel ,
-.Fn log_new_file_channel ,
-and 
-.Fn log_new_null_channel
-create a new channel of the type specified (thus, the difference in arguments);
-the 
-.Dq Va type
-field of the new
-.Dq Ft struct log_channel
-is always set to the appropriate value.
-.Pp
-The 
-.Fn log_new_syslog_channel
-function 
-.Xr malloc 3 Ns -s
-a new
-.Ft struct log_channel
-of
-.Va type
-.Dv log_syslog ,
-i.e., a logging channel which will use
-.Xr syslog 3 .
-The new structure is filled out with the 
-.Dq Fa flags ,
-.Dq Fa level , 
-and 
-.Dq Fa facility 
-which are given; the 
-.Va references
-field is initialized to zero.
-See 
-.Sx Logging Channel Flags
-and
-.Sx Message Priorities ,
-above, or the header file for information about acceptable values for
-.Dq Fa flags ,
-and 
-.Dq Fa level .
-The
-.Dq Fa facility .
-can be any valid
-.Xr syslog 3
-facility; see the appropriate system header file or manpage for more 
-information.
-.Pp
-.Ft log_channel 
-.Fn log_new_file_channel "unsigned int flags" "int level" \
-    "char *name" "FILE *stream" "unsigned int versions" \
-    "unsigned long max_size"
-.Pp
-.Fn log_new_null_channel 
-.Pp
-The functions
-.Fn log_inc_references 
-and
-.Fn log_dec_references 
-increment or decrements, respectively, the
-.Va references 
-field of the logging channel pointed to by
-.Dq Fa chan ,
-if it is a valid channel (and if the 
-.Va references
-field is strictly positive, in the case of
-.Fn log_dec_references ) .
-These functions are meant to track changes in the number of different clients
-which refer to the given logging channel.
-.Pp
-The 
-.Fn log_free_channel
-function frees the 
-field of the logging channel pointed to by
-.Dq Fa chan 
-if there are no more outstanding references to it.  If the channel uses a file, 
-the stream is 
-.Xr fclose 3 Ns -d 
-(if the
-.Dv LOG_CLOSE_STREAM
-flag is set), and the filename, if 
-.No non- Ns Dv NULL ,
-is 
-.Xr free 3 Ns -d 
-before 
-.Dq Fa chan
-is 
-.Xr free 3 Ns -d .
-.Pp
-.\" The following requests should be uncommented and
-.\" used where appropriate.  This next request is
-.\" for sections 2 and 3 function return values only.
-.Sh RETURN VALUES
-.\" This next request is for sections 1, 6, 7 & 8 only
-.Bl -tag -width "log_category_is_active()"
-.It Fn log_open_stream
-.Dv NULL 
-is returned under any of several error conditions:
-a) if 
-.Dq Fa chan
-is either
-.Dv NULL
-or a 
-.No non- Ns Dv log_file
-channel
-.Pq Va errno No is set to Dv EINVAL ;
-b) if either versioning or truncation is requested for a non-normal file
-.Pq Va errno No is set to Dv EINVAL ;
-c) if any of
-.Xr stat 2 , 
-.Xr open 2 , 
-or
-.Xr fdopen 3
-fails
-.Po Va errno 
-is set by the call which failed 
-.Pc .
-If some value other than
-.Dv NULL
-is returned, then it is a valid logging stream (either newly-opened or 
-already-open).
-.It Fn log_close_stream
--1 if the stream associated with
-.Dq Fa chan
-is 
-.No non- Ns Dv NULL
-and the call to
-.Xr fclose 3
-fails.
-0 if successful or the logging channel pointed to by
-.Dq Fa chan
-is invalid (i.e.,
-.Dv NULL
-or not a logging channel which has uses a file); in the latter case, 
-.Va errno
-is set to 
-.Dv EINVAL .  
-.It Fn log_get_stream
-.Dv NULL 
-under the same conditions as those under which
-.Fn log_close_stream ,
-above, returns 0 (including the setting of 
-.Va errno ) .
-Otherwise, the stream associated with the logging channel is returned.
-.It Fn log_get_filename
-.Dv NULL 
-under the same conditions as those under which
-.Fn log_close_stream ,
-above, returns 0 (including the setting of 
-.Va errno ) .
-Otherwise, the name of the file associated with the logging channel is 
-returned.
-.It Fn log_new_context
--1 if 
-.Xr malloc 3
-fails
-.Pq with Va errno No set to Dv ENOMEM .
-Otherwise, 0, with 
-.Dq Va lc->opaque
-containing the new structures and information.
-.It Fn log_add_channel
--1 if
-a) either
-.Dq Va lc.opaque
-is
-.Dv NULL 
-or 
-.Fa category
-is invalid (negative or greater than or equal to 
-.Va lcp->num_categories ), with
-.Va errno 
-set to 
-.Dv EINVAL ;
-b) 
-.Xr malloc 3
-fails
-.Pq with Va errno No set to Dv ENOMEM .
-Otherwise, 0.
-.It Fn log_remove_channel
--1 if
-a) either
-.Dq Va lc.opaque
-is 
-.Dv NULL
-or 
-.Fa category
-is invalid, as under failure condition a) for
-.Fn log_add_channel ,
-above, including the setting of
-.Va errno ;
-b) no channel numbered
-.Fa chan
-is found in the logging context indicated by
-.Fa lc 
-.Pq with Va errno No set to Dv ENOENT .
-Otherwise, 0.
-.It Fn log_option
--1 if
-a) 
-.Dq Va lc.opaque
-is
-.Dv NULL , 
-b)
-.Fa option
-specifies an unknown logging option ;
-in either case, 
-.Va errno 
-is set to 
-.Dv EINVAL .
-Otherwise, 0.
-.It Fn log_category_is_active
--1 if
-.Dq Va lc.opaque
-is
-.Dv NULL 
-.Pq with Va errno No set to Dv EINVAL ;
-1 if the
-.Fa category
-number is valid and there are logging channels in this 
-.Fa category
-within the indicated logging context; 0 if the
-.Fa category
-number is invalid or there are no logging channels in this
-.Fa category
-within the indicated logging context.
-.It Fn log_new_syslog_channel
-.Dv NULL
-if
-.Xr malloc 3
-fails
-.Pq with Va errno No set to ENOMEM ;
-otherwise, a valid 
-.Dv log_syslog Ns -type
-.Ft log_channel .
-.It Fn log_new_file_channel
-.Dv NULL
-if
-.Xr malloc 3
-fails
-.Pq with Va errno No set to ENOMEM ;
-otherwise, a valid
-.Dv log_file Ns -type
-.Ft log_channel .
-.It Fn log_new_null_channel
-.Dv NULL
-if
-.Xr malloc 3
-fails
-.Pq with Va errno No set to ENOMEM ;
-otherwise, a valid 
-.Dv log_null Ns -type
-.Ft log_channel .
-.It Fn log_inc_references
--1 if 
-.Dq Fa chan
-is 
-.Dv NULL 
-.Pq with Va errno set to Dv EINVAL .
-Otherwise, 0.
-.It Fn log_dec_references
--1 if 
-.Dq Fa chan
-is 
-.Dv NULL 
-or its
-.Va references
-field is already <= 0
-.Pq with Va errno set to Dv EINVAL .
-Otherwise, 0.
-.It Fn log_free_channel
--1 under the same conditions as
-.Fn log_dec_references ,
-above, including the setting of 
-.Va errno ;
-0 otherwise.
-.El
-.\" .Sh ENVIRONMENT
-.Sh FILES
-.Bl -tag -width "isc/logging.h"
-.It Pa isc/logging.h
-include file for logging library
-.It Pa syslog.h
-.Xr syslog 3 Ns -style
-priorities
-.El
-.\" .Sh EXAMPLES
-.\" This next request is for sections 1, 6, 7 & 8 only
-.\"     (command return values (to shell) and
-.\"    fprintf/stderr type diagnostics)
-.\" .Sh DIAGNOSTICS
-.\" The next request is for sections 2 and 3 error
-.\" and signal handling only.
-.Sh ERRORS
-This table shows which functions can return the indicated error in the
-.Va errno
-variable; see the
-.Sx RETURN VALUES
-section, above, for more information.
-.Bl -tag -width "(any0other0value)0"
-.It Dv EINVAL
-.Fn log_open_stream ,
-.Fn log_close_stream ,
-.Fn log_get_stream ,
-.Fn log_get_filename ,
-.Fn log_add_channel ,
-.Fn log_remove_channel ,
-.Fn log_option ,
-.Fn log_category_is_active ,
-.Fn log_inc_references ,
-.Fn log_dec_references ,
-.Fn log_free_channel .
-.It Dv ENOENT
-.Fn log_remove_channel .
-.It Dv ENOMEM
-.Fn log_new_context ,
-.Fn log_add_channel ,
-.Fn log_new_syslog_channel ,
-.Fn log_new_file_channel ,
-.Fn log_new_null_channel .
-.It (any other value)
-returned via a pass-through of an error code from
-.Xr stat 2 , 
-.Xr open 2 , 
-or
-.Xr fdopen 3 ,
-which can occur in 
-.Fn log_open_stream
-and functions which call it
-.Pq currently, only Fn log_vwrite .
-.El
-.Pp
-Additionally, 
-.Fn log_vwrite
-and
-.Fn log_free_context
-will fail via 
-.Fn assert
-if 
-.Dq Va lc.opaque
-is
-.Dv NULL .
-The function
-.Fn log_vwrite
-can also exit with a critical error logged via
-.Xr syslog 3
-indicating a memory overrun
-.Sh SEE ALSO
-.Xr @INDOT@named @SYS_OPS_EXT@ ,
-.Xr syslog 3 .
-The HTML documentation includes a file,
-.Pa logging.html ,
-which has more information about this logging system.
-.\" .Sh STANDARDS
-.\" .Sh HISTORY
-.Sh AUTHORS
-Bob Halley...TODO
-.\" .Sh BUGS
diff --git a/contrib/bind/lib/isc/logging_p.h b/contrib/bind/lib/isc/logging_p.h
deleted file mode 100644
index 875da0e0f4d19..0000000000000
--- a/contrib/bind/lib/isc/logging_p.h
+++ /dev/null
@@ -1,60 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef LOGGING_P_H
-#define LOGGING_P_H
-
-typedef struct log_file_desc {
-	char *name;
-	size_t name_size;
-	FILE *stream;
-	unsigned int versions;
-	unsigned long max_size;
-	uid_t owner;
-	gid_t group;
-} log_file_desc;
-
-typedef union log_output {
-	int facility;
-	log_file_desc file;
-} log_output;
-
-struct log_channel {
-	int level;			/* don't log messages > level */
-	log_channel_type type;
-	log_output out;
-	unsigned int flags;
-	int references;
-};
-
-typedef struct log_channel_list {
-	log_channel channel;
-	struct log_channel_list *next;
-} *log_channel_list;
-
-#define LOG_BUFFER_SIZE 20480
-
-struct log_context {
-	int num_categories;
-	char **category_names;
-	log_channel_list *categories;
-	int flags;
-	int level;
-	char buffer[LOG_BUFFER_SIZE];
-};
-
-#endif /* !LOGGING_P_H */
diff --git a/contrib/bind/lib/isc/memcluster.c b/contrib/bind/lib/isc/memcluster.c
deleted file mode 100644
index b775fa7aa84c3..0000000000000
--- a/contrib/bind/lib/isc/memcluster.c
+++ /dev/null
@@ -1,510 +0,0 @@
-/*
- * Copyright (c) 1997,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-
-/* When this symbol is defined allocations via memget are made slightly 
-   bigger and some debugging info stuck before and after the region given 
-   back to the caller. */
-/* #define DEBUGGING_MEMCLUSTER */
-
-
-#if !defined(LINT) && !defined(CODECENTER)
-static const char rcsid[] = "$Id: memcluster.c,v 8.19 1999/10/13 17:11:22 vixie Exp $";
-#endif /* not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/uio.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <time.h>
-
-#include <isc/memcluster.h>
-#include <isc/assertions.h>
-
-#include "port_after.h"
-
-#ifdef MEMCLUSTER_RECORD
-#ifndef DEBUGGING_MEMCLUSTER
-#define DEBUGGING_MEMCLUSTER
-#endif
-#endif
-
-#define DEF_MAX_SIZE		1100
-#define DEF_MEM_TARGET		4096
-
-typedef u_int32_t fence_t;
-
-typedef struct {
-	void *			next;
-#if defined(DEBUGGING_MEMCLUSTER)
-#if defined(MEMCLUSTER_RECORD)
-	const char *		file;
-	int			line;
-#endif
-	int			size;
-	fence_t			fencepost;
-#endif
-} memcluster_element;
-
-#define SMALL_SIZE_LIMIT sizeof(memcluster_element)
-#define P_SIZE sizeof(void *)
-#define FRONT_FENCEPOST 0xfebafeba
-#define BACK_FENCEPOST 0xabefabef
-#define FENCEPOST_SIZE 4
-
-#ifndef MEMCLUSTER_LITTLE_MALLOC
-#define MEMCLUSTER_BIG_MALLOC 1
-#define NUM_BASIC_BLOCKS 64
-#endif
-
-struct stats {
-	u_long			gets;
-	u_long			totalgets;
-	u_long			blocks;
-	u_long			freefrags;
-};
-
-/* Private data. */
-
-static size_t			max_size;
-static size_t			mem_target;
-static size_t			mem_target_half;
-static size_t			mem_target_fudge;
-static memcluster_element **	freelists;
-#ifdef MEMCLUSTER_RECORD
-static memcluster_element **	activelists;
-#endif
-#ifdef MEMCLUSTER_BIG_MALLOC
-static memcluster_element *	basic_blocks;
-#endif
-static struct stats *		stats;
-
-/* Forward. */
-
-static size_t			quantize(size_t);
-#if defined(DEBUGGING_MEMCLUSTER)
-static void			check(unsigned char *, int, size_t);
-#endif
-
-/* Public. */
-
-int
-meminit(size_t init_max_size, size_t target_size) {
-
-#if defined(DEBUGGING_MEMCLUSTER)
-	INSIST(sizeof(fence_t) == FENCEPOST_SIZE);
-#endif
-	if (freelists != NULL) {
-		errno = EEXIST;
-		return (-1);
-	}
-	if (init_max_size == 0)
-		max_size = DEF_MAX_SIZE;
-	else
-		max_size = init_max_size;
-	if (target_size == 0)
-		mem_target = DEF_MEM_TARGET;
-	else
-		mem_target = target_size;
-	mem_target_half = mem_target / 2;
-	mem_target_fudge = mem_target + mem_target / 4;
-	freelists = malloc(max_size * sizeof (memcluster_element *));
-	stats = malloc((max_size+1) * sizeof (struct stats));
-	if (freelists == NULL || stats == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	memset(freelists, 0,
-	       max_size * sizeof (memcluster_element *));
-	memset(stats, 0, (max_size + 1) * sizeof (struct stats));
-#ifdef MEMCLUSTER_RECORD
-	activelists = malloc((max_size + 1) * sizeof (memcluster_element *));
-	if (activelists == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	memset(activelists, 0,
-	       (max_size + 1) * sizeof (memcluster_element *));
-#endif
-#ifdef MEMCLUSTER_BIG_MALLOC
-	basic_blocks = NULL;
-#endif
-	return (0);
-}
-
-void *
-__memget(size_t size) {
-	return (__memget_record(size, NULL, 0));
-}
-
-void *
-__memget_record(size_t size, const char *file, int line) {
-	size_t new_size = quantize(size);
-#if defined(DEBUGGING_MEMCLUSTER)
-	memcluster_element *e;
-	char *p;
-	fence_t fp = BACK_FENCEPOST;
-#endif
-	void *ret;
-
-	if (freelists == NULL)
-		if (meminit(0, 0) == -1)
-			return (NULL);
-	if (size == 0) {
-		errno = EINVAL;
-		return (NULL);
-	}
-	if (size >= max_size || new_size >= max_size) {
-		/* memget() was called on something beyond our upper limit. */
-		stats[max_size].gets++;
-		stats[max_size].totalgets++;
-#if defined(DEBUGGING_MEMCLUSTER)
-		e = malloc(new_size);
-		if (e == NULL) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-		e->next = NULL;
-		e->size = size;
-#ifdef MEMCLUSTER_RECORD
-		e->file = file;
-		e->line = line;
-		e->next = activelists[max_size];
-		activelists[max_size] = e;
-#endif
-		e->fencepost = FRONT_FENCEPOST;
-		p = (char *)e + sizeof *e + size;
-		memcpy(p, &fp, sizeof fp);
-		return ((char *)e + sizeof *e);
-#else
-		return (malloc(size));
-#endif
-	}
-
-	/* 
-	 * If there are no blocks in the free list for this size, get a chunk
-	 * of memory and then break it up into "new_size"-sized blocks, adding
-	 * them to the free list.
-	 */
-	if (freelists[new_size] == NULL) {
-		int i, frags;
-		size_t total_size;
-		void *new;
-		char *curr, *next;
-
-#ifdef MEMCLUSTER_BIG_MALLOC
-		if (basic_blocks == NULL) {
-			new = malloc(NUM_BASIC_BLOCKS * mem_target);
-			if (new == NULL) {
-				errno = ENOMEM;
-				return (NULL);
-			}
-			curr = new;
-			next = curr + mem_target;
-			for (i = 0; i < (NUM_BASIC_BLOCKS - 1); i++) {
-				((memcluster_element *)curr)->next = next;
-				curr = next;
-				next += mem_target;
-			}
-			/*
-			 * curr is now pointing at the last block in the
-			 * array.
-			 */
-			((memcluster_element *)curr)->next = NULL;
-			basic_blocks = new;
-		}
-		total_size = mem_target;
-		new = basic_blocks;
-		basic_blocks = basic_blocks->next;
-#else
-		if (new_size > mem_target_half)
-			total_size = mem_target_fudge;
-		else
-			total_size = mem_target;
-		new = malloc(total_size);
-		if (new == NULL) {
-			errno = ENOMEM;
-			return (NULL);
-		}
-#endif
-		frags = total_size / new_size;
-		stats[new_size].blocks++;
-		stats[new_size].freefrags += frags;
-		/* Set up a linked-list of blocks of size "new_size". */
-		curr = new;
-		next = curr + new_size;
-		for (i = 0; i < (frags - 1); i++) {
-#if defined (DEBUGGING_MEMCLUSTER)
-			memset(curr, 0xa5, new_size);
-#endif
-			((memcluster_element *)curr)->next = next;
-			curr = next;
-			next += new_size;
-		}
-		/* curr is now pointing at the last block in the array. */
-#if defined (DEBUGGING_MEMCLUSTER)
-		memset(curr, 0xa5, new_size);
-#endif
-		((memcluster_element *)curr)->next = freelists[new_size];
-		freelists[new_size] = new;
-	}
-
-	/* The free list uses the "rounded-up" size "new_size". */
-#if defined (DEBUGGING_MEMCLUSTER)
-	e = freelists[new_size];
-	ret = (char *)e + sizeof *e;
-	/*
-	 * Check to see if this buffer has been written to while on free list.
-	 */
-	check(ret, 0xa5, new_size - sizeof *e);
-	/*
-	 * Mark memory we are returning.
-	 */
-	memset(ret, 0xe5, size);
-#else
-	ret = freelists[new_size];
-#endif
-	freelists[new_size] = freelists[new_size]->next;
-#if defined(DEBUGGING_MEMCLUSTER)
-	e->next = NULL;
-	e->size = size;
-	e->fencepost = FRONT_FENCEPOST;
-#ifdef MEMCLUSTER_RECORD
-	e->file = file;
-	e->line = line;
-	e->next = activelists[size];
-	activelists[size] = e;
-#endif
-	p = (char *)e + sizeof *e + size;
-	memcpy(p, &fp, sizeof fp);
-#endif
-
-	/* 
-	 * The stats[] uses the _actual_ "size" requested by the
-	 * caller, with the caveat (in the code above) that "size" >= the
-	 * max. size (max_size) ends up getting recorded as a call to
-	 * max_size.
-	 */
-	stats[size].gets++;
-	stats[size].totalgets++;
-	stats[new_size].freefrags--;
-#if defined(DEBUGGING_MEMCLUSTER)
-	return ((char *)e + sizeof *e);
-#else
-	return (ret);
-#endif
-}
-
-/* 
- * This is a call from an external caller, 
- * so we want to count this as a user "put". 
- */
-void
-__memput(void *mem, size_t size) {
-	__memput_record(mem, size, NULL, 0);
-}
-
-void
-__memput_record(void *mem, size_t size, const char *file, int line) {
-	size_t new_size = quantize(size);
-#if defined (DEBUGGING_MEMCLUSTER)
-	memcluster_element *e;
-#ifdef MEMCLUSTER_RECORD
-	memcluster_element *prev, *el;
-#endif
-	int fp;
-	char *p;
-#endif
-	REQUIRE(freelists != NULL);
-
-	if (size == 0) {
-		errno = EINVAL;
-		return;
-	}
-
-#if defined (DEBUGGING_MEMCLUSTER)
-	e = (memcluster_element *) ((char *)mem - sizeof *e);
-	INSIST(e->fencepost == FRONT_FENCEPOST);
-	INSIST(e->size == size);
-	p = (char *)e + sizeof *e + size;
-	memcpy(&fp, p, sizeof fp);
-	INSIST(fp == BACK_FENCEPOST);
-	INSIST(((int)mem % 4) == 0);
-#ifdef MEMCLUSTER_RECORD
-	prev = NULL;
-	if (size == max_size || new_size >= max_size)
-		el = activelists[max_size];
-	else
-		el = activelists[size];
-	while (el != NULL && el != e) {
-		prev = el;
-		el = el->next;
-	}
-	INSIST(el != NULL);	/* double free */
-	if (prev == NULL) {
-		if (size == max_size || new_size >= max_size)
-			activelists[max_size] = el->next;
-		else
-			activelists[size] = el->next;
-	} else
-		prev->next = el->next;
-#endif
-#endif
-
-	if (size == max_size || new_size >= max_size) {
-		/* memput() called on something beyond our upper limit */
-#if defined(DEBUGGING_MEMCLUSTER)
-		free(e);
-#else
-		free(mem);
-#endif
-
-		INSIST(stats[max_size].gets != 0);
-		stats[max_size].gets--;
-		return;
-	}
-
-	/* The free list uses the "rounded-up" size "new_size": */
-#if defined(DEBUGGING_MEMCLUSTER)
-	memset(mem, 0xa5, new_size - sizeof *e); /* catch write after free */
-	e->size = 0;	/* catch double memput() */
-#ifdef MEMCLUSTER_RECORD
-	e->file = file;
-	e->line = line;
-#endif
-	e->next = freelists[new_size];
-	freelists[new_size] = (void *)e;
-#else
-	((memcluster_element *)mem)->next = freelists[new_size];
-	freelists[new_size] = (memcluster_element *)mem;
-#endif
-
-	/* 
-	 * The stats[] uses the _actual_ "size" requested by the
-	 * caller, with the caveat (in the code above) that "size" >= the
-	 * max. size (max_size) ends up getting recorded as a call to
-	 * max_size.
-	 */
-	INSIST(stats[size].gets != 0);
-	stats[size].gets--;
-	stats[new_size].freefrags++;
-}
-
-void *
-__memget_debug(size_t size, const char *file, int line) {
-	void *ptr;
-	ptr = __memget_record(size, file, line);
-	fprintf(stderr, "%s:%d: memget(%lu) -> %p\n", file, line,
-		(u_long)size, ptr);
-	return (ptr);
-}
-
-void
-__memput_debug(void *ptr, size_t size, const char *file, int line) {
-	fprintf(stderr, "%s:%d: memput(%p, %lu)\n", file, line, ptr,
-		(u_long)size);
-	__memput_record(ptr, size, file, line);
-}
-
-/*
- * Print the stats[] on the stream "out" with suitable formatting.
- */
-void
-memstats(FILE *out) {
-	size_t i;
-#ifdef MEMCLUSTER_RECORD
-	memcluster_element *e;
-#endif
-
-	if (freelists == NULL)
-		return;
-	for (i = 1; i <= max_size; i++) {
-		const struct stats *s = &stats[i];
-
-		if (s->totalgets == 0 && s->gets == 0)
-			continue;
-		fprintf(out, "%s%5d: %11lu gets, %11lu rem",
-			(i == max_size) ? ">=" : "  ",
-			i, s->totalgets, s->gets);
-		if (s->blocks != 0)
-			fprintf(out, " (%lu bl, %lu ff)",
-				s->blocks, s->freefrags);
-		fputc('\n', out);
-	}
-#ifdef MEMCLUSTER_RECORD
-	fprintf(out, "Active Memory:\n");
-	for (i = 1; i <= max_size; i++) {
-		if ((e = activelists[i]) != NULL)
-			while (e != NULL) {
-				fprintf(out, "%s:%d %#p:%d\n",
-				        e->file != NULL ? e->file :
-						"<UNKNOWN>", e->line,
-					(char *)e + sizeof *e, e->size);
-				e = e->next;
-			}
-	}
-#endif
-}
-
-/* Private. */
-
-/* 
- * Round up size to a multiple of sizeof(void *).  This guarantees that a
- * block is at least sizeof void *, and that we won't violate alignment
- * restrictions, both of which are needed to make lists of blocks.
- */
-static size_t
-quantize(size_t size) {
-	int remainder;
-	/*
-	 * If there is no remainder for the integer division of 
-	 *
-	 *	(rightsize/P_SIZE)
-	 *
-	 * then we already have a good size; if not, then we need
-	 * to round up the result in order to get a size big
-	 * enough to satisfy the request _and_ aligned on P_SIZE boundaries.
-	 */
-	remainder = size % P_SIZE;
-	if (remainder != 0)
-		size += P_SIZE - remainder;
-#if defined(DEBUGGING_MEMCLUSTER)
-	return (size + SMALL_SIZE_LIMIT + sizeof (int));
-#else
-	return (size);
-#endif
-}
-
-#if defined(DEBUGGING_MEMCLUSTER)
-static void
-check(unsigned char *a, int value, size_t len) {
-	int i;
-	for (i = 0; i < len; i++)
-		INSIST(a[i] == value);
-}
-#endif
diff --git a/contrib/bind/lib/isc/memcluster.mdoc b/contrib/bind/lib/isc/memcluster.mdoc
deleted file mode 100644
index 82bfd71a852bd..0000000000000
--- a/contrib/bind/lib/isc/memcluster.mdoc
+++ /dev/null
@@ -1,375 +0,0 @@
-.\" $Id: memcluster.mdoc,v 8.2 1999/01/08 19:25:46 vixie Exp $
-.\"
-.\"Copyright (c) 1995-1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.\" The following six UNCOMMENTED lines are required.
-.Dd Month day, year
-.\"Os OPERATING_SYSTEM [version/release]
-.Os BSD 4
-.\"Dt DOCUMENT_TITLE [section number] [volume]
-.Dt memcluster 3
-.Sh NAME
-.Nm meminit ,
-.Nm memget ,
-.Nm memput ,
-.Nm memstats 
-.Nd memory allocation/deallocation system
-.Sh SYNOPSIS
-.Fd #include \&<isc/memcluster.h\&>
-.Ft void * 
-.Fn memget "size_t size"
-.Ft void 
-.Fn memput "void *mem" "size_t size"
-.Ft void 
-.Fn memstats "FILE *out"
-.Sh DESCRIPTION
-These functions access a memory management system which allows callers to not 
-fragment memory to the extent which can ordinarily occur through many random 
-calls to
-.Xr malloc 3 .
-Instead, 
-.Fn memget
-gets a large contiguous chunk of blocks of the requested 
-.Fa size 
-and parcels out these blocks as requested.  The symmetric call is
-.Fn memput ,
-which callers use to return a piece of memory obtained from
-.Fn memget .
-Statistics about memory usage are returned by
-.Fn memstats , 
-which prints a report on the stream
-.Fa out .
-.Ss INTERNALS
-Internally, linked lists of free memory blocks are stored in an array.
-The size of this array is determined by the value
-.Dv MEM_FREECOUNT ,
-currently set to 1100.  In general, for any requested blocksize
-.Dq Fa size ,
-any free blocks will be stored on the linked list at that index.
-No free lists are managed for blocks greater than or equal to
-.Dv MEM_FREECOUNT
-bytes; instead, calls to
-.Xr malloc 3
-or
-.Xr free 3
-are made, directly.
-.Pp
-Since the blocks are actually stored as linked lists, they must at least
-be large enough to hold a pointer to the next block.  This size, which is
-.Dv SMALL_SIZE_LIMIT ,
-is currently defined as
-.Bd -literal -offset indent
-#define SMALL_SIZE_LIMIT sizeof(struct { void *next; })
-.Ed
-.Pp
-Both 
-.Fn memget
-and
-.Fn memput
-enforce this limit; for example, any call to 
-.Fn memget 
-requesting a block smaller than
-.Dv SMALL_SIZE_LIMIT
-bytes will actually be considered to be of size
-.Dv SMALL_SIZE_LIMIT 
-internally.  (Such a caller request will be logged for 
-.Fn memstats
-purposes using the caller-requested
-.Fa size ;
-see the discussion of
-.Fn memstats ,
-below, for more information.)
-.Pp
-Additionally, the requested
-.Fa size
-will be adjusted so that when a large 
-.Xr malloc 3 Ns No -d
-chunk of memory is broken up into a linked list, the blocks will all fall on
-the correct memory alignment boundaries.  Thus, one can conceptualize a call
-which mentions
-.Fa size
-as resulting in a
-.Fa new_size
-which is used internally.
-.Pp
-In order to more efficiently allocate memory, there is a 
-.Dq target
-size for calls to 
-.Xr malloc 3 .
-It is given by the pre-defined value
-.Dv MEM_TARGET , 
-which is currently 4096 bytes.
-For any requested block
-.Fa size ,
-enough memory is 
-.Xr malloc 3 Ns No -d
-in order to fill up a block of about
-.Dv MEM_TARGET
-bytes.  
-.No [ Ns Sy NOTE :
-For allocations larger than
-.Dv MEM_TARGET Ns No /2
-bytes, there is a 
-.Dq fudge factor
-introduced which boosts the target size by 25% of
-.Dv MEM_TARGET .
-This means that enough memory for two blocks
-will actually be allocated for any 
-.Fa size
-such that
-.Pq Dv MEM_TARGET Ns No / 3 
-.No < Fa size No < 
-.Pq Dv MEM_TARGET Ns No *5/8 ,
-provided that the value of
-.Dv MEM_FREECOUNT 
-is at least as large as the upper limit shown above.]
-.Pp
-.Ss FUNCTION DESCRIPTIONS
-.Pp
-The function
-.Fn memget
-returns a pointer to a block of memory of at least the requested
-.Fa size .
-After adjusting
-.Fa size
-to the value
-.Va new_size
-as mentioned above in the 
-.Sx INTERNALS
-subsection, the internal array of free lists is checked.
-If there is no block of the needed
-.Va new_size ,
-then
-.Fn memget 
-will 
-.Xr malloc 3
-a chunk of memory which is as many times as 
-.Va new_size
-will fit into the target size.  This memory is then turned into a linked list 
-of 
-.Va new_size Ns No -sized
-blocks which are given out as requested; the last such block is the first one 
-returned by 
-.Fn memget .
-If the requested
-.Fa size
-is zero or negative, then 
-.Dv NULL
-is returned and
-.Va errno
-is set to
-.Dv EINVAL ;
-if 
-.Fa size
-is larger than or equal to the pre-defined maximum size
-.Dv MEM_FREECOUNT ,
-then only a single block of exactly 
-.Fa size
-will be
-.Xr malloc 3 Ns No -d
-and returned.
-.Pp
-The
-.Fn memput
-call is used to return memory once the caller is finished with it.
-After adjusting
-.Fa size
-the the value
-.Va new_size
-as mentioned in the 
-.Sx INTERNALS 
-subsection, above, the block is placed at the head of the free list of 
-.Va new_size Ns No -sized blocks.
-If the given
-.Fa size
-is zero or negative, then 
-.Va errno
-is set to
-.Dv EINVAL ,
-as for
-.Fn memget .
-If 
-.Fa size
-is larger than or equal to the pre-defined maximum size
-.Dv MEM_FREECOUNT ,
-then the block is immediately
-.Xr free 3 Ns No -d .
-.Pp
-.Sy NOTE :
-It is important that callers give 
-.Fn memput
-.Em only
-blocks of memory which were previously obtained from
-.Fn memget 
-if the block is 
-.Em actually 
-less than
-.Dv SMALL_SIZE_LIMIT
-bytes in size.  Since all blocks will be added to a free list, any block 
-which is not at least
-.Dv SMALL_SIZE_LIMIT
-bytes long will not be able to hold a pointer to the next block in the
-free list.
-.Pp
-The
-.Fn memstats
-function will summarize the number of calls to 
-.Fn memget
-and
-.Fn memput
-for any block size from 1 byte up to
-.Pq Dv MEM_FREECOUNT No - 1  
-bytes, followed by a single line for any calls using a 
-.Fa size
-greater than or equal to 
-.Dv MEM_FREECOUNT ; 
-a brief header with shell-style comment lines prefaces the report and
-explains the information.  The 
-.Dv FILE 
-pointer
-.Fa out
-identifies the stream which is used for this report.  Currently, 
-.Fn memstat
-reports the number of calls to 
-.Fn memget
-and
-.Fn memput
-using the caller-supplied value 
-.Fa size ; 
-the percentage of outstanding blocks of a given size (i.e., the percentage
-by which calls to
-.Fn memget
-exceed 
-.Fn memput )
-are also reported on the line for blocks of the given
-.Fa size .
-However, the percent of blocks used is computed using the number of 
-blocks allocated according to the internal parameter
-.Va new_size ;
-it is the percentage of blocks used to those available at a given
-.Va new_size ,
-and is computed using the
-.Em total
-number of caller 
-.Dq gets
-for any caller
-.Fa size Ns No -s
-which map to the internally-computed
-.Va new_size .
-Keep in mind that
-.Va new_size
-is generally 
-.Em not
-equal to
-.Fa size , 
-which has these implications:
-.Bl -enum -offset -indent means that, for 
-.It
-For
-.Fa size
-smaller than
-.Dv SMALL_SIZE_LIMIT ,
-.Fn memstat
-.Em will 
-show statistics for caller requests under
-.Fa size , 
-but "percent used" information about such blocks will be reported under
-.Dv SMALL_SIZE_LIMIT Ns No -sized
-blocks.  
-.It
-As a general case of point 1, internal statistics are reported on the the
-line corresponding to
-.Va new_size ,
-so that, for a given caller-supplied
-.Fa size ,
-the associated internal information will appear on that line or on the next
-line which shows "percent used" information.
-.El
-.Pp
-.Sy NOTE :
-If the caller returns blocks of a given
-.Fa size
-and requests others of 
-.Fa size Ns No -s 
-which map to the same internal
-.Va new_size ,
-it is possible for
-.Fn memstats
-to report usage of greater than 100% for blocks of size
-.Va new_size .
-This should be viewed as A Good Thing.
-.Sh RETURN VALUES
-The function
-.Fn memget
-returns a 
-.No non- Ns Dv NULL
-pointer to a block of memory of the requested
-.Fa size .
-It returns
-.Dv NULL
-if either the
-.Fa size
-is invalid (less than or equal to zero) or a 
-.Xr malloc 3
-of a new block of memory fails.  In the former case, 
-.Va errno
-is set to 
-.Dv EINVAL ; 
-in the latter, it is set to
-.Dv ENOMEM .
-.Pp
-Neither
-.Fn memput
-nor
-.Fn memstats
-return a value.
-.\" This next request is for sections 1, 6, 7 & 8 only
-.\" .Sh ENVIRONMENT
-.\" .Sh FILES
-.\" .Sh EXAMPLES
-.\" This next request is for sections 1, 6, 7 & 8 only
-.\"     (command return values (to shell) and
-.\"    fprintf/stderr type diagnostics)
-.\" .Sh DIAGNOSTICS
-.\" The next request is for sections 2 and 3 error
-.\" and signal handling only.
-.Sh ERRORS
-.Va errno
-is set as follows:
-.Bl -tag -width "ENOMEM  " -offset indent
-.It Dv EINVAL
-set by both
-.Fn memget
-and
-.Fn memput
-if the 
-.Fa size
-is zero or negative
-.It Dv ENOMEM
-set by 
-.Fn memget
-if a call to
-.Xr malloc 3
-fails
-.El
-.Sh SEE ALSO
-.Xr free 3 ,
-.Xr malloc 3 .
-.\" .Sh STANDARDS
-.\" .Sh HISTORY
-.Sh AUTHORS
-Steven J. Richardson and Paul Vixie, Vixie Enterprises.
-.\" .Sh BUGS
diff --git a/contrib/bind/lib/isc/tree.c b/contrib/bind/lib/isc/tree.c
deleted file mode 100644
index 90ba146670aa6..0000000000000
--- a/contrib/bind/lib/isc/tree.c
+++ /dev/null
@@ -1,532 +0,0 @@
-#ifndef LINT
-static const char rcsid[] = "$Id: tree.c,v 8.9 1999/01/08 19:25:47 vixie Exp $";
-#endif
-
-/*
- * tree - balanced binary tree library
- *
- * vix 05apr94 [removed vixie.h dependencies; cleaned up formatting, names]
- * vix 22jan93 [revisited; uses RCS, ANSI, POSIX; has bug fixes]
- * vix 23jun86 [added delete uar to add for replaced nodes]
- * vix 20jun86 [added tree_delete per wirth a+ds (mod2 v.) p. 224]
- * vix 06feb86 [added tree_mung()]
- * vix 02feb86 [added tree balancing from wirth "a+ds=p" p. 220-221]
- * vix 14dec85 [written]
- */
-
-/*
- * This program text was created by Paul Vixie using examples from the book:
- * "Algorithms & Data Structures," Niklaus Wirth, Prentice-Hall, 1986, ISBN
- * 0-13-022005-1.  Any errors in the conversion from Modula-2 to C are Paul
- * Vixie's.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*#define		DEBUG	"tree"*/
-
-#include "port_before.h"
-
-#include <stdio.h>
-#include <stdlib.h>
-
-#include "port_after.h"
-
-#include <isc/memcluster.h>
-#include <isc/tree.h>
-
-#ifdef DEBUG
-static int	debugDepth = 0;
-static char	*debugFuncs[256];
-# define ENTER(proc) { \
-			debugFuncs[debugDepth] = proc; \
-			fprintf(stderr, "ENTER(%d:%s.%s)\n", \
-				debugDepth, DEBUG, \
-				debugFuncs[debugDepth]); \
-			debugDepth++; \
-		}
-# define RET(value) { \
-			debugDepth--; \
-			fprintf(stderr, "RET(%d:%s.%s)\n", \
-				debugDepth, DEBUG, \
-				debugFuncs[debugDepth]); \
-			return (value); \
-		}
-# define RETV { \
-			debugDepth--; \
-			fprintf(stderr, "RETV(%d:%s.%s)\n", \
-				debugDepth, DEBUG, \
-				debugFuncs[debugDepth]); \
-			return; \
-		}
-# define MSG(msg)	fprintf(stderr, "MSG(%s)\n", msg);
-#else
-# define ENTER(proc)	;
-# define RET(value)	return (value);
-# define RETV		return;
-# define MSG(msg)	;
-#endif
-
-#ifndef TRUE
-# define TRUE		1
-# define FALSE		0
-#endif
-
-static tree *	sprout(tree **, tree_t, int *, int (*)(), void (*)());
-static int	delete(tree **, int (*)(), tree_t, void (*)(), int *, int *);
-static void	del(tree **, int *, tree **, void (*)(), int *);
-static void	bal_L(tree **, int *);
-static void	bal_R(tree **, int *);
-
-void
-tree_init(tree **ppr_tree) {
-	ENTER("tree_init")
-	*ppr_tree = NULL;
-	RETV
-}
-	
-tree_t
-tree_srch(tree **ppr_tree, int (*pfi_compare)(), tree_t	p_user) {
-	ENTER("tree_srch")
-
-	if (*ppr_tree) {
-		int i_comp = (*pfi_compare)(p_user, (**ppr_tree).data);
-
-		if (i_comp > 0)
-			RET(tree_srch(&(**ppr_tree).right,
-				      pfi_compare,
-				      p_user))
-
-		if (i_comp < 0)
-			RET(tree_srch(&(**ppr_tree).left,
-				      pfi_compare,
-				      p_user))
-
-		/* not higher, not lower... this must be the one.
-		 */
-		RET((**ppr_tree).data)
-	}
-
-	/* grounded. NOT found.
-	 */
-	RET(NULL)
-}
-
-tree_t
-tree_add(tree **ppr_tree, int (*pfi_compare)(),
-	 tree_t p_user, void (*pfv_uar)())
-{
-	int i_balance = FALSE;
-
-	ENTER("tree_add")
-	if (!sprout(ppr_tree, p_user, &i_balance, pfi_compare, pfv_uar))
-		RET(NULL)
-	RET(p_user)
-}
-
-int
-tree_delete(tree **ppr_p, int (*pfi_compare)(),
-	    tree_t p_user, void	(*pfv_uar)())
-{
-	int i_balance = FALSE, i_uar_called = FALSE;
-
-	ENTER("tree_delete");
-	RET(delete(ppr_p, pfi_compare, p_user, pfv_uar,
-		   &i_balance, &i_uar_called))
-}
-
-int
-tree_trav(tree **ppr_tree, int (*pfi_uar)()) {
-	ENTER("tree_trav")
-
-	if (!*ppr_tree)
-		RET(TRUE)
-
-	if (!tree_trav(&(**ppr_tree).left, pfi_uar))
-		RET(FALSE)
-	if (!(*pfi_uar)((**ppr_tree).data))
-		RET(FALSE)
-	if (!tree_trav(&(**ppr_tree).right, pfi_uar))
-		RET(FALSE)
-	RET(TRUE)
-}
-
-void
-tree_mung(tree **ppr_tree, void	(*pfv_uar)()) {
-	ENTER("tree_mung")
-	if (*ppr_tree) {
-		tree_mung(&(**ppr_tree).left, pfv_uar);
-		tree_mung(&(**ppr_tree).right, pfv_uar);
-		if (pfv_uar)
-			(*pfv_uar)((**ppr_tree).data);
-		memput(*ppr_tree, sizeof(tree));
-		*ppr_tree = NULL;
-	}
-	RETV
-}
-
-static tree *
-sprout(tree **ppr, tree_t p_data, int *pi_balance,
-       int (*pfi_compare)(), void (*pfv_delete)())
-{
-	tree *p1, *p2, *sub;
-	int cmp;
-
-	ENTER("sprout")
-
-	/* are we grounded?  if so, add the node "here" and set the rebalance
-	 * flag, then exit.
-	 */
-	if (!*ppr) {
-		MSG("grounded. adding new node, setting h=true")
-		*ppr = (tree *) memget(sizeof(tree));
-		if (*ppr) {
-			(*ppr)->left = NULL;
-			(*ppr)->right = NULL;
-			(*ppr)->bal = 0;
-			(*ppr)->data = p_data;
-			*pi_balance = TRUE;
-		}
-		RET(*ppr);
-	}
-
-	/* compare the data using routine passed by caller.
-	 */
-	cmp = (*pfi_compare)(p_data, (*ppr)->data);
-
-	/* if LESS, prepare to move to the left.
-	 */
-	if (cmp < 0) {
-		MSG("LESS. sprouting left.")
-		sub = sprout(&(*ppr)->left, p_data, pi_balance,
-			     pfi_compare, pfv_delete);
-		if (sub && *pi_balance) {	/* left branch has grown */
-			MSG("LESS: left branch has grown")
-			switch ((*ppr)->bal) {
-			case 1:
-				/* right branch WAS longer; bal is ok now */
-				MSG("LESS: case 1.. bal restored implicitly")
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-				break;
-			case 0:
-				/* balance WAS okay; now left branch longer */
-				MSG("LESS: case 0.. balnce bad but still ok")
-				(*ppr)->bal = -1;
-				break;
-			case -1:
-				/* left branch was already too long. rebal */
-				MSG("LESS: case -1: rebalancing")
-				p1 = (*ppr)->left;
-				if (p1->bal == -1) {		/* LL */
-					MSG("LESS: single LL")
-					(*ppr)->left = p1->right;
-					p1->right = *ppr;
-					(*ppr)->bal = 0;
-					*ppr = p1;
-				} else {			/* double LR */
-					MSG("LESS: double LR")
-
-					p2 = p1->right;
-					p1->right = p2->left;
-					p2->left = p1;
-
-					(*ppr)->left = p2->right;
-					p2->right = *ppr;
-
-					if (p2->bal == -1)
-						(*ppr)->bal = 1;
-					else
-						(*ppr)->bal = 0;
-
-					if (p2->bal == 1)
-						p1->bal = -1;
-					else
-						p1->bal = 0;
-					*ppr = p2;
-				} /*else*/
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-			} /*switch*/
-		} /*if*/
-		RET(sub)
-	} /*if*/
-
-	/* if MORE, prepare to move to the right.
-	 */
-	if (cmp > 0) {
-		MSG("MORE: sprouting to the right")
-		sub = sprout(&(*ppr)->right, p_data, pi_balance,
-			     pfi_compare, pfv_delete);
-		if (sub && *pi_balance) {
-			MSG("MORE: right branch has grown")
-
-			switch ((*ppr)->bal) {
-			case -1:
-				MSG("MORE: balance was off, fixed implicitly")
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-				break;
-			case 0:
-				MSG("MORE: balance was okay, now off but ok")
-				(*ppr)->bal = 1;
-				break;
-			case 1:
-				MSG("MORE: balance was off, need to rebalance")
-				p1 = (*ppr)->right;
-				if (p1->bal == 1) {		/* RR */
-					MSG("MORE: single RR")
-					(*ppr)->right = p1->left;
-					p1->left = *ppr;
-					(*ppr)->bal = 0;
-					*ppr = p1;
-				} else {			/* double RL */
-					MSG("MORE: double RL")
-
-					p2 = p1->left;
-					p1->left = p2->right;
-					p2->right = p1;
-
-					(*ppr)->right = p2->left;
-					p2->left = *ppr;
-
-					if (p2->bal == 1)
-						(*ppr)->bal = -1;
-					else
-						(*ppr)->bal = 0;
-
-					if (p2->bal == -1)
-						p1->bal = 1;
-					else
-						p1->bal = 0;
-
-					*ppr = p2;
-				} /*else*/
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-			} /*switch*/
-		} /*if*/
-		RET(sub)
-	} /*if*/
-
-	/* not less, not more: this is the same key!  replace...
-	 */
-	MSG("FOUND: Replacing data value")
-	*pi_balance = FALSE;
-	if (pfv_delete)
-		(*pfv_delete)((*ppr)->data);
-	(*ppr)->data = p_data;
-	RET(*ppr)
-}
-
-static int
-delete(tree **ppr_p, int (*pfi_compare)(), tree_t p_user,
-       void (*pfv_uar)(), int *pi_balance, int *pi_uar_called)
-{
-	tree *pr_q;
-	int i_comp, i_ret;
-
-	ENTER("delete")
-
-	if (*ppr_p == NULL) {
-		MSG("key not in tree")
-		RET(FALSE)
-	}
-
-	i_comp = (*pfi_compare)((*ppr_p)->data, p_user);
-	if (i_comp > 0) {
-		MSG("too high - scan left")
-		i_ret = delete(&(*ppr_p)->left, pfi_compare, p_user, pfv_uar,
-			       pi_balance, pi_uar_called);
-		if (*pi_balance)
-			bal_L(ppr_p, pi_balance);
-	} else if (i_comp < 0) {
-		MSG("too low - scan right")
-		i_ret = delete(&(*ppr_p)->right, pfi_compare, p_user, pfv_uar,
-			       pi_balance, pi_uar_called);
-		if (*pi_balance)
-			bal_R(ppr_p, pi_balance);
-	} else {
-		MSG("equal")
-		pr_q = *ppr_p;
-		if (pr_q->right == NULL) {
-			MSG("right subtree null")
-			*ppr_p = pr_q->left;
-			*pi_balance = TRUE;
-		} else if (pr_q->left == NULL) {
-			MSG("right subtree non-null, left subtree null")
-			*ppr_p = pr_q->right;
-			*pi_balance = TRUE;
-		} else {
-			MSG("neither subtree null")
-			del(&pr_q->left, pi_balance, &pr_q,
-			    pfv_uar, pi_uar_called);
-			if (*pi_balance)
-				bal_L(ppr_p, pi_balance);
-		}
-		if (!*pi_uar_called && pfv_uar)
-			(*pfv_uar)(pr_q->data);
-		/* Thanks to wuth@castrov.cuc.ab.ca for the following stmt. */
-		memput(pr_q, sizeof(tree));
-		i_ret = TRUE;
-	}
-	RET(i_ret)
-}
-
-static void
-del(tree **ppr_r, int *pi_balance, tree **ppr_q,
-    void (*pfv_uar)(), int *pi_uar_called)
-{
-	ENTER("del")
-
-	if ((*ppr_r)->right != NULL) {
-		del(&(*ppr_r)->right, pi_balance, ppr_q,
-		    pfv_uar, pi_uar_called);
-		if (*pi_balance)
-			bal_R(ppr_r, pi_balance);
-	} else {
-		if (pfv_uar)
-			(*pfv_uar)((*ppr_q)->data);
-		*pi_uar_called = TRUE;
-		(*ppr_q)->data = (*ppr_r)->data;
-		*ppr_q = *ppr_r;
-		*ppr_r = (*ppr_r)->left;
-		*pi_balance = TRUE;
-	}
-
-	RETV
-}
-
-static void
-bal_L(tree **ppr_p, int *pi_balance) {
-	tree *p1, *p2;
-	int b1, b2;
-
-	ENTER("bal_L")
-	MSG("left branch has shrunk")
-
-	switch ((*ppr_p)->bal) {
-	case -1:
-		MSG("was imbalanced, fixed implicitly")
-		(*ppr_p)->bal = 0;
-		break;
-	case 0:
-		MSG("was okay, is now one off")
-		(*ppr_p)->bal = 1;
-		*pi_balance = FALSE;
-		break;
-	case 1:
-		MSG("was already off, this is too much")
-		p1 = (*ppr_p)->right;
-		b1 = p1->bal;
-		if (b1 >= 0) {
-			MSG("single RR")
-			(*ppr_p)->right = p1->left;
-			p1->left = *ppr_p;
-			if (b1 == 0) {
-				MSG("b1 == 0")
-				(*ppr_p)->bal = 1;
-				p1->bal = -1;
-				*pi_balance = FALSE;
-			} else {
-				MSG("b1 != 0")
-				(*ppr_p)->bal = 0;
-				p1->bal = 0;
-			}
-			*ppr_p = p1;
-		} else {
-			MSG("double RL")
-			p2 = p1->left;
-			b2 = p2->bal;
-			p1->left = p2->right;
-			p2->right = p1;
-			(*ppr_p)->right = p2->left;
-			p2->left = *ppr_p;
-			if (b2 == 1)
-				(*ppr_p)->bal = -1;
-			else
-				(*ppr_p)->bal = 0;
-			if (b2 == -1)
-				p1->bal = 1;
-			else
-				p1->bal = 0;
-			*ppr_p = p2;
-			p2->bal = 0;
-		}
-	}
-	RETV
-}
-
-static void
-bal_R(tree **ppr_p, int *pi_balance) {
-	tree *p1, *p2;
-	int b1, b2;
-
-	ENTER("bal_R")
-	MSG("right branch has shrunk")
-	switch ((*ppr_p)->bal) {
-	case 1:
-		MSG("was imbalanced, fixed implicitly")
-		(*ppr_p)->bal = 0;
-		break;
-	case 0:
-		MSG("was okay, is now one off")
-		(*ppr_p)->bal = -1;
-		*pi_balance = FALSE;
-		break;
-	case -1:
-		MSG("was already off, this is too much")
-		p1 = (*ppr_p)->left;
-		b1 = p1->bal;
-		if (b1 <= 0) {
-			MSG("single LL")
-			(*ppr_p)->left = p1->right;
-			p1->right = *ppr_p;
-			if (b1 == 0) {
-				MSG("b1 == 0")
-				(*ppr_p)->bal = -1;
-				p1->bal = 1;
-				*pi_balance = FALSE;
-			} else {
-				MSG("b1 != 0")
-				(*ppr_p)->bal = 0;
-				p1->bal = 0;
-			}
-			*ppr_p = p1;
-		} else {
-			MSG("double LR")
-			p2 = p1->right;
-			b2 = p2->bal;
-			p1->right = p2->left;
-			p2->left = p1;
-			(*ppr_p)->left = p2->right;
-			p2->right = *ppr_p;
-			if (b2 == -1)
-				(*ppr_p)->bal = 1;
-			else
-				(*ppr_p)->bal = 0;
-			if (b2 == 1)
-				p1->bal = -1;
-			else
-				p1->bal = 0;
-			*ppr_p = p2;
-			p2->bal = 0;
-		}
-	}
-	RETV
-}
diff --git a/contrib/bind/lib/isc/tree.mdoc b/contrib/bind/lib/isc/tree.mdoc
deleted file mode 100644
index 422344ebae329..0000000000000
--- a/contrib/bind/lib/isc/tree.mdoc
+++ /dev/null
@@ -1,154 +0,0 @@
-.\" $Id: tree.mdoc,v 8.2 1999/01/08 19:25:48 vixie Exp $
-.\"
-.\"Copyright (c) 1995-1999 by Internet Software Consortium
-.\"
-.\"Permission to use, copy, modify, and distribute this software for any
-.\"purpose with or without fee is hereby granted, provided that the above
-.\"copyright notice and this permission notice appear in all copies.
-.\"
-.\"THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-.\"ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-.\"OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-.\"CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\"DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\"PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\"ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\"SOFTWARE.
-.\"
-.Dd April 5, 1994
-.Dt TREE 3
-.Os BSD 4
-.Sh NAME
-.Nm tree_init ,
-.Nm tree_mung ,
-.Nm tree_srch ,
-.Nm tree_add ,
-.Nm tree_delete ,
-.Nm tree_trav
-.Nd balanced binary tree routines
-.Sh SYNOPSIS
-.Ft void
-.Fn tree_init "void **tree"
-.Ft void *
-.Fn tree_srch "void **tree" "int (*compare)()" "void *data"
-.Ft void
-.Fn tree_add(tree, compare, data, del_uar) "void **tree" "int (*compare)()" \
-"void *data" "void (*del_uar)()"
-.Ft int
-.Fn tree_delete(tree, compare, data, del_uar) "void **tree" "int (*compare)()" \
-"void *data" "void (*del_uar)()"
-.Ft int
-.Fn tree_trav(tree, trav_uar) "void **tree" "int (*trav_uar)()"
-.Ft void
-.Fn tree_mung(tree, del_uar) "void **tree" "void (*del_uar)()"
-.Sh DESCRIPTION
-These functions create and manipulate a balanced binary (AVL) tree.  Each node
-of the tree contains the expected left & right subtree pointers, a short int
-balance indicator, and a pointer to the user data.  On a 32 bit system, this
-means an overhead of 4+4+2+4 bytes per node (or, on a RISC or otherwise
-alignment constrained system with implied padding, 4+4+4+4 bytes per node).
-There is no key data type enforced by this package; a caller supplied
-compare routine is used to compare user data blocks.
-.Pp
-Balanced binary trees are very fast on searches and replacements, but have a
-moderately high cost for additions and deletions.  If your application does a
-lot more searches and replacements than it does additions and deletions, the
-balanced (AVL) binary tree is a good choice for a data structure.
-.Pp
-.Fn Tree_init
-creates an empty tree and binds it to
-.Dq Fa tree
-(which for this and all other routines in this package should be declared as
-a pointer to void or int, and passed by reference), which can then be used by
-other routines in this package.  Note that more than one
-.Dq Fa tree
-variable can exist at once; thus multiple trees can be manipulated
-simultaneously.
-.Pp
-.Fn Tree_srch
-searches a tree for a specific node and returns either
-.Fa NULL
-if no node was found, or the value of the user data pointer if the node
-was found.
-.Fn compare
-is the address of a function to compare two user data blocks.  This routine
-should work much the way 
-.Xr strcmp 3
-does; in fact,
-.Xr strcmp
-could be used if the user data was a \s-2NUL\s+2 terminated string.
-.Dq Fa Data
-is the address of a user data block to be used by
-.Fn compare
-as the search criteria.  The tree is searched for a node where
-.Fn compare
-returns 0.
-.Pp
-.Fn Tree_add
-inserts or replaces a node in the specified tree.  The tree specified by
-.Dq Fa tree
-is searched as in
-.Fn tree_srch,
-and if a node is found to match
-.Dq Fa data,
-then the
-.Fn del_uar
-function, if non\-\s-2NULL\s+2, is called with the address of the user data
-block for the node (this routine should deallocate any dynamic memory which
-is referenced exclusively by the node); the user data pointer for the node
-is then replaced by the value of
-.Dq Fa data.
-If no node is found to match, a new node is added (which may or may not
-cause a transparent rebalance operation), with a user data pointer equal to
-.Dq Fa data.
-A rebalance may or may not occur, depending on where the node is added
-and what the rest of the tree looks like.
-.Fn Tree_add
-will return the
-.Dq Fa data
-pointer unless catastrophe occurs in which case it will return \s-2NULL\s+2.
-.Pp
-.Fn Tree_delete
-deletes a node from
-.Dq Fa tree.
-A rebalance may or may not occur, depending on where the node is removed from
-and what the rest of the tree looks like.
-.Fn Tree_delete
-returns TRUE if a node was deleted, FALSE otherwise.
-.Pp
-.Fn Tree_trav
-traverses all of
-.Dq Fa tree,
-calling
-.Fn trav_uar
-with the address of each user data block.  If
-.Fn trav_uar
-returns FALSE at any time,
-.Fn tree_trav
-will immediately return FALSE to its caller.  Otherwise all nodes will be 
-reached and
-.Fn tree_trav
-will return TRUE.
-.Pp
-.Fn Tree_mung
-deletes every node in
-.Dq Fa tree,
-calling
-.Fn del_uar
-(if it is not \s-2NULL\s+2) with the user data address from each node (see
-.Fn tree_add
-and
-.Fn tree_delete
-above).  The tree is left in the same state that
-.Fn tree_init
-leaves it in \- i.e., empty.
-.Sh BUGS
-Should have a way for the caller to specify application-specific
-.Xr malloc
-and
-.Xr free
-functions to be used internally when allocating meta data.
-.Sh AUTHOR
-Paul Vixie, converted and augumented from Modula\-2 examples in
-.Dq Algorithms & Data Structures ,
-Niklaus Wirth, Prentice\-Hall, ISBN 0\-13\-022005\-1.
diff --git a/contrib/bind/lib/nameser/Makefile b/contrib/bind/lib/nameser/Makefile
deleted file mode 100644
index ed068b1de924e..0000000000000
--- a/contrib/bind/lib/nameser/Makefile
+++ /dev/null
@@ -1,91 +0,0 @@
-#
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-#
-
-# $Id: Makefile,v 8.19 2000/02/29 03:38:23 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBBINDR = ../${TOP}/lib/libbind_r.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-THREADED= threaded
-
-SRCS=	ns_parse.c ns_print.c ns_netint.c ns_ttl.c ns_name.c \
-	ns_sign.c ns_verify.c ns_date.c ns_samedomain.c
-
-OBJS=	ns_parse.${O} ns_print.${O} ns_netint.${O} ns_ttl.${O} ns_name.${O} \
-	ns_sign.${O} ns_verify.${O} ns_date.${O} ns_samedomain.${O}
-
-all: ${LIBBIND} 
-
-${LIBBIND}: ${OBJS}
-	( cd ${THREADED} ; \
-	${AR} ${LIBBINDR} ${ARPREF} ${OBJS} ${ARSUFF} ; \
-	${RANLIB} ${LIBBINDR} )
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	if test ! -d ${THREADED} ;  then mkdir ${THREADED} ; else true ; fi
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} ${REENTRANT} -c $*.c \
-	 -o ${THREADED}/$*.${O}
-	-${LDS} ${LD} ${LD_LIBFLAGS} ${THREADED}/$*.${O} \
-	 -o ${THREADED}/$*.out && \
-	 ${LDS} mv ${THREADED}/$*.out ${THREADED}/$*.${O}
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} -o $*.out && \
-	 ${LDS} mv $*.out $*.${O}
-
-distclean: clean
-
-clean: FRC
-	rm -f .depend a.out core ${LIB} tags
-	rm -f *.${O} *.BAK *.CKP *~
-	rm -f ${THREADED}/*.${O}
-	-if test -d ${THREADED} ; then rmdir ${THREADED}; else true; fi
-
-depend: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-install:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/lib/nameser/ns_date.c b/contrib/bind/lib/nameser/ns_date.c
deleted file mode 100644
index da593a5a1f3e1..0000000000000
--- a/contrib/bind/lib/nameser/ns_date.c
+++ /dev/null
@@ -1,128 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_date.c,v 1.2 1999/10/13 16:39:35 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <time.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/* Forward. */
-
-static int	datepart(const char *, int, int, int, int *);
-
-/* Public. */
-
-/* Convert a date in ASCII into the number of seconds since
-   1 January 1970 (GMT assumed).  Format is yyyymmddhhmmss, all
-   digits required, no spaces allowed.  */
-
-u_int32_t
-ns_datetosecs(const char *cp, int *errp) {
-	struct tm time;
-	u_int32_t result;
-	int mdays, i;
-	static const int days_per_month[12] =
-		{31, 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31};
-
-	if (strlen(cp) != 14) {
-		*errp = 1;
-		return (0);
-	}
-	*errp = 0;
-
-	memset(&time, 0, sizeof time);
-	time.tm_year  = datepart(cp +  0, 4, 1990, 9999, errp) - 1900;
-	time.tm_mon   = datepart(cp +  4, 2,   01,   12, errp) - 1;
-	time.tm_mday  = datepart(cp +  6, 2,   01,   31, errp);
-	time.tm_hour  = datepart(cp +  8, 2,   00,   23, errp);
-	time.tm_min   = datepart(cp + 10, 2,   00,   59, errp);
-	time.tm_sec   = datepart(cp + 12, 2,   00,   59, errp);
-	if (*errp)		/* Any parse errors? */
-		return (0);
-
-	/* 
-	 * OK, now because timegm() is not available in all environments,
-	 * we will do it by hand.  Roll up sleeves, curse the gods, begin!
-	 */
-
-#define SECS_PER_DAY    ((u_int32_t)24*60*60)
-#define isleap(y) ((((y) % 4) == 0 && ((y) % 100) != 0) || ((y) % 400) == 0)
-
-	result  = time.tm_sec;				/* Seconds */
-	result += time.tm_min * 60;			/* Minutes */
-	result += time.tm_hour * (60*60);		/* Hours */
-	result += (time.tm_mday - 1) * SECS_PER_DAY;	/* Days */
-
-	/* Months are trickier.  Look without leaping, then leap */
-	mdays = 0;
-	for (i = 0; i < time.tm_mon; i++)
-		mdays += days_per_month[i];
-	result += mdays * SECS_PER_DAY;			/* Months */
-	if (time.tm_mon > 1 && isleap(1900+time.tm_year))
-		result += SECS_PER_DAY;		/* Add leapday for this year */
-
-	/* First figure years without leapdays, then add them in.  */
-	/* The loop is slow, FIXME, but simple and accurate.  */
-	result += (time.tm_year - 70) * (SECS_PER_DAY*365); /* Years */
-	for (i = 70; i < time.tm_year; i++)
-		if (isleap(1900+i))
-			result += SECS_PER_DAY; /* Add leapday for prev year */
-
-	return (result);
-}
-
-/* Private. */
-
-/*
- * Parse part of a date.  Set error flag if any error.
- * Don't reset the flag if there is no error.
- */
-static int
-datepart(const char *buf, int size, int min, int max, int *errp) {
-	int result = 0;
-	int i;
-
-	for (i = 0; i < size; i++) {
-		if (!isdigit(buf[i]))
-			*errp = 1;
-		result = (result * 10) + buf[i] - '0';
-	}
-	if (result < min)
-		*errp = 1;
-	if (result > max)
-		*errp = 1;
-	return (result);
-}
diff --git a/contrib/bind/lib/nameser/ns_name.c b/contrib/bind/lib/nameser/ns_name.c
deleted file mode 100644
index 2424eed3d0892..0000000000000
--- a/contrib/bind/lib/nameser/ns_name.c
+++ /dev/null
@@ -1,670 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_name.c,v 8.15 2000/03/30 22:53:46 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <string.h>
-#include <ctype.h>
-
-#include "port_after.h"
-
-/* Data. */
-
-static const char	digits[] = "0123456789";
-
-/* Forward. */
-
-static int		special(int);
-static int		printable(int);
-static int		dn_find(const u_char *, const u_char *,
-				const u_char * const *,
-				const u_char * const *);
-
-/* Public. */
-
-/*
- * ns_name_ntop(src, dst, dstsiz)
- *	Convert an encoded domain name to printable ascii as per RFC1035.
- * return:
- *	Number of bytes written to buffer, or -1 (with errno set)
- * notes:
- *	The root is returned as "."
- *	All other domains are returned in non absolute form
- */
-int
-ns_name_ntop(const u_char *src, char *dst, size_t dstsiz) {
-	const u_char *cp;
-	char *dn, *eom;
-	u_char c;
-	u_int n;
-
-	cp = src;
-	dn = dst;
-	eom = dst + dstsiz;
-
-	while ((n = *cp++) != 0) {
-		if ((n & NS_CMPRSFLGS) != 0) {
-			/* Some kind of compression pointer. */
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		if (dn != dst) {
-			if (dn >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			*dn++ = '.';
-		}
-		if (dn + n >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		for ((void)NULL; n > 0; n--) {
-			c = *cp++;
-			if (special(c)) {
-				if (dn + 1 >= eom) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dn++ = '\\';
-				*dn++ = (char)c;
-			} else if (!printable(c)) {
-				if (dn + 3 >= eom) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dn++ = '\\';
-				*dn++ = digits[c / 100];
-				*dn++ = digits[(c % 100) / 10];
-				*dn++ = digits[c % 10];
-			} else {
-				if (dn >= eom) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dn++ = (char)c;
-			}
-		}
-	}
-	if (dn == dst) {
-		if (dn >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*dn++ = '.';
-	}
-	if (dn >= eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	*dn++ = '\0';
-	return (dn - dst);
-}
-
-/*
- * ns_name_pton(src, dst, dstsiz)
- *	Convert a ascii string into an encoded domain name as per RFC1035.
- * return:
- *	-1 if it fails
- *	1 if string was fully qualified
- *	0 is string was not fully qualified
- * notes:
- *	Enforces label and domain length limits.
- */
-
-int
-ns_name_pton(const char *src, u_char *dst, size_t dstsiz) {
-	u_char *label, *bp, *eom;
-	int c, n, escaped;
-	char *cp;
-
-	escaped = 0;
-	bp = dst;
-	eom = dst + dstsiz;
-	label = bp++;
-
-	while ((c = *src++) != 0) {
-		if (escaped) {
-			if ((cp = strchr(digits, c)) != NULL) {
-				n = (cp - digits) * 100;
-				if ((c = *src++) == 0 ||
-				    (cp = strchr(digits, c)) == NULL) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				n += (cp - digits) * 10;
-				if ((c = *src++) == 0 ||
-				    (cp = strchr(digits, c)) == NULL) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				n += (cp - digits);
-				if (n > 255) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				c = n;
-			}
-			escaped = 0;
-		} else if (c == '\\') {
-			escaped = 1;
-			continue;
-		} else if (c == '.') {
-			c = (bp - label - 1);
-			if ((c & NS_CMPRSFLGS) != 0) {	/* Label too big. */
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			if (label >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			*label = c;
-			/* Fully qualified ? */
-			if (*src == '\0') {
-				if (c != 0) {
-					if (bp >= eom) {
-						errno = EMSGSIZE;
-						return (-1);
-					}
-					*bp++ = '\0';
-				}
-				if ((bp - dst) > MAXCDNAME) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				return (1);
-			}
-			if (c == 0 || *src == '.') {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			label = bp++;
-			continue;
-		}
-		if (bp >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*bp++ = (u_char)c;
-	}
-	c = (bp - label - 1);
-	if ((c & NS_CMPRSFLGS) != 0) {		/* Label too big. */
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	if (label >= eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	*label = c;
-	if (c != 0) {
-		if (bp >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*bp++ = 0;
-	}
-	if ((bp - dst) > MAXCDNAME) {	/* src too big */
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	return (0);
-}
-
-/*
- * ns_name_ntol(src, dst, dstsiz)
- *	Convert a network strings labels into all lowercase.
- * return:
- *	Number of bytes written to buffer, or -1 (with errno set)
- * notes:
- *	Enforces label and domain length limits.
- */
-
-int
-ns_name_ntol(const u_char *src, u_char *dst, size_t dstsiz) {
-	const u_char *cp;
-	u_char *dn, *eom;
-	u_char c;
-	u_int n;
-
-	cp = src;
-	dn = dst;
-	eom = dst + dstsiz;
-
-	while ((n = *cp++) != 0) {
-		if ((n & NS_CMPRSFLGS) != 0) {
-			/* Some kind of compression pointer. */
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*dn++ = n;
-		if (dn + n >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		for ((void)NULL; n > 0; n--) {
-			c = *cp++;
-			if (isupper(c))
-				*dn++ = tolower(c);
-			else
-				*dn++ = c;
-		}
-	}
-	*dn++ = '\0';
-	return (dn - dst);
-}
-
-/*
- * ns_name_unpack(msg, eom, src, dst, dstsiz)
- *	Unpack a domain name from a message, source may be compressed.
- * return:
- *	-1 if it fails, or consumed octets if it succeeds.
- */
-int
-ns_name_unpack(const u_char *msg, const u_char *eom, const u_char *src,
-	       u_char *dst, size_t dstsiz)
-{
-	const u_char *srcp, *dstlim;
-	u_char *dstp;
-	int n, len, checked;
-
-	len = -1;
-	checked = 0;
-	dstp = dst;
-	srcp = src;
-	dstlim = dst + dstsiz;
-	if (srcp < msg || srcp >= eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	/* Fetch next label in domain name. */
-	while ((n = *srcp++) != 0) {
-		/* Check for indirection. */
-		switch (n & NS_CMPRSFLGS) {
-		case 0:
-			/* Limit checks. */
-			if (dstp + n + 1 >= dstlim || srcp + n >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			checked += n + 1;
-			*dstp++ = n;
-			memcpy(dstp, srcp, n);
-			dstp += n;
-			srcp += n;
-			break;
-
-		case NS_CMPRSFLGS:
-			if (srcp >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			if (len < 0)
-				len = srcp - src + 1;
-			srcp = msg + (((n & 0x3f) << 8) | (*srcp & 0xff));
-			if (srcp < msg || srcp >= eom) {  /* Out of range. */
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			checked += 2;
-			/*
-			 * Check for loops in the compressed name;
-			 * if we've looked at the whole message,
-			 * there must be a loop.
-			 */
-			if (checked >= eom - msg) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			break;
-
-		default:
-			errno = EMSGSIZE;
-			return (-1);			/* flag error */
-		}
-	}
-	*dstp = '\0';
-	if (len < 0)
-		len = srcp - src;
-	return (len);
-}
-
-/*
- * ns_name_pack(src, dst, dstsiz, dnptrs, lastdnptr)
- *	Pack domain name 'domain' into 'comp_dn'.
- * return:
- *	Size of the compressed name, or -1.
- * notes:
- *	'dnptrs' is an array of pointers to previous compressed names.
- *	dnptrs[0] is a pointer to the beginning of the message. The array
- *	ends with NULL.
- *	'lastdnptr' is a pointer to the end of the array pointed to
- *	by 'dnptrs'.
- * Side effects:
- *	The list of pointers in dnptrs is updated for labels inserted into
- *	the message as we compress the name.  If 'dnptr' is NULL, we don't
- *	try to compress names. If 'lastdnptr' is NULL, we don't update the
- *	list.
- */
-int
-ns_name_pack(const u_char *src, u_char *dst, int dstsiz,
-	     const u_char **dnptrs, const u_char **lastdnptr)
-{
-	u_char *dstp;
-	const u_char **cpp, **lpp, *eob, *msg;
-	const u_char *srcp;
-	int n, l, first = 1;
-
-	srcp = src;
-	dstp = dst;
-	eob = dstp + dstsiz;
-	lpp = cpp = NULL;
-	if (dnptrs != NULL) {
-		if ((msg = *dnptrs++) != NULL) {
-			for (cpp = dnptrs; *cpp != NULL; cpp++)
-				(void)NULL;
-			lpp = cpp;	/* end of list to search */
-		}
-	} else
-		msg = NULL;
-
-	/* make sure the domain we are about to add is legal */
-	l = 0;
-	do {
-		n = *srcp;
-		if ((n & NS_CMPRSFLGS) != 0) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		l += n + 1;
-		if (l > MAXCDNAME) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		srcp += n + 1;
-	} while (n != 0);
-
-	/* from here on we need to reset compression pointer array on error */
-	srcp = src;
-	do {
-		/* Look to see if we can use pointers. */
-		n = *srcp;
-		if (n != 0 && msg != NULL) {
-			l = dn_find(srcp, msg, (const u_char * const *)dnptrs,
-				    (const u_char * const *)lpp);
-			if (l >= 0) {
-				if (dstp + 1 >= eob) {
-					goto cleanup;
-				}
-				*dstp++ = (l >> 8) | NS_CMPRSFLGS;
-				*dstp++ = l % 256;
-				return (dstp - dst);
-			}
-			/* Not found, save it. */
-			if (lastdnptr != NULL && cpp < lastdnptr - 1 &&
-			    (dstp - msg) < 0x4000 && first) {
-				*cpp++ = dstp;
-				*cpp = NULL;
-				first = 0;
-			}
-		}
-		/* copy label to buffer */
-		if (n & NS_CMPRSFLGS) {		/* Should not happen. */
-			goto cleanup;
-		}
-		if (dstp + 1 + n >= eob) {
-			goto cleanup;
-		}
-		memcpy(dstp, srcp, n + 1);
-		srcp += n + 1;
-		dstp += n + 1;
-	} while (n != 0);
-
-	if (dstp > eob) {
-cleanup:
-		if (msg != NULL)
-			*lpp = NULL;
-		errno = EMSGSIZE;
-		return (-1);
-	} 
-	return (dstp - dst);
-}
-
-/*
- * ns_name_uncompress(msg, eom, src, dst, dstsiz)
- *	Expand compressed domain name to presentation format.
- * return:
- *	Number of bytes read out of `src', or -1 (with errno set).
- * note:
- *	Root domain returns as "." not "".
- */
-int
-ns_name_uncompress(const u_char *msg, const u_char *eom, const u_char *src,
-		   char *dst, size_t dstsiz)
-{
-	u_char tmp[NS_MAXCDNAME];
-	int n;
-	
-	if ((n = ns_name_unpack(msg, eom, src, tmp, sizeof tmp)) == -1)
-		return (-1);
-	if (ns_name_ntop(tmp, dst, dstsiz) == -1)
-		return (-1);
-	return (n);
-}
-
-/*
- * ns_name_compress(src, dst, dstsiz, dnptrs, lastdnptr)
- *	Compress a domain name into wire format, using compression pointers.
- * return:
- *	Number of bytes consumed in `dst' or -1 (with errno set).
- * notes:
- *	'dnptrs' is an array of pointers to previous compressed names.
- *	dnptrs[0] is a pointer to the beginning of the message.
- *	The list ends with NULL.  'lastdnptr' is a pointer to the end of the
- *	array pointed to by 'dnptrs'. Side effect is to update the list of
- *	pointers for labels inserted into the message as we compress the name.
- *	If 'dnptr' is NULL, we don't try to compress names. If 'lastdnptr'
- *	is NULL, we don't update the list.
- */
-int
-ns_name_compress(const char *src, u_char *dst, size_t dstsiz,
-		 const u_char **dnptrs, const u_char **lastdnptr)
-{
-	u_char tmp[NS_MAXCDNAME];
-
-	if (ns_name_pton(src, tmp, sizeof tmp) == -1)
-		return (-1);
-	return (ns_name_pack(tmp, dst, dstsiz, dnptrs, lastdnptr));
-}
-
-/*
- * Reset dnptrs so that there are no active references to pointers at or
- * after src.
- */
-void
-ns_name_rollback(const u_char *src, const u_char **dnptrs,
-		 const u_char **lastdnptr)
-{
-	while (dnptrs < lastdnptr && *dnptrs != NULL) {
-		if (*dnptrs >= src) {
-			*dnptrs = NULL;
-			break;
-		}
-		dnptrs++;
-	}
-}
-
-/*
- * ns_name_skip(ptrptr, eom)
- *	Advance *ptrptr to skip over the compressed name it points at.
- * return:
- *	0 on success, -1 (with errno set) on failure.
- */
-int
-ns_name_skip(const u_char **ptrptr, const u_char *eom) {
-	const u_char *cp;
-	u_int n;
-
-	cp = *ptrptr;
-	while (cp < eom && (n = *cp++) != 0) {
-		/* Check for indirection. */
-		switch (n & NS_CMPRSFLGS) {
-		case 0:			/* normal case, n == len */
-			cp += n;
-			continue;
-		case NS_CMPRSFLGS:	/* indirection */
-			cp++;
-			break;
-		default:		/* illegal type */
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		break;
-	}
-	if (cp > eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	*ptrptr = cp;
-	return (0);
-}
-
-/* Private. */
-
-/*
- * special(ch)
- *	Thinking in noninternationalized USASCII (per the DNS spec),
- *	is this characted special ("in need of quoting") ?
- * return:
- *	boolean.
- */
-static int
-special(int ch) {
-	switch (ch) {
-	case 0x22: /* '"' */
-	case 0x2E: /* '.' */
-	case 0x3B: /* ';' */
-	case 0x5C: /* '\\' */
-	/* Special modifiers in zone files. */
-	case 0x40: /* '@' */
-	case 0x24: /* '$' */
-		return (1);
-	default:
-		return (0);
-	}
-}
-
-/*
- * printable(ch)
- *	Thinking in noninternationalized USASCII (per the DNS spec),
- *	is this character visible and not a space when printed ?
- * return:
- *	boolean.
- */
-static int
-printable(int ch) {
-	return (ch > 0x20 && ch < 0x7f);
-}
-
-/*
- *	Thinking in noninternationalized USASCII (per the DNS spec),
- *	convert this character to lower case if it's upper case.
- */
-static int
-mklower(int ch) {
-	if (ch >= 0x41 && ch <= 0x5A)
-		return (ch + 0x20);
-	return (ch);
-}
-
-/*
- * dn_find(domain, msg, dnptrs, lastdnptr)
- *	Search for the counted-label name in an array of compressed names.
- * return:
- *	offset from msg if found, or -1.
- * notes:
- *	dnptrs is the pointer to the first name on the list,
- *	not the pointer to the start of the message.
- */
-static int
-dn_find(const u_char *domain, const u_char *msg,
-	const u_char * const *dnptrs,
-	const u_char * const *lastdnptr)
-{
-	const u_char *dn, *cp, *sp;
-	const u_char * const *cpp;
-	u_int n;
-
-	for (cpp = dnptrs; cpp < lastdnptr; cpp++) {
-		sp = *cpp;
-		/*
-		 * terminate search on:
-		 * root label
-		 * compression pointer
-		 * unusable offset
-		 */
-		while (*sp != 0 && (*sp & NS_CMPRSFLGS) == 0 &&
-		       (sp - msg) < 0x4000) {
-			dn = domain;
-			cp = sp;
-			while ((n = *cp++) != 0) {
-				/*
-				 * check for indirection
-				 */
-				switch (n & NS_CMPRSFLGS) {
-				case 0:		/* normal case, n == len */
-					if (n != *dn++)
-						goto next;
-					for ((void)NULL; n > 0; n--)
-						if (mklower(*dn++) !=
-						    mklower(*cp++))
-							goto next;
-					/* Is next root for both ? */
-					if (*dn == '\0' && *cp == '\0')
-						return (sp - msg);
-					if (*dn)
-						continue;
-					goto next;
-
-				case NS_CMPRSFLGS:	/* indirection */
-					cp = msg + (((n & 0x3f) << 8) | *cp);
-					break;
-
-				default:	/* illegal type */
-					errno = EMSGSIZE;
-					return (-1);
-				}
-			}
- next:
-			sp += *sp + 1;
-		}
-	}
-	errno = ENOENT;
-	return (-1);
-}
diff --git a/contrib/bind/lib/nameser/ns_netint.c b/contrib/bind/lib/nameser/ns_netint.c
deleted file mode 100644
index 030a2d0965efd..0000000000000
--- a/contrib/bind/lib/nameser/ns_netint.c
+++ /dev/null
@@ -1,56 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_netint.c,v 8.4 1999/10/13 16:39:35 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <arpa/nameser.h>
-
-#include "port_after.h"
-
-/* Public. */
-
-u_int
-ns_get16(const u_char *src) {
-	u_int dst;
-
-	NS_GET16(dst, src);
-	return (dst);
-}
-
-u_long
-ns_get32(const u_char *src) {
-	u_long dst;
-
-	NS_GET32(dst, src);
-	return (dst);
-}
-
-void
-ns_put16(u_int src, u_char *dst) {
-	NS_PUT16(src, dst);
-}
-
-void
-ns_put32(u_long src, u_char *dst) {
-	NS_PUT32(src, dst);
-}
diff --git a/contrib/bind/lib/nameser/ns_parse.c b/contrib/bind/lib/nameser/ns_parse.c
deleted file mode 100644
index 35f7f408fe5d0..0000000000000
--- a/contrib/bind/lib/nameser/ns_parse.c
+++ /dev/null
@@ -1,198 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_parse.c,v 8.13 1999/10/13 16:39:35 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <string.h>
-
-#include "port_after.h"
-
-/* Forward. */
-
-static void	setsection(ns_msg *msg, ns_sect sect);
-
-/* Macros. */
-
-#define RETERR(err) do { errno = (err); return (-1); } while (0)
-
-/* Public. */
-
-/* These need to be in the same order as the nres.h:ns_flag enum. */
-struct _ns_flagdata _ns_flagdata[16] = {
-	{ 0x8000, 15 },		/* qr. */
-	{ 0x7800, 11 },		/* opcode. */
-	{ 0x0400, 10 },		/* aa. */
-	{ 0x0200, 9 },		/* tc. */
-	{ 0x0100, 8 },		/* rd. */
-	{ 0x0080, 7 },		/* ra. */
-	{ 0x0040, 6 },		/* z. */
-	{ 0x0020, 5 },		/* ad. */
-	{ 0x0010, 4 },		/* cd. */
-	{ 0x000f, 0 },		/* rcode. */
-	{ 0x0000, 0 },		/* expansion (1/6). */
-	{ 0x0000, 0 },		/* expansion (2/6). */
-	{ 0x0000, 0 },		/* expansion (3/6). */
-	{ 0x0000, 0 },		/* expansion (4/6). */
-	{ 0x0000, 0 },		/* expansion (5/6). */
-	{ 0x0000, 0 },		/* expansion (6/6). */
-};
-
-int
-ns_skiprr(const u_char *ptr, const u_char *eom, ns_sect section, int count) {
-	const u_char *optr = ptr;
-
-	for ((void)NULL; count > 0; count--) {
-		int b, rdlength;
-
-		b = dn_skipname(ptr, eom);
-		if (b < 0)
-			RETERR(EMSGSIZE);
-		ptr += b/*Name*/ + NS_INT16SZ/*Type*/ + NS_INT16SZ/*Class*/;
-		if (section != ns_s_qd) {
-			if (ptr + NS_INT32SZ + NS_INT16SZ > eom)
-				RETERR(EMSGSIZE);
-			ptr += NS_INT32SZ/*TTL*/;
-			NS_GET16(rdlength, ptr);
-			ptr += rdlength/*RData*/;
-		}
-	}
-	if (ptr > eom)
-		RETERR(EMSGSIZE);
-	return (ptr - optr);
-}
-
-int
-ns_initparse(const u_char *msg, int msglen, ns_msg *handle) {
-	const u_char *eom = msg + msglen;
-	int i;
-
-	memset(handle, 0x5e, sizeof *handle);
-	handle->_msg = msg;
-	handle->_eom = eom;
-	if (msg + NS_INT16SZ > eom)
-		RETERR(EMSGSIZE);
-	NS_GET16(handle->_id, msg);
-	if (msg + NS_INT16SZ > eom)
-		RETERR(EMSGSIZE);
-	NS_GET16(handle->_flags, msg);
-	for (i = 0; i < ns_s_max; i++) {
-		if (msg + NS_INT16SZ > eom)
-			RETERR(EMSGSIZE);
-		NS_GET16(handle->_counts[i], msg);
-	}
-	for (i = 0; i < ns_s_max; i++)
-		if (handle->_counts[i] == 0)
-			handle->_sections[i] = NULL;
-		else {
-			int b = ns_skiprr(msg, eom, (ns_sect)i,
-					  handle->_counts[i]);
-
-			if (b < 0)
-				return (-1);
-			handle->_sections[i] = msg;
-			msg += b;
-		}
-	if (msg != eom)
-		RETERR(EMSGSIZE);
-	setsection(handle, ns_s_max);
-	return (0);
-}
-
-int
-ns_parserr(ns_msg *handle, ns_sect section, int rrnum, ns_rr *rr) {
-	int b;
-
-	/* Make section right. */
-	if (section < 0 || section >= ns_s_max)
-		RETERR(ENODEV);
-	if (section != handle->_sect)
-		setsection(handle, section);
-
-	/* Make rrnum right. */
-	if (rrnum == -1)
-		rrnum = handle->_rrnum;
-	if (rrnum < 0 || rrnum >= handle->_counts[(int)section])
-		RETERR(ENODEV);
-	if (rrnum < handle->_rrnum)
-		setsection(handle, section);
-	if (rrnum > handle->_rrnum) {
-		b = ns_skiprr(handle->_ptr, handle->_eom, section,
-			      rrnum - handle->_rrnum);
-
-		if (b < 0)
-			return (-1);
-		handle->_ptr += b;
-		handle->_rrnum = rrnum;
-	}
-
-	/* Do the parse. */
-	b = dn_expand(handle->_msg, handle->_eom,
-		      handle->_ptr, rr->name, NS_MAXDNAME);
-	if (b < 0)
-		return (-1);
-	handle->_ptr += b;
-	if (handle->_ptr + NS_INT16SZ + NS_INT16SZ > handle->_eom)
-		RETERR(EMSGSIZE);
-	NS_GET16(rr->type, handle->_ptr);
-	NS_GET16(rr->rr_class, handle->_ptr);
-	if (section == ns_s_qd) {
-		rr->ttl = 0;
-		rr->rdlength = 0;
-		rr->rdata = NULL;
-	} else {
-		if (handle->_ptr + NS_INT32SZ + NS_INT16SZ > handle->_eom)
-			RETERR(EMSGSIZE);
-		NS_GET32(rr->ttl, handle->_ptr);
-		NS_GET16(rr->rdlength, handle->_ptr);
-		if (handle->_ptr + rr->rdlength > handle->_eom)
-			RETERR(EMSGSIZE);
-		rr->rdata = handle->_ptr;
-		handle->_ptr += rr->rdlength;
-	}
-	if (++handle->_rrnum > handle->_counts[(int)section])
-		setsection(handle, (ns_sect)((int)section + 1));
-
-	/* All done. */
-	return (0);
-}
-
-/* Private. */
-
-static void
-setsection(ns_msg *msg, ns_sect sect) {
-	msg->_sect = sect;
-	if (sect == ns_s_max) {
-		msg->_rrnum = -1;
-		msg->_ptr = NULL;
-	} else {
-		msg->_rrnum = 0;
-		msg->_ptr = msg->_sections[(int)sect];
-	}
-}
diff --git a/contrib/bind/lib/nameser/ns_print.c b/contrib/bind/lib/nameser/ns_print.c
deleted file mode 100644
index 6c4788206a8ca..0000000000000
--- a/contrib/bind/lib/nameser/ns_print.c
+++ /dev/null
@@ -1,821 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_print.c,v 8.18 2000/02/29 05:48:12 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <isc/assertions.h>
-#include <errno.h>
-#include <resolv.h>
-#include <string.h>
-#include <ctype.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/* Forward. */
-
-static size_t	prune_origin(const char *name, const char *origin);
-static int	charstr(const u_char *rdata, const u_char *edata,
-			char **buf, size_t *buflen);
-static int	addname(const u_char *msg, size_t msglen,
-			const u_char **p, const char *origin,
-			char **buf, size_t *buflen);
-static void	addlen(size_t len, char **buf, size_t *buflen);
-static int	addstr(const char *src, size_t len,
-		       char **buf, size_t *buflen);
-static int	addtab(size_t len, size_t target, int spaced,
-		       char **buf, size_t *buflen);
-
-/* Proto. */
-
-u_int16_t       dst_s_dns_key_id(const u_char *, const int);
-
-/* Macros. */
-
-#define	T(x) \
-	do { \
-		if ((x) < 0) \
-			return (-1); \
-	} while (0)
-
-/* Public. */
-
-/*
- * int
- * ns_sprintrr(handle, rr, name_ctx, origin, buf, buflen)
- *	Convert an RR to presentation format.
- * return:
- *	Number of characters written to buf, or -1 (check errno).
- */
-int
-ns_sprintrr(const ns_msg *handle, const ns_rr *rr,
-	    const char *name_ctx, const char *origin,
-	    char *buf, size_t buflen)
-{
-	int n;
-
-	n = ns_sprintrrf(ns_msg_base(*handle), ns_msg_size(*handle),
-			 ns_rr_name(*rr), ns_rr_class(*rr), ns_rr_type(*rr),
-			 ns_rr_ttl(*rr), ns_rr_rdata(*rr), ns_rr_rdlen(*rr),
-			 name_ctx, origin, buf, buflen);
-	return (n);
-}
-
-/*
- * int
- * ns_sprintrrf(msg, msglen, name, class, type, ttl, rdata, rdlen,
- *	       name_ctx, origin, buf, buflen)
- *	Convert the fields of an RR into presentation format.
- * return:
- *	Number of characters written to buf, or -1 (check errno).
- */
-int
-ns_sprintrrf(const u_char *msg, size_t msglen,
-	    const char *name, ns_class class, ns_type type,
-	    u_long ttl, const u_char *rdata, size_t rdlen,
-	    const char *name_ctx, const char *origin,
-	    char *buf, size_t buflen)
-{
-	const char *obuf = buf;
-	const u_char *edata = rdata + rdlen;
-	int spaced = 0;
-
-	const char *comment;
-	char tmp[100];
-	int len, x;
-
-	/*
-	 * Owner.
-	 */
-	if (name_ctx != NULL && ns_samename(name_ctx, name) == 1) {
-		T(addstr("\t\t\t", 3, &buf, &buflen));
-	} else {
-		len = prune_origin(name, origin);
-		if (len == 0) {
-			T(addstr("@\t\t\t", 4, &buf, &buflen));
-		} else {
-			T(addstr(name, len, &buf, &buflen));
-			/* Origin not used or not root, and no trailing dot? */
-			if (((origin == NULL || origin[0] == '\0') ||
-			    (origin[0] != '.' && origin[1] != '\0' &&
-			    name[len] == '\0')) && name[len - 1] != '.') {
-				T(addstr(".", 1, &buf, &buflen));
-				len++;
-			}
-			T(spaced = addtab(len, 24, spaced, &buf, &buflen));
-		}
-	}
-
-	/*
-	 * TTL, Class, Type.
-	 */
-	T(x = ns_format_ttl(ttl, buf, buflen));
-	addlen(x, &buf, &buflen);
-	len = SPRINTF((tmp, " %s %s", p_class(class), p_type(type)));
-	T(addstr(tmp, len, &buf, &buflen));
-	T(spaced = addtab(x + len, 16, spaced, &buf, &buflen));
-
-	/*
-	 * RData.
-	 */
-	switch (type) {
-	case ns_t_a:
-		if (rdlen != NS_INADDRSZ)
-			goto formerr;
-		(void) inet_ntop(AF_INET, rdata, buf, buflen);
-		addlen(strlen(buf), &buf, &buflen);
-		break;
-
-	case ns_t_cname:
-	case ns_t_mb:
-	case ns_t_mg:
-	case ns_t_mr:
-	case ns_t_ns:
-	case ns_t_ptr:
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		break;
-
-	case ns_t_hinfo:
-	case ns_t_isdn:
-		/* First word. */
-		T(len = charstr(rdata, edata, &buf, &buflen));
-		if (len == 0)
-			goto formerr;
-		rdata += len;
-		T(addstr(" ", 1, &buf, &buflen));
-
-		    
-		/* Second word, optional in ISDN records. */
-		if (type == ns_t_isdn && rdata == edata)
-			break;
-		    
-		T(len = charstr(rdata, edata, &buf, &buflen));
-		if (len == 0)
-			goto formerr;
-		rdata += len;
-		break;
-
-	case ns_t_soa: {
-		u_long t;
-
-		/* Server name. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		T(addstr(" ", 1, &buf, &buflen));
-
-		/* Administrator name. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		T(addstr(" (\n", 3, &buf, &buflen));
-		spaced = 0;
-
-		if ((edata - rdata) != 5*NS_INT32SZ)
-			goto formerr;
-
-		/* Serial number. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		T(addstr("\t\t\t\t\t", 5, &buf, &buflen));
-		len = SPRINTF((tmp, "%lu", t));
-		T(addstr(tmp, len, &buf, &buflen));
-		T(spaced = addtab(len, 16, spaced, &buf, &buflen));
-		T(addstr("; serial\n", 9, &buf, &buflen));
-		spaced = 0;
-
-		/* Refresh interval. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		T(addstr("\t\t\t\t\t", 5, &buf, &buflen));
-		T(len = ns_format_ttl(t, buf, buflen));
-		addlen(len, &buf, &buflen);
-		T(spaced = addtab(len, 16, spaced, &buf, &buflen));
-		T(addstr("; refresh\n", 10, &buf, &buflen));
-		spaced = 0;
-
-		/* Retry interval. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		T(addstr("\t\t\t\t\t", 5, &buf, &buflen));
-		T(len = ns_format_ttl(t, buf, buflen));
-		addlen(len, &buf, &buflen);
-		T(spaced = addtab(len, 16, spaced, &buf, &buflen));
-		T(addstr("; retry\n", 8, &buf, &buflen));
-		spaced = 0;
-
-		/* Expiry. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		T(addstr("\t\t\t\t\t", 5, &buf, &buflen));
-		T(len = ns_format_ttl(t, buf, buflen));
-		addlen(len, &buf, &buflen);
-		T(spaced = addtab(len, 16, spaced, &buf, &buflen));
-		T(addstr("; expiry\n", 9, &buf, &buflen));
-		spaced = 0;
-
-		/* Minimum TTL. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		T(addstr("\t\t\t\t\t", 5, &buf, &buflen));
-		T(len = ns_format_ttl(t, buf, buflen));
-		addlen(len, &buf, &buflen);
-		T(addstr(" )", 2, &buf, &buflen));
-		T(spaced = addtab(len, 16, spaced, &buf, &buflen));
-		T(addstr("; minimum\n", 10, &buf, &buflen));
-
-		break;
-	    }
-
-	case ns_t_mx:
-	case ns_t_afsdb:
-	case ns_t_rt: {
-		u_int t;
-
-		if (rdlen < NS_INT16SZ)
-			goto formerr;
-
-		/* Priority. */
-		t = ns_get16(rdata);
-		rdata += NS_INT16SZ;
-		len = SPRINTF((tmp, "%u ", t));
-		T(addstr(tmp, len, &buf, &buflen));
-
-		/* Target. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-
-		break;
-	    }
-
-	case ns_t_px: {
-		u_int t;
-
-		if (rdlen < NS_INT16SZ)
-			goto formerr;
-
-		/* Priority. */
-		t = ns_get16(rdata);
-		rdata += NS_INT16SZ;
-		len = SPRINTF((tmp, "%u ", t));
-		T(addstr(tmp, len, &buf, &buflen));
-
-		/* Name1. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		T(addstr(" ", 1, &buf, &buflen));
-
-		/* Name2. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-
-		break;
-	    }
-
-	case ns_t_x25:
-		T(len = charstr(rdata, edata, &buf, &buflen));
-		if (len == 0)
-			goto formerr;
-		rdata += len;
-		break;
-
-	case ns_t_txt:
-		while (rdata < edata) {
-			T(len = charstr(rdata, edata, &buf, &buflen));
-			if (len == 0)
-				goto formerr;
-			rdata += len;
-			if (rdata < edata)
-				T(addstr(" ", 1, &buf, &buflen));
-		}
-		break;
-
-	case ns_t_nsap: {
-		char t[255*3];
-
-		(void) inet_nsap_ntoa(rdlen, rdata, t);
-		T(addstr(t, strlen(t), &buf, &buflen));
-		break;
-	    }
-
-	case ns_t_aaaa:
-		if (rdlen != NS_IN6ADDRSZ)
-			goto formerr;
-		(void) inet_ntop(AF_INET6, rdata, buf, buflen);
-		addlen(strlen(buf), &buf, &buflen);
-		break;
-
-	case ns_t_loc: {
-		char t[255];
-
-		/* XXX protocol format checking? */
-		(void) loc_ntoa(rdata, t);
-		T(addstr(t, strlen(t), &buf, &buflen));
-		break;
-	    }
-
-	case ns_t_naptr: {
-		u_int order, preference;
-		char t[50];
-
-		if (rdlen < 2*NS_INT16SZ)
-			goto formerr;
-
-		/* Order, Precedence. */
-		order = ns_get16(rdata);	rdata += NS_INT16SZ;
-		preference = ns_get16(rdata);	rdata += NS_INT16SZ;
-		len = SPRINTF((t, "%u %u ", order, preference));
-		T(addstr(t, len, &buf, &buflen));
-
-		/* Flags. */
-		T(len = charstr(rdata, edata, &buf, &buflen));
-		if (len == 0)
-			goto formerr;
-		rdata += len;
-		T(addstr(" ", 1, &buf, &buflen));
-
-		/* Service. */
-		T(len = charstr(rdata, edata, &buf, &buflen));
-		if (len == 0)
-			goto formerr;
-		rdata += len;
-		T(addstr(" ", 1, &buf, &buflen));
-
-		/* Regexp. */
-		T(len = charstr(rdata, edata, &buf, &buflen));
-		if (len < 0)
-			return (-1);
-		if (len == 0)
-			goto formerr;
-		rdata += len;
-		T(addstr(" ", 1, &buf, &buflen));
-
-		/* Server. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		break;
-	    }
-
-	case ns_t_srv: {
-		u_int priority, weight, port;
-		char t[50];
-
-		if (rdlen < NS_INT16SZ*3)
-			goto formerr;
-
-		/* Priority, Weight, Port. */
-		priority = ns_get16(rdata);  rdata += NS_INT16SZ;
-		weight   = ns_get16(rdata);  rdata += NS_INT16SZ;
-		port     = ns_get16(rdata);  rdata += NS_INT16SZ;
-		len = SPRINTF((t, "%u %u %u ", priority, weight, port));
-		T(addstr(t, len, &buf, &buflen));
-
-		/* Server. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		break;
-	    }
-
-	case ns_t_minfo:
-	case ns_t_rp:
-		/* Name1. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		T(addstr(" ", 1, &buf, &buflen));
-
-		/* Name2. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-
-		break;
-
-	case ns_t_wks: {
-		int n, lcnt;
-
-		if (rdlen < NS_INT32SZ + 1)
-			goto formerr;
-
-		/* Address. */
-		(void) inet_ntop(AF_INET, rdata, buf, buflen);
-		addlen(strlen(buf), &buf, &buflen);
-		rdata += NS_INADDRSZ;
-
-		/* Protocol. */
-		len = SPRINTF((tmp, " %u ( ", *rdata));
-		T(addstr(tmp, len, &buf, &buflen));
-		rdata += NS_INT8SZ;
-
-		/* Bit map. */
-		n = 0;
-		lcnt = 0;
-		while (rdata < edata) {
-			u_int c = *rdata++;
-			do {
-				if (c & 0200) {
-					if (lcnt == 0) {
-						T(addstr("\n\t\t\t\t", 5,
-							 &buf, &buflen));
-						lcnt = 10;
-						spaced = 0;
-					}
-					len = SPRINTF((tmp, "%d ", n));
-					T(addstr(tmp, len, &buf, &buflen));
-					lcnt--;
-				}
-				c <<= 1;
-			} while (++n & 07);
-		}
-		T(addstr(")", 1, &buf, &buflen));
-
-		break;
-	    }
-
-	case ns_t_key: {
-		char base64_key[NS_MD5RSA_MAX_BASE64];
-		u_int keyflags, protocol, algorithm, key_id;
-		const char *leader;
-		int n;
-
-		if (rdlen < NS_INT16SZ + NS_INT8SZ + NS_INT8SZ)
-			goto formerr;
-
-		/* Key flags, Protocol, Algorithm. */
-		key_id = dst_s_dns_key_id(rdata, edata-rdata);
-		keyflags = ns_get16(rdata);  rdata += NS_INT16SZ;
-		protocol = *rdata++;
-		algorithm = *rdata++;
-		len = SPRINTF((tmp, "0x%04x %u %u",
-			       keyflags, protocol, algorithm));
-		T(addstr(tmp, len, &buf, &buflen));
-
-		/* Public key data. */
-		len = b64_ntop(rdata, edata - rdata,
-			       base64_key, sizeof base64_key);
-		if (len < 0)
-			goto formerr;
-		if (len > 15) {
-			T(addstr(" (", 2, &buf, &buflen));
-			leader = "\n\t\t";
-			spaced = 0;
-		} else
-			leader = " ";
-		for (n = 0; n < len; n += 48) {
-			T(addstr(leader, strlen(leader), &buf, &buflen));
-			T(addstr(base64_key + n, MIN(len - n, 48),
-				 &buf, &buflen));
-		}
-		if (len > 15)
-			T(addstr(" )", 2, &buf, &buflen));
-		n = SPRINTF((tmp, " ; key_tag= %u", key_id));
-		T(addstr(tmp, n, &buf, &buflen));
-
-		break;
-	    }
-
-	case ns_t_sig: {
-		char base64_key[NS_MD5RSA_MAX_BASE64];
-		u_int type, algorithm, labels, footprint;
-		const char *leader;
-		u_long t;
-		int n;
-
-		if (rdlen < 22)
-			goto formerr;
-
-		/* Type covered, Algorithm, Label count, Original TTL. */
-	        type = ns_get16(rdata);  rdata += NS_INT16SZ;
-		algorithm = *rdata++;
-		labels = *rdata++;
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		len = SPRINTF((tmp, "%s %d %d %lu ",
-			       p_type(type), algorithm, labels, t));
-		T(addstr(tmp, len, &buf, &buflen));
-		if (labels > (u_int)dn_count_labels(name))
-			goto formerr;
-
-		/* Signature expiry. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		len = SPRINTF((tmp, "%s ", p_secstodate(t)));
-		T(addstr(tmp, len, &buf, &buflen));
-
-		/* Time signed. */
-		t = ns_get32(rdata);  rdata += NS_INT32SZ;
-		len = SPRINTF((tmp, "%s ", p_secstodate(t)));
-		T(addstr(tmp, len, &buf, &buflen));
-
-		/* Signature Footprint. */
-		footprint = ns_get16(rdata);  rdata += NS_INT16SZ;
-		len = SPRINTF((tmp, "%u ", footprint));
-		T(addstr(tmp, len, &buf, &buflen));
-
-		/* Signer's name. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-
-		/* Signature. */
-		len = b64_ntop(rdata, edata - rdata,
-			       base64_key, sizeof base64_key);
-		if (len > 15) {
-			T(addstr(" (", 2, &buf, &buflen));
-			leader = "\n\t\t";
-			spaced = 0;
-		} else
-			leader = " ";
-		if (len < 0)
-			goto formerr;
-		for (n = 0; n < len; n += 48) {
-			T(addstr(leader, strlen(leader), &buf, &buflen));
-			T(addstr(base64_key + n, MIN(len - n, 48),
-				 &buf, &buflen));
-		}
-		if (len > 15)
-			T(addstr(" )", 2, &buf, &buflen));
-		break;
-	    }
-
-	case ns_t_nxt: {
-		int n, c;
-
-		/* Next domain name. */
-		T(addname(msg, msglen, &rdata, origin, &buf, &buflen));
-
-		/* Type bit map. */
-		n = edata - rdata;
-		for (c = 0; c < n*8; c++)
-			if (NS_NXT_BIT_ISSET(c, rdata)) {
-				len = SPRINTF((tmp, " %s", p_type(c)));
-				T(addstr(tmp, len, &buf, &buflen));
-			}
-		break;
-	    }
-
-	case ns_t_cert: {
-		u_int c_type, key_tag, alg;
-		int n, siz;
-		char base64_cert[8192], *leader, tmp[40];
-
-		c_type  = ns_get16(rdata); rdata += NS_INT16SZ;
-		key_tag = ns_get16(rdata); rdata += NS_INT16SZ;
-		alg = (u_int) *rdata++;
-
-		len = SPRINTF((tmp, "%d %d %d ", c_type, key_tag, alg));
-		T(addstr(tmp, len, &buf, &buflen));
-		siz = (edata-rdata)*4/3 + 4; /* "+4" accounts for trailing \0 */
-		if (siz > sizeof(base64_cert) * 3/4) {
-			char *str = "record too long to print";
-			T(addstr(str, strlen(str), &buf, &buflen));
-		}
-		else {
-			len = b64_ntop(rdata, edata-rdata, base64_cert, siz);
-
-			if (len < 0)
-				goto formerr;
-			else if (len > 15) {
-				T(addstr(" (", 2, &buf, &buflen));
-				leader = "\n\t\t";
-				spaced = 0;
-			}
-			else
-				leader = " ";
-	
-			for (n = 0; n < len; n += 48) {
-				T(addstr(leader, strlen(leader),
-					 &buf, &buflen));
-				T(addstr(base64_cert + n, MIN(len - n, 48),
-					 &buf, &buflen));
-			}
-			if (len > 15)
-				T(addstr(" )", 2, &buf, &buflen));
-		}
-		break;
-	    }
-
-	case ns_t_tsig: {
-		/* BEW - need to complete this */
-		int n;
-
-		T(len = addname(msg, msglen, &rdata, origin, &buf, &buflen));
-		T(addstr(" ", 1, &buf, &buflen));
-		rdata += 8; /* time */
-		n = ns_get16(rdata); rdata += INT16SZ;
-		rdata += n; /* sig */
-		n = ns_get16(rdata); rdata += INT16SZ; /* original id */
-		sprintf(buf, "%d", ns_get16(rdata));
-		rdata += INT16SZ;
-		addlen(strlen(buf), &buf, &buflen);
-		break;
-	    }
-
-	default:
-		comment = "unknown RR type";
-		goto hexify;
-	}
-	return (buf - obuf);
- formerr:
-	comment = "RR format error";
- hexify: {
-	int n, m;
-	char *p;
-
-	len = SPRINTF((tmp, "\\#(\t\t; %s", comment));
-	T(addstr(tmp, len, &buf, &buflen));
-	while (rdata < edata) {
-		p = tmp;
-		p += SPRINTF((p, "\n\t"));
-		spaced = 0;
-		n = MIN(16, edata - rdata);
-		for (m = 0; m < n; m++)
-			p += SPRINTF((p, "%02x ", rdata[m]));
-		T(addstr(tmp, p - tmp, &buf, &buflen));
-		if (n < 16) {
-			T(addstr(")", 1, &buf, &buflen));
-			T(addtab(p - tmp + 1, 48, spaced, &buf, &buflen));
-		}
-		p = tmp;
-		p += SPRINTF((p, "; "));
-		for (m = 0; m < n; m++)
-			*p++ = (isascii(rdata[m]) && isprint(rdata[m]))
-				? rdata[m]
-				: '.';
-		T(addstr(tmp, p - tmp, &buf, &buflen));
-		rdata += n;
-	}
-	return (buf - obuf);
-    }
-}
-
-/* Private. */
-
-/*
- * size_t
- * prune_origin(name, origin)
- *	Find out if the name is at or under the current origin.
- * return:
- *	Number of characters in name before start of origin,
- *	or length of name if origin does not match.
- * notes:
- *	This function should share code with samedomain().
- */
-static size_t
-prune_origin(const char *name, const char *origin) {
-	const char *oname = name;
-
-	while (*name != '\0') {
-		if (origin != NULL && ns_samename(name, origin) == 1)
-			return (name - oname - (name > oname));
-		while (*name != '\0') {
-			if (*name == '\\') {
-				name++;
-				/* XXX need to handle \nnn form. */
-				if (*name == '\0')
-					break;
-			} else if (*name == '.') {
-				name++;
-				break;
-			}
-			name++;
-		}
-	}
-	return (name - oname);
-}
-
-/*
- * int
- * charstr(rdata, edata, buf, buflen)
- *	Format a <character-string> into the presentation buffer.
- * return:
- *	Number of rdata octets consumed
- *	0 for protocol format error
- *	-1 for output buffer error
- * side effects:
- *	buffer is advanced on success.
- */
-static int
-charstr(const u_char *rdata, const u_char *edata, char **buf, size_t *buflen) {
-	const u_char *odata = rdata;
-	size_t save_buflen = *buflen;
-	char *save_buf = *buf;
-
-	if (addstr("\"", 1, buf, buflen) < 0)
-		goto enospc;
-	if (rdata < edata) {
-		int n = *rdata;
-
-		if (rdata + 1 + n <= edata) {
-			rdata++;
-			while (n-- > 0) {
-				if (strchr("\n\"\\", *rdata) != NULL)
-					if (addstr("\\", 1, buf, buflen) < 0)
-						goto enospc;
-				if (addstr((const char *)rdata, 1,
-					   buf, buflen) < 0)
-					goto enospc;
-				rdata++;
-			}
-		}
-	}
-	if (addstr("\"", 1, buf, buflen) < 0)
-		goto enospc;
-	return (rdata - odata);
- enospc:
-	errno = ENOSPC;
-	*buf = save_buf;
-	*buflen = save_buflen;
-	return (-1);
-}
-
-static int
-addname(const u_char *msg, size_t msglen,
-	const u_char **pp, const char *origin,
-	char **buf, size_t *buflen)
-{
-	size_t newlen, save_buflen = *buflen;
-	char *save_buf = *buf;
-	int n;
-
-	n = dn_expand(msg, msg + msglen, *pp, *buf, *buflen);
-	if (n < 0)
-		goto enospc;	/* Guess. */
-	newlen = prune_origin(*buf, origin);
-	if (newlen == 0) {
-		/* Use "@" instead of name. */
-		if (newlen + 2 > *buflen)
-			goto enospc;        /* No room for "@\0". */
-		(*buf)[newlen++] = '@';
-		(*buf)[newlen] = '\0';
-	} else {
-		if (((origin == NULL || origin[0] == '\0') ||
-		    (origin[0] != '.' && origin[1] != '\0' &&
-		    (*buf)[newlen] == '\0')) && (*buf)[newlen - 1] != '.') {
-			/* No trailing dot. */
-			if (newlen + 2 > *buflen)
-				goto enospc;	/* No room for ".\0". */
-			(*buf)[newlen++] = '.';
-			(*buf)[newlen] = '\0';
-		}
-	}
-	*pp += n;
-	addlen(newlen, buf, buflen);
-	**buf = '\0';
-	return (newlen);
- enospc:
-	errno = ENOSPC;
-	*buf = save_buf;
-	*buflen = save_buflen;
-	return (-1);
-}
-
-static void
-addlen(size_t len, char **buf, size_t *buflen) {
-	INSIST(len <= *buflen);
-	*buf += len;
-	*buflen -= len;
-}
-
-static int
-addstr(const char *src, size_t len, char **buf, size_t *buflen) {
-	if (len >= *buflen) {
-		errno = ENOSPC;
-		return (-1);
-	}
-	memcpy(*buf, src, len);
-	addlen(len, buf, buflen);
-	**buf = '\0';
-	return (0);
-}
-
-static int
-addtab(size_t len, size_t target, int spaced, char **buf, size_t *buflen) {
-	size_t save_buflen = *buflen;
-	char *save_buf = *buf;
-	int t;
-
-	if (spaced || len >= target - 1) {
-		T(addstr("  ", 2, buf, buflen));
-		spaced = 1;
-	} else {
-		for (t = (target - len - 1) / 8; t >= 0; t--)
-			if (addstr("\t", 1, buf, buflen) < 0) {
-				*buflen = save_buflen;
-				*buf = save_buf;
-				return (-1);
-			}
-		spaced = 0;
-	}
-	return (spaced);
-}
diff --git a/contrib/bind/lib/nameser/ns_samedomain.c b/contrib/bind/lib/nameser/ns_samedomain.c
deleted file mode 100644
index c8479249b55fe..0000000000000
--- a/contrib/bind/lib/nameser/ns_samedomain.c
+++ /dev/null
@@ -1,206 +0,0 @@
-/*
- * Copyright (c) 1995,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_samedomain.c,v 8.9 1999/10/15 21:06:51 vixie Exp $";
-#endif
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <arpa/nameser.h>
-#include <errno.h>
-#include <string.h>
-
-#include "port_after.h"
-
-/*
- * int
- * ns_samedomain(a, b)
- *	Check whether a name belongs to a domain.
- * Inputs:
- *	a - the domain whose ancestory is being verified
- *	b - the potential ancestor we're checking against
- * Return:
- *	boolean - is a at or below b?
- * Notes:
- *	Trailing dots are first removed from name and domain.
- *	Always compare complete subdomains, not only whether the
- *	domain name is the trailing string of the given name.
- *
- *	"host.foobar.top" lies in "foobar.top" and in "top" and in ""
- *	but NOT in "bar.top"
- */
-
-int
-ns_samedomain(const char *a, const char *b) {
-	size_t la, lb;
-	int diff, i, escaped;
-	const char *cp;
-
-	la = strlen(a);
-	lb = strlen(b);
-
-	/* Ignore a trailing label separator (i.e. an unescaped dot) in 'a'. */
-	if (la != 0 && a[la - 1] == '.') {
-		escaped = 0;
-		/* Note this loop doesn't get executed if la==1. */
-		for (i = la - 2; i >= 0; i--)
-			if (a[i] == '\\') {
-				if (escaped)
-					escaped = 0;
-				else
-					escaped = 1;
-			} else
-				break;
-		if (!escaped)
-			la--;
-	}
-
-	/* Ignore a trailing label separator (i.e. an unescaped dot) in 'b'. */
-	if (lb != 0 && b[lb - 1] == '.') {
-		escaped = 0;
-		/* note this loop doesn't get executed if lb==1 */
-		for (i = lb - 2; i >= 0; i--)
-			if (b[i] == '\\') {
-				if (escaped)
-					escaped = 0;
-				else
-					escaped = 1;
-			} else
-				break;
-		if (!escaped)
-			lb--;
-	}
-
-	/* lb == 0 means 'b' is the root domain, so 'a' must be in 'b'. */
-	if (lb == 0)
-		return (1);
-
-	/* 'b' longer than 'a' means 'a' can't be in 'b'. */
-	if (lb > la)
-		return (0);
-
-	/* 'a' and 'b' being equal at this point indicates sameness. */
-	if (lb == la)
-		return (strncasecmp(a, b, lb) == 0);
-
-	/* Ok, we know la > lb. */
-
-	diff = la - lb;
-
-	/*
-	 * If 'a' is only 1 character longer than 'b', then it can't be
-	 * a subdomain of 'b' (because of the need for the '.' label
-	 * separator).
-	 */
-	if (diff < 2)
-		return (0);
-
-	/*
-	 * If the character before the last 'lb' characters of 'b'
-	 * isn't '.', then it can't be a match (this lets us avoid
-	 * having "foobar.com" match "bar.com").
-	 */
-	if (a[diff - 1] != '.')
-		return (0);
-
-	/*
-	 * We're not sure about that '.', however.  It could be escaped
-         * and thus not a really a label separator.
-	 */
-	escaped = 0;
-	for (i = diff - 2; i >= 0; i--)
-		if (a[i] == '\\')
-			if (escaped)
-				escaped = 0;
-			else
-				escaped = 1;
-		else
-			break;
-	if (escaped)
-		return (0);
-	  
-	/* Now compare aligned trailing substring. */
-	cp = a + diff;
-	return (strncasecmp(cp, b, lb) == 0);
-}
-
-/*
- * int
- * ns_subdomain(a, b)
- *	is "a" a subdomain of "b"?
- */
-int
-ns_subdomain(const char *a, const char *b) {
-	return (ns_samename(a, b) != 1 && ns_samedomain(a, b));
-}
-
-/*
- * int
- * ns_makecanon(src, dst, dstsize)
- *	make a canonical copy of domain name "src"
- * notes:
- *	foo -> foo.
- *	foo. -> foo.
- *	foo.. -> foo.
- *	foo\. -> foo\..
- *	foo\\. -> foo\\.
- */
-
-int
-ns_makecanon(const char *src, char *dst, size_t dstsize) {
-	size_t n = strlen(src);
-
-	if (n + sizeof "." > dstsize) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	strcpy(dst, src);
-	while (n > 0 && dst[n - 1] == '.')		/* Ends in "." */
-		if (n > 1 && dst[n - 2] == '\\' &&	/* Ends in "\." */
-		    (n < 2 || dst[n - 3] != '\\'))	/* But not "\\." */
-			break;
-		else
-			dst[--n] = '\0';
-	dst[n++] = '.';
-	dst[n] = '\0';
-	return (0);
-}
-
-/*
- * int
- * ns_samename(a, b)
- *	determine whether domain name "a" is the same as domain name "b"
- * return:
- *	-1 on error
- *	0 if names differ
- *	1 if names are the same
- */
-
-int
-ns_samename(const char *a, const char *b) {
-	char ta[NS_MAXDNAME], tb[NS_MAXDNAME];
-
-	if (ns_makecanon(a, ta, sizeof ta) < 0 ||
-	    ns_makecanon(b, tb, sizeof tb) < 0)
-		return (-1);
-	if (strcasecmp(ta, tb) == 0)
-		return (1);
-	else
-		return (0);
-}
diff --git a/contrib/bind/lib/nameser/ns_sign.c b/contrib/bind/lib/nameser/ns_sign.c
deleted file mode 100644
index 75af894695282..0000000000000
--- a/contrib/bind/lib/nameser/ns_sign.c
+++ /dev/null
@@ -1,348 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium, Inc.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_sign.c,v 8.8 1999/10/13 16:39:36 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eob) { \
-			errno = EMSGSIZE; \
-			return(NS_TSIG_ERROR_NO_SPACE); \
-		} \
-	} while (0)
-
-/* ns_sign
- * Parameters:
- *	msg		message to be sent
- *	msglen		input - length of message
- *			output - length of signed message
- *	msgsize		length of buffer containing message
- *	error		value to put in the error field
- *	key		tsig key used for signing
- *	querysig	(response), the signature in the query
- *	querysiglen	(response), the length of the signature in the query
- *	sig		a buffer to hold the generated signature
- *	siglen		input - length of signature buffer
- *			output - length of signature
- *
- * Errors:
- *	- bad input data (-1)
- *	- bad key / sign failed (-BADKEY)
- *	- not enough space (NS_TSIG_ERROR_NO_SPACE)
- */
-int
-ns_sign(u_char *msg, int *msglen, int msgsize, int error, void *k,
-	const u_char *querysig, int querysiglen, u_char *sig, int *siglen,
-	time_t in_timesigned)
-{
-	HEADER *hp = (HEADER *)msg;
-	DST_KEY *key = (DST_KEY *)k;
-	u_char *cp = msg + *msglen, *eob = msg + msgsize;
-	u_char *lenp;
-	u_char *name, *alg;
-	int n;
-	time_t timesigned;
-
-	dst_init();
-	if (msg == NULL || msglen == NULL || sig == NULL || siglen == NULL)
-		return (-1);
-
-	/* Name. */
-	if (key != NULL && error != ns_r_badsig && error != ns_r_badkey)
-		n = dn_comp(key->dk_key_name, cp, eob - cp, NULL, NULL);
-	else
-		n = dn_comp("", cp, eob - cp, NULL, NULL);
-	if (n < 0)
-		return (NS_TSIG_ERROR_NO_SPACE);
-	name = cp;
-	cp += n;
-
-	/* Type, class, ttl, length (not filled in yet). */
-	BOUNDS_CHECK(cp, INT16SZ + INT16SZ + INT32SZ + INT16SZ);
-	PUTSHORT(ns_t_tsig, cp);
-	PUTSHORT(ns_c_any, cp);
-	PUTLONG(0, cp);		/* TTL */
-	lenp = cp;
-	cp += 2;
-
-	/* Alg. */
-	if (key != NULL && error != ns_r_badsig && error != ns_r_badkey) {
-		if (key->dk_alg != KEY_HMAC_MD5)
-			return (-ns_r_badkey);
-		n = dn_comp(NS_TSIG_ALG_HMAC_MD5, cp, eob - cp, NULL, NULL);
-	}
-	else
-		n = dn_comp("", cp, eob - cp, NULL, NULL);
-	if (n < 0)
-		return (NS_TSIG_ERROR_NO_SPACE);
-	alg = cp;
-	cp += n;
-	
-	/* Time. */
-	BOUNDS_CHECK(cp, INT16SZ + INT32SZ + INT16SZ);
-	PUTSHORT(0, cp);
-	timesigned = time(NULL);
-	if (error != ns_r_badtime)
-		PUTLONG(timesigned, cp);
-	else
-		PUTLONG(in_timesigned, cp);
-	PUTSHORT(NS_TSIG_FUDGE, cp);
-
-	/* Compute the signature. */
-	if (key != NULL && error != ns_r_badsig && error != ns_r_badkey) {
-		void *ctx;
-		u_char buf[MAXDNAME], *cp2;
-		int n;
-
-		dst_sign_data(SIG_MODE_INIT, key, &ctx, NULL, 0, NULL, 0);
-
-		/* Digest the query signature, if this is a response. */
-		if (querysiglen > 0 && querysig != NULL) {
-			u_int16_t len_n = htons(querysiglen);
-			dst_sign_data(SIG_MODE_UPDATE, key, &ctx,
-				      (u_char *)&len_n, INT16SZ, NULL, 0);
-			dst_sign_data(SIG_MODE_UPDATE, key, &ctx,
-				      querysig, querysiglen, NULL, 0);
-		}
-
-		/* Digest the message. */
-		dst_sign_data(SIG_MODE_UPDATE, key, &ctx, msg, *msglen,
-			      NULL, 0);
-
-		/* Digest the key name. */
-		n = ns_name_ntol(name, buf, sizeof(buf));
-		dst_sign_data(SIG_MODE_UPDATE, key, &ctx, buf, n, NULL, 0);
-
-		/* Digest the class and TTL. */
-		cp2 = buf;
-		PUTSHORT(ns_c_any, cp2);
-		PUTLONG(0, cp2);
-		dst_sign_data(SIG_MODE_UPDATE, key, &ctx, buf, cp2-buf,
-			      NULL, 0);
-
-		/* Digest the algorithm. */
-		n = ns_name_ntol(alg, buf, sizeof(buf));
-		dst_sign_data(SIG_MODE_UPDATE, key, &ctx, buf, n, NULL, 0);
-
-		/* Digest the time signed, fudge, error, and other data */
-		cp2 = buf;
-		PUTSHORT(0, cp2);	/* Top 16 bits of time */
-		if (error != ns_r_badtime)
-			PUTLONG(timesigned, cp2);
-		else
-			PUTLONG(in_timesigned, cp2);
-		PUTSHORT(NS_TSIG_FUDGE, cp2);
-		PUTSHORT(error, cp2);	/* Error */
-		if (error != ns_r_badtime)
-			PUTSHORT(0, cp2);	/* Other data length */
-		else {
-			PUTSHORT(INT16SZ+INT32SZ, cp2);	/* Other data length */
-			PUTSHORT(0, cp2);	/* Top 16 bits of time */
-			PUTLONG(timesigned, cp2);
-		}
-		dst_sign_data(SIG_MODE_UPDATE, key, &ctx, buf, cp2-buf,
-			      NULL, 0);
-
-		n = dst_sign_data(SIG_MODE_FINAL, key, &ctx, NULL, 0,
-				  sig, *siglen);
-		if (n < 0)
-			return (-ns_r_badkey);
-		*siglen = n;
-	} else
-		*siglen = 0;
-
-	/* Add the signature. */
-	BOUNDS_CHECK(cp, INT16SZ + (*siglen));
-	PUTSHORT(*siglen, cp);
-	memcpy(cp, sig, *siglen);
-	cp += (*siglen);
-
-	/* The original message ID & error. */
-	BOUNDS_CHECK(cp, INT16SZ + INT16SZ);
-	PUTSHORT(ntohs(hp->id), cp);	/* already in network order */
-	PUTSHORT(error, cp);
-
-	/* Other data. */
-	BOUNDS_CHECK(cp, INT16SZ);
-	if (error != ns_r_badtime)
-		PUTSHORT(0, cp);	/* Other data length */
-	else {
-		PUTSHORT(INT16SZ+INT32SZ, cp);	/* Other data length */
-		BOUNDS_CHECK(cp, INT32SZ+INT16SZ);
-		PUTSHORT(0, cp);	/* Top 16 bits of time */
-		PUTLONG(timesigned, cp);
-	}
-
-	/* Go back and fill in the length. */
-	PUTSHORT(cp - lenp - INT16SZ, lenp);
-
-	hp->arcount = htons(ntohs(hp->arcount) + 1);
-	*msglen = (cp - msg);
-	return (0);
-}
-
-int
-ns_sign_tcp_init(void *k, const u_char *querysig, int querysiglen,
-		 ns_tcp_tsig_state *state)
-{
-	dst_init();
-	if (state == NULL || k == NULL || querysig == NULL || querysiglen < 0)
-		return (-1);
-	state->counter = -1;
-	state->key = k;
-	if (state->key->dk_alg != KEY_HMAC_MD5)
-		return (-ns_r_badkey);
-	if (querysiglen > sizeof(state->sig))
-		return (-1);
-	memcpy(state->sig, querysig, querysiglen);
-	state->siglen = querysiglen;
-	return (0);
-}
-
-int
-ns_sign_tcp(u_char *msg, int *msglen, int msgsize, int error,
-	    ns_tcp_tsig_state *state, int done)
-{
-	u_char *cp, *eob, *lenp;
-	u_char buf[MAXDNAME], *cp2;
-	HEADER *hp = (HEADER *)msg;
-	time_t timesigned;
-	int n;
-
-	if (msg == NULL || msglen == NULL || state == NULL)
-		return (-1);
-
-	state->counter++;
-	if (state->counter == 0)
-		return (ns_sign(msg, msglen, msgsize, error, state->key,
-				state->sig, state->siglen,
-				state->sig, &state->siglen, 0));
-
-	if (state->siglen > 0) {
-		u_int16_t siglen_n = htons(state->siglen);
-		dst_sign_data(SIG_MODE_INIT, state->key, &state->ctx,
-			      NULL, 0, NULL, 0);
-		dst_sign_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-			      (u_char *)&siglen_n, INT16SZ, NULL, 0);
-		dst_sign_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-			      state->sig, state->siglen, NULL, 0);
-		state->siglen = 0;
-	}
-
-	dst_sign_data(SIG_MODE_UPDATE, state->key, &state->ctx, msg, *msglen,
-		      NULL, 0);
-
-	if (done == 0 && (state->counter % 100 != 0))
-		return (0);
-
-	cp = msg + *msglen;
-	eob = msg + msgsize;
-
-	/* Name. */
-	n = dn_comp(state->key->dk_key_name, cp, eob - cp, NULL, NULL);
-	if (n < 0)
-		return (NS_TSIG_ERROR_NO_SPACE);
-	cp += n;
-
-	/* Type, class, ttl, length (not filled in yet). */
-	BOUNDS_CHECK(cp, INT16SZ + INT16SZ + INT32SZ + INT16SZ);
-	PUTSHORT(ns_t_tsig, cp);
-	PUTSHORT(ns_c_any, cp);
-	PUTLONG(0, cp);		/* TTL */
-	lenp = cp;
-	cp += 2;
-
-	/* Alg. */
-	n = dn_comp(NS_TSIG_ALG_HMAC_MD5, cp, eob - cp, NULL, NULL);
-	if (n < 0)
-		return (NS_TSIG_ERROR_NO_SPACE);
-	cp += n;
-	
-	/* Time. */
-	BOUNDS_CHECK(cp, INT16SZ + INT32SZ + INT16SZ);
-	PUTSHORT(0, cp);
-	timesigned = time(NULL);
-	PUTLONG(timesigned, cp);
-	PUTSHORT(NS_TSIG_FUDGE, cp);
-
-	/*
-	 * Compute the signature.
-	 */
-
-	/* Digest the time signed and fudge. */
-	cp2 = buf;
-	PUTSHORT(0, cp2);	/* Top 16 bits of time */
-	PUTLONG(timesigned, cp2);
-	PUTSHORT(NS_TSIG_FUDGE, cp2);
-
-	dst_sign_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-		      buf, cp2 - buf, NULL, 0);
-
-	n = dst_sign_data(SIG_MODE_FINAL, state->key, &state->ctx, NULL, 0,
-			  state->sig, sizeof(state->sig));
-	if (n < 0)
-		return (-ns_r_badkey);
-	state->siglen = n;
-
-	/* Add the signature. */
-	BOUNDS_CHECK(cp, INT16SZ + state->siglen);
-	PUTSHORT(state->siglen, cp);
-	memcpy(cp, state->sig, state->siglen);
-	cp += state->siglen;
-
-	/* The original message ID & error. */
-	BOUNDS_CHECK(cp, INT16SZ + INT16SZ);
-	PUTSHORT(ntohs(hp->id), cp);	/* already in network order */
-	PUTSHORT(error, cp);
-
-	/* Other data. */
-	BOUNDS_CHECK(cp, INT16SZ);
-	PUTSHORT(0, cp);
-
-	/* Go back and fill in the length. */
-	PUTSHORT(cp - lenp - INT16SZ, lenp);
-
-	hp->arcount = htons(ntohs(hp->arcount) + 1);
-	*msglen = (cp - msg);
-	return (0);
-}
diff --git a/contrib/bind/lib/nameser/ns_ttl.c b/contrib/bind/lib/nameser/ns_ttl.c
deleted file mode 100644
index 67cd97666eaee..0000000000000
--- a/contrib/bind/lib/nameser/ns_ttl.c
+++ /dev/null
@@ -1,159 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_ttl.c,v 8.8 1999/10/13 16:39:36 vixie Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/* Forward. */
-
-static int	fmt1(int t, char s, char **buf, size_t *buflen);
-
-/* Macros. */
-
-#define T(x) if ((x) < 0) return (-1); else (void)NULL
-
-/* Public. */
-
-int
-ns_format_ttl(u_long src, char *dst, size_t dstlen) {
-	char *odst = dst;
-	int secs, mins, hours, days, weeks, x;
-	char *p;
-
-	secs = src % 60;   src /= 60;
-	mins = src % 60;   src /= 60;
-	hours = src % 24;  src /= 24;
-	days = src % 7;    src /= 7;
-	weeks = src;       src = 0;
-
-	x = 0;
-	if (weeks) {
-		T(fmt1(weeks, 'W', &dst, &dstlen));
-		x++;
-	}
-	if (days) {
-		T(fmt1(days, 'D', &dst, &dstlen));
-		x++;
-	}
-	if (hours) {
-		T(fmt1(hours, 'H', &dst, &dstlen));
-		x++;
-	}
-	if (mins) {
-		T(fmt1(mins, 'M', &dst, &dstlen));
-		x++;
-	}
-	if (secs || !(weeks || days || hours || mins)) {
-		T(fmt1(secs, 'S', &dst, &dstlen));
-		x++;
-	}
-
-	if (x > 1) {
-		int ch;
-
-		for (p = odst; (ch = *p) != '\0'; p++)
-			if (isascii(ch) && isupper(ch))
-				*p = tolower(ch);
-	}
-
-	return (dst - odst);
-}
-
-int
-ns_parse_ttl(const char *src, u_long *dst) {
-	u_long ttl, tmp;
-	int ch, digits, dirty;
-
-	ttl = 0;
-	tmp = 0;
-	digits = 0;
-	dirty = 0;
-	while ((ch = *src++) != '\0') {
-		if (!isascii(ch) || !isprint(ch))
-			goto einval;
-		if (isdigit(ch)) {
-			tmp *= 10;
-			tmp += (ch - '0');
-			digits++;
-			continue;
-		}
-		if (digits == 0)
-			goto einval;
-		if (islower(ch))
-			ch = toupper(ch);
-		switch (ch) {
-		case 'W':  tmp *= 7;
-		case 'D':  tmp *= 24;
-		case 'H':  tmp *= 60;
-		case 'M':  tmp *= 60;
-		case 'S':  break;
-		default:   goto einval;
-		}
-		ttl += tmp;
-		tmp = 0;
-		digits = 0;
-		dirty = 1;
-	}
-	if (digits > 0) {
-		if (dirty)
-			goto einval;
-		else
-			ttl += tmp;
-	}
-	*dst = ttl;
-	return (0);
-
- einval:
-	errno = EINVAL;
-	return (-1);
-}
-
-/* Private. */
-
-static int
-fmt1(int t, char s, char **buf, size_t *buflen) {
-	char tmp[50];
-	size_t len;
-
-	len = SPRINTF((tmp, "%d%c", t, s));
-	if (len + 1 > *buflen)
-		return (-1);
-	strcpy(*buf, tmp);
-	*buf += len;
-	*buflen -= len;
-	return (0);
-}
diff --git a/contrib/bind/lib/nameser/ns_verify.c b/contrib/bind/lib/nameser/ns_verify.c
deleted file mode 100644
index 0f19913569865..0000000000000
--- a/contrib/bind/lib/nameser/ns_verify.c
+++ /dev/null
@@ -1,479 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium, Inc.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef lint
-static const char rcsid[] = "$Id: ns_verify.c,v 8.13 2000/03/29 15:55:00 bwelling Exp $";
-#endif
-
-/* Import. */
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <isc/dst.h>
-
-#include "port_after.h"
-
-/* Private. */
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			return (NS_TSIG_ERROR_FORMERR); \
-		} \
-	} while (0)
-
-/* Public. */
-
-u_char *
-ns_find_tsig(u_char *msg, u_char *eom) {
-	HEADER *hp = (HEADER *)msg;
-	int n, type;
-	u_char *cp = msg, *start;
-
-	if (msg == NULL || eom == NULL || msg > eom)
-		return (NULL);
-
-	if (cp + HFIXEDSZ >= eom)
-		return (NULL);
-
-	if (hp->arcount == 0)
-		return (NULL);
-
-	cp += HFIXEDSZ;
-
-	n = ns_skiprr(cp, eom, ns_s_qd, ntohs(hp->qdcount));
-	if (n < 0)
-		return (NULL);
-	cp += n;
-
-	n = ns_skiprr(cp, eom, ns_s_an, ntohs(hp->ancount));
-	if (n < 0)
-		return (NULL);
-	cp += n;
-
-	n = ns_skiprr(cp, eom, ns_s_ns, ntohs(hp->nscount));
-	if (n < 0)
-		return (NULL);
-	cp += n;
-
-	n = ns_skiprr(cp, eom, ns_s_ar, ntohs(hp->arcount) - 1);
-	if (n < 0)
-		return (NULL);
-	cp += n;
-
-	start = cp;
-	n = dn_skipname(cp, eom);
-	if (n < 0)
-		return (NULL);
-	cp += n;
-	if (cp + INT16SZ >= eom)
-		return (NULL);
-
-	GETSHORT(type, cp);
-	if (type != ns_t_tsig)
-		return (NULL);
-	return (start);
-}
-
-/* ns_verify
- * Parameters:
- *	statp		res stuff
- *	msg		received message
- *	msglen		length of message
- *	key		tsig key used for verifying.
- *	querysig	(response), the signature in the query
- *	querysiglen	(response), the length of the signature in the query
- *	sig		(query), a buffer to hold the signature
- *	siglen		(query), input - length of signature buffer
- *				 output - length of signature
- *
- * Errors:
- *	- bad input (-1)
- *	- invalid dns message (NS_TSIG_ERROR_FORMERR)
- *	- TSIG is not present (NS_TSIG_ERROR_NO_TSIG)
- *	- key doesn't match (-ns_r_badkey)
- *	- TSIG verification fails with BADKEY (-ns_r_badkey)
- *	- TSIG verification fails with BADSIG (-ns_r_badsig)
- *	- TSIG verification fails with BADTIME (-ns_r_badtime)
- *	- TSIG verification succeeds, error set to BAKEY (ns_r_badkey)
- *	- TSIG verification succeeds, error set to BADSIG (ns_r_badsig)
- *	- TSIG verification succeeds, error set to BADTIME (ns_r_badtime)
- */
-int
-ns_verify(u_char *msg, int *msglen, void *k,
-	  const u_char *querysig, int querysiglen, u_char *sig, int *siglen,
-	  time_t *timesigned, int nostrip)
-{
-	HEADER *hp = (HEADER *)msg;
-	DST_KEY *key = (DST_KEY *)k;
-	u_char *cp = msg, *eom;
-	char name[MAXDNAME], alg[MAXDNAME];
-	u_char *recstart, *rdatastart;
-	u_char *sigstart, *otherstart;
-	int n;
-	int error;
-	u_int16_t type, length;
-	u_int16_t fudge, sigfieldlen, id, otherfieldlen;
-
-	dst_init();
-	if (msg == NULL || msglen == NULL || *msglen < 0)
-		return (-1);
-
-	eom = msg + *msglen;
-
-	recstart = ns_find_tsig(msg, eom);
-	if (recstart == NULL)
-		return (NS_TSIG_ERROR_NO_TSIG);
-
-	cp = recstart;
-
-	/* Read the key name. */
-	n = dn_expand(msg, eom, cp, name, MAXDNAME);
-	if (n < 0)
-		return (NS_TSIG_ERROR_FORMERR);
-	cp += n;
-
-	/* Read the type. */
-	BOUNDS_CHECK(cp, 2*INT16SZ + INT32SZ + INT16SZ);
-	GETSHORT(type, cp);
-	if (type != ns_t_tsig)
-		return (NS_TSIG_ERROR_NO_TSIG);
-
-	/* Skip the class and TTL, save the length. */
-	cp += INT16SZ + INT32SZ;
-	GETSHORT(length, cp);
-	if (eom - cp != length)
-		return (NS_TSIG_ERROR_FORMERR);
-
-	/* Read the algorithm name. */
-	rdatastart = cp;
-	n = dn_expand(msg, eom, cp, alg, MAXDNAME);
-	if (n < 0)
-		return (NS_TSIG_ERROR_FORMERR);
-	if (ns_samename(alg, NS_TSIG_ALG_HMAC_MD5) != 1)
-		return (-ns_r_badkey);
-	cp += n;
-
-	/* Read the time signed and fudge. */
-	BOUNDS_CHECK(cp, INT16SZ + INT32SZ + INT16SZ);
-	cp += INT16SZ;
-	GETLONG((*timesigned), cp);
-	GETSHORT(fudge, cp);
-
-	/* Read the signature. */
-	BOUNDS_CHECK(cp, INT16SZ);
-	GETSHORT(sigfieldlen, cp);
-	BOUNDS_CHECK(cp, sigfieldlen);
-	sigstart = cp;
-	cp += sigfieldlen;
-
-	/* Read the original id and error. */
-	BOUNDS_CHECK(cp, 2*INT16SZ);
-	GETSHORT(id, cp);
-	GETSHORT(error, cp);
-
-	/* Parse the other data. */
-	BOUNDS_CHECK(cp, INT16SZ);
-	GETSHORT(otherfieldlen, cp);
-	BOUNDS_CHECK(cp, otherfieldlen);
-	otherstart = cp;
-	cp += otherfieldlen;
-
-	if (cp != eom)
-		return (NS_TSIG_ERROR_FORMERR);
-
-	/* Verify that the key used is OK. */
-	if (key != NULL) {
-		if (key->dk_alg != KEY_HMAC_MD5)
-			return (-ns_r_badkey);
-		if (error != ns_r_badsig && error != ns_r_badkey) {
-			if (ns_samename(key->dk_key_name, name) != 1)
-				return (-ns_r_badkey);
-		}
-	}
-
-	hp->arcount = htons(ntohs(hp->arcount) - 1);
-
-	/*
-	 * Do the verification.
-	 */
-
-	if (key != NULL && error != ns_r_badsig && error != ns_r_badkey) {
-		void *ctx;
-		u_char buf[MAXDNAME];
-		u_char buf2[MAXDNAME];
-
-		/* Digest the query signature, if this is a response. */
-		dst_verify_data(SIG_MODE_INIT, key, &ctx, NULL, 0, NULL, 0);
-		if (querysiglen > 0 && querysig != NULL) {
-			u_int16_t len_n = htons(querysiglen);
-			dst_verify_data(SIG_MODE_UPDATE, key, &ctx,
-					(u_char *)&len_n, INT16SZ, NULL, 0);
-			dst_verify_data(SIG_MODE_UPDATE, key, &ctx,
-					querysig, querysiglen, NULL, 0);
-		}
-		
- 		/* Digest the message. */
-		dst_verify_data(SIG_MODE_UPDATE, key, &ctx, msg, recstart - msg,
-				NULL, 0);
-
-		/* Digest the key name. */
-		n = ns_name_pton(name, buf2, sizeof(buf2));
-		if (n < 0)
-			return (-1);
-		n = ns_name_ntol(buf2, buf, sizeof(buf));
-		if (n < 0)
-			return (-1);
-		dst_verify_data(SIG_MODE_UPDATE, key, &ctx, buf, n, NULL, 0);
-
-		/* Digest the class and TTL. */
-		dst_verify_data(SIG_MODE_UPDATE, key, &ctx,
-				recstart + dn_skipname(recstart, eom) + INT16SZ,
-				INT16SZ + INT32SZ, NULL, 0);
-
-		/* Digest the algorithm. */
-		n = ns_name_pton(alg, buf2, sizeof(buf2));
-		if (n < 0)
-			return (-1);
-		n = ns_name_ntol(buf2, buf, sizeof(buf));
-		if (n < 0)
-			return (-1);
-		dst_verify_data(SIG_MODE_UPDATE, key, &ctx, buf, n, NULL, 0);
-
-		/* Digest the time signed and fudge. */
-		dst_verify_data(SIG_MODE_UPDATE, key, &ctx,
-				rdatastart + dn_skipname(rdatastart, eom),
-				INT16SZ + INT32SZ + INT16SZ, NULL, 0);
-
-		/* Digest the error and other data. */
-		dst_verify_data(SIG_MODE_UPDATE, key, &ctx,
-				otherstart - INT16SZ - INT16SZ,
-				otherfieldlen + INT16SZ + INT16SZ, NULL, 0);
-
-		n = dst_verify_data(SIG_MODE_FINAL, key, &ctx, NULL, 0,
-				    sigstart, sigfieldlen);
-
-		if (n < 0)
-			return (-ns_r_badsig);
-
-		if (sig != NULL && siglen != NULL) {
-			if (*siglen < sigfieldlen)
-				return (NS_TSIG_ERROR_NO_SPACE);
-			memcpy(sig, sigstart, sigfieldlen);
-			*siglen = sigfieldlen;
-		}
-	} else {
-		if (sigfieldlen > 0)
-			return (NS_TSIG_ERROR_FORMERR);
-		if (sig != NULL && siglen != NULL)
-			*siglen = 0;
-	}
-
-	/* Reset the counter, since we still need to check for badtime. */
-	hp->arcount = htons(ntohs(hp->arcount) + 1);
-
-	/* Verify the time. */
-	if (abs((*timesigned) - time(NULL)) > fudge)
-		return (-ns_r_badtime);
-
-	if (nostrip == 0) {
-		*msglen = recstart - msg;
-		hp->arcount = htons(ntohs(hp->arcount) - 1);
-	}
-
-	if (error != NOERROR)
-		return (error);
-
-	return (0);
-}
-
-int
-ns_verify_tcp_init(void *k, const u_char *querysig, int querysiglen,
-		   ns_tcp_tsig_state *state)
-{
-	dst_init();
-	if (state == NULL || k == NULL || querysig == NULL || querysiglen < 0)
-		return (-1);
-	state->counter = -1;
-	state->key = k;
-	if (state->key->dk_alg != KEY_HMAC_MD5)
-		return (-ns_r_badkey);
-	if (querysiglen > sizeof(state->sig))
-		return (-1);
-	memcpy(state->sig, querysig, querysiglen);
-	state->siglen = querysiglen;
-	return (0);
-}
-
-int
-ns_verify_tcp(u_char *msg, int *msglen, ns_tcp_tsig_state *state,
-	      int required)
-{
-	HEADER *hp = (HEADER *)msg;
-	u_char *recstart, *rdatastart, *sigstart;
-	int sigfieldlen, otherfieldlen;
-	u_char *cp, *eom = msg + *msglen, *cp2;
-	char name[MAXDNAME], alg[MAXDNAME];
-	u_char buf[MAXDNAME];
-	int n, type, length, fudge, id, error;
-	time_t timesigned;
-
-	if (msg == NULL || msglen == NULL || state == NULL)
-		return (-1);
-
-	state->counter++;
-	if (state->counter == 0)
-		return (ns_verify(msg, msglen, state->key,
-				  state->sig, state->siglen,
-				  state->sig, &state->siglen, &timesigned, 0));
-
-	if (state->siglen > 0) {
-		u_int16_t siglen_n = htons(state->siglen);
-
-		dst_verify_data(SIG_MODE_INIT, state->key, &state->ctx,
-				NULL, 0, NULL, 0);
-		dst_verify_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-				(u_char *)&siglen_n, INT16SZ, NULL, 0);
-		dst_verify_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-				state->sig, state->siglen, NULL, 0);
-		state->siglen = 0;
-	}
-
-	cp = recstart = ns_find_tsig(msg, eom);
-
-	if (recstart == NULL) {
-		if (required)
-			return (NS_TSIG_ERROR_NO_TSIG);
-		dst_verify_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-				msg, *msglen, NULL, 0);
-		return (0);
-	}
-
-	hp->arcount = htons(ntohs(hp->arcount) - 1);
-	dst_verify_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-			msg, recstart - msg, NULL, 0);
-	
-	/* Read the key name. */
-	n = dn_expand(msg, eom, cp, name, MAXDNAME);
-	if (n < 0)
-		return (NS_TSIG_ERROR_FORMERR);
-	cp += n;
-
-	/* Read the type. */
-	BOUNDS_CHECK(cp, 2*INT16SZ + INT32SZ + INT16SZ);
-	GETSHORT(type, cp);
-	if (type != ns_t_tsig)
-		return (NS_TSIG_ERROR_NO_TSIG);
-
-	/* Skip the class and TTL, save the length. */
-	cp += INT16SZ + INT32SZ;
-	GETSHORT(length, cp);
-	if (eom - cp != length)
-		return (NS_TSIG_ERROR_FORMERR);
-
-	/* Read the algorithm name. */
-	rdatastart = cp;
-	n = dn_expand(msg, eom, cp, alg, MAXDNAME);
-	if (n < 0)
-		return (NS_TSIG_ERROR_FORMERR);
-	if (ns_samename(alg, NS_TSIG_ALG_HMAC_MD5) != 1)
-		return (-ns_r_badkey);
-	cp += n;
-
-	/* Verify that the key used is OK. */
-	if ((ns_samename(state->key->dk_key_name, name) != 1 ||
-	     state->key->dk_alg != KEY_HMAC_MD5))
-		return (-ns_r_badkey);
-
-	/* Read the time signed and fudge. */
-	BOUNDS_CHECK(cp, INT16SZ + INT32SZ + INT16SZ);
-	cp += INT16SZ;
-	GETLONG(timesigned, cp);
-	GETSHORT(fudge, cp);
-
-	/* Read the signature. */
-	BOUNDS_CHECK(cp, INT16SZ);
-	GETSHORT(sigfieldlen, cp);
-	BOUNDS_CHECK(cp, sigfieldlen);
-	sigstart = cp;
-	cp += sigfieldlen;
-
-	/* Read the original id and error. */
-	BOUNDS_CHECK(cp, 2*INT16SZ);
-	GETSHORT(id, cp);
-	GETSHORT(error, cp);
-
-	/* Parse the other data. */
-	BOUNDS_CHECK(cp, INT16SZ);
-	GETSHORT(otherfieldlen, cp);
-	BOUNDS_CHECK(cp, otherfieldlen);
-	cp += otherfieldlen;
-
-	if (cp != eom)
-		return (NS_TSIG_ERROR_FORMERR);
-
-	/*
-	 * Do the verification.
-	 */
-
-	/* Digest the time signed and fudge. */
-	cp2 = buf;
-	PUTSHORT(0, cp2);       /* Top 16 bits of time. */
-	PUTLONG(timesigned, cp2);
-	PUTSHORT(NS_TSIG_FUDGE, cp2);
-
-	dst_verify_data(SIG_MODE_UPDATE, state->key, &state->ctx,
-			buf, cp2 - buf, NULL, 0);
-
-	n = dst_verify_data(SIG_MODE_FINAL, state->key, &state->ctx, NULL, 0,
-			    sigstart, sigfieldlen);
-	if (n < 0)
-		return (-ns_r_badsig);
-
-	if (sigfieldlen > sizeof(state->sig))
-		return (NS_TSIG_ERROR_NO_SPACE);
-
-	memcpy(state->sig, sigstart, sigfieldlen);
-	state->siglen = sigfieldlen;
-
-	/* Verify the time. */
-	if (abs(timesigned - time(NULL)) > fudge)
-		return (-ns_r_badtime);
-
-	*msglen = recstart - msg;
-
-	if (error != NOERROR)
-		return (error);
-
-	return (0);
-}
diff --git a/contrib/bind/lib/resolv/Makefile b/contrib/bind/lib/resolv/Makefile
deleted file mode 100644
index 78741be08a327..0000000000000
--- a/contrib/bind/lib/resolv/Makefile
+++ /dev/null
@@ -1,94 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 8.33 2000/02/29 03:38:24 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-LIBBINDR = ../${TOP}/lib/libbind_r.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-# -D__BIND_NOSTATIC
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-INSTALL_EXEC=
-INSTALL_LIB=-o bin -g bin
-THREADED= threaded
-
-SRCS=	herror.c res_debug.c res_data.c res_comp.c res_init.c \
-	res_mkquery.c res_query.c res_send.c res_sendsigned.c \
-	res_mkupdate.c res_update.c \
-	res_findzonecut.c
-
-OBJS=	herror.${O} res_debug.${O} res_data.${O} res_comp.${O} res_init.${O} \
-	res_mkquery.${O} res_query.${O} res_send.${O} res_sendsigned.${O} \
-	res_mkupdate.${O} res_update.${O} \
-	res_findzonecut.${O}
-
-all: ${LIBBIND}
-
-${LIBBIND}: ${OBJS}
-	( cd ${THREADED} ; \
-	${AR} ${LIBBINDR} ${ARPREF} ${OBJS} ${ARSUFF} ; \
-	${RANLIB} ${LIBBINDR} )
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	if test ! -d ${THREADED} ; then mkdir ${THREADED} ; else true ; fi
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} ${REENTRANT} -c $*.c \
-	 -o ${THREADED}/$*.${O}
-	-${LDS} ${LD} ${LD_LIBFLAGS} ${THREADED}/$*.${O} \
-	 -o ${THREADED}/$*.out && \
-	 ${LDS} mv ${THREADED}/$*.out ${THREADED}/$*.${O}
-	${CC} ${CPPFLAGS} ${CFLAGS} ${BOUNDS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} -o $*.out && \
-	 ${LDS} mv $*.out $*.${O}
-
-distclean: clean
-
-clean: FRC
-	rm -f .depend a.out core ${LIB} tags
-	rm -f *.${O} *.BAK *.CKP *~
-	rm -f ${THREADED}/*.${O}
-	-if test -d ${THREADED} ; then rmdir ${THREADED}; else true; fi
-
-depend: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] .
-
-install:
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/lib/resolv/herror.c b/contrib/bind/lib/resolv/herror.c
deleted file mode 100644
index bf4cce698e960..0000000000000
--- a/contrib/bind/lib/resolv/herror.c
+++ /dev/null
@@ -1,121 +0,0 @@
-/*
- * Copyright (c) 1987, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)herror.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: herror.c,v 8.11 1999/10/13 16:39:39 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/uio.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <netdb.h>
-#include <resolv.h>
-#include <string.h>
-#include <unistd.h>
-#include <irs.h>
-
-#include "port_after.h"
-#undef	h_errno
-
-const char *h_errlist[] = {
-	"Resolver Error 0 (no error)",
-	"Unknown host",				/* 1 HOST_NOT_FOUND */
-	"Host name lookup failure",		/* 2 TRY_AGAIN */
-	"Unknown server error",			/* 3 NO_RECOVERY */
-	"No address associated with name",	/* 4 NO_ADDRESS */
-};
-int	h_nerr = { sizeof h_errlist / sizeof h_errlist[0] };
-
-int	h_errno;
-
-/*
- * herror --
- *	print the error indicated by the h_errno value.
- */
-void
-herror(const char *s) {
-	struct iovec iov[4], *v = iov;
-	extern int * __h_errno();
-
-	if (s != NULL && *s != '\0') {
-		v->iov_base = (/*noconst*/ char *)s;
-		v->iov_len = strlen(s);
-		v++;
-		v->iov_base = ": ";
-		v->iov_len = 2;
-		v++;
-	}
-	v->iov_base = (char *)hstrerror(*__h_errno());
-	v->iov_len = strlen(v->iov_base);
-	v++;
-	v->iov_base = "\n";
-	v->iov_len = 1;
-	writev(STDERR_FILENO, iov, (v - iov) + 1);
-}
-
-/*
- * hstrerror --
- *	return the string associated with a given "host" errno value.
- */
-const char *
-hstrerror(int err) {
-	if (err < 0)
-		return ("Resolver internal error");
-	else if (err < h_nerr)
-		return (h_errlist[err]);
-	return ("Unknown resolver error");
-}
diff --git a/contrib/bind/lib/resolv/res_comp.c b/contrib/bind/lib/resolv/res_comp.c
deleted file mode 100644
index d9728482e7887..0000000000000
--- a/contrib/bind/lib/resolv/res_comp.c
+++ /dev/null
@@ -1,251 +0,0 @@
-/*
- * Copyright (c) 1985, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)res_comp.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: res_comp.c,v 8.15 1999/10/13 16:39:39 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include <unistd.h>
-#include "port_after.h"
-
-/*
- * Expand compressed domain name 'comp_dn' to full domain name.
- * 'msg' is a pointer to the begining of the message,
- * 'eomorig' points to the first location after the message,
- * 'exp_dn' is a pointer to a buffer of size 'length' for the result.
- * Return size of compressed name or -1 if there was an error.
- */
-int
-dn_expand(const u_char *msg, const u_char *eom, const u_char *src,
-	  char *dst, int dstsiz)
-{
-	int n = ns_name_uncompress(msg, eom, src, dst, (size_t)dstsiz);
-
-	if (n > 0 && dst[0] == '.')
-		dst[0] = '\0';
-	return (n);
-}
-
-/*
- * Pack domain name 'exp_dn' in presentation form into 'comp_dn'.
- * Return the size of the compressed name or -1.
- * 'length' is the size of the array pointed to by 'comp_dn'.
- */
-int
-dn_comp(const char *src, u_char *dst, int dstsiz,
-	u_char **dnptrs, u_char **lastdnptr)
-{
-	return (ns_name_compress(src, dst, (size_t)dstsiz,
-				 (const u_char **)dnptrs,
-				 (const u_char **)lastdnptr));
-}
-
-/*
- * Skip over a compressed domain name. Return the size or -1.
- */
-int
-dn_skipname(const u_char *ptr, const u_char *eom) {
-	const u_char *saveptr = ptr;
-
-	if (ns_name_skip(&ptr, eom) == -1)
-		return (-1);
-	return (ptr - saveptr);
-}
-
-/*
- * Verify that a domain name uses an acceptable character set.
- */
-
-/*
- * Note the conspicuous absence of ctype macros in these definitions.  On
- * non-ASCII hosts, we can't depend on string literals or ctype macros to
- * tell us anything about network-format data.  The rest of the BIND system
- * is not careful about this, but for some reason, we're doing it right here.
- */
-#define PERIOD 0x2e
-#define	hyphenchar(c) ((c) == 0x2d)
-#define bslashchar(c) ((c) == 0x5c)
-#define periodchar(c) ((c) == PERIOD)
-#define asterchar(c) ((c) == 0x2a)
-#define alphachar(c) (((c) >= 0x41 && (c) <= 0x5a) \
-		   || ((c) >= 0x61 && (c) <= 0x7a))
-#define digitchar(c) ((c) >= 0x30 && (c) <= 0x39)
-
-#define borderchar(c) (alphachar(c) || digitchar(c))
-#define middlechar(c) (borderchar(c) || hyphenchar(c))
-#define	domainchar(c) ((c) > 0x20 && (c) < 0x7f)
-
-int
-res_hnok(const char *dn) {
-	int ppch = '\0', pch = PERIOD, ch = *dn++;
-
-	while (ch != '\0') {
-		int nch = *dn++;
-
-		if (periodchar(ch)) {
-			(void)NULL;
-		} else if (periodchar(pch)) {
-			if (!borderchar(ch))
-				return (0);
-		} else if (periodchar(nch) || nch == '\0') {
-			if (!borderchar(ch))
-				return (0);
-		} else {
-			if (!middlechar(ch))
-				return (0);
-		}
-		ppch = pch, pch = ch, ch = nch;
-	}
-	return (1);
-}
-
-/*
- * hostname-like (A, MX, WKS) owners can have "*" as their first label
- * but must otherwise be as a host name.
- */
-int
-res_ownok(const char *dn) {
-	if (asterchar(dn[0])) {
-		if (periodchar(dn[1]))
-			return (res_hnok(dn+2));
-		if (dn[1] == '\0')
-			return (1);
-	}
-	return (res_hnok(dn));
-}
-
-/*
- * SOA RNAMEs and RP RNAMEs can have any printable character in their first
- * label, but the rest of the name has to look like a host name.
- */
-int
-res_mailok(const char *dn) {
-	int ch, escaped = 0;
-
-	/* "." is a valid missing representation */
-	if (*dn == '\0')
-		return (1);
-
-	/* otherwise <label>.<hostname> */
-	while ((ch = *dn++) != '\0') {
-		if (!domainchar(ch))
-			return (0);
-		if (!escaped && periodchar(ch))
-			break;
-		if (escaped)
-			escaped = 0;
-		else if (bslashchar(ch))
-			escaped = 1;
-	}
-	if (periodchar(ch))
-		return (res_hnok(dn));
-	return (0);
-}
-
-/*
- * This function is quite liberal, since RFC 1034's character sets are only
- * recommendations.
- */
-int
-res_dnok(const char *dn) {
-	int ch;
-
-	while ((ch = *dn++) != '\0')
-		if (!domainchar(ch))
-			return (0);
-	return (1);
-}
-
-#ifdef BIND_4_COMPAT
-/*
- * This module must export the following externally-visible symbols:
- *	___putlong
- *	___putshort
- *	__getlong
- *	__getshort
- * Note that one _ comes from C and the others come from us.
- */
-void __putlong(u_int32_t src, u_char *dst) { ns_put32(src, dst); }
-void __putshort(u_int16_t src, u_char *dst) { ns_put16(src, dst); }
-#ifndef __ultrix__
-u_int32_t _getlong(const u_char *src) { return (ns_get32(src)); }
-u_int16_t _getshort(const u_char *src) { return (ns_get16(src)); }
-#endif /*__ultrix__*/
-#endif /*BIND_4_COMPAT*/
diff --git a/contrib/bind/lib/resolv/res_data.c b/contrib/bind/lib/resolv/res_data.c
deleted file mode 100644
index 7688637e8721e..0000000000000
--- a/contrib/bind/lib/resolv/res_data.c
+++ /dev/null
@@ -1,292 +0,0 @@
-/*
- * Copyright (c) 1995-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: res_data.c,v 8.17 1999/10/13 17:11:31 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include "port_after.h"
-#undef _res
-
-const char *_res_opcodes[] = {
-	"QUERY",
-	"IQUERY",
-	"CQUERYM",
-	"CQUERYU",	/* experimental */
-	"NOTIFY",	/* experimental */
-	"UPDATE",
-	"6",
-	"7",
-	"8",
-	"9",
-	"10",
-	"11",
-	"12",
-	"13",
-	"ZONEINIT",
-	"ZONEREF",
-};
-
-#ifdef BIND_UPDATE
-const char *_res_sectioncodes[] = {
-	"ZONE",
-	"PREREQUISITES",
-	"UPDATE",
-	"ADDITIONAL",
-};
-#endif
-
-#ifndef __BIND_NOSTATIC
-struct __res_state _res
-# if defined(__BIND_RES_TEXT)
-	= { RES_TIMEOUT, }	/* Motorola, et al. */
-# endif
-        ;
-
-/* Proto. */
-
-int  res_ourserver_p(const res_state, const struct sockaddr_in *);
-void res_pquery(const res_state, const u_char *, int, FILE *);
-
-int
-res_init(void) {
-	extern int __res_vinit(res_state, int);
-
-	/*
-	 * These three fields used to be statically initialized.  This made
-	 * it hard to use this code in a shared library.  It is necessary,
-	 * now that we're doing dynamic initialization here, that we preserve
-	 * the old semantics: if an application modifies one of these three
-	 * fields of _res before res_init() is called, res_init() will not
-	 * alter them.  Of course, if an application is setting them to
-	 * _zero_ before calling res_init(), hoping to override what used
-	 * to be the static default, we can't detect it and unexpected results
-	 * will follow.  Zero for any of these fields would make no sense,
-	 * so one can safely assume that the applications were already getting
-	 * unexpected results.
-	 *
-	 * _res.options is tricky since some apps were known to diddle the bits
-	 * before res_init() was first called. We can't replicate that semantic
-	 * with dynamic initialization (they may have turned bits off that are
-	 * set in RES_DEFAULT).  Our solution is to declare such applications
-	 * "broken".  They could fool us by setting RES_INIT but none do (yet).
-	 */
-	if (!_res.retrans)
-		_res.retrans = RES_TIMEOUT;
-	if (!_res.retry)
-		_res.retry = 4;
-	if (!(_res.options & RES_INIT))
-		_res.options = RES_DEFAULT;
-
-	/*
-	 * This one used to initialize implicitly to zero, so unless the app
-	 * has set it to something in particular, we can randomize it now.
-	 */
-	if (!_res.id)
-		_res.id = res_randomid();
-
-	return (__res_vinit(&_res, 1));
-}
-
-void
-p_query(const u_char *msg) {
-	fp_query(msg, stdout);
-}
-
-void
-fp_query(const u_char *msg, FILE *file) {
-	fp_nquery(msg, PACKETSZ, file);
-}
-
-void
-fp_nquery(const u_char *msg, int len, FILE *file) {
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1)
-		return;
-
-	res_pquery(&_res, msg, len, file);
-}
-
-int
-res_mkquery(int op,			/* opcode of query */
-	    const char *dname,		/* domain name */
-	    int class, int type,	/* class and type of query */
-	    const u_char *data,		/* resource record data */
-	    int datalen,		/* length of data */
-	    const u_char *newrr_in,	/* new rr for modify or append */
-	    u_char *buf,		/* buffer to put query */
-	    int buflen)			/* size of buffer */
-{
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		RES_SET_H_ERRNO(&_res, NETDB_INTERNAL);
-		return (-1);
-	}
-	return (res_nmkquery(&_res, op, dname, class, type,
-			     data, datalen,
-			     newrr_in, buf, buflen));
-}
-
-int
-res_mkupdate(ns_updrec *rrecp_in, u_char *buf, int buflen) {
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		RES_SET_H_ERRNO(&_res, NETDB_INTERNAL);
-		return (-1);
-	}
-
-	return (res_nmkupdate(&_res, rrecp_in, buf, buflen));
-}
-
-int
-res_query(const char *name,	/* domain name */
-	  int class, int type,	/* class and type of query */
-	  u_char *answer,	/* buffer to put answer */
-	  int anslen)		/* size of answer buffer */
-{
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		RES_SET_H_ERRNO(&_res, NETDB_INTERNAL);
-		return (-1);
-	}
-	return (res_nquery(&_res, name, class, type, answer, anslen));
-}
-
-void
-res_send_setqhook(res_send_qhook hook) {
-	_res.qhook = hook;
-}
-
-void
-res_send_setrhook(res_send_rhook hook) {
-	_res.rhook = hook;
-}
-
-int
-res_isourserver(const struct sockaddr_in *inp) {
-	return (res_ourserver_p(&_res, inp));
-}
-
-int
-res_send(const u_char *buf, int buflen, u_char *ans, int anssiz) {
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		/* errno should have been set by res_init() in this case. */
-		return (-1);
-	}
-
-	return (res_nsend(&_res, buf, buflen, ans, anssiz));
-}
-
-int
-res_sendsigned(const u_char *buf, int buflen, ns_tsig_key *key,
-	       u_char *ans, int anssiz)
-{
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		/* errno should have been set by res_init() in this case. */
-		return (-1);
-	}
-
-	return (res_nsendsigned(&_res, buf, buflen, key, ans, anssiz));
-}
-
-void
-res_close(void) {
-	res_nclose(&_res);
-}
-
-int
-res_update(ns_updrec *rrecp_in) {
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		RES_SET_H_ERRNO(&_res, NETDB_INTERNAL);
-		return (-1);
-	}
-
-	return (res_nupdate(&_res, rrecp_in, NULL));
-}
-
-int
-res_search(const char *name,	/* domain name */
-	   int class, int type,	/* class and type of query */
-	   u_char *answer,	/* buffer to put answer */
-	   int anslen)		/* size of answer */
-{
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		RES_SET_H_ERRNO(&_res, NETDB_INTERNAL);
-		return (-1);
-	}
-
-	return (res_nsearch(&_res, name, class, type, answer, anslen));
-}
-
-int
-res_querydomain(const char *name,
-		const char *domain,
-		int class, int type,	/* class and type of query */
-		u_char *answer,		/* buffer to put answer */
-		int anslen)		/* size of answer */
-{
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		RES_SET_H_ERRNO(&_res, NETDB_INTERNAL);
-		return (-1);
-	}
-
-	return (res_nquerydomain(&_res, name, domain,
-				 class, type,
-				 answer, anslen));
-}
-
-const char *
-hostalias(const char *name) {
-	static char abuf[MAXDNAME];
-
-	return (res_hostalias(&_res, name, abuf, sizeof abuf));
-}
-
-#ifdef ultrix
-int
-local_hostname_length(const char *hostname) {
-	int len_host, len_domain;
-
-	if (!*_res.defdname)
-		res_init();
-	len_host = strlen(hostname);
-	len_domain = strlen(_res.defdname);
-	if (len_host > len_domain &&
-	    !strcasecmp(hostname + len_host - len_domain, _res.defdname) &&
-	    hostname[len_host - len_domain - 1] == '.')
-		return (len_host - len_domain - 1);
-	return (0);
-}
-#endif /*ultrix*/
-
-#endif
diff --git a/contrib/bind/lib/resolv/res_debug.c b/contrib/bind/lib/resolv/res_debug.c
deleted file mode 100644
index 180d67f647d0d..0000000000000
--- a/contrib/bind/lib/resolv/res_debug.c
+++ /dev/null
@@ -1,1045 +0,0 @@
-/*
- * Copyright (c) 1985
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)res_debug.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: res_debug.c,v 8.34 2000/02/29 05:30:55 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <math.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <time.h>
-
-#include "port_after.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) sprintf x
-#endif
-
-extern const char *_res_opcodes[];
-extern const char *_res_sectioncodes[];
-
-/*
- * Print the current options.
- */
-void
-fp_resstat(const res_state statp, FILE *file) {
-	u_long mask;
-
-	fprintf(file, ";; res options:");
-	for (mask = 1;  mask != 0;  mask <<= 1)
-		if (statp->options & mask)
-			fprintf(file, " %s", p_option(mask));
-	putc('\n', file);
-}
-
-static void
-do_section(const res_state statp,
-	   ns_msg *handle, ns_sect section,
-	   int pflag, FILE *file)
-{
-	int n, sflag, rrnum;
-	static int buflen = 2048;
-	char *buf;
-	ns_opcode opcode;
-	ns_rr rr;
-
-	/*
-	 * Print answer records.
-	 */
-	sflag = (statp->pfcode & pflag);
-	if (statp->pfcode && !sflag)
-		return;
-
-	buf = malloc(buflen);
-	if (buf == NULL) {
-		fprintf(file, ";; memory allocation failure\n");
-		return;
-	}
-
-	opcode = (ns_opcode) ns_msg_getflag(*handle, ns_f_opcode);
-	rrnum = 0;
-	for (;;) {
-		if (ns_parserr(handle, section, rrnum, &rr)) {
-			if (errno != ENODEV)
-				fprintf(file, ";; ns_parserr: %s\n",
-					strerror(errno));
-			else if (rrnum > 0 && sflag != 0 &&
-				 (statp->pfcode & RES_PRF_HEAD1))
-				putc('\n', file);
-			goto cleanup;
-		}
-		if (rrnum == 0 && sflag != 0 && (statp->pfcode & RES_PRF_HEAD1))
-			fprintf(file, ";; %s SECTION:\n",
-				p_section(section, opcode));
-		if (section == ns_s_qd)
-			fprintf(file, ";;\t%s, type = %s, class = %s\n",
-				ns_rr_name(rr),
-				p_type(ns_rr_type(rr)),
-				p_class(ns_rr_class(rr)));
-		else {
-			n = ns_sprintrr(handle, &rr, NULL, NULL,
-					buf, buflen);
-			if (n < 0) {
-				if (errno == ENOSPC) {
-					free(buf);
-					buf = NULL;
-					if (buflen < 131072)
-						buf = malloc(buflen += 1024);
-					if (buf == NULL) {
-						fprintf(file,
-				              ";; memory allocation failure\n");
-					      return;
-					}
-					continue;
-				}
-				fprintf(file, ";; ns_sprintrr: %s\n",
-					strerror(errno));
-				goto cleanup;
-			}
-			fputs(buf, file);
-			fputc('\n', file);
-		}
-		rrnum++;
-	}
- cleanup:
-	if (buf != NULL)
-		free(buf);
-}
-
-/*
- * Print the contents of a query.
- * This is intended to be primarily a debugging routine.
- */
-void
-res_pquery(const res_state statp, const u_char *msg, int len, FILE *file) {
-	ns_msg handle;
-	int qdcount, ancount, nscount, arcount;
-	u_int opcode, rcode, id;
-
-	if (ns_initparse(msg, len, &handle) < 0) {
-		fprintf(file, ";; ns_initparse: %s\n", strerror(errno));
-		return;
-	}
-	opcode = ns_msg_getflag(handle, ns_f_opcode);
-	rcode = ns_msg_getflag(handle, ns_f_rcode);
-	id = ns_msg_id(handle);
-	qdcount = ns_msg_count(handle, ns_s_qd);
-	ancount = ns_msg_count(handle, ns_s_an);
-	nscount = ns_msg_count(handle, ns_s_ns);
-	arcount = ns_msg_count(handle, ns_s_ar);
-
-	/*
-	 * Print header fields.
-	 */
-	if ((!statp->pfcode) || (statp->pfcode & RES_PRF_HEADX) || rcode)
-		fprintf(file,
-			";; ->>HEADER<<- opcode: %s, status: %s, id: %d\n",
-			_res_opcodes[opcode], p_rcode(rcode), id);
-	if ((!statp->pfcode) || (statp->pfcode & RES_PRF_HEADX))
-		putc(';', file);
-	if ((!statp->pfcode) || (statp->pfcode & RES_PRF_HEAD2)) {
-		fprintf(file, "; flags:");
-		if (ns_msg_getflag(handle, ns_f_qr))
-			fprintf(file, " qr");
-		if (ns_msg_getflag(handle, ns_f_aa))
-			fprintf(file, " aa");
-		if (ns_msg_getflag(handle, ns_f_tc))
-			fprintf(file, " tc");
-		if (ns_msg_getflag(handle, ns_f_rd))
-			fprintf(file, " rd");
-		if (ns_msg_getflag(handle, ns_f_ra))
-			fprintf(file, " ra");
-		if (ns_msg_getflag(handle, ns_f_z))
-			fprintf(file, " ??");
-		if (ns_msg_getflag(handle, ns_f_ad))
-			fprintf(file, " ad");
-		if (ns_msg_getflag(handle, ns_f_cd))
-			fprintf(file, " cd");
-	}
-	if ((!statp->pfcode) || (statp->pfcode & RES_PRF_HEAD1)) {
-		fprintf(file, "; %s: %d",
-			p_section(ns_s_qd, opcode), qdcount);
-		fprintf(file, ", %s: %d",
-			p_section(ns_s_an, opcode), ancount);
-		fprintf(file, ", %s: %d",
-			p_section(ns_s_ns, opcode), nscount);
-		fprintf(file, ", %s: %d",
-			p_section(ns_s_ar, opcode), arcount);
-	}
-	if ((!statp->pfcode) || (statp->pfcode & 
-		(RES_PRF_HEADX | RES_PRF_HEAD2 | RES_PRF_HEAD1))) {
-		putc('\n',file);
-	}
-	/*
-	 * Print the various sections.
-	 */
-	do_section(statp, &handle, ns_s_qd, RES_PRF_QUES, file);
-	do_section(statp, &handle, ns_s_an, RES_PRF_ANS, file);
-	do_section(statp, &handle, ns_s_ns, RES_PRF_AUTH, file);
-	do_section(statp, &handle, ns_s_ar, RES_PRF_ADD, file);
-	if (qdcount == 0 && ancount == 0 &&
-	    nscount == 0 && arcount == 0)
-		putc('\n', file);
-}
-
-const u_char *
-p_cdnname(const u_char *cp, const u_char *msg, int len, FILE *file) {
-	char name[MAXDNAME];
-	int n;
-
-	if ((n = dn_expand(msg, msg + len, cp, name, sizeof name)) < 0)
-		return (NULL);
-	if (name[0] == '\0')
-		putc('.', file);
-	else
-		fputs(name, file);
-	return (cp + n);
-}
-
-const u_char *
-p_cdname(const u_char *cp, const u_char *msg, FILE *file) {
-	return (p_cdnname(cp, msg, PACKETSZ, file));
-}
-
-/* Return a fully-qualified domain name from a compressed name (with
-   length supplied).  */
-
-const u_char *
-p_fqnname(cp, msg, msglen, name, namelen)
-	const u_char *cp, *msg;
-	int msglen;
-	char *name;
-	int namelen;
-{
-	int n, newlen;
-
-	if ((n = dn_expand(msg, cp + msglen, cp, name, namelen)) < 0)
-		return (NULL);
-	newlen = strlen(name);
-	if (newlen == 0 || name[newlen - 1] != '.') {
-		if (newlen + 1 >= namelen)	/* Lack space for final dot */
-			return (NULL);
-		else
-			strcpy(name + newlen, ".");
-	}
-	return (cp + n);
-}
-
-/* XXX:	the rest of these functions need to become length-limited, too. */
-
-const u_char *
-p_fqname(const u_char *cp, const u_char *msg, FILE *file) {
-	char name[MAXDNAME];
-	const u_char *n;
-
-	n = p_fqnname(cp, msg, MAXCDNAME, name, sizeof name);
-	if (n == NULL)
-		return (NULL);
-	fputs(name, file);
-	return (n);
-}
-
-/*
- * Names of RR classes and qclasses.  Classes and qclasses are the same, except
- * that C_ANY is a qclass but not a class.  (You can ask for records of class
- * C_ANY, but you can't have any records of that class in the database.)
- */
-const struct res_sym __p_class_syms[] = {
-	{C_IN,		"IN"},
-	{C_CHAOS,	"CHAOS"},
-	{C_HS,		"HS"},
-	{C_HS,		"HESIOD"},
-	{C_ANY,		"ANY"},
-	{C_NONE,	"NONE"},
-	{C_IN, 		(char *)0}
-};
-
-/*
- * Names of message sections.
- */
-const struct res_sym __p_default_section_syms[] = {
-	{ns_s_qd,	"QUERY"},
-	{ns_s_an,	"ANSWER"},
-	{ns_s_ns,	"AUTHORITY"},
-	{ns_s_ar,	"ADDITIONAL"},
-	{0,             (char *)0}
-};
-
-const struct res_sym __p_update_section_syms[] = {
-	{S_ZONE,	"ZONE"},
-	{S_PREREQ,	"PREREQUISITE"},
-	{S_UPDATE,	"UPDATE"},
-	{S_ADDT,	"ADDITIONAL"},
-	{0,             (char *)0}
-};
-
-const struct res_sym __p_key_syms[] = {
-	{NS_ALG_MD5RSA,		"RSA",		"RSA KEY with MD5 hash"},
-	{NS_ALG_DH,		"DH",		"Diffie Hellman"},
-	{NS_ALG_DSA,		"DSA",		"Digital Signature Algorithm"},
-	{NS_ALG_EXPIRE_ONLY,	"EXPIREONLY",	"No algorithm"},
-	{NS_ALG_PRIVATE_OID,	"PRIVATE",	"Algorithm obtained from OID"},
-	{0,			NULL,		NULL}
-};
-
-const struct res_sym __p_cert_syms[] = {
-	{cert_t_pkix,	"PKIX",		"PKIX (X.509v3) Certificate"},
-	{cert_t_spki,	"SPKI",		"SPKI certificate"},
-	{cert_t_pgp,	"PGP",		"PGP certificate"},
-	{cert_t_url,	"URL",		"URL Private"},
-	{cert_t_oid,	"OID",		"OID Private"},
-	{0,		NULL,		NULL}
-};
-
-/*
- * Names of RR types and qtypes.  Types and qtypes are the same, except
- * that T_ANY is a qtype but not a type.  (You can ask for records of type
- * T_ANY, but you can't have any records of that type in the database.)
- */
-const struct res_sym __p_type_syms[] = {
-	{ns_t_a,	"A",		"address"},
-	{ns_t_ns,	"NS",		"name server"},
-	{ns_t_md,	"MD",		"mail destination (deprecated)"},
-	{ns_t_mf,	"MF",		"mail forwarder (deprecated)"},
-	{ns_t_cname,	"CNAME",	"canonical name"},
-	{ns_t_soa,	"SOA",		"start of authority"},
-	{ns_t_mb,	"MB",		"mailbox"},
-	{ns_t_mg,	"MG",		"mail group member"},
-	{ns_t_mr,	"MR",		"mail rename"},
-	{ns_t_null,	"NULL",		"null"},
-	{ns_t_wks,	"WKS",		"well-known service (deprecated)"},
-	{ns_t_ptr,	"PTR",		"domain name pointer"},
-	{ns_t_hinfo,	"HINFO",	"host information"},
-	{ns_t_minfo,	"MINFO",	"mailbox information"},
-	{ns_t_mx,	"MX",		"mail exchanger"},
-	{ns_t_txt,	"TXT",		"text"},
-	{ns_t_rp,	"RP",		"responsible person"},
-	{ns_t_afsdb,	"AFSDB",	"DCE or AFS server"},
-	{ns_t_x25,	"X25",		"X25 address"},
-	{ns_t_isdn,	"ISDN",		"ISDN address"},
-	{ns_t_rt,	"RT",		"router"},
-	{ns_t_nsap,	"NSAP",		"nsap address"},
-	{ns_t_nsap_ptr,	"NSAP_PTR",	"domain name pointer"},
-	{ns_t_sig,	"SIG",		"signature"},
-	{ns_t_key,	"KEY",		"key"},
-	{ns_t_px,	"PX",		"mapping information"},
-	{ns_t_gpos,	"GPOS",		"geographical position (withdrawn)"},
-	{ns_t_aaaa,	"AAAA",		"IPv6 address"},
-	{ns_t_loc,	"LOC",		"location"},
-	{ns_t_nxt,	"NXT",		"next valid name (unimplemented)"},
-	{ns_t_eid,	"EID",		"endpoint identifier (unimplemented)"},
-	{ns_t_nimloc,	"NIMLOC",	"NIMROD locator (unimplemented)"},
-	{ns_t_srv,	"SRV",		"server selection"},
-	{ns_t_atma,	"ATMA",		"ATM address (unimplemented)"},
-	{ns_t_tsig,	"TSIG",		"transaction signature"},
-	{ns_t_ixfr,	"IXFR",		"incremental zone transfer"},
-	{ns_t_axfr,	"AXFR",		"zone transfer"},
-	{ns_t_zxfr,	"ZXFR",		"compressed zone transfer"},
-	{ns_t_mailb,	"MAILB",	"mailbox-related data (deprecated)"},
-	{ns_t_maila,	"MAILA",	"mail agent (deprecated)"},
-	{ns_t_naptr,	"NAPTR",	"URN Naming Authority"},
-	{ns_t_kx,	"KX",		"Key Exchange"},
-	{ns_t_cert,	"CERT",		"Certificate"},
-	{ns_t_any,	"ANY",		"\"any\""},
-	{0, 		NULL,		NULL}
-};
-
-/*
- * Names of DNS rcodes.
- */
-const struct res_sym __p_rcode_syms[] = {
-	{ns_r_noerror,	"NOERROR",		"no error"},
-	{ns_r_formerr,	"FORMERR",		"format error"},
-	{ns_r_servfail,	"SERVFAIL",		"server failed"},
-	{ns_r_nxdomain,	"NXDOMAIN",		"no such domain name"},
-	{ns_r_notimpl,	"NOTIMP",		"not implemented"},
-	{ns_r_refused,	"REFUSED",		"refused"},
-	{ns_r_yxdomain,	"YXDOMAIN",		"domain name exists"},
-	{ns_r_yxrrset,	"YXRRSET",		"rrset exists"},
-	{ns_r_nxrrset,	"NXRRSET",		"rrset doesn't exist"},
-	{ns_r_notauth,	"NOTAUTH",		"not authoritative"},
-	{ns_r_notzone,	"NOTZONE",		"Not in zone"},
-	{ns_r_max,	"",			""},
-	{ns_r_badsig,	"BADSIG",		"bad signature"},
-	{ns_r_badkey,	"BADKEY",		"bad key"},
-	{ns_r_badtime,	"BADTIME",		"bad time"},
-	{0, 		NULL,			NULL}
-};
-
-int
-sym_ston(const struct res_sym *syms, const char *name, int *success) {
-	for ((void)NULL; syms->name != 0; syms++) {
-		if (strcasecmp (name, syms->name) == 0) {
-			if (success)
-				*success = 1;
-			return (syms->number);
-		}
-	}
-	if (success)
-		*success = 0;
-	return (syms->number);		/* The default value. */
-}
-
-const char *
-sym_ntos(const struct res_sym *syms, int number, int *success) {
-	static char unname[20];
-
-	for ((void)NULL; syms->name != 0; syms++) {
-		if (number == syms->number) {
-			if (success)
-				*success = 1;
-			return (syms->name);
-		}
-	}
-
-	sprintf(unname, "%d", number);		/* XXX nonreentrant */
-	if (success)
-		*success = 0;
-	return (unname);
-}
-
-const char *
-sym_ntop(const struct res_sym *syms, int number, int *success) {
-	static char unname[20];
-
-	for ((void)NULL; syms->name != 0; syms++) {
-		if (number == syms->number) {
-			if (success)
-				*success = 1;
-			return (syms->humanname);
-		}
-	}
-	sprintf(unname, "%d", number);		/* XXX nonreentrant */
-	if (success)
-		*success = 0;
-	return (unname);
-}
-
-/*
- * Return a string for the type.
- */
-const char *
-p_type(int type) {
-	return (sym_ntos(__p_type_syms, type, (int *)0));
-}
-
-/*
- * Return a string for the type.
- */
-const char *
-p_section(int section, int opcode) {
-	const struct res_sym *symbols;
-
-	switch (opcode) {
-	case ns_o_update:
-		symbols = __p_update_section_syms;
-		break;
-	default:
-		symbols = __p_default_section_syms;
-		break;
-	}
-	return (sym_ntos(symbols, section, (int *)0));
-}
-
-/*
- * Return a mnemonic for class.
- */
-const char *
-p_class(int class) {
-	return (sym_ntos(__p_class_syms, class, (int *)0));
-}
-
-/*
- * Return a mnemonic for an option
- */
-const char *
-p_option(u_long option) {
-	static char nbuf[40];
-
-	switch (option) {
-	case RES_INIT:		return "init";
-	case RES_DEBUG:		return "debug";
-	case RES_AAONLY:	return "aaonly(unimpl)";
-	case RES_USEVC:		return "usevc";
-	case RES_PRIMARY:	return "primry(unimpl)";
-	case RES_IGNTC:		return "igntc";
-	case RES_RECURSE:	return "recurs";
-	case RES_DEFNAMES:	return "defnam";
-	case RES_STAYOPEN:	return "styopn";
-	case RES_DNSRCH:	return "dnsrch";
-	case RES_INSECURE1:	return "insecure1";
-	case RES_INSECURE2:	return "insecure2";
-				/* XXX nonreentrant */
-	default:		sprintf(nbuf, "?0x%lx?", (u_long)option);
-				return (nbuf);
-	}
-}
-
-/*
- * Return a mnemonic for a time to live.
- */
-const char *
-p_time(u_int32_t value) {
-	static char nbuf[40];		/* XXX nonreentrant */
-
-	if (ns_format_ttl(value, nbuf, sizeof nbuf) < 0)
-		sprintf(nbuf, "%u", value);
-	return (nbuf);
-}
-
-/*
- * Return a string for the rcode.
- */
-const char *
-p_rcode(int rcode) {
-	return (sym_ntos(__p_rcode_syms, rcode, (int *)0));
-}
-
-/*
- * routines to convert between on-the-wire RR format and zone file format.
- * Does not contain conversion to/from decimal degrees; divide or multiply
- * by 60*60*1000 for that.
- */
-
-static unsigned int poweroften[10] = {1, 10, 100, 1000, 10000, 100000,
-				      1000000,10000000,100000000,1000000000};
-
-/* takes an XeY precision/size value, returns a string representation. */
-static const char *
-precsize_ntoa(prec)
-	u_int8_t prec;
-{
-	static char retbuf[sizeof "90000000.00"];	/* XXX nonreentrant */
-	unsigned long val;
-	int mantissa, exponent;
-
-	mantissa = (int)((prec >> 4) & 0x0f) % 10;
-	exponent = (int)((prec >> 0) & 0x0f) % 10;
-
-	val = mantissa * poweroften[exponent];
-
-	(void) sprintf(retbuf, "%ld.%.2ld", val/100, val%100);
-	return (retbuf);
-}
-
-/* converts ascii size/precision X * 10**Y(cm) to 0xXY.  moves pointer. */
-static u_int8_t
-precsize_aton(strptr)
-	char **strptr;
-{
-	unsigned int mval = 0, cmval = 0;
-	u_int8_t retval = 0;
-	char *cp;
-	int exponent;
-	int mantissa;
-
-	cp = *strptr;
-
-	while (isdigit(*cp))
-		mval = mval * 10 + (*cp++ - '0');
-
-	if (*cp == '.') {		/* centimeters */
-		cp++;
-		if (isdigit(*cp)) {
-			cmval = (*cp++ - '0') * 10;
-			if (isdigit(*cp)) {
-				cmval += (*cp++ - '0');
-			}
-		}
-	}
-	cmval = (mval * 100) + cmval;
-
-	for (exponent = 0; exponent < 9; exponent++)
-		if (cmval < poweroften[exponent+1])
-			break;
-
-	mantissa = cmval / poweroften[exponent];
-	if (mantissa > 9)
-		mantissa = 9;
-
-	retval = (mantissa << 4) | exponent;
-
-	*strptr = cp;
-
-	return (retval);
-}
-
-/* converts ascii lat/lon to unsigned encoded 32-bit number.  moves pointer. */
-static u_int32_t
-latlon2ul(latlonstrptr,which)
-	char **latlonstrptr;
-	int *which;
-{
-	char *cp;
-	u_int32_t retval;
-	int deg = 0, min = 0, secs = 0, secsfrac = 0;
-
-	cp = *latlonstrptr;
-
-	while (isdigit(*cp))
-		deg = deg * 10 + (*cp++ - '0');
-
-	while (isspace(*cp))
-		cp++;
-
-	if (!(isdigit(*cp)))
-		goto fndhemi;
-
-	while (isdigit(*cp))
-		min = min * 10 + (*cp++ - '0');
-
-	while (isspace(*cp))
-		cp++;
-
-	if (!(isdigit(*cp)))
-		goto fndhemi;
-
-	while (isdigit(*cp))
-		secs = secs * 10 + (*cp++ - '0');
-
-	if (*cp == '.') {		/* decimal seconds */
-		cp++;
-		if (isdigit(*cp)) {
-			secsfrac = (*cp++ - '0') * 100;
-			if (isdigit(*cp)) {
-				secsfrac += (*cp++ - '0') * 10;
-				if (isdigit(*cp)) {
-					secsfrac += (*cp++ - '0');
-				}
-			}
-		}
-	}
-
-	while (!isspace(*cp))	/* if any trailing garbage */
-		cp++;
-
-	while (isspace(*cp))
-		cp++;
-
- fndhemi:
-	switch (*cp) {
-	case 'N': case 'n':
-	case 'E': case 'e':
-		retval = ((unsigned)1<<31)
-			+ (((((deg * 60) + min) * 60) + secs) * 1000)
-			+ secsfrac;
-		break;
-	case 'S': case 's':
-	case 'W': case 'w':
-		retval = ((unsigned)1<<31)
-			- (((((deg * 60) + min) * 60) + secs) * 1000)
-			- secsfrac;
-		break;
-	default:
-		retval = 0;	/* invalid value -- indicates error */
-		break;
-	}
-
-	switch (*cp) {
-	case 'N': case 'n':
-	case 'S': case 's':
-		*which = 1;	/* latitude */
-		break;
-	case 'E': case 'e':
-	case 'W': case 'w':
-		*which = 2;	/* longitude */
-		break;
-	default:
-		*which = 0;	/* error */
-		break;
-	}
-
-	cp++;			/* skip the hemisphere */
-
-	while (!isspace(*cp))	/* if any trailing garbage */
-		cp++;
-
-	while (isspace(*cp))	/* move to next field */
-		cp++;
-
-	*latlonstrptr = cp;
-
-	return (retval);
-}
-
-/* converts a zone file representation in a string to an RDATA on-the-wire
- * representation. */
-int
-loc_aton(ascii, binary)
-	const char *ascii;
-	u_char *binary;
-{
-	const char *cp, *maxcp;
-	u_char *bcp;
-
-	u_int32_t latit = 0, longit = 0, alt = 0;
-	u_int32_t lltemp1 = 0, lltemp2 = 0;
-	int altmeters = 0, altfrac = 0, altsign = 1;
-	u_int8_t hp = 0x16;	/* default = 1e6 cm = 10000.00m = 10km */
-	u_int8_t vp = 0x13;	/* default = 1e3 cm = 10.00m */
-	u_int8_t siz = 0x12;	/* default = 1e2 cm = 1.00m */
-	int which1 = 0, which2 = 0;
-
-	cp = ascii;
-	maxcp = cp + strlen(ascii);
-
-	lltemp1 = latlon2ul(&cp, &which1);
-
-	lltemp2 = latlon2ul(&cp, &which2);
-
-	switch (which1 + which2) {
-	case 3:			/* 1 + 2, the only valid combination */
-		if ((which1 == 1) && (which2 == 2)) { /* normal case */
-			latit = lltemp1;
-			longit = lltemp2;
-		} else if ((which1 == 2) && (which2 == 1)) { /* reversed */
-			longit = lltemp1;
-			latit = lltemp2;
-		} else {	/* some kind of brokenness */
-			return (0);
-		}
-		break;
-	default:		/* we didn't get one of each */
-		return (0);
-	}
-
-	/* altitude */
-	if (*cp == '-') {
-		altsign = -1;
-		cp++;
-	}
-    
-	if (*cp == '+')
-		cp++;
-
-	while (isdigit(*cp))
-		altmeters = altmeters * 10 + (*cp++ - '0');
-
-	if (*cp == '.') {		/* decimal meters */
-		cp++;
-		if (isdigit(*cp)) {
-			altfrac = (*cp++ - '0') * 10;
-			if (isdigit(*cp)) {
-				altfrac += (*cp++ - '0');
-			}
-		}
-	}
-
-	alt = (10000000 + (altsign * (altmeters * 100 + altfrac)));
-
-	while (!isspace(*cp) && (cp < maxcp)) /* if trailing garbage or m */
-		cp++;
-
-	while (isspace(*cp) && (cp < maxcp))
-		cp++;
-
-	if (cp >= maxcp)
-		goto defaults;
-
-	siz = precsize_aton(&cp);
-	
-	while (!isspace(*cp) && (cp < maxcp))	/* if trailing garbage or m */
-		cp++;
-
-	while (isspace(*cp) && (cp < maxcp))
-		cp++;
-
-	if (cp >= maxcp)
-		goto defaults;
-
-	hp = precsize_aton(&cp);
-
-	while (!isspace(*cp) && (cp < maxcp))	/* if trailing garbage or m */
-		cp++;
-
-	while (isspace(*cp) && (cp < maxcp))
-		cp++;
-
-	if (cp >= maxcp)
-		goto defaults;
-
-	vp = precsize_aton(&cp);
-
- defaults:
-
-	bcp = binary;
-	*bcp++ = (u_int8_t) 0;	/* version byte */
-	*bcp++ = siz;
-	*bcp++ = hp;
-	*bcp++ = vp;
-	PUTLONG(latit,bcp);
-	PUTLONG(longit,bcp);
-	PUTLONG(alt,bcp);
-    
-	return (16);		/* size of RR in octets */
-}
-
-/* takes an on-the-wire LOC RR and formats it in a human readable format. */
-const char *
-loc_ntoa(binary, ascii)
-	const u_char *binary;
-	char *ascii;
-{
-	static char *error = "?";
-	static char tmpbuf[sizeof
-"1000 60 60.000 N 1000 60 60.000 W -12345678.00m 90000000.00m 90000000.00m 90000000.00m"];
-	const u_char *cp = binary;
-
-	int latdeg, latmin, latsec, latsecfrac;
-	int longdeg, longmin, longsec, longsecfrac;
-	char northsouth, eastwest;
-	int altmeters, altfrac, altsign;
-
-	const u_int32_t referencealt = 100000 * 100;
-
-	int32_t latval, longval, altval;
-	u_int32_t templ;
-	u_int8_t sizeval, hpval, vpval, versionval;
-    
-	char *sizestr, *hpstr, *vpstr;
-
-	versionval = *cp++;
-
-	if (ascii == NULL)
-		ascii = tmpbuf;
-
-	if (versionval) {
-		(void) sprintf(ascii, "; error: unknown LOC RR version");
-		return (ascii);
-	}
-
-	sizeval = *cp++;
-
-	hpval = *cp++;
-	vpval = *cp++;
-
-	GETLONG(templ, cp);
-	latval = (templ - ((unsigned)1<<31));
-
-	GETLONG(templ, cp);
-	longval = (templ - ((unsigned)1<<31));
-
-	GETLONG(templ, cp);
-	if (templ < referencealt) { /* below WGS 84 spheroid */
-		altval = referencealt - templ;
-		altsign = -1;
-	} else {
-		altval = templ - referencealt;
-		altsign = 1;
-	}
-
-	if (latval < 0) {
-		northsouth = 'S';
-		latval = -latval;
-	} else
-		northsouth = 'N';
-
-	latsecfrac = latval % 1000;
-	latval = latval / 1000;
-	latsec = latval % 60;
-	latval = latval / 60;
-	latmin = latval % 60;
-	latval = latval / 60;
-	latdeg = latval;
-
-	if (longval < 0) {
-		eastwest = 'W';
-		longval = -longval;
-	} else
-		eastwest = 'E';
-
-	longsecfrac = longval % 1000;
-	longval = longval / 1000;
-	longsec = longval % 60;
-	longval = longval / 60;
-	longmin = longval % 60;
-	longval = longval / 60;
-	longdeg = longval;
-
-	altfrac = altval % 100;
-	altmeters = (altval / 100) * altsign;
-
-	if ((sizestr = strdup(precsize_ntoa(sizeval))) == NULL)
-		sizestr = error;
-	if ((hpstr = strdup(precsize_ntoa(hpval))) == NULL)
-		hpstr = error;
-	if ((vpstr = strdup(precsize_ntoa(vpval))) == NULL)
-		vpstr = error;
-
-	sprintf(ascii,
-	      "%d %.2d %.2d.%.3d %c %d %.2d %.2d.%.3d %c %d.%.2dm %sm %sm %sm",
-		latdeg, latmin, latsec, latsecfrac, northsouth,
-		longdeg, longmin, longsec, longsecfrac, eastwest,
-		altmeters, altfrac, sizestr, hpstr, vpstr);
-
-	if (sizestr != error)
-		free(sizestr);
-	if (hpstr != error)
-		free(hpstr);
-	if (vpstr != error)
-		free(vpstr);
-
-	return (ascii);
-}
-
-
-/* Return the number of DNS hierarchy levels in the name. */
-int
-dn_count_labels(const char *name) {
-	int i, len, count;
-
-	len = strlen(name);
-	for (i = 0, count = 0; i < len; i++) {
-		/* XXX need to check for \. or use named's nlabels(). */
-		if (name[i] == '.')
-			count++;
-	}
-
-	/* don't count initial wildcard */
-	if (name[0] == '*')
-		if (count)
-			count--;
-
-	/* don't count the null label for root. */
-	/* if terminating '.' not found, must adjust */
-	/* count to include last label */
-	if (len > 0 && name[len-1] != '.')
-		count++;
-	return (count);
-}
-
-
-/* 
- * Make dates expressed in seconds-since-Jan-1-1970 easy to read.  
- * SIG records are required to be printed like this, by the Secure DNS RFC.
- */
-char *
-p_secstodate (u_long secs) {
-	/* XXX nonreentrant */
-	static char output[15];		/* YYYYMMDDHHMMSS and null */
-	time_t clock = secs;
-	struct tm *time;
-	
-#ifdef HAVE_TIME_R
-	gmtime_r(&clock, &time);
-#else
-	time = gmtime(&clock);
-#endif
-	time->tm_year += 1900;
-	time->tm_mon += 1;
-	sprintf(output, "%04d%02d%02d%02d%02d%02d",
-		time->tm_year, time->tm_mon, time->tm_mday,
-		time->tm_hour, time->tm_min, time->tm_sec);
-	return (output);
-}
diff --git a/contrib/bind/lib/resolv/res_debug.h b/contrib/bind/lib/resolv/res_debug.h
deleted file mode 100644
index 4a0aa99ab48f3..0000000000000
--- a/contrib/bind/lib/resolv/res_debug.h
+++ /dev/null
@@ -1,34 +0,0 @@
-/*
- * Copyright (c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef _RES_DEBUG_H_
-#define _RES_DEBUG_H_
-
-#ifndef DEBUG
-#   define Dprint(cond, args) /*empty*/
-#   define DprintQ(cond, args, query, size) /*empty*/
-#   define Aerror(statp, file, string, error, address) /*empty*/
-#   define Perror(statp, file, string, error) /*empty*/
-#else
-#   define Dprint(cond, args) if (cond) {fprintf args;} else {}
-#   define DprintQ(cond, args, query, size) if (cond) {\
-			fprintf args;\
-			res_pquery(statp, query, size, stdout);\
-		} else {}
-#endif
-
-#endif /* _RES_DEBUG_H_ */ 
diff --git a/contrib/bind/lib/resolv/res_findzonecut.c b/contrib/bind/lib/resolv/res_findzonecut.c
deleted file mode 100644
index e65faa1f767ad..0000000000000
--- a/contrib/bind/lib/resolv/res_findzonecut.c
+++ /dev/null
@@ -1,601 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: res_findzonecut.c,v 8.9 1999/12/21 09:33:34 cyarnell Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/* Import. */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <limits.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdarg.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/list.h>
-
-#include "port_after.h"
-
-/* Data structures. */
-
-typedef struct rr_a {
-	LINK(struct rr_a)	link;
-	struct in_addr		addr;
-} rr_a;
-typedef LIST(rr_a) rrset_a;
-
-typedef struct rr_ns {
-	LINK(struct rr_ns)	link;
-	const char *		name;
-	rrset_a			addrs;
-} rr_ns;
-typedef LIST(rr_ns) rrset_ns;
-
-/* Forward. */
-
-static int	satisfy(res_state,
-			const char *, rrset_ns *, struct in_addr *, int);
-static int	add_addrs(res_state, rr_ns *, struct in_addr *, int);
-static int	get_soa(res_state, const char *, ns_class,
-			char *, size_t, char *, size_t,
-			rrset_ns *);
-static int	get_ns(res_state, const char *, ns_class, rrset_ns *);
-static int	get_glue(res_state, ns_class, rrset_ns *);
-static int	save_ns(res_state, ns_msg *, ns_sect,
-			const char *, ns_class, rrset_ns *);
-static int	save_a(res_state, ns_msg *, ns_sect,
-		       const char *, ns_class, rrset_a *);
-static void	free_nsrrset(rrset_ns *);
-static void	free_nsrr(rrset_ns *, rr_ns *);
-static rr_ns *	find_ns(rrset_ns *, const char *);
-static int	do_query(res_state, const char *, ns_class, ns_type,
-			 u_char *, ns_msg *);
-static void	dprintf(const char *, ...);
-
-/* Macros. */
-
-#define DPRINTF(x) do {\
-		int save_errno = errno; \
-		if ((statp->options & RES_DEBUG) != 0) dprintf x; \
-		errno = save_errno; \
-	} while (0)
-
-/* Public. */
-
-/*
- * int
- * res_findzonecut(res, dname, class, zname, zsize, addrs, naddrs)
- *	find enclosing zone for a <dname,class>, and some server addresses
- * parameters:
- *	res - resolver context to work within (is modified)
- *	dname - domain name whose enclosing zone is desired
- *	class - class of dname (and its enclosing zone)
- *	zname - found zone name
- *	zsize - allocated size of zname
- *	addrs - found server addresses
- *	naddrs - max number of addrs
- * return values:
- *	< 0 - an error occurred (check errno)
- *	= 0 - zname is now valid, but addrs[] wasn't changed
- *	> 0 - zname is now valid, and return value is number of addrs[] found
- * notes:
- *	this function calls res_nsend() which means it depends on correctly
- *	functioning recursive nameservers (usually defined in /etc/resolv.conf
- *	or its local equivilent).
- *
- *	we start by asking for an SOA<dname,class>.  if we get one as an
- *	answer, that just means <dname,class> is a zone top, which is fine.
- *	more than likely we'll be told to go pound sand, in the form of a
- *	negative answer.
- *
- *	note that we are not prepared to deal with referrals since that would
- *	only come from authority servers and our correctly functioning local
- *	recursive server would have followed the referral and got us something
- *	more definite.
- *
- *	if the authority section contains an SOA, this SOA should also be the
- *	closest enclosing zone, since any intermediary zone cuts would've been
- *	returned as referrals and dealt with by our correctly functioning local
- *	recursive name server.  but an SOA in the authority section should NOT
- *	match our dname (since that would have been returned in the answer
- *	section).  an authority section SOA has to be "above" our dname.
- *
- *	we cannot fail to find an SOA in this way.  ultimately we'll return
- *	a zname indicating the root zone if that's the closest enclosing zone.
- *	however, since authority section SOA's were once optional, it's
- *	possible that we'll have to go hunting for the enclosing SOA by
- *	ripping labels off the front of our dname -- this is known as "doing
- *	it the hard way."
- *
- *	ultimately we want some server addresses, which are ideally the ones
- *	pertaining to the SOA.MNAME, but only if there is a matching NS RR.
- *	so the second phase (after we find an SOA) is to go looking for the
- *	NS RRset for that SOA's zone.
- *
- *	no answer section processed by this code is allowed to contain CNAME
- *	or DNAME RR's.  for the SOA query this means we strip a label and
- *	keep going.  for the NS and A queries this means we just give up.
- */
-
-int
-res_findzonecut(res_state statp, const char *dname, ns_class class, int opts,
-		char *zname, size_t zsize, struct in_addr *addrs, int naddrs)
-{
-	char mname[NS_MAXDNAME];
-	u_long save_pfcode;
-	rrset_ns nsrrs;
-	int n;
-
-	DPRINTF(("START dname='%s' class=%s, zsize=%ld, naddrs=%d",
-		 dname, p_class(class), (long)zsize, naddrs));
-	save_pfcode = statp->pfcode;
-	statp->pfcode |= RES_PRF_HEAD2 | RES_PRF_HEAD1 | RES_PRF_HEADX |
-			 RES_PRF_QUES | RES_PRF_ANS |
-			 RES_PRF_AUTH | RES_PRF_ADD;
-	INIT_LIST(nsrrs);
-
-	DPRINTF(("get the soa, and see if it has enough glue"));
-	if ((n = get_soa(statp, dname, class, zname, zsize,
-			 mname, sizeof mname, &nsrrs)) < 0 ||
-	    ((opts & RES_EXHAUSTIVE) == 0 &&
-	     (n = satisfy(statp, mname, &nsrrs, addrs, naddrs)) > 0))
-		goto done;
-
-	DPRINTF(("get the ns rrset and see if it has enough glue"));
-	if ((n = get_ns(statp, zname, class, &nsrrs)) < 0 ||
-	    ((opts & RES_EXHAUSTIVE) == 0 &&
-	     (n = satisfy(statp, mname, &nsrrs, addrs, naddrs)) > 0))
-		goto done;
-
-	DPRINTF(("get the missing glue and see if it's finally enough"));
-	if ((n = get_glue(statp, class, &nsrrs)) >= 0)
-		n = satisfy(statp, mname, &nsrrs, addrs, naddrs);
-
- done:
-	DPRINTF(("FINISH n=%d (%s)", n, (n < 0) ? strerror(errno) : "OK"));
-	free_nsrrset(&nsrrs);
-	statp->pfcode = save_pfcode;
-	return (n);
-}
-
-/* Private. */
-
-static int
-satisfy(res_state statp,
-	const char *mname, rrset_ns *nsrrsp, struct in_addr *addrs, int naddrs)
-{
-	rr_ns *nsrr;
-	int n, x;
-
-	n = 0;
-	nsrr = find_ns(nsrrsp, mname);
-	if (nsrr != NULL) {
-		x = add_addrs(statp, nsrr, addrs, naddrs);
-		addrs += x;
-		naddrs -= x;
-		n += x;
-	}
-	for (nsrr = HEAD(*nsrrsp);
-	     nsrr != NULL && naddrs > 0;
-	     nsrr = NEXT(nsrr, link))
-		if (ns_samename(nsrr->name, mname) != 1) {
-			x = add_addrs(statp, nsrr, addrs, naddrs);
-			addrs += x;
-			naddrs -= x;
-			n += x;
-		}
-	DPRINTF(("satisfy(%s): %d", mname, n));
-	return (n);
-}
-
-static int
-add_addrs(res_state statp, rr_ns *nsrr, struct in_addr *addrs, int naddrs) {
-	rr_a *arr;
-	int n = 0;
-
-	for (arr = HEAD(nsrr->addrs); arr != NULL; arr = NEXT(arr, link)) {
-		if (naddrs <= 0)
-			return (0);
-		*addrs++ = arr->addr;
-		naddrs--;
-		n++;
-	}
-	DPRINTF(("add_addrs: %d", n));
-	return (n);
-}
-
-static int
-get_soa(res_state statp, const char *dname, ns_class class,
-	char *zname, size_t zsize, char *mname, size_t msize,
-	rrset_ns *nsrrsp)
-{
-	char tname[NS_MAXDNAME];
-	u_char resp[NS_PACKETSZ];
-	int n, i, ancount, nscount;
-	ns_sect sect;
-	ns_msg msg;
-	u_int rcode;
-
-	/*
-	 * Find closest enclosing SOA, even if it's for the root zone.
-	 */
-
-	/* First canonicalize dname (exactly one unescaped trailing "."). */
-	if (ns_makecanon(dname, tname, sizeof tname) < 0)
-		return (-1);
-	dname = tname;
-
-	/* Now grovel the subdomains, hunting for an SOA answer or auth. */
-	for (;;) {
-		/* Leading or inter-label '.' are skipped here. */
-		while (*dname == '.')
-			dname++;
-
-		/* Is there an SOA? */
-		n = do_query(statp, dname, class, ns_t_soa, resp, &msg);
-		if (n < 0) {
-			DPRINTF(("get_soa: do_query('%s', %s) failed (%d)",
-				 dname, p_class(class), n));
-			return (-1);
-		}
-		if (n > 0) {
-			DPRINTF(("get_soa: CNAME or DNAME found"));
-			sect = ns_s_max, n = 0;
-		} else {
-			rcode = ns_msg_getflag(msg, ns_f_rcode);
-			ancount = ns_msg_count(msg, ns_s_an);
-			nscount = ns_msg_count(msg, ns_s_ns);
-			if (ancount > 0 && rcode == ns_r_noerror)
-				sect = ns_s_an, n = ancount;
-			else if (nscount > 0)
-				sect = ns_s_ns, n = nscount;
-			else
-				sect = ns_s_max, n = 0;
-		}
-		for (i = 0; i < n; i++) {
-			const char *t;
-			const u_char *rdata;
-			int rdlen;
-			ns_rr rr;
-
-			if (ns_parserr(&msg, sect, i, &rr) < 0) {
-				DPRINTF(("get_soa: ns_parserr(%s, %d) failed",
-					 p_section(sect, ns_o_query), i));
-				return (-1);
-			}
-			if (ns_rr_type(rr) == ns_t_cname ||
-			    ns_rr_type(rr) == ns_t_dname)
-				break;
-			if (ns_rr_type(rr) != ns_t_soa ||
-			    ns_rr_class(rr) != class)
-				continue;
-			t = ns_rr_name(rr);
-			switch (sect) {
-			case ns_s_an:
-				if (ns_samedomain(dname, t) == 0) {
-					DPRINTF(("get_soa: ns_samedomain('%s', '%s') == 0",
-						 dname, t));
-					errno = EPROTOTYPE;
-					return (-1);
-				}
-				break;
-			case ns_s_ns:
-				if (ns_samename(dname, t) == 1 ||
-				    ns_samedomain(dname, t) == 0) {
-					DPRINTF(("get_soa: ns_samename() || !ns_samedomain('%s', '%s')",
-						 dname, t));
-					errno = EPROTOTYPE;
-					return (-1);
-				}
-				break;
-			default:
-				abort();
-			}
-			if (strlen(t) + 1 > zsize) {
-				DPRINTF(("get_soa: zname(%d) too small (%d)",
-					 zsize, strlen(t) + 1));
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			strcpy(zname, t);
-			rdata = ns_rr_rdata(rr);
-			rdlen = ns_rr_rdlen(rr);
-			if (ns_name_uncompress(resp, ns_msg_end(msg), rdata,
-					       mname, msize) < 0) {
-				DPRINTF(("get_soa: ns_name_uncompress failed"));
-				return (-1);
-			}
-			if (save_ns(statp, &msg, ns_s_ns,
-				    zname, class, nsrrsp) < 0) {
-				DPRINTF(("get_soa: save_ns failed"));
-				return (-1);
-			}
-			return (0);
-		}
-
-		/* If we're out of labels, then not even "." has an SOA! */
-		if (*dname == '\0')
-			break;
-
-		/* Find label-terminating "."; top of loop will skip it. */
-		while (*dname != '.') {
-			if (*dname == '\\')
-				if (*++dname == '\0') {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-			dname++;
-		}
-	}
-	DPRINTF(("get_soa: out of labels"));
-	errno = EDESTADDRREQ;
-	return (-1);
-}
-
-static int
-get_ns(res_state statp, const char *zname, ns_class class, rrset_ns *nsrrsp) {
-	u_char resp[NS_PACKETSZ];
-	ns_msg msg;
-	int n;
-
-	/* Go and get the NS RRs for this zone. */
-	n = do_query(statp, zname, class, ns_t_ns, resp, &msg);
-	if (n != 0) {
-		DPRINTF(("get_ns: do_query('zname', %s) failed (%d)",
-			 zname, p_class(class), n));
-		return (-1);
-	}
-
-	/* Remember the NS RRs and associated A RRs that came back. */
-	if (save_ns(statp, &msg, ns_s_an, zname, class, nsrrsp) < 0) {
-		DPRINTF(("get_ns save_ns('%s', %s) failed",
-			 zname, p_class(class)));
-		return (-1);
-	}
-
-	return (0);
-}
-
-static int
-get_glue(res_state statp, ns_class class, rrset_ns *nsrrsp) {
-	rr_ns *nsrr, *nsrr_n;
-
-	/* Go and get the A RRs for each empty NS RR on our list. */
-	for (nsrr = HEAD(*nsrrsp); nsrr != NULL; nsrr = nsrr_n) {
-		u_char resp[NS_PACKETSZ];
-		ns_msg msg;
-		int n;
-
-		nsrr_n = NEXT(nsrr, link);
-
-		if (EMPTY(nsrr->addrs)) {
-			n = do_query(statp, nsrr->name, class, ns_t_a,
-				     resp, &msg);
-			if (n < 0) {
-				DPRINTF(("get_glue: do_query('%s', %s') failed",
-					 nsrr->name, p_class(class)));
-				return (-1);
-			}
-			if (n > 0) {
-				DPRINTF((
-			"get_glue: do_query('%s', %s') CNAME or DNAME found",
-					 nsrr->name, p_class(class)));
-			}
-			if (save_a(statp, &msg, ns_s_an, nsrr->name, class,
-				   &nsrr->addrs) < 0) {
-				DPRINTF(("get_glue: save_r('%s', %s) failed",
-					 nsrr->name, p_class(class)));
-				return (-1);
-			}
-			/* If it's still empty, it's just chaff. */
-			if (EMPTY(nsrr->addrs)) {
-				DPRINTF(("get_glue: removing empty '%s' NS",
-					 nsrr->name));
-				free_nsrr(nsrrsp, nsrr);
-			}
-		}
-	}
-	return (0);
-}
-
-static int
-save_ns(res_state statp, ns_msg *msg, ns_sect sect,
-	const char *owner, ns_class class,
-	rrset_ns *nsrrsp)
-{
-	int i;
-
-	for (i = 0; i < ns_msg_count(*msg, sect); i++) {
-		char tname[MAXDNAME];
-		const u_char *rdata;
-		rr_ns *nsrr;
-		ns_rr rr;
-		int rdlen;
-
-		if (ns_parserr(msg, sect, i, &rr) < 0) {
-			DPRINTF(("save_ns: ns_parserr(%s, %d) failed",
-				 p_section(sect, ns_o_query), i));
-			return (-1);
-		}
-		if (ns_rr_type(rr) != ns_t_ns ||
-		    ns_rr_class(rr) != class ||
-		    ns_samename(ns_rr_name(rr), owner) != 1)
-			continue;
-		nsrr = find_ns(nsrrsp, ns_rr_name(rr));
-		if (nsrr == NULL) {
-			nsrr = malloc(sizeof *nsrr);
-			if (nsrr == NULL) {
-				DPRINTF(("save_ns: malloc failed"));
-				return (-1);
-			}
-			rdata = ns_rr_rdata(rr);
-			rdlen = ns_rr_rdlen(rr);
-			if (ns_name_uncompress(ns_msg_base(*msg),
-					       ns_msg_end(*msg), rdata,
-					       tname, sizeof tname) < 0) {
-				DPRINTF(("save_ns: ns_name_uncompress failed"));
-				free(nsrr);
-				return (-1);
-			}
-			nsrr->name = strdup(tname);
-			if (nsrr->name == NULL) {
-				DPRINTF(("save_ns: strdup failed"));
-				free(nsrr);
-				return (-1);
-			}
-			INIT_LIST(nsrr->addrs);
-			APPEND(*nsrrsp, nsrr, link);
-		}
-		if (save_a(statp, msg, ns_s_ar,
-			   nsrr->name, class, &nsrr->addrs) < 0) {
-			DPRINTF(("save_ns: save_r('%s', %s) failed",
-				 nsrr->name, p_class(class)));
-			return (-1);
-		}
-	}
-	return (0);
-}
-
-static int
-save_a(res_state statp, ns_msg *msg, ns_sect sect,
-       const char *owner, ns_class class,
-       rrset_a *arrsp)
-{
-	int i;
-
-	for (i = 0; i < ns_msg_count(*msg, sect); i++) {
-		ns_rr rr;
-		rr_a *arr;
-
-		if (ns_parserr(msg, sect, i, &rr) < 0) {
-			DPRINTF(("save_a: ns_parserr(%s, %d) failed",
-				 p_section(sect, ns_o_query), i));
-			return (-1);
-		}
-		if (ns_rr_type(rr) != ns_t_a ||
-		    ns_rr_class(rr) != class ||
-		    ns_samename(ns_rr_name(rr), owner) != 1 ||
-		    ns_rr_rdlen(rr) != NS_INADDRSZ)
-			continue;
-		arr = malloc(sizeof *arr);
-		if (arr == NULL) {
-			DPRINTF(("save_a: malloc failed"));
-			return (-1);
-		}
-		memcpy(&arr->addr, ns_rr_rdata(rr), NS_INADDRSZ);
-		APPEND(*arrsp, arr, link);
-	}
-	return (0);
-}
-
-static void
-free_nsrrset(rrset_ns *nsrrsp) {
-	rr_ns *nsrr;
-
-	while ((nsrr = HEAD(*nsrrsp)) != NULL)
-		free_nsrr(nsrrsp, nsrr);
-}
-
-static void
-free_nsrr(rrset_ns *nsrrsp, rr_ns *nsrr) {
-	rr_a *arr;
-
-	while ((arr = HEAD(nsrr->addrs)) != NULL) {
-		UNLINK(nsrr->addrs, arr, link);
-		free(arr);
-	}
-	free((char *)nsrr->name);
-	UNLINK(*nsrrsp, nsrr, link);
-	free(nsrr);
-}
-
-static rr_ns *
-find_ns(rrset_ns *nsrrsp, const char *dname) {
-	rr_ns *nsrr;
-
-	for (nsrr = HEAD(*nsrrsp); nsrr != NULL; nsrr = NEXT(nsrr, link))
-		if (ns_samename(nsrr->name, dname) == 1)
-			return (nsrr);
-	return (NULL);
-}
-
-static int
-do_query(res_state statp, const char *dname, ns_class class, ns_type qtype,
-	 u_char *resp, ns_msg *msg)
-{
-	u_char req[NS_PACKETSZ];
-	int i, n;
-
-	n = res_nmkquery(statp, ns_o_query, dname, class, qtype,
-			 NULL, 0, NULL, req, NS_PACKETSZ);
-	if (n < 0) {
-		DPRINTF(("do_query: res_nmkquery failed"));
-		return (-1);
-	}
-	n = res_nsend(statp, req, n, resp, NS_PACKETSZ);
-	if (n < 0) {
-		DPRINTF(("do_query: res_nsend failed"));
-		return (-1);
-	}
-	if (n == 0) {
-		DPRINTF(("do_query: res_nsend returned 0"));
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	if (ns_initparse(resp, n, msg) < 0) {
-		DPRINTF(("do_query: ns_initparse failed"));
-		return (-1);
-	}
-	n = 0;
-	for (i = 0; i < ns_msg_count(*msg, ns_s_an); i++) {
-		ns_rr rr;
-
-		if (ns_parserr(msg, ns_s_an, i, &rr) < 0) {
-			DPRINTF(("do_query: ns_parserr failed"));
-			return (-1);
-		}
-		n += (ns_rr_class(rr) == class &&
-		      (ns_rr_type(rr) == ns_t_cname ||
-		       ns_rr_type(rr) == ns_t_dname));
-	}
-	return (n);
-}
-
-static void
-dprintf(const char *fmt, ...) {
-	va_list ap;
-
-	va_start(ap, fmt);
-	fputs(";; res_findzonecut: ", stderr);
-	vfprintf(stderr, fmt, ap);
-	fputc('\n', stderr);
-	va_end(ap);
-}
diff --git a/contrib/bind/lib/resolv/res_init.c b/contrib/bind/lib/resolv/res_init.c
deleted file mode 100644
index 12d9969ab344a..0000000000000
--- a/contrib/bind/lib/resolv/res_init.c
+++ /dev/null
@@ -1,502 +0,0 @@
-/*
- * Copyright (c) 1985, 1989, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)res_init.c	8.1 (Berkeley) 6/7/93";
-static const char rcsid[] = "$Id: res_init.c,v 8.16 2000/05/09 07:10:12 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include "port_after.h"
-
-/* Options.  Should all be left alone. */
-#define RESOLVSORT
-#define DEBUG
-
-static void res_setoptions __P((res_state, const char *, const char *));
-
-#ifdef RESOLVSORT
-static const char sort_mask[] = "/&";
-#define ISSORTMASK(ch) (strchr(sort_mask, ch) != NULL)
-static u_int32_t net_mask __P((struct in_addr));
-#endif
-
-#if !defined(isascii)	/* XXX - could be a function */
-# define isascii(c) (!(c & 0200))
-#endif
-
-/*
- * Resolver state default settings.
- */
-
-/*
- * Set up default settings.  If the configuration file exist, the values
- * there will have precedence.  Otherwise, the server address is set to
- * INADDR_ANY and the default domain name comes from the gethostname().
- *
- * An interrim version of this code (BIND 4.9, pre-4.4BSD) used 127.0.0.1
- * rather than INADDR_ANY ("0.0.0.0") as the default name server address
- * since it was noted that INADDR_ANY actually meant ``the first interface
- * you "ifconfig"'d at boot time'' and if this was a SLIP or PPP interface,
- * it had to be "up" in order for you to reach your own name server.  It
- * was later decided that since the recommended practice is to always 
- * install local static routes through 127.0.0.1 for all your network
- * interfaces, that we could solve this problem without a code change.
- *
- * The configuration file should always be used, since it is the only way
- * to specify a default domain.  If you are running a server on your local
- * machine, you should say "nameserver 0.0.0.0" or "nameserver 127.0.0.1"
- * in the configuration file.
- *
- * Return 0 if completes successfully, -1 on error
- */
-int
-res_ninit(res_state statp) {
-	extern int __res_vinit(res_state, int);
-
-	return (__res_vinit(statp, 0));
-}
-
-/* This function has to be reachable by res_data.c but not publically. */
-int
-__res_vinit(res_state statp, int preinit) {
-	register FILE *fp;
-	register char *cp, **pp;
-	register int n;
-	char buf[BUFSIZ];
-	int nserv = 0;    /* number of nameserver records read from file */
-	int haveenv = 0;
-	int havesearch = 0;
-#ifdef RESOLVSORT
-	int nsort = 0;
-	char *net;
-#endif
-	int dots;
-
-	if (!preinit) {
-		statp->retrans = RES_TIMEOUT;
-		statp->retry = RES_DFLRETRY;
-		statp->options = RES_DEFAULT;
-		statp->id = res_randomid();
-	}
-
-#ifdef USELOOPBACK
-	statp->nsaddr.sin_addr = inet_makeaddr(IN_LOOPBACKNET, 1);
-#else
-	statp->nsaddr.sin_addr.s_addr = INADDR_ANY;
-#endif
-	statp->nsaddr.sin_family = AF_INET;
-	statp->nsaddr.sin_port = htons(NAMESERVER_PORT);
-	statp->nscount = 1;
-	statp->ndots = 1;
-	statp->pfcode = 0;
-	statp->_vcsock = -1;
-	statp->_flags = 0;
-	statp->qhook = NULL;
-	statp->rhook = NULL;
-	statp->_u._ext.nscount = 0;
-
-	/* Allow user to override the local domain definition */
-	if ((cp = getenv("LOCALDOMAIN")) != NULL) {
-		(void)strncpy(statp->defdname, cp, sizeof(statp->defdname) - 1);
-		statp->defdname[sizeof(statp->defdname) - 1] = '\0';
-		haveenv++;
-
-		/*
-		 * Set search list to be blank-separated strings
-		 * from rest of env value.  Permits users of LOCALDOMAIN
-		 * to still have a search list, and anyone to set the
-		 * one that they want to use as an individual (even more
-		 * important now that the rfc1535 stuff restricts searches)
-		 */
-		cp = statp->defdname;
-		pp = statp->dnsrch;
-		*pp++ = cp;
-		for (n = 0; *cp && pp < statp->dnsrch + MAXDNSRCH; cp++) {
-			if (*cp == '\n')	/* silly backwards compat */
-				break;
-			else if (*cp == ' ' || *cp == '\t') {
-				*cp = 0;
-				n = 1;
-			} else if (n) {
-				*pp++ = cp;
-				n = 0;
-				havesearch = 1;
-			}
-		}
-		/* null terminate last domain if there are excess */
-		while (*cp != '\0' && *cp != ' ' && *cp != '\t' && *cp != '\n')
-			cp++;
-		*cp = '\0';
-		*pp++ = 0;
-	}
-
-#define	MATCH(line, name) \
-	(!strncmp(line, name, sizeof(name) - 1) && \
-	(line[sizeof(name) - 1] == ' ' || \
-	 line[sizeof(name) - 1] == '\t'))
-
-	if ((fp = fopen(_PATH_RESCONF, "r")) != NULL) {
-	    /* read the config file */
-	    while (fgets(buf, sizeof(buf), fp) != NULL) {
-		/* skip comments */
-		if (*buf == ';' || *buf == '#')
-			continue;
-		/* read default domain name */
-		if (MATCH(buf, "domain")) {
-		    if (haveenv)	/* skip if have from environ */
-			    continue;
-		    cp = buf + sizeof("domain") - 1;
-		    while (*cp == ' ' || *cp == '\t')
-			    cp++;
-		    if ((*cp == '\0') || (*cp == '\n'))
-			    continue;
-		    strncpy(statp->defdname, cp, sizeof(statp->defdname) - 1);
-		    statp->defdname[sizeof(statp->defdname) - 1] = '\0';
-		    if ((cp = strpbrk(statp->defdname, " \t\n")) != NULL)
-			    *cp = '\0';
-		    havesearch = 0;
-		    continue;
-		}
-		/* set search list */
-		if (MATCH(buf, "search")) {
-		    if (haveenv)	/* skip if have from environ */
-			    continue;
-		    cp = buf + sizeof("search") - 1;
-		    while (*cp == ' ' || *cp == '\t')
-			    cp++;
-		    if ((*cp == '\0') || (*cp == '\n'))
-			    continue;
-		    strncpy(statp->defdname, cp, sizeof(statp->defdname) - 1);
-		    statp->defdname[sizeof(statp->defdname) - 1] = '\0';
-		    if ((cp = strchr(statp->defdname, '\n')) != NULL)
-			    *cp = '\0';
-		    /*
-		     * Set search list to be blank-separated strings
-		     * on rest of line.
-		     */
-		    cp = statp->defdname;
-		    pp = statp->dnsrch;
-		    *pp++ = cp;
-		    for (n = 0; *cp && pp < statp->dnsrch + MAXDNSRCH; cp++) {
-			    if (*cp == ' ' || *cp == '\t') {
-				    *cp = 0;
-				    n = 1;
-			    } else if (n) {
-				    *pp++ = cp;
-				    n = 0;
-			    }
-		    }
-		    /* null terminate last domain if there are excess */
-		    while (*cp != '\0' && *cp != ' ' && *cp != '\t')
-			    cp++;
-		    *cp = '\0';
-		    *pp++ = 0;
-		    havesearch = 1;
-		    continue;
-		}
-		/* read nameservers to query */
-		if (MATCH(buf, "nameserver") && nserv < MAXNS) {
-		    struct in_addr a;
-
-		    cp = buf + sizeof("nameserver") - 1;
-		    while (*cp == ' ' || *cp == '\t')
-			cp++;
-		    if ((*cp != '\0') && (*cp != '\n') && inet_aton(cp, &a)) {
-			statp->nsaddr_list[nserv].sin_addr = a;
-			statp->nsaddr_list[nserv].sin_family = AF_INET;
-			statp->nsaddr_list[nserv].sin_port =
-				htons(NAMESERVER_PORT);
-			nserv++;
-		    }
-		    continue;
-		}
-#ifdef RESOLVSORT
-		if (MATCH(buf, "sortlist")) {
-		    struct in_addr a;
-
-		    cp = buf + sizeof("sortlist") - 1;
-		    while (nsort < MAXRESOLVSORT) {
-			while (*cp == ' ' || *cp == '\t')
-			    cp++;
-			if (*cp == '\0' || *cp == '\n' || *cp == ';')
-			    break;
-			net = cp;
-			while (*cp && !ISSORTMASK(*cp) && *cp != ';' &&
-			       isascii(*cp) && !isspace(*cp))
-				cp++;
-			n = *cp;
-			*cp = 0;
-			if (inet_aton(net, &a)) {
-			    statp->sort_list[nsort].addr = a;
-			    if (ISSORTMASK(n)) {
-				*cp++ = n;
-				net = cp;
-				while (*cp && *cp != ';' &&
-					isascii(*cp) && !isspace(*cp))
-				    cp++;
-				n = *cp;
-				*cp = 0;
-				if (inet_aton(net, &a)) {
-				    statp->sort_list[nsort].mask = a.s_addr;
-				} else {
-				    statp->sort_list[nsort].mask = 
-					net_mask(statp->sort_list[nsort].addr);
-				}
-			    } else {
-				statp->sort_list[nsort].mask = 
-				    net_mask(statp->sort_list[nsort].addr);
-			    }
-			    nsort++;
-			}
-			*cp = n;
-		    }
-		    continue;
-		}
-#endif
-		if (MATCH(buf, "options")) {
-		    res_setoptions(statp, buf + sizeof("options") - 1, "conf");
-		    continue;
-		}
-	    }
-	    if (nserv > 1) 
-		statp->nscount = nserv;
-#ifdef RESOLVSORT
-	    statp->nsort = nsort;
-#endif
-	    (void) fclose(fp);
-	}
-	if (statp->defdname[0] == 0 &&
-	    gethostname(buf, sizeof(statp->defdname) - 1) == 0 &&
-	    (cp = strchr(buf, '.')) != NULL)
-		strcpy(statp->defdname, cp + 1);
-
-	/* find components of local domain that might be searched */
-	if (havesearch == 0) {
-		pp = statp->dnsrch;
-		*pp++ = statp->defdname;
-		*pp = NULL;
-
-		dots = 0;
-		for (cp = statp->defdname; *cp; cp++)
-			dots += (*cp == '.');
-
-		cp = statp->defdname;
-		while (pp < statp->dnsrch + MAXDFLSRCH) {
-			if (dots < LOCALDOMAINPARTS)
-				break;
-			cp = strchr(cp, '.') + 1;    /* we know there is one */
-			*pp++ = cp;
-			dots--;
-		}
-		*pp = NULL;
-#ifdef DEBUG
-		if (statp->options & RES_DEBUG) {
-			printf(";; res_init()... default dnsrch list:\n");
-			for (pp = statp->dnsrch; *pp; pp++)
-				printf(";;\t%s\n", *pp);
-			printf(";;\t..END..\n");
-		}
-#endif
-	}
-
-	if ((cp = getenv("RES_OPTIONS")) != NULL)
-		res_setoptions(statp, cp, "env");
-	statp->options |= RES_INIT;
-	return (0);
-}
-
-static void
-res_setoptions(res_state statp, const char *options, const char *source) {
-	const char *cp = options;
-	int i;
-
-#ifdef DEBUG
-	if (statp->options & RES_DEBUG)
-		printf(";; res_setoptions(\"%s\", \"%s\")...\n",
-		       options, source);
-#endif
-	while (*cp) {
-		/* skip leading and inner runs of spaces */
-		while (*cp == ' ' || *cp == '\t')
-			cp++;
-		/* search for and process individual options */
-		if (!strncmp(cp, "ndots:", sizeof("ndots:") - 1)) {
-			i = atoi(cp + sizeof("ndots:") - 1);
-			if (i <= RES_MAXNDOTS)
-				statp->ndots = i;
-			else
-				statp->ndots = RES_MAXNDOTS;
-#ifdef DEBUG
-			if (statp->options & RES_DEBUG)
-				printf(";;\tndots=%d\n", statp->ndots);
-#endif
-		} else if (!strncmp(cp, "timeout:", sizeof("timeout:") - 1)) {
-			i = atoi(cp + sizeof("timeout:") - 1);
-			if (i <= RES_MAXRETRANS)
-				statp->retrans = i;
-			else
-				statp->retrans = RES_MAXRETRANS;
-		} else if (!strncmp(cp, "attempts:", sizeof("attempts:") - 1)){
-			i = atoi(cp + sizeof("attempts:") - 1);
-			if (i <= RES_MAXRETRY)
-				statp->retry = i;
-			else
-				statp->retry = RES_MAXRETRY;
-		} else if (!strncmp(cp, "debug", sizeof("debug") - 1)) {
-#ifdef DEBUG
-			if (!(statp->options & RES_DEBUG)) {
-				printf(";; res_setoptions(\"%s\", \"%s\")..\n",
-				       options, source);
-				statp->options |= RES_DEBUG;
-			}
-			printf(";;\tdebug\n");
-#endif
-		} else if (!strncmp(cp, "inet6", sizeof("inet6") - 1)) {
-			statp->options |= RES_USE_INET6;
-		} else if (!strncmp(cp, "rotate", sizeof("rotate") - 1)) {
-			statp->options |= RES_ROTATE;
-		} else if (!strncmp(cp, "no-check-names",
-				    sizeof("no-check-names") - 1)) {
-			statp->options |= RES_NOCHECKNAME;
-		} else {
-			/* XXX - print a warning here? */
-		}
-		/* skip to next run of spaces */
-		while (*cp && *cp != ' ' && *cp != '\t')
-			cp++;
-	}
-}
-
-#ifdef RESOLVSORT
-/* XXX - should really support CIDR which means explicit masks always. */
-static u_int32_t
-net_mask(in)		/* XXX - should really use system's version of this */
-	struct in_addr in;
-{
-	register u_int32_t i = ntohl(in.s_addr);
-
-	if (IN_CLASSA(i))
-		return (htonl(IN_CLASSA_NET));
-	else if (IN_CLASSB(i))
-		return (htonl(IN_CLASSB_NET));
-	return (htonl(IN_CLASSC_NET));
-}
-#endif
-
-u_int
-res_randomid(void) {
-	struct timeval now;
-
-	gettimeofday(&now, NULL);
-	return (0xffff & (now.tv_sec ^ now.tv_usec ^ getpid()));
-}
-
-/*
- * This routine is for closing the socket if a virtual circuit is used and
- * the program wants to close it.  This provides support for endhostent()
- * which expects to close the socket.
- *
- * This routine is not expected to be user visible.
- */
-void
-res_nclose(res_state statp) {
-	int ns;
-
-	if (statp->_vcsock >= 0) { 
-		(void) close(statp->_vcsock);
-		statp->_vcsock = -1;
-		statp->_flags &= ~(RES_F_VC | RES_F_CONN);
-	}
-	for (ns = 0; ns < statp->_u._ext.nscount; ns++) {
-		if (statp->_u._ext.nssocks[ns] != -1) {
-			(void) close(statp->_u._ext.nssocks[ns]);
-			statp->_u._ext.nssocks[ns] = -1;
-		}
-	}
-	statp->_u._ext.nscount = 0;
-}
diff --git a/contrib/bind/lib/resolv/res_mkquery.c b/contrib/bind/lib/resolv/res_mkquery.c
deleted file mode 100644
index 17b1ccf401c89..0000000000000
--- a/contrib/bind/lib/resolv/res_mkquery.c
+++ /dev/null
@@ -1,199 +0,0 @@
-/*
- * Copyright (c) 1985, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)res_mkquery.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: res_mkquery.c,v 8.12 1999/10/13 16:39:40 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <string.h>
-#include "port_after.h"
-
-/* Options.  Leave them on. */
-#define DEBUG
-
-extern const char *_res_opcodes[];
-
-/*
- * Form all types of queries.
- * Returns the size of the result or -1.
- */
-int
-res_nmkquery(res_state statp,
-	     int op,			/* opcode of query */
-	     const char *dname,		/* domain name */
-	     int class, int type,	/* class and type of query */
-	     const u_char *data,	/* resource record data */
-	     int datalen,		/* length of data */
-	     const u_char *newrr_in,	/* new rr for modify or append */
-	     u_char *buf,		/* buffer to put query */
-	     int buflen)		/* size of buffer */
-{
-	register HEADER *hp;
-	register u_char *cp;
-	register int n;
-	u_char *dnptrs[20], **dpp, **lastdnptr;
-
-#ifdef DEBUG
-	if (statp->options & RES_DEBUG)
-		printf(";; res_nmkquery(%s, %s, %s, %s)\n",
-		       _res_opcodes[op], dname, p_class(class), p_type(type));
-#endif
-	/*
-	 * Initialize header fields.
-	 */
-	if ((buf == NULL) || (buflen < HFIXEDSZ))
-		return (-1);
-	memset(buf, 0, HFIXEDSZ);
-	hp = (HEADER *) buf;
-	hp->id = htons(++statp->id);
-	hp->opcode = op;
-	hp->rd = (statp->options & RES_RECURSE) != 0;
-	hp->rcode = NOERROR;
-	cp = buf + HFIXEDSZ;
-	buflen -= HFIXEDSZ;
-	dpp = dnptrs;
-	*dpp++ = buf;
-	*dpp++ = NULL;
-	lastdnptr = dnptrs + sizeof dnptrs / sizeof dnptrs[0];
-	/*
-	 * perform opcode specific processing
-	 */
-	switch (op) {
-	case QUERY:	/*FALLTHROUGH*/
-	case NS_NOTIFY_OP:
-		if ((buflen -= QFIXEDSZ) < 0)
-			return (-1);
-		if ((n = dn_comp(dname, cp, buflen, dnptrs, lastdnptr)) < 0)
-			return (-1);
-		cp += n;
-		buflen -= n;
-		__putshort(type, cp);
-		cp += INT16SZ;
-		__putshort(class, cp);
-		cp += INT16SZ;
-		hp->qdcount = htons(1);
-		if (op == QUERY || data == NULL)
-			break;
-		/*
-		 * Make an additional record for completion domain.
-		 */
-		buflen -= RRFIXEDSZ;
-		n = dn_comp((char *)data, cp, buflen, dnptrs, lastdnptr);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		buflen -= n;
-		__putshort(T_NULL, cp);
-		cp += INT16SZ;
-		__putshort(class, cp);
-		cp += INT16SZ;
-		__putlong(0, cp);
-		cp += INT32SZ;
-		__putshort(0, cp);
-		cp += INT16SZ;
-		hp->arcount = htons(1);
-		break;
-
-	case IQUERY:
-		/*
-		 * Initialize answer section
-		 */
-		if (buflen < 1 + RRFIXEDSZ + datalen)
-			return (-1);
-		*cp++ = '\0';	/* no domain name */
-		__putshort(type, cp);
-		cp += INT16SZ;
-		__putshort(class, cp);
-		cp += INT16SZ;
-		__putlong(0, cp);
-		cp += INT32SZ;
-		__putshort(datalen, cp);
-		cp += INT16SZ;
-		if (datalen) {
-			memcpy(cp, data, datalen);
-			cp += datalen;
-		}
-		hp->ancount = htons(1);
-		break;
-
-	default:
-		return (-1);
-	}
-	return (cp - buf);
-}
diff --git a/contrib/bind/lib/resolv/res_mkupdate.c b/contrib/bind/lib/resolv/res_mkupdate.c
deleted file mode 100644
index 14e1a6020f6b6..0000000000000
--- a/contrib/bind/lib/resolv/res_mkupdate.c
+++ /dev/null
@@ -1,1098 +0,0 @@
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Based on the Dynamic DNS reference implementation by Viraj Bais
- * <viraj_bais@ccm.fm.intel.com>
- */
-
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: res_mkupdate.c,v 1.24 1999/10/13 17:11:32 vixie Exp $";
-#endif /* not lint */
-
-#include "port_before.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <limits.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-#include <ctype.h>
-
-#include "port_after.h"
-
-/* Options.  Leave them on. */
-#define DEBUG
-#define MAXPORT 1024
-
-static int getnum_str(u_char **, u_char *);
-static int gethexnum_str(u_char **, u_char *);
-static int getword_str(char *, int, u_char **, u_char *);
-static int getstr_str(char *, int, u_char **, u_char *);
-
-#define ShrinkBuffer(x)  if ((buflen -= x) < 0) return (-2);
-
-/* Forward. */
-
-int res_protocolnumber(const char *);
-int res_servicenumber(const char *);
-
-/*
- * Form update packets.
- * Returns the size of the resulting packet if no error
- * On error,
- *	returns -1 if error in reading a word/number in rdata
- *		   portion for update packets
- *		-2 if length of buffer passed is insufficient
- *		-3 if zone section is not the first section in
- *		   the linked list, or section order has a problem
- *		-4 on a number overflow
- *		-5 unknown operation or no records
- */
-int
-res_nmkupdate(res_state statp, ns_updrec *rrecp_in, u_char *buf, int buflen) {
-	ns_updrec *rrecp_start = rrecp_in;
-	HEADER *hp;
-	u_char *cp, *sp1, *sp2, *startp, *endp;
-	int n, i, soanum, multiline;
-	ns_updrec *rrecp;
-	struct in_addr ina;
-	struct in6_addr in6a;
-        char buf2[MAXDNAME];
-	u_char buf3[MAXDNAME];
-	int section, numrrs = 0, counts[ns_s_max];
-	u_int16_t rtype, rclass;
-	u_int32_t n1, rttl;
-	u_char *dnptrs[20], **dpp, **lastdnptr;
-	int siglen, keylen, certlen;
-
-	/*
-	 * Initialize header fields.
-	 */
-	if ((buf == NULL) || (buflen < HFIXEDSZ))
-		return (-1);
-	memset(buf, 0, HFIXEDSZ);
-	hp = (HEADER *) buf;
-	hp->id = htons(++statp->id);
-	hp->opcode = ns_o_update;
-	hp->rcode = NOERROR;
-	sp1 = buf + 2*INT16SZ;  /* save pointer to zocount */
-	cp = buf + HFIXEDSZ;
-	buflen -= HFIXEDSZ;
-	dpp = dnptrs;
-	*dpp++ = buf;
-	*dpp++ = NULL;
-	lastdnptr = dnptrs + sizeof dnptrs / sizeof dnptrs[0];
-
-	if (rrecp_start == NULL)
-		return (-5);
-	else if (rrecp_start->r_section != S_ZONE)
-		return (-3);
-
-	memset(counts, 0, sizeof counts);
-	for (rrecp = rrecp_start; rrecp; rrecp = NEXT(rrecp, r_glink)) {
-		numrrs++;
-                section = rrecp->r_section;
-		if (section < 0 || section >= ns_s_max)
-			return (-1);
-		counts[section]++;
-		for (i = section + 1; i < ns_s_max; i++)
-			if (counts[i])
-				return (-3);
-		rtype = rrecp->r_type;
-		rclass = rrecp->r_class;
-		rttl = rrecp->r_ttl;
-		/* overload class and type */
-		if (section == S_PREREQ) {
-			rttl = 0;
-			switch (rrecp->r_opcode) {
-			case YXDOMAIN:
-				rclass = C_ANY;
-				rtype = T_ANY;
-				rrecp->r_size = 0;
-				break;
-			case NXDOMAIN:
-				rclass = C_NONE;
-				rtype = T_ANY;
-				rrecp->r_size = 0;
-				break;
-			case NXRRSET:
-				rclass = C_NONE;
-				rrecp->r_size = 0;
-				break;
-			case YXRRSET:
-				if (rrecp->r_size == 0)
-					rclass = C_ANY;
-				break;
-			default:
-				fprintf(stderr,
-					"res_mkupdate: incorrect opcode: %d\n",
-					rrecp->r_opcode);
-				fflush(stderr);
-				return (-1);
-			}
-		} else if (section == S_UPDATE) {
-			switch (rrecp->r_opcode) {
-			case DELETE:
-				rclass = rrecp->r_size == 0 ? C_ANY : C_NONE;
-				break;
-			case ADD:
-				break;
-			default:
-				fprintf(stderr,
-					"res_mkupdate: incorrect opcode: %d\n",
-					rrecp->r_opcode);
-				fflush(stderr);
-				return (-1);
-			}
-		}
-
-		/*
-		 * XXX	appending default domain to owner name is omitted,
-		 *	fqdn must be provided
-		 */
-		if ((n = dn_comp(rrecp->r_dname, cp, buflen, dnptrs,
-				 lastdnptr)) < 0)
-			return (-1);
-		cp += n;
-		ShrinkBuffer(n + 2*INT16SZ);
-		PUTSHORT(rtype, cp);
-		PUTSHORT(rclass, cp);
-		if (section == S_ZONE) {
-			if (numrrs != 1 || rrecp->r_type != T_SOA)
-				return (-3);
-			continue;
-		}
-		ShrinkBuffer(INT32SZ + INT16SZ);
-		PUTLONG(rttl, cp);
-		sp2 = cp;  /* save pointer to length byte */
-		cp += INT16SZ;
-		if (rrecp->r_size == 0) {
-			if (section == S_UPDATE && rclass != C_ANY)
-				return (-1);
-			else {
-				PUTSHORT(0, sp2);
-				continue;
-			}
-		}
-		startp = rrecp->r_data;
-		endp = startp + rrecp->r_size - 1;
-		/* XXX this should be done centrally. */
-		switch (rrecp->r_type) {
-		case T_A:
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			if (!inet_aton(buf2, &ina))
-				return (-1);
-			n1 = ntohl(ina.s_addr);
-			ShrinkBuffer(INT32SZ);
-			PUTLONG(n1, cp);
-			break;
-		case T_CNAME:
-		case T_MB:
-		case T_MG:
-		case T_MR:
-		case T_NS:
-		case T_PTR:
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			n = dn_comp(buf2, cp, buflen, dnptrs, lastdnptr);
-			if (n < 0)
-				return (-1);
-			cp += n;
-			ShrinkBuffer(n);
-			break;
-		case T_MINFO:
-		case T_SOA:
-		case T_RP:
-			for (i = 0; i < 2; i++) {
-				if (!getword_str(buf2, sizeof buf2, &startp,
-						 endp))
-				return (-1);
-				n = dn_comp(buf2, cp, buflen,
-					    dnptrs, lastdnptr);
-				if (n < 0)
-					return (-1);
-				cp += n;
-				ShrinkBuffer(n);
-			}
-			if (rrecp->r_type == T_SOA) {
-				ShrinkBuffer(5 * INT32SZ);
-				while (isspace(*startp) || !*startp)
-					startp++;
-				if (*startp == '(') {
-					multiline = 1;
-					startp++;
-				} else
-					multiline = 0;
-				/* serial, refresh, retry, expire, minimum */
-				for (i = 0; i < 5; i++) {
-					soanum = getnum_str(&startp, endp);
-					if (soanum < 0)
-						return (-1);
-					PUTLONG(soanum, cp);
-				}
-				if (multiline) {
-					while (isspace(*startp) || !*startp)
-						startp++;
-					if (*startp != ')')
-						return (-1);
-				}
-			}
-			break;
-		case T_MX:
-		case T_AFSDB:
-		case T_RT:
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			n = dn_comp(buf2, cp, buflen, dnptrs, lastdnptr);
-			if (n < 0)
-				return (-1);
-			cp += n;
-			ShrinkBuffer(n);
-			break;
-		case T_SRV:
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			n = dn_comp(buf2, cp, buflen, dnptrs, lastdnptr);
-			if (n < 0)
-				return (-1);
-			cp += n;
-			ShrinkBuffer(n);
-			break;
-		case T_PX:
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			PUTSHORT(n, cp);
-			ShrinkBuffer(INT16SZ);
-			for (i = 0; i < 2; i++) {
-				if (!getword_str(buf2, sizeof buf2, &startp,
-						 endp))
-					return (-1);
-				n = dn_comp(buf2, cp, buflen, dnptrs,
-					    lastdnptr);
-				if (n < 0)
-					return (-1);
-				cp += n;
-				ShrinkBuffer(n);
-			}
-			break;
-		case T_WKS: {
-			char bm[MAXPORT/8];
-			int maxbm = 0;
-
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			if (!inet_aton(buf2, &ina))
-				return (-1);
-			n1 = ntohl(ina.s_addr);
-			ShrinkBuffer(INT32SZ);
-			PUTLONG(n1, cp);
-
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			if ((i = res_protocolnumber(buf2)) < 0)
-				return (-1);
-			ShrinkBuffer(1);
-			*cp++ = i & 0xff;
-			 
-			for (i = 0; i < MAXPORT/8 ; i++)
-				bm[i] = 0;
-
-			while (getword_str(buf2, sizeof buf2, &startp, endp)) {
-				if ((n1 = res_servicenumber(buf2)) <= 0)
-					return (-1);
-
-				if (n1 < MAXPORT) {
-					bm[n1/8] |= (0x80>>(n1%8));
-					if (n1 > maxbm)
-						maxbm = n1;
-				} else
-					return (-1);
-			}
-			maxbm = maxbm/8 + 1;
-			ShrinkBuffer(maxbm);
-			memcpy(cp, bm, maxbm);
-			cp += maxbm;
-			break;
-		}
-		case T_HINFO:
-			for (i = 0; i < 2; i++) {
-				if ((n = getstr_str(buf2, sizeof buf2,
-						&startp, endp)) < 0)
-					return (-1);
-				if (n > 255)
-					return (-1);
-				ShrinkBuffer(n+1);
-				*cp++ = n;
-				memcpy(cp, buf2, n);
-				cp += n;
-			}
-			break;
-		case T_TXT:
-			while (1) {
-				if ((n = getstr_str(buf2, sizeof buf2,
-						&startp, endp)) < 0) {
-					if (cp != (sp2 + INT16SZ))
-						break;
-					return (-1);
-				}
-				if (n > 255)
-					return (-1);
-				ShrinkBuffer(n+1);
-				*cp++ = n;
-				memcpy(cp, buf2, n);
-				cp += n;
-			}
-			break;
-		case T_X25:
-			/* RFC 1183 */
-			if ((n = getstr_str(buf2, sizeof buf2, &startp,
-					 endp)) < 0)
-				return (-1);
-			if (n > 255)
-				return (-1);
-			ShrinkBuffer(n+1);
-			*cp++ = n;
-			memcpy(cp, buf2, n);
-			cp += n;
-			break;
-		case T_ISDN:
-			/* RFC 1183 */
-			if ((n = getstr_str(buf2, sizeof buf2, &startp,
-					 endp)) < 0)
-				return (-1);
-			if ((n > 255) || (n == 0))
-				return (-1);
-			ShrinkBuffer(n+1);
-			*cp++ = n;
-			memcpy(cp, buf2, n);
-			cp += n;
-			if ((n = getstr_str(buf2, sizeof buf2, &startp,
-					 endp)) < 0)
-				n = 0;
-			if (n > 255)
-				return (-1);
-			ShrinkBuffer(n+1);
-			*cp++ = n;
-			memcpy(cp, buf2, n);
-			cp += n;
-			break;
-		case T_NSAP:
-			if ((n = inet_nsap_addr((char *)startp, (u_char *)buf2, sizeof(buf2))) != 0) {
-				ShrinkBuffer(n);
-				memcpy(cp, buf2, n);
-				cp += n;
-			} else {
-				return (-1);
-			}
-			break;
-		case T_LOC:
-			if ((n = loc_aton((char *)startp, (u_char *)buf2)) != 0) {
-				ShrinkBuffer(n);
-				memcpy(cp, buf2, n);
-				cp += n;
-			} else
-				return (-1);
-			break;
-		case ns_t_sig:
-		    {
-			int sig_type, success, dateerror;
-			u_int32_t exptime, timesigned;
-
-			/* type */
-			if ((n = getword_str(buf2, sizeof buf2,
-					     &startp, endp)) < 0)
-				return (-1);
-			sig_type = sym_ston(__p_type_syms, buf2, &success);
-			if (!success || sig_type == ns_t_any)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(sig_type, cp);
-			/* alg */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(1);
-			*cp++ = n;
-			/* labels */
-			n = getnum_str(&startp, endp);
-			if (n <= 0 || n > 255)
-				return (-1);
-			ShrinkBuffer(1);
-			*cp++ = n;
-			/* ottl  & expire */
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			exptime = ns_datetosecs(buf2, &dateerror);
-			if (!dateerror) {
-				ShrinkBuffer(INT32SZ);
-				PUTLONG(rttl, cp);
-			}
-			else {
-				char *ulendp;
-				u_int32_t ottl;
-
-				ottl = strtoul(buf2, &ulendp, 10);
-				if (ulendp != NULL && *ulendp != '\0')
-					return (-1);
-				ShrinkBuffer(INT32SZ);
-				PUTLONG(ottl, cp);
-				if (!getword_str(buf2, sizeof buf2, &startp,
-						 endp))
-					return (-1);
-				exptime = ns_datetosecs(buf2, &dateerror);
-				if (dateerror)
-					return (-1);
-			}
-			/* expire */
-			ShrinkBuffer(INT32SZ);
-			PUTLONG(exptime, cp);
-			/* timesigned */
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			timesigned = ns_datetosecs(buf2, &dateerror);
-			if (!dateerror) {
-				ShrinkBuffer(INT32SZ);
-				PUTLONG(timesigned, cp);
-			}
-			else
-				return (-1);
-			/* footprint */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-			/* signer name */
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			n = dn_comp(buf2, cp, buflen, dnptrs, lastdnptr);
-			if (n < 0)
-				return (-1);
-			cp += n;
-			ShrinkBuffer(n);
-			/* sig */
-			if ((n = getword_str(buf2, sizeof buf2,
-					     &startp, endp)) < 0)
-				return (-1);
-			siglen = b64_pton(buf2, buf3, sizeof(buf3));
-			if (siglen < 0)
-				return (-1);
-			ShrinkBuffer(siglen);
-			memcpy(cp, buf3, siglen);
-			cp += siglen;
-			break;
-		    }
-		case ns_t_key:
-			/* flags */
-			n = gethexnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-			/* proto */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(1);
-			*cp++ = n;
-			/* alg */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(1);
-			*cp++ = n;
-			/* key */
-			if ((n = getword_str(buf2, sizeof buf2,
-					     &startp, endp)) < 0)
-				return (-1);
-			keylen = b64_pton(buf2, buf3, sizeof(buf3));
-			if (keylen < 0)
-				return (-1);
-			ShrinkBuffer(keylen);
-			memcpy(cp, buf3, keylen);
-			cp += keylen;
-			break;
-		case ns_t_nxt:
-		    {
-			int success, nxt_type;
-			u_char data[32];
-			int maxtype;
-
-			/* next name */
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			n = dn_comp(buf2, cp, buflen, dnptrs, lastdnptr);
-			if (n < 0)
-				return (-1);
-			cp += n;
-			ShrinkBuffer(n);
-			maxtype = 0;
-			memset(data, 0, sizeof data);
-			while (1) {
-				if (!getword_str(buf2, sizeof buf2, &startp,
-						 endp))
-					break;
-				nxt_type = sym_ston(__p_type_syms, buf2,
-						    &success);
-				if (!success || !ns_t_rr_p(nxt_type))
-					return (-1);
-				NS_NXT_BIT_SET(nxt_type, data);
-				if (nxt_type > maxtype)
-					maxtype = nxt_type;
-			}
-			n = maxtype/NS_NXT_BITS+1;
-			ShrinkBuffer(n);
-			memcpy(cp, data, n);
-			cp += n;
-			break;
-		    }
-		case ns_t_cert:
-			/* type */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-			/* key tag */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(INT16SZ);
-			PUTSHORT(n, cp);
-			/* alg */
-			n = getnum_str(&startp, endp);
-			if (n < 0)
-				return (-1);
-			ShrinkBuffer(1);
-			*cp++ = n;
-			/* cert */
-			if ((n = getword_str(buf2, sizeof buf2,
-					     &startp, endp)) < 0)
-				return (-1);
-			certlen = b64_pton(buf2, buf3, sizeof(buf3));
-			if (certlen < 0)
-				return (-1);
-			ShrinkBuffer(certlen);
-			memcpy(cp, buf3, certlen);
-			cp += certlen;
-			break;
-		case ns_t_aaaa:
-			if (!getword_str(buf2, sizeof buf2, &startp, endp))
-				return (-1);
-			if (inet_pton(AF_INET6, buf2, &in6a) <= 0)
-				return (-1);
-			ShrinkBuffer(NS_IN6ADDRSZ);
-			memcpy(cp, &in6a, NS_IN6ADDRSZ);
-			cp += NS_IN6ADDRSZ;
-			break;
-		default:
-			return (-1);
-		} /*switch*/
-		n = (u_int16_t)((cp - sp2) - INT16SZ);
-		PUTSHORT(n, sp2);
-	} /*for*/
-		
-	hp->qdcount = htons(counts[0]);
-	hp->ancount = htons(counts[1]);
-	hp->nscount = htons(counts[2]);
-	hp->arcount = htons(counts[3]);
-	return (cp - buf);
-}
-
-/*
- * Get a whitespace delimited word from a string (not file)
- * into buf. modify the start pointer to point after the
- * word in the string.
- */
-static int
-getword_str(char *buf, int size, u_char **startpp, u_char *endp) {
-        char *cp;
-        int c;
- 
-        for (cp = buf; *startpp <= endp; ) {
-                c = **startpp;
-                if (isspace(c) || c == '\0') {
-                        if (cp != buf) /* trailing whitespace */
-                                break;
-                        else { /* leading whitespace */
-                                (*startpp)++;
-                                continue;
-                        }
-                }
-                (*startpp)++;
-                if (cp >= buf+size-1)
-                        break;
-                *cp++ = (u_char)c;
-        }
-        *cp = '\0';
-        return (cp != buf);
-}
-
-/*
- * get a white spae delimited string from memory.  Process quoted strings
- * and \DDD escapes.  Return length or -1 on error.  Returned string may
- * contain nulls.
- */
-static char digits[] = "0123456789";
-static int
-getstr_str(char *buf, int size, u_char **startpp, u_char *endp) {
-        char *cp;
-        int c, c1 = 0;
-	int inquote = 0;
-	int seen_quote = 0;
-	int escape = 0;
-	int dig = 0;
- 
-	for (cp = buf; *startpp <= endp; ) {
-                if ((c = **startpp) == '\0')
-			break;
-		/* leading white space */
-		if ((cp == buf) && !seen_quote && isspace(c)) {
-			(*startpp)++;
-			continue;
-		}
-
-		switch (c) {
-		case '\\':
-			if (!escape)  {
-				escape = 1;
-				dig = 0;
-				c1 = 0;
-				(*startpp)++;
-				continue;
-			} 
-			goto do_escape;
-		case '"':
-			if (!escape) {
-				inquote = !inquote;
-				seen_quote = 1;
-				(*startpp)++;
-				continue;
-			}
-			/* fall through */
-		default:
-		do_escape:
-			if (escape) {
-				switch (c) {
-				case '0':
-				case '1':
-				case '2':
-				case '3':
-				case '4':
-				case '5':
-				case '6':
-				case '7':
-				case '8':
-				case '9':
-					c1 = c1 * 10 + 
-						(strchr(digits, c) - digits);
-
-					if (++dig == 3) {
-						c = c1 &0xff;
-						break;
-					}
-					(*startpp)++;
-					continue;
-				}
-				escape = 0;
-			} else if (!inquote && isspace(c))
-				goto done;
-			if (cp >= buf+size-1)
-				goto done;
-			*cp++ = (u_char)c;
-			(*startpp)++;
-		}
-	}
- done:
-	*cp = '\0';
-	return ((cp == buf)?  (seen_quote? 0: -1): (cp - buf));
-}
-/*
- * Get a whitespace delimited base 16 number from a string (not file) into buf
- * update the start pointer to point after the number in the string.
- */
-static int
-gethexnum_str(u_char **startpp, u_char *endp) {
-        int c, n;
-        int seendigit = 0;
-        int m = 0;
-
-	if (*startpp + 2 >= endp || strncasecmp((char *)*startpp, "0x", 2) != 0)
-		return getnum_str(startpp, endp);
-	(*startpp)+=2;
-        for (n = 0; *startpp <= endp; ) {
-                c = **startpp;
-                if (isspace(c) || c == '\0') {
-                        if (seendigit) /* trailing whitespace */
-                                break;
-                        else { /* leading whitespace */
-                                (*startpp)++;
-                                continue;
-                        }
-                }
-                if (c == ';') {
-                        while ((*startpp <= endp) &&
-			       ((c = **startpp) != '\n'))
-					(*startpp)++;
-                        if (seendigit)
-                                break;
-                        continue;
-                }
-                if (!isxdigit(c)) {
-                        if (c == ')' && seendigit) {
-                                (*startpp)--;
-                                break;
-                        }
-			return (-1);
-                }        
-                (*startpp)++;
-		if (isdigit(c))
-	                n = n * 16 + (c - '0');
-		else
-			n = n * 16 + (tolower(c) - 'a' + 10);
-                seendigit = 1;
-        }
-        return (n + m);
-}
-
-/*
- * Get a whitespace delimited base 16 number from a string (not file) into buf
- * update the start pointer to point after the number in the string.
- */
-static int
-getnum_str(u_char **startpp, u_char *endp) {
-        int c, n;
-        int seendigit = 0;
-        int m = 0;
-
-        for (n = 0; *startpp <= endp; ) {
-                c = **startpp;
-                if (isspace(c) || c == '\0') {
-                        if (seendigit) /* trailing whitespace */
-                                break;
-                        else { /* leading whitespace */
-                                (*startpp)++;
-                                continue;
-                        }
-                }
-                if (c == ';') {
-                        while ((*startpp <= endp) &&
-			       ((c = **startpp) != '\n'))
-					(*startpp)++;
-                        if (seendigit)
-                                break;
-                        continue;
-                }
-                if (!isdigit(c)) {
-                        if (c == ')' && seendigit) {
-                                (*startpp)--;
-                                break;
-                        }
-			return (-1);
-                }        
-                (*startpp)++;
-                n = n * 10 + (c - '0');
-                seendigit = 1;
-        }
-        return (n + m);
-}
-
-/*
- * Allocate a resource record buffer & save rr info.
- */
-ns_updrec *
-res_mkupdrec(int section, const char *dname,
-	     u_int class, u_int type, u_long ttl) {
-	ns_updrec *rrecp = (ns_updrec *)calloc(1, sizeof(ns_updrec));
-
-	if (!rrecp || !(rrecp->r_dname = strdup(dname))) {
-		if (rrecp)
-			free((char *)rrecp);
-		return (NULL);
-	}
- 	rrecp->r_class = class;
-	rrecp->r_type = type;
-	rrecp->r_ttl = ttl;
-	rrecp->r_section = section;
-	return (rrecp);
-}
-
-/*
- * Free a resource record buffer created by res_mkupdrec.
- */
-void
-res_freeupdrec(ns_updrec *rrecp) {
-	/* Note: freeing r_dp is the caller's responsibility. */
-	if (rrecp->r_dname != NULL)
-		free(rrecp->r_dname);
-	free(rrecp);
-}
-
-struct valuelist {
-	struct valuelist *	next;
-	struct valuelist *	prev;
-	char *			name;
-	char *			proto;
-	int			port;
-};
-static struct valuelist *servicelist, *protolist;
-
-void
-res_buildservicelist() {
-	struct servent *sp;
-	struct valuelist *slp;
-
-#ifdef MAYBE_HESIOD
-	setservent(0);
-#else
-	setservent(1);
-#endif
-	while ((sp = getservent()) != NULL) {
-		slp = (struct valuelist *)malloc(sizeof(struct valuelist));
-		if (!slp)
-			break;
-		slp->name = strdup(sp->s_name);
-		slp->proto = strdup(sp->s_proto);
-		if ((slp->name == NULL) || (slp->proto == NULL)) {
-			if (slp->name) free(slp->name);
-			if (slp->proto) free(slp->proto);
-			free(slp);
-			break;
-		}
-		slp->port = ntohs((u_int16_t)sp->s_port);  /* host byt order */
-		slp->next = servicelist;
-		slp->prev = NULL;
-		if (servicelist)
-			servicelist->prev = slp;
-		servicelist = slp;
-	}
-	endservent();
-}
-
-void
-res_destroyservicelist() {
-	struct valuelist *slp, *slp_next;
-
-	for (slp = servicelist; slp != NULL; slp = slp_next) {
-		slp_next = slp->next;
-		free(slp->name);
-		free(slp->proto);
-		free(slp);
-	}
-	servicelist = (struct valuelist *)0;
-}
-
-void
-res_buildprotolist() {
-	struct protoent *pp;
-	struct valuelist *slp;
-
-#ifdef MAYBE_HESIOD
-	setprotoent(0);
-#else
-	setprotoent(1);
-#endif
-	while ((pp = getprotoent()) != NULL) {
-		slp = (struct valuelist *)malloc(sizeof(struct valuelist));
-		if (!slp)
-			break;
-		slp->name = strdup(pp->p_name);
-		if (slp->name == NULL) {
-			free(slp);
-			break;
-		}
-		slp->port = pp->p_proto;	/* host byte order */
-		slp->next = protolist;
-		slp->prev = NULL;
-		if (protolist)
-			protolist->prev = slp;
-		protolist = slp;
-	}
-	endprotoent();
-}
-
-void
-res_destroyprotolist() {
-	struct valuelist *plp, *plp_next;
-
-	for (plp = protolist; plp != NULL; plp = plp_next) {
-		plp_next = plp->next;
-		free(plp->name);
-		free(plp);
-	}
-	protolist = (struct valuelist *)0;
-}
-
-static int
-findservice(const char *s, struct valuelist **list) {
-	struct valuelist *lp = *list;
-	int n;
-
-	for (; lp != NULL; lp = lp->next)
-		if (strcasecmp(lp->name, s) == 0) {
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			return (lp->port);	/* host byte order */
-		}
-	if (sscanf(s, "%d", &n) != 1 || n <= 0)
-		n = -1;
-	return (n);
-}
-
-/*
- * Convert service name or (ascii) number to int.
- */
-int
-res_servicenumber(const char *p) {
-	if (servicelist == (struct valuelist *)0)
-		res_buildservicelist();
-	return (findservice(p, &servicelist));
-}
-
-/*
- * Convert protocol name or (ascii) number to int.
- */
-int
-res_protocolnumber(const char *p) {
-	if (protolist == (struct valuelist *)0)
-		res_buildprotolist();
-	return (findservice(p, &protolist));
-}
-
-static struct servent *
-cgetservbyport(u_int16_t port, const char *proto) {	/* Host byte order. */
-	struct valuelist **list = &servicelist;
-	struct valuelist *lp = *list;
-	static struct servent serv;
-
-	port = ntohs(port);
-	for (; lp != NULL; lp = lp->next) {
-		if (port != (u_int16_t)lp->port)	/* Host byte order. */
-			continue;
-		if (strcasecmp(lp->proto, proto) == 0) {
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			serv.s_name = lp->name;
-			serv.s_port = htons((u_int16_t)lp->port);
-			serv.s_proto = lp->proto;
-			return (&serv);
-		}
-	}
-	return (0);
-}
-
-static struct protoent *
-cgetprotobynumber(int proto) {				/* Host byte order. */
-	struct valuelist **list = &protolist;
-	struct valuelist *lp = *list;
-	static struct protoent prot;
-
-	for (; lp != NULL; lp = lp->next)
-		if (lp->port == proto) {		/* Host byte order. */
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			prot.p_name = lp->name;
-			prot.p_proto = lp->port;	/* Host byte order. */
-			return (&prot);
-		}
-	return (0);
-}
-
-const char *
-res_protocolname(int num) {
-	static char number[8];
-	struct protoent *pp;
-
-	if (protolist == (struct valuelist *)0)
-		res_buildprotolist();
-	pp = cgetprotobynumber(num);
-	if (pp == 0)  {
-		(void) sprintf(number, "%d", num);
-		return (number);
-	}
-	return (pp->p_name);
-}
-
-const char *
-res_servicename(u_int16_t port, const char *proto) {	/* Host byte order. */
-	static char number[8];
-	struct servent *ss;
-
-	if (servicelist == (struct valuelist *)0)
-		res_buildservicelist();
-	ss = cgetservbyport(htons(port), proto);
-	if (ss == 0)  {
-		(void) sprintf(number, "%d", port);
-		return (number);
-	}
-	return (ss->s_name);
-}
diff --git a/contrib/bind/lib/resolv/res_mkupdate.h b/contrib/bind/lib/resolv/res_mkupdate.h
deleted file mode 100644
index 48edf63df714a..0000000000000
--- a/contrib/bind/lib/resolv/res_mkupdate.h
+++ /dev/null
@@ -1,24 +0,0 @@
-/*
- * Copyright (c) 1998,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef _RES_MKUPDATE_H_
-#define _RES_MKUPDATE_H_
-
-__BEGIN_DECLS
-__END_DECLS
-
-#endif /* _RES_MKUPDATE_H_ */ 
diff --git a/contrib/bind/lib/resolv/res_query.c b/contrib/bind/lib/resolv/res_query.c
deleted file mode 100644
index 3147f1ea19e11..0000000000000
--- a/contrib/bind/lib/resolv/res_query.c
+++ /dev/null
@@ -1,407 +0,0 @@
-/*
- * Copyright (c) 1988, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)res_query.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: res_query.c,v 8.20 2000/02/29 05:39:12 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include "port_before.h"
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include "port_after.h"
-
-/* Options.  Leave them on. */
-#define DEBUG
-
-#if PACKETSZ > 1024
-#define MAXPACKET	PACKETSZ
-#else
-#define MAXPACKET	1024
-#endif
-
-/*
- * Formulate a normal query, send, and await answer.
- * Returned answer is placed in supplied buffer "answer".
- * Perform preliminary check of answer, returning success only
- * if no error is indicated and the answer count is nonzero.
- * Return the size of the response on success, -1 on error.
- * Error number is left in H_ERRNO.
- *
- * Caller must parse answer and determine whether it answers the question.
- */
-int
-res_nquery(res_state statp,
-	   const char *name,	/* domain name */
-	   int class, int type,	/* class and type of query */
-	   u_char *answer,	/* buffer to put answer */
-	   int anslen)		/* size of answer buffer */
-{
-	u_char buf[MAXPACKET];
-	HEADER *hp = (HEADER *) answer;
-	int n;
-
-	hp->rcode = NOERROR;	/* default */
-
-#ifdef DEBUG
-	if (statp->options & RES_DEBUG)
-		printf(";; res_query(%s, %d, %d)\n", name, class, type);
-#endif
-
-	n = res_nmkquery(statp, QUERY, name, class, type, NULL, 0, NULL,
-			 buf, sizeof(buf));
-	if (n <= 0) {
-#ifdef DEBUG
-		if (statp->options & RES_DEBUG)
-			printf(";; res_query: mkquery failed\n");
-#endif
-		RES_SET_H_ERRNO(statp, NO_RECOVERY);
-		return (n);
-	}
-	n = res_nsend(statp, buf, n, answer, anslen);
-	if (n < 0) {
-#ifdef DEBUG
-		if (statp->options & RES_DEBUG)
-			printf(";; res_query: send error\n");
-#endif
-		RES_SET_H_ERRNO(statp, TRY_AGAIN);
-		return (n);
-	}
-
-	if (hp->rcode != NOERROR || ntohs(hp->ancount) == 0) {
-#ifdef DEBUG
-		if (statp->options & RES_DEBUG)
-			printf(";; rcode = %d, ancount=%d\n", hp->rcode,
-			    ntohs(hp->ancount));
-#endif
-		switch (hp->rcode) {
-		case NXDOMAIN:
-			RES_SET_H_ERRNO(statp, HOST_NOT_FOUND);
-			break;
-		case SERVFAIL:
-			RES_SET_H_ERRNO(statp, TRY_AGAIN);
-			break;
-		case NOERROR:
-			RES_SET_H_ERRNO(statp, NO_DATA);
-			break;
-		case FORMERR:
-		case NOTIMP:
-		case REFUSED:
-		default:
-			RES_SET_H_ERRNO(statp, NO_RECOVERY);
-			break;
-		}
-		return (-1);
-	}
-	return (n);
-}
-
-/*
- * Formulate a normal query, send, and retrieve answer in supplied buffer.
- * Return the size of the response on success, -1 on error.
- * If enabled, implement search rules until answer or unrecoverable failure
- * is detected.  Error code, if any, is left in H_ERRNO.
- */
-int
-res_nsearch(res_state statp,
-	    const char *name,	/* domain name */
-	    int class, int type,	/* class and type of query */
-	    u_char *answer,	/* buffer to put answer */
-	    int anslen)		/* size of answer */
-{
-	const char *cp, * const *domain;
-	HEADER *hp = (HEADER *) answer;
-	char tmp[NS_MAXDNAME];
-	u_int dots;
-	int trailing_dot, ret, saved_herrno;
-	int got_nodata = 0, got_servfail = 0, root_on_list = 0;
-	int tried_as_is = 0;
-
-	errno = 0;
-	RES_SET_H_ERRNO(statp, HOST_NOT_FOUND);  /* True if we never query. */
-
-	dots = 0;
-	for (cp = name; *cp != '\0'; cp++)
-		dots += (*cp == '.');
-	trailing_dot = 0;
-	if (cp > name && *--cp == '.')
-		trailing_dot++;
-
-	/* If there aren't any dots, it could be a user-level alias. */
-	if (!dots && (cp = res_hostalias(statp, name, tmp, sizeof tmp))!= NULL)
-		return (res_nquery(statp, cp, class, type, answer, anslen));
-
-	/*
-	 * If there are enough dots in the name, let's just give it a
-	 * try 'as is'. The threshold can be set with the "ndots" option.
-	 * Also, query 'as is', if there is a trailing dot in the name.
-	 */
-	saved_herrno = -1;
-	if (dots >= statp->ndots || trailing_dot) {
-		ret = res_nquerydomain(statp, name, NULL, class, type,
-					 answer, anslen);
-		if (ret > 0 || trailing_dot)
-			return (ret);
-		saved_herrno = h_errno;
-		tried_as_is++;
-	}
-
-	/*
-	 * We do at least one level of search if
-	 *	- there is no dot and RES_DEFNAME is set, or
-	 *	- there is at least one dot, there is no trailing dot,
-	 *	  and RES_DNSRCH is set.
-	 */
-	if ((!dots && (statp->options & RES_DEFNAMES) != 0) ||
-	    (dots && !trailing_dot && (statp->options & RES_DNSRCH) != 0)) {
-		int done = 0;
-
-		for (domain = (const char * const *)statp->dnsrch;
-		     *domain && !done;
-		     domain++) {
-
-			if (domain[0][0] == '\0' ||
-			    (domain[0][0] == '.' && domain[0][1] == '\0'))
-				root_on_list++;
-
-			ret = res_nquerydomain(statp, name, *domain,
-					       class, type,
-					       answer, anslen);
-			if (ret > 0)
-				return (ret);
-
-			/*
-			 * If no server present, give up.
-			 * If name isn't found in this domain,
-			 * keep trying higher domains in the search list
-			 * (if that's enabled).
-			 * On a NO_DATA error, keep trying, otherwise
-			 * a wildcard entry of another type could keep us
-			 * from finding this entry higher in the domain.
-			 * If we get some other error (negative answer or
-			 * server failure), then stop searching up,
-			 * but try the input name below in case it's
-			 * fully-qualified.
-			 */
-			if (errno == ECONNREFUSED) {
-				RES_SET_H_ERRNO(statp, TRY_AGAIN);
-				return (-1);
-			}
-
-			switch (statp->res_h_errno) {
-			case NO_DATA:
-				got_nodata++;
-				/* FALLTHROUGH */
-			case HOST_NOT_FOUND:
-				/* keep trying */
-				break;
-			case TRY_AGAIN:
-				if (hp->rcode == SERVFAIL) {
-					/* try next search element, if any */
-					got_servfail++;
-					break;
-				}
-				/* FALLTHROUGH */
-			default:
-				/* anything else implies that we're done */
-				done++;
-			}
-
-			/* if we got here for some reason other than DNSRCH,
-			 * we only wanted one iteration of the loop, so stop.
-			 */
-			if ((statp->options & RES_DNSRCH) == 0)
-				done++;
-		}
-	}
-
-	/*
-	 * If the name has any dots at all, and no earlier 'as-is' query 
-	 * for the name, and "." is not on the search list, then try an as-is
-	 * query now.
-	 */
-	if (statp->ndots && !(tried_as_is || root_on_list)) {
-		ret = res_nquerydomain(statp, name, NULL, class, type,
-				       answer, anslen);
-		if (ret > 0)
-			return (ret);
-	}
-
-	/* if we got here, we didn't satisfy the search.
-	 * if we did an initial full query, return that query's H_ERRNO
-	 * (note that we wouldn't be here if that query had succeeded).
-	 * else if we ever got a nodata, send that back as the reason.
-	 * else send back meaningless H_ERRNO, that being the one from
-	 * the last DNSRCH we did.
-	 */
-	if (saved_herrno != -1)
-		RES_SET_H_ERRNO(statp, saved_herrno);
-	else if (got_nodata)
-		RES_SET_H_ERRNO(statp, NO_DATA);
-	else if (got_servfail)
-		RES_SET_H_ERRNO(statp, TRY_AGAIN);
-	return (-1);
-}
-
-/*
- * Perform a call on res_query on the concatenation of name and domain,
- * removing a trailing dot from name if domain is NULL.
- */
-int
-res_nquerydomain(res_state statp,
-	    const char *name,
-	    const char *domain,
-	    int class, int type,	/* class and type of query */
-	    u_char *answer,		/* buffer to put answer */
-	    int anslen)		/* size of answer */
-{
-	char nbuf[MAXDNAME];
-	const char *longname = nbuf;
-	int n, d;
-
-#ifdef DEBUG
-	if (statp->options & RES_DEBUG)
-		printf(";; res_nquerydomain(%s, %s, %d, %d)\n",
-		       name, domain?domain:"<Nil>", class, type);
-#endif
-	if (domain == NULL) {
-		/*
-		 * Check for trailing '.';
-		 * copy without '.' if present.
-		 */
-		n = strlen(name);
-		if (n >= MAXDNAME) {
-			RES_SET_H_ERRNO(statp, NO_RECOVERY);
-			return (-1);
-		}
-		n--;
-		if (n >= 0 && name[n] == '.') {
-			strncpy(nbuf, name, n);
-			nbuf[n] = '\0';
-		} else
-			longname = name;
-	} else {
-		n = strlen(name);
-		d = strlen(domain);
-		if (n + d + 1 >= MAXDNAME) {
-			RES_SET_H_ERRNO(statp, NO_RECOVERY);
-			return (-1);
-		}
-		sprintf(nbuf, "%s.%s", name, domain);
-	}
-	return (res_nquery(statp, longname, class, type, answer, anslen));
-}
-
-const char *
-res_hostalias(const res_state statp, const char *name, char *dst, size_t siz) {
-	char *file, *cp1, *cp2;
-	char buf[BUFSIZ];
-	FILE *fp;
-
-	if (statp->options & RES_NOALIASES)
-		return (NULL);
-	file = getenv("HOSTALIASES");
-	if (file == NULL || (fp = fopen(file, "r")) == NULL)
-		return (NULL);
-	setbuf(fp, NULL);
-	buf[sizeof(buf) - 1] = '\0';
-	while (fgets(buf, sizeof(buf), fp)) {
-		for (cp1 = buf; *cp1 && !isspace(*cp1); ++cp1)
-			;
-		if (!*cp1)
-			break;
-		*cp1 = '\0';
-		if (ns_samename(buf, name) == 1) {
-			while (isspace(*++cp1))
-				;
-			if (!*cp1)
-				break;
-			for (cp2 = cp1 + 1; *cp2 && !isspace(*cp2); ++cp2)
-				;
-			*cp2 = '\0';
-			strncpy(dst, cp1, siz - 1);
-			dst[siz - 1] = '\0';
-			fclose(fp);
-			return (dst);
-		}
-	}
-	fclose(fp);
-	return (NULL);
-}
diff --git a/contrib/bind/lib/resolv/res_send.c b/contrib/bind/lib/resolv/res_send.c
deleted file mode 100644
index af674a123d073..0000000000000
--- a/contrib/bind/lib/resolv/res_send.c
+++ /dev/null
@@ -1,859 +0,0 @@
-/*
- * Copyright (c) 1985, 1989, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/*
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char sccsid[] = "@(#)res_send.c	8.1 (Berkeley) 6/4/93";
-static const char rcsid[] = "$Id: res_send.c,v 8.38 2000/03/30 20:16:51 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-/*
- * Send query to name server and wait for reply.
- */
-
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <sys/socket.h>
-#include <sys/uio.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <signal.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include <isc/eventlib.h>
-
-#include "port_after.h"
-
-/* Options.  Leave them on. */
-#define DEBUG
-#include "res_debug.h"
-
-#define EXT(res) ((res)->_u._ext)
-
-static const int highestFD = FD_SETSIZE - 1;
-
-/* Forward. */
-
-static int		send_vc(res_state, const u_char *, int,
-				u_char *, int, int *, int);
-static int		send_dg(res_state, const u_char *, int,
-				u_char *, int, int *, int,
-				int *, int *);
-static void		Aerror(const res_state, FILE *, const char *, int,
-			       struct sockaddr_in);
-static void		Perror(const res_state, FILE *, const char *, int);
-static int		sock_eq(struct sockaddr_in *, struct sockaddr_in *);
-#ifdef NEED_PSELECT
-static int		pselect(int, void *, void *, void *,
-				struct timespec *,
-				const sigset_t *);
-#endif
-
-/* Reachover. */
-
-void res_pquery(const res_state, const u_char *, int, FILE *);
-
-/* Public. */
-
-/* int
- * res_isourserver(ina)
- *	looks up "ina" in _res.ns_addr_list[]
- * returns:
- *	0  : not found
- *	>0 : found
- * author:
- *	paul vixie, 29may94
- */
-int
-res_ourserver_p(const res_state statp, const struct sockaddr_in *inp) {
-	struct sockaddr_in ina;
-	int ns;
-
-	ina = *inp;
-	for (ns = 0; ns < statp->nscount; ns++) {
-		const struct sockaddr_in *srv = &statp->nsaddr_list[ns];
-
-		if (srv->sin_family == ina.sin_family &&
-		    srv->sin_port == ina.sin_port &&
-		    (srv->sin_addr.s_addr == INADDR_ANY ||
-		     srv->sin_addr.s_addr == ina.sin_addr.s_addr))
-			return (1);
-	}
-	return (0);
-}
-
-/* int
- * res_nameinquery(name, type, class, buf, eom)
- *	look for (name,type,class) in the query section of packet (buf,eom)
- * requires:
- *	buf + HFIXEDSZ <= eom
- * returns:
- *	-1 : format error
- *	0  : not found
- *	>0 : found
- * author:
- *	paul vixie, 29may94
- */
-int
-res_nameinquery(const char *name, int type, int class,
-		const u_char *buf, const u_char *eom)
-{
-	const u_char *cp = buf + HFIXEDSZ;
-	int qdcount = ntohs(((HEADER*)buf)->qdcount);
-
-	while (qdcount-- > 0) {
-		char tname[MAXDNAME+1];
-		int n, ttype, tclass;
-
-		n = dn_expand(buf, eom, cp, tname, sizeof tname);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		if (cp + 2 * INT16SZ > eom)
-			return (-1);
-		ttype = ns_get16(cp); cp += INT16SZ;
-		tclass = ns_get16(cp); cp += INT16SZ;
-		if (ttype == type && tclass == class &&
-		    ns_samename(tname, name) == 1)
-			return (1);
-	}
-	return (0);
-}
-
-/* int
- * res_queriesmatch(buf1, eom1, buf2, eom2)
- *	is there a 1:1 mapping of (name,type,class)
- *	in (buf1,eom1) and (buf2,eom2)?
- * returns:
- *	-1 : format error
- *	0  : not a 1:1 mapping
- *	>0 : is a 1:1 mapping
- * author:
- *	paul vixie, 29may94
- */
-int
-res_queriesmatch(const u_char *buf1, const u_char *eom1,
-		 const u_char *buf2, const u_char *eom2)
-{
-	const u_char *cp = buf1 + HFIXEDSZ;
-	int qdcount = ntohs(((HEADER*)buf1)->qdcount);
-
-	if (buf1 + HFIXEDSZ > eom1 || buf2 + HFIXEDSZ > eom2)
-		return (-1);
-
-	/*
-	 * Only header section present in replies to
-	 * dynamic update packets.
-	 */
-	if ((((HEADER *)buf1)->opcode == ns_o_update) &&
-	    (((HEADER *)buf2)->opcode == ns_o_update))
-		return (1);
-
-	if (qdcount != ntohs(((HEADER*)buf2)->qdcount))
-		return (0);
-	while (qdcount-- > 0) {
-		char tname[MAXDNAME+1];
-		int n, ttype, tclass;
-
-		n = dn_expand(buf1, eom1, cp, tname, sizeof tname);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		if (cp + 2 * INT16SZ > eom1)
-			return (-1);
-		ttype = ns_get16(cp);	cp += INT16SZ;
-		tclass = ns_get16(cp); cp += INT16SZ;
-		if (!res_nameinquery(tname, ttype, tclass, buf2, eom2))
-			return (0);
-	}
-	return (1);
-}
-
-int
-res_nsend(res_state statp,
-	  const u_char *buf, int buflen, u_char *ans, int anssiz)
-{
-	int gotsomewhere, terrno, try, v_circuit, resplen, ns, n;
-
-	if (statp->nscount == 0) {
-		errno = ESRCH;
-		return (-1);
-	}
-	if (anssiz < HFIXEDSZ) {
-		errno = EINVAL;
-		return (-1);
-	}
-	DprintQ((statp->options & RES_DEBUG) || (statp->pfcode & RES_PRF_QUERY),
-		(stdout, ";; res_send()\n"), buf, buflen);
-	v_circuit = (statp->options & RES_USEVC) || buflen > PACKETSZ;
-	gotsomewhere = 0;
-	terrno = ETIMEDOUT;
-
-	/*
-	 * If the ns_addr_list in the resolver context has changed, then
-	 * invalidate our cached copy and the associated timing data.
-	 */
-	if (EXT(statp).nscount != 0) {
-		int needclose = 0;
-
-		if (EXT(statp).nscount != statp->nscount)
-			needclose++;
-		else
-			for (ns = 0; ns < statp->nscount; ns++)
-				if (!sock_eq(&statp->nsaddr_list[ns],
-					     &EXT(statp).nsaddrs[ns])) {
-					needclose++;
-					break;
-				}
-		if (needclose)
-			res_nclose(statp);
-	}
-
-	/*
-	 * Maybe initialize our private copy of the ns_addr_list.
-	 */
-	if (EXT(statp).nscount == 0) {
-		for (ns = 0; ns < statp->nscount; ns++) {
-			EXT(statp).nsaddrs[ns] = statp->nsaddr_list[ns];
-			EXT(statp).nstimes[ns] = RES_MAXTIME;
-			EXT(statp).nssocks[ns] = -1;
-		}
-		EXT(statp).nscount = statp->nscount;
-	}
-
-	/*
-	 * Some resolvers want to even out the load on their nameservers.
-	 * Note that RES_BLAST overrides RES_ROTATE.
-	 */
-	if ((statp->options & RES_ROTATE) != 0 &&
-	    (statp->options & RES_BLAST) == 0) {
-		struct sockaddr_in ina;
-		int lastns = statp->nscount - 1;
-
-		ina = statp->nsaddr_list[0];
-		for (ns = 0; ns < lastns; ns++)
-			statp->nsaddr_list[ns] = statp->nsaddr_list[ns + 1];
-		statp->nsaddr_list[lastns] = ina;
-	}
-
-	/*
-	 * Send request, RETRY times, or until successful.
-	 */
-	for (try = 0; try < statp->retry; try++) {
-	    for (ns = 0; ns < statp->nscount; ns++) {
-		struct sockaddr_in *nsap = &statp->nsaddr_list[ns];
- same_ns:
-		if (statp->qhook) {
-			int done = 0, loops = 0;
-
-			do {
-				res_sendhookact act;
-
-				act = (*statp->qhook)(&nsap, &buf, &buflen,
-						      ans, anssiz, &resplen);
-				switch (act) {
-				case res_goahead:
-					done = 1;
-					break;
-				case res_nextns:
-					res_nclose(statp);
-					goto next_ns;
-				case res_done:
-					return (resplen);
-				case res_modified:
-					/* give the hook another try */
-					if (++loops < 42) /*doug adams*/
-						break;
-					/*FALLTHROUGH*/
-				case res_error:
-					/*FALLTHROUGH*/
-				default:
-					return (-1);
-				}
-			} while (!done);
-		}
-
-		Dprint(statp->options & RES_DEBUG,
-		       (stdout, ";; Querying server (# %d) address = %s\n",
-			ns + 1, inet_ntoa(nsap->sin_addr)));
-
-		if (v_circuit) {
-			/* Use VC; at most one attempt per server. */
-			try = statp->retry;
-			n = send_vc(statp, buf, buflen, ans, anssiz, &terrno,
-				    ns);
-			if (n < 0)
-				return (-1);
-			if (n == 0)
-				goto next_ns;
-			resplen = n;
-		} else {
-			/* Use datagrams. */
-			n = send_dg(statp, buf, buflen, ans, anssiz, &terrno,
-				    ns, &v_circuit, &gotsomewhere);
-			if (n < 0)
-				return (-1);
-			if (n == 0)
-				goto next_ns;
-			if (v_circuit)
-				goto same_ns;
-			resplen = n;
-		}
-
-		Dprint((statp->options & RES_DEBUG) ||
-		       ((statp->pfcode & RES_PRF_REPLY) &&
-			(statp->pfcode & RES_PRF_HEAD1)),
-		       (stdout, ";; got answer:\n"));
-
-		DprintQ((statp->options & RES_DEBUG) ||
-			(statp->pfcode & RES_PRF_REPLY),
-			(stdout, ""),
-			ans, (resplen > anssiz) ? anssiz : resplen);
-
-		/*
-		 * If we have temporarily opened a virtual circuit,
-		 * or if we haven't been asked to keep a socket open,
-		 * close the socket.
-		 */
-		if (v_circuit && (statp->options & RES_USEVC) == 0 ||
-		    (statp->options & RES_STAYOPEN) == 0) {
-			res_nclose(statp);
-		}
-		if (statp->rhook) {
-			int done = 0, loops = 0;
-
-			do {
-				res_sendhookact act;
-
-				act = (*statp->rhook)(nsap, buf, buflen,
-						      ans, anssiz, &resplen);
-				switch (act) {
-				case res_goahead:
-				case res_done:
-					done = 1;
-					break;
-				case res_nextns:
-					res_nclose(statp);
-					goto next_ns;
-				case res_modified:
-					/* give the hook another try */
-					if (++loops < 42) /*doug adams*/
-						break;
-					/*FALLTHROUGH*/
-				case res_error:
-					/*FALLTHROUGH*/
-				default:
-					return (-1);
-				}
-			} while (!done);
-
-		}
-		return (resplen);
- next_ns: ;
-	   } /*foreach ns*/
-	} /*foreach retry*/
-	res_nclose(statp);
-	if (!v_circuit) {
-		if (!gotsomewhere)
-			errno = ECONNREFUSED;	/* no nameservers found */
-		else
-			errno = ETIMEDOUT;	/* no answer obtained */
-	} else
-		errno = terrno;
-	return (-1);
-}
-
-/* Private */
-
-static int
-send_vc(res_state statp,
-	const u_char *buf, int buflen, u_char *ans, int anssiz,
-	int *terrno, int ns)
-{
-	const HEADER *hp = (HEADER *) buf;
-	HEADER *anhp = (HEADER *) ans;
-	struct sockaddr_in *nsap = &statp->nsaddr_list[ns];
-	int truncating, connreset, resplen, n;
-	struct iovec iov[2];
-	u_short len;
-	u_char *cp;
-
-	connreset = 0;
- same_ns:
-	truncating = 0;
-
-	/* Are we still talking to whom we want to talk to? */
-	if (statp->_vcsock >= 0 && (statp->_flags & RES_F_VC) != 0) {
-		struct sockaddr_in peer;
-		int size = sizeof peer;
-
-		if (getpeername(statp->_vcsock,
-				(struct sockaddr *)&peer, &size) < 0 ||
-		    !sock_eq(&peer, nsap)) {
-			res_nclose(statp);
-			statp->_flags &= ~RES_F_VC;
-		}
-	}
-
-	if (statp->_vcsock < 0 || (statp->_flags & RES_F_VC) == 0) {
-		if (statp->_vcsock >= 0)
-			res_nclose(statp);
-
-		statp->_vcsock = socket(PF_INET, SOCK_STREAM, 0);
-		if (statp->_vcsock > highestFD) {
-			res_nclose(statp);
-			errno = ENOTSOCK;
-		}
-		if (statp->_vcsock < 0) {
-			*terrno = errno;
-			Perror(statp, stderr, "socket(vc)", errno);
-			return (-1);
-		}
-		errno = 0;
-		if (connect(statp->_vcsock, (struct sockaddr *)nsap,
-			    sizeof *nsap) < 0) {
-			*terrno = errno;
-			Aerror(statp, stderr, "connect/vc", errno, *nsap);
-			res_nclose(statp);
-			return (0);
-		}
-		statp->_flags |= RES_F_VC;
-	}
-
-	/*
-	 * Send length & message
-	 */
-	putshort((u_short)buflen, (u_char*)&len);
-	iov[0] = evConsIovec(&len, INT16SZ);
-	iov[1] = evConsIovec((void*)buf, buflen);
-	if (writev(statp->_vcsock, iov, 2) != (INT16SZ + buflen)) {
-		*terrno = errno;
-		Perror(statp, stderr, "write failed", errno);
-		res_nclose(statp);
-		return (0);
-	}
-	/*
-	 * Receive length & response
-	 */
- read_len:
-	cp = ans;
-	len = INT16SZ;
-	while ((n = read(statp->_vcsock, (char *)cp, (int)len)) > 0) {
-		cp += n;
-		if ((len -= n) <= 0)
-			break;
-	}
-	if (n <= 0) {
-		*terrno = errno;
-		Perror(statp, stderr, "read failed", errno);
-		res_nclose(statp);
-		/*
-		 * A long running process might get its TCP
-		 * connection reset if the remote server was
-		 * restarted.  Requery the server instead of
-		 * trying a new one.  When there is only one
-		 * server, this means that a query might work
-		 * instead of failing.  We only allow one reset
-		 * per query to prevent looping.
-		 */
-		if (*terrno == ECONNRESET && !connreset) {
-			connreset = 1;
-			res_nclose(statp);
-			goto same_ns;
-		}
-		res_nclose(statp);
-		return (0);
-	}
-	resplen = ns_get16(ans);
-	if (resplen > anssiz) {
-		Dprint(statp->options & RES_DEBUG,
-		       (stdout, ";; response truncated\n")
-		       );
-		truncating = 1;
-		len = anssiz;
-	} else
-		len = resplen;
-	if (len < HFIXEDSZ) {
-		/*
-		 * Undersized message.
-		 */
-		Dprint(statp->options & RES_DEBUG,
-		       (stdout, ";; undersized: %d\n", len));
-		*terrno = EMSGSIZE;
-		res_nclose(statp);
-		return (0);
-	}
-	cp = ans;
-	while (len != 0 && (n = read(statp->_vcsock, (char *)cp, (int)len)) > 0){
-		cp += n;
-		len -= n;
-	}
-	if (n <= 0) {
-		*terrno = errno;
-		Perror(statp, stderr, "read(vc)", errno);
-		res_nclose(statp);
-		return (0);
-	}
-	if (truncating) {
-		/*
-		 * Flush rest of answer so connection stays in synch.
-		 */
-		anhp->tc = 1;
-		len = resplen - anssiz;
-		while (len != 0) {
-			char junk[PACKETSZ];
-
-			n = read(statp->_vcsock, junk,
-				 (len > sizeof junk) ? sizeof junk : len);
-			if (n > 0)
-				len -= n;
-			else
-				break;
-		}
-	}
-	/*
-	 * If the calling applicating has bailed out of
-	 * a previous call and failed to arrange to have
-	 * the circuit closed or the server has got
-	 * itself confused, then drop the packet and
-	 * wait for the correct one.
-	 */
-	if (hp->id != anhp->id) {
-		DprintQ((statp->options & RES_DEBUG) ||
-			(statp->pfcode & RES_PRF_REPLY),
-			(stdout, ";; old answer (unexpected):\n"),
-			ans, (resplen > anssiz) ? anssiz: resplen);
-		goto read_len;
-	}
-
-	/*
-	 * All is well, or the error is fatal.  Signal that the
-	 * next nameserver ought not be tried.
-	 */
-	return (resplen);
-}
-
-static int
-send_dg(res_state statp,
-	const u_char *buf, int buflen, u_char *ans, int anssiz,
-	int *terrno, int ns, int *v_circuit, int *gotsomewhere)
-{
-	const HEADER *hp = (HEADER *) buf;
-	HEADER *anhp = (HEADER *) ans;
-	const struct sockaddr_in *nsap = &statp->nsaddr_list[ns];
-	struct timespec now, timeout, finish;
-	fd_set dsmask;
-	struct sockaddr_in from;
-	int fromlen, resplen, seconds, n, s;
-
-	if (EXT(statp).nssocks[ns] == -1) {
-		EXT(statp).nssocks[ns] = socket(PF_INET, SOCK_DGRAM, 0);
-		if (EXT(statp).nssocks[ns] > highestFD) {
-			res_nclose(statp);
-			errno = ENOTSOCK;
-		}
-		if (EXT(statp).nssocks[ns] < 0) {
-			*terrno = errno;
-			Perror(statp, stderr, "socket(dg)", errno);
-			return (-1);
-		}
-#ifndef CANNOT_CONNECT_DGRAM
-		/*
-		 * On a 4.3BSD+ machine (client and server,
-		 * actually), sending to a nameserver datagram
-		 * port with no nameserver will cause an
-		 * ICMP port unreachable message to be returned.
-		 * If our datagram socket is "connected" to the
-		 * server, we get an ECONNREFUSED error on the next
-		 * socket operation, and select returns if the
-		 * error message is received.  We can thus detect
-		 * the absence of a nameserver without timing out.
-		 */
-		if (connect(EXT(statp).nssocks[ns], (struct sockaddr *)nsap,
-			    sizeof *nsap) < 0) {
-			Aerror(statp, stderr, "connect(dg)", errno, *nsap);
-			res_nclose(statp);
-			return (0);
-		}
-#endif /* !CANNOT_CONNECT_DGRAM */
-		Dprint(statp->options & RES_DEBUG,
-		       (stdout, ";; new DG socket\n"))
-	}
-	s = EXT(statp).nssocks[ns];
-#ifndef CANNOT_CONNECT_DGRAM
-	if (send(s, (char*)buf, buflen, 0) != buflen) {
-		Perror(statp, stderr, "send", errno);
-		res_nclose(statp);
-		return (0);
-	}
-#else /* !CANNOT_CONNECT_DGRAM */
-	if (sendto(s, (char*)buf, buflen, 0,
-		   (struct sockaddr *)nsap, sizeof *nsap) != buflen)
-	{
-		Aerror(statp, stderr, "sendto", errno, *nsap);
-		res_nclose(statp);
-		return (0);
-	}
-#endif /* !CANNOT_CONNECT_DGRAM */
-
-	/*
-	 * Wait for reply.
-	 */
-	seconds = (statp->retrans << ns);
-	if (ns > 0)
-		seconds /= statp->nscount;
-	if (seconds <= 0)
-		seconds = 1;
-	now = evNowTime();
-	timeout = evConsTime(seconds, 0);
-	finish = evAddTime(now, timeout);
- wait:
-	FD_ZERO(&dsmask);
-	FD_SET(s, &dsmask);
-	n = pselect(s + 1, &dsmask, NULL, NULL, &timeout, NULL);
-	if (n == 0) {
-		Dprint(statp->options & RES_DEBUG, (stdout, ";; timeout\n"));
-		*gotsomewhere = 1;
-		return (0);
-	}
-	if (n < 0) {
-		if (errno == EINTR) {
-			now = evNowTime();
-			if (evCmpTime(finish, now) > 0) {
-				timeout = evSubTime(finish, now);
-				goto wait;
-			}
-		}
-		Perror(statp, stderr, "select", errno);
-		res_nclose(statp);
-		return (0);
-	}
-	errno = 0;
-	fromlen = sizeof(struct sockaddr_in);
-	resplen = recvfrom(s, (char*)ans, anssiz,0,
-			   (struct sockaddr *)&from, &fromlen);
-	if (resplen <= 0) {
-		Perror(statp, stderr, "recvfrom", errno);
-		res_nclose(statp);
-		return (0);
-	}
-	*gotsomewhere = 1;
-	if (resplen < HFIXEDSZ) {
-		/*
-		 * Undersized message.
-		 */
-		Dprint(statp->options & RES_DEBUG,
-		       (stdout, ";; undersized: %d\n",
-			resplen));
-		*terrno = EMSGSIZE;
-		res_nclose(statp);
-		return (0);
-	}
-	if (hp->id != anhp->id) {
-		/*
-		 * response from old query, ignore it.
-		 * XXX - potential security hazard could
-		 *	 be detected here.
-		 */
-		DprintQ((statp->options & RES_DEBUG) ||
-			(statp->pfcode & RES_PRF_REPLY),
-			(stdout, ";; old answer:\n"),
-			ans, (resplen > anssiz) ? anssiz : resplen);
-		goto wait;
-	}
-	if (!(statp->options & RES_INSECURE1) &&
-	    !res_ourserver_p(statp, &from)) {
-		/*
-		 * response from wrong server? ignore it.
-		 * XXX - potential security hazard could
-		 *	 be detected here.
-		 */
-		DprintQ((statp->options & RES_DEBUG) ||
-			(statp->pfcode & RES_PRF_REPLY),
-			(stdout, ";; not our server:\n"),
-			ans, (resplen > anssiz) ? anssiz : resplen);
-		goto wait;
-	}
-	if (!(statp->options & RES_INSECURE2) &&
-	    !res_queriesmatch(buf, buf + buflen,
-			      ans, ans + anssiz)) {
-		/*
-		 * response contains wrong query? ignore it.
-		 * XXX - potential security hazard could
-		 *	 be detected here.
-		 */
-		DprintQ((statp->options & RES_DEBUG) ||
-			(statp->pfcode & RES_PRF_REPLY),
-			(stdout, ";; wrong query name:\n"),
-			ans, (resplen > anssiz) ? anssiz : resplen);
-		goto wait;
-	}
-	if (anhp->rcode == SERVFAIL ||
-	    anhp->rcode == NOTIMP ||
-	    anhp->rcode == REFUSED) {
-		DprintQ(statp->options & RES_DEBUG,
-			(stdout, "server rejected query:\n"),
-			ans, (resplen > anssiz) ? anssiz : resplen);
-		res_nclose(statp);
-		/* don't retry if called from dig */
-		if (!statp->pfcode)
-			return (0);
-	}
-	if (!(statp->options & RES_IGNTC) && anhp->tc) {
-		/*
-		 * To get the rest of answer,
-		 * use TCP with same server.
-		 */
-		Dprint(statp->options & RES_DEBUG,
-		       (stdout, ";; truncated answer\n"));
-		*v_circuit = 1;
-		res_nclose(statp);
-		return (1);
-	}
-	/*
-	 * All is well, or the error is fatal.  Signal that the
-	 * next nameserver ought not be tried.
-	 */
-	return (resplen);
-}
-
-static void
-Aerror(const res_state statp, FILE *file, const char *string, int error,
-       struct sockaddr_in address)
-{
-	int save = errno;
-
-	if ((statp->options & RES_DEBUG) != 0) {
-		char tmp[sizeof "255.255.255.255"];
-
-		fprintf(file, "res_send: %s ([%s].%u): %s\n",
-			string,
-			inet_ntop(address.sin_family, &address.sin_addr,
-				  tmp, sizeof tmp),
-			ntohs(address.sin_port),
-			strerror(error));
-	}
-	errno = save;
-}
-
-static void
-Perror(const res_state statp, FILE *file, const char *string, int error) {
-	int save = errno;
-
-	if ((statp->options & RES_DEBUG) != 0)
-		fprintf(file, "res_send: %s: %s\n",
-			string, strerror(error));
-	errno = save;
-}
-
-static int
-sock_eq(struct sockaddr_in *a1, struct sockaddr_in *a2) {
-	return ((a1->sin_family == a2->sin_family) &&
-		(a1->sin_port == a2->sin_port) &&
-		(a1->sin_addr.s_addr == a2->sin_addr.s_addr));
-}
-
-#ifdef NEED_PSELECT
-/* XXX needs to move to the porting library. */
-static int
-pselect(int nfds, void *rfds, void *wfds, void *efds,
-	struct timespec *tsp, const sigset_t *sigmask)
-{
-	struct timeval tv, *tvp;
-	sigset_t sigs;
-	int n;
-
-	if (tsp) {
-		tvp = &tv;
-		tv = evTimeVal(*tsp);
-	} else
-		tvp = NULL;
-	if (sigmask)
-		sigprocmask(SIG_SETMASK, sigmask, &sigs);
-	n = select(nfds, rfds, wfds, efds, tvp);
-	if (sigmask)
-		sigprocmask(SIG_SETMASK, &sigs, NULL);
-	if (tsp)
-		*tsp = evTimeSpec(tv);
-	return (n);
-}
-#endif
diff --git a/contrib/bind/lib/resolv/res_sendsigned.c b/contrib/bind/lib/resolv/res_sendsigned.c
deleted file mode 100644
index efa463cf6e199..0000000000000
--- a/contrib/bind/lib/resolv/res_sendsigned.c
+++ /dev/null
@@ -1,130 +0,0 @@
-#include "port_before.h"
-#include "fd_setsize.h"
-
-#include <sys/types.h>
-#include <sys/param.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <isc/dst.h>
-
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-#include <unistd.h>
-
-#include "port_after.h"
-
-#define DEBUG
-#include "res_debug.h"
-
-
-/* res_nsendsigned */
-int
-res_nsendsigned(res_state statp, const u_char *msg, int msglen,
-		ns_tsig_key *key, u_char *answer, int anslen)
-{
-	res_state nstatp;
-	DST_KEY *dstkey;
-	int usingTCP = 0;
-	u_char *newmsg;
-	int newmsglen, bufsize, siglen;
-	u_char sig[64];
-	HEADER *hp;
-	time_t tsig_time;
-	int ret;
-
-	dst_init();
-
-	nstatp = (res_state) malloc(sizeof(*statp));
-	if (nstatp == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	memcpy(nstatp, statp, sizeof(*statp));
-
-	bufsize = msglen + 1024;
-	newmsg = (u_char *) malloc(bufsize);
-	if (newmsg == NULL) {
-		errno = ENOMEM;
-		return (-1);
-	}
-	memcpy(newmsg, msg, msglen);
-	newmsglen = msglen;
-
-	if (ns_samename(key->alg, NS_TSIG_ALG_HMAC_MD5) != 1)
-		dstkey = NULL;
-	else
-		dstkey = dst_buffer_to_key(key->name, KEY_HMAC_MD5,
-					   NS_KEY_TYPE_AUTH_ONLY,
-					   NS_KEY_PROT_ANY,
-					   key->data, key->len);
-	if (dstkey == NULL) {
-		errno = EINVAL;
-		free(nstatp);
-		free(newmsg);
-		return (-1);
-	}
-
-	nstatp->nscount = 1;
-	siglen = sizeof(sig);
-	ret = ns_sign(newmsg, &newmsglen, bufsize, NOERROR, dstkey, NULL, 0,
-		      sig, &siglen, 0);
-	if (ret < 0) {
-		free (nstatp);
-		free (newmsg);
-		if (ret == NS_TSIG_ERROR_NO_SPACE)
-			errno  = EMSGSIZE;
-		else if (ret == -1)
-			errno  = EINVAL;
-		return (ret);
-	}
-
-	if (newmsglen > PACKETSZ || (nstatp->options & RES_IGNTC))
-		usingTCP = 1;
-	if (usingTCP == 0)
-		nstatp->options |= RES_IGNTC;
-	else
-		nstatp->options |= RES_USEVC;
-
-retry:
-
-	ret = res_nsend(nstatp, newmsg, newmsglen, answer, anslen);
-	if (ret < 0) {
-		free (nstatp);
-		free (newmsg);
-		return (ret);
-	}
-
-	anslen = ret;
-	ret = ns_verify(answer, &anslen, dstkey, sig, siglen,
-			NULL, NULL, &tsig_time, nstatp->options & RES_KEEPTSIG);
-	if (ret != 0) {
-		Dprint(nstatp->pfcode & RES_PRF_REPLY,
-		       (stdout, ";; TSIG invalid (%s)\n", p_rcode(ret)));
-		free (nstatp);
-		free (newmsg);
-		if (ret == -1)
-			errno = EINVAL;
-		else
-			errno = ENOTTY;
-		return (-1);
-	}
-	Dprint(nstatp->pfcode & RES_PRF_REPLY, (stdout, ";; TSIG ok\n"));
-
-	hp = (HEADER *) answer;
-	if (hp->tc && usingTCP == 0) {
-		nstatp->options &= ~RES_IGNTC;
-		usingTCP = 1;
-		goto retry;
-	}
-
-	free (nstatp);
-	free (newmsg);
-	return (anslen);
-}
diff --git a/contrib/bind/lib/resolv/res_update.c b/contrib/bind/lib/resolv/res_update.c
deleted file mode 100644
index bb2456e244292..0000000000000
--- a/contrib/bind/lib/resolv/res_update.c
+++ /dev/null
@@ -1,227 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static const char rcsid[] = "$Id: res_update.c,v 1.24 1999/10/15 19:49:12 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996-1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Based on the Dynamic DNS reference implementation by Viraj Bais
- * <viraj_bais@ccm.fm.intel.com>
- */
-
-#include "port_before.h"
-
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <limits.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <res_update.h>
-#include <stdarg.h>
-#include <stdio.h>
-#include <stdlib.h>
-#include <string.h>
-
-#include <isc/list.h>
-
-#include "port_after.h"
-
-/*
- * Separate a linked list of records into groups so that all records
- * in a group will belong to a single zone on the nameserver.
- * Create a dynamic update packet for each zone and send it to the
- * nameservers for that zone, and await answer.
- * Abort if error occurs in updating any zone.
- * Return the number of zones updated on success, < 0 on error.
- *
- * On error, caller must deal with the unsynchronized zones
- * eg. an A record might have been successfully added to the forward
- * zone but the corresponding PTR record would be missing if error
- * was encountered while updating the reverse zone.
- */
-
-struct zonegrp {
-	char			z_origin[MAXDNAME];
-	ns_class		z_class;
-	struct in_addr		z_nsaddrs[MAXNS];
-	int			z_nscount;
-	int			z_flags;
-	LIST(ns_updrec)		z_rrlist;
-	LINK(struct zonegrp)	z_link;
-};
-
-#define ZG_F_ZONESECTADDED	0x0001
-
-/* Forward. */
-
-static int	nscopy(struct sockaddr_in *, const struct sockaddr_in *, int);
-static int	nsprom(struct sockaddr_in *, const struct in_addr *, int);
-static void	dprintf(const char *, ...);
-
-/* Macros. */
-
-#define DPRINTF(x) do {\
-		int save_errno = errno; \
-		if ((statp->options & RES_DEBUG) != 0) dprintf x; \
-		errno = save_errno; \
-	} while (0)
-
-/* Public. */
-
-int
-res_nupdate(res_state statp, ns_updrec *rrecp_in, ns_tsig_key *key) {
-	ns_updrec *rrecp;
-	u_char answer[PACKETSZ], packet[2*PACKETSZ];
-	struct zonegrp *zptr, tgrp;
-	LIST(struct zonegrp) zgrps;
-	int nzones = 0, nscount = 0, n;
-	struct sockaddr_in nsaddrs[MAXNS];
-
-	/* Thread all of the updates onto a list of groups. */
-	INIT_LIST(zgrps);
-	for (rrecp = rrecp_in; rrecp; rrecp = NEXT(rrecp, r_link)) {
-		/* Find the origin for it if there is one. */
-		tgrp.z_class = rrecp->r_class;
-		tgrp.z_nscount =
-			res_findzonecut(statp, rrecp->r_dname, tgrp.z_class,
-					RES_EXHAUSTIVE,
-					tgrp.z_origin,
-					sizeof tgrp.z_origin,
-					tgrp.z_nsaddrs, MAXNS);
-		if (tgrp.z_nscount <= 0) {
-			DPRINTF(("res_findzonecut failed (%d)",
-				 tgrp.z_nscount));
-			goto done;
-		}
-		/* Find the group for it if there is one. */
-		for (zptr = HEAD(zgrps); zptr != NULL; zptr = NEXT(zptr, z_link))
-			if (ns_samename(tgrp.z_origin, zptr->z_origin) == 1 &&
-			    tgrp.z_class == zptr->z_class)
-				break;
-		/* Make a group for it if there isn't one. */
-		if (zptr == NULL) {
-			zptr = malloc(sizeof *zptr);
-			if (zptr == NULL) {
-				DPRINTF(("malloc failed"));
-				goto done;
-			}
-			*zptr = tgrp;
-			zptr->z_flags = 0;
-			INIT_LIST(zptr->z_rrlist);
-			APPEND(zgrps, zptr, z_link);
-		}
-		/* Thread this rrecp onto the right group. */
-		APPEND(zptr->z_rrlist, rrecp, r_glink);
-	}
-
-	for (zptr = HEAD(zgrps); zptr != NULL; zptr = NEXT(zptr, z_link)) {
-		/* Construct zone section and prepend it. */
-		rrecp = res_mkupdrec(ns_s_zn, zptr->z_origin,
-				     zptr->z_class, ns_t_soa, 0);
-		if (rrecp == NULL) {
-			DPRINTF(("res_mkupdrec failed"));
-			goto done;
-		}
-		PREPEND(zptr->z_rrlist, rrecp, r_glink);
-		zptr->z_flags |= ZG_F_ZONESECTADDED;
-
-		/* Marshall the update message. */
-		n = res_nmkupdate(statp, HEAD(zptr->z_rrlist),
-				  packet, sizeof packet);
-		DPRINTF(("res_mkupdate -> %d", n));
-		if (n < 0)
-			goto done;
-
-		/* Temporarily replace the resolver's nameserver set. */
-		nscount = nscopy(nsaddrs, statp->nsaddr_list, statp->nscount);
-		statp->nscount = nsprom(statp->nsaddr_list,
-					zptr->z_nsaddrs, zptr->z_nscount);
-
-		/* Send the update and remember the result. */
-		if (key != NULL)
-			n = res_nsendsigned(statp, packet, n, key,
-					    answer, sizeof answer);
-		else
-			n = res_nsend(statp, packet, n, answer, sizeof answer);
-		if (n < 0) {
-			DPRINTF(("res_nsend: send error, n=%d (%s)\n",
-				 n, strerror(errno)));
-			goto done;
-		}
-		if (((HEADER *)answer)->rcode == NOERROR)
-			nzones++;
-
-		/* Restore resolver's nameserver set. */
-		statp->nscount = nscopy(statp->nsaddr_list, nsaddrs, nscount);
-		nscount = 0;
-	}
- done:
-	while (!EMPTY(zgrps)) {
-		zptr = HEAD(zgrps);
-		if ((zptr->z_flags & ZG_F_ZONESECTADDED) != 0)
-			res_freeupdrec(HEAD(zptr->z_rrlist));
-		UNLINK(zgrps, zptr, z_link);
-		free(zptr);
-	}
-	if (nscount != 0)
-		statp->nscount = nscopy(statp->nsaddr_list, nsaddrs, nscount);
-
-	return (nzones);
-}
-
-/* Private. */
-
-static int
-nscopy(struct sockaddr_in *dst, const struct sockaddr_in *src, int n) {
-	int i;
-
-	for (i = 0; i < n; i++)
-		dst[i] = src[i];
-	return (n);
-}
-
-static int
-nsprom(struct sockaddr_in *dst, const struct in_addr *src, int n) {
-	int i;
-
-	for (i = 0; i < n; i++) {
-		memset(&dst[i], 0, sizeof dst[i]);
-		dst[i].sin_family = AF_INET;
-		dst[i].sin_port = htons(NS_DEFAULTPORT);
-		dst[i].sin_addr = src[i];
-	}
-	return (n);
-}
-
-static void
-dprintf(const char *fmt, ...) {
-	va_list ap;
-
-	va_start(ap, fmt);
-	fputs(";; res_nupdate: ", stderr);
-	vfprintf(stderr, fmt, ap);
-	fputc('\n', stderr);
-	va_end(ap);
-}
diff --git a/contrib/bind/man/Makefile b/contrib/bind/man/Makefile
deleted file mode 100644
index 26c6af5f12a26..0000000000000
--- a/contrib/bind/man/Makefile
+++ /dev/null
@@ -1,451 +0,0 @@
-#
-# Makefile to install the BIND 4.9 manual entries.
-#
-# Default Configuration:
-# 	There are a set of default assignments immediately following this 
-#	note. These defaults are for BSD4.4, BSD/386, other net2-alikes, 
-#	and will install manual entries with following characteristics:
-#	o  They will be catable (i.e., passed through nroff)
-#	o  They will be installed in the directories
-#		/usr/share/man/catN, where N is 1, 3, 5, 7, 8
-#	o  They will have an extension of `.0'
-#
-# Don't change these defaults. Instead, following the default configuration
-# are sets of commented values for particular systems that can be used
-# to override the default values.
-#
-
-#
-# Target directory for the manual directory tree. Eg., may be used to 
-# specify the path of an NFS-mounted directory for common files.
-#
-DESTDIR=
-
-#
-# Default location for manual section directories.
-#
-DESTMAN= /usr/share/man
-
-#
-# Install manuals in ${MANDIR}N. For systems that generate catable manual 
-# entries on the fly, use
-#	MANDIR = man
-#
-MANDIR = cat
-
-#
-# Default extension for manual entries. To install the manual entries under
-# their `real' extensions use 
-#	CATEXT = $$N
-#
-CATEXT = 0
-
-#
-# Command to install manual entries
-#
-INSTALL= install
-
-#
-# `install' options to set Owner and Group for manual entries. Eg. for 
-# BSD `install' use
-# 	MAN_OWNER = -o bin
-#	MAN_GROUP = -g bin
-#
-MAN_OWNER =
-MAN_GROUP =
-
-SHELL= /bin/sh
-
-INDOT=
-XFER_INDOT=
-#
-# Uppercase versions of the above variables (`INDOT_U' and `XFER_INDOT_U')
-# are defined for use in `.TH' lines.
-#
-
-#
-# Command used to generate a manual entry. By default this produces catable
-# manual entries.
-#
-# For systems that store manuals in source form (eg SunOS 4.x and SunOS 5.x)
-# and generate catable manual entries on the fly the following assignment
-# can be used. 
-#	MANROFF = cat
-#
-MANROFF = ( tbl | nroff -man )
-
-#
-# Default extensions for installed manual entries. The following variables 
-# have been defined to allow BIND's manual entries to be installed in the 
-# right place for a given platform.
-#
-# 	CMD_EXT = extension for user commands (eg, dig)
-# 	LIB_NETWORK_EXT = extension for network library routines (eg, 
-#			gethostbyname)
-# 	FORMAT_EXT = extension for files describing file formats
-#			(eg, resolver)
-# 	DESC_EXT = extension for descriptive files (eg, mailaddr)
-# 	SYS_OPS_EXT =  extension system operation and maintenance commands 
-#			and applications. (eg, named, named-xfer, syslog)
-#
-# Associated with each variable is an additional variable with the suffix
-# `_DIR' that specifies the suffix to ${MANDIR}. It's needed because on
-# some systems, eg., Ultrix, multiple subsections (eg 3x, 3m 3n) are 
-# stored in generic manual section directories (eg., man3).
-#
-# Associated with each variable is an additional variable with the suffix
-# `_U' which gives the upper case form of the variable for use in `.TH'
-# commands. Useful for platforms (such as Solaris 2) that include letters
-# in manual sections.
-#
-CMD_EXT = 1
-CMD_EXT_DIR = ${CMD_EXT}
-LIB_NETWORK_EXT = 3
-LIB_NETWORK_EXT_DIR = ${LIB_NETWORK_EXT}
-FORMAT_EXT = 5
-FORMAT_EXT_DIR = ${FORMAT_EXT}
-DESC_EXT = 7
-DESC_EXT_DIR = ${DESC_EXT}
-SYS_OPS_EXT = 8
-SYS_OPS_EXT_DIR = ${SYS_OPS_EXT}
-
-#
-# Additional variables are defined for cross-references within manual
-# entries:
-#	SYSCALL_EXT = extension for system calls
-#	BSD_SYSCALL_EXT = extension for BSD-specifc system calls. On some
-#			systems (eg Ultrix) these appear in section 2.
-#			On other system (eg SunOS 5) these are implemented
-#			via a BSD-compatibility library and appear in 
-#			section 3.
-#	LIB_C_EXT = extension for C library routines (eg, signal)
-#
-SYSCALL_EXT = 2
-SYSCALL_EXT_DIR = ${SYSCALL_EXT}
-BSD_SYSCALL_EXT = 2
-BSD_SYSCALL_EXT_DIR = ${BSD_SYSCALL_EXT}
-LIB_C_EXT = 3
-LIB_C_EXT_DIR = ${LIB_C_EXT}
-
-#
-# Platform specific assignments start here:
-#
-
-#
-# (CRAY)
-#
-
-#
-# (DEC AXP OSF/1)
-#
-#DESTMAN= /usr/share/man
-#MANDIR = man
-#CATEXT = $$N
-#MAN_OWNER = -o root
-#MAN_GROUP = -g root
-#INSTALL = installbsd
-#MANROFF = cat
-## Extensions for DEC AXP OSF/1 manual entries
-#CMD_EXT = 1
-#SYS_OPS_EXT = 8
-#LIB_NETWORK_EXT = 3
-#FORMAT_EXT = 4
-#DESC_EXT = 5
-#
-#SYSCALL_EXT = 2
-#BSD_SYSCALL_EXT = 2
-#LIB_C_EXT = 3
-
-#
-# (irix4)
-#
-
-#
-# (irix5)
-#
-
-#
-# (sunos4.x)
-#
-
-#
-# (ULTRIX, sunos, other 4.[23]bsd-alikes)
-#
-#DESTMAN= /usr/man
-#MANDIR = man
-#CATEXT = $$N
-#MAN_OWNER = -o root
-#MAN_GROUP = -g root
-#INSTALL = install
-#MANROFF = cat
-## Extensions for ULTRIX, sunos, other 4.[23]bsd-alikes manual entries
-#CMD_EXT = 1
-#SYS_OPS_EXT = 8
-#LIB_NETWORK_EXT = 3n
-#LIB_NETWORK_EXT_DIR = 3
-#FORMAT_EXT = 5
-#DESC_EXT = 7
-#
-#SYSCALL_EXT = 2
-#BSD_SYSCALL_EXT = 2
-#LIB_C_EXT = 3
-
-#
-# SunOS 5.x (Solaris 2.x)
-#
-#DESTMAN= /usr/share/man
-#MANDIR = man
-#CATEXT = $$N
-#MAN_OWNER = -o bin
-#MAN_GROUP = -g bin
-#INSTALL = /usr/ucb/install 
-#MANROFF = cat
-#INDOT = in.
-#XFER_INDOT =
-## Extensions for Solaris 2.x manual entries
-#CMD_EXT = 1
-#SYS_OPS_EXT = 1m
-#LIB_NETWORK_EXT = 3n
-#FORMAT_EXT = 4
-#DESC_EXT = 5
-#
-#SYSCALL_EXT = 2
-#BSD_SYSCALL_EXT = 3b
-#LIB_C_EXT = 3c
-
-#
-# (hpux9.0)
-#
-
-#
-# (apollo domainos)
-#
-
-#
-# (AIX3)
-#
-
-#
-# (ConvexOS-10.x)
-#
-
-#
-# (NEC EWS4800 EWS-UX/V Rel4.0/Rel4.2)
-#
-
-#
-# SCO Unix 3.4.2 / ODT 3.0
-#
-
-#
-# (NeXTstep 2.1 and 3.0)
-#
-
-#
-# (Sequent Dynix/PTX)
-#
-
-######################################################################
-#
-# No user changes needed past this point.
-#
-######################################################################
-#
-# This sed command is used to update the manual entries so they refer to 
-# the appropriate section of the manual for a given platform.
-#
-EXT_SED_CMD =	INDOT_U=`echo "${INDOT}"|tr "[a-z]" "[A-Z]"`; \
-		export INDOT_U; \
-		XFER_INDOT_U=`echo "${XFER_INDOT}"|tr "[a-z]" "[A-Z]"`; \
-		export XFER_INDOT_U; \
-		CMD_EXT_U=`echo "${CMD_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export CMD_EXT_U; \
-		SYS_OPS_EXT_U=`echo "${SYS_OPS_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export SYS_OPS_EXT_U; \
-		LIB_NETWORK_EXT_U=`echo "${LIB_NETWORK_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export LIB_NETWORK_EXT_U; \
-		FORMAT_EXT_U=`echo "${FORMAT_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export FORMAT_EXT_U; \
-		DESC_EXT_U=`echo "${DESC_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export DESC_EXT_U; \
-		SYSCALL_EXT_U=`echo "${SYSCALL_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export SYSCALL_EXT_U; \
-		BSD_SYSCALL_EXT_U=`echo "${BSD_SYSCALL_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export BSD_SYSCALL_EXT_U; \
-		LIB_C_EXT_U=`echo "${LIB_C_EXT}"|tr "[a-z]" "[A-Z]"`; \
-		export LIB_C_EXT_U; \
-		sed -e "s/@INDOT@/${INDOT}/g" \
-		-e "s/@INDOT_U@/$${INDOT_U}/g" \
-		-e "s/@XFER_INDOT@/${XFER_INDOT}/g" \
-		-e "s/@XFER_INDOT_U@/$${XFER_INDOT_U}/g" \
-		-e "s/@CMD_EXT@/${CMD_EXT}/g" \
-		-e "s/@CMD_EXT_U@/$${CMD_EXT_U}/g" \
-		-e "s/@LIB_NETWORK_EXT@/${LIB_NETWORK_EXT}/g" \
-		-e "s/@LIB_NETWORK_EXT_U@/$${LIB_NETWORK_EXT_U}/g" \
-		-e "s/@FORMAT_EXT@/${FORMAT_EXT}/g" \
-		-e "s/@FORMAT_EXT_U@/$${FORMAT_EXT_U}/g" \
-		-e "s/@DESC_EXT@/${DESC_EXT}/g" \
-		-e "s/@DESC_EXT_U@/$${DESC_EXT_U}/g" \
-		-e "s/@SYS_OPS_EXT@/${SYS_OPS_EXT}/g" \
-		-e "s/@SYS_OPS_EXT_U@/$${SYS_OPS_EXT_U}/g" \
-		-e "s/@SYSCALL_EXT@/${SYSCALL_EXT}/g" \
-		-e "s/@SYSCALL_EXT_U@/$${SYSCALL_EXT_U}/g" \
-		-e "s/@BSD_SYSCALL_EXT@/${BSD_SYSCALL_EXT}/g" \
-		-e "s/@BSD_SYSCALL_EXT_U@/$${BSD_SYSCALL_EXT_U}/g" \
-		-e "s/@LIB_C_EXT@/${LIB_C_EXT}/g" \
-		-e "s/@LIB_C_EXT_U@/$${LIB_C_EXT_U}/g"
-
-#
-# Command used to produce manual entries
-#
-MK_MANFILE = ( ${EXT_SED_CMD} | ${MANROFF} )
-
-#
-# Extensions for the generated manual entries
-#
-CMD_OUT_EXT = out${CMD_EXT}
-LIB_NETWORK_OUT_EXT = out${LIB_NETWORK_EXT}
-FORMAT_OUT_EXT = out${FORMAT_EXT}
-DESC_OUT_EXT = out${DESC_EXT}
-SYS_OPS_OUT_EXT = out${SYS_OPS_EXT}
-
-#
-# User command manual entries
-#
-CMD_BASE = 	dig host dnsquery
-CMD_SRC_EXT = 	1
-CMD_SRC = 	dig.${CMD_SRC_EXT} host.${CMD_SRC_EXT} dnsquery.${CMD_SRC_EXT}
-CMD_OUT =	dig.${CMD_OUT_EXT} host.${CMD_OUT_EXT} dnsquery.${CMD_OUT_EXT}
-
-#
-# named manual entries
-#
-NAMED_BASE =	named named.reload named.restart ndc
-SYS_OPS_SRC_EXT = 8
-NAMED_SRC = 	named.${SYS_OPS_SRC_EXT} named.reload.${SYS_OPS_SRC_EXT} \
-		named.restart.${SYS_OPS_SRC_EXT} ndc.${SYS_OPS_SRC_EXT}
-NAMED_OUT = 	named.${SYS_OPS_OUT_EXT} named.reload.${SYS_OPS_OUT_EXT} \
-		named.restart.${SYS_OPS_OUT_EXT} ndc.${SYS_OPS_OUT_EXT}
-
-#
-# named-xfer manual entry
-#
-NAMED_XFER_BASE = named-xfer
-NAMED_XFER_SRC = named-xfer.${SYS_OPS_SRC_EXT}
-NAMED_XFER_OUT = named-xfer.${SYS_OPS_OUT_EXT}
-
-#
-# nslookup manual entry
-#
-NSLOOKUP_BASE = nslookup
-NSLOOKUP_SRC = 	nslookup.${SYS_OPS_SRC_EXT}
-NSLOOKUP_OUT = 	nslookup.${SYS_OPS_OUT_EXT}
-
-#
-# Network library routines manual entries
-#
-LIB_NETWORK_BASE =	gethostbyname resolver getnetent
-LIB_NETWORK_SRC_EXT =	3
-LIB_NETWORK_SRC = 	gethostbyname.${LIB_NETWORK_SRC_EXT} \
-			resolver.${LIB_NETWORK_SRC_EXT} \
-			getnetent.${LIB_NETWORK_SRC_EXT}
-LIB_NETWORK_OUT =	gethostbyname.${LIB_NETWORK_OUT_EXT} \
-			resolver.${LIB_NETWORK_OUT_EXT} \
-			getnetent.${LIB_NETWORK_OUT_EXT}
-
-#
-# File format manual entries
-#
-FORMAT_BASE =	resolver
-FORMAT_SRC_EXT = 5
-FORMAT_SRC = 	resolver.${FORMAT_SRC_EXT}
-FORMAT_OUT = 	resolver.${FORMAT_OUT_EXT}
-
-#
-# Feature Description manual entries
-#
-DESC_BASE =	hostname mailaddr
-DESC_SRC_EXT = 	7
-DESC_SRC = 	hostname.${DESC_SRC_EXT} mailaddr.${DESC_SRC_EXT}
-DESC_OUT = 	hostname.${DESC_OUT_EXT} mailaddr.${DESC_OUT_EXT}
-
-.SUFFIXES:	.${CMD_SRC_EXT} .${CMD_OUT_EXT} \
-		.${SYS_OPS_SRC_EXT} .${SYS_OPS_OUT_EXT} \
-		.${LIB_NETWORK_SRC_EXT} .${LIB_NETWORK_OUT_EXT} \
-		.${FORMAT_SRC_EXT} .${FORMAT_OUT_EXT} \
-		.${DESC_SRC_EXT} .${DESC_OUT_EXT} 
-
-.${CMD_SRC_EXT}.${CMD_OUT_EXT}:
-	${MK_MANFILE} <$*.${CMD_SRC_EXT} >$*.${CMD_OUT_EXT}
-
-.${SYS_OPS_SRC_EXT}.${SYS_OPS_OUT_EXT}:
-	${MK_MANFILE} <$*.${SYS_OPS_SRC_EXT} >$*.${SYS_OPS_OUT_EXT}
-
-.${LIB_NETWORK_SRC_EXT}.${LIB_NETWORK_OUT_EXT}:
-	${MK_MANFILE} <$*.${LIB_NETWORK_SRC_EXT} >$*.${LIB_NETWORK_OUT_EXT}
-
-.${FORMAT_SRC_EXT}.${FORMAT_OUT_EXT}:
-	${MK_MANFILE} <$*.${FORMAT_SRC_EXT} >$*.${FORMAT_OUT_EXT}
-
-.${DESC_SRC_EXT}.${DESC_OUT_EXT}:
-	${MK_MANFILE} <$*.${DESC_SRC_EXT} >$*.${DESC_OUT_EXT}
-
-OUTFILES =	${CMD_OUT} ${NAMED_OUT} ${NAMED_XFER_OUT} ${NSLOOKUP_OUT} \
-		${LIB_NETWORK_OUT} ${FORMAT_OUT} ${DESC_OUT}
-
-all:	${OUTFILES}
-
-install:	${OUTFILES} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${CMD_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${LIB_NETWORK_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${FORMAT_EXT_DIR} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${DESC_EXT_DIR}
-	@set -x; N=${CMD_EXT}; for f in ${CMD_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${CMD_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${CMD_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NAMED_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/${INDOT}$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NAMED_XFER_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/${XFER_INDOT}$${f}.${CATEXT}; \
-	done
-	@set -x; N=${SYS_OPS_EXT}; for f in ${NSLOOKUP_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${SYS_OPS_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${LIB_NETWORK_EXT}; for f in ${LIB_NETWORK_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${LIB_NETWORK_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${LIB_NETWORK_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${FORMAT_EXT}; for f in ${FORMAT_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${FORMAT_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${FORMAT_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-	@set -x; N=${DESC_EXT}; for f in ${DESC_BASE}; do \
-		${INSTALL} -c -m 444 ${MAN_OWNER} ${MAN_GROUP} \
-		$${f}.${DESC_OUT_EXT} \
-		${DESTDIR}${DESTMAN}/${MANDIR}${DESC_EXT_DIR}/$${f}.${CATEXT}; \
-	done
-
-${DESTDIR}${DESTMAN}/${MANDIR}${CMD_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${SYS_OPS_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${LIB_NETWORK_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${FORMAT_EXT_DIR} \
-${DESTDIR}${DESTMAN}/${MANDIR}${DESC_EXT_DIR}:
-	mkdir $@
-
-depend:
-
-clean:
-	rm -f *~ *.BAK *.CKP *.orig
-	rm -f ${OUTFILES}
diff --git a/contrib/bind/man/dig.1 b/contrib/bind/man/dig.1
deleted file mode 100644
index a02b2a1b3968c..0000000000000
--- a/contrib/bind/man/dig.1
+++ /dev/null
@@ -1,364 +0,0 @@
-.\" $Id: dig.1,v 8.2 1997/06/01 20:34:33 vixie Exp $
-.\"
-.\" ++Copyright++ 1993
-.\" -
-.\" Copyright (c) 1993
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\" Distributed with 'dig' version 2.0 from University of Southern
-.\" California Information Sciences Institute (USC-ISI).
-.\"
-.\"       dig.1   2.0 (USC-ISI) 8/30/90
-.\"
-.\" Man page reformatted for this release by Andrew Cherenson
-.\" (arc@sgi.com)
-.\"
-.TH DIG @CMD_EXT_U@ "August 30, 1990"
-.SH NAME
-dig \- send domain name query packets to name servers
-.SH SYNOPSIS
-.B dig 
-.RI [ @\fIserver\fP ]
-.I domain
-.RI [ "<query-type>" ]
-.RI [ "<query-class>" ]
-.RI [ "+<query-option>" ]
-.RI [ "\-<dig-option>" ]
-.RI [ "%comment" ]
-.SH DESCRIPTION
-\fIDig\fP (domain information groper) is a flexible command line tool
-which can be used to gather information from the Domain
-Name System servers. \fIDig\fP has two modes: simple interactive mode
-which makes a single query, and batch which executes a query for
-each in a list of several query lines. All query options are
-accessible from the command line.
-.PP
-The usual simple use of \fIdig\fP will take the form:
-.sp 1
-	dig  @server  domain   query-type  query-class
-.sp 1
-where:
-.IP \fIserver\fP 
-may be either a domain name or a dot-notation
-Internet address. If this optional field is omitted, \fIdig\fP
-will attempt to use the default name server for your machine.
-.sp 1
-\fBNote:\fP If a domain name is specified, this will be resolved
-using the domain name system resolver (i.e., BIND). If your
-system does not support DNS,  you may \fIhave\fP to specify a
-dot-notation address.  Alternatively, if there is a server
-at your disposal somewhere,  all that is required is that
-/etc/resolv.conf be present and indicate where the default
-name servers  reside,  so that  \fIserver\fP itself can be
-resolved. See 
-.IR resolver (@FORMAT_EXT@)
-for information on /etc/resolv.conf.
-(WARNING: Changing /etc/resolv.conf will affect
-the standard  resolver library and  potentially several
-programs which use it.) As an option, the user may set the
-environment variable LOCALRES to name a file which is to
-be used instead of /etc/resolv.conf (LOCALRES is specific
-to the \fIdig\fP resolver and  not referenced by the standard
-resolver). If the LOCALRES variable is not set or the file
-is not readable then /etc/resolv.conf will be used.
-.IP \fIdomain\fP
-is the domain name for which you are requesting information.
-See OPTIONS [-x] for convenient way to specify inverse address
-query.
-.IP \fIquery-type\fP 
-is the type of information (DNS query type) that
-you are requesting. If omitted, the default is "a" (T_A = address).
-The following types are recognized:
-.sp 1
-.ta \w'hinfoXX'u +\w'T_HINFOXX'u
-.nf
-a	T_A	network address
-any	T_ANY	all/any information about specified domain
-mx	T_MX	mail exchanger for the domain
-ns	T_NS	name servers
-soa	T_SOA	zone of authority record
-hinfo	T_HINFO	host information
-axfr	T_AXFR	zone transfer
-		 (must ask an authoritative server)
-txt	T_TXT	arbitrary number of strings
-.fi
-.sp 1
-(See RFC 1035 for the complete list.)
-.IP \fIquery-class\fP
-is the network class requested in the query. If
-omitted, the default is "in" (C_IN = Internet).
-The following classes are recognized:
-.sp 1
-.ta \w'hinfoXX'u +\w'T_HINFOXX'u
-.nf
-in	C_IN	Internet class domain
-any	C_ANY	all/any class information
-.fi
-.sp 1
-(See RFC 1035 for the complete list.)
-.sp 1
-\fBNote:\fP
-"Any" can be used to specify a class and/or a type of
-query. \fIDig\fP will parse the first occurrence of "any"
-to mean query-type = T_ANY. To specify query-class =
-C_ANY you must either specify "any" twice, or set
-query-class using "\-c" option (see below).
-.SH OTHER OPTIONS
-.IP "%ignored-comment"
-"%" is used to included an argument that is simply not
-parsed.  This may be useful  if running \fIdig\fP in batch
-mode. Instead of resolving every @server-domain-name in
-a list of queries, you can avoid the overhead of doing
-so, and still have the domain name on the command line
-as a reference. Example:
-.sp 1
-	dig  @128.9.0.32  %venera.isi.edu  mx  isi.edu
-.sp 1
-.IP "\-<dig option>"
-"\-" is used to specify an option which effects the
-operation of \fIdig\fP. The following options are currently
-available (although not guaranteed to be useful):
-.RS
-.IP "\-x \fIdot-notation-address\fP"
-Convenient form to specify inverse address mapping.
-Instead of "dig 32.0.9.128.in-addr.arpa" one can
-simply "dig -x 128.9.0.32".
-.IP "\-f \fIfile\fP"
-File for \fIdig\fP batch mode. The file contains a list
-of query specifications (\fIdig\fP command lines) which
-are to be executed successively. Lines beginning
-with ';', '#', or '\\n' are ignored. Other options
-may still appear on command line, and will be in
-effect for each batch query.
-.IP "\-T \fItime\fP"
-Time in seconds between start of successive
-queries when running in batch mode. Can be used
-to keep two or more batch \fIdig\fP commands running
-roughly in sync. Default is zero.
-.IP "\-p \fIport\fP"  
-Port number. Query a name server listening to a
-non-standard port number. Default is 53.
-.IP "\-P[\fIping-string\fP]"
-After query returns, execute a 
-.IR ping (@SYS_OPS_EXT@)
-command
-for response time comparison. This rather
-inelegantly makes a call to the shell. The last
-three lines of statistics is printed for the
-command:
-.sp 1
-	ping \-s server_name 56 3
-.sp 1
-If the optional "ping string" is present, it
-replaces "ping \-s" in the shell command.
-.IP "\-t \fIquery-type\fP"
-Specify type of query. May specify either an
-integer value to be included in the type field
-or use the abbreviated mnemonic as discussed
-above (i.e., mx  = T_MX).
-.IP "\-c \fIquery-class\fP"  
-Specify class of query. May specify either an
-integer value to be included in the class field
-or use the abbreviated mnemonic as discussed
-above (i.e., in = C_IN).
-.IP "\-envsav"
-This flag specifies that the \fIdig\fP environment
-(defaults, print options, etc.), after
-all of the arguments are parsed, should be saved
-to a file to become the default environment.
-Useful if you do not like the standard set of
-defaults and do not desire to include a
-large number of options each time \fIdig\fP is used.
-The environment consists of resolver state
-variable flags, timeout, and retries as well as
-the flags detailing \fIdig\fP output (see below).
-If the shell environment variable LOCALDEF is set
-to the name of a file, this is where the default
-\fIdig\fP environment is saved. If not, the file
-"DiG.env" is created in the current working directory.
-.sp 1
-\fBNote:\fP LOCALDEF is specific to the \fIdig\fP resolver,
-and will not affect operation of the standard
-resolver library.
-.sp 1
-Each time \fIdig\fP is executed, it looks for "./DiG.env"
-or the file specified by the shell environment variable
-LOCALDEF. If such file exists and is readable, then the
-environment is restored from this file
-before any arguments are parsed.
-.IP "\-envset"
-This flag only affects
-batch query runs. When "\-envset" is
-specified on a line in a \fIdig\fP batch file,
-the \fIdig\fP environment after the arguments are parsed,
-becomes the default environment for the duration of
-the batch file, or until the next line which specifies
-"\-envset".
-.IP "\-[no]stick"
-This flag only affects batch query runs.
-It specifies that the \fIdig\fP environment (as read initially
-or set by "\-envset" switch) is to be restored before each query
-(line) in a \fIdig\fP batch file.
-The default "\-nostick" means that the \fIdig\fP environment
-does not stick, hence options specified on a single line
-in a \fIdig\fP batch file will remain in effect for
-subsequent lines (i.e. they are not restored to the
-"sticky" default).
-
-.RE
-.IP "+<query option>"
-"+" is used to specify an option to be changed in the
-query packet or to change \fIdig\fP output specifics. Many
-of these are the same parameters accepted by 
-.IR nslookup (@SYS_OPS_EXT@).
-If an option requires a parameter, the form is as
-follows:
-.sp 1
-	+keyword[=value]
-.sp 1
-Most keywords can be abbreviated.  Parsing of the "+"
-options  is very  simplistic \(em a value must not be
-separated from its keyword by white space. The following
-keywords are currently available:
-.sp 1
-.nf
-.ta \w'domain=NAMEXX'u +\w'(deb)XXX'u
-Keyword	Abbrev.	Meaning [default]
-
-[no]debug	(deb)	turn on/off debugging mode [deb]
-[no]d2		turn on/off extra debugging mode [nod2]
-[no]recurse	(rec)	use/don't use recursive lookup [rec]
-retry=#	(ret)	set number of retries to # [4]
-time=#	(ti)	set timeout length to # seconds [4]
-[no]ko		keep open option (implies vc) [noko]
-[no]vc		use/don't use virtual circuit [novc]
-[no]defname	(def)	use/don't use default domain name [def]
-[no]search	(sea)	use/don't use domain search list [sea]
-domain=NAME	(do)	set default domain name to NAME
-[no]ignore	(i)	ignore/don't ignore trunc. errors [noi]
-[no]primary	(pr)	 use/don't use primary server [nopr]
-[no]aaonly	(aa)	authoritative query only flag [noaa]
-[no]sort	(sor)	sort resource records [nosor]
-[no]cmd		echo parsed arguments [cmd]
-[no]stats	(st)	print query statistics [st]
-[no]Header	(H)	print basic header [H]
-[no]header	(he)	print header flags [he]
-[no]ttlid	(tt)	print TTLs [tt]
-[no]cl			print class info [nocl]
-[no]qr		print outgoing query [noqr]
-[no]reply	(rep)	print reply [rep]
-[no]ques	(qu)	print question section [qu]
-[no]answer	(an)	print answer section [an]
-[no]author	(au)	print authoritative section [au]
-[no]addit	(ad)	print additional section [ad]
-pfdef		set to default print flags
-pfmin		set to minimal default print flags
-pfset=#		set print flags to #
-		(# can be hex/octal/decimal)
-pfand=#		bitwise and print flags with #
-pfor=#		bitwise or print flags with #
-.fi
-.sp 1
-The retry and time options affect the retransmission strategy used by resolver 
-library when sending datagram queries. The algorithm is as follows:
-.sp 1
-.in +5n
-.nf
-for i = 0 to retry \- 1
-    for j = 1 to num_servers
-	send_query
-	wait((time * (2**i)) / num_servers)
-    end
-end
-.fi
-.in -5n
-.sp 1
-(Note: \fIdig\fP always uses a value of 1 for num_servers.) 
-.SH DETAILS
-\fIDig\fP once required a slightly modified version of the BIND 
-.IR resolver (@LIB_NETWORK_EXT@)
-library.  BIND's resolver has (as of BIND 4.9) been augmented to work
-properly with \fIDig\fP.  Essentially, \fIDig\fP is a straight-forward
-(albeit not pretty) effort of parsing arguments and setting appropriate
-parameters.  \fIDig\fP uses resolver routines res_init(), res_mkquery(),
-res_send() as well as accessing _res structure. 
-.SH FILES
-.ta \w'/etc/resolv.confXX'u
-/etc/resolv.conf	initial domain name and name server 
-\./DiG.env		default save file for default options
-.br
-	addresses
-.SH ENVIRONMENT
-LOCALRES	file to use in place of /etc/resolv.conf
-.br
-LOCALDEF	default environment file
-.SH AUTHOR
-Steve Hotz 
-hotz@isi.edu
-.SH ACKNOWLEDGMENTS
-\fIDig\fP uses functions from 
-.IR nslookup (@SYS_OPS_EXT@)
-authored by Andrew Cherenson.
-.SH BUGS
-\fIDig\fP has a serious case of "creeping featurism" -- the result of
-considering several potential uses during it's development.  It would
-probably benefit from a rigorous diet.  Similarly, the print flags
-and granularity of the items they specify make evident their
-rather ad hoc genesis.
-.PP
-\fIDig\fP does not consistently exit nicely (with appropriate status)
-when a problem occurs somewhere in the resolver (NOTE: most of the common
-exit cases are handled).  This is particularly annoying when running in
-batch mode.  If it exits abnormally (and is not caught), the entire
-batch aborts; when such an event is trapped, \fIdig\fP simply
-continues with the next query.
-.SH SEE ALSO
-@INDOT@named(@SYS_OPS_EXT@),  resolver(@LIB_NETWORK_EXT@),  resolver(@FORMAT_EXT@),  nslookup(@SYS_OPS_EXT@)
diff --git a/contrib/bind/man/dnsquery.1 b/contrib/bind/man/dnsquery.1
deleted file mode 100644
index 510053ab3438b..0000000000000
--- a/contrib/bind/man/dnsquery.1
+++ /dev/null
@@ -1,164 +0,0 @@
-.TH DNSQUERY @CMD_EXT_U@ "10 March 1990"
-.UC 6
-.SH NAME
-dnsquery \- query domain name servers using resolver
-.SH SYNOPSIS
-.B dnsquery
-[-n
-.I nameserver]
-[-t
-.I type]
-[-c
-.I class]
-[-r 
-.I retry] 
-[-p 
-.I retry period] 
-[-d] [-s] [-v] host
-.SH DESCRIPTION
-The
-.IR dnsquery
-program is a general interface to nameservers via
-BIND resolver library calls.  The program supports
-queries to the nameserver with an opcode of QUERY.
-This program is intended to be a replacement or
-supplement to programs like nstest, nsquery and
-nslookup.  All arguments except for
-.IR host
-and
-.IR ns
-are treated without case-sensitivity.
-.SH OPTIONS
-.TP 1i
-.B \-n
-The nameserver to be used in the query.  Nameservers can appear as either 
-Internet addresses of the form w.x.y.z or can appear as domain names.  
-(default: as specified in /etc/resolv.conf)
-.TP 1i
-.B \-t
-The type of resource record of interest.  Types include:
-.RS 1.5i
-.TP 1i
-A
-address
-.PD 0
-.TP 1i
-NS
-nameserver
-.TP 1i
-CNAME
-canonical name
-.TP 1i
-PTR	
-domain name pointer
-.TP 1i
-SOA	
-start of authority
-.TP 1i
-WKS	
-well-known service
-.TP 1i
-HINFO
-host information
-.TP 1i
-MINFO
-mailbox information
-.TP 1i
-MX	
-mail exchange
-.TP 1i
-RP	
-responsible person
-.TP 1i
-MG	
-mail group member
-.TP 1i
-AFSDB	
-DCE or AFS server
-.TP 1i
-ANY	
-wildcard
-.RE
-.PD
-.IP
-Note that any case may be used.  (default:  ANY)
-.TP 1i
-.B \-c
-The class of resource records of interest.
-Classes include:
-.RS 2i
-.TP 1i
-IN	
-Internet
-.PD 0
-.TP 1i
-HS	
-Hesiod
-.TP 1i
-CHAOS
-Chaos
-.TP 1i
-ANY	
-wildcard
-.RE
-.PD
-.IP
-Note that any case may be used.  (default:  IN)
-.TP 1i
-.B \-r
-The number of times to retry if the nameserver is
-not responding.  (default:  4)
-.TP 1i
-.B \-p
-Period to wait before timing out.  (default:  RES_TIMEOUT)
-.IR options
-field.  (default:  any answer)
-.TP 1i
-.B \-d
-Turn on debugging.  This sets the RES_DEBUG bit of the resolver's
-.IR options
-field.  (default:  no debugging)
-.TP 1i
-.B \-s
-Use a
-.IR stream
-rather than a packet.  This uses a TCP stream connection with
-the nameserver rather than a UDP datagram.  This sets the
-RES_USEVC bit of the resolver's
-.IR options
-field.  (default:  UDP)
-.TP 1i
-.B \-v
-Synonym for the 's' flag.
-.TP 1i
-.B host
-The name of the host (or domain) of interest.
-.SH FILES
-/etc/resolv.conf 	to get the default ns and search lists
-.br
-<arpa/nameser.h> 	list of usable RR types and classes
-.br
-<resolv.h>		list of resolver flags
-.SH "SEE ALSO"
-nslookup(@SYS_OPS_EXT@), nstest(@CMD_EXT@), nsquery(@CMD_EXT@), 
-named(@SYS_OPS_EXT@), resolver(@FORMAT_EXT@)
-.SH DIAGNOSTICS
-If the resolver fails to answer the query and debugging has not been
-turned on,
-.IR dnsquery
-will simply print a message like:
-.TP 1i
-Query failed (rc = 1) : Unknown host
-.LP
-The value of the return code is supplied by h_errno.
-.SH BUGS
-Queries of a class other than IN can have interesting results
-since ordinarily a nameserver only has a list of root nameservers
-for class IN resource records.
-.PP
-Query uses a call to inet_addr() to determine if the argument
-for the '-n' option is a valid Internet address.  Unfortunately,
-inet_addr() seems to cause a segmentation fault with some (bad)
-addresses (e.g. 1.2.3.4.5).
-.SH AUTHOR
-Bryan Beecher
diff --git a/contrib/bind/man/gethostbyname.3 b/contrib/bind/man/gethostbyname.3
deleted file mode 100644
index 034904b6dd5a7..0000000000000
--- a/contrib/bind/man/gethostbyname.3
+++ /dev/null
@@ -1,228 +0,0 @@
-.\" Copyright (c) 1983, 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted provided
-.\" that: (1) source distributions retain this entire copyright notice and
-.\" comment, and (2) distributions including binaries display the following
-.\" acknowledgement:  ``This product includes software developed by the
-.\" University of California, Berkeley and its contributors'' in the
-.\" documentation or other materials provided with the distribution and in
-.\" all advertising materials mentioning features or use of this software.
-.\" Neither the name of the University nor the names of its contributors may
-.\" be used to endorse or promote products derived from this software without
-.\" specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
-.\" WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
-.\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)gethostbyname.3	6.12 (Berkeley) 6/23/90
-.\"
-.TH GETHOSTBYNAME @LIB_NETWORK_EXT_U@ "June 23, 1990"
-.UC 5
-.SH NAME
-gethostbyname, gethostbyaddr, gethostent, sethostent, endhostent, herror \- get network host entry
-.SH SYNOPSIS
-.B "#include <netdb.h>
-.PP
-.B "extern int h_errno;
-.PP
-.B "struct hostent *gethostbyname(name)
-.br
-.B "char *name;
-.PP
-.B "struct hostent *gethostbyname2(name, af)
-.br
-.B "char *name; int af;
-.PP
-.B "struct hostent *gethostbyaddr(addr, len, type)
-.br
-.B "char *addr; int len, type;
-.PP
-.B "struct hostent *gethostent()
-.PP
-.B "sethostent(stayopen)
-.br
-.B "int stayopen;
-.PP
-.B "endhostent()
-.PP
-.B "herror(string)
-.br
-.B "char *string;
-.PP
-.SH DESCRIPTION
-.IR Gethostbyname ,
-.IR gethostbyname2 ,
-and
-.I gethostbyaddr
-each return a pointer to an object with the
-following structure describing an internet host
-referenced by name or by address, respectively.
-This structure contains either the information obtained from the name server,
-.IR @INDOT@named (@SYS_OPS_EXT@),
-or broken-out fields from a line in 
-.IR /etc/hosts .
-If the local name server is not running these routines do a lookup in
-.IR /etc/hosts .
-.RS
-.PP
-.nf
-struct	hostent {
-	char	*h_name;	/* official name of host */
-	char	**h_aliases;	/* alias list */
-	int	h_addrtype;	/* host address type */
-	int	h_length;	/* length of address */
-	char	**h_addr_list;	/* list of addresses from name server */
-};
-#define	h_addr  h_addr_list[0]	/* address, for backward compatibility */
-.ft R
-.ad
-.fi
-.RE
-.PP
-The members of this structure are:
-.TP \w'h_addr_list'u+2n
-h_name
-Official name of the host.
-.TP \w'h_addr_list'u+2n
-h_aliases
-A zero terminated array of alternate names for the host.
-.TP \w'h_addr_list'u+2n
-h_addrtype
-The type of address being returned; usually AF_INET.
-.TP \w'h_addr_list'u+2n
-h_length
-The length, in bytes, of the address.
-.TP \w'h_addr_list'u+2n
-h_addr_list
-A zero terminated array of network addresses for the host.
-Host addresses are returned in network byte order.
-.TP \w'h_addr_list'u+2n
-h_addr
-The first address in h_addr_list; this is for backward compatibility.
-.PP
-When using the nameserver,
-.I gethostbyname
-will search for the named host in each parent domain given in the ``search''
-directive of
-.IR resolv.conf (5)
-unless the name contains a dot.
-If the name contains no dot, and if the environment variable ``HOSTALAIASES''
-contains the name of an alias file, the alias file will first be searched
-for an alias matching the input name.
-See
-.IR hostname (@DESC_EXT@)
-for the domain search procedure and the alias file format.
-.PP
-.I Gethostbyname2
-is an evolution of
-.I gethostbyname
-intended to allow lookups in address families other than AF_INET, for example
-AF_INET6.  Currently the
-.I af
-argument must be specified as
-.I AF_INET
-else the function will return \s-2NULL\s+2 after having set
-.I h_errno
-to \s-2NETDB_INTERNAL\s+2.
-.PP
-.I Sethostent
-may be used to request the use of a connected TCP socket for queries.
-If the
-.I stayopen
-flag is non-zero,
-this sets the option to send all queries to the name server using TCP
-and to retain the connection after each call to 
-.I gethostbyname
-or
-.IR gethostbyaddr .
-Otherwise, queries are performed using UDP datagrams.
-.PP
-.I Endhostent
-closes the TCP connection.
-.SH DIAGNOSTICS
-.PP
-Error return status from 
-.I gethostbyname
-and
-.I gethostbyaddr
-is indicated by return of a null pointer.
-The external integer
-.IR h_errno
-may then be checked to see whether this is a temporary failure
-or an invalid or unknown host.
-The routine
-.I herror
-can be used to print an error message describing the failure.
-If its argument
-.I string
-is non-NULL, it is printed, followed by a colon and a space.
-The error message is printed with a trailing newline.
-.PP
-.IR h_errno
-can have the following values:
-.RS
-.IP NETDB_INTERNAL \w'HOST_NOT_FOUND'u+2n
-This indicates an internal error in the library, unrelated to the network
-or name service.
-.I errno
-will be valid in this case; see
-.IR perror (3).
-.IP HOST_NOT_FOUND \w'HOST_NOT_FOUND'u+2n
-No such host is known.
-.IP TRY_AGAIN \w'HOST_NOT_FOUND'u+2n
-This is usually a temporary error
-and means that the local server did not receive
-a response from an authoritative server.
-A retry at some later time may succeed.
-.IP NO_RECOVERY \w'HOST_NOT_FOUND'u+2n
-Some unexpected server failure was encountered.
-This is a non-recoverable error.
-.IP NO_DATA \w'HOST_NOT_FOUND'u+2n
-The requested name is valid but does not have an IP address; 
-this is not a temporary error.  
-This means that the name is known to the name server but there is no address
-associated with this name.
-Another type of request to the name server using this domain name
-will result in an answer;
-for example, a mail-forwarder may be registered for this domain.
-.RE
-.SH FILES
-/etc/hosts
-.SH "SEE ALSO"
-resolver(@LIB_NETWORK_EXT@), hosts(@FORMAT_EXT@), hostname(@DESC_EXT@), @INDOT@named(@SYS_OPS_EXT@)
-.SH CAVEAT
-.PP
-.I Gethostent
-is defined, and
-.I sethostent
-and
-.I endhostent
-are redefined,
-when
-.IR libc
-is built to use only the routines to lookup in
-.IR /etc/hosts 
-and not the name server.
-.PP
-.I Gethostent
-reads the next line of
-.IR /etc/hosts ,
-opening the file if necessary.
-.PP
-.I Sethostent 
-is redefined to open and rewind the file.  If the
-.I stayopen
-argument is non-zero,
-the hosts data base will not be closed after each call to
-.I gethostbyname
-or
-.IR gethostbyaddr .
-.I Endhostent
-is redefined to close the file.
-.SH BUGS
-All information
-is contained in a static area
-so it must be copied if it is
-to be saved.  Only the Internet
-address format is currently understood.
diff --git a/contrib/bind/man/getnetent.3 b/contrib/bind/man/getnetent.3
deleted file mode 100644
index 22b394e1e7863..0000000000000
--- a/contrib/bind/man/getnetent.3
+++ /dev/null
@@ -1,133 +0,0 @@
-.\" $Id: getnetent.3,v 8.2 1996/05/09 05:59:10 vixie Exp $
-.TH getnetent @LIB_NETWORK_EXT_U@
-.SH NAME
-getnetent, getnetbyaddr, getnetbyname, setnetent, endnetent \- get networks
-entry
-.SH SYNTAX
-.nf
-.B #include <netdb.h>
-.PP
-.B struct netent *getnetent()
-.PP
-.B struct netent *getnetbyname(\fIname\fP)
-.B char *\fIname\fP;
-.PP
-.B struct netent *getnetbyaddr(\fInet\fP, \fItype\fP)
-.B unsigned long \fInet\fP; int \fItype\fP;
-.PP
-.B void setnetent(\fIstayopen\fP)
-.B int \fIstayopen\fP;
-.PP
-.B void endnetent()
-.fi
-.SH DESCRIPTION
-The
-.IR getnetent ,
-.IR getnetbyname ,
-and
-.I getnetbyaddr
-subroutines
-each return a pointer to an object with the
-following structure
-containing the broken-out
-fields of a line in the 
-.I networks 
-database.
-.RS
-.PP
-.nf
-struct	netent {
-	char	*n_name;	/* official name of net */
-	char	**n_aliases;	/* alias list */
-	int	n_addrtype;	/* net number type */
-	long	n_net;		/* net number */
-};
-.ft R
-.ad
-.fi
-.RE
-.PP
-The members of this structure are:
-.TP \w'n_addrtype'u+2n
-n_name
-The official name of the network.
-.TP \w'n_addrtype'u+2n
-n_aliases
-A zero terminated list of alternate names for the network.
-.TP \w'n_addrtype'u+2n
-n_addrtype
-The type of the network number returned: AF_INET.
-.TP \w'n_addrtype'u+2n
-n_net
-The network number.  Network numbers are returned in machine byte
-order.
-.PP
-If the
-.I stayopen
-flag on a 
-.I setnetent
-subroutine is NULL, the
-.I networks
-database is opened.  Otherwise the
-.I setnetent
-has the effect of rewinding the 
-.I networks 
-database.
-The
-.I endnetent
-may be called to
-close the 
-.I networks 
-database when processing is complete.
-.PP
-The
-.I getnetent
-subroutine simply reads the next
-line while
-.I getnetbyname
-and
-.I getnetbyaddr
-search until a matching
-.I name
-or
-.I net
-number is found
-(or until EOF is encountered).  The \fItype\fP must be AF_INET.
-The
-.I getnetent
-subroutine keeps a pointer in the database, allowing
-successive calls to be used 
-to search the entire file.
-.PP
-A call to
-.I setnetent
-must be made before a
-.I while
-loop using
-.I getnetent
-in order to perform initialization and an
-.I endnetent
-must be used after the loop.  Both
-.I getnetbyname
-and
-.I getnetbyaddr
-make calls to
-.I setnetent
-and
-.I endnetent .
-.SH FILES
-.I /etc/networks
-.SH DIAGNOSTICS
-Null pointer (0) returned on EOF or error.
-.SH SEE ALSO
-.nf
-networks(@FORMAT_EXT@)
-RFC 1101
-.SH HISTORY
-The getnetent(), getnetbyaddr(), getnetbyname(), setnetent(), and
-endnetent() functions appeared in 4.2BSD.
-.SH BUGS
-The data space used by these functions is static; if future use requires the
-data, it should be copied before any subsequent calls to these functions
-overwrite it.  Only Internet network numbers are currently understood.
-Expecting network numbers to fit in no more than 32 bits is probably naive.
diff --git a/contrib/bind/man/host.1 b/contrib/bind/man/host.1
deleted file mode 100644
index 9ade617c096bd..0000000000000
--- a/contrib/bind/man/host.1
+++ /dev/null
@@ -1,207 +0,0 @@
-.\" ++Copyright++ 1993
-.\" -
-.\" Copyright (c) 1993
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\" $Id: host.1,v 8.1 1994/12/15 06:24:10 vixie Exp $
-.TH HOST @CMD_EXT_U@
-.SH NAME
-host \- look up host names using domain server
-.SH SYNOPSIS 
-host [-l] [-v] [-w] [-r] [-d] [-t querytype] [-a] host [ server ] 
-.SH DESCRIPTION 
-.I Host
-looks for information about Internet hosts.  It gets this information
-from a set of interconnected servers that are spread across the
-country.  By default, it simply converts between host names and
-Internet addresses.  However with the -t or -a options, it can be used
-to find all of the information about this host that is maintained
-by the domain server.
-.PP
-The arguments can be either host names or host numbers.  The program
-first attempts to interpret them as host numbers.  If this fails,
-it will treat them as host names.  A host number consists of
-first decimal numbers separated by dots, e.g. 128.6.4.194
-A host name
-consists of names separated by dots, e.g. topaz.rutgers.edu.  
-Unless the name ends in a dot, the local domain
-is automatically tacked on the end.  Thus a Rutgers user can say
-"host topaz", and it will actually look up "topaz.rutgers.edu".
-If this fails, the name is tried unchanged (in this case, "topaz").
-This same convention is used for mail and other network utilities.
-The actual suffix to tack on the end is obtained
-by looking at the results of a "hostname" call, and using everything
-starting at the first dot.  (See below for a description of
-how to customize the host name lookup.) 
-.PP
-The first argument is the host name you want to look up.
-If this is a number, an "inverse query" is done, i.e. the domain
-system looks in a separate set of databases used to convert numbers
-to names.
-.PP
-The second argument is optional.  It
-allows you to specify a particular server to query.  If you don't
-specify this argument, the default server (normally the local machine)
-is used.
-.PP
-If a name is specified, you may see output of three different kinds.
-Here is an example that shows all of them:
-.br
-   % host sun4
-.br
-   sun4.rutgers.edu is a nickname for ATHOS.RUTGERS.EDU
-.br
-   ATHOS.RUTGERS.EDU has address 128.6.5.46
-.br
-   ATHOS.RUTGERS.EDU has address 128.6.4.4
-.br
-   ATHOS.RUTGERS.EDU mail is handled by ARAMIS.RUTGERS.EDU
-.br
-The user has typed the command "host sun4".  The first line indicates
-that the name "sun4.rutgers.edu" is actually a nickname.  The official
-host name is "ATHOS.RUTGERS.EDU'.  The next two lines show the
-address.  If a system has more than one network interface, there
-will be a separate address for each.  The last line indicates
-that ATHOS.RUTGERS.EDU does not receive its own mail.  Mail for
-it is taken by ARAMIS.RUTGERS.EDU.  There may be more than one
-such line, since some systems have more than one other system
-that will handle mail for them.  Technically, every system that
-can receive mail is supposed to have an entry of this kind.  If
-the system receives its own mail, there should be an entry
-the mentions the system itself, for example
-"XXX mail is handled by XXX".  However many systems that receive
-their own mail do not bother to mention that fact.  If a system
-has a "mail is handled by" entry, but no address, this indicates
-that it is not really part of the Internet, but a system that is
-on the network will forward mail to it.  Systems on Usenet, Bitnet,
-and a number of other networks have entries of this kind.
-.PP
-There are a number of options that can be used before the
-host name.  Most of these options are meaningful only to the
-staff who have to maintain the domain database.
-.PP
-The option -w causes host to wait forever for a response.  Normally
-it will time out after around a minute.
-.PP
-The option -v causes printout to be in a "verbose" format.  This
-is the official domain master file format, which is documented 
-in the man page for "named".  Without this option, output still follows
-this format in general terms, but some attempt is made to make it
-more intelligible to normal users.  Without -v,
-"a", "mx", and "cname" records
-are written out as "has address", "mail is handled by", and
-"is a nickname for", and TTL and class fields are not shown.
-.PP
-The option -r causes recursion to be turned off in the request.
-This means that the name server will return only data it has in
-its own database.  It will not ask other servers for more 
-information.
-.PP
-The option -d turns on debugging.  Network transactions are shown
-in detail.
-.PP
-The option -t allows you to specify a particular type of information
-to be looked up.  The arguments are defined in the man page for
-"named".  Currently supported types are a, ns, md, mf, cname,
-soa, mb, mg, mr, null, wks, ptr, hinfo, minfo, mx, uinfo,
-uid, gid, unspec, and the wildcard, which may be written
-as either "any" or "*".  Types must be given in lower case.
-Note that the default is to look first for "a", and then "mx", except
-that if the verbose option is turned on, the default is only "a".
-.PP
-The option -a (for "all") is equivalent to "-v -t any".
-.PP
-The option -l causes a listing of a complete domain.  E.g.
-.br
-   host -l rutgers.edu
-.br
-will give a listing of all hosts in the rutgers.edu domain.  The -t
-option is used to filter what information is presented, as you 
-would expect.  The default is address information, which also
-include PTR and NS records.  The command
-.br
-   host -l -v -t any rutgers.edu
-.br
-will give a complete download of the zone data for rutgers.edu,
-in the official master file format.  (However the SOA record is
-listed twice, for arcane reasons.)  NOTE: -l is implemented by
-doing a complete zone transfer and then filtering out the information
-the you have asked for.  This command should be used only if it
-is absolutely necessary.
-.SH CUSTOMIZING HOST NAME LOOKUP
-In general, if the name supplied by the user does not
-have any dots in it, a default domain is appended to the end.
-This domain can be defined in /etc/resolv.conf, but is normally derived
-by taking the local hostname after its first dot.  The user can override
-this, and specify a different default domain, using the environment
-variable
-.IR LOCALDOMAIN .
-In addition, the user can supply his own abbreviations for host names.
-They should be in a file consisting of one line per abbreviation.
-Each line contains an abbreviation, a space, and then the full
-host name.  This file must be pointed to by an environment variable
-.IR HOSTALIASES ,
-which is the name of the file.
-.SH "See Also"
-@INDOT@named (@SYS_OPS_EXT@)
-.SH BUGS
-Unexpected effects can happen when you type a name that is not
-part of the local domain.  Please always keep in mind the
-fact that the local domain name is tacked onto the end of every
-name, unless it ends in a dot.  Only if this fails is the name
-used unchanged.
-.PP
-The -l option only tries the first name server listed for the
-domain that you have requested.  If this server is dead, you
-may need to specify a server manually. E.g. to get a listing
-of foo.edu, you could try "host -t ns foo.edu" to get a list
-of all the name servers for foo.edu, and then try "host -l foo.edu xxx"
-for all xxx on the list of name servers, until you find one that
-works.
diff --git a/contrib/bind/man/hostname.7 b/contrib/bind/man/hostname.7
deleted file mode 100644
index 255c53cfe44db..0000000000000
--- a/contrib/bind/man/hostname.7
+++ /dev/null
@@ -1,108 +0,0 @@
-.\" Copyright (c) 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)hostname.7	6.4 (Berkeley) 1/16/90
-.\"
-.TH HOSTNAME @DESC_EXT_U@ "February 16, 1994"
-.UC 5
-.SH NAME
-hostname \- host name resolution description
-.SH DESCRIPTION
-Hostnames are domains. A domain is a hierarchical, dot-separated list
-of subdomains. For example, the machine \fImonet\fP, in the \fIBerkeley\fP
-subdomain of the \fIEDU\fP subdomain of the Internet Domain Name System
-would be represented as
-.br
-	\fImonet\fP.\fIBerkeley\fP.\fIEDU\fP
-.br
-(with no trailing dot).
-.PP
-Hostnames are often used with network client and server programs,
-which must generally translate the name to an address for use.
-(This task is usually performed by the library routine
-.IR gethostbyname (@LIB_NETWORK_EXT@).)
-The default method for resolving hostnames by the Internet name resolver is
-to follow \s-1RFC\s+1 1535's security recommendations.  Actions can be taken
-by the administrator to override these recommendations and to have the
-resolver behave the same as earlier, non-\s-1RFC\s+1 1535 resolvers.
-.PP
-The default method (using \s-1RFC\s+1 1535 guidelines) follows:
-.PP
-If the name consists of a single component, i.e. contains no dot, and if the
-environment variable ``\s-1HOSTALIASES\s+1'' is set to the name of a file,
-that file is searched for a string matching the input hostname.  The file
-should consist of lines made up of two strings separated by white-space, the
-first of which is the hostname alias, and the second of which is the complete
-hostname to be substituted for that alias.  If a case-insensitive match is
-found between the hostname to be resolved and the first field of a line in
-the file, the substituted name is looked up with no further processing.
-.PP
-If there is at least one dot in the name, then the name is first tried as
-is.  The number of dots to cause this action is configurable by setting the
-threshold using the ``\fIndots\fP'' option in 
-.I /etc/resolv.conf
-(default: \fI1\fP).  If the name ends with a dot, the trailing dot is
-removed, and the remaining name is looked up (regardless of the setting of
-the 'ndots' option) and no further processing is done. 
-.PP
-If the input name does not end with a trailing dot, it is looked up by
-searching through a list of domains until a match is found.  If neither the
-search option in the
-.I /etc/resolv.conf
-file or the ``\s-1LOCALDOMAIN\s+1'' environment variable is used, then the
-search list of domains contains only the full domain specified by the domain
-option (in
-.IR /etc/resolv.conf )
-or the domain used in the local hostname (see 
-.IR hostname (@CMD_EXT@)
-and
-.IR resolver (@FORMAT_EXT@)).
-For example, if the ``\fIdomain\fP'' option is set to \fICS.Berkeley.EDU\fP,
-then only CS.Berkeley.EDU will be in the search list and will be the only
-domain appended to the partial hostname, for example, ``\fIlithium\fP'',
-making \fIlithium.CS.Berkeley.EDU\fP the only name to be tried using the
-search list.
-.PP
-If the search option is used in
-.I /etc/resolv.conf
-or the environment variable, ``\s-1LOCALDOMAIN\s+1'' is set by the user, then
-the search list will include what is set by these methods. For
-example, if the ``\fIsearch\fP'' option contained
-.br
-	\fICS.Berkeley.EDU CChem.Berkeley.EDU Berkeley.EDU\fP
-.br
-then the partial hostname (e.g., ``\fIlithium\fP'') will be tried with each
-domainname appended (in the same order specified).  The resulting hostnames 
-that would be tried are:
-.nf
-	\fIlithium.CS.Berkeley.EDU\fP
-	\fIlithium.CChem.Berkeley.EDU\fP
-	\fIlithium.Berkeley.EDU\fP
-.fi
-.PP
-The environment variable ``\s-1LOCALDOMAIN\s+1'' overrides the
-``\fIsearch\fP'' and ``\fIdomain\fP'' options, and if both search and domain
-options are present in the resolver configuration file, then only the last
-one listed is used (see
-.IR resolver (@FORMAT_EXT@)).
-.PP
-If the name was not previously tried ``as is'' (i.e., it fell below the
-``\fIndots\fP'' threshold or did not contain a dot), then the name as
-originally provided is attempted.
-.SH SEE ALSO
-.IR gethostbyname (@LIB_NETWORK_EXT@),
-.IR resolver (@FORMAT_EXT@),
-.IR mailaddr (@DESC_EXT@),
-.IR @INDOT@named (@SYS_OPS_EXT@)
diff --git a/contrib/bind/man/mailaddr.7 b/contrib/bind/man/mailaddr.7
deleted file mode 100644
index 9a69a4ddbe7cc..0000000000000
--- a/contrib/bind/man/mailaddr.7
+++ /dev/null
@@ -1,135 +0,0 @@
-.\" Copyright (c) 1983, 1987 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)mailaddr.7	6.5 (Berkeley) 2/14/89
-.\"
-.TH MAILADDR @DESC_EXT_U@ "February 14, 1989"
-.UC 5
-.SH NAME
-mailaddr \- mail addressing description
-.SH DESCRIPTION
-Mail addresses are based on the ARPANET protocol listed at the end of this
-manual page.  These addresses are in the general format
-.PP
-		user@domain
-.PP
-where a domain is a hierarchical dot separated list of subdomains.  For
-example, the address
-.PP
-		eric@monet.berkeley.edu
-.PP
-is normally interpreted from right to left: the message should go to the
-ARPA name tables (which do not correspond exactly to the physical ARPANET),
-then to the Berkeley gateway, after which it should go to the local host
-monet.  When the message reaches monet it is delivered to the user ``eric''.
-.PP
-Unlike some other forms of addressing, this does not imply any routing.
-Thus, although this address is specified as an ARPA address, it might
-travel by an alternate route if that were more convenient or efficient.
-For example, at Berkeley, the associated message would probably go directly
-to monet over the Ethernet rather than going via the Berkeley ARPANET
-gateway.
-.SS Abbreviation.
-.PP
-Under certain circumstances it may not be necessary to type the entire
-domain name.  In general, anything following the first dot may be omitted
-if it is the same as the domain from which you are sending the message.
-For example, a user on ``calder.berkeley.edu'' could send to ``eric@monet''
-without adding the ``berkeley.edu'' since it is the same on both sending
-and receiving hosts.
-.PP
-Certain other abbreviations may be permitted as special cases.  For
-example, at Berkeley, ARPANET hosts may be referenced without adding
-the ``berkeley.edu'' as long as their names do not conflict with a local
-host name.
-.SS Compatibility.
-.PP
-Certain old address formats are converted to the new format to provide
-compatibility with the previous mail system.  In particular,
-.PP
-		user@host.ARPA
-.PP
-is allowed and
-.PP
-		host:user
-.PP
-is converted to
-.PP
-		user@host
-.PP
-to be consistent with the \fIrcp\fP(@CMD_EXT@) command.
-.PP
-Also, the syntax
-.PP
-		host!user
-.PP
-is converted to:
-.PP
-		user@host.UUCP
-.PP
-This is normally converted back to the ``host!user'' form before being sent
-on for compatibility with older UUCP hosts.
-.PP
-The current implementation is not able to route messages automatically through
-the UUCP network.  Until that time you must explicitly tell the mail system
-which hosts to send your message through to get to your final destination.
-.SS Case Distinctions.
-.PP
-Domain names (i.e., anything after the ``@'' sign) may be given in any mixture
-of upper and lower case with the exception of UUCP hostnames.  Most hosts
-accept any combination of case in user names, with the notable exception of
-MULTICS sites.
-.SS Route-addrs.
-.PP
-Under some circumstances it may be necessary to route a message through
-several hosts to get it to the final destination.  Normally this routing
-is done automatically, but sometimes it is desirable to route the message
-manually.  Addresses which show these relays are termed ``route-addrs.''
-These use the syntax:
-.PP
-		<@hosta,@hostb:user@hostc>
-.PP
-This specifies that the message should be sent to hosta, from there to hostb,
-and finally to hostc.  This path is forced even if there is a more efficient
-path to hostc.
-.PP
-Route-addrs occur frequently on return addresses, since these are generally
-augmented by the software at each host.  It is generally possible to ignore
-all but the ``user@domain'' part of the address to determine the actual
-sender.
-.SS Postmaster.
-.PP
-Every site is required to have a user or user alias designated ``postmaster''
-to which problems with the mail system may be addressed.
-.SS Other Networks.
-.PP
-Some other networks can be reached by giving the name of the network as the
-last component of the domain.  \fIThis is not a standard feature\fP and may
-not be supported at all sites.  For example, messages to CSNET or BITNET sites
-can often be sent to ``user@host.CSNET'' or ``user@host.BITNET'' respectively.
-.SH BUGS
-The RFC822 group syntax (``group:user1,user2,user3;'') is not supported
-except in the special case of ``group:;'' because of a conflict with old
-berknet-style addresses.
-.PP
-Route-Address syntax is grotty.
-.PP
-UUCP- and ARPANET-style addresses do not coexist politely.
-.SH SEE ALSO
-mail(@CMD_EXT@), sendmail(@SYS_OPS_EXT@);
-Crocker, D. H.,
-.ul
-Standard for the Format of Arpa Internet Text Messages,
-RFC822.
diff --git a/contrib/bind/man/named-xfer.8 b/contrib/bind/man/named-xfer.8
deleted file mode 100644
index 54ae2be1a5e1b..0000000000000
--- a/contrib/bind/man/named-xfer.8
+++ /dev/null
@@ -1,146 +0,0 @@
-.\" ++Copyright++ 1985
-.\" -
-.\" Copyright (c) 1985
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	from named.8	6.6 (Berkeley) 2/14/89
-.\"
-.TH @XFER_INDOT_U@NAMED-XFER @SYS_OPS_EXT_U@ "June 26, 1993"
-.UC 4
-.SH NAME
-@XFER_INDOT@named-xfer \- ancillary agent for inbound zone transfers
-.SH SYNOPSIS
-.B named-xfer
-.B \-z
-.I zone_to_transfer
-.B \-f
-.I db_file
-.B \-s
-.I serial_no
-[
-.B \-d
-.I debuglevel
-] [
-.B \-l
-.I debug_log_file
-] [
-.B \-t
-.I trace_file
-] [
-.B \-p
-.I port#
-] [
-.B \-S
-]
-.I nameserver
-...
-.SH DESCRIPTION
-.I Named-xfer
-is an ancillary program executed by
-.IR @INDOT@named (@SYS_OPS_EXT@)
-to perform an inbound zone transfer.  It is rarely executed directly, and
-only by system administrators who are trying to debug a zone transfer problem.
-See RFC's 1033, 1034, and 1035 for more information on the Internet
-name-domain system.
-.PP
-Options are:
-.TP
-.B \-z
-specifies the name of the zone to be transferred.
-.TP
-.B \-f
-specifies the name of the file into which the zone should be dumped
-when it is received from the primary server.
-.TP
-.B \-s
-specifies the serial number of our current copy of this zone.  If the
-\s-1SOA RR\s+1 we get from the primary server does not have a serial
-number higher than this, the transfer will be aborted.
-.TP
-.B \-d
-Print debugging information.
-A number after the ``d'' determines the level of
-messages printed.
-.TP
-.B \-l
-Specifies a log file for debugging messages.  The default is system-
-dependent but is usually in
-.I /var/tmp
-or
-.IR /usr/tmp .
-Note that this only applies if
-.I \-d
-is also specified.
-.TP
-.B \-t
-Specifies a trace file which will contain a protocol trace of the zone
-transfer.  This is probably only of interest to people debugging the name
-server itself.
-.TP
-.B \-p
-Use a different port number.  The default is the standard port number
-as returned by getservbyname(@LIB_NETWORK_EXT@) for service ``domain''.
-.TP
-.B \-S
-Perform a restricted transfer of only the SOA, NS records and glue A records
-for the zone. The SOA record will not be loaded by named but will be used to
-determine when to verify the NS records.  See the ``stubs'' directive in
-.IR @INDOT@named (@SYS_OPS_EXT@)
-for more information.
-.PP
-Additional arguments are taken as name server addresses in so-called
-``dotted-quad'' syntax only; no host name are allowed here.  At least
-one address must be specified.  Any additional addresses will be tried
-in order if the first one fails to transfer to us successfully.
-.SH "SEE ALSO"
-@INDOT@named(@SYS_OPS_EXT@), resolver(@LIB_NETWORK_EXT@), resolver(@FORMAT_EXT@), hostname(@DESC_EXT@),
-RFC 882, RFC 883, RFC 973, RFC 974, RFC 1033, RFC 1034, RFC 1035, RFC 1123,
-\fIName Server Operations Guide for \s-1BIND\s+1\fR
diff --git a/contrib/bind/man/named.8 b/contrib/bind/man/named.8
deleted file mode 100644
index d65770c639f7d..0000000000000
--- a/contrib/bind/man/named.8
+++ /dev/null
@@ -1,441 +0,0 @@
-.\" ++Copyright++ 1985
-.\" -
-.\" Copyright (c) 1985
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)named.8	6.6 (Berkeley) 2/14/89
-.\"
-.TH @INDOT_U@NAMED @SYS_OPS_EXT_U@ "June 20, 1995"
-.UC 4
-.SH NAME
-@INDOT@named \- Internet domain name server
-.SH SYNOPSIS
-.B @INDOT@named
-[
-.B \-d
-.I debuglevel
-] [
-.B \-p
-.IR port# [\fB/\fP\fIlocalport#\fP]
-] [{\-b}
-.I bootfile
-] [
-.B \-q
-] [
-.B \-r
-]
-.SH DESCRIPTION
-.I Named
-is the Internet domain name server.
-See RFC's 1033, 1034, and 1035 for more information on the Internet
-name-domain system.  Without any arguments,
-.I named
-will read the default boot file
-.IR /etc/named.boot ,
-read any initial data and listen for queries.
-.PP
-Options are:
-.TP
-.B \-d
-Print debugging information.
-A number after the ``d'' determines the level of
-messages printed.
-.TP
-.B \-p
-Use nonstandard port numbers.  The default is the standard port number
-as returned by getservbyname(@LIB_NETWORK_EXT@) for service ``domain''.
-The argument can specify two port numbers separated by a slash (``\fB/\fP'')
-in which case the first port is that used when contacting remote servers,
-and the second one is the service port bound by the local instance of
-.IR named .
-This is used mostly for debugging purposes.
-.TP
-.B \-b
-Use an alternate boot file.  This is optional and allows you to
-specify a file with a leading dash.
-.TP
-.B \-q
-Trace all incoming queries if \fInamed\fP has been compiled with
-\fIQRYLOG\fP defined.  \fINOTE:\fP this option is deprecated in favour
-of the boot file directive ``options query-log''.
-.TP
-.B \-r
-Turns recursion off in the server.  Answers can come only from local
-(primary or secondary) zones.  This can be used on root servers.
-\fINOTE:\fP this option is deprecated in favour
-of the boot file directive ``options no-recursion''.
-.PP
-Any additional argument is taken as the name of the boot file.
-If multiple boot files are specified, only the last is used.
-.PP
-The boot file contains information about where the name server is to get
-its initial data.  
-Lines in the boot file cannot be continued on subsequent lines.
-The following is a small example:
-.in +2m
-.nf
-
-;
-;	boot file for name server
-;
-directory	/usr/local/adm/named
-
-.ta \w'check-names\ 'u +\w'6.32.128.IN-ADDR.ARPA\ 'u +\w'128.32.137.8 128.32.137.3\ 'u
-; type	domain	source host/file				backup file
-
-cache	.	root.cache
-primary	Berkeley.EDU	berkeley.edu.zone
-primary	32.128.IN-ADDR.ARPA	ucbhosts.rev
-secondary	CC.Berkeley.EDU	128.32.137.8 128.32.137.3	cc.zone.bak
-secondary	6.32.128.IN-ADDR.ARPA	128.32.137.8 128.32.137.3	cc.rev.bak
-primary	0.0.127.IN-ADDR.ARPA	localhost.rev
-forwarders	10.0.0.78 10.2.0.78
-limit	transfers-in 10
-limit	datasize 64M
-limit	files 256
-options	forward-only query-log fake-iquery
-check-names	primary fail
-check-names	secondary warn
-check-names	response ignore
-
-.DT
-.fi
-.in
-The ``directory'' line causes the server to change its working directory to
-the directory specified.  This can be important for the correct processing
-of \s-1$INCLUDE\s+1 files in primary zone files.
-.LP
-The ``cache'' line specifies that data in ``root.cache'' is to be placed in
-the backup cache.  Its main use is to specify data such as locations of root
-domain servers.  This cache is not used during normal operation, but is used
-as ``hints'' to find the current root servers.  The file ``root.cache'' is
-in the same format as ``berkeley.edu.zone''.  There can be more than one
-``cache'' file specified.  The ``root.cache'' file should be retrieved
-periodically from \s-1FTP.RS.INTERNIC.NET\s+1 since it contains a list of
-root servers, and this list changes periodically.
-.LP
-The first example ``primary'' line states that the file
-``berkeley.edu.zone'' contains authoritative data for the ``Berkeley.EDU''
-zone.  The file ``berkeley.edu.zone'' contains data in the master file
-format described in RFC 883.  All domain names are relative to the origin, in
-this case, ``Berkeley.EDU'' (see below for a more detailed description).
-The second ``primary'' line states that the file ``ucbhosts.rev'' contains
-authoritative data for the domain ``32.128.IN-ADDR.ARPA,'' which is used to
-translate addresses in network 128.32 to hostnames.  Each master file should
-begin with an SOA record for the zone (see below).
-.LP
-The first example ``secondary'' line specifies that all authoritative data
-under ``CC.Berkeley.EDU'' is to be transferred from the name server at
-128.32.137.8.  If the transfer fails it will try 128.32.137.3 and continue
-trying the addresses, up to 10, listed on this line.  The secondary copy is
-also authoritative for the specified domain.  The first non-dotted-quad
-address on this line will be taken as a filename in which to backup the
-transferred zone.  The name server will load the zone from this backup file
-if it exists when it boots, providing a complete copy even if the master
-servers are unreachable.  Whenever a new copy of the domain is received by
-automatic zone transfer from one of the master servers, this file will be
-updated.  If no file name is given, a temporary file will be used, and will
-be deleted after each successful zone transfer.  This is not recommended
-since it is a needless waste of bandwidth.  The second example ``secondary''
-line states that the address-to-hostname mapping for the subnet 128.32.136
-should be obtained from the same list of master servers as the previous zone.
-.LP
-The ``forwarders'' line specifies the addresses of sitewide servers that
-will accept recursive queries from other servers.  If the boot file
-specifies one or more forwarders, then the server will send all queries for
-data not in the cache to the forwarders first.  Each forwarder will be asked
-in turn until an answer is returned or the list is exhausted.  If no answer
-is forthcoming from a forwarder, the server will continue as it would have
-without the forwarders line unless it is in ``forward-only'' mode.  The
-forwarding facility is useful to cause a large sitewide cache to be
-generated on a master, and to reduce traffic over links to outside servers.
-It can also be used to allow servers to run that do not have direct access
-to the Internet, but wish to look up exterior names anyway.
-.LP
-The ``slave'' line (deprecated) is allowed for backward compatibility.  Its
-meaning is identical to ``options forward-only''.
-.LP
-The ``sortlist'' line can be used to indicate networks that are to be
-preferred over other networks.  Queries for host addresses from hosts on the
-same network as the server will receive responses with local network
-addresses listed first, then addresses on the sort list, then other
-addresses.
-.LP
-The ``xfrnets'' directive (not shown) can be used to implement primitive
-access control.  If this directive is given, then your name server will
-only answer zone transfer requests from hosts which are on networks listed
-in your ``xfrnets'' directives.  This directive may also be given as
-``tcplist'' for compatibility with older, interim servers.
-.LP
-The ``include'' directive (not shown) can be used to process the contents
-of some other file as though they appeared in place of the ``include''
-directive.  This is useful if you have a lot of zones or if you have 
-logical groupings of zones which are maintained by different people.
-The ``include'' directive takes one argument, that being the name of the
-file whose contents are to be included.  No quotes are necessary around
-the file name.
-.LP
-The ``bogusns'' directive (not shown) tells \s-1BIND\s+1 that no queries
-are to be sent to the specified name server addresses (which are specified
-as dotted quads, not as domain names).  This is useful when you know that
-some popular server has bad data in a zone or cache, and you want to avoid
-contamination while the problem is being fixed.
-.LP
-The ``limit'' directive can be used to change \s-1BIND\s+1's internal limits,
-some of which (\fBdatasize\fP, for example) are implemented by the system and
-others (like \fBtransfers-in\fP) by \s-1BIND\s+1 itself.  The number following
-the limit name can be scaled by postfixing a ``k,'' ``m,'' or ``g'' for
-kilobytes, megabytes, and gigabytes respectively.
-\fBdatasize\fP's argument sets the process data size enforced by the kernel.
-\fINote:\fP not all systems provide a call to implement this -- on such
-systems, the use of the \fBdatasize\fP parameter of ``limit'' will result in
-a warning message.
-\fBtransfers-in\fP's argument is the number of \fInamed-xfer\fP subprocesses
-which \s-1BIND\s+1 will spawn at any one time.
-\fBtransfers-per-ns\fP's argument is the maximum number of zone transfers to
-be simultaneously initiated to any given remote name server.
-\fBfiles\fP's argument sets the number of file descriptors available to
-the process. \fINote:\fP not all systems provide a call to implement
-this -- on such systems, the use of the \fBfiles\fP parameter of ``limit''
-will result in a warning message.
-.LP
-The ``options'' directive introduces a boolean specifier that changes the
-behaviour of \s-1BIND\s+1.  More than one option can be specified in a single
-directive.  The currently defined options are as follows:
-\fBno-recursion\fP, which will cause \s-1BIND\s+1 to answer with a referral
-rather than actual data whenever it receives a query for a name it is not
-authoritative for -- don't set this on a server that is listed in any host's
-\fIresolv.conf\fP file;
-\fBno-fetch-glue\fP, which keeps \s-1BIND\s+1 from fetching missing glue when
-constructing the ``additional data'' section of a response; this can be used
-in conjunction with \fBno-recursion\fP to prevent \s-1BIND\s+1's cache from
-ever growing in size or becoming corrupted;
-\fBquery-log\fP, which causes all queries to be logged via
-syslog(@SYS_OPS_EXT@) -- this is a lot of data, don't turn it on lightly;
-\fBforward-only\fP, which causes the server to query only its forwarders --
-this option is normally used on machine that wishes to run a server but for
-physical or administrative reasons cannot be given access to the Internet;
-and \fBfake-iquery\fP, which tells \s-1BIND\s+1 to send back a useless and
-bogus reply to ``inverse queries'' rather than responding with an error --
-this is helpful if you have a lot of microcomputers or SunOS hosts or both.
-.LP
-The ``check-names'' directive tells \s-1BIND\s+1 to check names in either
-``primary'' or ``secondary'' zone files, or in messages (``response'')
-received during recursion (for example, those which would be forwarded back
-to a firewalled requestor).  For each type of name,
-\s-1BIND\s+1 can be told to ``fail'', such that a zone would not be loaded
-or a response would not be cached or forwarded, or merely ``warn'' which
-would cause a message to be emitted in the system operations logs, or to
-``ignore'' the badness of a name and process it in the traditional fashion.
-Names are considered good if they match RFC 952's expectations (if they are
-host names), or if they consist only of printable \s-1ASCII\s+1 characters
-(if they are not host names).
-.LP
-The ``max-fetch'' directive (not shown) is allowed for backward compatibility;
-its meaning is identical to ``limit transfers-in''.
-.PP
-The master file consists of control information and a list of resource
-records for objects in the zone of the forms:
-.RS
-.nf
-
-$INCLUDE <filename> <opt_domain>
-$ORIGIN <domain>
-<domain> <opt_ttl> <opt_class> <type> <resource_record_data>
-
-.fi
-.RE
-where
-.I domain
-is "." for root, "@" for the current origin, or a standard domain
-name. If
-.I domain
-is a standard domain name that does not end with ``.'', the current origin
-is appended to the domain. Domain names ending with ``.'' are
-unmodified.
-The
-.I opt_domain
-field is used to define an origin for the data in an included file.
-It is equivalent to placing a $ORIGIN statement before the first
-line of the included file.  The field is optional.
-Neither the
-.I opt_domain
-field nor $ORIGIN statements in the included file modify the current origin
-for this file.
-The
-.I opt_ttl
-field is an optional integer number for the time-to-live field.
-It defaults to zero, meaning the minimum value specified in the SOA
-record for the zone.
-The
-.I opt_class
-field is the object address type; currently only one type is supported,
-.BR IN ,
-for objects connected to the DARPA Internet. 
-The
-.I type
-field contains one of the following tokens; the data expected in the
-.I resource_record_data
-field is in parentheses.
-.TP "\w'MINFO    'u"
-A
-a host address (dotted quad)
-.IP NS
-an authoritative name server (domain)
-.IP MX
-a mail exchanger (domain), preceded by a preference value (0..32767),
-with lower numeric values representing higher logical preferences.
-.IP CNAME
-the canonical name for an alias (domain)
-.IP SOA
-marks the start of a zone of authority (domain of originating host,
-domain address of maintainer, a serial number and the following
-parameters in seconds: refresh, retry, expire and minimum TTL (see RFC 883)).
-.IP NULL
-a null resource record (no format or data)
-.IP RP
-a Responsible Person for some domain name (mailbox, TXT-referral)
-.IP PTR
-a domain name pointer (domain)
-.IP HINFO
-host information (cpu_type OS_type)
-.PP
-Resource records normally end at the end of a line,
-but may be continued across lines between opening and closing parentheses.
-Comments are introduced by semicolons and continue to the end of the line.
-.PP
-Note that there are other resource record types, not shown here.  You should
-consult the \s-1BIND\s+1 Operations Guide (``\s-1BOG\s+1'') for the complete
-list.  Some resource record types may have been standardized in newer RFC's
-but not yet implemented in this version of \s-1BIND\s+1.
-.PP
-Each master zone file should begin with an SOA record for the zone.
-An example SOA record is as follows:
-.LP
-.nf
-@ IN SOA ucbvax.Berkeley.EDU. rwh.ucbvax.Berkeley.EDU. (
-.ta \w'x\ IN\ SOA\ 'u +\w'1989020501\ 'u
-	1989020501	; serial
-	10800	; refresh
-	3600	; retry
-	3600000	; expire
-	86400 )	; minimum
-.fi
-.LP
-The SOA specifies a serial number, which should be changed each time the
-master file is changed.  Note that the serial number can be given as a
-dotted number, but this is a \fIvery\fP unwise thing to do since the
-translation to normal integers is via concatenation rather than
-multiplication and addition.  You can spell out the year, month, day of
-month, and 0..99 version number and still fit inside the unsigned 32-bit
-size of this field.  It's true that we will have to rethink this strategy in
-the year 4294 (Greg.) but we're not worried about it.  Secondary servers
-check the serial number at intervals specified by the refresh time in
-seconds; if the serial number changes, a zone transfer will be done to load
-the new data.  If a master server cannot be contacted when a refresh is due,
-the retry time specifies the interval at which refreshes should be attempted.
-If a master server cannot be contacted within the interval given by the
-expire time, all data from the zone is discarded by secondary servers.  The
-minimum value is the time-to-live (``\s-1TTL\s+1'') used by records in the
-file with no explicit time-to-live value.
-.SH NOTES
-The boot file directives ``domain'' and ``suffixes'' have been
-obsoleted by a more useful resolver-based implementation of
-suffixing for partially qualified domain names.  The prior mechanisms
-could fail under a number of situations, especially when then local
-nameserver did not have complete information.
-.sp
-The following signals have the specified effect when sent to the
-server process using the
-.IR kill (@CMD_EXT@)
-command.
-.IP SIGHUP
-Causes server to read named.boot and reload the database.  If the server
-is built with the FORCED_RELOAD compile-time option, then SIGHUP will
-also cause the server to check the serial number on all secondary zones.
-Normally the serial numbers are only checked at the SOA-specified intervals.
-.IP SIGINT
-Dumps the current data base and cache to /var/tmp/named_dump.db
-.IP SIGIOT
-Dumps statistics data into /var/tmp/named.stats if the server is
-compiled with -DSTATS.  Statistics data is appended to the file.  Some
-systems use SIGABRT rather than SIGIOT for this.
-.IP SIGSYS
-Dumps the profiling data in /var/tmp if the server is compiled
-with profiling (server forks, chdirs and exits).
-.IP SIGTERM
-Dumps the primary and secondary database files.
-Used to save modified data on shutdown if the
-server is compiled with dynamic updating enabled.
-.IP SIGUSR1
-Turns on debugging; each SIGUSR1 increments debug level.
-(SIGEMT on older systems without SIGUSR1)
-.IP SIGUSR2
-Turns off debugging completely.
-(SIGFPE on older systems without SIGUSR2)
-.IP SIGWINCH
-Toggles logging of all incoming queries via syslog(@SYS_OPS_EXT@)
-(requires server to have been built with the QRYLOG option).
-.SH FILES
-.nf
-.ta \w'/var/tmp/named_dump.db   'u
-/etc/named.boot	name server configuration boot file
-/etc/named.pid	the process id (on older systems)
-/var/run/named.pid	the process id (on newer systems)
-/var/tmp/named_dump.db	dump of the name server database
-/var/tmp/named.run	debug output
-/var/tmp/named.stats	nameserver statistics data
-.fi
-.SH "SEE ALSO"
-kill(@CMD_EXT@), gethostbyname(@LIB_NETWORK_EXT@), signal(@SYSCALL_EXT@), 
-resolver(@LIB_NETWORK_EXT@), resolver(@FORMAT_EXT@), hostname(@DESC_EXT@),
-RFC 882, RFC 883, RFC 973, RFC 974, RFC 1033, RFC 1034, RFC 1035, RFC 1123,
-\fIName Server Operations Guide for \s-1BIND\s+1\fR
diff --git a/contrib/bind/man/named.reload.8 b/contrib/bind/man/named.reload.8
deleted file mode 100644
index b838ea04b339b..0000000000000
--- a/contrib/bind/man/named.reload.8
+++ /dev/null
@@ -1,69 +0,0 @@
-.\" ++Copyright++ 1987, 1993
-.\" -
-.\" Copyright (c) 1987, 1993
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	from hostname.7	6.4 (Berkeley) 1/16/90
-.\"
-.TH @INDOT_U@NAMED.RELOAD @SYS_OPS_EXT_U@ "June 26, 1993"
-.UC 5
-.SH NAME
-@INDOT@named.reload \- cause the name server to synchronize its database
-.SH DESCRIPTION
-This command sends a \s-1SIGHUP\s+1 to the running name server.  This
-signal is documented in
-.IR named (@SYS_OPS_EXT@).
-.SH BUGS
-Does not check to see if the name server is actually running, and could
-use a stale PID cache file which may result in the death of an unrelated
-process.
-.SH SEE ALSO
-@INDOT@named(@SYS_OPS_EXT@), @INDOT@named.restart(@SYS_OPS_EXT@)
diff --git a/contrib/bind/man/named.restart.8 b/contrib/bind/man/named.restart.8
deleted file mode 100644
index 034bebdaec6ab..0000000000000
--- a/contrib/bind/man/named.restart.8
+++ /dev/null
@@ -1,73 +0,0 @@
-.\" ++Copyright++ 1987, 1993
-.\" -
-.\" Copyright (c) 1987, 1993
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	from hostname.7	6.4 (Berkeley) 1/16/90
-.\"
-.TH @INDOT_U@NAMED.RESTART @SYS_OPS_EXT_U@ "June 26, 1993"
-.UC 5
-.SH NAME
-@INDOT@named.restart \- stop and restart the name server
-.SH DESCRIPTION
-This command sends a \s-1SIGKILL\s+1 to the running name server and then
-starts a new one.
-.SH BUGS
-Does not check to see if the name server is actually running, and could
-use a stale PID cache file which may result in the death of an unrelated
-process.
-.PP
-Does not wait after killing the old server before starting a new one; since
-the server could take some time to die and the new one will experience a
-fatal error if the old one isn't gone by the time it starts, you can be left
-in a situation where you have no name server at all.
-.SH SEE ALSO
-@INDOT@named(@SYS_OPS_EXT@), @INDOT@named.reload(@SYS_OPS_EXT@)
diff --git a/contrib/bind/man/ndc.8 b/contrib/bind/man/ndc.8
deleted file mode 100644
index 6d9ecfa5ca29b..0000000000000
--- a/contrib/bind/man/ndc.8
+++ /dev/null
@@ -1,127 +0,0 @@
-.\" Copyright (c) 1994
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\"
-.TH @INDOT_U@NDC @SYS_OPS_EXT_U@ "November 27, 1994"
-.UC 5
-.SH NAME
-@INDOT@ndc \- name daemon control interface
-.SH SYNOPSIS
-.B @INDOT@ndc
-.I directive
-[ ... ]
-.SH DESCRIPTION
-This command allows the name server administrator to send various signals
-to the name server, or to restart it.  Zero or more directives may be given,
-from the following list:
-.TP
-.B status
-Displays the current status of
-.B @INDOT@named
-as shown by
-.BR ps (1).
-.TP
-.B dumpdb
-Causes
-.B @INDOT@named
-to dump its database and cache to
-.B /var/tmp/named_dump.db
-(uses the INT signal.)
-.TP
-.B reload
-Causes
-.B @INDOT@named
-to check the serial numbers of all primary and secondary zones
-and to reload those that have changed (uses the HUP signal.)
-.TP
-.B stats
-Causes
-.B @INDOT@named
-to dump its statistics to
-.B /var/tmp/named.stats
-(uses the IOT or ABRT signal.)
-.TP
-.B trace
-Causes
-.B @INDOT@named
-to increment its ``tracing level'' by one.  Whenever the tracing level
-is nonzero, trace information will be written to
-.BR /var/tmp/named.run .
-Higher tracing levels result in more detailed information.
-(Uses the USR1 signal.)
-.TP
-.B notrace
-Causes
-.B @INDOT@named
-to set its ``tracing level'' to zero, closing
-.B /var/tmp/named.run
-if it is open (uses the USR2 signal.)
-.TP
-.B querylog
-Causes
-.B @INDOT@named
-to toggle the ``query logging'' feature, which while on will result in a
-.BR syslog (3)
-of each incoming query (uses the WINCH signal.)  Note that query logging
-consumes quite a lot of log file space.  This directive may also be given as
-.BR qrylog .
-.TP
-.B start
-Causes
-.B @INDOT@named
-to be started, as long as it isn't already running.
-.TP
-.B stop
-Causes
-.B @INDOT@named
-to be stopped, if it is running.
-.TP
-.B restart
-Causes
-.B @INDOT@named
-to be killed and restarted.
-.SH BUGS
-Arguments to
-.B @INDOT@named
-are not preserved by
-.BR restart ,
-or known by
-.BR start .
-Some mechanism for controlling the parameters and environment should exist.
-.PP
-Implemented as a
-.BR sh (1)
-script.
-.SH AUTHOR
-Paul Vixie (Internet Software Consortium)
-.SH SEE ALSO
-@INDOT@named(@SYS_OPS_EXT@),
-@INDOT@named.reload(@SYS_OPS_EXT@),
-@INDOT@named.restart(@SYS_OPS_EXT@)
diff --git a/contrib/bind/man/nslookup.8 b/contrib/bind/man/nslookup.8
deleted file mode 100644
index de0306aa0972a..0000000000000
--- a/contrib/bind/man/nslookup.8
+++ /dev/null
@@ -1,387 +0,0 @@
-.\"
-.\" ++Copyright++ 1985, 1989
-.\" -
-.\" Copyright (c) 1985, 1989
-.\"    The Regents of the University of California.  All rights reserved.
-.\" 
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in the
-.\"    documentation and/or other materials provided with the distribution.
-.\" 3. All advertising materials mentioning features or use of this software
-.\"    must display the following acknowledgement:
-.\" 	This product includes software developed by the University of
-.\" 	California, Berkeley and its contributors.
-.\" 4. Neither the name of the University nor the names of its contributors
-.\"    may be used to endorse or promote products derived from this software
-.\"    without specific prior written permission.
-.\" 
-.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-.\" SUCH DAMAGE.
-.\" -
-.\" Portions Copyright (c) 1993 by Digital Equipment Corporation.
-.\" 
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies, and that
-.\" the name of Digital Equipment Corporation not be used in advertising or
-.\" publicity pertaining to distribution of the document or software without
-.\" specific, written prior permission.
-.\" 
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-.\" WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-.\" OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-.\" CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-.\" DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-.\" PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-.\" ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-.\" SOFTWARE.
-.\" -
-.\" --Copyright--
-.\"
-.\"	@(#)nslookup.8	5.3 (Berkeley) 6/24/90
-.\"
-.TH NSLOOKUP @SYS_OPS_EXT_U@ "June 24, 1990"
-.UC 6
-.SH NAME
-nslookup \- query Internet name servers interactively
-.SH SYNOPSIS
-.B nslookup
-[ 
-.I \-option ...
-]
-[
-.I host-to-find
-| \- [
-.I server
-]] 
-.SH DESCRIPTION
-.I Nslookup
-is a program to query Internet domain name servers. 
-Nslookup has two modes: interactive and non-interactive.
-Interactive mode allows the user to query name servers for
-information about various hosts and domains or to print a list of hosts 
-in a domain. 
-Non-interactive mode is used to print just the name and requested information
-for a host or domain.
-.sp 1
-.SH ARGUMENTS
-Interactive mode is entered in the following cases:
-.IP a) 4
-when no arguments are given (the default name server will be used),
-.IP b) 4
-when the first argument is a hyphen (\-) and the second argument
-is the host name or Internet address of a name server.
-.LP
-Non-interactive mode is used when the name or Internet address 
-of the host to be looked up
-is given as the first argument. The optional second argument specifies
-the host name or address of a name server.
-.LP
-The options listed under the ``set'' command below can be specified in
-the .nslookuprc file in the user's home directory if they are listed 
-one per line. Options can also be specified
-on the command line if they precede the arguments and are prefixed with
-a hyphen. For example, to change the default query type to host information,
-and the initial timeout to 10 seconds, type:
-.sp .5v
-	nslookup \-query=hinfo  \-timeout=10
-.sp .5v
-.SH "INTERACTIVE COMMANDS"
-Commands may be interrupted at any time by typing a control-C.
-To exit, type a control-D (EOF) or type exit.
-The command line length must be less than 256 characters.
-To treat a built-in command as a host name, 
-precede it with an escape character (\e). 
-\fBN.B.\fP an unrecognized command will be interpreted as a host name.
-.sp .5v
-.IP "\fIhost\fP [\fIserver\fP]"
-Look up information for \fIhost\fP using the current default server
-or using \fIserver\fP if specified.
-If \fIhost\fP is an Internet address and the query type is A or PTR, the 
-name of the host is returned.
-If \fIhost\fP is a name and does not have a trailing period, the default 
-domain name is appended to the name. (This behavior depends on the state of the
-\fBset\fP options \fBdomain\fP, \fBsrchlist\fP, 
-\fBdefname\fP, and \fBsearch\fP).
-To look up a host not in the current domain, append a period to 
-the name.
-.sp 1
-.IP "\fBserver\fP \fIdomain\fP"
-.ns
-.IP "\fBlserver\fP \fIdomain\fP"
-Change the default server to \fIdomain\fP. 
-\fBLserver\fP uses the initial server to look up 
-information about \fIdomain\fP while \fBserver\fP
-uses the current default server. 
-If an authoritative answer can't be found, the names of servers
-that might have the answer are returned.
-.sp 1
-.IP \fBroot\fP
-Changes the default server to the server for the root of the domain name space.
-Currently, the host ns.internic.net is used.
-(This command is a synonym for \fBlserver ns.internic.net.\fP)
-The name of the root server can be changed with the \fBset root\fP command.
-.sp 1
-.IP "\fBfinger\fP [\fIname\fP] [\fB>\fP \fIfilename\fP]"
-.ns
-.IP "\fBfinger\fP [\fIname\fP] [\fB>>\fP \fIfilename\fP]"
-Connects with the finger server on the current host. 
-The current host is defined when a previous lookup for a host
-was successful and returned address information (see the 
-\fBset querytype=A\fP command).
-\fIName\fP is optional. 
-\fB>\fP and \fB>>\fP can be used to redirect output in the
-usual manner.
-.sp 1
-.IP "\fBls\fR [\fIoption\fR] \fIdomain\fR [\fB>\fR \fIfilename\fR]"
-.ns
-.IP "\fBls\fR [\fIoption\fR] \fIdomain\fR [\fB>>\fR \fIfilename\fR]"
-List the information available for \fIdomain\fP, optionally creating
-or appending to \fIfilename\fP.
-The default output contains host names and their Internet addresses. 
-.I Option 
-can be one of the following:
-.RS
-.IP "\fB\-t \fIquerytype\fP" 4
-lists all records of the specified type (see \fIquerytype\fP below).
-.IP \fB\-a\fP 4
-lists aliases of hosts in the domain. 
-synonym for \fB\-t\ \ CNAME\fP.
-.IP \fB\-d\fP 4
-lists all records for the domain.
-synonym for \fB\-t\ \ ANY\fP.
-.IP \fB\-h\fP 4
-lists CPU and operating system information for the domain.
-synonym for \fB\-t\ \ HINFO\fP.
-.IP \fB\-s\fP 4
-lists well-known services of hosts in the domain.
-synonym for \fB\-t\ \ WKS\fP.
-.P
-When output is directed to a file, hash marks are printed for every
-50 records received from the server.
-.RE
-.sp 1
-.IP "\fBview\fP \fIfilename\fP"
-Sorts and lists the output of previous \fBls\fP command(s) with 
-\fImore\fP(@CMD_EXT@).
-.sp 1
-.ne 4
-.IP "\fBhelp\fP"
-.ns
-.IP "\fB?\fP"
-Prints a brief summary of commands.
-.sp 1
-.IP "\fBexit\fP"
-Exits the program.
-.sp 1
-.IP "\fBset\fP \fIkeyword\fP[=\fIvalue\fP]"
-This command is used to change state information that affects the lookups.
-Valid keywords are:
-.RS
-.IP "\fBall\fP"
-Prints the current values of the frequently-used options to \fBset\fP.
-Information about the  current default server and host is also printed.
-.IP "\fBclass=\fIvalue\fR"
-Change the query class to one of:
-.RS
-.IP IN 10
-the Internet class.
-.IP CHAOS 10
-the Chaos class.
-.IP HESIOD 10
-the MIT Athena Hesiod class.
-.IP ANY 10
-wildcard (any of the above).
-.P
-The class specifies the protocol group of the information.
-.br
-(Default = IN, abbreviation = cl)
-.RE
-.IP "\fB[no]debug\fP"
-Turn debugging mode on. A lot more information is printed about the
-packet sent to the server and the resulting answer.
-.br
-(Default = nodebug, abbreviation = [no]deb)
-.IP "\fB[no]d2\fP"
-Turn exhaustive debugging mode on.
-Essentially all fields of every packet are printed.
-.br
-(Default = nod2)
-.IP "\fBdomain=\fIname\fR"
-Change the default domain name to \fIname\fP. 
-The default domain name is appended to a lookup request depending on the
-state of the \fBdefname\fP and \fBsearch\fP options.
-The domain search list contains the parents of the default domain if it has 
-at least two components in its name. 
-For example, if the default domain
-is CC.Berkeley.EDU, the search list is CC.Berkeley.EDU and Berkeley.EDU.
-Use the \fBset srchlist\fP command to specify a different list.
-Use the \fBset all\fP command to display the list.
-.br
-(Default = value from hostname, /etc/resolv.conf or LOCALDOMAIN, 
-abbreviation = do)
-.IP "\fBsrchlist=\fIname1/name2/...\fR"
-Change the default domain name to \fIname1\fP and the domain search list
-to \fIname1\fP, \fIname2\fP, etc. A maximum of 6 names separated by slashes (/)
-can be specified.
-For example,
-.sp .5v
-    set\ srchlist=lcs.MIT.EDU/ai.MIT.EDU/MIT.EDU
-.sp .5v
-sets the domain to lcs.MIT.EDU and the search list to the three names.
-This command overrides the
-default domain name and search list of the \fBset domain\fP command.
-Use the \fBset all\fP command to display the list.
-.br
-(Default = value based on hostname, /etc/resolv.conf or LOCALDOMAIN, 
-abbreviation = srchl)
-.IP "\fB[no]defname\fP"
-If set, append the default domain name to a single-component lookup request 
-(i.e., one that does not contain a period).
-.br
-(Default = defname, abbreviation = [no]def)
-.IP "\fB[no]search\fP"
-If the lookup request contains at least one period but doesn't end 
-with a trailing period, 
-append the domain names in the domain search list
-to the request until an answer is received.
-.br
-(Default = search, abbreviation = [no]sea)
-.IP "\fBport=\fIvalue\fR"
-Change the default TCP/UDP name server port to \fIvalue\fP. 
-.br
-(Default = 53, abbreviation = po)
-.IP "\fBquerytype=\fIvalue\fR"
-.ns
-.IP "\fBtype=\fIvalue\fR"
-.ns
-Change the type of information query to one of:
-.RS
-.IP A 10
-the host's Internet address.
-.IP CNAME  10
-the canonical name for an alias. 
-.IP HINFO 10
-the host CPU and operating system type.
-.IP MINFO 10
-the mailbox or mail list information.
-.IP MX 10
-the mail exchanger.
-.IP NS 10
-the name server for the named zone.
-.IP PTR 10
-the host name if the query is an Internet address,
-otherwise the pointer to other information.
-.IP SOA 10
-the domain's ``start-of-authority'' information.
-.IP TXT 10
-the text information.
-.IP UINFO 10
-the user information.
-.IP WKS 10
-the supported well-known services.
-.P
-Other types (ANY, AXFR, MB, MD, MF, NULL) are described in the 
-RFC-1035 document.
-.br
-(Default = A, abbreviations = q, ty)
-.RE
-.IP "\fB[no]recurse\fP"
-Tell the name server to query other servers if it does not have the
-information.
-.br
-(Default = recurse, abbreviation = [no]rec)
-.IP \fBretry=\fInumber\fR
-Set the number of retries to \fInumber\fP. 
-When a reply to a request is not received within a certain 
-amount of time (changed with \fBset timeout\fP), 
-the timeout period is doubled and the request is resent. 
-The retry value controls how many times a request is resent before giving up.
-.br
-(Default = 4, abbreviation = ret)
-.IP \fBroot=\fIhost\fR
-Change the name of the root server to \fIhost\fP. This
-affects the \fBroot\fP command. 
-.br
-(Default = ns.internic.net., abbreviation = ro)
-.IP \fBtimeout=\fInumber\fR
-Change the initial timeout interval 
-for waiting for a reply 
-to \fInumber\fP seconds. 
-Each retry doubles the timeout period.
-.br
-(Default = 5 seconds, abbreviation = ti)
-.IP "\fB[no]vc\fP"
-Always use a virtual circuit when sending requests to the server.
-.br
-(Default = novc, abbreviation = [no]v)
-.IP "\fB[no]ignoretc\fP"
-Ignore packet truncation errors.
-.br
-(Default = noignoretc, abbreviation = [no]ig)
-.RE
-.SH DIAGNOSTICS
-If the lookup request was not successful, an error message is printed.
-Possible errors are:
-.IP "Timed out" 5
-The server did not respond to a request after a certain amount of
-time (changed with \fBset timeout=\fIvalue\fR) 
-and a certain number of retries (changed with \fBset retry=\fIvalue\fR).
-.IP "No response from server" 5
-No name server is running on the server machine.
-.IP "No records" 5
-The server does not have resource records of the current query type for the
-host, although the host name is valid.
-The query type is specified with the \fBset querytype\fP command.
-.IP "Non-existent domain" 5
-The host or domain name does not exist.
-.IP "Connection refused" 5
-.ns
-.IP "Network is unreachable" 5
-The connection to the name or finger server could not be made 
-at the current time.
-This error commonly occurs with \fBls\fP and \fBfinger\fP requests. 
-.IP "Server failure" 5
-The name server found an internal inconsistency in its database
-and could not return a valid answer.
-.IP "Refused" 5
-The name server refused to service the request.
-.IP "Format error" 5
-The name server found that the request packet was not in the proper format.
-It may indicate an error in \fInslookup\fP.
-.sp 1
-.SH FILES
-.ta \w'/usr/share/misc/nslookup.helpXXX'u
-/etc/resolv.conf	initial domain name and 
-	name server addresses.
-.br
-$HOME/.nslookuprc	user's initial options.
-.br
-/usr/share/misc/nslookup.help	summary of commands.
-.SH ENVIRONMENT
-.ta \w'HOSTALIASESXXXX'u
-HOSTALIASES	file containing host aliases.
-.br
-LOCALDOMAIN	overrides default domain.
-.SH SEE ALSO
-resolver(@LIB_NETWORK_EXT@), resolver(@FORMAT_EXT@), @INDOT@named(@SYS_OPS_EXT@), 
-.br
-RFC-1034  ``Domain Names \- Concepts and Facilities''
-.br
-RFC-1035  ``Domain Names \- Implementation and Specification''
-.SH AUTHOR
-Andrew Cherenson
diff --git a/contrib/bind/man/resolver.3 b/contrib/bind/man/resolver.3
deleted file mode 100644
index 2d71c14b5cd62..0000000000000
--- a/contrib/bind/man/resolver.3
+++ /dev/null
@@ -1,339 +0,0 @@
-.\" Copyright (c) 1985, 1995 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted provided
-.\" that: (1) source distributions retain this entire copyright notice and
-.\" comment, and (2) distributions including binaries display the following
-.\" acknowledgement:  ``This product includes software developed by the
-.\" University of California, Berkeley and its contributors'' in the
-.\" documentation or other materials provided with the distribution and in
-.\" all advertising materials mentioning features or use of this software.
-.\" Neither the name of the University nor the names of its contributors may
-.\" be used to endorse or promote products derived from this software without
-.\" specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
-.\" WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
-.\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)resolver.3	6.5 (Berkeley) 6/23/90
-.\"	$Id: resolver.3,v 8.4 1996/05/09 05:59:10 vixie Exp $
-.\"
-.TH RESOLVER @LIB_NETWORK_EXT_U@ "December 11, 1995
-.UC 4
-.SH NAME
-res_query, res_search, res_mkquery, res_send, res_init, dn_comp, dn_expand \- resolver routines
-.SH SYNOPSIS
-.B #include <sys/types.h>
-.br
-.B #include <netinet/in.h>
-.br
-.B #include <arpa/nameser.h>
-.br
-.B #include <resolv.h>
-.PP
-.B "res_query(dname, class, type, answer, anslen)"
-.br
-.B const char *dname;
-.br
-.B int class, type;
-.br
-.B u_char *answer;
-.br
-.B int anslen;
-.PP
-.B "res_search(dname, class, type, answer, anslen)"
-.br
-.B const char *dname;
-.br
-.B int class, type;
-.br
-.B u_char *answer;
-.br
-.B int anslen;
-.PP
-.B "res_mkquery(op, dname, class, type, data, datalen, newrr, buf, buflen)"
-.br
-.B int op;
-.br
-.B const char *dname;
-.br
-.B int class, type;
-.br
-.B const char *data;
-.br
-.B int datalen;
-.br
-.B struct rrec *newrr;
-.br
-.B u_char *buf;
-.br
-.B int buflen;
-.PP
-.B res_send(msg, msglen, answer, anslen)
-.br
-.B const u_char *msg;
-.br
-.B int msglen;
-.br
-.B u_char *answer;
-.br
-.B int anslen;
-.PP
-.B res_init()
-.PP
-.B dn_comp(exp_dn, comp_dn, length, dnptrs, lastdnptr)
-.br
-.B const char *exp_dn;
-.br
-.B u_char *comp_dn;
-.br
-.B int length;
-.br
-.B u_char **dnptrs, **lastdnptr;
-.PP
-.B dn_expand(msg, eomorig, comp_dn, exp_dn, length)
-.br
-.B const u_char *msg, *eomorig, *comp_dn;
-.br
-.B char *exp_dn;
-.br
-.B int  length;
-.PP
-.B herror(const char *s)
-.PP
-.B hstrerror(int err)
-.SH DESCRIPTION
-These routines are used for making, sending and interpreting
-query and reply messages with Internet domain name servers.
-.PP
-Global configuration and state information that is used by the
-resolver routines is kept in the structure
-.IR _res .
-Most of the values have reasonable defaults and can be ignored.
-Options
-stored in
-.I _res.options
-are defined in
-.I resolv.h
-and are as follows.
-Options are stored as a simple bit mask containing the bitwise ``or''
-of the options enabled.
-.IP RES_INIT
-True if the initial name server address and default domain name are
-initialized (i.e.,
-.I res_init
-has been called).
-.IP RES_DEBUG
-Print debugging messages.
-.IP RES_AAONLY
-Accept authoritative answers only.
-With this option,
-.I res_send
-should continue until it finds an authoritative answer or finds an error.
-Currently this is not implemented.
-.IP RES_USEVC
-Use TCP connections for queries instead of UDP datagrams.
-.IP RES_STAYOPEN
-Used with RES_USEVC to keep the TCP connection open between
-queries.
-This is useful only in programs that regularly do many queries.
-UDP should be the normal mode used.
-.IP RES_IGNTC
-Unused currently (ignore truncation errors, i.e., don't retry with TCP).
-.IP RES_RECURSE
-Set the recursion-desired bit in queries.
-This is the default.
-(\c
-.I res_send
-does not do iterative queries and expects the name server
-to handle recursion.)
-.IP RES_DEFNAMES
-If set,
-.I res_search
-will append the default domain name to single-component names
-(those that do not contain a dot).
-This option is enabled by default.
-.IP RES_DNSRCH
-If this option is set,
-.I res_search
-will search for host names in the current domain and in parent domains; see
-.IR hostname (@DESC_EXT@).
-This is used by the standard host lookup routine
-.IR gethostbyname (@LIB_NETWORK_EXT@).
-This option is enabled by default.
-.IP RES_NOALIASES
-This option turns off the user level aliasing feature controlled by
-the HOSTALIASES environment variable.  Network daemons should set this option.
-.PP
-The
-.I res_init
-routine
-reads the configuration file (if any; see
-.IR resolver (@FORMAT_EXT@))
-to get the default domain name,
-search list and
-the Internet address of the local name server(s).
-If no server is configured, the host running
-the resolver is tried.
-The current domain name is defined by the hostname
-if not specified in the configuration file;
-it can be overridden by the environment variable LOCALDOMAIN.
-This environment variable may contain several blank-separated
-tokens if you wish to override the
-.I "search list"
-on a per-process basis.  This is similar to the
-.I search
-command in the configuration file.
-Another environment variable (``RES_OPTIONS'') can be set to
-override certain internal resolver options which are otherwise
-set by changing fields in the
-.I _res
-structure or are inherited from the configuration file's
-.I options
-command.  The syntax of the ``RES_OPTIONS'' environment variable
-is explained in
-.IR resolver (@FORMAT_EXT@).
-Initialization normally occurs on the first call
-to one of the other resolver routines.
-.PP
-The
-.I res_query
-function provides an interface to the server query mechanism.
-It constructs a query, sends it to the local server,
-awaits a response, and makes preliminary checks on the reply.
-The query requests information of the specified
-.I type
-and
-.I class
-for the specified fully-qualified domain name
-.I dname .
-The reply message is left in the
-.I answer
-buffer with length
-.I anslen
-supplied by the caller.
-.PP
-The
-.I res_search
-routine makes a query and awaits a response like
-.IR res_query ,
-but in addition, it implements the default and search rules
-controlled by the RES_DEFNAMES and RES_DNSRCH options.
-It returns the first successful reply.
-.PP
-The remaining routines are lower-level routines used by
-.IR res_query .
-The
-.I res_mkquery
-function
-constructs a standard query message and places it in
-.IR buf .
-It returns the size of the query, or \-1 if the query is
-larger than
-.IR buflen .
-The query type
-.I op
-is usually QUERY, but can be any of the query types defined in
-.IR <arpa/nameser.h> .
-The domain name for the query is given by
-.IR dname .
-.I Newrr
-is currently unused but is intended for making update messages.
-.PP
-The
-.I res_send
-routine
-sends a pre-formatted query and returns an answer.
-It will call
-.I res_init
-if RES_INIT is not set, send the query to the local name server, and
-handle timeouts and retries.
-The length of the reply message is returned, or
-\-1 if there were errors.
-.PP
-The
-.I dn_comp
-function
-compresses the domain name
-.I exp_dn
-and stores it in
-.IR comp_dn .
-The size of the compressed name is returned or \-1 if there were errors.
-The size of the array pointed to by
-.I comp_dn
-is given by
-.IR length .
-The compression uses
-an array of pointers
-.I dnptrs
-to previously-compressed names in the current message.
-The first pointer points to
-to the beginning of the message and the list ends with NULL.
-The limit to the array is specified by
-.IR lastdnptr .
-A side effect of
-.I dn_comp
-is to update the list of pointers for
-labels inserted into the message
-as the name is compressed.
-If
-.I dnptr
-is NULL, names are not compressed.
-If
-.I lastdnptr
-is NULL, the list of labels is not updated.
-.PP
-The
-.I dn_expand
-entry
-expands the compressed domain name
-.I comp_dn
-to a full domain name
-The compressed name is contained in a query or reply message;
-.I msg
-is a pointer to the beginning of the message.
-The uncompressed name is placed in the buffer indicated by
-.I exp_dn
-which is of size
-.IR length .
-The size of compressed name is returned or \-1 if there was an error.
-.PP
-The external variable
-.B h_errno
-is set whenever an error occurs during resolver operation.  The following
-definitions are given in
-.BR <netdb.h> :
-.PP
-.nf
-#define NETDB_INTERNAL -1  /* see errno */
-#define NETDB_SUCCESS  0   /* no problem */
-#define HOST_NOT_FOUND 1   /* Authoritative Answer Host not found */
-#define TRY_AGAIN      2   /* Non-Authoritive not found, or SERVFAIL */
-#define NO_RECOVERY    3   /* Nonrecoverable: FORMERR, REFUSED, NOTIMP */
-#define NO_DATA        4   /* Valid name, no data for requested type */
-.ft R
-.ad
-.fi
-.PP
-The
-.B herror
-function writes a message to the diagnostic output consisting of the string
-parameter
-.BR s ,
-the constant string ": ", and a message corresponding to the value of
-.BR h_errno .
-.PP
-The
-.B hstrerror
-function returns a string which is the message text corresponding to the
-value of the
-.B err
-parameter.
-.SH FILES
-/etc/resolv.conf	see resolver(@FORMAT_EXT@)
-.SH "SEE ALSO"
-gethostbyname(@LIB_NETWORK_EXT@), @INDOT@named(@SYS_OPS_EXT@), resolver(@FORMAT_EXT@), hostname(@DESC_EXT@),
-.br
-RFC1032, RFC1033, RFC1034, RFC1035, RFC974, 
-.br
-SMM:11 Name Server Operations Guide for BIND
diff --git a/contrib/bind/man/resolver.5 b/contrib/bind/man/resolver.5
deleted file mode 100644
index 41fcf3cd9f110..0000000000000
--- a/contrib/bind/man/resolver.5
+++ /dev/null
@@ -1,133 +0,0 @@
-.\" Copyright (c) 1986 The Regents of the University of California.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms are permitted
-.\" provided that the above copyright notice and this paragraph are
-.\" duplicated in all such forms and that any documentation,
-.\" advertising materials, and other materials related to such
-.\" distribution and use acknowledge that the software was developed
-.\" by the University of California, Berkeley.  The name of the
-.\" University may not be used to endorse or promote products derived
-.\" from this software without specific prior written permission.
-.\" THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR
-.\" IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED
-.\" WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
-.\"
-.\"	@(#)resolver.5	5.9 (Berkeley) 12/14/89
-.\"	$Id: resolver.5,v 8.3 1995/12/06 20:34:35 vixie Exp $
-.\"
-.TH RESOLVER @FORMAT_EXT_U@ ""November 11, 1993""
-.UC 4
-.SH NAME
-resolver \- resolver configuration file
-.SH SYNOPSIS
-/etc/resolv.conf
-.SH DESCRIPTION
-.LP
-The
-.I resolver
-is a set of routines in the C library (\c
-.IR resolv (@LIB_NETWORK_EXT@))
-that provide access to the Internet Domain Name System.
-The resolver configuration file contains information that is read
-by the resolver routines the first time they are invoked by a process.
-The file is designed to be human readable and contains a list of
-keywords with values that provide various types of resolver information.
-.LP
-On a normally configured system this file should not be necessary.
-The only name server to be queried will be on the local machine,
-the domain name is determined from the host name,
-and the domain search path is constructed from the domain name.
-.LP
-The different configuration options are:
-.TP
-\fBnameserver\fP
-Internet address (in dot notation) of a name server
-that the resolver should query.
-Up to MAXNS (currently 3) name servers may be listed,
-one per keyword.
-If there are multiple servers,
-the resolver library queries them in the order listed.
-If no \fBnameserver\fP entries are present,
-the default is to use the name server on the local machine.
-(The algorithm used is to try a name server, and if the query times out,
-try the next, until out of name servers,
-then repeat trying all the name servers
-until a maximum number of retries are made).
-.TP
-\fBdomain\fP
-Local domain name.
-Most queries for names within this domain can use short names
-relative to the local domain.
-If no \fBdomain\fP entry is present, the domain is determined
-from the local host name returned by
-\fIgethostname\fP\|(@BSD_SYSCALL_EXT@);
-the domain part is taken to be everything after the first `.'.
-Finally, if the host name does not contain a domain part, the root
-domain is assumed.
-.TP
-\fBsearch\fP
-Search list for host-name lookup.
-The search list is normally determined from the local domain name;
-by default, it contains only the local domain name.
-This may be changed by listing the desired domain search path
-following the \fIsearch\fP keyword with spaces or tabs separating
-the names.
-Most resolver queries will be attempted using each component
-of the search path in turn until a match is found.
-Note that this process may be slow and will generate a lot of network
-traffic if the servers for the listed domains are not local,
-and that queries will time out if no server is available
-for one of the domains.
-.IP
-The search list is currently limited to six domains
-with a total of 256 characters.
-.TP
-\fBsortlist\fP
-Sortlist allows addresses returned by gethostbyname to be sorted.
-A sortlist is specified by IP address netmask pairs. The netmask is
-optional and defaults to the natural netmask of the net. The IP address
-and optional network pairs are separated by slashes. Up to 10 pairs may
-be specified.
-.IP
-e.g. sortlist 130.155.160.0/255.255.240.0 130.155.0.0
-.TP
-\fBoptions\fP
-Options allows certain internal resolver variables to be modified.
-The syntax is
-.IP
-\fBoptions\fP \fIoption\fP \fI...\fP
-.IP
-where \fIoption\fP is one of the following:
-.IP
-\fBdebug\fP \(em sets RES_DEBUG in _res.options.
-.IP
-\fBndots:\fP\fIn\fP \(em sets a threshold for the number of dots which
-must appear in a name given to \fBres_query\fP (see \fIresolver\fP(@LIB_NETWORK_EXT@))
-before an \fIinitial absolute query\fP will be made.  The default for
-\fIn\fP is ``1'', meaning that if there are any dots in a name, the name
-will be tried first as an absolute name before any \fIsearch list\fP
-elements are appended to it.
-.LP
-The \fIdomain\fP and \fIsearch\fP keywords are mutually exclusive.
-If more than one instance of these keywords is present,
-the last instance wins.
-.LP
-The \fIsearch\fP keyword of a system's \fIresolv.conf\fP file can be
-overridden on a per-process basis by setting the environment variable
-``\s-1LOCALDOMAIN\s+1'' to a space-separated list of search domains.
-.LP
-The \fIoptions\fP keyword of a system's \fIresolv.conf\fP file can be
-amended on a per-process basis by setting the environment variable
-``\s-1RES_OPTIONS\s+1'' to a space-separated list of resolver options
-as explained above under \fBoptions\fP.
-.LP
-The keyword and value must appear on a single line, and the keyword
-(e.g. \fBnameserver\fP) must start the line.  The value follows
-the keyword, separated by white space.
-.SH FILES
-.I /etc/resolv.conf
-.SH SEE ALSO
-gethostbyname(@LIB_NETWORK_EXT@), resolver(@LIB_NETWORK_EXT@), hostname(@DESC_EXT@), @INDOT@named(@SYS_OPS_EXT@)
-.br
-Name Server Operations Guide for BIND
diff --git a/contrib/bind/named/Makefile b/contrib/bind/named/Makefile
deleted file mode 100644
index 777cbb947994e..0000000000000
--- a/contrib/bind/named/Makefile
+++ /dev/null
@@ -1,197 +0,0 @@
-#
-#	@(#)Makefile.dist	5.4 (Berkeley) 8/15/90
-#	$Id: Makefile,v 8.10 1996/09/22 00:13:10 vixie Exp $
-#
-
-## ++Copyright++ 1987, 1988, 1990
-## -
-## Copyright (c) 1987, 1988, 1990
-##    The Regents of the University of California.  All rights reserved.
-## 
-## Redistribution and use in source and binary forms, with or without
-## modification, are permitted provided that the following conditions
-## are met:
-## 1. Redistributions of source code must retain the above copyright
-##    notice, this list of conditions and the following disclaimer.
-## 2. Redistributions in binary form must reproduce the above copyright
-##    notice, this list of conditions and the following disclaimer in the
-##    documentation and/or other materials provided with the distribution.
-## 3. All advertising materials mentioning features or use of this software
-##    must display the following acknowledgement:
-## 	This product includes software developed by the University of
-## 	California, Berkeley and its contributors.
-## 4. Neither the name of the University nor the names of its contributors
-##    may be used to endorse or promote products derived from this software
-##    without specific prior written permission.
-## 
-## THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-## ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-## IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-## ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-## FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-## DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-## OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-## HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-## LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-## OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-## SUCH DAMAGE.
-## -
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-## -
-## --Copyright--
-
-## NOTE: customizing this Makefile is almost certainly the wrong thing to do.
-##	unless you are a developer and intend to run "make" here a lot of times
-##	per day, you should just run "make" from the top-level directory after
-##	configuring _that_ Makefile with the right system-dependent values.
-
-VER	= LOCAL-`date +%y%m%d.%H%M%S`
-SHELL	= /bin/sh
-DESTDIR =
-
-INDOT=
-XFER_INDOT=
-#(sunos)
-#INDOT=in.
-#XFER_INDOT=in.
-
-HOSTNAMECMD = hostname || uname -n
-
-#(these defaults are reasonable for a BSD/OS test environment;
-# for real configuration, edit ../Makefile and run make from there.)
-
-COMPINCL = ../compat/include
-INCL=	../include
-RES=	../res/libresolv.a
-DESTSBIN = ${DESTDIR}/usr/sbin
-DESTEXEC = ${DESTDIR}/usr/libexec
-PIDDIR = /var/run
-CC= cc
-#CC= gcc2 -Wimplicit -Wunused -Wreturn-type
-SHELL= /bin/sh
-CDEBUG= -g
-LIBS=
-COMPLIB= ../compat/lib/lib44bsd.a
-PATH_XFER = ${DESTEXEC}/${XFER_INDOT}named-xfer
-DEFS = -D_PATH_XFER=\"${PATH_XFER}\" -D_PATH_PIDFILE=\"${PIDDIR}/named.pid\" \
-	-DKSYMS=\"${KSYMS}\" -DKMEM=\"${KMEM}\" -DUDPSUM=\"${UDPSUM}\"
-INSTALL = install
-PS=ps
-IOT=ABRT
-
-CFLAGS = ${CDEBUG} -I${INCL} -I${COMPINCL} ${DEFS}
-
-HDRS=	db_defs.h db_glob.h ns_defs.h ns_glob.h named.h pathnames.h tree.h
-SRCS=	db_dump.c db_load.c db_lookup.c db_reload.c db_save.c db_update.c \
-	db_secure.c db_glue.c \
-	ns_forw.c ns_init.c ns_main.c ns_maint.c ns_req.c ns_resp.c \
-	ns_sort.c ns_stats.c ns_validate.c ns_ncache.c \
-	storage.c tree.c ns_udp.c
-OBJS=	db_dump.o db_load.o db_lookup.o db_reload.o db_save.o db_update.o \
-	db_secure.o db_glue.o \
-	ns_forw.o ns_init.o ns_main.o ns_maint.o ns_req.o ns_resp.o \
-	ns_sort.o ns_stats.o ns_validate.o ns_ncache.o \
-	storage.o tree.o ns_udp.o
-XFERSRCS=  named-xfer.c
-XFEROBJ=   named-xfer.o db_glue.o storage.o version.o
-
-all: named named-xfer named.reload named.restart ndc
-
-named: ${OBJS} ${RES} ${COMPLIB} version.o
-	${CC} ${CDEBUG} ${LDFLAGS} -o $@ version.o ${OBJS} \
-		${RES} ${COMPLIB} ${LIBS}
-
-version.o: version.c
-
-version.c: Version.c Makefile ../Makefile ${SRCS} ${HDRS}
-	(u=$${USER-root} d=`pwd` h=`${HOSTNAMECMD}` t=`date`; \
-	sed -e "s|%WHEN%|$${t}|" -e "s|%VERSION%|"${VER}"|" \
-	    -e "s|%WHOANDWHERE%|$${u}@$${h}:$${d}|" \
-	    < Version.c > version.c)
-
-named.reload: named.reload.sh Makefile
-	sed -e "s|%INDOT%|${INDOT}|" \
-	    -e "s|%DESTSBIN%|${DESTSBIN}|" \
-	    < named.reload.sh > named.reload
-	chmod +x named.reload
-
-named.restart: named.restart.sh Makefile
-	sed -e "s|%INDOT%|${INDOT}|" \
-	    -e "s|%DESTSBIN%|${DESTSBIN}|" \
-	    < named.restart.sh > named.restart
-	chmod +x named.restart
-
-ndc: ndc.sh Makefile
-	sed -e "s|%PIDDIR%|${PIDDIR}|" \
-	    -e "s|%INDOT%|${INDOT}|" \
-	    -e "s|%PS%|${PS}|" \
-	    -e "s|%IOTPS%|${IOT}|" \
-	    -e "s|%DESTSBIN%|${DESTSBIN}|" \
-	    -e "s|%IOT%|${IOT}|" \
-	    < ndc.sh > ndc
-	chmod +x ndc
-
-named-xfer:	${XFEROBJ} ${RES} ${COMPLIB}
-	${CC} ${CDEBUG} ${LDFLAGS} -o $@ ${XFEROBJ} \
-		${RES} ${COMPLIB} ${LIBS}
-
-centerline_named:
-	#load -I${INCL} -I${COMPINCL} ${CFLAGS} ${SRCS} \
-		version.c ${RES} ${COMPLIB} ${LIBS}
-
-centerline_obj:
-	#load -I${INCL} -I${COMPINCL} ${CFLAGS} ${OBJS} \
-		version.o ${RES} ${COMPLIB} ${LIBS}
-
-centerline_xfer:
-	#load -DXFER ${CFLAGS} ${XFERSRCS} ${RES} ${COMPLIB} ${LIBS}
-
-clean:
-	rm -f ${OBJS} ${XFEROBJ} core named named-xfer version.o version.c
-	rm -f *~ *.BAK *.CKP
-	rm -f tags .depend core named.reload named.restart ndc
-	rm -f *.orig
-
-depend .depend: ${SRCS} ${XFERSRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${COMPINCL} ${SRCS} ${XFERSRCS}
-
-install:
-	${INSTALL} -c -s -o bin -g bin -m 555 \
-		named ${DESTDIR}${DESTSBIN}/${INDOT}named
-	${INSTALL} -c -s -o bin -g bin -m 555 \
-		named-xfer ${DESTDIR}${PATH_XFER}
-	${INSTALL} -c -o bin -g bin -m 555 \
-		named.restart ${DESTDIR}${DESTSBIN}/${INDOT}named.restart
-	${INSTALL} -c -o bin -g bin -m 555 \
-		named.reload ${DESTDIR}${DESTSBIN}/${INDOT}named.reload
-	${INSTALL} -c -o bin -g bin -m 555 \
-		ndc ${DESTDIR}${DESTSBIN}/${INDOT}ndc
-	@echo "*** Install symlinks if needed ***"
-
-lint: ${SRCS} ${HDRS} ${XFERSRCS}
-	lint -x -Dlint ${CFLAGS} ${SRCS} ${XFERSRCS} 2>&1 \
-		| grep -v 'warning: nested comments not supported'
-
-tags: ${SRCS} ${XFERSRCS} Makefile
-	ctags -t `echo ${SRCS} ${HDRS} ${XFERSRCS}|tr ' ' '\012'|sort -u`
-
-$(SRCS):: $(HDRS)
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/named/Makefile.reno b/contrib/bind/named/Makefile.reno
deleted file mode 100644
index 2bddd9e109176..0000000000000
--- a/contrib/bind/named/Makefile.reno
+++ /dev/null
@@ -1,83 +0,0 @@
-#
-#	@(#)Makefile	5.8 (Berkeley) 7/28/90
-#	$Id: Makefile.reno,v 8.1 1994/12/15 06:24:14 vixie Exp $
-#
-
-## ++Copyright++ 1985, 1989
-## -
-## Copyright (c) 1985, 1989
-##    The Regents of the University of California.  All rights reserved.
-## 
-## Redistribution and use in source and binary forms, with or without
-## modification, are permitted provided that the following conditions
-## are met:
-## 1. Redistributions of source code must retain the above copyright
-##    notice, this list of conditions and the following disclaimer.
-## 2. Redistributions in binary form must reproduce the above copyright
-##    notice, this list of conditions and the following disclaimer in the
-##    documentation and/or other materials provided with the distribution.
-## 3. All advertising materials mentioning features or use of this software
-##    must display the following acknowledgement:
-## 	This product includes software developed by the University of
-## 	California, Berkeley and its contributors.
-## 4. Neither the name of the University nor the names of its contributors
-##    may be used to endorse or promote products derived from this software
-##    without specific prior written permission.
-## 
-## THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-## ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-## IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-## ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-## FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-## DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-## OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-## HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-## LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-## OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-## SUCH DAMAGE.
-## -
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-## -
-## --Copyright--
-
-### -DALLOW_T_UNSPEC -Dmalloc=rt_malloc -Dfree=rt_free
-### ALLOC=storage.o
-PROG=	named
-MAN8=	named.0
-CFLAGS=	-O -DDEBUG -DSTATS
-LDADD=	-lutil
-SRCS=	db_dump.c db_glue.c db_load.c db_lookup.c db_reload.c db_save.c \
-	db_update.c ns_forw.c ns_init.c ns_main.c ns_maint.c ns_req.c \
-	ns_resp.c ns_sort.c ns_stats.c
-OBJS+=	version.o
-CLEANFILES+=version.c version.o
-SUBDIR=	tools xfer
-
-version.c: ${.CURDIR}/Version.c
-	(u=$${USER-root} d=`pwd |sed -e 's|/obj/|/src/|'` \
-	 h=`hostname` t=`date`; \
-	sed -e "s|%WHEN%|$${t}|" \
-	    -e "s|%WHOANDWHERE%|$${u}@$${h}:$${d}|" \
-	    < ${.CURDIR}/Version.c > version.c)
-
-afterinstall:
-	install -c -o ${BINOWN} -g ${BINGRP} -m 555 ${.CURDIR}/named.restart \
-	    ${.CURDIR}/named.reload ${DESTDIR}${BINDIR}
-
-.include <bsd.prog.mk>
diff --git a/contrib/bind/named/Version.c b/contrib/bind/named/Version.c
deleted file mode 100644
index e89670b583138..0000000000000
--- a/contrib/bind/named/Version.c
+++ /dev/null
@@ -1,89 +0,0 @@
-/*
- *	@(#)Version.c	4.9 (Berkeley) 7/21/90
- *	$Id: Version.c,v 8.2 1997/06/01 20:34:34 vixie Exp $
- */
-
-#ifndef lint
-char sccsid[] = "@(#)named %VERSION% %WHEN% %WHOANDWHERE%";
-char rcsid[] = "$Id: Version.c,v 8.2 1997/06/01 20:34:34 vixie Exp $";
-#endif /* not lint */
-
-char Version[] = "named %VERSION% %WHEN%\n\t%WHOANDWHERE%";
-char ShortVersion[] = "%VERSION%";
-
-#ifdef COMMENT
-
-SCCS/s.Version.c:
-
-D 4.8.3	90/06/27 17:05:21	bloom	37	35	00031/00028/00079
-Version distributed with 4.3 Reno tape (June 1990)
-
-D 4.8.2	89/09/18 13:57:11	bloom	35	34	00020/00014/00087
-Interim fixes release
-
-D 4.8.1	89/02/08 17:12:15	karels	34	33	00026/00017/00075
-branch for 4.8.1
-
-D 4.8	88/07/09 14:27:00       karels  33      28      00043/00031/00049
-4.8 is here!
-
-D 4.7	87/11/20 13:15:52	karels	25	24	00000/00000/00062
-4.7.3 beta
-
-D 4.6	87/07/21 12:15:52	karels	25	24	00000/00000/00062
-4.6 declared stillborn
-
-D 4.5	87/02/10 12:33:25	kjd	24	18	00000/00000/00062
-February 1987, Network Release. Child (bind) grows up, parent (kevin) leaves home.
-
-D 4.4	86/10/01 10:06:26	kjd	18	12	00020/00017/00042
-October 1, 1986 Network Distribution
-
-D 4.3	86/06/04 12:12:18	kjd	12	7	00015/00028/00044
-Version distributed with 4.3BSD
-
-D 4.2	86/04/30 20:57:16	kjd	7	1	00056/00000/00016
-Network distribution Freeze and one more version until 4.3BSD
-
-D 1.1	86/04/30 19:30:00	kjd	1	0	00016/00000/00000
-date and time created 86/04/30 19:30:00 by kjd
-
-code versions:
-
-Makefile
-	Makefile	4.14 (Berkeley) 2/28/88
-db.h
-	db.h	4.13 (Berkeley) 2/17/88
-db_dump.c
-	db_dump.c	4.20 (Berkeley) 2/17/88
-db_load.c
-	db_load.c	4.26 (Berkeley) 2/28/88
-db_lookup.c
-	db_lookup.c	4.14 (Berkeley) 2/17/88
-db_reload.c
-	db_reload.c	4.15 (Berkeley) 2/28/88
-db_save.c
-	db_save.c	4.13 (Berkeley) 2/17/88
-db_update.c
-	db_update.c	4.16 (Berkeley) 2/28/88
-ns_forw.c
-	ns_forw.c	4.26 (Berkeley) 3/28/88
-ns_init.c
-	ns_init.c	4.23 (Berkeley) 2/28/88
-ns_main.c
-	 Copyright (c) 1986 Regents of the University of California.\n\
-	ns_main.c	4.30 (Berkeley) 3/7/88
-ns_maint.c
-	ns_maint.c	4.23 (Berkeley) 2/28/88
-ns_req.c
-	ns_req.c	4.32 (Berkeley) 3/31/88
-ns_resp.c
-	ns_resp.c	4.50 (Berkeley) 4/7/88
-ns_sort.c
-	ns_sort.c	4.3 (Berkeley) 2/17/88
-ns_stats.c
-	ns_stats.c	4.3 (Berkeley) 2/17/88
-newvers.sh
-	newvers.sh	4.4 (Berkeley) 3/28/88
-
-#endif /* COMMENT */
diff --git a/contrib/bind/named/db_defs.h b/contrib/bind/named/db_defs.h
deleted file mode 100644
index 83fc2da745ccc..0000000000000
--- a/contrib/bind/named/db_defs.h
+++ /dev/null
@@ -1,183 +0,0 @@
-/*
- *	from db.h	4.16 (Berkeley) 6/1/90
- *	$Id: db_defs.h,v 8.6 1997/06/01 20:34:34 vixie Exp $
- */
-
-/*
- * ++Copyright++ 1985, 1990
- * -
- * Copyright (c) 1985, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- * Global definitions for data base routines.
- */
-
-#define INVBLKSZ	7	/* # of namebuf pointers per block */
-#define INVHASHSZ	919	/* size of inverse hash table */
-
-	/* max length of data in RR data field */
-#define MAXDATA		2048
-
-#define DB_ROOT_TIMBUF	3600
-#define TIMBUF		300
-
-/*
- * Hash table structures.
- */
-struct databuf {
-	struct databuf	*d_next;	/* linked list */
-#ifdef STATS
-	struct nameser	*d_ns;		/* NS from whence this came */
-#endif
-	u_int32_t	d_ttl;		/* time to live */
-					/* if d_zone == DB_Z_CACHE, then
-					 * d_ttl is actually the time when
-					 * the record will expire.
-					 * otherwise (for authoritative
-					 * primary and secondary zones),
-					 * d_ttl is the time to live.
-					 */
-	unsigned	d_flags :7;	/* see below */
-	unsigned	d_cred :3;	/* DB_C_{??????} */
-	unsigned	d_clev :6;
-	int16_t		d_zone;		/* zone number or 0 for the cache */
-	int16_t		d_class;	/* class number */
-	int16_t		d_type;		/* type number */
-	int16_t		d_size;		/* size of data area */
-	u_int32_t	d_rcnt;
-#ifdef NCACHE
-	unsigned	d_rcode :4;	/* rcode added for negative caching */
-#endif
-	u_int16_t	d_nstime;	/* NS response time, milliseconds */
-	u_char		d_data[sizeof(char*)]; /* malloc'd (padded) */
-};
-#define DATASIZE(n) (sizeof(struct databuf) - sizeof(char*) + n)
-
-/*
- * d_flags definitions
- */
-#define DB_F_HINT       0x01		/* databuf belongs to fcachetab */
-#define DB_F_ACTIVE     0x02		/* databuf is linked into a cache */
-
-/*
- * d_cred definitions
- */
-#define	DB_C_ZONE	4		/* authoritative zone - best */
-#define	DB_C_AUTH	3		/* authoritative answer */
-#define	DB_C_ANSWER	2		/* non-authoritative answer */
-#define	DB_C_ADDITIONAL	1		/* additional data */
-#define	DB_C_CACHE	0		/* cache - worst */
-
-struct namebuf {
-	u_int		n_hashval;	/* hash value of n_dname */
-	struct namebuf	*n_next;	/* linked list */
-	struct databuf	*n_data;	/* data records */
-	struct namebuf	*n_parent;	/* parent domain */
-	struct hashbuf	*n_hash;	/* hash table for children */
-	char		_n_name[sizeof(void*)];	/* Counted str, malloc'ed. */
-};
-#define NAMESIZE(n) (sizeof(struct namebuf) - sizeof(void*) + 1 + n + 1)
-#define NAMELEN(nb) ((nb)._n_name[0])
-#define NAME(nb)    ((nb)._n_name + 1)
-
-#ifdef INVQ
-struct invbuf {
-	struct invbuf	*i_next;	/* linked list */
-	struct namebuf	*i_dname[INVBLKSZ]; /* domain name */
-};
-#endif
-
-struct hashbuf {
-	int		h_size;		/* size of hash table */
-	int		h_cnt;		/* number of entries */
-	struct namebuf	*h_tab[1];	/* malloc'ed as needed */
-};
-#define HASHSIZE(s) (s*sizeof(struct namebuf *) + 2*sizeof(int))
-
-#define HASHSHIFT	3
-#define HASHMASK	0x1f
-
-/*
- * Flags to updatedb
- */
-#define DB_NODATA	0x01	/* data should not exist */
-#define DB_MEXIST	0x02	/* data must exist */
-#define DB_DELETE	0x04	/* delete data if it exists */
-#define DB_NOTAUTH	0x08	/* must not update authoritative data */
-#define DB_NOHINTS      0x10	/* don't reflect update in fcachetab */
-#define DB_PRIMING	0x20	/* is this update the result of priming? */
-
-#define DB_Z_CACHE      (0)	/* cache-zone-only db_dump() */
-#define DB_Z_ALL        (-1)	/* normal db_dump() */
-
-/*
- * Error return codes
- */
-#define OK		0
-#define NONAME		-1
-#define NOCLASS		-2
-#define NOTYPE		-3
-#define NODATA		-4
-#define DATAEXISTS	-5
-#define NODBFILE	-6
-#define TOOMANYZONES	-7
-#define GOODDB		-8
-#define NEWDB		-9
-#define AUTH		-10
-
-/*
- * getnum() options
- */
-#define GETNUM_NONE	0x00	/* placeholder */
-#define GETNUM_SERIAL	0x01	/* treat as serial number */
-#define GETNUM_SCALED	0x02	/* permit "k", "m" suffixes, scale result */
diff --git a/contrib/bind/named/db_dump.c b/contrib/bind/named/db_dump.c
deleted file mode 100644
index 09e96d32d0881..0000000000000
--- a/contrib/bind/named/db_dump.c
+++ /dev/null
@@ -1,1025 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_dump.c	4.33 (Berkeley) 3/3/91";
-static char rcsid[] = "$Id: db_dump.c,v 8.19 1996/10/08 04:51:03 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988, 1990
- * -
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <netdb.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <resolv.h>
-#include <errno.h>
-
-#include "named.h"
-
-static int		scan_root __P((struct hashbuf *));
-static const char	*MkCredStr __P((int));
-
-#ifdef ALLOW_T_UNSPEC
-static void		putbyte __P((int, char **));
-#endif
-
-/*
- * Dump current cache in a format similar to RFC 883.
- *
- * We try to be careful and determine whether the operation succeeded
- * so that the new cache file can be installed.
- */
-
-void
-doachkpt()
-{
-    FILE *fp;
-    char tmpcheckfile[256];
-
-    /* nowhere to checkpoint cache... */
-    if (cache_file == NULL) {
-	dprintf(3, (ddt, "skipping doachkpt (cache_file == NULL)\n"));
-        return;
-    }
-
-    dprintf(3, (ddt, "doachkpt()\n"));
-
-    (void) sprintf(tmpcheckfile, "%s.chk", cache_file);
-    if ((fp = fopen(tmpcheckfile, "w")) == NULL) {
-	dprintf(3, (ddt,
-		    "doachkpt(can't open %s for write)\n", tmpcheckfile));
-        return;
-    }
-
-    (void) gettime(&tt);
-    fprintf(fp, "; Dumped at %s", ctimel(tt.tv_sec));
-    fflush(fp);
-    if (ferror(fp)) {
-	dprintf(3, (ddt, "doachkpt(write to checkpoint file failed)\n"));
-        return;
-    }
-
-    if (fcachetab != NULL) {
-	int n = scan_root(hashtab);
-
-	if (n < MINROOTS) {
-	    syslog(LOG_NOTICE, "%d root hints... (too low)", n);
-	    fprintf(fp, "; ---- Root hint cache dump ----\n");
-	    (void) db_dump(fcachetab, fp, DB_Z_CACHE, "");
-	}
-    }
-
-    if (hashtab != NULL) {
-        fprintf(fp, "; ---- Cache dump ----\n");
-        if (db_dump(hashtab, fp, DB_Z_CACHE, "") == NODBFILE) {
-	    dprintf(3, (ddt, "doachkpt(checkpoint failed)\n"));
-            (void) my_fclose(fp);
-            return;
-        }
-    }
-
-    if (my_fclose(fp) == EOF) {
-        return;
-    }
-
-    if (rename(tmpcheckfile, cache_file)) {
-	dprintf(3, (ddt, "doachkpt(install %s to %s failed, %d)\n",
-		    tmpcheckfile, cache_file, errno));
-    }
-}
-
-/*
- * What we do is scan the root hint cache to make sure there are at least
- * MINROOTS root pointers with non-0 TTL's so that the checkpoint will not
- * lose the root.  Failing this, all pointers are written out w/ TTL ~0
- * (root pointers timed out and prime_cache() not done or failed).
- */
-
-static int
-scan_root(htp)
-	struct hashbuf *htp;
-{
-	register struct databuf *dp;
-	register struct namebuf *np;
-	struct timeval soon;
-	int roots = 0;
-
-	dprintf(1, (ddt, "scan_root(0x%lx)\n", (u_long)htp));
-
-	/* metric by which we determine whether a root NS pointer is still */
-	/* valid (will be written out if we do a dump).  we also add some */
-	/* time buffer for safety... */
-	(void) gettime(&soon);
-	soon.tv_sec += TIMBUF;
-
-	for (np = htp->h_tab[0]; np != NULL; np = np->n_next) {
-		if (NAME(*np)[0] == '\0') {
-			dp = np->n_data;
-			while (dp != NULL) {
-				if (dp->d_type == T_NS &&
-				    dp->d_ttl > soon.tv_sec) {
-					roots++;
-					if (roots >= MINROOTS)
-						return (roots);
-				}
-				dp = dp->d_next;
-			}
-		}
-	}
-	return (roots);
-}
-
-#ifdef notdef
-mark_cache(htp, ttl)
-    struct hashbuf *htp;
-    int ttl;
-{
-    register struct databuf *dp;
-    register struct namebuf *np;
-    struct namebuf **npp, **nppend;
-    struct timeval soon;
-
-    dprintf(1, (ddt, "mark_cache()\n"));
-
-    (void) gettime(&soon);
-    soon.tv_sec += TIMBUF;
-
-    npp = htp->h_tab;
-    nppend = npp + htp->h_size;
-    while (npp < nppend) {
-        for (np = *npp++; np != NULL; np = np->n_next) {
-            if (np->n_data == NULL)
-                continue;
-            for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-                if (dp->d_ttl < soon.tv_sec)
-                    dp->d_ttl = ttl;
-            }
-        }
-    }
-
-    npp = htp->h_tab;
-    nppend = npp + htp->h_size;
-    while (npp < nppend) {
-        for (np = *npp++; np != NULL; np = np->n_next) {
-            if (np->n_hash == NULL)
-                continue;
-            mark_cache(np->n_hash, ttl);
-        }
-    }
-}
-#endif /* notdef */
-
-/*
- * Dump current data base in a format similar to RFC 883.
- */
-
-void
-doadump()
-{
-	FILE	*fp;
-
-	dprintf(3, (ddt, "doadump()\n"));
-	syslog(LOG_NOTICE, "dumping nameserver data\n");
-
-	if ((fp = fopen(dumpfile, "w")) == NULL)
-		return;
-	gettime(&tt);
-	fprintf(fp, "; Dumped at %s", ctimel(tt.tv_sec));
-	if (zones && nzones)
-		zt_dump(fp);
-	fputs(
-"; Note: Cr=(auth,answer,addtnl,cache) tag only shown for non-auth RR's\n",
-	      fp);
-	fputs(
-"; Note: NT=milliseconds for any A RR which we've used as a nameserver\n",
-	      fp);
-	fprintf(fp, "; --- Cache & Data ---\n");
-	if (hashtab != NULL)
-		(void) db_dump(hashtab, fp, DB_Z_ALL, "");
-	fprintf(fp, "; --- Hints ---\n");
-	if (fcachetab != NULL)
-		(void) db_dump(fcachetab, fp, DB_Z_ALL, "");
-	(void) my_fclose(fp);
-	syslog(LOG_NOTICE, "finished dumping nameserver data\n");
-}
-
-int
-zt_dump(fp)
-	FILE *fp;
-{
-	register struct zoneinfo *zp;
-
-	fprintf(fp, ";; ++zone table++\n");
-        for (zp = &zones[1]; zp < &zones[nzones]; zp++) {
-		char *pre, buf[64];
-		u_int cnt;
-
-		if (!zp->z_origin)
-			continue;
-
-		fprintf(fp, "; %s (type %d, class %d, source %s)\n",
-			zp->z_origin
-			  ? (*zp->z_origin ? zp->z_origin : ".")
-			  : "Nil",
-			zp->z_type, zp->z_class,
-			zp->z_source ? zp->z_source : "Nil");
-		fprintf(fp, ";\ttime=%lu, lastupdate=%lu, serial=%u,\n",
-			(u_long)zp->z_time, (u_long)zp->z_lastupdate,
-			zp->z_serial);
-		fprintf(fp, ";\trefresh=%u, retry=%u, expire=%u, minimum=%u\n",
-			zp->z_refresh, zp->z_retry,
-			zp->z_expire, zp->z_minimum);
-		fprintf(fp, ";\tftime=%lu, xaddr=[%s], state=%04x, pid=%d\n",
-			(u_long)zp->z_ftime, inet_ntoa(zp->z_xaddr),
-			zp->z_flags, (int)zp->z_xferpid);
-		sprintf(buf, ";\tz_addr[%d]: ", zp->z_addrcnt);
-		pre = buf;
-		for (cnt = 0;  cnt < zp->z_addrcnt;  cnt++) {
-			fprintf(fp, "%s[%s]", pre, inet_ntoa(zp->z_addr[cnt]));
-			pre = ", ";
-		}
-		if (zp->z_addrcnt)
-			fputc('\n', fp);
-#ifdef BIND_NOTIFY
-		if (zp->z_notifylist) {
-			register struct notify *ap;
-
-			for (ap = zp->z_notifylist; ap; ap = ap->next)
-				fprintf(fp, ";\tNotify [%s] %s",
-					inet_ntoa(ap->addr),
-					ctime(&ap->last));
-		}
-#endif
-	}
-	fprintf(fp, ";; --zone table--\n");
-	return (0);
-}
-
-int
-db_dump(htp, fp, zone, origin)
-	struct hashbuf *htp;
-	FILE *fp;
-	int zone;
-	char *origin;
-{
-	register struct databuf *dp = NULL;
-	register struct namebuf *np;
-	struct namebuf **npp, **nppend;
-	char dname[MAXDNAME];
-	u_int32_t n;
-	u_int32_t addr;
-	int j, i;
-	register u_char *cp;
-	u_char *end;
-	char *proto, *sep;
-	int16_t type;
-	int found_data = 0, tab, printed_origin = 0;
-	u_int16_t keyflags;
-	u_char *sigdata;
-	u_char *savecp;
-	char temp_base64[MAX_KEY_BASE64];
-
-	npp = htp->h_tab;
-	nppend = npp + htp->h_size;
-	while (npp < nppend) {
-	    for (np = *npp++; np != NULL; np = np->n_next) {
-		if (np->n_data == NULL)
-			continue;
-		/* Blecch - can't tell if there is data here for the
-		 * right zone, so can't print name yet
-		 */
-		found_data = 0;
-		/* we want a snapshot in time... */
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			/* Is the data for this zone? */
-			if (zone != DB_Z_ALL && dp->d_zone != zone)
-			    continue;
-			if (dp->d_zone == DB_Z_CACHE &&
-			    dp->d_ttl <= tt.tv_sec &&
-			    (dp->d_flags & DB_F_HINT) == 0)
-				continue;
-			if (!printed_origin) {
-			    fprintf(fp, "$ORIGIN %s.\n", origin);
-			    printed_origin++;
-			}
-			tab = 0;
-#ifdef NCACHE
-			if (dp->d_rcode == NXDOMAIN ||
-			    dp->d_rcode == NOERROR_NODATA) {
-				fputc(';', fp);
-			} else if (found_data == 0 || found_data == 1) {
-			    found_data = 2;
-			}
-#endif /*NCACHE*/
-			if (found_data == 0 || found_data == 2) {
-			    if (NAME(*np)[0] == '\0') {
-				if (origin[0] == '\0')
-				    fprintf(fp, ".\t");
-				else
-				    fprintf(fp, ".%s.\t", origin); /* ??? */
-			    } else
-				fprintf(fp, "%s\t", NAME(*np));
-			    if (NAMELEN(*np) < (unsigned)8)
-				tab = 1;
-			    found_data++;
-			} else {
-			    (void) putc('\t', fp);
-			    tab = 1;
-			}
-			if (dp->d_zone == DB_Z_CACHE) {
-			    if (dp->d_flags & DB_F_HINT
-				&& (int32_t)(dp->d_ttl - tt.tv_sec)
-				    < DB_ROOT_TIMBUF)
-				    fprintf(fp, "%d\t", DB_ROOT_TIMBUF);
-			    else
-				    fprintf(fp, "%d\t",
-				        (int)(dp->d_ttl - tt.tv_sec));
-			} else if (dp->d_ttl != USE_MINIMUM &&
-			    dp->d_ttl != zones[dp->d_zone].z_minimum)
-				fprintf(fp, "%d\t", (int)dp->d_ttl);
-			else if (tab)
-			    (void) putc('\t', fp);
-			fprintf(fp, "%s\t%s\t",
-				p_class(dp->d_class),
-				p_type(dp->d_type));
-			cp = (u_char *)dp->d_data;
-			sep = "\t;";
-			type = dp->d_type;
-#ifdef NCACHE
-			if (dp->d_rcode == NXDOMAIN ||
-			    dp->d_rcode == NOERROR_NODATA) {
-#ifdef RETURNSOA
-				if (dp->d_size == 0) {
-#endif
-				fprintf(fp, "%s%s-$",
-					(dp->d_rcode == NXDOMAIN)
-						?"NXDOMAIN" :"NODATA",
-					sep);
-				goto eoln;
-#ifdef RETURNSOA
-				} else {
-					type = T_SOA;
-				}
-#endif
-			}
-#endif
-			/*
-			 * Print type specific data
-			 */
-			switch (type) {
-			case T_A:
-				switch (dp->d_class) {
-				case C_IN:
-				case C_HS:
-					GETLONG(n, cp);
-					n = htonl(n);
-					fputs(inet_ntoa(*(struct in_addr *)&n),
-					      fp);
-					break;
-				}
-				if (dp->d_nstime) {
-					fprintf(fp, "%sNT=%d",
-						sep, dp->d_nstime);
-					sep = " ";
-				}
-				break;
-			case T_CNAME:
-			case T_MB:
-			case T_MG:
-			case T_MR:
-			case T_PTR:
-				fprintf(fp, "%s.", cp);
-				break;
-
-			case T_NS:
-				cp = (u_char *)dp->d_data;
-				if (cp[0] == '\0')
-					fprintf(fp, ".\t");
-				else
-					fprintf(fp, "%s.", cp);
-				break;
-
-			case T_HINFO:
-			case T_ISDN: {
-				char buf[256];
-				if ((n = *cp++) != '\0') {
-					bcopy(cp, buf, n); buf[n] = '\0';
-					fprintf(fp, "\"%.*s\"", (int)n, buf);
-					cp += n;
-				} else
-					fprintf(fp, "\"\"");
-				if ((n = *cp++) != '\0') {
-					bcopy(cp, buf, n); buf[n] = '\0';
-					fprintf(fp, " \"%.*s\"", (int)n, buf);
-				} else
-					fprintf(fp, " \"\"");
-				break;
-			}
-
-			case T_SOA:
-				fprintf(fp, "%s.", cp);
-				cp += strlen((char *)cp) + 1;
-				fprintf(fp, " %s. (\n", cp);
-#if defined(RETURNSOA) && defined(NCACHE)
-				if (dp->d_rcode)
-					fputs(";", fp);
-#endif
-				cp += strlen((char *)cp) + 1;
-				GETLONG(n, cp);
-				fprintf(fp, "\t\t%lu", (u_long)n);
-				GETLONG(n, cp);
-				fprintf(fp, " %lu", (u_long)n);
-				GETLONG(n, cp);
-				fprintf(fp, " %lu", (u_long)n);
-				GETLONG(n, cp);
-				fprintf(fp, " %lu", (u_long)n);
-				GETLONG(n, cp);
-				fprintf(fp, " %lu )", (u_long)n);
-#if defined(RETURNSOA) && defined(NCACHE)
-				if (dp->d_rcode) {
-					fprintf(fp,";%s.;%s%s-$",cp,
-						(dp->d_rcode == NXDOMAIN) ?
-						"NXDOMAIN" : "NODATA",
-						sep);
-				}
-#endif
-				break;
-
-			case T_MX:
-			case T_AFSDB:
-			case T_RT:
-				GETSHORT(n, cp);
-				fprintf(fp, "%lu", (u_long)n);
-				fprintf(fp, " %s.", cp);
-				break;
-
-			case T_PX:
-				GETSHORT(n, cp);
-				fprintf(fp, "%lu", (u_long)n);
-				fprintf(fp, " %s.", cp);
-				cp += strlen((char *)cp) + 1;
-				fprintf(fp, " %s.", cp);
-				break;
-
-			case T_X25:
-				if ((n = *cp++) != '\0')
-					fprintf(fp, " \"%.*s\"", (int)n, cp);
-				else
-					fprintf(fp, " \"\"");
-				break;
-
-			case T_TXT:
-				end = (u_char *)dp->d_data + dp->d_size;
-				while (cp < end) {
-					(void) putc('"', fp);
-					if ((n = *cp++) != '\0') {
-						for (j = n ; j > 0 && cp < end ; j--) {
-							if (*cp == '\n' || *cp == '"' || *cp == '\\')
-								(void) putc('\\', fp);
-							(void) putc(*cp++, fp);
-						}
-					}
-					(void) putc('"', fp);
-					if (cp < end)
-						(void) putc(' ', fp);
-				}
-				break;
-
-			case T_NSAP:
-				(void) fputs(inet_nsap_ntoa(dp->d_size,
-							    dp->d_data, NULL),
-					     fp);
-				break;
-			case T_AAAA: {
-				char t[sizeof
-				"ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"
-				      ];
-
-				(void) fputs(inet_ntop(AF_INET6, dp->d_data,
-						       t, sizeof t),
-					     fp);
-				break;
-			}
-#ifdef LOC_RR
-			case T_LOC: {
-				char t[256];
-
-				(void) fputs(loc_ntoa(dp->d_data, t), fp);
-				break;
-			}
-#endif /* LOC_RR */
-
-			case T_NAPTR: {
-				u_int order, preference;
-
-				GETSHORT(order, cp);
-				fprintf(fp, "%lu", (u_long)order);
- 
-				GETSHORT(preference, cp);
-				fprintf(fp, "%lu", (u_long)preference);
-
-				if (n = *cp++) {
-					fprintf(fp, "\"%.*s\"", (int)n, cp);
-					cp += n;
-				}
-				if (n = *cp++) {
-					fprintf(fp, "\"%.*s\"", (int)n, cp);
-					cp += n;
-				}
-				if (n = *cp++) {
-					fprintf(fp, " \"%.*s\"", (int)n, cp);
-					cp += n;
-				}
-				fprintf(fp, " %s.", cp);
-
-				break;
-			}
-
-			case T_SRV: {
-				u_int priority, weight, port;
-
-				GETSHORT(priority, cp);
-				GETSHORT(weight, cp);
-				GETSHORT(port, cp);
-				fprintf(fp, "\t%u %u %u %s.",
-					priority, weight, port, cp);
-				break;
-			}
-			case T_UINFO:
-				fprintf(fp, "\"%s\"", cp);
-				break;
-
-			case T_UID:
-			case T_GID:
-				if (dp->d_size == INT32SZ) {
-					GETLONG(n, cp);
-				} else {
-					n = -2;		/* XXX - hack */
-				}
-				fprintf(fp, "%u", n);
-				break;
-
-			case T_WKS:
-				GETLONG(addr, cp);	
-				addr = htonl(addr);	
-				fputs(inet_ntoa(*(struct in_addr *)&addr), fp);
-				proto = protocolname(*cp);
-				cp += sizeof(char); 
-				fprintf(fp, " %s ", proto);
-				i = 0;
-				while(cp < (u_char *)dp->d_data + dp->d_size) {
-					j = *cp++;
-					do {
-					    if (j & 0200)
-						fprintf(fp, " %s",
-							servicename(i, proto));
-					    j <<= 1;
-					} while (++i & 07);
-				} 
-				break;
-
-			case T_MINFO:
-			case T_RP:
-				fprintf(fp, "%s.", cp);
-				cp += strlen((char *)cp) + 1;
-				fprintf(fp, " %s.", cp);
-				break;
-
-			case T_KEY:
-			        savecp = cp;  /* save the beginning */
-			/*>>> Flags (unsigned_16) */
-				GETSHORT(keyflags,cp);
-			        fprintf(fp, "0x%04x ", keyflags);
-			/*>>> Protocol (8-bit decimal) */
-				fprintf(fp, "%3u ", *cp++);
-			/*>>> Algorithm id (8-bit decimal) */
-				fprintf(fp, "%3u ", *cp++);
-				
-			/*>>> Public-Key Data (multidigit BASE64) */
-			/*    containing ExponentLen, Exponent, and Modulus */
-				i = b64_ntop(cp, dp->d_size - (cp - savecp),
-				             temp_base64,
-					     sizeof temp_base64);
-				if (i < 0)
-					fprintf(fp, "; BAD BASE64");
-				else
-					fprintf(fp, "%s", temp_base64);
-			        break;
-
-			case T_SIG:
-			        sigdata = cp;
-				/* RRtype (char *) */
-			        GETSHORT(n,cp);
-			        fprintf(fp, "%s ", p_type(n));
-				/* Algorithm id (8-bit decimal) */
-				fprintf(fp, "%d ", *cp++);
-				/* Labels (8-bit decimal) (not saved in file) */
-				/* FIXME -- check value and print err if bad */
-				cp++;
-				/* OTTL (u_long) */
-				GETLONG(n, cp);
-				fprintf(fp, "%lu ", n);
-				/* Texp (u_long) */
-				GETLONG(n, cp);
-				fprintf(fp, "%s ", p_secstodate (n));
-				/* Tsig (u_long) */
-				GETLONG(n, cp);
-				fprintf(fp, "%s ", p_secstodate (n));
-				/* Kfootprint (unsigned_16) */
-			        GETSHORT(n, cp);
-				fprintf(fp, "%lu ", n);
-				/* Signer's Name (char *)  */
-				fprintf(fp, "%s ", cp);
-				cp += strlen((char *)cp) + 1;
-				/* Signature (base64 of any length) */
-				i = b64_ntop(cp, dp->d_size - (cp - sigdata),
-					     temp_base64,
-					     sizeof temp_base64);
-				if (i < 0)
-					fprintf(fp, "; BAD BASE64");
-				else
-					fprintf(fp, "%s", temp_base64);
-			        break;
-
-#ifdef ALLOW_T_UNSPEC
-			case T_UNSPEC:
-				/* Dump binary data out in an ASCII-encoded
-				   format */
-				{
-				  /* Allocate more than enough space:
-				   *  actually need 5/4 size + 20 or so
-				   */
-				  int TmpSize = 2 * dp->d_size + 30;
-				  char *TmpBuf = (char *) malloc(TmpSize);
-				  if (TmpBuf == NULL) {
-					TmpBuf = "BAD_MALLOC";
-				  }
-				  if (btoa(cp, dp->d_size, TmpBuf, TmpSize)
-				      == CONV_OVERFLOW) {
-					    TmpBuf = "OVERFLOW";
-					}
-					fprintf(fp, "%s", TmpBuf);
-				}
-				break;
-#endif /* ALLOW_T_UNSPEC */
-			default:
-				fprintf(fp, "%s?d_type=%d?",
-					sep, dp->d_type);
-				sep = " ";
-			}
-			if (dp->d_cred < DB_C_ZONE) {
-				fprintf(fp, "%sCr=%s",
-					sep, MkCredStr(dp->d_cred));
-				sep = " ";
-			} else {
-				fprintf(fp, "%sCl=%d",
-					sep, dp->d_clev);
-				sep = " ";
-			}
-eoln:
-#ifdef STATS
-			if (dp->d_ns) {
-				fprintf(fp, "%s[%s]",
-					sep, inet_ntoa(dp->d_ns->addr));
-				sep = " ";
-			}
-#endif
-			putc('\n', fp);
-		}
-	    }
-	}
-        if (ferror(fp))
-		return(NODBFILE);
-
-	npp = htp->h_tab;
-	nppend = npp + htp->h_size;
-	while (npp < nppend) {
-	    for (np = *npp++; np != NULL; np = np->n_next) {
-		if (np->n_hash == NULL)
-			continue;
-		getname(np, dname, sizeof(dname));
-		if (db_dump(np->n_hash, fp, zone, dname) == NODBFILE)
-		    return(NODBFILE);
-	    }
-	}
-	return(OK);
-}
-
-static const char *
-MkCredStr(cred)
-	int cred;
-{
-	static char badness[20];
-
-	switch (cred) {
-	case DB_C_ZONE:		return "zone";
-	case DB_C_AUTH:		return "auth";
-	case DB_C_ANSWER:	return "answer";
-	case DB_C_ADDITIONAL:	return "addtnl";
-	case DB_C_CACHE:	return "cache";
-	default:		break;
-	}
-	sprintf(badness, "?%d?", cred);
-	return (badness);
-}
-
-#ifdef ALLOW_T_UNSPEC
-/*
- * Subroutines to convert between 8 bit binary bytes and printable ASCII.
- * Computes the number of bytes, and three kinds of simple checksums.
- * Incoming bytes are collected into 32-bit words, then printed in base 85:
- *	exp(85,5) > exp(2,32)
- * The ASCII characters used are between '!' and 'u';
- * 'z' encodes 32-bit zero; 'x' is used to mark the end of encoded data.
- *
- * Originally by Paul Rutter (philabs!per) and Joe Orost (petsd!joe) for
- * the atob/btoa programs, released with the compress program, in mod.sources.
- * Modified by Mike Schwartz 8/19/86 for use in BIND.
- */
-
-/* Make sure global variable names are unique */
-#define Ceor T_UNSPEC_Ceor
-#define Csum T_UNSPEC_Csum
-#define Crot T_UNSPEC_Crot
-#define word T_UNSPEC_word
-#define bcount T_UNSPEC_bcount
-
-static int32_t Ceor, Csum, Crot, word, bcount;
-
-#define EN(c)	((int) ((c) + '!'))
-#define DE(c) ((c) - '!')
-#define AddToBuf(bufp, c) **bufp = c; (*bufp)++;
-#define times85(x)	((((((x<<2)+x)<<2)+x)<<2)+x)
-
-/* Decode ASCII-encoded byte c into binary representation and 
- * place into *bufp, advancing bufp 
- */
-static int
-byte_atob(c, bufp)
-	register c;
-	char **bufp;
-{
-	if (c == 'z') {
-		if (bcount != 0)
-			return(CONV_BADFMT);
-		else {
-			putbyte(0, bufp);
-			putbyte(0, bufp);
-			putbyte(0, bufp);
-			putbyte(0, bufp);
-		}
-	} else if ((c >= '!') && (c < ('!' + 85))) {
-		if (bcount == 0) {
-			word = DE(c);
-			++bcount;
-		} else if (bcount < 4) {
-			word = times85(word);
-			word += DE(c);
-			++bcount;
-		} else {
-			word = times85(word) + DE(c);
-			putbyte((int)((word >> 24) & 255), bufp);
-			putbyte((int)((word >> 16) & 255), bufp);
-			putbyte((int)((word >> 8) & 255), bufp);
-			putbyte((int)(word & 255), bufp);
-			word = 0;
-			bcount = 0;
-		}
-	} else
-		return(CONV_BADFMT);
-	return(CONV_SUCCESS);
-}
-
-/* Compute checksum info and place c into *bufp, advancing bufp */
-static void
-putbyte(c, bufp)
-	register c;
-	char **bufp;
-{
-	Ceor ^= c;
-	Csum += c;
-	Csum += 1;
-	if ((Crot & 0x80000000)) {
-		Crot <<= 1;
-		Crot += 1;
-	} else {
-		Crot <<= 1;
-	}
-	Crot += c;
-	AddToBuf(bufp, c);
-}
-
-/* Read the ASCII-encoded data from inbuf, of length inbuflen, and convert
-   it into T_UNSPEC (binary data) in outbuf, not to exceed outbuflen bytes;
-   outbuflen must be divisible by 4.  (Note: this is because outbuf is filled
-   in 4 bytes at a time.  If the actual data doesn't end on an even 4-byte
-   boundary, there will be no problem...it will be padded with 0 bytes, and
-   numbytes will indicate the correct number of bytes.  The main point is
-   that since the buffer is filled in 4 bytes at a time, even if there is
-   not a full 4 bytes of data at the end, there has to be room to 0-pad the
-   data, so the buffer must be of size divisible by 4).  Place the number of
-   output bytes in numbytes, and return a failure/success status  */
-int
-atob(inbuf, inbuflen, outbuf, outbuflen, numbytes)
-	char *inbuf;
-	int inbuflen;
-	char *outbuf;
-	int outbuflen;
-	int *numbytes;
-{
-	int inc, nb;
-	int32_t oeor, osum, orot;
-	char *inp, *outp = outbuf, *endoutp = &outbuf[outbuflen];
-
-	if ( (outbuflen % 4) != 0)
-		return(CONV_BADBUFLEN);
-	Ceor = Csum = Crot = word = bcount = 0;
-	for (inp = inbuf, inc = 0; inc < inbuflen; inp++, inc++) {
-		if (outp > endoutp)
-			return(CONV_OVERFLOW);
-		if (*inp == 'x') {
-			inp +=2;
-			break;
-		} else {
-			if (byte_atob(*inp, &outp) == CONV_BADFMT)
-				return(CONV_BADFMT);
-		}
-	}
-
-	/* Get byte count and checksum information from end of buffer */
-	if (sscanf(inp, "%d %lx %lx %lx", numbytes, &oeor, &osum, &orot) != 4)
-		return(CONV_BADFMT);
-	if ((oeor != Ceor) || (osum != Csum) || (orot != Crot))
-		return(CONV_BADCKSUM);
-	return(CONV_SUCCESS);
-}
-
-/* Encode binary byte c into ASCII representation and place into *bufp,
-   advancing bufp */
-static void
-byte_btoa(c, bufp)
-	register c;
-	char **bufp;
-{
-	Ceor ^= c;
-	Csum += c;
-	Csum += 1;
-	if ((Crot & 0x80000000)) {
-		Crot <<= 1;
-		Crot += 1;
-	} else {
-		Crot <<= 1;
-	}
-	Crot += c;
-
-	word <<= 8;
-	word |= c;
-	if (bcount == 3) {
-		if (word == 0) {
-			AddToBuf(bufp, 'z');
-		} else {
-		    register int tmp = 0;
-		    register int32_t tmpword = word;
-			
-		    if (tmpword < 0) {	
-			   /* Because some don't support u_long */
-		    	tmp = 32;
-		    	tmpword -= (int32_t)(85 * 85 * 85 * 85 * 32);
-		    }
-		    if (tmpword < 0) {
-		    	tmp = 64;
-		    	tmpword -= (int32_t)(85 * 85 * 85 * 85 * 32);
-		    }
-		    AddToBuf(bufp,
-		    	 EN((tmpword / (int32_t)(85 * 85 * 85 * 85)) + tmp));
-		    tmpword %= (int32_t)(85 * 85 * 85 * 85);
-		    AddToBuf(bufp, EN(tmpword / (85 * 85 * 85)));
-		    tmpword %= (85 * 85 * 85);
-		    AddToBuf(bufp, EN(tmpword / (85 * 85)));
-		    tmpword %= (85 * 85);
-		    AddToBuf(bufp, EN(tmpword / 85));
-		    tmpword %= 85;
-		    AddToBuf(bufp, EN(tmpword));
-		}
-		bcount = 0;
-	} else {
-		bcount += 1;
-	}
-}
-
-
-/*
- * Encode the binary data from inbuf, of length inbuflen, into a
- * null-terminated ASCII representation in outbuf, not to exceed outbuflen
- * bytes. Return success/failure status
- */
-static int
-btoa(inbuf, inbuflen, outbuf, outbuflen)
-	char *inbuf;
-	int inbuflen;
-	char *outbuf;
-	int outbuflen;
-{
-	int32_t inc, nb;
-	int32_t oeor, osum, orot;
-	char *inp, *outp = outbuf, *endoutp = &outbuf[outbuflen -1];
-
-	Ceor = Csum = Crot = word = bcount = 0;
-	for (inp = inbuf, inc = 0; inc < inbuflen; inp++, inc++) {
-		byte_btoa((unsigned char) (*inp), &outp);
-		if (outp >= endoutp)
-			return(CONV_OVERFLOW);
-	}
-	while (bcount != 0) {
-		byte_btoa(0, &outp);
-		if (outp >= endoutp)
-			return(CONV_OVERFLOW);
-	}
-	/* Put byte count and checksum information at end of buffer, delimited
-	   by 'x' */
-	(void) sprintf(outp, "x %d %lx %lx %lx", inbuflen, Ceor, Csum, Crot);
-	if (&outp[strlen(outp) - 1] >= endoutp)
-		return(CONV_OVERFLOW);
-	else
-		return(CONV_SUCCESS);
-}
-#endif /* ALLOW_T_UNSPEC */
diff --git a/contrib/bind/named/db_func.h b/contrib/bind/named/db_func.h
deleted file mode 100644
index 87e4fafdf08c3..0000000000000
--- a/contrib/bind/named/db_func.h
+++ /dev/null
@@ -1,104 +0,0 @@
-/* db_proc.h - prototypes for functions in db_*.c
- *
- * $Id: db_func.h,v 8.13 1997/06/01 20:34:34 vixie Exp $
- */
-
-/* ++from db_update.c++ */
-extern int		db_update __P((char name[],
-				       struct databuf *odp,
-				       struct databuf *newdp,
-				       int flags,
-				       struct hashbuf *htp)),
-			db_cmp __P((struct databuf *,struct databuf *)),
-			findMyZone __P((struct namebuf *np, int class));
-extern void		fixttl __P((struct databuf *dp));
-/* --from db_update.c-- */
-
-/* ++from db_reload.c++ */
-extern void		db_reload __P((void));
-/* --from db_reload.c-- */
-
-/* ++from db_save.c++ */
-extern struct namebuf	*savename __P((const char *, int));
-extern struct databuf	*savedata __P((int, int, u_int32_t, u_char *, int));
-extern struct hashbuf	*savehash __P((struct hashbuf *));
-/* --from db_save.c-- */
-
-/* ++from db_dump.c++ */
-extern int		db_dump __P((struct hashbuf *, FILE *, int, char *)),
-			zt_dump __P((FILE *)),
-			atob __P((char *, int, char *, int, int *));
-extern void		doachkpt __P((void)),
-			doadump __P((void));
-extern u_int		db_getclev __P((const char *));
-/* --from db_dump.c-- */
-
-/* ++from db_load.c++ */
-extern void		endline __P((FILE *)),
-			get_netlist __P((FILE *, struct netinfo **,
-					 int, char *)),
-			free_netlist __P((struct netinfo **));
-extern int		getword __P((char *, int, FILE *, int)),
-			getnum __P((FILE *, const char *, int)),
-			db_load __P((const char *, const char *,
-				     struct zoneinfo *, const char *)),
-			position_on_netlist __P((struct in_addr,
-						 struct netinfo *));
-extern struct netinfo	*addr_on_netlist __P((struct in_addr,
-					      struct netinfo *));
-/* --from db_load.c-- */
-
-/* ++from db_glue.c++ */
-extern const char	*sin_ntoa __P((const struct sockaddr_in *));
-extern void		panic __P((int, const char *)),
-			buildservicelist __P((void)),
-			buildprotolist __P((void)),
-			gettime __P((struct timeval *)),
-			getname __P((struct namebuf *, char *, int));
-extern int		servicenumber __P((char *)),
-			protocolnumber __P((char *)),
-			my_close __P((int)),
-			my_fclose __P((FILE *)),
-#ifdef GEN_AXFR
-			get_class __P((char *)),
-#endif
-			writemsg __P((int, u_char *, int)),
-			dhash __P((const u_char *, int)),
-			nhash __P((const char *)),
-			samedomain __P((const char *, const char *));
-extern char		*protocolname __P((int)),
-			*servicename __P((u_int16_t, char *)),
-			*savestr __P((const char *));
-#ifndef BSD
-extern int		getdtablesize __P((void));
-#endif
-extern struct databuf	*rm_datum __P((struct databuf *,
-				       struct namebuf *,
-				       struct databuf *));
-extern struct namebuf	*rm_name __P((struct namebuf *, 
-				      struct namebuf **,
-				      struct namebuf *));
-#ifdef INVQ
-extern void		addinv __P((struct namebuf *, struct databuf *)),
-			rminv __P((struct databuf *));
-struct invbuf		*saveinv __P((void));
-#endif
-extern char *		ctimel __P((long));
-extern struct in_addr	data_inaddr __P((const u_char *data));
-extern void		setsignal __P((int, int, SIG_FN (*)())),
-			resignal __P((int, int, SIG_FN (*)()));
-extern void		db_free __P((struct databuf *));
-/* --from db_glue.c-- */
-
-/* ++from db_lookup.c++ */
-extern struct namebuf	*nlookup __P((const char *, struct hashbuf **,
-				      const char **, int));
-extern struct namebuf	*np_parent __P((struct namebuf *));
-extern int		match __P((struct databuf *, int, int));
-/* --from db_lookup.c-- */
-
-/* ++from db_secure.c++ */
-#ifdef SECURE_ZONES
-extern int		build_secure_netlist __P((struct zoneinfo *));
-#endif
-/* --from db_secure.c-- */
diff --git a/contrib/bind/named/db_glob.h b/contrib/bind/named/db_glob.h
deleted file mode 100644
index bd9235fc5eb3a..0000000000000
--- a/contrib/bind/named/db_glob.h
+++ /dev/null
@@ -1,93 +0,0 @@
-/*
- *	from db.h	4.16 (Berkeley) 6/1/90
- *	$Id: db_glob.h,v 8.4 1996/08/27 08:33:23 vixie Exp $
- */
-
-/*
- * ++Copyright++ 1985, 1990
- * -
- * Copyright (c) 1985, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- * Global variables for data base routines.
- */
-
-	/* ONE_WEEK maximum ttl */
-DECL	u_int		max_cache_ttl INIT(7*24*60*60);
-
-	/* no minimum ttl */
-DECL	u_int		min_cache_ttl INIT(0);
-
-	/* current line number */
-DECL	int		lineno;
-
-#ifdef DUMPFILE
-DECL	char		*dumpfile INIT(DUMPFILE);
-#else
-DECL	char		*dumpfile INIT(_PATH_DUMPFILE);
-#endif
-
-	/* root hash table */
-DECL	struct hashbuf	*hashtab INIT(NULL);
-
-	/* hash table of cache read from file */
-DECL	struct hashbuf	*fcachetab INIT(NULL);
-
-#ifdef INVQ
-	/* Inverse query hash table */
-DECL	struct invbuf	*invtab[INVHASHSZ];
-#endif
-
-#ifdef FORCED_RELOAD
-DECL	int		reloading INIT(0);
-#endif /* FORCED_RELOAD */
diff --git a/contrib/bind/named/db_glue.c b/contrib/bind/named/db_glue.c
deleted file mode 100644
index 4f6deb09aad76..0000000000000
--- a/contrib/bind/named/db_glue.c
+++ /dev/null
@@ -1,909 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_glue.c	4.4 (Berkeley) 6/1/90";
-static char rcsid[] = "$Id: db_glue.c,v 8.16 1996/09/22 00:13:10 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988
- * -
- * Copyright (c) 1986, 1988
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/uio.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <ctype.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <errno.h>
-#include <signal.h>
-
-#include "named.h"
-
-struct valuelist {
-	struct valuelist *next, *prev;
-	char	*name;
-	char	*proto;
-	int	port;
-};
-static struct valuelist *servicelist, *protolist;
-
-#if defined(ultrix)
-/* ultrix 4.0 has some icky packaging details.  work around them here.
- * since this module is linked into named and named-xfer, we end up
- * forcing both to drag in our own res_send rather than ultrix's hesiod
- * version of that.
- */
-static const int (*unused_junk)__P((const u_char *, int, u_char *, int)) =
-	res_send;
-;
-#endif
-
-/*XXX: sin_ntoa() should probably be in libc*/
-const char *
-sin_ntoa(sin)
-	const struct sockaddr_in *sin;
-{
-	static char ret[sizeof "[111.222.333.444].55555"];
-
-	if (!sin)
-		strcpy(ret, "[sin_ntoa(NULL)]");
-	else
-		sprintf(ret, "[%s].%u",
-			inet_ntoa(sin->sin_addr),
-			ntohs(sin->sin_port));
-	return (ret);
-}
-
-/*
- * XXX:	some day we'll make this a varargs function
- */
-void
-panic(err, msg)
-	int err;
-	const char *msg;
-{
-	if (err == -1)
-		syslog(LOG_CRIT, "%s - ABORT", msg);
-	else
-		syslog(LOG_CRIT, "%s: %s - ABORT", msg, strerror(err));
-	signal(SIGIOT, SIG_DFL);	/* no POSIX needed here. */
-	abort();
-}
-
-void
-buildservicelist()
-{
-	struct servent *sp;
-	struct valuelist *slp;
-
-#ifdef MAYBE_HESIOD
-	setservent(0);
-#else
-	setservent(1);
-#endif
-	while (sp = getservent()) {
-		slp = (struct valuelist *)malloc(sizeof(struct valuelist));
-		if (!slp)
-			panic(errno, "malloc(servent)");
-		slp->name = savestr(sp->s_name);
-		slp->proto = savestr(sp->s_proto);
-		slp->port = ntohs((u_int16_t)sp->s_port);  /* host byt order */
-		slp->next = servicelist;
-		slp->prev = NULL;
-		if (servicelist)
-			servicelist->prev = slp;
-		servicelist = slp;
-	}
-	endservent();
-}
-
-void
-buildprotolist()
-{
-	struct protoent *pp;
-	struct valuelist *slp;
-
-#ifdef MAYBE_HESIOD
-	setprotoent(0);
-#else
-	setprotoent(1);
-#endif
-	while (pp = getprotoent()) {
-		slp = (struct valuelist *)malloc(sizeof(struct valuelist));
-		if (!slp)
-			panic(errno, "malloc(protoent)");
-		slp->name = savestr(pp->p_name);
-		slp->port = pp->p_proto;	/* host byte order */
-		slp->next = protolist;
-		slp->prev = NULL;
-		if (protolist)
-			protolist->prev = slp;
-		protolist = slp;
-	}
-	endprotoent();
-}
-
-static int
-findservice(s, list)
-	register char *s;
-	register struct valuelist **list;
-{
-	register struct valuelist *lp = *list;
-	int n;
-
-	for (; lp != NULL; lp = lp->next)
-		if (strcasecmp(lp->name, s) == 0) {
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			return (lp->port);	/* host byte order */
-		}
-	if (sscanf(s, "%d", &n) != 1 || n <= 0)
-		n = -1;
-	return (n);
-}
-
-/*
- * Convert service name or (ascii) number to int.
- */
-int
-servicenumber(p)
-	char *p;
-{
-	return (findservice(p, &servicelist));
-}
-
-/*
- * Convert protocol name or (ascii) number to int.
- */
-int
-protocolnumber(p)
-	char *p;
-{
-	return (findservice(p, &protolist));
-}
-
-#if defined(__STDC__) || defined(__GNUC__)
-static struct servent *
-cgetservbyport(u_int16_t port,		/* net byte order */
-	       char *proto)
-#else
-static struct servent *
-cgetservbyport(port, proto)
-	u_int16_t port;			/* net byte order */
-	char *proto;
-#endif
-{
-	register struct valuelist **list = &servicelist;
-	register struct valuelist *lp = *list;
-	static struct servent serv;
-
-	port = ntohs(port);
-	for (; lp != NULL; lp = lp->next) {
-		if (port != (u_int16_t)lp->port)	/* host byte order */
-			continue;
-		if (strcasecmp(lp->proto, proto) == 0) {
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			serv.s_name = lp->name;
-			serv.s_port = htons((u_int16_t)lp->port);
-			serv.s_proto = lp->proto;
-			return (&serv);
-		}
-	}
-	return (0);
-}
-
-static struct protoent *
-cgetprotobynumber(proto)
-	register int proto;	/* host byte order */
-{
-	register struct valuelist **list = &protolist;
-	register struct valuelist *lp = *list;
-	static struct protoent prot;
-
-	for (; lp != NULL; lp = lp->next)
-		if (lp->port == proto) {	/* host byte order */
-			if (lp != *list) {
-				lp->prev->next = lp->next;
-				if (lp->next)
-					lp->next->prev = lp->prev;
-				(*list)->prev = lp;
-				lp->next = *list;
-				*list = lp;
-			}
-			prot.p_name = lp->name;
-			prot.p_proto = lp->port;  /* host byte order */
-			return (&prot);
-		}
-	return (0);
-}
-
-char *
-protocolname(num)
-	int num;
-{
-	static	char number[8];
-	struct protoent *pp;
-
-	pp = cgetprotobynumber(num);
-	if(pp == 0)  {
-		(void) sprintf(number, "%d", num);
-		return (number);
-	}
-	return (pp->p_name);
-}
-
-#if defined(__STDC__) || defined(__GNUC__)
-char *
-servicename(u_int16_t port, char *proto)	/* host byte order */
-#else
-char *
-servicename(port, proto)
-	u_int16_t port;				/* host byte order */
-	char *proto;
-#endif
-{
-	static	char number[8];
-	struct servent *ss;
-
-	ss = cgetservbyport(htons(port), proto);
-	if (ss == 0)  {
-		(void) sprintf(number, "%d", port);
-		return (number);
-	}
-	return (ss->s_name);
-}
-
-u_int
-db_getclev(origin)
-	const char *origin;
-{
-	u_int lev = 0;
-	dprintf(12, (ddt, "db_getclev of \"%s\"", origin));
-	if (origin && *origin)
-		lev++;
-	while (origin && (origin = strchr(origin, '.'))) {
-		origin++;
-		lev++;
-	}
-	dprintf(12, (ddt, " = %d\n", lev));
-	return (lev);
-}
-
-void
-gettime(ttp)
-	struct timeval *ttp;
-{
-	if (gettimeofday(ttp, NULL) < 0)
-		syslog(LOG_ERR, "gettimeofday: %m");
-	return;
-}
-
-#if !defined(BSD)
-int
-getdtablesize()
-{
-#if defined(USE_POSIX)
-	int j = (int) sysconf(_SC_OPEN_MAX);
- 
-	if (j >= 0)
-		return (j);
-#endif /* POSIX */
-	return (FD_SETSIZE);
-}
-#endif /* BSD */
-
-int
-my_close(fd)
-	int fd;
-{
-	int s;
-
-	do {
-		errno = 0;
-		s = close(fd);
-	} while (s < 0 && errno == EINTR);
-
-	if (s < 0 && errno != EBADF)
-		syslog(LOG_INFO, "close(%d) failed: %m", fd);
-	else
-		dprintf(3, (ddt, "close(%d) succeeded\n", fd));
-	return (s);
-}
-
-#ifdef GEN_AXFR
-/*
- * Map class names to number
- */
-struct map {
-	char	*token;
-	int	val;
-};
-
-static struct map map_class[] = {
-	{ "in",		C_IN },
-	{ "chaos",	C_CHAOS },
-	{ "hs",		C_HS },
-	{ NULL,		0 }
-};
-
-int
-get_class(class)
-	char *class;
-{
-	struct map *mp;
-
-	if (isdigit(*class))
-		return (atoi(class));
-	for (mp = map_class; mp->token != NULL; mp++)
-		if (strcasecmp(class, mp->token) == 0)
-			return (mp->val);
-	return (C_IN);
-}
-#endif
-
-int
-my_fclose(fp)
-	FILE *fp;
-{
-	int fd = fileno(fp),
-	    s = fclose(fp);
-
-	if (s < 0)
-		syslog(LOG_INFO, "fclose(%d) failed: %m", fd);
-	else
-		dprintf(3, (ddt, "fclose(%d) succeeded\n", fd));
-	return (s);
-}
-
-/*
- * Make a copy of a string and return a pointer to it.
- */
-char *
-savestr(str)
-	const char *str;
-{
-	char *cp = strdup(str);
-
-	if (!cp)
-		panic(errno, "malloc(savestr)");
-	return (cp);
-}
-
-int
-writemsg(rfd, msg, msglen)
-	int rfd;
-	u_char *msg;
-	int msglen;
-{
-	struct iovec iov[2];
-	u_char len[INT16SZ];
-
-	__putshort(msglen, len);
-	iov[0].iov_base = (char *)len;
-	iov[0].iov_len = INT16SZ;
-	iov[1].iov_base = (char *)msg;
-	iov[1].iov_len = msglen;
-	if (writev(rfd, iov, 2) != INT16SZ + msglen) {
-		dprintf(1, (ddt, "write failed %d\n", errno));
-		return (-1);
-	}
-	return (0);
-}
-
-/* rm_datum(dp, np, pdp)
- *	remove datum 'dp' from name 'np'.  pdp is previous data pointer.
- * return value:
- *	"next" field from removed datum, suitable for relinking
- */
-struct databuf *
-rm_datum(dp, np, pdp)
-	register struct databuf *dp;
-	register struct namebuf *np;
-	register struct databuf *pdp;
-{
-	register struct databuf *ndp = dp->d_next;
-
-	dprintf(3, (ddt, "rm_datum(%lx, %lx, %lx) -> %lx\n",
-		    (u_long)dp, (u_long)np->n_data, (u_long)pdp, (u_long)ndp));
-#ifdef INVQ
-	rminv(dp);
-#endif
-	if (pdp == NULL)
-		np->n_data = ndp;
-	else
-		pdp->d_next = ndp;
-	if ((dp->d_flags & DB_F_ACTIVE) == 0)
-		panic(-1, "rm_datum: DB_F_ACTIVE not set");
-	dp->d_flags &= ~DB_F_ACTIVE;
-	dp->d_next = NULL;
-	if (--(dp->d_rcnt)) {
-#ifdef DEBUG
-		int32_t ii;
-#endif
-
-		switch(dp->d_type) {
-		case T_NS:
-			dprintf(1, (ddt, "rm_datum: %s rcnt = %d\n",
-				dp->d_data, dp->d_rcnt));
-			break;
-		case T_A:
-
-#ifdef DEBUG
-			bcopy(dp->d_data, &ii, sizeof(ii));
-#endif
-			dprintf(1, (ddt, "rm_datum: %08.8X rcnt = %d\n",
-				ii, dp->d_rcnt));
-			break;
-		default:
-			dprintf(1, (ddt, "rm_datum: rcnt = %d\n", dp->d_rcnt));
-		}
-	} else
-		db_free(dp);
-	return (ndp);
-}
-
-/* rm_name(np, he, pnp)
- *	remove name 'np' from parent 'pp'.  pnp is previous name pointer.
- * return value:
- *	"next" field from removed name, suitable for relinking
- */
-struct namebuf *
-rm_name(np, pp, pnp)
-	struct namebuf *np, **pp, *pnp;
-{
-	struct namebuf *nnp = np->n_next;
-	char *msg;
-
-	/* verify */
-	if ( (np->n_data && (msg = "data"))
-	  || (np->n_hash && (msg = "hash"))
-	    ) {
-		syslog(LOG_ERR,
-		       "rm_name(%#lx(%s)): non-nil %s pointer\n",
-		       (u_long)np, NAME(*np), msg);
-		panic(-1, "rm_name");
-	}
-
-	/* unlink */
-	if (pnp) {
-		pnp->n_next = nnp;
-	} else {
-		*pp = nnp;
-	}
-
-	/* deallocate */
-	free((char*) np);
-
-	/* done */
-	return (nnp);
-}
-
-/*
- * Get the domain name of 'np' and put in 'buf'.  Bounds checking is done.
- */
-void
-getname(np, buf, buflen)
-	struct namebuf *np;
-	char *buf;
-	int buflen;
-{
-	register char *cp;
-	register int i;
-
-	cp = buf;
-	while (np != NULL) {
-		i = (int) NAMELEN(*np);
-		if (i + 1 >= buflen) {
-			*cp = '\0';
-			syslog(LOG_INFO, "domain name too long: %s...\n", buf);
-			strcpy(buf, "Name_Too_Long");
-			return;
-		}
-		if (cp != buf)
-			*cp++ = '.';
-		bcopy(NAME(*np), cp, i);
-		cp += i;
-		buflen -= i + 1;
-		np = np->n_parent;
-	}
-	*cp = '\0';
-}
-
-#ifdef INVQ
-/*
- * Add data 'dp' to inverse query tables for name 'np'.
- */
-void
-addinv(np, dp)
-	struct namebuf *np;
-	struct databuf *dp;
-{
-	register struct invbuf *ip;
-	register int hval, i;
-
-	switch (dp->d_type) {
-	case T_A:
-	case T_UID:
-	case T_GID:
-		break;
-
-	default:
-		return;
-	}
-
-	hval = dhash(dp->d_data, dp->d_size);
-	for (ip = invtab[hval]; ip != NULL; ip = ip->i_next)
-		for (i = 0; i < INVBLKSZ; i++)
-			if (ip->i_dname[i] == NULL) {
-				ip->i_dname[i] = np;
-				return;
-			}
-	ip = saveinv();
-	ip->i_next = invtab[hval];
-	invtab[hval] = ip;
-	ip->i_dname[0] = np;
-}
-
-/*
- * Remove data 'odp' from inverse query table.
- */
-void
-rminv(odp)
-	struct databuf *odp;
-{
-	register struct invbuf *ip;
-	register struct databuf *dp;
-	struct namebuf *np;
-	register int i;
-
-	for (ip = invtab[dhash(odp->d_data, odp->d_size)]; ip != NULL;
-	    ip = ip->i_next) {
-		for (i = 0; i < INVBLKSZ; i++) {
-			if ((np = ip->i_dname[i]) == NULL)
-				break;
-			for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-				if (dp != odp)
-					continue;
-				while (i < INVBLKSZ-1) {
-					ip->i_dname[i] = ip->i_dname[i+1];
-					i++;
-				}
-				ip->i_dname[i] = NULL;
-				return;
-			}
-		}
-	}
-}
-
-/*
- * Allocate an inverse query buffer.
- */
-struct invbuf *
-saveinv()
-{
-	register struct invbuf *ip;
-
-	ip = (struct invbuf *) malloc(sizeof(struct invbuf));
-	if (!ip)
-		panic(errno, "malloc(saveinv)");
-	ip->i_next = NULL;
-	bzero((char *)ip->i_dname, sizeof(ip->i_dname));
-	return (ip);
-}
-
-/*
- * Compute hash value from data.
- */
-int
-dhash(dp, dlen)
-	register const u_char *dp;
-	int dlen;
-{
-	register u_char *cp;
-	register unsigned hval;
-	register int n;
-
-	n = dlen;
-	if (n > 8)
-		n = 8;
-	hval = 0;
-	while (--n >= 0) {
-		hval <<= 1;
-		hval += *dp++;
-	}
-	return (hval % INVHASHSZ);
-}
-#endif /*INVQ*/
-
-/* int
- * nhash(name)
- *	compute hash for this name and return it; ignore case differences
- */
-int
-nhash(name)
-	register const char *name;
-{
-	register u_char ch;
-	register unsigned hval;
-
-	hval = 0;
-	while ((ch = (u_char)*name++) != (u_char)'\0') {
-		if (isascii(ch) && isupper(ch))
-			ch = tolower(ch);
-		hval <<= 1;
-		hval += ch;
-	}
-	return (hval % INVHASHSZ);
-}
-
-/*
-** SAMEDOMAIN -- Check whether a name belongs to a domain
-** ------------------------------------------------------
-**
-**	Returns:
-**		TRUE if the given name lies in the domain.
-**		FALSE otherwise.
-**
-**	Trailing dots are first removed from name and domain.
-**	Always compare complete subdomains, not only whether the
-**	domain name is the trailing string of the given name.
-**
-**	"host.foobar.top" lies in "foobar.top" and in "top" and in ""
-**	but NOT in "bar.top"
-**
-**	this implementation of samedomain() is thanks to Bob Heiney.
-*/
-
-int
-samedomain(a, b)
-	const char *a, *b;
-{
-	size_t la, lb;
-	int diff, i, escaped;
-	const char *cp;
-
-	la = strlen(a);
-	lb = strlen(b);
-
-	/* ignore a trailing label separator (i.e. an unescaped dot) in 'a' */
-	if (la && a[la-1] == '.') {
-		escaped = 0;
-		/* note this loop doesn't get executed if la==1 */
-		for (i = la - 2; i >= 0; i--)
-			if (a[i] == '\\') {
-				if (escaped)
-					escaped = 0;
-				else
-					escaped = 1;
-			} else {
-				break;
-			}
-		if (!escaped)
-			la--;
-	}
-	/* ignore a trailing label separator (i.e. an unescaped dot) in 'b' */
-	if (lb && b[lb-1] == '.') {
-		escaped = 0;
-		/* note this loop doesn't get executed if lb==1 */
-		for (i = lb - 2; i >= 0; i--)
-			if (b[i] == '\\') {
-				if (escaped)
-					escaped = 0;
-				else
-					escaped = 1;
-			} else {
-				break;
-			}
-		if (!escaped)
-			lb--;
-	}
-
-	/* lb==0 means 'b' is the root domain, so 'a' must be in 'b'. */
-	if (lb == 0)
-		return (1);
-
-	/* 'b' longer than 'a' means 'a' can't be in 'b'. */
-	if (lb > la)
-		return (0);
-
-	/* We use strncasecmp because we might be trying to
-	 * ignore a trailing dot. */
-	if (lb == la)
-		return (strncasecmp(a, b, lb) == 0);
-
-	/* Ok, we know la > lb. */
-
-	diff = la - lb;
-
-	/* If 'a' is only 1 character longer than 'b', then it can't be
-	   a subdomain of 'b' (because of the need for the '.' label
-	   separator). */
-	if (diff < 2)
-		return (0);
-
-	/* If the character before the last 'lb' characters of 'b'
-	   isn't '.', then it can't be a match (this lets us avoid
-	   having "foobar.com" match "bar.com"). */
-	if (a[diff-1] != '.')
-		return (0);
-
-	/* We're not sure about that '.', however.  It could be escaped
-           and thus not a really a label separator. */
-	escaped=0;
-	for (i = diff-2; i >= 0; i--)
-		if (a[i] == '\\') {
-			if (escaped)
-				escaped = 0;
-			else
-				escaped = 1;
-		}
-		else
-			break;
-	if (escaped)
-		return (0);
-	  
-	/* We use strncasecmp because we might be trying to
-	 * ignore trailing dots. */
-	cp = a + diff;
-	return (strncasecmp(cp, b, lb) == 0);
-}
-
-/*
- * Since the fields in a "struct timeval" are longs, and the argument to ctime
- * is a pointer to a time_t (which might not be a long), here's a bridge.
- */
-char *
-ctimel(l)
-	long l;
-{
-	time_t t = (time_t)l;
-
-	return (ctime(&t));
-}
-
-/*
- * This is nec'y for systems that croak when deref'ing unaligned pointers.
- * SPARC is an example.  Note that in_addr.s_addr needn't be a 32-bit int,
- * so we want to avoid bcopy and let the compiler do the casting for us.
- */
-struct in_addr
-data_inaddr(data)
-	const u_char *data;
-{
-	struct in_addr ret;
-	u_int32_t tmp;
-
-	GETLONG(tmp, data);
-	ret.s_addr = htonl(tmp);
-	return (ret);
-}
-
-/* Signal abstraction. */
-
-void
-setsignal(catch, block, handler)
-	int catch, block;
-	SIG_FN (*handler)();
-{
-#ifdef POSIX_SIGNALS
-	/* Modern system - preferred. */
-	struct sigaction sa;
-	memset(&sa, 0, sizeof sa);
-	sa.sa_handler = handler;
-	sigemptyset(&sa.sa_mask);
-	if (block != -1)
-		sigaddset(&sa.sa_mask, block);
-	(void) sigaction(catch, &sa, NULL);
-#else /*POSIX_SIGNALS*/
-#ifdef SYSV
-	/* Ancient system - ugly. */
-	if (block != -1)
-		syslog(LOG_DEBUG, "danger - unable to block signal %d from %d",
-		       block, catch);
-	(void) signal(catch, handler);
-#else /*SYSV*/
-	/* BSD<=4.3 system - odd. */
-	struct sigvec sv;
-	bzero(&sv, sizeof sv);
-	sv.sv_handler = handler;
-	sv.sv_mask = sigmask(block);
-	(void) sigvec(catch, &sv, NULL);
-#endif /*SYSV*/
-#endif /*POSIX_SIGNALS*/
-}
-
-void
-resignal(catch, block, handler)
-	int catch, block;
-	SIG_FN (*handler)();
-{
-#if !defined(POSIX_SIGNALS) && defined(SYSV)
-	/* Unreliable signals.  Set it back up again. */
-	setsignal(catch, block, handler);
-#endif
-}
-
-void
-db_free(dp)
-	struct databuf *dp;
-{
-	int bytes = DATASIZE(dp->d_size);
-
-	if (dp->d_rcnt != 0)
-		panic(-1, "db_free: d_rcnt != 0");
-	if (dp->d_flags & DB_F_ACTIVE)
-		panic(-1, "db_free: DB_F_ACTIVE set");
-	if (dp->d_next)
-		panic(-1, "db_free: d_next != 0");
-	memset(dp, 0x5E, bytes);
-	free((char*)dp);
-}
diff --git a/contrib/bind/named/db_load.c b/contrib/bind/named/db_load.c
deleted file mode 100644
index 6251f4207fd23..0000000000000
--- a/contrib/bind/named/db_load.c
+++ /dev/null
@@ -1,2296 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_load.c	4.38 (Berkeley) 3/2/91";
-static char rcsid[] = "$Id: db_load.c,v 8.32 1997/06/01 20:34:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988, 1990
- * -
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- * --Copyright--
- */
-
-/*
- * Load data base from ascii backupfile.  Format similar to RFC 883.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <time.h>
-
-#include "named.h"
-
-#define ALLOW_LONG_TXT_RDATA
-
-static int		gettoken __P((register FILE *, const char *)),
-			getnonblank __P((FILE *, const char *)),
-			getprotocol __P((FILE *, const char *)),
-			getservices __P((int, char *, FILE *, const char *)),
-			getcharstring __P((char *, char *, int, int, int, FILE *, const char *));
-static void		makename __P((char *, const char *));
-static int		makename_ok __P((char *name, const char *origin,
-					 int class,
-					 enum transport transport,
-					 enum context context,
-					 const char *owner,
-					 const char *filename, int lineno));
-static int		getmlword __P((char *, int, FILE *, int));
-static int		getallwords __P((char *, int, FILE *, int));
-static u_int32_t	wordtouint32 __P((char *));
-static u_int32_t	datetosecs __P((char *, int *));
-
-static int		wordtouint32_error = 0;
-static int		empty_token = 0;
-static int		getmlword_nesting = 0;
-
-int	getnum_error;
-
-/*
- * Parser token values
- */
-#define CURRENT	1
-#define DOT	2
-#define AT	3
-#define DNAME	4
-#define INCLUDE	5
-#define ORIGIN	6
-#define ERROR	7
-
-static int clev;	/* a zone deeper in a hierachy has more credability */
-
-#define MAKENAME_OK(N)	if (!makename_ok(N, origin, class, \
-					 transport, context, \
-					 domain, filename, lineno)) { \
-				errs++; \
-				sprintf(buf, "bad name \"%s\"", N); \
-				goto err; \
-			}
-
-/* int
- * db_load(filename, in_origin, zp, def_domain)
- *	load a database from `filename' into zone `zp'.  append `in_origin'
- *	to all nonterminal domain names in the file.  `def_domain' is the
- *	default domain for include files or NULL for zone base files.
- * returns:
- *	-1 = can't open file
- *	0 = success
- *	>0 = number of errors encountered
- */
-int
-db_load(filename, in_origin, zp, def_domain)
-	const char *filename, *in_origin;
-	struct zoneinfo *zp;
-	const char *def_domain;
-{
-	static int read_soa, read_ns, rrcount;
-	register char *cp;
-	char domain[MAXDNAME];
-	char origin[MAXDNAME];
-	char tmporigin[MAXDNAME];
-	char buf[MAXDATA];
-	char data[MAXDATA];
-	const char *op;
-	int c, someclass, class, type, dbflags, dataflags, multiline;
-	u_int32_t ttl;
-	struct databuf *dp;
-	FILE *fp;
-	int slineno, i, errs, didinclude;
-	register u_int32_t n;
-	struct stat sb;
-	struct in_addr ina;
-	int escape;
-	enum transport transport;
-	enum context context;
-	u_int32_t sig_type;
-	u_int32_t keyflags;
-	int success;
-	int dateerror;
-#ifdef DO_WARN_SERIAL
-	u_int32_t serial;
-#endif
-
-/* Simple macro for setting error messages about RR's being parsed,
-   before jumping to err label.  If no SETERR is done, the last word
-   scanned into "buf" by getword will be printed.  */
-#define SETERR(x)	strcpy (buf, x);
-
-	switch (zp->z_type) {
-	case Z_PRIMARY:
-	case Z_CACHE:
-		transport = primary_trans;
-		break;
-	case Z_SECONDARY:
-	case Z_STUB:
-		transport = secondary_trans;
-		break;
-	default:
-		transport = response_trans; /*guessing*/
-		break;
-	}
-	errs = 0;
-	didinclude = 0;
-	if (!def_domain) {
-		/* This is not the result of a $INCLUDE. */
-		rrcount = 0;
-		read_soa = 0;
-		read_ns = 0;
-		clev = db_getclev(in_origin);
-	}
-
-	dprintf(1, (ddt,"db_load(%s, %s, %d, %s)\n",
-		    filename, in_origin, zp - zones,
-		    def_domain ? def_domain : "Nil"));
-
-	(void) strcpy(origin, in_origin);
-	if ((fp = fopen(filename, "r")) == NULL) {
-		syslog(LOG_WARNING, "%s: %m", filename);
-		dprintf(1, (ddt, "db_load: error opening file %s\n",
-			    filename));
-		return (-1);
-	}
-	if (zp->z_type == Z_CACHE) {
-		dbflags = DB_NODATA | DB_NOHINTS;
-		dataflags = DB_F_HINT;
-#ifdef STUBS
-	} else if (zp->z_type == Z_STUB && clev == 0) {
-		dbflags = DB_NODATA | DB_NOHINTS;
-		dataflags = DB_F_HINT;
-#endif
-	} else {
-		dbflags = DB_NODATA;
-		dataflags = 0;
-	}
-	gettime(&tt);
-	if (fstat(fileno(fp), &sb) < 0) {
-		syslog(LOG_WARNING, "%s: %m", filename);
-		sb.st_mtime = (int)tt.tv_sec;
-	}
-	slineno = lineno;
-	lineno = 1;
-	if (def_domain)
-		strcpy(domain, def_domain);
-	else
-		domain[0] = '\0';
-	class = zp->z_class;
-	zp->z_flags &= ~(Z_INCLUDE|Z_DB_BAD);
- 	while ((c = gettoken(fp, filename)) != EOF) {
-		switch (c) {
-		case INCLUDE:
-			if (!getword((char *)buf, sizeof(buf), fp, 0))
-				/* file name*/
-				break;
-			if (!getword(tmporigin, sizeof(tmporigin), fp, 1))
-				strcpy(tmporigin, origin);
-			else {
-				makename(tmporigin, origin);
-				endline(fp);
-			}
-			didinclude = 1;
-			errs += db_load((char *)buf, tmporigin, zp, domain);
-			continue;
-
-		case ORIGIN:
-			(void) strcpy((char *)buf, origin);
-			if (!getword(origin, sizeof(origin), fp, 1))
-				break;
-			dprintf(3, (ddt, "db_load: origin %s, buf %s\n",
-				    origin, buf));
-			makename(origin, buf);
-			dprintf(3, (ddt, "db_load: origin now %s\n", origin));
-			continue;
-
-		case DNAME:
-			if (!getword(domain, sizeof(domain), fp, 1))
-				break;
-			n = strlen(domain) - 1;
-			if (domain[n] == '.')
-				domain[n] = '\0';
-			else if (*origin) {
-				(void) strcat(domain, ".");
-				(void) strcat(domain, origin);
-			}
-			goto gotdomain;
-
-		case AT:
-			(void) strcpy(domain, origin);
-			goto gotdomain;
-
-		case DOT:
-			domain[0] = '\0';
-			/* FALLTHROUGH */
-		case CURRENT:
-		gotdomain:
-			if (!getword((char *)buf, sizeof(buf), fp, 0)) {
-				if (c == CURRENT)
-					continue;
-				break;
-			}
-			cp = buf;
-			ttl = USE_MINIMUM;
-			if (isdigit(*cp)) {
-				n = 0;
-				do {
-				    if (n > (INT_MAX - (*cp - '0')) / 10) {
-					syslog(LOG_INFO, 
-					   "%s: line %d: number > %lu\n",
-					   filename, lineno, (u_long)INT_MAX);
-					n = INT_MAX;
-					cp++;
-				    } else
-  					n = n * 10 + (*cp++ - '0');
-				}
-				while (isdigit(*cp));
-				if (*cp != '\0') {
-					errs++;
-					syslog(LOG_INFO,
-					       "%s: Line %d: bad TTL: %s.\n",
-					       filename, lineno, buf);
-					break;
-				}
-				if (zp->z_type == Z_CACHE) {
-				    /* this allows the cache entry to age */
-				    /* while sitting on disk (powered off) */
-				    if (n > max_cache_ttl)
-					n = max_cache_ttl;
-				    n += sb.st_mtime;
-				}
-				ttl = n;
-				if (!getword((char *)buf, sizeof(buf), fp, 0))
-					break;
-			}
-
-			/* Parse class (IN, etc) */
-			someclass = sym_ston(__p_class_syms,
-					     (char *)buf, &success);
-			if (success && someclass != C_ANY) {
-				class = someclass;
-				(void) getword((char *)buf,
-					       sizeof(buf), fp, 0);
-			}
-
-			/* Parse RR type (A, MX, etc) */
-			type = sym_ston(__p_type_syms,
-					(char *)buf, &success);
-			if ((!success) || type == T_ANY) {
-			    dprintf(1, (ddt, "%s: Line %d: Unknown type: %s.\n",
-					    filename, lineno, buf));
-				errs++;
-			    syslog(LOG_INFO, "%s: Line %d: Unknown type: %s.\n",
-					filename, lineno, buf);
-				break;
-			}
-
-			context = ns_ownercontext(type, transport);
-			if (!ns_nameok(domain, class, transport, context,
-				       domain, inaddr_any)) {
-				errs++;
-				syslog(LOG_NOTICE,
-				       "%s:%d: owner name error\n",
-				       filename, lineno);
-				break;
-			}
-
-			context = domain_ctx;
-			switch (type) {
-#ifdef ALLOW_T_UNSPEC
-			case T_UNSPEC:
-#endif
-			case T_KEY:
-			case T_SIG:
-				/* Don't do anything here for these types --
-				   they read their own input separately later */
-				goto dont_get_word;
-
-			case T_SOA:
-			case T_MINFO:
-			case T_RP:
-			case T_NS:
-			case T_CNAME:
-			case T_MB:
-			case T_MG:
-			case T_MR:
-			case T_PTR:
-				escape = 1;
-				break;
-			default:
-				escape = 0;
-			}
-			    if (!getword((char *)buf, sizeof(buf), fp, escape))
-				break;
-			    dprintf(3,
-				    (ddt,
-				     "d='%s', c=%d, t=%d, ttl=%d, data='%s'\n",
-				     domain, class, type, ttl, buf));
-			/*
-			 * Convert the ascii data 'buf' to the proper format
-			 * based on the type and pack into 'data'.
-			 */
-	dont_get_word:
-			switch (type) {
-			case T_A:
-				if (!inet_aton(buf, &ina))
-					goto err;
-				n = ntohl(ina.s_addr);
-				cp = data;
-				PUTLONG(n, cp);
-				n = INT32SZ;
-				break;
-
-			case T_SOA:
-				context = hostname_ctx;
-				goto soa_rp_minfo;
-			case T_RP:
-			case T_MINFO:
-				context = mailname_ctx;
-				/* FALLTHROUGH */
-			soa_rp_minfo:
-				(void) strcpy((char *)data, (char *)buf);
-
-				MAKENAME_OK(data);
-				cp = data + strlen((char *)data) + 1;
-				if (!getword((char *)cp,
-					     (sizeof data) - 
-					     (cp - (char *)data),
-					     fp, 1))
-					goto err;
-				if (type == T_RP)
-					context = domain_ctx;
-				else
-					context = mailname_ctx;
-				MAKENAME_OK(cp);
-				cp += strlen((char *)cp) + 1;
-				if (type != T_SOA) {
-					n = cp - (char *)data;
-					break;
-				}
-				if (class != zp->z_class) {
-					errs++;
-					syslog(LOG_INFO,
-					       "%s:%d: %s",
-					       filename, lineno,
-					       "SOA class not same as zone's");
-				}
-				if (strcasecmp(zp->z_origin, domain) != 0) {
-					errs++;
-					syslog(LOG_ERR,
-			"%s: line %d: SOA for \"%s\" not at zone top \"%s\"",
-					       filename, lineno, domain,
-					       zp->z_origin);
-				}
-				c = getnonblank(fp, filename);
-				if (c == '(') {
-					multiline = 1;
-				} else {
-					multiline = 0;
-					ungetc(c, fp);
-				}
-#ifdef DO_WARN_SERIAL
-				serial = zp->z_serial;
-#endif
-				zp->z_serial = getnum(fp, filename,
-						      GETNUM_SERIAL);
-				if (getnum_error)
-					errs++;
-				n = (u_int32_t) zp->z_serial;
-				PUTLONG(n, cp);
-#ifdef DO_WARN_SERIAL
-				if (serial && SEQ_GT(serial, zp->z_serial)) {
-					syslog(LOG_NOTICE,
-			"%s:%d: WARNING: new serial number < old (%lu < %lu)",
-						filename , lineno,
-						zp->z_serial, serial);
-				}
-#endif
-				zp->z_refresh = getnum(fp, filename,
-						       GETNUM_NONE);
-				if (getnum_error) {
-					errs++;
-					zp->z_refresh = INIT_REFRESH;
-				}
-				n = (u_int32_t) zp->z_refresh;
-				PUTLONG(n, cp);
-				if (zp->z_type == Z_SECONDARY
-#if defined(STUBS) 
-				    || zp->z_type == Z_STUB
-#endif
-				    ) {
-					ns_refreshtime(zp, MIN(sb.st_mtime,
-							       tt.tv_sec));
-				}
-				zp->z_retry = getnum(fp, filename,
-						     GETNUM_NONE);
-				if (getnum_error) {
-					errs++;
-					zp->z_retry = INIT_REFRESH;
-				}
-				n = (u_int32_t) zp->z_retry;
-				PUTLONG(n, cp);
-				zp->z_expire = getnum(fp, filename,
-						      GETNUM_NONE);
-				if (getnum_error) {
-					errs++;
-					zp->z_expire = INIT_REFRESH;
-				}
-				n = (u_int32_t) zp->z_expire;
-				PUTLONG (n, cp);
-				zp->z_minimum = getnum(fp, filename,
-						       GETNUM_NONE);
-				if (getnum_error) {
-					errs++;
-					zp->z_minimum = 120;
-				}
-				n = (u_int32_t) zp->z_minimum;
-				PUTLONG (n, cp);
-				n = cp - (char *)data;
-				if (multiline) {
-					if (getnonblank(fp, filename) != ')')
-						goto err;
-					endline(fp);
-				}
-                                read_soa++;
-				if (zp->z_type != Z_PRIMARY)
-					break;
-				/* sanity checks PRIMARY ONLY */
-				/*
-				 * sanity: give enough time for the
-				 * zone to transfer (retry)
-				 */
-				if (zp->z_expire < 
-					(zp->z_refresh+zp->z_retry)) {
-				    syslog(LOG_NOTICE,
-    "%s: WARNING SOA expire value is less then SOA refresh + retry (%lu < %lu + %lu)",
-				    filename, zp->z_expire, zp->z_refresh,
-				    zp->z_retry);
-				}
-				/* BIND specific */
-				if (zp->z_expire < maint_interval) {
-				    syslog(LOG_NOTICE,
-    "%s: WARNING SOA expire value is less then maintainance interval (%lu < %lu)",
-				    filename, zp->z_expire, maint_interval);
-				}
-				/* BIND Specific */
-				if (zp->z_refresh < maint_interval) {
-				    syslog(LOG_WARNING,
-    "%s: WARNING SOA refresh value is less then maintainance interval (%lu < %lu)",
-				    filename, zp->z_refresh, maint_interval);
-				}
-				/* BIND specific */
-				if (zp->z_retry < maint_interval) {
-				    syslog(LOG_WARNING,
-    "%s: WARNING SOA retry value is less then maintainance interval (%lu < %lu)",
-				    filename, zp->z_retry, maint_interval);
-				}
-				/* sanity */
-				if (zp->z_expire < 
-					(zp->z_refresh  + 10 * zp->z_retry)) {
-				    syslog(LOG_WARNING,
-    "%s: WARNING SOA expire value is less then refresh + 10 * retry (%lu < (%lu + 10 * %lu))",
-				    filename, zp->z_expire, zp->z_refresh,
-				    zp->z_retry);
-				}
-				/*
-				 * sanity: most harware/telco faults are
-				 * detected and fixed within a week,
-				 * secondaries should continue to
-				 * operate for this time.
-				 * (minimum of 4 days for long weekends)
-				 */
-				if (zp->z_expire < (7 * 24 * 3600)) {
-				    syslog(LOG_WARNING,
-    "%s: WARNING SOA expire value is less then 7 days (%lu)",
-				    filename, zp->z_expire);
-				}
-				/*
-				 * sanity: maximum down time
-				 * if we havn't talked for six months 
-				 * war must have broken out
-				 */
-				if (zp->z_expire > ( 183 * 24 * 3600)) {
-				    syslog(LOG_WARNING,
-    "%s: WARNING SOA expire value is greater then 6 months (%lu)",
-				    filename, zp->z_expire);
-				}
-				/* sanity */
-				if (zp->z_refresh < (zp->z_retry * 2)) {
-				    syslog(LOG_WARNING,
-    "%s: WARNING SOA refresh value is less than 2 * retry (%lu < %lu * 2)",
-				    filename, zp->z_refresh, zp->z_retry);
-				}
-				break;
-
-			case T_UID:
-			case T_GID:
-				n = 0;
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				if (cp == buf)
-					goto err;
-				cp = data;
-				PUTLONG(n, cp);
-				n = INT32SZ;
-				break;
-
-			case T_WKS:
-				/* Address */
-				if (!inet_aton(buf, &ina))
-					goto err;
-				n = ntohl(ina.s_addr);
-				cp = data;
-				PUTLONG(n, cp);
-				*cp = (char)getprotocol(fp, filename);
-				/* Protocol */
-				n = INT32SZ + sizeof(char);
-				/* Services */
-				n = getservices((int)n, data, fp, filename);
-				break;
-
-			case T_NS:
-				if (strcasecmp(zp->z_origin, domain) == 0)
-					read_ns++;
-				context = hostname_ctx;
-				goto cname_etc;
-			case T_CNAME:
-			case T_MB:
-			case T_MG:
-			case T_MR:
-				context = domain_ctx;
-				goto cname_etc;
-			case T_PTR:
-				context = ns_ptrcontext(domain);
-			cname_etc:
-				(void) strcpy((char *)data, (char *)buf);
-				MAKENAME_OK(data);
-				n = strlen((char *)data) + 1;
-				break;
-
-			case T_UINFO:
-				cp = strchr((char *)buf, '&');
-				bzero(data, sizeof data);
-				if ( cp != NULL) {
-					(void) strncpy((char *)data,
-					    (char *)buf, cp - buf);
-					op = strchr(domain, '.');
-					if ( op != NULL)
-					    (void) strncat((char *)data,
-						domain,op-domain);
-					else
-						(void) strcat((char *)data,
-						    domain);
-					(void) strcat((char *)data,
-					    (char *)++cp);
-				} else
-					(void) strcpy((char *)data,
-					    (char *)buf);
-				n = strlen((char *)data) + 1;
-				break;
-
-			case T_NAPTR:
-			/* Order Preference Flags Service Replacement Regexp */
-				n = 0;
-				cp = buf;
-				/* Order */
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				if ((cp == buf) || (n > 65535))
-					goto err;
-				cp = data;
-				PUTSHORT((u_int16_t)n, cp);
-				/* Preference */
-				n = getnum(fp, filename, GETNUM_NONE);
-				if (getnum_error || n > 65536)
-					goto err;
-				PUTSHORT((u_int16_t)n, cp);
-
-                                /* Flags */
-                                if (!getword((char *)buf, sizeof(buf), fp, 0))
-                                        goto err;
-                                n = strlen((char *)buf);
-                                *cp++ = n;
-                                bcopy(buf, (char *)cp, (int)n);
-                                cp += n;
- 
-                                /* Service Classes */
-                                if (!getword((char *)buf, sizeof(buf), fp, 0))
-                                        goto err;
-                                n = strlen((char *)buf);
-                                *cp++ = n;
-                                bcopy(buf, (char *)cp, (int)n);
-                                cp += n;
- 
-                                /* Pattern */
-                                if (!getword((char *)buf, sizeof(buf), fp, 0))
-                                        goto err;
-                                n = strlen((char *)buf);
-                                *cp++ = n;
-                                bcopy(buf, (char *)cp, (int)n);
-                                cp += n;
-
-				/* Replacement */
-				if (!getword((char *)buf, sizeof(buf), fp, 1))
-					goto err;
-				(void) strcpy((char *)cp, (char *)buf);
-				context = domain_ctx;
-				MAKENAME_OK(cp);
-				/* advance pointer to end of data */
-				cp += strlen((char *)cp) +1;
-
-				/* now save length */
-				n = (cp - (char *)data);
-				break;
-
-			case T_MX:
-			case T_AFSDB:
-			case T_RT:
-			case T_SRV:
-				n = 0;
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				if ((cp == buf) || (n > 65535))
-					goto err;
-				cp = data;
-				PUTSHORT((u_int16_t)n, cp);
-
-				if (type == T_SRV) {
-					n = getnum(fp, filename, GETNUM_NONE);
-					if (getnum_error || n > 65536)
-						goto err;
-					PUTSHORT((u_int16_t)n, cp);
-
-					n = getnum(fp, filename, GETNUM_NONE);
-					if (getnum_error || n > 65536)
-						goto err;
-					PUTSHORT((u_int16_t)n, cp);
-				}
-
-				if (!getword((char *)buf, sizeof(buf), fp, 1))
-					goto err;
-				(void) strcpy((char *)cp, (char *)buf);
-				context = hostname_ctx;
-				MAKENAME_OK(cp);
-				/* advance pointer to end of data */
-				cp += strlen((char *)cp) +1;
-
-				/* now save length */
-				n = (cp - (char *)data);
-				break;
-
-			case T_PX:
-				context = domain_ctx;
-				n = 0;
-				data[0] = '\0';
-				cp = buf;
-				while (isdigit(*cp))
-					n = n * 10 + (*cp++ - '0');
-				/* catch bad values */
-				if ((cp == buf) || (n > 65535))
-					goto err;
-				cp = data;
-				PUTSHORT((u_int16_t)n, cp);
-
-				if (!getword((char *)buf, sizeof(buf), fp, 0))
-					goto err;
-				(void) strcpy((char *)cp, (char *)buf);
-				MAKENAME_OK(cp);
-				/* advance pointer to next field */
-				cp += strlen((char *)cp) +1;
-				if (!getword((char *)buf, sizeof(buf), fp, 0))
-					goto err;
-				(void) strcpy((char *)cp, (char *)buf);
-				MAKENAME_OK(cp);
-				/* advance pointer to end of data */
-				cp += strlen((char *)cp) + 1;
-
-				/* now save length */
-				n = (cp - (char *)data);
-				break;
-
-			case T_HINFO:
-				n = getcharstring(buf, data, type, 2, 2, fp, filename);
-				if (n == 0)
-					goto err;
-				break;
-
-			case T_ISDN:
-				n = getcharstring(buf, data, type, 1, 2, fp, filename);
-				if (n == 0)
-					goto err;
-				break;
-
-			case T_TXT:
-				n = getcharstring(buf, data, type, 1, 0, fp, filename);
-				if (n == 0)
-					goto err;
-				break;
-
-			case T_X25:
-				n = getcharstring(buf, data, type, 1, 1, fp, filename);
-				if (n == 0)
-					goto err;
-				break;
-
-			case T_NSAP:
-				n = inet_nsap_addr(buf, (u_char *)data,
-						   sizeof data);
-				if (n == 0)
-					goto err;
-				endline(fp);
-				break;
-			case T_AAAA:
-				if (inet_pton(AF_INET6, buf, data) <= 0)
-					goto err;
-				n = IN6ADDRSZ;
-				endline(fp);
-				break;
-
-			case T_KEY: {
-	/* The KEY record looks like this in the db file:
-	 *	Name  Cl KEY Flags  Proto  Algid  PublicKeyData
-	 * where:
-	 *	Name,Cl per usual
-	 *	KEY	RR type
-	 *	Flags	4 digit hex value (unsigned_16)
-	 *	Proto	8 bit u_int
-	 *	Algid	8 bit u_int
-	 *	PublicKeyData
-	 *		a string of base64 digits,
-	 *		skipping any embedded whitespace.
-	 */
-				u_int32_t al, pr;
-				int nk, klen;
-				char *expstart;
-				u_int expbytes, modbytes;
-
-				i = 0;
-				data[i] = '\0';
-				cp = data;
-				getmlword_nesting = 0; /* KLUDGE err recov. */
-			/*>>> Flags (unsigned_16)  */
-				if (!getmlword((char*)buf, sizeof(buf), fp, 0)
-				    ) {
-					SETERR("No flags field");
-					goto err;
-				}
-				keyflags = wordtouint32(buf);
-				if (wordtouint32_error || 0xFFFF < keyflags)
-					goto err;
-				if (keyflags & KEYFLAG_RESERVED_BITMASK) {
-					SETERR("Reserved flag bits are set");
-					goto err;
-				}
-				PUTSHORT(keyflags, cp);
-
-			/*>>> Protocol (8-bit decimal) */
-				if (!getmlword((char*)buf, sizeof(buf), fp, 0)
-				    ) {
-					SETERR("No protocol field");
-					goto err;
-				}
-				pr = wordtouint32(buf);
-				if (wordtouint32_error || 255 < pr)
-					goto err;
-				*cp++ = (u_char) pr;
-
-			/*>>> Algorithm id (8-bit decimal) */
-				if (!getmlword((char*)buf, sizeof(buf), fp, 0)
-				    ) {
-					SETERR("No algorithm ID")
-					goto err;
-				}
-				al = wordtouint32(buf);
-				if (wordtouint32_error ||
-				    0 == al || 255 == al || 255 < al)
-					goto err;
-				*cp++ = (u_char) al;
-
-			/*>>> Public Key data is in BASE64.
-			 *	We don't care what algorithm it uses or what
-			 *	the internal structure of the BASE64 data is.
-			 */
-				if (!getallwords((char *)buf, MAXDATA, fp, 0))
-					klen = 0;
-				else {
-					/* Convert from BASE64 to binary. */
-					klen = b64_pton(buf, (u_char*)cp,
-						    sizeof data - 
-						    (cp - (char *)data));
-					if (klen < 0)
-						goto err;
-				}
-
-				/* set total length */
-				n = cp + klen - (char *)data;
-
-			/*
-			 * Now check for valid key flags & algs & etc,
-			 * from the RFC.
-			 */
-
-				if (keyflags & (KEYFLAG_ZONEKEY | KEYFLAG_IPSEC
-				    | KEYFLAG_EMAIL))
-					pr |= 1;	/* A nonzero proto. */
-				if (KEYFLAG_TYPE_NO_KEY ==
-				    (keyflags & KEYFLAG_TYPEMASK))
-					nk = 1;		/* No-key */
-				else
-					nk = 0;		/* have a key */
-                              if ((keyflags & KEYFLAG_ZONEKEY) && 
-                                  (KEYFLAG_TYPE_CONF_ONLY ==
-                                   (keyflags & KEYFLAG_TYPEMASK))) {
-                                      /* Zone key must have Authentication bit
-                                       set  ogud@tis.com */ 
-                                      SETERR("Zonekey needs authentication bit");
-					goto err;
-				}
-
-				if (al == 0 && nk == 0) {
-					SETERR("Key specified, but no alg");
-					goto err;
-				}
-				if (al != 0 && pr == 0) {
-					SETERR("Alg specified, but no protos");
-					goto err;
-				}
-
-				if (nk == 1 && klen != 0) {
-					SETERR("No-key flags set but key fnd");
-					goto err;
-				}
-
-				if (nk == 0 && klen == 0) {
-					SETERR("Key type spec'd, but no key");
-					goto err;
-				}
-
-				/* Check algorithm-ID and key structure, for
-				   the algorithm-ID's that we know about. */
-				switch (al) {
-				case ALGORITHM_MD5RSA:
-					if (klen == 0)
-						break;
-					expstart = cp;
-					expbytes = *expstart++;
-					if (expbytes == 0)
-						GETSHORT(expbytes, expstart);
-
-					if (expbytes < 1) {
-						SETERR("Exponent too short");
-						goto err;
-					}
-					if (expbytes >
-					    (MAX_MD5RSA_KEY_PART_BITS + 7) / 8
-					    ) {
-						SETERR("Exponent too long");
-						goto err;
-					}
-					if (*expstart == 0) {
-						SETERR("Exponent starts w/ 0");
-						goto err;
-					}
-
-					modbytes = klen -
-						(expbytes + (expstart - cp));
-					if (modbytes < 
-					    (MIN_MD5RSA_KEY_PART_BITS + 7) / 8
-					    ) {
-						SETERR("Modulus too short");
-						goto err;
-					}
-					if (modbytes > 
-					    (MAX_MD5RSA_KEY_PART_BITS + 7) / 8
-					    ) {
-						SETERR("Modulus too long");
-						goto err;
-					}
-					if (*(expstart+expbytes) == 0) {
-						SETERR("Modulus starts w/ 0");
-						goto err;
-					}
-					break;
-
-				case ALGORITHM_EXPIRE_ONLY:
-					if (klen != 0) {
-						SETERR(
-				     "Key provided for expire-only algorithm");
-						goto err;
-					}
-					break;
-				case ALGORITHM_PRIVATE_OID:
-					if (klen == 0) {
-						SETERR("No ObjectID in key");
-						goto err;
-					}
-					break;
-				}
-
-				endline(fp);  /* flush the rest of the line */
-				break;
-			    } /*T_KEY*/
-		  
-		        case T_SIG:
-	{
-		/* The SIG record looks like this in the db file:
-		   Name Cl SIG RRtype Algid [OTTL] Texp Tsig Kfoot Signer Sig
-		     
-		   where:  Name and Cl are as usual
-			   SIG     is a keyword
-			   RRtype  is a char string 
-			   ALGid   is  8 bit u_int
-			   OTTL    is 32 bit u_int (optionally present)
-			   Texp    is YYYYMMDDHHMMSS
-			   Tsig    is YYYYMMDDHHMMSS
-			   Kfoot   is 16-bit unsigned decimal integer
-			   Signer  is a char string
-			   Sig     is 64 to 319 base-64 digits
-		   A missing OTTL is detected by the magnitude of the Texp value
-		   that follows it, which is larger than any u_int.
-		   The Labels field in the binary RR does not appear in the
-		   text RR.
-
-		   It's too crazy to run these pages of SIG code at the right
-		   margin.  I'm exdenting them for readability.
-		 */
-		int siglen;
-		u_int32_t al;
-		u_int32_t signtime, exptime, timetilexp;
-		u_int32_t origTTL;
-		time_t now;
-
-		/* The TTL gets checked against the Original TTL,
-		   and bounded by the signature expiration time, which 
-		   are both under the signature.  We can't let TTL drift
-		   based on the SOA record.  If defaulted, fix it now. 
-		   (It's not clear to me why USE_MINIMUM isn't eliminated
-		   before putting ALL RR's into the database.  -gnu@toad.com) */
-		if (ttl == USE_MINIMUM)
-			ttl = zp->z_minimum;
-
-		i = 0;
-		data[i] = '\0';
-		getmlword_nesting = 0; /* KLUDGE err recovery */
-
-		/* RRtype (char *) */
-		if (!getmlword((char*)buf, sizeof(buf), fp, 0)) {
-			SETERR("SIG record doesn't specify type");
-			goto err;
-		}
-		sig_type = sym_ston(__p_type_syms, (char *)buf, &success);
-		if (!success || sig_type == T_ANY) {
-			/*
-			 * We'll also accept a numeric RR type,
-			 * for signing RR types that this version
-			 * of named doesn't yet understand.
-			 * In the T_ANY case, we rely on wordtouint32
-			 * to fail when scanning the string "ANY".
-			 */
-			sig_type = wordtouint32 (buf);
-			if (wordtouint32_error || sig_type > 0xFFFF) {
-				SETERR("Unknown RR type in SIG record");
-				goto err;
-			}
-		}
-		cp = &data[i];
-		PUTSHORT((u_int16_t)sig_type, cp);
-		i += 2;
-
-		/* Algorithm id (8-bit decimal) */
-		if (!getmlword((char *)buf, sizeof(buf), fp, 0)) {
-			SETERR("Missing algorithm ID");
-			goto err;
-		}
-		al = wordtouint32(buf);
-		if (0 == al || wordtouint32_error || 255 <= al)
-			goto err;
-		data[i] = (u_char) al;
-		i++;
-
-		/*
-		 * Labels (8-bit decimal)
-		 *	Not given in the file.  Must compute.
-		 */
-		n = dn_count_labels(domain);
-		if (0 >= n || 255 < n) {
-			SETERR ("SIG label count invalid");
-			goto err;
-		}
-		data[i] = (u_char) n;
-		i++;
-
-		/*
-		 * OTTL (optional u_int32_t) and
-		 * Texp (u_int32_t date)
-		 */
-		if (!getmlword((char *)buf, sizeof(buf), fp, 0)) {
-			SETERR("OTTL and expiration time missing");
-			goto err;
-		}
-		/*
-		 * See if OTTL is missing and this is a date.
-		 * This relies on good, silent error checking
-		 * in datetosecs.
-		 */
-		exptime = datetosecs(buf, &dateerror);
-		if (!dateerror) {
-			/* Output TTL as OTTL */
-			origTTL = ttl;
-			cp = &data[i];
-			PUTLONG (origTTL, cp);
-			i += 4;
-		} else {
-			/* Parse and output OTTL; scan TEXP */
-			origTTL = wordtouint32(buf);
-			if (0 >= origTTL || wordtouint32_error ||
-			    (origTTL > 0x7fffffff))
-				goto err;
-			cp = &data[i];
-			PUTLONG(origTTL, cp);
-			i += 4;
-			if (!getmlword((char *)buf, sizeof(buf), fp, 0)) {
-				SETERR ("Expiration time missing");
-				goto err;
-			}
-			exptime = datetosecs(buf, &dateerror);
-		}
- 		if (dateerror || exptime > 0x7fffffff || exptime <= 0) {
-			SETERR("Invalid expiration time");
-			goto err;
-		}
-		cp = &data[i];
-		PUTLONG(exptime, cp);
-		i += 4;
-
-		/* Tsig (u_int32_t) */
-		if (!getmlword((char *)buf, sizeof(buf), fp, 0)) {
-			SETERR("Missing signature time");
-		 	goto err;
-		}
-		signtime = datetosecs(buf, &dateerror);
-		if (0 == signtime || dateerror) {
-			SETERR("Invalid signature time");
-			goto err;
-		}
-		cp = &data[i];
-		PUTLONG(signtime, cp);
-		i += 4;
-
-		/* Kfootprint (unsigned_16) */
-		if (!getmlword((char *)buf, sizeof(buf), fp, 0)) {
-			SETERR("Missing key footprint");
-		 	goto err;
-		}
-		n = wordtouint32(buf);
-		if (wordtouint32_error || n >= 0x0ffff) {
-			SETERR("Invalid key footprint");
-			goto err;
-		}
-		cp = &data[i];
-		PUTSHORT((u_int16_t)n, cp);
-		i += 2;
-
-		/* Signer's Name */
-		if (!getmlword((char*)buf, sizeof(buf), fp, 0)) {
-			SETERR("Missing signer's name");
-			goto err;
-		}
-		cp = &data[i];
-		strcpy(cp,buf);
-		context = domain_ctx;
-		MAKENAME_OK(cp);
-		i += strlen(cp) + 1;
-
-		/*
-		 * Signature (base64 of any length)
-		 * We don't care what algorithm it uses or what
-		 * the internal structure of the BASE64 data is.
-		 */
-		if (!getallwords((char *)buf, sizeof(buf), fp, 0)) {
-			siglen = 0;
-		} else {
-			cp = &data[i];
-			siglen = b64_pton(buf, (u_char*)cp, sizeof data - i);
-			if (siglen < 0)
-				goto err;
-		}
-
-		/* set total length and we're done! */
-		n = i + siglen;
-
-		/*
-		 * Check signature time, expiration, and adjust TTL.  Note
-		 * that all time values are in GMT (UTC), *not* local time.
-		 */
-
-		now = time (0);
-
-		/* Don't let bogus name servers increase the signed TTL */
-		if (ttl > origTTL) {
-			SETERR("TTL is greater than signed original TTL");
-			goto err;
-		}
-
-		/* Don't let bogus signers "sign" in the future.  */
-		if (signtime > now) {
-			SETERR("signature time is in the future");
-			goto err;
-		}
-		
-		/* Ignore received SIG RR's that are already expired.  */
-		if (exptime <= now) {
-			SETERR("expiration time is in the past");
-			goto err;
-		}
-
-		/* Lop off the TTL at the expiration time.  */
-		timetilexp = exptime - now;
-		if (timetilexp < ttl) {
-			dprintf(1, (ddt,
-			       "shrinking expiring %s SIG TTL from %d to %d\n",
-				    p_secstodate(exptime), ttl, timetilexp));
-			ttl = timetilexp;
-		}
-
-		/*
-		 * Check algorithm-ID and key structure, for
-		 * the algorithm-ID's that we know about.
-		 */
-		switch (al) {
-		case ALGORITHM_MD5RSA:
-			if (siglen == 0) {
-				SETERR("No key for RSA algorithm");
-				goto err;
-			}
-			if (siglen < 1) {
-				SETERR("Signature too short");
-				goto err;
-			}
-			if (siglen > (MAX_MD5RSA_KEY_PART_BITS + 7) / 8) {
-				SETERR("Signature too long");
-				goto err;
-			}
-			/* We rely on  cp  from parse */
-			if (*cp == 0) {
-				SETERR("Signature starts with zeroes");
-				goto err;
-			}
-			break;
-
-		case ALGORITHM_EXPIRE_ONLY:
-			if (siglen != 0) {
-				SETERR(
-				  "Signature supplied to expire-only algorithm"
-				       );
-				goto err;
-			}
-			break;
-		case ALGORITHM_PRIVATE_OID:
-			if (siglen == 0) {
-				SETERR("No ObjectID in key");
-				goto err;
-			}
-			break;
-		}
-
-		endline(fp);  /* flush the rest of the line */
-
-		break;		/* Accept this RR. */
-	}
-
-#ifdef LOC_RR
-			case T_LOC:
-                                cp = buf + (n = strlen(buf));
-				*cp = ' ';
-				cp++;
-				while ((i = getc(fp), *cp = i, i != EOF)
-                                       && *cp != '\n'
-                                       && (n < MAXDATA)) {
-					cp++; n++;
-                                }
-                                if (*cp == '\n') /* leave \n for getword */
-					ungetc(*cp, fp);
-                                *cp = '\0';
-				/* now process the whole line */
-				n = loc_aton(buf, (u_char *)data);
-				if (n == 0)
-					goto err;
-				endline(fp);
-				break;
-#endif /* LOC_RR */
-#ifdef ALLOW_T_UNSPEC
-                        case T_UNSPEC:
-                                {
-                                    int rcode;
-                                    fgets(buf, sizeof(buf), fp);
-				    dprintf(1, (ddt, "loading T_UNSPEC\n"));
-				    if (rcode = atob(buf,
-						     strlen((char*)buf),
-						     data, sizeof data,
-						     &n)) {
-					if (rcode == CONV_OVERFLOW) {
-						errs++;
-						syslog(LOG_INFO,
-				       "Load T_UNSPEC: input buffer overflow");
-					} else {
-						errs++;
-						syslog(LOG_INFO,
-				     "Load T_UNSPEC: Data in bad atob format");
-					}
-                                    }
-                                }
-                                break;
-#endif /* ALLOW_T_UNSPEC */
-
-			default:
-				goto err;
-			}
-#ifndef PURGE_ZONE
-#ifdef STUBS
-			if (type == T_SOA && zp->z_type == Z_STUB)
-				continue;
-#endif
-#endif
-#ifdef NO_GLUE
-			/*
-			 * Ignore data outside the zone.
-			 */
-			if (zp->z_type != Z_CACHE &&
-			    !samedomain(domain, zp->z_origin))
-			{
-				syslog(LOG_INFO,
-			    "%s:%d: data \"%s\" outside zone \"%s\" (ignored)",
-				       filename, lineno, domain, zp->z_origin);
-				continue;
-			}
-#endif /*NO_GLUE*/
-			dp = savedata(class, type, (u_int32_t)ttl,
-				      (u_char *)data, (int)n);
-			dp->d_zone = zp - zones;
-			dp->d_flags = dataflags;
-			dp->d_cred = DB_C_ZONE;
-			dp->d_clev = clev;
-			if ((c = db_update(domain, dp, dp, dbflags,
-					   (dataflags & DB_F_HINT)
-					   ? fcachetab
-					   : hashtab))
-			    != OK) {
-#ifdef DEBUG
-				if (debug && (c != DATAEXISTS))
-					fprintf(ddt, "update failed %s %d\n", 
-						domain, type);
-#endif
-				db_free(dp);
-			} else {
-				rrcount++;
-			}
-			continue;
-
-		case ERROR:
-			break;
-		}
- err:
-		errs++;
-		syslog(LOG_NOTICE, "%s: line %d: database format error (%s)",
-			filename, empty_token ? (lineno - 1) : lineno, buf);
-		if (!empty_token)
-			endline(fp);
-	}
-	(void) my_fclose(fp);
-	lineno = slineno;
-	if (!def_domain) {
-		if (didinclude) {
-			zp->z_flags |= Z_INCLUDE;
-			zp->z_ftime = 0;
-		} else
-			zp->z_ftime = sb.st_mtime;
-		zp->z_lastupdate = sb.st_mtime;
-		if (zp->z_type != Z_CACHE) {
-			const char *msg = NULL;
-
-			if (read_soa == 0)
-				msg = "no SOA RR found";
-			else if (read_soa != 1)
-				msg = "multiple SOA RRs found";
-			else if (read_ns == 0)
-				msg = "no NS RRs found at zone top";
-			else if (!rrcount)
-				msg = "no relevant RRs found";
-			if (msg != NULL) {
-				errs++;
-				syslog(LOG_WARNING,
-				       "Zone \"%s\" (file %s): %s",
-				       zp->z_origin, filename, msg);
-			}
-		}
-	}
-#ifdef SECURE_ZONES
-	build_secure_netlist(zp);
-#endif
-	if (!def_domain)
-		syslog(errs ? LOG_WARNING : LOG_INFO,
-		       "%s zone \"%s\" %s (serial %lu)",
-		       zoneTypeString(zp), zp->z_origin,
-		       errs ? "rejected due to errors" : "loaded",
-		       (u_long)zp->z_serial);
-	if (errs) {
-		zp->z_flags |= Z_DB_BAD;
-		zp->z_ftime = 0;
-	}
-#ifdef BIND_NOTIFY
-	/* XXX: this needs to be delayed, both according to the spec, and
-	 *	because the metadata needed by sysnotify() (and its sysquery())
-	 *	could be in other zones that we (at startup) havn't loaded yet.
-	 */
-	if (!errs && !def_domain &&
-	    (zp->z_type == Z_PRIMARY || zp->z_type == Z_SECONDARY))
-		sysnotify(zp->z_origin, zp->z_class, T_SOA);
-#endif
-	return (errs);
-}
-
-static int
-gettoken(fp, src)
-	register FILE *fp;
-	const char *src;
-{
-	register int c;
-	char op[32];
-
-	for (;;) {
-		c = getc(fp);
-	top:
-		switch (c) {
-		case EOF:
-			return (EOF);
-
-		case '$':
-			if (getword(op, sizeof(op), fp, 0)) {
-				if (!strcasecmp("include", op))
-					return (INCLUDE);
-				if (!strcasecmp("origin", op))
-					return (ORIGIN);
-			}
-			syslog(LOG_NOTICE,
-			       "%s: line %d: Unknown $ option: $%s\n", 
-			       src, lineno, op);
-			return (ERROR);
-
-		case ';':
-			while ((c = getc(fp)) != EOF && c != '\n')
-				;
-			goto top;
-
-		case ' ':
-		case '\t':
-			return (CURRENT);
-
-		case '.':
-			return (DOT);
-
-		case '@':
-			return (AT);
-
-		case '\n':
-			lineno++;
-			continue;
-
-		default:
-			(void) ungetc(c, fp);
-			return (DNAME);
-		}
-	}
-}
-
-/* int
- * getword(buf, size, fp, preserve)
- *	get next word, skipping blanks & comments.
- *	'\' '\n' outside of "quotes" is considered a blank.
- * parameters:
- *	buf - destination
- *	size - of destination
- *	fp - file to read from
- *	preserve - should we preserve \ before \\ and \.?
- * return value:
- *	0 = no word; perhaps EOL or EOF; lineno was incremented.
- *	1 = word was read
- */
-int
-getword(buf, size, fp, preserve)
-	char *buf;
-	int size;
-	FILE *fp;
-	int preserve;
-{
-	register char *cp = buf;
-	register int c, spaceok;
-
-	empty_token = 0;	/* XXX global side effect. */
-	while ((c = getc(fp)) != EOF) {
-		if (c == ';') {
-			/* Comment.  Skip to end of line. */
-			while ((c = getc(fp)) != EOF && c != '\n')
-				NULL;
-			c = '\n';
-		}
-		if (c == '\n') {
-			/*
-			 * Unescaped newline.  It's a terminator unless we're
-			 * already midway into a token.
-			 */
-			if (cp != buf)
-				ungetc(c, fp);
-			else
-				lineno++;
-			break;
-		}
-		if (c == '"') {
-			/* "Quoted string."  Gather the whole string here. */
-			while ((c = getc(fp)) != EOF && c!='"' && c!='\n') {
-				if (c == '\\') {
-					if ((c = getc(fp)) == EOF)
-						c = '\\';
-					if (preserve &&
-					    (c == '\\' || c == '.')) {
-						if (cp >= buf+size-1)
-							break;
-						*cp++ = '\\';
-					}
-					if (c == '\n')
-						lineno++;
-				}
-				if (cp >= buf+size-1)
-					break;
-				*cp++ = c;
-			}
-			/*
-			 * Newline string terminators are
-			 * not token terminators.
-			 */
-			if (c == '\n') {
-				lineno++;
-				break;
-			}
-			/* Sample following character, check for terminator. */
-			if ((c = getc(fp)) != EOF)
-				ungetc(c, fp);
-			if (c == EOF || isspace(c)) {
-				*cp = '\0';
-				return (1);
-			}
-			continue;
-		}
-		spaceok = 0;
-		if (c == '\\') {
-			/* Do escape processing. */
-			if ((c = getc(fp)) == EOF)
-				c = '\\';
-			if (preserve && (c == '\\' || c == '.')) {
-				if (cp >= buf+size-1)
-					break;
-				*cp++ = '\\';
-			}
-			if (c == ' ' || c == '\t')
-				spaceok++;
-		}
-		if (isspace(c) && !spaceok) {
-			/* Blank of some kind.  Skip run. */
-			while (isspace(c = getc(fp)) && c != '\n')
-				NULL;
-			ungetc(c, fp);
-			/* Blank means terminator if the token is nonempty. */
-			if (cp != buf)		/* Trailing whitespace */
-				break;
-			continue;		/* Leading whitespace */
-		}
-		if (cp >= buf+size-1)
-			break;
-		*cp++ = (char)c;
-	}
-	*cp = '\0';
-	if (cp == buf)
-		empty_token = 1;
-	return (cp != buf);
-}
-
-/* Get multiline words.  Same parameters as getword.  Handles any
-   number of leading ('s or )'s in the words it sees.
-   FIXME:  We kludge recognition of ( and ) for multiline input.
-   Each paren must appear at the start of a (blank-separated) word,
-   which is particularly counter-intuitive for ).  Good enough for now,
-   until Paul rewrites the parser.
-*/
-static int
-getmlword(buf, size, fp, preserve)
-	char *buf;
-	int size;
-	FILE *fp;
-	int preserve;
-{
-	char *p;
-	
-	do {
-		while (!getword (buf, size, fp, preserve)) {
-			/* No more words on this line.  See if doing the
-			   multiline thing. */
-			if (!getmlword_nesting) {	/* Nope... */
-				ungetc('\n', fp);	/* Push back newline */
-				lineno--;		/* Unbump the lineno */
-				empty_token = 0;	/* Undo this botch */
-				return 0;
-			}
-			if (feof(fp) || ferror(fp))
-				return 0;	/* Error, no terminating ')' */
-			/* Continue reading til we get a word... */
-		}
-		while ('(' == *buf) {
-			/* Word starts with paren.  Multiline mode.
-			   Move the rest of the word down over the paren.  */
-			getmlword_nesting++;
-			p = buf;
-			while (0 != (p[0]=p[1]))  p++;
-		}
-		while (')' == *buf) {
-			getmlword_nesting--;
-			p = buf;
-			while (0 != (p[0]=p[1]))  p++;
-		}
-	} while (buf[0] == 0);	/* loop til we get a non-( non-) word */
-
-	return 1;		/* Got a word... */
-}
-
-/* Get all the remaining words on a line, concatenated into one big
-   long (not too long!) string, with the whitespace squeezed out.
-   This routine, like getword(), does not swallow the newline if words seen.
-   This routine, unlike getword(), never swallows the newline if no words.
-   Parameters are the same as getword().  Result is:
-	 0	got no words at all
-	 1 	got one or more words
-	-1	got too many words, they don't all fit; or missing close paren
-*/
-static int
-getallwords(buf, size, fp, preserve)
-	char *buf;
-	int size;
-	FILE *fp;
-	int preserve;
-{
-	char *runningbuf  = buf;
-	int runningsize = size;
-	int len;
-
-	while (runningsize > 0) {
-		if (!getmlword (runningbuf, runningsize, fp, preserve)) {
-			return runningbuf!=buf;		/* 1 or 0 */
-		}
-		len = strlen(runningbuf);
-		runningbuf += len;
-		runningsize -= len;
-	}
-	return -1;			/* Error, String too long */
-}
-
-/*
-From: kagotani@cs.titech.ac.jp
-Message-Id: <9007040716.AA26646@saeko.cs.titech.ac.jp>
-Subject: named bug report and fix
-Date: Wed, 04 Jul 90 16:16:52 JST
-
-I found a bug in the BIND source code. Named with this bug parses
-the serial_no field of SOA records incorrectly. For example:
-        expression      internal
-        in files        expression      I expect
-        1.              1000            10000
-        1.2             10002           10002
-        1.23            100023          10023
-        2.3             20003           20003
-Especially I can not accept that "2.3" is treated as if it is
-smaller than "1.23" in their internal expressions.
-
-[ if you define SENSIBLE_DOTS in ../conf/options.h, you get
-  m. kagotani's expected behaviour.  this is NOT compatible
-  with pre-4.9 versions of BIND.  --vix ]
-*/
-
-int
-getnum(fp, src, opt)
-	FILE *fp;
-	const char *src;
-	int opt;
-{
-	register int c, n;
-	int seendigit = 0;
-	int seendecimal = 0;
-	int m = 0;
-	int allow_dots = 0;
-
-	getnum_error = 0;
-#ifdef DOTTED_SERIAL
-	if (opt & GETNUM_SERIAL)
-		allow_dots++;
-#endif
-	for (n = 0; (c = getc(fp)) != EOF; ) {
-		if (isspace(c)) {
-			if (c == '\n')
-				lineno++;
-			if (seendigit)
-				break;
-			continue;
-		}
-		if (c == ';') {
-			while ((c = getc(fp)) != EOF && c != '\n')
-				;
-			if (c == '\n')
-				lineno++;
-			if (seendigit)
-				break;
-			continue;
-		}
-		if (getnum_error)
-			continue;
-		if (!isdigit(c)) {
-			if (c == ')' && seendigit) {
-				(void) ungetc(c, fp);
-				break;
-			}
-			if (seendigit && (opt & GETNUM_SCALED) &&
-			    strchr("KkMmGg", c) != NULL) {
-				switch (c) {
-				case 'K': case 'k':
-					n *= 1024;
-					break;
-				case 'M': case 'm':
-					n *= (1024 * 1024);
-					break;
-				case 'G': case 'g':
-					n *= (1024 * 1024 * 1024);
-					break;
-				}
-				break;
-			}
-			if (seendecimal || c != '.' || !allow_dots) {
-				syslog(LOG_NOTICE, "%s:%d: expected a number",
-				       src, lineno);
-				getnum_error = 1;
-			} else {
-				if (!seendigit)
-					n = 1;
-#ifdef SENSIBLE_DOTS
-				n *= 10000;
-#else
-				n *= 1000;
-#endif
-				seendigit = 1;
-				seendecimal = 1;
-			}
-			continue;
-		}
-#ifdef SENSIBLE_DOTS
-		if (seendecimal)
-			m = m * 10 + (c - '0');
-		else
-			n = n * 10 + (c - '0');
-#else
-		n = n * 10 + (c - '0');
-#endif
-		seendigit = 1;
-	}
-	if (getnum_error)
-		return (0);
-	if (m > 9999) {
-		syslog(LOG_INFO, 
-		       "%s:%d: number after the decimal point exceeds 9999", 
-		       src, lineno);
-		getnum_error = 1;
-		return (0);
-	}
-	if (seendecimal) {
-		syslog(LOG_INFO,
-		       "%s:%d: decimal serial number interpreted as %d",
-		       src, lineno, n+m);
-	}
-	return (n + m);
-}
-
-static int
-getnonblank(fp, src)
-	FILE *fp;
-	const char *src;
-{
-	register int c;
-
-	while ( (c = getc(fp)) != EOF ) {
-		if (isspace(c)) {
-			if (c == '\n')
-				lineno++;
-			continue;
-		}
-		if (c == ';') {
-			while ((c = getc(fp)) != EOF && c != '\n')
-				;
-			if (c == '\n')
-				lineno++;
-			continue;
-		}
-		return(c);
-	}
-	syslog(LOG_INFO, "%s: line %d: unexpected EOF", src, lineno);
-	return (EOF);
-}
-
-/*
- * Take name and fix it according to following rules:
- * "." means root.
- * "@" means current origin.
- * "name." means no changes.
- * "name" means append origin.
- */
-static void
-makename(name, origin)
-	char *name;
-	const char *origin;
-{
-	int n;
-
-	if (origin[0] == '.')
-		origin++;
-	n = strlen(name);
-	if (n == 1) {
-		if (name[0] == '.') {
-			name[0] = '\0';
-			return;
-		}
-		if (name[0] == '@') {
-			(void) strcpy(name, origin);
-			return;
-		}
-	}
-	if (n > 0) {
-		if (name[n - 1] == '.')
-			name[n - 1] = '\0';
-		else if (origin[0] != '\0') {
-			name[n] = '.';
-			(void) strcpy(name + n + 1, origin);
-		}
-	}
-}
-
-static int
-makename_ok(name, origin, class, transport, context, owner, filename, lineno)
-	char *name;
-	const char *origin;
-	int class;
-	enum transport transport;
-	enum context context;
-	const char *owner;
-	const char *filename;
-	int lineno;
-{
-	int ret = 1;
-
-	makename(name, origin);
-	if (!ns_nameok(name, class, transport, context, owner, inaddr_any)) {
-		syslog(LOG_INFO, "%s:%d: database naming error\n",
-		       filename, lineno);
-		ret = 0;
-	}
-	return (ret);
-}
-
-void
-endline(fp)
-	register FILE *fp;
-{
-	register int c;
-
-	while ((c = getc(fp)) != '\0') {
-		if (c == '\n') {
-			(void) ungetc(c,fp);
-			break;
-		} else if (c == EOF) {
-			break;
-		}
-	}
-}
-
-#define MAXPORT 1024
-#define MAXLEN 24
-
-static int
-getprotocol(fp, src)
-	FILE *fp;
-	const char *src;
-{
-	int  k;
-	char b[MAXLEN];
-
-	(void) getword(b, sizeof(b), fp, 0);
-
-	k = protocolnumber(b);
-	if (k == -1)
-		syslog(LOG_INFO, "%s: line %d: unknown protocol: %s.",
-		       src, lineno, b);
-	return(k);
-}
-
-static int
-getservices(n, data, fp, src)
-	int n;
-	char *data;
-	FILE *fp;
-	const char *src;
-{
-	int j, ch;
-	int k;
-	int maxl;
-	int bracket;
-	char b[MAXLEN];
-	char bm[MAXPORT/8];
-
-	for (j = 0; j < MAXPORT/8; j++)
-		bm[j] = 0;
-	maxl = 0;
-	bracket = 0;
-	while (getword(b, sizeof(b), fp, 0) || bracket) {
-		if (feof(fp) || ferror(fp))
-			break;
-		if (strlen(b) == 0)
-			continue;
-		if ( b[0] == '(') {
-			bracket++;
- 			continue;
-		}
-		if ( b[0] == ')') {
-			bracket = 0;
-			while ((ch = getc(fp)) != EOF && ch != '\n')
-				;
-			if (ch == '\n')
-				lineno++;
-			break;
-		}
-		k = servicenumber(b);
-		if (k == -1) {
-			syslog(LOG_INFO,
-			       "%s: line %d: Unknown service '%s'",
-			       src, lineno, b);
-			continue;
-		}
-		if ((k < MAXPORT) && (k)) {
-			bm[k/8] |= (0x80>>(k%8));
-			if (k > maxl)
-				maxl=k;
-		}
-		else {
-			syslog(LOG_INFO,
-			       "%s: line %d: port no. (%d) too big",
-			       src, lineno, k);
-			dprintf(1, (ddt,
-				    "%s: line %d: port no. (%d) too big\n",
-				    src, lineno, k));
-		}
-	}
-	if (bracket)
-		syslog(LOG_INFO, "%s: line %d: missing close paren",
-		       src, lineno);
-	maxl = maxl/8+1;
-	bcopy(bm, data+n, maxl);
-	return (maxl+n);
-}
-
-/* get_netlist(fp, netlistp, allow)
- *	get list of nets from 'fp', put on *netlistp, 'allow' controls
- *	whether hosts, nets, or both shall be accepted without warnings.
- *	(note that they are always accepted; 'allow' just controls the
- *	warnings.)
- */
-void
-get_netlist(fp, netlistp, allow, print_tag)
-	FILE *fp;
-	struct netinfo **netlistp;
-	int allow;
-	char *print_tag;
-{
-	struct netinfo *ntp, **end;
-	char buf[MAXDNAME], *maskp;
-	struct in_addr ina;
-
-	for (end = netlistp; *end; end = &(**end).next)
-		;
-	ntp = NULL;
-	dprintf(1, (ddt, "get_netlist(%s)", print_tag));
-	while (getword(buf, sizeof(buf), fp, 0)) {
-		if (strlen(buf) == 0)
-			break;
-		if ((maskp = strchr(buf, '&')) != NULL)
-			*maskp++ = '\0';
-		dprintf(1, (ddt," %s", buf));
-		if (!ntp) {
-			ntp = (struct netinfo *)malloc(sizeof(struct netinfo));
-			if (!ntp)
-				panic(errno, "malloc(netinfo)");
-		}
-		if (!inet_aton(buf, &ntp->my_addr)) {
-			syslog(LOG_INFO, "%s contains bogus element (%s)",
-			       print_tag, buf);
-			continue;
-		}
-		if (maskp) {
-			if (!inet_aton(maskp, &ina)) {
-				syslog(LOG_INFO,
-				       "%s element %s has bad mask (%s)",
-				       print_tag, buf, maskp);
-				continue;
-			}
-		} else {
-			if (allow & ALLOW_HOSTS)
-				ina.s_addr = 0xffffffff;	/* "exact" */
-			else
-				ina.s_addr = net_mask(ntp->my_addr);
-		}
-		ntp->next = NULL;
-		ntp->mask = ina.s_addr;
-		ntp->addr = ntp->my_addr.s_addr & ntp->mask;
-
-		/* Check for duplicates */
-		if (addr_on_netlist(ntp->my_addr, *netlistp))
-			continue;
-
-		if (ntp->addr != ntp->my_addr.s_addr) {
-			ina.s_addr = ntp->addr;
-			syslog(LOG_INFO,
-			       "%s element (%s) mask problem (%s)",
-				print_tag, buf, inet_ntoa(ina));
-		}
-
-		*end = ntp;
-		end = &ntp->next;
-		ntp = NULL;
-	}
-	if (ntp)
-		free((char *)ntp);
-
-	dprintf(1, (ddt, "\n"));
-#ifdef DEBUG
-	if (debug > 2)
-		for (ntp = *netlistp;  ntp != NULL;  ntp = ntp->next) {
-			fprintf(ddt, "ntp x%lx addr x%lx mask x%lx",
-				(u_long)ntp, (u_long)ntp->addr,
-				(u_long)ntp->mask);
-			fprintf(ddt, " my_addr x%lx",
-				(u_long)ntp->my_addr.s_addr);
-			fprintf(ddt, " %s", inet_ntoa(ntp->my_addr));
-			fprintf(ddt, " next x%lx\n", (u_long)ntp->next);
-		}
-#endif
-}
-
-struct netinfo *
-addr_on_netlist(addr, netlist)
-	struct in_addr	addr;
-	struct netinfo	*netlist;
-{
-	u_int32_t	a = addr.s_addr;
-	struct netinfo	*t;
-
-	for (t = netlist;  t != NULL;  t = t->next)
-		if (t->addr == (a & t->mask))
-			return t;
-	return NULL;
-}
-
-int
-position_on_netlist(addr, netlist)
-	struct in_addr	addr;
-	struct netinfo	*netlist;
-{
-	u_int32_t	a = addr.s_addr;
-	struct netinfo	*t;
-	int		position = 0;
-
-	for (t = netlist;  t != NULL;  t = t->next)
-		if (t->addr == (a & t->mask))
-			break;
-		else
-			position++;
-	return position;
-}
-
-void
-free_netlist(netlistp)
-	struct netinfo **netlistp;
-{
-	register struct netinfo *ntp, *next;
-
-	for (ntp = *netlistp;  ntp != NULL;  ntp = next) {
-		next = ntp->next;
-		free((char *)ntp);
-	}
-	*netlistp = NULL;
-}
-
-/*
- * Converts a word to a u_int32_t.  Error if any non-numeric
- * characters in the word, except leading or trailing white space.
- */
-static u_int32_t
-wordtouint32(buf)
-	char *buf;
-{
-	u_long result;
-	u_int32_t res2;
-	char *bufend;
-
-	wordtouint32_error = 0;
-	result = strtoul(buf, &bufend, 0);
-	if (bufend == buf)
-		wordtouint32_error = 1;
-	else
-		while ('\0' != *bufend) {
-			if (isspace(*bufend))
-				bufend++;
-			else {
-				wordtouint32_error = 1;
-				break;
-			}
-		}
-	/* Check for truncation between u_long and u_int32_t */
-	res2 = result;
-	if (res2 != result)		
-		wordtouint32_error = 1;
-	return (res2);
-}
-
-
-/*
- * Parse part of a date.  Set error flag if any error.
- * Don't reset the flag if there is no error.
- */
-static int 
-datepart(buf, size, min, max, errp)
-	char *buf;
-	int size, min, max, *errp;
-{
-	int result = 0;
-	int i;
-
-	for (i = 0; i < size; i++) {
-		if (!isdigit(buf[i]))
-			*errp = 1;
-		result = (result * 10) + buf[i] - '0';
-	}
-	if (result < min)
-		*errp = 1;
-	if (result > max)
-		*errp = 1;
-	return (result);
-}
-
-
-/* Convert a date in ASCII into the number of seconds since
-   1 January 1970 (GMT assumed).  Format is yyyymmddhhmmss, all
-   digits required, no spaces allowed.  */
-
-static u_int32_t
-datetosecs(cp, errp)
-	char *cp;
-	int *errp;
-{
-	struct tm time;
-	u_int32_t result;
-	int mdays, i;
-	static const int days_per_month[12] =
-		{31, 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31};
-
-	if (strlen(cp) != 14) {
-		*errp = 1;
-		return 0;
-	}
-	*errp = 0;
-
-	bzero((char *)&time, sizeof time);
-	time.tm_year  = datepart(cp +  0, 4, 1990, 9999, errp) - 1900;
-	time.tm_mon   = datepart(cp +  4, 2,   01,   12, errp) - 1;
-	time.tm_mday  = datepart(cp +  6, 2,   01,   31, errp);
-	time.tm_hour  = datepart(cp +  8, 2,   00,   23, errp);
-	time.tm_min   = datepart(cp + 10, 2,   00,   59, errp);
-	time.tm_sec   = datepart(cp + 12, 2,   00,   59, errp);
-	if (*errp)		/* Any parse errors? */
-		return (0);
-
-	/* 
-	 * OK, now because timegm() is not available in all environments,
-	 * we will do it by hand.  Roll up sleeves, curse the gods, begin!
-	 */
-
-#define	SECS_PER_DAY	((u_int32_t)24*60*60)
-#define isleap(y) ((((y) % 4) == 0 && ((y) % 100) != 0) || ((y) % 400) == 0)
-
-	result  = time.tm_sec;				/* Seconds */
-	result += time.tm_min * 60;			/* Minutes */
-	result += time.tm_hour * (60*60);		/* Hours */
-	result += (time.tm_mday - 1) * SECS_PER_DAY;	/* Days */
-	
-	/* Months are trickier.  Look without leaping, then leap */
-	mdays = 0;
-	for (i = 0; i < time.tm_mon; i++)
-		mdays += days_per_month[i];
-	result += mdays * SECS_PER_DAY;			/* Months */
-	if (time.tm_mon > 1 && isleap (1900+time.tm_year))
-		result += SECS_PER_DAY;		/* Add leapday for this year */
-
-	/* First figure years without leapdays, then add them in.  */
-	/* The loop is slow, FIXME, but simple and accurate.  */
-	result += (time.tm_year - 70) * (SECS_PER_DAY*365); /* Years */
-	for (i = 70; i < time.tm_year; i++)
-		if (isleap (1900+i)) 
-			result += SECS_PER_DAY;	/* Add leapday for prev year */
-
-	return (result);
-}
-
-
-#define MAXCHARSTRING 255
-
-static int
-getcharstring(buf, data, type, minfields, maxfields, fp, src)
-	char *buf;
-	char *data;
-	int type;
-	int minfields;
-	int maxfields;
-	FILE *fp;
-	const char *src;
-{
-	int nfield = 0, done = 0, n = 0, i;
-	char *b = buf;
-
-	do {
-		nfield++;
-		i = strlen(buf);
-#ifdef ALLOW_LONG_TXT_RDATA
-		b = buf;
-		if (type == T_TXT || type == T_X25) {
-			while (i > MAXCHARSTRING
-			       && n + MAXCHARSTRING + 1 < MAXDATA) {
-				data[n] = MAXCHARSTRING;
-				bcopy(b, data + n + 1, MAXCHARSTRING);
-				n += MAXCHARSTRING + 1;
-				b += MAXCHARSTRING;
-				i -= MAXCHARSTRING;
-			}
-		}
-#endif /* ALLOW_LONG_TXT_RDATA */
-		if (i > MAXCHARSTRING) {
-			syslog(LOG_INFO,
-			       "%s: line %d: RDATA field %d too long",
-			       src, lineno, nfield);
-			return (0);
-		}
-		if (n + i + 1 > MAXDATA) {
-			syslog(LOG_INFO,
-			       "%s: line %d: total RDATA too long",
-			       src, lineno);
-			return (0);
-		}
-		data[n] = i;
-		bcopy(b, data + n + 1, (int)i);
-		n += i + 1;
-		done = (maxfields && nfield >= maxfields);
-	} while (!done && getword(buf, MAXDATA, fp, 0));
-
-	if (nfield < minfields) {
-		syslog(LOG_INFO,
-		       "%s: line %d: expected %d RDATA fields, only saw %d",
-		       src, lineno, minfields, nfield);
-		return (0);
-	}
-
-	if (done)
-		endline(fp);
-
-	return (n);
-}
diff --git a/contrib/bind/named/db_lookup.c b/contrib/bind/named/db_lookup.c
deleted file mode 100644
index fce3ffdbc785f..0000000000000
--- a/contrib/bind/named/db_lookup.c
+++ /dev/null
@@ -1,250 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_lookup.c	4.18 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: db_lookup.c,v 8.9 1996/09/22 00:13:10 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986
- * -
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- * Table lookup routines.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <ctype.h>
-#include <stdio.h>
-#include <syslog.h>
-
-#include "named.h"
-
-/* 
- * Lookup 'name' and return a pointer to the namebuf;
- * NULL otherwise. If 'insert', insert name into tables.
- * Wildcard lookups are handled.
- */
-struct namebuf *
-nlookup(name, htpp, fname, insert)
-	const char *name;
-	struct hashbuf **htpp;
-	const char **fname;
-	int insert;
-{
-	register struct namebuf *np;
-	register const char *cp;
-	register int c;
-	register unsigned hval;
-	register struct hashbuf *htp;
-	struct namebuf *parent = NULL;
-	int escaped = 0;
-
-	htp = *htpp;
-	hval = 0;
-	*fname = "???";
-	for (cp = name; c = *cp++; ) {
-		if (!escaped && (c == '.')) {
-			parent = np = nlookup(cp, htpp, fname, insert);
-			if (np == NULL)
-				return (NULL);
-			if (*fname != cp)
-				return (np);
-			if ((htp = np->n_hash) == NULL) {
-				if (!insert) {
-					if (ns_wildcard(NAME(*np)))
-						*fname = name;
-					return (np);
-				}
-				htp = savehash((struct hashbuf *)NULL);
-				np->n_hash = htp;
-			}
-			*htpp = htp;
-			break;
-		}
-
-		/* rotate left HASHSHIFT */
-		hval = (hval << HASHSHIFT) |
-			(hval>>((sizeof(hval)*8)-HASHSHIFT));
-		hval += ((isascii(c) && isupper(c)) ? tolower(c) : c)
-			& HASHMASK;
-		if (escaped)
-			escaped = 0;
-		else if (c == '\\')
-			escaped = 1;
-	}
-	cp--;
-	/*
-	 * Lookup this label in current hash table.
-	 */
-	for (np = htp->h_tab[hval % htp->h_size];
-	     np != NULL;
-	     np = np->n_next) {
-		if (np->n_hashval == hval &&
-		    ((size_t)NAMELEN(*np) == (cp - name)) && 
-		    (strncasecmp(name, NAME(*np), cp - name) == 0)) {
-			*fname = name;
-			return (np);
-		}
-	}
-	if (!insert) {
-		/*
-		 * Look for wildcard in this hash table.
-		 * Don't use a cached "*" name as a wildcard,
-		 * only authoritative.
-		 */
-		hval = ('*' & HASHMASK) % htp->h_size;
-		for (np = htp->h_tab[hval]; np != NULL; np = np->n_next) {
-			if (ns_wildcard(NAME(*np)) &&
-			    np->n_data && np->n_data->d_zone != 0) {
-				*fname = name;
-				return (np);
-			}
-		}
-		return (parent);
-	}
-	np = savename(name, cp - name);
-	np->n_parent = parent;
-	np->n_hashval = hval;
-	hval %= htp->h_size;
-	np->n_next = htp->h_tab[hval];
-	htp->h_tab[hval] = np;
-	/* Increase hash table size. */
-	if (++htp->h_cnt > htp->h_size * 2) {
-		*htpp = savehash(htp);
-		if (parent == NULL) {
-			if (htp == hashtab) {
-				hashtab = *htpp;
-			} else {
-				fcachetab = *htpp;
-		        }
-		}
-		else
-			parent->n_hash = *htpp;
-		htp = *htpp;
-	}
-	*fname = name;
-	return (np);
-}
-
-/* struct namebuf *
- * np_parent(struct namebuf *np)
- *	Find the "parent" namebuf of np.
- *	This is tricky since the parent of "com" is "" and both are stored
- *	in the same hashbuf.
- * See also:
- *	the AXFR wart description in ns_req.c
- */
-struct namebuf *
-np_parent(np)
-	struct namebuf *np;
-{
-	struct hashbuf *htp;
-	struct namebuf *np2;
-
-	if (np->n_parent != NULL || NAME(*np)[0] == '\0')
-		return (np->n_parent);
-
-	/* Try to figure out if np is pointing into the cache or hints. */
-	/* Try the cache first. */
-	htp = hashtab;
- try_again:
-	/* Search the hash chain that np should be part of. */
-	for (np2 = htp->h_tab[np->n_hashval % htp->h_size];
-	     np2 != NULL;
-	     np2 = np2->n_next) {
-		
-		if (np == np2) {	/* found it! */
-			/* "" hashes into the first bucket */
-			for (np = htp->h_tab[0]; np ; np=np->n_next) {
-				if (NAME(*np)[0] == '\0')
-					/* found the root namebuf */
-					return (np);
-			}
-			dprintf(1, (ddt,
-				"np_parent(0x%lx) couldn't find root entry\n",
-			 	    (u_long) np));
-			return (NULL);  /* XXX shouldn't happen */
-		}
-	}
-	/* Try the hints. */
-	if (htp == hashtab) {
-		htp = fcachetab;
-		goto try_again;
-	}
-	dprintf(1, (ddt, "np_parent(0x%lx) couldn't namebuf\n", (u_long) np));
-	return (NULL);  /* XXX shouldn't happen */
-}
-
-/* int
- * match(dp, class, type)
- *	Does data record `dp' match the class and type?
- * return value:
- *	boolean
- */
-int
-match(dp, class, type)
-	register struct databuf *dp;
-	register int class, type;
-{
-	dprintf(5, (ddt, "match(0x%lx, %d, %d) %d, %d\n",
-		    (u_long)dp, class, type, dp->d_class, dp->d_type));
-	if (dp->d_class != class && class != C_ANY)
-		return (0);
-	if (dp->d_type != type && type != T_ANY)
-		return (0);
-	return (1);
-}
diff --git a/contrib/bind/named/db_reload.c b/contrib/bind/named/db_reload.c
deleted file mode 100644
index 640f5bd5e5f7d..0000000000000
--- a/contrib/bind/named/db_reload.c
+++ /dev/null
@@ -1,126 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_reload.c	4.22 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: db_reload.c,v 8.3 1996/08/27 08:33:23 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988
- * -
- * Copyright (c) 1986, 1988
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <stdio.h>
-#include <syslog.h>
-
-#include "named.h"
-
-/*
- * Flush and reload data base.
- */
-void
-db_reload()
-{
-	dprintf(3, (ddt, "reload()\n"));
-	syslog(LOG_NOTICE, "reloading nameserver\n");
-
-	qflush();
-	sqflush(NULL);
-	getnetconf();
-#ifdef FORCED_RELOAD
-	reloading = 1;     /* to force transfer if secondary and backing up */
-#endif
-	ns_init(bootfile);
-	time(&resettime);
-#ifdef FORCED_RELOAD
-	reloading = 0;
-	if (!needmaint)
-		sched_maint();
-#endif /* FORCED_RELOAD */
-
-	dprintf(1, (ddt, "Ready to answer queries.\n"));
-	syslog(LOG_NOTICE, "Ready to answer queries.\n");
-}
-
-#if 0
-/* someday we'll need this.. (untested since before 1990) */
-void
-ht_free(htp)
-	struct hashbuf *htp;
-{
-	register struct databuf *dp, *nextdp;
-	register struct namebuf *np, *nextnp;
-	struct namebuf **npp, **nppend;
-
-	npp = htp->h_tab;
-	nppend = npp + htp->h_size;
-	while (npp < nppend) {
-	    for (np = *npp++; np != NULL; np = nextnp) {
-		if (np->n_hash != NULL)
-			db_free(np->n_hash);
-		(void) free((char *)np->n_dname);
-		for (dp = np->n_data; dp != NULL; ) {
-			nextdp = dp->d_next;
-			db_free(dp);
-			dp = nextdp;
-		}
-		nextnp = np->n_next;
-		free((char *)np);
-	    }
-	}
-	(void) free((char *)htp);
-}
-#endif
diff --git a/contrib/bind/named/db_save.c b/contrib/bind/named/db_save.c
deleted file mode 100644
index 277b008532fef..0000000000000
--- a/contrib/bind/named/db_save.c
+++ /dev/null
@@ -1,195 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_save.c	4.16 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: db_save.c,v 8.6 1996/09/22 00:13:10 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986
- * -
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- * Buffer allocation and deallocation routines.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <syslog.h>
-#include <stdio.h>
-#include <errno.h>
-#include <assert.h>
-
-#include "named.h"
-
-/*
- * Allocate a name buffer & save name.
- */
-struct namebuf *
-savename(name, len)
-	const char *name;
-	int len;
-{
-	register struct namebuf *np;
-
-	assert(len >= 0 && len <= (MAXLABEL * 4));
-	np = (struct namebuf *) malloc(NAMESIZE(len));
-	if (np == NULL)
-		panic(errno, "savename: malloc");
-	bzero((char*)np, NAMESIZE(len));
-	NAMELEN(*np) = (unsigned)len;
-	bcopy(name, NAME(*np), len);
-	NAME(*np)[len] = '\0';
-	return (np);
-}
-
-/*
- * Allocate a data buffer & save data.
- */
-struct databuf *
-savedata(class, type, ttl, data, size)
-	int class, type;
-	u_int32_t ttl;
-	u_char *data;
-	int size;
-{
-	register struct databuf *dp;
-	int bytes = DATASIZE(size);
-
-	dp = (struct databuf *)malloc(bytes);
-	if (dp == NULL)
-		panic(errno, "savedata: malloc");
-	bzero((char*)dp, bytes);
-	dp->d_next = NULL;
-	dp->d_type = type;
-	dp->d_class = class;
-	dp->d_ttl = ttl;
-	dp->d_size = size;
-	dp->d_flags = 0;
-	dp->d_cred = 0;
-	dp->d_clev = 0;
-#ifdef NCACHE
-	dp->d_rcode = NOERROR;
-#endif
-#ifdef STATS
-	dp->d_ns = NULL;
-#endif
-	dp->d_nstime = 0;
-	bcopy(data, dp->d_data, dp->d_size);
-	return (dp);
-}
-
-int hashsizes[] = {	/* hashtable sizes */
-	2,
-	11,
-	113,
-	337,
-	977,
-	2053,
-	4073,
-	8011,
-	16001,
-	0
-};
-
-/*
- * Allocate a data buffer & save data.
- */
-struct hashbuf *
-savehash(oldhtp)
-	register struct hashbuf *oldhtp;
-{
-	register struct hashbuf *htp;
-	register struct namebuf *np, *nnp, **hp;
-	register int n;
-	int newsize;
-
-	if (oldhtp == NULL)
-		newsize = hashsizes[0];
-	else {
-		for (n = 0; newsize = hashsizes[n++]; )
-			if (oldhtp->h_size == newsize) {
-				newsize = hashsizes[n];
-				break;
-			}
-		if (newsize == 0)
-			newsize = oldhtp->h_size * 2 + 1;
-	}
-	dprintf(4, (ddt, "savehash GROWING to %d\n", newsize));
-	htp = (struct hashbuf *) malloc((unsigned)HASHSIZE(newsize));
-	if (htp == NULL) {
-		syslog(LOG_ERR, "savehash: %m");
-		exit(1);
-	}
-	htp->h_size = newsize;
-	bzero((char *) htp->h_tab, newsize * sizeof(struct namebuf *));
-	if (oldhtp == NULL) {
-		htp->h_cnt = 0;
-		return (htp);
-	}
-	dprintf(4, (ddt, "savehash(%#lx) cnt=%d, sz=%d, newsz=%d\n",
-		    (u_long)oldhtp, oldhtp->h_cnt, oldhtp->h_size, newsize));
-	htp->h_cnt = oldhtp->h_cnt;
-	for (n = 0; n < oldhtp->h_size; n++) {
-		for (np = oldhtp->h_tab[n]; np != NULL; np = nnp) {
-			nnp = np->n_next;
-			hp = &htp->h_tab[np->n_hashval % htp->h_size];
-			np->n_next = *hp;
-			*hp = np;
-		}
-	}
-	free((char *) oldhtp);
-	return (htp);
-}
diff --git a/contrib/bind/named/db_secure.c b/contrib/bind/named/db_secure.c
deleted file mode 100644
index db577089f288c..0000000000000
--- a/contrib/bind/named/db_secure.c
+++ /dev/null
@@ -1,153 +0,0 @@
-#ifndef LINT
-static char rcsid[] = "$Id: db_secure.c,v 8.7 1997/06/01 20:34:34 vixie Exp $";
-#endif
-
-/* this file was contributed by Gregory Neil Shapiro of WPI in August 1993 */
-
-#include <stdio.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <syslog.h>
-#include <errno.h>
-
-#include "named.h"
-
-#ifdef SECURE_ZONES
-
-#ifndef SECURE_ZONE_RR
-#define SECURE_ZONE_RR "secure_zone"
-#endif
-#ifndef MASK_SEP
-#define MASK_SEP ':'
-#endif
-
-int
-build_secure_netlist(zp)
-	struct zoneinfo *zp;
-{
-	struct netinfo *ntp = NULL, **netlistp, **end;
-	char buf[MAXDNAME];
-	struct hashbuf *htp;
-	struct namebuf *snp;
-	struct databuf *dp;
-	const char *fname;
-	char *dname, dnbuf[MAXDNAME];
-	int errs = 0, securezone = 0;
-
-	if (zp->secure_nets) {
-		free_netlist(&zp->secure_nets);
-	}
-	netlistp = &zp->secure_nets;
-	end = netlistp;
-	strcat(strcat(strcpy(dnbuf, SECURE_ZONE_RR), "."), zp->z_origin);
-
-	dname = dnbuf;
-	htp = hashtab;
-	if ((snp = nlookup(dname, &htp, &fname, 0)) == NULL) {
-		dprintf(1, (ddt,
-			    "build_secure_netlist(%s): FAIL on nlookup %s\n",
-			    zp->z_origin, dname));
-		zp->secure_nets=NULL;
-		return(0);
-	}
-	/* A parent's RR's aren't valid */
-	if (strcasecmp(NAME(*snp), SECURE_ZONE_RR)) {
-	  zp->secure_nets=NULL;
-	  return(0);
-	}
-	/* Collect secure nets into secure_nets */
-	for (dp = snp->n_data; dp != NULL; dp = dp->d_next) {
-		char *maskptr = NULL;
-		if (!match(dp, zp->z_class, T_TXT)) {
-			continue;
-		}
-		bzero(buf, sizeof(buf));
-		bcopy(dp->d_data+1, buf, dp->d_size-1);
-		maskptr=strchr(buf, MASK_SEP);
-		if (maskptr) {
-			*maskptr++ = 0;
-		}
-		dprintf(3, (ddt,
-			    "build_secure_netlist(%s): Found secure zone %s\n",
-			    zp->z_origin, buf));
-		if (ntp == NULL) {
-			ntp = (struct netinfo *)malloc(sizeof(struct netinfo));
-			if (!ntp)
-				panic(errno, "malloc(netinfo)");
-		}
-		if (!inet_aton(buf, &ntp->my_addr)) {
-			syslog(LOG_INFO,
-			       "build_secure_netlist (%s): Bad address: %s", 
-			       zp->z_origin, buf);
-			errs++;
-			continue;	
-		}
-		if (maskptr && *maskptr) {
-			if (*maskptr == 'h' || *maskptr == 'H') {
-				ntp->mask = (u_int32_t)-1;
-			} else {
-                              if (!inet_aton(maskptr,
-					     (struct in_addr *)&ntp->mask)) {
-					dprintf(1, (ddt,
-				   "build_secure_netlist (%s): Bad mask: %s\n",
-						    zp->z_origin, maskptr));
-					syslog(LOG_INFO,
-				     "build_secure_netlist (%s): Bad mask: %s",
-					       zp->z_origin, maskptr);
-					errs++;
-					continue;
-				}	
-			}    
-		} else {
-			ntp->mask = net_mask(ntp->my_addr);
-		}
-		if (ntp->my_addr.s_addr & ~(ntp->mask)) {
-			syslog(LOG_INFO, 
-		   "build_secure_netlist (%s): addr (%s) is not in mask (%#lx)",
-			       zp->z_origin,
-			       inet_ntoa(ntp->my_addr),
-			       (u_long)ntp->mask);
-			errs++;
-		}
-		ntp->next = NULL;
-		ntp->addr = ntp->my_addr.s_addr & ntp->mask;
-
-		/* Check for duplicates */
-		if (addr_on_netlist(ntp->my_addr, *netlistp)) {
-			syslog(LOG_INFO, 
-			   "build_secure_netlist (%s): duplicate address %s\n",
-			       zp->z_origin, inet_ntoa(ntp->my_addr));
-			errs++;
-			continue;
-		}
-		*end = ntp;
-		end = &ntp->next;
-		ntp = NULL;
-		securezone++;
-	}
-	if (ntp) {
-		free((char *)ntp);
-	}
-	if (!securezone) {
-		zp->secure_nets=NULL;
-	}
-
-#ifdef DEBUG
-	if (debug > 1) {
-		for (ntp = *netlistp;  ntp != NULL;  ntp = ntp->next) {
-			fprintf(ddt, "ntp x%lx addr x%lx mask x%lx",
-				(u_long)ntp, (u_long)ntp->addr,
-				(u_long)ntp->mask);
-			fprintf(ddt, " my_addr %#lx",
-				(u_long)ntp->my_addr.s_addr);
-			fprintf(ddt, " %s", inet_ntoa(ntp->my_addr));
-			fprintf(ddt, " next x%lx\n", (u_long)ntp->next);
-		}
-	}
-#endif
-	return (errs);
-}
-#endif /*SECURE_ZONES*/
diff --git a/contrib/bind/named/db_update.c b/contrib/bind/named/db_update.c
deleted file mode 100644
index b74ac5abcb67a..0000000000000
--- a/contrib/bind/named/db_update.c
+++ /dev/null
@@ -1,815 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)db_update.c	4.28 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: db_update.c,v 8.19 1997/06/01 20:34:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1990
- * -
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <stdio.h>
-#include <syslog.h>
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#include "named.h"
-
-/* int
- * isRefByNS(name, htp)
- *	recurse through all of `htp' looking for NS RR's that refer to `name'.
- * returns:
- *	nonzero if at least one such NS RR exists
- * cautions:
- *	this is very expensive; probably you only want to use on fcachetab.
- */
-static int
-isRefByNS(name, htp)
-	char name[];
-	struct hashbuf *htp;
-{
-	register struct namebuf *np;
-	register struct databuf *dp;
-
-	for (np = htp->h_tab[0];  np != NULL;  np = np->n_next) {
-		for (dp = np->n_data;  dp != NULL;  dp = dp->d_next) {
-			if ((dp->d_class == C_ANY ||
-			     dp->d_class == C_IN ||
-			     dp->d_class == C_HS) &&
-			    dp->d_type == T_NS &&
-#ifdef NCACHE
-			    !dp->d_rcode &&
-#endif
-			    !strcasecmp(name, (char *)dp->d_data)) {
-				return (1);
-			}
-		}
-		if (np->n_hash && isRefByNS(name, np->n_hash))
-			return (1);
-	}
-	return (0);
-}
-
-
-/* int
- * findMyZone(struct namebuf *np, int class)
- *	surf the zone cuts and find this zone the hard way
- * return value:
- *	zone number or DB_Z_CACHE if it's outside a zone
- * interesting cases:
- *	    DEC.COM SOA (primary)
- *	CRL.DEC.COM NS  (in primary)
- *		if you start at CRL.. here, you find the DEC.COM zone
- *		if you start at NS.CRL.. here, you're in the cache
- *	    DEC.COM SOA (primary)
- *	CRL.DEC.COM NS  (in primary)
- *	CRL.DEC.COM SOA (secondary)
- *	CRL.DEC.COM NS  (in secondary)
- *		if you start at CRL.. here, you find the CRL.DEC.COM zone
- *		if you start at NS.CRL.. here, you're in the CRL.. zone
- */
-int
-findMyZone(np, class)
-	struct namebuf *np;
-	register int class;
-{
-	for (; np; np = np_parent(np)) {
-		register struct databuf *dp;
-
-		/* if we encounter an SOA, we're in its zone (which can be
-		 * the cache or an authoritative zone, depending).
-		 */
-		for (dp = np->n_data; dp; dp = dp->d_next)
-			if (match(dp, class, T_SOA))
-				return (dp->d_zone);
-
-		/* if we find an NS at some node without having seen an SOA
-		 * (above), then we're out in the cache somewhere.
-		 */
-		for (dp = np->n_data; dp; dp = dp->d_next)
-			if (match(dp, class, T_NS))
-				return (DB_Z_CACHE);
-	}
-
-	/* getting all the way to the root without finding an NS or SOA
-	 * probably means that we are in deep dip, but we'll treat it as
-	 * being in the cache.  (XXX?)
-	 */
-	return (DB_Z_CACHE);
-}
-
-
-#ifdef NO_GLUE
-#define ISVALIDGLUE(xdp) ((xdp)->d_type == T_NS || (xdp)->d_type == T_A \
-			  || (xdp)->d_type == T_AAAA)
-#else
-#define ISVALIDGLUE(xdp) (1)
-#endif /*NO_GLUE*/
-
-
-/* int
- * db_update(name, odp, newdp, flags, htp)
- *	update data base node at `name'.  `flags' controls the action.
- * side effects:
- *	inverse query tables modified, if we're using them.
- * return value:
- *	OK - success
- *	NONAME - name doesn't exist
- *	AUTH - you can't do that
- *	DATAEXISTS - there's something there and DB_NODATA was specified
- *	NODATA - there's no data, and (DB_DELETE or DB_MEXIST) was spec'd
- *
- *	Policy: How to add data if one more RR is -ve data
- *
- *	NEND	NOERROR_NODATA
- *	NXD	NXDOMAIN
- *
- *				match
- *				old
- *			Data	NEND	NXD
- *		Data	Merge	Data	Data
- *	new	NEND	NEND	NEND	NEND
- *		NXD	NXD	NXD	NXD
- *
- *			     no match
- *				old
- *			Data	NEND	NXD
- *		Data	Merge	Merge	Data
- *	new	NEND	Merge	Merge	NEND
- *		NXD	NXD	NXD	NXD
- *
- */
-/* XXX:	this code calls nlookup, which can create namebuf's.  if this code
- *	has to exit with a fatal error, it should scan from the new np upward
- *	and for each node which has no children and no data it should remove
- *	the namebuf.  design notes: (1) there's no harm in doing this even if
- *	success occurred; (2) stopping on the first nonremovable np is optimal;
- *	the code for removal should be taken out of remove_zone() and made
- *	general enough for this use, and for remove_zone()'s continued use.
- *							vix, 21jul94
- */
-int
-db_update(name, odp, newdp, flags, htp)
-	char name[];
-	struct databuf *odp, *newdp;
-	int flags;
-	struct hashbuf *htp;
-{
-	register struct databuf *dp, *pdp;
-	register struct namebuf *np;
-	int zn, isHintNS;
-	int check_ttl = 0;
-	const char *fname;
-
-	dprintf(3, (ddt, "db_update(%s, 0x%lx, 0x%lx, 0%o, 0x%lx)%s\n",
-		    name, (u_long)odp, (u_long)newdp, flags, (u_long)htp,
-		    (odp && (odp->d_flags&DB_F_HINT)) ? " hint":"" ));
-	np = nlookup(name, &htp, &fname, newdp != NULL);
-	if (np == NULL || fname != name)
-		return (NONAME);
-	
-	if (newdp && zones[newdp->d_zone].z_type == Z_PRIMARY)
-		check_ttl = 1;
-
-	/* don't let nonauthoritative updates write in authority zones */
-	if (newdp && ((zn = findMyZone(np, newdp->d_class)) != DB_Z_CACHE) &&
-#ifdef STUBS
-			    (zones[zn].z_type != Z_STUB) &&
-#endif
-			    (flags & DB_NOTAUTH)) {
-		int foundRR = 0;
-
-		/*
-		 * Don't generate the warning if the update
-		 * would have been harmless (identical data).
-		 */
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!db_cmp(dp, newdp)) {
-				foundRR++;
-				break;
-			}
-		}
-		if (!foundRR)
-			dprintf(5, (ddt,
-				    "[%s].%d update? to auth zone \"%s\" (%s)",
-				    inet_ntoa(from_addr.sin_addr),
-				    ntohs(from_addr.sin_port),
-				    zones[zn].z_origin,
-				    name));
-		return (AUTH);
-	}
-
-	if (newdp && zn && !(flags & DB_NOTAUTH)) {
-		if (db_getclev(zones[zn].z_origin) > newdp->d_clev) {
-			dprintf(5,(ddt, "attempted update child zone %s, %s\n",
-				zones[zn].z_origin, name));
-			return(AUTH);
-		}
-	}
-
-	/* some special checks for root NS' A RR's */
-	isHintNS = isRefByNS(name, fcachetab);
-#ifdef DEPRECATED
-	if (newdp && isHintNS && newdp->d_type == T_A) {
-		/* upgrade credibility of additional data for rootsrv addrs */
-		if (newdp->d_cred == DB_C_ADDITIONAL) {
-			dprintf(3, (ddt,
-				    "upgrading credibility for A RR (%s)\n",
-				    name));
-			/* XXX:	should copy NS RR's, but we really just want
-			 *	to prevent deprecation later so this will do.
-			 */
-			newdp->d_cred = DB_C_ANSWER;
-			newdp->d_clev = 0;
-		}
-	}
-#endif
-
-        /* Reflect certain updates in hint cache also... */
-	/* Don't stick data we are authoritative for in hints. */
-        if (!(flags & DB_NOHINTS) &&
-	    (flags & DB_PRIMING) &&
-	    (odp != NULL) &&
-	    (htp != fcachetab) &&
-	    (odp->d_zone <= 0) &&
-	    !(odp->d_flags & DB_F_HINT) &&
-#ifdef NCACHE
-	    (!newdp || !newdp->d_rcode) &&
-#endif
-            ((name[0] == '\0' && odp->d_type == T_NS) ||
-	     (odp->d_type == T_A && isHintNS)
-	     )
-	    )
-        {
-		dprintf(3, (ddt, "db_update: hint '%s' %d\n",
-			    name, odp->d_ttl));
-		dp = savedata(odp->d_class, odp->d_type, odp->d_ttl,
-			odp->d_data, odp->d_size);
-		dp->d_zone = DB_Z_CACHE;
-		dp->d_flags = DB_F_HINT;
-		dp->d_cred = DB_C_CACHE;
-		dp->d_clev = 0;
-		if (db_update(name,
-			      dp, dp,
-			      (flags|DB_NOHINTS),
-			      fcachetab)
-		    != OK) {
-			dprintf(3, (ddt, "db_update: hint %lx freed\n",
-				    (u_long)dp));
-			db_free(dp);
-		}
-        }
-
-	if (odp != NULL) {
-		int foundRR = 0;
-
-		pdp = NULL;
-		for (dp = np->n_data; dp != NULL; ) {
-			if (!match(dp, odp->d_class, odp->d_type)) {
-				/* {class,type} doesn't match.  these are
-				 * the aggregation cases.
-				 */
-				/* Check that CNAMEs are only accompanied by
-				 * Secure DNS RR's (KEY, SIG, and NXT).
-				 */
-				if (((dp->d_type == T_CNAME &&
-				      odp->d_type != T_KEY &&
-				      odp->d_type != T_SIG &&
-				      odp->d_type != T_NXT) ||
-				     (odp->d_type == T_CNAME &&
-				      dp->d_type != T_KEY &&
-				      dp->d_type != T_SIG &&
-				      dp->d_type != T_NXT)) &&
-				    odp->d_class == dp->d_class &&
-#ifdef NCACHE
-				    /* neither the odp nor the new dp are
-				     * negatively cached records...
-				     */
-				    !dp->d_rcode &&
-				    !odp->d_rcode &&
-#endif /*NCACHE*/
-				    zones[odp->d_zone].z_type != Z_CACHE) {
-					syslog(LOG_INFO,
-				     "%s has CNAME and other data (invalid)\n",
-					    name);
-					goto skip;
-				}
-				if (!newdp || newdp->d_class != dp->d_class)
-					goto skip;
-
-				/* if the new data is authorative 
-				 * remove any data for this domain with
-				 * the same class that isn't as credable
-				 */
-				if (newdp->d_cred == DB_C_ZONE && 
-				    newdp->d_cred > dp->d_cred)
-					/* better credibility and the old datum
-					 * was not from a zone file.  remove
-					 * the old datum.
-					 */
-					goto delete;
-
-#if 0	/* caught by findMyZone() now. */
-				/* if we have authoritative data for a
-				 * node, don't add in other data.
-				 */
-				if (dp->d_cred == DB_C_ZONE &&
-				    newdp->d_cred < dp->d_cred)
-					return (AUTH);
-#endif
-
-				/* if the new data is authoritative but
-				 * but isn't as credible, reject it.
-				 */
-				if (newdp->d_cred == DB_C_ZONE && 
-				    dp->d_cred == DB_C_ZONE) {
-					/* Both records are from a zone file.
-					 * If their credibility levels differ,
-					 * we're dealing with a zone cut.  The
-					 * record with lower clev is from the
-					 * upper zone's file and is therefore 
-					 * glue.
-					 */
-					if (newdp->d_clev < dp->d_clev) {
-					    if (!ISVALIDGLUE(newdp)) {
-						syslog(LOG_INFO,
-		"domain %s %s record in zone %s should be in zone %s, ignored",
-						 name, p_type(newdp->d_type),
-						 zones[newdp->d_zone].z_origin,
-						 zones[dp->d_zone].z_origin);
-					    }
-					    return (AUTH);
-					}
-					if (newdp->d_clev > dp->d_clev) {
-					    if (!ISVALIDGLUE(dp)) {
-						syslog(LOG_INFO,
-		"domain %s %s record in zone %s should be in zone %s, deleted",
-						 name, p_type(dp->d_type),
-						 zones[dp->d_zone].z_origin,
-						 zones[newdp->d_zone].z_origin);
-					    }
-					    goto delete;
-					}
-				}
-#ifdef NCACHE
-				/* process NXDOMAIN */
-				/* policy */
-				if (newdp->d_rcode == NXDOMAIN) {
-					if (dp->d_cred < DB_C_AUTH)
-						goto delete;
-					else
-						return (DATAEXISTS);
-				}
-
-				if (dp->d_rcode == NXDOMAIN)
-					goto delete;
-
-				/* process NOERROR_NODATA */
-				/* NO PROCESSING REQUIRED */
-#endif /*NCACHE*/
-				goto skip;
-			} /*if {class,type} did not match*/
-
-			/* {type,class} did match.  this is the replace case.
-			 */
-			dprintf(5, (ddt,
-			   "db_update: flags = %#x, sizes = %d, %d (cmp %d)\n",
-				    flags, odp->d_size, dp->d_size,
-				    db_cmp(dp, odp)));
-			if (newdp) {
-				dprintf(4, (ddt,
-	     "credibility for %s is %d(%d) from [%s].%d, is %d(%d) in cache\n",
-					    *name? name : ".",
-					    newdp->d_cred,
-					    newdp->d_clev,
-					    inet_ntoa(from_addr.sin_addr),
-					    ntohs(from_addr.sin_port),
-					    dp->d_cred,
-					    dp->d_clev));
-				if (newdp->d_cred > dp->d_cred) {
-					/* better credibility.
-					 * remove the old datum.
-					 */
-					goto delete;
-				}
-				if (newdp->d_cred < dp->d_cred) {
-					/* credibility is worse.  ignore it. */
-					return (AUTH);
-				}
-				if (newdp->d_cred == DB_C_ZONE &&
-				    dp->d_cred == DB_C_ZONE ) {
-					/* Both records are from a zone file.
-					 * If their credibility levels differ,
-					 * we're dealing with a zone cut.  The
-					 * record with lower clev is from the
-					 * upper zone's file and is therefore 
-					 * glue.
-					 */
-
-					/* XXX - Tricky situation here is you
-					 * have 2 zones a.b.c and sub.a.b.c
-					 * being served by the same server.
-					 * named will send NS records for
-					 * sub.a.b.c during zone transfer of
-					 * a.b.c zone.  If we're secondary for
-					 * both zones, and we reload zone
-					 * a.b.c, we'll get the NS records
-					 * (and possibly A records to go with
-					 * them?) for sub.a.b.c as part of the
-					 * a.b.c zone transfer.  But we've
-					 * already got a more credible record
-					 * from the sub.a.b.c zone.  So we want
-					 * to ignore the new record, but we
-					 * shouldn't syslog because there's
-					 * nothing the user can do to prevent
-					 * the situation.  Perhaps we should
-					 * only complain when we are primary?
-	 				 */
-
-					if (newdp->d_clev < dp->d_clev) {
-					    if (!ISVALIDGLUE(newdp)) {
-						syslog(LOG_INFO,
-		"domain %s %s record in zone %s should be in zone %s, ignored",
-						 name, p_type(newdp->d_type),
-						 zones[newdp->d_zone].z_origin,
-						 zones[dp->d_zone].z_origin);
-					    }
-					    return (AUTH);
-					}
-					if (newdp->d_clev > dp->d_clev) {
-					    if (!ISVALIDGLUE(dp)) {
-						syslog(LOG_INFO,
-		"domain %s %s record in zone %s should be in zone %s, deleted",
-						 name, p_type(dp->d_type),
-						 zones[dp->d_zone].z_origin,
-						 zones[newdp->d_zone].z_origin);
-					    }
-					    goto delete;
-					}
-				}
-
-				/* credibility is the same.
-				 * let it aggregate in the normal way.
-				 */
-#ifdef NCACHE
-				/*
-				 * if the new or old RR is -ve, delete old.
-				 */
-				if (dp->d_rcode || newdp->d_rcode) {
-					/* XXX: how can a zone rr be neg? */
-					if (dp->d_cred != DB_C_ZONE)
-						goto delete;
-					else
-						return (DATAEXISTS);
-				}
-#endif
-				/*
-				 *  Some RR types should not be aggregated.
-				 */
-				if (dp->d_type == T_SOA)
-					goto delete;
-				if (dp->d_type == T_WKS &&
-				    !bcmp(dp->d_data, newdp->d_data,
-					  INT32SZ + sizeof(u_char)))
-					goto delete;
-				if (check_ttl) {
-					if (newdp->d_ttl != dp->d_ttl) 
-					syslog(LOG_WARNING, 
-					"%s %s %s differing ttls: corrected",
-						name[0]?name:".", 
-						p_class(dp->d_class),
-						p_type(dp->d_type));
-					if (newdp->d_ttl > dp->d_ttl) {
-						newdp->d_ttl = dp->d_ttl;
-					} else {
-						dp->d_ttl = newdp->d_ttl;
-					} 
-				}
-			}
-			if ((flags & DB_NODATA) && !db_cmp(dp, odp)) {
-				/* refresh ttl if cache entry */
-				if (dp->d_zone == 0) {
-					if (odp->d_zone != 0) {	/* XXX */
-						/* changing cache->auth */
-						dp->d_zone = odp->d_zone;
-						dp->d_ttl = odp->d_ttl;
-						dprintf(4, (ddt,
-				    "db_update: cache entry now in auth zone\n"
-							    ));
-						return (DATAEXISTS);
-					}
-					fixttl(odp);
-					if (odp->d_ttl > dp->d_ttl)
-						dp->d_ttl = odp->d_ttl;
-					dprintf(3, (ddt,
-					       "db_update: new ttl %ld +%ld\n",
-						    (u_long)dp->d_ttl,
-						    (u_long)
-						     (dp->d_ttl - tt.tv_sec)));
-				}
-				return (DATAEXISTS);
-			}
-			/*
-			 * If the old databuf has some data, check that the
-			 * data matches that in the new databuf (so UPDATED
-			 * will delete only the matching RR)
-			 */
-			if (odp->d_size > 0)
-				if (db_cmp(dp, odp))
-					goto skip;
-			if (odp->d_clev < dp->d_clev)
-				goto skip;
-			if (odp->d_cred < dp->d_cred)
-				goto skip;
-			foundRR = 1;
-			if (flags & DB_DELETE) {
- delete:			dp = rm_datum(dp, np, pdp);
-			} else {
- skip:				pdp = dp;
-				dp = dp->d_next;
-			}
-		}
-                if (!foundRR) {
-			if (flags & DB_DELETE)
-				return (NODATA);
-			if (flags & DB_MEXIST)
-				return (NODATA);
-		}
-	}
-	if (newdp == NULL)
-		return (OK);
-	/* XXX:	empty nodes bypass credibility checks above; should check
-	 *	response source address here if flags&NOTAUTH.
-	 */
-	fixttl(newdp);
-	dprintf(3, (ddt, "db_update: adding%s %lx\n",
-		    (newdp->d_flags&DB_F_HINT) ? " hint":"", (u_long)newdp));
-#ifdef INVQ
-	if (!(newdp->d_flags & DB_F_HINT))
-		addinv(np, newdp);	/* modify inverse query tables */
-#endif
-
-#ifdef STATS
-	if (!newdp->d_zone && !(newdp->d_flags & DB_F_HINT))
-		newdp->d_ns = nameserFind(from_addr.sin_addr, NS_F_INSERT);
-#endif
-
-	/* Add to end of list, generally preserving order */
-	newdp->d_next = NULL;
-	if ((dp = np->n_data) == NULL)  {
-		newdp->d_rcnt = 1;
-		if (newdp->d_flags & DB_F_ACTIVE)
-			panic(-1, "db_update: DB_F_ACTIVE set");
-		newdp->d_flags |= DB_F_ACTIVE;
-		np->n_data = newdp;
-		return (OK);
-	}
-	while (dp->d_next != NULL) {
-		if ((flags & DB_NODATA) && !db_cmp(dp, newdp))
-			return (DATAEXISTS);
-		dp = dp->d_next;
-	}
-	if ((flags & DB_NODATA) && !db_cmp(dp, newdp))
-		return (DATAEXISTS);
-	newdp->d_rcnt = 1;
-	if (newdp->d_flags & DB_F_ACTIVE)
-		panic(-1, "db_update: DB_F_ACTIVE set");
-	newdp->d_flags |= DB_F_ACTIVE;
-	dp->d_next = newdp;
-	return (OK);
-}
-
-void
-fixttl(dp)
-	register struct databuf *dp;
-{
-	if (dp->d_zone == 0 && !(dp->d_flags & DB_F_HINT)) {
-		if (dp->d_ttl <= tt.tv_sec)
-			return;
-		else if (dp->d_ttl < tt.tv_sec+min_cache_ttl)
-			dp->d_ttl = tt.tv_sec+min_cache_ttl;
-		else if (dp->d_ttl > tt.tv_sec+max_cache_ttl)
-			dp->d_ttl = tt.tv_sec+max_cache_ttl;
-	}
-	return;
-}
-
-/*
- * Compare type, class and data from databufs for equivalence.
- * Must be case insensitive for some domain names.
- * Return 0 if equivalent, nonzero otherwise.
- */
-int
-db_cmp(dp1, dp2)
-	register struct databuf *dp1, *dp2;
-{
-	register u_char *cp1, *cp2;
-	int len, len2;
-
-	if (dp1->d_type != dp2->d_type || dp1->d_class != dp2->d_class)
-		return (1);
-	if (dp1->d_size != dp2->d_size)
-		return (1);
-#ifdef NCACHE
-	if (dp1->d_rcode && dp2->d_rcode)
-		return ((dp1->d_rcode == dp1->d_rcode)?0:1);
-	if (dp1->d_rcode || dp2->d_rcode)
-		return (1);
-#endif
-
-	switch (dp1->d_type) {
-
-	case T_SIG:
-	case T_KEY:
-	case T_A:
-	case T_UID:
-	case T_GID:
-	case T_WKS:
-	case T_NULL:
-	case T_NSAP:
-	case T_AAAA:
-	case T_LOC:
-#ifdef ALLOW_T_UNSPEC
-        case T_UNSPEC:
-#endif
-		return (bcmp(dp1->d_data, dp2->d_data, dp1->d_size));
-
-	case T_NS:
-	case T_CNAME:
-	case T_PTR:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_UINFO:
-		return (strcasecmp((char *)dp1->d_data, (char *)dp2->d_data));
-
-	case T_HINFO:
-	case T_ISDN:
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-		len = *cp1;
-		len2 = *cp2;
-		if (len != len2)
-                      return (1);
-		if (strncasecmp((char *)++cp1, (char *)++cp2, len))
-			return (1);
-		cp1 += len;
-		cp2 += len;
-		len = *cp1;
-		len2 = *cp2;
-		if (len != len2)
-                      return (1);
-		return (strncasecmp((char *)++cp1, (char *)++cp2, len));
-
-	case T_SOA:
-	case T_MINFO:
-	case T_RP:
-		if (strcasecmp((char *)dp1->d_data, (char *)dp2->d_data))
-			return (1);
-		cp1 = dp1->d_data + strlen((char *)dp1->d_data) + 1;
-		cp2 = dp2->d_data + strlen((char *)dp2->d_data) + 1;
-		if (dp1->d_type != T_SOA)
-			return (strcasecmp((char *)cp1, (char *)cp2));
-		if (strcasecmp((char *)cp1, (char *)cp2))
-			return (1);
-		cp1 += strlen((char *)cp1) + 1;
-		cp2 += strlen((char *)cp2) + 1;
-		return (bcmp(cp1, cp2, INT32SZ * 5));
-	
-	case T_NAPTR: {
-		int t1,t2;
-
-		if (dp1->d_size != dp2->d_size)
-			return (1);
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-
-		/* Order */
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)	
-			return (1);
-
-		/* Preference */
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)	
-			return (1);
-
-		/* Flags */
-		t1 = *cp1++; t2 = *cp2++;
-		if (t1 != t2 || bcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1; cp2 += t2;
-
-		/* Services */
-		t1 = *cp1++; t2 = *cp2++;
-		if (t1 != t2 || bcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1; cp2 += t2;
-
-		/* Regexp */
-		t1 = *cp1++; t2 = *cp2++;
-		if (t1 != t2 || bcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1; cp2 += t2;
-
-		/* Replacement */
-		t1 = strlen((char *)cp1); t2 = strlen((char *)cp2);
-		if (t1 != t2 || bcmp(cp1, cp2, t1))
-			return (1);
-		cp1 += t1 + 1; cp2 += t2 + 1;
-
-		/* they all checked out! */
-		return (0);
-	    }
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)	/* cmp prio */
-			return (1);
-		if (dp1->d_type == T_SRV) {
-			if (*cp1++ != *cp2++ || *cp1++ != *cp2++) /* weight */
-				return (1);
-			if (*cp1++ != *cp2++ || *cp1++ != *cp2++) /* port */
-				return (1);
-		}
-		return (strcasecmp((char *)cp1, (char *)cp2));
-
-	case T_PX:
-		cp1 = dp1->d_data;
-		cp2 = dp2->d_data;
-		if (*cp1++ != *cp2++ || *cp1++ != *cp2++)       /* cmp prio */
-			return (1);
-		if (strcasecmp((char *)cp1, (char *)cp2))
-			return (1);
-		cp1 += strlen((char *)cp1) + 1;
-		cp2 += strlen((char *)cp2) + 1;
-		return (strcasecmp((char *)cp1, (char *)cp2));
-	
-	case T_TXT:
-	case T_X25:
-		if (dp1->d_size != dp2->d_size)
-			return (1);
-		return (bcmp(dp1->d_data, dp2->d_data, dp1->d_size));
-
-	default:
-		return (1);
-	}
-}
diff --git a/contrib/bind/named/dmalloc.c b/contrib/bind/named/dmalloc.c
deleted file mode 100644
index 03593e2c1c261..0000000000000
--- a/contrib/bind/named/dmalloc.c
+++ /dev/null
@@ -1,315 +0,0 @@
-/* dmalloc - debugging layer on top of malloc
- * vix 25mar92 [fixed bug in round-up calcs in alloc()]
- * vix 24mar92 [added size calcs, improved printout]
- * vix 22mar92 [original work]
- *
- * $Id: dmalloc.c,v 8.3 1996/05/17 09:10:46 vixie Exp $
- */
-
-/*
- * ++Copyright++ 1993
- * -
- * Copyright (c) 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <stdio.h>
-#include <signal.h>
-#include "../conf/portability.h"
-#include "../conf/options.h"
-
-#ifdef DMALLOC
-
-#define TRUE 1
-#define FALSE 0
-typedef	unsigned bool;
-
-#define	MAX_MEMORY	65536	/* must fit in typeof(datum.size) */
-#define	MAX_CALLERS	256	/* must be **2 */
-
-typedef struct caller {
-	struct caller	*next;
-	struct filenam	*file;
-	struct calltab	*frees;
-	unsigned	line;
-	unsigned	calls;
-	unsigned	blocks;
-	unsigned	bytes;
-} caller;
-
-typedef	struct filenam {
-	struct filenam	*next;
-	char		*name;
-} filenam;
-
-typedef	struct calltab {
-	struct caller	*callers[MAX_CALLERS];
-} calltab;
-
-typedef struct datum {
-	unsigned	size;		/* size of malloc'd item */
-	unsigned	caller;		/* offset into memory[] */
-	/* user data follows */
-} datum;
-
-static	char	memory[MAX_MEMORY];
-static	char	*nextmem = memory;
-static	char	*alloc(size) unsigned size; {
-			char *thismem = nextmem;
-			int oddness = (size % sizeof(char*));
-			if (oddness)
-				size += (sizeof(char*) - oddness);
-			nextmem += size;
-			if (nextmem >= &memory[MAX_MEMORY]) {
-				fprintf(stderr, "dmalloc.alloc: out of mem\n");
-				kill(0, SIGBUS);
-			}
-			return thismem;
-		}
-
-static	filenam	*Files;
-static	calltab	Callers;
-
-/*--------------------------------------------------- imports
- */
-
-#undef	malloc
-#undef	calloc
-#undef	realloc
-#undef	free
-
-char	*malloc(), *calloc(), *realloc();
-
-#if	defined(sun)
-int	free();
-#else
-void	free();
-#endif
-
-/*--------------------------------------------------- private
- */
-
-#define	STR_EQ(l,r)	(((l)[0] == (r)[0]) && !strcmp(l, r))
-
-static filenam *
-findFile(file, addflag)
-	char *file;
-	bool addflag;
-{
-	filenam	*f;
-
-	for (f = Files;  f;  f = f->next)
-		if (STR_EQ(file, f->name))
-			return f;
-	if (!addflag)
-		return NULL;
-	f = (filenam*) alloc(sizeof(filenam));
-	f->next = Files;
-	Files = f;
-	f->name = alloc(strlen(file) + 1);
-	strcpy(f->name, file);
-	return f;
-}
-
-static caller *
-findCaller(ctab, file, line, addflag)
-	calltab *ctab;
-	char *file;
-	unsigned line;
-	bool addflag;
-{
-	unsigned hash = line & (MAX_CALLERS - 1);
-	caller *c;
-
-	for (c = ctab->callers[hash];  c;  c = c->next)
-		if ((c->line == line) && STR_EQ(c->file->name, file))
-			return c;
-	if (!addflag)
-		return NULL;
-	c = (caller*) alloc(sizeof(caller));
-	c->next = ctab->callers[hash];
-	c->file = findFile(file, TRUE);
-	c->line = line;
-	c->calls = 0;
-	c->frees = (calltab *) alloc(sizeof(calltab));
-	ctab->callers[hash] = c;
-	return c;
-}
-
-/*--------------------------------------------------- public
- */
-
-char *
-dmalloc(file, line, size)
-	char *file;
-	unsigned line;
-	unsigned size;
-{
-	caller *c;
-	datum *d;
-
-	c = findCaller(&Callers, file, line, TRUE);
-	d = (datum *) malloc(sizeof(datum) + size);
-	if (!d)
-		return (NULL);
-	d->size = size;
-	d->caller = ((char *)c) - memory;
-	c->calls++;
-	c->blocks++;
-	c->bytes += size;
-	return (char *) (d+1);
-}
-
-void
-dfree(file, line, ptr)
-	char *file;
-	unsigned line;
-	char *ptr;
-{
-	caller *c, *a;
-	datum *d;
-
-	d = (datum *) ptr;  d--;
-	a = (caller *) (memory + d->caller);
-	a->bytes -= d->size;
-	a->blocks--;
-	c = findCaller(a->frees, file, line, TRUE);
-	c->calls++;
-	free((char*) d);
-}
-
-char *
-dcalloc(file, line, nelems, elsize)
-	char *file;
-	unsigned line;
-	unsigned nelems, elsize;
-{
-	unsigned size = (nelems * elsize);
-	char *ptr;
-
-	ptr = dmalloc(file, line, size);
-	if (ptr)
-		bzero(ptr, size);
-	return ptr;
-}
-
-char *
-drealloc(file, line, ptr, size)
-	char *file;
-	unsigned line;
-	char *ptr;
-	unsigned size;
-{
-	caller *c, *a;
-	datum *d;
-
-	d = (datum *) ptr;  d--;
-	/* fix up stats from allocation */
-	a = (caller *) (memory + d->caller);
-	a->bytes -= d->size;
-	a->blocks--;
-	/* we are a "freer" of this allocation */
-	c = findCaller(a->frees, file, line, TRUE);
-	c->calls++;
-	/* get new allocation and stat it */
-	c = findCaller(&Callers, file, line, TRUE);
-	d = (datum *) realloc((char *) d, sizeof(datum) + size);
-	d->size = size;
-	d->caller = ((char *)c) - memory;
-	c->calls++;
-	c->blocks++;
-	c->bytes += size;
-	return (char *) (d+1);
-}
-
-static void
-dmalloccallers(outf, prefix, ctab)
-	FILE *outf;
-	char *prefix;
-	calltab *ctab;
-{
-	/* this bizarre logic is to print all of a file's entries together */
-	filenam	*f;
-
-	for (f = Files;  f;  f = f->next) {
-		int	i;
-
-		for (i = MAX_CALLERS-1;  i >= 0;  i--) {
-			caller *c;
-
-			for (c = ctab->callers[i];  c;  c = c->next) {
-				if (f != c->file)
-					continue;
-				fprintf(outf, "%s\"%s\":%u calls=%u",
-					prefix, c->file->name, c->line,
-					c->calls);
-				if (c->blocks || c->bytes)
-					fprintf(outf, " blocks=%u bytes=%u",
-						c->blocks, c->bytes);
-				fputc('\n', outf);
-				if (c->frees)
-					dmalloccallers(outf,
-						       "\t\t", c->frees);
-			}
-		}
-	}
-}
-
-void
-dmallocstats(outf)
-	FILE *outf;
-{
-	fprintf(outf, "dallocstats [ private mem used=%u, avail=%u ]\n",
-		nextmem - memory, &memory[MAX_MEMORY] - nextmem);
-	dmalloccallers(outf, "\t", &Callers);
-}
-
-#endif /*DMALLOC*/
diff --git a/contrib/bind/named/dmalloc.h b/contrib/bind/named/dmalloc.h
deleted file mode 100644
index 9d0b44a91eeb8..0000000000000
--- a/contrib/bind/named/dmalloc.h
+++ /dev/null
@@ -1,68 +0,0 @@
-/* dmalloc - debugging layer on top of malloc
- * vix 22mar92 [written]
- *
- * $Id: dmalloc.h,v 8.1 1994/12/15 06:24:14 vixie Exp $
- */
-
-/*
- * ++Copyright++
- * -
- * Copyright (c) 
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#define	malloc(s)	dmalloc(__FILE__, __LINE__, s)
-#define	free(p)		dfree(__FILE__, __LINE__, p)
-#define	calloc(n, s)	dcalloc(__FILE__, __LINE__, n, s)
-#define	realloc(p, s)	drealloc(__FILE__, __LINE__, p, s)
-
-char *dmalloc(), *dcalloc(), *drealloc();
-void dfree(), dmallocstats();
diff --git a/contrib/bind/named/named-xfer.c b/contrib/bind/named/named-xfer.c
deleted file mode 100644
index 7ff2e5ce41d50..0000000000000
--- a/contrib/bind/named/named-xfer.c
+++ /dev/null
@@ -1,2026 +0,0 @@
-/*
- * The original version of xfer by Kevin Dunlap.
- * Completed and integrated with named by David Waitzman
- *	(dwaitzman@bbn.com) 3/14/88.
- * Modified by M. Karels and O. Kure 10-88.
- * Modified extensively since then by just about everybody.
- */
-
-/*
- * ++Copyright++ 1988, 1990
- * -
- * Copyright (c) 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- * --Copyright--
- */
-
-#if !defined(lint) && !defined(SABER)
-char copyright[] =
-"@(#) Copyright (c) 1988, 1990 The Regents of the University of California.\n\
- portions Copyright (c) 1993 Digital Equipment Corporation\n\
- All rights reserved.\n";
-#endif /* not lint */
-
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)named-xfer.c	4.18 (Berkeley) 3/7/91";
-static char rcsid[] = "$Id: named-xfer.c,v 8.24 1998/04/07 04:59:45 vixie Exp $";
-#endif /* not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#if defined(__osf__)
-# include <sys/mbuf.h>
-# include <net/route.h>
-#endif
-#if defined(_AIX)
-# include <sys/time.h>
-# define TIME_H_INCLUDED
-#endif
-#include <net/if.h>
-#include <netdb.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <syslog.h>
-#if !defined(SVR4) || !defined(sun)
-# include <math.h>
-#endif
-#include <ctype.h>
-#include <signal.h>
-
-#define MAIN_PROGRAM
-#include "named.h"
-#undef MAIN_PROGRAM
-
-#ifndef LOG_PERROR
-# define LOG_PERROR 0
-#endif
-
-static	struct zoneinfo	zone;		/* zone information */
-
-static	char		ddtfilename[] = _PATH_TMPXFER,
-			*ddtfile = ddtfilename,
-			*tmpname,
-			*domain;		/* domain being xfered */
-
-static	int		quiet = 0,
-			read_interrupted = 0,
-			curclass,
-			domain_len;		/* strlen(domain) */
-
-static	FILE		*fp = NULL,
-			*dbfp = NULL;
-
-static	char		*ProgName;
-
-static	void		usage __P((const char *));
-static	int		getzone __P((struct zoneinfo *, u_int32_t, int)),
-			print_output __P((struct zoneinfo *, u_int32_t,
-					  u_char *, int, u_char *)),
-			netread __P((int, char *, int, int));
-static	SIG_FN		read_alarm __P(());
-static	SIG_FN		term_handler __P(());
-static	const char	*soa_zinfo __P((struct zoneinfo *, u_char *, u_char*));
-
-struct zoneinfo zp_start, zp_finish;
-
-extern char *optarg;
-extern int optind, getopt();
-
-
-void
-cleanup_for_exit() {
-#ifdef DEBUG
-	if (!debug)
-#endif
-		(void) unlink(tmpname);
-}
-
-void
-main(argc, argv)
-	int argc;
-	char *argv[];
-{
-	register struct zoneinfo *zp;
-	register struct hostent *hp;
- 	char *dbfile = NULL, *tracefile = NULL, *tm = NULL;
-	int dbfd, ddtd, result, c, fd, closed = 0;
-	u_int32_t serial_no = 0;
-	u_int16_t port = htons(NAMESERVER_PORT);
-	struct stat statbuf;
-#ifdef STUBS
-	int stub_only = 0;
-#endif
-#ifdef GEN_AXFR
-	int class = C_IN;
-#endif
-
-	if (ProgName = strrchr(argv[0], '/'))
-		ProgName++;
-	else
-		ProgName = argv[0];
-
-	(void) umask(022);
-
-	/* this is a hack; closing everything in the parent is hard. */
-	for (fd = getdtablesize()-1;  fd > STDERR_FILENO;  fd--)
-		closed += (close(fd) == 0);
-
-#ifdef RENICE
-	nice(-40);	/* this is the recommended procedure to        */
-	nice(20);	/*   reset the priority of the current process */
-	nice(0);	/*   to "normal" (== 0) - see nice(3)          */
-#endif
-
-#ifdef LOG_DAEMON
-	openlog(ProgName, LOG_PID|LOG_CONS|LOG_PERROR, LOGFAC);
-#else
-	openlog(ProgName, LOG_PID);
-#endif
-#ifdef STUBS
-	while ((c = getopt(argc, argv, "C:d:l:s:t:z:f:p:P:qS")) != EOF)
-#else
-	while ((c = getopt(argc, argv, "C:d:l:s:t:z:f:p:P:q")) != EOF)
-#endif
-	    switch (c) {
-#ifdef GEN_AXFR
-	        case 'C':
-			class = get_class(optarg);
-			break;
-#endif
-		case 'd':
-#ifdef DEBUG
-			debug = atoi(optarg);
-#endif
-			break;
-		case 'l':
-			ddtfile = (char *)malloc(strlen(optarg) +
-						 sizeof(".XXXXXX") + 1);
-			if (!ddtfile)
-				panic(errno, "malloc(ddtfile)");
-#ifdef SHORT_FNAMES
-			filenamecpy(ddtfile, optarg);
-#else
-			(void) strcpy(ddtfile, optarg);
-#endif /* SHORT_FNAMES */
-			(void) strcat(ddtfile, ".XXXXXX");
-			break;
-		case 's':
-			serial_no = strtoul(optarg, (char **)NULL, 10);
-			break;
-		case 't':
-			tracefile = optarg;
-			break;
-		case 'z':		/* zone == domain */
-			domain = optarg;
-			domain_len = strlen(domain);
-			while ((domain_len > 0) && 
-					(domain[domain_len-1] == '.'))
-				domain[--domain_len] = '\0';
-			break;
-		case 'f':
-			dbfile = optarg;
-			tmpname = (char *)malloc((unsigned)strlen(optarg) +
-						 sizeof(".XXXXXX") + 1);
-			if (!tmpname)
-				panic(errno, "malloc(tmpname)");
-#ifdef SHORT_FNAMES
-			filenamecpy(tmpname, optarg);
-#else
-			(void) strcpy(tmpname, optarg);
-#endif /* SHORT_FNAMES */
-			break;
-		case 'p':
-			port = htons((u_int16_t)atoi(optarg));
-			break;
-		case 'P':
-			port = (u_int16_t)atoi(optarg);
-			break;
-#ifdef STUBS
-		case 'S':
-			stub_only = 1;
-			break;
-#endif
-		case 'q':
-			quiet++;
-			break;
-		case '?':
-		default:
-			usage("unrecognized argument");
-			/* NOTREACHED */
-	    }
-
-	if (!domain || !dbfile || optind >= argc) {
-		if (!domain)
-			usage("no domain");
-		if (!dbfile)
-			usage("no dbfile");
-		if (optind >= argc)
-			usage("not enough arguments");
-		/* NOTREACHED */
-	}
-	if (stat(dbfile, &statbuf) != -1 &&
-	    !S_ISREG(statbuf.st_mode) &&
-	    !S_ISFIFO(statbuf.st_mode))
-		usage("dbfile must be a regular file or FIFO");
-	if (tracefile && (fp = fopen(tracefile, "w")) == NULL)
-		perror(tracefile);
-	(void) strcat(tmpname, ".XXXXXX");
-	/* tmpname is now something like "/etc/named/named.bu.db.XXXXXX" */
-	if ((dbfd = mkstemp(tmpname)) == -1) {
-		perror(tmpname);
-		if (!quiet)
-			syslog(LOG_ERR, "can't make tmpfile (%s): %m\n",
-			       tmpname);
-		exit(XFER_FAIL);
-	}
-#if HAVE_FCHMOD
-	if (fchmod(dbfd, 0644) == -1)
-#else
-	if (chmod(tmpname, 0644) == -1)
-#endif
-	{
-		perror(tmpname);
-		if (!quiet)
-			syslog(LOG_ERR, "can't [f]chmod tmpfile (%s): %m\n",
-			       tmpname);
-		exit(XFER_FAIL);
-	}
-	if ((dbfp = fdopen(dbfd, "r+")) == NULL) {
-		perror(tmpname);
-		if (!quiet)
-			syslog(LOG_ERR, "can't fdopen tmpfile (%s)", tmpname);
-		exit(XFER_FAIL);
-	}
-#ifdef DEBUG
-	if (debug) {
-		/* ddtfile is now something like "/usr/tmp/xfer.ddt.XXXXXX" */
-		if ((ddtd = mkstemp(ddtfile)) == -1) {
-			perror(ddtfile);
-			debug = 0;
-		}
-#if HAVE_FCHMOD
-		else if (fchmod(ddtd, 0644) == -1)
-#else
-		else if (chmod(ddtfile, 0644) == -1)
-#endif
-		{
-			perror(ddtfile);
-			debug = 0;
-		} else if ((ddt = fdopen(ddtd, "w")) == NULL) {
-			perror(ddtfile);
-			debug = 0;
-		} else {
-#ifdef HAVE_SETVBUF
-			setvbuf(ddt, NULL, _IOLBF, BUFSIZ);
-#else
-			setlinebuf(ddt);
-#endif
-		}
-	}
-#endif
-	/*
-	 * Ignore many types of signals that named (assumed to be our parent)
-	 * considers important- if not, the user controlling named with
-	 * signals usually kills us.
-	 */
-	(void) signal(SIGHUP, SIG_IGN);
-#ifdef SIGSYS
-	(void) signal(SIGSYS, SIG_IGN);
-#endif
-#ifdef DEBUG
-	if (debug == 0)
-#endif
-	{
-		(void) signal(SIGINT, SIG_IGN);
-		(void) signal(SIGQUIT, SIG_IGN);
-	}
-	(void) signal(SIGIOT, SIG_IGN);
-
-#if defined(SIGUSR1) && defined(SIGUSR2)
-	(void) signal(SIGUSR1, SIG_IGN);
-	(void) signal(SIGUSR2, SIG_IGN);
-#else	/* SIGUSR1&&SIGUSR2 */
-	(void) signal(SIGEMT, SIG_IGN);
-	(void) signal(SIGFPE, SIG_IGN);
-#endif /* SIGUSR1&&SIGUSR2 */
-
-	dprintf(1, (ddt, "domain `%s'; file `%s'; serial %lu; closed %d\n",
-		    domain, dbfile, (u_long)serial_no, closed));
-
-	buildservicelist();
-	buildprotolist();
-
-	/* init zone data */
- 
-	zp = &zone;
-#ifdef STUBS
-	if (stub_only)
-		zp->z_type = Z_STUB;
-	else
-#endif
-		zp->z_type = Z_SECONDARY;
-#ifdef GEN_AXFR
-	zp->z_class = class;
-#endif
-	zp->z_origin = domain;
-	zp->z_source = dbfile;
-	zp->z_addrcnt = 0;
-	dprintf(1, (ddt, "zone found (%d): \"%s\", source = %s\n",
-		    zp->z_type,
-		    (zp->z_origin[0] == '\0')
-			? "."
-		        : zp->z_origin,
-		    zp->z_source));
-
-	for (;  optind != argc;  optind++) {
-		tm = argv[optind];
-		if (!inet_aton(tm, &zp->z_addr[zp->z_addrcnt])) {
-			hp = gethostbyname(tm);
-			if (hp == NULL) {
-				syslog(LOG_NOTICE,
-				       "uninterpretable server (%s) for %s\n",
-				       tm, zp->z_origin);
-				continue;
-			}
-			bcopy(hp->h_addr,
-			      (char *)&zp->z_addr[zp->z_addrcnt],
-			      INADDRSZ);
-			dprintf(1, (ddt, "Arg: \"%s\"\n", tm));
-		}
-		if (zp->z_addr[zp->z_addrcnt].s_addr == 0) {
-			syslog(LOG_NOTICE,
-			       "SOA query to 0.0.0.0 (%s) for %s",
-			       tm, zp->z_origin);
-			continue;
-		}
-		if (++zp->z_addrcnt >= NSMAX) {
-			zp->z_addrcnt = NSMAX;
-			dprintf(1, (ddt, "NSMAX reached\n"));
-			break;
-		}
-	}
-	dprintf(1, (ddt, "addrcnt = %d\n", zp->z_addrcnt));
-
-	res_init();
-	_res.options &= ~(RES_DEFNAMES | RES_DNSRCH | RES_RECURSE);
-	result = getzone(zp, serial_no, port);
-	(void) my_fclose(dbfp);
-	switch (result) {
-
-	case XFER_SUCCESS:			/* ok exit */
-		if (rename(tmpname, dbfile) == -1) {
-			perror("rename");
-			if (!quiet)
-			    syslog(LOG_ERR, "rename %s to %s: %m",
-				   tmpname, dbfile);
-			exit(XFER_FAIL);
-		}
-		exit(XFER_SUCCESS);
-
-	case XFER_UPTODATE:		/* the zone was already uptodate */
-		(void) unlink(tmpname);
-		exit(XFER_UPTODATE);
-
-	default:
-		result = XFER_FAIL;
-		/* fall through */
-	case XFER_TIMEOUT:
-	case XFER_FAIL:
-		cleanup_for_exit();
-		exit(result);
-	}
-	/*NOTREACHED*/
-}
- 
-static char *UsageText[] = {
-	"\t-z zone_to_transfer\n",
-	"\t-f db_file\n",
-	"\t-s serial_no\n",
-	"\t[-d debug_level]\n",
-	"\t[-l debug_log_file]\n",
-	"\t[-t trace_file]\n",
-	"\t[-p port]\n",
-#ifdef STUBS
-	"\t[-S]\n",
-#endif
-#ifdef GEN_AXFR
-	"\t[-C class]\n",
-#endif
-	"\tservers...\n",
-	NULL
-};
-
-static void
-usage(msg)
-	const char *msg;
-{
-	char * const *line;
-
-	fprintf(stderr, "Usage error: %s\n", msg);
-	fprintf(stderr, "Usage: %s\n", ProgName);
-	for (line = UsageText;  *line;  line++)
-		fputs(*line, stderr);
-	exit(XFER_FAIL);
-}
-
-#define DEF_DNAME	'\001'		/* '\0' means the root domain */
-/* XXX: The following variables should probably all be "static" */
-u_int32_t	minimum_ttl = 0;
-int	soa_cnt = 0;
-#ifdef STUBS
-int	ns_cnt = 0;
-#endif
-int	query_type = 0;
-int	prev_comment = 0;		/* was previous record a comment? */
-char	zone_top[MAXDNAME];		/* the top of the zone */
-char	prev_origin[MAXDNAME];		/* from most recent $ORIGIN line */
-char	prev_dname[MAXDNAME] = { DEF_DNAME };	/* from previous record */
-char	prev_ns_dname[MAXDNAME] = { DEF_DNAME }; /* from most recent NS record */
-
-static int
-getzone(zp, serial_no, port)
-	struct zoneinfo *zp;
-	u_int32_t serial_no;
-	int port;
-{
-	HEADER *hp;
-	u_int16_t len;
-	u_int32_t serial;
-	int s, n, l, error = 0;
-	u_int cnt;
- 	u_char *cp, *nmp, *eom, *tmp ;
-	u_char *buf = NULL;
-	u_int bufsize;
-	char name[MAXDNAME], name2[MAXDNAME];
-	struct sockaddr_in sin;
-#ifdef POSIX_SIGNALS
-	struct sigaction sv, osv;
-#else
-	struct sigvec sv, osv;
-#endif
-	int qdcount, ancount, aucount, class, type;
-	const char *badsoa_msg = "Nil";
-
-#ifdef DEBUG
-	if (debug) {
-		(void)fprintf(ddt,"getzone() %s ", zp->z_origin);
-		switch (zp->z_type) {
-		case Z_STUB:
-			fprintf(ddt,"stub\n");
-			break;
-		case Z_SECONDARY:
-			fprintf(ddt,"secondary\n");
-			break;
-		default:
-			fprintf(ddt,"unknown type\n");
-		}
-	}
-#endif
-#ifdef POSIX_SIGNALS
-	bzero((char *)&sv, sizeof sv);
-	sv.sa_handler = (SIG_FN (*)()) read_alarm;
-	/* SA_ONSTACK isn't recommended for strict POSIX code */
-	/* is it absolutely necessary? */
-	/* sv.sa_flags = SA_ONSTACK; */
-	sigfillset(&sv.sa_mask);
-	(void) sigaction(SIGALRM, &sv, &osv);
-	bzero((char *)&sv, sizeof sv);
-	sv.sa_handler = (SIG_FN (*)()) term_handler;
-	sigfillset(&sv.sa_mask);
-	(void) sigaction(SIGTERM, &sv, &osv);
-#else
-	bzero((char *)&sv, sizeof sv);
-	sv.sv_handler = read_alarm;
-	sv.sv_mask = ~0;
-	(void) sigvec(SIGALRM, &sv, &osv);
-	bzero((char *)&sv, sizeof sv);
-	sv.sv_handler = term_handler;
-	sv.sv_mask = ~0;
-	(void) sigvec(SIGTERM, &sv, &osv);
-#endif
-
-	strcpy(zone_top, zp->z_origin);
-	if ((l = strlen(zone_top)) != 0 && zone_top[l - 1] == '.')
-		zone_top[l - 1] = '\0';
-	strcpy(prev_origin, zone_top);
-
-	for (cnt = 0; cnt < zp->z_addrcnt; cnt++) {
-#ifdef GEN_AXFR
-		curclass = zp->z_class;
-#else
-		curclass = C_IN;
-#endif
-		error = 0;
-		if (buf == NULL) {
-			if ((buf = (u_char *)malloc(2 * PACKETSZ)) == NULL) {
-				syslog(LOG_INFO, "malloc(%u) failed",
-				       2 * PACKETSZ);
-				error++;
-				break;
-			}
-			bufsize = 2 * PACKETSZ;
-		}
-		bzero((char *)&sin, sizeof(sin));
-		sin.sin_family = AF_INET;
-		sin.sin_port = (u_int16_t)port;
-		sin.sin_addr = zp->z_addr[cnt];
-		if ((s = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
-			syslog(LOG_INFO, "socket: %m");
-			error++;
-			break;
-		}	
-		dprintf(2, (ddt, "connecting to server #%d [%s].%d\n",
-			    cnt+1, inet_ntoa(sin.sin_addr),
-			    ntohs(sin.sin_port)));
-		if (connect(s, (struct sockaddr *)&sin, sizeof(sin)) < 0) {
-			if (!quiet)
-				syslog(LOG_INFO,
-				       "connect(%s) for zone %s failed: %m",
-				       inet_ntoa(sin.sin_addr), zp->z_origin);
-			error++;
-			(void) my_close(s);
-			continue;
-		}	
-#ifndef GEN_AXFR
- tryagain:
-#endif
-		n = res_mkquery(QUERY, zp->z_origin, curclass,
-				T_SOA, NULL, 0, NULL, buf, bufsize);
-		if (n < 0) {
-			if (!quiet)
-				syslog(LOG_INFO,
-				       "zone %s: res_mkquery T_SOA failed",
-				       zp->z_origin);
-			(void) my_close(s);
-#ifdef POSIX_SIGNALS
-			(void) sigaction(SIGALRM, &osv, (struct sigaction *)0);
-#else
-			(void) sigvec(SIGALRM, &osv, (struct sigvec *)0);
-#endif
-			return (XFER_FAIL);
-		}
-		/*
-		 * Send length & message for SOA query
-		 */
-		if (writemsg(s, buf, n) < 0) {
-			syslog(LOG_INFO, "writemsg: %m");
-			error++;
-			(void) my_close(s);
-			continue;	
-		}
-		/*
-		 * Get out your butterfly net and catch the SOA
-		 */
-		if (netread(s, (char *)buf, INT16SZ, XFER_TIMER) < 0) {
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		if ((len = _getshort(buf)) == 0) {
-			(void) my_close(s);
-			continue;
-		}
-		if (len > bufsize) {
-			if ((buf = (u_char *)realloc(buf, len)) == NULL) {
-				syslog(LOG_INFO,
-		       "malloc(%u) failed for SOA from server [%s], zone %s\n",
-				       len,
-				       inet_ntoa(sin.sin_addr),
-				       zp->z_origin);
-				(void) my_close(s);
-				continue;
-			}
-			bufsize = len;
-		}
-		if (netread(s, (char *)buf, len, XFER_TIMER) < 0) {
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-#ifdef DEBUG
-		if (debug >= 3) {
-			(void)fprintf(ddt,"len = %d\n", len);
-			fp_nquery(buf, len, ddt);
-		}
-#endif
-		hp = (HEADER *) buf;
-		qdcount = ntohs(hp->qdcount);
-		ancount = ntohs(hp->ancount);
-		aucount = ntohs(hp->nscount);
-
-		/*
-		 * close socket if any of these apply:
-		 *  1) rcode != NOERROR
-		 *  2) not an authority response
-		 *  3) not an answer to our question
-		 *  4) both the number of answers and authority count < 1)
-		 */
-		if (hp->rcode != NOERROR || !hp->aa || qdcount != 1 ||
-		    (ancount < 1 && aucount < 1)) {
-#ifndef GEN_AXFR
-			if (curclass == C_IN) {
-				dprintf(1, (ddt, "SOA failed, trying C_HS\n"));
-				curclass = C_HS;
-				goto tryagain;
-			}
-#endif
-#ifndef ultrix
-			syslog(LOG_NOTICE,
-       "[%s] %s for %s, SOA query got rcode %d, aa %d, ancount %d, aucount %d",
-			       inet_ntoa(sin.sin_addr),
-			       (hp->aa
-				? (qdcount==1 ?"no SOA found" :"bad response")
-				: "not authoritative"),
-			       zp->z_origin[0] != '\0' ? zp->z_origin : ".",
-			       hp->rcode, hp->aa, ancount, aucount);
-#endif
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		zp_start = *zp;
-		if ((int)len < HFIXEDSZ + QFIXEDSZ) {
-			badsoa_msg = "too short";
- badsoa:
-			syslog(LOG_INFO,
-			       "malformed SOA from [%s], zone %s: %s",
-			       inet_ntoa(sin.sin_addr), zp->z_origin,
-			       badsoa_msg);
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		/*
-		 * Step through response.
-		 */
-		tmp = buf + HFIXEDSZ;
-		eom = buf + len;
-		/* Query Section. */
-		n = dn_expand(buf, eom, tmp, name2, sizeof name2);
-		if (n < 0) {
-			badsoa_msg = "qname error";
-			goto badsoa;
-		}
-		tmp += n;
-		if (tmp + 2 * INT16SZ > eom) {
-			badsoa_msg = "query error";
-			goto badsoa;
-		}
-		GETSHORT(type, tmp);
-		GETSHORT(class, tmp);
-		if (class != curclass || type != T_SOA ||
-		    strcasecmp(zp->z_origin, name2) != 0) {
-			syslog(LOG_INFO,
-			"wrong query in resp from [%s], zone %s: [%s %s %s]\n",
-			       inet_ntoa(sin.sin_addr), zp->z_origin,
-			       name2, p_class(class), p_type(type));
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		/* ... Answer Section.
-		 * We may have to loop a little, to bypass SIG SOA's in
-		 * the response.
-		 */
-		do {
-			u_char *cp4;
-			u_short type, class, dlen;
-			u_long ttl;
-
-			n = dn_expand(buf, eom, tmp, name2, sizeof name2);
-			if (n < 0) {
-				badsoa_msg = "aname error";
-				goto badsoa;
-			}
-			tmp += n;
-
-			/* Are type, class, and ttl OK? */
-			cp4 = tmp;	/* Leave tmp pointing to type field */
-			if (eom - cp4 < 3 * INT16SZ + INT32SZ) {
-				badsoa_msg = "zinfo too short";
-				goto badsoa;
-			}
-			GETSHORT(type, cp4);
-			GETSHORT(class, cp4);
-			GETLONG(ttl, cp4);
-			GETSHORT(dlen, cp4);
-			if (cp4 + dlen > eom) {
-				badsoa_msg = "zinfo dlen too big";
-				goto badsoa;
-			}
-			if (type == T_SOA)
-				break;
-			/* Skip to next record, if any.  */
-			dprintf (1, (ddt, "skipping %s %s RR in response\n",
-				     name2, p_type (type)));
-			tmp = cp4 + dlen;
-		} while (1);
-
-		if (strcasecmp(zp->z_origin, name2) != 0) {
-			syslog(LOG_INFO,
-		       "wrong answer in resp from [%s], zone %s: [%s %s %s]\n",
-			       inet_ntoa(sin.sin_addr), zp->z_origin,
-			       name2, p_class(class), p_type(type));
-			error++;
-			(void) my_close(s);
-			continue;
-		}
-		badsoa_msg = soa_zinfo(&zp_start, tmp, eom);
-		if (badsoa_msg)
-			goto badsoa;
-		if (SEQ_GT(zp_start.z_serial, serial_no) || !serial_no) {
-			const char *l, *nl;
-			dprintf(1, (ddt, "need update, serial %lu\n",
-				    (u_long)zp_start.z_serial));
-			hp = (HEADER *) buf;
-			soa_cnt = 0;
-#ifdef STUBS
-			ns_cnt = 0;
-#endif
-			gettime(&tt);
-			for (l = Version; l; l = nl) {
-				size_t len;
-				if ((nl = strchr(l, '\n')) != NULL) {
-					len = nl - l;
-					nl = nl + 1;
-				} else {
-					len = strlen(l);
-					nl = NULL;
-				}
-				while (isspace((unsigned char) *l))
-					l++;
-				if (*l)
-					fprintf(dbfp, "; BIND version %.*s\n",
-						(int)len, l);
-			}
-			fprintf(dbfp, "; zone '%s'   last serial %lu\n",
-				domain, (u_long)serial_no);
-			fprintf(dbfp, "; from %s   at %s",
-				inet_ntoa(sin.sin_addr),
-				ctimel(tt.tv_sec));
-			for (;;) {
-				if ((soa_cnt == 0) || (zp->z_type == Z_STUB)) {
-#ifdef STUBS
-					if (zp->z_type == Z_STUB) {
-						if (soa_cnt == 1 &&
-						    ns_cnt == 0)
-							query_type = T_NS;
-						else
-							query_type = T_SOA;
-					} else
-#endif
-						query_type = T_AXFR;
-					n = res_mkquery(QUERY, zp->z_origin,
-							curclass, query_type,
-							NULL, 0,
-							NULL, buf, bufsize);
-					if (n < 0) {
-						if (!quiet) {
-#ifdef STUBS
-						    if (zp->z_type == Z_STUB)
-							syslog(LOG_INFO,
-							  (query_type == T_SOA)
-					? "zone %s: res_mkquery T_SOA failed"
-					: "zone %s: res_mkquery T_NS failed",
-							       zp->z_origin);
-						    else
-#endif
-							syslog(LOG_INFO,
-					  "zone %s: res_mkquery T_AXFR failed",
-							       zp->z_origin);
-						}
-						(void) my_close(s);
-#ifdef POSIX_SIGNALS
-						sigaction(SIGALRM, &osv,
-							(struct sigaction *)0);
-#else
-						sigvec(SIGALRM, &osv,
-						       (struct sigvec *)0);
-#endif
-						return (XFER_FAIL);
-					}
-					/*
-					 * Send length & msg for zone transfer
-					 */
-					if (writemsg(s, buf, n) < 0) {
-						syslog(LOG_INFO,
-						       "writemsg: %m");
-						error++;
-						(void) my_close(s);
-						break;	
-					}
-				}
-				/*
-				 * Receive length & response
-				 */
-				if (netread(s, (char *)buf, INT16SZ,
-					    (soa_cnt == 0) ?300 :XFER_TIMER)
-				    < 0) {
-					error++;
-					break;
-				}
-				if ((len = _getshort(buf)) == 0)
-					break;
-				if (len > bufsize) {
-					buf = (u_char *)realloc(buf, len);
-					if (buf == NULL) {
-						syslog(LOG_INFO,
-		    "malloc(%u) failed for packet from server [%s], zone %s\n",
-						       len,
-						       inet_ntoa(sin.sin_addr),
-						       zp->z_origin);
-						error++;
-						break;
-					}
-					bufsize = len;
-				}
-				hp = (HEADER *)buf;
-				eom = buf + len;
-				if (netread(s, (char *)buf, len, XFER_TIMER)
-				    < 0) {
-					error++;
-					break;
-				}
-#ifdef DEBUG
-				if (debug >= 3) {
-					(void)fprintf(ddt,"len = %d\n", len);
-					fp_nquery(buf, len, ddt);
-				}
-				if (fp)
-					fp_nquery(buf, len, fp);
-#endif
-				if (len < HFIXEDSZ) {
-		badrec:
-					error++;
-					syslog(LOG_INFO,
-				       "record too short from [%s], zone %s\n",
-					       inet_ntoa(sin.sin_addr),
-					       zp->z_origin);
-					break;
-				}
-				cp = buf + HFIXEDSZ;
-				if (hp->qdcount) {
-					if ((n = dn_skipname(cp, eom)) == -1
-					    || n + QFIXEDSZ >= eom - cp)
-						goto badrec;
-					cp += n + QFIXEDSZ;
-				}
-				nmp = cp;
-				if ((n = dn_skipname(cp, eom)) == -1)
-					goto badrec;
-				tmp = cp + n;
-#ifdef STUBS
-			if (zp->z_type == Z_STUB) {
-				ancount = ntohs(hp->ancount);
-				for (n = cnt = 0 ; cnt < ancount ; cnt++) {
-					n = print_output(zp, serial_no, buf,
-							 len, cp);
-					if (n < 0)
-						break;
-					cp += n;
-				}
-				/*
-				 * If we've processed the answer section and
-				 * didn't get any useful answers, bail out.
-				 */
-				if (query_type == T_SOA && soa_cnt == 0) {
-					syslog(LOG_ERR,
-					       "stubs: no SOA in answer");
-					error++;
-					break;
-				}
-				if (query_type == T_NS && ns_cnt == 0) {
-					syslog(LOG_ERR,
-					       "stubs: no NS in answer");
-					error++;
-					break;
-				}
-				if (n >= 0 && hp->nscount) {
-					ancount = ntohs(hp->nscount);
-					for (cnt = 0; cnt < ancount; cnt++) {
-						n = print_output(zp, 
-								 serial_no, 
-								 buf, len, cp);
-						if (n < 0)
-							break;
-						cp += n;
-					}
-				}
-				ancount = ntohs(hp->arcount);
-				for (cnt = 0; n >= 0 && cnt < ancount; cnt++) {
-					n = print_output(zp, serial_no, buf,
-							 len, cp);
-					cp += n;
-				}
-				if (n < 0) {
-					syslog(LOG_INFO,
-			     "print_output: unparseable answer (%d), zone %s",
-					       hp->rcode, zp->z_origin);
-					error++;
-					break;
-				}
-				if (cp != eom) {
-					syslog(LOG_INFO,
-				"print_output: short answer (%d, %d), zone %s",
-					       cp - buf, n, zp->z_origin);
-					error++;
-					break;
-				}
-			} else {
-#endif /*STUBS*/
-				ancount = ntohs(hp->ancount);
-				for (n = cnt = 0; cnt < ancount; cnt++) {
-					n = print_output(zp, serial_no, buf,
-							 len, cp);
-					if (n < 0)
-						break;
-					cp += n;
-				}
-				if (n < 0) {
-					syslog(LOG_INFO,
-			"print_output: unparseable answer (%d), zone %s",
-						hp->rcode, zp->z_origin);
-					error++;
-					break;
-				}
-				if (cp != eom) {
-					syslog(LOG_INFO,
-				"print_output: short answer (%d, %d), zone %s",
-					       cp - buf, eom - buf,
-					       zp->z_origin);
-					error++;
-					break;
-				}
-#ifdef STUBS
-			}
-#endif
-
-			if (soa_cnt >= 2)
-				break;
-
-		}
-		(void) my_close(s);
-		if (error == 0) {
-#ifdef POSIX_SIGNALS
-			(void) sigaction(SIGALRM, &osv,
-					 (struct sigaction *)0);
-#else
-			(void) sigvec(SIGALRM, &osv, (struct sigvec *)0);
-#endif
-			return (XFER_SUCCESS);
-		}
-		dprintf(2, (ddt, "error receiving zone transfer\n"));
-	    } else if (zp_start.z_serial == serial_no) {
-		(void) my_close(s);
-		dprintf(1, (ddt,
-			    "zone up-to-date, serial %u\n",
-			    zp_start.z_serial));
-		return (XFER_UPTODATE);
-	    } else {
-		(void) my_close(s);
-		if (!quiet)
-		    syslog(LOG_NOTICE,
-		      "serial from [%s], zone %s: %u lower than current: %u\n",
-			   inet_ntoa(sin.sin_addr), zp->z_origin,
-			   zp_start.z_serial, serial_no);
-		return (XFER_FAIL);
-	    }
-	}
-#ifdef POSIX_SIGNALS
-	(void) sigaction(SIGALRM, &osv, (struct sigaction *)0);
-#else
-	(void) sigvec(SIGALRM, &osv, (struct sigvec *)0);
-#endif
-	if (!error)
-		return (XFER_TIMEOUT);
-	return (XFER_FAIL);
-}
-
-static SIG_FN
-term_handler() {
-	cleanup_for_exit();
-	_exit(XFER_FAIL);  /* not safe to call exit() from a signal handler */
-}
-
-/*
- * Set flag saying to read was interrupted
- * used for a read timer
- */
-static SIG_FN
-read_alarm()
-{
-	read_interrupted = 1;
-}
- 
-static int
-netread(fd, buf, len, timeout)
-	int fd;
-	register char *buf;
-	register int len;
-	int timeout;
-{
-	static const char setitimerStr[] = "setitimer: %m";
-	struct itimerval ival, zeroival;
-	register int n;
-#if defined(NETREAD_BROKEN)
-	int retries = 0;
-#endif
-
-	memset(&zeroival, 0, sizeof zeroival);
-	ival = zeroival;
-	ival.it_value.tv_sec = timeout;
-	while (len > 0) {
-		if (setitimer(ITIMER_REAL, &ival, NULL) < 0) {
-			syslog(LOG_INFO, setitimerStr);
-			return (-1);
-		}
-		errno = 0;
-		n = recv(fd, buf, len, 0);
-		if (n == 0 && errno == 0) {
-#if defined(NETREAD_BROKEN)
-			if (++retries < 42)	/* doug adams */
-				continue;
-#endif
-			syslog(LOG_INFO, "premature EOF, fetching \"%s\"",
-			       domain);
-			return (-1);
-		}
-		if (n < 0) {
-			if (errno == 0) {
-#if defined(NETREAD_BROKEN)
-				if (++retries < 42)	/* doug adams */
-					continue;
-#endif
-				syslog(LOG_INFO,
-				       "recv(len=%d): n=%d && !errno",
-				       len, n);
-				return (-1);
-			}
-			if (errno == EINTR) {
-				if (!read_interrupted) {
-					/* It wasn't a timeout; ignore it. */
-					continue;
-				}
-				errno = ETIMEDOUT;
-			}
-			syslog(LOG_INFO, "recv(len=%d): %m", len);
-			return (-1);
-		}
-		buf += n;
-		len -= n;
-	}
-	if (setitimer(ITIMER_REAL, &zeroival, NULL) < 0) {
-		syslog(LOG_INFO, setitimerStr);
-		return (-1);
-	}
-	return (0);
-}
-
-static const char *
-soa_zinfo(zp, cp, eom)
-	register struct zoneinfo *zp;
-	register u_char *cp;
-	u_char *eom;
-{
-	register int n;
-	int type, class;
-	u_long ttl;
-	u_int dlen;
-	u_char *rdatap;
-
-	/* Are type, class, and ttl OK? */
-	if (eom - cp < 3 * INT16SZ + INT32SZ)
-		return ("zinfo too short");
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	GETLONG(ttl, cp);
-	GETSHORT(dlen, cp);
-	rdatap = cp;
-	if (type != T_SOA || class != curclass)
-		return ("zinfo wrong typ/cla/ttl");
-	/* Skip master name and contact name, we can't validate them. */
-	if ((n = dn_skipname(cp, eom)) == -1)
-		return ("zinfo mname");
-	cp += n;
-	if ((n = dn_skipname(cp, eom)) == -1)
-		return ("zinfo hname");
-	cp += n;
-	/* Grab the data fields. */
-	if (eom - cp < 5 * INT32SZ)
-		return ("zinfo dlen");
-	GETLONG(zp->z_serial, cp);
-	GETLONG(zp->z_refresh, cp);
-	GETLONG(zp->z_retry, cp);
-	GETLONG(zp->z_expire, cp);
-	GETLONG(zp->z_minimum, cp);
-	if (cp != rdatap + dlen)
-		return ("bad soa dlen");
-	return (NULL);
-}
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			hp->rcode = FORMERR; \
-			return (-1); \
-		} \
-	} while (0)
-
-/*
- * Parse the message, determine if it should be printed, and if so, print it
- * in .db file form.
- * Does minimal error checking on the message content.
- */
-static int
-print_output(zp, serial_no, msg, msglen, rrp)
-	struct zoneinfo *zp;
-	u_int32_t serial_no;
-	u_char *msg;
-	int msglen;
-	u_char *rrp;
-{
-	register u_char *cp;
-	register HEADER *hp = (HEADER *) msg;
-	u_int32_t addr, ttl;
-	int i, j, tab, result, class, type, dlen, n1, n;
-	char data[BUFSIZ];
-	u_char *cp1, *cp2, *temp_ptr, *eom, *rr_type_ptr;
-	u_char *cdata, *rdatap;
-	char *origin, *proto, dname[MAXDNAME];
-	char *ignore = "";
-	const char *badsoa_msg;
-
-	eom = msg + msglen;
-	cp = rrp;
-	n = dn_expand(msg, msg + msglen, cp, dname, sizeof dname);
-	if (n < 0) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	cp += n;
-	rr_type_ptr = cp;
-	BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	GETLONG(ttl, cp);
-	GETSHORT(dlen, cp);
-	BOUNDS_CHECK(cp, dlen);
-	rdatap = cp;
-
-	origin = strchr(dname, '.');
-	if (origin == NULL)
-		origin = "";
-	else
-		origin++;	/* move past the '.' */
-	dprintf(3, (ddt,
-		    "print_output: dname %s type %d class %d ttl %lu\n",
-		    dname, type, class, (u_long)ttl));
-	/*
-	 * Convert the resource record data into the internal database format.
-	 * CP points to the raw resource record.
-	 * After this switch:
-	 *	CP has been updated to point past the RR.
-	 *	CP1 points to the internal database version.
- 	 *	N is the length of the internal database version.
-	 */
-	switch (type) {
-	case T_A:
-	case T_WKS:
-	case T_HINFO:
-	case T_UINFO:
-	case T_TXT:
-	case T_X25:
-	case T_ISDN:
-	case T_LOC:
-	case T_NSAP:
-	case T_AAAA:
-	case T_UID:
-	case T_GID:
-	case T_KEY:
-		cp1 = cp;
-		n = dlen;
-		cp += n;
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		n = dn_expand(msg, msg + msglen, cp, data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = (u_char *)data;
-		n = strlen(data) + 1;
-		break;
-
-	case T_MINFO:
-	case T_SOA:
-	case T_RP:
-		n = dn_expand(msg, msg + msglen, cp, data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		n = strlen(data) + 1;
-		cp1 = (u_char *)data + n;
-		n1 = sizeof data - n;
-		if (type == T_SOA)
-			n1 -= 5 * INT32SZ;
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *) cp1) + 1;
-		if (type == T_SOA) {
-			BOUNDS_CHECK(cp, 5 * INT32SZ);
-			temp_ptr = cp + 4 * INT32SZ;
-			GETLONG(minimum_ttl, temp_ptr);
-			n = 5 * INT32SZ;
-			bcopy((char *) cp, (char *) cp1, n);
-			cp += n;
-			cp1 += n;
-		}
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_NAPTR:
-		/* Grab weight and port. */
-		BOUNDS_CHECK(cp, INT16SZ*2);
-		bcopy(cp, data, INT16SZ*2);
-		cp1 = (u_char *) (data + INT16SZ*2);
-		cp += INT16SZ*2;
- 
-		/* Flags */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		bcopy(cp, cp1, n);
-		cp += n; cp1 += n;
- 
-		/* Service */
-		BOUNDS_CHECK(cp, 1);
- 		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		bcopy(cp, cp1, n);
-		cp += n; cp1 += n;
- 
-		/* Regexp */
-		BOUNDS_CHECK(cp, 1);
- 		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		bcopy(cp, cp1, n);
-		cp += n; cp1 += n;
- 
-		/* Replacement */
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1,
-			      sizeof data - ((char *)cp1 - data));
-		if (n < 0)
-			return (-1);
-		cp += n;
- 
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		bcopy((char *)cp, data, INT16SZ);
-		cp1 = (u_char *)data + INT16SZ;
-		cp += INT16SZ;
-
-		if (type == T_SRV) {
-			BOUNDS_CHECK(cp, INT16SZ);
-			bcopy((char *)cp, cp1, INT16SZ*2);
-			cp1 += INT16SZ*2;
-			cp += INT16SZ*2;
-		}
-
-		/* get name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, sizeof data - (cp1-(u_char *)data));
-		if (n < 0)
-			return (-1);
-		cp += n;
-
-		/* compute end of data */
-		cp1 += strlen((char *) cp1) + 1;
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_PX:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		bcopy((char *)cp, data, INT16SZ);
-		cp1 = (u_char *)data + INT16SZ;
-		cp += INT16SZ;
-
-		/* get MAP822 name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, sizeof data - INT16SZ);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		cp1 += (n = (strlen((char *) cp1) + 1));
-		n1 = sizeof data - n;
-
-		/* get MAPX400 name */
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1, n1);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		cp1 += strlen((char *) cp1) + 1;
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	case T_SIG:
-	 /* CP is the raw resource record as it arrived.
-	  * CP1, after this switch, points to the internal database version. */
-		cp1 = (u_char *)data;
-
-		/* first just copy over the type_covered, algorithm, */
-		/* labels, orig ttl, two timestamps, and the footprint */
-		BOUNDS_CHECK(cp, 18);
-		bcopy( cp, cp1, 18 );
-		cp  += 18;
-		cp1 += 18;
-
-		/* then the signer's name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, (sizeof data) - 18);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		cp1 += strlen((char*)cp1)+1;
-
-		/* finally, we copy over the variable-length signature.
-		   Its size is the total data length, minus what we copied. */
-		n = dlen - (18 + n);
-		if (n > (int)((sizeof data) - (int)(cp1 - (u_char *)data))) {
-			hp->rcode = FORMERR;
-			return (-1);  /* out of room! */
-		}
-		bcopy(cp, cp1, n);
-		cp += n;
-		cp1 += n;
-		
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-
-	default:
-		syslog(LOG_INFO, "\"%s %s %s\" - unknown type (%d)",
-		       dname, p_class(class), p_type(type), type);
-		hp->rcode = NOTIMP;
-		return (-1);
-	}
-
-	if (n > MAXDATA) {
-		dprintf(1, (ddt,
-			    "update type %d: %d bytes is too much data\n",
-			    type, n));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	if (cp != rdatap + dlen) {
-		dprintf(1, (ddt,
-		    "encoded rdata length is %u, but actual length was %u\n",
-			dlen, (u_int)(cp - rdatap)));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-	cdata = cp1;
-	result = cp - rrp;
-
-	/*
-	 * Special handling for SOA records.
-	 */
-
-	if (type == T_SOA) {
-		if (strcasecmp(dname, zp->z_origin) != 0) {
-			syslog(LOG_INFO,
-			 "wrong zone name in AXFR (wanted \"%s\", got \"%s\")",
-			       zp->z_origin, dname);
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!soa_cnt) {
-			badsoa_msg = soa_zinfo(&zp_start, rr_type_ptr, eom);
-			if (badsoa_msg) {
-				syslog(LOG_INFO,
-				       "malformed SOA for zone %s: %s",
-				       zp->z_origin, badsoa_msg);
-				hp->rcode = FORMERR;
-				return (-1);
-			}
-			if (SEQ_GT(zp_start.z_serial, serial_no) ||
-			    !serial_no)
-				soa_cnt++;
-			else {
-				syslog(LOG_INFO,
-			       "serial went backwards after transfer started");
-				return (-1);
-			}
-		} else {
-			badsoa_msg = soa_zinfo(&zp_finish, rr_type_ptr, eom);
-			if (badsoa_msg) {
-				syslog(LOG_INFO,
-				       "malformed SOA for zone %s: %s",
-				       zp->z_origin, badsoa_msg);
-				hp->rcode = FORMERR;
-				return (-1);
-			}
-			dprintf(2, (ddt, "SOA, serial %lu\n",
-				    (u_long)zp_finish.z_serial));
-			if (zp_start.z_serial != zp_finish.z_serial) {
-				dprintf(1, (ddt, "serial changed, restart\n"));
-				soa_cnt = 0;
-#ifdef STUBS
-				ns_cnt = 0;
-#endif
-				minimum_ttl = 0;
-				strcpy(prev_origin, zp->z_origin);
-				prev_dname[0] = DEF_DNAME;
-				/*
-				 * Flush buffer, truncate file
-				 * and seek to beginning to restart.
-				 */
-				fflush(dbfp);
-				if (ftruncate(fileno(dbfp), 0) != 0) {
-					if (!quiet)
-						syslog(LOG_INFO,
-						       "ftruncate %s: %m\n",
-						       tmpname);
-					return (-1);
-				}
-				fseek(dbfp, 0L, 0);
-				return (result);
-			}
-			soa_cnt++;
-			return (result);
-		}	
-	}
-
-#ifdef STUBS
-	if (zp->z_type == Z_STUB) {
-		if (query_type == T_NS && type == T_NS)
-			ns_cnt++;
-		/*
-		 * If we're processing a response to an SOA query, we don't
-		 * want to print anything from the response except for the SOA.
-		 * We do want to check everything in the packet, which is
-		 * why we do this check now instead of earlier.
-		 */
-		if (query_type == T_SOA && type != T_SOA)
-			return (result);
-	}
-#endif
-
-	if (!soa_cnt || soa_cnt >= 2) {
-		char *gripe;
-
-		if (!soa_cnt)
-			gripe = "got RR before first SOA";
-		else
-			gripe = "got RR after second SOA";
-		syslog(LOG_INFO, "%s in zone %s", gripe, zp->z_origin);
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-#ifdef NO_GLUE
-	/*
-	 * If they are trying to tell us info about something that is
-	 * not in the zone that we are transfering, then ignore it!
-	 * They don't have the authority to tell us this info.
-	 *
-	 * We have to do a bit of checking here - the name that we are
-	 * checking vs is fully qualified & may be in a subdomain of the
-	 * zone in question.  We also need to ignore any final dots.
-	 *
-	 * If a domain has both NS records and non-NS records, (for
-	 * example, NS and MX records), then we should ignore the non-NS
-	 * records (except that we should not ignore glue A records).
-	 * XXX: It is difficult to do this properly, so we just compare
-	 * the current dname with that in the most recent NS record.
-	 * This defends against the most common error case,
-	 * where the remote server sends MX records soon after the
-	 * NS records for a particular domain.  If sent earlier, we lose. XXX
-	 */
- 	if (!samedomain(dname, domain)) {
-		(void) fprintf(dbfp, "; Ignoring info about %s, not in zone %s.\n",
-			dname, domain);
-		ignore = "; ";
-	} else if (type != T_NS && type != T_A &&
-		   strcasecmp(zone_top, dname) != 0 &&
-		   strcasecmp(prev_ns_dname, dname) == 0)
-	{
-		(void) fprintf(dbfp, "; Ignoring extra info about %s, invalid after NS delegation.\n",
-			dname);
-		ignore = "; ";
-	}
-#endif /*NO_GLUE*/
-
-	/*
-	 * If the current record is not being ignored, but the
-	 * previous record was ignored, then we invalidate information
-	 * that might have been altered by ignored records.
-	 * (This means that we sometimes output unnecessary $ORIGIN
-	 * lines, but that is harmless.)
-	 * 
-	 * Also update prev_comment now.
-	 */
-	if (prev_comment && ignore[0] == '\0') {
-		prev_dname[0] = DEF_DNAME;
-		prev_origin[0] = DEF_DNAME;
-	}
-	prev_comment = (ignore[0] != '\0');
-
-	/*
-	 * set prev_ns_dname if necessary
-	 */
-	if (type == T_NS) {
-		(void) strcpy(prev_ns_dname, dname);
-	}
-
-	/*
-	 * If the origin has changed, print the new origin
-	 */
-	if (strcasecmp(prev_origin, origin)) {
-		(void) strcpy(prev_origin, origin);
-		(void) fprintf(dbfp, "%s$ORIGIN %s.\n", ignore, origin);
-	}
-	tab = 0;
-
-	if (strcasecmp(prev_dname, dname)) {
-		/*
-		 * set the prev_dname to be the current dname, then cut off all
-		 * characters of dname after (and including) the first '.'
-		 */
-		char *cutp = strchr(dname, '.');
-
-		(void) strcpy(prev_dname, dname);
-		if (cutp)
-			*cutp = '\0';
-
-		if (dname[0] == 0) {
-			if (origin[0] == 0)
-				(void) fprintf(dbfp, "%s.\t", ignore);
-			else
-				(void) fprintf(dbfp, "%s.%s.\t",
-					ignore, origin);	/* ??? */
-		} else
-			(void) fprintf(dbfp, "%s%s\t", ignore, dname);
-		if (strlen(dname) < (size_t)8)
-			tab = 1;
-	} else {
-		(void) fprintf(dbfp, "%s\t", ignore);
-		tab = 1;
-	}
-
-	if (ttl != minimum_ttl)
-		(void) fprintf(dbfp, "%lu\t", (u_long) ttl);
-	else if (tab)
-		(void) putc('\t', dbfp);
-
-	(void) fprintf(dbfp, "%s\t%s\t", p_class(class), p_type(type));
-	cp = cdata;
-
-	/*
-	 * Print type specific data
-	 */
-	switch (type) {
-
-	case T_A:
-		switch (class) {
-		case C_IN:
-		case C_HS:
-			GETLONG(n, cp);
-			n = htonl(n);
-			fputs(inet_ntoa(*(struct in_addr *) &n), dbfp);
-			break;
-		}
-		(void) fprintf(dbfp, "\n");
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_PTR:
-		if (cp[0] == '\0')
-			(void) fprintf(dbfp, ".\n");
-		else
-			(void) fprintf(dbfp, "%s.\n", cp);
-		break;
-
-	case T_NS:
-		cp = cdata;
-		if (cp[0] == '\0')
-			(void) fprintf(dbfp, ".\t");
-		else
-			(void) fprintf(dbfp, "%s.", cp);
-		(void) fprintf(dbfp, "\n");
-		break;
-
-	case T_HINFO:
-	case T_ISDN:
-		cp2 = cp + n;
-		for (i = 0; i < 2; i++) {
-			if (i != 0)
-				(void) putc(' ', dbfp);
-			n = *cp++;
-			cp1 = cp + n;
-			if (cp1 > cp2)
-				cp1 = cp2;
-			(void) putc('"', dbfp);
-			j = 0;
-			while (cp < cp1) {
-				if (*cp == '\0') {
-					cp = cp1;
-					break;
-				}
-				if (strchr("\n\"\\", *cp))
-					(void) putc('\\', dbfp);
-				(void) putc(*cp++, dbfp);
-				j++;
-			}
-			if (j == 0 && (type != T_ISDN || i == 0))
-				(void) putc('?', dbfp);
-			(void) putc('"', dbfp);
-		}
-		(void) putc('\n', dbfp);
-		break;
-
-	case T_SOA:
-		(void) fprintf(dbfp, "%s.", cp);
-		cp += strlen((char *) cp) + 1;
-		(void) fprintf(dbfp, " %s. (\n", cp);
-		cp += strlen((char *) cp) + 1;
-		GETLONG(n, cp);
-		(void) fprintf(dbfp, "%s\t\t%lu", ignore, (u_long)n);
-		GETLONG(n, cp);
-		(void) fprintf(dbfp, " %lu", (u_long)n);
-		GETLONG(n, cp);
-		(void) fprintf(dbfp, " %lu", (u_long)n);
-		GETLONG(n, cp);
-		(void) fprintf(dbfp, " %lu", (u_long)n);
-		GETLONG(n, cp);
-		(void) fprintf(dbfp, " %lu )\n", (u_long)n);
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-		GETSHORT(n, cp);
-		(void) fprintf(dbfp, "%lu", (u_long)n);
-		(void) fprintf(dbfp, " %s.\n", cp);
-		break;
-
-	case T_PX:
-		GETSHORT(n, cp);
-		(void) fprintf(dbfp, "%lu", (u_long)n);
-		(void) fprintf(dbfp, " %s.", cp);
-		cp += strlen((char *) cp) + 1;
-		(void) fprintf(dbfp, " %s.\n", cp);
-		break;
-
-	case T_TXT:
-	case T_X25:
-		cp1 = cp + n;
-		while (cp < cp1) {
-			(void) putc('"', dbfp);
-			if (i = *cp++) {
-				for (j = i; j > 0 && cp < cp1; j--) {
-					if (strchr("\n\"\\", *cp))
-						(void) putc('\\', dbfp);
-					(void) putc(*cp++, dbfp);
-				}
-			}
-			(void) putc('"', dbfp);
-			if (cp < cp1)
-				(void) putc(' ', dbfp);
-		}
-		(void) putc('\n', dbfp);
-		break;
-
-	case T_NSAP:
-		fprintf(dbfp, "%s\n", inet_nsap_ntoa(n, cp, NULL));
-		break;
-
-	case T_AAAA: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		fprintf(dbfp, "%s\n", inet_ntop(AF_INET6, cp, t, sizeof t));
-		break;
-	    }
-	case T_UINFO:
-		(void) fprintf(dbfp, "\"%s\"\n", cp);
-		break;
-
-#ifdef LOC_RR
-	case T_LOC: {
-		char t[255];
-
-		(void) fprintf(dbfp, "%s\n", loc_ntoa(cp, t));
-		break;
-	    }
-#endif /* LOC_RR */
-
-	case T_NAPTR: {
-                u_int order, preference;
-
-		/* Order */
-		GETSHORT(order, cp);
-		fprintf(dbfp, "%lu", (u_long)order);
- 
-		/* Preference */
-		GETSHORT(preference, cp);
-		fprintf(dbfp, " %lu", (u_long)preference);
- 
-		/* Flags */
-		if (n = *cp++) {
-			fprintf(dbfp, " \"%.*s\"", (int)n, cp);
-			cp += n;
-		}
-
-		/* Service */
-		if (n = *cp++) {
-			fprintf(dbfp, " \"%.*s\"", (int)n, cp);
-			cp += n;
-		}
-
-		/* Regexp */
-		if (n = *cp++) {
-			fprintf(dbfp, " \"%.*s\"", (int)n, cp);
-			cp += n;
-		}
-
-		/* Replacement */
-		fprintf(dbfp, " %s.\n", cp);
- 
-		break;
-	    }
-	case T_SRV: {
-		u_int priority, weight, port;
-
-		GETSHORT(priority, cp);
-		GETSHORT(weight, cp);
-		GETSHORT(port, cp);
-		fprintf(dbfp, "\t%u %u %u %s.\n",
-			priority, weight, port, cp);
-		break;
-	    }
-
-	case T_UID:
-	case T_GID:
-		if (n == INT32SZ) {
-			GETLONG(n, cp);
-			(void) fprintf(dbfp, "%lu\n", (u_long)n);
-		}
-		break;
-
-	case T_WKS:
-		GETLONG(addr, cp);
-		addr = htonl(addr);
-		fputs(inet_ntoa(*(struct in_addr *) &addr), dbfp);
-		fputc(' ', dbfp);
-		proto = protocolname(*cp);
-		cp += sizeof(char);
-		(void) fprintf(dbfp, "%s ", proto);
-		i = 0;
-		while (cp < cdata + n) {
-			j = *cp++;
-			do {
-				if (j & 0200)
-					(void) fprintf(dbfp, " %s",
-						       servicename(i, proto));
-				j <<= 1;
-			} while (++i & 07);
-		}
-		(void) fprintf(dbfp, "\n");
-		break;
-
-	case T_MINFO:
-	case T_RP:
-		(void) fprintf(dbfp, "%s.", cp);
-		cp += strlen((char *) cp) + 1;
-		(void) fprintf(dbfp, " %s.\n", cp);
-		break;
-
-	case T_KEY: {
-		char databuf[16+MAX_KEY_BASE64];  /* 16 for slop */
-		u_int16_t keyflags;
-
-		/* get & format key flags */
-		keyflags = _getshort(cp);
-		(void) fprintf(dbfp, "0x%04x ", keyflags);
-		cp += INT16SZ;
-
-		/* protocol id */
-		(void) fprintf(dbfp, " %u", *cp++);
-
-		/* algorithm id */
-		(void) fprintf(dbfp, " %u ", *cp++);
-
-		/* key itself (which may have zero length) */
-		n = b64_ntop(cp, (cp1 + n) - cp, databuf, sizeof databuf);
-		if (n < 0)
-			fprintf(dbfp, "; BAD BASE64\n");
-		else
-			fprintf(dbfp, "%s\n", databuf);
-		break;
-	    }
-
-	case T_SIG: {
-		char databuf[16+MAX_KEY_BASE64];  /* 16 for slop */
-
-		/* get & format rr type which signature covers */
-		(void) fprintf(dbfp,"%s", p_type(_getshort((u_char*)cp)));
-		cp += INT16SZ;
-
-		/* algorithm id */
-		(void) fprintf(dbfp," %d",*cp++);
-
-		/* labels (# of labels in name) - skip in textual record */
-		cp++;
-
-		/* orig time to live (TTL)) */
-		(void) fprintf(dbfp," %lu", (u_long)_getlong((u_char*)cp));
-		cp += INT32SZ;
-
-		/* expiration time */
-		(void) fprintf(dbfp," %s", p_secstodate(_getlong((u_char*)cp)));
-		cp += INT32SZ;
-
-		/* time signed */
-		(void) fprintf(dbfp," %s", p_secstodate(_getlong((u_char*)cp)));
-		cp += INT32SZ;
-		
-		/* Key footprint */
-		(void) fprintf(dbfp," %d", _getshort((u_char*)cp));
-		cp += INT16SZ;
-		
-		/* signer's name */
-		(void) fprintf(dbfp, " %s. ", cp);
-		cp += strlen((char *) cp) + 1;
-
-		/* signature itself */
-		n = b64_ntop(cp, (cdata + n) - cp, databuf, sizeof databuf);
-		if (n < 0)
-			fprintf (dbfp, "; BAD BASE64\n");
-		else
-			fprintf (dbfp, "%s\n", databuf);
-		break;
-	   }
-
-	default:
-		cp1 = cp + n;
-		while (cp < cp1)
-			fprintf(dbfp, "0x%02.2X ", *cp++ & 0xFF);
-		(void) fprintf(dbfp, "???\n");
-	}
-	if (ferror(dbfp)) {
-		syslog(LOG_ERR, "%s: %m", tmpname);
-		cleanup_for_exit();
-		exit(XFER_FAIL);
-	}
-	return (result);
-}
-
-#ifdef SHORT_FNAMES
-/*
-** This routine handles creating temporary files with mkstemp
-** in the presence of a 14 char filename system.  Pathconf()
-** does not work over NFS.
-*/
-filenamecpy(ddtfile, optarg)
-char *ddtfile, *optarg;
-{
-	int namelen, extra, len;
-	char *dirname, *filename;
-
-	/* determine the length of filename allowed */
-	if((dirname = strrchr(optarg, '/')) == NULL){
-		filename = optarg;
-	} else {
-		*dirname++ = '\0';
-		filename = dirname;
-	}
-	namelen = pathconf(dirname == NULL? "." : optarg, _PC_NAME_MAX);
-	if(namelen <= 0)
-		namelen = 255;  /* length could not be determined */
-	if(dirname != NULL)
-		*--dirname = '/';
-
-	/* copy a shorter name if it will be longer than allowed */
-	extra = (strlen(filename)+strlen(".XXXXXX")) - namelen;
-	if(extra > 0){
-		len = strlen(optarg) - extra;
-		(void) strncpy(ddtfile, optarg, len);
-		ddtfile[len] = '\0';
-	} else
-		(void) strcpy(ddtfile, optarg);
-}
-#endif /* SHORT_FNAMES */
diff --git a/contrib/bind/named/named.h b/contrib/bind/named/named.h
deleted file mode 100644
index 0575a5c6e5bea..0000000000000
--- a/contrib/bind/named/named.h
+++ /dev/null
@@ -1,19 +0,0 @@
-/* named.h - include the local definitions in the right order
- * vix 28aug93 [original]
- *
- * $Id: named.h,v 8.1 1994/12/15 06:24:14 vixie Exp $
- */
-
-#include "../conf/portability.h"
-#include "../conf/options.h"
-
-#include "pathnames.h"
-
-#include "ns_defs.h"
-#include "db_defs.h"
-
-#include "ns_glob.h"
-#include "db_glob.h"
-
-#include "ns_func.h"
-#include "db_func.h"
diff --git a/contrib/bind/named/named.reload.sh b/contrib/bind/named/named.reload.sh
deleted file mode 100644
index 0b6495a251b64..0000000000000
--- a/contrib/bind/named/named.reload.sh
+++ /dev/null
@@ -1,7 +0,0 @@
-#!/bin/sh -
-#
-#	from named.reload	5.2 (Berkeley) 6/27/89
-#	$Id: named.reload.sh,v 8.1 1994/12/15 06:24:14 vixie Exp $
-#
-
-exec %DESTSBIN%/%INDOT%ndc reload
diff --git a/contrib/bind/named/named.restart.sh b/contrib/bind/named/named.restart.sh
deleted file mode 100644
index 4d073e6e723c3..0000000000000
--- a/contrib/bind/named/named.restart.sh
+++ /dev/null
@@ -1,7 +0,0 @@
-#!/bin/sh -
-#
-#	from named.restart	5.4 (Berkeley) 6/27/89
-#	$Id: named.restart.sh,v 8.1 1994/12/15 06:24:14 vixie Exp $
-#
-
-exec %DESTSBIN%/%INDOT%ndc restart
diff --git a/contrib/bind/named/ndc.sh b/contrib/bind/named/ndc.sh
deleted file mode 100644
index 883dabce3fb57..0000000000000
--- a/contrib/bind/named/ndc.sh
+++ /dev/null
@@ -1,83 +0,0 @@
-#!/bin/sh
-
-USAGE='echo \
-	"usage: $0 \
- (status|dumpdb|reload|stats|trace|notrace|querylog|start|stop|restart) \
-	 ... \
-	"; exit 1'
-
-PATH=%DESTSBIN%:/bin:/usr/bin:/usr/ucb:$PATH
-PIDFILE=%PIDDIR%/named.pid
-
-if [ -f $PIDFILE ]
-then
-	PID=`cat $PIDFILE`
-	PS=`%PS% $PID | tail -1 | grep $PID`
-	RUNNING=1
-	[ `echo $PS | wc -w` -ne 0 ] || {
-		PS="named (pid $PID?) not running"
-		RUNNING=0
-	}
-else
-	PS="named (no pid file) not running"
-	RUNNING=0
-fi
-
-for ARG
-do
-	case $ARG in
-	start|stop|restart)
-		;;
-	*)
-		[ $RUNNING -eq 0 ] && {
-			echo $PS
-			exit 1
-		}
-	esac
-
-	case $ARG in
-	status)	echo "$PS";;
-	dumpdb)	kill -INT $PID && echo Dumping Database;;
-	reload)	kill -HUP $PID && echo Reloading Database;;
-	stats)	kill -%IOT% $PID && echo Dumping Statistics;;
-	trace)	kill -USR1 $PID && echo Trace Level Incremented;;
-	notrace) kill -USR2 $PID && echo Tracing Cleared;;
-	querylog|qrylog) kill -WINCH $PID && echo Query Logging Toggled;;
-	start)
-		[ $RUNNING -eq 1 ] && {
-			echo "$0: start: named (pid $PID) already running"
-			continue
-		}
-		rm -f $PIDFILE
-		%INDOT%named && {
-			sleep 5
-			echo Name Server Started
-		}
-		;;
-	stop)
-		[ $RUNNING -eq 0 ] && {
-			echo "$0: stop: named not running"
-			continue
-		}
-		kill $PID && {
-			sleep 5
-			rm -f $PIDFILE
-			echo Name Server Stopped
-		}
-		;;
-	restart)
-		[ $RUNNING -eq 1 ] && {
-			kill $PID && sleep 5
-		}
-		rm -f $PIDFILE
-		%INDOT%named && {
-			sleep 5
-			echo Name Server Restarted
-		}
-		;;
-	*)	eval "$USAGE";;
-	esac
-done
-test -z "$ARG" && eval "$USAGE"
-
-exit 0
diff --git a/contrib/bind/named/ns_defs.h b/contrib/bind/named/ns_defs.h
deleted file mode 100644
index 05c4a3996042e..0000000000000
--- a/contrib/bind/named/ns_defs.h
+++ /dev/null
@@ -1,393 +0,0 @@
-/*
- *	from ns.h	4.33 (Berkeley) 8/23/90
- *	$Id: ns_defs.h,v 8.8 1996/09/22 00:13:10 vixie Exp $
- */
-
-/*
- * ++Copyright++ 1986
- * -
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- * Global definitions for the name server.
- */
-
-/*
- * Effort has been expended here to make all structure members 32 bits or
- * larger land on 32-bit boundaries; smaller structure members have been
- * deliberately shuffled and smaller integer sizes chosen where possible
- * to make sure this happens.  This is all meant to avoid structure member
- * padding which can cost a _lot_ of memory when you have hundreds of 
- * thousands of entries in your cache.
- */
-
-/*
- * Timeout time should be around 1 minute or so.  Using the
- * the current simplistic backoff strategy, the sequence
- * retrys after 4, 8, and 16 seconds.  With 3 servers, this
- * dies out in a little more than a minute.
- * (sequence RETRYBASE, 2*RETRYBASE, 4*RETRYBASE... for MAXRETRY)
- */
-#define MINROOTS	2	/* min number of root hints */
-#define NSMAX		16	/* max number of NS addrs to try ([0..255]) */
-#define RETRYBASE	4 	/* base time between retries */
-#define	MAXCLASS	255	/* XXX - may belong elsewhere */
-#define MAXRETRY	3	/* max number of retries per addr */
-#define MAXCNAMES	8	/* max # of CNAMES tried per addr */
-#define MAXQUERIES	20	/* max # of queries to be made */
-#define	MAXQSERIAL	4	/* max # of outstanding QSERIAL's */
-				/* (prevent "recursive" loops) */
-#define	INIT_REFRESH	600	/* retry time for initial secondary */
-				/* contact (10 minutes) */
-#define NADDRECS	20	/* max addt'l rr's per resp */
-
-#define XFER_TIMER	120	/* named-xfer's connect timeout */
-#define MAX_XFER_TIME	60*60*2	/* max seconds for an xfer */
-#define XFER_TIME_FUDGE	10	/* MAX_XFER_TIME fudge */
-#define MAX_XFERS_RUNNING 10	/* default max value of xfers_running */
-#define	MAX_XFERS_PER_NS 2	/* max # of xfers per peer nameserver */
-#define	XFER_BUFSIZE	(16*1024) /* arbitrary but bigger than most MTU's */
-
-#define ALPHA    0.7	/* How much to preserve of old response time */
-#define	BETA	 1.2	/* How much to penalize response time on failure */
-#define	GAMMA	 0.98	/* How much to decay unused response times */
-
-#define	USE_MINIMUM	0xffffffff
-
-	/* sequence-space arithmetic */
-#define SEQ_GT(a,b)	((int32_t)((a)-(b)) > 0)
-
-	/* cheap garbage collection */
-#define	FREE_ONCE(p) { if (p) { free(p); p = NULL; } }
-
-/* these fields are ordered to maintain word-alignment;
- * be careful about changing them.
- */
-struct zoneinfo {
-	char		*z_origin;	/* root domain name of zone */
-	time_t		z_time;		/* time for next refresh */
-	time_t		z_lastupdate;	/* time of last refresh */
-	u_int32_t	z_refresh;	/* refresh interval */
-	u_int32_t	z_retry;	/* refresh retry interval */
-	u_int32_t	z_expire;	/* expiration time for cached info */
-	u_int32_t	z_minimum;	/* minimum TTL value */
-	u_int32_t	z_serial;	/* changes if zone modified */
-	char		*z_source;	/* source location of data */
-	time_t		z_ftime;	/* modification time of source file */
-	struct in_addr	z_xaddr;	/* override server for next xfer */
-	struct in_addr	z_addr[NSMAX];	/* list of master servers for zone */
-	u_char		z_addrcnt;	/* number of entries in z_addr[] */
-	u_char		z_type;		/* type of zone; see below */
-	u_int16_t	z_flags;	/* state bits; see below */
-	pid_t		z_xferpid;	/* xfer child pid */
-	int		z_class;	/* class of zone */
-#ifdef SECURE_ZONES
-	struct netinfo *secure_nets;	/* list of secure networks for zone */
-#endif	
-#ifdef BIND_NOTIFY
-	/* XXX - this will have to move to the name when we do !SOA notify */
-	struct notify	*z_notifylist;	/* list of servers we should notify */
-#endif
-};
-
-#ifdef BIND_NOTIFY
-struct notify {
-	struct in_addr	addr;		/* of server */
-	time_t		last;		/* when they asked */
-	struct notify	*next;
-	/* XXX - this will need a type field when we do !SOA notify */
-};
-#endif
-
-	/* zone types (z_type) */
-#define	Z_NIL		0		/* zone slot not in use */
-#define Z_PRIMARY	1
-#define Z_SECONDARY	2
-#define Z_CACHE		3
-#define Z_STUB		4
-
-	/* zone state bits (16 bits) */
-#define	Z_AUTH		0x0001		/* zone is authoritative */
-#define	Z_NEED_XFER	0x0002		/* waiting to do xfer */
-#define	Z_XFER_RUNNING	0x0004		/* asynch. xfer is running */
-#define	Z_NEED_RELOAD	0x0008		/* waiting to do reload */
-#define	Z_SYSLOGGED	0x0010		/* have logged timeout */
-#define	Z_QSERIAL	0x0020		/* sysquery()'ing for serial number */
-#define	Z_FOUND		0x0040		/* found in boot file when reloading */
-#define	Z_INCLUDE	0x0080		/* set if include used in file */
-#define	Z_DB_BAD	0x0100		/* errors when loading file */
-#define	Z_TMP_FILE	0x0200		/* backup file for xfer is temporary */
-#define	Z_XFER_ABORTED	0x0400		/* zone transfer has been aborted */
-#define	Z_XFER_GONE	0x0800		/* zone transfer process is gone */
-
-	/* named_xfer exit codes */
-#define	XFER_UPTODATE	0		/* zone is up-to-date */
-#define	XFER_SUCCESS	1		/* performed transfer successfully */
-#define	XFER_TIMEOUT	2		/* no server reachable/xfer timeout */
-#define	XFER_FAIL	3		/* other failure, has been logged */
-
-#include <sys/time.h>
-
-/* XXX - "struct qserv" is deprecated in favor of "struct nameser" */
-struct qserv {
-	struct sockaddr_in
-			ns_addr;	/* address of NS */
-	struct databuf	*ns;		/* databuf for NS record */
-	struct databuf	*nsdata;	/* databuf for server address */
-	struct timeval	stime;		/* time first query started */
-	int		nretry;		/* # of times addr retried */
-};
-
-/*
- * Structure for recording info on forwarded or generated queries.
- */
-struct qinfo {
-	u_int16_t	q_id;		/* id of query */
-	u_int16_t	q_nsid;		/* id of forwarded query */
-	struct sockaddr_in
-			q_from;		/* requestor's address */
-	u_char		*q_msg,		/* the message */
-			*q_cmsg;	/* the cname message */
-	int16_t		q_msglen,	/* len of message */
-			q_cmsglen;	/* len of cname message */
-	int16_t		q_dfd;		/* UDP file descriptor */
-	struct fwdinfo	*q_fwd;		/* last	forwarder used */
-	time_t		q_time;		/* time to retry */
-	time_t		q_expire;	/* time to expire */
-	struct qinfo	*q_next;	/* rexmit list (sorted by time) */
-	struct qinfo	*q_link;	/* storage list (random order) */
-	struct databuf	*q_usedns[NSMAX]; /* databuf for NS that we've tried */
-	struct qserv	q_addr[NSMAX];	/* addresses of NS's */
-#ifdef notyet
-	struct nameser	*q_ns[NSMAX];	/* name servers */
-#endif
-	u_char		q_naddr;	/* number of addr's in q_addr */
-	u_char		q_curaddr;	/* last addr sent to */
-	u_char		q_nusedns;	/* number of elements in q_usedns[] */
-	u_int8_t	q_flags;	/* see below */
-	int16_t		q_cname;	/* # of cnames found */
-	int16_t		q_nqueries;	/* # of queries required */
-	struct qstream	*q_stream;	/* TCP stream, null if UDP */
-	struct zoneinfo	*q_zquery;	/* Zone query is about (Q_ZSERIAL) */
-	char		*q_domain;	/* domain of most enclosing zone cut */
-	char		*q_name;	/* domain of query */
-	u_int16_t	q_class;	/* class of query */
-	u_int16_t	q_type;		/* type of query */
-#ifdef BIND_NOTIFY
-	int		q_notifyzone;	/* zone which needs a sysnotify()
-					 * when the reply to this comes in.
-					 */
-#endif
-};
-
-	/* q_flags bits (8 bits) */
-#define	Q_SYSTEM	0x01		/* is a system query */
-#define	Q_PRIMING	0x02		/* generated during priming phase */
-#define	Q_ZSERIAL	0x04		/* getting zone serial for xfer test */
-
-#define	Q_NEXTADDR(qp,n)	\
-	(((qp)->q_fwd == (struct fwdinfo *)0) ? \
-	 &(qp)->q_addr[n].ns_addr : &(qp)->q_fwd->fwdaddr)
-
-#define	RETRY_TIMEOUT	45
-#define QINFO_NULL	((struct qinfo *)0)
-
-/*
- * Return codes from ns_forw:
- */
-#define	FW_OK		0
-#define	FW_DUP		1
-#define	FW_NOSERVER	2
-#define	FW_SERVFAIL	3
-
-struct qstream {
-	int		s_rfd;		/* stream file descriptor */
-	int		s_size;		/* expected amount of data to recive */
-	int		s_bufsize;	/* amount of data recived in s_buf */
-	u_char		*s_buf;		/* buffer of received data */
-	u_char		*s_bufp;	/* pointer into s_buf of recived data*/
-	struct qstream	*s_next;	/* next stream */
-	struct sockaddr_in
-			s_from;		/* address query came from */
-	u_int32_t	s_time;		/* time stamp of last transaction */
-	int		s_refcnt;	/* number of outstanding queries */
-	u_int16_t	s_tempsize;	/* temporary for size from net */
-};
-#define QSTREAM_NULL	((struct qstream *)0)
-
-struct qdatagram {
-	int		dq_dfd;		/* datagram file descriptor */
-	time_t		dq_gen;		/* generation number */
-	struct qdatagram
-			*dq_next;	/* next datagram */
-	struct in_addr	dq_addr;	/* interface address */
-};
-#define QDATAGRAM_NULL	((struct qdatagram *)0)
-
-struct netinfo {
-	struct netinfo	*next;
-	u_int32_t	addr;
-	u_int32_t	mask;
-	struct in_addr	my_addr;
-};
-
-#define ALLOW_NETS	0x0001
-#define	ALLOW_HOSTS	0x0002
-#define	ALLOW_ALL	(ALLOW_NETS | ALLOW_HOSTS)
-
-struct fwdinfo {
-	struct fwdinfo	*next;
-	struct sockaddr_in
-			fwdaddr;
-};
-
-enum nameserStats {	nssRcvdR,	/* sent us an answer */
-			nssRcvdNXD,	/* sent us a negative response */
-			nssRcvdFwdR,	/* sent us a response we had to fwd */
-			nssRcvdDupR,	/* sent us an extra answer */
-			nssRcvdFail,	/* sent us a SERVFAIL */
-			nssRcvdFErr,	/* sent us a FORMERR */
-			nssRcvdErr,	/* sent us some other error */
-			nssRcvdAXFR,	/* sent us an AXFR */
-			nssRcvdLDel,	/* sent us a lame delegation */
-			nssRcvdOpts,	/* sent us some IP options */
-			nssSentSysQ,	/* sent them a sysquery */
-			nssSentAns,	/* sent them an answer */
-			nssSentFwdQ,	/* fwdd a query to them */
-			nssSentDupQ,	/* sent them a retry */
-			nssSendtoErr,	/* error in sendto */
-#ifdef XSTATS
-			nssRcvdQ,	/* sent us a query */
-			nssRcvdIQ,	/* sent us an inverse query */
-			nssRcvdFwdQ,	/* sent us a query we had to fwd */
-			nssRcvdDupQ,	/* sent us a retry */
-			nssRcvdTCP,	/* sent us a query using TCP */
-			nssSentFwdR,	/* fwdd a response to them */
-			nssSentFail,	/* sent them a SERVFAIL */
-			nssSentFErr,	/* sent them a FORMERR */
-			nssSentNaAns,   /* sent them a non autoritative answer */
-			nssSentNXD,     /* sent them a negative response */
-#endif
-			nssLast };
-
-struct nameser {
-	struct in_addr	addr;		/* key */
-	u_long		stats[nssLast];	/* statistics */
-#ifdef notyet
-	u_int32_t	rtt;		/* round trip time */
-	/* XXX - need to add more stuff from "struct qserv", and use our rtt */
-	u_int16_t	flags;		/* see below */
-#endif
-	u_int8_t	xfers;		/* #/xfers running right now */
-};
-		
-
-#ifdef NCACHE
-#define NOERROR_NODATA   6 /* only used internally by the server, used for
-                            * -ve $ing non-existence of records. 6 is not 
-                            * a code used as yet anyway. anant@isi.edu
-                            */
-#define NTTL		600 /* ttl for negative data: 10 minutes? */
-#endif /*NCACHE*/
-
-#define VQEXPIRY	900 /* a VQ entry expires in 15*60 = 900 seconds */
-
-#ifdef VALIDATE
-
-#define INVALID		0
-#define VALID_NO_CACHE	1
-#define VALID_CACHE	2
-#define MAXNAMECACHE	100
-#define MAXVQ		100 /* Max number of elements in TO_Validate queue */
-
-struct _nameaddr {
-	struct in_addr	ns_addr;
-	char		*nsname;
-};
-typedef struct _nameaddr NAMEADDR;
-
-struct _to_validate {
-	int16_t		class;		/* Name Class */
-	int16_t		type;		/* RR type */
-	char		*data;		/* RR data */
-	char		*dname;		/* Name */
-	time_t		time;		/* time at which inserted in queue */
-	struct _to_validate
-			*next,
-			*prev;
-};
-typedef struct _to_validate TO_Validate;
-
-#endif /*VALIDATE*/
-
-#ifdef DEBUG
-# define dprintf(lev, args) (ddt && (debug >= lev) && fprintf args)
-#else
-# define dprintf(lev, args)
-#endif
-
-#ifdef INIT
-	error "INIT already defined, check system include files"
-#endif
-#ifdef DECL
-	error "DECL already defined, check system include files"
-#endif
-
-#ifdef MAIN_PROGRAM
-#define INIT(x) = x
-#define	DECL
-#else
-#define INIT(x)
-#define DECL extern
-#endif
-
diff --git a/contrib/bind/named/ns_forw.c b/contrib/bind/named/ns_forw.c
deleted file mode 100644
index 06d428b7df16a..0000000000000
--- a/contrib/bind/named/ns_forw.c
+++ /dev/null
@@ -1,1096 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_forw.c	4.32 (Berkeley) 3/3/91";
-static char rcsid[] = "$Id: ns_forw.c,v 8.20 1997/06/01 20:34:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986
- * -
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <syslog.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <errno.h>
-
-#include "named.h"
-
-/*
- * Forward the query to get the answer since its not in the database.
- * Returns FW_OK if a request struct is allocated and the query sent.
- * Returns FW_DUP if this is a duplicate of a pending request. 
- * Returns FW_NOSERVER if there were no addresses for the nameservers.
- * Returns FW_SERVFAIL on malloc error or if asked to do something
- * dangerous, such as fwd to ourselves or fwd to the host that asked us.
- *
- * (no action is taken on errors and qpp is not filled in.)
- */
-int
-ns_forw(nsp, msg, msglen, fp, qsp, dfd, qpp, dname, class, type, np)
-	struct databuf *nsp[];
-	u_char *msg;
-	int msglen;
-	struct sockaddr_in *fp;
-	struct qstream *qsp;
-	int dfd;
-	struct qinfo **qpp;
-	char *dname;
-	int class, type;
-	struct namebuf *np;
-{
-	register struct qinfo *qp;
-	char tmpdomain[MAXDNAME];
-	struct sockaddr_in *nsa;
-	HEADER *hp;
-	u_int16_t id;
-	int n;
-
-	dprintf(3, (ddt, "ns_forw()\n"));
-
-	hp = (HEADER *) msg;
-	id = hp->id;
-	/* Look at them all */
-	for (qp = nsqhead; qp != QINFO_NULL; qp = qp->q_link) {
-		if (qp->q_id == id &&
-		    bcmp((char *)&qp->q_from, fp, sizeof(qp->q_from)) == 0 &&
-		    ((qp->q_cmsglen == 0 && qp->q_msglen == msglen &&
-		     bcmp((char *)qp->q_msg+2, msg+2, msglen-2) == 0) ||
-		    (qp->q_cmsglen == msglen &&
-		     bcmp((char *)qp->q_cmsg+2, msg+2, msglen-2) == 0))) {
-			dprintf(3, (ddt,
-				    "forw: dropped DUP id=%d\n", ntohs(id)));
-#ifdef XSTATS
-			nameserIncr(fp->sin_addr, nssRcvdDupQ);
-#endif
-			return (FW_DUP);
-		}
-	}
-
-	qp = qnew(dname, class, type);
-	getname(np, tmpdomain, sizeof tmpdomain);
-	qp->q_domain = strdup(tmpdomain);
-	if (!qp->q_domain)
-		panic(ENOMEM, "ns_forw: strdup failed");
-	qp->q_from = *fp;	/* nslookup wants to know this */
-	n = nslookup(nsp, qp, dname, "ns_forw");
-	if (n < 0) {
-		dprintf(2, (ddt, "forw: nslookup reports danger\n"));
-		qfree(qp);
-		return (FW_SERVFAIL);
-	}
-	if (n == 0 && !fwdtab) {
-		dprintf(2, (ddt, "forw: no nameservers found\n"));
-		qfree(qp);
-		return (FW_NOSERVER);
-	}
-	qp->q_stream = qsp;
-	qp->q_curaddr = 0;
-	qp->q_fwd = fwdtab;
-	qp->q_dfd = dfd;
-	qp->q_id = id;
-	qp->q_expire = tt.tv_sec + RETRY_TIMEOUT*2;
-	hp->id = qp->q_nsid = htons(nsid_next());
-	hp->ancount = htons(0);
-	hp->nscount = htons(0);
-	hp->arcount = htons(0);
-	if ((qp->q_msg = (u_char *)malloc((unsigned)msglen)) == NULL) {
-		syslog(LOG_NOTICE, "forw: malloc: %m");
-		qfree(qp);
-		return (FW_SERVFAIL);
-	}
-	bcopy(msg, qp->q_msg, qp->q_msglen = msglen);
-	if (!qp->q_fwd) {
-		hp->rd = 0;
-		qp->q_addr[0].stime = tt;
-	}
-
-#ifdef SLAVE_FORWARD
-	if (forward_only)
-		schedretry(qp, (time_t)slave_retry);
-	else
-#endif /* SLAVE_FORWARD */
-	schedretry(qp, qp->q_fwd ?(2*RETRYBASE) :retrytime(qp));
-
-	nsa = Q_NEXTADDR(qp, 0);
-	dprintf(1, (ddt,
-		"forw: forw -> [%s].%d ds=%d nsid=%d id=%d %dms retry %dsec\n",
-			inet_ntoa(nsa->sin_addr),
-			ntohs(nsa->sin_port), ds,
-			ntohs(qp->q_nsid), ntohs(qp->q_id),
-			(qp->q_addr[0].nsdata != NULL)
-				? qp->q_addr[0].nsdata->d_nstime
-				: -1,
-			(int)(qp->q_time - tt.tv_sec)));
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(msg, msglen, ddt);
-#endif
-	if (sendto(ds, (char *)msg, msglen, 0, (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0) {
-		if (!haveComplained((char*)nsa->sin_addr.s_addr, sendtoStr))
-			syslog(LOG_INFO, "ns_forw: sendto([%s].%d): %m",
-			       inet_ntoa(nsa->sin_addr), ntohs(nsa->sin_port));
-		nameserIncr(nsa->sin_addr, nssSendtoErr);
-	}
-#ifdef XSTATS
-	nameserIncr(fp->sin_addr, nssRcvdFwdQ);
-#endif
-	nameserIncr(nsa->sin_addr, nssSentFwdQ);
-	if (qpp)
-		*qpp = qp;
-	hp->rd = 1;
-	return (0);
-}
-
-/* struct qdatagram *
- * aIsUs(addr)
- *	scan the datagramq (our list of interface addresses) for "addr"
- * returns:
- *	pointer to qdatagram entry or NULL if no match is found
- * notes:
- *	INADDR_ANY ([0.0.0.0]) is on the datagramq, so it's considered "us"
- * author:
- *	Paul Vixie (DECWRL) April 1991
- */
-struct qdatagram *
-aIsUs(addr)
-	struct in_addr addr;
-{
-	struct qdatagram *dqp;
-
-	for (dqp = datagramq;  dqp != QDATAGRAM_NULL;  dqp = dqp->dq_next) {
-		if (addr.s_addr == dqp->dq_addr.s_addr) {
-			return dqp;
-		}
-	}
-	return NULL;
-}
-
-/* haveComplained(tag1, tag2)
- *	check to see if we have complained about (tag1,tag2) recently
- *	(note that these are declared as pointers but are never deref'd)
- * returns:
- *	boolean: have we complained recently?
- * side-effects:
- *	outdated complaint records removed from our static list
- * author:
- *	Paul Vixie (DECWRL) April 1991
- */
-int
-haveComplained(tag1, tag2)
-	const char *tag1, *tag2;
-{
-	struct complaint {
-		const char *tag1, *tag2;
-		time_t expire;
-		struct complaint *next;
-	};
-	static struct complaint *List = NULL;
-	struct complaint *cur, *next, *prev;
-	int r = 0;
-
-	for (cur = List, prev = NULL;  cur;  prev = cur, cur = next) {
-		next = cur->next;
-		if (tt.tv_sec > cur->expire) {
-			if (prev)
-				prev->next = next;
-			else
-				List = next;
-			free((char*) cur);
-			cur = prev;
-		} else if ((tag1 == cur->tag1) && (tag2 == cur->tag2)) {
-			r++;
-		}
-	}
-	if (!r) {
-		cur = (struct complaint *)malloc(sizeof(struct complaint));
-		if (cur) {
-			cur->tag1 = tag1;
-			cur->tag2 = tag2;
-			cur->expire = tt.tv_sec + INIT_REFRESH;	/* "10:00" */
-			cur->next = NULL;
-			if (prev)
-				prev->next = cur;
-			else
-				List = cur;
-		}
-	}
-	return (r);
-}
-
-/* void
- * nslookupComplain(sysloginfo, queryname, complaint, dname, a_rr)
- *	Issue a complaint about a dangerous situation found by nslookup().
- * params:
- *	sysloginfo is a string identifying the complainant.
- *	queryname is the domain name associated with the problem.
- *	complaint is a string describing what is wrong.
- *	dname and a_rr are the problematic other name server.
- */
-static void
-nslookupComplain(sysloginfo, queryname, complaint, dname, a_rr, nsdp)
-	const char *sysloginfo, *queryname, *complaint, *dname;
-	const struct databuf *a_rr, *nsdp;
-{
-#ifdef STATS
-	char nsbuf[20];
-	char abuf[20];
-#endif
-	char *a, *ns;
-	const char *a_type;
-	int print_a;
-
-	dprintf(2, (ddt, "NS '%s' %s\n", dname, complaint));
-	if (sysloginfo && queryname && !haveComplained(queryname, complaint))
-	{
-		char buf[999];
-
-		a = ns = (char *)NULL;
-		print_a = (a_rr->d_type == T_A);
-		a_type = p_type(a_rr->d_type);
-#ifdef NCACHE
-		if (a_rr->d_rcode) {
-			print_a = 0;
-			switch(a_rr->d_rcode) {
-			case NXDOMAIN:
-				a_type = "NXDOMAIN";
-				break;
-			case NOERROR_NODATA:
-				a_type = "NODATA";
-				break;
-			}
-		}
-#endif
-#ifdef STATS
-		if (nsdp) {
-			if (nsdp->d_ns) {
-				strcpy(nsbuf, inet_ntoa(nsdp->d_ns->addr));
-				ns = nsbuf;
-			} else {
-				ns = zones[nsdp->d_zone].z_origin;
-			}
-		}
-		if (a_rr->d_ns) {
-			strcpy(abuf, inet_ntoa(a_rr->d_ns->addr));
-			a = abuf;
-		} else {
-			a = zones[a_rr->d_zone].z_origin;
-		}
-#endif
-		/* syslog only takes 5 params */
-		if ( a != NULL || ns != NULL)
-			sprintf(buf, "%s: query(%s) %s (%s:%s) learnt (%s=%s:NS=%s)",
-				sysloginfo, queryname,
-				complaint, dname,
-				print_a ?
-				    inet_ntoa(data_inaddr(a_rr->d_data)) : "",
-				a_type,
-				a ? a : "<Not Available>",
-				ns ? ns : "<Not Available>" );
-		else
-			sprintf(buf, "%s: query(%s) %s (%s:%s)",
-				sysloginfo, queryname,
-				complaint, dname,
-				print_a ?
-				    inet_ntoa(data_inaddr(a_rr->d_data)) : "");
-		syslog(LOG_INFO, "%s", buf);
-	}
-}
-
-/*
- * nslookup(nsp, qp, syslogdname, sysloginfo)
- *	Lookup the address for each nameserver in `nsp' and add it to
- * 	the list saved in the qinfo structure pointed to by `qp'.
- *	Omits information about nameservers that we shouldn't ask.
- *	Detects the following dangerous operations:
- *		One of the A records for one of the nameservers in nsp
- *		refers to the address of one of our own interfaces;
- *		One of the A records refers to the nameserver port on
- *		the host that asked us this question.
- * returns: the number of addresses added, or -1 if a dangerous operation
- *	is detected.
- * side effects:
- *	if a dangerous situation is detected and (syslogdname && sysloginfo),
- *		calls syslog.
- */
-int
-nslookup(nsp, qp, syslogdname, sysloginfo)
-	struct databuf *nsp[];
-	register struct qinfo *qp;
-	const char *syslogdname;
-	const char *sysloginfo;
-{
-	register struct namebuf *np;
-	register struct databuf *dp, *nsdp;
-	register struct qserv *qs;
-	register int n;
-	register u_int i;
-	struct hashbuf *tmphtp;
-	char *dname;
-	const char *fname;
-	int oldn, naddr, class, found_arr, potential_ns;
-	time_t curtime;
-
-	dprintf(3, (ddt, "nslookup(nsp=0x%lx, qp=0x%lx, \"%s\")\n",
-		    (u_long)nsp, (u_long)qp, syslogdname));
-
-	potential_ns = 0;
-	naddr = n = qp->q_naddr;
-	curtime = (u_long) tt.tv_sec;
-	while ((nsdp = *nsp++) != NULL) {
-		class = nsdp->d_class;
-		dname = (char *)nsdp->d_data;
-		dprintf(3, (ddt, "nslookup: NS \"%s\" c=%d t=%d (%#lx)\n",
-			    dname, class, nsdp->d_type,
-			    (u_long)nsdp->d_flags));
-
-		/* don't put in servers we have tried */
-		for (i = 0; i < qp->q_nusedns; i++) {
-			if (qp->q_usedns[i] == nsdp) {
-				dprintf(2, (ddt,
-					    "skipping used NS w/name %s\n",
-					    nsdp->d_data));
-				goto skipserver;
-			}
-		}
-
-		tmphtp = ((nsdp->d_flags & DB_F_HINT) ?fcachetab :hashtab);
-		np = nlookup(dname, &tmphtp, &fname, 1);
-		if (np == NULL) {
-			dprintf(3, (ddt, "%s: not found %s %lx\n",
-				    dname, fname, (u_long)np));
-			found_arr = 0;
-			goto need_sysquery;
-		}
-		if (fname != dname) {
-			if (findMyZone(np, class) == DB_Z_CACHE) {
-				/*
-				 * lifted from findMyZone()
-                                 * We really need to know if the NS
-				 * is the bottom of one of our zones
-				 * to see if we've got missing glue
-				 */
-				for (; np; np = np_parent(np))
-				    for (dp = np->n_data; dp; dp = dp->d_next)
-					if (match(dp, class, T_NS)) {
-#ifdef NCACHE
-					    if (dp->d_rcode)
-						break;
-#endif
-					    if (dp->d_zone) {
-						static char *complaint =
-						    "Glue A RR missing";
-						nslookupComplain(sysloginfo,
-						                 syslogdname,
-								 complaint,
-								 dname, dp,
-								 nsdp);
-						goto skipserver;
-					    } else {
-						found_arr = 0;
-						goto need_sysquery;
-					    }
-					}
-				/* shouldn't happen, but ... */
-				found_arr = 0;
-				goto need_sysquery;
-			} else {
-				/* Authoritative A RR missing. */
-				continue;
-			}
-		}
-		found_arr = 0;
-		oldn = n;
-
-		/* look for name server addresses */
-		delete_stale(np);
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			struct in_addr nsa;
-
-			if (dp->d_type == T_CNAME && dp->d_class == class) {
-				static const char *complaint =
-					"NS points to CNAME";
-#ifdef NCACHE
-				if (dp->d_rcode)
-					continue;
-#endif
-				nslookupComplain(sysloginfo, syslogdname,
-						complaint, dname, dp, nsdp);
-				goto skipserver;
-			}
-			if (dp->d_type != T_A || dp->d_class != class)
-				continue;
-#ifdef NCACHE
-			if (dp->d_rcode) {
-				static const char *complaint =
-					"A RR negative cache entry";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				goto skipserver;
-			}
-#endif
-			if (data_inaddr(dp->d_data).s_addr == INADDR_ANY) {
-				static const char *complaint =
-					"Bogus (0.0.0.0) A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						complaint, dname, dp, nsdp);
-				continue;
-			}
-#ifdef INADDR_LOOPBACK
-			if (ntohl(data_inaddr(dp->d_data).s_addr) ==
-					INADDR_LOOPBACK) {
-				static const char *complaint =
-					"Bogus LOOPBACK A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#endif
-#ifdef INADDR_BROADCAST
-			if (ntohl(data_inaddr(dp->d_data).s_addr) == 
-					INADDR_BROADCAST) {
-				static const char *complaint =
-					"Bogus BROADCAST A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#endif
-#ifdef IN_MULTICAST
-			if (IN_MULTICAST(ntohl(data_inaddr(dp->d_data).s_addr))) {
-				static const char *complaint =
-					"Bogus MULTICAST A RR";
-				nslookupComplain(sysloginfo, syslogdname,
-						 complaint, dname, dp, nsdp);
-				continue;
-			}
-#endif
-			/*
-			 * Don't use records that may become invalid to
-			 * reference later when we do the rtt computation.
-			 * Never delete our safety-belt information!
-			 */
-			if ((dp->d_zone == 0) &&
-			    (dp->d_ttl < curtime) &&
-			    !(dp->d_flags & DB_F_HINT) )
-		        {
-				syslog(LOG_DEBUG, "nslookup: stale '%s'\n",
-				       NAME(*np));
-				n = oldn;
-				found_arr = 0;
-				goto need_sysquery;
-			}
-#ifdef VALIDATE
-			/* anant@isi.edu validation procedure, maintains a
-			 * table of server names-addresses used recently
-			 */
-			store_name_addr(dname, data_inaddr(dp->d_data),
-					syslogdname, sysloginfo);
-#endif /*VALIDATE*/
-
-			found_arr++;
-			nsa = data_inaddr(dp->d_data);
-			/* don't put in duplicates */
-			qs = qp->q_addr;
-			for (i = 0; i < n; i++, qs++)
-				if (qs->ns_addr.sin_addr.s_addr == nsa.s_addr)
-					goto skipaddr;
-			qs->ns_addr.sin_family = AF_INET;
-			qs->ns_addr.sin_port = ns_port;
-			qs->ns_addr.sin_addr = nsa;
-			qs->ns = nsdp;
-			qs->nsdata = dp;
-			qs->nretry = 0;
-			/*
-			 * If this A RR has no RTT, initialize its RTT to a
-			 * small random value.
-			 */
-			if (dp->d_nstime == 0)
-				dp->d_nstime = 1 +
-					(int)(25.0*rand()/(RAND_MAX + 1.0));
-			/*
-			 * if we are being asked to fwd a query whose
-			 * nameserver list includes our own name/address(es),
-			 * then we have detected a lame delegation and rather
-			 * than melt down the network and hose down the other
-			 * servers (who will hose us in return), we'll return
-			 * -1 here which will cause SERVFAIL to be sent to
-			 * the client's resolver which will hopefully then
-			 * shut up.
-			 *
-			 * (originally done in nsContainsUs by vix@dec mar92;
-			 * moved into nslookup by apb@und jan1993)
-			 *
-			 * try to limp along instead of denying service
-			 * gdonl mar96
-			 */
-			if (aIsUs(nsa)) {
-			    static char *complaint = "contains our address";
-			    nslookupComplain(sysloginfo, syslogdname,
-					     complaint, dname, dp, nsdp);
-			    continue;
-			}
-			/*
-			 * If we want to forward to a host that asked us
-			 * this question then either we or they are sick
-			 * (unless they asked from some port other than
-			 * their nameserver port).  (apb@und jan1993)
-			 *
-			 * try to limp along instead of denying service
-			 * gdonl mar96
-			 */
-			if (bcmp((char *)&qp->q_from, (char *)&qs->ns_addr,
-				 sizeof(qp->q_from)) == 0)
-			{
-			    static char *complaint = "forwarding loop";
-			    nslookupComplain(sysloginfo, syslogdname,
-					     complaint, dname, dp, nsdp);
-			    continue;
-			}
-#ifdef BOGUSNS
-			/*
-			 * Don't forward queries to bogus servers.  Note
-			 * that this is unlike the previous tests, which
-			 * are fatal to the query.  Here we just skip the
-			 * server, which is only fatal if it's the last
-			 * server.  Note also that we antialias here -- all
-			 * A RR's of a server are considered the same server,
-			 * and if any of them is bogus we skip the whole
-			 * server.  Those of you using multiple A RR's to
-			 * load-balance your servers will (rightfully) lose
-			 * here.  But (unfortunately) only if they are bogus.
-			 */
-			if (addr_on_netlist(nsa, boglist))
-				goto skipserver;
-#endif
-
-			n++;
-			if (n >= NSMAX)
-				goto out;
-	skipaddr:
-			NULL;
-		}
-		dprintf(8, (ddt, "nslookup: %d ns addrs\n", n));
- need_sysquery:
-		if (found_arr == 0) {
-			potential_ns++;
-			if (!(qp->q_flags & Q_SYSTEM))
-				(void) sysquery(dname, class, T_A, NULL, 0,
-						QUERY);
-		}
- skipserver:
-		NULL;
-	}
- out:
-	dprintf(3, (ddt, "nslookup: %d ns addrs total\n", n));
-	qp->q_naddr = n;
-	if (n == 0 && potential_ns == 0 && !fwdtab) {
-		static char *complaint = "No possible A RRs";
-		if (sysloginfo && syslogdname &&
-		    !haveComplained(syslogdname, complaint))
-		{
-			syslog(LOG_INFO, "%s: query(%s) %s",
-			       sysloginfo, syslogdname, complaint);
-		}
-		return(-1);
-	}
-	/* Update the refcounts before the sort. */
-	for (i = naddr; i < n; i++) {
-		qp->q_addr[i].nsdata->d_rcnt++;
-		qp->q_addr[i].ns->d_rcnt++;
-	}
-	if (n > 1) {
-		qsort((char *)qp->q_addr, n, sizeof(struct qserv),
-		      (int (*)__P((const void *, const void *)))qcomp);
-	}
-	return (n - naddr);
-}
-
-/*
- * qcomp - compare two NS addresses, and return a negative, zero, or
- *	   positive value depending on whether the first NS address is
- *	   "better than", "equally good as", or "inferior to" the second
- *	   NS address.
- *
- * How "goodness" is defined (for the purposes of this routine):
- *  - If the estimated round trip times differ by an amount deemed significant
- *    then the one with the smaller estimate is preferred; else
- *  - If we can determine which one is topologically closer then the
- *    closer one is preferred; else
- *  - The one with the smaller estimated round trip time is preferred
- *    (zero is returned if the two estimates are identical).
- *
- * How "topological closeness" is defined (for the purposes of this routine):
- *    Ideally, named could consult some magic map of the Internet and
- *    determine the length of the path to an arbitrary destination.  Sadly,
- *    no such magic map exists.  However, named does have a little bit of
- *    topological information in the form of the sortlist (which includes
- *    the directly connected subnet(s), the directly connected net(s), and
- *    any additional nets that the administrator has added using the "sortlist"
- *    directive in the bootfile.  Thus, if only one of the addresses matches
- *    something in the sortlist then it is considered to be topologically
- *    closer.  If both match, but match different entries in the sortlist,
- *    then the one that matches the entry closer to the beginning of the
- *    sorlist is considered to be topologically closer.  In all other cases,
- *    topological closeness is ignored because it's either indeterminate or
- *    equal.
- *
- * How times are compared:
- *    Both times are rounded to the closest multiple of the NOISE constant
- *    defined below and then compared.  If the rounded values are equal
- *    then the difference in the times is deemed insignificant.  Rounding
- *    is used instead of merely taking the absolute value of the difference
- *    because doing the latter would make the ordering defined by this
- *    routine be incomplete in the mathematical sense (e.g. A > B and
- *    B > C would not imply A > C).  The mathematics are important in
- *    practice to avoid core dumps in qsort().
- *
- * XXX: this doesn't solve the European root nameserver problem very well.
- * XXX: we should detect and mark as inferior nameservers that give bogus
- *      answers
- *
- * (this was originally vixie's stuff but almquist fixed fatal bugs in it
- * and wrote the above documentation)
- */
-
-/*
- * RTT delta deemed to be significant, in milliseconds.  With the current
- * definition of RTTROUND it must be a power of 2.
- */
-#define NOISE 128		/* milliseconds; 0.128 seconds */
-
-#define sign(x) (((x) < 0) ? -1 : ((x) > 0) ? 1 : 0)
-#define RTTROUND(rtt) (((rtt) + (NOISE >> 1)) & ~(NOISE - 1))
-
-int
-qcomp(qs1, qs2)
-	struct qserv *qs1, *qs2;
-{
-	int pos1, pos2, pdiff;
-	u_long rtt1, rtt2;
-	long tdiff;
-
-	if ((!qs1->nsdata) || (!qs2->nsdata))
-		return 0;
-	rtt1 = qs1->nsdata->d_nstime;
-	rtt2 = qs2->nsdata->d_nstime;
-
-	dprintf(10, (ddt, "qcomp(%s, %s) %lu (%lu) - %lu (%lu) = %lu",
-		     inet_ntoa(qs1->ns_addr.sin_addr),
-		     inet_ntoa(qs2->ns_addr.sin_addr),
-		     rtt1, RTTROUND(rtt1), rtt2, RTTROUND(rtt2),
-		     rtt1 - rtt2));
-	if (RTTROUND(rtt1) == RTTROUND(rtt2)) {
-		pos1 = position_on_netlist(qs1->ns_addr.sin_addr, nettab);
-		pos2 = position_on_netlist(qs2->ns_addr.sin_addr, nettab);
-		pdiff = pos1 - pos2;
-		dprintf(10, (ddt, ", pos1=%d, pos2=%d\n", pos1, pos2));
-		if (pdiff)
-			return (pdiff);
-	} else {
-		dprintf(10, (ddt, "\n"));
-	}
-	tdiff = rtt1 - rtt2;
-	return (sign(tdiff));
-}
-#undef sign
-#undef RTTROUND
-
-/*
- * Arrange that forwarded query (qp) is retried after t seconds.
- * Query list will be sorted after z_time is updated.
- */
-void
-schedretry(qp, t)
-	struct qinfo *qp;
-	time_t t;
-{
-	register struct qinfo *qp1, *qp2;
-
-#ifdef DEBUG
-	if (debug > 3) {
-		fprintf(ddt, "schedretry(0x%lx, %ld sec)\n",
-			(u_long)qp, (long)t);
-		if (qp->q_time)
-		    fprintf(ddt,
-			 "WARNING: schedretry(%#lx, %ld) q_time already %ld\n",
-			    (u_long)qp, (long)t, (long)qp->q_time);
-	}
-#endif
-	t += (u_long) tt.tv_sec;
-	qp->q_time = t;
-
-	if ((qp1 = retryqp) == NULL) {
-		retryqp = qp;
-		qp->q_next = NULL;
-		return;
-	}
-	if (t < qp1->q_time) {
-		qp->q_next = qp1;
-		retryqp = qp;
-		return;
-	}
-	while ((qp2 = qp1->q_next) != NULL && qp2->q_time < t)
-		qp1 = qp2;
-	qp1->q_next = qp;
-	qp->q_next = qp2;
-}
-
-/*
- * Unsched is called to remove a forwarded query entry.
- */
-void
-unsched(qp)
-	struct qinfo *qp;
-{
-	register struct qinfo *np;
-
-	dprintf(3, (ddt, "unsched(%#lx, %d)\n", (u_long)qp, ntohs(qp->q_id)));
-	if (retryqp == qp) {
-		retryqp = qp->q_next;
-	} else {
-		for (np=retryqp;  np->q_next != QINFO_NULL;  np = np->q_next) {
-			if (np->q_next != qp)
-				continue;
-			np->q_next = qp->q_next;	/* dequeue */
-			break;
-		}
-	}
-	qp->q_next = QINFO_NULL;		/* sanity check */
-	qp->q_time = 0;
-}
-
-/*
- * Retry is called to retransmit query 'qp'.
- */
-void
-retry(qp)
-	register struct qinfo *qp;
-{
-	register int n;
-	register HEADER *hp;
-	struct sockaddr_in *nsa;
-
-	dprintf(3, (ddt, "retry(x%lx) id=%d\n", (u_long)qp, ntohs(qp->q_id)));
-
-	if (qp->q_msg == NULL) {		/* XXX - why? */
-		qremove(qp);
-		return;
-	}
-
-	if (qp->q_expire && (qp->q_expire < tt.tv_sec)) {
-		dprintf(1, (ddt,
-		     "retry(x%lx): expired @ %lu (%d secs before now (%lu))\n",
-			    (u_long)qp, (u_long)qp->q_expire,
-			    (int)(tt.tv_sec - qp->q_expire),
-			    (u_long)tt.tv_sec));
-		if (qp->q_stream || (qp->q_flags & Q_PRIMING))
-			goto fail;
-		qremove(qp);
-		return;
-	}
-
-	/* try next address */
-	n = qp->q_curaddr;
-	if (qp->q_fwd) {
-		qp->q_fwd = qp->q_fwd->next;
-		if (qp->q_fwd)
-			goto found;
-		/* out of forwarders, try direct queries */
-	} else
-		++qp->q_addr[n].nretry;
-	if (!forward_only) {
-		do {
-			if (++n >= (int)qp->q_naddr)
-				n = 0;
-			if (qp->q_addr[n].nretry < MAXRETRY)
-				goto found;
-		} while (n != qp->q_curaddr);
-	}
-fail:
-	/*
-	 * Give up. Can't reach destination.
-	 */
-	hp = (HEADER *)(qp->q_cmsg ? qp->q_cmsg : qp->q_msg);
-	if (qp->q_flags & Q_PRIMING) {
-		/* Can't give up priming */
-		unsched(qp);
-		schedretry(qp, (time_t)60*60);	/* 1 hour */
-		hp->rcode = NOERROR;	/* Lets be safe, reset the query */
-		hp->qr = hp->aa = 0;
-		qp->q_fwd = fwdtab;
-		for (n = 0; n < (int)qp->q_naddr; n++)
-			qp->q_addr[n].nretry = 0;
-		return;
-	}
-	dprintf(5, (ddt, "give up\n"));
-	n = ((HEADER *)qp->q_cmsg ? qp->q_cmsglen : qp->q_msglen);
-	hp->id = qp->q_id;
-	hp->qr = 1;
-	hp->ra = (NoRecurse == 0);
-	hp->rd = 1;
-	hp->rcode = SERVFAIL;
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(qp->q_msg, n, ddt);
-#endif
-	if (send_msg((u_char *)hp, n, qp)) {
-		dprintf(1, (ddt, "gave up retry(x%lx) nsid=%d id=%d\n",
-			    (u_long)qp, ntohs(qp->q_nsid), ntohs(qp->q_id)));
-	}
-#ifdef XSTATS
-	nameserIncr(qp->q_from.sin_addr, nssSentFail);
-#endif
-	qremove(qp);
-	return;
-
-found:
-	if (qp->q_fwd == 0 && qp->q_addr[n].nretry == 0)
-		qp->q_addr[n].stime = tt;
-	qp->q_curaddr = n;
-	hp = (HEADER *)qp->q_msg;
-	hp->rd = (qp->q_fwd ? 1 : 0);
-	nsa = Q_NEXTADDR(qp, n);
-	dprintf(1, (ddt,
-		    "%s(addr=%d n=%d) -> [%s].%d ds=%d nsid=%d id=%d %dms\n",
-		    (qp->q_fwd ? "reforw" : "resend"),
-		    n, qp->q_addr[n].nretry,
-		    inet_ntoa(nsa->sin_addr),
-		    ntohs(nsa->sin_port), ds,
-		    ntohs(qp->q_nsid), ntohs(qp->q_id),
-		    (qp->q_addr[n].nsdata != 0)
-			? qp->q_addr[n].nsdata->d_nstime
-			: (-1)));
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(qp->q_msg, qp->q_msglen, ddt);
-#endif
-	/* NOSTRICT */
-	if (sendto(ds, (char*)qp->q_msg, qp->q_msglen, 0,
-	    (struct sockaddr *)nsa,
-	    sizeof(struct sockaddr_in)) < 0) {
-		dprintf(3, (ddt, "error resending msg errno=%d\n", errno));
-	}
-	hp->rd = 1;	/* leave set to 1 for dup detection */
-	nameserIncr(nsa->sin_addr, nssSentDupQ);
-	unsched(qp);
-#ifdef SLAVE_FORWARD
-	if(forward_only)
-		schedretry(qp, (time_t)slave_retry);
-	else
-#endif /* SLAVE_FORWARD */
-	schedretry(qp, qp->q_fwd ? (2*RETRYBASE) : retrytime(qp));
-}
-
-/*
- * Compute retry time for the next server for a query.
- * Use a minimum time of RETRYBASE (4 sec.) or twice the estimated
- * service time; * back off exponentially on retries, but place a 45-sec.
- * ceiling on retry times for now.  (This is because we don't hold a reference
- * on servers or their addresses, and we have to finish before they time out.)
- */
-time_t
-retrytime(qp)
-	struct qinfo *qp;
-{
-	time_t t, u, v;
-	struct qserv *ns = &qp->q_addr[qp->q_curaddr];
-
-	if (ns->nsdata != NULL)
-		t = (time_t) MAX(RETRYBASE, 2 * ns->nsdata->d_nstime / 1000);
-	else
-		t = (time_t) RETRYBASE;
-	u = t << ns->nretry;
-	v = MIN(u, RETRY_TIMEOUT);	/* max. retry timeout for now */
-	dprintf(3, (ddt, "retrytime: nstime%ldms t%ld nretry%ld u%ld : v%ld\n",
-		    ns->nsdata ?(long)(ns->nsdata->d_nstime / 1000) :(long)-1,
-		    (long)t, (long)ns->nretry, (long)u, (long)v));
-	return (v);
-}
-
-void
-qflush()
-{
-	while (nsqhead)
-		qremove(nsqhead);
-	nsqhead = QINFO_NULL;
-	priming = 0;
-}
-
-void
-qremove(qp)
-	register struct qinfo *qp;
-{
-	dprintf(3, (ddt, "qremove(x%lx)\n", (u_long)qp));
-
-	if (qp->q_flags & Q_ZSERIAL)
-		qserial_answer(qp, 0);
-	unsched(qp);
-	qfree(qp);
-}
-
-#if defined(__STDC__) || defined(__GNUC__)
-struct qinfo *
-qfindid(u_int16_t id)
-#else
-struct qinfo *
-qfindid(id)
-	register u_int16_t id;
-#endif
-{
-	register struct qinfo *qp;
-
-	dprintf(3, (ddt, "qfindid(%d)\n", ntohs(id)));
-	for (qp = nsqhead; qp!=QINFO_NULL; qp = qp->q_link) {
-		if (qp->q_nsid == id)
-			return(qp);
-	}
-	dprintf(5, (ddt, "qp not found\n"));
-	return (NULL);
-}
-
-struct qinfo *
-qnew(name, class, type)
-	const char *name;
-	int class;
-	int type;
-{
-	register struct qinfo *qp;
-
-	qp = (struct qinfo *)calloc(1, sizeof(struct qinfo));
-	if (qp == NULL)
-		panic(ENOMEM, "qnew: calloc failed");
-	dprintf(5, (ddt, "qnew(%#x)\n", qp));
-#ifdef BIND_NOTIFY
-	qp->q_notifyzone = DB_Z_CACHE;
-#endif
-	qp->q_link = nsqhead;
-	nsqhead = qp;
-	qp->q_name = strdup(name);
-	if (!qp->q_name)
-		panic(ENOMEM, "qnew: strdup failed");
-	qp->q_class = (u_int16_t)class;
-	qp->q_type = (u_int16_t)type;
-	return (qp);
-}
-
-void
-nsfree(qp, where)
-	struct qinfo *qp;
-	char *where;
-{
-	static const char freed[] = "freed", busy[] = "busy";
-	const char *result;
-	struct databuf *dp;
-	int i;
-
-	for (i = 0 ; i < (int)qp->q_naddr ; i++) {
-		dp = qp->q_addr[i].ns;
-		if (dp) {
-			result = (--(dp->d_rcnt)) ? busy : freed;
-			dprintf(1, (ddt, "%s: ns %s rcnt %d (%s)\n",
-				    where, dp->d_data, dp->d_rcnt, result));
-			if (result == freed)
-				db_free(dp);
-		}
-		dp = qp->q_addr[i].nsdata;
-		if (dp) {
-			result = (--(dp->d_rcnt)) ? busy : freed;
-			dprintf(1, (ddt, "%s: nsdata %s rcnt %d (%s)\n",
-				    where, inet_ntoa(data_inaddr(dp->d_data)),
-				    dp->d_rcnt, result));
-			if (result == freed)
-				db_free(dp);
-		}
-	}
-}
-
-void
-qfree(qp)
-	struct qinfo *qp;
-{
-	struct qinfo *np;
-	struct databuf *dp;
-
-	dprintf(3, (ddt, "Qfree(x%lx)\n", (u_long)qp));
-	if (qp->q_next)
-		dprintf(1, (ddt, "WARNING: qfree of linked ptr x%lx\n",
-			    (u_long)qp));
-	if (qp->q_msg)
-	 	free(qp->q_msg);
- 	if (qp->q_cmsg)
- 		free(qp->q_cmsg);
-	if (qp->q_domain)
-		free(qp->q_domain);
-	if (qp->q_name)
-		free(qp->q_name);
-	nsfree(qp, "qfree");
-	if (nsqhead == qp)
-		nsqhead = qp->q_link;
-	else {
-		for (np = nsqhead; np->q_link != QINFO_NULL; np = np->q_link) {
-			if (np->q_link != qp)
-				continue;
-			np->q_link = qp->q_link;	/* dequeue */
-			break;
-		}
-	}
-	free((char*)qp);
-}
diff --git a/contrib/bind/named/ns_func.h b/contrib/bind/named/ns_func.h
deleted file mode 100644
index aa61381f34057..0000000000000
--- a/contrib/bind/named/ns_func.h
+++ /dev/null
@@ -1,170 +0,0 @@
-/* ns_func.h - declarations for ns_*.c's externally visible functions
- *
- * $Id: ns_func.h,v 8.13 1996/11/11 06:36:49 vixie Exp $
- */
-
-/* ++from ns_resp.c++ */
-extern void		ns_resp __P((u_char *, int)),
-			prime_cache __P((void)),
-			delete_all __P((struct namebuf *, int, int)),
-			delete_stale __P((struct namebuf *));
-extern struct qinfo	*sysquery __P((const char *, int, int,
-				       struct in_addr *, int, int));
-extern struct notify	*findNotifyPeer __P((const struct zoneinfo *,
-					   struct in_addr));
-extern void		sysnotify __P((const char *, int, int));
-extern int		doupdate __P((u_char *, int, u_char *, int,
-				      struct databuf **, int, u_int)),
-			send_msg __P((u_char *, int, struct qinfo *)),
-			findns __P((struct namebuf **, int,
-				    struct databuf **, int *, int)),
-			finddata __P((struct namebuf *, int, int, HEADER *,
-				      char **, int *, int *)),
-			wanted __P((struct databuf *, int, int)),
-			add_data __P((struct namebuf *,
-				      struct databuf **,
-				      u_char *, int, int *));
-/* --from ns_resp.c-- */
-
-/* ++from ns_req.c++ */
-extern void		ns_req __P((u_char *, int, int,
-				    struct qstream *,
-				    struct sockaddr_in *,
-				    int)),
-			free_addinfo __P((void)),
-			free_nsp __P((struct databuf **));
-extern int		stale __P((struct databuf *)),
-			make_rr __P((const char *, struct databuf *,
-				     u_char *, int, int)),
-			doaddinfo __P((HEADER *, u_char *, int)),
-			doaddauth __P((HEADER *, u_char *, int,
-				       struct namebuf *,
-				       struct databuf *));
-#ifdef BIND_NOTIFY
-extern int		findZonePri __P((const struct zoneinfo *,
-					 const struct sockaddr_in *));
-#endif
-/* --from ns_req.c-- */
-
-/* ++from ns_forw.c++ */
-extern time_t		retrytime __P((struct qinfo *));
-extern int		ns_forw __P((struct databuf *nsp[],
-				     u_char *msg,
-				     int msglen,
-				     struct sockaddr_in *fp,
-				     struct qstream *qsp,
-				     int dfd,
-				     struct qinfo **qpp,
-				     char *dname,
-				     int class, int type,
-				     struct namebuf *np)),
-			haveComplained __P((const char *, const char *)),
-			nslookup __P((struct databuf *nsp[],
-				      struct qinfo *qp,
-				      const char *syslogdname,
-				      const char *sysloginfo)),
-			qcomp __P((struct qserv *, struct qserv *));
-extern struct qdatagram	*aIsUs __P((struct in_addr));
-extern void		schedretry __P((struct qinfo *, time_t)),
-			unsched __P((struct qinfo *)),
-			retry __P((struct qinfo *)),
-			qflush __P((void)),
-			qremove __P((struct qinfo *)),
-			nsfree __P((struct qinfo *, char *)),
-			qfree __P((struct qinfo *));
-extern struct qinfo	*qfindid __P((u_int16_t)),
-			*qnew __P((const char *, int, int));
-/* --from ns_forw.c-- */
-
-/* ++from ns_main.c++ */
-extern u_int32_t	net_mask __P((struct in_addr));
-extern void		sqrm __P((struct qstream *)),
-			sqflush __P((struct qstream *allbut)),
-			dqflush __P((time_t gen)),
-			sq_done __P((struct qstream *)),
-			ns_setproctitle __P((char *, int)),
-			getnetconf __P((void)),
-			nsid_init __P((void));
-extern u_int16_t	nsid_next __P((void));
-extern struct netinfo	*findnetinfo __P((struct in_addr));
-/* --from ns_main.c-- */
-
-/* ++from ns_maint.c++ */
-extern void		ns_maint __P((void)),
-			sched_maint __P((void)),
-#ifdef CLEANCACHE
-			remove_zone __P((struct hashbuf *, int, int)),
-#else
-			remove_zone __P((struct hashbuf *, int)),
-#endif
-#ifdef PURGE_ZONE
-			purge_zone __P((const char *, struct hashbuf *, int)),
-#endif
-			loadxfer __P((void)),
-			qserial_query __P((struct zoneinfo *)),
-			qserial_answer __P((struct qinfo *, u_int32_t));
-extern void		holdsigchld __P((void));
-extern void		releasesigchld __P((void));
-extern SIG_FN		reapchild __P(());
-extern void		endxfer __P((void));
-extern const char *	zoneTypeString __P((const struct zoneinfo *));
-#ifdef DEBUG
-extern void		printzoneinfo __P((int));
-#endif
-/* --from ns_maint.c-- */
-
-/* ++from ns_sort.c++ */
-extern struct netinfo	*local __P((struct sockaddr_in *));
-extern void		sort_response __P((u_char *, int,
-					   struct netinfo *,
-					   u_char *));
-/* --from ns_sort.c-- */
-
-/* ++from ns_init.c++ */
-extern void		ns_refreshtime __P((struct zoneinfo *, time_t)),
-			ns_retrytime __P((struct zoneinfo *, time_t)),
-			ns_init __P((char *));
-extern enum context	ns_ptrcontext __P((const char *owner));
-extern enum context	ns_ownercontext __P((int type, enum transport));
-extern int		ns_nameok __P((const char *name, int class,
-				       enum transport, enum context,
-				       const char *owner,
-				       struct in_addr source));
-extern int		ns_wildcard __P((const char *name));
-/* --from ns_init.c-- */
-
-/* ++from ns_ncache.c++ */
-extern void		cache_n_resp __P((u_char *, int));
-/* --from ns_ncache.c-- */
-
-/* ++from ns_udp.c++ */
-extern void		ns_udp __P((void));
-/* --from ns_udp.c-- */
-
-/* ++from ns_stats.c++ */
-extern void		ns_stats __P((void));
-#ifdef XSTATS
-extern void		ns_logstats __P((void));
-#endif
-extern void		qtypeIncr __P((int qtype));
-extern struct nameser	*nameserFind __P((struct in_addr addr, int flags));
-#define NS_F_INSERT	0x0001
-extern void		nameserIncr __P((struct in_addr addr,
-					 enum nameserStats which));
-/* --from ns_stats.c-- */
-
-/* ++from ns_validate.c++ */
-extern int
-#ifdef NCACHE
-			validate __P((char *, char *, struct sockaddr_in *,
-				      int, int, char *, int, int)),
-#else
-			validate __P((char *, char *, struct sockaddr_in *,
-				      int, int, char *, int)),
-#endif
-			dovalidate __P((u_char *, int, u_char *, int, int,
-					char *, struct sockaddr_in *, int *)),
-			update_msg __P((u_char *, int *, int Vlist[], int));
-extern void		store_name_addr __P((const char *, struct in_addr,
-					     const char *, const char *));
-/* --from ns_validate.c-- */
diff --git a/contrib/bind/named/ns_glob.h b/contrib/bind/named/ns_glob.h
deleted file mode 100644
index efb0035a8d36e..0000000000000
--- a/contrib/bind/named/ns_glob.h
+++ /dev/null
@@ -1,285 +0,0 @@
-/*
- *	from ns.h	4.33 (Berkeley) 8/23/90
- *	$Id: ns_glob.h,v 8.12 1997/06/01 20:34:34 vixie Exp $
- */
-
-/*
- * ++Copyright++ 1986
- * -
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- * Global variables for the name server.
- */
-
-#ifdef DEBUG
-DECL	int			debug		INIT(0);
-DECL	FILE			*ddt		INIT(NULL);
-#endif
-
-	/* list of open streams */
-DECL	struct qstream		*streamq	INIT(QSTREAM_NULL);
-
-	/* list of datagram interfaces */
-DECL	struct qdatagram	*datagramq	INIT(QDATAGRAM_NULL);
-
-	/* often set to the current time */
-DECL	struct timeval		tt;
-
-	/* head of allocated queries */
-DECL	struct qinfo		*nsqhead	INIT(QINFO_NULL);
-
-	/* list of forwarding hosts */
-DECL	struct fwdinfo		*fwdtab		INIT(NULL);
-
-	/* datagram socket */
-DECL	int			ds		INIT(-1);
-
-	/* listening TCP socket */
-DECL	int			vs		INIT(-1);
-
-	/* received SIGHUP, need to reload db */
-DECL	int			needreload	INIT(0);
-
-	/* need to call ns_maint()*/
-DECL	int			needmaint	INIT(0);
-
-	/* how often does ns_maint() need to be called, in seconds? */
-	/* (beware: this is also the upper bound on named_xfer real time) */
-DECL	int			maint_interval	INIT(15*60);
-
-#ifdef CLEANCACHE
-	/* What's the minimum interval between cache cleanings? */
-DECL	int			cache_interval	INIT(60*60);
-#endif
-
-#ifdef XSTATS
-	/* What's the minimum interval between stats output? */
-DECL	int			stats_interval	INIT(60*60);
-#endif
-
-	/* need to process finished zone transfers */
-DECL	int			needendxfer	INIT(0);
-
-	/* need to reload secondary zone(s) */
-DECL	int			needzoneload	INIT(0);
-
-	/* need to dump database */
-DECL	int			needToDoadump	INIT(0);
-
-	/* need to checkpoint cache */
-DECL	int			needToChkpt	INIT(0);
-
-	/* need to dump statistics */
-DECL	int			needStatsDump	INIT(0);
-
-#ifdef XSTATS
-	/* need to exit 
-	 * set by shutdown signal handler
-	 *  (onintr)
-	 */
-DECL	int			needToExit	INIT(0);
-#endif /* XSTATS */
-
-#ifdef QRYLOG
-	/* is query logging turned on? */
-DECL	int			qrylog		INIT(0);
-#endif /*QRYLOG*/
-
-	/* should this server not recurse? */
-DECL	int			NoRecurse	INIT(0);
-
-	/* should this server never fetch glue? */
-DECL	int			NoFetchGlue	INIT(0);
-
-/*
- * We keep a list of favored networks headed by nettab.
- * There are three (possibly empty) parts to this list, in this order:
- *	1. directly attached (sub)nets.
- *	2. logical networks for directly attached subnetted networks.
- *	3. networks from the sort list.
- * The value (*elocal) points at the first entry in the second part of the
- * list, if any, while (*enettab) points at the first entry in the sort list.
- */
-DECL	struct netinfo		*nettab		INIT(NULL);
-DECL	struct netinfo		**elocal	INIT(&nettab);
-DECL	struct netinfo		**enettab	INIT(&nettab);
-
-#ifdef XFRNETS
-	/* list of nets we're willing to zone transfer to */
-DECL	struct netinfo		*xfrnets	INIT(NULL);
-#endif
-
-#ifdef BOGUSNS
-	/* list of bogus nameservers */
-DECL	struct netinfo		*boglist	INIT(NULL);
-#endif
-
-	/* loopback net */
-DECL	struct netinfo		netloop;
-
-	/* port to which we send queries */
-DECL	u_int16_t		ns_port;
-
-	/* Source addr of last packet */
-DECL	struct sockaddr_in	from_addr;
-
-	/* Used by ns_stats */
-DECL	time_t			boottime,
-				resettime;
-
-	/* next query to retry */
-DECL	struct qinfo		*retryqp	INIT(NULL);
-
-	/* default boot file */
-#ifdef BOOTFILE
-DECL	char			*bootfile	INIT(BOOTFILE);
-#else
-DECL	char			*bootfile	INIT(_PATH_BOOT);
-#endif
-
-	/* default debug output file */
-#ifdef DEBUGFILE
-DECL	char			*debugfile	INIT(DEBUGFILE);
-#else
-DECL	char			*debugfile	INIT(_PATH_DEBUG);
-#endif
-
-#ifdef WANT_PIDFILE
-	/* file to store current named PID */
-#ifdef PIDFILE
-DECL	char			*PidFile	INIT(PIDFILE);
-#else
-DECL	char			*PidFile	INIT(_PATH_PIDFILE);
-#endif
-#endif /*WANT_PIDFILE*/
-
-	/* zone information */
-DECL	struct zoneinfo		*zones		INIT(NULL);
-
-	/* number of zones in use */
-DECL	int			nzones		INIT(0);
-
-	/* true on slave server */
-DECL	int			forward_only	INIT(0);
-
-	/* set if we need a priming */
-DECL	int			needs_prime_cache INIT(0);
-
-	/* is cache being primed */
-DECL	int			priming		INIT(0);
-
-	/* ptrs to dnames in msg for dn_comp */
-DECL	u_char			*dnptrs[40];
-
-	/* number of names in addinfo */
-DECL	int			addcount;
-
-	/* name of cache file */
-DECL	char			*cache_file;
-
-#ifdef LOCALDOM
-	/* our local domain (deprecated in favor of resolv.conf) */
-DECL	char			*localdomain;
-#endif
-
-#ifdef SLAVE_FORWARD
-	/* retry time when a slave */
-DECL	int			slave_retry	INIT(4);
-#endif
-
-#ifdef STATSFILE
-DECL	const char		*statsfile	INIT(STATSFILE);
-#else
-DECL	const char		*statsfile	INIT(_PATH_STATS);
-#endif
-
-DECL	const char		sendtoStr[]	INIT("sendto");
-
-	/* defined in version.c, can't use DECL/INIT */
-extern	char			Version[];
-extern	char			ShortVersion[];
-
-	/* max value of xfers_running */
-DECL	int			max_xfers_running      INIT(MAX_XFERS_RUNNING);
-
-	/* max number of transfers to any given name server */
-DECL	int			max_xfers_per_ns	INIT(MAX_XFERS_PER_NS);
-
-#ifndef INVQ
-	/* should IQUERY be answered bogusly rather than with NOTIMPL? */
-DECL	int			fake_iquery	INIT(0);
-#endif
-
-enum context { domain_ctx, owner_ctx, mailname_ctx, hostname_ctx };
-DECL	const char		*context_strings[]
-#ifdef MAIN_PROGRAM
-	= { "domain", "owner", "mail", "host", NULL }
-#endif
-;
-
-enum transport { primary_trans, secondary_trans, response_trans, num_trans };
-DECL	const char		*transport_strings[]
-#ifdef MAIN_PROGRAM
-	= { "primary", "secondary", "response", NULL }
-#endif
-;
-
-enum severity { ignore, warn, fail };
-DECL	const char		*severity_strings[]
-#ifdef MAIN_PROGRAM
-	= { "ignore", "warn", "fail", NULL }
-#endif
-;
-
-DECL	struct in_addr		inaddr_any;	/* Inits to 0.0.0.0 */
diff --git a/contrib/bind/named/ns_init.c b/contrib/bind/named/ns_init.c
deleted file mode 100644
index a94e1d4516ee4..0000000000000
--- a/contrib/bind/named/ns_init.c
+++ /dev/null
@@ -1,1137 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_init.c	4.38 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: ns_init.c,v 8.25 1997/06/01 20:34:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1990
- * -
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/stat.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <syslog.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <errno.h>
-#include <ctype.h>
-
-#include "named.h"
-
-#undef nsaddr
-
-enum limit { Datasize , Files };
-
-static void		zoneinit __P((struct zoneinfo *)),
-			get_forwarders __P((FILE *)),
-			boot_read __P((const char *filename, int includefile)),
-#ifdef DEBUG
-			content_zone __P((int)),
-#endif
-			do_reload __P((char *, int, int)),
-			free_forwarders __P((void)),
-			ns_limit __P((const char *name, int value)),
-			ns_checknames __P((const char *names,
-					   const char *severity)),
-			ns_rlimit __P((const char *name, enum limit limit,
-				       long value)),
-			ns_option __P((const char *name));
-
-static struct zoneinfo	*find_zone __P((char *, int, int));
-
-static enum severity	checkname_severity[num_trans];
-
-/*
- * Set new refresh time for zone.  Use a random number in the last half of
- * the refresh limit; we want it to be substantially correct while still
- * preventing slave synchronization.
- */
-void
-ns_refreshtime(zp, timebase)
-	struct zoneinfo	*zp;
-	time_t		timebase;
-{
-	u_long refresh = (zp->z_refresh > 0) ? zp->z_refresh : INIT_REFRESH;
-	time_t half = (refresh + 1) / 2;
-
-	zp->z_time = timebase + half + (rand() % half);
-}
-
-/*
- * Set new retry time for zone.
- */
-void
-ns_retrytime(zp, timebase)
-	struct zoneinfo	*zp;
-	time_t		timebase;
-{
-	zp->z_time = timebase + zp->z_retry;
-}
-
-/*
- * Read boot file for configuration info.
- */
-void
-ns_init(bootfile)
-	char *bootfile;
-{
-	register struct zoneinfo *zp;
-	static int loads = 0;			/* number of times loaded */
-
-	dprintf(1, (ddt, "\nns_init(%s)\n", bootfile));
-	gettime(&tt);
-
-	memset(checkname_severity, '\0', sizeof checkname_severity);
-	checkname_severity[primary_trans] = fail;
-	checkname_severity[secondary_trans] = warn;
-	checkname_severity[response_trans] = ignore;
-
-        if (loads == 0) {
-		if ((zones =
-			(struct zoneinfo *)calloc(64, sizeof(struct zoneinfo)))
-					    == NULL) {
-		    syslog(LOG_ERR,
-			"Not enough memory to allocate initial zones array");
-		    exit(1);
-		}
-		nzones = 1;		/* zone zero is cache data */
-		/* allocate cache hash table, formerly the root hash table. */
-		hashtab = savehash((struct hashbuf *)NULL);
-
-		/* allocate root-hints/file-cache hash table */
-		fcachetab = savehash((struct hashbuf *)NULL);
-		/* init zone data */
-		zones[0].z_type = Z_CACHE;
-		zones[0].z_origin = "";
-        } else {
-		/* Mark previous zones as not yet found in boot file. */
-		for (zp = &zones[1]; zp < &zones[nzones]; zp++)
-			zp->z_flags &= ~Z_FOUND;
-#ifdef LOCALDOM
-		if (localdomain) {
-			free(localdomain);
-			localdomain = NULL;
-		}
-#endif
-		free_forwarders();
-		free_netlist(enettab);
-#ifdef XFRNETS
-		free_netlist(&xfrnets);
-#endif
-#ifdef BOGUSNS
-		free_netlist(&boglist);
-#endif
-		forward_only = 0;
-	}
-
-	dprintf(3, (ddt, "\n content of zones before loading \n"));
-#ifdef DEBUG
-        if (debug >= 3) {
-        	content_zone(nzones - 1);
-        }
-#endif
-	boot_read(bootfile, 0);
-
-        /* erase all old zones that were not found */
-        for (zp = &zones[1]; zp < &zones[nzones]; zp++) {
-            if (zp->z_type && (zp->z_flags & Z_FOUND) == 0) {
-#ifdef CLEANCACHE
-		remove_zone(hashtab, zp - zones, 1);
-#else
-		remove_zone(hashtab, zp - zones);
-#endif
-#ifdef SECURE_ZONES
-		free_netlist(&zp->secure_nets);
-#endif
-		do_reload(zp->z_origin, zp->z_type, zp->z_class);
-		syslog(LOG_NOTICE, "Zone \"%s\" was removed", zp->z_origin);
-		free(zp->z_origin);
-		free(zp->z_source);
-		bzero((char *) zp, sizeof(*zp));
-	    }
-        }
-	dprintf(2, (ddt,"\n content of zones after loading\n"));
-
-#ifdef DEBUG
-	if (debug >= 2) {
-        	content_zone(nzones-1);
-        }
-#endif
-
-	/*
-	 * Schedule calls to ns_maint().
-	 */
-	if (!needmaint)
-		sched_maint();
-	dprintf(1, (ddt, "exit ns_init()%s\n",
-		    needmaint ? ", need maintenance immediately" : ""));
-	loads++;
-}
-
-/*
- * Read the actual boot file.
- * Set up to recurse.
- */
-static void
-boot_read(filename, includefile)
-	const char *filename;
-	int includefile;
-{
-	register struct zoneinfo *zp;
-	char buf[MAXDNAME], obuf[MAXDNAME], *source;
-	FILE *fp;
-	int type;
-	int class;
-#ifdef GEN_AXFR
-	char *class_p;
-#endif
-	struct stat f_time;
-	static int tmpnum = 0;		/* unique number for tmp zone files */
-	int slineno;			/* Saved global line number. */
-	int i;
-
-	if ((fp = fopen(filename, "r")) == NULL) {
-		syslog(LOG_ERR, "%s: %m", filename);
-		if (includefile)
-			return;
-		exit(1);
-	}
-
-	slineno = lineno;
-	lineno = 1;
-
-	while (!feof(fp) && !ferror(fp)) {
-		/* read named.boot keyword and process args */
-		if (!getword(buf, sizeof(buf), fp, 0)) {
-			/*
-			 * This is a blank line, a commented line, or the
-			 * '\n' of the previous line.
-			 */
-			continue;
-		}
-		if (strcasecmp(buf, "directory") == 0) {
-			(void) getword(buf, sizeof(buf), fp, 0);
-			if (chdir(buf) < 0) {
-				syslog(LOG_CRIT, "directory %s: %m\n",
-					buf);
-				exit(1);
-			}
-			continue;
-		} else if (strcasecmp(buf, "sortlist") == 0) {
-			get_netlist(fp, enettab, ALLOW_NETS, buf);
-			continue;
-		} else if (strcasecmp(buf, "max-fetch") == 0) {
-			max_xfers_running = getnum(fp, filename, GETNUM_NONE);
-			continue;
-		} else if (strcasecmp(buf, "limit") == 0) {
-			(void) getword(buf, sizeof(buf), fp, 0);
-			ns_limit(buf, getnum(fp, filename, GETNUM_SCALED));
-			continue;
-		} else if (strcasecmp(buf, "options") == 0) {
-			while (getword(buf, sizeof(buf), fp, 0))
-				ns_option(buf);
-			continue;
-		} else if (strcasecmp(buf, "check-names") == 0) {
-			(void) getword(buf, sizeof(buf), fp, 0);
-			(void) getword(obuf, sizeof(obuf), fp, 0);
-			ns_checknames(buf, obuf);
-			continue;
-		} else if (strcasecmp(buf, "forwarders") == 0) {
-			get_forwarders(fp);
-			continue;
-		} else if (strcasecmp(buf, "slave") == 0) {
-			forward_only++;
-			continue;
-#ifdef BOGUSNS
-		} else if (strcasecmp(buf, "bogusns") == 0) {
-			get_netlist(fp, &boglist, ALLOW_HOSTS, buf);
-			continue;
-#endif
-#ifdef XFRNETS
-		} else if ((strcasecmp(buf, "tcplist") == 0) ||
-			   (strcasecmp(buf, "xfrnets") == 0)) {
-			get_netlist(fp, &xfrnets, ALLOW_NETS, buf);
-			continue;
-#endif
-#ifdef LOCALDOM
-		} else if (strcasecmp(buf, "domain") == 0) {
-			if (getword(buf, sizeof(buf), fp, 1))
-				localdomain = savestr(buf);
-			continue;
-#endif
-		} else if (strcasecmp(buf, "include") == 0) {
-			if (getword(buf, sizeof(buf), fp, 0))
-				boot_read(buf, 1);
-			continue;
-		} else if (strncasecmp(buf, "cache", 5) == 0) {
-			type = Z_CACHE;
-			class = C_IN;
-#ifdef GEN_AXFR
-			if (class_p = strchr(buf, '/')) {
-				class = get_class(class_p+1);
-
-				if (class != C_IN) {
-					syslog(LOG_NOTICE,
-		   "cache directive with non-IN class is not supported (yet)");
-					endline(fp);
-					continue;
-				}
-			}
-#endif
-		} else if (strncasecmp(buf, "primary", 7) == 0) {
-			type = Z_PRIMARY;
-			class = C_IN;
-#ifdef GEN_AXFR
-			if (class_p = strchr(buf, '/'))
-				class = get_class(class_p+1);
-#endif
-		} else if (strncasecmp(buf, "secondary", 9) == 0) {
-			type = Z_SECONDARY;
-			class = C_IN;
-#ifdef GEN_AXFR
-			if (class_p = strchr(buf, '/'))
-				class = get_class(class_p+1);
-#endif
-#ifdef STUBS
-		} else if (strncasecmp(buf, "stub", 4) == 0) {
-			type = Z_STUB;
-			class = C_IN;
-#ifdef GEN_AXFR
-			if (class_p = strchr(buf, '/'))
-				class = get_class(class_p+1);
-#endif
-#endif
-		} else {
-			syslog(LOG_NOTICE,
-			       "%s: line %d: unknown directive '%s'\n",
-			       filename, lineno, buf);
-			endline(fp);
-			continue;
-		}
-
-		/*
-		 * read zone origin
-		 */
-		if (!getword(obuf, sizeof(obuf), fp, 1)) {
-			syslog(LOG_NOTICE, "%s: line %d: missing origin\n",
-			    filename, lineno);
-			continue;
-		}
-		i = strlen(obuf);
-		if ((obuf[i-1] == '.') && (i != 1))
-			syslog(LOG_INFO,
-			       "%s: line %d: zone \"%s\" has trailing dot\n",
-			       filename, lineno, obuf);
-		while ((--i >= 0) && (obuf[i] == '.'))
-			obuf[i] = '\0';
-		dprintf(1, (ddt, "zone origin %s", obuf[0]?obuf:"."));
-		/*
-		 * Read source file or host address.
-		 */
-		if (!getword(buf, sizeof(buf), fp, 0)) {
-			syslog(LOG_NOTICE, "%s: line %d: missing %s\n",
-				filename, lineno, 
-#ifdef STUBS
-			   (type == Z_SECONDARY || type == Z_STUB)
-#else
-			   (type == Z_SECONDARY)
-#endif
-			       ?"host address"
-			       :"source file");
-			continue;
-		}
-
-		/*
-		 * Check for previous instance of this zone (reload).
-		 */
-		if (!(zp = find_zone(obuf, type, class))) {
-			if (type == Z_CACHE) {
-				zp = &zones[0];
-				goto gotcache;
-			}
-			for (zp = &zones[1]; zp < &zones[nzones]; zp++)
-				if (zp->z_type == Z_NIL)
-					goto gotzone;
-			/*
-			 * This code assumes that nzones never decreases.
-			 */
-			if (nzones % 64 == 0) {
-			    dprintf(1, (ddt,
-					"Reallocating zones structure\n"));
-			    /*
-			     * Realloc() not used since it might damage zones
-			     * if an error occurs.
-			     */
-			    zp = (struct zoneinfo *)
-				malloc((64 + nzones)
-				       * sizeof(struct zoneinfo));
-			    if (!zp) {
-				    syslog(LOG_NOTICE,
-					   "no memory for more zones");
-				    endline(fp);
-				    continue;
-			    }
-			    bcopy((char *)zones, (char *)zp,
-				  nzones * sizeof(struct zoneinfo));
-			    bzero((char *)&zp[nzones],
-				  64 * sizeof(struct zoneinfo));
-			    free(zones);
-			    zones = zp;
-			}
-			zp = &zones[nzones++];
-	gotzone:
-			zp->z_origin = savestr(obuf);
-	gotcache:
-			zp->z_type = type;
-			zp->z_class = class;
-		}
-		zp->z_addrcnt = 0;
-
-		switch (type) {
-		case Z_CACHE:
-			source = savestr(buf);
-			dprintf(1, (ddt, ", source = %s\n", source));
-			zp->z_refresh = 0;	/* by default, no dumping */
-			if (getword(buf, sizeof(buf), fp, 0)) {
-#ifdef notyet
-				zp->z_refresh = atoi(buf);
-				if (zp->z_refresh <= 0) {
-					syslog(LOG_NOTICE,
-				"%s: line %d: bad refresh time '%s', ignored\n",
-						filename, lineno, buf);
-					zp->z_refresh = 0;
-				} else if (cache_file == NULL)
-					cache_file = source;
-#else
-				syslog(LOG_NOTICE,
-				       "%s: line %d: cache refresh ignored\n",
-				       filename, lineno);
-#endif
-				endline(fp);
-			}
-			/*
-			 * If we've loaded this file, and the file has
-			 * not been modified and contains no $include,
-			 * then there's no need to reload.
-			 */
-			if (zp->z_source &&
-			    !strcmp(source, zp->z_source) &&
-			    !(zp->z_flags & Z_INCLUDE) && 
-			    stat(zp->z_source, &f_time) != -1 &&
-			    zp->z_ftime == f_time.st_mtime) {
-				dprintf(1, (ddt, "cache is up to date\n"));
-				if (source != cache_file)
-					free(source);
-				break; /* zone is already up to date */
-			}
-
-			/* file has changed, or hasn't been loaded yet */
-			if (zp->z_source) {
-				free(zp->z_source);
-#ifdef CLEANCACHE
-				remove_zone(fcachetab, 0, 1);
-#else
-				remove_zone(fcachetab, 0);
-#endif
-			}
-			zp->z_source = source;
-			dprintf(1, (ddt, "reloading zone\n"));
-			(void) db_load(zp->z_source, zp->z_origin, zp, NULL);
-			break;
-
-		case Z_PRIMARY:
-			source = savestr(buf);
-    		        endline(fp);
-
-			dprintf(1, (ddt, ", source = %s\n", source));
-			/*
-			 * If we've loaded this file, and the file has
-			 * not been modified and contains no $include,
-			 * then there's no need to reload.
-			 */
-			if (zp->z_source &&
-			    !strcmp(source, zp->z_source) &&
-			    !(zp->z_flags & Z_INCLUDE) && 
-			    stat(zp->z_source, &f_time) != -1 &&
-			    zp->z_ftime == f_time.st_mtime) {
-				dprintf(1, (ddt, "zone is up to date\n"));
-				free(source);
-				break; /* zone is already up to date */
-			}
-			if (zp->z_source) {
-				free(zp->z_source);
-#ifdef CLEANCACHE
-				remove_zone(hashtab, zp - zones, 1);
-#else
-				remove_zone(hashtab, zp - zones);
-#endif
-			}
-                        zp->z_source = source;
-			zp->z_flags &= ~Z_AUTH;
-#ifdef PURGE_ZONE
-			purge_zone(zp->z_origin, hashtab, zp->z_class);
-#endif
-			dprintf(1, (ddt, "reloading zone\n"));
-			if (!db_load(zp->z_source, zp->z_origin, zp, NULL))
-				zp->z_flags |= Z_AUTH;
-			zp->z_refresh = 0;	/* no maintenance needed */
-			zp->z_time = 0;
-			break;
-
-		case Z_SECONDARY:
-#ifdef STUBS
-		case Z_STUB:
-#endif
-			source = NULL;
-			dprintf(1, (ddt, "\n\taddrs: "));
-			do {
-				if (!inet_aton(buf,
-					       &zp->z_addr[zp->z_addrcnt])
-				    ) {
-					source = savestr(buf);
-    		                        endline(fp);
-					break;
-				}
-				dprintf(1, (ddt, "%s, ", buf));
-				if ((int)++zp->z_addrcnt > NSMAX - 1) {
-					zp->z_addrcnt = NSMAX - 1;
-					dprintf(1, (ddt,
-						    "\nns.h NSMAX reached\n"));
-				}
-			} while (getword(buf, sizeof(buf), fp, 0));
-			dprintf(1, (ddt, "addrcnt = %d\n", zp->z_addrcnt));
-			if (!source) {
-				/*
-				 * We will always transfer this zone again
-				 * after a reload.
-				 */
-				sprintf(buf, "%s/NsTmp%ld.%d", _PATH_TMPDIR,
-					(long)getpid(), tmpnum++);
-				source = savestr(buf);
-				zp->z_flags |= Z_TMP_FILE;
-			} else
-				zp->z_flags &= ~Z_TMP_FILE;
-			/*
-			 * If we had a backup file name, and it was changed,
-			 * free old zone and start over.  If we don't have
-			 * current zone contents, try again now in case
-			 * we have a new server on the list.
-			 */
-			if (zp->z_source &&
-			    (strcmp(source, zp->z_source) ||
-			     (stat(zp->z_source, &f_time) == -1 ||
-			      (zp->z_ftime != f_time.st_mtime)))) {
-				dprintf(1, (ddt,
-				        "backup file changed or missing\n"));
-				free(zp->z_source);
-				zp->z_source = NULL;
-				zp->z_serial = 0;	/* force xfer */
-				if (zp->z_flags & Z_AUTH) {
-					zp->z_flags &= ~Z_AUTH;
-#ifdef	CLEANCACHE
-					remove_zone(hashtab, zp - zones, 1);
-#else
-					remove_zone(hashtab, zp - zones);
-#endif
-					/*
-					 * reload parent so that NS records are
-					 * present during the zone transfer.
-					 */
-					do_reload(zp->z_origin, zp->z_type,
-						  zp->z_class);
-				}
-			}
-			if (zp->z_source)
-				free(source);
-			else
-				zp->z_source = source;
-			if (!(zp->z_flags & Z_AUTH))
-				zoneinit(zp);
-#ifdef FORCED_RELOAD
-			else {
-				/* 
-				** Force secondary to try transfer right away 
-				** after SIGHUP.
-				*/
-				if (!(zp->z_flags & (Z_QSERIAL|Z_XFER_RUNNING))
-				    && reloading) {
-					zp->z_time = tt.tv_sec;
-					needmaint = 1;
-				}
-			}
-#endif /* FORCED_RELOAD */
-			break;
-
-		}
-		if ((zp->z_flags & Z_FOUND) &&	/* already found? */
-		    (zp - zones) != DB_Z_CACHE)	/* cache never sets Z_FOUND */
-			syslog(LOG_NOTICE,
-			       "Zone \"%s\" declared more than once",
-			       zp->z_origin);
-		zp->z_flags |= Z_FOUND;
-		dprintf(1, (ddt, "zone[%d] type %d: '%s'",
-			    zp-zones, type,
-			    *(zp->z_origin) == '\0' ? "." : zp->z_origin));
-		if (zp->z_refresh && zp->z_time == 0)
-			ns_refreshtime(zp, tt.tv_sec);
-		if (zp->z_time <= tt.tv_sec)
-			needmaint = 1;
-		dprintf(1, (ddt, " z_time %lu, z_refresh %lu\n",
-			    (u_long)zp->z_time, (u_long)zp->z_refresh));
-	}
-	(void) my_fclose(fp);
-	lineno = slineno;
-}
-
-static void
-zoneinit(zp)
-	register struct zoneinfo *zp;
-{
-	struct stat sb;
-	int result;
-
-	/*
-	 * Try to load zone from backup file,
-	 * if one was specified and it exists.
-	 * If not, or if the data are out of date,
-	 * we will refresh the zone from a primary
-	 * immediately.
-	 */
-	if (!zp->z_source)
-		return;
-	result = stat(zp->z_source, &sb);
-#ifdef PURGE_ZONE
-	if (result != -1)
-		purge_zone(zp->z_origin, hashtab, zp->z_class);
-#endif
-	if (result == -1 || db_load(zp->z_source, zp->z_origin, zp, NULL)) {
-		/*
-		 * Set zone to be refreshed immediately.
-		 */
-		zp->z_refresh = INIT_REFRESH;
-		zp->z_retry = INIT_REFRESH;
-		if (!(zp->z_flags & (Z_QSERIAL|Z_XFER_RUNNING))) {
-			zp->z_time = tt.tv_sec;
-			needmaint = 1;
-		}
-	} else {
-		zp->z_flags |= Z_AUTH;
-	}
-}
-
-static void
-get_forwarders(fp)
-	FILE *fp;
-{
-	char buf[MAXDNAME];
-	register struct fwdinfo *fip = NULL, *ftp = NULL;
-
-#ifdef SLAVE_FORWARD
-	int forward_count = 0;
-#endif
-
-	dprintf(1, (ddt, "forwarders "));
-
-	/* On multiple forwarder lines, move to end of the list. */
-#ifdef SLAVE_FORWARD
-	if (fwdtab != NULL){
-		forward_count++;
-		for (fip = fwdtab; fip->next != NULL; fip = fip->next)
-			forward_count++;
-	}
-#else
-	if (fwdtab != NULL) {
-		for (fip = fwdtab; fip->next != NULL; fip = fip->next) {
-			;
-		}
-	}
-#endif /* SLAVE_FORWARD */
-
-	while (getword(buf, sizeof(buf), fp, 0)) {
-		if (strlen(buf) == 0)
-			break;
-		dprintf(1, (ddt," %s",buf));
-		if (!ftp) {
-			ftp = (struct fwdinfo *)malloc(sizeof(struct fwdinfo));
-			if (!ftp)
-				panic(errno, "malloc(fwdinfo)");
-		}
-		if (inet_aton(buf, &ftp->fwdaddr.sin_addr)) {
-			ftp->fwdaddr.sin_port = ns_port;
-			ftp->fwdaddr.sin_family = AF_INET;
-		} else {
-			syslog(LOG_NOTICE, "'%s' (ignored, NOT dotted quad)",
-			       buf);
-			continue;	
-		}
-#ifdef FWD_LOOP
-		if (aIsUs(ftp->fwdaddr.sin_addr)) {
-			syslog(LOG_NOTICE,
-			       "Forwarder '%s' ignored, my address",
-			       buf);
-			dprintf(1, (ddt, " (ignored, my address)"));
-			continue;
-		}
-#endif /* FWD_LOOP */
-		ftp->next = NULL;
-		if (fwdtab == NULL)
-			fwdtab = ftp;	/* First time only */
-		else
-			fip->next = ftp;
-		fip = ftp;
-		ftp = NULL;
-#ifdef SLAVE_FORWARD
-		forward_count++;
-#endif /* SLAVE_FORWARD */
-	}
-	if (ftp)
-		free((char *)ftp);
-	
-#ifdef SLAVE_FORWARD
-	/*
-	** Set the slave retry time to 60 seconds total divided
-	** between each forwarder
-	*/
-	if (forward_count != 0) {
-		slave_retry = (int) (60 / forward_count);
-		if(slave_retry <= 0)
-			slave_retry = 1;
-	}
-#endif
-
-	dprintf(1, (ddt, "\n"));
-#ifdef DEBUG
-	if (debug > 2) {
-		for (ftp = fwdtab; ftp != NULL; ftp = ftp->next) {
-			fprintf(ddt, "ftp x%lx [%s] next x%lx\n",
-				(u_long)ftp,
-				inet_ntoa(ftp->fwdaddr.sin_addr),
-				(u_long)ftp->next);
-		}
-	}
-#endif
-}
-
-static void
-free_forwarders()
-{
-	register struct fwdinfo *ftp, *fnext;
-
-	for (ftp = fwdtab; ftp != NULL; ftp = fnext) {
-		fnext = ftp->next;
-		free((char *)ftp);
-	}
-	fwdtab = NULL;
-}
-
-static struct zoneinfo *
-find_zone(name, type, class) 
-	char *name;
-	int type, class;
-{
-	register struct zoneinfo *zp;
-
-        for (zp = &zones[1]; zp < &zones[nzones]; zp++) {
-		if (zp->z_type == type && zp->z_class == class &&
-		    strcasecmp(name, zp->z_origin) == 0) {
-			dprintf(2, (ddt, ", old zone (%d)", zp - zones));
-			return (zp);
-		}
-	}
-	dprintf(2, (ddt, ", new zone"));
-	return NULL;
-}
-
-static void
-do_reload(domain, type, class)
-	char *domain;
-	int type;
-	int class;
-{
-	char *s;
-	struct zoneinfo *zp;
-
-	dprintf(1, (ddt, "do_reload: %s %d %d\n", 
-		    *domain ? domain : ".", type, class));
-
-	/* the zone has changed type? */
-	/* NOTE: we still exist so don't match agains ourselves */
-	/* If we are a STUB or SECONDARY check that we have loaded */
-	if (((type != Z_STUB) && (zp = find_zone(domain, Z_STUB, class)) &&
-	     zp->z_serial) ||
-	    ((type != Z_CACHE) && find_zone(domain, Z_CACHE, class)) ||
-	    ((type != Z_PRIMARY) && find_zone(domain, Z_PRIMARY, class)) ||
-	    ((type != Z_SECONDARY)
-	     && (zp = find_zone(domain, Z_SECONDARY, class)) && zp->z_serial)
-	    ) {
-		return;
-	}
-
-	while ((s = strchr(domain, '.')) || *domain) {
-		if (s)
-			domain = s + 1;	/* skip dot */
-		else
-			domain = "";	/* root zone */
-
-		if ((zp = find_zone(domain, Z_STUB, class)) ||
-		    (zp = find_zone(domain, Z_CACHE, class)) ||
-		    (zp = find_zone(domain, Z_PRIMARY, class)) ||
-		    (zp = find_zone(domain, Z_SECONDARY, class))) {
-
-			dprintf(1, (ddt, "do_reload: matched %s\n",
-				    *domain ? domain : "."));
-
-#ifdef CLEANCACHE
-			if (zp->z_type == Z_CACHE)
-				remove_zone(fcachetab, 0, 1);
-			else
-				remove_zone(hashtab, zp - zones, 1);
-#else
-			if (zp->z_type == Z_CACHE)
-				remove_zone(fcachetab, 0);
-			else
-				remove_zone(hashtab, zp - zones);
-#endif
-			zp->z_flags &= ~Z_AUTH;
-
-			switch (zp->z_type) {
-			case Z_SECONDARY:
-			case Z_STUB:
-				zoneinit(zp);
-				break;
-			case Z_PRIMARY:
-			case Z_CACHE:
-				if (db_load(zp->z_source, zp->z_origin, zp, 0)
-				    == 0)
-					zp->z_flags |= Z_AUTH;
-				break;
-			}
-			break;
-		}
-	}
-}
-
-#ifdef DEBUG
-/* prints out the content of zones */
-static void
-content_zone(end) 
-	int end;
-{
-	int i;
-
-	for (i = 1;  i <= end;  i++) {
-		printzoneinfo(i);
-	}
-}
-#endif
-
-static void
-ns_limit(name, value)
-	const char *name;
-	int value;
-{
-	if (!strcasecmp(name, "transfers-in")) {
-		max_xfers_running = value;
-	} else if (!strcasecmp(name, "transfers-per-ns")) {
-		max_xfers_per_ns = value;
-	} else if (!strcasecmp(name, "datasize")) {
-		ns_rlimit("datasize", Datasize, value);
-	} else if (!strcasecmp(name, "files")) {
-		ns_rlimit("files", Files, value);
-	} else {
-		syslog(LOG_ERR,
-		       "error: unrecognized limit in bootfile: \"%s\"",
-		       name);
-		exit(1);
-	}
-}
-
-static int
-select_string(strings, string)
-	const char *strings[];
-	const char *string;
-{
-	int i;
-
-	for (i = 0; strings[i] != NULL; i++)
-		if (!strcasecmp(strings[i], string))
-			return (i);
-	return (-1);
-}
-
-static void
-ns_checknames(transport_str, severity_str)
-	const char *transport_str;
-	const char *severity_str;
-{
-	enum transport transport;
-	enum severity severity;
-	int i;
-
-	if ((i = select_string(transport_strings, transport_str)) == -1) {
-		syslog(LOG_ERR,
-		      "error: unrecognized transport type in bootfile: \"%s\"",
-		       transport_str);
-		exit(1);
-	}
-	transport = (enum transport) i;
-
-	if ((i = select_string(severity_strings, severity_str)) == -1) {
-		syslog(LOG_ERR,
-		       "error: unrecognized severity type in bootfile: \"%s\"",
-		       severity_str);
-		exit(1);
-	}
-	severity = (enum severity) i;
-
-	checkname_severity[transport] = severity;
-	syslog(LOG_INFO, "check-names %s %s", transport_str, severity_str);
-}
-
-enum context
-ns_ptrcontext(owner)
-	const char *owner;
-{
-	if (samedomain(owner, "in-addr.arpa") || samedomain(owner, "ip6.int"))
-		return (hostname_ctx);
-	return (domain_ctx);
-}
-
-enum context
-ns_ownercontext(type, transport)
-	int type;
-	enum transport transport;
-{
-	enum context context;
-
-	switch (type) {
-	case T_A:
-	case T_WKS:
-	case T_MX:
-		switch (transport) {
-		case primary_trans:
-		case secondary_trans:
-			context = owner_ctx;
-			break;
-		case response_trans:
-			context = hostname_ctx;
-			break;
-		default:
-			panic(-1, "impossible condition in ns_ownercontext()");
-		}
-		break;
-	case T_MB:
-	case T_MG:
-		context = mailname_ctx;
-	default:
-		context = domain_ctx;
-		break;
-	}
-	return (context);
-}
-
-int
-ns_nameok(name, class, transport, context, owner, source)
-	const char *name;
-	int class;
-	enum transport transport;
-	enum context context;
-	struct in_addr source;
-	const char *owner;
-{
-	enum severity severity = checkname_severity[transport];
-	int ok;
-
-	if (severity == ignore)
-		return (1);
-	switch (context) {
-	case domain_ctx:
-		ok = (class != C_IN) || res_dnok(name);
-		break;
-	case owner_ctx:
-		ok = (class != C_IN) || res_ownok(name);
-		break;
-	case mailname_ctx:
-		ok = res_mailok(name);
-		break;
-	case hostname_ctx:
-		ok = res_hnok(name);
-		break;
-	default:
-		panic(-1, "impossible condition in ns_nameok()");
-	}
-	if (!ok) {
-		char *s, *o;
-
-		if (source.s_addr == INADDR_ANY)
-			s = strdup(transport_strings[transport]);
-		else {
-			s = malloc(strlen(transport_strings[transport]) +
-				   sizeof " from [000.000.000.000]");
-			if (s)
-				sprintf(s, "%s from [%s]",
-					transport_strings[transport],
-					inet_ntoa(source));
-		}
-		if (strcasecmp(owner, name) == 0)
-			o = strdup("");
-		else {
-			const char *t = (*owner == '\0') ? "." : owner;
-
-			o = malloc(strlen(t) + sizeof " (owner \"\")");
-			if (o)
-				sprintf(o, " (owner \"%s\")", t);
-		}
-#ifndef ultrix
-		syslog((transport == response_trans) ? LOG_INFO : LOG_NOTICE,
-		       "%s name \"%s\"%s %s (%s) is invalid - %s",
-		       context_strings[context],
-		       name, o != NULL ? o : "[malloc failed]", p_class(class),
-		       s != NULL ? s : "[malloc failed]",
-		       (severity == fail) ? "rejecting" : "proceeding anyway");
-#endif
-		if (severity == warn)
-			ok = 1;
-		if (s)
-			free(s);
-		if (o)
-			free(o);
-	}
-	return (ok);
-}
-
-int
-ns_wildcard(name)
-	const char *name;
-{
-	if (*name != '*')
-		return (0);
-	return (*++name == '\0');
-}
-
-static void
-ns_rlimit(name, limit, value)
-	const char *name;
-	enum limit limit;
-	long value;
-{
-#ifndef HAVE_GETRUSAGE
-# ifdef LINT
-	name; limit; value;
-# endif
-	syslog(LOG_WARNING, "warning: unimplemented limit in bootfile: \"%s\"",
-	       name);
-#else
-	struct rlimit limits;
-	int rlimit = -1;
-
-	switch (limit) {
-	case Datasize:
-		rlimit = RLIMIT_DATA;
-		break;
-	case Files:
-#ifdef RLIMIT_NOFILE
-		rlimit = RLIMIT_NOFILE;
-#endif
-		break;
-	default:
-		panic(-1, "impossible condition in ns_rlimit()");
-	}
-	if (rlimit == -1) {
-		syslog(LOG_WARNING,
-		       "limit \"%s\" not supported on this system - ignored",
-		       name);
-		return;
-	}
-	if (getrlimit(rlimit, &limits) < 0) {
-		syslog(LOG_WARNING, "getrlimit(%s): %m", name);
-		return;
-	}
-	limits.rlim_cur = limits.rlim_max = value;
-	if (setrlimit(rlimit, &limits) < 0) {
-		syslog(LOG_WARNING, "setrlimit(%s, %ld): %m", name, value);
-		return;
-	}
-#endif
-}
-
-static void
-ns_option(name)
-	const char *name;
-{
-	if (!strcasecmp(name, "no-recursion")) {
-		NoRecurse = 1;
-	} else if (!strcasecmp(name, "no-fetch-glue")) {
-		NoFetchGlue = 1;
-#ifdef QRYLOG
-	} else if (!strcasecmp(name, "query-log")) {
-		qrylog = 1;
-#endif
-	} else if (!strcasecmp(name, "forward-only")) {
-		forward_only = 1;
-#ifndef INVQ
-	} else if (!strcasecmp(name, "fake-iquery")) {
-		fake_iquery = 1;
-#endif
-	} else {
-		syslog(LOG_ERR,
-		       "error: unrecognized option in bootfile: \"%s\"",
-		       name);
-		exit(1);
-	}
-}
diff --git a/contrib/bind/named/ns_main.c b/contrib/bind/named/ns_main.c
deleted file mode 100644
index 7f880820d94ff..0000000000000
--- a/contrib/bind/named/ns_main.c
+++ /dev/null
@@ -1,1696 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_main.c	4.55 (Berkeley) 7/1/91";
-static char rcsid[] = "$Id: ns_main.c,v 8.25 1997/06/01 20:34:34 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1989, 1990
- * -
- * Copyright (c) 1986, 1989, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if !defined(lint) && !defined(SABER)
-char copyright[] =
-"@(#) Copyright (c) 1986, 1989, 1990 The Regents of the University of California.\n\
- portions Copyright (c) 1993 Digital Equipment Corporation\n\
- portions Copyright (c) 1995 Internet Software Consortium\n\
- All rights reserved.\n";
-#endif /* not lint */
-
-/*
- * Internet Name server (see RCF1035 & others).
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#if !defined(SYSV) && defined(XXX)
-#include <sys/wait.h>
-#endif /* !SYSV */
-#if defined(__osf__)
-# define _SOCKADDR_LEN		/* XXX - should be in portability.h but that
-				 * would need to be included before socket.h
-				 */
-#endif
-#include <sys/ioctl.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#if defined(__osf__)
-# include <sys/mbuf.h>
-# include <net/route.h>
-#endif
-#if defined(_AIX)
-# include <sys/time.h>
-# define TIME_H_INCLUDED
-#endif
-#include <net/if.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <fcntl.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <errno.h>
-#include <signal.h>
-#include <netdb.h>
-#include <resolv.h>
-#if defined(SVR4)
-# include <sys/sockio.h>
-#endif
-
-#define MAIN_PROGRAM
-#include "named.h"
-#undef MAIN_PROGRAM
-
-#undef nsaddr
-
-				/* UDP receive, TCP send buffer size */
-static	const int		rbufsize = 8 * 1024,
-				/* TCP send window size */
-				sbufsize = 16 * 1024;
-
-static	struct sockaddr_in	nsaddr;
-static	u_int16_t		local_ns_port,		/* our service port */
-				nsid_state;
-static	fd_set			mask;			/* open descriptors */
-static	char			**Argv = NULL;
-static	char			*LastArg = NULL;	/* end of argv */
-
-static	struct qstream		*sqadd __P((void));
-static	void			sq_query __P((struct qstream *)),
-				opensocket __P((struct qdatagram *)),
-#ifdef DEBUG
-				printnetinfo __P((struct netinfo *)),
-#endif
-				setdebug __P((int));
-static	int			sq_here __P((struct qstream *));
-
-static	SIG_FN			onintr __P(()),
-				maint_alarm __P(()),
-				setdumpflg __P(()),
-				onhup __P(()),
-#if defined(QRYLOG) && defined(SIGWINCH)
-				setQrylogFlg __P(()),
-#endif
-				setIncrDbgFlg __P(()),
-				setNoDbgFlg __P(()),
-#ifdef SIGSYS
-				sigprof __P(()),
-#endif /* SIGSYS */
-				setchkptflg __P(()),
-				setstatsflg __P(());
-
-static void
-usage()
-{
-	fprintf(stderr,
-"Usage: named [-d #] [-q] [-r] [-p port[/localport]] [[-b] bootfile]\n");
-	exit(1);
-}
-
-/*ARGSUSED*/
-void
-main(argc, argv, envp)
-	int argc;
-	char *argv[], *envp[];
-{
-	register int n, udpcnt;
-	register char *arg;
-	register struct qstream *sp;
-	register struct qdatagram *dqp;
-	struct qstream *nextsp;
-	int nfds;
-	const int on = 1;
-	int rfd, size, len;
-	time_t lasttime, maxctime;
-	u_char buf[PACKETSZ];
-#ifdef NeXT
-	int old_sigmask;
-#endif
-	fd_set tmpmask;
-	struct timeval t, *tp;
-	struct qstream *candidate = QSTREAM_NULL;
-	char **argp;
-#ifdef PID_FIX
-	char oldpid[10];
-#endif
-#ifdef WANT_PIDFILE
-	FILE	*fp;			/* file descriptor for pid file */
-#endif
-#ifdef IP_OPTIONS
-	u_char ip_opts[50];		/* arbitrary size */
-#endif
-#ifdef	RLIMIT_NOFILE
-	struct rlimit rl;
-#endif
-
-	local_ns_port = ns_port = htons(NAMESERVER_PORT);
-
-	/* BSD has a better random number generator but it's not clear
-	 * that we need it here.
-	 */
-	gettime(&tt);
-	srand(((unsigned)getpid()) + (unsigned)tt.tv_usec);
-
-	/*
-	**  Save start and extent of argv for ns_setproctitle().
-	*/
-
-	Argv = argp = argv;
-	while (*argp)
-		argp++;
-	LastArg = argp[-1] + strlen(argp[-1]);
-
-	(void) umask(022);
-	/* XXX - should use getopt here */
-	while (--argc > 0) {
-		arg = *++argv;
-		if (*arg == '-') {
-			while (*++arg)
-				switch (*arg) {
-				case 'b':
-					if (--argc <= 0)
-						usage();
-					bootfile = savestr(*++argv);
-					break;
-
-  				case 'd':
- 					++argv;
-
- 					if (*argv != 0) {
- 					    if (**argv == '-') {
- 						argv--;
- 						break;
- 					    }
-#ifdef DEBUG
- 					    debug = atoi(*argv);
-#endif
- 					    --argc;
- 					}
-#ifdef DEBUG
-					if (debug <= 0)
-						debug = 1;
-					setdebug(1);
-#endif
-					break;
-
-				case 'p':
-					/* use nonstandard port number.
-					 * usage: -p remote/local
-					 * remote is the port number to which
-					 * we send queries.  local is the port
-					 * on which we listen for queries.
-					 * local defaults to same as remote.
-					 */
-					if (--argc <= 0)
-						usage();
-					ns_port = htons((u_int16_t)
-							atoi(*++argv));
-					{
-					    char *p = strchr(*argv, '/');
-					    if (p) {
-						local_ns_port =
-						    htons((u_int16_t)
-							  atoi(p+1));
-					    } else {
-						local_ns_port = ns_port;
-					    }
-					}
-					break;
-
-#ifdef QRYLOG
-				case 'q':
-					qrylog = 1;
-					break;
-#endif
-
-				case 'r':
-					NoRecurse = 1;
-					break;
-
-				default:
-					usage();
-				}
-		} else
-			bootfile = savestr(*argv);
-	}
-
-#ifdef DEBUG
-	if (!debug)
-#endif
-		for (n = getdtablesize() - 1; n > 2; n--)
-			(void) close(n);	/* don't use my_close() here */
-#ifdef DEBUG
-	else {
-		fprintf(ddt, "Debug turned ON, Level %d\n",debug);
-		fprintf(ddt, "Version = %s\n", Version);
-		fprintf(ddt, "bootfile = %s\n", bootfile);
-	}		
-#endif
-
-	n = 0;
-#if defined(DEBUG) && defined(LOG_PERROR)
-	if (debug)
-		n |= LOG_PERROR;
-#endif
-#ifdef LOG_NOWAIT
-	n |= LOG_NOWAIT;
-#endif
-#ifdef LOG_DAEMON
-	openlog("named", LOG_PID|LOG_CONS|LOG_NDELAY|n, LOGFAC);
-#else
-	openlog("named", LOG_PID);
-#endif
-
-#ifdef	RLIMIT_NOFILE
-	rl.rlim_cur = rl.rlim_max = FD_SETSIZE;
-	if (setrlimit(RLIMIT_NOFILE, &rl) == -1)
-		syslog(LOG_ERR, "setrlimit(RLIMIT_FSIZE,FD_SETSIZE): %m");
-#endif
-	/* check that udp checksums are on */
-	ns_udp();
-
-#ifdef WANT_PIDFILE
-	/* tuck my process id away */
-#ifdef PID_FIX
-	fp = fopen(PidFile, "w");
-	if (fp != NULL) {
-		(void) fgets(oldpid, sizeof(oldpid), fp);
-		(void) rewind(fp);
-		fprintf(fp, "%ld\n", (long)getpid());
-		(void) my_fclose(fp);
-	}
-#else /*PID_FIX*/
-	fp = fopen(PidFile, "w");
-	if (fp != NULL) {
-		fprintf(fp, "%d\n", getpid());
-		(void) my_fclose(fp);
-	}
-#endif /*PID_FIX*/
-#endif /*WANT_PIDFILE*/
-
-	syslog(LOG_NOTICE, "starting.  %s", Version);
-
-	_res.options &= ~(RES_DEFNAMES | RES_DNSRCH | RES_RECURSE);
-
-	nsaddr.sin_family = AF_INET;
-	nsaddr.sin_addr.s_addr = INADDR_ANY;
-	nsaddr.sin_port = local_ns_port;
-	nsid_init();
-
-	/*
-	** Open stream port.
-	*/
-	for (n = 0; ; n++) {
-		int fd;
-		if ((vs = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
-			syslog(LOG_ERR, "socket(SOCK_STREAM): %m");
-			exit(1);
-		}	
-#ifdef F_DUPFD
-		/*
-		 * leave a space for stdio to work in
-		 */
-		if ((fd = fcntl(vs, F_DUPFD, 20)) != -1) {
-			close(vs);
-			vs = fd;
-		} else 
-			syslog(LOG_NOTICE, "fcntl(vs, F_DUPFD, 20): %m");
-#endif
-		if (setsockopt(vs, SOL_SOCKET, SO_REUSEADDR, (char *)&on,
-			sizeof(on)) != 0)
-		{
-			syslog(LOG_NOTICE, "setsockopt(vs, reuseaddr): %m");
-			(void) my_close(vs);
-			continue;
-		}
-		if (bind(vs, (struct sockaddr *)&nsaddr, sizeof(nsaddr)) == 0)
-			break;
-
-		if (errno != EADDRINUSE || n > 4) {
-			if (errno == EADDRINUSE) {
-				syslog(LOG_NOTICE,
-				 "There may be a name server already running");
-				syslog(LOG_ERR, "exiting");
-			} else {
-				syslog(LOG_ERR, "bind(vs, [%s].%d): %m",
-					inet_ntoa(nsaddr.sin_addr),
-					ntohs(nsaddr.sin_port));
-			}
-#if defined(WANT_PIDFILE) && defined(PID_FIX)
-			/* put old pid back */
-			if (atoi(oldpid) && (fp = fopen(PidFile, "w"))) {
-				fprintf(fp, "%s", oldpid);
-				(void) my_fclose(fp);
-				_exit(1);
-			}
-#endif /*WANT_PIDFILE && PID_FIX*/
-			exit(1);
-		}
-		/* Retry opening the socket a few times */
-		my_close(vs);
-		sleep(3);
-	}
-	if (listen(vs, 5) != 0) {
-		syslog(LOG_ERR, "listen(vs, 5): %m");
-		exit(1);
-	}
-
-  	/*
-	 * named would be terminated if one of these is sent and no handler.
-	 */
-	setsignal(SIGINT, -1, setdumpflg);
-	setsignal(SIGQUIT, -1, setchkptflg);
-	setsignal(SIGIOT, -1, setstatsflg);
-	setsignal(SIGUSR1, -1, setIncrDbgFlg);
-	setsignal(SIGUSR2, -1, setNoDbgFlg);
-	setsignal(SIGHUP, -1, onhup);
-
-#if defined(SIGWINCH) && defined(QRYLOG)
-	setsignal(SIGWINCH, -1, setQrylogFlg);
-#endif
-
-	/*
-	 * Get list of local addresses and set up datagram sockets.
-	 */
-	FD_ZERO(&mask);
-	FD_SET(vs, &mask);
-	getnetconf();
-
-	/*
-	** Initialize and load database.
-	*/
-	gettime(&tt);
-	buildservicelist();
-	buildprotolist();
-	ns_init(bootfile);
-#ifdef DEBUG
-	if (debug) {
-		fprintf(ddt, "Network and sort list:\n");
-		printnetinfo(nettab);
-	}
-#endif
-
-	time(&boottime);
-	resettime = boottime;
-
-	setsignal(SIGALRM, SIGCHLD, maint_alarm);
-	setsignal(SIGCHLD, SIGALRM, reapchild);
-	setsignal(SIGPIPE, -1, (SIG_FN (*)())SIG_IGN);
-
-#if defined(SIGXFSZ)
-	/* Wierd DEC Hesiodism, harmless. */
-	setsignal(SIGXFSZ, -1, onhup);
-#endif
-
-#ifdef SIGSYS
-	setsignal(SIGSYS, -1, sigprof);
-#endif /* SIGSYS */
-
-#ifdef XSTATS
-        /* Catch SIGTERM so we can write stats before exiting. */
-	setsignal(SIGTERM, -1, onintr);
-#endif
-
-	dprintf(1, (ddt, "database initialized\n"));
-	t.tv_usec = 0;
-
-	/*
-	 * Fork and go into background now that
-	 * we've done any slow initialization
-	 * and are ready to answer queries.
-	 */
-#ifdef USE_SETSID
-	if (
-#ifdef DEBUG
-	    !debug ||
-#endif
-	    !isatty(0)) {
-		if (fork() > 0)
-			exit(0);
-		setsid();
-#ifdef DEBUG
-		if (!debug)
-#endif
-		{
-			n = open(_PATH_DEVNULL, O_RDONLY);
-			(void) dup2(n, 0);
-			(void) dup2(n, 1);
-			(void) dup2(n, 2);
-			if (n > 2)
-				(void) my_close(n);
-		}
-	}
-#else
-#ifdef DEBUG
-	if (!debug)
-#endif
-	{
-#ifdef HAVE_DAEMON
-		daemon(1, 0);
-#else
-		switch (fork()) {
-		case -1:
-			syslog(LOG_ERR, "fork: %m");
-			exit(1);
-			/*FALLTHROUGH*/
-		case 0:
-			/* child */
-			break;
-		default:
-			/* parent */
-			exit(0);
-		}
-		n = open(_PATH_DEVNULL, O_RDONLY);
-		(void) dup2(n, 0);
-		(void) dup2(n, 1);
-		(void) dup2(n, 2);
-		if (n > 2)
-			(void) my_close(n);
-#if defined(SYSV) || defined(hpux)
-		setpgrp();
-#else
-		{
-			struct itimerval ival;
-
-			/*
-			 * The open below may hang on pseudo ttys if the person
-			 * who starts named logs out before this point.
-			 *
-			 * needmaint may get set inapropriately if the open
-			 * hangs, but all that will happen is we will see that
-			 * no maintenance is required.
-			 */
-			bzero((char *)&ival, sizeof(ival));
-			ival.it_value.tv_sec = 120;
-			(void) setitimer(ITIMER_REAL, &ival,
-				    (struct itimerval *)NULL);
-			n = open(_PATH_TTY, O_RDWR);
-			ival.it_value.tv_sec = 0;
-			(void) setitimer(ITIMER_REAL, &ival,
-				    (struct itimerval *)NULL);
-			if (n > 0) {
-				(void) ioctl(n, TIOCNOTTY, (char *)NULL);
-				(void) my_close(n);
-			}
-		}
-#endif /* SYSV */
-#endif /* HAVE_DAEMON */
-	}
-#endif /* USE_SETSID */
-#ifdef WANT_PIDFILE
-	/* tuck my process id away again */
-	fp = fopen(PidFile, "w");
-	if (fp != NULL) {
-		fprintf(fp, "%ld\n", (long)getpid());
-		(void) my_fclose(fp);
-	}
-#endif
-
-	syslog(LOG_NOTICE, "Ready to answer queries.\n");
-	prime_cache();
-	nfds = getdtablesize();       /* get the number of file descriptors */
-	if (nfds > FD_SETSIZE) {
-		nfds = FD_SETSIZE;	/* Bulletproofing */
-		syslog(LOG_NOTICE, "Return from getdtablesize() > FD_SETSIZE");
-	}
-#ifdef NeXT
-	old_sigmask = sigblock(sigmask(SIGCHLD));
-#endif
-	for (;;) {
-#ifdef DEBUG
-		if (ddt && debug == 0) {
-			fprintf(ddt,"Debug turned OFF\n");
-			(void) my_fclose(ddt);
-			ddt = 0;
-		}
-#endif
-#ifdef XSTATS
-                if (needToExit) {
-		  	ns_logstats();
-		  	exit(0);
-                }
-#endif /* XSTATS */
-		if (needreload) {
-			needreload = 0;
-			db_reload();
-		}
-		if (needStatsDump) {
-			needStatsDump = 0;
-			ns_stats();
-		}
-		if (needendxfer) {
-			holdsigchld();
-			needendxfer = 0; /* should be safe even if not held */
-			endxfer(); /* releases SIGCHLD */
-		}
-		releasesigchld();
-		if (needzoneload) {
-			needzoneload = 0;
-			loadxfer();
-		}
-		if (needmaint) {
-                        needmaint = 0;
-                        ns_maint();
-                }
-	        if(needToChkpt) {
-                        needToChkpt = 0;
-                        doachkpt();
-	        }
-                if(needToDoadump) {
-                        needToDoadump = 0;
-                        doadump();
-                }
-		/*
-		** Wait until a query arrives
-		*/
-		if (retryqp != NULL) {
-			gettime(&tt);
-			/*
-			** The tv_sec field might be unsigned 
-			** and thus cannot be negative.
-			*/
-			if ((int32_t) retryqp->q_time <= tt.tv_sec) {
-				retry(retryqp);
-				continue;
-			}
-			t.tv_sec = (int32_t) retryqp->q_time - tt.tv_sec;
-			tp = &t;
-		} else
-			tp = NULL;
-		tmpmask = mask;
-#ifdef NeXT
-		sigsetmask(old_sigmask);	/* Let queued signals run. */
-#endif
-		n = select(nfds, &tmpmask, (fd_set *)NULL, (fd_set *)NULL, tp);
-#ifdef NeXT
-		old_sigmask = sigblock(sigmask(SIGCHLD));
-#endif
-		if (n < 0 && errno != EINTR) {
-			syslog(LOG_ERR, "select: %m");
-			sleep(60);
-		}
-		if (n <= 0)
-			continue;
-
-		for (dqp = datagramq;
-		     dqp != QDATAGRAM_NULL;
-		     dqp = dqp->dq_next) {
-		    if (FD_ISSET(dqp->dq_dfd, &tmpmask))
-		        for (udpcnt = 0; udpcnt < 42; udpcnt++) {  /*XXX*/
-			    int from_len = sizeof(from_addr);
-
-			    if ((n = recvfrom(dqp->dq_dfd, (char *)buf,
-					      MIN(PACKETSZ, sizeof buf), 0,
-				(struct sockaddr *)&from_addr, &from_len)) < 0)
-			    {
-#if defined(SPURIOUS_ECONNREFUSED)
-				if ((n < 0) && (errno == ECONNREFUSED))
-					break;
-#endif
-				if ((n < 0) && (errno == PORT_WOULDBLK))
-					break;
-				syslog(LOG_INFO, "recvfrom: %m");
-				break;
-			    }
-			    if (n == 0)
-				break;
-			    gettime(&tt);
-			    dprintf(1, (ddt,
-			     "\ndatagram from [%s].%d, fd %d, len %d; now %s",
-					inet_ntoa(from_addr.sin_addr),
-					ntohs(from_addr.sin_port),
-					dqp->dq_dfd, n,
-				        ctimel(tt.tv_sec)));
-			    if (n < HFIXEDSZ)
-				break;
-#ifdef DEBUG
-			    if (debug >= 10)
-				fp_nquery(buf, n, ddt);
-#endif
-			    /*
-			     * Consult database to get the answer.
-			     */
-			    gettime(&tt);
-			    ns_req(buf, n, PACKETSZ, QSTREAM_NULL, &from_addr,
-				    dqp->dq_dfd);
-		        }
-		}
-		/*
-		** Process stream connection.
-		**
-		** Note that a "continue" in here takes us back to the select()
-		** which, if our accept() failed, will bring us back here.
-		*/
-		if (FD_ISSET(vs, &tmpmask)) {
-			int from_len = sizeof(from_addr);
-
-			rfd = accept(vs,
-				     (struct sockaddr *)&from_addr,
-				     &from_len);
-			if (rfd < 0 && errno == EINTR)
-				continue;
-			if (rfd < 0 && errno == EMFILE && streamq) {
-				maxctime = 0;
-				candidate = NULL;
-				for (sp = streamq; sp; sp = nextsp) {
-					nextsp = sp->s_next;
-					if (sp->s_refcnt)
-						continue;
-					gettime(&tt);
-					lasttime = tt.tv_sec - sp->s_time;
-					if (lasttime >= VQEXPIRY)
-						sqrm(sp);
-					else if (lasttime > maxctime) {
-						candidate = sp;
-						maxctime = lasttime;
-					}
-				}
-				if (candidate)
-					sqrm(candidate);
-				continue;
-			}
-			if (rfd < 0) {
-				syslog(LOG_INFO, "accept: %m");
-				continue;
-			}
-			if ((n = fcntl(rfd, F_GETFL, 0)) < 0) {
-				syslog(LOG_INFO, "fcntl(rfd, F_GETFL): %m");
-				(void) my_close(rfd);
-				continue;
-			}
-			if (fcntl(rfd, F_SETFL, n|PORT_NONBLOCK) != 0) {
-				syslog(LOG_INFO, "fcntl(rfd, NONBLOCK): %m");
-				(void) my_close(rfd);
-				continue;
-			}
-#if defined(IP_OPTIONS)
-			len = sizeof ip_opts;
-			if (getsockopt(rfd, IPPROTO_IP, IP_OPTIONS,
-				       (char *)ip_opts, &len) < 0) {
-				syslog(LOG_INFO,
-				       "getsockopt(rfd, IP_OPTIONS): %m");
-				(void) my_close(rfd);
-				continue;
-			}
-			if (len != 0) {
-				nameserIncr(from_addr.sin_addr, nssRcvdOpts);
-				if (!haveComplained((char*)
-						    from_addr.sin_addr.s_addr,
-						    "rcvd ip options")) {
-					syslog(LOG_INFO,
-				      "rcvd IP_OPTIONS from [%s].%d (ignored)",
-					       inet_ntoa(from_addr.sin_addr),
-					       ntohs(from_addr.sin_port));
-				}
-				if (setsockopt(rfd, IPPROTO_IP, IP_OPTIONS,
-					       NULL, 0) < 0) {
-					syslog(LOG_INFO,
-					       "setsockopt(!IP_OPTIONS): %m");
-					(void) my_close(rfd);
-					continue;
-				}
-			}
-#endif
-			if (setsockopt(rfd, SOL_SOCKET, SO_SNDBUF,
-				      (char*)&sbufsize, sizeof(sbufsize)) < 0){
-				syslog(LOG_INFO,
-					  "setsockopt(rfd, SO_SNDBUF, %d): %m",
-				       sbufsize);
-				(void) my_close(rfd);
-				continue;
-			}
-			if (setsockopt(rfd, SOL_SOCKET, SO_KEEPALIVE,
-				       (char *)&on, sizeof(on)) < 0) {
-				syslog(LOG_INFO,
-				       "setsockopt(rfd, KEEPALIVE): %m");
-				(void) my_close(rfd);
-				continue;
-			}
-			if ((sp = sqadd()) == QSTREAM_NULL) {
-				(void) my_close(rfd);
-				continue;
-			}
-			sp->s_rfd = rfd;	/* stream file descriptor */
-			sp->s_size = -1;	/* amount of data to receive */
-			gettime(&tt);
-			sp->s_time = tt.tv_sec;	/* last transaction time */
-			sp->s_from = from_addr;	/* address to respond to */
-			sp->s_bufp = (u_char *)&sp->s_tempsize;
-			FD_SET(rfd, &mask);
-			FD_SET(rfd, &tmpmask);
-#ifdef DEBUG
-			if (debug)
-				syslog(LOG_DEBUG,
-				       "IP/TCP connection from %s (fd %d)\n",
-				       sin_ntoa(&sp->s_from), rfd);
-#endif
-		}
-		if (streamq)
-			dprintf(3, (ddt, "streamq = 0x%lx\n",
-				    (u_long)streamq));
-		for (sp = streamq;  sp != QSTREAM_NULL;  sp = nextsp) {
-			nextsp = sp->s_next;
-			if (!FD_ISSET(sp->s_rfd, &tmpmask))
-				continue;
-			dprintf(5, (ddt,
-				  "sp x%lx rfd %d size %d time %d next x%lx\n",
-				    (u_long)sp, sp->s_rfd, sp->s_size,
-				    sp->s_time, (u_long)sp->s_next));
-			dprintf(5, (ddt,
-				    "\tbufsize %d buf x%lx bufp x%lx\n",
-				    sp->s_bufsize,
-				    (u_long)sp->s_buf, (u_long)sp->s_bufp));
-			if (sp->s_size < 0) {
-				size = INT16SZ
-				    - (sp->s_bufp - (u_char *)&sp->s_tempsize);
-			        while (size > 0 &&
-			           (n = read(sp->s_rfd, sp->s_bufp, size)) > 0
-				       ) {
-					sp->s_bufp += n;
-					size -= n;
-			        }
-				if ((n < 0) && (errno == PORT_WOULDBLK))
-					continue;
-				if (n <= 0) {
-					sqrm(sp);
-					continue;
-			        }
-			        if ((sp->s_bufp - (u_char *)&sp->s_tempsize) ==
-					INT16SZ) {
-					sp->s_size = ntohs(sp->s_tempsize);
-					if (sp->s_bufsize == 0) {
-					    if (!(sp->s_buf = (u_char *)
-						  malloc(rbufsize))
-						) {
-						    sp->s_buf = buf;
-						    sp->s_bufsize=sizeof(buf);
-					    } else {
-						    sp->s_bufsize = rbufsize;
-					    }
-					}
-					if (sp->s_size > sp->s_bufsize &&
-					    sp->s_bufsize != 0
-					) {
-					    sp->s_buf = (u_char *)
-						realloc((char *)sp->s_buf,
-							(unsigned)sp->s_size);
-					    if (sp->s_buf == NULL) {
-						sp->s_buf = buf;
-						sp->s_bufsize = 0;
-						sp->s_size = sizeof(buf);
-					    } else {
-						sp->s_bufsize = sp->s_size;
-					    }
-					}
-					sp->s_bufp = sp->s_buf;	
-				}
-			}
-			gettime(&tt);
-			sp->s_time = tt.tv_sec;
-			while (sp->s_size > 0 &&
-			      (n = read(sp->s_rfd,
-					sp->s_bufp,
-					sp->s_size)
-			       ) > 0
-			) {
-				sp->s_bufp += n;
-				sp->s_size -= n;
-			}
-
-			if (sp->s_size > 0 &&
-			    (n == -1) &&
-			    (errno == PORT_WOULDBLK))
-				continue;
-
-			/*
-			 * we don't have enough memory for the query.
-			 * if we have a query id, then we will send an
-			 * error back to the user.
-			 */
-			if (sp->s_bufsize == 0) {
-			    if (sp->s_bufp - sp->s_buf > INT16SZ) {
-				HEADER *hp;
-
-				hp = (HEADER *)sp->s_buf;
-				hp->qr = 1;
-				hp->ra = (NoRecurse == 0);
-				hp->ancount = 0;
-				hp->qdcount = 0;
-				hp->nscount = 0;
-				hp->arcount = 0;
-				hp->rcode = SERVFAIL;
-				(void) writemsg(sp->s_rfd, sp->s_buf,
-						HFIXEDSZ);
-			    }
-			    sqrm(sp);
-			    continue;
-			}
-
-			/*
-			 * If the message is too short to contain a valid
-			 * header, try to send back an error, and drop the
-			 * message.
-			 */
-			if (sp->s_bufp - sp->s_buf < HFIXEDSZ) {
-			    if (sp->s_bufp - sp->s_buf > INT16SZ) {
-				HEADER *hp;
-
-				hp = (HEADER *)sp->s_buf;
-				hp->qr = 1;
-				hp->ra = (NoRecurse == 0);
-				hp->ancount = 0;
-				hp->qdcount = 0;
-				hp->nscount = 0;
-				hp->arcount = 0;
-				hp->rcode = SERVFAIL;
-				(void) writemsg(sp->s_rfd, sp->s_buf,
-						HFIXEDSZ);
-			    }
-			    sqrm(sp);
-			    continue;
-			}
-			if (n <= 0) {
-				sqrm(sp);
-				continue;
-			}
-			/*
-			 * Consult database to get the answer.
-			 */
-			if (sp->s_size == 0) {
-#ifdef XSTATS
-				nameserIncr(sp->s_from.sin_addr, nssRcvdTCP);
-#endif
-				sq_query(sp);
-				ns_req(sp->s_buf,
-				       sp->s_bufp - sp->s_buf,
-				       sp->s_bufsize, sp,
-				       &sp->s_from, -1);
-				/* ns_req() can call sqrm() - check for it */
-				if (sq_here(sp)) {
-					sp->s_bufp = (u_char *)&sp->s_tempsize;
-					sp->s_size = -1;
-				}
-				continue;
-			}
-		}
-	}
-	/* NOTREACHED */
-}
-
-void
-getnetconf()
-{
-	register struct netinfo *ntp;
-	struct netinfo *ontp;
-	struct ifconf ifc;
-	struct ifreq ifreq, *ifr;
-	struct qdatagram *dqp;
-	static int first = 1;
-	char buf[32768], *cp, *cplim;
-	u_int32_t nm;
-	time_t my_generation = time(NULL);
-
-	ifc.ifc_len = sizeof buf;
-	ifc.ifc_buf = buf;
-	if (ioctl(vs, SIOCGIFCONF, (char *)&ifc) < 0) {
-		syslog(LOG_ERR, "get interface configuration: %m - exiting");
-		exit(1);
-	}
-	ntp = NULL;
-#if defined(AF_LINK) && \
-	!defined(RISCOS_BSD) && !defined(M_UNIX) && \
-	!defined(sgi) && !defined(sun) && !defined(NO_SA_LEN)
-#define my_max(a, b) (a > b ? a : b)
-#define my_size(p)	my_max((p).sa_len, sizeof(p))
-#else
-#define my_size(p) (sizeof (p))
-#endif
-	cplim = buf + ifc.ifc_len;    /* skip over if's with big ifr_addr's */
-	for (cp = buf;
-	     cp < cplim;
-	     cp += sizeof (ifr->ifr_name) + my_size(ifr->ifr_addr)) {
-#undef my_size
-		ifr = (struct ifreq *)cp;
-		if (ifr->ifr_addr.sa_family != AF_INET ||
-		   ((struct sockaddr_in *)
-		    &ifr->ifr_addr)->sin_addr.s_addr == 0) {
-			continue;
-		}
-		ifreq = *ifr;
-		/*
-		 * Don't test IFF_UP, packets may still be received at this
-		 * address if any other interface is up.
-		 */
-#if !defined(BSD) || (BSD < 199103)
-		if (ioctl(vs, SIOCGIFADDR, (char *)&ifreq) < 0) {
-			syslog(LOG_NOTICE, "get interface addr: %m");
-			continue;
-		}
-#endif
-		dprintf(1, (ddt, "considering [%s]\n",
-			    inet_ntoa(((struct sockaddr_in *)
-				       &ifreq.ifr_addr)->sin_addr)));
-		/* build datagram queue */
-		/* 
-		 * look for an already existing source interface address.
-		 * This happens mostly when reinitializing.  Also, if
-		 * the machine has multiple point to point interfaces, then 
-		 * the local address may appear more than once.
-		 */
-		if (dqp = aIsUs(((struct sockaddr_in *)&ifreq.ifr_addr)
-				->sin_addr)) {
-			dprintf(1, (ddt,
-				    "dup interface address %s on %s\n",
-				    inet_ntoa(((struct sockaddr_in *)
-					       &ifreq.ifr_addr)->sin_addr),
-				    ifreq.ifr_name));
-			dqp->dq_gen = my_generation;
-			continue;
-		}
-
-		/*
-		 * Skip over address 0.0.0.0 since this will conflict
-		 * with binding to wildcard address later.  Interfaces
-		 * which are not completely configured can have this addr.
-		 */
-		if (((struct sockaddr_in *)&ifreq.ifr_addr)->sin_addr.s_addr
-		    == 0x00000000) {	/* XXX */
-			dprintf(1, (ddt, "skipping address 0.0.0.0 on %s\n",
-				    ifreq.ifr_name));
-			continue;
-		}
-		if ((dqp = (struct qdatagram *)
-			   calloc(1, sizeof(struct qdatagram))
-		     ) == NULL) {
-			syslog(LOG_ERR, "getnetconf: malloc: %m");
-			exit(12);
-		}
-		dqp->dq_next = datagramq;
-		datagramq = dqp;
-		dqp->dq_addr = ((struct sockaddr_in *)
-				&ifreq.ifr_addr)->sin_addr;
-		dqp->dq_gen = my_generation;
-		opensocket(dqp);
-		dprintf(1, (ddt, "listening [%s]\n",
-			    inet_ntoa(((struct sockaddr_in *)
-				       &ifreq.ifr_addr)->sin_addr)));
-
-		/*
-		 * Add interface to list of directly-attached (sub)nets
-		 * for use in sorting addresses.
-		 */
-		if (ntp == NULL) {
-			ntp = (struct netinfo *)malloc(sizeof(struct netinfo));
-			if (!ntp)
-				panic(errno, "malloc(netinfo)");
-		}
-		ntp->my_addr = ((struct sockaddr_in *)
-				&ifreq.ifr_addr)->sin_addr;
-#ifdef SIOCGIFNETMASK
-		if (ioctl(vs, SIOCGIFNETMASK, (char *)&ifreq) < 0) {
-			syslog(LOG_NOTICE, "get netmask: %m");
-			ntp->mask = net_mask(ntp->my_addr);
-		} else
-			ntp->mask = ((struct sockaddr_in *)
-			    &ifreq.ifr_addr)->sin_addr.s_addr;
-#else
-		/* 4.2 does not support subnets */
-		ntp->mask = net_mask(ntp->my_addr);
-#endif
-		if (ioctl(vs, SIOCGIFFLAGS, (char *)&ifreq) < 0) {
-			syslog(LOG_NOTICE, "get interface flags: %m");
-			continue;
-		}
-#ifdef IFF_LOOPBACK
-		if (ifreq.ifr_flags & IFF_LOOPBACK)
-#else
-		/* test against 127.0.0.1 (yuck!!) */
-		if (ntp->my_addr.s_addr == inet_addr("127.0.0.1"))  /* XXX */
-#endif
-		{
-			if (netloop.my_addr.s_addr == 0) {
-				netloop.my_addr = ntp->my_addr;
-				netloop.mask = 0xffffffff;
-				netloop.addr = ntp->my_addr.s_addr;
-				dprintf(1, (ddt, "loopback address: x%lx\n",
-					    (u_long)netloop.my_addr.s_addr));
-			}
-			continue;
-		} else if ((ifreq.ifr_flags & IFF_POINTOPOINT)) {
-			if (ioctl(vs, SIOCGIFDSTADDR, (char *)&ifreq) < 0) {
-				syslog(LOG_NOTICE, "get dst addr: %m");
-				continue;
-			}
-			ntp->mask = 0xffffffff;
-			ntp->addr = ((struct sockaddr_in *)
-				     &ifreq.ifr_addr)->sin_addr.s_addr;
-		} else {
-			ntp->addr = ntp->mask & ntp->my_addr.s_addr;
-		}
-		/*
-		 * Place on end of list of locally-attached (sub)nets,
-		 * but before logical nets for subnetted nets.
-		 */
-		ntp->next = *elocal;
-		*elocal = ntp;
-		if (elocal == enettab)
-			enettab = &ntp->next;
-		elocal = &ntp->next;
-		ntp = NULL;
-	}
-	if (ntp)
-		free((char *)ntp);
-
-	/*
-	 * now go through the datagramq and delete anything that
-	 * does not have the current generation number.  this is
-	 * how we catch interfaces that go away or change their
-	 * addresses.  note that 0.0.0.0 is the wildcard element
-	 * and should never be deleted by this code.
-	 *
-	 * XXX - need to update enettab/elocal as well.
-	 */
-	dqflush(my_generation);		/* With apologies to The Who. */
-
-	/*
-	 * Create separate qdatagram structure for socket
-	 * wildcard address.
-	 */
-	if (first) {
-		if (!(dqp = (struct qdatagram *)calloc(1, sizeof(*dqp))))
-			panic(errno, "malloc(qdatagram)");
-		dqp->dq_next = datagramq;
-		datagramq = dqp;
-		dqp->dq_addr.s_addr = INADDR_ANY;
-		opensocket(dqp);
-		ds = dqp->dq_dfd;
-	}
-
-	/*
-	 * Compute logical networks to which we're connected
-	 * based on attached subnets;
-	 * used for sorting based on network configuration.
-	 */
-	for (ntp = nettab; ntp != NULL; ntp = ntp->next) {
-		nm = net_mask(ntp->my_addr);
-		if (nm != ntp->mask) {
-			if (findnetinfo(ntp->my_addr))
-				continue;
-			ontp = (struct netinfo *)
-				malloc(sizeof(struct netinfo));
-			if (!ontp)
-				panic(errno, "malloc(netinfo)");
-			ontp->my_addr = ntp->my_addr;
-			ontp->mask = nm;
-			ontp->addr = ontp->my_addr.s_addr & nm;
-			ontp->next = *enettab;
-			*enettab = ontp;
-			enettab = &ontp->next;
-		}
-	}
-	first = 0;
-}
-
-/*
- * Find netinfo structure for logical network implied by address "addr",
- * if it's on list of local/favored networks.
- */
-struct netinfo *
-findnetinfo(addr)
-	struct in_addr addr;
-{
-	register struct netinfo *ntp;
-	u_int32_t net, mask;
-
-	mask = net_mask(addr);
-	net = addr.s_addr & mask;
-	for (ntp = nettab; ntp != NULL; ntp = ntp->next)
-		if (ntp->addr == net && ntp->mask == mask)
-			return (ntp);
-	return ((struct netinfo *) NULL);
-}
-
-#ifdef DEBUG
-static void
-printnetinfo(ntp)
-	register struct netinfo *ntp;
-{
-	for ( ; ntp != NULL; ntp = ntp->next) {
-		fprintf(ddt, "addr x%lx mask x%lx",
-			(u_long)ntp->addr, (u_long)ntp->mask);
-		fprintf(ddt, " my_addr x%lx", ntp->my_addr.s_addr);
-		fprintf(ddt, " %s\n", inet_ntoa(ntp->my_addr));
-	}
-}
-#endif
-
-static void
-opensocket(dqp)
-	register struct qdatagram *dqp;
-{
-	int m, n;
-	int on = 1;
-	int fd;
-
-	/*
-	 * Open datagram sockets bound to interface address.
-	 */
-	if ((dqp->dq_dfd = socket(AF_INET, SOCK_DGRAM, 0)) < 0) {
-		syslog(LOG_ERR, "socket(SOCK_DGRAM): %m - exiting");
-		exit(1);
-	}	
-#ifdef F_DUPFD
-	/*
-	 * leave a space for stdio to work in
-	 */
-	if ((fd = fcntl(dqp->dq_dfd, F_DUPFD, 20)) != -1) {
-		close(dqp->dq_dfd);
-		dqp->dq_dfd = fd;
-	} else 
-		syslog(LOG_NOTICE, "fcntl(dfd, F_DUPFD, 20): %m");
-#endif
-	dprintf(1, (ddt, "dqp->dq_addr %s d_dfd %d\n",
-		    inet_ntoa(dqp->dq_addr), dqp->dq_dfd));
-	if (setsockopt(dqp->dq_dfd, SOL_SOCKET, SO_REUSEADDR,
-	    (char *)&on, sizeof(on)) != 0)
-	{
-		syslog(LOG_NOTICE, "setsockopt(dqp->dq_dfd, reuseaddr): %m");
-		/* XXX press on regardless, this is not too serious. */
-	}
-#ifdef SO_RCVBUF
-	m = sizeof(n);
-	if ((getsockopt(dqp->dq_dfd, SOL_SOCKET, SO_RCVBUF, (char*)&n, &m) >= 0)
-	    && (m == sizeof(n))
-	    && (n < rbufsize)) {
-		(void) setsockopt(dqp->dq_dfd, SOL_SOCKET, SO_RCVBUF,
-				  (char *)&rbufsize, sizeof(rbufsize));
-	}
-#endif /* SO_RCVBUF */
-	if ((n = fcntl(dqp->dq_dfd, F_GETFL, 0)) < 0) {
-		syslog(LOG_NOTICE, "fcntl(dfd, F_GETFL): %m");
-		/* XXX press on regardless, but this really is a problem. */
-	} else if (fcntl(dqp->dq_dfd, F_SETFL, n|PORT_NONBLOCK) != 0) {
-		syslog(LOG_NOTICE, "fcntl(dqp->dq_dfd, non-blocking): %m");
-		/* XXX press on regardless, but this really is a problem. */
-	}
-	/*
-	 *   NOTE: Some versions of SunOS have problems with the following
-	 *   call to bind.  Bind still seems to function on these systems
-	 *   if you comment out the exit inside the if.  This may cause
-	 *   Suns with multiple interfaces to reply strangely.
-	 */
-	nsaddr.sin_addr = dqp->dq_addr;
-	if (bind(dqp->dq_dfd, (struct sockaddr *)&nsaddr, sizeof(nsaddr))) {
-		syslog(LOG_NOTICE, "bind(dfd=%d, [%s].%d): %m",
-			dqp->dq_dfd, inet_ntoa(nsaddr.sin_addr),
-			ntohs(nsaddr.sin_port));
-#if !defined(sun)
-		syslog(LOG_ERR, "exiting");
-		exit(1);
-#endif
-	}
-	FD_SET(dqp->dq_dfd, &mask);
-}
-
-/*
-** Set flag saying to reload database upon receiving SIGHUP.
-** Must make sure that someone isn't walking through a data
-** structure at the time.
-*/
-
-static SIG_FN
-onhup()
-{
-	int save_errno = errno;
-
-	resignal(SIGHUP, -1, onhup);
-	needreload = 1;
-	errno = save_errno;
-}
-
-/*
-** Set flag saying to call ns_maint()
-** Must make sure that someone isn't walking through a data
-** structure at the time.
-*/
-
-static SIG_FN
-maint_alarm()
-{
-	int save_errno = errno;
-
-	resignal(SIGALRM, SIGCHLD, maint_alarm);
-	needmaint = 1;
-	errno = save_errno;
-}
-
-
-#ifdef XSTATS
-/*
- * Signal handler to write log information
- */
-static SIG_FN
-onintr()
-{
-	int save_errno = errno;
-
-	resignal(SIGTERM, -1, onintr);
-        needToExit = 1;		/* XXX variable reuse */
-	errno = save_errno;
-}
-#endif /* XSTATS */
-
-/*
- * Signal handler to schedule a data base dump.  Do this instead of dumping the
- * data base immediately, to avoid seeing it in a possibly inconsistent state
- * (due to updates), and to avoid long disk I/O delays at signal-handler
- * level
- */
-static SIG_FN
-setdumpflg()
-{
-	int save_errno = errno;
-
-	resignal(SIGINT, -1, setdumpflg);
-        needToDoadump = 1;
-	errno = save_errno;
-}
-
-/*
-** Turn on or off debuging by open or closeing the debug file
-*/
-
-static void
-setdebug(code)
-	int code;
-{
-#if defined(lint) && !defined(DEBUG)
-	code = code;
-#endif
-#ifdef DEBUG
-
-	if (code) {
-		int n;
-
-		ddt = freopen(debugfile, "w+", stderr);
-		if ( ddt == NULL) {
-			syslog(LOG_NOTICE, "can't open debug file %s: %m",
-			       debugfile);
-			debug = 0;
-		} else {
-#if defined(HAVE_SETVBUF)
-			setvbuf(ddt, NULL, _IOLBF, BUFSIZ);
-#else
-			setlinebuf(ddt);
-#endif
-			if ((n = fcntl(fileno(ddt), F_GETFL, 0)) < 0) {
-				syslog(LOG_INFO,
-				       "fcntl(ddt, F_GETFL): %m");
-			} else {
-				(void) fcntl(fileno(ddt), F_SETFL, n|O_APPEND);
-			}
-		}
-	} else
-		debug = 0;
-		/* delay closing ddt, we might interrupt someone */
-#endif
-}
-
-/*
-** Catch a special signal and set debug level.
-**
-**  If debuging is off then turn on debuging else increment the level.
-**
-** Handy for looking in on long running name servers.
-*/
-
-static SIG_FN
-setIncrDbgFlg()
-{
-	int save_errno = errno;
-
-	resignal(SIGUSR1, -1, setIncrDbgFlg);
-#ifdef DEBUG
-	if (debug == 0) {
-		debug++;
-		setdebug(1);
-	} else {
-		debug++;
-	}
-	if (debug)
-		fprintf(ddt, "Debug turned ON, Level %d\n", debug);
-#endif
-	errno = save_errno;
-}
-
-/*
-** Catch a special signal to turn off debugging
-*/
-
-static SIG_FN
-setNoDbgFlg()
-{
-	int save_errno = errno;
-
-	resignal(SIGUSR2, -1, setNoDbgFlg);
-	setdebug(0);
-	errno = save_errno;
-}
-
-#if defined(QRYLOG) && defined(SIGWINCH)
-/*
-** Set flag for query logging
-*/
-static SIG_FN
-setQrylogFlg()
-{
-	int save_errno = errno;
-
-	resignal(SIGWINCH, -1, setQrylogFlg);
-	qrylog = !qrylog;
-	syslog(LOG_NOTICE, "query log %s\n", qrylog ?"on" :"off");
-	errno = save_errno;
-}
-#endif /*QRYLOG && SIGWINCH*/
-
-/*
-** Set flag for statistics dump
-*/
-static SIG_FN
-setstatsflg()
-{
-	int save_errno = errno;
-
-	resignal(SIGIOT, -1, setstatsflg);
-	needStatsDump = 1;
-	errno = save_errno;
-}
-
-static SIG_FN
-setchkptflg()
-{
-	int save_errno = errno;
-
-	resignal(SIGQUIT, -1, setchkptflg);
-	needToChkpt = 1;
-	errno = save_errno;
-}
-
-/*
-** Catch a special signal SIGSYS
-**
-**  this is setup to fork and exit to drop to /usr/tmp/gmon.out
-**   and keep the server running
-*/
-
-#ifdef SIGSYS
-static SIG_FN
-sigprof()
-{
-	int save_errno = errno;
-
-	resignal(SIGSYS, -1, sigprof);
-	dprintf(1, (ddt, "sigprof()\n"));
-	if (fork() == 0)
-	{
-		(void) chdir(_PATH_TMPDIR);
-		exit(1);
-	}
-	errno = save_errno;
-}
-#endif /* SIGSYS */
-
-/*
-** Routines for managing stream queue
-*/
-
-static struct qstream *
-sqadd()
-{
-	register struct qstream *sqp;
-
-	if (!(sqp = (struct qstream *)calloc(1, sizeof(struct qstream)))) {
-		syslog(LOG_ERR, "sqadd: calloc: %m");
-		return (QSTREAM_NULL);
-	}
-	dprintf(3, (ddt, "sqadd(x%lx)\n", (u_long)sqp));
-
-	sqp->s_next = streamq;
-	streamq = sqp;
-	return (sqp);
-}
-
-/* sqrm(qp)
- *	remove stream queue structure `qp'.
- *	no current queries may refer to this stream when it is removed.
- * side effects:
- *	memory is deallocated.  sockets are closed.  lists are relinked.
- */
-void
-sqrm(qp)
-	register struct qstream *qp;
-{
-	register struct qstream *qsp;
-
-	dprintf(2, (ddt, "sqrm(%#lx, %d) rfcnt=%d\n",
-		    (u_long)qp, qp->s_rfd, qp->s_refcnt));
-
-	if (qp->s_bufsize != 0)
-		free(qp->s_buf);
-	FD_CLR(qp->s_rfd, &mask);
-	(void) my_close(qp->s_rfd);
-	if (qp == streamq) {
-		streamq = qp->s_next;
-	} else {
-		for (qsp = streamq;
-		     qsp && (qsp->s_next != qp);
-		     qsp = qsp->s_next)
-			;
-		if (qsp) {
-			qsp->s_next = qp->s_next;
-		}
-	}
-	free((char *)qp);
-}
-
-/* void
- * sqflush(allbut)
- *	call sqrm() on all open streams except `allbut'
- * side effects:
- *	global list `streamq' modified
- * idiocy:
- *	is N^2 due to the scan inside of sqrm()
- */
-void
-sqflush(allbut)
-	register struct qstream *allbut;
-{
-	register struct qstream *sp, *spnext;
-
-	for (sp = streamq; sp != NULL; sp = spnext) {
-		spnext = sp->s_next;
-		if (sp != allbut)
-			sqrm(sp);
-	}
-}
-
-/* void
- * dqflush(gen)
- *	close/deallocate all the udp sockets, unless `gen' != (time_t)0
- *	in which case all those not from this generation (except 0.0.0.0)
- *	will be deleted, and syslog() will be called.
- * known bugs:
- *	the above text is impenetrable.
- * side effects:
- *	global list `datagramq' is modified.
- */
-void
-dqflush(gen)
-	register time_t gen;
-{
-	register struct qdatagram *this, *prev, *next;
-
-	prev = NULL;
-	for (this = datagramq; this != NULL; this = next) {
-		next = this->dq_next;
-		if (gen != (time_t)0) {
-			if (this->dq_addr.s_addr == INADDR_ANY ||
-			    this->dq_gen == gen) {
-				prev = this;
-				continue;
-			}
-			syslog(LOG_NOTICE, "interface [%s] missing; deleting",
-			       inet_ntoa(this->dq_addr));
-		}
-		FD_CLR(this->dq_dfd, &mask);
-		my_close(this->dq_dfd);
-		free(this);
-		if (prev == NULL)
-			datagramq = next;
-		else
-			prev->dq_next = next;
-	}
-}
-
-/* int
- * sq_here(sp)
- *	determine whether stream 'sp' is still on the streamq
- * return:
- *	boolean: is it here?
- */
-static int
-sq_here(sp)
-	register struct qstream *sp;
-{
-	register struct qstream *t;
-
-	for (t = streamq;  t != NULL;  t = t->s_next)
-		if (t == sp)
-			return (1);
-	return (0);
-}
-
-/*
- * Initiate query on stream;
- * mark as referenced and stop selecting for input.
- */
-static void
-sq_query(sp)
-	register struct qstream *sp;
-{
-	sp->s_refcnt++;
-	FD_CLR(sp->s_rfd, &mask);
-}
-
-/*
- * Note that the current request on a stream has completed,
- * and that we should continue looking for requests on the stream.
- */
-void
-sq_done(sp)
-	register struct qstream *sp;
-{
-
-	sp->s_refcnt = 0;
-	sp->s_time = tt.tv_sec;
-	FD_SET(sp->s_rfd, &mask);
-}
-
-void
-ns_setproctitle(a, s)
-	char *a;
-	int s;
-{
-	int size;
-	register char *cp;
-	struct sockaddr_in sin;
-	char buf[80];
-
-	cp = Argv[0];
-	size = sizeof(sin);
-	if (getpeername(s, (struct sockaddr *)&sin, &size) == 0)
-		(void) sprintf(buf, "-%s [%s]", a, inet_ntoa(sin.sin_addr));
-	else {
-		syslog(LOG_DEBUG, "getpeername: %m");
-		(void) sprintf(buf, "-%s", a);
-	}
-	(void) strncpy(cp, buf, LastArg - cp);
-	cp += strlen(cp);
-	while (cp < LastArg)
-		*cp++ = ' ';
-}
-
-u_int32_t
-net_mask(in)
-	struct in_addr in;
-{
-	register u_int32_t i = ntohl(in.s_addr);
-
-	if (IN_CLASSA(i))
-		return (htonl(IN_CLASSA_NET));
-	else if (IN_CLASSB(i))
-		return (htonl(IN_CLASSB_NET));
-	else
-		return (htonl(IN_CLASSC_NET));
-}
-
-/*
- * These are here in case we ever want to get more clever, like perhaps
- * using a bitmap to keep track of outstanding queries and a random
- * allocation scheme to make it a little harder to predict them.  Note
- * that the resolver will need the same protection so the cleverness
- * should be put there rather than here; this is just an interface layer.
- */
-
-void
-nsid_init()
-{
-	nsid_state = res_randomid();
-}
-
-u_int16_t
-nsid_next()
-{
-	if (nsid_state == 65535)
-		nsid_state = 0;
-	else
-		nsid_state++;
-	return (nsid_state);
-}
-
-#if defined(BSD43_BSD43_NFS)
-/* junk needed for old Sun NFS licensees */
-#undef dn_skipname
-extern char *dn_skipname();
-char *(*hack_skipname)() = dn_skipname;
-#endif
diff --git a/contrib/bind/named/ns_maint.c b/contrib/bind/named/ns_maint.c
deleted file mode 100644
index 944d2b29daf96..0000000000000
--- a/contrib/bind/named/ns_maint.c
+++ /dev/null
@@ -1,1087 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_maint.c	4.39 (Berkeley) 3/2/91";
-static char rcsid[] = "$Id: ns_maint.c,v 8.18 1996/09/22 00:13:10 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988
- * -
- * Copyright (c) 1986, 1988
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <sys/wait.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <signal.h>
-#include <errno.h>
-#include <sys/stat.h>
-
-#include "named.h"
-
-#ifdef USE_UTIME
-# include <utime.h>
-#endif
-
-static int		xfers_running,	/* # of xfers running */
-			xfers_deferred,	/* # of needed xfers not run yet */
-			qserials_running,
-			alarm_pending,	/* flag */
-			nxfers __P((struct zoneinfo *, int));
-
-static void		startxfer __P((struct zoneinfo *)),
-			abortxfer __P((struct zoneinfo *)),
-			addxfer __P((struct zoneinfo *)),
-			tryxfer __P((void));
-
-#define	qserial_qfull()	(qserials_running == MAXQSERIAL)
-
-#ifdef CLEANCACHE
-static time_t cache_time;
-#endif
-#ifdef XSTATS
-static time_t stats_time;
-#endif
-/*
- * Invoked at regular intervals by signal interrupt; refresh all secondary
- * zones from primary name server and remove old cache entries.
- */
-void
-ns_maint()
-{
-	register struct zoneinfo *zp;
-	int zonenum;
-
-	gettime(&tt);
-
-	dprintf(1, (ddt, "\nns_maint(); now %s", ctimel(tt.tv_sec)));
-
-	alarm_pending = 0;
-	for (zp = zones, zonenum = 0; zp < &zones[nzones]; zp++, zonenum++) {
-#ifdef DEBUG
-		if (debug >= 2)
-			printzoneinfo(zonenum);
-#endif
-		if (tt.tv_sec >= zp->z_time && zp->z_refresh > 0) {
-			switch (zp->z_type) {
-
-			case Z_CACHE:
-				doachkpt();
-				ns_refreshtime(zp, tt.tv_sec);
-				break;
-
-			case Z_SECONDARY:
-#ifdef STUBS
-			case Z_STUB:
-#endif
-				if (zp->z_serial != 0 &&
-				    ((zp->z_lastupdate + zp->z_expire) <
-				     tt.tv_sec)
-				    ) {
-					zp->z_serial = 0;
-				}
-				if (zp->z_flags &
-				    (Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL)) {
-					ns_refreshtime(zp, tt.tv_sec);
-					break;
-				}
-				if (zp->z_flags & Z_XFER_RUNNING) {
-					abortxfer(zp);
-					break;
-				}
-				qserial_query(zp);
-				break;
-			}
-			gettime(&tt);
-		}
-	}
-#ifdef CLEANCACHE
-	if ((cache_time + cache_interval) <= tt.tv_sec) {
-		if (cache_time && (!NoRecurse || !NoFetchGlue))
-			remove_zone(hashtab, 0, 0);
-		cache_time = tt.tv_sec;
-	}
-#endif
-#ifdef XSTATS
-	if (stats_time + stats_interval <= tt.tv_sec) {
-		if (stats_time)
-			ns_logstats();
-		stats_time = tt.tv_sec;
-	}
-#endif
-	if (!needmaint)
-		sched_maint();
-	dprintf(1, (ddt, "exit ns_maint()\n"));
-}
-
-/*
- * Find when the next refresh needs to be and set
- * interrupt time accordingly.
- */
-void
-sched_maint()
-{
-	register struct zoneinfo *zp;
-	struct itimerval ival;
-#ifdef	CLEANCACHE
-	time_t next_refresh = cache_time + cache_interval;
-#else
-	time_t next_refresh = 0;
-#endif
-	static time_t next_alarm;
-
-	for (zp = zones; zp < &zones[nzones]; zp++)
-		if (zp->z_time != 0 &&
-		    (next_refresh == 0 || next_refresh > zp->z_time))
-			next_refresh = zp->z_time;
-        /*
-	 *  Schedule the next call to ns_maint.
-	 *  Don't visit any sooner than maint_interval.
-	 */
-	bzero((char *)&ival, sizeof ival);
-	if (next_refresh != 0) {
-		if (next_refresh == next_alarm && alarm_pending) {
-			dprintf(1, (ddt, "sched_maint: no schedule change\n"));
-			return;
-		}
-		/*
-		 *  tv_sec can be an unsigned long, so we can't let
-		 *  it go negative.
-		 */
-		if (next_refresh < tt.tv_sec)
-			next_refresh = tt.tv_sec;
-		ival.it_value.tv_sec = next_refresh - tt.tv_sec;
-		if ((long) ival.it_value.tv_sec < maint_interval)
-			ival.it_value.tv_sec = maint_interval;
-		next_alarm = next_refresh;
-		alarm_pending = 1;
-	}
-	(void) setitimer(ITIMER_REAL, &ival, (struct itimerval *)NULL);
-	dprintf(1, (ddt, "sched_maint: Next interrupt in %lu sec\n",
-		    (u_long)ival.it_value.tv_sec));
-}
-
-/*
- * Mark a zone "up to date" after named-xfer tells us this or we
- * discover it through the qserial_*() logic.
- */
-static void
-markUpToDate(zp)
-	struct zoneinfo *zp;
-{
-	struct stat f_time;
-
-	zp->z_flags &= ~Z_SYSLOGGED;
-	zp->z_lastupdate = tt.tv_sec;
-	ns_refreshtime(zp, tt.tv_sec);
-	/*
-	 * Restore Z_AUTH in case expired,
-	 * but only if there were no errors
-	 * in the zone file.
-	 */
-	if ((zp->z_flags & Z_DB_BAD) == 0)
-		zp->z_flags |= Z_AUTH;
-	if (zp->z_source) {
-#if defined(USE_UTIME)
-		struct utimbuf t;
-
-		t.actime = tt.tv_sec;
-		t.modtime = tt.tv_sec;
-		(void) utime(zp->z_source, &t);
-#else
-		struct timeval t[2];
-
-		t[0] = tt;
-		t[1] = tt;
-		(void) utimes(zp->z_source, t);
-#endif /* USE_UTIME */
-	}
-	/* we use "stat" to set zp->z_ftime instead of just
-	   setting it to tt.tv_sec in order to avoid any
-	   possible rounding problems in utimes(). */
-	if (stat(zp->z_source, &f_time) != -1)
-		zp->z_ftime = f_time.st_mtime;
-	/* XXX log if stat fails? */
-}
-
-/*
- * Query for the serial number of a zone, so that
- * we can check to see if we need to transfer it.
- */
-void
-qserial_query(zp)
-	struct zoneinfo *zp;
-{
-	struct qinfo *qp;
-
-	dprintf(1, (ddt, "qserial_query(%s)\n", zp->z_origin));
-
-	if (qserial_qfull())
-		return;
-
-	qp = sysquery(zp->z_origin, zp->z_class, T_SOA,
-		      zp->z_addr, zp->z_addrcnt, QUERY);
-	if (!qp) {
-		syslog(LOG_INFO, "qserial_query(%s): sysquery FAILED",
-		       zp->z_origin);
-		return;		/* XXX - this is bad, we should do something */
-	}
-	qp->q_flags |= Q_ZSERIAL;
-	qp->q_zquery = zp;
-	zp->z_flags |= Z_QSERIAL;
-	ns_refreshtime(zp, tt.tv_sec);
-	qserials_running++;
-	dprintf(1, (ddt, "qserial_query(%s) QUEUED\n", zp->z_origin));
-}
-
-void
-qserial_answer(qp, serial)
-	struct qinfo *qp;
-	u_int32_t serial;
-{
-	struct zoneinfo *zp = qp->q_zquery;
-	int was_qfull = qserial_qfull();
-
-	dprintf(1, (ddt, "qserial_answer(%s, %lu)\n",
-		    zp->z_origin, (u_long)serial));
-	zp->z_flags &= ~Z_QSERIAL;
-	qp->q_flags &= ~Q_ZSERIAL;	/* keeps us from being called twice */
-	qserials_running--;
-	if (serial == 0) {
-		/* an error occurred, or the query timed out.
-		 */
-#ifdef GETSER_LOGGING
-		syslog(GETSER_LOGGING, "Err/TO getting serial# for \"%s\"",
-		       zp->z_origin);
-#endif /* GETSER_LOGGING */
-		addxfer(zp);
-	} else if (SEQ_GT(serial, zp->z_serial) || !zp->z_serial) {
-		dprintf(1, (ddt, "qserial_answer: zone is out of date\n"));
-		zp->z_xaddr = from_addr.sin_addr; /* don't use qp->q_from */
-		addxfer(zp);
-	} else if (SEQ_GT(zp->z_serial, serial)) {
-		if (!haveComplained((char*)zp, "went backward")) {
-			syslog(LOG_NOTICE,
-   "Zone \"%s\" (class %d) SOA serial# (%lu) rcvd from [%s] is < ours (%lu)\n",
-			       zp->z_origin, zp->z_class, (u_long)serial,
-			       inet_ntoa(from_addr.sin_addr),
-			       (u_long)zp->z_serial);
-		}
-	} else {
-		dprintf(1, (ddt, "qserial_answer: zone serial is still OK\n"));
-		markUpToDate(zp);
-	}
-	if (was_qfull)
-		needmaint = 1;
-}
-
-/*
- * Hold and release SIGCHLD
- */
-#ifdef POSIX_SIGNALS
-static sigset_t sset;
-#else
-#ifndef SYSV
-static int omask;
-#endif
-#endif /* POSIX_SIGNALS */
-
-void holdsigchld()
-{
-#ifdef POSIX_SIGNALS
-	sigemptyset(&sset);
-	sigaddset(&sset,SIGCHLD);
-	sigprocmask(SIG_BLOCK,&sset,NULL);
-#else  /* POSIX_SIGNALS */
-#ifndef SYSV
-	omask = sigblock(sigmask(SIGCHLD));
-#else  /* SYSV */
-	/* XXX - out of luck? */
-#endif /* SYSV */
-#endif /* POSIX_SIGNALS */
-}
-	
-void releasesigchld()
-{
-#ifdef POSIX_SIGNALS
-	sigprocmask(SIG_UNBLOCK,&sset,NULL);
-#else
-#ifndef SYSV
-	(void) sigsetmask(omask);
-#endif
-#endif /* POSIX_SIGNALS */
-}
-
-	/* State of all running zone transfers */
-static struct {
-	pid_t 	xfer_pid;
-	int	xfer_state; /* see below */
-#ifdef sequent
-	union wait xfer_status;
-#else
-	int	xfer_status;
-#endif
-} xferstatus[MAX_XFERS_RUNNING];
-#define XFER_IDLE	0
-#define XFER_RUNNING	1
-#define XFER_DONE	2
-
-/*
- * Start an asynchronous zone transfer for a zone.
- * Depends on current time being in tt.
- * The caller must call sched_maint after startxfer.
- */
-static void
-startxfer(zp)
-	struct zoneinfo *zp;
-{
-	char *argv[NSMAX + 20], argv_ns[NSMAX][MAXDNAME];
-	int argc = 0, argc_ns = 0, pid, i;
-	unsigned int cnt;
-	char debug_str[10];
-	char serial_str[10];
-	char port_str[10];
-#ifdef GEN_AXFR
-	char class_str[10];
-#endif
-
-	dprintf(1, (ddt, "startxfer() %s\n", zp->z_origin));
-
-	argv[argc++] = _PATH_XFER;
-	argv[argc++] = "-z";
-	argv[argc++] = zp->z_origin;
-	argv[argc++] = "-f";
-	argv[argc++] = zp->z_source;
-	argv[argc++] = "-s";
-	sprintf(serial_str, "%lu", (u_long)zp->z_serial);
-	argv[argc++] = serial_str;
-#ifdef GEN_AXFR
-	argv[argc++] = "-C";
-	sprintf(class_str, "%d", zp->z_class);
-	argv[argc++] = class_str;
-#endif
- 	if (zp->z_flags & Z_SYSLOGGED)
-		argv[argc++] = "-q";
-	argv[argc++] = "-P";
-	sprintf(port_str, "%d", ns_port);
-	argv[argc++] = port_str;
-#ifdef STUBS
-	if (zp->z_type == Z_STUB)
-		argv[argc++] = "-S";
-#endif
-#ifdef DEBUG
-	if (debug) {
-		argv[argc++] = "-d";
-		sprintf(debug_str, "%d", debug);
-		argv[argc++] = debug_str;
-		argv[argc++] = "-l";
-		argv[argc++] = _PATH_XFERDDT;
-		if (debug > 5) {
-			argv[argc++] = "-t";
-			argv[argc++] = _PATH_XFERTRACE;
-		}
-	}
-#endif
-	
-	if (zp->z_xaddr.s_addr != 0) {
-		/* Address was specified by the qserial logic, use it. */
-		argv[argc++] = strcpy(argv_ns[argc_ns++],
-				      inet_ntoa(zp->z_xaddr));
-	} else {
-		/*
-		 * Copy the server ip addresses into argv, after converting
-		 * to ascii and saving the static inet_ntoa result.
-		 */
-		for (cnt = 0;  cnt < zp->z_addrcnt;  cnt++) {
-			struct in_addr a;
-
-			a = zp->z_addr[cnt];
-			if (aIsUs(a) &&
-			    !haveComplained(zp->z_origin, (char*)startxfer)) {
-				syslog(LOG_NOTICE,
-				   "attempted to fetch zone %s from self (%s)",
-				       zp->z_origin, inet_ntoa(a));
-				continue;
-			}
-			argv[argc++] = strcpy(argv_ns[argc_ns++],
-					      inet_ntoa(a));
-		}
-        }
-
-	argv[argc] = 0;
-
-#ifdef DEBUG
-	if (debug) {
-		for (i = 0; i < argc; i++) 
-			fprintf(ddt, " %s", argv[i]);
-		fprintf(ddt, "\n");
-        }
-#endif /* DEBUG */
-
-	gettime(&tt);
-	holdsigchld();
-	for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-		if (xferstatus[i].xfer_pid == 0) {
-			xferstatus[i].xfer_state = XFER_RUNNING;
-			break;
-		}
-	}
-	if ((pid = vfork()) == -1) {
-		syslog(LOG_ERR, "xfer vfork: %m");
-		releasesigchld();
-		zp->z_time = tt.tv_sec + 10;
-		return;
-	}
-
-	if (pid == 0) {
-		/* Child. */
-		execv(_PATH_XFER, argv);
-		syslog(LOG_ERR, "can't exec %s: %m", _PATH_XFER);
-		_exit(XFER_FAIL);	/* Avoid duplicate buffer flushes. */
-	}
-	/* Parent. */
-	xferstatus[i].xfer_pid = pid;  /* XXX - small race condition here if we
-					* can't hold signals */
-	dprintf(1, (ddt, "started xfer child %d\n", pid));
-	zp->z_flags &= ~Z_NEED_XFER;
-	zp->z_flags |= Z_XFER_RUNNING;
-	zp->z_xferpid = pid;
-	xfers_running++;
-	zp->z_time = tt.tv_sec + MAX_XFER_TIME;
-	releasesigchld();
-}
-
-const char *
-zoneTypeString(zp)
-	const struct zoneinfo *zp;
-{
-	static char ret[sizeof "(4294967296?)"];	/* 2^32 */
-
-	switch (zp->z_type) {
-	case Z_PRIMARY:		return ("primary");
-	case Z_SECONDARY:	return ("secondary");
-#ifdef STUBS
-	case Z_STUB:		return ("stub");
-#endif
-	case Z_CACHE:		return ("cache");
-	default:
-		sprintf(ret, "(%lu?)", (u_long)zp->z_type);
-		return (ret);
-	}
-}
-
-#ifdef DEBUG
-void
-printzoneinfo(zonenum)
-	int zonenum;
-{
-	struct timeval  tt;
-	struct zoneinfo *zp = &zones[zonenum];
-
-	if (!debug)
-		return;
-
-	if (!zp->z_origin)
-		return;
-
-	fprintf(ddt, "printzoneinfo(%d):\n", zonenum);
-
-	gettime(&tt);
-	fprintf(ddt, "origin ='%s'", zp->z_origin[0] ? zp->z_origin : ".");
-#ifdef GEN_AXFR
-	fprintf(ddt, ", class = %d", zp->z_class);
-#endif
- 	fprintf(ddt, ", type = %s", zoneTypeString(zp));
-	if (zp->z_source)
-		fprintf(ddt,", source = %s\n", zp->z_source);
-	fprintf(ddt, "z_refresh = %lu", (u_long)zp->z_refresh);
-	fprintf(ddt, ", retry = %lu", (u_long)zp->z_retry);
-	fprintf(ddt, ", expire = %lu", (u_long)zp->z_expire);
-	fprintf(ddt, ", minimum = %lu", (u_long)zp->z_minimum);
-	fprintf(ddt, ", serial = %lu\n", (u_long)zp->z_serial);
-	fprintf(ddt, "z_time = %lu", (u_long)zp->z_time);
-	if (zp->z_time) {
-		fprintf(ddt, ", now time : %lu sec", (u_long)tt.tv_sec);
-		fprintf(ddt, ", time left: %lu sec",
-			(u_long)(zp->z_time - tt.tv_sec));
-	}
-	fprintf(ddt, "; flags %lx\n", (u_long)zp->z_flags);
-}
-#endif /* DEBUG */
-
-/*
- * remove_zone (htp, zone) --
- *     Delete all RR's in the zone "zone" under specified hash table.
- */
-void
-#ifdef CLEANCACHE
-remove_zone(htp, zone, all)
-#else
-remove_zone(htp, zone)
-#endif
-	register struct hashbuf *htp;
-	register int zone;
-#ifdef	CLEANCACHE
-	register int all;
-#endif
-{
-	register struct databuf *dp, *pdp;
-	register struct namebuf *np, *pnp, *npn;
-	struct namebuf **npp, **nppend;
-
-	nppend = htp->h_tab + htp->h_size;
-	for (npp = htp->h_tab; npp < nppend; npp++) {
-		for (pnp = NULL, np = *npp; np != NULL; np = npn) {
-			for (pdp = NULL, dp = np->n_data; dp != NULL; NULL) {
-				if (dp->d_zone == zone
-#ifdef CLEANCACHE
-				    && (all || stale(dp))
-#endif
-				    ) {
-					dp = rm_datum(dp, np, pdp);
-				} else {
-					pdp = dp;
-					dp = dp->d_next;
-				}
-			} /*for(pdp)*/
-
-			if (np->n_hash) {
-				/* call recursively to remove subdomains. */
-				remove_zone(np->n_hash, zone
-#ifdef CLEANCACHE
-					    , all
-#endif
-					    );
-
-				/* if now empty, free it */
-				if (np->n_hash->h_cnt == 0) {
-					free((char*)np->n_hash);
-					np->n_hash = NULL;
-				}
-			}
-
-			if ((np->n_hash == NULL) && (np->n_data == NULL)) {
-				npn = rm_name(np, npp, pnp);
-				htp->h_cnt--;
-			} else {
-				npn = np->n_next;
-				pnp = np;
-			}
-		} /*for(pnp)*/
-	} /*for(npp)*/
-}
-
-#ifdef PURGE_ZONE
-static void purge_z_2 __P((struct hashbuf *, int));
-static bottom_of_zone __P((struct databuf *, int));
-
-void
-purge_zone(dname, htp, class)
-	const char *dname;
-	register struct hashbuf *htp;
-	int class;
-{
-	const char *fname;
-	struct databuf *dp, *pdp;
-	struct namebuf *np;
-	struct hashbuf *phtp = htp;
-
-	dprintf(1, (ddt, "purge_zone(%s,%d)\n", dname, class));
-	if ((np = nlookup(dname, &phtp, &fname, 0)) && dname == fname &&
-	    !ns_wildcard(NAME(*np))) {
-		for (pdp = NULL, dp = np->n_data; dp != NULL; ) {
-			if (dp->d_class == class)
-				dp = rm_datum(dp, np, pdp);
-			else {
-				pdp = dp;
-				dp = dp->d_next;
-			}
-		}
-
-		if (np->n_hash) {
-			purge_z_2(np->n_hash, class);
-			if (np->n_hash->h_cnt == 0) {
-				free((char*)np->n_hash);
-				np->n_hash = NULL;
-			}
-		}
-		
-		/* remove entry from cache, if required */
-		if ((np->n_hash == NULL) && (np->n_data == NULL)) {
-			struct namebuf **npp, **nppend;
-			struct namebuf *npn, *pnp, *nnp;
-
-			dprintf(3,(ddt, "purge_zone: cleaning cache\n"));
-
-			/* walk parent hashtable looking for ourself */
-			if (np->n_parent)
-				phtp = np->n_parent->n_hash;
-			else 
-				phtp = htp; /* top / root zone */
-
-			if (phtp) {
-				nppend = phtp->h_tab + phtp->h_size;
-				for (npp = phtp->h_tab; npp < nppend; npp++) {
-				    for (pnp = NULL, nnp = *npp;
-					 nnp != NULL;
-					 nnp = npn) {
-					    if (nnp == np) {
-						    dprintf(3, (ddt,
-					       "purge_zone: found our selves\n"
-								));
-						    npn = rm_name(nnp,npp,pnp);
-						    phtp->h_cnt--;
-					    } else {
-						    npn = nnp->n_next;
-						    pnp = nnp;
-					    }
-				    }
-				}
-			}
-		}
-	}
-}
-
-static void
-purge_z_2(htp, class)
-	register struct hashbuf *htp;
-	register int class;
-{
-	register struct databuf *dp, *pdp;
-	register struct namebuf *np, *pnp, *npn;
-	struct namebuf **npp, **nppend;
-
-	nppend = htp->h_tab + htp->h_size;
-	for (npp = htp->h_tab; npp < nppend; npp++) {
-		for (pnp = NULL, np = *npp; np != NULL; np = npn) {
-			if (!bottom_of_zone(np->n_data, class)) {
-				for (pdp = NULL, dp = np->n_data; dp != NULL; ) {
-					if (dp->d_class == class)
-						dp = rm_datum(dp, np, pdp);
-					else {
-						pdp = dp;
-						dp = dp->d_next;
-					}
-				}
-				if (np->n_hash) {
-					/* call recursively to rm subdomains */
-					purge_z_2(np->n_hash, class);
-
-					/* if now empty, free it */
-					if (np->n_hash->h_cnt == 0) {
-						free((char*)np->n_hash);
-						np->n_hash = NULL;
-					}
-				}
-			}
-
-			if ((np->n_hash == NULL) && (np->n_data == NULL)) {
-				npn = rm_name(np, npp, pnp);
-				htp->h_cnt--;
-			} else {
-				npn = np->n_next;
-				pnp = np;
-			}
-		}
-	}
-}
-
-static int
-bottom_of_zone(dp, class)
-	struct databuf *dp;
-	int class;
-{
-	for ( ; dp ; dp = dp->d_next) {
-		if (dp->d_class != class)
-			continue;
-		if (dp->d_zone == 0)
-			continue;
-#ifdef NCACHE
-		if (dp->d_rcode)	/* this should not occur */
-			continue;
-#endif
-		if (dp->d_type == T_SOA)
-			return (1);
-	}
-	dprintf(3, (ddt, "bottom_of_zone() == 0\n"));
-	return (0);
-}
-#endif
-   
-/*
- * Handle XFER limit for a nameserver.
- */
-static int
-nxfers(zp, delta)
-	struct zoneinfo *zp;
-	int delta;
-{
-	struct in_addr nsa;
-	struct nameser *nsp;
-	int ret;
-
-	if (zp->z_xaddr.s_addr)
-		nsa = zp->z_xaddr;	/* qserial overrode address */
-	else if (!zp->z_addrcnt)
-		return (-1);
-	else
-		nsa = zp->z_addr[0];	/* first ns holds zone's xfer limit */
-
-	if (!(nsp = nameserFind(nsa, NS_F_INSERT)))
-		return (-1);		/* probably ENOMEM */
-
-	ret = nsp->xfers;
-	if (delta < 0 && -delta > ret)
-		return (-1);		/* taking more than we have */
-
-	nsp->xfers += delta;
-	return (ret);
-}
-
-/*
- * Abort an xfer that has taken too long.
- */
-static void
-abortxfer(zp)
-	struct zoneinfo *zp;
-{
-	if (zp->z_flags & (Z_XFER_GONE|Z_XFER_ABORTED)) {
-		int i;
-
-		for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-			if (xferstatus[i].xfer_pid == zp->z_xferpid) {
-				xferstatus[i].xfer_pid = 0;
-				xferstatus[i].xfer_state = XFER_IDLE;
-				break;
-			}
-		}
-
-		if (zp->z_flags & Z_XFER_GONE)
-			syslog(LOG_WARNING,
-			   "zone transfer timeout for \"%s\"; pid %lu missing",
-			       zp->z_origin, (u_long)zp->z_xferpid);
-		else if (kill(zp->z_xferpid, SIGKILL) == -1)
-			syslog(LOG_WARNING,
-			  "zone transfer timeout for \"%s\"; kill pid %lu: %m",
-			       zp->z_origin, (u_long)zp->z_xferpid);
-		else
-			syslog(LOG_WARNING,
-"zone transfer timeout for \"%s\"; second kill\
-pid %lu - forgetting, processes may accumulate",
-			       zp->z_origin, (u_long)zp->z_xferpid);
-
-		zp->z_xferpid = 0;
-		xfers_running--;
-		(void)nxfers(zp, -1);
-		zp->z_flags &= ~(Z_XFER_RUNNING|Z_XFER_ABORTED|Z_XFER_GONE);
-	} else if (kill(zp->z_xferpid, SIGKILL) == -1) {
-		if (errno == ESRCH)
-			/* No warning on first time, it may have just exited */
-			zp->z_flags |= Z_XFER_GONE;
-		else {
-			syslog(LOG_WARNING,
-		    "zone transfer timeout for \"%s\"; pid %lu kill failed %m",
-			       zp->z_origin, (u_long)zp->z_xferpid);
-			zp->z_flags |= Z_XFER_ABORTED;
-		}
-	} else {
-		syslog(LOG_NOTICE,
-		       "zone transfer timeout for \"%s\"; pid %lu killed",
-		       zp->z_origin, (u_long)zp->z_xferpid);
-		zp->z_flags |= Z_XFER_ABORTED;
-	}
-}
-
-/*
- * SIGCHLD signal handler: process exit of xfer's.
- * (Note: also called when outgoing transfer completes.)
- */
-SIG_FN
-reapchild()
-{
-	int pid, i, save_errno;
-#if defined(sequent)
-	union wait status;
-#else
-	int status;
-#endif /* sequent */
-
-#if defined(MUST_REARM_SIGS)
-	(void)signal(SIGCLD, (SIG_FN (*)()) reapchild);
-#endif
-	save_errno = errno;
-	gettime(&tt);
-#if defined(USE_WAITPID)
-	while ((pid = waitpid(-1, &status, WNOHANG)) > 0) {
-#else /* USE_WAITPID */
-	{
-		pid = wait(&status);
-#endif /* USE_WAITPID */
-		for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-			if (xferstatus[i].xfer_pid == pid) {
-				xferstatus[i].xfer_status = status;
-				xferstatus[i].xfer_state = XFER_DONE;
-				needendxfer++;
-				break;
-			}
-		}
-	}
-	errno = save_errno;
-}
-
-/*
- * Finish processing of of finished xfers
- */
-void
-endxfer()
-{
-    	register struct zoneinfo *zp;   
-	int exitstatus, pid, i;
-#if defined(sequent)
-	union wait status;
-#else
-	int status;
-#endif /* sequent */
-
-	gettime(&tt);
-
-	for (i = 0; i < MAX_XFERS_RUNNING; i++) {
-		if (xferstatus[i].xfer_state != XFER_DONE)
-			continue;
-		pid = xferstatus[i].xfer_pid;
-		status = xferstatus[i].xfer_status;
-		exitstatus = WIFEXITED(status) ?WEXITSTATUS(status) :0;
-
-		for (zp = zones; zp < &zones[nzones]; zp++) {
-			if (zp->z_xferpid != pid)
-				continue;
-			xfers_running--;
-			(void) nxfers(zp, -1);
-			zp->z_xferpid = 0;
-			zp->z_flags &=
-				~(Z_XFER_RUNNING|Z_XFER_ABORTED|Z_XFER_GONE);
-			dprintf(1, (ddt,
-		 "\nendxfer: child %d zone %s returned status=%d termsig=%d\n",
-				    pid, zp->z_origin, exitstatus,
-				    WIFSIGNALED(status) ?WTERMSIG(status) :-1
-				    )
-				);
-			if (WIFSIGNALED(status)) {
-				if (WTERMSIG(status) != SIGKILL) {
-					syslog(LOG_NOTICE,
-				  "named-xfer \"%s\" exited with signal %d\n",
-					  zp->z_origin[0]?zp->z_origin:".",
-					  WTERMSIG(status));
-				}
-				ns_retrytime(zp, tt.tv_sec);
-			} else {
-				switch (exitstatus) {
-				case XFER_UPTODATE:
-					markUpToDate(zp);
-					break;
-
-				case XFER_SUCCESS:
-					/* XXX should incorporate loadxfer() */
-					zp->z_flags |= Z_NEED_RELOAD;
-					zp->z_flags &= ~Z_SYSLOGGED;
-					needzoneload++;
-					break;
-
-				case XFER_TIMEOUT:
-					if (!(zp->z_flags & Z_SYSLOGGED)) {
-						zp->z_flags |= Z_SYSLOGGED;
-						syslog(LOG_NOTICE,
-		      "zoneref: Masters for secondary zone \"%s\" unreachable",
-						       zp->z_origin);
-					}
-					ns_retrytime(zp, tt.tv_sec);
-					break;
-
-				default:
-					if (!(zp->z_flags & Z_SYSLOGGED)) {
-						zp->z_flags |= Z_SYSLOGGED;
-						syslog(LOG_NOTICE,
-					     "named-xfer for \"%s\" exited %d",
-						       zp->z_origin,
-						       exitstatus);
-					}
-					/* FALLTHROUGH */
-				case XFER_FAIL:
-					zp->z_flags |= Z_SYSLOGGED;
-					ns_retrytime(zp, tt.tv_sec);
-					break;
-				}
-				break;
-			}
-		}
-		xferstatus[i].xfer_state = XFER_IDLE;
-		xferstatus[i].xfer_pid = 0;
-	}
-	releasesigchld();
-	tryxfer();
-}
-
-/*
- * Try to start some xfers - new "fair scheduler" by Bob Heiney @DEC (1995)
- */
-static void
-tryxfer() {
-	static struct zoneinfo *zp = NULL;
-	static struct zoneinfo *lastzones = NULL;
-	static int lastnzones = 0;
-	struct zoneinfo *startzp, *stopzp;
-
-	/* initialize, and watch out for changes in zones! */
-	if (lastzones != zones) {
-		if (lastzones != NULL)
-			syslog(LOG_INFO, "zones changed: %p != %p",
-			       lastzones, zones);
-		lastzones = zones;
-		zp = zones;
-	}
-
-	/* did zones shrink? */
-	if (lastnzones > nzones) {
-		syslog(LOG_INFO, "zones shrunk");
-		zp = zones;
-	}
-	lastnzones = nzones;
-    
-	if (zp == zones)
-		stopzp = &zones[nzones-1];
-	else
-		stopzp = zp - 1;
-
-	dprintf(3, (ddt, "tryxfer start zp=%p stopzp=%p def=%d running=%d\n",
-		    zp, stopzp, xfers_deferred, xfers_running));
-
-	startzp = zp;
-	for (;;) {
-		int xfers;
-
-		if (!xfers_deferred || xfers_running >= max_xfers_running)
-			break;
-		
-		if ((xfers = nxfers(zp, 0)) != -1 &&
-		    xfers < max_xfers_per_ns &&
-		    (zp->z_flags & Z_NEED_XFER)) {
-			nxfers(zp, 1);
-			xfers_deferred--;
-			startxfer(zp);
-		}
-
-		if (zp == stopzp) {
-			dprintf(3, (ddt, "tryxfer stop mark\n"));
-			zp = startzp;
-			break;
-		}
-
-		zp++;
-		/* wrap around? */
-		if (zp == &zones[nzones])
-			zp = zones;
-	}
-	dprintf(3, (ddt, "tryxfer stop zp=%p\n", zp));
-
-	if (!needmaint)
-		sched_maint();
-}
-
-/*
- * Reload zones whose transfers have completed.
- */
-void
-loadxfer() {
-    	register struct zoneinfo *zp;   
-
-	gettime(&tt);
-	for (zp = zones; zp < &zones[nzones]; zp++) {
-		if (zp->z_flags & Z_NEED_RELOAD) {
-			dprintf(1, (ddt, "loadxfer() \"%s\"\n",
-				    zp->z_origin[0] ? zp->z_origin : "."));
-			zp->z_flags &= ~(Z_NEED_RELOAD|Z_AUTH);
-			remove_zone(hashtab, zp - zones
-#ifdef CLEANCACHE
-				    , 1
-#endif
-				    );
-#ifdef PURGE_ZONE
-			purge_zone(zp->z_origin, hashtab, zp->z_class);
-#endif
-			if (!db_load(zp->z_source, zp->z_origin, zp, NULL))
-				zp->z_flags |= Z_AUTH;
-			if (zp->z_flags & Z_TMP_FILE)
-				(void) unlink(zp->z_source);
-		}
-	}
-	if (!needmaint)
-		sched_maint();
-}
-
-/*
- * Add this zone to the set of those needing transfers.
- */
-static void
-addxfer(zp)
-	struct zoneinfo *zp;
-{
-	if (!(zp->z_flags & Z_NEED_XFER)) {
-		zp->z_flags |= Z_NEED_XFER;
-		xfers_deferred++;
-		tryxfer();
-	}
-}
diff --git a/contrib/bind/named/ns_ncache.c b/contrib/bind/named/ns_ncache.c
deleted file mode 100644
index ccacf610a5d87..0000000000000
--- a/contrib/bind/named/ns_ncache.c
+++ /dev/null
@@ -1,183 +0,0 @@
-/**************************************************************************
- * ns_ncache.c
- * author: anant kumar
- * last modification: March 17, 1993
- *
- * implements negative caching
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <syslog.h>
-#include <errno.h>
-#include <stdio.h>
-#include <resolv.h>
-
-#include "named.h"
-
-#ifdef NCACHE
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			return; \
-		} \
-	} while (0)
-
-void
-cache_n_resp(msg, msglen)
-	u_char *msg;
-	int msglen;
-{
-	register struct databuf *dp;
-	HEADER *hp;
-	u_char *cp, *eom, *rdatap;
-	char dname[MAXDNAME];
-	int n;
-	int type, class;
-#ifdef VALIDATE
-	int Vcode;
-#endif
-	int flags;
-	u_int dlen;
-
-	nameserIncr(from_addr.sin_addr, nssRcvdNXD);
-
-	hp = (HEADER *)msg;
-	cp = msg+HFIXEDSZ;
-	eom = msg + msglen;
-  
-	n = dn_expand(msg, eom, cp, dname, sizeof dname);
-	if (n < 0) {
-		dprintf(1, (ddt, "Query expand name failed:cache_n_resp\n"));
-		hp->rcode = FORMERR;
-		return;
-	}
-	cp += n;
-	BOUNDS_CHECK(cp, 2 * INT16SZ);
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	dprintf(1, (ddt,
-		    "ncache: dname %s, type %d, class %d\n",
-		    dname, type, class));
-
-#ifdef VALIDATE
-	Vcode = validate(dname, dname, &from_addr, type, class, NULL, 0,
-			 hp->rcode == NXDOMAIN ? NXDOMAIN : NOERROR_NODATA);
-	if (Vcode == INVALID || Vcode == VALID_NO_CACHE) {
-		/*Valid_no_cache should never occur but doesn't hurt to check*/
-		return;
-	}
-#endif
-#ifdef RETURNSOA
-	if (hp->nscount) {
-		u_int32_t ttl;
-		u_int16_t atype;
-		u_char *tp = cp;
-		u_char *cp1;
-		u_char data[MAXDNAME*2 + INT32SZ*5];
-		size_t len = sizeof data;
-
-		/* we store NXDOMAIN as T_SOA regardless of the query type */
-		if (hp->rcode == NXDOMAIN)
-			type = T_SOA;
-
-		/* store their SOA record */
-		n = dn_skipname(tp, eom);
-		if (n < 0) {
-			dprintf(3, (ddt, "ncache: form error\n"));
-			return;
-		}
-		tp += n;
-		BOUNDS_CHECK(tp, 3 * INT16SZ + INT32SZ);
-		GETSHORT(atype, tp);		/* type */
-		if (atype != T_SOA) {
-			dprintf(3, (ddt,
-				    "ncache: type (%d) != T_SOA\n",atype));
-			goto no_soa;
-		}
-		tp += INT16SZ;		/* class */
-		GETLONG(ttl, tp);	/* ttl */
-		GETSHORT(dlen, tp);	/* dlen */
-		BOUNDS_CHECK(tp, dlen);
-		rdatap = tp;
-
-		/* origin */
-		n = dn_expand(msg, eom, tp, (char*)data, len);
-		if (n < 0) {
-			dprintf(3, (ddt, "ncache: form error 2\n"));
-			return;
-		}
-		tp += n;
-		n = strlen((char*)data) + 1;
-		cp1 = data + n;
-		len -= n;
-		/* mail */
-		n = dn_expand(msg, msg + msglen, tp, (char*)cp1, len);
-		if (n < 0) {
-			dprintf(3, (ddt, "ncache: form error 2\n"));
-			return;
-		}
-		tp += n;
-		n = strlen((char*)cp1) + 1;
-		cp1 += n;
-		len -= n;
-		n = 5 * INT32SZ;
-		BOUNDS_CHECK(tp, n);
-		bcopy(tp, cp1, n);
-		/* serial, refresh, retry, expire, min */
-		cp1 += n;
-		len -= n;
-		tp += n;
-		if (tp != rdatap + dlen) {
-			dprintf(3, (ddt, "ncache: form error 2\n"));
-			return;
-		}
-		/* store the zone of the soa record */
-		n = dn_expand(msg, msg + msglen, cp, (char*)cp1, len);
-		if (n < 0) {
-			dprintf(3, (ddt, "ncache: form error 2\n"));
-			return;
-		}
-		n = strlen((char*)cp1) + 1;
-		cp1 += n;
-
-		dp = savedata(class, type, MIN(ttl, NTTL) + tt.tv_sec, data,
-			      cp1 - data);
-	} else {
- no_soa:
-#endif
-	dp = savedata(class, type, NTTL + tt.tv_sec, NULL, 0);
-#ifdef RETURNSOA
-	}
-#endif
-	dp->d_zone = DB_Z_CACHE;
-	dp->d_cred = hp->aa ? DB_C_AUTH : DB_C_ANSWER;
-	dp->d_clev = 0;
-	if(hp->rcode == NXDOMAIN) {
-		dp->d_rcode = NXDOMAIN;
-		flags = DB_NODATA|DB_NOTAUTH|DB_NOHINTS;
-	} else {
-		dp->d_rcode = NOERROR_NODATA;
-		flags = DB_NOTAUTH|DB_NOHINTS;
-	}
-
-	if ((n = db_update(dname, dp, dp, flags, hashtab)) != OK) {
-		dprintf(1, (ddt,
-			  "db_update failed return value:%d, cache_n_resp()\n",
-			    n));
-		db_free(dp);
-		return;
-	}
-	dprintf(4, (ddt,
-		    "ncache succeeded: [%s %s %s] rcode:%d ttl:%ld\n",
-		    dname, p_type(type), p_class(class),
-		    dp->d_rcode, (long)(dp->d_ttl-tt.tv_sec)));
-	return;
-}
-
-#endif /*NCACHE*/
diff --git a/contrib/bind/named/ns_req.c b/contrib/bind/named/ns_req.c
deleted file mode 100644
index bd59bab4ccc6f..0000000000000
--- a/contrib/bind/named/ns_req.c
+++ /dev/null
@@ -1,2094 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_req.c	4.47 (Berkeley) 7/1/91";
-static char rcsid[] = "$Id: ns_req.c,v 8.29 1998/04/07 04:59:45 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988, 1990
- * -
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/uio.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <fcntl.h>
-#include <syslog.h>
-#include <errno.h>
-#include <stdio.h>
-#include <resolv.h>
-
-#include "named.h"
-
-struct addinfo {
-	char		*a_dname;		/* domain name */
-	char		*a_rname;		/* referred by */
-	u_int16_t	a_rtype;		/* referred by */
-	u_int16_t	a_class;		/* class for address */
-};
-
-enum req_action { Finish, Refuse, Return };
-
-static enum req_action	req_query __P((HEADER *hp, u_char **cpp, u_char *eom,
-				       struct qstream *qsp,
-				       int *buflenp, int *msglenp,
-				       u_char *msg, int dfd,
-				       struct sockaddr_in *from));
-
-static enum req_action	req_iquery __P((HEADER *hp, u_char **cpp, u_char *eom,
-					int *buflenp, u_char *msg,
-					struct sockaddr_in *from));
-
-#ifdef BIND_NOTIFY
-static enum req_action	req_notify __P((HEADER *hp, u_char **cpp, u_char *eom,
-					u_char *msg,struct sockaddr_in *from));
-#endif
-
-static void		fwritemsg __P((FILE *, u_char *, int)),
-			doaxfr __P((struct namebuf *, FILE *,
-				    struct namebuf *, int)),
-			startxfr __P((struct qstream *, struct namebuf *,
-				      u_char *, int, int, const char *));
-
-static struct addinfo	addinfo[NADDRECS];
-static void		addname __P((const char *, const char *,
-				     u_int16_t, u_int16_t));
-static void		copyCharString __P((u_char **, const char *));
-
-/*
- * Process request using database; assemble and send response.
- */
-void
-ns_req(msg, msglen, buflen, qsp, from, dfd)
-	u_char *msg;
-	int msglen, buflen;
-	struct qstream *qsp;
-	struct sockaddr_in *from;
-	int dfd;
-{
-	register HEADER *hp = (HEADER *) msg;
-	u_char *cp, *eom;
-#ifdef DEBUG
-	const char *sortmsgtxt;
-#endif
-	enum req_action action;
-	int n;
-
-#ifdef DEBUG
-	if (debug > 3) {
-		fprintf(ddt, "ns_req(from=%s)\n", sin_ntoa(from));
-		fp_nquery(msg, msglen, ddt);
-	}
-#endif
-
-	/*
-	 * XXX - this decision should be made by our caller, not by us.
-	 */
-	if (hp->qr) {
-		ns_resp(msg, msglen);
-
-		/* Now is a safe time for housekeeping */
-		if (needs_prime_cache)
-			prime_cache();
-
-		return;
-	}
-
-	/* it's not a response so these bits have no business
-	 * being set. will later simplify work if we can
-	 * safely assume these are always 0 when a query
-	 * comes in.
-	 */
-	hp->aa = hp->ra = 0;
-
-	hp->rcode = NOERROR;
-	cp = msg + HFIXEDSZ;
-	eom = msg + msglen;
-	buflen -= HFIXEDSZ;
-
-	free_addinfo();	/* sets addcount to zero */
-	dnptrs[0] = NULL;
-
-	switch (hp->opcode) {
-	case QUERY:
-		action = req_query(hp, &cp, eom, qsp,
-				   &buflen, &msglen,
-				   msg, dfd, from);
-		break;
-
-	case IQUERY:
-		action = req_iquery(hp, &cp, eom, &buflen, msg, from);
-		break;
-
-#ifdef BIND_NOTIFY
-	case NS_NOTIFY_OP:
-		action = req_notify(hp, &cp, eom, msg, from);
-		break;
-#endif
-
-	default:
-		dprintf(1, (ddt, "ns_req: Opcode %d not implemented\n",
-			    hp->opcode));
-		/* XXX - should syslog, limited by haveComplained */
-		hp->qdcount = htons(0);
-		hp->ancount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = NOTIMP;
-		action = Finish;
-	}
-
-	/*
-	 * vector via internal opcode.  (yes, it was even uglier before.)
-	 */
-	switch (action) {
-	case Return:
-		return;
-	case Refuse:
-		hp->rcode = REFUSED;
-		/*FALLTHROUGH*/
-	case Finish:
-		/* rest of the function handles this case */
-		break;
-	default:
-		panic(-1, "ns_req: bad action variable");
-		/*NOTREACHED*/
-	}
-
-	/*
-	 * apply final polish
-	 */
-	hp->qr = 1;		/* set Response flag */
-	hp->ra = (NoRecurse == 0);
-
-	n = doaddinfo(hp, cp, buflen);
-	cp += n;
-	buflen -= n;
-
-#ifdef DEBUG
-#ifdef SORT_RESPONSE
-	sortmsgtxt = local(from) == NULL ? "Remote" : "Local";
-#else /*SORT*/
-	sortmsgtxt = "(not sorting)";
-#endif /*SORT*/
-	dprintf(1, (ddt, "ns_req: answer -> %s fd=%d id=%d size=%d %s\n",
-		    sin_ntoa(from), (qsp == QSTREAM_NULL) ? dfd : qsp->s_rfd,
-		    ntohs(hp->id), cp - msg, sortmsgtxt));
-	if (debug >= 10)
-		fp_nquery(msg, cp - msg, ddt);
-#endif /*DEBUG*/
-	if (qsp == QSTREAM_NULL) {
-		if (sendto(dfd, (char*)msg, cp - msg, 0,
-			   (struct sockaddr *)from,
-			   sizeof(*from)) < 0) {
-			if (!haveComplained((char*)from->sin_addr.s_addr,
-					    sendtoStr))
-				syslog(LOG_INFO,
-				       "ns_req: sendto(%s): %m",
-				       sin_ntoa(from));
-			nameserIncr(from->sin_addr, nssSendtoErr);
-		}
-		nameserIncr(from->sin_addr, nssSentAns);
-#ifdef XSTATS
-		if (hp->rcode == NXDOMAIN) 
-			nameserIncr(from->sin_addr, nssSentNXD);
-		if (!hp->aa) 
-			nameserIncr(from->sin_addr, nssSentNaAns);
-#endif
-	} else {
-		(void) writemsg(qsp->s_rfd, msg, cp - msg);
-		sq_done(qsp);
-	}
-
-	if (needs_prime_cache) {
-		prime_cache();		/* Now is a safe time */
-	}
-}
-
-#ifdef BIND_NOTIFY
-int
-findZonePri(zp, from)
-	register const struct zoneinfo *zp;
-	const struct sockaddr_in *from;
-{
-	register u_int32_t from_addr = from->sin_addr.s_addr;
-	register int i;
-
-	for (i = 0; (u_int)i < zp->z_addrcnt; i++)
-		if (zp->z_addr[i].s_addr == from_addr)
-			return (i);
-	return (-1);
-}
-
-static enum req_action
-req_notify(hp, cpp, eom, msg, from)
-	HEADER *hp;
-	u_char **cpp, *eom, *msg;
-	struct sockaddr_in *from;
-{
-	int n, type, class, zn;
-	char dnbuf[MAXDNAME];
-	struct namebuf *np;
-	const char *fname;
-	struct hashbuf *htp = hashtab;		/* lookup relative to root */
-
-	/* valid notify's have one question and zero answers */
-	if ((ntohs(hp->qdcount) != 1)
-	    || ntohs(hp->ancount) != 0
-	    || ntohs(hp->nscount) != 0
-	    || ntohs(hp->arcount) != 0) {
-		dprintf(1, (ddt, "FORMERR Notify header counts wrong\n"));
-		hp->qdcount = htons(0);
-		hp->ancount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-
-	n = dn_expand(msg, eom, *cpp, dnbuf, sizeof dnbuf);
-	if (n < 0) {
-		dprintf(1, (ddt, "FORMERR Query expand name failed\n"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	if (*cpp + 2 * INT16SZ > eom) {
-		dprintf(1, (ddt, "FORMERR notify too short"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	*cpp += n;
-	GETSHORT(type, *cpp);
-	GETSHORT(class, *cpp);
-	syslog(LOG_INFO, "rcvd NOTIFY(%s %s %s)",
-	       dnbuf, p_class(class), p_type(type));
-	/* XXX - when answers are allowed, we'll need to do compression
-	 * correctly here, and we will need to check for packet underflow.
-	 */
-	np = nlookup(dnbuf, &htp, &fname, 0);
-	if (!np) {
-		syslog(LOG_INFO, "rcvd NOTIFY for \"%s\", name not in cache",
-		       dnbuf);
-		hp->rcode = SERVFAIL;
-		return (Finish);
-	}
-	zn = findMyZone(np, class);
-	if (zn == DB_Z_CACHE || zones[zn].z_type != Z_SECONDARY) {
-		/* this can come if a user did an AXFR of some zone somewhere
-		 * and that zone's server now wants to tell us that the SOA
-		 * has changed.  AXFR's always come from nonpriv ports so it
-		 * isn't possible to know whether it was the server or just
-		 * "dig".  this condition can be avoided by using secure zones
-		 * since that way only real secondaries can AXFR from you.
-		 */
-		syslog(LOG_INFO,
-		       "NOTIFY for non-secondary name (%s), from %s",
-		       dnbuf, sin_ntoa(from));
-		goto refuse;
-	}
-	if (findZonePri(&zones[zn], from) == -1) {
-		syslog(LOG_INFO,
-		       "NOTIFY from non-master server (zone %s), from %s",
-		       zones[zn].z_origin, sin_ntoa(from));
-		goto refuse;
-	}
-	switch (type) {
-	case T_SOA:
-		if (strcasecmp(dnbuf, zones[zn].z_origin) != 0) {
-			syslog(LOG_INFO,
-			       "NOTIFY(SOA) for non-origin (%s), from %s",
-			       dnbuf, sin_ntoa(from));
-			goto refuse;
-		}
-		if (zones[zn].z_flags &
-		    (Z_NEED_RELOAD|Z_NEED_XFER|Z_QSERIAL|Z_XFER_RUNNING)) {
-			syslog(LOG_INFO,
-			       "NOTIFY(SOA) for zone already xferring (%s)",
-			       dnbuf);
-			goto noerror;
-		}
-		zones[zn].z_time = tt.tv_sec;
-		qserial_query(&zones[zn]);
-		/* XXX: qserial_query() can fail due to queue full condition;
-		 *	we should detect that case here and do something.
-		 */
-		break;
-	default:
-		/* unimplemented, but it's not a protocol error, just
-		 * something to be ignored.
-		 */
-		break;
-	}
- noerror:
-	hp->rcode = NOERROR;
-	return (Finish);
- refuse:
-	hp->rcode = REFUSED;
-	return (Finish);
-}
-#endif /*BIND_NOTIFY*/
-
-static enum req_action
-req_query(hp, cpp, eom, qsp, buflenp, msglenp, msg, dfd, from)
-	HEADER *hp;
-	u_char **cpp;
-	u_char *eom;
-	struct qstream *qsp;
-	u_char *msg;
-	int *buflenp, *msglenp, dfd;
-	struct sockaddr_in *from;
-{
-	int n, class, type, count, foundname, founddata, omsglen, cname;
-	u_int16_t id;
-	u_char **dpp, *omsg, *answers;
-	char dnbuf[MAXDNAME], *dname;
-	const char *fname;
-	struct hashbuf *htp;
-	struct databuf *nsp[NSMAX];
-	struct namebuf *np, *anp;
-	struct qinfo *qp;
-	struct netinfo *lp;
-#ifdef SECURE_ZONES
-	struct zoneinfo *zp;
-#endif
-	struct databuf *dp;
-
-#ifdef XSTATS
-	nameserIncr(from->sin_addr, nssRcvdQ);
-#endif
-	
-	nsp[0] = NULL;
-	dpp = dnptrs;
-	*dpp++ = msg;
-	*dpp = NULL;
-
-	/* valid queries have one question and zero answers */
-	if ((ntohs(hp->qdcount) != 1)
-	    || ntohs(hp->ancount) != 0
-	    || ntohs(hp->nscount) != 0
-	    || ntohs(hp->arcount) != 0) {
-		dprintf(1, (ddt, "FORMERR Query header counts wrong\n"));
-		hp->qdcount = htons(0);
-		hp->ancount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-
-	/*
-	 * Get domain name, class, and type.
-	 */
-	if ((**cpp & INDIR_MASK) == 0) {
-		*dpp++ = *cpp;	/* remember name for compression */
-	}
-	*dpp = NULL;
-	n = dn_expand(msg, eom, *cpp, dnbuf, sizeof dnbuf);
-	if (n < 0) {
-		dprintf(1, (ddt, "FORMERR Query expand name failed\n"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	*cpp += n;
-	if (*cpp + 2 * INT16SZ > eom) {
-		dprintf(1, (ddt, "FORMERR Query message length short\n"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	GETSHORT(type, *cpp);
-	GETSHORT(class, *cpp);
-	if (*cpp < eom) {
-		dprintf(6, (ddt,"message length > received message\n"));
-		*msglenp = *cpp - msg;
-	}
-
-	qtypeIncr(type);
-
-	/*
-	 * Yow!
-	 */
-	if (!strcasecmp(dnbuf, "VERSION.BIND") &&
-	    class == C_CHAOS && type == T_TXT) {
-		u_char *tp;
-
-		hp->ancount = htons(1);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = NOERROR;
-		hp->aa = 1;
-		hp->ra = 0;
-		copyCharString(cpp, "VERSION");	/* Name */
-		copyCharString(cpp, "BIND");
-		*(*cpp)++ = 0x00;
-		PUTSHORT(T_TXT, *cpp);		/* Type */
-		PUTSHORT(C_CHAOS, *cpp);	/* Class */
-		PUTLONG(0, *cpp);		/* TTL */
-		tp = *cpp;			/* Temp RdLength */
-		PUTSHORT(0, *cpp);
-		copyCharString(cpp, ShortVersion);
-		PUTSHORT((*cpp) - (tp + INT16SZ), tp);	/* Real RdLength */
-		*msglenp = *cpp - msg;		/* Total message length */
-		return (Finish);
-	}
-
-	/*
-	 * Process query.
-	 */
-	if (type == T_AXFR) {
-		/* refuse request if not a TCP connection */
-		if (qsp == QSTREAM_NULL) {
-			syslog(LOG_INFO,
-			       "rejected UDP AXFR from %s for \"%s\"",
-			       sin_ntoa(from), *dnbuf ? dnbuf : ".");
-			return (Refuse);
-		}
-		/* the position of this is subtle. */
-		nameserIncr(from->sin_addr, nssRcvdAXFR);
-#ifdef XFRNETS
-		if (xfrnets) {
-			/* if xfrnets was specified, peer address
-			 * must be on it.  should probably allow
-			 * for negation some day.
-			 */
-			if (!addr_on_netlist(from->sin_addr, xfrnets)) {
-				syslog(LOG_INFO,
-				       "unapproved AXFR from %s for %s",
-				       sin_ntoa(from), *dnbuf ? dnbuf : ".");
-				return (Refuse);
-			}
-		}
-#endif /*XFRNETS*/
-		dnptrs[0] = NULL;	/* don't compress names */
-		hp->rd = 0;		/* recursion not possible */
-		syslog(LOG_INFO, "approved AXFR from %s for \"%s\"",
-		       sin_ntoa(from), *dnbuf ? dnbuf : ".");
-	}
-	*buflenp -= *msglenp;
-	count = 0;
-	foundname = 0;
-	founddata = 0;
-	dname = dnbuf;
-	cname = 0;
-
-#ifdef QRYLOG
-	if (qrylog) {
-		syslog(LOG_INFO, "XX /%s/%s/%s",
-		       inet_ntoa(from->sin_addr), 
-		       (dname[0] == '\0') ?"." :dname, 
-		       p_type(type));
-	}
-#endif /*QRYLOG*/
-
- try_again:
-	dprintf(1, (ddt, "req: nlookup(%s) id %d type=%d class=%d\n",
-		    dname, ntohs(hp->id), type, class));
-	htp = hashtab;		/* lookup relative to root */
-	if ((anp = np = nlookup(dname, &htp, &fname, 0)) == NULL)
-		fname = "";
-	dprintf(1, (ddt, "req: %s '%s' as '%s' (cname=%d)\n",
-		    np == NULL ? "missed" : "found",
-		    dname, fname, cname));
-
-#ifdef LOCALDOM
-	/*
-	 * if nlookup failed to find the name then
-	 * see if there are any '.''s in the name
-	 * if not then add local domain name to the
-	 * name and try again.
-	 */
-	if (!np && localdomain && !strchr(dname, '.')) {
-		(void) strcat(dname, ".");
-		(void) strcat(dname, localdomain);
-		dprintf(1, (ddt,"req: nlookup(%s) type=%d\n", dname, type));
-		htp = hashtab;
-		np = nlookup(dname, &htp, &fname, 0);
-	}
-#endif /*LOCALDOM*/
-
-#ifdef YPKLUDGE
-	/* Some braindamaged resolver software will not 
-	   recognize internet addresses in dot notation and 
-	   send out address  queries for "names" such as 
-	   128.93.8.1.  This kludge will prevent those 
-	   from flooding higher level servers.
-	   We simply claim to be authoritative and that
-	   the domain doesn't exist.
-	   Note that we could return the address but we
-	   don't do that in order to encourage that broken
-	   software is fixed.
-	*/
-
-	if (!np && type == T_A && class == C_IN && dname) {
-		struct in_addr ina;
-
-		if (inet_aton(dname, &ina)) {
-			hp->rcode = NXDOMAIN;
-			hp->aa = 1;
-			dprintf(3, (ddt, "ypkludge: hit as '%s'\n", dname));
-			return (Finish);
-		}
-	}
-#endif /*YPKLUDGE*/
-
-	if ((!np) || (fname != dname))
-		goto fetchns;
-
-#ifdef SECURE_ZONES
-	/* (gdmr) Make sure the class is correct.  If we have the same name
-	 * with more than one class then we can't refuse a request for one
-	 * class just because another class is blocked.  We *really* ought
-	 * to look for the correct type too, but since everything in a
-	 * particular class of zone has the same secure_zone attribute it
-	 * doesn't really matter which type we use!  Alternatively, this lot
-	 * could all be moved to after the finddata(), by which time only
-	 * the correct class/type combinations will be left.
-	 */
-	dp = np->n_data;
-	while (dp && (dp->d_class != class))
-		dp = dp->d_next;
-	if (dp) {
-		zp = &zones[dp->d_zone];
-		if (zp->secure_nets
-		    && !addr_on_netlist(from->sin_addr, zp->secure_nets)) {
-			syslog(LOG_NOTICE, "Unauthorized request %s from %s",
-			       dname, sin_ntoa(from));
-			dprintf(1, (ddt, "req: refuse %s from %s class %d (%d)\n",
-				dname, sin_ntoa(from), class, zp->z_class));
-			return (Refuse);
-		}
-	}
-#endif
-	foundname++;
-	answers = *cpp;
-	count = *cpp - msg;
-
-#ifdef NCACHE
-	/* Look for NXDOMAIN record with appropriate class
-	 * if found return immediately
-	 */
-	for (dp = np->n_data; dp ; dp = dp->d_next) {
-		if (!stale(dp) && (dp->d_rcode == NXDOMAIN) &&
-		    (dp->d_class == class)) {
-#ifdef RETURNSOA
-			n = finddata(np, class, T_SOA, hp, &dname,
-				     buflenp, &count);
-			if (n != 0 ) {
-				if (count) {
-					*cpp += n;
-					*buflenp -= n;
-					*msglenp += n;
-					hp->nscount = htons((u_int16_t)count);
-				}
-				if (hp->rcode == NOERROR_NODATA) {
-					/* this should not occur */
-					hp->rcode = NOERROR;
-					return (Finish);
-				}
-			}
-#endif
-			hp->rcode = NXDOMAIN;
-			hp->aa = 1;
-			return (Finish);
-		}
-	}
-
-	/* if not NXDOMAIN, the NOERROR_NODATA record might be
-	 * anywhere in the chain. have to go through the grind.
-	 */
-#endif /*NCACHE*/
-
-	n = finddata(np, class, type, hp, &dname, buflenp, &count);
-	if (n == 0) {
-		/* NO data available.  Refuse AXFR requests, or
-		 * look for better servers for other requests.
-		 */
-		if (type == T_AXFR) {
-			dprintf(1, (ddt, "T_AXFR refused: no data\n"));
-			return (Refuse);
-		} else {
-			goto fetchns;
-		}
-	}
-
-#ifdef NCACHE
-	if (hp->rcode == NOERROR_NODATA) {
-		hp->rcode = NOERROR;
-#ifdef RETURNSOA
-		if (count) {
-			*cpp += n;
-			*buflenp -= n;
-			*msglenp += n;
-			hp->nscount = htons(count);
-		}
-#endif
-		founddata = 1;
-		return (Finish);
-	}
-#endif
-
-	*cpp += n;
-	*buflenp -= n;
-	*msglenp += n;
-	hp->ancount = htons(ntohs(hp->ancount) + (u_int16_t)count);
-	if (fname != dname && type != T_CNAME && type != T_ANY) {
-		if (cname++ >= MAXCNAMES) {
-			dprintf(3, (ddt,
-				    "resp: leaving, MAXCNAMES exceeded\n"));
-			hp->rcode = SERVFAIL;
-			return (Finish);
-		}
-		goto try_again;
-	}
-	founddata = 1;
-	dprintf(3, (ddt,
-		    "req: foundname=%d, count=%d, founddata=%d, cname=%d\n",
-		    foundname, count, founddata, cname));
-
-#ifdef SORT_RESPONSE
-	if ((lp = local(from)) != NULL) 
-		sort_response(answers, count, lp, *cpp);
-#endif
-#ifdef BIND_NOTIFY
-	if (type == T_SOA &&
-	    from->sin_port == ns_port &&
-	    np->n_data) {
-		int zn = np->n_data->d_zone;
-
-		if (zn != DB_Z_CACHE) {
-			struct notify	*ap;
-
-			/* Old? */
-			ap = findNotifyPeer(&zones[zn], from->sin_addr);
-			/* New? */
-			if (!ap && (ap = (struct notify *)malloc(sizeof *ap))) {
-				ap->addr = from->sin_addr;
-				ap->next = zones[zn].z_notifylist;
-				zones[zn].z_notifylist = ap;
-			}
-			/* Old or New? */
-			if (ap)
-				ap->last = tt.tv_sec;
-		}
-	}
-#endif /*BIND_NOTIFY*/
-	if (type == T_AXFR) {
-		startxfr(qsp, np, msg, *cpp - msg, class, dname);
-		return (Return);
-	}
-
-#ifdef notdef
-	/*
-	 * If we found an authoritative answer, we're done.
-	 */
-	if (hp->aa)
-		return (Finish);
-#endif
-
- fetchns:
-	/*
-	 * If we're already out of room in the response, we're done.
-	 */
-	if (hp->tc)
-		return (Finish);
-
-	/*
- 	 * Look for name servers to refer to and fill in the authority
- 	 * section or record the address for forwarding the query
- 	 * (recursion desired).
- 	 */
-	free_nsp(nsp);
-	nsp[0] = NULL;
-	count = 0;
-	switch (findns(&np, class, nsp, &count, 0)) {
-	case NXDOMAIN:
-		/* We are authoritative for this np. */
-		if (!foundname)
-			hp->rcode = NXDOMAIN;
-		dprintf(3, (ddt, "req: leaving (%s, rcode %d)\n",
-			    dname, hp->rcode));
-		if (class != C_ANY) {
-			hp->aa = 1;
-			if (np && (!foundname || !founddata)) {
-				n = doaddauth(hp, *cpp, *buflenp, np, nsp[0]);
-				*cpp += n;
-				*buflenp -= n;
-#ifdef ADDAUTH
-			} else if (ntohs(hp->ancount) != 0) {
-				/* don't add NS records for NOERROR NODATA
-				   as some servers can get confused */
-				free_nsp(nsp);
-				switch (findns(&np, class, nsp, &count, 1)) {
-				case NXDOMAIN:
-				case SERVFAIL:
-					break;
-				default:
-					if (np &&
-					    (type != T_NS || np != anp)
-					    ) {
-						n = add_data(np, nsp, *cpp,
-							     *buflenp, &count);
-						if (n < 0) {
-							hp->tc = 1;
-							n = (-n);
-						}
-						*cpp += n;
-						*buflenp -= n;
-						hp->nscount = 
-							htons((u_int16_t)
-							      count);
-					}
-				}
-#endif /*ADDAUTH*/
-			}
-		}
-		free_nsp(nsp);
-		return (Finish);
-
-	case SERVFAIL:
-		/* We're authoritative but the zone isn't loaded. */
-		if (!founddata && !(forward_only && fwdtab)) {
-			hp->rcode = SERVFAIL;
-			free_nsp(nsp);
-			return (Finish);
-		}
-	}
-
-	/*
-	 *  If we successfully found the answer in the cache,
-	 *  or this is not a recursive query, or we are purposely
-	 *  never recursing, then add the nameserver references
-	 *  ("authority section") here and we're done.
-	 */
-	if (founddata || !hp->rd || NoRecurse) {
-		/*
-		 * If the qtype was NS, and the np of the authority is
-		 * the same as the np of the data, we don't need to add
-		 * another copy of the answer here in the authority
-		 * section.
-		 */
-		if (!founddata || type != T_NS || anp != np) {
-			n = add_data(np, nsp, *cpp, *buflenp, &count);
-			if (n < 0) {
-				hp->tc = 1;
-				n = (-n);
-			}
-			*cpp += n;
-			*buflenp -= n;
-			hp->nscount = htons((u_int16_t)count);
-		}
-		free_nsp(nsp);
-		/* Our caller will handle the Additional section. */
-		return (Finish);
-	}
-
-	/*
-	 *  At this point, we don't have the answer, but we do
-	 *  have some NS's to try.  If the user would like us
-	 *  to recurse, create the initial query.  If a cname
-	 *  is involved, we need to build a new query and save
-	 *  the old one in cmsg/cmsglen.
-	 */
-	if (cname) {
-		omsg = (u_char *)malloc((unsigned) *msglenp);
-		if (omsg == (u_char *)NULL) {
-			syslog(LOG_INFO, "ns_req: Out Of Memory");
-			hp->rcode = SERVFAIL;
-			free_nsp(nsp);
-			return (Finish);
-		}
-		id = hp->id;
-		omsglen = *msglenp;
-		bcopy(msg, omsg, omsglen);
-		n = res_mkquery(QUERY, dname, class, type,
-				NULL, 0, NULL, msg,
-				*msglenp + *buflenp);
-		if (n < 0) {
-			syslog(LOG_INFO, "res_mkquery(%s) failed", dname);
-			hp->rcode = SERVFAIL;
-			free_nsp(nsp);
-			return (Finish);
-		}
-		*msglenp = n;
-	}
-	n = ns_forw(nsp, msg, *msglenp, from, qsp, dfd, &qp,
-		    dname, class, type, np);
-	if (n != FW_OK && cname)
-		free(omsg);
-	switch (n) {
-	case FW_OK:
-		if (cname) {
-			qp->q_cname = cname;
-			qp->q_cmsg = omsg;
-			qp->q_cmsglen = omsglen;
-			qp->q_id = id;
-		}
-		break;
-	case FW_DUP:
-		break;		/* Duplicate request dropped */
-	case FW_NOSERVER:
-		/* 
-		 * Don't go into an infinite loop if 
-		 * the admin gave root NS records in the cache
-		 * file without giving address records
-		 * for the root servers.
-		 */
-		if (np) {
-			if (NAME(*np)[0] == '\0') {
-				syslog(LOG_NOTICE, 
-				       "ns_req: no address for root server");
-				hp->rcode = SERVFAIL;
-				free_nsp(nsp);
-				return (Finish);
-			}
-#ifdef VALIDATE
-			/*
-			 * we need to kill all the NS records here as
-			 * validate will fail as we are talking to the parent
-			 * server
-			 */
-			delete_all(np, class, T_NS);
-#endif
-			for (dp = np->n_data; dp ; dp = dp->d_next)
-				if (dp->d_zone && match(dp, class, T_NS))
-					break;
-			if (dp) {
-				/*
-				 * we know the child zone exists but are
-				 * missing glue.
-				 *
-				 * nslookup has called sysquery() to get the
-				 * missing glue.
-				 *
-				 * for UDP, drop the response and let the
-				 * client retry.  for TCP, we should probably
-				 * (XXX) hold open the TCP connection for a
-				 * while in case the sysquery() comes back
-				 * soon.  meanwhile we SERVFAIL.
-				 */
-				if (qsp)
-					goto do_servfail;
-				break;
-			}
-			np = np_parent(np);
-		}
-		goto fetchns;	/* Try again. */
-	case FW_SERVFAIL:
- do_servfail:
-		hp->rcode = SERVFAIL;
-		free_nsp(nsp);
-		return (Finish);
-	}
-	free_nsp(nsp);
-	return (Return);
-}
-
-static enum req_action
-req_iquery(hp, cpp, eom, buflenp, msg, from)
-	HEADER *hp;
-	u_char **cpp, *eom;
-	int *buflenp;
-	u_char *msg;
-	struct sockaddr_in *from;
-{
-	int dlen, alen, n, type, class, count;
-	char dnbuf[MAXDNAME], anbuf[PACKETSZ], *data, *fname;
-
-#ifdef XSTATS
-	nameserIncr(from->sin_addr, nssRcvdIQ);
-#endif
-
-	if (ntohs(hp->ancount) != 1
-	    || ntohs(hp->qdcount) != 0
-	    || ntohs(hp->nscount) != 0
-	    || ntohs(hp->arcount) != 0) {
-		dprintf(1, (ddt, "FORMERR IQuery header counts wrong\n"));
-		hp->qdcount = htons(0);
-		hp->ancount = htons(0);
-		hp->nscount = htons(0);
-		hp->arcount = htons(0);
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-
-	/*
-	 * Skip domain name, get class, and type.
-	 */
-	if ((n = dn_skipname(*cpp, eom)) < 0) {
-		dprintf(1, (ddt, "FORMERR IQuery packet name problem\n"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	*cpp += n;
-	if (*cpp + 3 * INT16SZ + INT32SZ > eom) {
-		dprintf(1, (ddt, "FORMERR IQuery message too short"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-	GETSHORT(type, *cpp);
-	GETSHORT(class, *cpp);
-	*cpp += INT32SZ;	/* ttl */
-	GETSHORT(dlen, *cpp);
-	*cpp += dlen;
-	if (*cpp != eom) {
-		dprintf(1, (ddt, "FORMERR IQuery message length off\n"));
-		hp->rcode = FORMERR;
-		return (Finish);
-	}
-
-	/*
-	 * not all inverse queries are handled.
-	 */
-	switch (type) {
-	case T_A:
-#ifndef INVQ
-		if (!fake_iquery || dlen != INT32SZ)
-			return (Refuse);
-#endif
-#ifdef INVQ
-	case T_UID:
-	case T_GID:
-#endif
-		break;
-	default:
-		return (Refuse);
-	}
-	dprintf(1, (ddt, "req: IQuery class %d type %d\n", class, type));
-
-	fname = (char *)msg + HFIXEDSZ;
-	alen = (char *)*cpp - fname;
-	if ((size_t)alen > sizeof anbuf)
-		return (Refuse);
-	bcopy(fname, anbuf, alen);
-	data = anbuf + alen - dlen;
-	*cpp = (u_char *)fname;
-	*buflenp -= HFIXEDSZ;
-	count = 0;
-
-#ifdef QRYLOG
-	if (qrylog) {
-		syslog(LOG_INFO, "XX /%s/%s/-%s",
-		       inet_ntoa(from->sin_addr), 
-		       inet_ntoa(data_inaddr((u_char *)data)),
-		       p_type(type));
-	}
-#endif /*QRYLOG*/
-
-#ifdef INVQ
-    {
-	register struct invbuf *ip;
-
-	for (ip = invtab[dhash((u_char *)data, dlen)];
-	     ip != NULL;
-	     ip = ip->i_next) {
-		int i;
-
-		for (i = 0; i < INVBLKSZ; i++) {
-			struct namebuf *np;
-			struct databuf *dp;
-
-			if ((np = ip->i_dname[i]) == NULL)
-				break;
-			dprintf(5, (ddt, "dname = %d\n", NAME(*np)));
-			for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-				if (!match(dp, class, type))
-					continue;
-				if (dp->d_size != dlen ||
-				    bcmp(dp->d_data, data, dlen))
-					continue;
-				getname(np, dnbuf, sizeof(dnbuf));
-				dprintf(2, (ddt, "req: IQuery found %s\n",
-					    dnbuf));
-				*buflenp -= QFIXEDSZ;
-				n = dn_comp(dnbuf, *cpp, *buflenp, NULL, NULL);
-				if (n < 0) {
-					hp->tc = 1;
-					return (Finish);
-				}
-				*cpp += n;
-				if (*cpp + 2 * INT16SZ > dnbuf + *buflenp) {
-					hp->tc = 1;
-					return (Finish);
-				}
-				PUTSHORT((u_int16_t)dp->d_type, *cpp);
-				PUTSHORT((u_int16_t)dp->d_class, *cpp);
-				*buflenp -= n;
-				count++;
-			}
-		}
-	}
-    }
-#else /*INVQ*/
-	/*
-	 * We can only get here if we are compiled without INVQ (the default)
-	 * and the type is T_A and the option "fake-iquery" is on in the boot
-	 * file.
-	 *
-	 * What we do here is send back a bogus response of "[dottedquad]".
-	 * A better strategy would be to turn this into a PTR query, but that
-	 * would legitimize inverse queries in a way they do not deserve.
-	 */
-	sprintf(dnbuf, "[%s]", inet_ntoa(data_inaddr((u_char *)data)));
-	*buflenp -= QFIXEDSZ;
-	n = dn_comp(dnbuf, *cpp, *buflenp, NULL, NULL);
-	if (n < 0) {
-		hp->tc = 1;
-		return (Finish);
-	}
-	*cpp += n;
-	PUTSHORT((u_int16_t)type, *cpp);
-	PUTSHORT((u_int16_t)class, *cpp);
-	*buflenp -= n;
-	count++;
-#endif /*INVQ*/
-	dprintf(1, (ddt, "req: IQuery %d records\n", count));
-	hp->qdcount = htons((u_int16_t)count);
-	if (alen > *buflenp) {
-		hp->tc = 1;
-		return (Finish);
-	}
-	bcopy(anbuf, *cpp, alen);
-	*cpp += alen;
-	return (Finish);
-}
-
-static void
-fwritemsg(rfp, msg, msglen)
-	FILE *rfp;
-	u_char *msg;
-	int msglen;
-{
-	u_char len[INT16SZ];
-
-	__putshort(msglen, len);
-	if (fwrite((char *)len, INT16SZ, 1, rfp) != 1 ||
-	    fwrite((char *)msg, msglen, 1, rfp) != 1) {
-		syslog(LOG_ERR, "fwritemsg: %m");
-		_exit(1);
-	}
-}
-
-/*
- *  Test a datum for validity and return non-zero if it is out of date.
- */
-int
-stale(dp)
-	register struct databuf *dp;
-{
-	register struct zoneinfo *zp = &zones[dp->d_zone];
-
-	switch (zp->z_type) {
-
-	case Z_PRIMARY:
-		return (0);
-
-#ifdef STUBS
-	case Z_STUB:
-		/* root stub zones have DB_F_HINT set */
-		if (dp->d_flags & DB_F_HINT)
-			return (0);
-		/* FALLTROUGH */
-#endif
-	case Z_SECONDARY:
-		/*
-		 * Check to see whether a secondary zone
-		 * has expired; if so clear authority flag
-		 * for zone and return true.  If lastupdate
-		 * is in the future, assume zone is up-to-date.
-		 */
-		if ((int32_t)(tt.tv_sec - zp->z_lastupdate)
-		    > (int32_t)zp->z_expire) {
-			dprintf(1, (ddt,
-				    "stale: secondary zone %s expired\n",
-				    zp->z_origin));
-			if (!haveComplained(zp->z_origin, (char*)stale)) {
-				syslog(LOG_NOTICE,
-				       "secondary zone \"%s\" expired",
-				       zp->z_origin);
-			}
-			zp->z_flags &= ~Z_AUTH;
-			needmaint = 1;
-			return (1);
-		}
-		if (zp->z_lastupdate > tt.tv_sec) {
-			if (!haveComplained(zp->z_origin, (char*)stale)) {
-				syslog(LOG_NOTICE,
-				       "secondary zone \"%s\" time warp",
-				       zp->z_origin);
-			}
-			zp->z_flags &= ~Z_AUTH;
-			needmaint = 1;
-			return (1);
-		}
-		return (0);
-
-	case Z_CACHE:
-		if (dp->d_flags & DB_F_HINT || dp->d_ttl >= tt.tv_sec)
-			return (0);
-		dprintf(3, (ddt, "stale: ttl %d %ld (x%lx)\n",
-			    dp->d_ttl, (long)(dp->d_ttl - tt.tv_sec),
-			    (u_long)dp->d_flags));
-		return (1);
-
-	default:
-		/* FALLTHROUGH */ ;
-
-	}
-	panic(-1, "stale: impossible condition");
-	/* NOTREACHED */
-}
-
-/*
- * Copy databuf into a resource record for replies.
- * Return size of RR if OK, -1 if buffer is full.
- */
-int
-make_rr(name, dp, buf, buflen, doadd)
-	const char *name;
-	register struct databuf *dp;
-	u_char *buf;
-	int buflen, doadd;
-{
-	register u_char *cp;
-	u_char *cp1, *sp;
-	struct zoneinfo *zp;
-	register int32_t n;
-	register int16_t type = dp->d_type;
-	register u_int32_t ttl;
-	u_char **edp = dnptrs + sizeof dnptrs / sizeof dnptrs[0];
-
-	dprintf(5, (ddt, "make_rr(%s, %lx, %lx, %d, %d) %d zone %d ttl %lu\n",
-		    name, (u_long)dp, (u_long)buf,
-		    buflen, doadd, dp->d_size, dp->d_zone, (u_long)dp->d_ttl));
-
-#ifdef	NCACHE
-	if (dp->d_rcode
-#ifdef RETURNSOA
-	    && dp->d_size == 0
-#endif
-	) {
-		panic(-1, "make_rr: impossible d_rcode value");
-	}
-#endif
-	zp = &zones[dp->d_zone];
-	/* check for outdated RR before updating dnptrs by dn_comp() (?) */
-	if (zp->z_type == Z_CACHE) {
-		if ((dp->d_flags & DB_F_HINT) != 0
-		    || dp->d_ttl < (u_int32_t)tt.tv_sec) {
-			ttl = 0;
-		} else
-			ttl = dp->d_ttl - (u_int32_t) tt.tv_sec;
-	} else {
-		if (dp->d_ttl != USE_MINIMUM)
-			ttl = dp->d_ttl;
-		else
-			ttl = zp->z_minimum;		/* really default */
-#ifdef notdef /* don't decrease ttl based on time since verification */
-		if (zp->z_type == Z_SECONDARY) {
-			/*
-			 * Set ttl to value received from primary,
-			 * less time since we verified it (but never
-			 * less than a small positive value).
-			 */
-			ttl -= tt.tv_sec - zp->z_lastupdate;
-			if (ttl <= 0)
-				ttl = 120;
-		}
-#endif
-	}
-
-	buflen -= RRFIXEDSZ;
-	if (buflen < 0)
-		return (-1);
-#if defined(RETURNSOA) && defined(NCACHE)
-	if (dp->d_rcode) {
-		name = (char *)dp->d_data;
-		name += strlen(name) +1;
-		name += strlen(name) +1;
-		name += 5 * INT32SZ;
-		type = T_SOA;
-	}
-#endif
-	if ((n = dn_comp(name, buf, buflen, dnptrs, edp)) < 0)
-		return (-1);
-	cp = buf + n;
-	buflen -= n;
-	if (buflen < 0)
-		return (-1);
-	PUTSHORT((u_int16_t)type, cp);
-	PUTSHORT((u_int16_t)dp->d_class, cp);
-	PUTLONG(ttl, cp);
-	sp = cp;
-	cp += INT16SZ;
-	switch (type) {
-	case T_CNAME:
-	case T_MG:
-	case T_MR:
-	case T_PTR:
-		n = dn_comp((char *)dp->d_data, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		PUTSHORT((u_int16_t)n, sp);
-		cp += n;
-		break;
-
-	case T_MB:
-	case T_NS:
-		/* Store domain name in answer */
-		n = dn_comp((char *)dp->d_data, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		PUTSHORT((u_int16_t)n, sp);
-		cp += n;
-		if (doadd)
-			addname((char*)dp->d_data, name,
-				type, dp->d_class);
-		break;
-
-	case T_SOA:
-	case T_MINFO:
-	case T_RP:
-		cp1 = dp->d_data;
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		buflen -= type == T_SOA ? n + 5 * INT32SZ : n;
-		if (buflen < 0)
-			return (-1);
-		cp1 += strlen((char *)cp1) + 1;
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		if (type == T_SOA) {
-			cp1 += strlen((char *)cp1) + 1;
-			bcopy(cp1, cp, (n = 5 * INT32SZ));
-			cp += n;
-		}
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		break;
-
-	case T_NAPTR:
-		/* cp1 == our data/ cp == data of RR */
-		cp1 = dp->d_data;
-
- 		/* copy order */
-		buflen -= INT16SZ;
-		if (buflen < 0)
-			return (-1);
- 		bcopy(cp1, cp, INT16SZ);
- 		cp += INT16SZ;
- 		cp1 += INT16SZ;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		dprintf(1, (ddt, "current size n = %u\n", n));
-
-		/* copy preference */
-		buflen -= INT16SZ;
-		if (buflen < 0)
-			return (-1);
-		bcopy(cp1, cp, INT16SZ);
-		cp += INT16SZ;
-		cp1 += INT16SZ;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		dprintf(1, (ddt, "current size n = %u\n", n));
-
-		/* Flags */
-		n = *cp1++;
-		buflen -= n + 1;
-		if (buflen < 0)
-			return (-1);
-		dprintf(1, (ddt, "size of n at flags = %d\n", n));
-		*cp++ = n;
-		bcopy(cp1,cp,n);
-		cp += n;
-		cp1 += n;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		dprintf(1, (ddt, "current size n = %u\n", n));
-		
-		/* Service */
-		n = *cp1++;
-		buflen -= n + 1;
-		if (buflen < 0)
-			return (-1);
-		*cp++ = n;
-		bcopy(cp1,cp,n);
-		cp += n;
-		cp1 += n;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		dprintf(1, (ddt, "current size n = %u\n", n));
-
-		/* Regexp */
-		n = *cp1++;
-		buflen -= n + 1;
-		if (buflen < 0)
-			return (-1);
-		*cp++ = n;
-		bcopy(cp1,cp,n);
-		cp += n;
-		cp1 += n;
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		dprintf(1, (ddt, "current size n = %u\n", n));
-
-		/* Replacement */
-		dprintf(1, (ddt, "Replacement = %s\n", cp1));
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		dprintf(1, (ddt, "dn_comp's n = %u\n", n));
-		if (n < 0)
-			return (-1);
-		cp += n;
-
-		/* save data length */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		dprintf(1, (ddt, "saved size n = %u\n", n));
-		PUTSHORT((u_int16_t)n, sp);
-
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* cp1 == our data/ cp == data of RR */
-		cp1 = dp->d_data;
-
- 		if ((buflen -= INT16SZ) < 0)
-			return (-1);
-
- 		/* copy preference */
- 		bcopy(cp1, cp, INT16SZ);
- 		cp += INT16SZ;
- 		cp1 += INT16SZ;
-
-		if (type == T_SRV) {
-			buflen -= INT16SZ*2;
-			if (buflen < 0)
-				return (-1);
-			bcopy(cp1, cp, INT16SZ*2);
-			cp += INT16SZ*2;
-			cp1 += INT16SZ*2;
-		}
-
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		cp += n;
-
-		/* save data length */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		if (doadd)
-			addname((char*)cp1, name, type, dp->d_class);
-		break;
-
-	case T_PX:
-		cp1 = dp->d_data;
-
-		if ((buflen -= INT16SZ) < 0)
-			return (-1);
-
-		/* copy preference */
-		bcopy(cp1, cp, INT16SZ);
-		cp += INT16SZ;
-		cp1 += INT16SZ;
-
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		buflen -= n;
-		cp1 += strlen((char *)cp1) + 1;
-		n = dn_comp((char *)cp1, cp, buflen, dnptrs, edp);
-		if (n < 0)
-			return (-1);
-		cp += n;
-
-		/* save data length */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-		PUTSHORT((u_int16_t)n, sp);
-		break;
-
-	case T_SIG:
-		/* cp1 == our data; cp == data of target RR */
-		cp1 = dp->d_data;
-
-		/* first just copy over the type_covered, algorithm, */
-		/* labels, orig ttl, two timestamps, and the footprint */
-		if ((dp->d_size - 18) > buflen)
-			return (-1);  /* out of room! */
-		bcopy( cp1, cp, 18 );
-		cp  += 18;
-		cp1 += 18;
-		buflen -= 18;
-
-		/* then the signer's name */
-		n = dn_comp((char *)cp1, cp, buflen, NULL, NULL);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		buflen -= n;
-		cp1 += strlen((char*)cp1)+1;
-
-		/* finally, we copy over the variable-length signature */
-		n = dp->d_size - (u_int16_t)((cp1 - dp->d_data));
-		if (n > buflen)
-			return (-1);  /* out of room! */
-		bcopy(cp1, cp, n);
-		cp += n;
-		
-  		/* save data length & return */
-		n = (u_int16_t)((cp - sp) - INT16SZ);
-  		PUTSHORT((u_int16_t)n, sp);
-		break;
-
-	default:
-		if (dp->d_size > buflen)
-			return (-1);
-		bcopy(dp->d_data, cp, dp->d_size);
-		PUTSHORT((u_int16_t)dp->d_size, sp);
-		cp += dp->d_size;
-	}
-	return (cp - buf);
-}
-
-#if defined(__STDC__) || defined(__GNUC__)
-static void
-addname(register const char *dname,
-	register const char *rname,
-	u_int16_t rtype,
-	u_int16_t class)
-#else
-static void
-addname(dname, rname, rtype, class)
-	register const char	*dname;
-	register const char	*rname;
-	u_int16_t		rtype;
-	u_int16_t		class;
-#endif
-{
-	register struct addinfo *ap;
-	register int n;
-
-	for (ap = addinfo, n = addcount; --n >= 0; ap++)
-		if (strcasecmp(ap->a_dname, dname) == 0)
-			return;
-
-	/* add domain name to additional section */
-	if (addcount < NADDRECS) {
-		addcount++;
-		ap->a_dname = savestr(dname);
-		ap->a_rname = savestr(rname);
-		ap->a_rtype = rtype;
-		ap->a_class = class;
-	}
-}
-
-/*
- * Lookup addresses for names in addinfo and put into the message's
- * additional section.
- */
-int
-doaddinfo(hp, msg, msglen)
-	HEADER *hp;
-	u_char *msg;
-	int msglen;
-{
-	register struct namebuf *np;
-	register struct databuf *dp;
-	register struct addinfo *ap;
-	register u_char *cp;
-	struct hashbuf *htp;
-	const char *fname;
-	int n, count;
-
-	if (!addcount)
-		return (0);
-
-	dprintf(3, (ddt, "doaddinfo() addcount = %d\n", addcount));
-
-	if (hp->tc) {
-		dprintf(4, (ddt, "doaddinfo(): tc already set, bailing\n"));
-		return (0);
-	}
-
-	count = 0;
-	cp = msg;
-	for (ap = addinfo; --addcount >= 0; ap++) {
-		int	foundany = 0,
-			foundcname = 0,
-			save_count = count,
-			save_msglen = msglen;
-		u_char	*save_cp = cp;
-
-		dprintf(3, (ddt, "do additional \"%s\" (from \"%s\")\n",
-			    ap->a_dname, ap->a_rname));
-		htp = hashtab;	/* because "nlookup" stomps on arg. */
-		np = nlookup(ap->a_dname, &htp, &fname, 0);
-		if (np == NULL || fname != ap->a_dname)
-			goto next_rr;
-		dprintf(3, (ddt, "found it\n"));
-		/* look for the data */
-		delete_stale(np);
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-#ifdef	NCACHE
-			if (dp->d_rcode)
-				continue;
-#endif
-			if (match(dp, (int)ap->a_class, T_CNAME) ||
-			    match(dp, C_IN, T_CNAME)) {
-				foundcname++;
-				break;
-			}
-			if (!match(dp, (int)ap->a_class, T_A) &&
-			    !match(dp, C_IN, T_A) &&
-			    !match(dp, (int)ap->a_class, T_AAAA) &&
-			    !match(dp, C_IN, T_AAAA)) {
-				continue;
-			}
-			foundany++;
-			/*
-			 *  Should be smart and eliminate duplicate
-			 *  data here.	XXX
-			 */
-			if ((n = make_rr(ap->a_dname, dp, cp, msglen, 0)) < 0){
-				/* truncation in the additional-data section
-				 * is not all that serious.  we do not set TC,
-				 * since the answer and authority sections are
-				 * OK; however, since we're not setting TC we
-				 * have to make sure that none of the RR's for
-				 * this name go out (!TC implies that all
-				 * {name,type} appearances are complete -- and
-				 * since we only do A RR's here, the name is
-				 * the key).	vixie, 23apr93
-				 */
-				dprintf(5, (ddt,
-					    "addinfo: not enough room, remaining msglen = %d\n",
-					    save_msglen));
-				cp = save_cp;
-				msglen = save_msglen;
-				count = save_count;
-				break;
-			}
-			dprintf(5, (ddt,
-				    "addinfo: adding address data n = %d\n",
-				    n));
-			cp += n;
-			msglen -= n;
-			count++;
-		}
- next_rr:
-		if (!NoFetchGlue && !foundcname && !foundany) {
-			/* ask a real server for this info */
-			(void) sysquery(ap->a_dname, (int)ap->a_class, T_A,
-					NULL, 0, QUERY);
-		}
-		if (foundcname) {
-			if (!haveComplained((char*)nhash(ap->a_dname),
-					    (char*)nhash(ap->a_rname))) {
-				syslog(LOG_DEBUG,
-				       "\"%s %s %s\" points to a CNAME (%s)",
-				       ap->a_rname, p_class(ap->a_class),
-				       p_type(ap->a_rtype), ap->a_dname);
-			}
-		}
-		free(ap->a_dname);
-		free(ap->a_rname);
-	}
-	hp->arcount = htons((u_int16_t)count);
-	return (cp - msg);
-}
-
-int
-doaddauth(hp, cp, buflen, np, dp)
-	register HEADER *hp;
-	u_char *cp;
-	int buflen;
-	struct namebuf *np;
-	struct databuf *dp;
-{
-	char dnbuf[MAXDNAME];
-	int n;
-
-	getname(np, dnbuf, sizeof(dnbuf));
-	if (stale(dp)) {
-		dprintf(1, (ddt,
-			    "doaddauth: can't add stale '%s' (%d)\n",
-			    dnbuf, buflen));
-		return (0);
-	}
-	n = make_rr(dnbuf, dp, cp, buflen, 1);
-	if (n <= 0) {
-		dprintf(1, (ddt,
-			    "doaddauth: can't add oversize '%s' (%d) (n=%d)\n",
-			    dnbuf, buflen, n));
-		if (n < 0) {
-			hp->tc = 1;
-		}
-		return (0);
-	}
-	hp->nscount = htons(ntohs(hp->nscount) + 1);
-	return (n);
-}
-
-/*
- * Do a zone transfer (or a recursive part of a zone transfer).
- * SOA record already sent.
- *
- * top always refers to the domain at the top of the zone being transferred.
- * np refers to a domain inside the zone being transferred,
- *	which will be equal to top if this is the first call,
- *	or will be a subdomain below top if this is a recursive call,
- * rfp is a stdio file to which output is sent.
- */
-static void
-doaxfr(np, rfp, top, class)
-	register struct namebuf *np;
-	FILE *rfp;
-	struct namebuf *top;
-	int class;		/* Class to transfer */
-{
-	register struct databuf *dp;
-	register int n;
-	struct hashbuf *htp;
-	struct databuf *gdp;	/* glue databuf */
-	struct namebuf *gnp;	/* glue namebuf */
-	struct namebuf *tnp;	/* top namebuf */
-	struct databuf *tdp;	/* top databuf */
-	struct namebuf **npp, **nppend;
-	u_char msg[64*1024];
-	u_char *cp;
-	const char *fname;
-	char dname[MAXDNAME];
-	HEADER *hp;
-	int fndns;
-
-	if (np == top)
-		dprintf(1, (ddt, "doaxfr()\n"));
-	fndns = 0;
-	bzero((char*)msg, sizeof msg);
-	hp = (HEADER *) msg;
-	hp->opcode = QUERY;
-	hp->qr = 1;
-	hp->rcode = NOERROR;
-	hp->ancount = htons(1);
-	cp = msg + HFIXEDSZ;
-	getname(np, dname, sizeof dname);
-
-	/* first do the NS records (del@harris) */
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-#ifdef GEN_AXFR
-	    if (dp->d_class != class && class != C_ANY)
-		continue;
-#endif
-#ifdef	    NCACHE
-	    if (dp->d_rcode)
-		continue;
-#endif
-	    if (dp->d_type == T_NS) {
-		fndns = 1;
-		n = make_rr(dname, dp, cp, sizeof(msg)-HFIXEDSZ, 0);
-		if (n < 0)
-			continue;
-		fwritemsg(rfp, msg, n + HFIXEDSZ);
-#ifdef NO_GLUE
-		if ((np != top) || (NAME(*top)[0] == '\0')) {
-#endif /*NO_GLUE*/
-		    /*  Glue the sub domains together by sending 
-		     *  the address records for the sub domain
-		     *  name servers along if necessary.
-		     *  Glue is necessary if the server is in any zone
-		     *  delegated from the current (top) zone.  Such
-		     *  a delegated zone might or might not be that
-		     *  referred to by the NS record now being handled.
-		     */
- 		    htp = hashtab;
-		    cp = (u_char *) (msg + HFIXEDSZ);
- 		    gnp = nlookup((char *)dp->d_data, &htp, &fname, 0);
- 		    if (gnp == NULL || fname != (char *)dp->d_data)
- 			continue;
-#ifdef NO_GLUE
-		    for (tnp = gnp; tnp != NULL; tnp = tnp->n_parent)
-			if ( tnp == top )
-			    break;
-		    if ( (tnp == NULL) && (NAME(*top)[0] != '\0') )
-			continue;  /* name server is not below top domain */
-		    for (tnp = gnp;
-			 tnp != NULL && tnp != top;
-			 tnp = tnp->n_parent) {
-			for (tdp = tnp->n_data;
-			     tdp != NULL;
-			     tdp = tdp->d_next) {
-#ifdef GEN_AXFR
-			    if (tdp->d_class != class && class != C_ANY)
-				continue;
-#endif
-			    if (tdp->d_type == T_NS)
-				break;
-			}
-			if (tdp != NULL)
-			    break; /* found a zone cut */
-		    }
-		    if ((tnp == top) ||
-			    ((tnp == NULL) && (NAME(*top)[0] == '\0')))
-			continue;  /* name server is not in a delegated zone */
-		    /* now we know glue records are needed.  send them. */
-#endif /*NO_GLUE*/
- 		    for (gdp=gnp->n_data; gdp != NULL; gdp=gdp->d_next) {
-#ifdef GEN_AXFR
-			if (gdp->d_class != class && class != C_ANY)
-			    continue;
-#endif
- 			if (gdp->d_type != T_A || stale(gdp))
- 			    continue;
-#ifdef NCACHE
-			if (gdp->d_rcode)
-			    continue;
-#endif
- 			n = make_rr(fname, gdp, cp, sizeof(msg)-HFIXEDSZ, 0);
-			if (n < 0)
-			    continue;
- 			fwritemsg(rfp, msg, n + HFIXEDSZ);
- 		    }
-#ifdef NO_GLUE
-		}
-#endif /*NO_GLUE*/
-	    }
-	}
-	/* no need to send anything else if a delegation appeared */
-	if ((np != top) && fndns)
-		return;
-
-	/* do the rest of the data records */
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-#ifdef GEN_AXFR
-		if (dp->d_class != class && class != C_ANY)
-			continue;
-#endif
-		/*
-		 * Skip the top SOA record (marks end of data);
-		 * don't send SOA for subdomains, as we're not sending them;
-		 * skip the NS records because we did them first.
-		 */
-		if (dp->d_type == T_SOA || dp->d_type == T_NS)
-			continue;
-
-#if 0 /* Not yet implemented.  Only a SHOULD in the I-D.  -gnu@toad.com */
-		/* skip the SIG AXFR record because we did it first too. */
-		if (dp->d_type == T_SIG) {
-			int sig_rrtype = GETSHORT (dp->d_data);
-			if (sig_rrtype == T_AXFR)
-				continue;
-		}
-#endif /* 0 */
-
-		if (dp->d_zone == 0 || stale(dp))
-			continue;
-#ifdef NCACHE
-		if (dp->d_rcode)
-			continue;
-#endif
-		if ((n = make_rr(dname, dp, cp, sizeof(msg)-HFIXEDSZ, 0)) < 0)
-			continue;
-		fwritemsg(rfp, msg, n + HFIXEDSZ);
-	}
-
-	/* Finally do non-delegated subdomains.  Delegated subdomains
-	 * have already been handled.
-	 */
-	/*
-	 * We find the subdomains by looking in the hash table for this
-	 * domain, but the root domain needs special treatment, because
-	 * of the following wart in the database design:
-	 *
-	 * The top level hash table (pointed to by the global `hashtab'
-	 * variable) contains pointers to the namebuf's for the root as
-	 * well as for the top-level domains below the root, in contrast
-	 * to the usual situation where a hash table contains entries
-	 * for domains at the same level.  The n_hash member of the
-	 * namebuf for the root domain is NULL instead of pointing to a
-	 * hashbuf for the top-level domains.  The n_parent members of
-	 * the namebufs for the top-level domains are NULL instead of
-	 * pointing to the namebuf for the root.
-	 *
-	 * We work around the wart as follows:
-	 *
-	 * If we are not dealing with the root zone then we just set
-	 * htp = np->n_hash, pointing to the hash table for the current
-	 * domain, and we walk through the hash table as usual,
-	 * processing the namebufs for all the subdomains.
-	 *
-	 * If we are dealing with the root zone, then we set
-	 * htp = hashtab, pointing to the global hash table (because
-	 * there is no hash table associated with the root domain's
-	 * namebuf.  While we walk this hash table, we take care not to
-	 * recursively process the entry for the root namebuf.
-	 *
-	 * (apb@und nov1990)
-	 */
-	htp = ((dname[0] == '\0') ? hashtab : np->n_hash);
-	if (htp == NULL) {
-		return; /* no subdomains */
-	}
-	npp = htp->h_tab;
-	nppend = npp + htp->h_size;
-	while (npp < nppend) {
-		for (np = *npp++; np != NULL; np = np->n_next) {
-		    if (NAME(*np)[0] != '\0') { /* don't redo root domain */
-			doaxfr(np, rfp, top, class);
-		    }
-		}
-	}
-	if (np == top)
-		dprintf(1, (ddt, "exit doaxfr()\n"));
-}
-
-static void
-startxfr(qsp, np, soa, soalen, class, dname)
-	struct qstream	*qsp;
-	struct namebuf	*np;
-	u_char		*soa;
-	int		soalen;
-	int		class;
-	const char	*dname;
-{
-	FILE *rfp;
-	int fdstat;
-	pid_t pid;
-	int pipefd[2];
-	char c;
-#ifdef HAVE_SETVBUF
-	char *buf;
-#endif
-#ifdef SO_SNDBUF
-	static const int sndbuf = XFER_BUFSIZE * 2;
-#endif
-#ifdef SO_LINGER
-	static const struct linger ll = { 1, 120 };
-#endif
-
-	dprintf(5, (ddt, "startxfr()\n"));
-
-	/* create a pipe to synchronize parent and child */
-	if (pipe(pipefd) != 0) {
-		syslog(LOG_NOTICE, "startxfr(%s -> %s) failing; pipe: %m",
-		       dname, sin_ntoa(&qsp->s_from));
-		sqrm(qsp);
-		return;
-	}
-
-	/*
-	 * child does the work while
-	 * the parent continues
-	 */
-	switch (pid = fork()) {
-	case -1:
-		syslog(LOG_NOTICE, "startxfr(%s -> %s) failing; fork: %m",
-		       dname, sin_ntoa(&qsp->s_from));
-		close(pipefd[0]);
-		close(pipefd[1]);
-		sqrm(qsp);
-		return;
-	case 0:
-		/* child */
-		break;
-	default:
-		/* parent */
-		syslog(LOG_DEBUG, "zone transfer of \"%s\" to %s (pid %lu)",
-		       dname, sin_ntoa(&qsp->s_from), (u_long)pid);
-		close(pipefd[0]);	/* close the read end */
-		sqrm(qsp);
-		/* close the write end to release the child */
-		close(pipefd[1]);
-		return;
-	}
-
-	/*
-	 * Child.
-	 *
-	 * XXX:	this should be a vfork/exec since on non-copy-on-write
-	 *	systems with huge nameserver images, this is very expensive.
-	 */
-	close(vs);
-	sqflush(/*allbut*/ qsp);
-	dqflush((time_t)0);
-
-	close(pipefd[1]);		/* close the write end */
-	/*
-	 * Wait for parent to close the write end of the pipe which
-	 * we'll see as an EOF.  The parent won't close the write end
-	 * until it has closed the fd we'll be writing to, at which
-	 * point it will be safe for us to proceed.
-         *
-	 * We shouldn't get interrupted, but ...
-	 */
-	while (read(pipefd[0], &c, 1) == -1 && errno == EINTR)
-		; /* nothing */
-	close(pipefd[0]);
-
-#ifdef RENICE
-	nice(-40);  nice(20);  nice(0);		/* back to "normal" */
-#endif
-	dprintf(5, (ddt, "startxfr: child pid %lu\n", (u_long)pid));
-
-	if (!(rfp = fdopen(qsp->s_rfd, "w"))) {
-		syslog(LOG_ERR, "fdopen: %m");
-		_exit(1);
-	}
-	ns_setproctitle("zone XFR to", qsp->s_rfd);
-	if (-1 == (fdstat = fcntl(qsp->s_rfd, F_GETFL, 0))) {
-		syslog(LOG_ERR, "fcntl(F_GETFL): %m");
-		_exit(1);
-	}
-	(void) fcntl(qsp->s_rfd, F_SETFL, fdstat & ~PORT_NONBLOCK);
-#ifdef HAVE_SETVBUF
-	/* some systems (DEC OSF/1, SunOS) don't initialize the stdio buffer
-	 * if all you do between fdopen() and fclose() are fwrite()'s.  even
-	 * on systems where the buffer is correctly set, it is too small.
-	 */
-	if ((buf = malloc(XFER_BUFSIZE)) != NULL)
-		(void) setvbuf(rfp, buf, _IOFBF, XFER_BUFSIZE);
-#endif
-#ifdef SO_SNDBUF
-	/* the default seems to be 4K, and we'd like it to have enough room
-	 * to parallelize sending the pushed data with accumulating more
-	 * write() data from us.
-	 */
-	(void) setsockopt(qsp->s_rfd, SOL_SOCKET, SO_SNDBUF,
-			  (char *)&sndbuf, sizeof sndbuf);
-#endif
-	/* XXX:	some day we would like to only send the size and header out
-	 *	when we fill a 64K DNS/AXFR "message" rather than on each RR.
-	 *	(PVM@ISI gets credit for this idea.)
-	 */
-	fwritemsg(rfp, soa, soalen);
-	doaxfr(np, rfp, np, class);
-	fwritemsg(rfp, soa, soalen);
-	(void) fflush(rfp);
-#ifdef SO_LINGER
-	/* kernels that map pages for IO end up failing if the pipe is full
-	 * at exit and we take away the final buffer.  this is really a kernel
-	 * bug but it's harmless on systems that are not broken, so...
-	 */
-	setsockopt(qsp->s_rfd, SOL_SOCKET, SO_LINGER,
-		   (char *)&ll, sizeof ll);
-#endif
-	close(qsp->s_rfd);
-	_exit(0);
-	/* NOTREACHED */
-}
-
-void
-free_addinfo() {
-	struct addinfo *ap;
-
-	for (ap = addinfo; --addcount >= 0; ap++) {
-		free(ap->a_dname);
-		free(ap->a_rname);
-	}
-	addcount = 0;
-}
-
-void
-free_nsp(nsp)
-	struct databuf **nsp;
-{
-	while (*nsp) {
-		if (--((*nsp)->d_rcnt)) {
-			dprintf(3, (ddt, "free_nsp: %s rcnt %d\n",
-			(*nsp)->d_data, (*nsp)->d_rcnt));
-		} else {
-			dprintf(3, (ddt, "free_nsp: %s rcnt %d delayed\n",
-				(*nsp)->d_data, (*nsp)->d_rcnt));
-			db_free(*nsp);	/* delayed free */
-		}
-		*nsp++ = NULL;
-	}
-}
-
-static void
-copyCharString(dst, src)
-	u_char **dst;
-	const char *src;
-{
-	size_t len = strlen(src) & 0xff;
-
-	*(*dst)++ = (u_char) len;
-	memcpy(*dst, src, len);
-	*dst += len;
-}
diff --git a/contrib/bind/named/ns_resp.c b/contrib/bind/named/ns_resp.c
deleted file mode 100644
index d48da231ee3ce..0000000000000
--- a/contrib/bind/named/ns_resp.c
+++ /dev/null
@@ -1,3236 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_resp.c	4.65 (Berkeley) 3/3/91";
-static char rcsid[] = "$Id: ns_resp.c,v 8.41 1998/04/07 04:59:45 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1988, 1990
- * -
- * Copyright (c) 1986, 1988, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <syslog.h>
-#include <errno.h>
-#include <stdio.h>
-#include <resolv.h>
-
-#include "named.h"
-
-static u_int8_t		norootlogged[MAXCLASS];	/* XXX- should be a bitmap */
-
-static const char	skipnameFailedAnswer[] = "skipname failed in answer",
-			skipnameFailedAuth[] =	"skipname failed in authority",
-			skipnameFailedQuery[] =	"skipname failed in query",
-			outofDataQuery[] =	"ran out of data in query",
-			outofDataAnswer[] =	"ran out of data in answer",
-			notSingleQuery[] =	"not exactly one query",
-			expandFailedQuery[] =	"dn_expand failed in query",
-			expandFailedAnswer[] =	"dn_expand failed in answer",
-			expandFailedAuth[] =	"dn_expand failed in authority",
-			outofDataAuth[] =	"ran out of data in authority",
-			dlenOverrunAnswer[] =	"dlen overrun in answer",
-			dlenOverrunAuth[] =	"dlen overrun in authority",
-			dlenUnderrunAnswer[] =	"dlen underrun in answer",
-			outofDataFinal[] =	"out of data in final pass",
-			outofDataAFinal[] =	"out of data after final pass",
-			badNameFound[] =	"found an invalid domain name",
-			wrongQuestion[] =	"answer to wrong question",
-			danglingCname[] =	"dangling CNAME pointer";
-
-struct db_list {
-	struct db_list *db_next;
-	struct databuf *db_dp;
-};
-
-struct flush_set {
-	char *		fs_name;
-	int		fs_type;
-	int		fs_class;
-	u_int		fs_cred;
-	struct db_list *fs_list;
-	struct db_list *fs_last;
-};
-
-static void		rrsetadd __P((struct flush_set *, char *,
-				      struct databuf *)),
-			rrsetupdate __P((struct flush_set *, int flags)),
-			flushrrset __P((struct flush_set *)),
-			free_flushset __P((struct flush_set *));
-static int		rrsetcmp __P((char *, struct db_list *)),
-			check_root __P((void)),
-			check_ns __P((void)),
-			rrextract __P((u_char *, int, u_char *,
-				       struct databuf **, char *, int,
-				       char **));
-
-static void		add_related_additional __P((char *));
-static void		free_related_additional __P((void));
-static int		related_additional __P((char *));
-static void		maybe_free __P((char **));
-
-#define MAX_RELATED 100
-
-static int num_related = 0;
-static char *related[MAX_RELATED];
-
-#ifdef LAME_LOGGING
-static char *
-learntFrom(qp, server)
-	struct qinfo *qp;
-	struct sockaddr_in *server;
-{
-	static char *buf = NULL;
-	char *a, *ns, *na;
-	struct databuf *db;
-#ifdef STATS
-	char nsbuf[20];
-	char abuf[20];
-#endif
-	int i;
-	
-	if (buf) {
-		free(buf);
-		buf = NULL;
-	}
-
-	a = ns = na = "<Not Available>";
-
-	for (i = 0; i < (int)qp->q_naddr; i++) {
-		if (qp->q_addr[i].ns_addr.sin_addr.s_addr ==
-		    server->sin_addr.s_addr) {
-			db = qp->q_addr[i].ns;
-			if (db) {
-#ifdef STATS
-				if (db->d_ns) {
-					strcpy(nsbuf,
-					       inet_ntoa(db->d_ns->addr));
-					ns = nsbuf;
-				} else {
-					ns = zones[db->d_zone].z_origin;
-				}
-#endif
-
-#ifdef NCACHE
-				if (!db->d_rcode)
-#endif
-					na = (char*)qp->q_addr[i].ns->d_data;
-			}
-
-#ifdef STATS
-			db = qp->q_addr[i].nsdata;
-			if (db) {
-				if (db->d_ns) {
-					strcpy(abuf,
-					       inet_ntoa(db->d_ns->addr));
-					a = abuf;
-				} else {
-					a = zones[db->d_zone].z_origin;
-				}
-			}
-#endif
-			break;
-		}
-	}
-
-	if ((a == ns) && (ns == na))	/* all "UNKNOWN" */
-		return ("");
-	
-#ifdef STATS
-# define LEARNTFROM " '%s': learnt (A=%s,NS=%s)"
-#else
-# define LEARNTFROM " '%s'"
-#endif
-	buf = malloc(strlen(a = (*a ? a : "\".\"")) +
-		     strlen(ns = (*ns ? ns : "\".\"")) +
-		     strlen(na = (*na ? na : "\".\"")) +
-		     sizeof(LEARNTFROM));
-	if (!buf)
-		return ("");
-	sprintf(buf, LEARNTFROM, na, a, ns);
-	return (buf);
-}
-#endif /*LAME_LOGGING*/
-
-void
-ns_resp(msg, msglen)
-	u_char *msg;
-	int msglen;
-{
-	register struct qinfo *qp;
-	register HEADER *hp;
-	register struct qserv *qs;
-	register struct databuf *ns, *ns2;
-	register u_char *cp;
-	u_char *eom = msg + msglen;
-	struct flush_set *flushset = NULL;
-	struct sockaddr_in *nsa;
-	struct databuf *nsp[NSMAX];
-	int i, c, n, qdcount, ancount, aucount, nscount, arcount, arfirst;
-	int qtype, qclass, dbflags;
-	int restart;	/* flag for processing cname response */
-	int validanswer;
-	int cname, lastwascname, externalcname;
-	int count, founddata, foundname;
-	int buflen;
-	int newmsglen;
-	char name[MAXDNAME], qname[MAXDNAME], aname[MAXDNAME];
-	char msgbuf[MAXDNAME];
-	char *dname, tmpdomain[MAXDNAME];
-	const char *fname;
-	const char *formerrmsg = "brain damage";
-	u_char newmsg[PACKETSZ];
-	u_char **dpp, *tp;
-	time_t rtrip;
-	struct hashbuf *htp;
-	struct namebuf *np;
-	struct netinfo *lp;
-	struct fwdinfo *fwd;
-	char *tname = NULL;
-
-	nameserIncr(from_addr.sin_addr, nssRcvdR);
-	nsp[0] = NULL;
-	hp = (HEADER *) msg;
-	if ((qp = qfindid(hp->id)) == NULL ) {
-		dprintf(1, (ddt, "DUP? dropped (id %d)\n", ntohs(hp->id)));
-		nameserIncr(from_addr.sin_addr, nssRcvdDupR);
-		return;
-	}
-
-	dprintf(2, (ddt, "Response (%s %s %s) nsid=%d id=%d\n",
-		    (qp->q_flags & Q_SYSTEM) ?"SYSTEM" :"USER",
-		    (qp->q_flags & Q_PRIMING) ?"PRIMING" :"NORMAL",
-		    (qp->q_flags & Q_ZSERIAL) ?"ZSERIAL" :"-",
-		    ntohs(qp->q_nsid), ntohs(qp->q_id)));
-
-	/*
-	 * Here we handle high level formatting problems by parsing the header.
-	 */
-	qdcount = ntohs(hp->qdcount);
-	ancount = ntohs(hp->ancount);
-	aucount = ntohs(hp->nscount);	/* !!! */
-	arcount = ntohs(hp->arcount);
-	free_addinfo();		/* sets addcount to zero */
-	cp = msg + HFIXEDSZ;
-	dpp = dnptrs;
-	*dpp++ = msg;
-	if ((*cp & INDIR_MASK) == 0)
-		*dpp++ = cp;
-	*dpp = NULL;
-	if (qdcount == 1) {
-		n = dn_expand(msg, eom, cp, qname, sizeof(qname));
-		if (n <= 0) {
-			formerrmsg = expandFailedQuery;
-			goto formerr;
-		}
-		cp += n;
-		if (cp + 2 * INT16SZ > eom) {
-			formerrmsg = outofDataQuery;
-			goto formerr;
-		}
-		GETSHORT(qtype, cp);
-		GETSHORT(qclass, cp);
-		if (!ns_nameok(qname, qclass, response_trans,
-			       ns_ownercontext(qtype, response_trans),
-			       qname, from_addr.sin_addr)) {
-			formerrmsg = badNameFound;
-			goto formerr;
-		}
-		if (cp > eom) {
-			formerrmsg = outofDataQuery;
-			goto formerr;
-		}
-		if (qp->q_msg && qp->q_msglen &&
-		    !res_nameinquery(qname, qtype, qclass,
-				     qp->q_msg, qp->q_msg + qp->q_msglen)) {
-			sprintf(msgbuf,
-				"query section mismatch (%s %s %s)",
-				qname, p_class(qclass), p_type(qtype));
-			formerrmsg = msgbuf;
-			goto formerr;
-		}
-		if (strcasecmp(qp->q_name, qname) != 0 ||
-		    qp->q_class != qclass ||
-		    qp->q_type != qtype) {
-			formerrmsg = wrongQuestion;
-			goto formerr;
-		}
-	} else {
-		strcpy(qname, qp->q_name);
-		qclass = qp->q_class;
-		qtype = qp->q_type;
-	}
-
-	/* cp now points after the query section. */
-
-	/*
-	 *  Here we handle bad responses from servers.
-	 *  Several possibilities come to mind:
-	 *	The server is sick and returns SERVFAIL
-	 *	The server returns some garbage opcode (it's sick)
-	 *	The server can't understand our query and return FORMERR
-	 *  In all these cases, we drop the packet, disable retries on
-	 *  this server and immediately force a retry.
-	 */
-	if ((hp->rcode != NOERROR && hp->rcode != NXDOMAIN)
-	    || (hp->opcode != QUERY
-#ifdef BIND_NOTIFY
-		&& hp->opcode != NS_NOTIFY_OP
-#endif
-		)) {
-		dprintf(2, (ddt, "resp: error (ret %d, op %d), dropped\n",
-			    hp->rcode, hp->opcode));
-		switch (hp->rcode) {
-		case SERVFAIL:
-			nameserIncr(from_addr.sin_addr, nssRcvdFail);
-			break;
-		case FORMERR:
-			nameserIncr(from_addr.sin_addr, nssRcvdFErr);
-			break;
-		default:
-			nameserIncr(from_addr.sin_addr, nssRcvdErr);
-			break;
-		}
-		/* mark server as bad */
-		if (!qp->q_fwd)
-			for (i = 0; i < (int)qp->q_naddr; i++)
-				if (qp->q_addr[i].ns_addr.sin_addr.s_addr
-				    == from_addr.sin_addr.s_addr)
-					qp->q_addr[i].nretry = MAXRETRY;
-		/*
-		 * XXX:	doesn't handle responses sent from the wrong
-		 *	interface on a multihomed server.
-		 */
-		if (qp->q_fwd ||
-		    qp->q_addr[qp->q_curaddr].ns_addr.sin_addr.s_addr
-		    == from_addr.sin_addr.s_addr)
-			retry(qp);
-		return;
-	}
-
-	if (qdcount != 1) {
-		/* We don't generate or forward these (yet). */
-		formerrmsg = notSingleQuery;
-		goto formerr;
-	}
-
-	/*
-	 * Determine if the response came from a forwarder.  Packets from
-	 * anyplace not listed as a forwarder or as a server to whom we
-	 * might have forwarded the query will be dropped.
-	 */
-	for (fwd = fwdtab;  fwd != (struct fwdinfo *)NULL;  fwd = fwd->next) {
-		if (fwd->fwdaddr.sin_addr.s_addr ==
-		    from_addr.sin_addr.s_addr) {
-			/* XXX - should put this in STATS somewhere. */
-			break;
-		}
-	}
-	/*
-	 * XXX:	note bad ambiguity here.  if one of our forwarders is also
-	 *	a delegated server for some domain, then we will not update
-	 *	the RTT information on any replies we get from those servers.
-	 *	Workaround: disable recursion on authoritative servers so that
-	 *	the ambiguity does not arise.
-	 */
-	/*
-	 * If we weren't using a forwarder, find the qinfo pointer and update
-	 * the rtt and fact that we have called on this server before.
-	 */
-	if (fwd == (struct fwdinfo *)NULL) {
-		struct timeval *stp;
-
-		for (n = 0, qs = qp->q_addr; (u_int)n < qp->q_naddr; n++, qs++)
-			if (qs->ns_addr.sin_addr.s_addr ==
-			    from_addr.sin_addr.s_addr)
-				break;
-		if ((u_int)n >= qp->q_naddr) {
-			if (!haveComplained((char*)from_addr.sin_addr.s_addr,
-					    "unexpected source")) {
-				syslog(LOG_INFO,
-				       "Response from unexpected source (%s)",
-				       sin_ntoa(&from_addr));
-			}
-			/* 
-			 * We don't know who this response came from so it
-			 * gets dropped on the floor.
-			 */
-			return;
-		}
-		stp = &qs->stime;
-
-		/* Handle response from different (untried) interface */
-		if ((qs->ns != NULL) && (stp->tv_sec == 0)) {
-			ns = qs->ns;
-			while (qs > qp->q_addr
-			       && (qs->stime.tv_sec == 0 || qs->ns != ns))
-				qs--;
-			*stp = qs->stime;
-			/* XXX - sometimes stp still ends up pointing to
-			 * a zero timeval, in spite of the above attempt.
-			 * Why?  What should we do about it?
-			 */
-			dprintf(1, (ddt,
-			      "Response from unused address %s, assuming %s\n",
-				    sin_ntoa(&from_addr),
-				    sin_ntoa(&qs->ns_addr)));
-			/* XXX - catch aliases here */
-		}
-
-		/* compute query round trip time */
-		/* XXX - avoid integer overflow, which is quite likely if stp
-		 * points to a zero timeval (see above).
-		 * rtrip is of type time_t, which we assume is at least
-		 * as big as an int.
-		 */
-		if ((tt.tv_sec - stp->tv_sec) > (INT_MAX-999)/1000) {
-			rtrip = INT_MAX;
-		} else {
-			rtrip = ((tt.tv_sec - stp->tv_sec) * 1000 +
-				 (tt.tv_usec - stp->tv_usec) / 1000);
-		}
-		
-		dprintf(3, (ddt, "stime %lu/%lu  now %lu/%lu rtt %ld\n",
-			    (u_long)stp->tv_sec, (u_long)stp->tv_usec,
-			    (u_long)tt.tv_sec, (u_long)tt.tv_usec,
-			    (long)rtrip));
-
-		/* prevent floating point overflow, limit to 1000 sec */
-		if (rtrip > 1000000) {
-			rtrip = 1000000;
-		}
-		ns = qs->nsdata;
-		/*
-		 * Don't update nstime if this doesn't look
-		 * like an address databuf now.			XXX
-		 */
-		if (ns &&
-		    ns->d_type == T_A &&
-		    ns->d_class == qs->ns->d_class) {
-			u_long t;
-
-			if (ns->d_nstime == 0)
-				t = rtrip;
-			else
-				t = ns->d_nstime * ALPHA
-					+
-				   (1 - ALPHA) * rtrip;
-			if (t > 65535)
-				t = 65535;
-			ns->d_nstime = (u_int16_t)t;
-		}
-
-		/*
-		 * Record the source so that we do not use this NS again.
-		 */
-		if (ns && qs->ns && (qp->q_nusedns < NSMAX)) {
-			qp->q_usedns[qp->q_nusedns++] = qs->ns;
-			dprintf(2, (ddt, "NS #%d addr %s used, rtt %d\n",
-				    n, sin_ntoa(&qs->ns_addr),
-				    ns->d_nstime));
-		}
-
-		/*
-		 * Penalize those who had earlier chances but failed
-		 * by multiplying round-trip times by BETA (>1).
-		 * Improve nstime for unused addresses by applying GAMMA.
-		 * The GAMMA factor makes unused entries slowly
-		 * improve, so they eventually get tried again.
-		 * GAMMA should be slightly less than 1.
-		 * Watch out for records that may have timed out
-		 * and are no longer the correct type.			XXX
-		 */
-		
-		for (n = 0, qs = qp->q_addr;
-		     (u_int)n < qp->q_naddr;
-		     n++, qs++) {
-			u_long t;
-
-			ns2 = qs->nsdata;
-			if ((!ns2) || (ns2 == ns))
-				continue;
-			if (ns2->d_type != T_A ||
-			    ns2->d_class != qs->ns->d_class)	/* XXX */
-				continue;
-			if (qs->stime.tv_sec) {
-			    if (ns2->d_nstime == 0)
-				t = (rtrip * BETA);
-			    else
-				t = ns2->d_nstime * BETA
-					+
-				   (1 - ALPHA) * rtrip;
-			} else
-			    t = ns2->d_nstime * GAMMA;
-			if (t > 65535)
-				t = 65535;
-			ns2->d_nstime = (u_int16_t)t;
-			dprintf(2, (ddt, "NS #%d %s rtt now %d\n", n,
-				    sin_ntoa(&qs->ns_addr),
-				    ns2->d_nstime));
-		}
-	}
-
-#ifdef BIND_NOTIFY
-	/* for now, NOTIFY isn't defined for ANCOUNT!=0, AUCOUNT!=0,
-	 * or ADCOUNT!=0.  therefore the only real work to be done for
-	 * a NOTIFY-QR is to remove it from the query queue.
-	 */
-	if (hp->opcode == NS_NOTIFY_OP) {
-		qremove(qp);
-		return;
-	}
-#endif
-
-#ifdef LAME_DELEGATION
-	/*
-	 *  Non-authoritative, no answer, no error, with referral.
-	 */
-	if (hp->rcode == NOERROR && !hp->aa && ancount == 0 && aucount > 0
-#ifdef BIND_NOTIFY
-	    && hp->opcode != NS_NOTIFY_OP
-#endif
-	    ) {
-		u_char *tp;
-		int type, class;
-#ifdef DEBUG
-		if (debug > 0)
-			fp_nquery(msg, msglen, ddt);
-#endif
-		/*
-		 * Since there is no answer section (ancount == 0),
-		 * we must be pointing at the authority section (aucount > 0).
-		 */
-		tp = cp;
-		n = dn_expand(msg, eom, tp, name, sizeof name);
-		if (n < 0) {
-			formerrmsg = expandFailedAuth;
-			goto formerr;
-		}
-		tp += n;
-		if (tp + 2 * INT16SZ > eom) {
-			formerrmsg = outofDataAuth;
-			goto formerr;
-		}
-		GETSHORT(type, tp);
-		GETSHORT(class, tp);
-		if (!ns_nameok(name, class, response_trans,
-			       ns_ownercontext(type, response_trans),
-			       name, from_addr.sin_addr)) {
-			formerrmsg = badNameFound;
-			goto formerr;
-		}
-
-		/*
-		 * If the answer delegates us either to the same level in
-		 * the hierarchy or closer to the root, we consider this
-		 * server lame.  Note that for now we only log the message
-		 * if the T_NS was C_IN, which is technically wrong (NS is
-		 * visible in all classes) but necessary anyway (non-IN
-		 * classes tend to not have good strong delegation graphs).
-		 */
-
-		if (type == T_NS && samedomain(qp->q_domain, name)) {
-			nameserIncr(from_addr.sin_addr, nssRcvdLDel);
-			/* mark server as bad */
-			if (!qp->q_fwd)
-			    for (i = 0; i < (int)qp->q_naddr; i++)
-				if (qp->q_addr[i].ns_addr.sin_addr.s_addr
-				    == from_addr.sin_addr.s_addr)
-					qp->q_addr[i].nretry = MAXRETRY;
-#ifdef LAME_LOGGING
-			if (class == C_IN &&
-			    !haveComplained((char*)nhash(sin_ntoa(&from_addr)),
-					    (char*)nhash(qp->q_domain)))
-				syslog(LAME_LOGGING,
-				      "Lame server on '%s' (in '%s'?): %s%s\n",
-				       qname, qp->q_domain, 
-				       sin_ntoa(&from_addr),
-				       learntFrom(qp, &from_addr));
-
-#endif /* LAME_LOGGING */
-			/* XXX - doesn't handle responses sent from the wrong
-			 * interface on a multihomed server
-			 */
-			if (qp->q_fwd ||
-			    qp->q_addr[qp->q_curaddr].ns_addr.sin_addr.s_addr
-			    == from_addr.sin_addr.s_addr)
-				retry(qp);
-			return;
-		}
-	}
-#endif /* LAME_DELEGATION */
-
-	if (qp->q_flags & Q_ZSERIAL) {
-		if (hp->aa && ancount > 0 && hp->rcode == NOERROR &&
-		    qtype == T_SOA && ((qclass == C_IN) || (qclass == C_HS))) {
-			int n;
-			u_int16_t type, class, dlen;
-			u_int32_t serial;
-			u_char *tp = cp;
-			u_char *rdatap;
-
-			n = dn_expand(msg, eom, tp, name, sizeof name);
-			if (n < 0) {
-				formerrmsg = expandFailedAnswer;
-				goto formerr;
-			}
-			tp += n;  		/* name */
-			if (tp + 3 * INT16SZ + INT32SZ > eom) {
-				formerrmsg = outofDataAnswer;
-				goto formerr;
-			}
-			GETSHORT(type, tp);	/* type */
-			GETSHORT(class, tp);	/* class */
-			tp += INT32SZ;		/* ttl */
-			GETSHORT(dlen, tp); 	/* dlen */
-			rdatap = tp;		/* start of rdata */
-			if (!ns_nameok(name, class, response_trans,
-				       ns_ownercontext(type, response_trans),
-				       name, from_addr.sin_addr)) {
-				formerrmsg = badNameFound;
-				goto formerr;
-			}
-			if (strcasecmp(qname, name) ||
-			    qtype != type ||
-			    qclass != class) {
-				sprintf(msgbuf,
-					"qserial answer mismatch (%s %s %s)",
-					name, p_class(class), p_type(type));
-				formerrmsg = msgbuf;
-				goto formerr;
-			}
-
-			if (0 >= (n = dn_skipname(tp, eom))) {
-				formerrmsg = skipnameFailedAnswer;
-				goto formerr;
-			}
-			tp += n;  		/* mname */
-			if (0 >= (n = dn_skipname(tp, eom))) {
-				formerrmsg = skipnameFailedAnswer;
-				goto formerr;
-			}
-			tp += n;  		/* rname */
-			if (tp + 5 * INT32SZ > eom) {
-				formerrmsg = dlenUnderrunAnswer;
-				goto formerr;
-			}
-			GETLONG(serial, tp);
-			tp += 4 * INT32SZ;	/* Skip rest of SOA. */
-			if ((u_int)(tp - rdatap) != dlen) {
-				formerrmsg = dlenOverrunAnswer;
-				goto formerr;
-			}
-
-			qserial_answer(qp, serial);
-			qremove(qp);
-		} else {
-			retry(qp);
-		}
-		return;
-	}
-
-	/*
-	 * Add the info received in the response to the data base.
-	 */
-	arfirst = ancount + aucount;
-	c = arfirst + arcount;
-
-	/* -ve $ing non-existence of record, must handle non-authoritative
-	 * NOERRORs with c == 0.
-	 */
-	if (!hp->aa && hp->rcode == NOERROR && c == 0)
-		goto return_msg;
-
-#ifdef notdef
-	/*
-	 * If the request was for a CNAME that doesn't exist,
-	 * but the name is valid, fetch any other data for the name.
-	 * DON'T do this now, as it will requery if data are already
-	 * in the cache (maybe later with negative caching).
-	 */
-	if (type == T_CNAME && c == 0 && hp->rcode == NOERROR
-	    && !(qp->q_flags & Q_SYSTEM)) {
-		dprintf(4, (ddt, "resp: leaving, no CNAME\n"));
-
-		/* Cause us to put it in the cache later */
-		prime(class, T_ANY, qp);
-
-		/* Nothing to store, just give user the answer */
-		goto return_msg;
-	}
-#endif /* notdef */
-
-	if (qp->q_flags & Q_SYSTEM)
-		dbflags = DB_NOTAUTH | DB_NODATA;
-	else
-		dbflags = DB_NOTAUTH | DB_NODATA | DB_NOHINTS;
-	count = c;
-	if (qp->q_flags & Q_PRIMING)
-		dbflags |= DB_PRIMING;
-	if (hp->tc) {
-		count -= arcount;	/* truncation had to affect this */
-		if (!arcount) {
-			count -= aucount;	/* guess it got this too */
-		}
-		if (!(arcount || aucount)) {
-			count -= ancount;	/* things are pretty grim */
-		}
-		/* XXX - should retry this query with TCP */
-		/*
-		 * XXX - if this response is forwarded to the client
-		 * the truncated section is included.  We will not
-		 * validate it, and if it somehow corrupt, we won't
-		 * notice.
-		 *
-		 * XXX - if the answer section is truncated and we got
-		 * this response after being redirected by a CNAME, we
-		 * will not include any part of the final answer in our
-		 * response to the client.  This will make the client
-		 * think that there are no RRs of the appropriate type.
-		 */
-	}
-
-	tp = cp;
-
-	restart = 0;
-	validanswer = 0;
-	nscount = 0;
-	cname = 0;
-	lastwascname = 0;
-	externalcname = 0;
-	strcpy(aname, qname);
-
-	if (count) {
-		/* allocate 1 extra record for end of set detection */
-		flushset = (struct flush_set *)
-				calloc(count+1, sizeof(struct flush_set));
-		if (!flushset)
-			panic(-1, "flushset: out of memory");
-	} else
-		flushset = NULL;
-
-	for (i = 0; i < count; i++) {
-		struct databuf *dp;
-		int type;
-
-		maybe_free(&tname);
-		if (cp >= eom) {
-			free_related_additional();
-			if (flushset != NULL)
-				free_flushset(flushset);
-			formerrmsg = outofDataFinal;
-			goto formerr;
-		}
-		n = rrextract(msg, msglen, cp, &dp, name, sizeof name, &tname);
-		if (n < 0) {
-			free_related_additional();
-			maybe_free(&tname);
-			if (flushset != NULL)
-				free_flushset(flushset);
-			formerrmsg = outofDataFinal;
-			goto formerr;
-		}
-		cp += n;
-		if (!dp)
-			continue;
-		type = dp->d_type;
-		if (i < ancount) {
-			/* Answer section. */
-			if (externalcname || strcasecmp(name, aname) != 0) {
-				if (!externalcname)
-					syslog(LOG_DEBUG,
-					       "wrong ans. name (%s != %s)",
-					       name, aname);
-				else
-					dprintf(3, (ddt,
-				 "ignoring answer '%s' after external cname\n",
-						    name));
-				db_free(dp);
-				continue;
-			}
-			if (type == T_CNAME &&
-			    qtype != T_CNAME && qtype != T_ANY) {
-				strcpy(aname, (char *)dp->d_data);
-				if (!samedomain(aname, qp->q_domain))
-					externalcname = 1;
-				cname = 1;
-				lastwascname = 1;
-			} else {
-				validanswer = 1;
-				lastwascname = 0;
-			}
-
-			if (tname != NULL) {
-				add_related_additional(tname);
-				tname = NULL;
-			}
-
-			dp->d_cred = (hp->aa && !strcasecmp(name, qname))
-				? DB_C_AUTH
-				: DB_C_ANSWER;
-		} else {
-			/* After answer section. */
-			if (lastwascname) {
-				dprintf(3, (ddt,
-				 "last was cname, ignoring auth. and add.\n"));
-				db_free(dp);
-				break;
-			}
-			if (i < arfirst) {
-				/* Authority section. */
-				switch (type) {
-				case T_NS:
-				case T_SOA:
-					if (!samedomain(aname, name)){
-						syslog(LOG_DEBUG,
-						    "bad referral (%s !< %s)",
-						       aname[0] ? aname : ".",
-						       name[0] ? name : ".");
-						db_free(dp);
-						continue;
-					} else if (!samedomain(name,
-							       qp->q_domain)) {
-						if (!externalcname)
-						    syslog(LOG_DEBUG,
-  					            "bad referral (%s !< %s)",
-							 name[0] ? name : ".",
-							 qp->q_domain[0] ?
-							 qp->q_domain : ".");
-						db_free(dp);
-						continue;
-					}
-					if (type == T_NS) {
-						nscount++;
-						add_related_additional(tname);
-						tname = NULL;
-					}
-					break;
-				case T_NXT:
-				case T_SIG:
-					break;
-				default:
-					syslog(LOG_DEBUG,
-	"invalid RR type '%s' in authority section (name = '%s') from %s",
-					       p_type(type), name,
-					       sin_ntoa(&from_addr));
-					db_free(dp);
-					continue;
-				}
-			} else {
-				/* Additional section. */
-				switch (type) {
-				case T_A:
-				case T_AAAA:
-					if (externalcname ||
-					    !samedomain(name, qp->q_domain)) {
-						dprintf(3, (ddt,
-				     "ignoring additional info '%s' type %s\n",
-						       name, p_type(type)));
-						db_free(dp);
-						continue;
-					}
-					if (!related_additional(name)) {
-						syslog(LOG_DEBUG,
-			     "unrelated additional info '%s' type %s from %s",
-						       name, p_type(type),
-						       sin_ntoa(&from_addr));
-						db_free(dp);
-						continue;
-					}
-					break;
-				case T_KEY:
-				case T_SIG:
-					break;
-				default:
-					syslog(LOG_DEBUG,
-	"invalid RR type '%s' in additional section (name = '%s') from %s",
-					       p_type(type), name,
-					       sin_ntoa(&from_addr));
-					db_free(dp);
-					continue;
-				}
-			}
-			dp->d_cred = (qp->q_flags & Q_PRIMING)
-				? DB_C_ANSWER
-				: DB_C_ADDITIONAL;
-		}
-		rrsetadd(flushset, name, dp);
-	}
-	free_related_additional();
-	maybe_free(&tname);
-	if (flushset) {
-		rrsetupdate(flushset, dbflags);
-		free_flushset(flushset);
-	}
-	if (lastwascname && !externalcname)
-		syslog(LOG_DEBUG, "%s (%s)", danglingCname, aname);
-
-	if (cp > eom) {
-		formerrmsg = outofDataAFinal;
-		goto formerr;
-	}
-
-	if ((qp->q_flags & Q_SYSTEM) && ancount) {
-		if ((qp->q_flags & Q_PRIMING) && !check_root()) {
-			/* mark server as bad */
-			if (!qp->q_fwd)
-			    for (i = 0; i < (int)qp->q_naddr; i++)
-				if (qp->q_addr[i].ns_addr.sin_addr.s_addr
-				    == from_addr.sin_addr.s_addr)
-					qp->q_addr[i].nretry = MAXRETRY;
-			/* XXX - doesn't handle responses sent from
-			* the wronginterface on a multihomed server
-		 	*/
-			if (qp->q_fwd ||
-			    qp->q_addr[qp->q_curaddr].ns_addr.sin_addr.s_addr
-			    == from_addr.sin_addr.s_addr)
-				retry(qp);
-			return;
-		}
-		dprintf(3, (ddt, "resp: leaving, SYSQUERY ancount %d\n",
-			    ancount));
-#ifdef BIND_NOTIFY
-		if (qp->q_notifyzone != DB_Z_CACHE) {
-			struct zoneinfo *zp = &zones[qp->q_notifyzone];
-
-			/*
-			 * Clear this first since sysnotify() might set it.
-			 */
-			qp->q_notifyzone = DB_Z_CACHE;
-			sysnotify(zp->z_origin, zp->z_class, T_SOA);
-		}
-#endif
-		qremove(qp);
-		return;
-	}
-
-	if (ancount && count && !validanswer)
-		/*
-		 * Everything passed validation but we didn't get the
-		 * final answer.  The response must have contained
-		 * a dangling CNAME.  Force a restart of the query.
-		 *
-		 * Don't set restart if count==0, since this means
-		 * the response was truncated in the answer section,
-	         * causing us to set count to 0 which will cause
-		 * validanswer to be 0 as well even though the answer
-		 * section probably contained valid RRs (just not
-		 * a complete set).
-		 * XXX - this works right if we can just forward this
-		 * response to the client, but not if we found a CNAME
-		 * in a prior response and restarted the query.
-		 */
-		restart = 1;
-
-	/*
-	 *  If there are addresses and this is a local query,
-	 *  sort them appropriately for the local context.
-	 */
-#ifdef SORT_RESPONSE
-	if (!restart && ancount > 1 && (lp = local(&qp->q_from)) != NULL) 
-		sort_response(tp, ancount, lp, eom);
-#endif
-
-	/*
-	 * An answer to a T_ANY query or a successful answer to a
-	 * regular query with no indirection, then just return answer.
-	 */
-	if (!restart && ancount && (qtype == T_ANY || !qp->q_cmsglen)) {
-		dprintf(3, (ddt, "resp: got as much answer as there is\n"));
-		goto return_msg;
-	}
-
-	/*
-	 * We might want to cache this negative answer.
-	 */
-	if (!ancount &&
-	    (!nscount || hp->rcode == NXDOMAIN) &&
-	    (hp->aa || fwd || qclass == C_ANY)) {
-		/* we have an authoritative NO */
-		dprintf(3, (ddt, "resp: leaving auth NO\n"));
-#ifdef NCACHE
-		/* answer was NO */
-		if (hp->aa &&
-		    ((hp->rcode == NXDOMAIN) || (hp->rcode == NOERROR))) {
-			cache_n_resp(msg, msglen);
-		}
-#endif /*NCACHE*/
-		if (qp->q_cmsglen) {
-			/* XXX - what about additional CNAMEs in the chain? */
-			msg = qp->q_cmsg;
-			msglen = qp->q_cmsglen;
-			hp = (HEADER *)msg;
-		}
-		goto return_msg;
-	}
-
-	/*
-	 * All messages in here need further processing.  i.e. they
-	 * are either CNAMEs or we got referred again.
-	 */
-	count = 0;
-	founddata = 0;
-	foundname = 0;
-	dname = name;
-	/*
-	 * Even with VALIDATE, if restart==0 and ancount > 0, we should
-	 * have some valid data because because the data in the answer
-	 * section is owned by the query name and that passes the
-	 * validation test by definition
-	 *
-	 * XXX - the restart stuff doesn't work if any of the answer RRs
-	 * is not cacheable (TTL==0 or unknown RR type), since all of the
-	 * answer must pass through the cache and be re-assembled.
-	 */
-	if ((!restart || !cname) && qp->q_cmsglen && ancount) {
-		dprintf(1, (ddt, "Cname second pass\n"));
-		newmsglen = MIN(PACKETSZ, qp->q_cmsglen);
-		bcopy(qp->q_cmsg, newmsg, newmsglen);
-	} else {
-		newmsglen = MIN(PACKETSZ, msglen);
-		bcopy(msg, newmsg, newmsglen);
-	}
-	hp = (HEADER *) newmsg;
-	hp->ancount = htons(0);
-	hp->nscount = htons(0);
-	hp->arcount = htons(0);
-	hp->rcode = NOERROR;
-	dnptrs[0] = newmsg;
-	dnptrs[1] = NULL;
-	cp = newmsg + HFIXEDSZ;
-	/*
-	 * Keep in mind that none of this code works when QDCOUNT>1.
-	 * cp ends up pointed just past the query section in both cases.
-	 */
-	/*
-	 * Arrange for dname to contain the query name. The query
-	 * name can be either the original query name if restart==0
-	 * or the target of the last CNAME if we are following a
-	 * CNAME chain and were referred.
-	 */
-	n = dn_expand(newmsg, newmsg + newmsglen, cp, dname,
-		      sizeof name);
-	if (n < 0) {
-		dprintf(1, (ddt, "dn_expand failed\n"));
-		goto servfail;
-	}
-	if (!res_dnok(dname)) {
-		dprintf(1, (ddt, "bad name (%s)\n", dname));
-		goto servfail;
-	}
-	cp += n + QFIXEDSZ;
-	buflen = sizeof(newmsg) - (cp - newmsg);
-
-	cname = 0;
- try_again:
-	dprintf(1, (ddt, "resp: nlookup(%s) qtype=%d\n", dname, qtype));
-	fname = "";
-	htp = hashtab;		/* lookup relative to root */
-	np = nlookup(dname, &htp, &fname, 0);
-	dprintf(1, (ddt, "resp: %s '%s' as '%s' (cname=%d)\n",
-		    np == NULL ? "missed" : "found", dname, fname, cname));
-	if (np == NULL || fname != dname)
-		goto fetch_ns;
-
-	foundname++;
-	count = cp - newmsg;
-	n = finddata(np, qclass, qtype, hp, &dname, &buflen, &count);
-	if (n == 0)
-		goto fetch_ns;		/* NO data available */
-#ifdef NCACHE
-	if (hp->rcode) {
-		if (hp->rcode == NOERROR_NODATA)
-			hp->rcode = NOERROR;
-#ifdef RETURNSOA
-		if (count) {
-			cp += n;
-			buflen -= n;
-			hp->nscount = htons((u_int16_t)count);
-		}
-#endif
-		goto return_newmsg;
-	}
-#endif
-	cp += n;
-	buflen -= n;
-	hp->ancount = htons(ntohs(hp->ancount) + (u_int16_t)count);
-	if (fname != dname && qtype != T_CNAME && qtype != T_ANY) {
-		cname++;
-		goto try_again;
-	}
-	founddata = 1;
-
-	dprintf(3, (ddt,
-		    "resp: foundname=%d, count=%d, founddata=%d, cname=%d\n",
-		    foundname, count, founddata, cname));
-
- fetch_ns:
-
-	if (hp->tc)
-		goto return_newmsg;
-
-	/*
- 	 * Look for name servers to refer to and fill in the authority
- 	 * section or record the address for forwarding the query
- 	 * (recursion desired).
- 	 */
-	free_nsp(nsp);
-	switch (findns(&np, qclass, nsp, &count, 0)) {
-	case NXDOMAIN:		/* shouldn't happen */
-		dprintf(3, (ddt, "req: leaving (%s, rcode %d)\n",
-			    dname, hp->rcode));
-		if (!foundname)
-			hp->rcode = NXDOMAIN;
-		if (qclass != C_ANY) {
-			hp->aa = 1;
-			if (np && (!foundname || !founddata)) {
-				n = doaddauth(hp, cp, buflen, np, nsp[0]);
-				cp += n;
-				buflen -= n;
-			}
-		}
-		goto return_newmsg;
-
-	case SERVFAIL:
-		goto servfail;
-	}
-
-	if (founddata) {
-		hp = (HEADER *)newmsg;
-		n = add_data(np, nsp, cp, buflen, &count);
-		if (n < 0) {
-			hp->tc = 1;
-			n = (-n);
-		}
-		cp += n;
-		buflen -= n;
-		hp->nscount = htons((u_int16_t)count);
-		goto return_newmsg;
-	}
-
-	/*
-	 *  If we get here, we don't have the answer yet and are about
-	 *  to iterate to try and get it.  First, infinite loop avoidance.
-	 */
-	if (qp->q_nqueries++ > MAXQUERIES) {
-		dprintf(1, (ddt, "resp: MAXQUERIES exceeded (%s %s %s)\n",
-			    dname, p_class(qclass), p_type(qtype)));
-		syslog(LOG_INFO,
-		       "MAXQUERIES exceeded, possible data loop in resolving (%s)",
-		       dname);
-		goto servfail;
-	}
-
-	/* Reset the query control structure */
-
-	nsfree(qp, "ns_resp");
-	qp->q_naddr = 0;
-	qp->q_curaddr = 0;
-	qp->q_fwd = fwdtab;
-
-	getname(np, tmpdomain, sizeof tmpdomain);
-	if (qp->q_domain != NULL)
-		free(qp->q_domain);
-	qp->q_domain = strdup(tmpdomain);
-	if (qp->q_domain == NULL)
-		panic(ENOMEM, "ns_resp: strdup failed");
-
-	if ((n = nslookup(nsp, qp, dname, "ns_resp")) <= 0) {
-		if (n < 0) {
-			dprintf(3, (ddt, "resp: nslookup reports danger\n"));
-			if (cname)  /* a remote CNAME that does not have data */
-				goto return_newmsg;
-			goto servfail;
-		} else {
-			dprintf(3, (ddt, "resp: no addrs found for NS's\n"));
-			/*
-			 * Timeout while sysquery looks up the NS addresses.
-			 *
-			 * Hopefully we'll have them when the client asks
-			 * again.
-			 *
-			 * too bad we can't just wait for the sysquery
-			 * response to restart this query (it's too hard).
-			 *
-			 * We could try to crawl back up the tree looking
-			 * for reachable servers, but we may have just
-			 * gotten delegated down here by a response with
-			 * no A RRs for the servers.  If we blindly tried
-			 * this strategy, we bang on the same server forever.
-			 */
-			goto timeout;
-		}
-	}
-	for (n = 0; (u_int)n < qp->q_naddr; n++)
-		qp->q_addr[n].stime.tv_sec = 0;
-	if (!qp->q_fwd)
-		qp->q_addr[0].stime = tt;
-	if (cname) {
-	 	if (qp->q_cname++ == MAXCNAMES) {
-			dprintf(3, (ddt,
-				    "resp: leaving, MAXCNAMES exceeded\n"));
-			goto servfail;
-	 	}
-		dprintf(1, (ddt, "q_cname = %d\n", qp->q_cname));
-		dprintf(3, (ddt,
-			    "resp: building recursive query; nslookup\n"));
-		if (!qp->q_cmsg) {
-			qp->q_cmsg = qp->q_msg;
-			qp->q_cmsglen = qp->q_msglen;
-		} else if (qp->q_msg)
-			(void) free(qp->q_msg);
-		if ((qp->q_msg = (u_char *)malloc(PACKETSZ)) == NULL) {
-			syslog(LOG_NOTICE, "resp: malloc error\n");
-			goto servfail;
-		}
-		n = res_mkquery(QUERY, dname, qclass, qtype,
-				NULL, 0, NULL, qp->q_msg, PACKETSZ);
-		if (n < 0) {
-			syslog(LOG_INFO, "resp: res_mkquery(%s) failed",
-			       dname);
-			goto servfail;
-		}
-		if (qp->q_name != NULL)
-			free(qp->q_name);
-		qp->q_name = savestr(dname);
-		qp->q_msglen = n;
-		hp = (HEADER *) qp->q_msg;
-		hp->rd = 0;
-	} else
-		hp = (HEADER *) qp->q_msg;
-	hp->id = qp->q_nsid = htons(nsid_next());
-	if (qp->q_fwd)
-		hp->rd = 1;
-	unsched(qp);
-	schedretry(qp, retrytime(qp));
-	nsa = Q_NEXTADDR(qp, 0);
-	dprintf(1, (ddt, "resp: forw -> %s ds=%d nsid=%d id=%d %dms\n",
-		    sin_ntoa(nsa), ds,
-		    ntohs(qp->q_nsid), ntohs(qp->q_id),
-		    (qp->q_addr[0].nsdata != NULL)
-			? qp->q_addr[0].nsdata->d_nstime
-			: (-1)));
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(qp->q_msg, qp->q_msglen, ddt);
-#endif
-	if (sendto(ds, (char*)qp->q_msg, qp->q_msglen, 0,
-		   (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0) {
-		if (!haveComplained((char*)nsa->sin_addr.s_addr, sendtoStr))
-			syslog(LOG_INFO, "ns_resp: sendto(%s): %m",
-			       sin_ntoa(nsa));
-		nameserIncr(nsa->sin_addr, nssSendtoErr);
-	}
-	hp->rd = 0;	/* leave set to 0 for dup detection */
-#ifdef XSTATS
-	nameserIncr(nsa->sin_addr, nssSentFwdR);
-#endif
-	nameserIncr(qp->q_from.sin_addr, nssRcvdFwdR);
-	dprintf(3, (ddt, "resp: Query sent.\n"));
-	free_nsp(nsp);
-	return;
-
- formerr:
-	if (!haveComplained((char*)from_addr.sin_addr.s_addr,
-			    (char*)nhash(formerrmsg)))
-		syslog(LOG_INFO, "Malformed response from %s (%s)\n",
-		       sin_ntoa(&from_addr), formerrmsg);
-#ifdef XSTATS
-	nameserIncr(from_addr.sin_addr, nssSentFErr);
-#endif
-	free_nsp(nsp);
-	return;
-
- return_msg:
-	nameserIncr(from_addr.sin_addr, nssRcvdFwdR);
-#ifdef XSTATS
-	nameserIncr(qp->q_from.sin_addr, nssSentFwdR);
-#endif
-	/* The "standard" return code */
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NoRecurse == 0);
-	(void) send_msg(msg, msglen, qp);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-
- return_newmsg:
-	nameserIncr(qp->q_from.sin_addr, nssSentAns);
-
-#ifdef XSTATS
-	if (!hp->aa)
-		nameserIncr(qp->q_from.sin_addr, nssSentNaAns);
-	if (hp->rcode == NXDOMAIN) 
-		nameserIncr(qp->q_from.sin_addr, nssSentNXD);
-#endif
-	n = doaddinfo(hp, cp, buflen);
-	cp += n;
-	buflen -= n;
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NoRecurse == 0);
-	(void) send_msg(newmsg, cp - newmsg, qp);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-
- servfail:
-#ifdef XSTATS
-	nameserIncr(qp->q_from.sin_addr, nssSentFail);
-#endif
-	hp = (HEADER *)(qp->q_cmsglen ? qp->q_cmsg : qp->q_msg);
-	hp->rcode = SERVFAIL;
-	hp->qr = 1;
-	hp->id = qp->q_id;
-	hp->rd = 1;
-	hp->ra = (NoRecurse == 0);
-	(void) send_msg((u_char *)hp, (qp->q_cmsglen ? qp->q_cmsglen : qp->q_msglen),
-			qp);
- timeout:
-	if (qp->q_stream != QSTREAM_NULL)
-		sqrm(qp->q_stream);
-	qremove(qp);
-	free_nsp(nsp);
-	return;
-}
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			hp->rcode = FORMERR; \
-			return (-1); \
-		} \
-	} while (0)
-
-static int
-rrextract(msg, msglen, rrp, dpp, dname, namelen, tnamep)
-	u_char *msg;
-	int msglen;
-	u_char *rrp;
-	struct databuf **dpp;
-	char *dname;
-	int namelen;
-	char **tnamep;
-{
-	register u_char *cp, *eom, *rdatap;
-	register int n;
-	int class, type, dlen, n1;
-	u_int32_t ttl;
-	u_char *cp1;
-	u_char data[MAXDNAME*2 + INT32SZ*5];
-	register HEADER *hp = (HEADER *)msg;
-	enum context context;
-
-	if (tnamep != NULL)
-		*tnamep = NULL;
-
-	*dpp = NULL;
-	cp = rrp;
-	eom = msg + msglen;
-	if ((n = dn_expand(msg, eom, cp, dname, namelen)) < 0) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	cp += n;
-	BOUNDS_CHECK(cp, 2*INT16SZ + INT32SZ + INT16SZ);
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	GETLONG(ttl, cp);
-	GETSHORT(dlen, cp);
-	BOUNDS_CHECK(cp, dlen);
-	rdatap = cp;
-	if (!ns_nameok(dname, class, response_trans,
-		       ns_ownercontext(type, response_trans),
-		       dname, from_addr.sin_addr)) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	dprintf(3, (ddt, "rrextract: dname %s type %d class %d ttl %d\n",
-		    dname, type, class, ttl));
-	/*
-	 * Convert the resource record data into the internal
-	 * database format.
-	 *
-	 * On entry to the switch:
-	 *   CP points to the RDATA section of the wire-format RR.
-	 *   DLEN is its length.
-	 *   The memory area at DATA is available for processing.
-	 * 
-	 * On exit from the switch:
-	 *   CP has been incremented past the RR.
-	 *   CP1 points to the RDATA section of the database-format RR.
-	 *   N contains the length of the RDATA section of the dbase-format RR.
-	 *
-	 * The new data at CP1 for length N will be copied into the database,
-	 * so it need not be in any particular storage location.
-	 */
-	switch (type) {
-	case T_A:
-		if (dlen != INT32SZ) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		/*FALLTHROUGH*/
-	case T_WKS:
-	case T_HINFO:
-	case T_UINFO:
-	case T_UID:
-	case T_GID:
-	case T_TXT:
-	case T_X25:
-	case T_ISDN:
-	case T_NSAP:
-	case T_AAAA:
-	case T_LOC:
-	case T_KEY:
-#ifdef ALLOW_T_UNSPEC
-	case T_UNSPEC:
-#endif
-		cp1 = cp;
-		n = dlen;
-		cp += n;
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok((char *)data, class, response_trans,
-			       type == T_PTR ?ns_ptrcontext(dname) :domain_ctx,
-			       dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = data;
-		n = strlen((char *)data) + 1;
-		if (tnamep != NULL && (type == T_NS || type == T_MB))
-			*tnamep = strdup((char *)cp1);
-		break;
-
-	case T_SOA:
-		context = hostname_ctx;
-		goto soa_rp_minfo;
-	case T_RP:
-	case T_MINFO:
-		context = mailname_ctx;
-		/* FALLTHROUGH */
-	soa_rp_minfo:
-		n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok((char *)data, class, response_trans, context,
-			       dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		/*
-		 * The next use of 'cp' is dn_expand(), so we don't have
-		 * to BOUNDS_CHECK() here.
-		 */
-		cp1 = data + (n = strlen((char *)data) + 1);
-		n1 = sizeof(data) - n;
-		if (type == T_SOA)
-			n1 -= 5 * INT32SZ;
-		n = dn_expand(msg, eom, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (type == T_RP)
-			context = domain_ctx;
-		else
-			context = mailname_ctx;
-		if (!ns_nameok((char *)cp1, class, response_trans, context,
-			       dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *)cp1) + 1;
-		if (type == T_SOA) {
-			n = 5 * INT32SZ;
-			BOUNDS_CHECK(cp, n);
-			bcopy(cp, cp1, n);
-			cp += n;
-			cp1 += n;
-		}
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_NAPTR:
-		/* Grab weight and port. */
-		BOUNDS_CHECK(cp, INT16SZ*2);
-		bcopy(cp, data, INT16SZ*2);
-		cp1 = data + INT16SZ*2;
-		cp += INT16SZ*2;
-
-		/* Flags */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		bcopy(cp, cp1, n);
-		cp += n; cp1 += n;
-
-		/* Service */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		bcopy(cp, cp1, n);
-		cp += n; cp1 += n;
-
-		/* Regexp */
-		BOUNDS_CHECK(cp, 1);
-		n = *cp++;
-		BOUNDS_CHECK(cp, n);
-		*cp1++ = n;
-		bcopy(cp, cp1, n);
-		cp += n; cp1 += n;
-
-		/* Replacement */
-		n = dn_expand(msg, eom, cp, (char *)cp1,
-			      sizeof data - (cp1 - data));
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok((char *)cp1, class, response_trans,
-			       hostname_ctx, dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-	case T_SRV:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		bcopy(cp, data, INT16SZ);
-		cp1 = data + INT16SZ;
-		cp += INT16SZ;
-
-		if (type == T_SRV) {
-			/* Grab weight and port. */
-			BOUNDS_CHECK(cp, INT16SZ*2);
-			bcopy(cp, cp1, INT16SZ*2);
-			cp1 += INT16SZ*2;
-			cp += INT16SZ*2;
-		}
-
-		/* get name */
-		n = dn_expand(msg, eom, cp, (char *)cp1,
-			      sizeof data - (cp1 - data));
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok((char *)cp1, class, response_trans,
-			       hostname_ctx, dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-
-		if (tnamep != NULL)
-			*tnamep = strdup((char *)cp1);
-
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_PX:
-		/* grab preference */
-		BOUNDS_CHECK(cp, INT16SZ);
-		bcopy(cp, data, INT16SZ);
-		cp1 = data + INT16SZ;
-		cp += INT16SZ;
-
-		/* get MAP822 name */
-		n = dn_expand(msg, eom, cp, (char *)cp1,
-			      sizeof data - INT16SZ);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok((char *)cp1, class, response_trans,
-			       domain_ctx, dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		/*
-		 * The next use of 'cp' is dn_expand(), so we don't have
-		 * to BOUNDS_CHECK() here.
-		 */
-		cp1 += (n = strlen((char *)cp1) + 1);
-		n1 = sizeof(data) - n;
-		n = dn_expand(msg, eom, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		if (!ns_nameok((char *)cp1, class, response_trans,
-			       domain_ctx, dname, from_addr.sin_addr)) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *)cp1) + 1;
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_SIG: {
-		u_long origTTL, exptime, signtime, timetilexp, now;
-
-		/* Check signature time, expiration, and adjust TTL.  */
-		/* This code is similar to that in db_load.c.  */
-
-		/* Skip coveredType, alg, labels */
-		BOUNDS_CHECK(cp, INT16SZ + 1 + 1 + 3*INT32SZ);
-		cp1 = cp + INT16SZ + 1 + 1;
-		GETLONG(origTTL, cp1);
-		GETLONG(exptime, cp1);
-		GETLONG(signtime, cp1);
-		now = time(NULL);	/* Get current time in GMT/UTC */
-
-		/* Don't let bogus name servers increase the signed TTL */
-		if (ttl > origTTL) {
-			dprintf(3, (ddt,
-				 "shrinking SIG TTL from %d to origTTL %d\n",
-				ttl, origTTL));
-			ttl = origTTL;
-		}
-
-		/* Don't let bogus signers "sign" in the future.  */
-		if (signtime > now) {
-			dprintf(3, (ddt,
-			  "ignoring SIG: signature date %s is in the future\n",
-				    p_secstodate (signtime)));
-			return ((cp - rrp) + dlen);
-		}
-		
-		/* Ignore received SIG RR's that are already expired.  */
-		if (exptime <= now) {
-			dprintf(3, (ddt,
-				 "ignoring SIG: expiration %s is in the past\n",
-				    p_secstodate (exptime)));
-			return ((cp - rrp) + dlen);
-		}
-
-		/* Lop off the TTL at the expiration time.  */
-		timetilexp = exptime - now;
-		if (timetilexp < ttl) {
-			dprintf(3, (ddt,
-				"shrinking expiring %s SIG TTL from %d to %d\n",
-				    p_secstodate (exptime), ttl, timetilexp));
-			ttl = timetilexp;
-		}
-
-		/* The following code is copied from named-xfer.c.  */
-		cp1 = (u_char *)data;
-
-		/* first just copy over the type_covered, algorithm, */
-		/* labels, orig ttl, two timestamps, and the footprint */
-		BOUNDS_CHECK(cp, 18);
-		bcopy(cp, cp1, 18);
-		cp  += 18;
-		cp1 += 18;
-
-		/* then the signer's name */
-		n = dn_expand(msg, eom, cp, (char *)cp1, (sizeof data) - 18);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char*)cp1)+1;
-
-		/* finally, we copy over the variable-length signature.
-		   Its size is the total data length, minus what we copied. */
-		if (18 + (u_int)n > dlen) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		n = dlen - (18 + n);
-		if (n > ((int)(sizeof data) - (int)(cp1 - (u_char *)data))) {
-			hp->rcode = FORMERR;
-			return (-1);  /* out of room! */
-		}
-		bcopy(cp, cp1, n);
-		cp += n;
-		cp1 += n;
-		
-		/* compute size of data */
-		n = cp1 - (u_char *)data;
-		cp1 = (u_char *)data;
-		break;
-	    }
-
-	default:
-		dprintf(3, (ddt, "unknown type %d\n", type));
-		return ((cp - rrp) + dlen);
-	}
-
-	if (cp > eom) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	if ((u_int)(cp - rdatap) != dlen) {
-		dprintf(3, (ddt,
-		      "encoded rdata length is %u, but actual length was %u",
-			    dlen, (u_int)(cp - rdatap)));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	if (n > MAXDATA) {
-		dprintf(1, (ddt,
-			    "update type %d: %d bytes is too much data\n",
-			    type, n));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-	ttl += tt.tv_sec;
-
-	*dpp = savedata(class, type, ttl, cp1, n);
-	return (cp - rrp);
-}
-
-/*
- * Decode the resource record 'rrp' and update the database.
- * If savens is non-nil, record pointer for forwarding queries a second time.
- */
-int
-doupdate(msg, msglen, rrp, zone, savens, flags, cred)
-	u_char *msg;
-	int msglen;
-	u_char *rrp;
-	int zone;
-	struct databuf **savens;
-	int flags;
-	u_int cred;
-{
-	register u_char *cp;
-	register int n;
-	int class, type;
-	struct databuf *dp;
-	char dname[MAXDNAME];
-
-	dprintf(3, (ddt, "doupdate(zone %d, savens %#lx, flags %#lx)\n",
-		    zone, (u_long)savens, (u_long)flags));
-
-	if ((n = rrextract(msg, msglen, rrp, &dp, dname, sizeof(dname), NULL))
-	    == -1)
-		return (-1);
-	if (!dp)
-		return (-1);
-
-	type = dp->d_type;
-	class = dp->d_class;
-	cp = rrp + n;
-
-#if defined(TRACEROOT) || defined(BOGUSNS)
-	if ((type == T_NS) && (savens != NULL)) {
-		char *temp, qname[MAXDNAME];
-		register int bogus = 0;
-		int bogusns = 0;
-#ifdef BOGUSNS
-		if (addr_on_netlist(from_addr.sin_addr, boglist)) {
-			bogusns++;
-			bogus++;
-		}
-#endif
-		if (!bogus &&
-		    ((temp = strrchr((char *)dp->d_data, '.')) != NULL) &&
-		     !strcasecmp(temp, ".arpa")
-		     )
-			bogus++;
-		qname[0] = qname[1] = '\0';
-		if (dn_expand(msg, msg + msglen, msg + HFIXEDSZ,
-			      qname, sizeof(qname)) < 0)
-			qname[0] = '?';
-		else if (qname[0] == '\0')
-			qname[0] = '.';
-		if (bogus && ((dname[0] == '\0') && (zone == 0))) {
-			if (!haveComplained((char*)from_addr.sin_addr.s_addr,
-					    "bogus root NS"))
-				syslog(LOG_NOTICE,
-			 "bogus root NS %s rcvd from %s on query for \"%s\"",
-				       dp->d_data, sin_ntoa(&from_addr), qname);
-			db_free(dp);
-			return (cp - rrp);
-		}
-#ifdef BOGUSNS
-		if (bogusns) {
-			if (!haveComplained((char*)from_addr.sin_addr.s_addr,
-					    "bogus nonroot NS"))
-				syslog(LOG_INFO,
-			"bogus nonroot NS %s rcvd from %s on query for \"%s\"",
-				       dp->d_data, sin_ntoa(&from_addr), qname);
-			db_free(dp);
-			return (cp - rrp);
-		}
-#endif
-	}
-#endif /*TRACEROOT || BOGUSNS*/
-
-	dp->d_zone = zone;
-	dp->d_cred = cred;
-	dp->d_clev = 0;	/* We trust what is on disk more, except root srvrs */
-	if ((n = db_update(dname, dp, dp, flags, hashtab)) != OK) {
-#ifdef DEBUG
-		if (debug && (n != DATAEXISTS))
-			fprintf(ddt, "update failed (%d)\n", n);
-		else if (debug >= 3)
-			fprintf(ddt, "update failed (DATAEXISTS)\n");
-#endif
-		db_free(dp);
-	} else if (type == T_NS && savens != NULL)
-		*savens = dp;
-	return (cp - rrp);
-}
-
-int
-send_msg(msg, msglen, qp)
-	u_char *msg;
-	int msglen;
-	struct qinfo *qp;
-{
-	if (qp->q_flags & Q_SYSTEM)
-		return (1);
-#ifdef DEBUG
-	if (debug) {
-		fprintf(ddt,"send_msg -> %s (%s %d) id=%d\n",
-			sin_ntoa(&qp->q_from), 
-			qp->q_stream == QSTREAM_NULL ? "UDP" : "TCP",
-			qp->q_stream == QSTREAM_NULL ? qp->q_dfd
-						     : qp->q_stream->s_rfd,
-			ntohs(qp->q_id));
-	}
-	if (debug > 4) {
-		struct qinfo *tqp;
-
-		for (tqp = nsqhead; tqp!=QINFO_NULL; tqp = tqp->q_link) {
-			fprintf(ddt,
-				"qp %#lx q_id: %d  q_nsid: %d q_msglen: %d ",
-				(u_long)tqp, tqp->q_id,
-				tqp->q_nsid, tqp->q_msglen);
-			fprintf(ddt,
-				"q_naddr: %d q_curaddr: %d\n",
-				tqp->q_naddr, tqp->q_curaddr);
-			fprintf(ddt, "q_next: %#lx q_link: %#lx\n",
-				(u_long)qp->q_next, (u_long)qp->q_link);
-		}
-	}
-	if (debug > 5)
-		fp_nquery(msg, msglen, ddt);
-#endif /* DEBUG */
-	if (qp->q_stream == QSTREAM_NULL) {
-		if (sendto(qp->q_dfd, (char*)msg, msglen, 0,
-			   (struct sockaddr *)&qp->q_from,
-			   sizeof(qp->q_from)) < 0) {
-			if (!haveComplained((char*)qp->q_from.sin_addr.s_addr,
-					    sendtoStr))
-#if defined(SPURIOUS_ECONNREFUSED)
-                           if (errno != ECONNREFUSED)
-#endif
-				syslog(LOG_INFO,
-				       "send_msg: sendto(%s): %m",
-				       sin_ntoa(&qp->q_from));
-			nameserIncr(qp->q_from.sin_addr, nssSendtoErr);
-			return (1);
-		}
-	} else {
-		(void) writemsg(qp->q_stream->s_rfd, (u_char*)msg, msglen);
-		sq_done(qp->q_stream);
-	}
-	return (0);
-}
-
-#ifdef notdef
-/* i don't quite understand this but the only ref to it is notdef'd --vix */
-prime(class, type, oqp)
-	int class, type;
-	register struct qinfo *oqp;
-{
-	char	dname[BUFSIZ];
-
-	if (oqp->q_msg == NULL)
-		return;
-	if (dn_expand((u_char *)oqp->q_msg,
-	    (u_char *)oqp->q_msg + oqp->q_msglen,
-	    (u_char *)oqp->q_msg + HFIXEDSZ, (u_char *)dname,
-	    sizeof(dname)) < 0)
-		return;
-	dprintf(2, (ddt, "prime: %s\n", dname));
-	(void) sysquery(dname, class, type, NULL, 0, QUERY);
-}
-#endif
-
-void
-prime_cache()
-{
-	register struct qinfo *qp;
-
-	dprintf(1, (ddt, "prime_cache: priming = %d\n", priming));
-	if (!priming && fcachetab->h_tab[0] != NULL && !forward_only) {
-		priming++;
-		if (!(qp = sysquery("", C_IN, T_NS, NULL, 0, QUERY)))
-			priming = 0;
-		else
-			qp->q_flags |= (Q_SYSTEM | Q_PRIMING);
-	}
-	needs_prime_cache = 0;
-	return;
-}
-
-#ifdef BIND_NOTIFY
-struct notify *
-findNotifyPeer(zp, ina)
-	const struct zoneinfo *zp;
-	struct in_addr ina;
-{
-	register struct notify *ap;
-
-	for (ap = zp->z_notifylist; ap; ap = ap->next)
-		if (ap->addr.s_addr == ina.s_addr)
-			break;
-	return (ap);
-}
-
-/* sysnotify(dname, class, type)
- *	cause a NOTIFY request to be sysquery()'d to each secondary server
- *	of the zone that "dname" is within.
- */
-void
-sysnotify(dname, class, type)
-	const char *dname;
-	int class, type;
-{
-	char *soaname, *zname;
-	const char *fname;
-	register struct databuf *dp;
-	struct in_addr nss[NSMAX];
-	int nns, na, zn, nsc;
-	struct hashbuf *htp;
-	struct zoneinfo *zp;
-	struct notify *ap;
-	struct namebuf *np;
-
-	htp = hashtab;
-	np = nlookup(dname, &htp, &fname, 0);
-	if (!np)
-		panic(-1, "sysnotify: can't find name");
-	zn = findMyZone(np, class);
-	if (zn == DB_Z_CACHE)
-		panic(-1, "sysnotify: not auth zone");
-	zp = &zones[zn];
-	if (zp->z_type != Z_PRIMARY && zp->z_type != Z_SECONDARY)
-		panic(-1, "sysnotify: not pri/sec");
-	zname = zp->z_origin;
-/*
-**DBG**	syslog(LOG_INFO, "sysnotify: found \"%s\" in \"%s\" (%s)",
-**DBG**	       dname, zname, zoneTypeString(zp));
-*/
-	nns = na = 0;
-	/*
-	 * Send to recent AXFR peers.
-	 */
-	for (ap = zp->z_notifylist; ap; ap = ap->next) {
-		if (tt.tv_sec - ap->last >= zp->z_refresh) {
-			/* XXX - probably should do GC here. */
-			continue;
-		}
-		nss[0] = ap->addr;
-		nsc = 1;
-		nns++;
-		na++;
-		sysquery(dname, class, T_SOA, nss, nsc, NS_NOTIFY_OP);
-	}
-	if (zp->z_type != Z_PRIMARY)
-		goto done;
-	/*
-	 * Master.
-	 */
-	htp = hashtab;
-	np = nlookup(zname, &htp, &fname, 0);
-	if (!np)
-		panic(-1, "sysnotify: found name but not zone");
-	soaname = NULL;
-	for (dp = np->n_data; dp; dp = dp->d_next) {
-		if (!dp->d_zone || !match(dp, class, T_SOA))
-			continue;
-		if (soaname) {
-			syslog(LOG_NOTICE, "multiple SOA's for zone \"%s\"?",
-			       zname);
-			return;
-		}
-		soaname = (char *) dp->d_data;
-	}
-	if (!soaname) {
-		syslog(LOG_NOTICE, "no SOA found for zone \"%s\"", zname);
-		return;
-	}
-
-	for (dp = np->n_data; dp; dp = dp->d_next) {
-		register struct databuf *adp;
-		struct namebuf *anp;
-
-		if (!dp->d_zone || !match(dp, class, T_NS))
-			continue;
-		/* NS RDATA is server name. */
-		if (strcasecmp((char*)dp->d_data, soaname) == 0)
-			continue;
-		htp = hashtab;
-		anp = nlookup((char*)dp->d_data, &htp, &fname, 0);
-		if (!anp) {
-			syslog(LOG_INFO, "sysnotify: can't nlookup(%s)?",
-			       (char*)dp->d_data);
-			continue;
-		}
-		nsc = 0;
-		for (adp = anp->n_data; adp; adp = adp->d_next) {
-			struct in_addr ina;
-			if (!match(adp, class, T_A))
-				continue;
-			ina = data_inaddr(adp->d_data);
-			/* Don't send to things we handled above. */
-			ap = findNotifyPeer(zp, ina);
-			if (ap && tt.tv_sec - ap->last < zp->z_refresh)
-				goto nextns;
-			if (nsc < NSMAX)
-				nss[nsc++] = ina;
-		} /*next A*/
-		if (nsc == 0) {
-			struct qinfo *qp;
-
-			qp = sysquery((char*)dp->d_data,	/*NS name*/
-				      class,			/*XXX: C_IN?*/
-				      T_A, 0, 0, QUERY);
-			if (qp)
-				qp->q_notifyzone = zn;
-			continue;
-		}
-		(void) sysquery(dname, class, T_SOA, nss, nsc, NS_NOTIFY_OP);
-		nns++;
-		na += nsc;
- nextns:;
-	} /*next NS*/
- done:
-	if (nns || na) {
-		char tmp[MAXDNAME];
-
-		/* Many syslog()'s only take 5 args. */
-		sprintf(tmp, "%s %s %s", dname, p_class(class), p_type(type));
-		syslog(LOG_INFO, "Sent NOTIFY for \"%s\" (%s); %d NS, %d A",
-		       tmp, zname, nns, na);
-	}
-}
-#endif /*BIND_NOTIFY*/
-
-struct qinfo *
-sysquery(dname, class, type, nss, nsc, opcode)
-	const char *dname;
-	int class, type;
-	struct in_addr *nss;
-	int nsc, opcode;
-{
-	register struct qinfo *qp, *oqp;
-	register HEADER *hp;
-	char tmpdomain[MAXDNAME];
-	struct namebuf *np;
-	struct databuf *nsp[NSMAX];
-	struct hashbuf *htp;
-	struct sockaddr_in *nsa;
-	const char *fname;
-	int n, count;
-
-	nsp[0] = NULL;
-	dprintf(3, (ddt, "sysquery(%s, %d, %d, %#lx, %d)\n",
-		    dname, class, type, (u_long)nss, nsc));
-	qp = qnew(dname, class, type);
-
-	if (nss && nsc) {
-		np = NULL;
-	} else {
-		htp = hashtab;
-		if (priming && dname[0] == '\0') {
-			np = NULL;
-		} else if ((np = nlookup(dname, &htp, &fname, 1)) == NULL) {
-			syslog(LOG_INFO, "sysquery: nlookup error on %s?",
-			       dname);
- err1:
-			qfree(qp);
-			return (NULL);
-		}
-
-		n = findns(&np, class, nsp, &count, 0);
-		switch (n) {
-		case NXDOMAIN:
-		case SERVFAIL:
-			syslog(LOG_DEBUG, "sysquery: findns error (%s) on %s?",
-			       n == NXDOMAIN ? "NXDOMAIN" : "SERVFAIL", dname);
- err2:
-			free_nsp(nsp);
-			goto err1;
-		}
-	}
-
-	/* build new qinfo struct */
-	qp->q_cmsg = qp->q_msg = NULL;
-	qp->q_dfd = ds;
-	if (nss && nsc)
-		qp->q_fwd = NULL;
-	else
-		qp->q_fwd = fwdtab;
-	qp->q_expire = tt.tv_sec + RETRY_TIMEOUT*2;
-	qp->q_flags |= Q_SYSTEM;
-
-	getname(np, tmpdomain, sizeof tmpdomain);
-	if (qp->q_domain != NULL)
-		free(qp->q_domain);
-	qp->q_domain = strdup(tmpdomain);
-	if (qp->q_domain == NULL)
-		panic(ENOMEM, "ns_resp: strdup failed");
-
-	if ((qp->q_msg = (u_char *)malloc(PACKETSZ)) == NULL) {
-		syslog(LOG_NOTICE, "sysquery: malloc failed");
-		goto err2;
-	}
-	n = res_mkquery(opcode, dname, class,
-			type, NULL, 0, NULL,
-			qp->q_msg, PACKETSZ);
-	if (n < 0) {
-		syslog(LOG_INFO, "sysquery: res_mkquery(%s) failed", dname);
-		goto err2;
-	}
-	qp->q_msglen = n;
-	hp = (HEADER *) qp->q_msg;
-	hp->id = qp->q_nsid = htons(nsid_next());
-	hp->rd = (qp->q_fwd ? 1 : 0);
-
-	/* First check for an already pending query for this data */
-	for (oqp = nsqhead; oqp != QINFO_NULL; oqp = oqp->q_link) {
-		if ((oqp != qp)
-		    && (oqp->q_msglen == qp->q_msglen)
-		    && bcmp((char *)oqp->q_msg+2,
-			    qp->q_msg+2,
-			    qp->q_msglen-2) == 0
-		    ) {
-#ifdef BIND_NOTIFY
-			/* XXX - need fancier test to suppress duplicate
-			 *       NOTIFYs to the same server (compare nss?)
-			 */
-			if (opcode != NS_NOTIFY_OP)
-#endif /*BIND_NOTIFY*/
-			{
-			    dprintf(3, (ddt, "sysquery: duplicate\n"));
-			    goto err2;
-			}
-		}
-	}
-
-	if (nss && nsc) {
-		int i;
-		struct qserv *qs;
-
-		for (i = 0, qs = qp->q_addr;
-		     i < nsc;
-		     i++, qs++) {
-			qs->ns_addr.sin_family = AF_INET;
-			qs->ns_addr.sin_addr = nss[i];
-			qs->ns_addr.sin_port = ns_port;
-			qs->ns = NULL;
-			qs->nsdata = NULL;
-			qs->stime = tt;
-			qs->nretry = 0;
-		}
-		qp->q_naddr = nsc;
-	} else {
- fetch_a:
-		count = nslookup(nsp, qp, dname, "sysquery");
-		if (count <= 0) {
-			if (count < 0) {
-				syslog(LOG_INFO,
-				      "sysquery: nslookup reports danger (%s)",
-				       dname);
-				goto err2;
-			} else if (np && NAME(*np)[0] == '\0') {
-				syslog(LOG_WARNING,
-				   "sysquery: no addrs found for root NS (%s)",
-				       dname);
-				if (class == C_IN && !priming)
-					needs_prime_cache = 1;
-				goto err2;
-			}
-			if (np) {
-				free_nsp(nsp);
-				nsp[0] = NULL;
-				np = np_parent(np);
-				n = findns(&np, class, nsp, &count, 0);
-				switch (n) {
-				case NXDOMAIN: /*FALLTHROUGH*/
-				case SERVFAIL:
-					syslog(LOG_DEBUG,
-					  "sysquery: findns error (%d) on %s?",
-					       n, dname);
-					goto err2;
-				}
-				goto fetch_a;
-			}
-			goto err2;
-		}
-	}
-
-	schedretry(qp, retrytime(qp));
-	if (qp->q_fwd == NULL)
-		qp->q_addr[0].stime = tt;	/* XXX - why not every? */
-	nsa = Q_NEXTADDR(qp, 0);
-
-	dprintf(1, (ddt,
-		    "sysquery: send -> %s dfd=%d nsid=%d id=%d retry=%ld\n",
-		    sin_ntoa(nsa), qp->q_dfd, 
-		    ntohs(qp->q_nsid), ntohs(qp->q_id),
-		    (long)qp->q_time));
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(qp->q_msg, qp->q_msglen, ddt);
-#endif
-	if (sendto(qp->q_dfd, (char*)qp->q_msg, qp->q_msglen, 0,
-		   (struct sockaddr *)nsa,
-		   sizeof(struct sockaddr_in)) < 0) {
-		if (!haveComplained((char*)nsa->sin_addr.s_addr, sendtoStr))
-			syslog(LOG_INFO, "sysquery: sendto(%s): %m",
-			       sin_ntoa(nsa));
-		nameserIncr(nsa->sin_addr, nssSendtoErr);
-	}
-	nameserIncr(nsa->sin_addr, nssSentSysQ);
-	free_nsp(nsp);
-	return (qp);
-}
-
-/*
- * Check the list of root servers after receiving a response
- * to a query for the root servers.
- */
-static int
-check_root()
-{
-	register struct databuf *dp, *pdp;
-	register struct namebuf *np;
-	int count = 0;
-
-	priming = 0;
-	for (np = hashtab->h_tab[0]; np != NULL; np = np->n_next)
-		if (NAME(*np)[0] == '\0')
-			break;
-	if (np == NULL) {
-		syslog(LOG_NOTICE, "check_root: Can't find root!\n");
-		return (0);
-	}
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next)
-		if (dp->d_type == T_NS)
-			count++;
-	dprintf(1, (ddt, "%d root servers\n", count));
-	if (count < MINROOTS) {
-		syslog(LOG_NOTICE,
-		"check_root: %d root servers after query to root server < min",
-		       count);
-		return (0);
-	}
-	pdp = NULL;
-	dp = np->n_data;
-	while (dp != NULL) {
-		if (dp->d_type == T_NS && dp->d_zone == 0 &&
-		    dp->d_ttl < tt.tv_sec) {
-			dprintf(1, (ddt, "deleting old root server '%s'\n",
-				    dp->d_data));
-			dp = rm_datum(dp, np, pdp);
-			/* SHOULD DELETE FROM HINTS ALSO */
-			continue;
-		}
-		pdp = dp;
-		dp = dp->d_next;
-	}
-	if (check_ns())
-		return (1);
-	else {
-		priming = 1;
-		return (0);
-	}
-}
-
-/* 
- * Check the root to make sure that for each NS record we have a A RR
- */
-static int
-check_ns()
-{
-	register struct databuf *dp, *tdp;
-	register struct namebuf *np, *tnp;
-	struct hashbuf *htp;
-	char *dname;
-	int found_arr;
-	const char *fname;
-	time_t curtime;
-	int servers = 0, rrsets = 0;
-
-	dprintf(2, (ddt, "check_ns()\n"));
-
-	curtime = (u_int32_t) tt.tv_sec;
-	for (np = hashtab->h_tab[0]; np != NULL; np = np->n_next) {
-		if (NAME(*np)[0] != '\0')
-			continue;
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			int cnames = 0;
-
-#ifdef NCACHE
-			if (dp->d_rcode)
-				continue;
-#endif
-			if (dp->d_type != T_NS)
-				continue;
-
-			servers++;
-
-	        	/* look for A records */
-			dname = (caddr_t) dp->d_data;
-			htp = hashtab;
-			tnp = nlookup(dname, &htp, &fname, 0);
-			if (tnp == NULL || fname != dname) {
-				dprintf(3, (ddt,
-					    "check_ns: %s: not found %s %#lx\n",
-					    dname, fname, (u_long)tnp));
-				sysquery(dname, dp->d_class, T_A, NULL,
-					 0, QUERY);
-				continue;
-			}
-			/* look for name server addresses */
-			found_arr = 0;
-			delete_stale(tnp);
-			for (tdp = tnp->n_data;
-			     tdp != NULL;
-			     tdp = tdp->d_next) {
-#ifdef NCACHE
-				if (tdp->d_rcode)
-					continue;
-#endif
-				if (tdp->d_type == T_CNAME)
-					cnames++;
-				if (tdp->d_type != T_A ||
-				    tdp->d_class != dp->d_class)
-					continue;
-				if ((tdp->d_zone == 0) &&
-				    (tdp->d_ttl < curtime)) {
-					dprintf(3, (ddt,
-						"check_ns: stale entry '%s'\n",
-						    NAME(*tnp)));
-					found_arr = 0;
-					break;
-				}
-				found_arr++;
-			}
-			if (found_arr)
-				rrsets++;
-			else if (cnames > 0)
-				syslog(LOG_INFO, "Root NS %s -> CNAME %s",
-				       NAME(*np), NAME(*tnp));
-			else
-				sysquery(dname, dp->d_class, T_A, NULL,
-					 0, QUERY);
-	        }
-	}
-
-	dprintf(2, (ddt, "check_ns: %d %d\n", servers, rrsets));
-	return ((servers<=2)?(rrsets==servers):((rrsets*2)>=servers));
-}
-
-/* int findns(npp, class, nsp, countp, flag)
- *	Find NS's or an SOA
- * npp, class:
- *	dname whose most enclosing NS is wanted
- * nsp, countp:
- *	result array and count; array will also be NULL terminated
- * flag:
- *	boolean: we're being called from ADDAUTH, bypass authority checks
- * return value:
- *	NXDOMAIN: we are authoritative for this {dname,class}
- *		  *countp is bogus, but nsp[] has a single SOA returned in it.
- *	SERVFAIL: we are auth but zone isn't loaded; or, no root servers found
- *		  *countp and nsp[] are bogus.
- *	OK: we are not authoritative, and here are the NS records we found.
- *		  *countp and nsp[] return NS records of interest.
- */
-int
-findns(npp, class, nsp, countp, flag)
-	register struct namebuf **npp;
-	int class;
-	struct databuf **nsp;
-	int *countp;
-	int flag;
-{
-	register struct namebuf *np = *npp;
-	register struct databuf *dp;
-	register struct	databuf **nspp;
-	struct hashbuf *htp;
-	
-	nsp[0] = NULL;
-
-	if (priming && (np == NULL || NAME(*np)[0] == '\0'))
-		htp = fcachetab;
-	else
-		htp = hashtab;
-
- try_again:
-	if (htp == fcachetab && class == C_IN && !priming)
-		needs_prime_cache = 1;
-	if (np == NULL) {
-		/* find the root */
-		for (np = htp->h_tab[0]; np != NULL; np = np->n_next)
-			if (NAME(*np)[0] == '\0')
-				break;
-	}
-	while (np != NULL) {
-		dprintf(5, (ddt, "findns: np %#lx '%s'\n",
-			    (u_long)np, NAME(*np)));
-		/* Look first for SOA records. */
-#ifdef ADDAUTH
-		if (!flag)
-#endif
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (dp->d_zone != 0 &&
-#ifdef PURGE_ZONE
-				((zones[dp->d_zone].z_type == Z_PRIMARY) ||
-				(zones[dp->d_zone].z_type == Z_SECONDARY)) &&
-#endif
-				match(dp, class, T_SOA)) {
-				dprintf(3, (ddt, "findns: SOA found\n"));
-				if (zones[dp->d_zone].z_flags & Z_AUTH) {
-					*npp = np;
-					nsp[0] = dp;
-					nsp[1] = NULL;
-					dp->d_rcnt++;
-					return (NXDOMAIN);
-				} else {
-					/* XXX:	zone isn't loaded but we're
-					 *	primary or secondary for it.
-					 *	should we fwd this?
-					 */
-					return (SERVFAIL);
-				}
-			}
-		}
-
-		/* If no SOA records, look for NS records. */
-		nspp = &nsp[0];
-		*nspp = NULL;
-		delete_stale(np);
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!match(dp, class, T_NS))
-				continue;
-#ifdef NCACHE
-			if (dp->d_rcode)
-				continue;
-#endif
-			/*
-			 * Don't use records that may become invalid to
-			 * reference later when we do the rtt computation.
-			 * Never delete our safety-belt information!
-			 *
-			 * XXX:	this is horribly bogus.
-			 */
-			if ((dp->d_zone == 0) &&
-			    (dp->d_ttl < tt.tv_sec) &&
-			    !(dp->d_flags & DB_F_HINT)) {
-				dprintf(1, (ddt, "findns: stale entry '%s'\n",
-					    NAME(*np)));
-				/*
-				 * We may have already added NS databufs
-				 * and are going to throw them away. Fix
-				 * fix reference counts. We don't need
-				 * free() them here as we just got them
-				 * from the cache.
-				 */
-				while (nspp > &nsp[0]) 
-					(*--nspp)->d_rcnt--;
-				nsp[0] = NULL;
-				goto try_parent;
-			}
-			if (nspp < &nsp[NSMAX-1]) {
-				*nspp++ = dp;
-				dp->d_rcnt++;
-			}
-		}
-
-		*countp = nspp - nsp;
-		if (*countp > 0) {
-			dprintf(3, (ddt, "findns: %d NS's added for '%s'\n",
-				    *countp, NAME(*np)));
-			*nspp = NULL;
-			*npp = np;
-			return (OK);	/* Success, got some NS's */
-		}
- try_parent:
-		np = np_parent(np);
-	}
-	if (htp == hashtab) {
-		htp = fcachetab;
-		goto try_again;
-	}
-	dprintf(1, (ddt, "findns: No root nameservers for class %s?\n",
-		    p_class(class)));
-	if ((unsigned)class < MAXCLASS && norootlogged[class] == 0) {
-		norootlogged[class] = 1;
-		syslog(LOG_INFO, "No root nameservers for class %s\n",
-		       p_class(class));
-	}
-	return (SERVFAIL);
-}
-
-
-/*
- * Extract RR's from the given node that match class and type.
- * Return number of bytes added to response.
- * If no matching data is found, then 0 is returned.
- */
-int
-finddata(np, class, type, hp, dnamep, lenp, countp)
-	struct namebuf *np;
-	int class, type;
-	register HEADER *hp;
-	char **dnamep;
-	int *lenp, *countp;
-{
-	register struct databuf *dp;
-	register char *cp;
-	int buflen, n, count = 0;
-
-	delete_stale(np);
-
-#ifdef ROUND_ROBIN
-	if (type != T_ANY && type != T_PTR) {
-		/* cycle order of RRs, for a load balancing effect... */
-
-		register struct databuf **dpp;
- 
-		for (dpp = &np->n_data; dp = *dpp; dpp = &dp->d_next) {
-			if (dp->d_next && wanted(dp, class, type)) {
-				register struct databuf *lp;
-
-				*dpp = lp = dp->d_next;
-				dp->d_next = NULL;
-
-				for (dpp = &lp->d_next;
-				     *dpp;
-				     dpp = &lp->d_next)
-					lp = *dpp;
-				*dpp = dp;
-				break;
-			}
-		}
-	}
-#endif /*ROUND_ROBIN*/
-
-	buflen = *lenp;
-#ifdef DEBUG
-	if (buflen > PACKETSZ)
-		dprintf(1, (ddt, "finddata(): buflen=%d\n", buflen));
-#endif
-	cp = ((char *)hp) + *countp;
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!wanted(dp, class, type)) {
-#ifndef NCACHE /*if no negative caching then cname => nothing else*/
-			if (type == T_CNAME && class == dp->d_class) {
-				/* any data means no CNAME exists */
-				*countp = 0;
-				return 0;
-			}
-#endif /*NCACHE*/
-			continue;
-		}
-		if (dp->d_cred == DB_C_ADDITIONAL) {
-#ifdef NOADDITIONAL
-			continue;
-#else
-			/* we want to expire additional data very
-			 * quickly.  current strategy is to cut 5%
-			 * off each time it is accessed.  this makes
-			 * stale(dp) true earlier when this datum is
-			 * used often.
-			 */
-			dp->d_ttl = tt.tv_sec
-					+
-				0.95 * (int) (dp->d_ttl - tt.tv_sec);
-#endif
-		}
-#ifdef NCACHE
-		/* -ve $ing stuff, anant@isi.edu
-		 * if we have a -ve $ed record, change the rcode on the
-		 * header to reflect that
-		 */
-		if (dp->d_rcode == NOERROR_NODATA) {
-			if (count != 0) {
-				/*
-				 * This should not happen, yet it does...
-				 */
-				syslog(LOG_INFO,
-				   "NODATA & data for \"%s\" type %d class %d",
-				       *dnamep, type, class);
-				continue;
-			}
-			if (type == T_ANY)
-				continue;
-			hp->rcode = NOERROR_NODATA;
-			if (dp->d_size == 0) { /* !RETURNSOA */
-				*countp = 0;
-				return 1; /* XXX - we have to report success */
-			}
-		}
-		if (dp->d_rcode == NXDOMAIN) {
-			if (count != 0) {
-				/*
-				 * This should not happen, yet it might...
-				 */
-				syslog(LOG_INFO,
-				  "NXDOMAIN & data for \"%s\" type %d class %d",
-				       *dnamep, type, class);
-				continue;
-			}
-			hp->rcode = NXDOMAIN;
-			if (dp->d_size == 0) { /* !RETURNSOA */
-				*countp = 0;
-				return 1; /* XXX - we have to report success */
-			}
-		}
-#endif /*NCACHE*/
-
-		/* Don't put anything but key or sig RR's in response to
-			     requests for key or sig */
-		if (((type == T_SIG) || (type == T_KEY)) &&
-		    (!((dp->d_type == T_SIG) || (dp->d_type == T_KEY))) )
-			continue;
-
-		if ((n = make_rr(*dnamep, dp, (u_char *)cp, buflen, 1)) < 0) {
-			hp->tc = 1;
-			*countp = count;
-			return (*lenp - buflen);
-		}
-
-		cp += n;
-		buflen -= n;
-		count++;
-#ifdef notdef
-		/* this isn't right for glue records, aa is set in ns_req */
-		if (dp->d_zone &&
-		    (zones[dp->d_zone].z_flags & Z_AUTH) &&
-		    class != C_ANY)
-			hp->aa = 1;			/* XXX */
-#endif
-		if (dp->d_type == T_CNAME) {
-			/* don't alias if querying for key, sig, nxt, or any */
-			if ((type != T_KEY) && 
-			    (type != T_SIG) &&
-			    (type != T_NXT) &&
-			    (type != T_ANY)) {	/* or T_NS? */
-				*dnamep = (caddr_t) dp->d_data;
-				if (dp->d_zone != DB_Z_CACHE &&
-				    (zones[dp->d_zone].z_flags & Z_AUTH) &&
-				    class != C_ANY)		/* XXX */
-					hp->aa = 1;		/* XXX */
-			}
-			break;
-		}
-	}
-	/*
-	 * Cache invalidate the other RR's of same type
-	 * if some have timed out
-	 */
-	dprintf(3, (ddt, "finddata: added %d class %d type %d RRs\n",
-		    count, class, type));
-	*countp = count;
-	return (*lenp - buflen);
-}
-
-/*
- * Do we want this data record based on the class and type?
- * (We always return found unexpired SIG RR's that cover the wanted rrtype.)
- */
-int
-wanted(dp, class, type)
-	struct databuf *dp;
-	int class, type;
-{
-	u_char *cp;
-	u_int16_t coveredType;
-	time_t expiration;
-
-	dprintf(3, (ddt, "wanted(%#lx, %d, %d) [%s %s]\n",
-		    (u_long)dp, class, type,
-		    p_class(dp->d_class), p_type(dp->d_type)));
-
-	if (dp->d_class != class && class != C_ANY)
-		return (0);
-	/* Must check SIG for expiration below, other matches return OK here. */
-	if (type == dp->d_type && (type != T_SIG))
-		return (1);
-#ifdef NCACHE
-	/*-ve $ing stuff, for a T_ANY query, we do not want to return
-	 * -ve $ed RRs.
-	 */
-	if (type == T_ANY && dp->d_rcode == NOERROR_NODATA)
-		return (0);
-#endif
-
-	/* First, look at the type of RR.  */
-	switch (dp->d_type) {
-
-		/* Cases to deal with:
-			T_ANY search, return all unexpired SIGs.
-			T_SIG search, return all unexpired SIGs.
-			T_<foo> search, return all unexp SIG <FOO>s.
-		 */
-	case T_SIG:
-		cp = dp->d_data;
-		GETSHORT(coveredType,cp);
-		cp += INT16SZ + INT32SZ; /* skip alg, labels, & orig TTL */
-		GETLONG(expiration,cp);
-
-		if (type == T_ANY || type == T_SIG || type == coveredType) {
-			if (expiration > time(0))
-				return (1);	/* Unexpired matching SIG */
-		}
-		return (0);		/* We don't return this SIG. */
-
-	case T_ANY:
-		return (1);
-	case T_CNAME:
-#ifdef NCACHE
-		if (dp->d_rcode != NOERROR_NODATA)
-#endif
-			return (1);
-#ifdef NCACHE
-		else
-			break;
-#endif
-	}
-	/* OK, now look at the type of query.  */
-	switch (type) {
-	case T_ANY:
-		return (1);
-
-	case T_MAILB:
-		switch (dp->d_type) {
-		case T_MR:
-		case T_MB:
-		case T_MG:
-		case T_MINFO:
-			return (1);
-		}
-		break;
-
-	case T_AXFR:
-		/* T_AXFR needs an authoritative SOA */
-		if (dp->d_type == T_SOA && dp->d_zone != 0
-		    && (zones[dp->d_zone].z_flags & Z_AUTH))
-			return (1);
-		break;
-	}
-	return (0);
-}
-
-/*
- *  Add RR entries from dpp array to a query/response.
- *  Return the number of bytes added or negative the amount
- *  added if truncation occured.  Typically you are
- *  adding NS records to a response.
- */
-int
-add_data(np, dpp, cp, buflen, countp)
-	struct namebuf *np;
-	struct databuf **dpp;
-	register u_char *cp;
-	int buflen, *countp;
-{
-	register struct databuf *dp;
-	char dname[MAXDNAME];
-	register int n, bytes;
-
-	bytes = *countp = 0;
-	getname(np, dname, sizeof(dname));
-	for (dp = *dpp++; dp != NULL; dp = *dpp++) {
-		if (stale(dp))
-			continue;	/* ignore old cache entry */
-#ifdef NCACHE
-		if (dp->d_rcode)
-			continue;
-#endif
-		if ((n = make_rr(dname, dp, cp, buflen, 1)) < 0)
-			return (-bytes);	/* Truncation */
-		cp += n;
-		buflen -= n;
-		bytes += n;
-		(*countp)++;
-	}
-	return (bytes);
-}
-
-static void
-rrsetadd(flushset, name, dp)
-	struct flush_set *flushset;
-	char *name;
-	struct databuf *dp;
-{
-	struct flush_set *fs = flushset;
-	struct db_list *dbl;
-
-	while (fs->fs_name && (
-		strcasecmp(fs->fs_name,name) ||
-		(fs->fs_class != dp->d_class) ||
-		(fs->fs_type != dp->d_type) ||
-		(fs->fs_cred != dp->d_cred))) {
-		fs++;
-	}
-	if (!fs->fs_name) {
-		fs->fs_name = strdup(name);
-		if (!fs->fs_name)
-			panic(-1, "rrsetadd: out of memory");
-		fs->fs_class = dp->d_class;
-		fs->fs_type = dp->d_type;
-		fs->fs_cred = dp->d_cred;
-		fs->fs_list = NULL;
-		fs->fs_last = NULL;
-	}
-	dbl = (struct db_list *)malloc(sizeof(struct db_list));
-	if (!dbl)
-		panic(-1, "rrsetadd: out of memory");
-	dbl->db_next = NULL;
-	dbl->db_dp = dp;
-	if (fs->fs_last == NULL)
-		fs->fs_list = dbl;
-	else
-		fs->fs_last->db_next = dbl;
-	fs->fs_last = dbl;
-}
-
-static int
-ttlcheck(name,dbl,update)
-	char *name;
-	struct db_list *dbl;
-	int update;
-{
-	int type = dbl->db_dp->d_type;
-	int class = dbl->db_dp->d_class;
-	struct hashbuf *htp = hashtab;
-	const char *fname;
-	register struct namebuf *np;
-	struct db_list *dbp = dbl;
-	struct databuf *dp;
-	u_int32_t ttl;
-	int first;
-
-
-	np = nlookup(name, &htp, &fname, 0);
-	if (np == NULL || fname != name || ns_wildcard(NAME(*np))) {
-		return(1);
-	}
-
-	/* check that all the ttl's we have are the same, if not return 1 */
-	first = 1;
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!match(dp, class, type))
-			continue;
-		if (first) {
-			/* we can't update zone data so return early */
-			if (dp->d_zone != 0)
-				return(0);
-			ttl = dp->d_ttl;
-			first = 0;
-		} else if (ttl != dp->d_ttl) {
-			return(1);
-		}
-	}
-
-	/* there are no records of this type in the cache */
-	if (first)
-		return(1);
-
-	/*
-	 * the ttls of all records we have in the cache are the same
-	 * if the ttls differ in the new set we don't want it.
-	 */
-
-	/* check that all the ttl's we have are the same, if not return 0 */
-	first = 1;
-	while (dbp) {
-		if (first) {
-			ttl = dbp->db_dp->d_ttl;
-			first = 0;
-		} else if (ttl != dbp->db_dp->d_ttl) {
-			return(0);
-		}
-		dbp = dbp->db_next;
-	}
-
-	/* update ttl if required */
-	if (update) {
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (!match(dp, class, type))
-				continue;
-			if (dp->d_ttl > ttl)
-				break;
-			dp->d_ttl = ttl;
-			fixttl(dp);
-		}
-	}
-
-	return(1);
-}
-
-static int
-rrsetcmp(name, dbl)
-	char *name;
-	struct db_list *dbl;
-{
-	int type = dbl->db_dp->d_type;
-	int class = dbl->db_dp->d_class;
-	struct hashbuf *htp = hashtab;
-	const char *fname;
-	register struct namebuf *np;
-	struct db_list *dbp = dbl;
-	struct databuf *dp;
-	int exists = 0;
-
-
-	np = nlookup(name, &htp, &fname, 0);
-	if (np == NULL || fname != name || ns_wildcard(NAME(*np))) {
-		dprintf(1, (ddt, "rrsetcmp: name not in database\n"));
-		return(-1);
-	}
-
-	/* check that all entries in dbl are in the cache */
-	while (dbp) {
-		for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-			if (match(dp, class, type))
-				exists++;
-			if (!db_cmp(dp, dbp->db_dp) 
-#ifdef NOADDITIONAL
-			&& ((dp->d_cred == dbp->db_dp->d_cred) ||
-				 (dp->d_cred != DB_C_ADDITIONAL))
-#endif
-				 )
-				break;
-		}
-		if (!dp) {
-			dprintf(1, (ddt, "rrsetcmp: %srecord%s in database\n",
-				exists ? "" : "no ", exists ? " not" : "s"));
-			return(exists? 1 : -1);
-		}
-		dbp = dbp->db_next;
-	}
-
-	/* Check that all cache entries are in the list. */
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!match(dp, class, type))
-			continue;
-#ifdef NCACHE
-		if (dp->d_rcode)
-			return(1);
-#endif
-		dbp = dbl;
-		while (dbp) {
-			if (!db_cmp(dp, dbp->db_dp))
-				break;
-			dbp = dbp->db_next;
-		}
-		if (!dbp) {
-			dprintf(1, (ddt, "rrsetcmp: record not in rrset\n"));
-			return(1);
-		}
-	}
-	dprintf(1, (ddt, "rrsetcmp: rrsets matched\n"));
-	return(0);
-}
-
-static void
-rrsetupdate(flushset, flags)
-	struct flush_set * flushset;
-	int flags;
-{
-	struct flush_set *fs = flushset;
-	struct db_list *dbp, *odbp;
-	int n;
-
-	while (fs->fs_name) {
-		dprintf(1,(ddt, "rrsetupdate: %s\n",
-			    fs->fs_name[0] ? fs->fs_name : "."));
-		if ((n = rrsetcmp(fs->fs_name, fs->fs_list)) &&
-		    ttlcheck(fs->fs_name, fs->fs_list, 0)) {
-			if (n > 0)
-				flushrrset(fs);
-
-			dbp = fs->fs_list;
-			while (dbp) {
-				n = db_update(fs->fs_name, dbp->db_dp,
-						dbp->db_dp, flags, hashtab);
-				dprintf(1,(ddt, "rrsetupdate: %s %d\n",
-					fs->fs_name[0] ? fs->fs_name : ".", n));
-				if (n != OK)
-					db_free(dbp->db_dp);
-				odbp = dbp;
-				dbp = dbp->db_next;
-				free((char *)odbp);
-			}    
-		} else {
-			if (n == 0)
-				(void)ttlcheck(fs->fs_name, fs->fs_list, 1);
-			dbp = fs->fs_list;
-			while (dbp) {
-				db_free(dbp->db_dp);
-				odbp = dbp;
-				dbp = dbp->db_next;
-				free((char *)odbp);
-			}
-		}
-		fs->fs_list = NULL;
-		fs++;
-	}
-}
-
-static void
-flushrrset(fs)
-	struct flush_set * fs;
-{
-	struct databuf *dp;
-	int n;
-
-	dprintf(1, (ddt, "flushrrset(%s, %s, %s, %d)\n",
-		fs->fs_name[0]?fs->fs_name:".", p_type(fs->fs_type),
-		p_class(fs->fs_class), fs->fs_cred));
-	dp = savedata(fs->fs_class, fs->fs_type, 0, NULL, 0);
-	dp->d_zone = 0;
-	dp->d_cred = fs->fs_cred;
-	dp->d_clev = 0;	
-	do {
-		n = db_update(fs->fs_name, dp, NULL, DB_DELETE, hashtab);
-		dprintf(1, (ddt, "flushrrset: %d\n", n));
-	} while (n == OK);
-	db_free(dp);
-}
-
-static void
-free_flushset(flushset)
-	struct flush_set *flushset;
-{
-	struct flush_set *fs;
-
-	for (fs = flushset; fs->fs_name != NULL; fs++)
-		free(fs->fs_name);
-	free((char *)flushset);
-}
-
-/*
- *  This is best thought of as a "cache invalidate" function.
- *  It is called whenever a piece of data is determined to have
- *  become invalid either through a timeout or a validation
- *  failure.  It is better to have no information, than to
- *  have partial information you pass off as complete.
- */
-void
-delete_all(np, class, type)
-	register struct namebuf *np;
-	int class, type;
-{
-	register struct databuf *dp, *pdp;
-
-	dprintf(3, (ddt, "delete_all(%#lx:\"%s\" %s %s)\n",
-		    (u_long)np, NAME(*np), p_class(class), p_type(type)));
-	pdp = NULL;
-	dp = np->n_data;
-	while (dp != NULL) {
-		if ((dp->d_zone == 0) && !(dp->d_flags & DB_F_HINT)
-		    && match(dp, class, type)) {
-			dp = rm_datum(dp, np, pdp);
-			continue;
-		}
-		pdp = dp;
-		dp = dp->d_next;
-	}
-}
-
-/* delete_stale(np)
- *	for all RRs associated with this name, check for staleness (& delete)
- * arguments:
- *	np = pointer to namebuf to be cleaned.
- * returns:
- *	void.
- * side effects:
- *	delete_all() can be called, freeing memory and relinking chains.
- */
-void 
-delete_stale(np)
-	struct namebuf *np;
-{
-	struct databuf *dp;
- again:  
-        for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-                if ((dp->d_zone == 0) && stale(dp)) {
-                        delete_all(np, dp->d_class, dp->d_type);
-                        goto again;
-		}
-	}
-}
-
-
-static void
-add_related_additional(name)
-	char *name;
-{
-	int i;
-
-	if (num_related >= MAX_RELATED - 1)
-		return;
-	for (i = 0; i < num_related; i++)
-		if (strcasecmp(name, related[i]) == 0) {
-			free(name);
-			return;
-		}
-	related[num_related++] = name;
-}
-
-static void
-free_related_additional() {
-	int i;
-
-	for (i = 0; i < num_related; i++)
-		free(related[i]);
-	num_related = 0;
-}
-
-static int
-related_additional(name)
-	char *name;
-{
-	int i;
-
-	for (i = 0; i < num_related; i++)
-		if (strcasecmp(name, related[i]) == 0)
-			return (1);
-	return (0);
-}
-
-static void
-maybe_free(tname)
-	char **tname;
-{
-	if (tname == NULL || *tname == NULL)
-		return;
-	free(*tname);
-	*tname = NULL;
-}
diff --git a/contrib/bind/named/ns_sort.c b/contrib/bind/named/ns_sort.c
deleted file mode 100644
index 0f53ccec658d0..0000000000000
--- a/contrib/bind/named/ns_sort.c
+++ /dev/null
@@ -1,171 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_sort.c	4.10 (Berkeley) 3/3/91";
-static char rcsid[] = "$Id: ns_sort.c,v 8.3 1995/12/22 10:20:30 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986, 1990
- * -
- * Copyright (c) 1986, 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <resolv.h>
-
-#include "named.h"
-
-static int sort_rr __P((u_char *cp, int count, struct netinfo *ntp, u_char *eom));
-
-#ifdef SORT_RESPONSE
-struct netinfo *
-local(from)
-	struct sockaddr_in *from;
-{
-	struct netinfo *ntp;
-
-	if (from->sin_addr.s_addr == netloop.my_addr.s_addr)
-		return (&netloop);
-	for (ntp = nettab; ntp != *enettab; ntp = ntp->next) {
-		if (ntp->addr == (from->sin_addr.s_addr & ntp->mask))
-			return (ntp);
-	}
-	return (NULL);
-}
-
-void
-sort_response(cp, ancount, lp, eom)
-	register u_char *cp;
-	register int ancount;
-	struct netinfo *lp;
-	u_char *eom;
-{
-	register struct netinfo *ntp;
-
-	dprintf(3, (ddt, "sort_response(%d)\n", ancount));
-	if (ancount > 1) {
-		if (sort_rr(cp, ancount, lp, eom))
-			return;
-		for (ntp = nettab; ntp != NULL; ntp = ntp->next) {
-			if ((ntp->addr == lp->addr) && (ntp->mask == lp->mask))
-				continue;
-			if (sort_rr(cp, ancount, ntp, eom))
-				break;
-		}
-	}
-}
-
-static int
-sort_rr(cp, count, ntp, eom)
-	register u_char *cp;
-	int count;
-	register struct netinfo *ntp;
-	u_char *eom;
-{
-	int type, class, dlen, n, c;
-	struct in_addr inaddr;
-	u_char *rr1;
-
-#ifdef DEBUG
-	if (debug > 2) {
-		inaddr.s_addr = ntp->addr;
-		fprintf(ddt, "sort_rr(%#lx, %d, [%s])\n",
-			(u_long)cp, count, inet_ntoa(inaddr));
-	}
-#endif
-	rr1 = NULL;
-	for (c = count; c > 0; --c) {
-	    n = dn_skipname(cp, eom);
-	    if (n < 0)
-		return (1);		/* bogus, stop processing */
-	    cp += n;
-	    if (cp + QFIXEDSZ > eom)
-		return (1);
-	    GETSHORT(type, cp);
-	    GETSHORT(class, cp);
-	    cp += INT32SZ;
-	    GETSHORT(dlen, cp);
-	    if (dlen > eom - cp)
-		return (1);		/* bogus, stop processing */
-	    switch (type) {
-	    case T_A:
-	    	switch (class) {
-	    	case C_IN:
-	    	case C_HS:
-	    		bcopy(cp, (char *)&inaddr, INADDRSZ);
-			if (rr1 == NULL)
-				rr1 = cp;
-			if ((ntp->mask & inaddr.s_addr) == ntp->addr) {
-			    dprintf(2, (ddt,"net [%s] best choice\n",
-					inet_ntoa(inaddr)));
-			    if (rr1 != cp) {
-	    		        bcopy(rr1, cp, INADDRSZ);
-	    		        bcopy((char *)&inaddr, rr1, INADDRSZ);
-			    }
-			    return (1);
-			}
-	    		break;
-	    	}
-	    	break;
-	    }
-	    cp += dlen;
-	}
-	return (0);
-}
-#endif
diff --git a/contrib/bind/named/ns_stats.c b/contrib/bind/named/ns_stats.c
deleted file mode 100644
index 1fe382abe3878..0000000000000
--- a/contrib/bind/named/ns_stats.c
+++ /dev/null
@@ -1,394 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char sccsid[] = "@(#)ns_stats.c	4.10 (Berkeley) 6/27/90";
-static char rcsid[] = "$Id: ns_stats.c,v 8.8 1996/09/22 00:13:10 vixie Exp $";
-#endif /* not lint */
-
-/*
- * ++Copyright++ 1986,1994
- * -
- * Copyright (c) 1986,1994
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/**************************************************************************/
-/*                simple monitoring of named behavior                     */
-/*            dumps a bunch of values into a well-known file              */
-/**************************************************************************/
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <errno.h>
-
-#include "named.h"
-#include "tree.h"
-
-static u_long typestats[T_ANY+1];
-static const char *typenames[T_ANY+1] = {
-	/* 5 types per line */
-	"Unknown", "A", "NS", "invalid(MD)", "invalid(MF)",
-	"CNAME", "SOA", "MB", "MG", "MR",
-	"NULL", "WKS", "PTR", "HINFO", "MINFO",
-	"MX", "TXT", "RP", "AFSDB", "X25",
-	"ISDN", "RT", "NSAP", "NSAP_PTR", "SIG",
-	"KEY", "PX", "invalid(GPOS)", "AAAA", "LOC",
-	0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0,
-	/* 20 per line */
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	/* 100 */
-	"UINFO", "UID", "GID", "UNSPEC", 0, 0, 0, 0, 0, 0,
-	/* 110 */
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	/* 120 */
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	/* 200 */
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	/* 240 */
-	0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-	/* 250 */
-	0, 0, "AXFR", "MAILB", "MAILA", "ANY" 
-};
-
-static void		nameserStats __P((FILE *));
-
-void
-ns_stats()
-{
-	time_t timenow = time(NULL);
-	register FILE *f;
-	register int i;
-
-	syslog(LOG_NOTICE, "dumping nameserver stats\n");
-
-	if (!(f = fopen(statsfile, "a"))) {
-		syslog(LOG_NOTICE, "cannot open stat file, \"%s\"\n",
-		       statsfile);
-		return;
-	}
-
-	fprintf(f, "+++ Statistics Dump +++ (%ld) %s",
-		(long)timenow, ctime(&timenow));
-	fprintf(f, "%ld\ttime since boot (secs)\n",
-		(long)(timenow - boottime));
-	fprintf(f, "%ld\ttime since reset (secs)\n",
-		(long)(timenow - resettime));
-
-	/* query type statistics */
-	fprintf(f, "%lu\tUnknown query types\n", (u_long)typestats[0]);
-	for(i=1; i < T_ANY+1; i++)
-		if (typestats[i])
-			if (typenames[i])
-				fprintf(f, "%lu\t%s queries\n",
-					(u_long)typestats[i], typenames[i]);
-			else
-				fprintf(f, "%lu\ttype %d queries\n",
-					(u_long)typestats[i], i);
-
-	/* name server statistics */
-	nameserStats(f);
-
-	fprintf(f, "--- Statistics Dump --- (%ld) %s",
-		(long)timenow, ctime(&timenow));
-	(void) my_fclose(f);
-	syslog(LOG_NOTICE, "done dumping nameserver stats\n");
-}
-
-void
-qtypeIncr(qtype)
-	int qtype;
-{
-	if (qtype < T_A || qtype > T_ANY)
-		qtype = 0;	/* bad type */
-	typestats[qtype]++;
-}
-
-static tree		*nameserTree;
-static int		nameserInit;
-
-#ifdef STATS
-static FILE		*nameserStatsFile;
-static u_long		globalStats[nssLast];
-static const char	*statNames[nssLast] = {
-			"RR",		/* sent us an answer */
-			"RNXD",		/* sent us a negative response */
-			"RFwdR",	/* sent us a response we had to fwd */
-			"RDupR",	/* sent us an extra answer */
-			"RFail",	/* sent us a SERVFAIL */
-			"RFErr",	/* sent us a FORMERR */
-			"RErr",		/* sent us some other error */
-			"RAXFR",	/* sent us an AXFR */
-			"RLame",	/* sent us a lame delegation */
-			"ROpts",	/* sent us some IP options */
-			"SSysQ",	/* sent them a sysquery */
-			"SAns",		/* sent them an answer */
-			"SFwdQ",	/* fwdd a query to them */
-			"SDupQ",	/* sent them a retry */
-			"SErr",	        /* sent failed (in sendto) */
-#ifdef XSTATS
-			"RQ",		/* sent us a query */
-			"RIQ",		/* sent us an inverse query */
-			"RFwdQ",	/* sent us a query we had to fwd */
-			"RDupQ",	/* sent us a retry */
-			"RTCP",		/* sent us a query using TCP */
-			"SFwdR",	/* fwdd a response to them */
-			"SFail",	/* sent them a SERVFAIL */
-			"SFErr",	/* sent them a FORMERR */
-			"SNaAns",       /* sent them a non autoritative answer */
-			"SNXD",         /* sent them a negative response */
-#endif
-			};
-#endif /*STATS*/
-
-static int
-nameserCompar(t1, t2)
-	const tree_t t1, t2;
-{
-	u_int32_t	a1 = ntohl(((struct nameser *)t1)->addr.s_addr),
-			a2 = ntohl(((struct nameser *)t2)->addr.s_addr);
-
-	if (a1 < a2)
-		return (-1);
-	else if (a1 > a2)
-		return (1);
-	else
-		return (0);
-}
-	
-struct nameser *
-nameserFind(addr, flags)
-	struct in_addr addr;
-	int flags;
-{
-	struct nameser dummy;
-	struct nameser *ns;
-
-	if (!nameserInit) {
-		tree_init(&nameserTree);
-		nameserInit++;
-	}
-
-	dummy.addr = addr;
-	ns = (struct nameser *)tree_srch(&nameserTree, nameserCompar,
-					 (tree_t)&dummy);
-	if (!ns && (flags & NS_F_INSERT)) {
-		ns = (struct nameser *)malloc(sizeof(struct nameser));
-		if (!ns) {
- nomem:			if (!haveComplained("nameserFind complaint", ""))
-				syslog(LOG_NOTICE,
-				       "nameserFind: malloc failed; %m");
-			return (NULL);
-		}
-		memset(ns, 0, sizeof(struct nameser));
-		ns->addr = addr;
-		if (!tree_add(&nameserTree, nameserCompar, (tree_t)ns, NULL)) {
-			int save = errno;
-			free(ns);
-			errno = save;
-			goto nomem;
-		}
-	}
-	return (ns);
-}
-
-
-void
-nameserIncr(addr, which)
-	struct in_addr addr;
-	enum nameserStats which;
-{
-#ifdef STATS
-	struct nameser *ns = nameserFind(addr, NS_F_INSERT);
-
-	if ((int)which < (int)nssLast) {
-		if (ns)
-			ns->stats[(int)which]++;
-		globalStats[(int)which]++;
-	} else {
-		syslog(LOG_DEBUG, "nameserIncr([%d], %d): bad 'which'",
-		       inet_ntoa(addr), (int)which);
-	}
-#endif /*STATS*/
-}
-
-#ifdef STATS
-static void
-nameserStatsOut(f, stats)
-	FILE *f;
-	u_long stats[];
-{
-	int i;
-	const char *pre = "\t";
-
-	for (i = 0;  i < (int)nssLast;  i++) {
-		fprintf(f, "%s%lu", pre, (u_long)stats[i]);
-		pre = ((i+1) % 5) ? " " : "  ";
-	}
-	fputc('\n', f);
-}
-
-static void
-nameserStatsHdr(f)
-	FILE *f;
-{
-	int i;
-	const char *pre = "\t";
-
-	fprintf(f, "(Legend)\n");
-	for (i = 0;  i < (int)nssLast;  i++) {
-		fprintf(f, "%s%s", pre,
-			statNames[i] ? statNames[i] : "");
-		pre = ((i+1) % 5) ? "\t" : "\n\t";
-	}
-	fputc('\n', f);
-}
-
-static int
-nameserStatsTravUAR(t)
-	tree_t t;
-{
-	struct nameser *ns = (struct nameser *)t;
-
-	fprintf(nameserStatsFile, "[%s]\n",	/* : rtt %u */
-		inet_ntoa(ns->addr)  /*, ns->rtt*/ );
-	nameserStatsOut(nameserStatsFile, ns->stats);
-	return (1);
-}
-#endif /*STATS*/
-
-static void
-nameserStats(f)
-	FILE *f;
-{
-#ifndef STATS
-	fprintf(f, "<<No nameserver statistics in this server>>\n");
-#else
-	nameserStatsFile = f;
-	fprintf(f, "++ Name Server Statistics ++\n");
-	nameserStatsHdr(f);
-	fprintf(f, "(Global)\n");
-	nameserStatsOut(f, globalStats);
-	tree_trav(&nameserTree, nameserStatsTravUAR);
-	fprintf(f, "-- Name Server Statistics --\n");
-	nameserStatsFile = NULL;
-#endif /*STATS*/
-}
-
-#ifdef XSTATS
-/* Benoit Grange, log minimal statistics, called from ns_maint */
-void
-ns_logstats()
-{
-	char buffer[1024];
-	char buffer2[32], header[64];
-	time_t timenow = time(NULL);
-	int i;
-
-#ifdef HAVE_GETRUSAGE
-# define tv_float(tv) ((tv).tv_sec + ((tv).tv_usec / 1000000.0))
-	struct rusage usage, childu;
-
-	getrusage(RUSAGE_SELF, &usage);
-	getrusage(RUSAGE_CHILDREN, &childu);
-
-	sprintf(buffer, "CPU=%gu/%gs CHILDCPU=%gu/%gs",
-		tv_float(usage.ru_utime), tv_float(usage.ru_stime),
-		tv_float(childu.ru_utime), tv_float(childu.ru_stime));
-	syslog(LOG_INFO, "USAGE %lu %lu %s", (u_long)timenow, (u_long)boottime,
-		buffer);
-# undef tv_float
-#endif
-
-	sprintf(header, "NSTATS %lu %lu", (u_long)timenow, (u_long)boottime);
-	strcpy(buffer, header);
-
-	for (i = 0; i < T_ANY+1; i++) {
-		if (typestats[i]) {
-			if (typenames[i])
-				sprintf(buffer2, " %s=%lu",
-					typenames[i], typestats[i]);
-			else
-				sprintf(buffer2, " %d=%lu", i, typestats[i]);
-			if (strlen(buffer) + strlen(buffer2) >
-			    sizeof(buffer) - 1) {
-				syslog(LOG_INFO, buffer);
-				strcpy(buffer, header);
-			}
-			strcat(buffer, buffer2);
-		}
-	}
-	syslog(LOG_INFO, buffer);
-
-	sprintf(header, "XSTATS %lu %lu", (u_long)timenow, (u_long)boottime);
-	strcpy(buffer, header);
-	for (i = 0;  i < (int)nssLast;  i++) {
-		sprintf(buffer2, " %s=%lu",
-			statNames[i]?statNames[i]:"?", (u_long)globalStats[i]);
-		if (strlen(buffer) + strlen(buffer2) > sizeof(buffer) - 1) {
-			syslog(LOG_INFO, buffer);
-			strcpy(buffer, header);
-		}
-		strcat(buffer, buffer2);
-	}
-	syslog(LOG_INFO, buffer);
-}
-
-#endif /*XSTATS*/
diff --git a/contrib/bind/named/ns_udp.c b/contrib/bind/named/ns_udp.c
deleted file mode 100644
index 7fb583124bc79..0000000000000
--- a/contrib/bind/named/ns_udp.c
+++ /dev/null
@@ -1,113 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char rcsid[] = "$Id: ns_udp.c,v 8.3 1996/08/27 08:33:23 vixie Exp $";
-#endif /* not lint */
-
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <syslog.h>
-#include <netdb.h>
-#include <nlist.h>
-#include <resolv.h>
-
-#include "named.h"
-
-void
-ns_udp() {
-#if defined(CHECK_UDP_SUM) || defined(FIX_UDP_SUM)
-	struct nlist nl[2];
-	int fd;
-	int sum;
-	u_long res, offset;
-
-	nl[0].n_name = UDPSUM;
-	nl[1].n_name = 0;
-
-	if (nlist(KSYMS, nl)) {
-		dprintf(1, (ddt, "ns_udp: nlist (%s,%s) failed\n",
-				KSYMS, UDPSUM));
-		return;
-	}
-
-	dprintf(1, (ddt, "ns_udp: %s %d %lu (%ld)\n",
-		nl[0].n_name, nl[0].n_type, nl[0].n_value,
-		nl[0].n_value));
-
-	if (!nl[0].n_type)
-		return;
-
-	if ((fd = open(KMEM, O_RDWR, 0)) < 0) {
-		dprintf(1, (ddt, "ns_udp: open %s failed\n", KMEM));
-		return;
-	}
-
-	offset = nl[0].n_value;
-#ifdef KMAP
-	offset &= ((~0UL)>>1);
-#endif
-
-	res = lseek(fd, offset, SEEK_SET);
-	if (res != offset) {
-		dprintf(1, (ddt, "ns_udp: lseek %ul failed %lu %d\n",
-			    offset, res, errno));
-		goto cleanup;
-	}
-
-	if (read(fd, &sum, sizeof(sum)) != sizeof(sum)) {
-		dprintf(1, (ddt, "ns_udp: read failed\n"));
-		goto cleanup;
-	}
-
-	dprintf(1, (ddt, "ns_udp: %d\n", sum));
-	if (sum == 0) {
-#ifdef FIX_UDP_SUM
-		sum = 1;
-		lseek(fd, offset, SEEK_SET);
-		if (res != offset) {
-			dprintf(1, (ddt, "ns_udp: lseek %ul failed %lu %d\n",
-				    offset, res, errno));
-			goto cleanup;
-		}
-		if (write(fd, &sum, sizeof(sum)) != sizeof(sum)) {
-			dprintf(1, (ddt, "ns_udp: write failed\n"));
-			goto cleanup;
-		}
-		dprintf(1, (ddt, "ns_udp: set to 1\n"));
-		syslog(LOG_WARNING, "ns_udp: check sums turned on");
-#else
-		dprintf(1, (ddt, "ns_udp: Exiting\n"));
-		syslog(LOG_WARNING, "ns_udp: checksums NOT turned on: Exiting");
-		exit(1);
-#endif
-	}
-cleanup:
-	close(fd);
-#endif
-}
diff --git a/contrib/bind/named/ns_validate.c b/contrib/bind/named/ns_validate.c
deleted file mode 100644
index b7e774cadf896..0000000000000
--- a/contrib/bind/named/ns_validate.c
+++ /dev/null
@@ -1,1234 +0,0 @@
-/**************************************************************************
- * ns_validate.c (was security.c in original ISI contribution)
- * author: anant kumar
- * contributed: March 17, 1993
- *
- * implements validation procedure for RR's received from a server as a
- * response to a query.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/file.h>
-
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <syslog.h>
-#include <errno.h>
-#include <stdio.h>
-#include <resolv.h>
-
-#include "named.h"
-
-#ifdef VALIDATE
-
-static int		isvalid __P((struct namebuf *, int, int, char *, int)),
-			check_addr_ns __P((struct databuf **,
-					   struct sockaddr_in *,
-					   char *)),
-			check_in_tables __P((struct databuf **,
-					     struct sockaddr_in *,
-					     char *));
-#if 0
-static void		stick_in_queue __P((char *, int, int, char *));
-#endif
-
-static NAMEADDR		nameaddrlist[MAXNAMECACHE];
-static int		firstNA = 0,
-			lastNA = 0;
-
-static TO_Validate	*validateQ, *currentVQ;
-static int		VQcount;
-
-/*****************************************************************
- * validate() is called from dovalidate(). it takes as parameters, 
- * the domain name sought, the class, type etc. of record, the server
- * that gave us the answer and the data it gave us
- *
- * it returns VALID if it is able to validate the record, INVALID if it cannot.
- * furtehr VALID is split into VALID_CACHE if we need to cache this record
- * since the domainname is not something we are authoritative for and
- * VALID_NO_CACHE if the name is something we are authoritative for.
- *
- * pseudocode for function validate is as follows:
- * validate(domain, qdomain, server, type, class, data, dlen, rcode) {
- *
- *       if (dname or a higher level name not found in cache)
- *          return INVALID;
- *       if (NS records for "domain" found in cache){
- *
- *           if (we are authoritative)  /findns() returned NXDOMAIN;/
- *              if (we did not have an exact match on names)
- *                 =>the name does not exist in our database
- *                 => data is bad: return INVALID
- *              if (data agrees with what we have)
- *                return VALID_NO_CACHE;
- *              else return INVALID;
- *    
- *          if (we are not authoritative) /findns() returned OK;/       
- *	    if (domain lives below the qdomain)
- *		return VALID_CACHE;
- *          if (address records for NS's found in cache){
- *                       if ("server" = one of the addresses){
- *                               return VALID_CACHE;
- *                       }else{
- *                          stick in queue of "to_validate" data;
- *                          return (INVALID);
- *                       }
- *          else return INVALID;
- *
- * This performs the validation procedure described above. Checks
- * for the longest component of the dname that has a NS record
- * associated with it. At any stage, if no data is found, it implies
- * that the name is bad (has an unknown domain identifier) thus, we
- * return INVALID.
- * If address of one of these servers matches the address of the server
- * that returned us this data, we are happy!
- *
- * since findns will set needs_prime_cache if np = NULL is passed, we always
- * reset it. will let ns_req do it when we are searching for ns records to
- * query someone. hence in all the three cases of switch(findns())
- *                                 we have needs_prime_cache = 0;
- *****************************************************************************/
-int
-validate(dname, qdomain, server, type, class, data, dlen
-#ifdef NCACHE
-	 ,rcode
-#endif
-	 )
-	char *dname, *qdomain;
-	struct sockaddr_in *server;
-	int type, class;
-	char *data;
-	int dlen;
-#ifdef NCACHE
-	int rcode;
-#endif
-{
-	struct namebuf *np, *dnamep;
-	struct hashbuf *htp;
-	struct databuf *nsp[NSMAX];
-	int count;
-	const char *fname;
-	int exactmatch = 0;
-	struct fwdinfo *fwd;
-
-	nsp[0] = NULL;
-	dprintf(3, (ddt,
-		    "validate(), d:%s, s:[%s], t:%d, c:%d\n",
-		    dname, inet_ntoa(server->sin_addr), type, class));
-
-	/* everything from forwarders is the GOSPEL */
-	for (fwd = fwdtab; fwd != NULL; fwd = fwd->next) {
-		if (server->sin_addr.s_addr == fwd->fwdaddr.sin_addr.s_addr)
-			return (VALID_CACHE);
-	}
-
-	htp = hashtab;
-	if (priming && (dname[0] == '\0'))
-		np = NULL;
-	else
-		np = nlookup(dname, &htp, &fname, 0);
-    
-	/* we were able to locate namebufs for this domain, or a parent domain,
-	 * or ??? */
-
-	if (np == NULL)
-		fname = "";
-	dprintf(5, (ddt,
-		    "validate:namebuf found np:%#lx, d:\"%s\", f:\"%s\"\n",
-		    (u_long)np, dname, fname));
-	/* save the namebuf if we were able to locate the exact dname */
-	if (!strcasecmp(dname, fname)) {
-		dnamep = np;
-		exactmatch = 1;
-	}
-	switch (findns(&np, class, nsp, &count, 0)) {
-	case NXDOMAIN:
-		/** we are authoritative for this domain, lookup name 
-		 * in our zone data, if it matches, return valid.
-		 * in either case, do not cache
-		 **/
-		dprintf(5, (ddt, "validate: auth data found\n"));
-		free_nsp(nsp);
-		if (needs_prime_cache)
-			needs_prime_cache = 0;
-
-#ifdef NCACHE
-		if (rcode == NXDOMAIN) {
-			/* If we had an exactmatch on the name, we found the
-			 * name in our authority database, so this couldn't 
-			 * have been a bad name. INVALID data, say so
-			 */
-			if (exactmatch)
-				return (INVALID);
-			else
-				/* we did not have an exactmatch, the data is
-				 * good, we do not NCACHE stuff we are
-				 * authoritative for, though.
-				 */
-				return (VALID_NO_CACHE);
-		}
-#endif
-		if (!strcasecmp(dname, NAME(*np))) {
-      
-			/* if the name we seek is the same as that we have ns
-			 * records for, compare the data we have to see if it
-			 * matches. if it does, return valid_no_cache, if it
-			 * doesn't, invalid.
-			 */
-			if (isvalid(np, type, class, data, dlen))
-				return (VALID_NO_CACHE);
-			else
-				return (INVALID);
-		}
-    
-		/* we found ns records in a higher level, if we were unable to
-		 * locate the exact name earlier, it means we are
-		 * authoritative for this domain but do not have records for
-		 * this name. this name is obviously invalid
-		 */
-		if (!exactmatch)
-			return (INVALID);
-    
-		/* we found the exact name earlier and we are obviously
-		 * authoritative so check for data records and see if any
-		 * match.
-		 */
-		if (isvalid(dnamep, type, class, data, dlen))
-			return (VALID_NO_CACHE);
-		else
-			return (INVALID);
-  
-	case SERVFAIL:/* could not find name server records*/
-		/* stick_in_queue(dname, type, class, data); */
-		if (needs_prime_cache)
-			needs_prime_cache = 0;
-		free_nsp(nsp);
-		return (INVALID);
-    
-	case OK: /*proceed */
-		dprintf(5, (ddt, "validate:found ns records\n"));
-		if (needs_prime_cache)
-			needs_prime_cache = 0;
-		if (samedomain(dname, qdomain) ||
-		    check_addr_ns(nsp, server, dname)) {
-			free_nsp(nsp);
-			return (VALID_CACHE);
-		}
-		/* server is not one of those we know of */
-		/* stick_in_queue(dname, type, class, data); */
-		free_nsp(nsp);
-		return (INVALID);
-	default:
-		free_nsp(nsp);
-		return (INVALID);
-	} /*switch*/
-
-} /*validate*/
-
-/***********************************************************************
- * validate rr returned by somebody against your own database, if you are 
- * authoritative for the information. if you have a record that matches,
- * return 1, else return 0. validate() above will use this and determine
- * if the record should be returned/discarded.
- ***********************************************************************/
-static int
-isvalid(np, type, class, data, dlen)
-	struct namebuf *np;
-	int type, class;
-	char *data;
-	int dlen;
-{
-	register struct databuf *dp;
-  
-	for (dp = np->n_data; dp != NULL; dp = dp->d_next) {
-		if (!wanted(dp, class, type)) {
-			if ((type == T_CNAME) && (class == dp->d_class)) { 
-				/* if a cname exists, any other will not */
-				return (0);
-				/* we come here only for zone info,
-				 * so -ve $ed info can't be
-				 */
-			}
-			continue;
-		}
-		/* type and class match, if i get here 
-		 * let's now compare the data section, per RR type
-		 */  
-
-		/* unless, of course, the data was negative, in which case
-		 * we should return FAILURE since we should not have found
-		 * data here.
-		 */
-		if ((data == NULL) || (dlen == 0))
-			return (0);
-		
-		/* XXX:	why aren't we just calling db_cmp()? */
-
-	        switch (type) {
-			char *td;
-			u_char *tdp;
-			int x;
-
-			case T_A:
-			case T_WKS:
-			case T_HINFO:
-			case T_UINFO:
-			case T_UID:
-			case T_GID:
-			case T_TXT:
-			case T_X25:
-			case T_ISDN:
-			case T_LOC:
-#ifdef ALLOW_T_UNSPEC
-			case T_UNSPEC:
-#endif
-			       x = memcmp(dp->d_data, data, dlen);
-			       dprintf(3, (ddt, "type = %d, GOOD = %d\n",
-					   type, x));
-			       if (x == 0)
-				       return (1);
-			       else
-				       break;
-
-			case T_CNAME:
-			case T_MB:
-			case T_MG:
-			case T_MR:
-			case T_NS:
-			case T_PTR:
-			       x = strncasecmp((char *)dp->d_data, data, dlen);
-			       dprintf(3, (ddt, "type = %d, GOOD = %d\n",
-					   type, x));
-			       if (x == 0)
-				       return (1);
-			       else
-				      break; 
-
-			case T_MINFO:
-			case T_SOA:
-			case T_RP:
-				/* compare first string */
-				x = strncasecmp((char *)dp->d_data, data,
-						strlen(data) + 1);
-				if (x != 0) 
-					break;
-
-				/* move to second string */
-				td = data + (strlen(data) + 1);
-				tdp = dp->d_data + 
-					(strlen((char *)dp->d_data)+1);
-
-				/* compare second string */
-				x = strncasecmp(td, (char *)tdp, 
-						strlen((char *)td+1));
-				if (x != 0)
-					break;
-
-				/* move beyond second string, to
-				 * set of words in SOA.
-				 * RP and MINFO stuff really
-				 * ends here
-				 */
-
-				td = td + strlen((char *)td) + 1;
-				tdp = tdp + strlen((char *)tdp) + 1;
-				if (type == T_SOA) {
-					x = memcmp(td, (char *)tdp,
-						   5*INT32SZ);
-					if (x != 0)
-						break;
-				}
-				
-				/* everything was equal, wow!
-				 * so return a success
-				 */
-			        return (1);
-
-			case T_MX:
-			case T_AFSDB:
-			case T_RT:
-				x = memcmp(dp->d_data, data,
-					   INT16SZ);
-				if (x != 0)
-					break;
-				td = data + INT16SZ;
-				tdp = dp->d_data + INT16SZ;
-				x = strncasecmp(td, (char *)tdp, 
-						strlen((char *)td) + 1);
-				if (x != 0)
-					break;
-				return (1);
-
-			case T_PX:
-				x = memcmp(dp->d_data, data,
-					INT16SZ);
-				if (x != 0)
-					break;
-				td = data + INT16SZ;
-				tdp = dp->d_data + INT16SZ;
-
-				/* compare first string */
-				x = strncasecmp(td, (char *)tdp,
-						strlen((char *)td) + 1);
-				if (x != 0)
-					break;
-				td += (strlen(td) + 1);
-				tdp += (strlen((char *)tdp) + 1);
-				
-				/* compare second string */
-				x = strncasecmp(td, (char *)tdp,
-						strlen((char *)td+1));
-				if (x != 0)
-					break;
-				return (1);
-
-			default:
-				dprintf(3, (ddt, "unknown type %d\n", type));
-				return (0);
-		}
-		/* continue in loop if record did not match */
-	}
-	/* saw no record of interest in whole chain
-	 * If the data we were trying to validate was negative, we succeeded!
-	 * else we failed
-	 */
-	if ((data == NULL) || (dlen == 0)) {
-		/* negative data, report success */
-		return (1);
-	} 
-	/* positive data, no such RR, validation failed */
-	return (0);
-}
-
-/******************************************************************
-  * get a list of databufs that have ns addresses for the closest domain
-  * you know about, get their addresses and confirm that server indeed
-  * is one of them. if yes return 1 else 0. 
-  * first checks the cache that we build in nslookup() earlier 
-  * when we ns_forw(). if unableto find it there, it checks the entire
-  * hash table to do address translations.
-  *******************************************************************/
-static int
-check_addr_ns(nsp, server, dname)
-	struct databuf **nsp;
-	struct sockaddr_in *server;
-	char *dname;
-{
-	int i, found=0;
-	char sname[MAXDNAME];
-	struct in_addr *saddr = &(server->sin_addr);
-	struct databuf **nsdp;
-
-	dprintf(5, (ddt, "check_addr_ns: s:[%s], db:0x%lx, d:\"%s\"\n", 
-		    inet_ntoa(*saddr), (u_long)nsp, dname));
-
-	for(i = lastNA; i != firstNA; i = (i+1) % MAXNAMECACHE) {
-		if (!bcmp((char *)saddr,
-			  (char *)&(nameaddrlist[i].ns_addr),
-			  INADDRSZ)) {
-			strcpy(sname, nameaddrlist[i].nsname);
-			found = 1;
-			break;
-		}
-	}
-	if (found) {
-		dprintf(3, (ddt,
-			    "check_addr_ns: found address:[%s]\n",
-			    inet_ntoa(*saddr)));
-		for (nsdp = nsp; *nsdp != NULL;nsdp++) {
-			dprintf(5, (ddt,
-				    "check_addr_ns:names are:%s, %s\n",
-				    sname,(*nsdp)->d_data));
-			if (!strcasecmp(sname,(char *)((*nsdp)->d_data))) {
-				return (1);
-			}
-		}
-	}
-	/* could not find name in my cache of servers, must go through the
-	 * whole grind
-	 */
-
-	dprintf(2, (ddt, "check_addr_ns:calling check_in_tables()\n"));
-	return (check_in_tables(nsp, server, dname));
-}
-
-/*************************************************************************
- * checks in hash tables for the address of servers whose name is in the 
- * data section of nsp records. borrows code from nslookup()/ns_forw.c
- * largely.
- *************************************************************************/
-static int
-check_in_tables(nsp, server, syslogdname)
-	struct databuf *nsp[];
-	struct sockaddr_in *server;
-	char *syslogdname;
-{
-	register struct namebuf *np;
-	register struct databuf *dp, *nsdp;
-	struct hashbuf *tmphtp;
-	const char *dname, *fname;
-	int class;
-	int qcomp();
-  
-	dprintf(3, (ddt, "check_in_tables(nsp=x%lx, qp=x%x, '%s')\n",
-		    (u_long)nsp, server, syslogdname));
-  
-	while ((nsdp = *nsp++) != NULL) {
-		class = nsdp->d_class;
-		dname = (char *)nsdp->d_data;
-		dprintf(3, (ddt, "check_in_tables: NS %s c%d t%d (x%x)\n",
-			    dname, class, nsdp->d_type, nsdp->d_flags));
-		tmphtp = ((nsdp->d_flags & DB_F_HINT) ? fcachetab : hashtab);
-		np = nlookup(dname, &tmphtp, &fname, 1);
-		if (np == NULL || fname != dname) {
-			dprintf(3, (ddt, "%s: not found %s %x\n",
-				    dname, fname, np));
-			continue;
-		}
-		/* look for name server addresses */
-		for (dp = np->n_data;  dp != NULL;  dp = dp->d_next) {
-			if (stale(dp))
-				continue;
-			if (dp->d_type != T_A || dp->d_class != class)
-				continue;
-#ifdef NCACHE
-			if (dp->d_rcode)
-				continue;
-#endif
-			if (!bcmp((char *)dp->d_data,
-				  (char *)&(server->sin_addr),
-				  INADDRSZ)) {
-				return (1);
-			}
-		}
-	}
-	return (0); /* haven't been able to locate the right address */
-}
-
-/************************************************************************
- * is called in nslookup() and stores the name vs address of a name server
- *           --& check_in_tables above--
- * we contact, in a list of a maximum MAXNAMECACHE entries. we later refer
- *             -- NAMEADDR nameaddrlist[MAXNAMECACHE]; --
- * to this list when we are trying to resolve the name in check_addr_ns().
- *************************************************************************/
-void
-store_name_addr(servername, serveraddr, syslogdname, sysloginfo)
-	const char *servername;
-	struct in_addr serveraddr;
-	const char *syslogdname;
-	const char *sysloginfo;
-{
-	int i;
-
-	dprintf(3, (ddt,
-		    "store_name_addr:s:%s, a:[%s]\n",
-		    servername, inet_ntoa(serveraddr)));
-
-	/* if we already have the name address pair in cache, return */
-	for (i = lastNA;  i != firstNA;  i = (i+1) % MAXNAMECACHE) {
-		if (strcasecmp(servername, nameaddrlist[i].nsname) == 0) {
-			if (serveraddr.s_addr
-			    ==
-			    nameaddrlist[i].ns_addr.s_addr) {
-				dprintf(5, (ddt,
-			  "store_name_addr:found n and a [%s] [%s] in our $\n",
-					    inet_ntoa(nameaddrlist[i].ns_addr),
-					    inet_ntoa(serveraddr)));
-				return;
-			} /* if */
-		} else if (serveraddr.s_addr
-			   ==
-			   nameaddrlist[i].ns_addr.s_addr) {
-#ifdef BAD_IDEA
-			/*
-			 * log this as it needs to be fixed.
-			 * replace old name by new, next query likely to have
-			 * NS record matching new
-			 */
-			if (!haveComplained((char*)
-					     nhash(nameaddrlist[i].nsname),
-					    (char*)nhash(servername)))
-				syslog(LOG_INFO,
-	       "%s: server name mismatch for [%s]: (%s != %s) (server for %s)",
-				       sysloginfo,
-				       inet_ntoa(serveraddr),
-				       nameaddrlist[i].nsname, servername,
-				       syslogdname);
-#endif
-			free(nameaddrlist[i].nsname);
-			nameaddrlist[i].nsname = savestr(servername);
-			return;
-		} 
-	}
-	/* we have to add this one to our cache */
-
-	nameaddrlist[firstNA].nsname = savestr(servername);
-	bcopy((char *)&serveraddr,
-	      (char *)&(nameaddrlist[firstNA].ns_addr),
-	      INADDRSZ);
-
-	dprintf(2, (ddt, "store_name_addr:added entry #:%d n:%s a:[%s]\n",
-		    firstNA, nameaddrlist[firstNA].nsname,
-		    inet_ntoa(nameaddrlist[firstNA].ns_addr)));
-
-	firstNA = (firstNA+1) % MAXNAMECACHE;
-	if (firstNA == lastNA) {
-		free(nameaddrlist[firstNA].nsname);
-		nameaddrlist[firstNA].nsname = 0;
-		lastNA = (lastNA+1) % MAXNAMECACHE;
-	}
-	return;
-}
-
-/*
- * Decode the resource record 'rrp' and validate the RR.
- * Borrows code almost entirely from doupdate(). is a rather
- * non-invasive routine since it just goes thru the same motions
- * as doupdate but just marks the array validatelist entry as 
- * the return code from validate(). This is later used in doupdate
- * to cache/not cache the entry. also used in update_msg() to 
- * delete/keep the record from the outgoing message.
- */
-int
-dovalidate(msg, msglen, rrp, zone, flags, qdomain, server, VCode)
-	u_char *msg, *rrp;
-	int  msglen, zone, flags;
-	char *qdomain;
-	struct sockaddr_in *server;
-	int *VCode;
-{
-	register u_char *cp;
-	register int n;
-	int class, type, dlen, n1;
-	u_int32_t ttl;
-	char dname[MAXDNAME];
-	u_char *cp1;
-	u_char data[MAXDNAME*2 + INT32SZ*5];
-	register HEADER *hp = (HEADER *) msg;
-
-	dprintf(2, (ddt, "dovalidate(zone %d, flags %x)\n",
-		    zone, flags));
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(msg, msglen, ddt);
-#endif
-
-	cp = rrp;
-	n = dn_expand(msg, msg + msglen, cp, dname, sizeof dname);
-	if (n < 0) {
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-	cp += n;
-	GETSHORT(type, cp);
-	GETSHORT(class, cp);
-	GETLONG(ttl, cp);
-	GETSHORT(dlen, cp);
-	dprintf(2, (ddt, "dovalidate: dname %s type %d class %d ttl %d\n",
-		    dname, type, class, ttl));
-	/*
-	 * Convert the resource record data into the internal
-	 * database format.
-	 */
-	switch (type) {
-	case T_A:
-	case T_WKS:
-	case T_HINFO:
-	case T_UINFO:
-	case T_UID:
-	case T_GID:
-	case T_TXT:
-	case T_X25:
-	case T_ISDN:
-	case T_LOC:
-#ifdef ALLOW_T_UNSPEC
-	case T_UNSPEC:
-#endif
-		cp1 = cp;
-		n = dlen;
-		cp += n;
-		break;
-
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = data;
-		n = strlen((char *)data) + 1;
-		break;
-
-	case T_MINFO:
-	case T_SOA:
-	case T_RP:
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)data, sizeof data);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 = data + (n = strlen((char *)data) + 1);
-		n1 = sizeof(data) - n;
-		if (type == T_SOA)
-			n1 -= 5 * INT32SZ;
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *)cp1) + 1;
-		if (type == T_SOA) {
-			bcopy((char *)cp, (char *)cp1, n = 5 * INT32SZ);
-			cp += n;
-			cp1 += n;
-		}
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-		/* grab preference */
-		bcopy((char *)cp, data, INT16SZ);
-		cp1 = data + INT16SZ;
-		cp += INT16SZ;
-
-		/* get name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, sizeof(data) - INT16SZ);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-
-		/* compute end of data */
-		cp1 += strlen((char *)cp1) + 1;
-		/* compute size of data */
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	case T_PX:
-		/* grab preference */
-		bcopy((char *)cp, data, INT16SZ);
-		cp1 = data + INT16SZ;
-		cp += INT16SZ;
-
-		/* get first name */
-		n = dn_expand(msg, msg + msglen, cp,
-			      (char *)cp1, sizeof(data) - INT16SZ);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += (n = strlen((char *)cp1) + 1);
-		n1 = sizeof(data) - n;
-		
-		/* get second name */
-		n = dn_expand(msg, msg + msglen, cp, (char *)cp1, n1);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			return (-1);
-		}
-		cp += n;
-		cp1 += strlen((char *)cp1) + 1;
-		n = cp1 - data;
-		cp1 = data;
-		break;
-
-	default:
-		dprintf(3, (ddt, "unknown type %d\n", type));
-		return ((cp - rrp) + dlen);
-	}
-	if (n > MAXDATA) {
-		dprintf(2, (ddt,
-			    "update type %d: %d bytes is too much data\n",
-			    type, n));
-		hp->rcode = FORMERR;
-		return (-1);
-	}
-
-	*VCode = validate(dname, qdomain, server, type, class,(char *)cp1, n
-#ifdef NCACHE
-			  ,NOERROR
-#endif
-			  );
-	if (*VCode == INVALID) {
-		dprintf(2, (ddt,
-			    "validation failed d:%s, t:%d, c:%d\n",
-			    dname, type, class));
-	} else {
-		dprintf(2, (ddt,
-			    "validation succeeded d:%s, t:%d, c:%d\n",
-			    dname, type, class));
-	}
-	return (cp - rrp);
-}
-
-#if 0
-/******************************************************************
-  * This manages a data structure that stores all RRs that we were
-  * unable to validate. Am not sure exactly what purpose this might
-  * serve but until such time as we are sure it will not help, let
-  * me do it anyway.
-  *****************************************************************/
-static void
-stick_in_queue(dname, type, class, data)
-	char *dname;
-	int type;
-	int class;
-	char *data;
-{
-	struct timeval tp;
-	struct _TIMEZONE tzp;
-	TO_Validate *tempVQ;
-	u_long leasttime;
-
-	if (validateQ == NULL) {
-		validateQ = (TO_Validate *)malloc(sizeof(TO_Validate));
-		if (!validateQ)
-			panic(errno, "malloc(validateQ)");
-		validateQ->type = type;
-		validateQ->class = class;
-		validateQ->dname = savestr(dname);
-		validateQ->data = savestr(data);	/* XXX no \0 */
-		gettimeofday(&tp, &tzp);
-		validateQ->time = tp.tv_sec;
-		VQcount = 1;
-		validateQ->next = validateQ->prev = NULL;
-		currentVQ = validateQ;
-		return;
-	}
-	if (VQcount < MAXVQ) {
-		tempVQ =(TO_Validate *)malloc(sizeof(TO_Validate));
-		if (!tempVQ)
-			panic(errno, "malloc(tempVQ)");
-		tempVQ->type = type;
-		tempVQ->class = class;
-		tempVQ->dname = savestr(dname);
-		tempVQ->data = savestr(data);	/* XXX no \0 */
-		gettimeofday(&tp,&tzp);
-		tempVQ->time = tp.tv_sec;
-		tempVQ->next = currentVQ->next;
-		tempVQ->prev = currentVQ;
-		if (currentVQ->next != NULL)
-			currentVQ->next->prev = tempVQ;
-		currentVQ->next = tempVQ;
-		currentVQ = tempVQ;
-		VQcount++;
-		return;
-	}
-	gettimeofday(&tp, &tzp);
-	leasttime = validateQ->time;
-	currentVQ = validateQ;
-	for (tempVQ = validateQ;  tempVQ != NULL;  tempVQ = tempVQ->next) {
-		if (tp.tv_sec >= tempVQ->time +VQEXPIRY) {
-			tempVQ->type = type;
-			tempVQ->class = class;
-			strcpy(tempVQ->dname, dname);
-			strcpy(tempVQ->data, data);
-			tempVQ->time = tp.tv_sec;
-			currentVQ = tempVQ;
-			return;
-		}
-		if (tempVQ->time < leasttime) {
-			leasttime = tempVQ->time;
-			currentVQ = tempVQ;
-		}
-	}
-	currentVQ->type = type;
-	currentVQ->class = class;
-	strcpy(currentVQ->dname, dname);
-	strcpy(currentVQ->data, data);
-	currentVQ->time = tp.tv_sec;
-	return;
-}
-#endif
-
-#ifdef BAD_IDEA
-/* removes any INVALID RR's from the msg being returned, updates msglen to
- * reflect the new message length.
- */
-int
-update_msg(msg, msglen, Vlist, c)
-	u_char *msg;
-	int *msglen;
-	int Vlist[];
-	int c;
-{
-	register HEADER *hp;
-	register u_char *cp;
-	int i;
-	int n = 0;
-	u_char *tempcp, *newcp;
-	int *RRlen;
-	int qlen; /* the length of the query section*/
-	u_int16_t rdlength;
-	u_int16_t ancount, nscount;
-	u_int16_t new_ancount, new_nscount, new_arcount;
-	char dname[MAXDNAME], qname[MAXDNAME];
-	u_char data[MAXDNAME];
-	u_char **dpp;
-	u_char *dnptrs[40];
-	u_char **edp = dnptrs + sizeof(dnptrs)/sizeof(dnptrs[0]);
-	u_char *eom = msg + *msglen;
-	int n_new;
-	int rembuflen, newlen;
-	u_char *newmsg;
-	u_int16_t type, class, dlen;
-	u_int32_t ttl;
-	int inv = 0;
-
-#ifdef DEBUG
-	if (debug) {
-		fprintf(ddt, "update_msg: msglen:%d, c:%d\n", *msglen, c);
-		if (debug >= 10)
-			fp_nquery(msg, *msglen, ddt);
-	}
-#endif
-	/* just making sure we do not do all the work for nothing */
-	for (i=0;  i<c;  i++) { 
-		if (Vlist[i] == INVALID) {
-			inv = 1;
-			break;
-		}
-	}
-	if (inv != 1) {
-		/* no invalid records, go about your job */
-		return (0);
-	}
-
-	dprintf(2, (ddt, "update_msg: NEEDS updating:\n"));
-
-	RRlen = (int *)malloc((unsigned)c*sizeof(int));
-	if (!RRlen)
-		panic(errno, "malloc(RRlen)");
-	hp = (HEADER *)msg;
-	new_ancount = ancount = ntohs(hp->ancount);
-	new_nscount = nscount = ntohs(hp->nscount);
-	new_arcount = ntohs(hp->arcount);
-
-	cp = msg + HFIXEDSZ;
-	newlen = HFIXEDSZ;
-	/* skip the query section */
-	qlen = dn_expand(msg, eom, cp, qname, sizeof qname);
-	if (qlen <= 0) {
-		dprintf(2, (ddt, "dn_expand() failed, bad record\n"));
-		goto badend;
-	}
-	cp +=qlen;
-	GETSHORT(type,cp);
-	GETSHORT(class,cp);
-	qlen += 2 * INT16SZ;
-	newlen += qlen;
-
-	for (i = 0;  i < c;  i++) {
-		if (Vlist[i] == INVALID) {
-			if (i < ancount)
-				new_ancount--;
-			else if (i < ancount+nscount)
-				new_nscount--;
-			else
-				new_arcount--;
-		}
-
-		RRlen[i] = dn_skipname(cp, msg + *msglen);
-		if (RRlen[i] <= 0) {
-			dprintf(2, (ddt,
-				    "dn_skipname() failed, bad record\n"));
-			goto badend;
-		}
-		RRlen[i] += 2 * INT16SZ + INT32SZ;
-				/*type+class+TTL*/
-		cp += RRlen[i];
-		GETSHORT(rdlength, cp);
-		RRlen[i] += INT16SZ; /*rdlength*/
-		RRlen[i] += rdlength; /*rdata field*/
-		dprintf(3, (ddt, "RRlen[%d]=%d\n", i, RRlen[i]));
-		if (Vlist[i] != INVALID)
-			newlen += RRlen[i];
-		cp += rdlength; /*increment pointer to next RR*/
-	}
-	hp->ancount = htons(new_ancount);
-	hp->nscount = htons(new_nscount);
-	hp->arcount = htons(new_arcount);
-	/* get new buffer */
-	dprintf(3, (ddt,
-		    "newlen:%d, if no RR is INVALID == msglen\n", newlen));
-	newmsg = (u_char *)calloc(1,newlen + MAXDNAME);
-	if (newmsg == NULL)
-		goto badend;
-	dpp = dnptrs;
-	*dpp++ = newmsg;
-	*dpp = NULL;
-	/* bcopy the header, with all the length fields correctly put in */
-	bcopy((char *)msg, (char*)newmsg, HFIXEDSZ); /*header copied */
-	newcp = newmsg +HFIXEDSZ;  /*need a pointer in the new buffer */
-	rembuflen = newlen +MAXDNAME - HFIXEDSZ; /*buflen we can workin*/
-	newlen = HFIXEDSZ; /* this will now contain the length of msg */
-	n_new = dn_comp(qname, newcp, rembuflen, dnptrs, edp);
-	if (n_new < 0)
-		goto badend;
-	newcp += n_new;
-	PUTSHORT(type, newcp);
-	PUTSHORT(class, newcp); /*query section complete*/
-	newlen += (n_new+2*INT16SZ);
-	rembuflen -= (n_new+2*INT16SZ);
-	/* have to decode and copy every Valid RR from here */
-  
-	cp = msg +HFIXEDSZ +qlen;	/*skip header and query section*/
-	for (i = 0;  i < c;  i++) {
-		if (Vlist[i] == INVALID) {
-			/* go to next RR if this one is not INVALID */
-			cp += RRlen[i];
-			continue;
-		}
-		/* we have a valid record, must put it in the newmsg */
-		n = dn_expand(msg, eom, cp, dname, sizeof dname);
-		if (n < 0) {
-			hp->rcode = FORMERR;
-			goto badend;
-		}
-		n_new = dn_comp(dname, newcp, rembuflen, dnptrs, edp); 
-		if (n_new < 0)
-			goto badend;
-		cp += n;
-		newcp += n_new;
-		dprintf(5, (ddt,
-			    "cp:0x%x newcp:0x%x after getting name\n",
-			    cp, newcp));
-		GETSHORT(type, cp);
-		PUTSHORT(type, newcp);
-		dprintf(5, (ddt,
-			    "cp:0x%x newcp:0x%x after getting type\n",
-			    cp, newcp));
-		GETSHORT(class, cp);
-		PUTSHORT(class, newcp);
-		dprintf(5, (ddt,
-			    "cp:0x%x newcp:0x%x after getting class\n",
-			    cp, newcp));
-		GETLONG(ttl, cp);
-		PUTLONG(ttl, newcp);
-		dprintf(5, (ddt,
-			    "cp:0x%x newcp:0x%x after getting ttl\n",
-			    cp, newcp));
-		/* this will probably be modified for newmsg,
-		 * will put this in later, after compression
-		 */
-		GETSHORT(dlen, cp);
-		newlen += (n_new+3*INT16SZ + INT32SZ);
-		rembuflen -= (n_new+3*INT16SZ+ INT32SZ);
-		tempcp = newcp;
-		newcp += INT16SZ; /*advance to rdata field*/
-		dprintf(5, (ddt, "tempcp:0x%x newcp:0x%x\n",
-			    tempcp, newcp));
-		dprintf(3, (ddt,
-			    "update_msg: dname %s type %d class %d ttl %d\n",
-			    dname, type, class, ttl));
-		/* read off the data section */
-		switch (type) {
-		case T_A:
-		case T_WKS:
-		case T_HINFO:
-		case T_UINFO:
-		case T_UID:
-		case T_GID:
-		case T_TXT:
-		case T_X25:
-		case T_ISDN:
-		case T_LOC:
-#ifdef ALLOW_T_UNSPEC
-		case T_UNSPEC:
-#endif
-			n = dlen;
-			PUTSHORT(n, tempcp); /*time to put in the dlen*/
-			bcopy(cp, newcp,n); /*done here*/
-			cp +=n;
-			newcp +=n;
-			newlen += n;
-			rembuflen -= n;
-			dprintf(3, (ddt, "\tcp:0x%x newcp:0x%x dlen:%d\n",
-				    cp, newcp, dlen));
-			break;
-
-		case T_CNAME:
-		case T_MB:
-		case T_MG:
-		case T_MR:
-		case T_NS:
-		case T_PTR:
-			 /*read off name from data section */
-			n = dn_expand(msg, eom, cp,
-				      (char *)data, sizeof data);
-			if (n < 0) {
-				hp->rcode = FORMERR;
-				goto badend;
-			}
-			cp += n; /*advance pointer*/
-			/* fill in new packet */
-			n_new = dn_comp((char *)data, newcp, rembuflen,
-					dnptrs, edp);
-			if (n_new < 0)
-				goto badend;
-			PUTSHORT(n_new,tempcp);	/*put in dlen field*/
-			newcp += n_new; /*advance new pointer*/
-			newlen += n_new;
-			rembuflen -= n_new;
-			break;
-
-		case T_MINFO:
-		case T_SOA:
-		case T_RP:
-			n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-			if (n < 0) {
-				hp->rcode = FORMERR;
-				goto badend;
-			}
-			cp += n;
-			n_new = dn_comp((char *)data, newcp, rembuflen,
-					dnptrs, edp);
-			if (n_new < 0)
-				goto badend;
-			newcp += n_new;
-			newlen += n_new;
-			rembuflen -= n_new;
-			dlen = n_new;
-			n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-			if (n < 0) {
-				hp->rcode = FORMERR;
-				goto badend;
-			}
-			cp += n;
-			n_new = dn_comp((char *)data, newcp, rembuflen,
-					dnptrs, edp);
-			if (n_new < 0)
-				goto badend;
-			newcp += n_new;
-			newlen += n_new;
-			rembuflen -= n_new;
-			dlen += n_new;
-			if (type == T_SOA) {
-				bcopy(cp, newcp, n = 5*INT32SZ);
-				cp += n;
-				newcp += n;
-				newlen +=n;
-				rembuflen -= n;
-				dlen +=n;
-			}
-			PUTSHORT(dlen, tempcp);
-			break;
-
-		case T_MX:
-		case T_AFSDB:
-		case T_RT:
-			/* grab preference */
-			bcopy(cp,newcp,INT16SZ);
-			cp += INT16SZ;
-			newcp += INT16SZ;
-		
-			/* get name */
-			n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-			if (n < 0) {
-				hp->rcode = FORMERR;
-				goto badend;
-			}
-			cp += n;
-			n_new = dn_comp((char *)data, newcp, rembuflen,
-					dnptrs, edp);
-			if (n_new < 0)
-				goto badend;
-			PUTSHORT(n_new+INT16SZ, tempcp);
-			newcp += n_new;
-			newlen += n_new+INT16SZ;
-			rembuflen -= n_new+INT16SZ;
-			break;
-
-		case T_PX:
-			/* grab preference */
-			bcopy(cp, newcp, INT16SZ);
-			cp += INT16SZ;
-			newcp += INT16SZ;
-
-			/* get first name */
-			n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-			if (n < 0) {
-				hp->rcode = FORMERR;
-				goto badend;
-			}
-			cp += n;
-			n_new = dn_comp((char *)data, newcp, rembuflen,
-					dnptrs, edp);
-			if (n_new < 0)
-				goto badend;
-			newcp += n_new;
-			newlen += n_new+INT16SZ;
-			rembuflen -= n_new+INT16SZ;
-			dlen = n_new+INT16SZ;
-			n = dn_expand(msg, eom, cp, (char *)data, sizeof data);
-			if (n < 0) {
-				hp->rcode = FORMERR;
-				goto badend;
-			}
-			cp += n;
-			n_new = dn_comp((char *)data, newcp, rembuflen,
-					dnptrs, edp);
-			if (n_new < 0)
-				goto badend;
-			newcp += n_new;
-			newlen += n_new;
-			rembuflen -= n_new;
-			dlen += n_new;
-			PUTSHORT(dlen, tempcp);
-			break;
-
-		default:
-			dprintf(3, (ddt, "unknown type %d\n", type));
-			goto badend;
-		}
-		dprintf(2, (ddt,
-			    "newlen:%d, i:%d newcp:0x%x cp:0x%x\n\n",
-			    newlen, i, newcp, cp));
-	}
-	bcopy(newmsg, msg, newlen);
-	n = *msglen - newlen;
-	if (n < 0) {
-		dprintf(2, (ddt,
-			"update_msg():newmsg longer than old: n:%d o:%d ???\n",
-			    newlen, *msglen));
-	}
-	*msglen = newlen;
-	free((char *)newmsg);
-  
-#ifdef DEBUG
-	if (debug >= 10)
-		fp_nquery(msg, *msglen, ddt);
-#endif
-	free((char *)RRlen);
-	return (n);
-badend:
-	dprintf(2, (ddt, "encountered problems: UPDATE_MSG\n"));
-	free((char *)RRlen);
-	return (-1);
-}
-#endif /*BAD_IDEA*/
-
-#endif /*VALIDATE*/
diff --git a/contrib/bind/named/pathnames.h b/contrib/bind/named/pathnames.h
deleted file mode 100644
index 7ded7d212caa1..0000000000000
--- a/contrib/bind/named/pathnames.h
+++ /dev/null
@@ -1,122 +0,0 @@
-/*
- *	@(#)pathnames.h	5.4 (Berkeley) 6/1/90
- *	$Id: pathnames.h,v 8.1 1994/12/15 06:24:14 vixie Exp $
- */
-
-/*
- * ++Copyright++ 1989
- * -
- * Copyright (c) 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifdef _PATH_XFER
-# define _PATH_XFER_PREDEFINED	/* probably from Makefile */
-#endif
-
-#if defined (__sgi) && !defined(_SYSTYPE_SVR4) && !defined(__SYSTYPE_SVR4)
-#define	_PATH_BOOT	"/usr/etc/named.d/named.boot"
-#else
-#define	_PATH_BOOT	"/etc/named.boot"
-#endif
-
-#if defined(BSD) && BSD >= 198810
-
-#include <paths.h>
-#ifndef _PATH_XFER
-# define _PATH_XFER	"/usr/libexec/named-xfer"
-#endif
-#define	_PATH_DEBUG	"/var/tmp/named.run"
-#define	_PATH_DUMPFILE	"/var/tmp/named_dump.db"
-#ifndef _PATH_PIDFILE
-# define _PATH_PIDFILE	"/var/run/named.pid"
-#endif
-#define	_PATH_STATS	"/var/tmp/named.stats"
-#define	_PATH_XFERTRACE	"/var/tmp/xfer.trace"
-#define _PATH_XFERDDT	"/var/tmp/xfer.ddt"
-#define	_PATH_TMPXFER	"/var/tmp/xfer.ddt.XXXXXX"
-#define	_PATH_TMPDIR	"/var/tmp"
-
-#else /* BSD */
-
-#define	_PATH_DEVNULL	"/dev/null"
-#define	_PATH_TTY	"/dev/tty"
-#ifndef _PATH_XFER
-# define _PATH_XFER	"/etc/named-xfer"
-#endif
-#define	_PATH_DEBUG	"/usr/tmp/named.run"
-#define	_PATH_DUMPFILE	"/usr/tmp/named_dump.db"
-#ifndef _PATH_PIDFILE
-# define _PATH_PIDFILE	"/etc/named.pid"
-#endif
-#define	_PATH_STATS	"/usr/tmp/named.stats"
-#define	_PATH_XFERTRACE	"/usr/tmp/xfer.trace"
-#define _PATH_XFERDDT	"/usr/tmp/xfer.ddt"
-#define	_PATH_TMPXFER	"/usr/tmp/xfer.ddt.XXXXXX"
-#define	_PATH_TMPDIR	"/usr/tmp"
-#endif /* BSD */
-
-#ifndef _PATH_XFER_PREDEFINED
-# if defined(__sgi) || defined(NeXT) || defined(__ultrix)
-#  undef _PATH_XFER
-#  define _PATH_XFER	"/usr/etc/named-xfer"
-# endif
-# if defined(__osf__)
-#  undef _PATH_XFER
-#  define _PATH_XFER	"/usr/sbin/named-xfer"
-# endif
-# ifdef sun
-#  undef _PATH_XFER
-#  define _PATH_XFER	"/usr/etc/in.named-xfer"
-# endif
-#else
-# undef _PATH_XFER_PREDEFINED
-#endif /*_PATH_XFER_PREDEFINED*/
diff --git a/contrib/bind/named/storage.c b/contrib/bind/named/storage.c
deleted file mode 100644
index 2fa53cd83f615..0000000000000
--- a/contrib/bind/named/storage.c
+++ /dev/null
@@ -1,205 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <syslog.h>
-
-#include "../conf/portability.h"
-#include "../conf/options.h"
-extern void panic __P((int, const char *));
-
-#ifdef DSTORAGE
-/*
- *			S T O R A G E . C
- *
- * Ray Tracing program, storage manager.
- *
- *  Functions -
- *	rt_malloc	Allocate storage, with visibility & checking
- *	rt_free		Similarly, free storage
- *	rt_prmem	When debugging, print memory map
- *	calloc, cfree	Which call rt_malloc, rt_free
- *
- *  Author -
- *	Michael John Muuss
- *  
- *  Source -
- *	SECAD/VLD Computing Consortium, Bldg 394
- *	The U. S. Army Ballistic Research Laboratory
- *	Aberdeen Proving Ground, Maryland  21005-5066
- *  
- *  Copyright Notice -
- *	This software is Copyright (C) 1987 by the United States Army.
- *	All rights reserved.
- */
-#ifndef lint
-static char RCSid[] = "$Id: storage.c,v 8.2 1996/08/05 08:31:30 vixie Exp $";
-#endif
-
-#undef malloc
-#undef free
-
-#define MDB_SIZE	20000
-#define MDB_MAGIC	0x12348969
-struct memdebug {
-	char	*mdb_addr;
-	char	*mdb_str;
-	int	mdb_len;
-} rt_mdb[MDB_SIZE];
-
-/*
- *			R T _ M A L L O C
- */
-char *
-rt_malloc(cnt)
-unsigned int cnt;
-{
-	register char *ptr;
-
-	cnt = (cnt+2*sizeof(int)-1)&(~(sizeof(int)-1));
-	ptr = malloc(cnt);
-
-	if( ptr==(char *)0 ) {
-		panic(errno, "rt_malloc: malloc failure");
-	} else 	{
-		register struct memdebug *mp = rt_mdb;
-		for( ; mp < &rt_mdb[MDB_SIZE]; mp++ )  {
-			if( mp->mdb_len > 0 )  continue;
-			mp->mdb_addr = ptr;
-			mp->mdb_len = cnt;
-			mp->mdb_str = "???";
-			goto ok;
-		}
-		syslog(LOG_ERR, "rt_malloc:  memdebug overflow\n");
-	}
-ok:	;
-	{
-		register int *ip = (int *)(ptr+cnt-sizeof(int));
-		*ip = MDB_MAGIC;
-	}
-	return(ptr);
-}
-
-/*
- *			R T _ F R E E
- */
-void
-rt_free(ptr)
-char *ptr;
-{
-	register struct memdebug *mp = rt_mdb;
-	for( ; mp < &rt_mdb[MDB_SIZE]; mp++ )  {
-			if( mp->mdb_len <= 0 )  continue;
-		if( mp->mdb_addr != ptr )  continue;
-		{
-			register int *ip = (int *)(ptr+mp->mdb_len-sizeof(int));
-			if( *ip != MDB_MAGIC )
-				panic(-1, "rt_free: corrupt magic");
-		}
-		mp->mdb_len = 0;	/* successful free */
-		goto ok;
-	}
-	panic(-1, "rt_free: bad pointer");
- ok:
-	*((int *)ptr) = -1;	/* zappo! */
-	free(ptr);
-}
-
-/*
- *			R T _ P R M E M
- * 
- *  Print map of memory currently in use.
- */
-void
-rt_prmem(str)
-char *str;
-{
-	register struct memdebug *mp = rt_mdb;
-	register int *ip;
-
-	printf("\nRT memory use\t\t%s\n", str);
-	for( ; mp < &rt_mdb[MDB_SIZE]; mp++ )  {
-		if( mp->mdb_len <= 0 )  continue;
-		ip = (int *)(mp->mdb_addr+mp->mdb_len-sizeof(int));
-		printf("%7x %5x %s %s\n",
-			mp->mdb_addr, mp->mdb_len, mp->mdb_str,
-			*ip!=MDB_MAGIC ? "-BAD-" : "" );
-		if( *ip != MDB_MAGIC )
-			printf("\t%x\t%x\n", *ip, MDB_MAGIC);
-	}
-}
-
-char *
-calloc(num, size)
-	register unsigned num, size;
-{
-	register char *p;
-
-	size *= num;
-	if (p = rt_malloc(size))
-		bzero(p, size);
-	return (p);
-}
-
-cfree(p, num, size)
-	char *p;
-	unsigned num;
-	unsigned size;
-{
-	rt_free(p);
-}
-
-#endif /*DSTORAGE*/
diff --git a/contrib/bind/named/tree.c b/contrib/bind/named/tree.c
deleted file mode 100644
index 58607ea0bd480..0000000000000
--- a/contrib/bind/named/tree.c
+++ /dev/null
@@ -1,570 +0,0 @@
-/* tree - balanced binary tree library
- *
- * vix 05apr94 [removed vixie.h dependencies; cleaned up formatting, names]
- * vix 22jan93 [revisited; uses RCS, ANSI, POSIX; has bug fixes]
- * vix 23jun86 [added delete uar to add for replaced nodes]
- * vix 20jun86 [added tree_delete per wirth a+ds (mod2 v.) p. 224]
- * vix 06feb86 [added tree_mung()]
- * vix 02feb86 [added tree balancing from wirth "a+ds=p" p. 220-221]
- * vix 14dec85 [written]
- */
-
-
-/* This program text was created by Paul Vixie using examples from the book:
- * "Algorithms & Data Structures," Niklaus Wirth, Prentice-Hall, 1986, ISBN
- * 0-13-022005-1.  Any errors in the conversion from Modula-2 to C are Paul
- * Vixie's.
- *
- * This code and associated documentation is hereby placed in the public
- * domain, with the wish that my name and Prof. Wirth's not be removed
- * from the source or documentation.
- */
-
-
-#ifndef LINT
-static char RCSid[] = "$Id:";
-#endif
-
-
-/*#define		DEBUG	"tree"*/
-
-
-#include <stdio.h>
-#ifndef _PATH_XFER
-# include <stdlib.h>
-#else
-# include "../conf/portability.h"
-#endif
-#include "tree.h"
-
-
-#ifdef DEBUG
-static int	debugDepth = 0;
-static char	*debugFuncs[256];
-# define ENTER(proc) { \
-			debugFuncs[debugDepth] = proc; \
-			fprintf(stderr, "ENTER(%d:%s.%s)\n", \
-				debugDepth, DEBUG,
-				debugFuncs[debugDepth]); \
-			debugDepth++; \
-		}
-# define RET(value) { \
-			debugDepth--; \
-			fprintf(stderr, "RET(%d:%s.%s)\n", \
-				debugDepth, DEBUG, \
-				debugFuncs[debugDepth]); \
-			return (value); \
-		}
-# define RETV { \
-			debugDepth--; \
-			fprintf(stderr, "RETV(%d:%s.%s)\n", \
-				debugDepth, DEBUG, \
-				debugFuncs[debugDepth]); \
-			return; \
-		}
-# define MSG(msg)	fprintf(stderr, "MSG(%s)\n", msg);
-#else
-# define ENTER(proc)	;
-# define RET(value)	return (value);
-# define RETV		return;
-# define MSG(msg)	;
-#endif
-
-
-#ifndef TRUE
-# define TRUE		1
-# define FALSE		0
-#endif
-
-
-static tree *	sprout	__P( (tree **, tree_t, int *, int (*)(), void (*)()) );
-static int	delete	__P( (tree **, int (*)(), tree_t, void (*)(),
-			      int *, int *) );
-static void	del	__P( (tree **, int *, tree **, void (*)(), int *) );
-static void	bal_L	__P( (tree **, int *) );
-static void	bal_R	__P( (tree **, int *) );
-
-
-void
-tree_init(ppr_tree)
-	tree	**ppr_tree;
-{
-	ENTER("tree_init")
-	*ppr_tree = NULL;
-	RETV
-}
-	
-
-tree_t
-tree_srch(ppr_tree, pfi_compare, p_user)
-	tree	**ppr_tree;
-	int	(*pfi_compare)();
-	tree_t	p_user;
-{
-	register int	i_comp;
-
-	ENTER("tree_srch")
-
-	if (*ppr_tree) {
-		i_comp = (*pfi_compare)(p_user, (**ppr_tree).data);
-
-		if (i_comp > 0)
-			RET(tree_srch(&(**ppr_tree).right,
-				      pfi_compare,
-				      p_user))
-
-		if (i_comp < 0)
-			RET(tree_srch(&(**ppr_tree).left,
-				      pfi_compare,
-				      p_user))
-
-		/* not higher, not lower... this must be the one.
-		 */
-		RET((**ppr_tree).data)
-	}
-
-	/* grounded. NOT found.
-	 */
-	RET(NULL)
-}
-
-
-tree_t
-tree_add(ppr_tree, pfi_compare, p_user, pfv_uar)
-	tree	**ppr_tree;
-	int	(*pfi_compare)();
-	tree_t	p_user;
-	void	(*pfv_uar)();
-{
-	int	i_balance = FALSE;
-
-	ENTER("tree_add")
-	if (!sprout(ppr_tree, p_user, &i_balance, pfi_compare, pfv_uar))
-		RET(NULL)
-	RET(p_user)
-}
-
-
-int
-tree_delete(ppr_p, pfi_compare, p_user, pfv_uar)
-	tree	**ppr_p;
-	int	(*pfi_compare)();
-	tree_t	p_user;
-	void	(*pfv_uar)();
-{
-	int	i_balance = FALSE,
-		i_uar_called = FALSE;
-
-	ENTER("tree_delete");
-	RET(delete(ppr_p, pfi_compare, p_user, pfv_uar,
-		   &i_balance, &i_uar_called))
-}
-
-
-int
-tree_trav(ppr_tree, pfi_uar)
-	tree	**ppr_tree;
-	int	(*pfi_uar)();
-{
-	ENTER("tree_trav")
-
-	if (!*ppr_tree)
-		RET(TRUE)
-
-	if (!tree_trav(&(**ppr_tree).left, pfi_uar))
-		RET(FALSE)
-	if (!(*pfi_uar)((**ppr_tree).data))
-		RET(FALSE)
-	if (!tree_trav(&(**ppr_tree).right, pfi_uar))
-		RET(FALSE)
-	RET(TRUE)
-}
-
-
-void
-tree_mung(ppr_tree, pfv_uar)
-	tree	**ppr_tree;
-	void	(*pfv_uar)();
-{
-	ENTER("tree_mung")
-	if (*ppr_tree) {
-		tree_mung(&(**ppr_tree).left, pfv_uar);
-		tree_mung(&(**ppr_tree).right, pfv_uar);
-		if (pfv_uar)
-			(*pfv_uar)((**ppr_tree).data);
-		free(*ppr_tree);
-		*ppr_tree = NULL;
-	}
-	RETV
-}
-
-
-static tree *
-sprout(ppr, p_data, pi_balance, pfi_compare, pfv_delete)
-	tree	**ppr;
-	tree_t	p_data;
-	int	*pi_balance;
-	int	(*pfi_compare)();
-	void	(*pfv_delete)();
-{
-	tree	*p1, *p2, *sub;
-	int	cmp;
-
-	ENTER("sprout")
-
-	/* are we grounded?  if so, add the node "here" and set the rebalance
-	 * flag, then exit.
-	 */
-	if (!*ppr) {
-		MSG("grounded. adding new node, setting h=true")
-		*ppr = (tree *) malloc(sizeof(tree));
-		if (*ppr) {
-			(*ppr)->left = NULL;
-			(*ppr)->right = NULL;
-			(*ppr)->bal = 0;
-			(*ppr)->data = p_data;
-			*pi_balance = TRUE;
-		}
-		RET(*ppr);
-	}
-
-	/* compare the data using routine passed by caller.
-	 */
-	cmp = (*pfi_compare)(p_data, (*ppr)->data);
-
-	/* if LESS, prepare to move to the left.
-	 */
-	if (cmp < 0) {
-		MSG("LESS. sprouting left.")
-		sub = sprout(&(*ppr)->left, p_data, pi_balance,
-			     pfi_compare, pfv_delete);
-		if (sub && *pi_balance) {	/* left branch has grown */
-			MSG("LESS: left branch has grown")
-			switch ((*ppr)->bal) {
-			case 1:	/* right branch WAS longer; bal is ok now */
-				MSG("LESS: case 1.. bal restored implicitly")
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-				break;
-			case 0:	/* balance WAS okay; now left branch longer */
-				MSG("LESS: case 0.. balnce bad but still ok")
-				(*ppr)->bal = -1;
-				break;
-			case -1: /* left branch was already too long. rebal */
-				MSG("LESS: case -1: rebalancing")
-				p1 = (*ppr)->left;
-				if (p1->bal == -1) {		/* LL */
-					MSG("LESS: single LL")
-					(*ppr)->left = p1->right;
-					p1->right = *ppr;
-					(*ppr)->bal = 0;
-					*ppr = p1;
-				} else {			/* double LR */
-					MSG("LESS: double LR")
-
-					p2 = p1->right;
-					p1->right = p2->left;
-					p2->left = p1;
-
-					(*ppr)->left = p2->right;
-					p2->right = *ppr;
-
-					if (p2->bal == -1)
-						(*ppr)->bal = 1;
-					else
-						(*ppr)->bal = 0;
-
-					if (p2->bal == 1)
-						p1->bal = -1;
-					else
-						p1->bal = 0;
-					*ppr = p2;
-				} /*else*/
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-			} /*switch*/
-		} /*if*/
-		RET(sub)
-	} /*if*/
-
-	/* if MORE, prepare to move to the right.
-	 */
-	if (cmp > 0) {
-		MSG("MORE: sprouting to the right")
-		sub = sprout(&(*ppr)->right, p_data, pi_balance,
-			     pfi_compare, pfv_delete);
-		if (sub && *pi_balance) {
-			MSG("MORE: right branch has grown")
-
-			switch ((*ppr)->bal) {
-			case -1:
-				MSG("MORE: balance was off, fixed implicitly")
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-				break;
-			case 0:
-				MSG("MORE: balance was okay, now off but ok")
-				(*ppr)->bal = 1;
-				break;
-			case 1:
-				MSG("MORE: balance was off, need to rebalance")
-				p1 = (*ppr)->right;
-				if (p1->bal == 1) {		/* RR */
-					MSG("MORE: single RR")
-					(*ppr)->right = p1->left;
-					p1->left = *ppr;
-					(*ppr)->bal = 0;
-					*ppr = p1;
-				} else {			/* double RL */
-					MSG("MORE: double RL")
-
-					p2 = p1->left;
-					p1->left = p2->right;
-					p2->right = p1;
-
-					(*ppr)->right = p2->left;
-					p2->left = *ppr;
-
-					if (p2->bal == 1)
-						(*ppr)->bal = -1;
-					else
-						(*ppr)->bal = 0;
-
-					if (p2->bal == -1)
-						p1->bal = 1;
-					else
-						p1->bal = 0;
-
-					*ppr = p2;
-				} /*else*/
-				(*ppr)->bal = 0;
-				*pi_balance = FALSE;
-			} /*switch*/
-		} /*if*/
-		RET(sub)
-	} /*if*/
-
-	/* not less, not more: this is the same key!  replace...
-	 */
-	MSG("FOUND: Replacing data value")
-	*pi_balance = FALSE;
-	if (pfv_delete)
-		(*pfv_delete)((*ppr)->data);
-	(*ppr)->data = p_data;
-	RET(*ppr)
-}
-
-
-static int
-delete(ppr_p, pfi_compare, p_user, pfv_uar, pi_balance, pi_uar_called)
-	tree	**ppr_p;
-	int	(*pfi_compare)();
-	tree_t	p_user;
-	void	(*pfv_uar)();
-	int	*pi_balance;
-	int	*pi_uar_called;
-{
-	tree	*pr_q;
-	int	i_comp, i_ret;
-
-	ENTER("delete")
-
-	if (*ppr_p == NULL) {
-		MSG("key not in tree")
-		RET(FALSE)
-	}
-
-	i_comp = (*pfi_compare)((*ppr_p)->data, p_user);
-	if (i_comp > 0) {
-		MSG("too high - scan left")
-		i_ret = delete(&(*ppr_p)->left, pfi_compare, p_user, pfv_uar,
-			       pi_balance, pi_uar_called);
-		if (*pi_balance)
-			bal_L(ppr_p, pi_balance);
-	} else if (i_comp < 0) {
-		MSG("too low - scan right")
-		i_ret = delete(&(*ppr_p)->right, pfi_compare, p_user, pfv_uar,
-			       pi_balance, pi_uar_called);
-		if (*pi_balance)
-			bal_R(ppr_p, pi_balance);
-	} else {
-		MSG("equal")
-		pr_q = *ppr_p;
-		if (pr_q->right == NULL) {
-			MSG("right subtree null")
-			*ppr_p = pr_q->left;
-			*pi_balance = TRUE;
-		} else if (pr_q->left == NULL) {
-			MSG("right subtree non-null, left subtree null")
-			*ppr_p = pr_q->right;
-			*pi_balance = TRUE;
-		} else {
-			MSG("neither subtree null")
-			del(&pr_q->left, pi_balance, &pr_q,
-			    pfv_uar, pi_uar_called);
-			if (*pi_balance)
-				bal_L(ppr_p, pi_balance);
-		}
-		if (!*pi_uar_called && pfv_uar)
-			(*pfv_uar)(pr_q->data);
-		free(pr_q);	/* thanks to wuth@castrov.cuc.ab.ca */
-		i_ret = TRUE;
-	}
-	RET(i_ret)
-}
-
-
-static void
-del(ppr_r, pi_balance, ppr_q, pfv_uar, pi_uar_called)
-	tree	**ppr_r;
-	int	*pi_balance;
-	tree	**ppr_q;
-	void	(*pfv_uar)();
-	int	*pi_uar_called;
-{
-	ENTER("del")
-
-	if ((*ppr_r)->right != NULL) {
-		del(&(*ppr_r)->right, pi_balance, ppr_q,
-		    pfv_uar, pi_uar_called);
-		if (*pi_balance)
-			bal_R(ppr_r, pi_balance);
-	} else {
-		if (pfv_uar)
-			(*pfv_uar)((*ppr_q)->data);
-		*pi_uar_called = TRUE;
-		(*ppr_q)->data = (*ppr_r)->data;
-		*ppr_q = *ppr_r;
-		*ppr_r = (*ppr_r)->left;
-		*pi_balance = TRUE;
-	}
-
-	RETV
-}
-
-
-static void
-bal_L(ppr_p, pi_balance)
-	tree	**ppr_p;
-	int	*pi_balance;
-{
-	tree	*p1, *p2;
-	int	b1, b2;
-
-	ENTER("bal_L")
-	MSG("left branch has shrunk")
-
-	switch ((*ppr_p)->bal) {
-	case -1:
-		MSG("was imbalanced, fixed implicitly")
-		(*ppr_p)->bal = 0;
-		break;
-	case 0:
-		MSG("was okay, is now one off")
-		(*ppr_p)->bal = 1;
-		*pi_balance = FALSE;
-		break;
-	case 1:
-		MSG("was already off, this is too much")
-		p1 = (*ppr_p)->right;
-		b1 = p1->bal;
-		if (b1 >= 0) {
-			MSG("single RR")
-			(*ppr_p)->right = p1->left;
-			p1->left = *ppr_p;
-			if (b1 == 0) {
-				MSG("b1 == 0")
-				(*ppr_p)->bal = 1;
-				p1->bal = -1;
-				*pi_balance = FALSE;
-			} else {
-				MSG("b1 != 0")
-				(*ppr_p)->bal = 0;
-				p1->bal = 0;
-			}
-			*ppr_p = p1;
-		} else {
-			MSG("double RL")
-			p2 = p1->left;
-			b2 = p2->bal;
-			p1->left = p2->right;
-			p2->right = p1;
-			(*ppr_p)->right = p2->left;
-			p2->left = *ppr_p;
-			if (b2 == 1)
-				(*ppr_p)->bal = -1;
-			else
-				(*ppr_p)->bal = 0;
-			if (b2 == -1)
-				p1->bal = 1;
-			else
-				p1->bal = 0;
-			*ppr_p = p2;
-			p2->bal = 0;
-		}
-	}
-	RETV
-}
-
-
-static void
-bal_R(ppr_p, pi_balance)
-	tree	**ppr_p;
-	int	*pi_balance;
-{
-	tree	*p1, *p2;
-	int	b1, b2;
-
-	ENTER("bal_R")
-	MSG("right branch has shrunk")
-	switch ((*ppr_p)->bal) {
-	case 1:
-		MSG("was imbalanced, fixed implicitly")
-		(*ppr_p)->bal = 0;
-		break;
-	case 0:
-		MSG("was okay, is now one off")
-		(*ppr_p)->bal = -1;
-		*pi_balance = FALSE;
-		break;
-	case -1:
-		MSG("was already off, this is too much")
-		p1 = (*ppr_p)->left;
-		b1 = p1->bal;
-		if (b1 <= 0) {
-			MSG("single LL")
-			(*ppr_p)->left = p1->right;
-			p1->right = *ppr_p;
-			if (b1 == 0) {
-				MSG("b1 == 0")
-				(*ppr_p)->bal = -1;
-				p1->bal = 1;
-				*pi_balance = FALSE;
-			} else {
-				MSG("b1 != 0")
-				(*ppr_p)->bal = 0;
-				p1->bal = 0;
-			}
-			*ppr_p = p1;
-		} else {
-			MSG("double LR")
-			p2 = p1->right;
-			b2 = p2->bal;
-			p1->right = p2->left;
-			p2->left = p1;
-			(*ppr_p)->left = p2->right;
-			p2->right = *ppr_p;
-			if (b2 == -1)
-				(*ppr_p)->bal = 1;
-			else
-				(*ppr_p)->bal = 0;
-			if (b2 == 1)
-				p1->bal = -1;
-			else
-				p1->bal = 0;
-			*ppr_p = p2;
-			p2->bal = 0;
-		}
-	}
-	RETV
-}
diff --git a/contrib/bind/named/tree.h b/contrib/bind/named/tree.h
deleted file mode 100644
index 7d027b948b69b..0000000000000
--- a/contrib/bind/named/tree.h
+++ /dev/null
@@ -1,48 +0,0 @@
-/* tree.h - declare structures used by tree library
- *
- * vix 22jan93 [revisited; uses RCS, ANSI, POSIX; has bug fixes]
- * vix 27jun86 [broken out of tree.c]
- *
- * $Id: tree.h,v 8.1 1994/12/15 06:24:14 vixie Exp $
- */
-
-
-#ifndef	_TREE_H_INCLUDED
-#define	_TREE_H_INCLUDED
-
-
-#ifndef __P
-# if defined(__STDC__) || defined(__GNUC__)
-#  define __P(x) x
-# else
-#  define __P(x) ()
-# endif
-#endif
-
-/*
- * tree_t is our package-specific anonymous pointer.
- */
-#if defined(__STDC__) || defined(__GNUC__)
-typedef	void *tree_t;
-#else
-typedef	char *tree_t;
-#endif
-
-
-typedef	struct tree_s {
-		tree_t		data;
-		struct tree_s	*left, *right;
-		short		bal;
-	}
-	tree;
-
-
-void	tree_init	__P((tree **));
-tree_t	tree_srch	__P((tree **, int (*)(), tree_t));
-tree_t	tree_add	__P((tree **, int (*)(), tree_t, void (*)()));
-int	tree_delete	__P((tree **, int (*)(), tree_t, void (*)()));
-int	tree_trav	__P((tree **, int (*)()));
-void	tree_mung	__P((tree **, void (*)()));
-
-
-#endif	/* _TREE_H_INCLUDED */
diff --git a/contrib/bind/named/tree.man3 b/contrib/bind/named/tree.man3
deleted file mode 100644
index 5be48783e2b66..0000000000000
--- a/contrib/bind/named/tree.man3
+++ /dev/null
@@ -1,154 +0,0 @@
-.TH TREE 3 "5 April 1994"
-.\" from .TH TREE 3 "22 Jan 1993"
-.\" from .TH TREE 2 "23 June 1986"
-.UC 4
-.SH NAME
-tree_init, tree_mung, tree_srch, tree_add, tree_delete, tree_trav
-\- balanced binary tree routines
-.SH SYNOPSIS
-.nf
-.B void
-.B tree_init(tree)
-.B void **tree;
-.PP
-.B void *
-.B tree_srch(tree, compare, data)
-.B void **tree;
-.B int (*compare)();
-.B void *data;
-.PP
-.B void
-.B tree_add(tree, compare, data, del_uar)
-.B void **tree;
-.B int (*compare)();
-.B void *data;
-.B void (*del_uar)();
-.PP
-.B int
-.B tree_delete(tree, compare, data, del_uar)
-.B void **tree;
-.B int (*compare)();
-.B void *data;
-.B void (*del_uar)();
-.PP
-.B int
-.B tree_trav(tree, trav_uar)
-.B void **tree;
-.B int (*trav_uar)();
-.PP
-.B void
-.B tree_mung(tree, del_uar)
-.B void **tree;
-.B void (*del_uar)();
-.fi
-.SH DESCRIPTION
-These functions create and manipulate a balanced binary (AVL) tree.  Each node
-of the tree contains the expected left & right subtree pointers, a short int
-balance indicator, and a pointer to the user data.  On a 32 bit system, this
-means an overhead of 4+4+2+4 bytes per node (or, on a RISC or otherwise
-alignment constrained system with implied padding, 4+4+4+4 bytes per node).
-There is no key data type enforced by this package; a caller supplied
-compare routine is used to compare user data blocks.
-.PP
-Balanced binary trees are very fast on searches and replacements, but have a
-moderately high cost for additions and deletions.  If your application does a
-lot more searches and replacements than it does additions and deletions, the
-balanced (AVL) binary tree is a good choice for a data structure.
-.PP
-.I Tree_init
-creates an empty tree and binds it to
-.I tree
-(which for this and all other routines in this package should be declared as
-a pointer to void or int, and passed by reference), which can then be used by
-other routines in this package.  Note that more than one
-.I tree
-variable can exist at once; thus multiple trees can be manipulated
-simultaneously.
-.PP
-.I Tree_srch
-searches a tree for a specific node and returns either
-.I NULL
-if no node was found, or the value of the user data pointer if the node
-was found.
-.I compare
-is the address of a function to compare two user data blocks.  This routine
-should work much the way 
-.IR strcmp (3)
-does; in fact,
-.I strcmp
-could be used if the user data was a \s-2NUL\s+2 terminated string.
-.I data
-is the address of a user data block to be used by
-.I compare
-as the search criteria.  The tree is searched for a node where
-.I compare
-returns 0.
-.PP
-.I Tree_add
-inserts or replaces a node in the specified tree.  The tree specified by
-.I tree
-is searched as in
-.I tree_srch,
-and if a node is found to match
-.I data,
-then the
-.I del_uar
-function, if non\-\s-2NULL\s+2, is called with the address of the user data
-block for the node (this routine should deallocate any dynamic memory which
-is referenced exclusively by the node); the user data pointer for the node
-is then replaced by the value of
-.I data.
-If no node is found to match, a new node is added (which may or may not
-cause a transparent rebalance operation), with a user data pointer equal to
-.I data.
-A rebalance may or may not occur, depending on where the node is added
-and what the rest of the tree looks like.
-.I Tree_add
-will return the
-.I data
-pointer unless catastrophe occurs in which case it will return \s-2NULL\s+2.
-.PP
-.I Tree_delete
-deletes a node from
-.I tree.
-A rebalance may or may not occur, depending on where the node is removed from
-and what the rest of the tree looks like.
-.I Tree_delete
-returns TRUE if a node was deleted, FALSE otherwise.
-.PP
-.I Tree_trav
-traverses all of
-.I tree,
-calling
-.I trav_uar
-with the address of each user data block.  If
-.I trav_uar
-returns FALSE at any time,
-.I tree_trav
-will immediately return FALSE to its caller.  Otherwise all nodes will be 
-reached and
-.I tree_trav
-will return TRUE.
-.PP
-.I Tree_mung
-deletes every node in
-.I tree,
-calling
-.I del_uar
-(if it is not \s-2NULL\s+2) with the user data address from each node (see
-.I tree_add
-and
-.I tree_delete
-above).  The tree is left in the same state that
-.I tree_init
-leaves it in \- i.e., empty.
-.SH BUGS
-Should have a way for the caller to specify application specific
-.I malloc
-and
-.I free
-functions to be used internally when allocating meta data.
-.SH AUTHOR
-Paul Vixie, converted and augumented from Modula\-2 examples in
-.I Algorithms & Data Structures,
-Niklaus Wirth, Prentice\-Hall, ISBN 0\-13\-022005\-1.
diff --git a/contrib/bind/port/Makefile b/contrib/bind/port/Makefile
deleted file mode 100644
index af7f7970595a7..0000000000000
--- a/contrib/bind/port/Makefile
+++ /dev/null
@@ -1,75 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 8.15 1999/08/08 17:13:24 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsdos
-SHELL= /bin/sh
-O=o
-A=a
-DESTDIR=
-DESTINC= /usr/local/bind/include
-DESTLIB= /usr/local/lib
-TOP= ..
-INCL= ${TOP}/include
-PORTINCL= ${TOP}/port/${SYSTYPE}/include
-LIBBIND= ${TOP}/lib/libbind.${A}
-RANLIB= ranlib
-AR= ar cru
-INSTALL= install
-CDEBUG= -g
-
-SUBDIRS = bsdos decunix linux netbsd sunos ultrix
-
-MARGS =	"SYSTYPE=${SYSTYPE}" "SHELL=${SHELL}" "A=${A}" "O=${O}" \
-	"CC=${CC}" "LEX=${LEX}" "CDEBUG=${CDEBUG}" \
-	"SYSLIBS=${SYSLIBS}" "LDFLAGS=${LDFLAGS}" \
-	"DESTDIR=${DESTDIR}" "DESTMAN=${DESTMAN}" \
-	"DESTBIN=${DESTBIN}" "DESTSBIN=${DESTSBIN}" "DESTEXEC=${DESTEXEC}" \
-	"DESTLIB=${DESTLIB}" "DESTINC=${DESTINC}" "DESTHELP=${DESTHELP}" \
-	"RANLIB=${RANLIB}" "AR=${AR}" "ARPREF=${ARPREF}" "ARSUFF=${ARSUFF}" \
-	"INCL=../${INCL}" "PORTINCL=../${PORTINCL}" \
-	"LIBBIND=../${LIBBIND}" \
-	"INSTALL=${INSTALL}" "CPPFLAGS=${CPPFLAGS}" "TOP=../${TOP}"
-
-all::
-
-all depend install::
-	@(cd ${SYSTYPE}; pwd; ${MAKE} ${MARGS} $@)
-
-distclean:: clean
-	@set -e; for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-clean::
-	@set -e; cd ${SYSTYPE}; pwd; ${MAKE} ${MARGS} clean
-
-clean:: FRC
-	rm -f *~ *.BAK *.CKP *.orig .systype
-
-install::
-
-links:: FRC
-	@set -e; \
-	  ln -s SRC/systype SRC/settings .; \
-	  mkdir ${SYSTYPE}; cd ${SYSTYPE}; pwd; ln -s ../SRC/${SYSTYPE} SRC; \
-	  cp SRC/Makefile Makefile; chmod +w Makefile; \
-	  ${MAKE} ${MARGS} links
-
-FRC:
diff --git a/contrib/bind/port/README b/contrib/bind/port/README
deleted file mode 100644
index d8dbd106ab164..0000000000000
--- a/contrib/bind/port/README
+++ /dev/null
@@ -1,66 +0,0 @@
-
-Porting BIND 8 to Another System
-
-	Make sure to base your port on an existing one.  If your port is
-	for a new release of an already supported operating system, please
-	try to make the existing port support the new release instead of
-	making a new port directory.  For an example of how to do this,
-	look at how the Solaris port uses os_version.h in port_after.h.  See
-	port/solaris/include/Makefile and port/solaris/bin/make_os_version
-	to learn how an os_version.h is made.
-
-	Porting problems fall into broad categories which have simple answers:
-
-	    Include File Missing or Broken
-
-		Make one (possibly empty) in port/*/include or in
-		port/*/include/sys.  Broken include files can be fixed; see
-		the BSD/OS and ULTRIX ports for examples of how to do this.
-
-	    Library Function Missing:
-
-		Make one (possibly copying it from some other port and hacking)
-		and cause it to appear in port/libport.a by virtue of building
-		it in port/*/Makefile.  An example is the __ansi_realloc()
-		routine in the SunOS port.
-
-	    Desired system feature absent or not prototyped or whatever:
-
-		Edit port/*/include/port_{before,after}.h.  read a few source
-		files in lib/ or bin/ to see when/why these are #included.
-
-	    "Make" doesn't work even though my system has a port/* subdir:
-
-		Type "uname -s -r" at your shell and see if the resulting
-		string is present in your system's putative port/*/probe
-		file.  If not, try adding it.  If it works, send mail to
-		bind-bugs@isc.org.
-
-	    My system doesn't have enough of ANSI and POSIX to allow a port:
-
-		Give up.  Get a different system.
-
-	Porting mistakes also fall into broad categories with simple answers:
-
-	    I Can't Get It To Build Without Compiler (Not Linker!) Warnings:
-
-		Keep trying, you're not done yet.
-
-	    I Need To Add Another Portability #define And Some #ifdef's:
-
-		Make sure it won't hurt any other port.  Send us some mail.
-
-	    I Just Have To Edit A Source File To Get It To Compile:
-
-		You are probably missing one of the above opportunities to do
-		the right thing and you should rethink your approach and get
-		some advice before you send in your port.  But it's possible
-		that a non-UNIX system will need a different porting layer,
-		especially in isc/eventlib.c and its friends, so contact us
-		if you're stuck on this point, there may be something we can
-		do.  Send mail to bind-bugs@isc.org.
-
-	    My Employer Won't Allow Me To Send In Porting Diffs:
-
-		You probably need a new employer.  But try really hard, OK?
-
diff --git a/contrib/bind/port/freebsd/Makefile b/contrib/bind/port/freebsd/Makefile
deleted file mode 100644
index 2f5b12117dd71..0000000000000
--- a/contrib/bind/port/freebsd/Makefile
+++ /dev/null
@@ -1,85 +0,0 @@
-# Copyright (c) 1996,1999 by Internet Software Consortium
-#
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies.
-#
-# THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
-# ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
-# CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-
-# $Id: Makefile,v 1.8 1999/02/22 02:48:01 vixie Exp $
-
-# these are only appropriate for BSD 4.4 or derivatives, and are used in
-# development.  normal builds will be done in the top level directory and
-# this Makefile will be invoked with a lot of overrides for the following:
-SYSTYPE= bsd
-DESTDIR =
-DESTLIB = /usr/local/lib
-O=o
-A=a
-CC= cc
-LD= ld
-SHELL= /bin/sh
-CDEBUG= -g
-TOP= ../..
-INCL = ${TOP}/include
-PORTINCL = ${TOP}/port/${SYSTYPE}/include
-LIBBIND = ${TOP}/lib/libbind.${A}
-CFLAGS=	${CDEBUG} -I${PORTINCL} -I${INCL}
-LD_LIBFLAGS= -x -r
-AR= ar cru
-RANLIB= ranlib
-INSTALL= install
-
-SUBDIRS= include
-
-SRCS=	noop.c
-
-OBJS=	noop.${O}
-
-MARGS= DESTDIR="${DESTDIR}" DESTINC="${DESTINC}" INSTALL="${INSTALL}"
-
-all depend clean distclean install::
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-all:: ${LIBBIND}
-
-${LIBBIND}: ${OBJS}
-	${AR} ${LIBBIND} ${ARPREF} ${OBJS} ${ARSUFF}
-	${RANLIB} ${LIBBIND}
-
-.c.${O}:
-	${CC} ${CPPFLAGS} ${CFLAGS} -c $*.c
-	-${LDS} ${LD} ${LD_LIBFLAGS} $*.${O} && ${LDS} mv a.out $*.${O}
-
-distclean:: clean
-
-clean:: FRC
-	rm -f .depend a.out core tags
-	rm -f *.${O} *.BAK *.CKP *~
-
-depend:: FRC
-	mkdep -I${INCL} -I${PORTINCL} ${CPPFLAGS} ${SRCS}
-
-links: FRC
-	@set -e; ln -s SRC/*.[ch] SRC/bin SRC/Makefile.set SRC/probe .
-	@set -e; for x in ${SUBDIRS}; do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		cp SRC/Makefile Makefile; chmod +w Makefile; \
-		${MAKE} ${MARGS} links ); \
-	done
-
-install:: FRC
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/port/freebsd/Makefile.set b/contrib/bind/port/freebsd/Makefile.set
deleted file mode 100644
index fe256bc748126..0000000000000
--- a/contrib/bind/port/freebsd/Makefile.set
+++ /dev/null
@@ -1,18 +0,0 @@
-'CC=cc'
-'CDEBUG=-O2 -g'
-'DESTBIN=/usr/bin'
-'DESTSBIN=/usr/sbin'
-'DESTEXEC=/usr/libexec'
-'DESTMAN=/usr/share/man'
-'DESTHELP=/usr/share/misc'
-'DESTETC=/etc'
-'DESTRUN=/var/run'
-'LEX=lex -I'
-'YACC=yacc -d'
-'SYSLIBS=-ll -lutil'
-'INSTALL=install'
-'MANDIR=cat'
-'MANROFF=(tbl|nroff -man)'
-'CATEXT=0'
-'PS=ps'
-'RANLIB=ranlib'
diff --git a/contrib/bind/port/freebsd/bin/probe_ipv6 b/contrib/bind/port/freebsd/bin/probe_ipv6
deleted file mode 100755
index ba7135d0c5e33..0000000000000
--- a/contrib/bind/port/freebsd/bin/probe_ipv6
+++ /dev/null
@@ -1,55 +0,0 @@
-#!/bin/sh
-
-set -e
-PATH=/bin:/usr/bin:$PATH; export PATH
-trap "rm -f tmp$$a.c tmp$$b.c tmp$$a.o tmp$$b.o" 0
-target=port_ipv6
-new=new_${target}.h
-old=${target}.h
-
-cat > tmp$$a.c <<EOF
-#include <sys/types.h>
-#include <netinet/in.h>
-struct sockaddr_in6 xx;
-EOF
-
-cat > tmp$$b.c <<EOF
-#include <sys/types.h>
-#include <netinet/in.h>
-struct in6_addr xx;
-EOF
-
-cat > ${new} <<EOF
-
-/* This file is automatically generated. Do Not Edit. */
-
-#ifndef ${target}_h
-#define ${target}_h
-
-EOF
-
-if ${CC} -c tmp$$a.c > /dev/null 2>&1
-then
-        echo "#define HAS_INET6_STRUCTS" >> ${new}
-        if ${CC} -c tmp$$b.c > /dev/null 2>&1
-        then
-		:
-	else
-                echo "#define in6_addr in_addr6" >> ${new}
-        fi
-else
-        echo "#undef HAS_INET6_STRUCTS" >> ${new}
-fi
-echo  >> ${new}
-echo "#endif" >> ${new}
-if [ -f ${old} ]; then
-        if cmp -s ${new} ${old} ; then
-                rm -f ${new}
-        else
-                rm -f ${old}
-                mv ${new} ${old}
-        fi
-else
-        mv ${new} ${old}
-fi
-exit 0
diff --git a/contrib/bind/port/freebsd/include/Makefile b/contrib/bind/port/freebsd/include/Makefile
deleted file mode 100644
index 40fe3f8c03595..0000000000000
--- a/contrib/bind/port/freebsd/include/Makefile
+++ /dev/null
@@ -1,95 +0,0 @@
-# ++Copyright++
-# -
-# Copyright (c) 
-#    The Regents of the University of California.  All rights reserved.
-# 
-# Redistribution and use in source and binary forms, with or without
-# modification, are permitted provided that the following conditions
-# are met:
-# 1. Redistributions of source code must retain the above copyright
-#    notice, this list of conditions and the following disclaimer.
-# 2. Redistributions in binary form must reproduce the above copyright
-#    notice, this list of conditions and the following disclaimer in the
-#    documentation and/or other materials provided with the distribution.
-# 3. All advertising materials mentioning features or use of this software
-#    must display the following acknowledgement:
-# 	This product includes software developed by the University of
-# 	California, Berkeley and its contributors.
-# 4. Neither the name of the University nor the names of its contributors
-#    may be used to endorse or promote products derived from this software
-#    without specific prior written permission.
-# 
-# THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-# ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-# SUCH DAMAGE.
-# -
-# Portions Copyright (c) 1993 by Digital Equipment Corporation.
-# 
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies, and that
-# the name of Digital Equipment Corporation not be used in advertising or
-# publicity pertaining to distribution of the document or software without
-# specific, written prior permission.
-# 
-# THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-# WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-# CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-# -
-# --Copyright--
-
-SUBDIRS = sys
-HFILES =
-
-DESTDIR=
-DESTINC= /usr/local/bind/include
-INSTALL= install
-
-MARGS= DESTDIR="${DESTDIR}" DESTINC="${DESTINC}" INSTALL="${INSTALL}"
-
-all depend clean distclean install::
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-all depend::
-	probe_ipv6
-
-distclean:: clean
-
-clean::
-	rm -f *~ *.BAK *.CKP *.orig
-	rm -f port_ipv6.h new_port_ipv6.h
-
-links: FRC
-	@set -e; ln -s SRC/*.h .
-	@set -e; for x in ${SUBDIRS}; do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		cp SRC/Makefile Makefile; chmod +w Makefile; \
-		${MAKE} ${MARGS} links ); \
-	done
-
-install:: ${DESTDIR}${DESTINC}
-	-for x in "" ${HFILES}; do \
-	    if [ -n "$$x" ]; then \
-		${INSTALL} -c -m 444 $$x ${DESTDIR}${DESTINC}/$$x; \
-	    fi; \
-	done
-
-${DESTDIR}${DESTINC}:
-	mkdir -p ${DESTDIR}${DESTINC}
-
-FRC:
diff --git a/contrib/bind/port/freebsd/include/port_after.h b/contrib/bind/port/freebsd/include/port_after.h
deleted file mode 100644
index b1609dd5f78e6..0000000000000
--- a/contrib/bind/port/freebsd/include/port_after.h
+++ /dev/null
@@ -1,74 +0,0 @@
-#ifndef	PORT_AFTER_H
-#define	PORT_AFTER_H
-#define USE_POSIX
-#define POSIX_SIGNALS
-#define USE_UTIME
-#define USE_WAITPID
-#define HAVE_GETRUSAGE
-#define HAVE_FCHMOD
-#define NEED_PSELECT
-#define HAVE_SA_LEN
-#define HAVE_MINIMUM_IFREQ
-#define USE_LOG_CONS
-#define HAVE_CHROOT
-#define CAN_CHANGE_ID
-#define MISSING_IN6ADDR_ANY
-
-#define _TIMEZONE timezone
-
-#define PORT_NONBLOCK	O_NONBLOCK
-#define PORT_WOULDBLK	EWOULDBLOCK
-#define WAIT_T		int
-#define KSYMS		"/kernel"
-#define KMEM		"/dev/kmem"
-#define UDPSUM		"udpcksum"
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <sys/param.h>
-#if (!defined(BSD)) || (BSD < 199306)
-#include <sys/bitypes.h>
-#endif
-
-/*
- * We need to know the IPv6 address family number even on IPv4-only systems.
- * Note that this is NOT a protocol constant, and that if the system has its
- * own AF_INET6, different from ours below, all of BIND's libraries and
- * executables will need to be recompiled after the system <sys/socket.h>
- * has had this type added.  The type number below is correct on most BSD-
- * derived systems for which AF_INET6 is defined.
- */
-#ifndef AF_INET6
-#define AF_INET6	24
-#else
-#define HAS_INET6_STRUCTS
-#define HAVE_SA_LEN
-#endif
-
-#ifndef	PF_INET6
-#define PF_INET6	AF_INET6
-#endif
-
-#include <port_ipv6.h>
-
-#ifndef HAS_INET6_STRUCTS
-/* Replace with structure from later rev of O/S if known. */
-struct in6_addr {
-	u_int8_t	s6_addr[16];
-};
-
-/* Replace with structure from later rev of O/S if known. */
-struct sockaddr_in6 {
-#ifdef	HAVE_SA_LEN
-	u_int8_t	sin6_len;	/* length of this struct */
-	u_int8_t	sin6_family;	/* AF_INET6 */
-#else
-	u_int16_t	sin6_family;	/* AF_INET6 */
-#endif
-	u_int16_t	sin6_port;	/* transport layer port # */
-	u_int32_t	sin6_flowinfo;	/* IPv6 flow information */
-	struct in6_addr	sin6_addr;	/* IPv6 address */
-	u_int32_t	sin6_scope_id;	/* set of interfaces for a scope */
-};
-#endif	/* HAS_INET6_STRUCTS */
-#endif /* ! PORT_AFTER_H */
diff --git a/contrib/bind/port/freebsd/include/port_before.h b/contrib/bind/port/freebsd/include/port_before.h
deleted file mode 100644
index 279165240d95b..0000000000000
--- a/contrib/bind/port/freebsd/include/port_before.h
+++ /dev/null
@@ -1,103 +0,0 @@
-#define WANT_IRS_NIS
-#define WANT_IRS_PW
-#define WANT_IRS_GR
-#define SIG_FN void
-#define HAS_PTHREADS
-#define ts_sec tv_sec
-#define ts_nsec tv_nsec
-
-#if defined(HAS_PTHREADS) && defined(_REENTRANT)
-#define DO_PTHREADS
-#endif
-
-#if defined (__FreeBSD__) && __FreeBSD__>=3
-#define SETPWENT_VOID
-#endif
-
-#include <sys/types.h>
-
-#define GROUP_R_RETURN struct group *
-#define GROUP_R_SET_RETURN void
-#undef GROUP_R_SET_RESULT /*empty*/
-#define GROUP_R_END_RETURN void
-#define GROUP_R_END_RESULT(x) /*empty*/
-#define GROUP_R_ARGS char *buf, int buflen
-#undef GROUP_R_ENT_ARGS /*empty*/
-#define GROUP_R_OK gptr
-#define GROUP_R_BAD NULL
-
-#define HOST_R_RETURN struct hostent *
-#define HOST_R_SET_RETURN void
-#undef HOST_R_SET_RESULT /*empty*/
-#define HOST_R_END_RETURN void
-#define HOST_R_END_RESULT(x) /*empty*/
-#define HOST_R_ARGS char *buf, int buflen, int *h_errnop
-#undef HOST_R_ENT_ARGS /*empty*/
-#define HOST_R_COPY buf, buflen
-#define HOST_R_COPY_ARGS char *buf, int buflen
-#define HOST_R_ERRNO *h_errnop = h_errno
-#define HOST_R_OK hptr
-#define HOST_R_BAD NULL
-
-#define NET_R_RETURN struct netent *
-#define NET_R_SET_RETURN void
-#undef NET_R_SET_RESULT /*empty*/
-#define NET_R_END_RETURN void
-#define NET_R_END_RESULT(x) /*empty*/
-#define NET_R_ARGS char *buf, int buflen
-#undef NET_R_ENT_ARGS /*empty*/
-#define NET_R_COPY buf, buflen
-#define NET_R_COPY_ARGS NET_R_ARGS
-#define NET_R_OK nptr
-#define NET_R_BAD NULL
-
-#define NGR_R_RETURN int
-#define NGR_R_SET_RETURN void
-#undef NGR_R_SET_RESULT /*empty*/
-#define NGR_R_END_RETURN void
-#undef NGR_R_END_RESULT  /*empty*/
-#define NGR_R_ARGS char *buf, int buflen
-#undef NGR_R_ENT_ARGS /*empty*/
-#define NGR_R_COPY buf, buflen
-#define NGR_R_COPY_ARGS NGR_R_ARGS
-#define NGR_R_OK 1
-#define NGR_R_BAD (0)
-
-#define PROTO_R_RETURN struct protoent *
-#define PROTO_R_SET_RETURN void
-#undef PROTO_R_SET_RESULT /*empty*/
-#define PROTO_R_END_RETURN void
-#define PROTO_R_END_RESULT(x) /*empty*/
-#define PROTO_R_ARGS char *buf, int buflen
-#undef PROTO_R_ENT_ARGS /*empty*/
-#define PROTO_R_COPY buf, buflen
-#define PROTO_R_COPY_ARGS PROTO_R_ARGS
-#define PROTO_R_OK pptr
-#define PROTO_R_BAD NULL
-
-#define PASS_R_RETURN struct passwd *
-#define PASS_R_SET_RETURN void
-#undef PASS_R_SET_RESULT /*empty*/
-#define PASS_R_END_RETURN void
-#define PASS_R_END_RESULT(x) /*empty*/
-#define PASS_R_ARGS char *buf, int buflen
-#undef PASS_R_ENT_ARGS /*empty*/
-#define PASS_R_COPY buf, buflen
-#define PASS_R_COPY_ARGS PASS_R_ARGS
-#define PASS_R_OK pwptr
-#define PASS_R_BAD NULL
-
-#define SERV_R_RETURN struct servent *
-#define SERV_R_SET_RETURN void
-#undef SERV_R_SET_RESULT /*empty*/
-#define SERV_R_END_RETURN void
-#define SERV_R_END_RESULT(x) /*empty*/
-#define SERV_R_ARGS char *buf, int buflen
-#undef SERV_R_ENT_ARGS /*empty*/
-#define SERV_R_COPY buf, buflen
-#define SERV_R_COPY_ARGS SERV_R_ARGS
-#define SERV_R_OK sptr
-#define SERV_R_BAD NULL
-
-#define IRS_LCL_SV_DB
-
diff --git a/contrib/bind/port/freebsd/include/prand_conf.h b/contrib/bind/port/freebsd/include/prand_conf.h
deleted file mode 100644
index 72442822ab4ce..0000000000000
--- a/contrib/bind/port/freebsd/include/prand_conf.h
+++ /dev/null
@@ -1,43 +0,0 @@
-#ifndef _PRAND_CMD_H_
-#define _PRAND_CMD_H_
-
-
-#ifndef HAVE_DEV_RANDOM
- # define HAVE_DEV_RANDOM 1
- #endif /* HAVE_DEV_RANDOM */
-
-const char *cmds[] = {
-	"/bin/ps -axlw 2>&1",
-	"/usr/sbin/arp -an 2>&1",
-	"/usr/bin/netstat -an 2>&1",
-	"/bin/df  2>&1",
-	"/usr/bin/dig com. soa +ti=1 +retry=0 2>&1",
-	"/usr/bin/netstat -an 2>&1",
-	"/usr/bin/dig . soa +ti=1 +retry=0 2>&1",
-	"/usr/sbin/iostat  2>&1",
-	"/usr/bin/vmstat  2>&1",
-	"/usr/bin/w  2>&1",
-	NULL
-};
-
-const char *dirs[] = {
-	"/tmp",
-	"/usr/tmp",
-	".",
-	"/",
-	"/var/spool",
-	"/dev",
-	"/var/mail",
-	"/home",
-	"/usr/home",
-	NULL
-};
-
-const char *files[] = {
-	"/var/log/messages",
-	"/var/log/wtmp",
-	"/var/log/lastlog",
-	NULL
-};
-
-#endif /* _PRAND_CMD_H_ */
diff --git a/contrib/bind/port/freebsd/include/sys/Makefile b/contrib/bind/port/freebsd/include/sys/Makefile
deleted file mode 100644
index ad7751c86997b..0000000000000
--- a/contrib/bind/port/freebsd/include/sys/Makefile
+++ /dev/null
@@ -1,77 +0,0 @@
-# ++Copyright++
-# -
-# Copyright (c) 
-#    The Regents of the University of California.  All rights reserved.
-# 
-# Redistribution and use in source and binary forms, with or without
-# modification, are permitted provided that the following conditions
-# are met:
-# 1. Redistributions of source code must retain the above copyright
-#    notice, this list of conditions and the following disclaimer.
-# 2. Redistributions in binary form must reproduce the above copyright
-#    notice, this list of conditions and the following disclaimer in the
-#    documentation and/or other materials provided with the distribution.
-# 3. All advertising materials mentioning features or use of this software
-#    must display the following acknowledgement:
-# 	This product includes software developed by the University of
-# 	California, Berkeley and its contributors.
-# 4. Neither the name of the University nor the names of its contributors
-#    may be used to endorse or promote products derived from this software
-#    without specific prior written permission.
-# 
-# THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-# ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-# SUCH DAMAGE.
-# -
-# Portions Copyright (c) 1993 by Digital Equipment Corporation.
-# 
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies, and that
-# the name of Digital Equipment Corporation not be used in advertising or
-# publicity pertaining to distribution of the document or software without
-# specific, written prior permission.
-# 
-# THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-# WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-# CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-# -
-# --Copyright--
-
-HFILES= bitypes.h cdefs.h
-
-DESTDIR=
-DESTINC= /usr/local/bind/include
-
-all depend:
-
-distclean: clean
-
-clean:
-	rm -f *~ *.BAK *.CKP *.orig time.h stat.h
-
-links:
-	@set -e; ln -s SRC/*.h .
-
-install: ${DESTDIR}${DESTINC}/sys
-	for x in ${HFILES}; do \
-		if [ -f $$x ]; then \
-			${INSTALL} -c -m 444 $$x ${DESTDIR}${DESTINC}/sys/$$x;\
-		fi; \
-	done
-
-${DESTDIR}${DESTINC}/sys:
-	mkdir -p ${DESTDIR}${DESTINC}/sys
diff --git a/contrib/bind/port/freebsd/include/sys/bitypes.h b/contrib/bind/port/freebsd/include/sys/bitypes.h
deleted file mode 100644
index 361156af21e68..0000000000000
--- a/contrib/bind/port/freebsd/include/sys/bitypes.h
+++ /dev/null
@@ -1,37 +0,0 @@
-/*
- * Copyright (c) 1996,1999 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#ifndef __BIT_TYPES_DEFINED__
-#define __BIT_TYPES_DEFINED__
-
-	/*
-	 * Basic integral types.  Omit the typedef if
-	 * not possible for a machine/compiler combination.
-	 */
-	typedef /*signed*/ char            int8_t;
-	typedef unsigned char            u_int8_t;
-	typedef short                     int16_t;
-	typedef unsigned short          u_int16_t;
-	typedef int                       int32_t;
-	typedef unsigned int            u_int32_t;
-
-# if 0	/* don't fight with these unless you need them */
-	typedef long long                 int64_t;
-	typedef unsigned long long      u_int64_t;
-# endif
-
-#endif	/* __BIT_TYPES_DEFINED__ */
diff --git a/contrib/bind/port/freebsd/noop.c b/contrib/bind/port/freebsd/noop.c
deleted file mode 100644
index f8eb9f45e4c2e..0000000000000
--- a/contrib/bind/port/freebsd/noop.c
+++ /dev/null
@@ -1,4 +0,0 @@
-static void
-noop() {
-	/* NOOP */
-}
diff --git a/contrib/bind/port/freebsd/probe b/contrib/bind/port/freebsd/probe
deleted file mode 100755
index d1b0cfe6b1e18..0000000000000
--- a/contrib/bind/port/freebsd/probe
+++ /dev/null
@@ -1,11 +0,0 @@
-#!/bin/sh
-
-uname=/usr/bin/uname
-
-if [ -f $uname ]; then
-	case `$uname -s` in
-	FreeBSD) exit 0 ;;
-	esac
-fi
-
-exit 1
diff --git a/contrib/bind/port/prand_conf/Makefile b/contrib/bind/port/prand_conf/Makefile
deleted file mode 100644
index d8a1fdcb2dd99..0000000000000
--- a/contrib/bind/port/prand_conf/Makefile
+++ /dev/null
@@ -1,100 +0,0 @@
-# ++Copyright++
-# -
-# Copyright (c) 
-#    The Regents of the University of California.  All rights reserved.
-# 
-# Redistribution and use in source and binary forms, with or without
-# modification, are permitted provided that the following conditions
-# are met:
-# 1. Redistributions of source code must retain the above copyright
-#    notice, this list of conditions and the following disclaimer.
-# 2. Redistributions in binary form must reproduce the above copyright
-#    notice, this list of conditions and the following disclaimer in the
-#    documentation and/or other materials provided with the distribution.
-# 3. All advertising materials mentioning features or use of this software
-#    must display the following acknowledgement:
-# 	This product includes software developed by the University of
-# 	California, Berkeley and its contributors.
-# 4. Neither the name of the University nor the names of its contributors
-#    may be used to endorse or promote products derived from this software
-#    without specific prior written permission.
-# 
-# THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-# ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-# SUCH DAMAGE.
-# -
-# Portions Copyright (c) 1993 by Digital Equipment Corporation.
-# 
-# Permission to use, copy, modify, and distribute this software for any
-# purpose with or without fee is hereby granted, provided that the above
-# copyright notice and this permission notice appear in all copies, and that
-# the name of Digital Equipment Corporation not be used in advertising or
-# publicity pertaining to distribution of the document or software without
-# specific, written prior permission.
-# 
-# THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-# WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-# OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-# CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-# DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-# PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-# ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-# SOFTWARE.
-# -
-# --Copyright--
-
-SUBDIRS = 
-# Ensure that HFILES isn't empty to keep bash happy
-HFILES = 
-
-DESTDIR=
-DESTINC= /usr/local/bind/include
-INSTALL= install
-SYSTYPE= unknown
-
-MARGS= DESTDIR="${DESTDIR}" DESTINC="${DESTINC}" INSTALL="${INSTALL}"
-
-all depend clean distclean install::
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} $@); \
-	done
-
-prand_conf.h: prand_conf.c 
-	$(CC) prand_conf.c -o prand_conf
-	./prand_conf
-	rm -f prand_conf
-	cp prand_conf.h prand_conf.h.${SYSTYPE}
-distclean:: clean
-
-clean::
-	rm -f *~ *.BAK *.CKP *.orig *.h a.out
-
-links: FRC
-	@set -e; ln -s SRC/*.h .
-	@set -e; for x in ${SUBDIRS}; do \
-		( mkdir $$x; cd $$x; pwd; ln -s ../SRC/$$x SRC; \
-		cp SRC/Makefile Makefile; chmod +w Makefile; \
-		${MAKE} ${MARGS} links ); \
-	done
-
-install:: ${DESTDIR}${DESTINC}
-	-for x in ${HFILES}; do \
-	    if [ -f "$$x" ]; then \
-		${INSTALL} -c -m 444 $$x ${DESTDIR}${DESTINC}/$$x; \
-	    fi; \
-	done
-
-${DESTDIR}${DESTINC}:
-	mkdir -p ${DESTDIR}${DESTINC}
-
-FRC:
-
-
diff --git a/contrib/bind/port/prand_conf/README b/contrib/bind/port/prand_conf/README
deleted file mode 100644
index 5f7728d64a2b9..0000000000000
--- a/contrib/bind/port/prand_conf/README
+++ /dev/null
@@ -1,8 +0,0 @@
-this is a utility used to build prand_conf.h on new ports.
-
-To run you can either compile the program prand_conf.c with 
-cc prand_conf.c -o prand_conf		# add -posix on NeXTstep systems
-./prand_conf 
-
-both programs create a file prand_conf.h,
-copy this file to the appropriate port/<os>/include directory
diff --git a/contrib/bind/port/prand_conf/prand_conf.c b/contrib/bind/port/prand_conf/prand_conf.c
deleted file mode 100644
index 5f9bf29410d7b..0000000000000
--- a/contrib/bind/port/prand_conf/prand_conf.c
+++ /dev/null
@@ -1,217 +0,0 @@
-/* $Id: prand_conf.c,v 1.5 1999/07/31 16:44:13 cyarnell Exp $
- *
- * Portions Copyright (c) 1995-1998 by TIS Labs at Network Assoociates Inc.
- * Portions Copyright (c) 1998-1998 by TIS Labs @ Network Associates Inc.
- *
- * Permission to use, copy modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND NETWORK ASSOCIATES
- * DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.  IN NO EVENT SHALL
- * TRUSTED INFORMATION SYSTEMS BE LIABLE FOR ANY SPECIAL, DIRECT,
- * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- * FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- * NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- * WITH THE USE OR PERFORMANCE OF THE SOFTWARE.
- *
- * program to find where system commands reside 
- * and what directores are avialable for inspection 
- * this information is stored in the file prand_conf.h in current directory
- *
- * function my_find get variable number of arguments
- * the first argument is the name of the command 
- * all remaining arguments are list of directories to search for the command in
- * this function returns the path to the command
- */
-
-#include <sys/stat.h>
-#include <unistd.h>
-#include <time.h>
-#include <stdio.h>
-#include <string.h>
-#include <errno.h>
-
-#define LINE_MAX 256
-
-int 
-my_find(char *cmd, char **dir)
-{
-	int curr = 0, c_len, i;
-	char cmd_line[LINE_MAX];
-	
-	memset(cmd_line, 0, sizeof(cmd_line));
-	c_len = strlen(cmd);
-	for (i = 0; dir[i]; i++) {
-		curr = strlen(dir[i]);
-		if (curr + c_len < sizeof(cmd_line)-3) {
-			sprintf(cmd_line, "%s%s",dir[i], cmd);
-			if (access(cmd_line, X_OK) == 0) 
-				return (i);
-			memset(cmd_line, 0, c_len + curr + 2);
-		}
-	}
-	return (0);
-}
-
-/* 
- * function to simulate the ` ` operator in perl  return the number
- * of bytes read from the pipe 
- */
-int
-pipe_run(char *cmd_line)
-{
-	FILE *pd;
-	char scratch[LINE_MAX];
-	int ex, no_bytes = 0, no = 1;
-
-	pd = popen(cmd_line, "r");
-	for (; (pd != NULL) && (no > 0); no_bytes += no) 
-		no = fread(scratch, sizeof(char), sizeof(scratch), pd);
-	ex = pclose(pd);
-	return (no_bytes);
-}
-
-/*
- * function that executes a command with certain flags and checks that the
- * output is at least certain length
- * First parameter the command 
- * Second parameter is ther flags 
- * third parameter is the number of bytes required 
- * output is 1 if the command works 0 if not 
- * This function writes to the include file if
- */
-int 
-ex(FILE *fd, char *path, char *cmd, char *arg, int lower_bound)
-{
-	char line[LINE_MAX];
-
-	if (strlen(path) + strlen(cmd) + strlen(arg) < sizeof(line)-7) { 
-		memset(line, 0, sizeof(line));
-		sprintf(line, "%s%s %s 2>&1", path, cmd, arg);
-		if (pipe_run(line) > lower_bound) {
-			fprintf(fd,"\t\"%s\",\n", line);
-			return (1);
-		}
-	}
-	return (0);
-}
-
-int 
-main() 
-{
-	extern int errno;
-	FILE *fd;
-	int res, vm, i;
-	int ps, arp, net, dig, cmd;
-/*
- * set up list of directories where each command may be found in 
- */
-	char *arp_path[] = {"/usr/sbin", "/sbin", "/usr/etc/", "/etc/", 
-			   "/usr/bin/", NULL};
-	char *ps_path[] = {"/usr/bin", "/bin/", NULL};
-	char *net_path[]  = {"/usr/ucb/", "/usr/bin/", "/usr/etc/", 
-			     "/usr/sbin/", "/bin/", NULL};
-	char *dig_path[] = {"/usr/bin/", "/usr/local/bin/", NULL};
-	char **df_path  = ps_path;
-	char *uptime_path[] = {"/usr/ucb/", "/usr/bin/", "/usr/bsd/", NULL};
-	char *iostat_path[] = { "/usr/bin/", "/bin/", "/usr/sbin/", NULL};
-	char *vmstat_path[] = {"/usr/ucb/", "/usr/bin/", "/usr/sbin/", NULL};
-	char *vm_stat_path[] = {"/usr/ucb/", "/usr/bin/", NULL};
-	char **w_path = uptime_path;
-
-/* find which directories exist  */
-	char *dirs[] = {"/tmp", "/usr/tmp", "/var/tmp", ".", "/",  
-			"/var/spool", "/usr/spool", 
-			"/usr/adm", "/var/adm", "/dev", 
-			"/usr/mail", "/var/spool/mail", "/var/mail", 
-			"/home", "/usr/home", NULL};
-
-	char *files[] = {"/proc/stat", "/proc/rtc", "/proc/meminfo", 
-			 "/proc/interrupts",  "/proc/self/status", 
-			 "/proc/self/maps", 
-			 "/var/log/messages", "/var/log/wtmp", 
-			 "/var/log/lastlog", "/var/adm/messages", 
-			 "/var/adm/wtmp", "/var/adm/lastlog", NULL};
-
-	struct stat st;
-	time_t tim;
-/* main program: */
-
-	if ((fd = fopen("prand_conf.h", "w")) == NULL) {
-		perror("Failed creating file prand_conf.h");
-		exit(errno);
-	}
-
-	fprintf(fd, "#ifndef _PRAND_CMD_H_\n#define _PRAND_CMD_H_\n\n");
-
-	fprintf(fd, "const char *cmds[] = {\n");
-       
-	if ((ps = my_find("ps", ps_path)) >= 0)
-		res = ex(fd, ps_path[ps], "ps","-axlw", 460) || 
-			ex(fd, ps_path[ps], "ps", "-ef", 300) || 
-				ex(fd, ps_path[ps], "ps", "-ale", 300);
-
-	if ((arp = my_find("arp", arp_path)) >= 0) 
-	    res = ex(fd, arp_path[arp], "arp", "-n -a", 40);
-
-	if ((net = my_find("netstat", net_path)) >= 0)
-		res = ex(fd, net_path[net], "netstat", "-an", 1000);
-	if ((cmd = my_find("df", df_path)) >= 0)
-		res = ex(fd, df_path[cmd], "df", "", 40);
-
-	if ((dig = my_find("dig", dig_path)) >= 0)
-		res = ex(fd, dig_path[dig], "dig", "com. soa +ti=1 +retry=0", 
-			 100);
-	if ((cmd = my_find("uptime", uptime_path)) >= 0)
-	     res = ex(fd, uptime_path[cmd], "uptime", "", 40);
-	if ((cmd = my_find("printenv", uptime_path)) >= 0)
-	     res = ex(fd, uptime_path[cmd], "printenv", "", 400);
-	if (net >= 0)
-		res = ex(fd, net_path[net], "netstat", "-s", 1000);
-
-	if (dig >= 0)
-		res = ex(fd, net_path[net], "dig", ". soa +ti=1 +retry=0",100);
-	if ((cmd = my_find("iostat", iostat_path)) >= 0)
-		res = ex(fd, iostat_path[cmd], "iostat", "", 100);
-
-	vm  = 0;
-	if ((cmd = my_find("vmstat", vmstat_path)))
-		vm = ex(fd, vmstat_path[cmd], "vmstat", "", 200);
-	if (vm ==0 && ((cmd = my_find("vm_stat", vm_stat_path)) >= 0))
-	    vm = ex(fd, vm_stat_path[cmd], "vm_stat", "", 200);
-	if ((cmd = my_find("w", w_path)))
-		res = ex(fd, w_path[cmd], "w", "", 100);
-	fprintf(fd,"\tNULL\n};\n\n");
-
-	fprintf(fd, "const char *dirs[] = {\n");
-
-	for (i=0; dirs[i]; i++) { 
-		if (lstat(dirs[i], &st) == 0) 
-			if (S_ISDIR(st.st_mode))
-				fprintf(fd,"\t\"%s\",\n", dirs[i]);
-	}
-	fprintf(fd,"\tNULL\n};\n\n");
-
-
-	fprintf(fd, "const char *files[] = {\n");
-	tim = time(NULL);
-	for (i=0; files[i]; i++) {
-		if (lstat(files[i],&st) == 0)
-			if (S_ISREG(st.st_mode) && 
-			    (tim -st.st_mtime) < 84600) 
-				fprintf(fd,"\t\"%s\",\n", files[i]);
-	}
-	fprintf (fd, "\tNULL\n};\n");
-		
-	if ((stat("/dev/random", &st) == 0))
-		if (S_ISCHR(st.st_mode))
-			fprintf(fd, "\n#ifndef HAVE_DEV_RANDOM\n%s%s",
-				"# define HAVE_DEV_RANDOM 1\n",
-				"#endif /* HAVE_DEV_RANDOM */\n\n");
-
-	fprintf(fd, "\n#endif /* _PRAND_CMD_H_ */\n");
-	fclose(fd);
-	exit (0);
-}
diff --git a/contrib/bind/port/settings b/contrib/bind/port/settings
deleted file mode 100755
index 539faf21f3b7c..0000000000000
--- a/contrib/bind/port/settings
+++ /dev/null
@@ -1,39 +0,0 @@
-#!/bin/sh
-
-# this process is necessary because make(1) puts its command line into
-# the environment, and when we exec a sub-make we need these command
-# line settings (like CDEBUG=-g for example) to override what we get out
-# of port/$systype/Makefile.set.  therefore feed Makefile.set to this
-# and it will merge things appropriately.  a cache file is maintained
-# to avoid calling this script way too often.
-
-cachefile=${1-//}
-if [ -f "$cachefile" ]; then
-	echo "Using $cachefile" >&2
-	exec cat $cachefile
-fi
-
-case $cachefile in
-//) ;;
-*)   echo "Making $cachefile" >&2 ;;
-esac
-
-# expr is sensitive to LC_COLLATE settings.  We want 'C'.
-LC_COLLATE=C
-export LC_COLLATE
-
-result=''
-while read setting; do
-	var=`expr "$setting" : "'\([A-Z0-9_]*\)="`
-	val=`expr "$setting" : "'[A-Z0-9_]*=\([^']*\)'\$"`
-	eval "env=`echo \\${\$var-'$val'}`"
-	result="$result '$var=$env'"
-done
-
-case $cachefile in
-//) echo $result ;;
-*)  echo $result > $cachefile
-    exec cat $cachefile ;;
-esac
-
-exit
diff --git a/contrib/bind/port/systype b/contrib/bind/port/systype
deleted file mode 100755
index b022651e4e741..0000000000000
--- a/contrib/bind/port/systype
+++ /dev/null
@@ -1,31 +0,0 @@
-#!/bin/sh
-
-cachefile=${1-//}
-
-if [ -f $cachefile ]; then
-	echo "Using $cachefile" >&2
-	exec cat $cachefile
-fi
-
-case $cachefile in
-/*) ;;
-*) cachefile=`pwd`/$cachefile ;;
-esac
-
-cd `dirname $0`
-for systype in [a-z]*; do
-	if [ -f $systype/probe ]; then
-		if sh $systype/probe; then
-			case $cachefile in
-			//)	;;
-			*) 	echo "Making $cachefile" >&2
-				echo $systype > $cachefile
-				;;
-			esac
-			exec echo $systype
-		fi
-	fi
-done
-
-echo unknown
-exit 0
diff --git a/contrib/bind/res/Makefile b/contrib/bind/res/Makefile
deleted file mode 100644
index 834d74a9c31d1..0000000000000
--- a/contrib/bind/res/Makefile
+++ /dev/null
@@ -1,114 +0,0 @@
-#
-#	from @(#)Makefile	5.16 (Berkeley) 3/14/88
-#	$Id: Makefile,v 8.14 1997/06/01 20:34:37 vixie Exp $
-#
-
-## ++Copyright++ 1988, 1995
-## -
-## Copyright (c) 1988, 1995
-##    The Regents of the University of California.  All rights reserved.
-## 
-## Redistribution and use in source and binary forms, with or without
-## modification, are permitted provided that the following conditions
-## are met:
-## 1. Redistributions of source code must retain the above copyright
-##    notice, this list of conditions and the following disclaimer.
-## 2. Redistributions in binary form must reproduce the above copyright
-##    notice, this list of conditions and the following disclaimer in the
-##    documentation and/or other materials provided with the distribution.
-## 3. All advertising materials mentioning features or use of this software
-##    must display the following acknowledgement:
-## 	This product includes software developed by the University of
-## 	California, Berkeley and its contributors.
-## 4. Neither the name of the University nor the names of its contributors
-##    may be used to endorse or promote products derived from this software
-##    without specific prior written permission.
-## 
-## THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-## ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-## IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-## ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-## FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-## DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-## OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-## HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-## LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-## OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-## SUCH DAMAGE.
-## -
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-## -
-## --Copyright--
-
-DESTDIR =
-DESTLIB = /usr/lib
-CC= cc
-SHELL= /bin/sh
-CDEBUG= -g
-INCL = ../include
-COMPINCL = ../compat/include
-AR= ar cru
-RANLIB= ranlib
-DEFS=	
-LOCDEFS= -DUSE_OPTIONS_H
-INSTALL= install
-
-AROBJS= ${ARPREF} ${OBJS} ${ARSUFF}
-
-CFLAGS=	${CDEBUG} -I${INCL} -I${COMPINCL} ${DEFS} ${LOCDEFS}
-
-SRCS=	base64.c herror.c res_debug.c res_data.c \
-	res_comp.c res_init.c res_mkquery.c res_query.c res_send.c \
-	getnetbyaddr.c getnetbyname.c getnetent.c getnetnamadr.c \
-	gethnamaddr.c sethostent.c nsap_addr.c hostnamelen.c inet_addr.c \
-	inet_ntop.c inet_neta.c inet_pton.c inet_net_ntop.c inet_net_pton.c
-
-OBJS=	base64.o herror.o res_debug.o res_data.o \
-	res_comp.o res_init.o res_mkquery.o res_query.o res_send.o \
-	getnetbyaddr.o getnetbyname.o getnetent.o getnetnamadr.o \
-	gethnamaddr.o sethostent.o nsap_addr.o hostnamelen.o inet_addr.o \
-	inet_ntop.o inet_neta.o inet_pton.o inet_net_ntop.o inet_net_pton.o
-
-all: libresolv.a
-
-libresolv.a: ${OBJS}
-	${AR} libresolv.a ${AROBJS}
-	$(RANLIB) libresolv.a
-
-install: ${DESTDIR}${DESTLIB}/libresolv.a
-
-${DESTDIR}${DESTLIB}/libresolv.a: libresolv.a
-	${INSTALL} -c -o bin -g bin -m 644 libresolv.a ${DESTDIR}${DESTLIB}/
-	( cd ${DESTDIR}${DESTLIB} ; $(RANLIB) libresolv.a )
-
-.c.o:
-	${CC} ${CFLAGS} -c $*.c
-	-${LDS} ld -x -r $*.o && ${LDS} mv a.out $*.o
-
-clean: FRC
-	rm -f errs a.out core libresolv.a tags .depend
-	rm -f *.o *.BAK *.CKP *~ *.orig
-
-depend: FRC
-	mkdep ${CPPFLAGS} -I${INCL} -I${COMPINCL} ${DEFS} ${SRCS}
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/res/base64.c b/contrib/bind/res/base64.c
deleted file mode 100644
index 868826a777dc3..0000000000000
--- a/contrib/bind/res/base64.c
+++ /dev/null
@@ -1,321 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#if defined(BSD) && (BSD >= 199103) && defined(AF_INET6)
-# include <stdlib.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-#define Assert(Cond) if (!(Cond)) abort()
-
-static const char Base64[] =
-	"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
-static const char Pad64 = '=';
-
-/* (From RFC1521 and draft-ietf-dnssec-secext-03.txt)
-   The following encoding technique is taken from RFC 1521 by Borenstein
-   and Freed.  It is reproduced here in a slightly edited form for
-   convenience.
-
-   A 65-character subset of US-ASCII is used, enabling 6 bits to be
-   represented per printable character. (The extra 65th character, "=",
-   is used to signify a special processing function.)
-
-   The encoding process represents 24-bit groups of input bits as output
-   strings of 4 encoded characters. Proceeding from left to right, a
-   24-bit input group is formed by concatenating 3 8-bit input groups.
-   These 24 bits are then treated as 4 concatenated 6-bit groups, each
-   of which is translated into a single digit in the base64 alphabet.
-
-   Each 6-bit group is used as an index into an array of 64 printable
-   characters. The character referenced by the index is placed in the
-   output string.
-
-                         Table 1: The Base64 Alphabet
-
-      Value Encoding  Value Encoding  Value Encoding  Value Encoding
-          0 A            17 R            34 i            51 z
-          1 B            18 S            35 j            52 0
-          2 C            19 T            36 k            53 1
-          3 D            20 U            37 l            54 2
-          4 E            21 V            38 m            55 3
-          5 F            22 W            39 n            56 4
-          6 G            23 X            40 o            57 5
-          7 H            24 Y            41 p            58 6
-          8 I            25 Z            42 q            59 7
-          9 J            26 a            43 r            60 8
-         10 K            27 b            44 s            61 9
-         11 L            28 c            45 t            62 +
-         12 M            29 d            46 u            63 /
-         13 N            30 e            47 v
-         14 O            31 f            48 w         (pad) =
-         15 P            32 g            49 x
-         16 Q            33 h            50 y
-
-   Special processing is performed if fewer than 24 bits are available
-   at the end of the data being encoded.  A full encoding quantum is
-   always completed at the end of a quantity.  When fewer than 24 input
-   bits are available in an input group, zero bits are added (on the
-   right) to form an integral number of 6-bit groups.  Padding at the
-   end of the data is performed using the '=' character.
-
-   Since all base64 input is an integral number of octets, only the
-         -------------------------------------------------                       
-   following cases can arise:
-   
-       (1) the final quantum of encoding input is an integral
-           multiple of 24 bits; here, the final unit of encoded
-	   output will be an integral multiple of 4 characters
-	   with no "=" padding,
-       (2) the final quantum of encoding input is exactly 8 bits;
-           here, the final unit of encoded output will be two
-	   characters followed by two "=" padding characters, or
-       (3) the final quantum of encoding input is exactly 16 bits;
-           here, the final unit of encoded output will be three
-	   characters followed by one "=" padding character.
-   */
-
-int
-b64_ntop(src, srclength, target, targsize)
-	u_char const *src;
-	size_t srclength;
-	char *target;
-	size_t targsize;
-{
-	size_t datalength = 0;
-	u_char input[3];
-	u_char output[4];
-	int i;
-
-	while (2 < srclength) {
-		input[0] = *src++;
-		input[1] = *src++;
-		input[2] = *src++;
-		srclength -= 3;
-
-		output[0] = input[0] >> 2;
-		output[1] = ((input[0] & 0x03) << 4) + (input[1] >> 4);
-		output[2] = ((input[1] & 0x0f) << 2) + (input[2] >> 6);
-		output[3] = input[2] & 0x3f;
-		Assert(output[0] < 64);
-		Assert(output[1] < 64);
-		Assert(output[2] < 64);
-		Assert(output[3] < 64);
-
-		if (datalength + 4 > targsize)
-			return (-1);
-		target[datalength++] = Base64[output[0]];
-		target[datalength++] = Base64[output[1]];
-		target[datalength++] = Base64[output[2]];
-		target[datalength++] = Base64[output[3]];
-	}
-    
-	/* Now we worry about padding. */
-	if (0 != srclength) {
-		/* Get what's left. */
-		input[0] = input[1] = input[2] = '\0';
-		for (i = 0; i < srclength; i++)
-			input[i] = *src++;
-	
-		output[0] = input[0] >> 2;
-		output[1] = ((input[0] & 0x03) << 4) + (input[1] >> 4);
-		output[2] = ((input[1] & 0x0f) << 2) + (input[2] >> 6);
-		Assert(output[0] < 64);
-		Assert(output[1] < 64);
-		Assert(output[2] < 64);
-
-		if (datalength + 4 > targsize)
-			return (-1);
-		target[datalength++] = Base64[output[0]];
-		target[datalength++] = Base64[output[1]];
-		if (srclength == 1)
-			target[datalength++] = Pad64;
-		else
-			target[datalength++] = Base64[output[2]];
-		target[datalength++] = Pad64;
-	}
-	if (datalength >= targsize)
-		return (-1);
-	target[datalength] = '\0';	/* Returned value doesn't count \0. */
-	return (datalength);
-}
-
-/* skips all whitespace anywhere.
-   converts characters, four at a time, starting at (or after)
-   src from base - 64 numbers into three 8 bit bytes in the target area.
-   it returns the number of data bytes stored at the target, or -1 on error.
- */
-
-int
-b64_pton(src, target, targsize)
-	char const *src;
-	u_char *target;
-	size_t targsize;
-{
-	int tarindex, state, ch;
-	char *pos;
-
-	state = 0;
-	tarindex = 0;
-
-	while ((ch = *src++) != '\0') {
-		if (isspace(ch))	/* Skip whitespace anywhere. */
-			continue;
-
-		if (ch == Pad64)
-			break;
-
-		pos = strchr(Base64, ch);
-		if (pos == 0) 		/* A non-base64 character. */
-			return (-1);
-
-		switch (state) {
-		case 0:
-			if (target) {
-				if (tarindex >= targsize)
-					return (-1);
-				target[tarindex] = (pos - Base64) << 2;
-			}
-			state = 1;
-			break;
-		case 1:
-			if (target) {
-				if (tarindex + 1 >= targsize)
-					return (-1);
-				target[tarindex]   |=  (pos - Base64) >> 4;
-				target[tarindex+1]  = ((pos - Base64) & 0x0f)
-							<< 4 ;
-			}
-			tarindex++;
-			state = 2;
-			break;
-		case 2:
-			if (target) {
-				if (tarindex + 1 >= targsize)
-					return (-1);
-				target[tarindex]   |=  (pos - Base64) >> 2;
-				target[tarindex+1]  = ((pos - Base64) & 0x03)
-							<< 6;
-			}
-			tarindex++;
-			state = 3;
-			break;
-		case 3:
-			if (target) {
-				if (tarindex >= targsize)
-					return (-1);
-				target[tarindex] |= (pos - Base64);
-			}
-			tarindex++;
-			state = 0;
-			break;
-		default:
-			abort();
-		}
-	}
-
-	/*
-	 * We are done decoding Base-64 chars.  Let's see if we ended
-	 * on a byte boundary, and/or with erroneous trailing characters.
-	 */
-
-	if (ch == Pad64) {		/* We got a pad char. */
-		ch = *src++;		/* Skip it, get next. */
-		switch (state) {
-		case 0:		/* Invalid = in first position */
-		case 1:		/* Invalid = in second position */
-			return (-1);
-
-		case 2:		/* Valid, means one byte of info */
-			/* Skip any number of spaces. */
-			for (NULL; ch != '\0'; ch = *src++)
-				if (!isspace(ch))
-					break;
-			/* Make sure there is another trailing = sign. */
-			if (ch != Pad64)
-				return (-1);
-			ch = *src++;		/* Skip the = */
-			/* Fall through to "single trailing =" case. */
-			/* FALLTHROUGH */
-
-		case 3:		/* Valid, means two bytes of info */
-			/*
-			 * We know this char is an =.  Is there anything but
-			 * whitespace after it?
-			 */
-			for (NULL; ch != '\0'; ch = *src++)
-				if (!isspace(ch))
-					return (-1);
-
-			/*
-			 * Now make sure for cases 2 and 3 that the "extra"
-			 * bits that slopped past the last full byte were
-			 * zeros.  If we don't check them, they become a
-			 * subliminal channel.
-			 */
-			if (target && target[tarindex] != 0)
-				return (-1);
-		}
-	} else {
-		/*
-		 * We ended by seeing the end of the string.  Make sure we
-		 * have no partial bytes lying around.
-		 */
-		if (state != 0)
-			return (-1);
-	}
-
-	return (tarindex);
-}
diff --git a/contrib/bind/res/gethnamaddr.c b/contrib/bind/res/gethnamaddr.c
deleted file mode 100644
index 4ea4d7e75d2e7..0000000000000
--- a/contrib/bind/res/gethnamaddr.c
+++ /dev/null
@@ -1,1008 +0,0 @@
-/*
- * ++Copyright++ 1985, 1988, 1993
- * -
- * Copyright (c) 1985, 1988, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)gethostnamadr.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: gethnamaddr.c,v 8.23 1998/04/07 04:59:46 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <ctype.h>
-#include <errno.h>
-#include <syslog.h>
-
-#ifndef LOG_AUTH
-# define LOG_AUTH 0
-#endif
-
-#define MULTI_PTRS_ARE_ALIASES 1	/* XXX - experimental */
-
-#if defined(BSD) && (BSD >= 199103) && defined(AF_INET6)
-# include <stdlib.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-#if defined(USE_OPTIONS_H)
-# include <../conf/options.h>
-#endif
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-#define	MAXALIASES	35
-#define	MAXADDRS	35
-
-static const char AskedForGot[] =
-			  "gethostby*.getanswer: asked for \"%s\", got \"%s\"";
-
-static char *h_addr_ptrs[MAXADDRS + 1];
-
-static struct hostent host;
-static char *host_aliases[MAXALIASES];
-static char hostbuf[8*1024];
-static u_char host_addr[16];	/* IPv4 or IPv6 */
-static FILE *hostf = NULL;
-static int stayopen = 0;
-
-static void map_v4v6_address __P((const char *src, char *dst));
-static void map_v4v6_hostent __P((struct hostent *hp, char **bp, int *len));
-
-#ifdef RESOLVSORT
-static void addrsort __P((char **, int));
-#endif
-
-#if PACKETSZ > 1024
-#define	MAXPACKET	PACKETSZ
-#else
-#define	MAXPACKET	1024
-#endif
-
-typedef union {
-    HEADER hdr;
-    u_char buf[MAXPACKET];
-} querybuf;
-
-typedef union {
-    int32_t al;
-    char ac;
-} align;
-
-extern int h_errno;
-
-#ifdef DEBUG
-static void
-dprintf(msg, num)
-	char *msg;
-	int num;
-{
-	if (_res.options & RES_DEBUG) {
-		int save = errno;
-
-		printf(msg, num);
-		errno = save;
-	}
-}
-#else
-# define dprintf(msg, num) /*nada*/
-#endif
-
-#define BOUNDED_INCR(x) \
-	do { \
-		cp += x; \
-		if (cp > eom) { \
-			h_errno = NO_RECOVERY; \
-			return (NULL); \
-		} \
-	} while (0)
-
-#define BOUNDS_CHECK(ptr, count) \
-	do { \
-		if ((ptr) + (count) > eom) { \
-			h_errno = NO_RECOVERY; \
-			return (NULL); \
-		} \
-	} while (0)
-
-static struct hostent *
-getanswer(answer, anslen, qname, qtype)
-	const querybuf *answer;
-	int anslen;
-	const char *qname;
-	int qtype;
-{
-	register const HEADER *hp;
-	register const u_char *cp;
-	register int n;
-	const u_char *eom, *erdata;
-	char *bp, **ap, **hap;
-	int type, class, buflen, ancount, qdcount;
-	int haveanswer, had_error;
-	int toobig = 0;
-	char tbuf[MAXDNAME];
-	const char *tname;
-	int (*name_ok) __P((const char *));
-
-	tname = qname;
-	host.h_name = NULL;
-	eom = answer->buf + anslen;
-	switch (qtype) {
-	case T_A:
-	case T_AAAA:
-		name_ok = res_hnok;
-		break;
-	case T_PTR:
-		name_ok = res_dnok;
-		break;
-	default:
-		return (NULL);	/* XXX should be abort(); */
-	}
-	/*
-	 * find first satisfactory answer
-	 */
-	hp = &answer->hdr;
-	ancount = ntohs(hp->ancount);
-	qdcount = ntohs(hp->qdcount);
-	bp = hostbuf;
-	buflen = sizeof hostbuf;
-	cp = answer->buf;
-	BOUNDED_INCR(HFIXEDSZ);
-	if (qdcount != 1) {
-		h_errno = NO_RECOVERY;
-		return (NULL);
-	}
-	n = dn_expand(answer->buf, eom, cp, bp, buflen);
-	if ((n < 0) || !(*name_ok)(bp)) {
-		h_errno = NO_RECOVERY;
-		return (NULL);
-	}
-	BOUNDED_INCR(n + QFIXEDSZ);
-	if (qtype == T_A || qtype == T_AAAA) {
-		/* res_send() has already verified that the query name is the
-		 * same as the one we sent; this just gets the expanded name
-		 * (i.e., with the succeeding search-domain tacked on).
-		 */
-		n = strlen(bp) + 1;		/* for the \0 */
-		if (n >= MAXHOSTNAMELEN) {
-			h_errno = NO_RECOVERY;
-			return (NULL);
-		}
-		host.h_name = bp;
-		bp += n;
-		buflen -= n;
-		/* The qname can be abbreviated, but h_name is now absolute. */
-		qname = host.h_name;
-	}
-	ap = host_aliases;
-	*ap = NULL;
-	host.h_aliases = host_aliases;
-	hap = h_addr_ptrs;
-	*hap = NULL;
-	host.h_addr_list = h_addr_ptrs;
-	haveanswer = 0;
-	had_error = 0;
-	while (ancount-- > 0 && cp < eom && !had_error) {
-		n = dn_expand(answer->buf, eom, cp, bp, buflen);
-		if ((n < 0) || !(*name_ok)(bp)) {
-			had_error++;
-			continue;
-		}
-		cp += n;			/* name */
-		BOUNDS_CHECK(cp, 3 * INT16SZ + INT32SZ);
-		type = _getshort(cp);
- 		cp += INT16SZ;			/* type */
-		class = _getshort(cp);
- 		cp += INT16SZ + INT32SZ;	/* class, TTL */
-		n = _getshort(cp);
-		cp += INT16SZ;			/* len */
-		BOUNDS_CHECK(cp, n);
-		erdata = cp + n;
-		if (class != C_IN) {
-			/* XXX - debug? syslog? */
-			cp += n;
-			continue;		/* XXX - had_error++ ? */
-		}
-		if ((qtype == T_A || qtype == T_AAAA) && type == T_CNAME) {
-			if (ap >= &host_aliases[MAXALIASES-1])
-				continue;
-			n = dn_expand(answer->buf, eom, cp, tbuf, sizeof tbuf);
-			if ((n < 0) || !(*name_ok)(tbuf)) {
-				had_error++;
-				continue;
-			}
-			cp += n;
-			if (cp != erdata) {
-				h_errno = NO_RECOVERY;
-				return (NULL);
-			}
-			/* Store alias. */
-			*ap++ = bp;
-			n = strlen(bp) + 1;	/* for the \0 */
-			if (n >= MAXHOSTNAMELEN) {
-				had_error++;
-				continue;
-			}
-			bp += n;
-			buflen -= n;
-			/* Get canonical name. */
-			n = strlen(tbuf) + 1;	/* for the \0 */
-			if (n > buflen || n >= MAXHOSTNAMELEN) {
-				had_error++;
-				continue;
-			}
-			strcpy(bp, tbuf);
-			host.h_name = bp;
-			bp += n;
-			buflen -= n;
-			continue;
-		}
-		if (qtype == T_PTR && type == T_CNAME) {
-			n = dn_expand(answer->buf, eom, cp, tbuf, sizeof tbuf);
-			if (n < 0 || !res_dnok(tbuf)) {
-				had_error++;
-				continue;
-			}
-			cp += n;
-			if (cp != erdata) {
-				h_errno = NO_RECOVERY;
-				return (NULL);
-			}
-			/* Get canonical name. */
-			n = strlen(tbuf) + 1;	/* for the \0 */
-			if (n > buflen || n >= MAXHOSTNAMELEN) {
-				had_error++;
-				continue;
-			}
-			strcpy(bp, tbuf);
-			tname = bp;
-			bp += n;
-			buflen -= n;
-			continue;
-		}
-		if (type != qtype) {
-			syslog(LOG_NOTICE|LOG_AUTH,
-	       "gethostby*.getanswer: asked for \"%s %s %s\", got type \"%s\"",
-			       qname, p_class(C_IN), p_type(qtype),
-			       p_type(type));
-			cp += n;
-			continue;		/* XXX - had_error++ ? */
-		}
-		switch (type) {
-		case T_PTR:
-			if (strcasecmp(tname, bp) != 0) {
-				syslog(LOG_NOTICE|LOG_AUTH,
-				       AskedForGot, qname, bp);
-				cp += n;
-				continue;	/* XXX - had_error++ ? */
-			}
-			n = dn_expand(answer->buf, eom, cp, bp, buflen);
-			if ((n < 0) || !res_hnok(bp)) {
-				had_error++;
-				break;
-			}
-#if MULTI_PTRS_ARE_ALIASES
-			cp += n;
-			if (cp != erdata) {
-				h_errno = NO_RECOVERY;
-				return (NULL);
-			}
-			if (!haveanswer)
-				host.h_name = bp;
-			else if (ap < &host_aliases[MAXALIASES-1])
-				*ap++ = bp;
-			else
-				n = -1;
-			if (n != -1) {
-				n = strlen(bp) + 1;	/* for the \0 */
-				if (n >= MAXHOSTNAMELEN) {
-					had_error++;
-					break;
-				}
-				bp += n;
-				buflen -= n;
-			}
-			break;
-#else
-			host.h_name = bp;
-			if (_res.options & RES_USE_INET6) {
-				n = strlen(bp) + 1;	/* for the \0 */
-				if (n >= MAXHOSTNAMELEN) {
-					had_error++;
-					break;
-				}
-				bp += n;
-				buflen -= n;
-				map_v4v6_hostent(&host, &bp, &buflen);
-			}
-			h_errno = NETDB_SUCCESS;
-			return (&host);
-#endif
-		case T_A:
-		case T_AAAA:
-			if (strcasecmp(host.h_name, bp) != 0) {
-				syslog(LOG_NOTICE|LOG_AUTH,
-				       AskedForGot, host.h_name, bp);
-				cp += n;
-				continue;	/* XXX - had_error++ ? */
-			}
-			if (n != host.h_length) {
-				cp += n;
-				continue;
-			}
-			if (!haveanswer) {
-				register int nn;
-
-				host.h_name = bp;
-				nn = strlen(bp) + 1;	/* for the \0 */
-				bp += nn;
-				buflen -= nn;
-			}
-
-			bp += sizeof(align) - ((u_long)bp % sizeof(align));
-
-			if (bp + n >= &hostbuf[sizeof hostbuf]) {
-				dprintf("size (%d) too big\n", n);
-				had_error++;
-				continue;
-			}
-			if (hap >= &h_addr_ptrs[MAXADDRS-1]) {
-				if (!toobig++)
-					dprintf("Too many addresses (%d)\n",
-						MAXADDRS);
-				cp += n;
-				continue;
-			}
-			bcopy(cp, *hap++ = bp, n);
-			bp += n;
-			buflen -= n;
-			cp += n;
-			if (cp != erdata) {
-				h_errno = NO_RECOVERY;
-				return (NULL);
-			}
-			break;
-		default:
-			abort();
-		}
-		if (!had_error)
-			haveanswer++;
-	}
-	if (haveanswer) {
-		*ap = NULL;
-		*hap = NULL;
-# if defined(RESOLVSORT)
-		/*
-		 * Note: we sort even if host can take only one address
-		 * in its return structures - should give it the "best"
-		 * address in that case, not some random one
-		 */
-		if (_res.nsort && haveanswer > 1 && qtype == T_A)
-			addrsort(h_addr_ptrs, haveanswer);
-# endif /*RESOLVSORT*/
-		if (!host.h_name) {
-			n = strlen(qname) + 1;	/* for the \0 */
-			if (n > buflen || n >= MAXHOSTNAMELEN)
-				goto no_recovery;
-			strcpy(bp, qname);
-			host.h_name = bp;
-			bp += n;
-			buflen -= n;
-		}
-		if (_res.options & RES_USE_INET6)
-			map_v4v6_hostent(&host, &bp, &buflen);
-		h_errno = NETDB_SUCCESS;
-		return (&host);
-	}
- no_recovery:
-	h_errno = NO_RECOVERY;
-	return (NULL);
-}
-
-struct hostent *
-gethostbyname(name)
-	const char *name;
-{
-	struct hostent *hp;
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-	if (_res.options & RES_USE_INET6) {
-		hp = gethostbyname2(name, AF_INET6);
-		if (hp)
-			return (hp);
-	}
-	return (gethostbyname2(name, AF_INET));
-}
-
-struct hostent *
-gethostbyname2(name, af)
-	const char *name;
-	int af;
-{
-	querybuf buf;
-	register const char *cp;
-	char *bp;
-	int n, size, type, len;
-	extern struct hostent *_gethtbyname2();
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-
-	switch (af) {
-	case AF_INET:
-		size = INADDRSZ;
-		type = T_A;
-		break;
-	case AF_INET6:
-		size = IN6ADDRSZ;
-		type = T_AAAA;
-		break;
-	default:
-		h_errno = NETDB_INTERNAL;
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-
-	host.h_addrtype = af;
-	host.h_length = size;
-
-	/*
-	 * if there aren't any dots, it could be a user-level alias.
-	 * this is also done in res_query() since we are not the only
-	 * function that looks up host names.
-	 */
-	if (!strchr(name, '.') && (cp = __hostalias(name)))
-		name = cp;
-
-	/*
-	 * disallow names consisting only of digits/dots, unless
-	 * they end in a dot.
-	 */
-	if (isdigit(name[0]))
-		for (cp = name;; ++cp) {
-			if (!*cp) {
-				if (*--cp == '.')
-					break;
-				/*
-				 * All-numeric, no dot at the end.
-				 * Fake up a hostent as if we'd actually
-				 * done a lookup.
-				 */
-				if (inet_pton(af, name, host_addr) <= 0) {
-					h_errno = HOST_NOT_FOUND;
-					return (NULL);
-				}
-				strncpy(hostbuf, name, MAXDNAME);
-				hostbuf[MAXDNAME] = '\0';
-				bp = hostbuf + MAXDNAME;
-				len = sizeof hostbuf - MAXDNAME;
-				host.h_name = hostbuf;
-				host.h_aliases = host_aliases;
-				host_aliases[0] = NULL;
-				h_addr_ptrs[0] = (char *)host_addr;
-				h_addr_ptrs[1] = NULL;
-				host.h_addr_list = h_addr_ptrs;
-				if (_res.options & RES_USE_INET6)
-					map_v4v6_hostent(&host, &bp, &len);
-				h_errno = NETDB_SUCCESS;
-				return (&host);
-			}
-			if (!isdigit(*cp) && *cp != '.') 
-				break;
-		}
-	if ((isxdigit(name[0]) && strchr(name, ':') != NULL) ||
-	    name[0] == ':')
-		for (cp = name;; ++cp) {
-			if (!*cp) {
-				if (*--cp == '.')
-					break;
-				/*
-				 * All-IPv6-legal, no dot at the end.
-				 * Fake up a hostent as if we'd actually
-				 * done a lookup.
-				 */
-				if (inet_pton(af, name, host_addr) <= 0) {
-					h_errno = HOST_NOT_FOUND;
-					return (NULL);
-				}
-				strncpy(hostbuf, name, MAXDNAME);
-				hostbuf[MAXDNAME] = '\0';
-				bp = hostbuf + MAXDNAME;
-				len = sizeof hostbuf - MAXDNAME;
-				host.h_name = hostbuf;
-				host.h_aliases = host_aliases;
-				host_aliases[0] = NULL;
-				h_addr_ptrs[0] = (char *)host_addr;
-				h_addr_ptrs[1] = NULL;
-				host.h_addr_list = h_addr_ptrs;
-				h_errno = NETDB_SUCCESS;
-				return (&host);
-			}
-			if (!isxdigit(*cp) && *cp != ':' && *cp != '.') 
-				break;
-		}
-
-	if ((n = res_search(name, C_IN, type, buf.buf, sizeof(buf))) < 0) {
-		dprintf("res_search failed (%d)\n", n);
-		if (errno == ECONNREFUSED)
-			return (_gethtbyname2(name, af));
-		return (NULL);
-	}
-	return (getanswer(&buf, n, name, type));
-}
-
-struct hostent *
-gethostbyaddr(addr, len, af)
-	const char *addr;	/* XXX should have been def'd as u_char! */
-	int len, af;
-{
-	const u_char *uaddr = (const u_char *)addr;
-	static const u_char mapped[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0xff,0xff };
-	static const u_char tunnelled[] = { 0,0, 0,0, 0,0, 0,0, 0,0, 0,0 };
-	int n, size;
-	querybuf buf;
-	register struct hostent *hp;
-	char qbuf[MAXDNAME+1], *qp;
-#ifdef SUNSECURITY
-	register struct hostent *rhp;
-	char **haddr;
-	u_long old_options;
-	char hname2[MAXDNAME+1];
-#endif /*SUNSECURITY*/
-	extern struct hostent *_gethtbyaddr();
-	
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-	if (af == AF_INET6 && len == IN6ADDRSZ &&
-	    (!bcmp(uaddr, mapped, sizeof mapped) ||
-	     !bcmp(uaddr, tunnelled, sizeof tunnelled))) {
-		/* Unmap. */
-		addr += sizeof mapped;
-		uaddr += sizeof mapped;
-		af = AF_INET;
-		len = INADDRSZ;
-	}
-	switch (af) {
-	case AF_INET:
-		size = INADDRSZ;
-		break;
-	case AF_INET6:
-		size = IN6ADDRSZ;
-		break;
-	default:
-		errno = EAFNOSUPPORT;
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-	if (size != len) {
-		errno = EINVAL;
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-	switch (af) {
-	case AF_INET:
-		(void) sprintf(qbuf, "%u.%u.%u.%u.in-addr.arpa",
-			       (uaddr[3] & 0xff),
-			       (uaddr[2] & 0xff),
-			       (uaddr[1] & 0xff),
-			       (uaddr[0] & 0xff));
-		break;
-	case AF_INET6:
-		qp = qbuf;
-		for (n = IN6ADDRSZ - 1; n >= 0; n--) {
-			qp += SPRINTF((qp, "%x.%x.",
-				       uaddr[n] & 0xf,
-				       (uaddr[n] >> 4) & 0xf));
-		}
-		strcpy(qp, "ip6.int");
-		break;
-	default:
-		abort();
-	}
-	n = res_query(qbuf, C_IN, T_PTR, (u_char *)buf.buf, sizeof buf.buf);
-	if (n < 0) {
-		dprintf("res_query failed (%d)\n", n);
-		if (errno == ECONNREFUSED)
-			return (_gethtbyaddr(addr, len, af));
-		return (NULL);
-	}
-	if (!(hp = getanswer(&buf, n, qbuf, T_PTR)))
-		return (NULL);	/* h_errno was set by getanswer() */
-#ifdef SUNSECURITY
-	if (af == AF_INET) {
-	    /*
-	     * turn off search as the name should be absolute,
-	     * 'localhost' should be matched by defnames
-	     */
-	    strncpy(hname2, hp->h_name, MAXDNAME);
-	    hname2[MAXDNAME] = '\0';
-	    old_options = _res.options;
-	    _res.options &= ~RES_DNSRCH;
-	    _res.options |= RES_DEFNAMES;
-	    if (!(rhp = gethostbyname(hname2))) {
-		syslog(LOG_NOTICE|LOG_AUTH,
-		       "gethostbyaddr: No A record for %s (verifying [%s])",
-		       hname2, inet_ntoa(*((struct in_addr *)addr)));
-		_res.options = old_options;
-		h_errno = HOST_NOT_FOUND;
-		return (NULL);
-	    }
-	    _res.options = old_options;
-	    for (haddr = rhp->h_addr_list; *haddr; haddr++)
-		if (!memcmp(*haddr, addr, INADDRSZ))
-			break;
-	    if (!*haddr) {
-		syslog(LOG_NOTICE|LOG_AUTH,
-		       "gethostbyaddr: A record of %s != PTR record [%s]",
-		       hname2, inet_ntoa(*((struct in_addr *)addr)));
-		h_errno = HOST_NOT_FOUND;
-		return (NULL);
-	    }
-	}
-#endif /*SUNSECURITY*/
-	hp->h_addrtype = af;
-	hp->h_length = len;
-	bcopy(addr, host_addr, len);
-	h_addr_ptrs[0] = (char *)host_addr;
-	h_addr_ptrs[1] = NULL;
-	if (af == AF_INET && (_res.options & RES_USE_INET6)) {
-		map_v4v6_address((char*)host_addr, (char*)host_addr);
-		hp->h_addrtype = AF_INET6;
-		hp->h_length = IN6ADDRSZ;
-	}
-	h_errno = NETDB_SUCCESS;
-	return (hp);
-}
-
-void
-_sethtent(f)
-	int f;
-{
-	if (!hostf)
-		hostf = fopen(_PATH_HOSTS, "r" );
-	else
-		rewind(hostf);
-	stayopen = f;
-}
-
-void
-_endhtent()
-{
-	if (hostf && !stayopen) {
-		(void) fclose(hostf);
-		hostf = NULL;
-	}
-}
-
-struct hostent *
-_gethtent()
-{
-	char *p;
-	register char *cp, **q;
-	int af, len;
-
-	if (!hostf && !(hostf = fopen(_PATH_HOSTS, "r" ))) {
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
- again:
-	if (!(p = fgets(hostbuf, sizeof hostbuf, hostf))) {
-		h_errno = HOST_NOT_FOUND;
-		return (NULL);
-	}
-	if (*p == '#')
-		goto again;
-	if (!(cp = strpbrk(p, "#\n")))
-		goto again;
-	*cp = '\0';
-	if (!(cp = strpbrk(p, " \t")))
-		goto again;
-	*cp++ = '\0';
-	if (inet_pton(AF_INET6, p, host_addr) > 0) {
-		af = AF_INET6;
-		len = IN6ADDRSZ;
-	} else if (inet_pton(AF_INET, p, host_addr) > 0) {
-		if (_res.options & RES_USE_INET6) {
-			map_v4v6_address((char*)host_addr, (char*)host_addr);
-			af = AF_INET6;
-			len = IN6ADDRSZ;
-		} else {
-			af = AF_INET;
-			len = INADDRSZ;
-		}
-	} else {
-		goto again;
-	}
-	h_addr_ptrs[0] = (char *)host_addr;
-	h_addr_ptrs[1] = NULL;
-	host.h_addr_list = h_addr_ptrs;
-	host.h_length = len;
-	host.h_addrtype = af;
-	while (*cp == ' ' || *cp == '\t')
-		cp++;
-	host.h_name = cp;
-	q = host.h_aliases = host_aliases;
-	if (cp = strpbrk(cp, " \t"))
-		*cp++ = '\0';
-	while (cp && *cp) {
-		if (*cp == ' ' || *cp == '\t') {
-			cp++;
-			continue;
-		}
-		if (q < &host_aliases[MAXALIASES - 1])
-			*q++ = cp;
-		if (cp = strpbrk(cp, " \t"))
-			*cp++ = '\0';
-	}
-	*q = NULL;
-	h_errno = NETDB_SUCCESS;
-	return (&host);
-}
-
-struct hostent *
-_gethtbyname(name)
-	const char *name;
-{
-	extern struct hostent *_gethtbyname2();
-	struct hostent *hp;
-
-	if (_res.options & RES_USE_INET6) {
-		hp = _gethtbyname2(name, AF_INET6);
-		if (hp)
-			return (hp);
-	}
-	return (_gethtbyname2(name, AF_INET));
-}
-
-struct hostent *
-_gethtbyname2(name, af)
-	const char *name;
-	int af;
-{
-	register struct hostent *p;
-	register char **cp;
-	
-	_sethtent(0);
-	while (p = _gethtent()) {
-		if (p->h_addrtype != af)
-			continue;
-		if (strcasecmp(p->h_name, name) == 0)
-			break;
-		for (cp = p->h_aliases; *cp != 0; cp++)
-			if (strcasecmp(*cp, name) == 0)
-				goto found;
-	}
- found:
-	_endhtent();
-	return (p);
-}
-
-struct hostent *
-_gethtbyaddr(addr, len, af)
-	const char *addr;
-	int len, af;
-{
-	register struct hostent *p;
-
-	_sethtent(0);
-	while (p = _gethtent())
-		if (p->h_addrtype == af && !bcmp(p->h_addr, addr, len))
-			break;
-	_endhtent();
-	return (p);
-}
-
-static void
-map_v4v6_address(src, dst)
-	const char *src;
-	char *dst;
-{
-	u_char *p = (u_char *)dst;
-	char tmp[INADDRSZ];
-	int i;
-
-	/* Stash a temporary copy so our caller can update in place. */
-	bcopy(src, tmp, INADDRSZ);
-	/* Mark this ipv6 addr as a mapped ipv4. */
-	for (i = 0; i < 10; i++)
-		*p++ = 0x00;
-	*p++ = 0xff;
-	*p++ = 0xff;
-	/* Retrieve the saved copy and we're done. */
-	bcopy(tmp, (void*)p, INADDRSZ);
-}
-
-static void
-map_v4v6_hostent(hp, bpp, lenp)
-	struct hostent *hp;
-	char **bpp;
-	int *lenp;
-{
-	char **ap;
-
-	if (hp->h_addrtype != AF_INET || hp->h_length != INADDRSZ)
-		return;
-	hp->h_addrtype = AF_INET6;
-	hp->h_length = IN6ADDRSZ;
-	for (ap = hp->h_addr_list; *ap; ap++) {
-		int i = sizeof(align) - ((u_long)*bpp % sizeof(align));
-
-		if (*lenp < (i + IN6ADDRSZ)) {
-			/* Out of memory.  Truncate address list here.  XXX */
-			*ap = NULL;
-			return;
-		}
-		*bpp += i;
-		*lenp -= i;
-		map_v4v6_address(*ap, *bpp);
-		*ap = *bpp;
-		*bpp += IN6ADDRSZ;
-		*lenp -= IN6ADDRSZ;
-	}
-}
-
-#ifdef RESOLVSORT
-static void
-addrsort(ap, num)
-	char **ap;
-	int num;
-{
-	int i, j;
-	char **p;
-	short aval[MAXADDRS];
-	int needsort = 0;
-
-	p = ap;
-	for (i = 0; i < num; i++, p++) {
-	    for (j = 0 ; (unsigned)j < _res.nsort; j++)
-		if (_res.sort_list[j].addr.s_addr == 
-		    (((struct in_addr *)(*p))->s_addr & _res.sort_list[j].mask))
-			break;
-	    aval[i] = j;
-	    if (needsort == 0 && i > 0 && j < aval[i-1])
-		needsort = i;
-	}
-	if (!needsort)
-	    return;
-
-	while (needsort < num) {
-	    for (j = needsort - 1; j >= 0; j--) {
-		if (aval[j] > aval[j+1]) {
-		    char *hp;
-
-		    i = aval[j];
-		    aval[j] = aval[j+1];
-		    aval[j+1] = i;
-
-		    hp = ap[j];
-		    ap[j] = ap[j+1];
-		    ap[j+1] = hp;
-
-		} else
-		    break;
-	    }
-	    needsort++;
-	}
-}
-#endif
-
-#if defined(BSD43_BSD43_NFS) || defined(sun)
-/* some libc's out there are bound internally to these names (UMIPS) */
-void
-ht_sethostent(stayopen)
-	int stayopen;
-{
-	_sethtent(stayopen);
-}
-
-void
-ht_endhostent()
-{
-	_endhtent();
-}
-
-struct hostent *
-ht_gethostbyname(name)
-	char *name;
-{
-	return (_gethtbyname(name));
-}
-
-struct hostent *
-ht_gethostbyaddr(addr, len, af)
-	const char *addr;
-	int len, af;
-{
-	return (_gethtbyaddr(addr, len, af));
-}
-
-struct hostent *
-gethostent()
-{
-	return (_gethtent());
-}
-
-void
-dns_service()
-{
-	return;
-}
-
-#undef dn_skipname
-dn_skipname(comp_dn, eom)
-	const u_char *comp_dn, *eom;
-{
-	return (__dn_skipname(comp_dn, eom));
-}
-#endif /*old-style libc with yp junk in it*/
diff --git a/contrib/bind/res/getnetbyaddr.c b/contrib/bind/res/getnetbyaddr.c
deleted file mode 100644
index b8477301a6bf4..0000000000000
--- a/contrib/bind/res/getnetbyaddr.c
+++ /dev/null
@@ -1,57 +0,0 @@
-/*
- * Copyright (c) 1983 Regents of the University of California.
- * All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)getnetbyaddr.c	1.1 (Coimbra) 93/06/02";
-static char rcsid[] = "$Id: getnetbyaddr.c,v 8.2 1996/05/09 05:59:13 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <netdb.h>
-
-extern int _net_stayopen;
-
-struct netent *
-_getnetbyaddr(net, type)
-	register unsigned long net;
-	register int type;
-{
-	register struct netent *p;
-
-	setnetent(_net_stayopen);
-	while (p = getnetent())
-		if (p->n_addrtype == type && p->n_net == net)
-			break;
-	if (!_net_stayopen)
-		endnetent();
-	return (p);
-}
diff --git a/contrib/bind/res/getnetbyname.c b/contrib/bind/res/getnetbyname.c
deleted file mode 100644
index 6bf450d5b40e5..0000000000000
--- a/contrib/bind/res/getnetbyname.c
+++ /dev/null
@@ -1,64 +0,0 @@
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)getnetbyname.c	8.1 (Berkeley) 6/4/93";
-static char sccsid_[] = "from getnetbyname.c	1.1 (Coimbra) 93/06/02";
-static char rcsid[] = "$Id: getnetbyname.c,v 8.2 1995/06/19 08:35:01 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <netdb.h>
-#include <string.h>
-
-extern int _net_stayopen;
-
-struct netent *
-_getnetbyname(name)
-	register const char *name;
-{
-	register struct netent *p;
-	register char **cp;
-
-	setnetent(_net_stayopen);
-	while (p = getnetent()) {
-		if (strcasecmp(p->n_name, name) == 0)
-			break;
-		for (cp = p->n_aliases; *cp != 0; cp++)
-			if (strcasecmp(*cp, name) == 0)
-				goto found;
-	}
-found:
-	if (!_net_stayopen)
-		endnetent();
-	return (p);
-}
diff --git a/contrib/bind/res/getnetent.c b/contrib/bind/res/getnetent.c
deleted file mode 100644
index 18e5d26f601d6..0000000000000
--- a/contrib/bind/res/getnetent.c
+++ /dev/null
@@ -1,163 +0,0 @@
-/*
- * Copyright (c) 1983 Regents of the University of California.
- * All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-/* Portions Copyright (c) 1993 Carlos Leandro and Rui Salgueiro
- *	Dep. Matematica Universidade de Coimbra, Portugal, Europe
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * from getnetent.c	1.1 (Coimbra) 93/06/02
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)getnetent.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: getnetent.c,v 8.4 1997/06/01 20:34:37 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <resolv.h>
-#include <netdb.h>
-#include <string.h>
-
-#ifndef _PATH_NETWORKS 
-#define _PATH_NETWORKS  "/etc/networks"
-#endif
-
-#define	MAXALIASES	35
-
-static FILE *netf;
-static char line[BUFSIZ+1];
-static struct netent net;
-static char *net_aliases[MAXALIASES];
-int _net_stayopen;
-
-void _setnetent __P((int));
-void _endnetent __P((void));
-
-void
-setnetent(stayopen)
-	int stayopen;
-{
-
-	sethostent(stayopen);
-	_setnetent(stayopen);
-}
-
-void
-endnetent()
-{
-
-	endhostent();
-	_endnetent();
-}
-
-void
-_setnetent(f)
-	int f;
-{
-
-	if (netf == NULL)
-		netf = fopen(_PATH_NETWORKS, "r" );
-	else
-		rewind(netf);
-	_net_stayopen |= f;
-}
-
-void
-_endnetent()
-{
-
-	if (netf) {
-		fclose(netf);
-		netf = NULL;
-	}
-	_net_stayopen = 0;
-}
-
-struct netent *
-getnetent()
-{
-	char *p;
-	register char *cp, **q;
-
-	if (netf == NULL && (netf = fopen(_PATH_NETWORKS, "r" )) == NULL)
-		return (NULL);
-again:
-	p = fgets(line, sizeof line, netf);
-	if (p == NULL)
-		return (NULL);
-	if (*p == '#')
-		goto again;
-	cp = strpbrk(p, "#\n");
-	if (cp == NULL)
-		goto again;
-	*cp = '\0';
-	net.n_name = p;
-	cp = strpbrk(p, " \t");
-	if (cp == NULL)
-		goto again;
-	*cp++ = '\0';
-	while (*cp == ' ' || *cp == '\t')
-		cp++;
-	p = strpbrk(cp, " \t");
-	if (p != NULL)
-		*p++ = '\0';
-	net.n_net = inet_network(cp);
-	net.n_addrtype = AF_INET;
-	q = net.n_aliases = net_aliases;
-	if (p != NULL) {
-		cp = p;
-		while (cp && *cp) {
-			if (*cp == ' ' || *cp == '\t') {
-				cp++;
-				continue;
-			}
-			if (q < &net_aliases[MAXALIASES - 1])
-				*q++ = cp;
-			cp = strpbrk(cp, " \t");
-			if (cp != NULL)
-				*cp++ = '\0';
-		}
-	}
-	*q = NULL;
-	return (&net);
-}
diff --git a/contrib/bind/res/getnetnamadr.c b/contrib/bind/res/getnetnamadr.c
deleted file mode 100644
index d9f06f1f50c19..0000000000000
--- a/contrib/bind/res/getnetnamadr.c
+++ /dev/null
@@ -1,288 +0,0 @@
-/* Copyright (c) 1993 Carlos Leandro and Rui Salgueiro
- *	Dep. Matematica Universidade de Coimbra, Portugal, Europe
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- */
-/*
- * Copyright (c) 1983, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)getnetbyaddr.c	8.1 (Berkeley) 6/4/93";
-static char sccsid_[] = "from getnetnamadr.c	1.4 (Coimbra) 93/06/03";
-static char rcsid[] = "$Id: getnetnamadr.c,v 8.8 1997/06/01 20:34:37 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <ctype.h>
-#include <errno.h>
-#include <string.h>
-
-extern int h_errno;
-
-#if defined(mips) && defined(SYSTYPE_BSD43)
-extern int errno;
-#endif
-
-struct netent *_getnetbyaddr __P((long net, int type));
-struct netent *_getnetbyname __P((const char *name));
-
-#define BYADDR 0
-#define BYNAME 1
-#define	MAXALIASES	35
-
-#if PACKETSZ > 1024
-#define	MAXPACKET	PACKETSZ
-#else
-#define	MAXPACKET	1024
-#endif
-
-typedef union {
-	HEADER	hdr;
-	u_char	buf[MAXPACKET];
-} querybuf;
-
-typedef union {
-	long	al;
-	char	ac;
-} align;
-
-static struct netent *
-getnetanswer(answer, anslen, net_i)
-	querybuf *answer;
-	int anslen;
-	int net_i;
-{
-
-	register HEADER *hp;
-	register u_char *cp;
-	register int n;
-	u_char *eom;
-	int type, class, buflen, ancount, qdcount, haveanswer, i, nchar;
-	char aux1[30], aux2[30], ans[30], *in, *st, *pauxt, *bp, **ap,
-		*paux1 = &aux1[0], *paux2 = &aux2[0], flag = 0;
-static	struct netent net_entry;
-static	char *net_aliases[MAXALIASES], netbuf[PACKETSZ];
-
-	/*
-	 * find first satisfactory answer
-	 *
-	 *      answer --> +------------+  ( MESSAGE )
-	 *		   |   Header   |
-	 *		   +------------+
-	 *		   |  Question  | the question for the name server
-	 *		   +------------+
-	 *		   |   Answer   | RRs answering the question
-	 *		   +------------+
-	 *		   | Authority  | RRs pointing toward an authority
-	 *		   | Additional | RRs holding additional information
-	 *		   +------------+
-	 */
-	eom = answer->buf + anslen;
-	hp = &answer->hdr;
-	ancount = ntohs(hp->ancount); /* #/records in the answer section */
-	qdcount = ntohs(hp->qdcount); /* #/entries in the question section */
-	bp = netbuf;
-	buflen = sizeof(netbuf);
-	cp = answer->buf + HFIXEDSZ;
-	if (!qdcount) {
-		if (hp->aa)
-			h_errno = HOST_NOT_FOUND;
-		else
-			h_errno = TRY_AGAIN;
-		return (NULL);
-	}
-	while (qdcount-- > 0)
-		cp += __dn_skipname(cp, eom) + QFIXEDSZ;
-	ap = net_aliases;
-	*ap = NULL;
-	net_entry.n_aliases = net_aliases;
-	haveanswer = 0;
-	while (--ancount >= 0 && cp < eom) {
-		n = dn_expand(answer->buf, eom, cp, bp, buflen);
-		if ((n < 0) || !res_dnok(bp))
-			break;
-		cp += n;
-		ans[0] = '\0';
-		(void)strcpy(&ans[0], bp);
-		GETSHORT(type, cp);
-		GETSHORT(class, cp);
-		cp += INT32SZ;		/* TTL */
-		GETSHORT(n, cp);
-		if (class == C_IN && type == T_PTR) {
-			n = dn_expand(answer->buf, eom, cp, bp, buflen);
-			if ((n < 0) || !res_hnok(bp)) {
-				cp += n;
-				return (NULL);
-			}
-			cp += n; 
-			*ap++ = bp;
-			bp += strlen(bp) + 1;
-			net_entry.n_addrtype =
-				(class == C_IN) ? AF_INET : AF_UNSPEC;
-			haveanswer++;
-		}
-	}
-	if (haveanswer) {
-		*ap = NULL;
-		switch (net_i) {
-		case BYADDR:
-			net_entry.n_name = *net_entry.n_aliases;
-			net_entry.n_net = 0L;
-			break;
-		case BYNAME:
-			in = *net_entry.n_aliases;
-			net_entry.n_name = &ans[0];
-			aux2[0] = '\0';
-			for (i = 0; i < 4; i++) {
-				for (st = in, nchar = 0;
-				     *st != '.';
-				     st++, nchar++)
-					;
-				if (nchar != 1 || *in != '0' || flag) {
-					flag = 1;
-					(void)strncpy(paux1,
-						      (i==0) ? in : in-1,
-						      (i==0) ?nchar : nchar+1);
-					paux1[(i==0) ? nchar : nchar+1] = '\0';
-					pauxt = paux2;
-					paux2 = strcat(paux1, paux2);
-					paux1 = pauxt;
-				}
-				in = ++st;
-			}		  
-			net_entry.n_net = inet_network(paux2);
-			break;
-		}
-		net_entry.n_aliases++;
-		return (&net_entry);
-	}
-	h_errno = TRY_AGAIN;
-	return (NULL);
-}
-
-struct netent *
-getnetbyaddr(net, net_type)
-	register u_long net;
-	register int net_type;
-{
-	unsigned int netbr[4];
-	int nn, anslen;
-	querybuf buf;
-	char qbuf[MAXDNAME];
-	unsigned long net2;
-	struct netent *net_entry;
-
-	if (net_type != AF_INET)
-		return (_getnetbyaddr(net, net_type));
-
-	for (nn = 4, net2 = net; net2; net2 >>= 8)
-		netbr[--nn] = net2 & 0xff;
-	switch (nn) {
-	case 3: 	/* Class A */
-		sprintf(qbuf, "0.0.0.%u.in-addr.arpa", netbr[3]);
-		break;
-	case 2: 	/* Class B */
-		sprintf(qbuf, "0.0.%u.%u.in-addr.arpa", netbr[3], netbr[2]);
-		break;
-	case 1: 	/* Class C */
-		sprintf(qbuf, "0.%u.%u.%u.in-addr.arpa", netbr[3], netbr[2],
-		    netbr[1]);
-		break;
-	case 0: 	/* Class D - E */
-		sprintf(qbuf, "%u.%u.%u.%u.in-addr.arpa", netbr[3], netbr[2],
-		    netbr[1], netbr[0]);
-		break;
-	}
-	anslen = res_query(qbuf, C_IN, T_PTR, (u_char *)&buf, sizeof(buf));
-	if (anslen < 0) {
-#ifdef DEBUG
-		if (_res.options & RES_DEBUG)
-			printf("res_query failed\n");
-#endif
-		if (errno == ECONNREFUSED)
-			return (_getnetbyaddr(net, net_type));
-		return (NULL);
-	}
-	net_entry = getnetanswer(&buf, anslen, BYADDR);
-	if (net_entry) {
-		unsigned u_net = net;	/* maybe net should be unsigned ? */
-
-		/* Strip trailing zeros */
-		while ((u_net & 0xff) == 0 && u_net != 0)
-			u_net >>= 8;
-		net_entry->n_net = u_net;
-		return (net_entry);
-	}
-	return (_getnetbyaddr(net, net_type));
-}
-
-struct netent *
-getnetbyname(net)
-	register const char *net;
-{
-	int anslen;
-	querybuf buf;
-	char qbuf[MAXDNAME];
-	struct netent *net_entry;
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-	strcpy(&qbuf[0], net);
-	anslen = res_search(qbuf, C_IN, T_PTR, (u_char *)&buf, sizeof(buf));
-	if (anslen < 0) {
-#ifdef DEBUG
-		if (_res.options & RES_DEBUG)
-			printf("res_query failed\n");
-#endif
-		if (errno == ECONNREFUSED)
-			return (_getnetbyname(net));
-		return (_getnetbyname(net));
-	}
-	net_entry = getnetanswer(&buf, anslen, BYNAME);
-	if (net_entry)
-		return (net_entry);
-	return (_getnetbyname(net));
-}
diff --git a/contrib/bind/res/herror.c b/contrib/bind/res/herror.c
deleted file mode 100644
index 6d88b49285f65..0000000000000
--- a/contrib/bind/res/herror.c
+++ /dev/null
@@ -1,119 +0,0 @@
-/*
- * ++Copyright++ 1987, 1993
- * -
- * Copyright (c) 1987, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)herror.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: herror.c,v 8.3 1996/08/05 08:31:35 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/uio.h>
-#include <netdb.h>
-#if defined(BSD) && (BSD >= 199103)
-# include <unistd.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-const char *h_errlist[] = {
-	"Resolver Error 0 (no error)",
-	"Unknown host",				/* 1 HOST_NOT_FOUND */
-	"Host name lookup failure",		/* 2 TRY_AGAIN */
-	"Unknown server error",			/* 3 NO_RECOVERY */
-	"No address associated with name",	/* 4 NO_ADDRESS */
-};
-int	h_nerr = { sizeof h_errlist / sizeof h_errlist[0] };
-
-extern int	h_errno;
-
-/*
- * herror --
- *	print the error indicated by the h_errno value.
- */
-void
-herror(s)
-	const char *s;
-{
-	struct iovec iov[4];
-	register struct iovec *v = iov;
-
-	if (s && *s) {
-		v->iov_base = (char *)s;
-		v->iov_len = strlen(s);
-		v++;
-		v->iov_base = ": ";
-		v->iov_len = 2;
-		v++;
-	}
-	v->iov_base = (char *)hstrerror(h_errno);
-	v->iov_len = strlen(v->iov_base);
-	v++;
-	v->iov_base = "\n";
-	v->iov_len = 1;
-	writev(STDERR_FILENO, iov, (v - iov) + 1);
-}
-
-const char *
-hstrerror(err)
-	int err;
-{
-	if (err < 0)
-		return ("Resolver internal error");
-	else if (err < h_nerr)
-		return (h_errlist[err]);
-	return ("Unknown resolver error");
-}
diff --git a/contrib/bind/res/hostnamelen.c b/contrib/bind/res/hostnamelen.c
deleted file mode 100644
index 93880627fda20..0000000000000
--- a/contrib/bind/res/hostnamelen.c
+++ /dev/null
@@ -1,94 +0,0 @@
-/*
- * ++Copyright++ 1995
- * -
- * Copyright (c) 1995
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char rcsid[] = "$Id: hostnamelen.c,v 8.2 1995/08/22 05:01:47 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-
-#if defined(BSD) && (BSD >= 199103)
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-#if defined(USE_OPTIONS_H)
-# include <../conf/options.h>
-#endif
-
-#ifndef ultrix
-int __local_hostname_length_unneeded;
-#else
-int
-local_hostname_length(hostname)
-	const char *hostname;
-{
-	int len_host, len_domain;
-
-	if (!*_res.defdname)
-		res_init();
-	len_host = strlen(hostname);
-	len_domain = strlen(_res.defdname);
-	if (len_host > len_domain &&
-	    !strcasecmp(hostname + len_host - len_domain, _res.defdname) &&
-	    hostname[len_host - len_domain - 1] == '.')
-		return (len_host - len_domain - 1);
-	return (0);
-}
-#endif
diff --git a/contrib/bind/res/inet_addr.c b/contrib/bind/res/inet_addr.c
deleted file mode 100644
index 6f668699b80f3..0000000000000
--- a/contrib/bind/res/inet_addr.c
+++ /dev/null
@@ -1,184 +0,0 @@
-/*
- * ++Copyright++ 1983, 1990, 1993
- * -
- * Copyright (c) 1983, 1990, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)inet_addr.c	8.1 (Berkeley) 6/17/93";
-static char rcsid[] = "$Id: inet_addr.c,v 8.5 1996/08/05 08:31:35 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <ctype.h>
-#include "../conf/portability.h"
-
-/* these are compatibility routines, not needed on recent BSD releases */
-
-/*
- * Ascii internet address interpretation routine.
- * The value returned is in network order.
- */
-u_long
-inet_addr(cp)
-	register const char *cp;
-{
-	struct in_addr val;
-
-	if (inet_aton(cp, &val))
-		return (val.s_addr);
-	return (INADDR_NONE);
-}
-
-/* 
- * Check whether "cp" is a valid ascii representation
- * of an Internet address and convert to a binary address.
- * Returns 1 if the address is valid, 0 if not.
- * This replaces inet_addr, the return value from which
- * cannot distinguish between failure and a local broadcast address.
- */
-int
-inet_aton(cp, addr)
-	register const char *cp;
-	struct in_addr *addr;
-{
-	register u_long val;
-	register int base, n;
-	register char c;
-	u_int parts[4];
-	register u_int *pp = parts;
-
-	c = *cp;
-	for (;;) {
-		/*
-		 * Collect number up to ``.''.
-		 * Values are specified as for C:
-		 * 0x=hex, 0=octal, isdigit=decimal.
-		 */
-		if (!isdigit(c))
-			return (0);
-		val = 0; base = 10;
-		if (c == '0') {
-			c = *++cp;
-			if (c == 'x' || c == 'X')
-				base = 16, c = *++cp;
-			else
-				base = 8;
-		}
-		for (;;) {
-			if (isascii(c) && isdigit(c)) {
-				val = (val * base) + (c - '0');
-				c = *++cp;
-			} else if (base == 16 && isascii(c) && isxdigit(c)) {
-				val = (val << 4) |
-					(c + 10 - (islower(c) ? 'a' : 'A'));
-				c = *++cp;
-			} else
-				break;
-		}
-		if (c == '.') {
-			/*
-			 * Internet format:
-			 *	a.b.c.d
-			 *	a.b.c	(with c treated as 16 bits)
-			 *	a.b	(with b treated as 24 bits)
-			 */
-			if (pp >= parts + 3)
-				return (0);
-			*pp++ = val;
-			c = *++cp;
-		} else
-			break;
-	}
-	/*
-	 * Check for trailing characters.
-	 */
-	if (c != '\0' && (!isascii(c) || !isspace(c)))
-		return (0);
-	/*
-	 * Concoct the address according to
-	 * the number of parts specified.
-	 */
-	n = pp - parts + 1;
-	switch (n) {
-
-	case 0:
-		return (0);		/* initial nondigit */
-
-	case 1:				/* a -- 32 bits */
-		break;
-
-	case 2:				/* a.b -- 8.24 bits */
-		if (val > 0xffffff)
-			return (0);
-		val |= parts[0] << 24;
-		break;
-
-	case 3:				/* a.b.c -- 8.8.16 bits */
-		if (val > 0xffff)
-			return (0);
-		val |= (parts[0] << 24) | (parts[1] << 16);
-		break;
-
-	case 4:				/* a.b.c.d -- 8.8.8.8 bits */
-		if (val > 0xff)
-			return (0);
-		val |= (parts[0] << 24) | (parts[1] << 16) | (parts[2] << 8);
-		break;
-	}
-	if (addr)
-		addr->s_addr = htonl(val);
-	return (1);
-}
diff --git a/contrib/bind/res/inet_net_ntop.c b/contrib/bind/res/inet_net_ntop.c
deleted file mode 100644
index ff948ff799a48..0000000000000
--- a/contrib/bind/res/inet_net_ntop.c
+++ /dev/null
@@ -1,139 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_net_ntop.c,v 8.2 1996/08/08 06:54:44 vixie Exp $";
-#endif
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-static char *	inet_net_ntop_ipv4 __P((const u_char *src, int bits,
-					char *dst, size_t size));
-
-/*
- * char *
- * inet_net_ntop(af, src, bits, dst, size)
- *	convert network number from network to presentation format.
- *	generates CIDR style result always.
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * author:
- *	Paul Vixie (ISC), July 1996
- */
-char *
-inet_net_ntop(af, src, bits, dst, size)
-	int af;
-	const void *src;
-	int bits;
-	char *dst;
-	size_t size;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_net_ntop_ipv4(src, bits, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-}
-
-/*
- * static char *
- * inet_net_ntop_ipv4(src, bits, dst, size)
- *	convert IPv4 network number from network to presentation format.
- *	generates CIDR style result always.
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * note:
- *	network byte order assumed.  this means 192.5.5.240/28 has
- *	0x11110000 in its fourth octet.
- * author:
- *	Paul Vixie (ISC), July 1996
- */
-static char *
-inet_net_ntop_ipv4(src, bits, dst, size)
-	const u_char *src;
-	int bits;
-	char *dst;
-	size_t size;
-{
-	char *odst = dst;
-	char *t;
-	u_int m;
-	int b;
-
-	if (bits < 0 || bits > 32) {
-		errno = EINVAL;
-		return (NULL);
-	}
-	if (bits == 0) {
-		if (size < sizeof "0")
-			goto emsgsize;
-		*dst++ = '0';
-		*dst = '\0';
-	}
-
-	/* Format whole octets. */
-	for (b = bits / 8; b > 0; b--) {
-		if (size < sizeof "255.")
-			goto emsgsize;
-		t = dst;
-		dst += SPRINTF((dst, "%u", *src++));
-		if (b > 1) {
-			*dst++ = '.';
-			*dst = '\0';
-		}
-		size -= (size_t)(dst - t);
-	}
-
-	/* Format partial octet. */
-	b = bits % 8;
-	if (b > 0) {
-		if (size < sizeof ".255")
-			goto emsgsize;
-		t = dst;
-		if (dst != odst)
-			*dst++ = '.';
-		m = ((1 << b) - 1) << (8 - b);
-		dst += SPRINTF((dst, "%u", *src & m));
-		size -= (size_t)(dst - t);
-	}
-
-	/* Format CIDR /width. */
-	if (size < sizeof "/32")
-		goto emsgsize;
-	dst += SPRINTF((dst, "/%u", bits));
-	return (odst);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (NULL);
-}
diff --git a/contrib/bind/res/inet_net_pton.c b/contrib/bind/res/inet_net_pton.c
deleted file mode 100644
index 5dfb1329c8192..0000000000000
--- a/contrib/bind/res/inet_net_pton.c
+++ /dev/null
@@ -1,207 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_net_pton.c,v 8.3 1996/11/11 06:36:52 vixie Exp $";
-#endif
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <assert.h>
-#include <ctype.h>
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <stdlib.h>
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-static int	inet_net_pton_ipv4 __P((const char *src, u_char *dst,
-					size_t size));
-
-/*
- * static int
- * inet_net_pton(af, src, dst, size)
- *	convert network number from presentation to network format.
- *	accepts hex octets, hex strings, decimal octets, and /CIDR.
- *	"size" is in bytes and describes "dst".
- * return:
- *	number of bits, either imputed classfully or specified with /CIDR,
- *	or -1 if some failure occurred (check errno).  ENOENT means it was
- *	not a valid network specification.
- * author:
- *	Paul Vixie (ISC), June 1996
- */
-int
-inet_net_pton(af, src, dst, size)
-	int af;
-	const char *src;
-	void *dst;
-	size_t size;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_net_pton_ipv4(src, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (-1);
-	}
-}
-
-/*
- * static int
- * inet_net_pton_ipv4(src, dst, size)
- *	convert IPv4 network number from presentation to network format.
- *	accepts hex octets, hex strings, decimal octets, and /CIDR.
- *	"size" is in bytes and describes "dst".
- * return:
- *	number of bits, either imputed classfully or specified with /CIDR,
- *	or -1 if some failure occurred (check errno).  ENOENT means it was
- *	not an IPv4 network specification.
- * note:
- *	network byte order assumed.  this means 192.5.5.240/28 has
- *	0x11110000 in its fourth octet.
- * author:
- *	Paul Vixie (ISC), June 1996
- */
-static int
-inet_net_pton_ipv4(src, dst, size)
-	const char *src;
-	u_char *dst;
-	size_t size;
-{
-	static const char
-		xdigits[] = "0123456789abcdef",
-		digits[] = "0123456789";
-	int n, ch, tmp, dirty, bits;
-	const u_char *odst = dst;
-
-	ch = *src++;
-	if (ch == '0' && (src[0] == 'x' || src[0] == 'X')
-	    && isascii(src[1]) && isxdigit(src[1])) {
-		/* Hexadecimal: Eat nybble string. */
-		if (size <= 0)
-			goto emsgsize;
-		*dst = 0, dirty = 0;
-		src++;	/* skip x or X. */
-		while ((ch = *src++) != '\0' &&
-		       isascii(ch) && isxdigit(ch)) {
-			if (isupper(ch))
-				ch = tolower(ch);
-			n = strchr(xdigits, ch) - xdigits;
-			assert(n >= 0 && n <= 15);
-			*dst |= n;
-			if (!dirty++)
-				*dst <<= 4;
-			else if (size-- > 0)
-				*++dst = 0, dirty = 0;
-			else
-				goto emsgsize;
-		}
-		if (dirty)
-			size--;
-	} else if (isascii(ch) && isdigit(ch)) {
-		/* Decimal: eat dotted digit string. */
-		for (;;) {
-			tmp = 0;
-			do {
-				n = strchr(digits, ch) - digits;
-				assert(n >= 0 && n <= 9);
-				tmp *= 10;
-				tmp += n;
-				if (tmp > 255)
-					goto enoent;
-			} while ((ch = *src++) != '\0' &&
-				 isascii(ch) && isdigit(ch));
-			if (size-- <= 0)
-				goto emsgsize;
-			*dst++ = (u_char) tmp;
-			if (ch == '\0' || ch == '/')
-				break;
-			if (ch != '.')
-				goto enoent;
-			ch = *src++;
-			if (!isascii(ch) || !isdigit(ch))
-				goto enoent;
-		}
-	} else
-		goto enoent;
-
-	bits = -1;
-	if (ch == '/' && isascii(src[0]) && isdigit(src[0]) && dst > odst) {
-		/* CIDR width specifier.  Nothing can follow it. */
-		ch = *src++;	/* Skip over the /. */
-		bits = 0;
-		do {
-			n = strchr(digits, ch) - digits;
-			assert(n >= 0 && n <= 9);
-			bits *= 10;
-			bits += n;
-		} while ((ch = *src++) != '\0' &&
-			 isascii(ch) && isdigit(ch));
-		if (ch != '\0')
-			goto enoent;
-		if (bits > 32)
-			goto emsgsize;
-	}
-
-	/* Firey death and destruction unless we prefetched EOS. */
-	if (ch != '\0')
-		goto enoent;
-
-	/* If nothing was written to the destination, we found no address. */
-	if (dst == odst)
-		goto enoent;
-	/* If no CIDR spec was given, infer width from net class. */
-	if (bits == -1) {
-		if (*odst >= 240)	/* Class E */
-			bits = 32;
-		else if (*odst >= 224)	/* Class D */
-			bits = 4;
-		else if (*odst >= 192)	/* Class C */
-			bits = 24;
-		else if (*odst >= 128)	/* Class B */
-			bits = 16;
-		else			/* Class A */
-			bits = 8;
-		/* If imputed mask is narrower than specified octets, widen. */
-		if (bits >= 8 && bits < ((dst - odst) * 8))
-			bits = (dst - odst) * 8;
-	}
-	/* Extend network to cover the actual mask. */
-	while (bits > ((dst - odst) * 8)) {
-		if (size-- <= 0)
-			goto emsgsize;
-		*dst++ = '\0';
-	}
-	return (bits);
-
- enoent:
-	errno = ENOENT;
-	return (-1);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (-1);
-}
diff --git a/contrib/bind/res/inet_neta.c b/contrib/bind/res/inet_neta.c
deleted file mode 100644
index 098059bc017ea..0000000000000
--- a/contrib/bind/res/inet_neta.c
+++ /dev/null
@@ -1,82 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static const char rcsid[] = "$Id: inet_neta.c,v 8.2 1996/08/08 06:54:44 vixie Exp $";
-#endif
-
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-
-#include <errno.h>
-#include <stdio.h>
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/*
- * char *
- * inet_neta(src, dst, size)
- *	format a u_long network number into presentation format.
- * return:
- *	pointer to dst, or NULL if an error occurred (check errno).
- * note:
- *	format of ``src'' is as for inet_network().
- * author:
- *	Paul Vixie (ISC), July 1996
- */
-char *
-inet_neta(src, dst, size)
-	u_long src;
-	char *dst;
-	size_t size;
-{
-	char *odst = dst;
-	char *tp;
-
-	while (src & 0xffffffff) {
-		u_char b = (src & 0xff000000) >> 24;
-
-		src <<= 8;
-		if (b) {
-			if (size < sizeof "255.")
-				goto emsgsize;
-			tp = dst;
-			dst += SPRINTF((dst, "%u", b));
-			if (src != 0L) {
-				*dst++ = '.';
-				*dst = '\0';
-			}
-			size -= (size_t)(dst - tp);
-		}
-	}
-	if (dst == odst) {
-		if (size < sizeof "0.0.0.0")
-			goto emsgsize;
-		strcpy(dst, "0.0.0.0");
-	}
-	return (odst);
-
- emsgsize:
-	errno = EMSGSIZE;
-	return (NULL);
-}
diff --git a/contrib/bind/res/inet_ntop.c b/contrib/bind/res/inet_ntop.c
deleted file mode 100644
index 3fd85060e2a4a..0000000000000
--- a/contrib/bind/res/inet_ntop.c
+++ /dev/null
@@ -1,195 +0,0 @@
-/* Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char rcsid[] = "$Id: inet_ntop.c,v 8.7 1996/08/05 08:41:18 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <string.h>
-#include <errno.h>
-#include <stdio.h>
-#include "../conf/portability.h"
-
-#ifdef SPRINTF_CHAR
-# define SPRINTF(x) strlen(sprintf/**/x)
-#else
-# define SPRINTF(x) ((size_t)sprintf x)
-#endif
-
-/*
- * WARNING: Don't even consider trying to compile this on a system where
- * sizeof(int) < 4.  sizeof(int) > 4 is fine; all the world's not a VAX.
- */
-
-static const char *inet_ntop4 __P((const u_char *src, char *dst, size_t size));
-static const char *inet_ntop6 __P((const u_char *src, char *dst, size_t size));
-
-/* char *
- * inet_ntop(af, src, dst, size)
- *	convert a network format address to presentation format.
- * return:
- *	pointer to presentation format address (`dst'), or NULL (see errno).
- * author:
- *	Paul Vixie, 1996.
- */
-const char *
-inet_ntop(af, src, dst, size)
-	int af;
-	const void *src;
-	char *dst;
-	size_t size;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_ntop4(src, dst, size));
-	case AF_INET6:
-		return (inet_ntop6(src, dst, size));
-	default:
-		errno = EAFNOSUPPORT;
-		return (NULL);
-	}
-	/* NOTREACHED */
-}
-
-/* const char *
- * inet_ntop4(src, dst, size)
- *	format an IPv4 address, more or less like inet_ntoa()
- * return:
- *	`dst' (as a const)
- * notes:
- *	(1) uses no statics
- *	(2) takes a u_char* not an in_addr as input
- * author:
- *	Paul Vixie, 1996.
- */
-static const char *
-inet_ntop4(src, dst, size)
-	const u_char *src;
-	char *dst;
-	size_t size;
-{
-	static const char fmt[] = "%u.%u.%u.%u";
-	char tmp[sizeof "255.255.255.255"];
-
-	if (SPRINTF((tmp, fmt, src[0], src[1], src[2], src[3])) > size) {
-		errno = ENOSPC;
-		return (NULL);
-	}
-	strcpy(dst, tmp);
-	return (dst);
-}
-
-/* const char *
- * inet_ntop6(src, dst, size)
- *	convert IPv6 binary address into presentation (printable) format
- * author:
- *	Paul Vixie, 1996.
- */
-static const char *
-inet_ntop6(src, dst, size)
-	const u_char *src;
-	char *dst;
-	size_t size;
-{
-	/*
-	 * Note that int32_t and int16_t need only be "at least" large enough
-	 * to contain a value of the specified size.  On some systems, like
-	 * Crays, there is no such thing as an integer variable with 16 bits.
-	 * Keep this in mind if you think this function should have been coded
-	 * to use pointer overlays.  All the world's not a VAX.
-	 */
-	char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"], *tp;
-	struct { int base, len; } best, cur;
-	u_int words[IN6ADDRSZ / INT16SZ];
-	int i;
-
-	/*
-	 * Preprocess:
-	 *	Copy the input (bytewise) array into a wordwise array.
-	 *	Find the longest run of 0x00's in src[] for :: shorthanding.
-	 */
-	memset(words, '\0', sizeof words);
-	for (i = 0; i < IN6ADDRSZ; i++)
-		words[i / 2] |= (src[i] << ((1 - (i % 2)) << 3));
-	best.base = -1;
-	cur.base = -1;
-	for (i = 0; i < (IN6ADDRSZ / INT16SZ); i++) {
-		if (words[i] == 0) {
-			if (cur.base == -1)
-				cur.base = i, cur.len = 1;
-			else
-				cur.len++;
-		} else {
-			if (cur.base != -1) {
-				if (best.base == -1 || cur.len > best.len)
-					best = cur;
-				cur.base = -1;
-			}
-		}
-	}
-	if (cur.base != -1) {
-		if (best.base == -1 || cur.len > best.len)
-			best = cur;
-	}
-	if (best.base != -1 && best.len < 2)
-		best.base = -1;
-
-	/*
-	 * Format the result.
-	 */
-	tp = tmp;
-	for (i = 0; i < (IN6ADDRSZ / INT16SZ); i++) {
-		/* Are we inside the best run of 0x00's? */
-		if (best.base != -1 && i >= best.base &&
-		    i < (best.base + best.len)) {
-			if (i == best.base)
-				*tp++ = ':';
-			continue;
-		}
-		/* Are we following an initial run of 0x00s or any real hex? */
-		if (i != 0)
-			*tp++ = ':';
-		/* Is this address an encapsulated IPv4? */
-		if (i == 6 && best.base == 0 &&
-		    (best.len == 6 || (best.len == 5 && words[5] == 0xffff))) {
-			if (!inet_ntop4(src+12, tp, sizeof tmp - (tp - tmp)))
-				return (NULL);
-			tp += strlen(tp);
-			break;
-		}
-		tp += SPRINTF((tp, "%x", words[i]));
-	}
-	/* Was it a trailing run of 0x00's? */
-	if (best.base != -1 && (best.base + best.len) == (IN6ADDRSZ / INT16SZ))
-		*tp++ = ':';
-	*tp++ = '\0';
-
-	/*
-	 * Check for overflow, copy, and we're done.
-	 */
-	if ((size_t)(tp - tmp) > size) {
-		errno = ENOSPC;
-		return (NULL);
-	}
-	strcpy(dst, tmp);
-	return (dst);
-}
diff --git a/contrib/bind/res/inet_pton.c b/contrib/bind/res/inet_pton.c
deleted file mode 100644
index 244107bfdd429..0000000000000
--- a/contrib/bind/res/inet_pton.c
+++ /dev/null
@@ -1,215 +0,0 @@
-/* Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char rcsid[] = "$Id: inet_pton.c,v 8.7 1996/08/05 08:31:35 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-#include <string.h>
-#include <errno.h>
-#include "../conf/portability.h"
-
-/*
- * WARNING: Don't even consider trying to compile this on a system where
- * sizeof(int) < 4.  sizeof(int) > 4 is fine; all the world's not a VAX.
- */
-
-static int	inet_pton4 __P((const char *src, u_char *dst));
-static int	inet_pton6 __P((const char *src, u_char *dst));
-
-/* int
- * inet_pton(af, src, dst)
- *	convert from presentation format (which usually means ASCII printable)
- *	to network format (which is usually some kind of binary format).
- * return:
- *	1 if the address was valid for the specified address family
- *	0 if the address wasn't valid (`dst' is untouched in this case)
- *	-1 if some other error occurred (`dst' is untouched in this case, too)
- * author:
- *	Paul Vixie, 1996.
- */
-int
-inet_pton(af, src, dst)
-	int af;
-	const char *src;
-	void *dst;
-{
-	switch (af) {
-	case AF_INET:
-		return (inet_pton4(src, dst));
-	case AF_INET6:
-		return (inet_pton6(src, dst));
-	default:
-		errno = EAFNOSUPPORT;
-		return (-1);
-	}
-	/* NOTREACHED */
-}
-
-/* int
- * inet_pton4(src, dst)
- *	like inet_aton() but without all the hexadecimal and shorthand.
- * return:
- *	1 if `src' is a valid dotted quad, else 0.
- * notice:
- *	does not touch `dst' unless it's returning 1.
- * author:
- *	Paul Vixie, 1996.
- */
-static int
-inet_pton4(src, dst)
-	const char *src;
-	u_char *dst;
-{
-	static const char digits[] = "0123456789";
-	int saw_digit, octets, ch;
-	u_char tmp[INADDRSZ], *tp;
-
-	saw_digit = 0;
-	octets = 0;
-	*(tp = tmp) = 0;
-	while ((ch = *src++) != '\0') {
-		const char *pch;
-
-		if ((pch = strchr(digits, ch)) != NULL) {
-			u_int new = *tp * 10 + (pch - digits);
-
-			if (new > 255)
-				return (0);
-			*tp = new;
-			if (! saw_digit) {
-				if (++octets > 4)
-					return (0);
-				saw_digit = 1;
-			}
-		} else if (ch == '.' && saw_digit) {
-			if (octets == 4)
-				return (0);
-			*++tp = 0;
-			saw_digit = 0;
-		} else
-			return (0);
-	}
-	if (octets < 4)
-		return (0);
-
-	memcpy(dst, tmp, INADDRSZ);
-	return (1);
-}
-
-/* int
- * inet_pton6(src, dst)
- *	convert presentation level address to network order binary form.
- * return:
- *	1 if `src' is a valid [RFC1884 2.2] address, else 0.
- * notice:
- *	(1) does not touch `dst' unless it's returning 1.
- *	(2) :: in a full address is silently ignored.
- * credit:
- *	inspired by Mark Andrews.
- * author:
- *	Paul Vixie, 1996.
- */
-static int
-inet_pton6(src, dst)
-	const char *src;
-	u_char *dst;
-{
-	static const char xdigits_l[] = "0123456789abcdef",
-			  xdigits_u[] = "0123456789ABCDEF";
-	u_char tmp[IN6ADDRSZ], *tp, *endp, *colonp;
-	const char *xdigits, *curtok;
-	int ch, saw_xdigit;
-	u_int val;
-
-	memset((tp = tmp), '\0', IN6ADDRSZ);
-	endp = tp + IN6ADDRSZ;
-	colonp = NULL;
-	/* Leading :: requires some special handling. */
-	if (*src == ':')
-		if (*++src != ':')
-			return (0);
-	curtok = src;
-	saw_xdigit = 0;
-	val = 0;
-	while ((ch = *src++) != '\0') {
-		const char *pch;
-
-		if ((pch = strchr((xdigits = xdigits_l), ch)) == NULL)
-			pch = strchr((xdigits = xdigits_u), ch);
-		if (pch != NULL) {
-			val <<= 4;
-			val |= (pch - xdigits);
-			if (val > 0xffff)
-				return (0);
-			saw_xdigit = 1;
-			continue;
-		}
-		if (ch == ':') {
-			curtok = src;
-			if (!saw_xdigit) {
-				if (colonp)
-					return (0);
-				colonp = tp;
-				continue;
-			}
-			if (tp + INT16SZ > endp)
-				return (0);
-			*tp++ = (u_char) (val >> 8) & 0xff;
-			*tp++ = (u_char) val & 0xff;
-			saw_xdigit = 0;
-			val = 0;
-			continue;
-		}
-		if (ch == '.' && ((tp + INADDRSZ) <= endp) &&
-		    inet_pton4(curtok, tp) > 0) {
-			tp += INADDRSZ;
-			saw_xdigit = 0;
-			break;	/* '\0' was seen by inet_pton4(). */
-		}
-		return (0);
-	}
-	if (saw_xdigit) {
-		if (tp + INT16SZ > endp)
-			return (0);
-		*tp++ = (u_char) (val >> 8) & 0xff;
-		*tp++ = (u_char) val & 0xff;
-	}
-	if (colonp != NULL) {
-		/*
-		 * Since some memmove()'s erroneously fail to handle
-		 * overlapping regions, we'll do the shift by hand.
-		 */
-		const int n = tp - colonp;
-		int i;
-
-		for (i = 1; i <= n; i++) {
-			endp[- i] = colonp[n - i];
-			colonp[n - i] = 0;
-		}
-		tp = endp;
-	}
-	if (tp != endp)
-		return (0);
-	memcpy(dst, tmp, IN6ADDRSZ);
-	return (1);
-}
diff --git a/contrib/bind/res/nsap_addr.c b/contrib/bind/res/nsap_addr.c
deleted file mode 100644
index 162961a3b13ea..0000000000000
--- a/contrib/bind/res/nsap_addr.c
+++ /dev/null
@@ -1,114 +0,0 @@
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char rcsid[] = "$Id: nsap_addr.c,v 8.3 1996/08/05 08:31:35 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <ctype.h>
-#include <resolv.h>
-
-#include "../conf/portability.h"
-
-#if !defined(isxdigit)	/* XXX - could be a function */
-static int
-isxdigit(c)
-	register int c;
-{
-	return ((c >= '0') && (c <= '9')) || ((c >= 'A') && (c <= 'F'));
-}
-#endif
-
-static char
-xtob(c)
-	register int c;
-{
-	return (c - (((c >= '0') && (c <= '9')) ? '0' : '7'));
-}
-
-u_int
-inet_nsap_addr(ascii, binary, maxlen)
-	const char *ascii;
-	u_char *binary;
-	int maxlen;
-{
-	register u_char c, nib;
-	u_int len = 0;
-
-	while ((c = *ascii++) != '\0' && len < maxlen) {
-		if (c == '.' || c == '+' || c == '/')
-			continue;
-		if (!isascii(c))
-			return (0);
-		if (islower(c))
-			c = toupper(c);
-		if (isxdigit(c)) {
-			nib = xtob(c);
-			if (c = *ascii++) {
-				c = toupper(c);
-				if (isxdigit(c)) {
-					*binary++ = (nib << 4) | xtob(c);
-					len++;
-				} else
-					return (0);
-			}
-			else
-				return (0);
-		}
-		else
-			return (0);
-	}
-	return (len);
-}
-
-char *
-inet_nsap_ntoa(binlen, binary, ascii)
-	int binlen;
-	register const u_char *binary;
-	register char *ascii;
-{
-	register int nib;
-	int i;
-	static char tmpbuf[255*3];
-	char *start;
-
-	if (ascii)
-		start = ascii;
-	else {
-		ascii = tmpbuf;
-		start = tmpbuf;
-	}
-
-	if (binlen > 255)
-		binlen = 255;
-
-	for (i = 0; i < binlen; i++) {
-		nib = *binary >> 4;
-		*ascii++ = nib + (nib < 10 ? '0' : '7');
-		nib = *binary++ & 0x0f;
-		*ascii++ = nib + (nib < 10 ? '0' : '7');
-		if (((i % 2) == 0 && (i + 1) < binlen))
-			*ascii++ = '.';
-	}
-	*ascii = '\0';
-	return (start);
-}
diff --git a/contrib/bind/res/res_comp.c b/contrib/bind/res/res_comp.c
deleted file mode 100644
index 62127904c381b..0000000000000
--- a/contrib/bind/res/res_comp.c
+++ /dev/null
@@ -1,937 +0,0 @@
-/*
- * ++Copyright++ 1985, 1993
- * -
- * Copyright (c) 1985, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)res_comp.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: res_comp.c,v 8.13 1998/04/07 04:24:06 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <errno.h>
-#include <resolv.h>
-#include <stdio.h>
-
-#if defined(BSD) && (BSD >= 199103)
-# include <unistd.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-static int	ns_name_ntop __P((const u_char *, char *, size_t));
-static int	ns_name_pton __P((const char *, u_char *, size_t));
-static int	ns_name_unpack __P((const u_char *, const u_char *,
-				    const u_char *, u_char *, size_t));
-static int	ns_name_pack __P((const u_char *, u_char *, int,
-				  const u_char **, const u_char **));
-static int	ns_name_uncompress __P((const u_char *, const u_char *,
-					const u_char *, char *, size_t));
-static int	ns_name_compress __P((const char *, u_char *, size_t,
-				      const u_char **, const u_char **));
-static int	ns_name_skip __P((const u_char **, const u_char *));
-
-/*
- * Expand compressed domain name 'comp_dn' to full domain name.
- * 'msg' is a pointer to the begining of the message,
- * 'eomorig' points to the first location after the message,
- * 'exp_dn' is a pointer to a buffer of size 'length' for the result.
- * Return size of compressed name or -1 if there was an error.
- */
-int
-dn_expand(const u_char *msg, const u_char *eom, const u_char *src,
-	  char *dst, int dstsiz)
-{
-	int n = ns_name_uncompress(msg, eom, src, dst, (size_t)dstsiz);
-
-	if (n > 0 && dst[0] == '.')
-		dst[0] = '\0';
-	return (n);
-}
-
-/*
- * Pack domain name 'exp_dn' in presentation form into 'comp_dn'.
- * Return the size of the compressed name or -1.
- * 'length' is the size of the array pointed to by 'comp_dn'.
- */
-int
-dn_comp(const char *src, u_char *dst, int dstsiz,
-	u_char **dnptrs, u_char **lastdnptr)
-{
-	return (ns_name_compress(src, dst, (size_t)dstsiz,
-				 (const u_char **)dnptrs,
-				 (const u_char **)lastdnptr));
-}
-
-/*
- * Skip over a compressed domain name. Return the size or -1.
- */
-int
-__dn_skipname(const u_char *ptr, const u_char *eom) {
-	const u_char *saveptr = ptr;
-
-	if (ns_name_skip(&ptr, eom) == -1)
-		return (-1);
-	return (ptr - saveptr);
-}
-
-/*
- * Verify that a domain name uses an acceptable character set.
- */
-
-/*
- * Note the conspicuous absence of ctype macros in these definitions.  On
- * non-ASCII hosts, we can't depend on string literals or ctype macros to
- * tell us anything about network-format data.  The rest of the BIND system
- * is not careful about this, but for some reason, we're doing it right here.
- */
-#define PERIOD 0x2e
-#define	hyphenchar(c) ((c) == 0x2d)
-#define bslashchar(c) ((c) == 0x5c)
-#define periodchar(c) ((c) == PERIOD)
-#define asterchar(c) ((c) == 0x2a)
-#define alphachar(c) (((c) >= 0x41 && (c) <= 0x5a) \
-		   || ((c) >= 0x61 && (c) <= 0x7a))
-#define digitchar(c) ((c) >= 0x30 && (c) <= 0x39)
-
-#define borderchar(c) (alphachar(c) || digitchar(c))
-#define middlechar(c) (borderchar(c) || hyphenchar(c))
-#define	domainchar(c) ((c) > 0x20 && (c) < 0x7f)
-
-int
-res_hnok(dn)
-	const char *dn;
-{
-	int ppch = '\0', pch = PERIOD, ch = *dn++;
-
-	while (ch != '\0') {
-		int nch = *dn++;
-
-		if (periodchar(ch)) {
-			NULL;
-		} else if (periodchar(pch)) {
-			if (!borderchar(ch))
-				return (0);
-		} else if (periodchar(nch) || nch == '\0') {
-			if (!borderchar(ch))
-				return (0);
-		} else {
-			if (!middlechar(ch))
-				return (0);
-		}
-		ppch = pch, pch = ch, ch = nch;
-	}
-	return (1);
-}
-
-/*
- * hostname-like (A, MX, WKS) owners can have "*" as their first label
- * but must otherwise be as a host name.
- */
-int
-res_ownok(dn)
-	const char *dn;
-{
-	if (asterchar(dn[0])) {
-		if (periodchar(dn[1]))
-			return (res_hnok(dn+2));
-		if (dn[1] == '\0')
-			return (1);
-	}
-	return (res_hnok(dn));
-}
-
-/*
- * SOA RNAMEs and RP RNAMEs can have any printable character in their first
- * label, but the rest of the name has to look like a host name.
- */
-int
-res_mailok(dn)
-	const char *dn;
-{
-	int ch, escaped = 0;
-
-	/* "." is a valid missing representation */
-	if (*dn == '\0')
-		return(1);
-
-	/* otherwise <label>.<hostname> */
-	while ((ch = *dn++) != '\0') {
-		if (!domainchar(ch))
-			return (0);
-		if (!escaped && periodchar(ch))
-			break;
-		if (escaped)
-			escaped = 0;
-		else if (bslashchar(ch))
-			escaped = 1;
-	}
-	if (periodchar(ch))
-		return (res_hnok(dn));
-	return(0);
-}
-
-/*
- * This function is quite liberal, since RFC 1034's character sets are only
- * recommendations.
- */
-int
-res_dnok(dn)
-	const char *dn;
-{
-	int ch;
-
-	while ((ch = *dn++) != '\0')
-		if (!domainchar(ch))
-			return (0);
-	return (1);
-}
-
-/*
- * Routines to insert/extract short/long's.
- */
-
-u_int16_t
-_getshort(msgp)
-	register const u_char *msgp;
-{
-	register u_int16_t u;
-
-	GETSHORT(u, msgp);
-	return (u);
-}
-
-#ifdef NeXT
-/*
- * nExt machines have some funky library conventions, which we must maintain.
- */
-u_int16_t
-res_getshort(msgp)
-	register const u_char *msgp;
-{
-	return (_getshort(msgp));
-}
-#endif
-
-u_int32_t
-_getlong(msgp)
-	register const u_char *msgp;
-{
-	register u_int32_t u;
-
-	GETLONG(u, msgp);
-	return (u);
-}
-
-void
-#if defined(__STDC__) || defined(__cplusplus)
-__putshort(register u_int16_t s, register u_char *msgp)	/* must match proto */
-#else
-__putshort(s, msgp)
-	register u_int16_t s;
-	register u_char *msgp;
-#endif
-{
-	PUTSHORT(s, msgp);
-}
-
-void
-__putlong(l, msgp)
-	register u_int32_t l;
-	register u_char *msgp;
-{
-	PUTLONG(l, msgp);
-}
-
-/* ++ From BIND 8.1.1. ++ */
-/*
- * Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-/*"Id: ns_name.c,v 1.1 1997/12/13 02:41:13 vixie Exp vixie"*/
-
-/*#include "port_before.h"*/
-
-/*#include <sys/types.h>*/
-
-/*#include <netinet/in.h>*/
-/*#include <arpa/nameser.h>*/
-
-/*#include <errno.h>*/
-/*#include <resolv.h>*/
-/*#include <string.h>*/
-
-/*#include "port_after.h"*/
-
-#define NS_CMPRSFLGS	0xc0	/* Flag bits indicating name compression. */
-#define NS_MAXCDNAME	255	/* maximum compressed domain name */
-
-/* Data. */
-
-static char		digits[] = "0123456789";
-
-/* Forward. */
-
-static int		special(int);
-static int		printable(int);
-static int		dn_find(const u_char *, const u_char *,
-				const u_char * const *,
-				const u_char * const *);
-
-/* Public. */
-
-/*
- * ns_name_ntop(src, dst, dstsiz)
- *	Convert an encoded domain name to printable ascii as per RFC1035.
- * return:
- *	Number of bytes written to buffer, or -1 (with errno set)
- * notes:
- *	The root is returned as "."
- *	All other domains are returned in non absolute form
- */
-static int
-ns_name_ntop(src, dst, dstsiz)
-	const u_char *src;
-	char *dst;
-	size_t dstsiz;
-{
-	const u_char *cp;
-	char *dn, *eom;
-	u_char c;
-	u_int n;
-
-	cp = src;
-	dn = dst;
-	eom = dst + dstsiz;
-
-	while ((n = *cp++) != 0) {
-		if ((n & NS_CMPRSFLGS) != 0) {
-			/* Some kind of compression pointer. */
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		if (dn != dst) {
-			if (dn >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			*dn++ = '.';
-		}
-		if (dn + n >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		for ((void)NULL; n > 0; n--) {
-			c = *cp++;
-			if (special(c)) {
-				if (dn + 1 >= eom) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dn++ = '\\';
-				*dn++ = (char)c;
-			} else if (!printable(c)) {
-				if (dn + 3 >= eom) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dn++ = '\\';
-				*dn++ = digits[c / 100];
-				*dn++ = digits[(c % 100) / 10];
-				*dn++ = digits[c % 10];
-			} else {
-				if (dn >= eom) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dn++ = (char)c;
-			}
-		}
-	}
-	if (dn == dst) {
-		if (dn >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*dn++ = '.';
-	}
-	if (dn >= eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	*dn++ = '\0';
-	return (dn - dst);
-}
-
-/*
- * ns_name_pton(src, dst, dstsiz)
- *	Convert a ascii string into an encoded domain name as per RFC1035.
- * return:
- *	-1 if it fails
- *	1 if string was fully qualified
- *	0 is string was not fully qualified
- * notes:
- *	Enforces label and domain length limits.
- */
-
-static int
-ns_name_pton(src, dst, dstsiz)
-	const char *src;
-	u_char *dst;
-	size_t dstsiz;
-{
-	u_char *label, *bp, *eom;
-	int c, n, escaped;
-	char *cp;
-
-	escaped = 0;
-	bp = dst;
-	eom = dst + dstsiz;
-	label = bp++;
-
-	while ((c = *src++) != 0) {
-		if (escaped) {
-			if ((cp = strchr(digits, c)) != NULL) {
-				n = (cp - digits) * 100;
-				if ((c = *src++) == 0 ||
-				    (cp = strchr(digits, c)) == NULL) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				n += (cp - digits) * 10;
-				if ((c = *src++) == 0 ||
-				    (cp = strchr(digits, c)) == NULL) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				n += (cp - digits);
-				if (n > 255) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				c = n;
-			}
-			escaped = 0;
-		} else if (c == '\\') {
-			escaped = 1;
-			continue;
-		} else if (c == '.') {
-			c = (bp - label - 1);
-			if ((c & NS_CMPRSFLGS) != 0) {	/* Label too big. */
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			if (label >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			*label = c;
-			/* Fully qualified ? */
-			if (*src == '\0') {
-				if (c != 0) {
-					if (bp >= eom) {
-						errno = EMSGSIZE;
-						return (-1);
-					}
-					*bp++ = '\0';
-				}
-				if ((bp - dst) > MAXCDNAME) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				return (1);
-			}
-			if (c == 0) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			label = bp++;
-			continue;
-		}
-		if (bp >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*bp++ = (u_char)c;
-	}
-	c = (bp - label - 1);
-	if ((c & NS_CMPRSFLGS) != 0) {		/* Label too big. */
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	if (label >= eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	*label = c;
-	if (c != 0) {
-		if (bp >= eom) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		*bp++ = 0;
-	}
-	if ((bp - dst) > MAXCDNAME) {	/* src too big */
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	return (0);
-}
-
-/*
- * ns_name_unpack(msg, eom, src, dst, dstsiz)
- *	Unpack a domain name from a message, source may be compressed.
- * return:
- *	-1 if it fails, or consumed octets if it succeeds.
- */
-static int
-ns_name_unpack(msg, eom, src, dst, dstsiz)
-	const u_char *msg;
-	const u_char *eom;
-	const u_char *src;
-	u_char *dst;
-	size_t dstsiz;
-{
-	const u_char *srcp, *dstlim;
-	u_char *dstp;
-	int n, c, len, checked;
-
-	len = -1;
-	checked = 0;
-	dstp = dst;
-	srcp = src;
-	dstlim = dst + dstsiz;
-	if (srcp < msg || srcp >= eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	/* Fetch next label in domain name. */
-	while ((n = *srcp++) != 0) {
-		/* Check for indirection. */
-		switch (n & NS_CMPRSFLGS) {
-		case 0:
-			/* Limit checks. */
-			if (dstp + n + 1 >= dstlim || srcp + n >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			checked += n + 1;
-			*dstp++ = n;
-			memcpy(dstp, srcp, n);
-			dstp += n;
-			srcp += n;
-			break;
-
-		case NS_CMPRSFLGS:
-			if (srcp >= eom) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			if (len < 0)
-				len = srcp - src + 1;
-			srcp = msg + (((n & 0x3f) << 8) | (*srcp & 0xff));
-			if (srcp < msg || srcp >= eom) {  /* Out of range. */
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			checked += 2;
-			/*
-			 * Check for loops in the compressed name;
-			 * if we've looked at the whole message,
-			 * there must be a loop.
-			 */
-			if (checked >= eom - msg) {
-				errno = EMSGSIZE;
-				return (-1);
-			}
-			break;
-
-		default:
-			errno = EMSGSIZE;
-			return (-1);			/* flag error */
-		}
-	}
-	*dstp = '\0';
-	if (len < 0)
-		len = srcp - src;
-	return (len);
-}
-
-/*
- * ns_name_pack(src, dst, dstsiz, dnptrs, lastdnptr)
- *	Pack domain name 'domain' into 'comp_dn'.
- * return:
- *	Size of the compressed name, or -1.
- * notes:
- *	'dnptrs' is an array of pointers to previous compressed names.
- *	dnptrs[0] is a pointer to the beginning of the message. The array
- *	ends with NULL.
- *	'lastdnptr' is a pointer to the end of the array pointed to
- *	by 'dnptrs'.
- * Side effects:
- *	The list of pointers in dnptrs is updated for labels inserted into
- *	the message as we compress the name.  If 'dnptr' is NULL, we don't
- *	try to compress names. If 'lastdnptr' is NULL, we don't update the
- *	list.
- */
-static int
-ns_name_pack(src, dst, dstsiz, dnptrs, lastdnptr)
-	const u_char *src;
-	u_char *dst;
-	int dstsiz;
-	const u_char **dnptrs;
-	const u_char **lastdnptr;
-{
-	u_char *dstp;
-	const u_char **cpp, **lpp, *eob, *msg;
-	const u_char *srcp;
-	int n, l;
-
-	srcp = src;
-	dstp = dst;
-	eob = dstp + dstsiz;
-	lpp = cpp = NULL;
-	if (dnptrs != NULL) {
-		if ((msg = *dnptrs++) != NULL) {
-			for (cpp = dnptrs; *cpp != NULL; cpp++)
-				(void)NULL;
-			lpp = cpp;	/* end of list to search */
-		}
-	} else
-		msg = NULL;
-
-	/* make sure the domain we are about to add is legal */
-	l = 0;
-	do {
-		n = *srcp;
-		if ((n & NS_CMPRSFLGS) != 0) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		l += n + 1;
-		if (l > MAXCDNAME) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		srcp += n + 1;
-	} while (n != 0);
-
-	srcp = src;
-	do {
-		/* Look to see if we can use pointers. */
-		n = *srcp;
-		if (n != 0 && msg != NULL) {
-			l = dn_find(srcp, msg, (const u_char * const *)dnptrs,
-				    (const u_char * const *)lpp);
-			if (l >= 0) {
-				if (dstp + 1 >= eob) {
-					errno = EMSGSIZE;
-					return (-1);
-				}
-				*dstp++ = (l >> 8) | NS_CMPRSFLGS;
-				*dstp++ = l % 256;
-				return (dstp - dst);
-			}
-			/* Not found, save it. */
-			if (lastdnptr != NULL && cpp < lastdnptr - 1 &&
-			    (dstp - msg) < 0x4000) {
-				*cpp++ = dstp;
-				*cpp = NULL;
-			}
-		}
-		/* copy label to buffer */
-		if (n & NS_CMPRSFLGS) {		/* Should not happen. */
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		if (dstp + 1 + n >= eob) {
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		memcpy(dstp, srcp, n + 1);
-		srcp += n + 1;
-		dstp += n + 1;
-	} while (n != 0);
-
-	if (dstp > eob) {
-		if (msg != NULL)
-			*lpp = NULL;
-		errno = EMSGSIZE;
-		return (-1);
-	} 
-	return (dstp - dst);
-}
-
-/*
- * ns_name_uncompress(msg, eom, src, dst, dstsiz)
- *	Expand compressed domain name to presentation format.
- * return:
- *	Number of bytes read out of `src', or -1 (with errno set).
- * note:
- *	Root domain returns as "." not "".
- */
-static int
-ns_name_uncompress(msg, eom, src, dst, dstsiz)
-	const u_char *msg;
-	const u_char *eom;
-	const u_char *src;
-	char *dst;
-	size_t dstsiz;
-{
-	u_char tmp[NS_MAXCDNAME];
-	int n;
-	
-	if ((n = ns_name_unpack(msg, eom, src, tmp, sizeof tmp)) == -1)
-		return (-1);
-	if (ns_name_ntop(tmp, dst, dstsiz) == -1)
-		return (-1);
-	return (n);
-}
-
-/*
- * ns_name_compress(src, dst, dstsiz, dnptrs, lastdnptr)
- *	Compress a domain name into wire format, using compression pointers.
- * return:
- *	Number of bytes consumed in `dst' or -1 (with errno set).
- * notes:
- *	'dnptrs' is an array of pointers to previous compressed names.
- *	dnptrs[0] is a pointer to the beginning of the message.
- *	The list ends with NULL.  'lastdnptr' is a pointer to the end of the
- *	array pointed to by 'dnptrs'. Side effect is to update the list of
- *	pointers for labels inserted into the message as we compress the name.
- *	If 'dnptr' is NULL, we don't try to compress names. If 'lastdnptr'
- *	is NULL, we don't update the list.
- */
-static int
-ns_name_compress(src, dst, dstsiz, dnptrs, lastdnptr)
-	const char *src;
-	u_char *dst;
-	size_t dstsiz;
-	const u_char **dnptrs;
-	const u_char **lastdnptr;
-{
-	u_char tmp[NS_MAXCDNAME];
-
-	if (ns_name_pton(src, tmp, sizeof tmp) == -1)
-		return (-1);
-	return (ns_name_pack(tmp, dst, dstsiz, dnptrs, lastdnptr));
-}
-
-/*
- * ns_name_skip(ptrptr, eom)
- *	Advance *ptrptr to skip over the compressed name it points at.
- * return:
- *	0 on success, -1 (with errno set) on failure.
- */
-static int
-ns_name_skip(ptrptr, eom)
-	const u_char **ptrptr;
-	const u_char *eom;
-{
-	const u_char *cp;
-	u_int n;
-
-	cp = *ptrptr;
-	while (cp < eom && (n = *cp++) != 0) {
-		/* Check for indirection. */
-		switch (n & NS_CMPRSFLGS) {
-		case 0:			/* normal case, n == len */
-			cp += n;
-			continue;
-		case NS_CMPRSFLGS:	/* indirection */
-			cp++;
-			break;
-		default:		/* illegal type */
-			errno = EMSGSIZE;
-			return (-1);
-		}
-		break;
-	}
-	if (cp > eom) {
-		errno = EMSGSIZE;
-		return (-1);
-	}
-	*ptrptr = cp;
-	return (0);
-}
-
-/* Private. */
-
-/*
- * special(ch)
- *	Thinking in noninternationalized USASCII (per the DNS spec),
- *	is this characted special ("in need of quoting") ?
- * return:
- *	boolean.
- */
-static int
-special(ch)
-	int ch;
-{
-	switch (ch) {
-	case 0x22: /* '"' */
-	case 0x2E: /* '.' */
-	case 0x3B: /* ';' */
-	case 0x5C: /* '\\' */
-	/* Special modifiers in zone files. */
-	case 0x40: /* '@' */
-	case 0x24: /* '$' */
-		return (1);
-	default:
-		return (0);
-	}
-}
-
-/*
- * printable(ch)
- *	Thinking in noninternationalized USASCII (per the DNS spec),
- *	is this character visible and not a space when printed ?
- * return:
- *	boolean.
- */
-static int
-printable(ch)
-	int ch;
-{
-	return (ch > 0x20 && ch < 0x7f);
-}
-
-/*
- *	Thinking in noninternationalized USASCII (per the DNS spec),
- *	convert this character to lower case if it's upper case.
- */
-static int
-mklower(ch)
-	int ch;
-{
-	if (ch >= 0x41 && ch <= 0x5A)
-		return (ch + 0x20);
-	return (ch);
-}
-
-/*
- * dn_find(domain, msg, dnptrs, lastdnptr)
- *	Search for the counted-label name in an array of compressed names.
- * return:
- *	offset from msg if found, or -1.
- * notes:
- *	dnptrs is the pointer to the first name on the list,
- *	not the pointer to the start of the message.
- */
-static int
-dn_find(domain, msg, dnptrs, lastdnptr)
-	const u_char *domain;
-	const u_char *msg;
-	const u_char * const *dnptrs;
-	const u_char * const *lastdnptr;
-{
-	const u_char *dn, *cp, *sp;
-	const u_char * const *cpp;
-	u_int n;
-
-	for (cpp = dnptrs; cpp < lastdnptr; cpp++) {
-		dn = domain;
-		sp = cp = *cpp;
-		while ((n = *cp++) != 0) {
-			/*
-			 * check for indirection
-			 */
-			switch (n & NS_CMPRSFLGS) {
-			case 0:			/* normal case, n == len */
-				if (n != *dn++)
-					goto next;
-				for ((void)NULL; n > 0; n--)
-					if (mklower(*dn++) != mklower(*cp++))
-						goto next;
-				/* Is next root for both ? */
-				if (*dn == '\0' && *cp == '\0')
-					return (sp - msg);
-				if (*dn)
-					continue;
-				goto next;
-
-			case NS_CMPRSFLGS:	/* indirection */
-				cp = msg + (((n & 0x3f) << 8) | *cp);
-				break;
-
-			default:	/* illegal type */
-				errno = EMSGSIZE;
-				return (-1);
-			}
-		}
- next: ;
-	}
-	errno = ENOENT;
-	return (-1);
-}
-
-/* -- From BIND 8.1.1. -- */
diff --git a/contrib/bind/res/res_data.c b/contrib/bind/res/res_data.c
deleted file mode 100644
index 3d267074260bb..0000000000000
--- a/contrib/bind/res/res_data.c
+++ /dev/null
@@ -1,115 +0,0 @@
-/*
- * ++Copyright++ 1995
- * -
- * Copyright (c) 1995
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char rcsid[] = "$Id: res_data.c,v 8.2 1996/08/05 08:31:35 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <ctype.h>
-#include <resolv.h>
-#if defined(BSD) && (BSD >= 199103)
-# include <unistd.h>
-# include <stdlib.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-const char *_res_opcodes[] = {
-	"QUERY",
-	"IQUERY",
-	"CQUERYM",
-	"CQUERYU",	/* experimental */
-	"NOTIFY",	/* experimental */
-	"5",
-	"6",
-	"7",
-	"8",
-	"UPDATEA",
-	"UPDATED",
-	"UPDATEDA",
-	"UPDATEM",
-	"UPDATEMA",
-	"ZONEINIT",
-	"ZONEREF",
-};
-
-const char *_res_resultcodes[] = {
-	"NOERROR",
-	"FORMERR",
-	"SERVFAIL",
-	"NXDOMAIN",
-	"NOTIMP",
-	"REFUSED",
-	"6",
-	"7",
-	"8",
-	"9",
-	"10",
-	"11",
-	"12",
-	"13",
-	"14",
-	"NOCHANGE",
-};
diff --git a/contrib/bind/res/res_debug.c b/contrib/bind/res/res_debug.c
deleted file mode 100644
index 48512fa25dee7..0000000000000
--- a/contrib/bind/res/res_debug.c
+++ /dev/null
@@ -1,1538 +0,0 @@
-/*
- * ++Copyright++ 1985, 1990, 1993
- * -
- * Copyright (c) 1985, 1990, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * Portions Copyright (c) 1995 by International Business Machines, Inc.
- *
- * International Business Machines, Inc. (hereinafter called IBM) grants
- * permission under its copyrights to use, copy, modify, and distribute this
- * Software with or without fee, provided that the above copyright notice and
- * all paragraphs of this notice appear in all copies, and that the name of IBM
- * not be used in connection with the marketing of any product incorporating
- * the Software or modifications thereof, without specific, written prior
- * permission.
- *
- * To the extent it has a right to do so, IBM grants an immunity from suit
- * under its patents, if any, for the use, sale or manufacture of products to
- * the extent that such products are used for performing Domain Name System
- * dynamic updates in TCP/IP networks by means of the Software.  No immunity is
- * granted for any product per se or for any other function of any product.
- *
- * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
- * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
- * PARTICULAR PURPOSE.  IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
- * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
- * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
- * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)res_debug.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: res_debug.c,v 8.20 1997/06/01 20:34:37 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/param.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <ctype.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <time.h>
-
-#if defined(BSD) && (BSD >= 199103) && defined(AF_INET6)
-# include <stdlib.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-#if defined(USE_OPTIONS_H)
-# include "../conf/options.h"
-#endif
-
-extern const char *_res_opcodes[];
-extern const char *_res_resultcodes[];
-
-/* XXX: we should use getservbyport() instead. */
-static const char *
-dewks(wks)
-	int wks;
-{
-	static char nbuf[20];
-
-	switch (wks) {
-	case 5: return "rje";
-	case 7: return "echo";
-	case 9: return "discard";
-	case 11: return "systat";
-	case 13: return "daytime";
-	case 15: return "netstat";
-	case 17: return "qotd";
-	case 19: return "chargen";
-	case 20: return "ftp-data";
-	case 21: return "ftp";
-	case 23: return "telnet";
-	case 25: return "smtp";
-	case 37: return "time";
-	case 39: return "rlp";
-	case 42: return "name";
-	case 43: return "whois";
-	case 53: return "domain";
-	case 57: return "apts";
-	case 59: return "apfs";
-	case 67: return "bootps";
-	case 68: return "bootpc";
-	case 69: return "tftp";
-	case 77: return "rje";
-	case 79: return "finger";
-	case 87: return "link";
-	case 95: return "supdup";
-	case 100: return "newacct";
-	case 101: return "hostnames";
-	case 102: return "iso-tsap";
-	case 103: return "x400";
-	case 104: return "x400-snd";
-	case 105: return "csnet-ns";
-	case 109: return "pop-2";
-	case 111: return "sunrpc";
-	case 113: return "auth";
-	case 115: return "sftp";
-	case 117: return "uucp-path";
-	case 119: return "nntp";
-	case 121: return "erpc";
-	case 123: return "ntp";
-	case 133: return "statsrv";
-	case 136: return "profile";
-	case 144: return "NeWS";
-	case 161: return "snmp";
-	case 162: return "snmp-trap";
-	case 170: return "print-srv";
-	default: (void) sprintf(nbuf, "%d", wks); return (nbuf);
-	}
-}
-
-/* XXX: we should use getprotobynumber() instead. */
-static const char *
-deproto(protonum)
-	int protonum;
-{
-	static char nbuf[20];
-
-	switch (protonum) {
-	case 1: return "icmp";
-	case 2: return "igmp";
-	case 3: return "ggp";
-	case 5: return "st";
-	case 6: return "tcp";
-	case 7: return "ucl";
-	case 8: return "egp";
-	case 9: return "igp";
-	case 11: return "nvp-II";
-	case 12: return "pup";
-	case 16: return "chaos";
-	case 17: return "udp";
-	default: (void) sprintf(nbuf, "%d", protonum); return (nbuf);
-	}
-}
-
-static const u_char *
-do_rrset(msg, len, cp, cnt, pflag, file, hs)
-	int cnt, pflag, len;
-	const u_char *cp, *msg;
-	const char *hs;
-	FILE *file;
-{
-	int n;
-	int sflag;
-
-	/*
-	 * Print answer records.
-	 */
-	sflag = (_res.pfcode & pflag);
-	if (n = ntohs(cnt)) {
-		if ((!_res.pfcode) ||
-		    ((sflag) && (_res.pfcode & RES_PRF_HEAD1)))
-			fprintf(file, hs);
-		while (--n >= 0) {
-			if ((!_res.pfcode) || sflag) {
-				cp = p_rr(cp, msg, file);
-			} else {
-				unsigned int dlen;
-				cp += __dn_skipname(cp, cp + MAXCDNAME);
-				cp += INT16SZ;
-				cp += INT16SZ;
-				cp += INT32SZ;
-				dlen = _getshort((u_char*)cp);
-				cp += INT16SZ;
-				cp += dlen;
-			}
-			if ((cp - msg) > len)
-				return (NULL);
-		}
-		if ((!_res.pfcode) ||
-		    ((sflag) && (_res.pfcode & RES_PRF_HEAD1)))
-			putc('\n', file);
-	}
-	return (cp);
-}
-
-void
-__p_query(msg)
-	const u_char *msg;
-{
-	__fp_query(msg, stdout);
-}
-
-#ifdef ultrix
-#undef p_query
-/* ultrix 4.0's packaging has some icky packaging.  alias for it here.
- * there is more junk of this kind over in res_comp.c.
- */
-void
-p_query(msg)
-	const u_char *msg;
-{
-	__p_query(msg);
-}
-#endif
-
-/*
- * Print the current options.
- * This is intended to be primarily a debugging routine.
- */
-void
-__fp_resstat(statp, file)
-	struct __res_state *statp;
-	FILE *file;
-{
-	register u_long mask;
-
-	fprintf(file, ";; res options:");
-	if (!statp)
-		statp = &_res;
-	for (mask = 1;  mask != 0;  mask <<= 1)
-		if (statp->options & mask)
-			fprintf(file, " %s", p_option(mask));
-	putc('\n', file);
-}
-
-/*
- * Print the contents of a query.
- * This is intended to be primarily a debugging routine.
- */
-void
-__fp_nquery(msg, len, file)
-	const u_char *msg;
-	int len;
-	FILE *file;
-{
-	register const u_char *cp, *endMark;
-	register const HEADER *hp;
-	register int n;
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1)
-		return;
-
-#define TruncTest(x) if (x > endMark) goto trunc
-#define	ErrorTest(x) if (x == NULL) goto error
-
-	/*
-	 * Print header fields.
-	 */
-	hp = (HEADER *)msg;
-	cp = msg + HFIXEDSZ;
-	endMark = msg + len;
-	if ((!_res.pfcode) || (_res.pfcode & RES_PRF_HEADX) || hp->rcode) {
-		fprintf(file, ";; ->>HEADER<<- opcode: %s, status: %s, id: %d",
-			_res_opcodes[hp->opcode],
-			_res_resultcodes[hp->rcode],
-			ntohs(hp->id));
-		putc('\n', file);
-	}
-	if ((!_res.pfcode) || (_res.pfcode & RES_PRF_HEADX))
-		putc(';', file);
-	if ((!_res.pfcode) || (_res.pfcode & RES_PRF_HEAD2)) {
-		fprintf(file, "; flags:");
-		if (hp->qr)
-			fprintf(file, " qr");
-		if (hp->aa)
-			fprintf(file, " aa");
-		if (hp->tc)
-			fprintf(file, " tc");
-		if (hp->rd)
-			fprintf(file, " rd");
-		if (hp->ra)
-			fprintf(file, " ra");
-		if (hp->unused)
-			fprintf(file, " UNUSED-BIT-ON");
-		if (hp->ad)
-			fprintf(file, " ad");
-		if (hp->cd)
-			fprintf(file, " cd");
-	}
-	if ((!_res.pfcode) || (_res.pfcode & RES_PRF_HEAD1)) {
-		fprintf(file, "; Ques: %d", ntohs(hp->qdcount));
-		fprintf(file, ", Ans: %d", ntohs(hp->ancount));
-		fprintf(file, ", Auth: %d", ntohs(hp->nscount));
-		fprintf(file, ", Addit: %d", ntohs(hp->arcount));
-	}
-	if ((!_res.pfcode) || (_res.pfcode & 
-		(RES_PRF_HEADX | RES_PRF_HEAD2 | RES_PRF_HEAD1))) {
-		putc('\n',file);
-	}
-	/*
-	 * Print question records.
-	 */
-	if (n = ntohs(hp->qdcount)) {
-		if ((!_res.pfcode) || (_res.pfcode & RES_PRF_QUES))
-			fprintf(file, ";; QUESTIONS:\n");
-		while (--n >= 0) {
-			if ((!_res.pfcode) || (_res.pfcode & RES_PRF_QUES))
-				fprintf(file, ";;\t");
-			TruncTest(cp);
-			if ((!_res.pfcode) || (_res.pfcode & RES_PRF_QUES))
-				cp = p_cdnname(cp, msg, len, file);
-			else {
-				int n;
-				char name[MAXDNAME];
-
-				if ((n = dn_expand(msg, msg+len, cp, name,
-						sizeof name)) < 0)
-					cp = NULL;
-				else
-					cp += n;
-			}
-			ErrorTest(cp);
-			TruncTest(cp);
-			if ((!_res.pfcode) || (_res.pfcode & RES_PRF_QUES))
-				fprintf(file, ", type = %s",
-					__p_type(_getshort((u_char*)cp)));
-			cp += INT16SZ;
-			TruncTest(cp);
-			if ((!_res.pfcode) || (_res.pfcode & RES_PRF_QUES))
-				fprintf(file, ", class = %s\n",
-					__p_class(_getshort((u_char*)cp)));
-			cp += INT16SZ;
-			if ((!_res.pfcode) || (_res.pfcode & RES_PRF_QUES))
-				putc('\n', file);
-		}
-	}
-	/*
-	 * Print authoritative answer records
-	 */
-	TruncTest(cp);
-	cp = do_rrset(msg, len, cp, hp->ancount, RES_PRF_ANS, file,
-		      ";; ANSWERS:\n");
-	ErrorTest(cp);
-
-	/*
-	 * print name server records
-	 */
-	TruncTest(cp);
-	cp = do_rrset(msg, len, cp, hp->nscount, RES_PRF_AUTH, file,
-		      ";; AUTHORITY RECORDS:\n");
-	ErrorTest(cp);
-
-	TruncTest(cp);
-	/*
-	 * print additional records
-	 */
-	cp = do_rrset(msg, len, cp, hp->arcount, RES_PRF_ADD, file,
-		      ";; ADDITIONAL RECORDS:\n");
-	ErrorTest(cp);
-	return;
- trunc:
-	fprintf(file, "\n;; ...truncated\n");
-	return;
- error:
-	fprintf(file, "\n;; ...malformed\n");
-}
-
-void
-__fp_query(msg, file)
-	const u_char *msg;
-	FILE *file;
-{
-	fp_nquery(msg, PACKETSZ, file);
-}
-
-const u_char *
-__p_cdnname(cp, msg, len, file)
-	const u_char *cp, *msg;
-	int len;
-	FILE *file;
-{
-	char name[MAXDNAME];
-	int n;
-
-	if ((n = dn_expand(msg, msg + len, cp, name, sizeof name)) < 0)
-		return (NULL);
-	if (name[0] == '\0')
-		putc('.', file);
-	else
-		fputs(name, file);
-	return (cp + n);
-}
-
-const u_char *
-__p_cdname(cp, msg, file)
-	const u_char *cp, *msg;
-	FILE *file;
-{
-	return (p_cdnname(cp, msg, PACKETSZ, file));
-}
-
-
-/* Return a fully-qualified domain name from a compressed name (with
-   length supplied).  */
-
-const u_char *
-__p_fqnname(cp, msg, msglen, name, namelen)
-	const u_char *cp, *msg;
-	int msglen;
-	char *name;
-	int namelen;
-{
-	int n, newlen;
-
-	if ((n = dn_expand(msg, cp + msglen, cp, name, namelen)) < 0)
-		return (NULL);
-	newlen = strlen (name);
-	if (newlen == 0 || name[newlen - 1] != '.')
-		if (newlen+1 >= namelen)	/* Lack space for final dot */
-			return (NULL);
-		else
-			strcpy(name + newlen, ".");
-	return (cp + n);
-}
-
-/* XXX:	the rest of these functions need to become length-limited, too. (vix)
- */
-
-const u_char *
-__p_fqname(cp, msg, file)
-	const u_char *cp, *msg;
-	FILE *file;
-{
-	char name[MAXDNAME];
-	const u_char *n;
-
-	n = __p_fqnname(cp, msg, MAXCDNAME, name, sizeof name);
-	if (n == NULL)
-		return (NULL);
-	fputs(name, file);
-	return (n);
-}
-
-/*
- * Print resource record fields in human readable form.
- */
-const u_char *
-__p_rr(cp, msg, file)
-	const u_char *cp, *msg;
-	FILE *file;
-{
-	int type, class, dlen, n, c;
-	struct in_addr inaddr;
-	const u_char *cp1, *cp2;
-	u_int32_t tmpttl, t;
-	int lcnt;
-	u_int16_t keyflags;
-	char rrname[MAXDNAME];		/* The fqdn of this RR */
-	char base64_key[MAX_KEY_BASE64];
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (NULL);
-	}
-	cp = __p_fqnname(cp, msg, MAXCDNAME, rrname, sizeof rrname);
-	if (!cp)
-		return (NULL);			/* compression error */
-	fputs(rrname, file);
-	
-	type = _getshort((u_char*)cp);
-	cp += INT16SZ;
-	class = _getshort((u_char*)cp);
-	cp += INT16SZ;
-	tmpttl = _getlong((u_char*)cp);
-	cp += INT32SZ;
-	dlen = _getshort((u_char*)cp);
-	cp += INT16SZ;
-	cp1 = cp;
-	if ((!_res.pfcode) || (_res.pfcode & RES_PRF_TTLID))
-		fprintf(file, "\t%lu", (u_long)tmpttl);
-	if ((!_res.pfcode) || (_res.pfcode & RES_PRF_CLASS))
-		fprintf(file, "\t%s", __p_class(class));
-	fprintf(file, "\t%s", __p_type(type));
-	/*
-	 * Print type specific data, if appropriate
-	 */
-	switch (type) {
-	case T_A:
-		switch (class) {
-		case C_IN:
-		case C_HS:
-			bcopy(cp, (char *)&inaddr, INADDRSZ);
-			if (dlen == 4) {
-				fprintf(file, "\t%s", inet_ntoa(inaddr));
-				cp += dlen;
-			} else if (dlen == 7) {
-				char *address;
-				u_char protocol;
-				u_short port;
-
-				address = inet_ntoa(inaddr);
-				cp += INADDRSZ;
-				protocol = *(u_char*)cp;
-				cp += sizeof (u_char);
-				port = _getshort((u_char*)cp);
-				cp += INT16SZ;
-				fprintf(file, "\t%s\t; proto %d, port %d",
-					address, protocol, port);
-			}
-			break;
-		default:
-			cp += dlen;
-		}
-		break;
-	case T_CNAME:
-	case T_MB:
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		putc('\t', file);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		break;
-
-	case T_HINFO:
-	case T_ISDN:
-		cp2 = cp + dlen;
-		(void) fputs("\t\"", file);
-		if ((n = (unsigned char) *cp++) != 0) {
-			for (c = n; c > 0 && cp < cp2; c--) {
-				if (strchr("\n\"\\", *cp))
-					(void) putc('\\', file);
-				(void) putc(*cp++, file);
-			}
-		}
-		putc('"', file);
-		if (cp < cp2 && (n = (unsigned char) *cp++) != 0) {
-			(void) fputs ("\t\"", file);
-			for (c = n; c > 0 && cp < cp2; c--) {
-				if (strchr("\n\"\\", *cp))
-					(void) putc('\\', file);
-				(void) putc(*cp++, file);
-			}
-			putc('"', file);
-		} else if (type == T_HINFO) {
-			(void) fputs("\"?\"", file);
-			fprintf(file, "\n;; *** Warning *** OS-type missing");
-		}
-		break;
-
-	case T_SOA:
-		putc('\t', file);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		putc(' ', file);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		fputs(" (\n", file);
-		t = _getlong((u_char*)cp);  cp += INT32SZ;
-		fprintf(file, "\t\t\t%lu\t; serial\n", (u_long)t);
-		t = _getlong((u_char*)cp);  cp += INT32SZ;
-		fprintf(file, "\t\t\t%lu\t; refresh (%s)\n",
-			(u_long)t, __p_time(t));
-		t = _getlong((u_char*)cp);  cp += INT32SZ;
-		fprintf(file, "\t\t\t%lu\t; retry (%s)\n",
-			(u_long)t, __p_time(t));
-		t = _getlong((u_char*)cp);  cp += INT32SZ;
-		fprintf(file, "\t\t\t%lu\t; expire (%s)\n",
-			(u_long)t, __p_time(t));
-		t = _getlong((u_char*)cp);  cp += INT32SZ;
-		fprintf(file, "\t\t\t%lu )\t; minimum (%s)",
-			(u_long)t, __p_time(t));
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-		fprintf(file, "\t%d ", _getshort((u_char*)cp));
-		cp += INT16SZ;
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		break;
-
-	case T_PX:
-		fprintf(file, "\t%d ", _getshort((u_char*)cp));
-		cp += INT16SZ;
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		putc(' ', file);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		break;
-
-	case T_X25:
-		cp2 = cp + dlen;
-		(void) fputs("\t\"", file);
-		if ((n = (unsigned char) *cp++) != 0) {
-			for (c = n; c > 0 && cp < cp2; c--) {
-				if (strchr("\n\"\\", *cp))
-					(void) putc('\\', file);
-				(void) putc(*cp++, file);
-			}
-		}
-		putc('"', file);
-		break;
-
-	case T_TXT:
-		(void) putc('\t', file);
-		cp2 = cp1 + dlen;
-		while (cp < cp2) {
-			putc('"', file);
-			if (n = (unsigned char) *cp++) {
-				for (c = n; c > 0 && cp < cp2; c--) {
-					if (strchr("\n\"\\", *cp))
-						(void) putc('\\', file);
-					(void) putc(*cp++, file);
-				}
-			}
-			putc('"', file);
-			if (cp < cp2)
-				putc(' ', file);
-		}
-		break;
-
-	case T_NSAP:
-		(void) fprintf(file, "\t%s", inet_nsap_ntoa(dlen, cp, NULL));
-		cp += dlen;
-		break;
-
-	case T_AAAA: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		fprintf(file, "\t%s", inet_ntop(AF_INET6, cp, t, sizeof t));
-		cp += dlen;
-		break;
-	    }
-
-	case T_LOC: {
-		char t[255];
-
-		fprintf(file, "\t%s", loc_ntoa(cp, t));
-		cp += dlen;
-		break;
-	    }
-
-	case T_NAPTR: {
-		u_int order, preference;
-
-		order = _getshort(cp);  cp += INT16SZ;
-		preference   = _getshort(cp);  cp += INT16SZ;
-		fprintf(file, "\t%u %u ",order, preference);
-		/* Flags */
-		n = *cp++;
-		fprintf(file,"\"%.*s\" ", (int)n, cp);
-		cp += n;
-		/* Service */
-		n = *cp++;
-		fprintf(file,"\"%.*s\" ", (int)n, cp);
-		cp += n;
-		/* Regexp */
-		n = *cp++;
-		fprintf(file,"\"%.*s\" ", (int)n, cp);
-		cp += n;
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		break;
-	    }
-
-	case T_SRV: {
-		u_int priority, weight, port;
-
-		priority = _getshort(cp);  cp += INT16SZ;
-		weight   = _getshort(cp);  cp += INT16SZ;
-		port     = _getshort(cp);  cp += INT16SZ;
-		fprintf(file, "\t%u %u %u ", priority, weight, port);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		break;
-	    }
-
-	case T_MINFO:
-	case T_RP:
-		putc('\t', file);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		putc(' ', file);
-		if ((cp = p_fqname(cp, msg, file)) == NULL)
-			return (NULL);
-		break;
-
-	case T_UINFO:
-		putc('\t', file);
-		fputs((char *)cp, file);
-		cp += dlen;
-		break;
-
-	case T_UID:
-	case T_GID:
-		if (dlen == 4) {
-			fprintf(file, "\t%u", _getlong((u_char*)cp));
-			cp += INT32SZ;
-		}
-		break;
-
-	case T_WKS:
-		if (dlen < INT32SZ + 1)
-			break;
-		bcopy(cp, (char *)&inaddr, INADDRSZ);
-		cp += INT32SZ;
-		fprintf(file, "\t%s %s ( ",
-			inet_ntoa(inaddr),
-			deproto((int) *cp));
-		cp += sizeof (u_char);
-		n = 0;
-		lcnt = 0;
-		while (cp < cp1 + dlen) {
-			c = *cp++;
-			do {
-				if (c & 0200) {
-					if (lcnt == 0) {
-						fputs("\n\t\t\t", file);
-						lcnt = 5;
-					}
-					fputs(dewks(n), file);
-					putc(' ', file);
-					lcnt--;
-				}
-				c <<= 1;
-			} while (++n & 07);
-		}
-		putc(')', file);
-		break;
-
-	case T_KEY:
-		putc('\t', file);
-		keyflags = _getshort(cp);
-		cp += 2;
-		fprintf(file,"0x%04x", keyflags );	/* flags */
-		fprintf(file," %u", *cp++);	/* protocol */
-		fprintf(file," %u (", *cp++);	/* algorithm */
-
-		n = b64_ntop(cp, (cp1 + dlen) - cp,
-			     base64_key, sizeof base64_key);
-		for (c = 0; c < n; ++c) {
-			if (0 == (c & 0x3F))
-				fprintf(file, "\n\t");
-			putc(base64_key[c], file);  /* public key data */
-		}
-
-		fprintf(file, " )");
-		if (n < 0)
-			fprintf(file, "\t; BAD BASE64");
-		fflush(file);
-		cp = cp1 + dlen;
-		break;
-
-	case T_SIG:
-	        type = _getshort((u_char*)cp);
-		cp += INT16SZ;
-		fprintf(file, " %s", p_type(type));
-		fprintf(file, "\t%d", *cp++);	/* algorithm */
-		/* Check label value and print error if wrong. */
-		n = *cp++;
-		c = dn_count_labels (rrname);
-		if (n != c)
-			fprintf(file, "\t; LABELS WRONG (%d should be %d)\n\t",
-				n, c);
-		/* orig ttl */
-		n = _getlong((u_char*)cp);
-		if (n != tmpttl)
-			fprintf(file, " %u", n);
-		cp += INT32SZ;
-		/* sig expire */
-		fprintf(file, " (\n\t%s",
-				     __p_secstodate(_getlong((u_char*)cp)));
-		cp += INT32SZ;
-		/* time signed */
-		fprintf(file, " %s", __p_secstodate(_getlong((u_char*)cp)));
-		cp += INT32SZ;
-		/* sig footprint */
-		fprintf(file," %u ", _getshort((u_char*)cp));
-		cp += INT16SZ;
-		/* signer's name */
-		cp = p_fqname(cp, msg, file);
-		n = b64_ntop(cp, (cp1 + dlen) - cp,
-			     base64_key, sizeof base64_key);
-		for (c = 0; c < n; c++) {
-			if (0 == (c & 0x3F))
-				fprintf (file, "\n\t");
-			putc(base64_key[c], file);		/* signature */
-		}
-		/* Clean up... */
-		fprintf(file, " )");
-		if (n < 0)
-			fprintf(file, "\t; BAD BASE64");
-		fflush(file);
-		cp = cp1+dlen;
-		break;
-
-#ifdef ALLOW_T_UNSPEC
-	case T_UNSPEC:
-		{
-			int NumBytes = 8;
-			u_char *DataPtr;
-			int i;
-
-			if (dlen < NumBytes) NumBytes = dlen;
-			fprintf(file, "\tFirst %d bytes of hex data:",
-				NumBytes);
-			for (i = 0, DataPtr = cp; i < NumBytes; i++, DataPtr++)
-				fprintf(file, " %x", *DataPtr);
-			cp += dlen;
-		}
-		break;
-#endif /* ALLOW_T_UNSPEC */
-
-	default:
-		fprintf(file, "\t?%d?", type);
-		cp += dlen;
-	}
-#if 0
-	fprintf(file, "\t; dlen=%d, ttl %s\n", dlen, __p_time(tmpttl));
-#else
-	putc('\n', file);
-#endif
-	if (cp - cp1 != dlen) {
-		fprintf(file, ";; packet size error (found %d, dlen was %d)\n",
-			cp - cp1, dlen);
-		cp = NULL;
-	}
-	return (cp);
-}
-
-/*
- * Names of RR classes and qclasses.  Classes and qclasses are the same, except
- * that C_ANY is a qclass but not a class.  (You can ask for records of class
- * C_ANY, but you can't have any records of that class in the database.)
- */
-const struct res_sym __p_class_syms[] = {
-	{C_IN,		"IN"},
-	{C_CHAOS,	"CHAOS"},
-	{C_HS,		"HS"},
-	{C_HS,		"HESIOD"},
-	{C_ANY,		"ANY"},
-	{C_IN, 		(char *)0}
-};
-
-/*
- * Names of RR types and qtypes.  Types and qtypes are the same, except
- * that T_ANY is a qtype but not a type.  (You can ask for records of type
- * T_ANY, but you can't have any records of that type in the database.)
- */
-const struct res_sym __p_type_syms[] = {
-	{T_A,		"A",		"address"},
-	{T_NS,		"NS",		"name server"},
-	{T_MD,		"MD",		"mail destination (deprecated)"},
-	{T_MF,		"MF",		"mail forwarder (deprecated)"},
-	{T_CNAME,	"CNAME",	"canonical name"},
-	{T_SOA,		"SOA",		"start of authority"},
-	{T_MB,		"MB",		"mailbox"},
-	{T_MG,		"MG",		"mail group member"},
-	{T_MR,		"MR",		"mail rename"},
-	{T_NULL,	"NULL",		"null"},
-	{T_WKS,		"WKS",		"well-known service (deprecated)"},
-	{T_PTR,		"PTR",		"domain name pointer"},
-	{T_HINFO,	"HINFO",	"host information"},
-	{T_MINFO,	"MINFO",	"mailbox information"},
-	{T_MX,		"MX",		"mail exchanger"},
-	{T_TXT,		"TXT",		"text"},
-	{T_RP,		"RP",		"responsible person"},
-	{T_AFSDB,	"AFSDB",	"DCE or AFS server"},
-	{T_X25,		"X25",		"X25 address"},
-	{T_ISDN,	"ISDN",		"ISDN address"},
-	{T_RT,		"RT",		"router"},
-	{T_NSAP,	"NSAP",		"nsap address"},
-	{T_NSAP_PTR,	"NSAP_PTR",	"domain name pointer"},
-	{T_SIG,		"SIG",		"signature"},
-	{T_KEY,		"KEY",		"key"},
-	{T_PX,		"PX",		"mapping information"},
-	{T_GPOS,	"GPOS",		"geographical position (withdrawn)"},
-	{T_AAAA,	"AAAA",		"IPv6 address"},
-	{T_LOC,		"LOC",		"location"},
-	{T_NXT,		"NXT",		"next valid name (unimplemented)"},
-	{T_EID,		"EID",		"endpoint identifier (unimplemented)"},
-	{T_NIMLOC,	"NIMLOC",	"NIMROD locator (unimplemented)"},
-	{T_SRV,		"SRV",		"server selection"},
-	{T_ATMA,	"ATMA",		"ATM address (unimplemented)"},
-	{T_IXFR,	"IXFR",		"incremental zone transfer"},
-	{T_AXFR,	"AXFR",		"zone transfer"},
-	{T_MAILB,	"MAILB",	"mailbox-related data (deprecated)"},
-	{T_MAILA,	"MAILA",	"mail agent (deprecated)"},
-	{T_UINFO,	"UINFO",	"user information (nonstandard)"},
-	{T_UID,		"UID",		"user ID (nonstandard)"},
-	{T_GID,		"GID",		"group ID (nonstandard)"},
-	{T_NAPTR,	"NAPTR",	"URN Naming Authority"},
-#ifdef ALLOW_T_UNSPEC
-	{T_UNSPEC,	"UNSPEC",	"unspecified data (nonstandard)"},
-#endif /* ALLOW_T_UNSPEC */
-	{T_ANY,		"ANY",		"\"any\""},
-	{0, 		NULL,		NULL}
-};
-
-int
-__sym_ston(syms, name, success)
-	const struct res_sym *syms;
-	char *name;
-	int *success;
-{
-	for (NULL; syms->name != 0; syms++) {
-		if (strcasecmp (name, syms->name) == 0) {
-			if (success)
-				*success = 1;
-			return (syms->number);
-		}
-	}
-	if (success)
-		*success = 0;
-	return (syms->number);		/* The default value. */
-}
-
-const char *
-__sym_ntos(syms, number, success)
-	const struct res_sym *syms;
-	int number;
-	int *success;
-{
-	static char unname[20];
-
-	for (NULL; syms->name != 0; syms++) {
-		if (number == syms->number) {
-			if (success)
-				*success = 1;
-			return (syms->name);
-		}
-	}
-
-	sprintf (unname, "%d", number);
-	if (success)
-		*success = 0;
-	return (unname);
-}
-
-
-const char *
-__sym_ntop(syms, number, success)
-	const struct res_sym *syms;
-	int number;
-	int *success;
-{
-	static char unname[20];
-
-	for (NULL; syms->name != 0; syms++) {
-		if (number == syms->number) {
-			if (success)
-				*success = 1;
-			return (syms->humanname);
-		}
-	}
-	sprintf(unname, "%d", number);
-	if (success)
-		*success = 0;
-	return (unname);
-}
-
-/*
- * Return a string for the type
- */
-const char *
-__p_type(type)
-	int type;
-{
-	return (__sym_ntos (__p_type_syms, type, (int *)0));
-}
-
-/*
- * Return a mnemonic for class
- */
-const char *
-__p_class(class)
-	int class;
-{
-	return (__sym_ntos (__p_class_syms, class, (int *)0));
-}
-
-/*
- * Return a mnemonic for an option
- */
-const char *
-__p_option(option)
-	u_long option;
-{
-	static char nbuf[40];
-
-	switch (option) {
-	case RES_INIT:		return "init";
-	case RES_DEBUG:		return "debug";
-	case RES_AAONLY:	return "aaonly(unimpl)";
-	case RES_USEVC:		return "usevc";
-	case RES_PRIMARY:	return "primry(unimpl)";
-	case RES_IGNTC:		return "igntc";
-	case RES_RECURSE:	return "recurs";
-	case RES_DEFNAMES:	return "defnam";
-	case RES_STAYOPEN:	return "styopn";
-	case RES_DNSRCH:	return "dnsrch";
-	case RES_INSECURE1:	return "insecure1";
-	case RES_INSECURE2:	return "insecure2";
-	default:		sprintf(nbuf, "?0x%lx?", (u_long)option);
-				return (nbuf);
-	}
-}
-
-/*
- * Return a mnemonic for a time to live
- */
-const char *
-p_time(value)
-	u_int32_t value;
-{
-	static char nbuf[40];
-	int secs, mins, hours, days;
-	register char *p;
-
-	if (value == 0) {
-		strcpy(nbuf, "0 secs");
-		return (nbuf);
-	}
-
-	secs = value % 60;
-	value /= 60;
-	mins = value % 60;
-	value /= 60;
-	hours = value % 24;
-	value /= 24;
-	days = value;
-	value = 0;
-
-#define	PLURALIZE(x)	x, (x == 1) ? "" : "s"
-	p = nbuf;
-	if (days) {
-		(void)sprintf(p, "%d day%s", PLURALIZE(days));
-		while (*++p);
-	}
-	if (hours) {
-		if (days)
-			*p++ = ' ';
-		(void)sprintf(p, "%d hour%s", PLURALIZE(hours));
-		while (*++p);
-	}
-	if (mins) {
-		if (days || hours)
-			*p++ = ' ';
-		(void)sprintf(p, "%d min%s", PLURALIZE(mins));
-		while (*++p);
-	}
-	if (secs || ! (days || hours || mins)) {
-		if (days || hours || mins)
-			*p++ = ' ';
-		(void)sprintf(p, "%d sec%s", PLURALIZE(secs));
-	}
-	return (nbuf);
-}
-
-/*
- * routines to convert between on-the-wire RR format and zone file format.
- * Does not contain conversion to/from decimal degrees; divide or multiply
- * by 60*60*1000 for that.
- */
-
-static unsigned int poweroften[10] = {1, 10, 100, 1000, 10000, 100000,
-				      1000000,10000000,100000000,1000000000};
-
-/* takes an XeY precision/size value, returns a string representation. */
-static const char *
-precsize_ntoa(prec)
-	u_int8_t prec;
-{
-	static char retbuf[sizeof "90000000.00"];
-	unsigned long val;
-	int mantissa, exponent;
-
-	mantissa = (int)((prec >> 4) & 0x0f) % 10;
-	exponent = (int)((prec >> 0) & 0x0f) % 10;
-
-	val = mantissa * poweroften[exponent];
-
-	(void) sprintf(retbuf, "%ld.%.2ld", val/100, val%100);
-	return (retbuf);
-}
-
-/* converts ascii size/precision X * 10**Y(cm) to 0xXY.  moves pointer. */
-static u_int8_t
-precsize_aton(strptr)
-	char **strptr;
-{
-	u_int8_t retval = 0;
-	char *cp;
-	int exponent = 0;
-	int mantissa = 0;
-
-	cp = *strptr;
-	while (isdigit(*cp)) {
-		if (mantissa == 0)
-			mantissa = *cp - '0';
-		else
-			exponent++;
-		cp++;
-	}
-
-	if (*cp == '.') {
-		cp++;
-		if (isdigit(*cp)) {
-			if (mantissa == 0)
-				mantissa = *cp - '0';
-			else
-				exponent++;
-			cp++;
-
-			if (isdigit(*cp)) {
-				if (mantissa == 0)
-					mantissa = *cp - '0';
-				else
-					exponent++;
-				cp++;
-			}
-			else
-				exponent++;
-		}
-	}
-	else
-		exponent += 2;
-
-	if (mantissa == 0)
-		exponent = 0;
-	retval = (mantissa << 4) | exponent;
-	*strptr = cp;
-	return (retval);
-}
-
-/* converts ascii lat/lon to unsigned encoded 32-bit number.  moves pointer. */
-static u_int32_t
-latlon2ul(latlonstrptr,which)
-	char **latlonstrptr;
-	int *which;
-{
-	register char *cp;
-	u_int32_t retval;
-	int deg = 0, min = 0, secs = 0, secsfrac = 0;
-
-	cp = *latlonstrptr;
-
-	while (isdigit(*cp))
-		deg = deg * 10 + (*cp++ - '0');
-
-	while (isspace(*cp))
-		cp++;
-
-	if (!(isdigit(*cp)))
-		goto fndhemi;
-
-	while (isdigit(*cp))
-		min = min * 10 + (*cp++ - '0');
-
-	while (isspace(*cp))
-		cp++;
-
-	if (!(isdigit(*cp)))
-		goto fndhemi;
-
-	while (isdigit(*cp))
-		secs = secs * 10 + (*cp++ - '0');
-
-	if (*cp == '.') {		/* decimal seconds */
-		cp++;
-		if (isdigit(*cp)) {
-			secsfrac = (*cp++ - '0') * 100;
-			if (isdigit(*cp)) {
-				secsfrac += (*cp++ - '0') * 10;
-				if (isdigit(*cp)) {
-					secsfrac += (*cp++ - '0');
-				}
-			}
-		}
-	}
-
-	while (!isspace(*cp))	/* if any trailing garbage */
-		cp++;
-
-	while (isspace(*cp))
-		cp++;
-
- fndhemi:
-	switch (*cp) {
-	case 'N': case 'n':
-	case 'E': case 'e':
-		retval = ((unsigned)1<<31)
-			+ (((((deg * 60) + min) * 60) + secs) * 1000)
-			+ secsfrac;
-		break;
-	case 'S': case 's':
-	case 'W': case 'w':
-		retval = ((unsigned)1<<31)
-			- (((((deg * 60) + min) * 60) + secs) * 1000)
-			- secsfrac;
-		break;
-	default:
-		retval = 0;	/* invalid value -- indicates error */
-		break;
-	}
-
-	switch (*cp) {
-	case 'N': case 'n':
-	case 'S': case 's':
-		*which = 1;	/* latitude */
-		break;
-	case 'E': case 'e':
-	case 'W': case 'w':
-		*which = 2;	/* longitude */
-		break;
-	default:
-		*which = 0;	/* error */
-		break;
-	}
-
-	cp++;			/* skip the hemisphere */
-
-	while (!isspace(*cp))	/* if any trailing garbage */
-		cp++;
-
-	while (isspace(*cp))	/* move to next field */
-		cp++;
-
-	*latlonstrptr = cp;
-
-	return (retval);
-}
-
-/* converts a zone file representation in a string to an RDATA on-the-wire
- * representation. */
-int
-loc_aton(ascii, binary)
-	const char *ascii;
-	u_char *binary;
-{
-	const char *cp, *maxcp;
-	u_char *bcp;
-
-	u_int32_t latit = 0, longit = 0, alt = 0;
-	u_int32_t lltemp1 = 0, lltemp2 = 0;
-	int altmeters = 0, altfrac = 0, altsign = 1;
-	u_int8_t hp = 0x16;	/* default = 1e6 cm = 10000.00m = 10km */
-	u_int8_t vp = 0x13;	/* default = 1e3 cm = 10.00m */
-	u_int8_t siz = 0x12;	/* default = 1e2 cm = 1.00m */
-	int which1 = 0, which2 = 0;
-
-	cp = ascii;
-	maxcp = cp + strlen(ascii);
-
-	lltemp1 = latlon2ul(&cp, &which1);
-
-	lltemp2 = latlon2ul(&cp, &which2);
-
-	switch (which1 + which2) {
-	case 3:			/* 1 + 2, the only valid combination */
-		if ((which1 == 1) && (which2 == 2)) { /* normal case */
-			latit = lltemp1;
-			longit = lltemp2;
-		} else if ((which1 == 2) && (which2 == 1)) { /* reversed */
-			longit = lltemp1;
-			latit = lltemp2;
-		} else {	/* some kind of brokenness */
-			return (0);
-		}
-		break;
-	default:		/* we didn't get one of each */
-		return (0);
-	}
-
-	/* altitude */
-	if (*cp == '-') {
-		altsign = -1;
-		cp++;
-	}
-    
-	if (*cp == '+')
-		cp++;
-
-	while (isdigit(*cp))
-		altmeters = altmeters * 10 + (*cp++ - '0');
-
-	if (*cp == '.') {		/* decimal meters */
-		cp++;
-		if (isdigit(*cp)) {
-			altfrac = (*cp++ - '0') * 10;
-			if (isdigit(*cp)) {
-				altfrac += (*cp++ - '0');
-			}
-		}
-	}
-
-	alt = (10000000 + (altsign * (altmeters * 100 + altfrac)));
-
-	while (!isspace(*cp) && (cp < maxcp)) /* if trailing garbage or m */
-		cp++;
-
-	while (isspace(*cp) && (cp < maxcp))
-		cp++;
-
-	if (cp >= maxcp)
-		goto defaults;
-
-	siz = precsize_aton(&cp);
-	
-	while (!isspace(*cp) && (cp < maxcp))	/* if trailing garbage or m */
-		cp++;
-
-	while (isspace(*cp) && (cp < maxcp))
-		cp++;
-
-	if (cp >= maxcp)
-		goto defaults;
-
-	hp = precsize_aton(&cp);
-
-	while (!isspace(*cp) && (cp < maxcp))	/* if trailing garbage or m */
-		cp++;
-
-	while (isspace(*cp) && (cp < maxcp))
-		cp++;
-
-	if (cp >= maxcp)
-		goto defaults;
-
-	vp = precsize_aton(&cp);
-
- defaults:
-
-	bcp = binary;
-	*bcp++ = (u_int8_t) 0;	/* version byte */
-	*bcp++ = siz;
-	*bcp++ = hp;
-	*bcp++ = vp;
-	PUTLONG(latit,bcp);
-	PUTLONG(longit,bcp);
-	PUTLONG(alt,bcp);
-    
-	return (16);		/* size of RR in octets */
-}
-
-/* takes an on-the-wire LOC RR and formats it in a human readable format. */
-const char *
-loc_ntoa(binary, ascii)
-	const u_char *binary;
-	char *ascii;
-{
-	static char *error = "?";
-	register const u_char *cp = binary;
-
-	int latdeg, latmin, latsec, latsecfrac;
-	int longdeg, longmin, longsec, longsecfrac;
-	char northsouth, eastwest;
-	int altmeters, altfrac, altsign;
-
-	const int referencealt = 100000 * 100;
-
-	int32_t latval, longval, altval;
-	u_int32_t templ;
-	u_int8_t sizeval, hpval, vpval, versionval;
-    
-	char *sizestr, *hpstr, *vpstr;
-
-	versionval = *cp++;
-
-	if (versionval) {
-		sprintf(ascii, "; error: unknown LOC RR version");
-		return (ascii);
-	}
-
-	sizeval = *cp++;
-
-	hpval = *cp++;
-	vpval = *cp++;
-
-	GETLONG(templ, cp);
-	latval = (templ - ((unsigned)1<<31));
-
-	GETLONG(templ, cp);
-	longval = (templ - ((unsigned)1<<31));
-
-	GETLONG(templ, cp);
-	if (templ < referencealt) { /* below WGS 84 spheroid */
-		altval = referencealt - templ;
-		altsign = -1;
-	} else {
-		altval = templ - referencealt;
-		altsign = 1;
-	}
-
-	if (latval < 0) {
-		northsouth = 'S';
-		latval = -latval;
-	} else
-		northsouth = 'N';
-
-	latsecfrac = latval % 1000;
-	latval = latval / 1000;
-	latsec = latval % 60;
-	latval = latval / 60;
-	latmin = latval % 60;
-	latval = latval / 60;
-	latdeg = latval;
-
-	if (longval < 0) {
-		eastwest = 'W';
-		longval = -longval;
-	} else
-		eastwest = 'E';
-
-	longsecfrac = longval % 1000;
-	longval = longval / 1000;
-	longsec = longval % 60;
-	longval = longval / 60;
-	longmin = longval % 60;
-	longval = longval / 60;
-	longdeg = longval;
-
-	altfrac = altval % 100;
-	altmeters = (altval / 100) * altsign;
-
-	if ((sizestr = strdup(precsize_ntoa(sizeval))) == NULL)
-		sizestr = error;
-	if ((hpstr = strdup(precsize_ntoa(hpval))) == NULL)
-		hpstr = error;
-	if ((vpstr = strdup(precsize_ntoa(vpval))) == NULL)
-		vpstr = error;
-
-	sprintf(ascii,
-	      "%d %.2d %.2d.%.3d %c %d %.2d %.2d.%.3d %c %d.%.2dm %sm %sm %sm",
-		latdeg, latmin, latsec, latsecfrac, northsouth,
-		longdeg, longmin, longsec, longsecfrac, eastwest,
-		altmeters, altfrac, sizestr, hpstr, vpstr);
-
-	if (sizestr != error)
-		free(sizestr);
-	if (hpstr != error)
-		free(hpstr);
-	if (vpstr != error)
-		free(vpstr);
-
-	return (ascii);
-}
-
-
-/* Return the number of DNS hierarchy levels in the name. */
-int
-__dn_count_labels(name)
-	char *name;
-{
-	int i, len, count;
-
-	len = strlen(name);
-
-	for(i = 0, count = 0; i < len; i++) {
-		if (name[i] == '.')
-			count++;
-	}
-
-	/* don't count initial wildcard */
-	if (name[0] == '*')
-		if (count)
-			count--;
-
-	/* don't count the null label for root. */
-	/* if terminating '.' not found, must adjust */
-	/* count to include last label */
-	if (len > 0 && name[len-1] != '.')
-		count++;
-	return (count);
-}
-
-
-/* 
- * Make dates expressed in seconds-since-Jan-1-1970 easy to read.  
- * SIG records are required to be printed like this, by the Secure DNS RFC.
- */
-char *
-__p_secstodate (secs)
-	unsigned long secs;
-{
-	static char output[15];		/* YYYYMMDDHHMMSS and null */
-	time_t clock = secs;
-	struct tm *time;
-	
-	time = gmtime(&clock);
-	time->tm_year += 1900;
-	time->tm_mon += 1;
-	sprintf(output, "%04d%02d%02d%02d%02d%02d",
-		time->tm_year, time->tm_mon, time->tm_mday,
-		time->tm_hour, time->tm_min, time->tm_sec);
-	return (output);
-}
diff --git a/contrib/bind/res/res_init.c b/contrib/bind/res/res_init.c
deleted file mode 100644
index de20465d7bf38..0000000000000
--- a/contrib/bind/res/res_init.c
+++ /dev/null
@@ -1,655 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989, 1993
- * -
- * Copyright (c) 1985, 1989, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)res_init.c	8.1 (Berkeley) 6/7/93";
-static char rcsid[] = "$Id: res_init.c,v 8.8 1997/06/01 20:34:37 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <ctype.h>
-#include <resolv.h>
-#if defined(BSD) && (BSD >= 199103)
-# include <unistd.h>
-# include <stdlib.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-/*-------------------------------------- info about "sortlist" --------------
- * Marc Majka		1994/04/16
- * Allan Nathanson	1994/10/29 (BIND 4.9.3.x)
- *
- * NetInfo resolver configuration directory support.
- *
- * Allow a NetInfo directory to be created in the hierarchy which
- * contains the same information as the resolver configuration file.
- *
- * - The local domain name is stored as the value of the "domain" property.
- * - The Internet address(es) of the name server(s) are stored as values
- *   of the "nameserver" property.
- * - The name server addresses are stored as values of the "nameserver"
- *   property.
- * - The search list for host-name lookup is stored as values of the
- *   "search" property.
- * - The sortlist comprised of IP address netmask pairs are stored as
- *   values of the "sortlist" property. The IP address and optional netmask
- *   should be seperated by a slash (/) or ampersand (&) character.
- * - Internal resolver variables can be set from the value of the "options"
- *   property.
- */
-#if defined(NeXT)
-#  include <netinfo/ni.h>
-#  define NI_PATH_RESCONF "/locations/resolver"
-#  define NI_TIMEOUT 10
-static int netinfo_res_init __P((int *haveenv, int *havesearch));
-#endif
-
-#if defined(USE_OPTIONS_H)
-# include "../conf/options.h"
-#endif
-
-static void res_setoptions __P((char *, char *));
-
-#ifdef RESOLVSORT
-static const char sort_mask[] = "/&";
-#define ISSORTMASK(ch) (strchr(sort_mask, ch) != NULL)
-static u_int32_t net_mask __P((struct in_addr));
-#endif
-
-#if !defined(isascii)	/* XXX - could be a function */
-# define isascii(c) (!(c & 0200))
-#endif
-
-/*
- * Resolver state default settings.
- */
-
-struct __res_state _res
-# if defined(__BIND_RES_TEXT)
-	= { RES_TIMEOUT, }	/* Motorola, et al. */
-# endif
-	;
-
-/*
- * Set up default settings.  If the configuration file exist, the values
- * there will have precedence.  Otherwise, the server address is set to
- * INADDR_ANY and the default domain name comes from the gethostname().
- *
- * An interrim version of this code (BIND 4.9, pre-4.4BSD) used 127.0.0.1
- * rather than INADDR_ANY ("0.0.0.0") as the default name server address
- * since it was noted that INADDR_ANY actually meant ``the first interface
- * you "ifconfig"'d at boot time'' and if this was a SLIP or PPP interface,
- * it had to be "up" in order for you to reach your own name server.  It
- * was later decided that since the recommended practice is to always 
- * install local static routes through 127.0.0.1 for all your network
- * interfaces, that we could solve this problem without a code change.
- *
- * The configuration file should always be used, since it is the only way
- * to specify a default domain.  If you are running a server on your local
- * machine, you should say "nameserver 0.0.0.0" or "nameserver 127.0.0.1"
- * in the configuration file.
- *
- * Return 0 if completes successfully, -1 on error
- */
-int
-res_init()
-{
-	register FILE *fp;
-	register char *cp, **pp;
-	register int n;
-	char buf[MAXDNAME];
-	int nserv = 0;    /* number of nameserver records read from file */
-	int haveenv = 0;
-	int havesearch = 0;
-#ifdef RESOLVSORT
-	int nsort = 0;
-	char *net;
-#endif
-#ifndef RFC1535
-	int dots;
-#endif
-
-	/*
-	 * These three fields used to be statically initialized.  This made
-	 * it hard to use this code in a shared library.  It is necessary,
-	 * now that we're doing dynamic initialization here, that we preserve
-	 * the old semantics: if an application modifies one of these three
-	 * fields of _res before res_init() is called, res_init() will not
-	 * alter them.  Of course, if an application is setting them to
-	 * _zero_ before calling res_init(), hoping to override what used
-	 * to be the static default, we can't detect it and unexpected results
-	 * will follow.  Zero for any of these fields would make no sense,
-	 * so one can safely assume that the applications were already getting
-	 * unexpected results.
-	 *
-	 * _res.options is tricky since some apps were known to diddle the bits
-	 * before res_init() was first called. We can't replicate that semantic
-	 * with dynamic initialization (they may have turned bits off that are
-	 * set in RES_DEFAULT).  Our solution is to declare such applications
-	 * "broken".  They could fool us by setting RES_INIT but none do (yet).
-	 */
-	if (!_res.retrans)
-		_res.retrans = RES_TIMEOUT;
-	if (!_res.retry)
-		_res.retry = 4;
-	if (!(_res.options & RES_INIT))
-		_res.options = RES_DEFAULT;
-
-	/*
-	 * This one used to initialize implicitly to zero, so unless the app
-	 * has set it to something in particular, we can randomize it now.
-	 */
-	if (!_res.id)
-		_res.id = res_randomid();
-
-#ifdef USELOOPBACK
-	_res.nsaddr.sin_addr = inet_makeaddr(IN_LOOPBACKNET, 1);
-#else
-	_res.nsaddr.sin_addr.s_addr = INADDR_ANY;
-#endif
-	_res.nsaddr.sin_family = AF_INET;
-	_res.nsaddr.sin_port = htons(NAMESERVER_PORT);
-	_res.nscount = 1;
-	_res.ndots = 1;
-	_res.pfcode = 0;
-
-	/* Allow user to override the local domain definition */
-	if ((cp = getenv("LOCALDOMAIN")) != NULL) {
-		(void)strncpy(_res.defdname, cp, sizeof(_res.defdname) - 1);
-		haveenv++;
-
-		/*
-		 * Set search list to be blank-separated strings
-		 * from rest of env value.  Permits users of LOCALDOMAIN
-		 * to still have a search list, and anyone to set the
-		 * one that they want to use as an individual (even more
-		 * important now that the rfc1535 stuff restricts searches)
-		 */
-		cp = _res.defdname;
-		pp = _res.dnsrch;
-		*pp++ = cp;
-		for (n = 0; *cp && pp < _res.dnsrch + MAXDNSRCH; cp++) {
-			if (*cp == '\n')	/* silly backwards compat */
-				break;
-			else if (*cp == ' ' || *cp == '\t') {
-				*cp = 0;
-				n = 1;
-			} else if (n) {
-				*pp++ = cp;
-				n = 0;
-				havesearch = 1;
-			}
-		}
-		/* null terminate last domain if there are excess */
-		while (*cp != '\0' && *cp != ' ' && *cp != '\t' && *cp != '\n')
-			cp++;
-		*cp = '\0';
-		*pp++ = 0;
-	}
-
-#define	MATCH(line, name) \
-	(!strncmp(line, name, sizeof(name) - 1) && \
-	(line[sizeof(name) - 1] == ' ' || \
-	 line[sizeof(name) - 1] == '\t'))
-
-#ifdef	NeXT
-	if (netinfo_res_init(&haveenv, &havesearch) == 0)
-#endif
-	if ((fp = fopen(_PATH_RESCONF, "r")) != NULL) {
-	    /* read the config file */
-	    while (fgets(buf, sizeof(buf), fp) != NULL) {
-		/* skip comments */
-		if (*buf == ';' || *buf == '#')
-			continue;
-		/* read default domain name */
-		if (MATCH(buf, "domain")) {
-		    if (haveenv)	/* skip if have from environ */
-			    continue;
-		    cp = buf + sizeof("domain") - 1;
-		    while (*cp == ' ' || *cp == '\t')
-			    cp++;
-		    if ((*cp == '\0') || (*cp == '\n'))
-			    continue;
-		    strncpy(_res.defdname, cp, sizeof(_res.defdname) - 1);
-		    if ((cp = strpbrk(_res.defdname, " \t\n")) != NULL)
-			    *cp = '\0';
-		    havesearch = 0;
-		    continue;
-		}
-		/* set search list */
-		if (MATCH(buf, "search")) {
-		    if (haveenv)	/* skip if have from environ */
-			    continue;
-		    cp = buf + sizeof("search") - 1;
-		    while (*cp == ' ' || *cp == '\t')
-			    cp++;
-		    if ((*cp == '\0') || (*cp == '\n'))
-			    continue;
-		    strncpy(_res.defdname, cp, sizeof(_res.defdname) - 1);
-		    if ((cp = strchr(_res.defdname, '\n')) != NULL)
-			    *cp = '\0';
-		    /*
-		     * Set search list to be blank-separated strings
-		     * on rest of line.
-		     */
-		    cp = _res.defdname;
-		    pp = _res.dnsrch;
-		    *pp++ = cp;
-		    for (n = 0; *cp && pp < _res.dnsrch + MAXDNSRCH; cp++) {
-			    if (*cp == ' ' || *cp == '\t') {
-				    *cp = 0;
-				    n = 1;
-			    } else if (n) {
-				    *pp++ = cp;
-				    n = 0;
-			    }
-		    }
-		    /* null terminate last domain if there are excess */
-		    while (*cp != '\0' && *cp != ' ' && *cp != '\t')
-			    cp++;
-		    *cp = '\0';
-		    *pp++ = 0;
-		    havesearch = 1;
-		    continue;
-		}
-		/* read nameservers to query */
-		if (MATCH(buf, "nameserver") && nserv < MAXNS) {
-		    struct in_addr a;
-
-		    cp = buf + sizeof("nameserver") - 1;
-		    while (*cp == ' ' || *cp == '\t')
-			cp++;
-		    if ((*cp != '\0') && (*cp != '\n') && inet_aton(cp, &a)) {
-			_res.nsaddr_list[nserv].sin_addr = a;
-			_res.nsaddr_list[nserv].sin_family = AF_INET;
-			_res.nsaddr_list[nserv].sin_port =
-				htons(NAMESERVER_PORT);
-			nserv++;
-		    }
-		    continue;
-		}
-#ifdef RESOLVSORT
-		if (MATCH(buf, "sortlist")) {
-		    struct in_addr a;
-
-		    cp = buf + sizeof("sortlist") - 1;
-		    while (nsort < MAXRESOLVSORT) {
-			while (*cp == ' ' || *cp == '\t')
-			    cp++;
-			if (*cp == '\0' || *cp == '\n' || *cp == ';')
-			    break;
-			net = cp;
-			while (*cp && !ISSORTMASK(*cp) && *cp != ';' &&
-			       isascii(*cp) && !isspace(*cp))
-				cp++;
-			n = *cp;
-			*cp = 0;
-			if (inet_aton(net, &a)) {
-			    _res.sort_list[nsort].addr = a;
-			    if (ISSORTMASK(n)) {
-				*cp++ = n;
-				net = cp;
-				while (*cp && *cp != ';' &&
-					isascii(*cp) && !isspace(*cp))
-				    cp++;
-				n = *cp;
-				*cp = 0;
-				if (inet_aton(net, &a)) {
-				    _res.sort_list[nsort].mask = a.s_addr;
-				} else {
-				    _res.sort_list[nsort].mask = 
-					net_mask(_res.sort_list[nsort].addr);
-				}
-			    } else {
-				_res.sort_list[nsort].mask = 
-				    net_mask(_res.sort_list[nsort].addr);
-			    }
-			    nsort++;
-			}
-			*cp = n;
-		    }
-		    continue;
-		}
-#endif
-		if (MATCH(buf, "options")) {
-		    res_setoptions(buf + sizeof("options") - 1, "conf");
-		    continue;
-		}
-	    }
-	    if (nserv > 1) 
-		_res.nscount = nserv;
-#ifdef RESOLVSORT
-	    _res.nsort = nsort;
-#endif
-	    (void) fclose(fp);
-	}
-	if (_res.defdname[0] == 0 &&
-	    gethostname(buf, sizeof(_res.defdname) - 1) == 0 &&
-	    (cp = strchr(buf, '.')) != NULL)
-		strcpy(_res.defdname, cp + 1);
-
-	/* find components of local domain that might be searched */
-	if (havesearch == 0) {
-		pp = _res.dnsrch;
-		*pp++ = _res.defdname;
-		*pp = NULL;
-
-#ifndef RFC1535
-		dots = 0;
-		for (cp = _res.defdname; *cp; cp++)
-			dots += (*cp == '.');
-
-		cp = _res.defdname;
-		while (pp < _res.dnsrch + MAXDFLSRCH) {
-			if (dots < LOCALDOMAINPARTS)
-				break;
-			cp = strchr(cp, '.') + 1;    /* we know there is one */
-			*pp++ = cp;
-			dots--;
-		}
-		*pp = NULL;
-#ifdef DEBUG
-		if (_res.options & RES_DEBUG) {
-			printf(";; res_init()... default dnsrch list:\n");
-			for (pp = _res.dnsrch; *pp; pp++)
-				printf(";;\t%s\n", *pp);
-			printf(";;\t..END..\n");
-		}
-#endif /* DEBUG */
-#endif /* !RFC1535 */
-	}
-
-	if ((cp = getenv("RES_OPTIONS")) != NULL)
-		res_setoptions(cp, "env");
-	_res.options |= RES_INIT;
-	return (0);
-}
-
-static void
-res_setoptions(options, source)
-	char *options, *source;
-{
-	char *cp = options;
-	int i;
-
-#ifdef DEBUG
-	if (_res.options & RES_DEBUG)
-		printf(";; res_setoptions(\"%s\", \"%s\")...\n",
-		       options, source);
-#endif
-	while (*cp) {
-		/* skip leading and inner runs of spaces */
-		while (*cp == ' ' || *cp == '\t')
-			cp++;
-		/* search for and process individual options */
-		if (!strncmp(cp, "ndots:", sizeof("ndots:") - 1)) {
-			i = atoi(cp + sizeof("ndots:") - 1);
-			if (i <= RES_MAXNDOTS)
-				_res.ndots = i;
-			else
-				_res.ndots = RES_MAXNDOTS;
-#ifdef DEBUG
-			if (_res.options & RES_DEBUG)
-				printf(";;\tndots=%d\n", _res.ndots);
-#endif
-		} else if (!strncmp(cp, "debug", sizeof("debug") - 1)) {
-#ifdef DEBUG
-			if (!(_res.options & RES_DEBUG)) {
-				printf(";; res_setoptions(\"%s\", \"%s\")..\n",
-				       options, source);
-				_res.options |= RES_DEBUG;
-			}
-			printf(";;\tdebug\n");
-#endif
-		} else if (!strncmp(cp, "inet6", sizeof("inet6") - 1)) {
-			_res.options |= RES_USE_INET6;
-		} else {
-			/* XXX - print a warning here? */
-		}
-		/* skip to next run of spaces */
-		while (*cp && *cp != ' ' && *cp != '\t')
-			cp++;
-	}
-}
-
-#ifdef RESOLVSORT
-/* XXX - should really support CIDR which means explicit masks always. */
-static u_int32_t
-net_mask(in)		/* XXX - should really use system's version of this */
-	struct in_addr in;
-{
-	register u_int32_t i = ntohl(in.s_addr);
-
-	if (IN_CLASSA(i))
-		return (htonl(IN_CLASSA_NET));
-	else if (IN_CLASSB(i))
-		return (htonl(IN_CLASSB_NET));
-	return (htonl(IN_CLASSC_NET));
-}
-#endif
-
-#ifdef	NeXT
-static int
-netinfo_res_init(haveenv, havesearch)
-	int *haveenv;
-	int *havesearch;
-{
-    register	int n;
-    void	*domain, *parent;
-    ni_id	dir;
-    ni_status	status;
-    ni_namelist	nl;
-    int		nserv = 0;
-#ifdef RESOLVSORT
-    int		nsort = 0;
-#endif
-
-    status = ni_open(NULL, ".", &domain);
-    if (status == NI_OK) {
-	ni_setreadtimeout(domain, NI_TIMEOUT);
-	ni_setabort(domain, 1);
-
-	/* climb the NetInfo hierarchy to find a resolver directory */
-	while (status == NI_OK) {
-	    status = ni_pathsearch(domain, &dir, NI_PATH_RESCONF);
-	    if (status == NI_OK) {
-	    /* found a resolver directory */
-
-		if (*haveenv == 0) {
-		    /* get the default domain name */
-		    status = ni_lookupprop(domain, &dir, "domain", &nl);
-		    if (status == NI_OK && nl.ni_namelist_len > 0) {
-			(void)strncpy(_res.defdname,
-				      nl.ni_namelist_val[0],
-				      sizeof(_res.defdname) - 1);
-			_res.defdname[sizeof(_res.defdname) - 1] = '\0';
-			ni_namelist_free(&nl);
-			*havesearch = 0;
-		    }
-
-		    /* get search list */
-		    status = ni_lookupprop(domain, &dir, "search", &nl);
-		    if (status == NI_OK && nl.ni_namelist_len > 0) {
-			(void)strncpy(_res.defdname,
-				      nl.ni_namelist_val[0],
-				      sizeof(_res.defdname) - 1);
-			_res.defdname[sizeof(_res.defdname) - 1] = '\0';
-			/* copy  */
-			for (n = 0;
-			     n < nl.ni_namelist_len && n < MAXDNSRCH;
-			     n++) {
-			     /* duplicate up to MAXDNSRCH servers */
-			     char *cp = nl.ni_namelist_val[n];
-			    _res.dnsrch[n] =
-				strcpy((char *)malloc(strlen(cp) + 1), cp);
-			}
-			ni_namelist_free(&nl);
-			*havesearch = 1;
-		    }
-		}
-
-		/* get list of nameservers */
-		status = ni_lookupprop(domain, &dir, "nameserver", &nl);
-		if (status == NI_OK && nl.ni_namelist_len > 0) {
-		    /* copy up to MAXNS servers */
-		    for (n = 0;
-		         n < nl.ni_namelist_len && nserv < MAXNS;
-			 n++) {
-			struct in_addr a;
-
-			if (inet_aton(nl.ni_namelist_val[n], &a)) {
-			    _res.nsaddr_list[nserv].sin_addr = a;
-			    _res.nsaddr_list[nserv].sin_family = AF_INET;
-			    _res.nsaddr_list[nserv].sin_port =
-				htons(NAMESERVER_PORT);
-			    nserv++;
-			}
-		    }
-		    ni_namelist_free(&nl);
-		}
-		
-		if (nserv > 1)
-		    _res.nscount = nserv;
-
-#ifdef RESOLVSORT
-		/* get sort order */
-		status = ni_lookupprop(domain, &dir, "sortlist", &nl);
-		if (status == NI_OK && nl.ni_namelist_len > 0) {
-
-		    /* copy up to MAXRESOLVSORT address/netmask pairs */
-		    for (n = 0;
-		         n < nl.ni_namelist_len && nsort < MAXRESOLVSORT;
-			 n++) {
-			char ch;
-			char *cp;
-			const char *sp;
-			struct in_addr a;
-
-			cp = NULL;
-			for (sp = sort_mask; *sp; sp++) {
-				char *cp1;
-				cp1 = strchr(nl.ni_namelist_val[n], *sp);
-				if (cp && cp1)
-					cp = (cp < cp1)? cp : cp1;
-				else if (cp1)
-					cp = cp1;
-			}
-			if (cp != NULL) {
-				ch = *cp;
-				*cp = '\0';
-				break;
-			}
-			if (inet_aton(nl.ni_namelist_val[n], &a)) {
-			    _res.sort_list[nsort].addr = a;
-			    if (*cp && ISSORTMASK(ch)) {
-			    	*cp++ = ch;
-			        if (inet_aton(cp, &a)) {
-				    _res.sort_list[nsort].mask = a.s_addr;
-				} else {
-				    _res.sort_list[nsort].mask =
-					net_mask(_res.sort_list[nsort].addr);
-				}
-			    } else {
-				_res.sort_list[nsort].mask =
-				    net_mask(_res.sort_list[nsort].addr);
-			    }
-			    nsort++;
-			}
-		    }
-		    ni_namelist_free(&nl);
-		}
-
-		_res.nsort = nsort;
-#endif
-
-		/* get resolver options */
-		status = ni_lookupprop(domain, &dir, "options", &nl);
-		if (status == NI_OK && nl.ni_namelist_len > 0) {
-		    res_setoptions(nl.ni_namelist_val[0], "conf");
-		    ni_namelist_free(&nl);
-		}
-
-		ni_free(domain);
-		return(1);	/* using DNS configuration from NetInfo */
-	    }
-
-	    status = ni_open(domain, "..", &parent);
-	    ni_free(domain);
-	    if (status == NI_OK)
-		domain = parent;
-	}
-    }
-    return(0);	/* if not using DNS configuration from NetInfo */
-}
-#endif	/* NeXT */
-
-u_int
-res_randomid()
-{
-	struct timeval now;
-
-	gettimeofday(&now, NULL);
-	return (0xffff & (now.tv_sec ^ now.tv_usec ^ getpid()));
-}
diff --git a/contrib/bind/res/res_mkquery.c b/contrib/bind/res/res_mkquery.c
deleted file mode 100644
index 7492c2057e134..0000000000000
--- a/contrib/bind/res/res_mkquery.c
+++ /dev/null
@@ -1,190 +0,0 @@
-/*
- * ++Copyright++ 1985, 1993
- * -
- * Copyright (c) 1985, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)res_mkquery.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: res_mkquery.c,v 8.5 1996/08/27 08:33:28 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <netdb.h>
-#include <resolv.h>
-#if defined(BSD) && (BSD >= 199103)
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-#if defined(USE_OPTIONS_H)
-# include <../conf/options.h>
-#endif
-
-/*
- * Form all types of queries.
- * Returns the size of the result or -1.
- */
-int
-res_mkquery(op, dname, class, type, data, datalen, newrr_in, buf, buflen)
-	int op;			/* opcode of query */
-	const char *dname;	/* domain name */
-	int class, type;	/* class and type of query */
-	const u_char *data;	/* resource record data */
-	int datalen;		/* length of data */
-	const u_char *newrr_in;	/* new rr for modify or append */
-	u_char *buf;		/* buffer to put query */
-	int buflen;		/* size of buffer */
-{
-	register HEADER *hp;
-	register u_char *cp;
-	register int n;
-	u_char *dnptrs[20], **dpp, **lastdnptr;
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (-1);
-	}
-#ifdef DEBUG
-	if (_res.options & RES_DEBUG)
-		printf(";; res_mkquery(%d, %s, %d, %d)\n",
-		       op, dname, class, type);
-#endif
-	/*
-	 * Initialize header fields.
-	 */
-	if ((buf == NULL) || (buflen < HFIXEDSZ))
-		return (-1);
-	bzero(buf, HFIXEDSZ);
-	hp = (HEADER *) buf;
-	hp->id = htons(++_res.id);
-	hp->opcode = op;
-	hp->rd = (_res.options & RES_RECURSE) != 0;
-	hp->rcode = NOERROR;
-	cp = buf + HFIXEDSZ;
-	buflen -= HFIXEDSZ;
-	dpp = dnptrs;
-	*dpp++ = buf;
-	*dpp++ = NULL;
-	lastdnptr = dnptrs + sizeof dnptrs / sizeof dnptrs[0];
-	/*
-	 * perform opcode specific processing
-	 */
-	switch (op) {
-	case QUERY:	/*FALLTHROUGH*/
-	case NS_NOTIFY_OP:
-		if ((buflen -= QFIXEDSZ) < 0)
-			return (-1);
-		if ((n = dn_comp(dname, cp, buflen, dnptrs, lastdnptr)) < 0)
-			return (-1);
-		cp += n;
-		buflen -= n;
-		__putshort(type, cp);
-		cp += INT16SZ;
-		__putshort(class, cp);
-		cp += INT16SZ;
-		hp->qdcount = htons(1);
-		if (op == QUERY || data == NULL)
-			break;
-		/*
-		 * Make an additional record for completion domain.
-		 */
-		buflen -= RRFIXEDSZ;
-		n = dn_comp((char *)data, cp, buflen, dnptrs, lastdnptr);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		buflen -= n;
-		__putshort(T_NULL, cp);
-		cp += INT16SZ;
-		__putshort(class, cp);
-		cp += INT16SZ;
-		__putlong(0, cp);
-		cp += INT32SZ;
-		__putshort(0, cp);
-		cp += INT16SZ;
-		hp->arcount = htons(1);
-		break;
-
-	case IQUERY:
-		/*
-		 * Initialize answer section
-		 */
-		if (buflen < 1 + RRFIXEDSZ + datalen)
-			return (-1);
-		*cp++ = '\0';	/* no domain name */
-		__putshort(type, cp);
-		cp += INT16SZ;
-		__putshort(class, cp);
-		cp += INT16SZ;
-		__putlong(0, cp);
-		cp += INT32SZ;
-		__putshort(datalen, cp);
-		cp += INT16SZ;
-		if (datalen) {
-			bcopy(data, cp, datalen);
-			cp += datalen;
-		}
-		hp->ancount = htons(1);
-		break;
-
-	default:
-		return (-1);
-	}
-	return (cp - buf);
-}
diff --git a/contrib/bind/res/res_query.c b/contrib/bind/res/res_query.c
deleted file mode 100644
index 76d4b8cd68cb4..0000000000000
--- a/contrib/bind/res/res_query.c
+++ /dev/null
@@ -1,403 +0,0 @@
-/*
- * ++Copyright++ 1988, 1993
- * -
- * Copyright (c) 1988, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)res_query.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: res_query.c,v 8.10 1997/06/01 20:34:37 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <ctype.h>
-#include <errno.h>
-#if defined(BSD) && (BSD >= 199306)
-# include <stdlib.h>
-# include <string.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-#if defined(USE_OPTIONS_H)
-# include <../conf/options.h>
-#endif
-
-#if PACKETSZ > 1024
-#define MAXPACKET	PACKETSZ
-#else
-#define MAXPACKET	1024
-#endif
-
-const char *hostalias __P((const char *));
-int h_errno;
-
-/*
- * Formulate a normal query, send, and await answer.
- * Returned answer is placed in supplied buffer "answer".
- * Perform preliminary check of answer, returning success only
- * if no error is indicated and the answer count is nonzero.
- * Return the size of the response on success, -1 on error.
- * Error number is left in h_errno.
- *
- * Caller must parse answer and determine whether it answers the question.
- */
-int
-res_query(name, class, type, answer, anslen)
-	const char *name;	/* domain name */
-	int class, type;	/* class and type of query */
-	u_char *answer;		/* buffer to put answer */
-	int anslen;		/* size of answer buffer */
-{
-	u_char buf[MAXPACKET];
-	register HEADER *hp = (HEADER *) answer;
-	int n;
-
-	hp->rcode = NOERROR;	/* default */
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (-1);
-	}
-#ifdef DEBUG
-	if (_res.options & RES_DEBUG)
-		printf(";; res_query(%s, %d, %d)\n", name, class, type);
-#endif
-
-	n = res_mkquery(QUERY, name, class, type, NULL, 0, NULL,
-			buf, sizeof(buf));
-	if (n <= 0) {
-#ifdef DEBUG
-		if (_res.options & RES_DEBUG)
-			printf(";; res_query: mkquery failed\n");
-#endif
-		h_errno = NO_RECOVERY;
-		return (n);
-	}
-	n = res_send(buf, n, answer, anslen);
-	if (n < 0) {
-#ifdef DEBUG
-		if (_res.options & RES_DEBUG)
-			printf(";; res_query: send error\n");
-#endif
-		h_errno = TRY_AGAIN;
-		return (n);
-	}
-
-	if (hp->rcode != NOERROR || ntohs(hp->ancount) == 0) {
-#ifdef DEBUG
-		if (_res.options & RES_DEBUG)
-			printf(";; rcode = %d, ancount=%d\n", hp->rcode,
-			    ntohs(hp->ancount));
-#endif
-		switch (hp->rcode) {
-		case NXDOMAIN:
-			h_errno = HOST_NOT_FOUND;
-			break;
-		case SERVFAIL:
-			h_errno = TRY_AGAIN;
-			break;
-		case NOERROR:
-			h_errno = NO_DATA;
-			break;
-		case FORMERR:
-		case NOTIMP:
-		case REFUSED:
-		default:
-			h_errno = NO_RECOVERY;
-			break;
-		}
-		return (-1);
-	}
-	return (n);
-}
-
-/*
- * Formulate a normal query, send, and retrieve answer in supplied buffer.
- * Return the size of the response on success, -1 on error.
- * If enabled, implement search rules until answer or unrecoverable failure
- * is detected.  Error code, if any, is left in h_errno.
- */
-int
-res_search(name, class, type, answer, anslen)
-	const char *name;	/* domain name */
-	int class, type;	/* class and type of query */
-	u_char *answer;		/* buffer to put answer */
-	int anslen;		/* size of answer */
-{
-	register const char *cp, * const *domain;
-	HEADER *hp = (HEADER *) answer;
-	u_int dots;
-	int trailing_dot, ret, saved_herrno;
-	int got_nodata = 0, got_servfail = 0, tried_as_is = 0;
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (-1);
-	}
-	errno = 0;
-	h_errno = HOST_NOT_FOUND;	/* default, if we never query */
-	dots = 0;
-	for (cp = name; *cp; cp++)
-		dots += (*cp == '.');
-	trailing_dot = 0;
-	if (cp > name && *--cp == '.')
-		trailing_dot++;
-
-	/*
-	 * if there aren't any dots, it could be a user-level alias
-	 */
-	if (!dots && (cp = __hostalias(name)) != NULL)
-		return (res_query(cp, class, type, answer, anslen));
-
-	/*
-	 * If there are dots in the name already, let's just give it a try
-	 * 'as is'.  The threshold can be set with the "ndots" option.
-	 */
-	saved_herrno = -1;
-	if (dots >= _res.ndots) {
-		ret = res_querydomain(name, NULL, class, type, answer, anslen);
-		if (ret > 0)
-			return (ret);
-		saved_herrno = h_errno;
-		tried_as_is++;
-	}
-
-	/*
-	 * We do at least one level of search if
-	 *	- there is no dot and RES_DEFNAME is set, or
-	 *	- there is at least one dot, there is no trailing dot,
-	 *	  and RES_DNSRCH is set.
-	 */
-	if ((!dots && (_res.options & RES_DEFNAMES)) ||
-	    (dots && !trailing_dot && (_res.options & RES_DNSRCH))) {
-		int done = 0;
-
-		for (domain = (const char * const *)_res.dnsrch;
-		     *domain && !done;
-		     domain++) {
-
-			ret = res_querydomain(name, *domain, class, type,
-					      answer, anslen);
-			if (ret > 0)
-				return (ret);
-
-			/*
-			 * If no server present, give up.
-			 * If name isn't found in this domain,
-			 * keep trying higher domains in the search list
-			 * (if that's enabled).
-			 * On a NO_DATA error, keep trying, otherwise
-			 * a wildcard entry of another type could keep us
-			 * from finding this entry higher in the domain.
-			 * If we get some other error (negative answer or
-			 * server failure), then stop searching up,
-			 * but try the input name below in case it's
-			 * fully-qualified.
-			 */
-			if (errno == ECONNREFUSED) {
-				h_errno = TRY_AGAIN;
-				return (-1);
-			}
-
-			switch (h_errno) {
-			case NO_DATA:
-				got_nodata++;
-				/* FALLTHROUGH */
-			case HOST_NOT_FOUND:
-				/* keep trying */
-				break;
-			case TRY_AGAIN:
-				if (hp->rcode == SERVFAIL) {
-					/* try next search element, if any */
-					got_servfail++;
-					break;
-				}
-				/* FALLTHROUGH */
-			default:
-				/* anything else implies that we're done */
-				done++;
-			}
-
-			/* if we got here for some reason other than DNSRCH,
-			 * we only wanted one iteration of the loop, so stop.
-			 */
-			if (!(_res.options & RES_DNSRCH))
-				done++;
-		}
-	}
-
-	/* if we have not already tried the name "as is", do that now.
-	 * note that we do this regardless of how many dots were in the
-	 * name or whether it ends with a dot.
-	 */
-	if (!tried_as_is) {
-		ret = res_querydomain(name, NULL, class, type, answer, anslen);
-		if (ret > 0)
-			return (ret);
-	}
-
-	/* if we got here, we didn't satisfy the search.
-	 * if we did an initial full query, return that query's h_errno
-	 * (note that we wouldn't be here if that query had succeeded).
-	 * else if we ever got a nodata, send that back as the reason.
-	 * else send back meaningless h_errno, that being the one from
-	 * the last DNSRCH we did.
-	 */
-	if (saved_herrno != -1)
-		h_errno = saved_herrno;
-	else if (got_nodata)
-		h_errno = NO_DATA;
-	else if (got_servfail)
-		h_errno = TRY_AGAIN;
-	return (-1);
-}
-
-/*
- * Perform a call on res_query on the concatenation of name and domain,
- * removing a trailing dot from name if domain is NULL.
- */
-int
-res_querydomain(name, domain, class, type, answer, anslen)
-	const char *name, *domain;
-	int class, type;	/* class and type of query */
-	u_char *answer;		/* buffer to put answer */
-	int anslen;		/* size of answer */
-{
-	char nbuf[MAXDNAME];
-	const char *longname = nbuf;
-	int n, d;
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		h_errno = NETDB_INTERNAL;
-		return (-1);
-	}
-#ifdef DEBUG
-	if (_res.options & RES_DEBUG)
-		printf(";; res_querydomain(%s, %s, %d, %d)\n",
-		       name, domain?domain:"<Nil>", class, type);
-#endif
-	if (domain == NULL) {
-		/*
-		 * Check for trailing '.';
-		 * copy without '.' if present.
-		 */
-		n = strlen(name);
-		if (n >= MAXDNAME) {
-			h_errno = NO_RECOVERY;
-			return (-1);
-		}
-		n--;
-		if (n >= 0 && name[n] == '.') {
-			strncpy(nbuf, name, n);
-			nbuf[n] = '\0';
-		} else
-			longname = name;
-	} else {
-		n = strlen(name);
-		d = strlen(domain);
-		if (n + d + 1 >= MAXDNAME) {
-			h_errno = NO_RECOVERY;
-			return (-1);
-		}
-		sprintf(nbuf, "%s.%s", name, domain);
-	}
-	return (res_query(longname, class, type, answer, anslen));
-}
-
-const char *
-hostalias(name)
-	register const char *name;
-{
-	register char *cp1, *cp2;
-	FILE *fp;
-	char *file;
-	char buf[BUFSIZ];
-	static char abuf[MAXDNAME];
-
-	if (_res.options & RES_NOALIASES)
-		return (NULL);
-	file = getenv("HOSTALIASES");
-	if (file == NULL || (fp = fopen(file, "r")) == NULL)
-		return (NULL);
-	setbuf(fp, NULL);
-	buf[sizeof(buf) - 1] = '\0';
-	while (fgets(buf, sizeof(buf), fp)) {
-		for (cp1 = buf; *cp1 && !isspace(*cp1); ++cp1)
-			;
-		if (!*cp1)
-			break;
-		*cp1 = '\0';
-		if (!strcasecmp(buf, name)) {
-			while (isspace(*++cp1))
-				;
-			if (!*cp1)
-				break;
-			for (cp2 = cp1 + 1; *cp2 && !isspace(*cp2); ++cp2)
-				;
-			abuf[sizeof(abuf) - 1] = *cp2 = '\0';
-			strncpy(abuf, cp1, sizeof(abuf) - 1);
-			fclose(fp);
-			return (abuf);
-		}
-	}
-	fclose(fp);
-	return (NULL);
-}
diff --git a/contrib/bind/res/res_send.c b/contrib/bind/res/res_send.c
deleted file mode 100644
index 63424207aae33..0000000000000
--- a/contrib/bind/res/res_send.c
+++ /dev/null
@@ -1,845 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989, 1993
- * -
- * Copyright (c) 1985, 1989, 1993
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)res_send.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: res_send.c,v 8.14 1998/04/07 04:59:46 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-	/* change this to "0"
-	 * if you talk to a lot
-	 * of multi-homed SunOS
-	 * ("broken") name servers.
-	 */
-#define	CHECK_SRVR_ADDR	1	/* XXX - should be in options.h */
-
-/*
- * Send query to name server and wait for reply.
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/time.h>
-#include <sys/socket.h>
-#include <sys/uio.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-
-#include <stdio.h>
-#include <netdb.h>
-#include <errno.h>
-#include <resolv.h>
-#if defined(BSD) && (BSD >= 199306)
-# include <stdlib.h>
-# include <string.h>
-# include <unistd.h>
-#else
-# include "../conf/portability.h"
-#endif
-
-#if defined(USE_OPTIONS_H)
-# include <../conf/options.h>
-#endif
-
-static int s = -1;	/* socket used for communications */
-static int connected = 0;	/* is the socket connected */
-static int vc = 0;	/* is the socket a virtual ciruit? */
-
-#ifndef FD_SET
-/* XXX - should be in portability.h */
-#define	NFDBITS		32
-#define	FD_SETSIZE	32
-#define	FD_SET(n, p)	((p)->fds_bits[(n)/NFDBITS] |= (1 << ((n) % NFDBITS)))
-#define	FD_CLR(n, p)	((p)->fds_bits[(n)/NFDBITS] &= ~(1 << ((n) % NFDBITS)))
-#define	FD_ISSET(n, p)	((p)->fds_bits[(n)/NFDBITS] & (1 << ((n) % NFDBITS)))
-#define FD_ZERO(p)	bzero((char *)(p), sizeof(*(p)))
-#endif
-
-/* XXX - this should be done in portability.h */
-#if (defined(BSD) && (BSD >= 199103)) || defined(linux)
-# define CAN_RECONNECT 1
-#else
-# define CAN_RECONNECT 0
-#endif
-
-#ifndef DEBUG
-#   define Dprint(cond, args) /*empty*/
-#   define DprintQ(cond, args, query, size) /*empty*/
-#   define Aerror(file, string, error, address) /*empty*/
-#   define Perror(file, string, error) /*empty*/
-#else
-#   define Dprint(cond, args) if (cond) {fprintf args;} else {}
-#   define DprintQ(cond, args, query, size) if (cond) {\
-			fprintf args;\
-			__fp_nquery(query, size, stdout);\
-		} else {}
-    static void
-    Aerror(file, string, error, address)
-	FILE *file;
-	char *string;
-	int error;
-	struct sockaddr_in address;
-    {
-	int save = errno;
-
-	if (_res.options & RES_DEBUG) {
-		fprintf(file, "res_send: %s ([%s].%u): %s\n",
-			string,
-			inet_ntoa(address.sin_addr),
-			ntohs(address.sin_port),
-			strerror(error));
-	}
-	errno = save;
-    }
-    static void
-    Perror(file, string, error)
-	FILE *file;
-	char *string;
-	int error;
-    {
-	int save = errno;
-
-	if (_res.options & RES_DEBUG) {
-		fprintf(file, "res_send: %s: %s\n",
-			string, strerror(error));
-	}
-	errno = save;
-    }
-#endif
-
-static res_send_qhook Qhook = NULL;
-static res_send_rhook Rhook = NULL;
-
-void
-res_send_setqhook(hook)
-	res_send_qhook hook;
-{
-
-	Qhook = hook;
-}
-
-void
-res_send_setrhook(hook)
-	res_send_rhook hook;
-{
-
-	Rhook = hook;
-}
-
-/* int
- * res_isourserver(ina)
- *	looks up "ina" in _res.ns_addr_list[]
- * returns:
- *	0  : not found
- *	>0 : found
- * author:
- *	paul vixie, 29may94
- */
-int
-res_isourserver(inp)
-	const struct sockaddr_in *inp;
-{
-	struct sockaddr_in ina;
-	register int ns, ret;
-
-	ina = *inp;
-	ret = 0;
-	for (ns = 0;  ns < _res.nscount;  ns++) {
-		register const struct sockaddr_in *srv = &_res.nsaddr_list[ns];
-
-		if (srv->sin_family == ina.sin_family &&
-		    srv->sin_port == ina.sin_port &&
-		    (srv->sin_addr.s_addr == INADDR_ANY ||
-		     srv->sin_addr.s_addr == ina.sin_addr.s_addr)) {
-			ret++;
-			break;
-		}
-	}
-	return (ret);
-}
-
-/* int
- * res_nameinquery(name, type, class, buf, eom)
- *	look for (name,type,class) in the query section of packet (buf,eom)
- * requires:
- *	buf + HFIXESDZ <= eom
- * returns:
- *	-1 : format error
- *	0  : not found
- *	>0 : found
- * author:
- *	paul vixie, 29may94
- */
-int
-res_nameinquery(name, type, class, buf, eom)
-	const char *name;
-	register int type, class;
-	const u_char *buf, *eom;
-{
-	register const u_char *cp = buf + HFIXEDSZ;
-	int qdcount = ntohs(((HEADER*)buf)->qdcount);
-
-	while (qdcount-- > 0) {
-		char tname[MAXDNAME+1];
-		register int n, ttype, tclass;
-
-		n = dn_expand(buf, eom, cp, tname, sizeof tname);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		if (cp + 2 * INT16SZ > eom)
-			return (-1);
-		ttype = _getshort(cp); cp += INT16SZ;
-		tclass = _getshort(cp); cp += INT16SZ;
-		if (ttype == type &&
-		    tclass == class &&
-		    strcasecmp(tname, name) == 0)
-			return (1);
-	}
-	return (0);
-}
-
-/* int
- * res_queriesmatch(buf1, eom1, buf2, eom2)
- *	is there a 1:1 mapping of (name,type,class)
- *	in (buf1,eom1) and (buf2,eom2)?
- * returns:
- *	-1 : format error
- *	0  : not a 1:1 mapping
- *	>0 : is a 1:1 mapping
- * author:
- *	paul vixie, 29may94
- */
-int
-res_queriesmatch(buf1, eom1, buf2, eom2)
-	const u_char *buf1, *eom1;
-	const u_char *buf2, *eom2;
-{
-	register const u_char *cp = buf1 + HFIXEDSZ;
-	int qdcount = ntohs(((HEADER*)buf1)->qdcount);
-
-	if (buf1 + HFIXEDSZ > eom1 || buf2 + HFIXEDSZ > eom2)
-		return (-1);
-
-	if (qdcount != ntohs(((HEADER*)buf2)->qdcount))
-		return (0);
-	while (qdcount-- > 0) {
-		char tname[MAXDNAME+1];
-		register int n, ttype, tclass;
-
-		n = dn_expand(buf1, eom1, cp, tname, sizeof tname);
-		if (n < 0)
-			return (-1);
-		cp += n;
-		if (cp + 2 * INT16SZ > eom1)
-			return (-1);
-		ttype = _getshort(cp);	cp += INT16SZ;
-		tclass = _getshort(cp); cp += INT16SZ;
-		if (!res_nameinquery(tname, ttype, tclass, buf2, eom2))
-			return (0);
-	}
-	return (1);
-}
-
-int
-res_send(buf, buflen, ans, anssiz)
-	const u_char *buf;
-	int buflen;
-	u_char *ans;
-	int anssiz;
-{
-	HEADER *hp = (HEADER *) buf;
-	HEADER *anhp = (HEADER *) ans;
-	int gotsomewhere, connreset, terrno, try, v_circuit, resplen, ns;
-	register int n;
-	u_int badns;	/* XXX NSMAX can't exceed #/bits in this var */
-
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1) {
-		/* errno should have been set by res_init() in this case. */
-		return (-1);
-	}
-	if (anssiz < HFIXEDSZ) {
-		errno = EINVAL;
-		return (-1);
-	}
-	DprintQ((_res.options & RES_DEBUG) || (_res.pfcode & RES_PRF_QUERY),
-		(stdout, ";; res_send()\n"), buf, buflen);
-	v_circuit = (_res.options & RES_USEVC) || buflen > PACKETSZ;
-	gotsomewhere = 0;
-	connreset = 0;
-	terrno = ETIMEDOUT;
-	badns = 0;
-
-	/*
-	 * Send request, RETRY times, or until successful
-	 */
-	for (try = 0; try < _res.retry; try++) {
-	    for (ns = 0; ns < _res.nscount; ns++) {
-		struct sockaddr_in *nsap = &_res.nsaddr_list[ns];
-    same_ns:
-		if (badns & (1 << ns)) {
-			res_close();
-			goto next_ns;
-		}
-
-		if (Qhook) {
-			int done = 0, loops = 0;
-
-			do {
-				res_sendhookact act;
-
-				act = (*Qhook)(&nsap, &buf, &buflen,
-					       ans, anssiz, &resplen);
-				switch (act) {
-				case res_goahead:
-					done = 1;
-					break;
-				case res_nextns:
-					res_close();
-					goto next_ns;
-				case res_done:
-					return (resplen);
-				case res_modified:
-					/* give the hook another try */
-					if (++loops < 42) /*doug adams*/
-						break;
-					/*FALLTHROUGH*/
-				case res_error:
-					/*FALLTHROUGH*/
-				default:
-					return (-1);
-				}
-			} while (!done);
-		}
-
-		Dprint(_res.options & RES_DEBUG,
-		       (stdout, ";; Querying server (# %d) address = %s\n",
-			ns + 1, inet_ntoa(nsap->sin_addr)));
-
-		if (v_circuit) {
-			int truncated;
-			struct iovec iov[2];
-			u_short len;
-			u_char *cp;
-
-			/*
-			 * Use virtual circuit;
-			 * at most one attempt per server.
-			 */
-			try = _res.retry;
-			truncated = 0;
-			if ((s < 0) || (!vc)) {
-				if (s >= 0)
-					res_close();
-
-				s = socket(PF_INET, SOCK_STREAM, 0);
-				if (s < 0) {
-					terrno = errno;
-					Perror(stderr, "socket(vc)", errno);
-					return (-1);
-				}
-				errno = 0;
-				if (connect(s, (struct sockaddr *)nsap,
-					    sizeof(struct sockaddr)) < 0) {
-					terrno = errno;
-					Aerror(stderr, "connect/vc",
-					       errno, *nsap);
-					badns |= (1 << ns);
-					res_close();
-					goto next_ns;
-				}
-				vc = 1;
-			}
-			/*
-			 * Send length & message
-			 */
-			putshort((u_short)buflen, (u_char*)&len);
-			iov[0].iov_base = (caddr_t)&len;
-			iov[0].iov_len = INT16SZ;
-			iov[1].iov_base = (caddr_t)buf;
-			iov[1].iov_len = buflen;
-			if (writev(s, iov, 2) != (INT16SZ + buflen)) {
-				terrno = errno;
-				Perror(stderr, "write failed", errno);
-				badns |= (1 << ns);
-				res_close();
-				goto next_ns;
-			}
-			/*
-			 * Receive length & response
-			 */
-read_len:
-			cp = ans;
-			len = INT16SZ;
-			while ((n = read(s, (char *)cp, (int)len)) > 0) {
-				cp += n;
-				if ((len -= n) <= 0)
-					break;
-			}
-			if (n <= 0) {
-				terrno = errno;
-				Perror(stderr, "read failed", errno);
-				res_close();
-				/*
-				 * A long running process might get its TCP
-				 * connection reset if the remote server was
-				 * restarted.  Requery the server instead of
-				 * trying a new one.  When there is only one
-				 * server, this means that a query might work
-				 * instead of failing.  We only allow one reset
-				 * per query to prevent looping.
-				 */
-				if (terrno == ECONNRESET && !connreset) {
-					connreset = 1;
-					res_close();
-					goto same_ns;
-				}
-				res_close();
-				goto next_ns;
-			}
-			resplen = _getshort(ans);
-			if (resplen > anssiz) {
-				Dprint(_res.options & RES_DEBUG,
-				       (stdout, ";; response truncated\n")
-				       );
-				truncated = 1;
-				len = anssiz;
-			} else
-				len = resplen;
-			if (len < HFIXEDSZ) {
-				/*
-				 * Undersized message.
-				 */
-				Dprint(_res.options & RES_DEBUG,
-				       (stdout, ";; undersized: %d\n", len));
-				terrno = EMSGSIZE;
-				badns |= (1 << ns);
-				res_close();
-				goto next_ns;
-			}
-			cp = ans;
-			while (len != 0 &&
-			       (n = read(s, (char *)cp, (int)len)) > 0) {
-				cp += n;
-				len -= n;
-			}
-			if (n <= 0) {
-				terrno = errno;
-				Perror(stderr, "read(vc)", errno);
-				res_close();
-				goto next_ns;
-			}
-			if (truncated) {
-				/*
-				 * Flush rest of answer
-				 * so connection stays in synch.
-				 */
-				anhp->tc = 1;
-				len = resplen - anssiz;
-				while (len != 0) {
-					char junk[PACKETSZ];
-
-					n = (len > sizeof(junk)
-					     ? sizeof(junk)
-					     : len);
-					if ((n = read(s, junk, n)) > 0)
-						len -= n;
-					else
-						break;
-				}
-			}
-			/*
-			 * The calling applicating has bailed out of
-			 * a previous call and failed to arrange to have
-			 * the circuit closed or the server has got
-			 * itself confused. Anyway drop the packet and
-			 * wait for the correct one.
-			 */
-			if (hp->id != anhp->id) {
-				DprintQ((_res.options & RES_DEBUG) ||
-					(_res.pfcode & RES_PRF_REPLY),
-					(stdout, ";; old answer (unexpected):\n"),
-					ans, (resplen>anssiz)?anssiz:resplen);
-				goto read_len;
-			}
-		} else {
-			/*
-			 * Use datagrams.
-			 */
-			struct timeval timeout;
-			fd_set dsmask;
-			struct sockaddr_in from;
-			int fromlen;
-
-			if ((s < 0) || vc) {
-				if (vc)
-					res_close();
-				s = socket(PF_INET, SOCK_DGRAM, 0);
-				if (s < 0) {
-#if !CAN_RECONNECT
- bad_dg_sock:
-#endif
-					terrno = errno;
-					Perror(stderr, "socket(dg)", errno);
-					return (-1);
-				}
-				connected = 0;
-			}
-			/*
-			 * On a 4.3BSD+ machine (client and server,
-			 * actually), sending to a nameserver datagram
-			 * port with no nameserver will cause an
-			 * ICMP port unreachable message to be returned.
-			 * If our datagram socket is "connected" to the
-			 * server, we get an ECONNREFUSED error on the next
-			 * socket operation, and select returns if the
-			 * error message is received.  We can thus detect
-			 * the absence of a nameserver without timing out.
-			 * If we have sent queries to at least two servers,
-			 * however, we don't want to remain connected,
-			 * as we wish to receive answers from the first
-			 * server to respond.
-			 */
-			if (_res.nscount == 1 || (try == 0 && ns == 0)) {
-				/*
-				 * Connect only if we are sure we won't
-				 * receive a response from another server.
-				 */
-				if (!connected) {
-					if (connect(s, (struct sockaddr *)nsap,
-						    sizeof(struct sockaddr)
-						    ) < 0) {
-						Aerror(stderr,
-						       "connect(dg)",
-						       errno, *nsap);
-						badns |= (1 << ns);
-						res_close();
-						goto next_ns;
-					}
-					connected = 1;
-				}
-				if (send(s, (char*)buf, buflen, 0) != buflen) {
-					Perror(stderr, "send", errno);
-					badns |= (1 << ns);
-					res_close();
-					goto next_ns;
-				}
-			} else {
-				/*
-				 * Disconnect if we want to listen
-				 * for responses from more than one server.
-				 */
-				if (connected) {
-#if CAN_RECONNECT
-					struct sockaddr_in no_addr;
-
-					no_addr.sin_family = AF_INET;
-					no_addr.sin_addr.s_addr = INADDR_ANY;
-					no_addr.sin_port = 0;
-					(void) connect(s,
-						       (struct sockaddr *)
-						        &no_addr,
-						       sizeof(no_addr));
-#else
-					int s1 = socket(PF_INET, SOCK_DGRAM,0);
-					if (s1 < 0)
-						goto bad_dg_sock;
-					(void) dup2(s1, s);
-					(void) close(s1);
-					Dprint(_res.options & RES_DEBUG,
-					       (stdout, ";; new DG socket\n"))
-#endif
-					connected = 0;
-					errno = 0;
-				}
-				if (sendto(s, (char*)buf, buflen, 0,
-					   (struct sockaddr *)nsap,
-					   sizeof(struct sockaddr))
-				    != buflen) {
-					Aerror(stderr, "sendto", errno, *nsap);
-					badns |= (1 << ns);
-					res_close();
-					goto next_ns;
-				}
-			}
-
-			/*
-			 * Wait for reply
-			 */
-			timeout.tv_sec = (_res.retrans << try);
-			if (try > 0)
-				timeout.tv_sec /= _res.nscount;
-			if ((long) timeout.tv_sec <= 0)
-				timeout.tv_sec = 1;
-			timeout.tv_usec = 0;
-    wait:
-			if (s < 0 || s >= FD_SETSIZE) {
-				Perror(stderr, "s out-of-bounds", EMFILE);
-				res_close();
-				goto next_ns;
-			}
-			FD_ZERO(&dsmask);
-			FD_SET(s, &dsmask);
-			n = select(s+1, &dsmask, (fd_set *)NULL,
-				   (fd_set *)NULL, &timeout);
-			if (n < 0) {
-				if (errno == EINTR)
-					goto wait;
-				Perror(stderr, "select", errno);
-				res_close();
-				goto next_ns;
-			}
-			if (n == 0) {
-				/*
-				 * timeout
-				 */
-				Dprint(_res.options & RES_DEBUG,
-				       (stdout, ";; timeout\n"));
-				gotsomewhere = 1;
-				res_close();
-				goto next_ns;
-			}
-			errno = 0;
-			fromlen = sizeof(struct sockaddr_in);
-			resplen = recvfrom(s, (char*)ans, anssiz, 0,
-					   (struct sockaddr *)&from, &fromlen);
-			if (resplen <= 0) {
-				Perror(stderr, "recvfrom", errno);
-				res_close();
-				goto next_ns;
-			}
-			gotsomewhere = 1;
-			if (resplen < HFIXEDSZ) {
-				/*
-				 * Undersized message.
-				 */
-				Dprint(_res.options & RES_DEBUG,
-				       (stdout, ";; undersized: %d\n",
-					resplen));
-				terrno = EMSGSIZE;
-				badns |= (1 << ns);
-				res_close();
-				goto next_ns;
-			}
-			if (hp->id != anhp->id) {
-				/*
-				 * response from old query, ignore it.
-				 * XXX - potential security hazard could
-				 *	 be detected here.
-				 */
-				DprintQ((_res.options & RES_DEBUG) ||
-					(_res.pfcode & RES_PRF_REPLY),
-					(stdout, ";; old answer:\n"),
-					ans, (resplen>anssiz)?anssiz:resplen);
-				goto wait;
-			}
-#if CHECK_SRVR_ADDR
-			if (!(_res.options & RES_INSECURE1) &&
-			    !res_isourserver(&from)) {
-				/*
-				 * response from wrong server? ignore it.
-				 * XXX - potential security hazard could
-				 *	 be detected here.
-				 */
-				DprintQ((_res.options & RES_DEBUG) ||
-					(_res.pfcode & RES_PRF_REPLY),
-					(stdout, ";; not our server:\n"),
-					ans, (resplen>anssiz)?anssiz:resplen);
-				goto wait;
-			}
-#endif
-			if (!(_res.options & RES_INSECURE2) &&
-			    !res_queriesmatch(buf, buf + buflen,
-					      ans, ans + anssiz)) {
-				/*
-				 * response contains wrong query? ignore it.
-				 * XXX - potential security hazard could
-				 *	 be detected here.
-				 */
-				DprintQ((_res.options & RES_DEBUG) ||
-					(_res.pfcode & RES_PRF_REPLY),
-					(stdout, ";; wrong query name:\n"),
-					ans, (resplen>anssiz)?anssiz:resplen);
-				goto wait;
-			}
-			if (anhp->rcode == SERVFAIL ||
-			    anhp->rcode == NOTIMP ||
-			    anhp->rcode == REFUSED) {
-				DprintQ(_res.options & RES_DEBUG,
-					(stdout, "server rejected query:\n"),
-					ans, (resplen>anssiz)?anssiz:resplen);
-				badns |= (1 << ns);
-				res_close();
-				/* don't retry if called from dig */
-				if (!_res.pfcode)
-					goto next_ns;
-			}
-			if (!(_res.options & RES_IGNTC) && anhp->tc) {
-				/*
-				 * get rest of answer;
-				 * use TCP with same server.
-				 */
-				Dprint(_res.options & RES_DEBUG,
-				       (stdout, ";; truncated answer\n"));
-				v_circuit = 1;
-				res_close();
-				goto same_ns;
-			}
-		} /*if vc/dg*/
-		Dprint((_res.options & RES_DEBUG) ||
-		       ((_res.pfcode & RES_PRF_REPLY) &&
-			(_res.pfcode & RES_PRF_HEAD1)),
-		       (stdout, ";; got answer:\n"));
-		DprintQ((_res.options & RES_DEBUG) ||
-			(_res.pfcode & RES_PRF_REPLY),
-			(stdout, ""),
-			ans, (resplen>anssiz)?anssiz:resplen);
-		/*
-		 * If using virtual circuits, we assume that the first server
-		 * is preferred over the rest (i.e. it is on the local
-		 * machine) and only keep that one open.
-		 * If we have temporarily opened a virtual circuit,
-		 * or if we haven't been asked to keep a socket open,
-		 * close the socket.
-		 */
-		if ((v_circuit && (!(_res.options & RES_USEVC) || ns != 0)) ||
-		    !(_res.options & RES_STAYOPEN)) {
-			res_close();
-		}
-		if (Rhook) {
-			int done = 0, loops = 0;
-
-			do {
-				res_sendhookact act;
-
-				act = (*Rhook)(nsap, buf, buflen,
-					       ans, anssiz, &resplen);
-				switch (act) {
-				case res_goahead:
-				case res_done:
-					done = 1;
-					break;
-				case res_nextns:
-					res_close();
-					goto next_ns;
-				case res_modified:
-					/* give the hook another try */
-					if (++loops < 42) /*doug adams*/
-						break;
-					/*FALLTHROUGH*/
-				case res_error:
-					/*FALLTHROUGH*/
-				default:
-					return (-1);
-				}
-			} while (!done);
-
-		}
-		return (resplen);
-    next_ns: ;
-	   } /*foreach ns*/
-	} /*foreach retry*/
-	res_close();
-	if (!v_circuit)
-		if (!gotsomewhere)
-			errno = ECONNREFUSED;	/* no nameservers found */
-		else
-			errno = ETIMEDOUT;	/* no answer obtained */
-	else
-		errno = terrno;
-	return (-1);
-}
-
-/*
- * This routine is for closing the socket if a virtual circuit is used and
- * the program wants to close it.  This provides support for endhostent()
- * which expects to close the socket.
- *
- * This routine is not expected to be user visible.
- */
-void
-res_close()
-{
-	if (s >= 0) {
-		(void) close(s);
-		s = -1;
-		connected = 0;
-		vc = 0;
-	}
-}
-
-#ifdef ultrix
-/* ultrix 4.0 had some icky packaging in its libc.a.  alias for it here.
- * there is more gunk of this kind over in res_debug.c.
- */
-
-void
-_res_close()
-{
-	res_close();
-}
-
-#undef res_send
-int
-res_send(buf, buflen, ans, anssiz)
-	const u_char *buf;
-	int buflen;
-	u_char *ans;
-	int anssiz;
-{
-	return (__res_send(buf, buflen, ans, anssiz));
-}
-#endif /* Ultrix 4.0 hackery */
diff --git a/contrib/bind/res/sethostent.c b/contrib/bind/res/sethostent.c
deleted file mode 100644
index 2c823df1471b6..0000000000000
--- a/contrib/bind/res/sethostent.c
+++ /dev/null
@@ -1,61 +0,0 @@
-/*
- * Copyright (c) 1985, 1993
- *	The Regents of the University of California.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *	This product includes software developed by the University of
- *	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- */
-
-#if defined(LIBC_SCCS) && !defined(lint)
-static char sccsid[] = "@(#)sethostent.c	8.1 (Berkeley) 6/4/93";
-static char rcsid[] = "$Id: sethostent.c,v 8.5 1996/09/28 06:51:07 vixie Exp $";
-#endif /* LIBC_SCCS and not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <netdb.h>
-#include <resolv.h>
-
-void
-sethostent(stayopen)
-	int stayopen;
-{
-	if ((_res.options & RES_INIT) == 0 && res_init() == -1)
-		return;
-	if (stayopen)
-		_res.options |= RES_STAYOPEN | RES_USEVC;
-}
-
-void
-endhostent()
-{
-	_res.options &= ~(RES_STAYOPEN | RES_USEVC);
-	res_close();
-}
diff --git a/contrib/bind/tests/irs_testclient.c b/contrib/bind/tests/irs_testclient.c
deleted file mode 100644
index 419f1372dbfbb..0000000000000
--- a/contrib/bind/tests/irs_testclient.c
+++ /dev/null
@@ -1,8 +0,0 @@
-#include <isc/ctl.h>
-#include <isc/eventlib.h>
-
-main (int argc, char **argv) {
-	evContext ctx ;
-
-
-}
diff --git a/contrib/bind/tests/irs_testirpd.c b/contrib/bind/tests/irs_testirpd.c
deleted file mode 100644
index 2b5a3c450a710..0000000000000
--- a/contrib/bind/tests/irs_testirpd.c
+++ /dev/null
@@ -1,366 +0,0 @@
-#include <stdio.h>
-#include <unistd.h>
-#include <pwd.h>
-#include <irp.h>
-#include <grp.h>
-#include <netdb.h>
-#include <arpa/inet.h>
-#include <sys/socket.h>
-
-#include <irp.h>
-#include <irs.h>
-#include <isc/irpmarshall.h>
-
-void print_passwd(const char *name, struct passwd *pw, FILE *fp);
-void print_group(const char *name, struct group *gr, FILE *fp);
-void print_servent(const char *name, struct servent *sv, FILE *fp);
-void print_host(const char *name, struct hostent *ho, FILE *fp);
-void print_netent(const char *name, struct netent *ne, FILE *fp);
-void print_proto(const char *name, struct protoent *pr, FILE *fp);
-
-int
-main(int argc, char **argv) {
-	struct passwd *pw;
-	struct group *gr;
-	struct servent *sv;
-	struct hostent *ho;
-	struct netent *ne;
-	struct protoent *pr;
-	int ch ;
-	char *groupname = NULL;
-	
-	while ((ch = getopt(argc, argv, "u:s:p:g:h:n:g:a:z:")) != -1) {
-		switch (ch) {
-		case 'u':
-			if (strlen (optarg) == 0) {
-				do {
-					pw = getpwent();
-					print_passwd(optarg, pw, stdout);
-					printf("\n\n");
-				} while (pw != NULL);
-				sleep(1);
-				setpwent();
-				do {
-					pw = getpwent();
-					print_passwd(optarg, pw, stdout);
-					printf("\n\n");
-				} while (pw != NULL);
-				sleep(1);
-			} else {
-				if (strspn(optarg, "0123456789") == 
-				    strlen(optarg))
-					pw = getpwuid(atoi(optarg));
-				else
-					pw = getpwnam(optarg);
-				print_passwd(optarg, pw, stdout);
-			}
-			
-			break;
-
-		case 'g':
-			if (strlen (optarg) == 0) {
-				do {
-					gr = getgrent();
-					print_group(optarg, gr, stdout);
-					printf("\n\n");
-				} while (gr != NULL);
-				sleep(1);
-				setgrent();
-				do {
-					gr = getgrent();
-					print_group(optarg, gr, stdout);
-					printf("\n\n");
-				} while (gr != NULL);
-				sleep(1);
-			} else {
-				if (strspn(optarg, "0123456789") == 
-				    strlen(optarg))
-					gr = getgrgid(atoi(optarg));
-				else
-					gr = getgrnam(optarg);
-				print_group(optarg, gr, stdout);
-			}
-			break;
-
-		case 's':
-			if (strlen (optarg) == 0) {
-				do {
-					sv = getservent();
-					print_servent(optarg, sv, stdout);
-					printf("\n\n");
-				} while (sv != NULL);
-				sleep(1);
-				setservent(1);
-				do {
-					sv = getservent();
-					print_servent(optarg, sv, stdout);
-					printf("\n\n");
-				} while (sv != NULL);
-				sleep(1);
-			} else {
-				if (strspn(optarg, "0123456789") == 
-				    strlen(optarg))
-					sv = getservbyport(htons(atoi(optarg)),
-							   "tcp");
-				else
-					sv = getservbyname(optarg,"tcp");
-				print_servent(optarg, sv, stdout);
-			}
-			break;
-
-		case 'h':
-			if (strlen (optarg) == 0) {
-				do {
-					ho = gethostent();
-					print_host(optarg, ho, stdout);
-					printf("\n\n");
-				} while (ho != NULL);
-				sleep(1);
-				sethostent(1);
-				do {
-					ho = gethostent();
-					print_host(optarg, ho, stdout);
-					printf("\n\n");
-				} while (ho != NULL);
-				sleep(1);
-			} else {
-				if (strspn(optarg, "0123456789.") == 
-				    strlen(optarg)) {
-					long naddr;
-					inet_pton(AF_INET, optarg, &naddr);
-					ho = gethostbyaddr((const char *) 
-							   &naddr, 
-							   sizeof naddr,
-							   AF_INET);
-				} else
-					ho = gethostbyname(optarg);
-				print_host(optarg, ho, stdout);
-			}
-			break;
-
-		case 'n':
-			if (strlen (optarg) == 0) {
-				do {
-					ne = getnetent();
-					print_netent(optarg, ne, stdout);
-					printf("\n\n");
-				} while (ne != NULL);
-				sleep(1);
-				setnetent(1);
-				do {
-					ne = getnetent();
-					print_netent(optarg, ne, stdout);
-					printf("\n\n");
-				} while (ne != NULL);
-				sleep(1);
-			} else {
-				if (strspn(optarg, "0123456789./") == 
-				    strlen(optarg)) {
-					long naddr;
-					inet_pton(AF_INET, optarg, &naddr);
-					ne = getnetbyaddr(naddr, AF_INET);
-				} else
-					ne = getnetbyname(optarg);
-				print_netent(optarg, ne, stdout);
-			}
-			break;
-			
-		case 'p':
-			if (strlen (optarg) == 0) {
-				do {
-					pr = getprotoent();
-					print_proto(optarg, pr, stdout);
-					printf("\n\n");
-				} while (pr != NULL);
-				sleep(1);
-				setprotoent(1);
-				do {
-					pr = getprotoent();
-					print_proto(optarg, pr, stdout);
-					printf("\n\n");
-				} while (pr != NULL);
-				sleep(1);
-			} else {
-				if (strspn(optarg, "0123456789") == 
-				    strlen(optarg))
-					pr = getprotobynumber(atoi(optarg));
-				else
-					pr = getprotobyname(optarg);
-				print_proto(optarg, pr, stdout);
-			}
-			
-			break;
-
-		case 'z': {
-			char *host, *user, *domain ;
-
-			groupname = optarg;
-			setnetgrent(groupname);
-			while (getnetgrent(&host,&user,&domain) == 1) {
-				fprintf(stdout, "++++\n");
-				fprintf(stdout, "Host: \"%s\"\n",
-				       (host == NULL ? "(null)" : host));
-				fprintf(stdout, "User: \"%s\"\n",
-				       (user == NULL ? "(null)" : user));
-				fprintf(stdout, "Domain: \"%s\"\n",
-				       (domain == NULL ? "(null)" : domain));
-				fprintf(stdout, "----\n\n");
-			}
-			break;
-		}
-		
-		default:
-			printf("Huh?\n");
-			exit (1);
-		}
-	}
-	return (0);
-}
-
-void
-print_passwd(const char *name, struct passwd *pw, FILE *fp) {
-	if (pw == NULL) {
-		fprintf(fp, "%s -- NONE\n",name) ;
-		return ;
-	}
-	
-	fprintf(fp, "++++\n");
-	fprintf(fp, "Name: \"%s\"\n", pw->pw_name);
-	fprintf(fp, "Uid: %d\n", pw->pw_uid);
-	fprintf(fp, "Gid: %d\n", pw->pw_gid);
-	fprintf(fp, "Password: \"%s\"\n", pw->pw_passwd);
-	fprintf(fp, "Change: %s", ctime(&pw->pw_change));
-	fprintf(fp, "Class: \"%s\"\n", pw->pw_class);
-	fprintf(fp, "Gecos: \"%s\"\n", pw->pw_gecos);
-	fprintf(fp, "Dir: \"%s\"\n", pw->pw_dir);
-	fprintf(fp, "Shell: \"%s\"\n", pw->pw_shell);
-	fprintf(fp, "Expire: %s", ctime(&pw->pw_expire));
-	fprintf(fp, "----\n");
-}
-
-
-
-void print_group(const char *name, struct group *gr, FILE *fp) {
-	char **p ;
-
-	if (gr == NULL) {
-		fprintf(fp, "%s -- NONE\n", name);
-		return;
-	}
-
-	fprintf(fp, "++++\n");
-	fprintf(fp, "Name: \"%s\"\n", gr->gr_name);
-	fprintf(fp, "Password: \"%s\"\n", gr->gr_passwd);
-	fprintf(fp, "Gid: %d\n", gr->gr_gid);
-	fprintf(fp, "Members:\n") ;
-	for (p = gr->gr_mem ; p != NULL && *p != NULL ; p++) {
-		fprintf(fp, "\t\t%s\n",*p);
-	}
-	fprintf(fp, "----\n");
-}
-
-
-
-void print_servent(const char *name, struct servent *sv, FILE *fp) {
-	char **p ;
-
-	if (sv == NULL) {
-		fprintf(fp, "%s -- NONE\n", name);
-		return;
-	}
-
-	fprintf(fp, "++++\n");
-	fprintf(fp, "Name: \"%s\"\n", sv->s_name);
-	fprintf(fp, "Aliases:\n") ;
-	for (p = sv->s_aliases ; p != NULL && *p != NULL ; p++) {
-		fprintf(fp, "\t\t%s\n",*p);
-	}
-	
-	fprintf(fp, "Port: %d\n", ntohs((short)sv->s_port));
-	fprintf(fp, "Protocol: \"%s\"\n", sv->s_proto);
-	fprintf(fp, "----\n");
-}
-
-
-void print_host(const char *name, struct hostent *ho, FILE *fp) {
-	char **p ;
-	char addr[24];
-
-	if (ho == NULL) {
-		fprintf(fp, "%s -- NONE\n", name);
-		return;
-	}
-
-	fprintf(fp, "++++\n");
-	fprintf(fp, "Name: \"%s\"\n", ho->h_name);
-	fprintf(fp, "Aliases:\n") ;
-	for (p = ho->h_aliases ; p != NULL && *p != NULL ; p++) {
-		fprintf(fp, "\t\t%s\n",*p);
-	}
-	
-
-	fprintf(fp, "Address Type: %s\n", ADDR_T_STR(ho->h_addrtype));
-	fprintf(fp, "Addresses:\n");
-	for (p = ho->h_addr_list ; p != NULL && *p ; p++) {
-		addr[0] = '\0';
-		inet_ntop(ho->h_addrtype, *p, addr, sizeof addr);
-		fprintf(fp, "\t\t%s\n",addr);
-	}
-	fprintf(fp, "----\n");
-}
-
-
-void print_netent(const char *name, struct netent *ne, FILE *fp) {
-	char **p ;
-	char addr[24];
-	long taddr;
-
-	if (ne == NULL) {
-		fprintf(fp, "%s -- NONE\n", name);
-		return;
-	}
-
-	fprintf(fp, "++++\n");
-	fprintf(fp, "Name: \"%s\"\n", ne->n_name);
-	fprintf(fp, "Aliases:\n") ;
-	for (p = ne->n_aliases ; p != NULL && *p != NULL ; p++) {
-		fprintf(fp, "\t\t%s\n",*p);
-	}
-	
-
-	fprintf(fp, "Address Type: %s\n", ADDR_T_STR(ne->n_addrtype));
-	taddr = htonl(ne->n_net);
-	inet_ntop(ne->n_addrtype, &taddr, addr, sizeof addr);
-	fprintf(fp, "Net number: %s\n", addr);
-	fprintf(fp, "----\n");
-}
-	
-
-void print_proto(const char *name, struct protoent *pr, FILE *fp) {
-	char **p ;
-	char addr[24];
-	long taddr;
-
-	if (pr == NULL) {
-		fprintf(fp, "%s -- NONE\n", name);
-		return;
-	}
-
-	fprintf(fp, "++++\n");
-	fprintf(fp, "Name: \"%s\"\n", pr->p_name);
-	fprintf(fp, "Aliases:\n") ;
-	for (p = pr->p_aliases ; p != NULL && *p != NULL ; p++) {
-		fprintf(fp, "\t\t%s\n",*p);
-	}
-	
-
-	fprintf(fp, "Protocol Number: %d\n", pr->p_proto);
-	fprintf(fp, "----\n");
-}
-	
-/*
-   Local Variables:
-   compile-command: "gcc -g -I../../include -L.. -o testirpd testirpd.c ../libbind.a"
-   End:
-*/
-
diff --git a/contrib/bind/tests/irs_testserver.c b/contrib/bind/tests/irs_testserver.c
deleted file mode 100644
index e7ee2b99f4354..0000000000000
--- a/contrib/bind/tests/irs_testserver.c
+++ /dev/null
@@ -1,28 +0,0 @@
-#include <stdio.h>
-#include <stdarg.h>
-#include <isc/ctl.h>
-#include <isc/eventlib.h>
-
-struct ctl_verb verbs[];
-
-static void
-logger(enum ctl_severity sev, const char *fmt, ...) {
-	va_list ap ;
-
-	va_start (ap, fmt) ;
-	fprintf (stderr, "logger: ");
-	vfprintf (stderr, fmt, ap) ;
-	va_end (ap) ;
-}
-	
-
-main (int argc, char **argv) {
-	evContext ctx ;
-	struct sockaddr addr ;
-	struct ctl_sctx *sctx ;
-
-
-	sctx = ctl_server(ctx, &addr, verbs, 666, "Go away peon!", 222,
-			  333, 10, 5, 6, logger);
-	
-}
diff --git a/contrib/bind/tests/test_cidr.c b/contrib/bind/tests/test_cidr.c
deleted file mode 100644
index f4845f00d9238..0000000000000
--- a/contrib/bind/tests/test_cidr.c
+++ /dev/null
@@ -1,38 +0,0 @@
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <stdio.h>
-
-static void test(const char *);
-
-int
-main() {
-	test("192.5.4.0/23");
-	test("192.5.4.0");
-	test("192.5.5.1");
-	test("192.5.5.1/23");
-	test("192.5.5.1/24");
-	test("192.5.5.1/28");
-	test("192.5.5.1/32");
-	return (0);
-}
-
-static void
-test(const char *input) {
-	int bits;
-	u_char temp[sizeof (struct in_addr)];
-	char output[sizeof "255.255.255.255/32"];
-
-	memset(temp, 0x5e, sizeof temp);
-	if (inet_cidr_pton(AF_INET, input, temp, &bits) < 0) {
-		perror(input);
-		exit(1);
-	}
-	if (inet_cidr_ntop(AF_INET, temp, bits, output, sizeof output)==NULL){
-		perror("inet_cidr_ntop");
-		exit(1);
-	}
-	printf("input '%s', temp '%x %x %x %x', bits %d, output '%s'\n",
-	       input, temp[0], temp[1], temp[2], temp[3], bits, output);
-}
diff --git a/contrib/bind/tests/test_getaddr.c b/contrib/bind/tests/test_getaddr.c
deleted file mode 100644
index 9ca21890e2254..0000000000000
--- a/contrib/bind/tests/test_getaddr.c
+++ /dev/null
@@ -1,160 +0,0 @@
-#include <port_before.h>
-#include <stdio.h>
-#include <unistd.h>
-#include <sys/socket.h>
-#include <netdb.h>
-#include <ctype.h>
-#include <port_after.h>
-
-char *flags[] = {
-	" AI_PASSIVE",
-	" AI_CANONNAME",
-	" AI_NUMERICHOST",
-	" 0x00000008",
-	" 0x00000010",
-	" 0x00000020",
-	" 0x00000040",
-	" 0x00000080",
-	" 0x00000100",
-	" 0x00000200",
-	" 0x00000400",
-	" 0x00000800",
-	" 0x00001000",
-	" 0x00002000",
-	" 0x00004000",
-	" 0x00008000",
-	" 0x00010000",
-	" 0x00020000",
-	" 0x00040000",
-	" 0x00080000",
-	" 0x00100000",
-	" 0x00200000",
-	" 0x00400000",
-	" 0x00800000",
-	" 0x01000000",
-	" 0x02000000",
-	" 0x04000000",
-	" 0x08000000",
-	" 0x10000000",
-	" 0x20000000",
-	" 0x40000000",
-	" 0x80000000"
-};
-
-void
-print_ai(struct addrinfo *answer, int hints) {
-	int i;
-
-	if (answer == NULL) {
-		fprintf(stdout, "No %s\n", hints ? "Hints" : "Answer");
-		return;
-	} 
-
-	fprintf(stdout, "%s:\n", hints ? "Hints" : "Answer");
-
-	while (answer) {
-		fputs("flags:", stdout);
-		for (i = 0; i < 32 ; i++)
-			if (answer->ai_flags & (1 << i))
-				fputs(flags[i], stdout);
-		fputs("\n", stdout);
-		fprintf(stdout, "family: %d, socktype: %d, protocol: %d\n",
-			answer->ai_family, answer->ai_socktype, answer->ai_protocol);
-		if (hints)
-			return;
-
-		if (answer->ai_canonname != NULL)
-			fprintf(stdout, "canonname: \"%s\"\n",
-				answer->ai_canonname);
-		else
-			fputs("canonname: --none--\n", stdout);
-
-		fprintf(stdout, "addrlen: %d\n", answer->ai_addrlen);
-
-		for (i = 0; i < answer->ai_addrlen; i++)
-			fprintf(stdout, "%s%02x", (i == 0) ? "0x" : "", 
-				((unsigned char*)(answer->ai_addr))[i]);
-		fputs("\n", stdout);
-
-		for (i = 0; i < answer->ai_addrlen; i++)
-			fprintf(stdout, "%s%d", (i == 0) ? "" : ".", 
-				((unsigned char*)(answer->ai_addr))[i]);
-		fputs("\n", stdout);
-
-		for (i = 0; i < answer->ai_addrlen; i++) {
-			int c = ((unsigned char*)(answer->ai_addr))[i];
-			fprintf(stdout, "%c", (isascii(c) && isprint(c)) ?
-					c : '.');
-		}
-		fputs("\n", stdout);
-
-		answer = answer->ai_next;
-	}
-}
-
-void
-usage() {
-	fputs("usage:", stdout);
-	fputs("\t-h <hostname>\n", stdout);
-	fputs("\t-s <service>\n", stdout);
-	fputs("\t-p AI_PASSIVE\n", stdout);
-	fputs("\t-c AI_CANONNAME\n", stdout);
-	fputs("\t-n AI_NUMERICHOST\n", stdout);
-	fputs("\t-4 AF_INET4\n", stdout);
-	fputs("\t-6 AF_INET6\n", stdout);
-	fputs("\t-l AF_LOCAL\n", stdout);
-	fputs("\t-u IPPROTO_UDP\n", stdout);
-	fputs("\t-t IPPROTO_TCP\n", stdout);
-	fputs("\t-S SOCK_STREAM\n", stdout);
-	fputs("\t-D SOCK_DGRAM\n", stdout);
-	fputs("\t-R SOCK_RAW\n", stdout);
-	fputs("\t-M SOCK_RDM\n", stdout);
-	fputs("\t-P SOCK_SEQPACKET\n", stdout);
-	exit(1);
-}
-
-main(int argc, char **argv) {
-	int c;
-	char *hostname = NULL;
-	char *service = NULL;
-	struct addrinfo info;
-	int res;
-	struct addrinfo *answer;
-
-	memset(&info, 0, sizeof info);
-
-	while ((c = getopt(argc, argv, "h:s:pcn46ltuSDRMP")) != -1) {
-		switch (c) {
-		case 'h': hostname = optarg; break;
-		case 's': service = optarg; break;
-		case 'p': info.ai_flags |= AI_PASSIVE; break;
-		case 'c': info.ai_flags |= AI_CANONNAME; break;
-		case 'n': info.ai_flags |= AI_NUMERICHOST; break;
-		case '4': info.ai_family = AF_INET; break;
-		case '6': info.ai_family = AF_INET6; break;
-#ifdef AF_LOCAL
-		case 'l': info.ai_family = AF_LOCAL; break;
-#else
-		case 'l': fprintf(stdout, "AF_LOCAL not supported\n"); break;
-#endif
-		case 't': info.ai_protocol = IPPROTO_TCP; break;
-		case 'u': info.ai_protocol = IPPROTO_UDP; break;
-		case 'S': info.ai_socktype = SOCK_STREAM; break;
-		case 'D': info.ai_socktype = SOCK_DGRAM; break;
-		case 'R': info.ai_socktype = SOCK_RAW; break;
-		case 'M': info.ai_socktype = SOCK_RDM; break;
-		case 'P': info.ai_socktype = SOCK_SEQPACKET; break;
-		case '?': usage(); break;
-		}
-		
-	}
-	res = getaddrinfo(hostname, service, &info, &answer);
-	if (res) {
-		fprintf(stdout, "%s\n", gai_strerror(res));
-	} else {
-		print_ai(&info, 1);
-		print_ai(answer, 0);
-		freeaddrinfo(answer);
-	}
-	exit (0);
-}
diff --git a/contrib/bind/tools/Makefile b/contrib/bind/tools/Makefile
deleted file mode 100644
index 63a24676903a7..0000000000000
--- a/contrib/bind/tools/Makefile
+++ /dev/null
@@ -1,163 +0,0 @@
-#
-#	@(#)Makefile	4.9 (Berkeley) 10/10/88
-#	$Id: Makefile,v 8.7 1996/05/20 15:10:04 vixie Exp $
-#
-
-## ++Copyright++ 1987
-## -
-## Copyright (c) 1987
-##    The Regents of the University of California.  All rights reserved.
-## 
-## Redistribution and use in source and binary forms, with or without
-## modification, are permitted provided that the following conditions
-## are met:
-## 1. Redistributions of source code must retain the above copyright
-##    notice, this list of conditions and the following disclaimer.
-## 2. Redistributions in binary form must reproduce the above copyright
-##    notice, this list of conditions and the following disclaimer in the
-##    documentation and/or other materials provided with the distribution.
-## 3. All advertising materials mentioning features or use of this software
-##    must display the following acknowledgement:
-## 	This product includes software developed by the University of
-## 	California, Berkeley and its contributors.
-## 4. Neither the name of the University nor the names of its contributors
-##    may be used to endorse or promote products derived from this software
-##    without specific prior written permission.
-## 
-## THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-## ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-## IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-## ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-## FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-## DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-## OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-## HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-## LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-## OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-## SUCH DAMAGE.
-## -
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-## -
-## --Copyright--
-
-DESTDIR=
-CC= cc
-SHELL= /bin/sh
-
-CDEBUG= -g
-
-INCL =  ../include
-RES=	../res/libresolv.a
-COMPLIB= ../compat/lib/lib44bsd.a
-
-LEX=	lex
-LIBS=	-ll
-PIDDIR = /etc
-DESTBIN = /usr/bin
-DESTSBIN = /usr/etc
-DESTEXEC = /usr/etc
-DESTMAN = /usr/man
-COMPINCL = ../compat/include
-DESTHELP= /usr/lib
-
-#(net2 and its descendents)
-#LEX = lex -I
-#LIBS = -ll -lutil
-#PIDDIR = /var/run
-#DESTBIN = /usr/bin
-#DESTSBIN = /usr/sbin
-#DESTEXEC = /usr/libexec
-#DESTMAN = /usr/share/man
-#COMPINCL = .
-#DESTHELP= /usr/share/misc
-
-LDFLAGS=
-MARGS =	"CC=$(CC)" "LEX=$(LEX)" "CDEBUG=$(CDEBUG)" "SHELL=$(SHELL)" \
-	"INCL=../$(INCL)" "RES=../$(RES)" "LIBS=$(LIBS)" "LDFLAGS=$(LDFLAGS)" \
-	"DESTDIR=$(DESTDIR)" "PIDDIR=${PIDDIR}" "DESTMAN=${DESTMAN}" \
-	"DESTBIN=${DESTBIN}" "DESTSBIN=${DESTSBIN}" "DESTEXEC=${DESTEXEC}" \
-	"DESTLIB=${DESTLIB}" "DESTINC=${DESTINC}" "RANLIB=${RANLIB}" \
-	"COMPINCL=../${COMPINCL}" "DESTHELP=${DESTHELP}" \
-	"COMPLIB=../${COMPLIB}" "INSTALL=${INSTALL}" \
-	"CPPFLAGS=${CPPFLAGS}"
-
-CFLAGS=	$(CDEBUG) -I$(INCL) -I$(COMPINCL)
-SRCS=	host.c dig.c dnsquery.c addr.c
-HOST_O=	host.o
-DIG_O=	dig.o nslookup/list.o nslookup/subr.o nslookup/debug.o nslookup/send.o
-DNSQUERY_O= dnsquery.o
-ADDR_O=	addr.o
-
-SUBDIRS = nslookup 
-BINARIES = host dig dnsquery addr
-
-all: ${SUBDIRS} ${BINARIES}
-
-host: ${HOST_O} ${RES} ${COMPLIB} Makefile
-	${CC} ${CFLAGS} ${LDFLAGS} -o $@ ${HOST_O} \
-		${RES} ${COMPLIB} ${LIBS}
-
-dig: ${DIG_O} ${RES} ${COMPLIB} Makefile
-	${CC} ${CFLAGS} ${LDFLAGS} -o $@ ${DIG_O} \
-		${RES} ${COMPLIB} ${LIBS}
-
-dnsquery: ${DNSQUERY_O} ${RES} ${COMPLIB} Makefile
-	${CC} ${CFLAGS} ${LDFLAGS} -o $@ ${DNSQUERY_O} \
-		${RES} ${COMPLIB} ${LIBS}
-
-addr: ${ADDR_O} ${RES} ${COMPLIB} Makefile
-	${CC} ${CFLAGS} ${LDFLAGS} -o $@ ${ADDR_O} \
-		${RES} ${COMPLIB} ${LIBS}
-
-${SUBDIRS}: FRC
-	cd $@; ${MAKE} ${MARGS}
-
-clean: FRC
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} clean); \
-	done
-	rm -f ${BINARIES} core .depend
-	rm -f *.BAK *.CKP *~ *.o *.orig
-
-depend: ${SRCS}
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} depend); \
-	done
-	mkdep -p ${CPPFLAGS} -I${INCL} -I${COMPINCL} ${SRCS}
-
-install: FRC
-	@for x in ${SUBDIRS}; do \
-		(cd $$x; pwd; ${MAKE} ${MARGS} DESTDIR=${DESTDIR} install); \
-	done
-	@set -x; for x in ${BINARIES}; do \
-		${INSTALL} -s -c -m 755 $$x ${DESTDIR}${DESTBIN}/$$x; \
-	done
-
-lint: ${SRCS}
-	@(cd nslookup; pwd; ${MAKE} ${MARGS} lint)
-	lint ${CFLAGS} ${SRCS}
-
-tags: ${SRCS}
-	cd nslookup; ${MAKE} ${MARGS} tags
-	ctags ${SRCS}
-
-FRC:
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/tools/addr.c b/contrib/bind/tools/addr.c
deleted file mode 100644
index 98a505c608d34..0000000000000
--- a/contrib/bind/tools/addr.c
+++ /dev/null
@@ -1,173 +0,0 @@
-#if !defined(lint) && !defined(SABER)
-static char rcsid[] = "$Id: addr.c,v 8.4 1996/05/23 08:21:28 vixie Exp $";
-#endif /* not lint */
-
-/* Copyright (c) 1996 by Internet Software Consortium.
- *
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies.
- *
- * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS
- * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE
- * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- */
-
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <string.h>
-#include <stdio.h>
-#include <ctype.h>
-#include "../conf/portability.h"
-
-extern char *optarg;
-extern int optind;
-extern int opterr;
-extern int optopt;
-
-static const char *prog = "addr";
-
-#define BIGGEST_ADDRESS IN6ADDRSZ
-
-static void
-usage() {
-	fprintf(stderr,
-		"usage:  %s [-4] [-6] [-n hexstring] [-p address]\n",
-		prog);
-	exit(1);
-}
-
-/* Warning: this scribbles on `dst' even if it's going to return `0'. */
-static int
-hexstring(src, dst, len)
-	const char *src;
-	u_char *dst;
-	int len;
-{
-	static const char xdigits[] = "0123456789abcdef";
-	u_char *ptr = dst, *end = dst + len;
-	u_int val;
-	int ch, digits;
-
-	val = 0;
-	digits = 0;
-	bzero((void*)dst, len);
-	while ((ch = *src++) != '\0') {
-		if (ch == '0' && (*src == 'x' || *src == 'X')) {
-			src++;
-			continue;
-		}
-		if (isascii(ch) && (isspace(ch) || ispunct(ch))) {
-			if (digits > 0) {
-				if (ptr == end)
-					return (0);
-				*ptr++ = (u_char) (val & 0xff);
-				val = 0;
-				digits = 0;
-			}
-			digits = 0;
-			continue;
-		}
-		if (!isascii(ch) || !isxdigit(ch))
-			return (0);
-		if (isupper(ch))
-			ch = tolower(ch);
-		/* Clock it in using little endian arithmetic. */
-		val <<= 4;
-		val |= (strchr(xdigits, ch) - xdigits);
-		if (++digits == 2) {
-			if (ptr == end)
-				return (0);
-			*ptr++ = (u_char) (val & 0xff);
-			digits = 0;
-			val = 0;
-		}
-	}
-	if (digits > 0) {
-		if (ptr == end)
-			return (0);
-		*ptr++ = (u_char) (val & 0xff);
-	}
-	return ((ptr - dst) == len);
-}
-
-static void
-display(input, af, addr, len)
-	const char *input;
-	int af;
-	const u_char *addr;
-	int len;
-{
-	static int before = 0;
-	char p[sizeof "xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:255.255.255.255"];
-	int i;
-
-	if (before)
-		putchar('\n');
-	else
-		before++;
-
-	printf("Input: \"%s\"\n", input);
-	printf("Network: [af%d len%d]", af, len);
-	for (i = 0; i < len; i++)
-		printf(" %02x", addr[i]);
-	putchar('\n');
-	printf("Presentation: \"%s\"\n", inet_ntop(af, addr, p, sizeof p));
-}
-
-int
-main(argc, argv)
-	int argc;
-	char *argv[];
-{
-	u_char addr[BIGGEST_ADDRESS];
-	int optchr, af, len;
-
-	prog = argv[0];
-	af = AF_INET;
-	len = INADDRSZ;
-	while ((optchr = getopt(argc, argv, "46n:p:")) != -1) {
-		switch (optchr) {
-		case '4':
-			af = AF_INET;
-			len = INADDRSZ;
-			break;
-		case '6':
-			af = AF_INET6;
-			len = IN6ADDRSZ;
-			break;
-		case 'n':
-			if (!hexstring(optarg, addr, len)) {
-				fprintf(stderr, "bad hex string: \"%s\"\n",
-					optarg);
-				usage();
-				/* NOTREACHED */
-			}
-			display(optarg, af, addr, len);
-			break;
-		case 'p':
-			if (inet_pton(af, optarg, addr) <= 0) {
-				fprintf(stderr, "bad address: \"%s\"\n",
-					optarg);
-				usage();
-				/* NOTREACHED */
-			}
-			display(optarg, af, addr, len);
-			break;
-		default:
-			usage();
-			/* NOTREACHED */
-		}
-	}
-	exit(0);
-	/* NOTREACHED */
-}
diff --git a/contrib/bind/tools/dig.c b/contrib/bind/tools/dig.c
deleted file mode 100644
index e2cef9ac68808..0000000000000
--- a/contrib/bind/tools/dig.c
+++ /dev/null
@@ -1,1236 +0,0 @@
-#ifndef lint
-static char rcsid[] = "$Id: dig.c,v 8.8 1996/05/21 07:32:40 vixie Exp $";
-#endif
-
-/*
- * ++Copyright++ 1989
- * -
- * Copyright (c) 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*********************** Notes for the BIND 4.9 release (Paul Vixie, DEC)
- *	dig 2.0 was written by copying sections of libresolv.a and nslookup
- *	and modifying them to be more useful for a general lookup utility.
- *	as of BIND 4.9, the changes needed to support dig have mostly been
- *	incorporated into libresolv.a and nslookup; dig now links against
- *	some of nslookup's .o files rather than #including them or maintaining
- *	local copies of them.  in some sense, dig belongs in the nslookup
- *	subdirectory rather than up here in "tools", but that's for arc@sgi.com
- *	(owner of nslookup) to decide.
- *
- *	while merging dig back into the BIND release, i made a number of
- *	structural changes.  for one thing, i put all of dig's private
- *	library routines into this file rather than maintaining them in
- *	separate, #included, files.  i don't like to #include ".c" files.
- *	i removed all calls to "bcopy", replacing them with structure
- *	assignments.  i removed all "extern"'s of standard functions,
- *	replacing them with #include's of standard header files.  this
- *	version of dig is probably as portable as the rest of BIND.
- *
- *	i had to remove the query-time and packet-count statistics since
- *	the current libresolv.a is a lot harder to modify to maintain these
- *	than the 4.8 one (used in the original dig) was.  for consolation,
- *	i added a "usage" message with extensive help text.
- *
- *	to save my (limited, albeit) sanity, i ran "indent" over the source.
- *	i also added the standard berkeley/DEC copyrights, since this file now
- *	contains a fair amount of non-USC code.  note that the berkeley and
- *	DEC copyrights do not prohibit redistribution, with or without fee;
- *	we add them only to protect ourselves (you have to claim copyright
- *	in order to disclaim liability and warranty).
- *
- *	Paul Vixie, Palo Alto, CA, April 1993
- ****************************************************************************
-
- /*******************************************************************
- **      DiG -- Domain Information Groper                          **
- **                                                                **
- **        dig.c - Version 2.1 (7/12/94) ("BIND takeover")         **
- **                                                                **
- **        Developed by: Steve Hotz & Paul Mockapetris             **
- **        USC Information Sciences Institute (USC-ISI)            **
- **        Marina del Rey, California                              **
- **        1989                                                    **
- **                                                                **
- **        dig.c -                                                 **
- **           Version 2.0 (9/1/90)                                 **
- **               o renamed difftime() difftv() to avoid           **
- **                 clash with ANSI C                              **
- **               o fixed incorrect # args to strcmp,gettimeofday  **
- **               o incorrect length specified to strncmp          **
- **               o fixed broken -sticky -envsa -envset functions  **
- **               o print options/flags redefined & modified       **
- **                                                                **
- **           Version 2.0.beta (5/9/90)                            **
- **               o output format - helpful to `doc`               **
- **               o minor cleanup                                  **
- **               o release to beta testers                        **
- **                                                                **
- **           Version 1.1.beta (10/26/89)                          **
- **               o hanging zone transer (when REFUSED) fixed      **
- **               o trailing dot added to domain names in RDATA    **
- **               o ISI internal                                   **
- **                                                                **
- **           Version 1.0.tmp  (8/27/89)                           **
- **               o Error in prnttime() fixed                      **
- **               o no longer dumps core on large pkts             **
- **               o zone transfer (axfr) added                     **
- **               o -x added for inverse queries                   **
- **                               (i.e. "dig -x 128.9.0.32")       **
- **               o give address of default server                 **
- **               o accept broadcast to server @255.255.255.255    **
- **                                                                **
- **           Version 1.0  (3/27/89)                               **
- **               o original release                               **
- **                                                                **
- **     DiG is Public Domain, and may be used for any purpose as   **
- **     long as this notice is not removed.                        **
- ****                                                            ****
- ****   NOTE: Version 2.0.beta is not for public distribution    ****
- ****                                                            ****
- *******************************************************************/
-
-
-#define VERSION 22
-#define VSTRING "2.2"
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/file.h>
-#include <sys/stat.h>
-#include <sys/socket.h>
-#include <sys/time.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <netdb.h>
-#include <stdio.h>
-#include <resolv.h>
-#include <ctype.h> 
-#include <errno.h>
-#include <string.h>
-#include <setjmp.h>
-#include <fcntl.h>
-
-#include "nslookup/res.h"
-#include "../conf/portability.h"
-
-#define PRF_DEF		0x2ff9
-#define PRF_MIN		0xA930
-#define PRF_ZONE        0x24f9
-
-#ifndef MAXHOSTNAMELEN
-#define MAXHOSTNAMELEN 256
-#endif
-
-int eecode = 0;
-
-FILE *qfp;
-int sockFD;
-
-#define SAVEENV "DiG.env"
-#define DIG_MAXARGS 30
-
-char *defsrv, *srvmsg;
-char defbuf[40] = "default -- ";
-char srvbuf[60];
-
-static void Usage();
-static int SetOption(), printZone(), printRR();
-static struct timeval difftv();
-static void prnttime();
-static int xstrtonum();
-static void res_re_init();
-
-/* stuff for nslookup modules */
-FILE		*filePtr;
-jmp_buf		env;
-HostInfo	*defaultPtr = NULL;
-HostInfo	curHostInfo, defaultRec;
-int		curHostValid = FALSE;
-int		queryType, queryClass;
-extern int	StringToClass(), StringToType();	/* subr.c */
-#if defined(BSD) && BSD >= 199006 && !defined(RISCOS_BSD)
-FILE		*yyin = NULL;
-void		yyrestart(f) { }
-#endif
-char		*pager = NULL;
-/* end of nslookup stuff */
-
- /*
- ** Take arguments appearing in simple string (from file or command line)
- ** place in char**.
- */
-void
-stackarg(y, l)
-	char *l;
-	char **y;
-{
-	int done=0;
-
-	while (!done) {
-		switch (*l) {
-		case '\t':
-		case ' ':
-			l++;    break;
-		case '\0':
-		case '\n':
-			done++;
-			*y = NULL;
-			break;
-		default:
-			*y++=l;
-			while (!isspace(*l))
-				l++;
-			if (*l == '\n')
-				done++;
-			*l++ = '\0';
-			*y = NULL;
-		}
-	}
-}
-
-char myhostname[MAXHOSTNAMELEN];
-
-int
-main(argc, argv)
-	int argc;
-	char **argv;
-{
-	struct hostent *hp;
-	short port = htons(NAMESERVER_PORT);
-	/* Wierd stuff for SPARC alignment, hurts nothing else. */
-	union {
-		HEADER header_;
-		u_char packet_[PACKETSZ];
-	} packet_;
-#define	packet  (packet_.packet_)
-	u_char answer[8*1024];
-	int n;
-	char doping[90];
-	char pingstr[50];
-	char *afile;
-	char *addrc, *addrend, *addrbegin;
-
-	struct timeval exectime, tv1, tv2, start_time, end_time, query_time;
-
-	char *srv;
-	int anyflag = 0;
-	int sticky = 0;
-	int tmp; 
-	int qtypeSet;
-	int addrflag = 0;
-	int zone = 0;
-        int bytes_out, bytes_in;
-
-	char cmd[256];
-	char domain[MAXDNAME];
-        char msg[120], *msgptr;
-	char **vtmp;
-	char *args[DIG_MAXARGS];
-	char **ax;
-	char **ay;
-	int once = 1, dofile = 0; /* batch -vs- interactive control */
-	char fileq[100];
-	char *qptr;
-	int  fp;
-	int wait=0, delay;
-	int envset=0, envsave=0;
-	struct __res_state res_x, res_t;
-	char *pp;
-
-	res_init();
-	_res.pfcode = PRF_DEF;
-	qtypeSet = 0;
-	bzero(domain, (sizeof domain));
-	gethostname(myhostname, (sizeof myhostname));
-	defsrv = strcat(defbuf, inet_ntoa(_res.nsaddr.sin_addr));
-	res_x = _res;
-
- /*
- ** If LOCALDEF in environment, should point to file
- ** containing local favourite defaults.  Also look for file
- ** DiG.env (i.e. SAVEENV) in local directory.
- */
-
-	if ((((afile = (char *) getenv("LOCALDEF")) != (char *) NULL) &&
-	     ((fp = open(afile, O_RDONLY)) > 0)) ||
-	    ((fp = open(SAVEENV, O_RDONLY)) > 0)) {
-		read(fp, (char *)&res_x, (sizeof res_x));
-		close(fp);
-		_res = res_x;
-	}
- /*
- **   check for batch-mode DiG; also pre-scan for 'help'
- */
-	vtmp = argv;
-	ax = args;
-	while (*vtmp != NULL) {
-		if (strcmp(*vtmp, "-h") == 0 ||
-		    strcmp(*vtmp, "-help") == 0 ||
-		    strcmp(*vtmp, "-usage") == 0 ||
-		    strcmp(*vtmp, "help") == 0) {
-			Usage();
-			exit(0);
-		}
-
-		if (strcmp(*vtmp, "-f") == 0) {
-			dofile++; once=0;
-			if ((qfp = fopen(*++vtmp, "r")) == NULL) {
-				fflush(stdout);
-				perror("file open");
-				fflush(stderr);
-				exit(10);
-			}
-		} else {
-			if (ax - args == DIG_MAXARGS) {
-				fprintf(stderr, "dig: too many arguments\n");
-				exit(10);
-			}
-			*ax++ = *vtmp;
-		}
-		vtmp++;
-	}
-
-	_res.id = 1;
-	gettimeofday(&tv1, NULL);
-
- /*
- **  Main section: once if cmd-line query
- **                while !EOF if batch mode
- */
-	*fileq = '\0';
-	while ((dofile && (fgets(fileq,100,qfp) != NULL)) || 
-	       ((!dofile) && (once--))) 
-	{
-		if ((*fileq=='\n') || (*fileq=='#') || (*fileq==';')) {
-			continue; /* ignore blank lines & comments */
-		}
-
-/*
- * "sticky" requests that before current parsing args
- * return to current "working" environment (X******)
- */
-		if (sticky) {
-			printf(";; (using sticky settings)\n");
-			_res = res_x;
-		}
-
-/* concat cmd-line and file args */
-		ay = ax;
-		qptr = fileq;
-		stackarg(ay, qptr);
-
-		/* defaults */
-		queryType = T_NS;
-		queryClass = C_IN;
-		zone = 0;
-		*pingstr = 0;
-		srv = NULL;
-
-		sprintf(cmd,"\n; <<>> DiG %s <<>> ",VSTRING);
-		argv = args;
-		argc = ax - args;
-/*
- * More cmd-line options than anyone should ever have to
- * deal with ....
- */
-		while (*(++argv) != NULL && **argv != '\0') { 
-			strcat(cmd,*argv); strcat(cmd," ");
-			if (**argv == '@') {
-				srv = (*argv+1);
-				continue;
-			}
-			if (**argv == '%')
-				continue;
-			if (**argv == '+') {
-				SetOption(*argv+1);
-				continue;
-			}
-	 
-			if (strncmp(*argv,"-nost",5) == 0) {
-				sticky = 0;
-				continue;
-			} else if (strncmp(*argv,"-st",3) == 0) {
-				sticky++;
-				continue;
-			} else if (strncmp(*argv,"-envsa",6) == 0) {
-				envsave++;
-				continue;
-			} else if (strncmp(*argv,"-envse",6) == 0) {
-				envset++;
-				continue;
-			}
-
-			if (**argv == '-') {
-				switch (argv[0][1]) { 
-				case 'T': wait = atoi(*++argv);
-					break;
-				case 'c': 
-					if ((tmp = atoi(*++argv))
-					    || *argv[0]=='0') {
-						queryClass = tmp;
-					} else if (tmp = StringToClass(*argv,
-								       0, NULL)
-						   ) {
-						queryClass = tmp;
-					} else {
-						printf(
-						  "; invalid class specified\n"
-						       );
-					}
-					break;
-				case 't': 
-					if ((tmp = atoi(*++argv))
-					    || *argv[0]=='0') {
-						queryType = tmp;
-						qtypeSet++;
-					} else if (tmp = StringToType(*argv,
-								      0, NULL)
-						   ) {
-						queryType = tmp;
-						qtypeSet++;
-					} else {
-						printf(
-						   "; invalid type specified\n"
-						       );
-						}
-					break;
-				case 'x':
-					if (!qtypeSet) {
-						queryType = T_ANY;
-						qtypeSet++;
-					}
-					if (!(addrc = *++argv)) {
-						printf(
-						       "; no arg for -x?\n"
-						       );
-						break;
-					}
-					addrend = addrc + strlen(addrc);
-					if (*addrend == '.')
-						*addrend = '\0';
-					*domain = '\0';
-					while (addrbegin = strrchr(addrc,'.')) {
-						strcat(domain, addrbegin+1);
-						strcat(domain, ".");
-						*addrbegin = '\0';
-					}
-					strcat(domain, addrc);
-					strcat(domain, ".in-addr.arpa.");
-					break;
-				case 'p': port = htons(atoi(*++argv)); break;
-				case 'P':
-					if (argv[0][2] != '\0')
-						strcpy(pingstr,&argv[0][2]);
-					else
-						strcpy(pingstr,"ping -s");
-					break;
-#if defined(__RES) && (__RES >= 19931104)
-				case 'n':
-					_res.ndots = atoi(&argv[0][2]);
-					break;
-#endif /*__RES*/
-				} /* switch - */
-				continue;
-			} /* if '-'   */
-
-			if ((tmp = StringToType(*argv, -1, NULL)) != -1) { 
-				if ((T_ANY == tmp) && anyflag++) {  
-					queryClass = C_ANY; 	
-					continue; 
-				}
-				if (T_AXFR == tmp) {
-					_res.pfcode = PRF_ZONE;
-					zone++;
-				} else {
-					queryType = tmp; 
-					qtypeSet++;
-				}
-			} else if ((tmp = StringToClass(*argv, -1, NULL))
-				   != -1) { 
-				queryClass = tmp; 
-			} else {
-				bzero(domain, (sizeof domain));
-				sprintf(domain,"%s",*argv);
-			}
-		} /* while argv remains */
-
-		if (_res.pfcode & 0x80000)
-			printf("; pfcode: %08lx, options: %08lx\n",
-			       _res.pfcode, _res.options);
-	  
-/*
- * Current env. (after this parse) is to become the
- * new "working environmnet. Used in conj. with sticky.
- */
-		if (envset) {
-			res_x = _res;
-			envset = 0;
-		}
-
-/*
- * Current env. (after this parse) is to become the
- * new default saved environmnet. Save in user specified
- * file if exists else is SAVEENV (== "DiG.env").
- */
-		if (envsave) {
-			afile = (char *) getenv("LOCALDEF");
-			if ((afile &&
-			     ((fp = open(afile,
-					 O_WRONLY|O_CREAT|O_TRUNC,
-					 S_IREAD|S_IWRITE)) > 0))
-			    ||
-			    ((fp = open(SAVEENV,
-					O_WRONLY|O_CREAT|O_TRUNC,
-					S_IREAD|S_IWRITE)) > 0)) {
-				write(fp, (char *)&_res, (sizeof _res));
-				close(fp);
-			}
-			envsave = 0;
-		}
-
-		if (_res.pfcode & RES_PRF_CMD)
-			printf("%s\n", cmd);
-
-		addrflag = anyflag = 0;
-
-/*
- * Find address of server to query. If not dot-notation, then
- * try to resolve domain-name (if so, save and turn off print 
- * options, this domain-query is not the one we want. Restore
- * user options when done.
- * Things get a bit wierd since we need to use resolver to be
- * able to "put the resolver to work".
- */
-
-		srvbuf[0] = 0;
-		srvmsg = defsrv;
-		if (srv != NULL) {
-			struct in_addr addr;
-
-			if (inet_aton(srv, &addr)) {
-				_res.nscount = 1;
-				_res.nsaddr.sin_addr = addr;
-				srvmsg = strcat(srvbuf, srv);
-			} else {
-				res_t = _res;
-				_res.pfcode = 0;
-				_res.options = RES_DEFAULT;
-				res_init();
-				hp = gethostbyname(srv);
-				_res = res_t;
-				if (hp == NULL
-				    || hp->h_addr_list == NULL
-				    || *hp->h_addr_list == NULL) {
-					fflush(stdout);
-					fprintf(stderr,
-		"; Bad server: %s -- using default server and timer opts\n",
-						srv);
-					fflush(stderr);
-					srvmsg = defsrv;
-					srv = NULL;
-				} else {
-					u_int32_t **addr;
-
-					_res.nscount = 0;
-					for (addr = (u_int32_t**)hp->h_addr_list;
-					     *addr && (_res.nscount < MAXNS);
-					     addr++) {
-						_res.nsaddr_list[
-							_res.nscount++
-						].sin_addr.s_addr = **addr;
-					}
-
-					srvmsg = strcat(srvbuf,srv);
-					strcat(srvbuf, "  ");
-					strcat(srvmsg,
-					       inet_ntoa(_res.nsaddr.sin_addr)
-					       );
-				}
-			}
-			printf("; (%d server%s found)\n",
-			       _res.nscount, (_res.nscount==1)?"":"s");
-			_res.id += _res.retry;
-		}
-
-		{
-			int i;
-
-			for (i = 0;  i < _res.nscount;  i++) {
-				_res.nsaddr_list[i].sin_family = AF_INET;
-				_res.nsaddr_list[i].sin_port = port;
-			}
-			_res.id += _res.retry;
-		}
-
-		if (zone) {
-			int i;
-
-			for (i = 0;  i < _res.nscount;  i++) {
-				int x = printZone(domain,
-						  &_res.nsaddr_list[i]);
-				if (_res.pfcode & RES_PRF_STATS) {
-					struct timeval exectime;
-
-					gettimeofday(&exectime,NULL);
-					printf(";; FROM: %s to SERVER: %s\n",
-					       myhostname,
-					       inet_ntoa(_res.nsaddr_list[i]
-							 .sin_addr));
-					printf(";; WHEN: %s",
-					       ctime(&(exectime.tv_sec)));
-				}
-				if (!x)
-					break;	/* success */
-			}
-			fflush(stdout);
-			continue;
-		}
-
-		if (*domain && !qtypeSet) {
-			queryType = T_A;
-			qtypeSet++;
-		}
-		
-		bytes_out = n = res_mkquery(QUERY, domain,
-					    queryClass, queryType,
-					    NULL, 0, NULL,
-					    packet, sizeof(packet));
-		if (n < 0) {
-			fflush(stderr);
-			printf(";; res_mkquery: buffer too small\n\n");
-			continue;
-		}
-		eecode = 0;
-		if (_res.pfcode & RES_PRF_HEAD1)
-			__fp_resstat(NULL, stdout);
-		(void) gettimeofday(&start_time, NULL);
-		if ((bytes_in = n = res_send(packet, n,
-					     answer, sizeof(answer))) < 0) {
-			fflush(stdout);
-			n = 0 - n;
-			msg[0]=0;
-			strcat(msg,";; res_send to server ");
-			strcat(msg,srvmsg);
-			perror(msg);
-			fflush(stderr);
-
-			if (!dofile) {
-				if (eecode)
-					exit(eecode);
-				else
-					exit(9);
-			}
-		}
-		(void) gettimeofday(&end_time, NULL);
-
-		if (_res.pfcode & RES_PRF_STATS) {
-			query_time = difftv(start_time, end_time);
-			printf(";; Total query time: ");
-			prnttime(query_time);
-			putchar('\n');
-			gettimeofday(&exectime,NULL);
-			printf(";; FROM: %s to SERVER: %s\n",
-			       myhostname, srvmsg);
-			printf(";; WHEN: %s",
-			       ctime(&(exectime.tv_sec)));
-			printf(";; MSG SIZE  sent: %d  rcvd: %d\n",
-			       bytes_out, bytes_in);
-		}
-	  
-		fflush(stdout);
-/*
- *   Argh ... not particularly elegant. Should put in *real* ping code.
- *   Would necessitate root priviledges for icmp port though!
- */
-		if (*pingstr) {
-			sprintf(doping,"%s %s 56 3 | tail -3",pingstr,
-				(srv==NULL)?(defsrv+10):srv);
-			system(doping);
-		}
-		putchar('\n');
-
-/*
- * Fairly crude method and low overhead method of keeping two
- * batches started at different sites somewhat synchronized.
- */
-		gettimeofday(&tv2, NULL);
-		delay = (int)(tv2.tv_sec - tv1.tv_sec);
-		if (delay < wait) {
-			sleep(wait - delay);
-		}
-	}
-	return(eecode);
-}
-
-
-static void
-Usage()
-{
-	fputs("\
-usage:  dig [@server] [domain] [q-type] [q-class] {q-opt} {d-opt} [%comment]\n\
-where:	server,\n\
-	domain	are names in the Domain Name System\n\
-	q-class	is one of (in,any,...) [default: in]\n\
-	q-type	is one of (a,any,mx,ns,soa,hinfo,axfr,txt,...) [default: a]\n\
-", stderr);
-	fputs("\
-	q-opt	is one of:\n\
-		-x dot-notation-address	(shortcut to in-addr.arpa lookups)\n\
-		-f file			(batch mode input file name)\n\
-		-T time			(batch mode time delay, per query)\n\
-		-p port			(nameserver is on this port) [53]\n\
-		-Pping-string		(see man page)\n\
-		-t query-type		(synonym for q-type)\n\
-		-c query-class		(synonym for q-class)\n\
-		-envsav,-envset		(see man page)\n\
-		-[no]stick		(see man page)\n\
-", stderr);
-	fputs("\
-	d-opt	is of the form ``+keyword=value'' where keyword is one of:\n\
-		[no]debug [no]d2 [no]recurse retry=# time=# [no]ko [no]vc\n\
-		[no]defname [no]search domain=NAME [no]ignore [no]primary\n\
-		[no]aaonly [no]sort [no]cmd [no]stats [no]Header [no]header\n\
-		[no]ttlid [no]cl [no]qr [no]reply [no]ques [no]answer\n\
-		[no]author [no]addit pfdef pfmin pfset=# pfand=# pfor=#\n\
-", stderr);
-	fputs("\
-notes:	defname and search don't work; use fully-qualified names.\n\
-", stderr);
-}
-
-
-static int
-SetOption(string)
-    char *string;
-{
-    char 	option[NAME_LEN];
-    char 	type[NAME_LEN];
-    char 	*ptr;
-    int 	i;
-
-    i = sscanf(string, " %s", option);
-    if (i != 1) {
-	fprintf(stderr, ";*** Invalid option: %s\n",  option);
-	return(ERROR);
-    } 
-   
-    if (strncmp(option, "aa", 2) == 0) {	/* aaonly */
-	    _res.options |= RES_AAONLY;
-	} else if (strncmp(option, "noaa", 4) == 0) {
-	    _res.options &= ~RES_AAONLY;
-	} else if (strncmp(option, "deb", 3) == 0) {	/* debug */
-	    _res.options |= RES_DEBUG;
-	} else if (strncmp(option, "nodeb", 5) == 0) {
-	    _res.options &= ~(RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "ko", 2) == 0) {	/* keepopen */
-	    _res.options |= (RES_STAYOPEN | RES_USEVC);
-	} else if (strncmp(option, "noko", 4) == 0) {
-	    _res.options &= ~RES_STAYOPEN;
-	} else if (strncmp(option, "d2", 2) == 0) {	/* d2 (more debug) */
-	    _res.options |= (RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "nod2", 4) == 0) {
-	    _res.options &= ~RES_DEBUG2;
-	} else if (strncmp(option, "def", 3) == 0) {	/* defname */
-	    _res.options |= RES_DEFNAMES;
-	} else if (strncmp(option, "nodef", 5) == 0) {
-	    _res.options &= ~RES_DEFNAMES;
-	} else if (strncmp(option, "sea", 3) == 0) {	/* search list */
-	    _res.options |= RES_DNSRCH;
-	} else if (strncmp(option, "nosea", 5) == 0) {
-	    _res.options &= ~RES_DNSRCH;
-	} else if (strncmp(option, "do", 2) == 0) {	/* domain */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%s", _res.defdname);
-	    }
-	  } else if (strncmp(option, "ti", 2) == 0) {      /* timeout */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-	      sscanf(++ptr, "%d", &_res.retrans);
-	    }
-
-	  } else if (strncmp(option, "ret", 3) == 0) {    /* retry */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-	      sscanf(++ptr, "%d", &_res.retry);
-	    }
-
-	} else if (strncmp(option, "i", 1) == 0) {	/* ignore */
-	    _res.options |= RES_IGNTC;
-	} else if (strncmp(option, "noi", 3) == 0) {
-	    _res.options &= ~RES_IGNTC;
-	} else if (strncmp(option, "pr", 2) == 0) {	/* primary */
-	    _res.options |= RES_PRIMARY;
-	} else if (strncmp(option, "nop", 3) == 0) {
-	    _res.options &= ~RES_PRIMARY;
-	} else if (strncmp(option, "rec", 3) == 0) {	/* recurse */
-	    _res.options |= RES_RECURSE;
-	} else if (strncmp(option, "norec", 5) == 0) {
-	    _res.options &= ~RES_RECURSE;
-	} else if (strncmp(option, "v", 1) == 0) {	/* vc */
-	    _res.options |= RES_USEVC;
-	} else if (strncmp(option, "nov", 3) == 0) {
-	    _res.options &= ~RES_USEVC;
-	} else if (strncmp(option, "pfset", 5) == 0) {
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-	      _res.pfcode = xstrtonum(++ptr);
-	    }
-	} else if (strncmp(option, "pfand", 5) == 0) {
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-	      _res.pfcode = _res.pfcode & xstrtonum(++ptr);
-	    }
-	} else if (strncmp(option, "pfor", 4) == 0) {
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-	      _res.pfcode |= xstrtonum(++ptr);
-	    }
-	} else if (strncmp(option, "pfmin", 5) == 0) {
-	      _res.pfcode = PRF_MIN;
-	} else if (strncmp(option, "pfdef", 5) == 0) {
-	      _res.pfcode = PRF_DEF;
-	} else if (strncmp(option, "an", 2) == 0) {  /* answer section */
-	      _res.pfcode |= RES_PRF_ANS;
-	} else if (strncmp(option, "noan", 4) == 0) {
-	      _res.pfcode &= ~RES_PRF_ANS;
-	} else if (strncmp(option, "qu", 2) == 0) {  /* question section */
-	      _res.pfcode |= RES_PRF_QUES;
-	} else if (strncmp(option, "noqu", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_QUES;
-	} else if (strncmp(option, "au", 2) == 0) {  /* authority section */
-	      _res.pfcode |= RES_PRF_AUTH;
-	} else if (strncmp(option, "noau", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_AUTH;
-	} else if (strncmp(option, "ad", 2) == 0) {  /* addition section */
-	      _res.pfcode |= RES_PRF_ADD;
-	} else if (strncmp(option, "noad", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_ADD;
-	} else if (strncmp(option, "tt", 2) == 0) {  /* TTL & ID */
-	      _res.pfcode |= RES_PRF_TTLID;
-	} else if (strncmp(option, "nott", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_TTLID;
-	} else if (strncmp(option, "he", 2) == 0) {  /* head flags stats */
-	      _res.pfcode |= RES_PRF_HEAD2;
-	} else if (strncmp(option, "nohe", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_HEAD2;
-	} else if (strncmp(option, "H", 1) == 0) {  /* header all */
-	      _res.pfcode |= RES_PRF_HEADX;
-	} else if (strncmp(option, "noH", 3) == 0) {  
-	      _res.pfcode &= ~(RES_PRF_HEADX);
-	} else if (strncmp(option, "qr", 2) == 0) {  /* query */
-	      _res.pfcode |= RES_PRF_QUERY;
-	} else if (strncmp(option, "noqr", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_QUERY;
-	} else if (strncmp(option, "rep", 3) == 0) {  /* reply */
-	      _res.pfcode |= RES_PRF_REPLY;
-	} else if (strncmp(option, "norep", 5) == 0) {  
-	      _res.pfcode &= ~RES_PRF_REPLY;
-	} else if (strncmp(option, "cm", 2) == 0) {  /* command line */
-	      _res.pfcode |= RES_PRF_CMD;
-	} else if (strncmp(option, "nocm", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_CMD;
-	} else if (strncmp(option, "cl", 2) == 0) {  /* class mnemonic */
-	      _res.pfcode |= RES_PRF_CLASS;
-	} else if (strncmp(option, "nocl", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_CLASS;
-	} else if (strncmp(option, "st", 2) == 0) {  /* stats*/
-	      _res.pfcode |= RES_PRF_STATS;
-	} else if (strncmp(option, "nost", 4) == 0) {  
-	      _res.pfcode &= ~RES_PRF_STATS;
-	} else {
-	    fprintf(stderr, "; *** Invalid option: %s\n",  option);
-	    return(ERROR);
-	}
-	res_re_init();
-	return(SUCCESS);
-}
-
-
-
-/*
- * Force a reinitialization when the domain is changed.
- */
-static void
-res_re_init()
-{
-	static char localdomain[] = "LOCALDOMAIN";
-	char *buf;
-	long pfcode = _res.pfcode;
-#if defined(__RES) && (__RES >= 19931104)
-	long ndots = _res.ndots;
-#endif
-
-	/* this is ugly but putenv() is more portable than setenv() */
-	buf = malloc((sizeof localdomain) +strlen(_res.defdname) +10/*fuzz*/);
-	sprintf(buf, "%s=%s", localdomain, _res.defdname);
-	putenv(buf);	/* keeps the argument, so we won't free it */
-	res_init();
-	_res.pfcode = pfcode;
-#if defined(__RES) && (__RES >= 19931104)
-	_res.ndots = ndots;
-#endif
-}
-
-
-/*
- * convert char string (decimal, octal, or hex) to integer
- */
-static int
-xstrtonum(p)
-	char *p;
-{
-	int v = 0;
-	int i;
-	int b = 10;
-	int flag = 0;
-	while (*p != 0) {
-		if (!flag++)
-			if (*p == '0') {
-				b = 8; p++;
-				continue;
-			}
-		if (isupper(*p))
-			*p=tolower(*p);
-		if (*p == 'x') {
-			b = 16; p++;
-			continue;
-		}
-		if (isdigit(*p)) {
-			i = *p - '0';
-		} else if (isxdigit(*p)) {
-			i = *p - 'a' + 10;
-		} else {
-			fprintf(stderr,
-				"; *** Bad char in numeric string..ignored\n");
-			i = -1;
-		}
-		if (i >= b) {
-			fprintf(stderr,
-				"; *** Bad char in numeric string..ignored\n");
-			i = -1;
-		}
-		if (i >= 0)
-			v = v * b + i;
-		p++;
-	}
-	return(v);
-}
-
-/* this code was cloned from nslookup/list.c */
-
-extern char *_res_resultcodes[];	/* res_debug.c */
-
-typedef union {
-    HEADER qb1;
-    u_char qb2[PACKETSZ];
-} querybuf;
-
-static int
-printZone(zone, sin)
-	char *zone;
-	struct sockaddr_in *sin;
-{
-	querybuf		buf;
-	HEADER			*headerPtr;
-	int			msglen;
-	int			amtToRead;
-	int			numRead;
-	int			numAnswers = 0;
-	int			numRecords = 0;
-	int			result;
-	int			soacnt = 0;
-	int			sockFD;
-	int			count, type, class, rlen, done, n;
-	u_short			len;
-	u_char			*cp;
-	char			dname[2][NAME_LEN];
-	char			file[NAME_LEN];
-	static u_char		*answer = NULL;
-	static int		answerLen = 0;
-	enum {
-	    NO_ERRORS,
-	    ERR_READING_LEN,
-	    ERR_READING_MSG,
-	    ERR_PRINTING
-	} error = NO_ERRORS;
-
-	/*
-	 *  Create a query packet for the requested zone name.
-	 */
-	msglen = res_mkquery(QUERY, zone, queryClass, T_AXFR, NULL,
-			     0, 0, buf.qb2, sizeof(buf));
-	if (msglen < 0) {
-	    if (_res.options & RES_DEBUG) {
-		fprintf(stderr, ";; res_mkquery failed\n");
-	    }
-	    return (ERROR);
-	}
-
-	/*
-	 *  Set up a virtual circuit to the server.
-	 */
-	if ((sockFD = socket(sin->sin_family, SOCK_STREAM, 0)) < 0) {
-	    int e = errno;
-	    perror(";; socket");
-	    return(e);
-	}
-	if (connect(sockFD, (struct sockaddr *)sin, sizeof(*sin)) < 0) {
-	    int e = errno;
-	    perror(";; connect");
-	    (void) close(sockFD);
-	    sockFD = -1;
-	    return e;
-	}
-
-	/*
-	 * Send length & message for zone transfer
-	 */
-
-	__putshort(msglen, (u_char *)&len);
-
-        if (write(sockFD, (char *)&len, INT16SZ) != INT16SZ ||
-            write(sockFD, (char *)&buf, msglen) != msglen) {
-		int e = errno;
-		perror(";; write");
-		(void) close(sockFD);
-		sockFD = -1;
-		return(e);
-	}
-
-	dname[0][0] = '\0';
-	for (done = 0; !done; NULL) {
-	    u_int16_t tmp;
-
-	    /*
-	     * Read the length of the response.
-	     */
-
-	    cp = (u_char *) &tmp;
-	    amtToRead = INT16SZ;
-	    while (amtToRead > 0 && (numRead=read(sockFD, cp, amtToRead)) > 0){
-		cp	  += numRead;
-		amtToRead -= numRead;
-	    }
-	    if (numRead <= 0) {
-		error = ERR_READING_LEN;
-		break;
-	    }
-
-	    if ((len = _getshort((u_char*)&tmp)) == 0) {
-		break;	/* nothing left to read */
-	    }
-
-	    /*
-	     * The server sent too much data to fit the existing buffer --
-	     * allocate a new one.
-	     */
-	    if (len > (u_int)answerLen) {
-		if (answerLen != 0) {
-		    free(answer);
-		}
-		answerLen = len;
-		answer = (u_char *)Malloc(answerLen);
-	    }
-
-	    /*
-	     * Read the response.
-	     */
-
-	    amtToRead = len;
-	    cp = answer;
-	    while (amtToRead > 0 && (numRead=read(sockFD, cp, amtToRead)) > 0) {
-		cp += numRead;
-		amtToRead -= numRead;
-	    }
-	    if (numRead <= 0) {
-		error = ERR_READING_MSG;
-		break;
-	    }
-
-	    result = printRR(stdout, answer, cp);
-	    if (result != 0) {
-		error = ERR_PRINTING;
-		break;
-	    }
-	    numRecords += htons(((HEADER *)answer)->ancount);
-	    numAnswers++;
-
-	    /* Header. */
-	    cp = answer + HFIXEDSZ;
-	    /* Question. */
-	    for (count = ntohs(((HEADER *)answer)->qdcount);	
-		 count > 0;
-		 count--)
-		cp += dn_skipname(cp, answer + len) + QFIXEDSZ;
-	    /* Answer. */
-	    for (count = ntohs(((HEADER *)answer)->ancount);
-		 count > 0;
-		 count--) {
-		n = dn_expand(answer, answer + len, cp,
-			      dname[soacnt], sizeof dname[0]);
-		if (n < 0) {
-		    error = ERR_PRINTING;
-		    done++;
-		    break;
-		}
-		cp += n;
-		GETSHORT(type, cp);
-		GETSHORT(class, cp);
-		cp += INT32SZ;	/* ttl */
-		GETSHORT(rlen, cp);
-		cp += rlen;
-		if (type == T_SOA && soacnt++ &&
-		    !strcasecmp(dname[0], dname[1])) {
-		    done++;
-		    break;
-		}
-	    }
-	}
-
-	printf(";; Received %d answer%s (%d record%s).\n",
-	       numAnswers, (numAnswers != 1) ? "s" : "",
-	       numRecords, (numRecords != 1) ? "s" : "");
-
-	(void) close(sockFD);
-	sockFD = -1;
-
-	switch (error) {
-	    case NO_ERRORS:
-		return (0);
-
-	    case ERR_READING_LEN:
-		return(EMSGSIZE);
-
-	    case ERR_PRINTING:
-		return(result);
-
-	    case ERR_READING_MSG:
-		return(EMSGSIZE);
-
-	    default:
-		return(EFAULT);
-	}
-}
-
-static int
-printRR(file, msg, eom)
-    FILE	*file;
-    u_char	*msg, *eom;
-{
-    register u_char	*cp;
-    HEADER		*headerPtr;
-    int			type, class, dlen, nameLen;
-    u_int32_t		ttl;
-    int			n, pref;
-    struct in_addr	inaddr;
-    char		name[NAME_LEN];
-    char		name2[NAME_LEN];
-    Boolean		stripped;
-
-    /*
-     * Read the header fields.
-     */
-    headerPtr = (HEADER *)msg;
-    cp = msg + HFIXEDSZ;
-    if (headerPtr->rcode != NOERROR) {
-	return(headerPtr->rcode);
-    }
-
-    /*
-     *  We are looking for info from answer resource records.
-     *  If there aren't any, return with an error. We assume
-     *  there aren't any question records.
-     */
-
-    if (ntohs(headerPtr->ancount) == 0) {
-	return(NO_INFO);
-    }
-    for (n = ntohs(headerPtr->qdcount); n > 0; n--) {
-	nameLen = dn_skipname(cp, eom);
-	if (nameLen < 0)
-	    return (ERROR);
-	cp += nameLen + QFIXEDSZ;
-    }
-#ifdef PROTOCOLDEBUG
-    printf(";;; (message of %d octets has %d answers)\n",
-	   eom - msg, ntohs(headerPtr->ancount));
-#endif
-    for (n = ntohs(headerPtr->ancount); n > 0; n--)
-	cp = (u_char*) p_rr(cp, msg, stdout);
-    return(SUCCESS);
-}
-
-static struct timeval
-difftv(a, b)
-	struct timeval a, b;
-{
-	static struct timeval diff;
-
-	diff.tv_sec = b.tv_sec - a.tv_sec;
-	if ((diff.tv_usec = b.tv_usec - a.tv_usec) < 0) {
-		diff.tv_sec--;
-		diff.tv_usec += 1000000;
-	}
-	return(diff);
-}
-
-static void
-prnttime(t)
-	struct timeval t;
-{
-	printf("%lu msec", (u_long)(t.tv_sec * 1000 + (t.tv_usec / 1000)));
-}
diff --git a/contrib/bind/tools/dnsquery.c b/contrib/bind/tools/dnsquery.c
deleted file mode 100644
index 73949caf0a3af..0000000000000
--- a/contrib/bind/tools/dnsquery.c
+++ /dev/null
@@ -1,189 +0,0 @@
-#include <stdio.h>
-#include <sys/types.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <errno.h>
-
-#include "../conf/portability.h"
-
-extern int errno;
-extern int h_errno;
-extern char *h_errlist[];
-
-main(argc, argv)
-int argc;
-char *argv[];
-{
-	char name[MAXDNAME];
-	u_char answer[8*1024];
-	register int c, i = 0;
-	unsigned long ul;
-	int nameservers = 0, class, type, len;
-	struct in_addr q_nsaddr[MAXNS];
-	struct hostent *q_nsname;
-	extern int optind, opterr;
-	extern char *optarg;
-	HEADER *hp;
-	int stream = 0, debug = 0;
-
-	/* set defaults */
-	len = MAXDNAME;
-	gethostname(name, len);
-	class = C_IN;
-	type = T_ANY;
-
-	/* if no args, exit */
-	if (argc == 1) {
-		fprintf(stderr, "Usage:  %s [-h] host [-n ns] [-t type] [-c class] [-r retry] [-p period] [-s] [-v] [-d] [-a]\n", argv[0]);
-		exit(-1);
-	}
-
-	/* handle args */
-	while ((c = getopt(argc, argv, "c:dh:n:p:r:st:u:v")) != EOF) {
-		switch (c) {
-
-		case 'r' :	_res.retry = atoi(optarg);
-				break;
-
-		case 'p' :	_res.retrans = atoi(optarg);
-				break;
-
-		case 'h' :	strcpy(name, optarg);
-				break;
-
-		case 'c' : {
-				int success, proto_class;
-
-				proto_class = sym_ston(__p_class_syms,
-						       optarg, &success);
-				if (success)
-					class = proto_class;
-				else {
-				    fprintf(stderr, "Bad class (%s)\n", optarg);
-					exit(-1);
-				}
-			    }
-				break;
-
-		case 't' : {
-				int success, proto_type;
-
-				proto_type = sym_ston(__p_type_syms,
-						      optarg, &success);
-				if (success)
-					type = proto_type;
-				else {
-				    fprintf(stderr, "Bad type (%s)\n", optarg);
-					exit(-1);
-				}
-			    }
-				break;
-
-		case 'd' :	debug++;
-				break;
-
-		case 's' :	
-		case 'v' :	stream++;
-				break;
-
-		case 'n' :	
-				/*
-				 *  If we set some nameservers here without
-				 *  using gethostbyname() first, then they will
-				 *  get overwritten when we do the first query.
-				 *  So, we must init the resolver before any 
-				 *  of this.
-				 */
-				if (!(_res.options & RES_INIT))
-					if (res_init() == -1) {
-						fprintf(stderr,
-							"res_init() failed\n");
-						exit(-1);
-				}
-				if (nameservers >= MAXNS) break;
-				(void) inet_aton(optarg,
-						 &q_nsaddr[nameservers]);
-				if (!inet_aton(optarg, &ul)) {
-					q_nsname = gethostbyname(optarg);
-					if (q_nsname == 0) {
-						fprintf(stderr,
-						       "Bad nameserver (%s)\n",
-							optarg);
-						exit(-1);
-					}
-					bcopy((char *) q_nsname->h_addr,
-					      (char *) &q_nsaddr[nameservers],
-					      INADDRSZ);
-				}
-				else
-					q_nsaddr[nameservers].s_addr = ul;
-				nameservers++;
-				break;
-
-		default : 	fprintf(stderr, 
-				"\tUsage:  %s [-n ns] [-h host] [-t type] [-c class] [-r retry] [-p period] [-s] [-v] [-d] [-a]\n", argv[0]);
-				exit(-1);
-		}
-	}
-	if (optind < argc)
-		strcpy(name, argv[optind]);
-
-	len = sizeof(answer);
-
-	/* 
-	 * set these here so they aren't set for a possible call to
-	 * gethostbyname above
-	*/
-	if (debug || stream) {
-		if (!(_res.options & RES_INIT))
-			if (res_init() == -1) {
-				fprintf(stderr, "res_init() failed\n");
-				exit(-1);
-			}
-		if (debug) 
-			_res.options |= RES_DEBUG;
-		if (stream)
-		 	_res.options |= RES_USEVC;
-	}
-
-	/* if the -n flag was used, add them to the resolver's list */
-	if (nameservers != 0) {
-		_res.nscount = nameservers;
-		for (i = nameservers - 1; i >= 0; i--) {
-			_res.nsaddr_list[i].sin_addr.s_addr = q_nsaddr[i].s_addr;
-			_res.nsaddr_list[i].sin_family = AF_INET;
-			_res.nsaddr_list[i].sin_port = htons(NAMESERVER_PORT);
-		}
-	}
-
-	/*
-	 * if the -h arg is fully-qualified, use res_query() since
-	 * using res_search() will lead to use of res_querydomain()
-	 * which will strip the trailing dot
-	 */
-	if (name[strlen(name) - 1] == '.') {
-		if (res_query(name, class, type, answer, len) < 0) {
-			hp = (HEADER *) answer;
-			if ((hp->rcode == 0) && (hp->ancount > 0))
-				__p_query(answer);
-			else
-				fprintf(stderr, "Query failed (h_errno = %d) : %s\n", 
-						h_errno, h_errlist[h_errno]);
-			exit(-1);
-		}
-	}
-	else if (res_search(name, class, type, answer, len) < 0) {
-		hp = (HEADER *) answer;
-		if ((hp->rcode == 0) && (hp->ancount > 0))
-			__p_query(answer);
-		else
-			fprintf(stderr, "Query failed (h_errno = %d) : %s\n", 
-						h_errno, h_errlist[h_errno]);
-		exit(-1);
-	}
-	__p_query(answer);
-	exit(0);
-}
diff --git a/contrib/bind/tools/host.c b/contrib/bind/tools/host.c
deleted file mode 100644
index 9cba5b82bfbc4..0000000000000
--- a/contrib/bind/tools/host.c
+++ /dev/null
@@ -1,1451 +0,0 @@
-/*
- * ++Copyright++ 1986
- * -
- * Copyright (c) 1986
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-char copyright[] =
-"@(#) Copyright (c) 1986 Regents of the University of California.\n\
- portions Copyright (c) 1993 Digital Equipment Corporation\n\
- All rights reserved.\n";
-#endif /* not lint */
-
-/*
- * Actually, this program is from Rutgers University, however it is 
- * based on nslookup and other pieces of named tools, so it needs
- * that copyright notice.
- */
-
-#ifndef lint
-static char rcsid[] = "$Id: host.c,v 8.12 1996/10/08 04:51:07 vixie Exp $";
-#endif /* not lint */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <sys/socket.h>
-
-#include <netinet/in.h>
-#include <arpa/inet.h>
-#include <arpa/nameser.h>
-
-#include <stdio.h>
-#include <netdb.h>
-#include <resolv.h>
-#include <ctype.h>
-
-#include "../conf/portability.h"
-
-extern int h_errno;
-
-#define NUMMX 50
-
-#define  SUCCESS		0
-#define  TIME_OUT		-1
-#define  NO_INFO 		-2
-#define  ERROR 			-3
-#define  NONAUTH 		-4
-
-#define NAME_LEN 256
-
-#ifndef T_TXT
-#define T_TXT 16
-#endif
-#ifndef NO_DATA
-#define NO_DATA NO_ADDRESS
-#endif
-#ifndef C_HS
-#define C_HS 4
-#endif
-
-int sockFD;
-FILE *filePtr;
-char *DecodeError();
-
-static struct __res_state orig;
-extern struct __res_state _res;
-static char *cname = NULL;
-int getclass = C_IN;
-int gettype;
-int verbose = 0;
-int list = 0;
-int server_specified = 0;
-
-u_char *pr_cdname();
-char *pr_class(), *pr_rr();
-const char *pr_type();
-
-main(c, v)
-	int c;
-	char **v;
-{
-	unsigned addr;
-	register struct hostent *hp;
-	register char *s;
-	register inverse = 0;
-	register waitmode = 0;
-	char *oldcname;
-	int ncnames;
-
-	res_init();
-	_res.retrans = 5;
-
-	if (c < 2) {
-		fprintf(stderr, "Usage: host [-w] [-v] [-r] [-d] [-t querytype] [-c class] [-a] host [server]\n  -w to wait forever until reply\n  -v for verbose output\n  -r to disable recursive processing\n  -d to turn on debugging output\n  -t querytype to look for a specific type of information\n  -c class to look for non-Internet data\n  -a is equivalent to '-v -t *'\n");
-		exit(1);
-	}
-	while (c > 2 && v[1][0] == '-') {
-		if (strcmp (v[1], "-w") == 0) {
-			_res.retry = 1;
-			_res.retrans = 15;
-			waitmode = 1;
-			v++;
-			c--;
-		}
-		else if (strcmp (v[1], "-r") == 0) {
-			_res.options &= ~RES_RECURSE;
-			v++;
-			c--;
-		}
-		else if (strcmp (v[1], "-d") == 0) {
-			_res.options |= RES_DEBUG;
-			v++;
-			c--;
-		}
-		else if (strcmp (v[1], "-v") == 0) {
-			verbose = 1;
-			v++;
-			c--;
-		}
-		else if (strcmp (v[1], "-l") == 0) {
-			list = 1;
-			v++;
-			c--;
-		}
-		else if (strncmp (v[1], "-t", 2) == 0) {
-			v++;
-			c--;
-			gettype = parsetype(v[1]);
-			v++;
-			c--;
-		}
-		else if (strncmp (v[1], "-c", 2) == 0) {
-			v++;
-			c--;
-			getclass = parseclass(v[1]);
-			v++;
-			c--;
-		}
-		else if (strcmp (v[1], "-a") == 0) {
-			verbose = 1;
-			gettype = T_ANY;
-			v++;
-			c--;
-		}		
-        }
-	if (c > 2) {
-		s = v[2];
-		server_specified++;
-		
-		if (!inet_aton(s, (struct in_addr *)&addr)) {
-		  hp = gethostbyname(s);
-		  if (hp == NULL) {
-		    fprintf(stderr,"Error in looking up server name:\n");
-		    hperror(h_errno);
-		    exit(1);
-		  }
-		  _res.nsaddr.sin_addr = *(struct in_addr *)hp->h_addr;
-		  printf("Using domain server:\n");
-		  printanswer(hp);
-		}
-		else {
-		  _res.nsaddr.sin_family = AF_INET;
-		  _res.nsaddr.sin_addr.s_addr = addr;
-		  _res.nsaddr.sin_port = htons(NAMESERVER_PORT);
-		  printf("Using domain server %s:\n",
-			 inet_ntoa(_res.nsaddr.sin_addr));
-		}
-		_res.nscount = 1;
-		_res.retry = 2;
-	      }
-	if (strcmp (v[1], ".") == 0 ||
-	    !inet_aton(v[1], (struct in_addr *)&addr))
-		addr = -1;
-	hp = NULL;
-	h_errno = TRY_AGAIN;
-/*
- * we handle default domains ourselves, thank you
- */
-	_res.options &= ~RES_DEFNAMES;
-
-        if (list)
-	  exit(ListHosts(v[1], gettype ? gettype : T_A));
-	oldcname = NULL;
-	ncnames = 5;
-	while (hp == NULL && h_errno == TRY_AGAIN) {
-	  if (addr == -1) {
-	      cname = NULL;
-	      if (oldcname == NULL)
-		hp = (struct hostent *)gethostinfo(v[1]);
-	      else
-		hp = (struct hostent *)gethostinfo(oldcname);
-	      if (cname) {
-		if (ncnames-- == 0) {
-		  printf("Too many cnames.  Possible loop.\n");
-		  exit(1);
-		}
-		strcat(cname, ".");
-		oldcname = cname;
-		hp = NULL;
-		h_errno = TRY_AGAIN;
-		continue;
-	      }
-	  }
-	  else {
-	    hp = gethostbyaddr((char*)&addr, 4, AF_INET);
-	    if (hp)
-	      printanswer(hp);
-	  }
-	  if (!waitmode)
-	    break;
-	}
-
-	if (hp == NULL) {
-	  hperror(h_errno);
-	  exit(1);
-	}
-
-	exit(0);
-
-}
-
-int
-parsetype(s)
-	char *s;
-{
-	int type, success;
-
-	type = sym_ston(__p_type_syms, s, &success);
-	if (success)
-		return type;
-	if (strcmp(s,"*") == 0)
-		return(T_ANY);
-	if (atoi(s))
-		return(atoi(s));
-	fprintf(stderr, "Invalid query type: %s\n", s);
-	exit(2);
-}
-
-int
-parseclass(s)
-	char *s;
-{
-	int class, success;
-
-	class = sym_ston(__p_class_syms, s, &success);
-	if (success)
-		return class;
-	if (atoi(s))
-		return(atoi(s));
-	fprintf(stderr, "Invalid query class: %s\n", s);
-	exit(2);
-}
-
-printanswer(hp)
-	register struct hostent *hp;
-{
-	register char **cp;
-	register long **hptr;
-
-	printf("Name: %s\n", hp->h_name);
-	printf("Address:");
-	for (hptr = (long **)hp->h_addr_list; *hptr; hptr++)
-	  printf(" %s", inet_ntoa(*(struct in_addr *)*hptr));
-	printf("\nAliases:");
-	for (cp = hp->h_aliases; cp && *cp && **cp; cp++)
-		printf(" %s", *cp);
-	printf("\n\n");
-}
-
-hperror(errnum) 
-int errnum;
-{
-switch(errnum) {
-	case HOST_NOT_FOUND:
-		fprintf(stderr,"Host not found.\n");
-		break;
-	case TRY_AGAIN:
-		fprintf(stderr,"Host not found, try again.\n");
-		break;
-	case NO_RECOVERY:
-		fprintf(stderr,"No recovery, Host not found.\n");
-		break;
-	case NO_ADDRESS:
-		fprintf(stderr,"There is an entry for this host, but it doesn't have ");
-		switch (gettype) {
-			case T_A:
-				fprintf(stderr,"an Internet address.\n");
-				break;
-			case T_NS:
-				fprintf(stderr,"a Name Server.\n");
-				break;
-			case T_MD:
-				fprintf(stderr,"a Mail Destination.\n");
-				break;
-			case T_MF:
-				fprintf(stderr,"a Mail Forwarder.\n");
-				break;
-			case T_CNAME:
-				fprintf(stderr,"a Canonical Name.\n");
-				break;
-			case T_SOA:
-				fprintf(stderr,"a Start of Authority record.\n");
-				break;
-			case T_MB:
-				fprintf(stderr,"a Mailbox Domain Name.\n");
-				break;
-			case T_MG:
-				fprintf(stderr,"a Mail Group Member.\n");
-				break;
-			case T_MR:
-				fprintf(stderr,"a Mail Rename Name.\n");
-				break;
-			case T_NULL:
-				fprintf(stderr,"a Null Resource record.\n");
-				break;
-			case T_WKS:
-				fprintf(stderr,"any Well Known Service information.\n");
-				break;
-			case T_PTR:
-				fprintf(stderr,"a Pointer record.\n");
-				break;
-			case T_HINFO:
-				fprintf(stderr,"any Host Information.\n");
-				break;
-			case T_MINFO:
-				fprintf(stderr,"any Mailbox Information.\n");
-				break;
-			case T_MX:
-				fprintf(stderr,"a Mail Exchanger record.\n");
-				break;
-			case T_TXT:
-				fprintf(stderr,"a Text record.\n");
-				break;
-			case T_RP:
-				fprintf(stderr,"a Responsible Person.\n");
-				break;
-			case T_UINFO:
-				fprintf(stderr,"any User Information.\n");
-				break;
-			case T_UID:
-				fprintf(stderr,"a User ID.\n");
-				break;
-			case T_GID:
-				fprintf(stderr,"a Group ID.\n");
-				break;
-			case T_SRV:
-				fprintf(stderr,"a Server Selector.\n");
-				break;
-			case T_NAPTR:
-				fprintf(stderr,"a URN Naming Authority.\n");
-				break;
-			case T_UNSPEC:
-				fprintf(stderr,"any Unspecified Format data.\n");
-				break;
-			default:
-				fprintf(stderr,"the information you requested.\n");
-				break;
-			}
-		break;
-	}
-}
-
-
-typedef union {
-	HEADER qb1;
-	u_char qb2[PACKETSZ];
-} querybuf;
-
-static u_char hostbuf[BUFSIZ+1];
-
-gethostinfo(name)
-	char *name;
-{
-	char *cp, **domain;
-	const char *tp;
-	u_int n;
-	int hp;
-	int nDomain;
-	int asis = 0;
-
-	if (strcmp(name, ".") == 0)
-		return(getdomaininfo(name, NULL));
-	for (cp = name, n = 0; *cp; cp++)
-		if (*cp == '.')
-			n++;
-	if (n && cp[-1] == '.') {
-		if (cp[-1] == '.')
-			cp[-1] = 0;
-		hp = getdomaininfo(name, (char *)NULL);
-		if (cp[-1] == 0)
-			cp[-1] = '.';
-		return (hp);
-	}
-	if (n == 0 && (tp = hostalias(name))) {
-	        if (verbose)
-		    printf("Aliased to \"%s\"\n", tp);
-		_res.options |= RES_DEFNAMES;	  
-		return (getdomaininfo(tp, (char *)NULL));
-	}
-	if (n >= _res.ndots) {
-		asis = 1;
-		if (verbose)
-		    printf("Trying null domain\n");
-		if(hp = getdomaininfo(name, (char*)NULL))
-			return(hp);
-	}
-#ifdef MAXDS
-	for (nDomain = 0;
-	     _res.defdname_list[nDomain][0] != 0;
-	     nDomain++) {
-	    for (domain = _res.dnsrch_list[nDomain]; *domain; domain++) {
-	        if (verbose)
-		    printf("Trying domain \"%s\"\n", *domain);
-		hp = getdomaininfo(name, *domain);
-		if (hp)
-			return (hp);
-	    }
-	}
-#else
-	for (domain = _res.dnsrch; *domain; domain++) {
-	  if (verbose)
-	    printf("Trying domain \"%s\"\n", *domain);
-	  hp = getdomaininfo(name, *domain);
-	  if (hp)
-	    return (hp);
-	}
-#endif
-	if (h_errno != HOST_NOT_FOUND ||
-	   (_res.options & RES_DNSRCH) == 0)
-		return (0);
-	if (!asis)
-		return (0);
-	if (verbose)
-	    printf("Trying null domain\n");
-	return (getdomaininfo(name, (char *)NULL));
-}
-
-getdomaininfo(name, domain)
-	char *name, *domain;
-{
-  int val1, val2;
-
-  if (gettype)
-    return getinfo(name, domain, gettype);
-  else {
-    val1 = getinfo(name, domain, T_A);
-    if (cname || verbose)
-      return val1;
-    val2 = getinfo(name, domain, T_MX);
-    return val1 || val2;
-  }
-}
-
-getinfo(name, domain, type)
-	char *name, *domain;
-	int type;
-{
-
-	HEADER *hp;
-	char *eom, *bp, *cp;
-	querybuf buf, answer;
-	int n, n1, i, j, nmx, ancount, nscount, arcount, qdcount, buflen;
-	u_short pref, class;
-	char host[MAXDNAME];
-
-	if (domain == NULL)
-		(void)sprintf(host, "%.*s", MAXDNAME, name);
-	else
-		(void)sprintf(host, "%.*s.%.*s", MAXDNAME, name, MAXDNAME, domain);
-
-	n = res_mkquery(QUERY, host, getclass, type, NULL, 0, NULL,
-			buf.qb2, sizeof(buf));
-	if (n < 0) {
-		if (_res.options & RES_DEBUG)
-			printf("res_mkquery failed\n");
-		h_errno = NO_RECOVERY;
-		return(0);
-	}
-	n = res_send(buf.qb2, n, answer.qb2, sizeof answer);
-	if (n < 0) {
-		if (_res.options & RES_DEBUG)
-			printf("res_send failed\n");
-		h_errno = TRY_AGAIN;
-		return (0);
-	}
-	eom = (char *)&answer + n;
-	return(printinfo(&answer, eom, T_ANY, 0));
-}
-
-printinfo(answer, eom, filter, isls)
-	querybuf *answer;
-	u_char *eom;
-        int filter;
-        int isls;
-{
-	HEADER *hp;
-	u_char *bp, *cp;
-	int n, n1, i, j, nmx, ancount, nscount, arcount, qdcount, buflen;
-	u_short pref, class;
-
-	/*
-	 * find first satisfactory answer
-	 */
-	hp = (HEADER *) answer;
-	ancount = ntohs(hp->ancount);
-	qdcount = ntohs(hp->qdcount);
-	nscount = ntohs(hp->nscount);
-	arcount = ntohs(hp->arcount);
-	if (_res.options & RES_DEBUG || (verbose && isls == 0))
-		printf("rcode = %d (%s), ancount=%d\n", 
-		       hp->rcode, DecodeError(hp->rcode), ancount);
-	if (hp->rcode != NOERROR || (ancount+nscount+arcount) == 0) {
-		switch (hp->rcode) {
-			case NXDOMAIN:
-				h_errno = HOST_NOT_FOUND;
-				return(0);
-			case SERVFAIL:
-				h_errno = TRY_AGAIN;
-				return(0);
-#ifdef OLDJEEVES
-			/*
-			 * Jeeves (TOPS-20 server) still does not
-			 * support MX records.  For the time being,
-			 * we must accept FORMERRs as the same as
-			 * NOERROR.
-			 */
-			case FORMERR:
-#endif /*OLDJEEVES*/
-			case NOERROR:
-/* TpB - set a return error for this case. NO_DATA */
-				h_errno = NO_DATA;
-				return(0); /* was 1,but now indicates exception */
-#ifndef OLDJEEVES
-			case FORMERR:
-#endif /*OLDJEEVES*/
-			case NOTIMP:
-			case REFUSED:
-				h_errno = NO_RECOVERY;
-				return(0);
-		}
-		return (0);
-	}
-	bp = hostbuf;
-	nmx = 0;
-	buflen = sizeof(hostbuf);
-	cp = (u_char *)answer + HFIXEDSZ;
-	if (qdcount) {
-		cp += dn_skipname(cp, eom) + QFIXEDSZ;
-		while (--qdcount > 0)
-			cp += dn_skipname(cp, eom) + QFIXEDSZ;
-	}
-	if (ancount) {
-	  if (!hp->aa)
-	    if (verbose && isls == 0)
-	      printf("The following answer is not authoritative:\n");
-	  while (--ancount >= 0 && cp && cp < eom) {
-	    cp = (u_char *)pr_rr(cp, answer, stdout, filter);
-/*
- * When we ask for address and there is a CNAME, it seems to return
- * both the CNAME and the address.  Since we trace down the CNAME
- * chain ourselves, we don't really want to print the address at
- * this point.
- */
-	    if (cname && ! verbose)
-	      return (1);
-	  }
-	}
-	if (! verbose)
-	  return (1);
-	if (nscount) {
-	  printf("For authoritative answers, see:\n");
-	  while (--nscount >= 0 && cp && cp < eom) {
-	    cp = (u_char *)pr_rr(cp, answer, stdout, filter);
-	  }
-	}
-	if (arcount) {
-	  printf("Additional information:\n");
-	  while (--arcount >= 0 && cp && cp < eom) {
-	    cp = (u_char *)pr_rr(cp, answer, stdout, filter);
-	  }
-	}
-	return(1);
- }
-
-static char cnamebuf[MAXDNAME];
-
-/*
- * Print resource record fields in human readable form.
- */
-char *
-pr_rr(cp, msg, file, filter)
-	u_char *cp, *msg;
-	FILE *file;
-        int filter;
-{
-	int type, class, dlen, n, c, proto, ttl;
-	struct in_addr inaddr;
-	u_char *cp1;
-	struct protoent *protop;
-	struct servent *servp;
-	char punc;
-	int doprint;
-	char name[MAXDNAME];
-
-	if ((cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name))) == NULL)
-		return (NULL);			/* compression error */
-
-	type = _getshort(cp);
-	cp += INT16SZ;
-
-	class = _getshort(cp);
-	cp += INT16SZ;
-
-	ttl = _getlong(cp);
-	cp += INT32SZ;
-
-	if (filter == type || filter == T_ANY ||
-	    (filter == T_A && (type == T_PTR || type == T_NS)))
-	  doprint = 1;
-	else
-	  doprint = 0;
-
-	if (doprint)
-	  if (verbose)
-	    fprintf(file,"%s\t%d%s\t%s",
-		    name, ttl, pr_class(class), pr_type(type));
-	  else
-	    fprintf(file,"%s%s %s",name, pr_class(class), pr_type(type));
-	if (verbose)
-	  punc = '\t';
-	else
-	  punc = ' ';
-
-	dlen = _getshort(cp);
-	cp += INT16SZ;
-	cp1 = cp;
-	/*
-	 * Print type specific data, if appropriate
-	 */
-	switch (type) {
-	case T_A:
-		switch (class) {
-		case C_IN:
-			bcopy(cp, (char *)&inaddr, INADDRSZ);
-			if (dlen == 4) {
-			        if (doprint)
-				  fprintf(file,"%c%s", punc,
-					inet_ntoa(inaddr));
-				cp += dlen;
-			} else if (dlen == 7) {
-			        if (doprint) {
-				  fprintf(file,"%c%s", punc,
-					  inet_ntoa(inaddr));
-				  fprintf(file,", protocol = %d", cp[4]);
-				  fprintf(file,", port = %d",
-					  (cp[5] << 8) + cp[6]);
-				}
-				cp += dlen;
-			}
-			break;
-		}
-		break;
-	case T_CNAME:
-		if (dn_expand(msg, msg + 512, cp, cnamebuf, 
-			      sizeof(cnamebuf)) >= 0)
-			cname = cnamebuf;				
-	case T_MB:
-#ifdef OLDRR
-	case T_MD:
-	case T_MF:
-#endif /* OLDRR */
-	case T_MG:
-	case T_MR:
-	case T_NS:
-	case T_PTR:
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-		  fprintf(file,"%c%s",punc, name);
-		break;
-
-	case T_HINFO:
-	case T_ISDN:
-		{
-			u_char *cp2 = cp + dlen;
-			if (n = *cp++) {
-				if (doprint)
-				  fprintf(file,"%c%.*s", punc, n, cp);
-				cp += n;
-			}
-			if ((cp < cp2) && (n = *cp++)) {
-				if (doprint)
-				  fprintf(file,"%c%.*s", punc, n, cp);
-				cp += n;
-			} else if (type == T_HINFO)
-				if (doprint)
-				  fprintf(file,"\n; *** Warning *** OS-type missing");
-		}
-		break;
-
-	case T_SOA:
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-		  fprintf(file,"\t%s", name);
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-		  fprintf(file," %s", name);
-		if (doprint)
-		  fprintf(file,"(\n\t\t\t%ld\t;serial (version)", _getlong(cp));
-		cp += INT32SZ;
-		if (doprint)
-		  fprintf(file,"\n\t\t\t%ld\t;refresh period", _getlong(cp));
-		cp += INT32SZ;
-		if (doprint)
-		  fprintf(file,"\n\t\t\t%ld\t;retry refresh this often", _getlong(cp));
-		cp += INT32SZ;
-		if (doprint)
-		  fprintf(file,"\n\t\t\t%ld\t;expiration period", _getlong(cp));
-		cp += INT32SZ;
-		if (doprint)
-		  fprintf(file,"\n\t\t\t%ld\t;minimum TTL\n\t\t\t)", _getlong(cp));
-		cp += INT32SZ;
-		break;
-
-	case T_MX:
-	case T_AFSDB:
-	case T_RT:
-		if (doprint)
-		  if (type == T_MX && !verbose)
-		    fprintf(file," (pri=%d) by ", _getshort(cp));
-		  else
-		    if (verbose)
-		      fprintf(file,"\t%d ", _getshort(cp));
-		    else
-		      fprintf(file," ");
-		cp += sizeof(u_short);
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-		  fprintf(file, "%s", name);
-		break;
-
-	case T_SRV:
-		/* priority */
-		if (doprint)
-			fprintf(file," %d", _getshort(cp));
-		cp += sizeof(u_short);
-		/* weight */
-		if (doprint)
-			fprintf(file," %d", _getshort(cp));
-		cp += sizeof(u_short);
-		/* port */
-		if (doprint)
-			fprintf(file," %d", _getshort(cp));
-		cp += sizeof(u_short);
-		/* target */
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file,"%s",name);
-		break;
-
-	case T_NAPTR:
-		/* order */
-		if (doprint)
-			fprintf(file," %d", _getshort(cp));
-		cp += sizeof(u_short);
-		/* preference */
-		if (doprint)
-			fprintf(file," %d", _getshort(cp));
-		cp += sizeof(u_short);
-		/* Flags */
-		n = *cp++;
-		if (doprint)
-		  if(n)
-		     fprintf(file,"%c%.*s", punc, n, cp);
-		  else 
-		     fprintf(file,"%c\"\"",punc);
-		cp += n;
-		/* Service */
-		n = *cp++;
-		if (doprint)
-		  if(n)
-		     fprintf(file,"%c%.*s", punc, n, cp);
-		  else 
-		     fprintf(file,"%c\"\"",punc);
-		cp += n;
-		/* Regexp  */
-		n = *cp++;
-		if (doprint)
-		  if(n)
-		     fprintf(file,"%c%.*s", punc, n, cp);
-		  else 
-		     fprintf(file,"%c\"\"",punc);
-		cp += n;
-		/* replacement  */
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file,"%s",name);
-		break;
-
-	case T_MINFO:
-	case T_RP:
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint){
-                  if (type == T_RP) {
-		    char * p;
-		    if (p = strchr(name, '.')) *p = '@';
-                  }
-
-		  fprintf(file, "%c%s", punc, name);
-		}
-		cp = (u_char *)pr_cdname(cp, msg, name, sizeof(name));
-		if (doprint)
-			fprintf(file, " %s", name);
-		break;
-
-	case T_X25:
-		if (n = *cp++) {
-		  if (doprint)
-		    fprintf(file,"%c%.*s", punc, n, cp);
-		  cp += n;
-		}
-		break;
-
-	case T_TXT:
-		{
-		  int n,j;
-		  u_char * end = cp + dlen;
-		 
-		  while (cp < end) {
-		    if (doprint)
-		      (void) fputs(" \"", file);
-		    if (n = *cp++)
-		      for (j = n; j > 0 && cp < end ; j --) {
-			if (doprint) {
-			  if ((*cp == '\n') || (*cp == '"') || (*cp == '\\'))
-			    (void) putc('\\', file);
-			  (void) putc(*cp, file);
-			}
-			cp++;
-		      }
-		    if (doprint)
-		      (void) putc('"', file);
-		  }
-		}
-		break;
-
-	case T_UINFO:
-		if (doprint)
-		  fprintf(file,"%c%s", punc, cp);
-		cp += dlen;
-		break;
-
-	case T_UID:
-	case T_GID:
-		if (dlen == 4) {
-			if (doprint)
-			  fprintf(file,"%c%ld", punc, _getlong(cp));
-			cp += INT32SZ;
-		}
-		break;
-
-	case T_WKS:
-		if (dlen < INT32SZ + 1)
-			break;
-		bcopy(cp, (char *)&inaddr, INADDRSZ);
-		cp += INT32SZ;
-		proto = *cp++;
-		protop = getprotobynumber(proto);
-		if (doprint)
-		  if (protop)
-		    fprintf(file,"%c%s %s", punc,
-			    inet_ntoa(inaddr), protop->p_name);
-		  else
-		    fprintf(file,"%c%s %d", punc,
-			    inet_ntoa(inaddr), proto);
-
-		n = 0;
-		while (cp < cp1 + dlen) {
-			c = *cp++;
-			do {
- 				if (c & 0200) {
-				  servp = NULL;
-				  if (protop)
-				    servp = getservbyport (htons(n),
-							   protop->p_name);
-				  if (doprint)
-				    if (servp)
-				      fprintf(file, " %s", servp->s_name);
-				    else
-				      fprintf(file, " %d", n);
-				}
- 				c <<= 1;
-			} while (++n & 07);
-		}
-		break;
-
-	default:
-		if (doprint)
-		  fprintf(file,"%c???", punc);
-		cp += dlen;
-	}
-	if (cp != cp1 + dlen)
-		fprintf(file,"packet size error (%#x != %#x)\n", cp, cp1+dlen);
-	if (doprint)
-	  fprintf(file,"\n");
-	return (char *)cp;
-}
-
-/*
- * Return a string for the type.  A few get special treatment when
- * not in verbose mode, to make the program more chatty and easier to
- * understand.
- */
-const char *
-pr_type(type)
-	int type;
-{
-
-	if (!verbose) switch (type) {
-	case T_A:
-		return("has address");
-	case T_CNAME:		/* connonical name */
-		return("is a nickname for");
-	case T_MX:		/* mail routing info */
-		return("mail is handled");
-	case T_TXT:		/* TXT - descriptive info */
-		return("descriptive text");
-	case T_AFSDB:		/* AFS/DCE info */
-		return("DCE or AFS service from");
-	}
-
-	if (verbose)
-		return (sym_ntos(__p_type_syms, type, NULL));
-	else
-		return (sym_ntop(__p_type_syms, type, NULL));
-}
-
-/*
- * Return a mnemonic for class
- */
-char *
-pr_class(class)
-	int class;
-{
-	static char spacestr[20];
-
-	if (!verbose) switch (class) {
-	case C_IN:		/* internet class */
-		return "";
-	case C_HS:		/* internet class FIXME? */
-		return "";
-	}
-
-	spacestr[0] = ' ';
-	strcpy (&spacestr[1], p_class (class));
-	return spacestr;
-}
-
-u_char *
-pr_cdname(cp, msg, name, namelen)
-	u_char *cp, *msg;
-	char *name;
-        int namelen;
-{
-	int n;
-
-	if ((n = dn_expand(msg, msg + 512, cp, name, namelen - 2)) < 0)
-		return (NULL);
-	if (name[0] == '\0') {
-		name[0] = '.';
-		name[1] = '\0';
-	}
-	return (cp + n);
-}
-
-char *resultcodes[] = {
-	"NOERROR",
-	"FORMERR",
-	"SERVFAIL",
-	"NXDOMAIN",
-	"NOTIMP",
-	"REFUSED",
-	"6",
-	"7",
-	"8",
-	"9",
-	"10",
-	"11",
-	"12",
-	"13",
-	"14",
-	"NOCHANGE",
-};
-
-
-
-/*
- ******************************************************************************
- *
- *  ListHosts --
- *
- *	Requests the name server to do a zone transfer so we
- *	find out what hosts it knows about.
- *
- *  Results:
- *	SUCCESS		the listing was successful.
- *	ERROR		the server could not be contacted because 
- *			a socket could not be obtained or an error
- *			occured while receiving, or the output file
- *			could not be opened.
- *
- ******************************************************************************
- */
-
-int
-ListHosts(namePtr, queryType)
-    char *namePtr;
-    int  queryType;  /* e.g. T_A */
-{
-	querybuf 		buf, answer;
-	struct sockaddr_in 	sin;
-	HEADER 			*headerPtr;
-
-	int 			msglen;
-	int 			amtToRead;
-	int 			numRead;
-	int 			i;
-	int 			numAnswers = 0;
-	int 			result;
-	int 			soacnt = 0;
-	u_short 		len;
-	int			dlen;
-	int			type;
-	int			nscount;
-	u_char 			*cp, *nmp;
-	char 			name[NAME_LEN];
-	char 			dname[2][NAME_LEN];
-	char 			domain[NAME_LEN];
-/* names and addresses of name servers to try */
-#define NUMNS 8
-	char			nsname[NUMNS][NAME_LEN];
-	int			nshaveaddr[NUMNS];
-#define IPADDRSIZE 4
-#define NUMNSADDR 16
-	char	 		nsipaddr[NUMNSADDR][IPADDRSIZE];
-	int			numns;
-	int			numnsaddr;
-	int			thisns;
-	struct hostent		*hp;
-	enum {
-	    NO_ERRORS, 
-	    ERR_READING_LEN, 
-	    ERR_READING_MSG,
-	    ERR_PRINTING
-	} error = NO_ERRORS;
-
-/*
- * normalize to not have trailing dot.  We do string compares below
- * of info from name server, and it won't have trailing dots.
- */
-	i = strlen(namePtr);
-	if (namePtr[i-1] == '.')
-	  namePtr[i-1] = 0;
-
-	if (server_specified) {
-	  bcopy(&_res.nsaddr.sin_addr, nsipaddr[0], IPADDRSIZE);
-	  numnsaddr = 1;
-	}
-	else {
-
-/*
- * First we have to find out where to look.  This needs a NS query,
- * possibly followed by looking up addresses for some of the names.
- */
-
-	msglen = res_mkquery(QUERY, namePtr, C_IN, T_NS, NULL,
-			     0, NULL, buf.qb2, sizeof buf);
-
-	if (msglen < 0) {
-		printf("res_mkquery failed\n");
-		return (ERROR);
-	}
-
-	msglen = res_send(buf.qb2, msglen, answer.qb2, sizeof answer);
-	
-	if (msglen < 0) {
-		printf("Unable to get to nameserver -- try again later\n");
-		return (ERROR);
-	}
-	if (_res.options & RES_DEBUG || verbose)
-		printf("rcode = %d (%s), ancount=%d\n", 
-		       answer.qb1.rcode, DecodeError(answer.qb1.rcode),
-		       ntohs(answer.qb1.ancount));
-
-/*
- * Analyze response to our NS lookup
- */
-
-	nscount = ntohs(answer.qb1.ancount) + ntohs(answer.qb1.nscount) +
-		  ntohs(answer.qb1.arcount);
-
-	if (answer.qb1.rcode != NOERROR || nscount == 0) {
-		switch (answer.qb1.rcode) {
-			case NXDOMAIN:
-				/* Check if it's an authoritive answer */
-				if (answer.qb1.aa) {
-					printf("No such domain\n");
-				} else {
-					printf("Unable to get information about domain -- try again later.\n");
-				}
-				break;
-			case SERVFAIL:
-				printf("Unable to get information about that domain -- try again later.\n");
-				break;
-			case NOERROR:
-				printf("That domain exists, but seems to be a leaf node.\n");
-				break;
-			case FORMERR:
-			case NOTIMP:
-			case REFUSED:
-				printf("Unrecoverable error looking up domain name.\n");
-				break;
-		}
-		return (0);
-	}
-
-	cp = (u_char *)answer.qb2 + HFIXEDSZ;
-	if (ntohs(answer.qb1.qdcount) > 0)
-	  cp += dn_skipname(cp, answer.qb2 + msglen) + QFIXEDSZ;
-
-	numns = 0;
-	numnsaddr = 0;
-
-/*
- * Look at response from NS lookup for NS and A records.
- */
-
-	for (;nscount; nscount--) {
-	  cp += dn_expand(answer.qb2, answer.qb2 + msglen, cp,
-			  domain, sizeof(domain));
-	  type = _getshort(cp);
-	  cp += INT16SZ + INT16SZ + INT32SZ;
-	  dlen = _getshort(cp);
-	  cp += INT16SZ;
-	  if (type == T_NS) {
-	    if (dn_expand(answer.qb2, answer.qb2 + msglen, cp, 
-			  name, sizeof(name)) >= 0) {
-	      if (numns < NUMNS && strcasecmp((char *)domain, namePtr) == 0) {
-		for (i = 0; i < numns; i++)
-		  if (strcasecmp(nsname[i], (char *)name) == 0)
-		    break;  /* duplicate */
-		if (i >= numns) {
-		  strncpy(nsname[numns], (char *)name, sizeof(name));
-		  nshaveaddr[numns] = 0;
-		  numns++;
-		}
-	      }
-	    }
-	  }
-	  else if (type == T_A) {
-	    if (numnsaddr < NUMNSADDR)
-	      for (i = 0; i < numns; i++) {
-		if (strcasecmp(nsname[i], (char *)domain) == 0) {
-		  nshaveaddr[i]++;
-		  bcopy(cp, nsipaddr[numnsaddr],IPADDRSIZE);
-		  numnsaddr++;
-		  break;
-		}
-	      }
-	  }
-	  cp += dlen;
-	}
-
-/*
- * Usually we'll get addresses for all the servers in the additional
- * info section.  But in case we don't, look up their addresses.
- */
-
-	for (i = 0; i < numns; i++) {
-	  if (! nshaveaddr[i]) {
-	    register long **hptr;
-	    int numaddrs = 0;
-
-	    hp = gethostbyname(nsname[i]);
-	    if (hp) {
-	      for (hptr = (long **)hp->h_addr_list; *hptr; hptr++)
-		if (numnsaddr < NUMNSADDR) {
-		  bcopy((char *)*hptr, nsipaddr[numnsaddr],IPADDRSIZE);
-		  numnsaddr++;
-		  numaddrs++;
-		}
-	    }
-	    if (_res.options & RES_DEBUG || verbose)
-	      printf("Found %d addresses for %s by extra query\n",
-		     numaddrs, nsname[i]);
-	  }
-	  else
-	    if (_res.options & RES_DEBUG || verbose)
-	      printf("Found %d addresses for %s\n",
-		     nshaveaddr[i], nsname[i]);
-	}
-        }
-/*
- * Now nsipaddr has numnsaddr addresses for name servers that
- * serve the requested domain.  Now try to find one that will
- * accept a zone transfer.
- */
-
-	thisns = 0;
-
-again:
-
-	numAnswers = 0;
-	soacnt = 0;
-
-	/*
-	 *  Create a query packet for the requested domain name.
-	 *
-	 */
-	msglen = res_mkquery(QUERY, namePtr, getclass, T_AXFR, NULL,
-			     0, NULL, buf.qb2, sizeof buf);
-	if (msglen < 0) {
-	    if (_res.options & RES_DEBUG) {
-		fprintf(stderr, "ListHosts: Res_mkquery failed\n");
-	    }
-	    return (ERROR);
-	}
-
-	bzero((char *)&sin, sizeof(sin));
-	sin.sin_family	= AF_INET;
-	sin.sin_port	=  htons(NAMESERVER_PORT);
-
-	/*
-	 *  Set up a virtual circuit to the server.
-	 */
-
-	for (;thisns < numnsaddr; thisns++) {
-	  if ((sockFD = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
-	    perror("ListHosts");
-	    return(ERROR);
-	  }
-	  bcopy(nsipaddr[thisns], &sin.sin_addr, IPADDRSIZE);
-	  if (_res.options & RES_DEBUG || verbose)
-	    printf("Trying %s\n", inet_ntoa(sin.sin_addr));
-	  if (connect(sockFD, (struct sockaddr *)&sin, sizeof(sin)) >= 0)
-	    break;
-	  if (verbose)
-	    perror("Connection failed, trying next server");
-	  (void) close(sockFD);
-	  sockFD = -1;
-	}	
-	if (thisns >= numnsaddr) {
-	  printf("No server for that domain responded\n");
-	  if (!verbose)
-	    perror("Error from the last server was");
-	  return (ERROR);
-	}
-
-	/*
-	 * Send length & message for zone transfer 
-	 */
-
-	__putshort(msglen, (u_char *)&len);
-
-        if (write(sockFD, (char *)&len, INT16SZ) != INT16SZ ||
-            write(sockFD, (char *) &buf, msglen) != msglen) {
-		perror("ListHosts");
-		(void) close(sockFD);
-		sockFD = -1;
-		return (ERROR);
-	}
-
-	filePtr = stdout;
-
-	while (1) {
-
-	    /*
-	     * Read the length of the response.
-	     */
-
-	    cp = (u_char *) &buf;
-	    amtToRead = INT16SZ;
-	    while(amtToRead > 0 && (numRead = read(sockFD, cp, amtToRead)) > 0){
-		cp 	  += numRead;
-		amtToRead -= numRead;
-	    }
-	    if (numRead <= 0) {
-		error = ERR_READING_LEN;
-		break;
-	    }	
-
-	    if ((len = _getshort((u_char*)&buf)) == 0) {
-		break;	/* nothing left to read */
-	    }
-
-	    /*
-	     * Read the response.
-	     */
-
-	    amtToRead = len;
-	    cp = (u_char *) &buf;
-	    while(amtToRead > 0 && (numRead = read(sockFD, cp, amtToRead)) > 0){
-		cp += numRead;
-		amtToRead -= numRead;
-	    }
-	    if (numRead <= 0) {
-		error = ERR_READING_MSG;
-		break;
-	    }
-
-	    i = buf.qb1.rcode;
-	    if (i != NOERROR || ntohs(buf.qb1.ancount) == 0) {
-	      if ((thisns+1) < numnsaddr &&
-		  (i == SERVFAIL || i == NOTIMP || i == REFUSED)) {
-		if (_res.options & RES_DEBUG || verbose)
-		  printf("Server failed, trying next server: %s\n",
-			 i != NOERROR ? 
-			 DecodeError(i) : "Premature end of data");
-		(void) close(sockFD);
-		sockFD = -1;
-		thisns++;
-		goto again;
-	      }
-	      printf("Server failed: %s\n",
-		     i != NOERROR ? DecodeError(i) : "Premature end of data");
-	      break;
-	    }
-
-
-	    result = printinfo(&buf, cp, queryType, 1);
-	    if (! result) {
-		error = ERR_PRINTING;
-		break;
-	    }
-	    numAnswers++;
-	    cp = buf.qb2 + HFIXEDSZ;
-	    if (ntohs(buf.qb1.qdcount) > 0)
-		cp += dn_skipname(cp, buf.qb2 + len) + QFIXEDSZ;
-
-	    nmp = cp;
-	    cp += dn_skipname(cp, (u_char *)&buf + len);
-	    if ((_getshort(cp) == T_SOA)) {
-		(void) dn_expand(buf.qb2, buf.qb2 + len, nmp,
-				 dname[soacnt], sizeof dname[0]);
-	        if (soacnt) {
-		    if (strcmp((char *)dname[0], (char *)dname[1]) == 0)
-			break;
-		} else
-		    soacnt++;
-	    }
-        }
-
-	(void) close(sockFD);
-	sockFD = -1;
-
-	switch (error) {
-	    case NO_ERRORS:
-		return (SUCCESS);
-
-	    case ERR_READING_LEN:
-		return(ERROR);
-
-	    case ERR_PRINTING:
-		fprintf(stderr,"*** Error during listing of %s: %s\n", 
-				namePtr, DecodeError(result));
-		return(result);
-
-	    case ERR_READING_MSG:
-		headerPtr = (HEADER *) &buf;
-		fprintf(stderr,"ListHosts: error receiving zone transfer:\n");
-		fprintf(stderr,
-	       "  result: %s, answers = %d, authority = %d, additional = %d\n", 
-		    	resultcodes[headerPtr->rcode], 
-		    	ntohs(headerPtr->ancount), ntohs(headerPtr->nscount), 
-			ntohs(headerPtr->arcount));
-		return(ERROR);
-	    default:
-		return(ERROR);
-	}
-}
-
-char *
-DecodeError(result)
-    int result;
-{
-	switch(result) {
-	    case NOERROR: 	return("Success"); break;
-	    case FORMERR:	return("Format error"); break;
-	    case SERVFAIL:	return("Server failed"); break;
-	    case NXDOMAIN:	return("Non-existent domain"); break;
-	    case NOTIMP:	return("Not implemented"); break;
-	    case REFUSED:	return("Query refused"); break;
-#ifdef NOCHANGE
-	    case NOCHANGE:	return("No change"); break;
-#endif
-	    case NO_INFO: 	return("No information"); break;
-	    case ERROR: 	return("Unspecified error"); break;
-	    case TIME_OUT: 	return("Timed out"); break;
-	    case NONAUTH: 	return("Non-authoritative answer"); break;
-	    default: 		break;
-	}
-	return("BAD ERROR VALUE"); 
-}
diff --git a/contrib/bind/tools/nslookup/Makefile b/contrib/bind/tools/nslookup/Makefile
deleted file mode 100644
index 31f3d1690e1f6..0000000000000
--- a/contrib/bind/tools/nslookup/Makefile
+++ /dev/null
@@ -1,129 +0,0 @@
-#
-#	@(#)Makefile	5.20 (Berkeley) 10/2/89
-#	$Id: Makefile,v 8.4 1995/12/22 10:20:42 vixie Exp $
-#
-
-## ++Copyright++ 1987
-## -
-## Copyright (c) 1987
-##    The Regents of the University of California.  All rights reserved.
-## 
-## Redistribution and use in source and binary forms, with or without
-## modification, are permitted provided that the following conditions
-## are met:
-## 1. Redistributions of source code must retain the above copyright
-##    notice, this list of conditions and the following disclaimer.
-## 2. Redistributions in binary form must reproduce the above copyright
-##    notice, this list of conditions and the following disclaimer in the
-##    documentation and/or other materials provided with the distribution.
-## 3. All advertising materials mentioning features or use of this software
-##    must display the following acknowledgement:
-## 	This product includes software developed by the University of
-## 	California, Berkeley and its contributors.
-## 4. Neither the name of the University nor the names of its contributors
-##    may be used to endorse or promote products derived from this software
-##    without specific prior written permission.
-## 
-## THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
-## ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-## IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
-## ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
-## FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-## DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
-## OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-## HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
-## LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
-## OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
-## SUCH DAMAGE.
-## -
-## Portions Copyright (c) 1993 by Digital Equipment Corporation.
-## 
-## Permission to use, copy, modify, and distribute this software for any
-## purpose with or without fee is hereby granted, provided that the above
-## copyright notice and this permission notice appear in all copies, and that
-## the name of Digital Equipment Corporation not be used in advertising or
-## publicity pertaining to distribution of the document or software without
-## specific, written prior permission.
-## 
-## THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
-## WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
-## OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
-## CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
-## DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
-## PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
-## ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
-## SOFTWARE.
-## -
-## --Copyright--
-
-DESTDIR =
-DESTBIN = /usr/bin
-COMPINCL = ../../compat/include
-CC= cc
-SHELL= /bin/sh
-CDEBUG= -O
-INCL =	../../include
-RES=	../../res/libresolv.a
-COMPLIB= ../../compat/lib/lib44bsd.a
-LDFLAGS =
-LIBS = -ll
-LEX = lex
-DESTHELP= /usr/lib
-DEFS=	-D_PATH_HELPFILE=\"$(DESTHELP)/nslookup.help\"
-
-#(bsd/386, 4.4bsd, other net2 descendents)
-#DESTHELP= /usr/share/misc
-#COMPINCL= .
-#COMPLIB= 
-#LIBS = -ll -lutil
-#LEX = lex -I
-
-#(sgi irix4)
-#DESTHELP= /usr/bsd
-#DEFS=	-xansi -signed -D__STDC__ -D_BSD_SIGNALS \
-# 	-D_PATH_HELPFILE=\"$(DESTHELP)/nslookup.help\"
-#COMPLIB= 
-
-#(sgi irix5)
-#DESTHELP= /usr/share/misc
-#DEFS=	-xansi -signed -D__BIT_TYPES_DEFINED__ -D_BSD_SIGNALS \
-# 	-D_PATH_HELPFILE=\"$(DESTHELP)/nslookup.help\"
-#COMPLIB= 
-
-CFLAGS=	${CDEBUG} -I${INCL} -I${COMPINCL} ${DEFS}
-CSRCS=	main.c getinfo.c debug.c send.c skip.c list.c subr.c
-SRCS=	${CSRCS} commands.l
-OBJS=	main.o getinfo.o debug.o send.o skip.o list.o subr.o commands.o
-
-all: nslookup
-
-nslookup: ${OBJS} ${RES} ${COMPLIB}
-	${CC} ${CDEBUG} ${LDFLAGS} -o $@ ${OBJS} \
-		${RES} ${COMPLIB} ${LIBS}
-
-clean:
-	rm -f ${OBJS} core nslookup commands.c lex.yy.c lex.yy.o
-	rm -f *.BAK *.CKP *~
-
-cleandir: clean
-	rm -f tags .depend
-
-depend: ${SRCS}
-	mkdep ${CPPFLAGS} -I${INCL} -I${COMPINCL} ${DEFS} ${SRCS}
-
-install:
-	${INSTALL} -s -c -o bin -g bin -m 755 nslookup ${DESTDIR}${DESTBIN}/
-	${INSTALL}    -c -o bin -g bin -m 444 nslookup.help \
-		 ${DESTDIR}${DESTHELP}/
-
-lint: ${CSRCS}
-	lint ${CSRCS}
-
-tags: ${CSRCS}
-	ctags ${CSRCS}
-
-commands.c: commands.l
-	$(LEX) -t $< > $@ || rm $@
-
-# DO NOT DELETE THIS LINE -- mkdep uses it.
-# DO NOT PUT ANYTHING AFTER THIS LINE, IT WILL GO AWAY.
diff --git a/contrib/bind/tools/nslookup/commands.l b/contrib/bind/tools/nslookup/commands.l
deleted file mode 100644
index f70d1aab7f669..0000000000000
--- a/contrib/bind/tools/nslookup/commands.l
+++ /dev/null
@@ -1,219 +0,0 @@
-%{
-
-/*
- * ++Copyright++ 1985
- * -
- * Copyright (c) 1985
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)commands.l	5.13 (Berkeley) 7/24/90";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  commands.l
- *
- *	Andrew Cherenson	CS298-26  Fall 1985
- *
- *	Lex input file for the nslookup program command interpreter.
- *	When a sequence is recognized, the associated action
- *	routine is called. The action routine may need to
- *	parse the string for additional information.
- *
- *  Recognized commands: (identifiers are shown in uppercase)
- *
- *	server NAME	- set default server to NAME, using default server
- *	lserver NAME	- set default server to NAME, using initial server
- *	finger [NAME]	- finger the optional NAME
- *	exit		- exit the program
- *	root		- set default server to the root
- *	ls NAME		- list the domain NAME
- *	view FILE	- sorts and view the file with more
- *	set OPTION	- set an option
- *	help		- print help information
- *	?		- print help information
- *	NAME		- print info about the host/domain NAME
- *			  using default server.
- *	NAME1 NAME2	- as above, but use NAME2 as server
- *
- *
- *   yylex Results:
- *	0		upon end-of-file.
- *	1		after each command.
- *
- *******************************************************************************
- */
-
-#include "res.h"
-extern char rootServerName[];
-extern void PrintHelp();
-
-%}
-WS	[ \t]
-FLET	[A-Za-z0-9.*\\]
-LET	[A-Za-z0-9.*]
-NAME	[A-Za-z0-9.*=_/-]
-%%
-^{WS}*server{WS}+{LET}{NAME}*{WS}*$	{
-					    /*
-					     * 0 == use current server to find
-					     *	    the new one.
-					     * 1 == use original server to find
-					     *	    the new one.
-					     */
-					    SetDefaultServer(yytext, 0);
-					    return(1);
-					}
-^{WS}*lserver{WS}+{LET}{NAME}*{WS}*$	{
-					    SetDefaultServer(yytext, 1);
-					    return(1);
-					}
-^{WS}*exit{WS}*$			{
-					    return(0);
-					}
-^{WS}*root{WS}*$			{
-					    SetDefaultServer(rootServerName, 1);
-					    return(1);
-					}
-^{WS}*finger({WS}+{LET}{NAME}*)?{WS}+>>?{WS}*{NAME}+{WS}*$	{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    Finger(yytext, 1);
-					    return(1);
-					}
-^{WS}*finger({WS}+{LET}{NAME}*)?{WS}*$	{
-					    Finger(yytext, 0);
-					    return(1);
-					}
-^{WS}*view{WS}+{NAME}+{WS}*$	{
-					    ViewList(yytext);
-					    return(1);
-					}
-^{WS}*ls{WS}+(("-a"|"-d"|"-h"|"-m"|"-s"){WS}+)?{LET}{NAME}*{WS}+>>?{WS}+{NAME}+{WS}*$	{
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    ListHosts(yytext, 1);
-					    return(1);
-					}
-^{WS}*ls{WS}+(("-a"|"-d"|"-h"|"-m"|"-s"){WS}+)?{LET}{NAME}*{WS}*$	{
-					    ListHosts(yytext, 0);
-					    return(1);
-					}
-^{WS}*ls{WS}+-t{WS}+({LET}{NAME}*{WS}+)?{LET}{NAME}*{WS}+>>?{WS}+{NAME}+{WS}*$ {
-					    /*
-					     * 2nd arg.
-					     *  0 == output to stdout
-					     *  1 == output to file
-					     */
-					    ListHostsByType(yytext, 1);
-					    return(1);
-					}
-^{WS}*ls{WS}+-t{WS}+({LET}{NAME}*{WS}+)?{LET}{NAME}*{WS}*$ {
-					    ListHostsByType(yytext, 0);
-					    return(1);
-					}
-^{WS}*set{WS}+{NAME}+{WS}*$		{
-					    SetOption(yytext);
-					    return(1);
-					}
-^{WS}*help{WS}*$			{
-					    PrintHelp();
-					    return(1);
-					}
-^{WS}*"?"{WS}*$				{
-					    extern void PrintHelp();
-
-					    PrintHelp();
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}+>>?{WS}*{NAME}+{WS}*$	{
-					    /*
-					     * 0 == output to stdout
-					     * 1 == output to file
-					     */
-					    LookupHost(yytext, 1);
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}*$		{
-					    LookupHost(yytext, 0);
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}+{LET}{NAME}*{WS}+>>?{WS}*{NAME}+{WS}*$	{
-					    /*
-					     * 0 == output to stdout
-					     * 1 == output to file
-					     */
-					    LookupHostWithServer(yytext, 1);
-					    return(1);
-					}
-^{WS}*{FLET}{NAME}*{WS}+{LET}{NAME}*{WS}*$	{
-					    LookupHostWithServer(yytext, 0);
-					    return(1);
-					}
-^{WS}*\n				{
-					    return(1);
-					}
-^.*\n					{
-					    printf("Unrecognized command: %s",
-							yytext);
-					    return(1);
-					}
-\n					{ ; }
-%%
diff --git a/contrib/bind/tools/nslookup/debug.c b/contrib/bind/tools/nslookup/debug.c
deleted file mode 100644
index e61c08f99b2fe..0000000000000
--- a/contrib/bind/tools/nslookup/debug.c
+++ /dev/null
@@ -1,646 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)debug.c	5.26 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: debug.c,v 8.10 1996/12/18 04:09:50 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  debug.c --
- *
- *	Routines to print out packets received from a name server query.
- *
- *      Modified version of 4.3BSD BIND res_debug.c 5.30 6/27/90
- *
- *******************************************************************************
- */
-
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <resolv.h>
-#include <netdb.h>
-#include <stdio.h>
-#include "res.h"
-#include "../../conf/portability.h"
-
-/*
- *  Imported from res_debug.c
- */
-extern char *_res_resultcodes[];
-extern char *_res_opcodes[];
-
-/*
- *  Used to highlight the start of a record when printing it.
- */
-#define INDENT "    ->  "
-
-
-
-/*
- * Print the contents of a query.
- * This is intended to be primarily a debugging routine.
- */
-
-Print_query(msg, eom, printHeader)
-	char *msg, *eom;
-	int printHeader;
-{
-	Fprint_query(msg, eom, printHeader,stdout);
-}
-
-Fprint_query(msg, eom, printHeader,file)
-	u_char *msg, *eom;
-	int printHeader;
-	FILE *file;
-{
-	register u_char *cp;
-	register HEADER *hp;
-	register int n;
-	short class;
-	short type;
-
-	/*
-	 * Print header fields.
-	 */
-	hp = (HEADER *)msg;
-	cp = msg + HFIXEDSZ;
-	if (printHeader || (_res.options & RES_DEBUG2)) {
-	    fprintf(file,"    HEADER:\n");
-	    fprintf(file,"\topcode = %s", _res_opcodes[hp->opcode]);
-	    fprintf(file,", id = %d", ntohs(hp->id));
-	    fprintf(file,", rcode = %s\n", _res_resultcodes[hp->rcode]);
-	    fprintf(file,"\theader flags: ");
-	    if (hp->qr) {
-		    fprintf(file," response");
-	    } else {
-		    fprintf(file," query");
-	    }
-	    if (hp->aa)
-		    fprintf(file,", auth. answer");
-	    if (hp->tc)
-		    fprintf(file,", truncation");
-	    if (hp->rd)
-		    fprintf(file,", want recursion");
-	    if (hp->ra)
-		    fprintf(file,", recursion avail.");
-	    if (hp->unused)
-		    fprintf(file,", UNUSED-QUERY_BIT");
-	    if (hp->ad)
-		    fprintf(file,", authentic data");
-	    if (hp->cd)
-		    fprintf(file,", checking disabled");
-	    fprintf(file,"\n\tquestions = %d", ntohs(hp->qdcount));
-	    fprintf(file,",  answers = %d", ntohs(hp->ancount));
-	    fprintf(file,",  authority records = %d", ntohs(hp->nscount));
-	    fprintf(file,",  additional = %d\n\n", ntohs(hp->arcount));
-	}
-
-	/*
-	 * Print question records.
-	 */
-	if (n = ntohs(hp->qdcount)) {
-		fprintf(file,"    QUESTIONS:\n");
-		while (--n >= 0) {
-			fprintf(file,"\t");
-			cp = Print_cdname(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-			type = _getshort((u_char*)cp);
-			cp += INT16SZ;
-			class = _getshort((u_char*)cp);
-			cp += INT16SZ;
-			fprintf(file,", type = %s", p_type(type));
-			fprintf(file,", class = %s\n", p_class(class));
-		}
-	}
-	/*
-	 * Print authoritative answer records
-	 */
-	if (n = ntohs(hp->ancount)) {
-		fprintf(file,"    ANSWERS:\n");
-		if (type == T_A && n > MAXADDRS) {
-			printf("Limiting response to MAX Addrs = %d \n",
-			       MAXADDRS);
-			n = MAXADDRS;
-		}
-		while (--n >= 0) {
-			fprintf(file, INDENT);
-			cp = Print_rr(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-		}
-	}
-	/*
-	 * print name server records
-	 */
-	if (n = ntohs(hp->nscount)) {
-		fprintf(file,"    AUTHORITY RECORDS:\n");
-		while (--n >= 0) {
-			fprintf(file, INDENT);
-			cp = Print_rr(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-		}
-	}
-	/*
-	 * print additional records
-	 */
-	if (n = ntohs(hp->arcount)) {
-		fprintf(file,"    ADDITIONAL RECORDS:\n");
-		while (--n >= 0) {
-			fprintf(file, INDENT);
-			cp = Print_rr(cp, msg, eom, file);
-			if (cp == NULL)
-				return;
-		}
-	}
-	fprintf(file,"\n------------\n");
-}
-
-
-u_char *
-Print_cdname_sub(cp, msg, eom, file, format)
-	u_char *cp, *msg, *eom;
-	FILE *file;
-	int format;
-{
-	int n;
-	char name[MAXDNAME];
-
-	n = dn_expand(msg, eom, cp, name, sizeof name);
-	if (n < 0)
-		return (NULL);
-	if (name[0] == '\0') {
-	    (void) strcpy(name, "(root)");
-	}
-	if (format) {
-	    fprintf(file, "%-30s", name);
-	} else {
-	    fputs(name, file);
-	}
-	return (cp + n);
-}
-
-u_char *
-Print_cdname(cp, msg, eom, file)
-	u_char *cp, *msg, *eom;
-	FILE *file;
-{
-	return (Print_cdname_sub(cp, msg, eom, file, 0));
-}
-
-u_char *
-Print_cdname2(cp, msg, eom, file)
-	u_char *cp, *msg, *eom;
-	FILE *file;
-{
-	return (Print_cdname_sub(cp, msg, eom, file, 1));
-}
-
-/*
- * Print resource record fields in human readable form.
- */
-u_char *
-Print_rr(ocp, msg, eom, file)
-	u_char *ocp, *msg, *eom;
-	FILE *file;
-{
-	int type, class, dlen, n, c;
-	u_int32_t rrttl, ttl;
-	struct in_addr inaddr;
-	u_char *cp, *cp1, *cp2;
-	int debug;
-
-	if ((cp = Print_cdname(ocp, msg, eom, file)) == NULL) {
-		fprintf(file, "(name truncated?)\n");
-		return (NULL);			/* compression error */
-	}
-
-	type = _getshort((u_char*)cp);
-	cp += INT16SZ;
-	class = _getshort((u_char*)cp);
-	cp += INT16SZ;
-	rrttl = _getlong((u_char*)cp);
-	cp += INT32SZ;
-	dlen = _getshort((u_char*)cp);
-	cp += INT16SZ;
-
-	debug = _res.options & (RES_DEBUG|RES_DEBUG2);
-	if (debug) {
-	    if (_res.options & RES_DEBUG2) {
-		fprintf(file,"\n\ttype = %s, class = %s, dlen = %d",
-			    p_type(type), p_class(class), dlen);
-	    }
-	    if (type == T_SOA) {
-		fprintf(file,"\n\tttl = %lu (%s)", rrttl, p_time(rrttl));
-	    }
-	    (void) putc('\n', file);
-	} 
-
-	cp1 = cp;
-
-	/*
-	 * Print type specific data, if appropriate
-	 */
-	switch (type) {
-	case T_A:
-		switch (class) {
-		case C_IN:
-		case C_HS:
-			bcopy(cp, (char *)&inaddr, INADDRSZ);
-			if (dlen == 4) {
-				fprintf(file,"\tinternet address = %s\n",
-					inet_ntoa(inaddr));
-				cp += dlen;
-			} else if (dlen == 7) {
-				fprintf(file,"\tinternet address = %s",
-					inet_ntoa(inaddr));
-				fprintf(file,", protocol = %d", cp[4]);
-				fprintf(file,", port = %d\n",
-					(cp[5] << 8) + cp[6]);
-				cp += dlen;
-			}
-			break;
-		default:
-			fprintf(file,"\taddress, class = %d, len = %d\n",
-			    class, dlen);
-			cp += dlen;
-		}
-		break;
-
-	case T_CNAME:
-		fprintf(file,"\tcanonical name = ");
-		goto doname;
-
-	case T_MG:
-		fprintf(file,"\tmail group member = ");
-		goto doname;
-	case T_MB:
-		fprintf(file,"\tmail box = ");
-		goto doname;
-	case T_MR:
-		fprintf(file,"\tmailbox rename = ");
-		goto doname;
-	case T_MX:
-		fprintf(file,"\tpreference = %u",_getshort((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", mail exchanger = ");
-		goto doname;
-
-	case T_NAPTR: 
-		fprintf(file, "\torder = %u",_getshort((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", preference = %u\n", _getshort((u_char*)cp));
-		cp += INT16SZ;
-		/* Flags */
-		n = *cp++;
-		fprintf(file,"\tflags = \"%.*s\"\n", (int)n, cp);
-		cp += n;
-		/* Service */
-		n = *cp++;
-		fprintf(file,"\tservices = \"%.*s\"\n", (int)n, cp);
-		cp += n;
-		/* Regexp */
-		n = *cp++;
-		fprintf(file,"\trule = \"%.*s\"\n", (int)n, cp);
-		cp += n;
-		/* Replacement */
-		fprintf(file,"\treplacement = ");
-                cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(replacement truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-                (void) putc('\n', file);
-
-		break;
-	case T_SRV: 
-		fprintf(file, "\tpriority = %u",_getshort((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", weight = %u", _getshort((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", port= %u\n", _getshort((u_char*)cp));
-		cp += INT16SZ;
-
-		fprintf(file,"\thost = ");
-		goto doname;
-
-        case T_PX:
-                fprintf(file,"\tpreference = %u",_getshort((u_char*)cp));
-                cp += INT16SZ;
-                fprintf(file,", RFC 822 = ");
-                cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-                fprintf(file,"\nX.400 = ");
-                cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-                (void) putc('\n', file);
-                break;
-	case T_RT:
-		fprintf(file,"\tpreference = %u",_getshort((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", router = ");
-		goto doname;
-	case T_AFSDB:
-		fprintf(file,"\tsubtype = %d",_getshort((u_char*)cp));
-		cp += INT16SZ;
-		fprintf(file,", DCE/AFS server = ");
-		goto doname;
-	case T_NS:
-		fprintf(file,"\tnameserver = ");
-		goto doname;
-	case T_PTR:
-		fprintf(file,"\tname = ");
-doname:
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		(void) putc('\n', file);
-		break;
-
-	case T_HINFO:
-		cp2 = cp + dlen;
-		if (n = *cp++) {
-			fprintf(file,"\tCPU = %.*s", n, cp);
-			cp += n;
-		}
-		if ((cp < cp2) && (n = *cp++)) {
-			fprintf(file,"\tOS = %.*s\n", n, cp);
-			cp += n;
-		} else fprintf(file, "\n*** Warning *** OS-type missing\n");
-		break;
-
-	case T_ISDN:
-		cp2 = cp + dlen;
-		if (n = *cp++) {
-			fprintf(file,"\tISDN = \"%.*s", n, cp);
-			cp += n;
-		}
-		if ((cp < cp2) && (n = *cp++)) {
-			fprintf(file,"-%.*s\"\n", n, cp);
-			cp += n;
-		} else fprintf(file,"\"\n");
-		break;
-
-
-	case T_SOA:
-		if (!debug)
-		    (void) putc('\n', file);
-		fprintf(file,"\torigin = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\tmail addr = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\tserial = %lu", _getlong((u_char*)cp));
-		cp += INT32SZ;
-		ttl = _getlong((u_char*)cp);
-		fprintf(file,"\n\trefresh = %lu (%s)", ttl, p_time(ttl));
-		cp += INT32SZ;
-		ttl = _getlong((u_char*)cp);
-		fprintf(file,"\n\tretry   = %lu (%s)", ttl, p_time(ttl));
-		cp += INT32SZ;
-		ttl = _getlong((u_char*)cp);
-		fprintf(file,"\n\texpire  = %lu (%s)", ttl, p_time(ttl));
-		cp += INT32SZ;
-		ttl = _getlong((u_char*)cp);
-		fprintf(file,
-		    "\n\tminimum ttl = %lu (%s)\n", ttl, p_time(ttl));
-		cp += INT32SZ;
-		break;
-
-	case T_MINFO:
-		if (!debug)
-		    (void) putc('\n', file);
-		fprintf(file,"\trequests = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\terrors = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		(void) putc('\n', file);
-		break;
-	case T_RP:
-		if (!debug)
-		    (void) putc('\n', file);
-		fprintf(file,"\tmailbox = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		fprintf(file,"\n\ttext = ");
-		cp = Print_cdname(cp, msg, eom, file);
-		if (cp == NULL) {
-			fprintf(file, "(name truncated?)\n");
-			return (NULL);			/* compression error */
-		}
-		(void) putc('\n', file);
-		break;
-
-	case T_TXT:
-		(void) fputs("\ttext = ", file);
-		cp2 = cp1 + dlen;
-		while (cp < cp2) {
-			(void) putc('"', file);
-			if (n = (unsigned char) *cp++) {
-				for (c = n; c > 0 && cp < cp2; c--) {
-					if ((*cp == '\n') || (*cp == '"') || (*cp == '\\'))
-						(void) putc('\\', file);
-					(void) putc(*cp++, file);
-				}
-			}
-			(void) putc('"', file);
-			if (cp < cp2)
-				(void) putc(' ', file);
-		}
-		(void) putc('\n', file);
-  		break;
-
-	case T_X25:
-		(void) fputs("\tX25 = \"", file);
-		cp2 = cp1 + dlen;
-		while (cp < cp2) {
-			if (n = (unsigned char) *cp++) {
-				for (c = n; c > 0 && cp < cp2; c--)
-					if (*cp == '\n') {
-					    (void) putc('\\', file);
-					    (void) putc(*cp++, file);
-					} else
-					    (void) putc(*cp++, file);
-			}
-		}
-		(void) fputs("\"\n", file);
-  		break;
-
-	case T_NSAP:
-		fprintf(file, "\tnsap = %s\n", inet_nsap_ntoa(dlen, cp, NULL));
-		cp += dlen;
-  		break;
-
-	case T_AAAA: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		fprintf(file, "\tIPv6 address = %s\n",
-			inet_ntop(AF_INET6, cp, t, sizeof t));
-		cp += IN6ADDRSZ;
-		break;
-	}
-
-	case T_UINFO:
-		fprintf(file,"\tuser info = %s\n", cp);
-		cp += dlen;
-		break;
-
-	case T_UID:
-	case T_GID:
-		if (dlen == 4) {
-			fprintf(file,"\t%cid = %u\n",type == T_UID ? 'u' : 'g',
-			    _getlong((u_char*)cp));
-			cp += INT32SZ;
-		} else {
-			fprintf(file,"\t%cid of length %d?\n",
-			    type == T_UID ? 'u' : 'g', dlen);
-			cp += dlen;
-		}
-		break;
-
-	case T_WKS: {
-		struct protoent *protoPtr;
-
-		if (dlen < INT32SZ + 1)
-			break;
-		if (!debug)
-		    (void) putc('\n', file);
-		bcopy(cp, (char *)&inaddr, INADDRSZ);
-		cp += INT32SZ;
-		if ((protoPtr = getprotobynumber(*cp)) != NULL) {
-		    fprintf(file,"\tinet address = %s, protocol = %s\n\t",
-			inet_ntoa(inaddr), protoPtr->p_name);
-		} else {
-		    fprintf(file,"\tinet address = %s, protocol = %d\n\t",
-			inet_ntoa(inaddr), *cp);
-		}
-		cp++;
-		n = 0;
-		while (cp < cp1 + dlen) {
-			c = *cp++;
-			do {
-				struct servent *s;
-
- 				if (c & 0200) {
-					s = getservbyport((int)htons(n),
-					    protoPtr ? protoPtr->p_name : NULL);
-					if (s != NULL) {
-					    fprintf(file,"  %s", s->s_name);
-					} else {
-					    fprintf(file," #%d", n);
-					}
-				}
- 				c <<= 1;
-			} while (++n & 07);
-		}
-		putc('\n',file);
-	    }
-	    break;
-
-	case T_NULL:
-		fprintf(file, "\tNULL (dlen %d)\n", dlen);
-		cp += dlen;
-		break;
-
-	default:
-		fprintf(file,"\trecord type %d, interpreted as:\n", type);
-		/* Let resolver library try to print it */
-		p_rr(ocp, msg, file);
-		cp += dlen;
-	}
-	if (_res.options & RES_DEBUG && type != T_SOA) {
-	    fprintf(file,"\tttl = %lu (%s)\n", rrttl, p_time(rrttl));
-	}
-	if (cp != cp1 + dlen) {
-		fprintf(file,
-			"\n*** Error: record size incorrect (%d != %d)\n\n",
-			cp - cp1, dlen);
-		cp = NULL;
-	}
-	return (cp);
-}
diff --git a/contrib/bind/tools/nslookup/getinfo.c b/contrib/bind/tools/nslookup/getinfo.c
deleted file mode 100644
index 9d31b8fe23975..0000000000000
--- a/contrib/bind/tools/nslookup/getinfo.c
+++ /dev/null
@@ -1,844 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)getinfo.c	5.26 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: getinfo.c,v 8.6 1996/12/02 09:17:24 vixie Exp $";
-#endif /* not lint */
-
-/*
- ******************************************************************************
- *
- *  getinfo.c --
- *
- *	Routines to create requests to name servers
- *	and interpret the answers.
- *
- *	Adapted from 4.3BSD BIND gethostnamadr.c
- *
- ******************************************************************************
- */
-
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <resolv.h>
-#include <stdio.h>
-#include <ctype.h>
-#include "res.h"
-#include "../../conf/portability.h"
-
-extern char *_res_resultcodes[];
-extern char *res_skip();
-
-static char *addr_list[MAXADDRS + 1];
-
-static char *host_aliases[MAXALIASES];
-static int   host_aliases_len[MAXALIASES];
-static u_char  hostbuf[BUFSIZ+1];
-
-typedef struct {
-    char *name;
-    char *domain[MAXDOMAINS];
-    int   numDomains;
-    char *address[MAXADDRS];
-    int   numAddresses;
-} ServerTable;
-
-ServerTable server[MAXSERVERS];
-
-typedef union {
-    HEADER qb1;
-    u_char qb2[PACKETSZ*2];
-} querybuf;
-
-typedef union {
-    int32_t al;
-    char ac;
-} align;
-
-#define GetShort(cp)	_getshort(cp); cp += INT16SZ;
-
-
-/*
- ******************************************************************************
- *
- *  GetAnswer --
- *
- *	Interprets an answer packet and retrieves the following
- *	information:
- *
- *  Results:
- *      SUCCESS         the info was retrieved.
- *      NO_INFO         the packet did not contain an answer.
- *	NONAUTH		non-authoritative information was found.
- *      ERROR           the answer was malformed.
- *      Other errors    returned in the packet header.
- *
- ******************************************************************************
- */
-
-static int
-GetAnswer(nsAddrPtr, queryType, msg, msglen, iquery, hostPtr, isServer)
-    struct in_addr	*nsAddrPtr;
-    char		*msg;
-    int			queryType;
-    int			msglen;
-    Boolean		iquery;
-    register HostInfo	*hostPtr;
-    Boolean		isServer;
-{
-    register HEADER	*headerPtr;
-    register u_char	*cp;
-    querybuf		answer;
-    char		**aliasPtr;
-    u_char		*eom, *bp;
-    char		**addrPtr;
-    char		*namePtr;
-    char		*dnamePtr;
-    int			type, class;
-    int			qdcount, ancount, arcount, nscount, buflen;
-    int			origClass;
-    int			numAliases = 0;
-    int			numAddresses = 0;
-    int			n, i, j;
-    int			len;
-    int			dlen;
-    int			status;
-    int			numServers;
-    Boolean		haveAnswer;
-    Boolean		printedAnswers = FALSE;
-
-
-    /*
-     *  If the hostPtr was used before, free up the calloc'd areas.
-     */
-    FreeHostInfoPtr(hostPtr);
-
-    status = SendRequest(nsAddrPtr, msg, msglen, (char *) &answer,
-			    sizeof(answer), &n);
-
-    if (status != SUCCESS) {
-	    if (_res.options & RES_DEBUG2)
-		    printf("SendRequest failed\n");
-	    return (status);
-    }
-    eom = (u_char *) &answer + n;
-
-    headerPtr = (HEADER *) &answer;
-
-    if (headerPtr->rcode != NOERROR) {
-	return (headerPtr->rcode);
-    }
-
-    qdcount = ntohs(headerPtr->qdcount);
-    ancount = ntohs(headerPtr->ancount);
-    arcount = ntohs(headerPtr->arcount);
-    nscount = ntohs(headerPtr->nscount);
-
-    /*
-     * If there are no answer, n.s. or additional records
-     * then return with an error.
-     */
-    if (ancount == 0 && nscount == 0 && arcount == 0) {
-	return (NO_INFO);
-    }
-
-
-    bp	   = hostbuf;
-    buflen = sizeof(hostbuf);
-    cp	   = (u_char *) &answer + HFIXEDSZ;
-
-    /* Skip over question section. */
-    while (qdcount-- > 0) {
-	cp += dn_skipname(cp, eom) + QFIXEDSZ;
-    }
-
-    aliasPtr	= host_aliases;
-    addrPtr	= addr_list;
-    haveAnswer	= FALSE;
-
-    /*
-     * Scan through the answer resource records.
-     * Answers for address query types are saved.
-     * Other query type answers are just printed.
-     */
-    if (ancount != 0) {
-	if (!isServer && !headerPtr->aa) {
-	    printf("Non-authoritative answer:\n");
-	}
-
-	if (queryType != T_A && !(iquery && queryType == T_PTR)) {
-	    while (--ancount >= 0 && cp < eom) {
-		if ((cp = (u_char *)Print_rr(cp,
-		    (char *)&answer, eom, stdout)) == NULL) {
-		    return(ERROR);
-		}
-	    }
-	    printedAnswers = TRUE;
-	} else {
-	    while (--ancount >= 0 && cp < eom) {
-		n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-		if (n < 0) {
-		    return(ERROR);
-		}
-		cp   += n;
-		type  = GetShort(cp);
-		class = GetShort(cp);
-		cp   += INT32SZ;	/* skip TTL */
-		dlen  = GetShort(cp);
-		if (type == T_CNAME) {
-		    /*
-		     * Found an alias.
-		     */
-		    cp += dlen;
-		    if (aliasPtr >= &host_aliases[MAXALIASES-1]) {
-			continue;
-		    }
-		    *aliasPtr++ = (char *)bp;
-		    n = strlen((char *)bp) + 1;
-		    host_aliases_len[numAliases] = n;
-		    numAliases++;
-		    bp += n;
-		    buflen -= n;
-		    continue;
-		} else if (type == T_PTR) {
-		    /*
-		     *  Found a "pointer" to the real name.
-		     */
-		    n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-		    if (n < 0) {
-			cp += n;
-			continue;
-		    }
-		    cp += n;
-		    len = strlen((char *)bp) + 1;
-		    hostPtr->name = Calloc(1, len);
-		    bcopy(bp, hostPtr->name, len);
-		    haveAnswer = TRUE;
-		    break;
-		} else if (type != T_A) {
-		    cp += dlen;
-		    continue;
-		}
-		if (haveAnswer) {
-		    /*
-		     * If we've already got 1 address, we aren't interested
-		     * in addresses with a different length or class.
-		     */
-		    if (dlen != hostPtr->addrLen) {
-			cp += dlen;
-			continue;
-		    }
-		    if (class != origClass) {
-			cp += dlen;
-			continue;
-		    }
-		} else {
-		    /*
-		     * First address: record its length and class so we
-		     * only save additonal ones with the same attributes.
-		     */
-		    hostPtr->addrLen = dlen;
-		    origClass = class;
-		    hostPtr->addrType = (class == C_IN) ? AF_INET : AF_UNSPEC;
-		    len = strlen((char *)bp) + 1;
-		    hostPtr->name = Calloc(1, len);
-		    bcopy(bp, hostPtr->name, len);
-		}
-		bp += (((u_int32_t)bp) % sizeof(align));
-
-		if (bp + dlen >= &hostbuf[sizeof(hostbuf)]) {
-		    if (_res.options & RES_DEBUG) {
-			printf("Size (%d) too big\n", dlen);
-		    }
-		    break;
-		}
-		if (numAddresses >= MAXADDRS) {
-			printf("MAXADDRS exceeded: skipping address\n");
-			cp += dlen;
-			continue;
-		}
-		bcopy(cp, *addrPtr++ = (char *)bp, dlen);
-		bp +=dlen;
-		cp += dlen;
-		numAddresses++;
-		haveAnswer = TRUE;
-	    }
-	}
-    }
-
-    if ((queryType == T_A || queryType == T_PTR) && haveAnswer) {
-
-	/*
-	 *  Go through the alias and address lists and return them
-	 *  in the hostPtr variable.
-	 */
-
-	if (numAliases > 0) {
-	    hostPtr->aliases =
-		(char **) Calloc(1 + numAliases, sizeof(char *));
-	    for (i = 0; i < numAliases; i++) {
-		hostPtr->aliases[i] = Calloc(1, host_aliases_len[i]);
-		bcopy(host_aliases[i],
-		      hostPtr->aliases[i],
-		      host_aliases_len[i]);
-	    }
-	    hostPtr->aliases[i] = NULL;
-	}
-	if (numAddresses > 0) {
-	    hostPtr->addrList =
-		(char **)Calloc(1+numAddresses, sizeof(char *));
-	    for (i = 0; i < numAddresses; i++) {
-		hostPtr->addrList[i] = Calloc(1, hostPtr->addrLen);
-		bcopy(addr_list[i], hostPtr->addrList[i], hostPtr->addrLen);
-	    }
-	    hostPtr->addrList[i] = NULL;
-	}
-#ifdef verbose
-	if (headerPtr->aa || nscount == 0) {
-	    hostPtr->servers = NULL;
-	    return (SUCCESS);
-	}
-#else
-	hostPtr->servers = NULL;
-	return (SUCCESS);
-#endif
-    }
-
-    /*
-     * At this point, for the T_A query type, only empty answers remain.
-     * For other query types, additional information might be found
-     * in the additional resource records part.
-     */
-
-    if (!headerPtr->aa && (queryType != T_A) && (nscount > 0 || arcount > 0)) {
-	if (printedAnswers) {
-	    putchar('\n');
-	}
-	printf("Authoritative answers can be found from:\n");
-    }
-
-    cp = (u_char *)res_skip((char *) &answer, 2, eom);
-
-    numServers = 0;
-    if (queryType != T_A) {
-	/*
-	 * If we don't need to save the record, just print it.
-	 */
-	while (--nscount >= 0 && cp < eom) {
-	    if ((cp = (u_char *)Print_rr(cp,
-		(char *) &answer, eom, stdout)) == NULL) {
-		return(ERROR);
-	    }
-	}
-    } else {
-	while (--nscount >= 0 && cp < eom) {
-	    /*
-	     *  Go through the NS records and retrieve the names of hosts
-	     *  that serve the requested domain.
-	     */
-
-	    n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-	    if (n < 0) {
-		return(ERROR);
-	    }
-	    cp += n;
-	    len = strlen((char *)bp) + 1;
-	    dnamePtr = Calloc(1, len);   /* domain name */
-	    bcopy(bp, dnamePtr, len);
-
-	    type  = GetShort(cp);
-	    class = GetShort(cp);
-	    cp   += INT32SZ;	/* skip TTL */
-	    dlen  = GetShort(cp);
-
-	    if (type != T_NS) {
-		cp += dlen;
-	    } else {
-		Boolean	found;
-
-		n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-		if (n < 0) {
-		    return(ERROR);
-		}
-		cp += n;
-		len = strlen((char *)bp) + 1;
-		namePtr = Calloc(1, len); /* server host name */
-		bcopy(bp, namePtr, len);
-
-		/*
-		 * Store the information keyed by the server host name.
-		 */
-		found = FALSE;
-		for (j = 0; j < numServers; j++) {
-		    if (strcmp(namePtr, server[j].name) == 0) {
-			found = TRUE;
-			free(namePtr);
-			break;
-		    }
-		}
-		if (found) {
-		    server[j].numDomains++;
-		    if (server[j].numDomains <= MAXDOMAINS) {
-			server[j].domain[server[j].numDomains-1] = dnamePtr;
-		    }
-		} else {
-		    if (numServers >= MAXSERVERS) {
-			break;
-		    }
-		    server[numServers].name = namePtr;
-		    server[numServers].domain[0] = dnamePtr;
-		    server[numServers].numDomains = 1;
-		    server[numServers].numAddresses = 0;
-		    numServers++;
-		}
-	    }
-	}
-    }
-
-    /*
-     * Additional resource records contain addresses of servers.
-     */
-    cp = (u_char *)res_skip((char *) &answer, 3, eom);
-
-    if (queryType != T_A) {
-	/*
-	 * If we don't need to save the record, just print it.
-	 */
-	while (--arcount >= 0 && cp < eom) {
-	    if ((cp = (u_char *)Print_rr(cp,
-		(char *) &answer, eom, stdout)) == NULL) {
-		return(ERROR);
-	    }
-	}
-    } else {
-	while (--arcount >= 0 && cp < eom) {
-	    n = dn_expand(answer.qb2, eom, cp, (char *)bp, buflen);
-	    if (n < 0) {
-		break;
-	    }
-	    cp   += n;
-	    type  = GetShort(cp);
-	    class = GetShort(cp);
-	    cp   += INT32SZ;	/* skip TTL */
-	    dlen  = GetShort(cp);
-
-	    if (type != T_A)  {
-		cp += dlen;
-		continue;
-	    } else {
-		for (j = 0; j < numServers; j++) {
-		    if (strcmp((char *)bp, server[j].name) == 0) {
-			server[j].numAddresses++;
-			if (server[j].numAddresses <= MAXADDRS) {
-			    server[j].address[server[j].numAddresses-1] = 
-				    				Calloc(1,dlen);
-			    bcopy(cp,
-			      server[j].address[server[j].numAddresses-1],dlen);
-			    break;
-			}
-		    }
-		}
-		cp += dlen;
-	    }
-	}
-    }
-
-    /*
-     * If we are returning name server info, transfer it to the hostPtr.
-     */
-    if (numServers > 0) {
-	hostPtr->servers = (ServerInfo **)
-				Calloc(numServers+1, sizeof(ServerInfo *));
-
-	for (i = 0; i < numServers; i++) {
-	    hostPtr->servers[i] = (ServerInfo *) Calloc(1, sizeof(ServerInfo));
-	    hostPtr->servers[i]->name = server[i].name;
-
-
-	    hostPtr->servers[i]->domains = (char **)
-				Calloc(server[i].numDomains+1,sizeof(char *));
-	    for (j = 0; j < server[i].numDomains; j++) {
-		hostPtr->servers[i]->domains[j] = server[i].domain[j];
-	    }
-	    hostPtr->servers[i]->domains[j] = NULL;
-
-
-	    hostPtr->servers[i]->addrList = (char **)
-				Calloc(server[i].numAddresses+1,sizeof(char *));
-	    for (j = 0; j < server[i].numAddresses; j++) {
-		hostPtr->servers[i]->addrList[j] = server[i].address[j];
-	    }
-	    hostPtr->servers[i]->addrList[j] = NULL;
-
-	}
-	hostPtr->servers[i] = NULL;
-    }
-
-    switch (queryType) {
-	case T_A:
-		return NONAUTH;
-	case T_PTR:
-		if (iquery)
-			return NO_INFO;
-		/* fall through */
-	default:
-		return SUCCESS;
-    }
-}
-
-/*
-*******************************************************************************
-*
-*  GetHostInfo --
-*
-*	Retrieves host name, address and alias information
-*	for a domain.
-*
-*	Algorithm from res_search().
-*
-*  Results:
-*	ERROR		- res_mkquery failed.
-*	+ return values from GetAnswer()
-*
-*******************************************************************************
-*/
-
-int
-GetHostInfoByName(nsAddrPtr, queryClass, queryType, name, hostPtr, isServer)
-    struct in_addr	*nsAddrPtr;
-    int			queryClass;
-    int			queryType;
-    char		*name;
-    HostInfo		*hostPtr;
-    Boolean		isServer;
-{
-    int			n;
-    register int	result;
-    register char	**domain;
-    const char		*cp;
-    Boolean		got_nodata = FALSE;
-    struct in_addr	ina;
-    Boolean		tried_as_is = FALSE;
-
-    /* Catch explicit addresses */
-    if ((queryType == T_A) && IsAddr(name, &ina)) {
-	hostPtr->name = Calloc(strlen(name)+3, 1);
-	(void)sprintf(hostPtr->name,"[%s]",name);
-	hostPtr->aliases = NULL;
-	hostPtr->servers = NULL;
-	hostPtr->addrType = AF_INET;
-	hostPtr->addrLen = INADDRSZ;
-	hostPtr->addrList = (char **)Calloc(2, sizeof(char *));
-	hostPtr->addrList[0] = Calloc(INT32SZ, sizeof(char));
-	bcopy((char *)&ina, hostPtr->addrList[0], INADDRSZ);
-	hostPtr->addrList[1] = NULL;
-	return(SUCCESS);
-    }
-
-    result = NXDOMAIN;
-    for (cp = name, n = 0; *cp; cp++)
-	    if (*cp == '.')
-		    n++;
-    if (n == 0 && (cp = hostalias(name))) {
-	    printf("Aliased to \"%s\"\n\n", cp);
-	    return (GetHostDomain(nsAddrPtr, queryClass, queryType,
-		    cp, (char *)NULL, hostPtr, isServer));
-    }
-
-    /*
-     * If there are dots in the name already, let's just give it a try
-     * 'as is'.  The threshold can be set with the "ndots" option.
-     */
-    if (n >= (int)_res.ndots) {
-	    result = GetHostDomain(nsAddrPtr, queryClass, queryType,
-				   name, (char *)NULL, hostPtr, isServer);
-            if (result == SUCCESS)
-	        return (result);
-	    if (result == NO_INFO)
-		got_nodata++;
-            tried_as_is++;
-    }
-
-    /*
-     * We do at least one level of search if
-     *	- there is no dot and RES_DEFNAME is set, or
-     *	- there is at least one dot, there is no trailing dot,
-     *	  and RES_DNSRCH is set.
-     */
-    if ((n == 0 && _res.options & RES_DEFNAMES) ||
-       (n != 0 && *--cp != '.' && _res.options & RES_DNSRCH))
-	 for (domain = _res.dnsrch; *domain; domain++) {
-	    result = GetHostDomain(nsAddrPtr, queryClass, queryType,
-		    name, *domain, hostPtr, isServer);
-	    /*
-	     * If no server present, give up.
-	     * If name isn't found in this domain,
-	     * keep trying higher domains in the search list
-	     * (if that's enabled).
-	     * On a NO_INFO error, keep trying, otherwise
-	     * a wildcard entry of another type could keep us
-	     * from finding this entry higher in the domain.
-	     * If we get some other error (negative answer or
-	     * server failure), then stop searching up,
-	     * but try the input name below in case it's fully-qualified.
-	     */
-	    if (result == SUCCESS || result == NO_RESPONSE)
-		    return result;
-	    if (result == NO_INFO)
-		    got_nodata++;
-	    if ((result != NXDOMAIN && result != NO_INFO) ||
-		(_res.options & RES_DNSRCH) == 0)
-		    break;
-	}
-    /* if we have not already tried the name "as is", do that now.
-     * note that we do this regardless of how many dots were in the
-     * name or whether it ends with a dot.
-     */
-    if (!tried_as_is &&
-	(result = GetHostDomain(nsAddrPtr, queryClass, queryType,
-				name, (char *)NULL, hostPtr, isServer)
-	 ) == SUCCESS)
-	    return (result);
-    if (got_nodata)
-	result = NO_INFO;
-    return (result);
-}
-
-/*
- * Perform a query on the concatenation of name and domain,
- * removing a trailing dot from name if domain is NULL.
- */
-GetHostDomain(nsAddrPtr, queryClass, queryType, name, domain, hostPtr, isServer)
-    struct in_addr	*nsAddrPtr;
-    int			queryClass;
-    int			queryType;
-    char		*name, *domain;
-    HostInfo		*hostPtr;
-    Boolean		isServer;
-{
-    querybuf buf;
-    char nbuf[2*MAXDNAME+2];
-    char *longname = nbuf;
-    int n;
-
-    if (domain == NULL) {
-	    /*
-	     * Check for trailing '.';
-	     * copy without '.' if present.
-	     */
-	    n = strlen(name) - 1;
-	    if (name[n] == '.' && n < sizeof(nbuf) - 1) {
-		    bcopy(name, nbuf, n);
-		    nbuf[n] = '\0';
-	    } else
-		    longname = name;
-    } else {
-	    (void)sprintf(nbuf, "%.*s.%.*s",
-		    MAXDNAME, name, MAXDNAME, domain);
-	    longname = nbuf;
-    }
-    n = res_mkquery(QUERY, longname, queryClass, queryType,
-		    NULL, 0, 0, buf.qb2, sizeof(buf));
-    if (n < 0) {
-	if (_res.options & RES_DEBUG) {
-	    printf("Res_mkquery failed\n");
-	}
-	return (ERROR);
-    }
-
-    n = GetAnswer(nsAddrPtr, queryType, (char *)&buf, n, 0, hostPtr, isServer);
-
-    /*
-     * GetAnswer didn't find a name, so set it to the specified one.
-     */
-    if (n == NONAUTH) {
-	if (hostPtr->name == NULL) {
-	    int len = strlen(longname) + 1;
-	    hostPtr->name = Calloc(len, sizeof(char));
-	    bcopy(longname, hostPtr->name, len);
-	}
-    }
-    return(n);
-}
-
-
-/*
-*******************************************************************************
-*
-*  GetHostInfoByAddr --
-*
-*	Performs a PTR lookup in in-addr.arpa to find the host name
-*	that corresponds to the given address.
-*
-*  Results:
-*	ERROR		- res_mkquery failed.
-*	+ return values from GetAnswer()
-*
-*******************************************************************************
-*/
-
-int
-GetHostInfoByAddr(nsAddrPtr, address, hostPtr)
-    struct in_addr	*nsAddrPtr;
-    struct in_addr	*address;
-    HostInfo		*hostPtr;
-{
-    int		n;
-    querybuf	buf;
-    char	qbuf[MAXDNAME];
-    char	*p = (char *) &address->s_addr;
-
-    (void)sprintf(qbuf, "%u.%u.%u.%u.in-addr.arpa",
-	    ((unsigned)p[3] & 0xff),
-	    ((unsigned)p[2] & 0xff),
-	    ((unsigned)p[1] & 0xff),
-	    ((unsigned)p[0] & 0xff));
-    n = res_mkquery(QUERY, qbuf, C_IN, T_PTR, NULL, 0, NULL,
-		    buf.qb2, sizeof buf);
-    if (n < 0) {
-	if (_res.options & RES_DEBUG) {
-	    printf("res_mkquery() failed\n");
-	}
-	return (ERROR);
-    }
-    n = GetAnswer(nsAddrPtr, T_PTR, (char *) &buf, n, 1, hostPtr, 1);
-    if (n == SUCCESS) {
-	hostPtr->addrType = AF_INET;
-	hostPtr->addrLen = 4;
-	hostPtr->addrList = (char **)Calloc(2, sizeof(char *));
-	hostPtr->addrList[0] = Calloc(INT32SZ, sizeof(char));
-	bcopy((char *)p, hostPtr->addrList[0], INADDRSZ);
-	hostPtr->addrList[1] = NULL;
-    }
-    return n;
-}
-
-/*
-*******************************************************************************
-*
-*  FreeHostInfoPtr --
-*
-*	Deallocates all the calloc'd areas for a HostInfo variable.
-*
-*******************************************************************************
-*/
-
-void
-FreeHostInfoPtr(hostPtr)
-    register HostInfo *hostPtr;
-{
-    int i, j;
-
-    if (hostPtr->name != NULL) {
-	free(hostPtr->name);
-	hostPtr->name = NULL;
-    }
-
-    if (hostPtr->aliases != NULL) {
-	i = 0;
-	while (hostPtr->aliases[i] != NULL) {
-	    free(hostPtr->aliases[i]);
-	    i++;
-	}
-	free((char *)hostPtr->aliases);
-	hostPtr->aliases = NULL;
-    }
-
-    if (hostPtr->addrList != NULL) {
-	i = 0;
-	while (hostPtr->addrList[i] != NULL) {
-	    free(hostPtr->addrList[i]);
-	    i++;
-	}
-	free((char *)hostPtr->addrList);
-	hostPtr->addrList = NULL;
-    }
-
-    if (hostPtr->servers != NULL) {
-	i = 0;
-	while (hostPtr->servers[i] != NULL) {
-
-	    if (hostPtr->servers[i]->name != NULL) {
-		free(hostPtr->servers[i]->name);
-	    }
-
-	    if (hostPtr->servers[i]->domains != NULL) {
-		j = 0;
-		while (hostPtr->servers[i]->domains[j] != NULL) {
-		    free(hostPtr->servers[i]->domains[j]);
-		    j++;
-		}
-		free((char *)hostPtr->servers[i]->domains);
-	    }
-
-	    if (hostPtr->servers[i]->addrList != NULL) {
-		j = 0;
-		while (hostPtr->servers[i]->addrList[j] != NULL) {
-		    free(hostPtr->servers[i]->addrList[j]);
-		    j++;
-		}
-		free((char *)hostPtr->servers[i]->addrList);
-	    }
-	    free((char *)hostPtr->servers[i]);
-	    i++;
-	}
-	free((char *)hostPtr->servers);
-	hostPtr->servers = NULL;
-    }
-}
diff --git a/contrib/bind/tools/nslookup/list.c b/contrib/bind/tools/nslookup/list.c
deleted file mode 100644
index 6d746d77ffff5..0000000000000
--- a/contrib/bind/tools/nslookup/list.c
+++ /dev/null
@@ -1,1037 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)list.c	5.23 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: list.c,v 8.9 1996/11/26 10:11:26 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  list.c --
- *
- *	Routines to obtain info from name and finger servers.
- *
- *	Adapted from 4.3BSD BIND ns_init.c and from finger.c.
- *
- *******************************************************************************
- */
-
-#include <sys/param.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <resolv.h>
-#include <netdb.h>
-#include <stdio.h>
-#include <limits.h>
-#include <ctype.h>
-#include <errno.h>
-#include "res.h"
-#include "../../conf/portability.h"
-
-extern char *_res_resultcodes[];	/* res_debug.c */
-extern char *pager;
-
-typedef union {
-    HEADER qb1;
-    u_char qb2[PACKETSZ];
-} querybuf;
-
-extern HostInfo	*defaultPtr;
-extern HostInfo	curHostInfo;
-extern int	curHostValid;
-extern int	queryType;
-extern int	queryClass;
-
-static int sockFD = -1;
-int ListSubr();
-
-/*
- *  During a listing to a file, hash marks are printed
- *  every HASH_SIZE records.
- */
-
-#define HASH_SIZE 50
-
-
-/*
- *******************************************************************************
- *
- *  ListHosts --
- *  ListHostsByType --
- *
- *	Requests the name server to do a zone transfer so we
- *	find out what hosts it knows about.
- *
- *	For ListHosts, there are five types of output:
- *	- Internet addresses (default)
- *	- cpu type and operating system (-h option)
- *	- canonical and alias names  (-a option)
- *	- well-known service names  (-s option)
- *	- ALL records (-d option)
- *	ListHostsByType prints records of the default type or of a speicific
- *	type.
- *
- *	To see all types of information sorted by name, do the following:
- *	  ls -d domain.edu > file
- *	  view file
- *
- *  Results:
- *	SUCCESS		the listing was successful.
- *	ERROR		the server could not be contacted because
- *			a socket could not be obtained or an error
- *			occured while receiving, or the output file
- *			could not be opened.
- *
- *******************************************************************************
- */
-
-void
-ListHostsByType(string, putToFile)
-	char *string;
-	int putToFile;
-{
-	int	i, qtype, result;
-	char	*namePtr;
-	char	name[NAME_LEN];
-	char	option[NAME_LEN];
-
-	/*
-	 *  Parse the command line. It maybe of the form "ls -t domain"
-	 *  or "ls -t type domain".
-	 */
-
-	i = sscanf(string, " ls -t %s %s", option, name);
-	if (putToFile && i == 2 && name[0] == '>') {
-	    i--;
-	}
-	if (i == 2) {
-	    qtype = StringToType(option, -1, stderr);
-	    if (qtype == -1)
-		return;
-	    namePtr = name;
-	} else if (i == 1) {
-	    namePtr = option;
-	    qtype = queryType;
-	} else {
-	    fprintf(stderr, "*** ls: invalid request %s\n",string);
-	    return;
-	}
-	result = ListSubr(qtype, namePtr, putToFile ? string : NULL);
-	if (result != SUCCESS)
-	    fprintf(stderr, "*** Can't list domain %s: %s\n", 
-			namePtr, DecodeError(result));
-}
-
-void
-ListHosts(string, putToFile)
-	char *string;
-	int  putToFile;
-{
-	int	i, qtype, result;
-	char	*namePtr;
-	char	name[NAME_LEN];
-	char	option[NAME_LEN];
-
-	/*
-	 *  Parse the command line. It maybe of the form "ls domain",
-	 *  "ls -X domain".
-	 */
-	i = sscanf(string, " ls %s %s", option, name);
-	if (putToFile && i == 2 && name[0] == '>') {
-	    i--;
-	}
-	if (i == 2) {
-	    if (strcmp("-a", option) == 0) {
-		qtype = T_CNAME;
-	    } else if (strcmp("-h", option) == 0) {
-		qtype = T_HINFO;
-	    } else if (strcmp("-m", option) == 0) {
-		qtype = T_MX;
-	    } else if (strcmp("-p", option) == 0) {
-		qtype = T_PX;
-	    } else if (strcmp("-s", option) == 0) {
-		qtype = T_WKS;
-	    } else if (strcmp("-d", option) == 0) {
-		qtype = T_ANY;
-	    } else if (strcmp("-n", option) == 0) {
-		qtype = T_NAPTR;
-	    } else {
-		qtype = T_A;
-	    }
-	    namePtr = name;
-	} else if (i == 1) {
-	    namePtr = option;
-	    qtype = T_A;
-	} else {
-	    fprintf(stderr, "*** ls: invalid request %s\n",string);
-	    return;
-	}
-	result = ListSubr(qtype, namePtr, putToFile ? string : NULL);
-	if (result != SUCCESS)
-	    fprintf(stderr, "*** Can't list domain %s: %s\n", 
-			namePtr, DecodeError(result));
-}
-
-int
-ListSubr(qtype, domain, cmd)
-	int qtype;
-	char *domain;
-	char *cmd;
-{
-	querybuf		buf;
-	struct sockaddr_in	sin;
-	HEADER			*headerPtr;
-	int			msglen;
-	int			amtToRead;
-	int			numRead, n;
-	int			numAnswers = 0;
-	int			numRecords = 0;
-	int			result;
-	int			soacnt = 0;
-	int			count, done;
-	u_short			len;
-	u_char			*cp;
-	char			dname[2][NAME_LEN];
-	char			file[NAME_LEN];
-	static u_char		*answer = NULL;
-	static int		answerLen = 0;
-	enum {
-	    NO_ERRORS,
-	    ERR_READING_LEN,
-	    ERR_READING_MSG,
-	    ERR_PRINTING
-	} error = NO_ERRORS;
-
-	/*
-	 *  Create a query packet for the requested domain name.
-	 */
-	msglen = res_mkquery(QUERY, domain, queryClass, T_AXFR,
-			     NULL, 0, 0, buf.qb2, sizeof buf);
-	if (msglen < 0) {
-	    if (_res.options & RES_DEBUG) {
-		fprintf(stderr, "*** ls: res_mkquery failed\n");
-	    }
-	    return (ERROR);
-	}
-
-	bzero((char *)&sin, sizeof(sin));
-	sin.sin_family	= AF_INET;
-	sin.sin_port	= htons(nsport);
-
-	/*
-	 *  Check to see if we have the address of the server or the
-	 *  address of a server who knows about this domain.
-	 *
-	 *  For now, just use the first address in the list.
-	 */
-
-	if (defaultPtr->addrList != NULL) {
-	  sin.sin_addr = *(struct in_addr *) defaultPtr->addrList[0];
-	} else {
-	  sin.sin_addr = *(struct in_addr *)defaultPtr->servers[0]->addrList[0];
-	}
-
-	/*
-	 *  Set up a virtual circuit to the server.
-	 */
-	if ((sockFD = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
-	    perror("ls: socket");
-	    return(ERROR);
-	}
-	if (connect(sockFD, (struct sockaddr *)&sin, sizeof(sin)) < 0) {
-	    int e;
-	    if (errno == ECONNREFUSED) {
-		e = NO_RESPONSE;
-	    } else {
-		perror("ls: connect");
-		e = ERROR;
-	    }
-	    (void) close(sockFD);
-	    sockFD = -1;
-	    return e;
-	}
-
-	/*
-	 * Send length & message for zone transfer
-	 */
-
-	__putshort(msglen, (u_char *)&len);
-
-        if (write(sockFD, (char *)&len, INT16SZ) != INT16SZ ||
-            write(sockFD, (char *) &buf, msglen) != msglen) {
-		perror("ls: write");
-		(void) close(sockFD);
-		sockFD = -1;
-		return(ERROR);
-	}
-
-	fprintf(stdout,"[%s]\n",
-		(defaultPtr->addrList != NULL) ? defaultPtr->name :
-		 defaultPtr->servers[0]->name);
-
-	if (cmd == NULL) {
-	    filePtr = stdout;
-	} else {
-	    filePtr = OpenFile(cmd, file);
-            if (filePtr == NULL) {
-                fprintf(stderr, "*** Can't open %s for writing\n", file);
-		(void) close(sockFD);
-		sockFD = -1;
-                return(ERROR);
-            }
-	    fprintf(filePtr, "> %s\n", cmd);
-	    fprintf(filePtr,"[%s]\n",
-		(defaultPtr->addrList != NULL) ? defaultPtr->name :
-		 defaultPtr->servers[0]->name);
-	}
-
-	dname[0][0] = '\0';
-	for (done = 0; !done; NULL) {
-	    unsigned short tmp;
-
-	    /*
-	     * Read the length of the response.
-	     */
-
-	    cp = (u_char *)&tmp;
-	    amtToRead = INT16SZ;
-	    while ((numRead = read(sockFD, cp, amtToRead)) > 0) {
-		cp += numRead;
-		if ((amtToRead -= numRead) <= 0)
-			break;
-	    }
-	    if (numRead <= 0) {
-		error = ERR_READING_LEN;
-		break;
-	    }
-
-	    if ((len = _getshort((u_char*)&tmp)) == 0) {
-		break;	/* nothing left to read */
-	    }
-
-	    /*
-	     * The server sent too much data to fit the existing buffer --
-	     * allocate a new one.
-	     */
-	    if (len > (u_int)answerLen) {
-		if (answerLen != 0) {
-		    free(answer);
-		}
-		answerLen = len;
-		answer = (u_char *)Malloc(answerLen);
-	    }
-
-	    /*
-	     * Read the response.
-	     */
-
-	    amtToRead = len;
-	    cp = answer;
-	    while (amtToRead > 0 && (numRead=read(sockFD, cp, amtToRead)) > 0) {
-		cp += numRead;
-		amtToRead -= numRead;
-	    }
-	    if (numRead <= 0) {
-		error = ERR_READING_MSG;
-		break;
-	    }
-
-	    result = PrintListInfo(filePtr, answer, cp, qtype, dname[0]);
-	    if (result != SUCCESS) {
-		error = ERR_PRINTING;
-		break;
-	    }
-	    numRecords += htons(((HEADER *)answer)->ancount);
-	    numAnswers++;
-	    if (cmd != NULL && ((numAnswers % HASH_SIZE) == 0)) {
-		fprintf(stdout, "#");
-		fflush(stdout);
-	    }
-	    /* Header. */
-	    cp = answer + HFIXEDSZ;
-	    /* Question. */
-	    for (count = ntohs(((HEADER* )answer)->qdcount);
-		 count > 0;
-		 count--)
-		    cp += dn_skipname(cp, answer + len) + QFIXEDSZ;
-	    /* Answer. */
-	    for (count = ntohs(((HEADER* )answer)->ancount);
-		 count > 0;
-		 count--) {
-		int type, class, rlen;
-
-		n = dn_expand(answer, answer + len, cp,
-			      dname[soacnt], sizeof dname[0]);
-		if (n < 0) {
-		    error = ERR_PRINTING;
-		    done++;
-		    break;
-		}
-		cp += n;
-		GETSHORT(type, cp);
-		GETSHORT(class, cp);
-		cp += INT32SZ;	/* ttl */
-		GETSHORT(rlen, cp);
-		cp += rlen;
-		if (type == T_SOA && soacnt++ &&
-		    !strcasecmp(dname[0], dname[1])) {
-		    done++;
-		    break;
-		}
-	    }
-	}
-
-	if (cmd != NULL) {
-	    fprintf(stdout, "%sReceived %d answer%s (%d record%s).\n",
-		(numAnswers >= HASH_SIZE) ? "\n" : "",
-		numAnswers, (numAnswers != 1) ? "s" : "",
-		numRecords, (numRecords != 1) ? "s" : "");
-	}
-
-	(void) close(sockFD);
-	sockFD = -1;
-	if (cmd != NULL && filePtr != NULL) {
-	    fclose(filePtr);
-	    filePtr = NULL;
-	}
-
-	switch (error) {
-	    case NO_ERRORS:
-		return (SUCCESS);
-
-	    case ERR_READING_LEN:
-		return(ERROR);
-
-	    case ERR_PRINTING:
-		return(result);
-
-	    case ERR_READING_MSG:
-		headerPtr = (HEADER *) answer;
-		fprintf(stderr,"*** ls: error receiving zone transfer:\n");
-		fprintf(stderr,
-	       "  result: %s, answers = %d, authority = %d, additional = %d\n",
-			_res_resultcodes[headerPtr->rcode],
-			ntohs(headerPtr->ancount), ntohs(headerPtr->nscount),
-			ntohs(headerPtr->arcount));
-		return(ERROR);
-	    default:
-		return(ERROR);
-	}
-}
-
-
-/*
- *******************************************************************************
- *
- *  PrintListInfo --
- *
- *	Used by the ListInfo routine to print the answer
- *	received from the name server. Only the desired
- *	information is printed.
- *
- *  Results:
- *	SUCCESS		the answer was printed without a problem.
- *	NO_INFO		the answer packet did not contain an answer.
- *	ERROR		the answer was malformed.
- *      Misc. errors	returned in the packet header.
- *
- *******************************************************************************
- */
-
-#define NAME_FORMAT " %-30s"
-
-static Boolean
-strip_domain(string, domain)
-    char *string, *domain;
-{
-    register char *dot;
-
-    if (*domain != '\0') {
-	dot = string;
-	while ((dot = strchr(dot, '.')) != NULL && strcasecmp(domain, ++dot))
-		;
-	if (dot != NULL) {
-	    dot[-1] = '\0';
-	    return TRUE;
-	}
-    }
-    return FALSE;
-}
-
-
-PrintListInfo(file, msg, eom, qtype, domain)
-    FILE	*file;
-    u_char	*msg, *eom;
-    int		qtype;
-    char	*domain;
-{
-    register u_char	*cp;
-    HEADER		*headerPtr;
-    int			type, class, dlen, nameLen;
-    u_int32_t		ttl;
-    int			n, pref, count;
-    struct in_addr	inaddr;
-    char		name[NAME_LEN];
-    char		name2[NAME_LEN];
-    Boolean		stripped;
-
-    /*
-     * Read the header fields.
-     */
-    headerPtr = (HEADER *)msg;
-    cp = msg + HFIXEDSZ;
-    if (headerPtr->rcode != NOERROR) {
-	return(headerPtr->rcode);
-    }
-
-    /*
-     *  We are looking for info from answer resource records.
-     *  If there aren't any, return with an error. We assume
-     *  there aren't any question records.
-     */
-
-    if (ntohs(headerPtr->ancount) == 0) {
-	return(NO_INFO);
-    }
-    for (n = ntohs(headerPtr->qdcount); n > 0; n--) {
-	nameLen = dn_skipname(cp, eom);
-	if (nameLen < 0)
-	    return (ERROR);
-	cp += nameLen + QFIXEDSZ;
-    }
-    for (count = ntohs(headerPtr->ancount); count > 0; count--) {
-	nameLen = dn_expand(msg, eom, cp, name, sizeof name);
-	if (nameLen < 0)
-	    return (ERROR);
-	cp += nameLen;
-
-	type = _getshort((u_char*)cp);
-	cp += INT16SZ;
-
-	if (!(type == qtype || qtype == T_ANY) &&
-	    !((type == T_NS || type == T_PTR) && qtype == T_A))
-		return(SUCCESS);
-
-	class = _getshort((u_char*)cp);
-	cp += INT16SZ;
-	ttl = _getlong((u_char*)cp);
-	cp += INT32SZ;
-	dlen = _getshort((u_char*)cp);
-	cp += INT16SZ;
-
-	if (name[0] == 0)
-		strcpy(name, "(root)");
-
-	/* Strip the domain name from the data, if desired. */
-	stripped = FALSE;
-	if ((_res.options & RES_DEBUG) == 0) {
-	    if (type != T_SOA) {
-		stripped = strip_domain(name, domain);
-	    }
-	}
-	if (!stripped && nameLen < sizeof(name)-1) {
-	    strcat(name, ".");
-	}
-
-	fprintf(file, NAME_FORMAT, name);
-
-	if (qtype == T_ANY) {
-	    if (_res.options & RES_DEBUG) {
-		fprintf(file,"\t%lu %-5s", ttl, p_class(queryClass));
-	    }
-	    fprintf(file," %-5s", p_type(type));
-	}
-
-	/* XXX merge this into debug.c's print routines */
-
-	switch (type) {
-	    case T_A:
-		if (class == C_IN) {
-		    bcopy(cp, (char *)&inaddr, INADDRSZ);
-		    if (dlen == 4) {
-			fprintf(file," %s", inet_ntoa(inaddr));
-		    } else if (dlen == 7) {
-			fprintf(file," %s", inet_ntoa(inaddr));
-			fprintf(file," (%d, %d)", cp[4],(cp[5] << 8) + cp[6]);
-		    } else
-			fprintf(file, " (dlen = %d?)", dlen);
-		}
-		cp += dlen;
-		break;
-
-	    case T_CNAME:
-	    case T_MB:
-	    case T_MG:
-	    case T_MR:
-		nameLen = dn_expand(msg, eom, cp, name2, sizeof name2);
-		if (nameLen < 0) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		fprintf(file, " %s", name2);
-		cp += nameLen;
-		break;
-
-	    case T_NS:
-	    case T_PTR:
-	    case T_NSAP_PTR:
-		putc(' ', file);
-		if (qtype != T_ANY)
-		    fprintf(file,"%s = ", type == T_PTR ? "host" : "server");
-		cp = (u_char *)Print_cdname2(cp, msg, eom, file);
-		if (!cp) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		break;
-
-	    case T_HINFO:
-	    case T_ISDN:
-		{
-		    u_char *cp2 = cp + dlen;
-		    if (n = *cp++) {
-			(void)sprintf(name,"%.*s", n, cp);
-			fprintf(file," %-10s", name);
-			cp += n;
-		    } else {
-			fprintf(file," %-10s", " ");
-		    }
-		    if (cp == cp2)
-			break;
-		    if (n = *cp++) {
-			fprintf(file,"  %.*s", n, cp);
-			cp += n;
-		    }
-		}
-		break;
-
-	    case T_SOA:
-		nameLen = dn_expand(msg, eom, cp, name2, sizeof name2);
-		if (nameLen < 0) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		cp += nameLen;
-		fprintf(file, " %s", name2);
-		nameLen = dn_expand(msg, eom, cp, name2, sizeof name2);
-		if (nameLen < 0) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		cp += nameLen;
-		fprintf(file, " %s. (", name2);
-		for (n = 0; n < 5; n++) {
-		    u_int32_t u;
-
-		    u = _getlong((u_char*)cp);
-		    cp += INT32SZ;
-		    fprintf(file,"%s%lu", n? " " : "", u);
-		}
-		fprintf(file, ")");
-		break;
-
-	    case T_MX:
-	    case T_AFSDB:
-		case T_RT:
-		pref = _getshort((u_char*)cp);
-		cp += INT16SZ;
-		fprintf(file," %-3d ",pref);
-		nameLen = dn_expand(msg, eom, cp, name2, sizeof name2);
-		if (nameLen < 0) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		fprintf(file, " %s", name2);
-		cp += nameLen;
-		break;
-
-	    case T_PX:
-		pref = _getshort((u_char*)cp);
-		cp += INT16SZ;
-		fprintf(file," %-3d ",pref);
-		nameLen = dn_expand(msg, eom, cp, name2, sizeof name2);
-		if (nameLen < 0) {
-			fprintf(file, " ***\n");
-			return (ERROR);
-		}
-		fprintf(file, " %s", name2);
-		cp += nameLen;
-		nameLen = dn_expand(msg, eom, cp, name2, sizeof name2);
-		if (nameLen < 0) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		fprintf(file, " %s", name2);
-		cp += nameLen;
-		break;
-
-	    case T_X25:
-		if (n = *cp++) {
-		    fprintf(file,"  %.*s", n, cp);
-		    cp += n;
-		}
-		break;
-
-	    case T_TXT:
-		{
-		    u_char *cp2 = cp + dlen;
-		    int c;
-
-		    while (cp < cp2) {
-		        (void) putc('"', file);
-			if (n = (unsigned char) *cp++)
-			    for (c = n; c > 0 && cp < cp2; c--) {
-				if (strchr("\n\"\\", *cp))
-				    (void) putc('\\', file);
-				(void) putc(*cp++, file);
-			    }
-			(void) putc('"', file);
-			if (cp < cp2)
-			    (void) putc(' ', file);
-		    }
-		}
-		break;
-
-	    case T_NSAP:
-		fprintf(file, " %s", inet_nsap_ntoa(dlen, cp, NULL));
-		cp += dlen;
-		break;
-
-	    case T_AAAA: {
-		char t[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"];
-
-		fprintf(file, " %s", inet_ntop(AF_INET6, cp, t, sizeof t));
-		cp += dlen;
-		break;
-	    }
-
-	    case T_LOC: {
-		char t[255];
-
-		fprintf(file, "\t%s", loc_ntoa(cp, t));
-		cp += dlen;
-		break;
-	    }
-
-	    case T_SRV: {
-		u_int priority, weight, port;
-
-		priority = _getshort(cp);  cp += INT16SZ;
-		weight   = _getshort(cp);  cp += INT16SZ;
-		port     = _getshort(cp);  cp += INT16SZ;
-		fprintf(file, "\t%u %u %u ", priority, weight, port);
-		if ((cp = (u_char *)Print_cdname(cp, msg, eom, file)) == NULL)
-			return (ERROR);
-		break;
-	    }
-
-	    case T_NAPTR: {
-		u_int order, preference;
-
-                GETSHORT(order, cp);
-                fprintf(file, "\t%u", order);
-
-                GETSHORT(preference, cp);
-                fprintf(file, " %u", preference);
-
-                if (n = *cp++) {
-                     fprintf(file, " \"%.*s\"", (int)n, cp);
-                     cp += n;
-                }
-                if (n = *cp++) {
-                     fprintf(file, " \"%.*s\"", (int)n, cp);
-                     cp += n;
-                }
-                if (n = *cp++) {
-                     fprintf(file, " \"%.*s\"", (int)n, cp);
-                     cp += n;
-                }
-		if ((cp = (u_char *)Print_cdname(cp, msg, eom, file)) == NULL)
-			return (ERROR);
-                break;
-	    }
-
-	    case T_MINFO:
-	    case T_RP:
-		(void) putc(' ', file);
-		cp = (u_char *)Print_cdname(cp, msg, eom, file);
-		if (!cp) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		fprintf(file, "  ");
-		cp = (u_char *)Print_cdname(cp, msg, eom, file);
-		if (!cp) {
-		    fprintf(file, " ***\n");
-		    return (ERROR);
-		}
-		break;
-
-	    case T_UINFO:
-		fprintf(file, " %s", cp);
-		cp += dlen;
-		break;
-
-	    case T_UID:
-	    case T_GID:
-		fprintf(file, " %lu", _getlong((u_char*)cp));
-		cp += dlen;
-		break;
-
-	    case T_WKS:
-		if (class == C_IN) {
-		    struct protoent *pp;
-		    struct servent *ss;
-		    u_short port;
-
-		    cp += 4; 	/* skip inet address */
-		    dlen -= 4;
-
-		    setprotoent(1);
-		    setservent(1);
-		    n = *cp & 0377;
-		    pp = getprotobynumber(n);
-		    if (pp == 0)
-			fprintf(file," %-3d ", n);
-		    else
-			fprintf(file," %-3s ", pp->p_name);
-		    cp++; dlen--;
-
-		    port = 0;
-		    while (dlen-- > 0) {
-			n = *cp++;
-			do {
-			    if (n & 0200) {
-				ss = getservbyport((int)htons(port),
-					    pp->p_name);
-				if (ss == 0)
-				    fprintf(file," %u", port);
-				else
-				    fprintf(file," %s", ss->s_name);
-			    }
-				n <<= 1;
-			} while (++port & 07);
-		    }
-		    endprotoent();
-		    endservent();
-		}
-		break;
-	}
-	fprintf(file,"\n");
-    }
-    return(SUCCESS);
-}
-
-
-/*
- *******************************************************************************
- *
- *  ViewList --
- *
- *	A hack to view the output of the ls command in sorted
- *	order using more.
- *
- *******************************************************************************
- */
-
-ViewList(string)
-    char *string;
-{
-    char file[PATH_MAX];
-    char command[PATH_MAX];
-
-    sscanf(string, " view %s", file);
-    (void)sprintf(command, "grep \"^ \" %s | sort | %s", file, pager);
-    system(command);
-}
-
-/*
- *******************************************************************************
- *
- *   Finger --
- *
- *	Connects with the finger server for the current host
- *	to request info on the specified person (long form)
- *	who is on the system (short form).
- *
- *  Results:
- *	SUCCESS		the finger server was contacted.
- *	ERROR		the server could not be contacted because
- *			a socket could not be obtained or connected
- *			to or the service could not be found.
- *
- *******************************************************************************
- */
-
-Finger(string, putToFile)
-    char *string;
-    int  putToFile;
-{
-	struct servent		*sp;
-	struct sockaddr_in	sin;
-	register FILE		*f;
-	register int		c;
-	register int		lastc;
-	char			name[NAME_LEN];
-	char			file[NAME_LEN];
-
-	/*
-	 *  We need a valid current host info to get an inet address.
-	 */
-	if (!curHostValid) {
-	    fprintf(stderr, "Finger: no current host defined.\n");
-	    return (ERROR);
-	}
-
-	if (sscanf(string, " finger %s", name) == 1) {
-	    if (putToFile && (name[0] == '>')) {
-		name[0] = '\0';
-	    }
-	} else {
-	    name[0] = '\0';
-	}
-
-	sp = getservbyname("finger", "tcp");
-	if (sp == 0) {
-	    fprintf(stderr, "Finger: unknown service\n");
-	    return (ERROR);
-	}
-
-	bzero((char *)&sin, sizeof(sin));
-	sin.sin_family	= curHostInfo.addrType;
-	sin.sin_port	= sp->s_port;
-	bcopy(curHostInfo.addrList[0], (char *)&sin.sin_addr,
-		curHostInfo.addrLen);
-
-	/*
-	 *  Set up a virtual circuit to the host.
-	 */
-
-	sockFD = socket(curHostInfo.addrType, SOCK_STREAM, 0);
-	if (sockFD < 0) {
-	    fflush(stdout);
-	    perror("finger: socket");
-	    return (ERROR);
-	}
-
-	if (connect(sockFD, (struct sockaddr *)&sin, sizeof (sin)) < 0) {
-	    fflush(stdout);
-	    perror("finger: connect");
-	    close(sockFD);
-	    sockFD = -1;
-	    return (ERROR);
-	}
-
-	if (!putToFile) {
-	    filePtr = stdout;
-	} else {
-	    filePtr = OpenFile(string, file);
-	    if (filePtr == NULL) {
-		fprintf(stderr, "*** Can't open %s for writing\n", file);
-		close(sockFD);
-		sockFD = -1;
-		return(ERROR);
-	    }
-	    fprintf(filePtr,"> %s\n", string);
-	}
-	fprintf(filePtr, "[%s]\n", curHostInfo.name);
-
-	if (name[0] != '\0') {
-	    write(sockFD, "/W ", 3);
-	}
-	write(sockFD, name, strlen(name));
-	write(sockFD, "\r\n", 2);
-	f = fdopen(sockFD, "r");
-	lastc = '\n';
-	while ((c = getc(f)) != EOF) {
-	    switch (c) {
-		case 0210:
-		case 0211:
-		case 0212:
-		case 0214:
-			c -= 0200;
-			break;
-		case 0215:
-			c = '\n';
-			break;
-	    }
-	    putc(lastc = c, filePtr);
-	}
-	if (lastc != '\n') {
-	    putc('\n', filePtr);
-	}
-	putc('\n', filePtr);
-
-	close(sockFD);
-	sockFD = -1;
-
-	if (putToFile) {
-	    fclose(filePtr);
-	    filePtr = NULL;
-	}
-	return (SUCCESS);
-}
-
-ListHost_close()
-{
-    if (sockFD != -1) {
-	(void) close(sockFD);
-	sockFD = -1;
-    }
-}
diff --git a/contrib/bind/tools/nslookup/main.c b/contrib/bind/tools/nslookup/main.c
deleted file mode 100644
index ff2e42954f2a9..0000000000000
--- a/contrib/bind/tools/nslookup/main.c
+++ /dev/null
@@ -1,1121 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-char copyright[] =
-"@(#) Copyright (c) 1985,1989 Regents of the University of California.\n\
- All rights reserved.\n";
-#endif /* not lint */
-
-#ifndef lint
-static char sccsid[] = "@(#)main.c	5.42 (Berkeley) 3/3/91";
-static char rcsid[] = "$Id: main.c,v 8.4 1996/11/11 06:36:54 vixie Exp $";
-#endif /* not lint */
-
-/*
- ******************************************************************************
- *  
- *   main.c --
- *  
- *	Main routine and some action routines for the name server
- *	lookup program.
- *
- *	Andrew Cherenson
- *	U.C. Berkeley Computer Science Div.
- *	CS298-26, Fall 1985
- *  
- ******************************************************************************
- */
-
-#include <sys/param.h>
-#include <netdb.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <resolv.h>
-#include <signal.h>
-#include <setjmp.h>
-#include <ctype.h>
-#include <stdio.h>
-#include <errno.h>
-#include <limits.h>
-#include "res.h"
-#include "pathnames.h"
-#include "../../conf/portability.h"
-
-
-/*
- * Name of a top-level name server. Can be changed with 
- * the "set root" command.
- */
-
-#ifndef ROOT_SERVER
-#define		ROOT_SERVER "a.root-servers.net."
-#endif
-char		rootServerName[NAME_LEN] = ROOT_SERVER;
-
-
-/*
- *  Import the state information from the resolver library.
- */
-
-extern struct __res_state _res;
-
-
-/*
- *  Info about the most recently queried host.
- */
-
-HostInfo	curHostInfo;
-int		curHostValid = FALSE;
-
-
-/*
- *  Info about the default name server.
- */
-
-HostInfo	*defaultPtr = NULL;
-char		defaultServer[NAME_LEN];
-struct in_addr	defaultAddr;
-
-
-/*
- *  Initial name server query type is Address.
- */
-
-int		queryType = T_A;
-int		queryClass = C_IN;
-
-/*
- * Stuff for Interrupt (control-C) signal handler.
- */
-
-extern SIG_FN	IntrHandler();
-FILE		*filePtr;
-jmp_buf		env;
-
-
-/*
- * Browser command for help and view.
- */
-char		*pager;
-
-static void CvtAddrToPtr();
-static void ReadRC();
-
-
-/*
- ******************************************************************************
- *
- *  main --
- *
- *	Initializes the resolver library and determines the address
- *	of the initial name server. The yylex routine is used to
- *	read and perform commands.
- *
- ******************************************************************************
- */
-
-main(argc, argv)
-    int		argc;
-    char	**argv;
-{
-    char	*wantedHost = NULL;
-    Boolean	useLocalServer;
-    int		result;
-    int		i;
-    struct hostent	*hp;
-
-    /*
-     *  Initialize the resolver library routines.
-     */
-
-    if (res_init() == -1) {
-	fprintf(stderr,"*** Can't initialize resolver.\n");
-	exit(1);
-    }
-
-    /*
-     *  Allocate space for the default server's host info and
-     *  find the server's address and name. If the resolver library
-     *  already has some addresses for a potential name server,
-     *  then use them. Otherwise, see if the current host has a server.
-     *  Command line arguments may override the choice of initial server. 
-     */
-
-    defaultPtr = (HostInfo *) Calloc(1, sizeof(HostInfo));
-
-    /*
-     * Parse the arguments:
-     *  no args =  go into interactive mode, use default host as server
-     *	1 arg	=  use as host name to be looked up, default host will be server
-     *		   non-interactive mode
-     *  2 args	=  1st arg: 
-     *		     if it is '-', then 
-     *		        ignore but go into interactive mode
-     *		     else 
-     *		         use as host name to be looked up, 
-     *			 go into non-interactive mode
-     *		2nd arg: name or inet address of server
-     *
-     *	"Set" options are specified with a leading - and must come before
-     *	any arguments. For example, to find the well-known services for
-     *  a host, type "nslookup -query=wks host"
-     */
-
-    ReadRC();			/* look for options file */
-
-    ++argv; --argc;		/* skip prog name */
-
-    while (argc && *argv[0] == '-' && argv[0][1]) {
-	(void) SetOption (&(argv[0][1]));
-	++argv; --argc;
-    }
-    if (argc > 2) {
-	Usage();
-    } 
-    if (argc && *argv[0] != '-') {
-	wantedHost = *argv;	/* name of host to be looked up */
-    }
-
-    useLocalServer = FALSE;
-    if (argc == 2) {
-	struct in_addr addr;
-
-	/*
-	 * Use an explicit name server. If the hostname lookup fails,
-	 * default to the server(s) in resolv.conf.
-	 */ 
-
-	if (inet_aton(*++argv, &addr)) {
-	    _res.nscount = 1;
-	    _res.nsaddr.sin_addr = addr;
-	} else {
-	    hp = gethostbyname(*argv);
-	    if (hp == NULL) {
-		fprintf(stderr, "*** Can't find server address for '%s': ", 
-			*argv);
-		herror((char *)NULL);
-		fputc('\n', stderr);
-	    } else {
-		for (i = 0; i < MAXNS && hp->h_addr_list[i] != NULL; i++) {
-		    bcopy(hp->h_addr_list[i], 
-			    (char *)&_res.nsaddr_list[i].sin_addr, 
-			    hp->h_length);
-		}
-		_res.nscount = i;
-	    } 
-	}
-    }
-
-
-    if (_res.nscount == 0 || useLocalServer) {
-	LocalServer(defaultPtr);
-    } else {
-	for (i = 0; i < _res.nscount; i++) {
-	    if (_res.nsaddr_list[i].sin_addr.s_addr == INADDR_ANY) {
-	        LocalServer(defaultPtr);
-		break;
-	    } else {
-		result = GetHostInfoByAddr(&(_res.nsaddr_list[i].sin_addr), 
-				    &(_res.nsaddr_list[i].sin_addr), 
-				    defaultPtr);
-		if (result != SUCCESS) {
-		    fprintf(stderr,
-		    "*** Can't find server name for address %s: %s\n", 
-		       inet_ntoa(_res.nsaddr_list[i].sin_addr), 
-		       DecodeError(result));
-		} else {
-		    defaultAddr = _res.nsaddr_list[i].sin_addr;
-		    break;
-		}
-	    }
-	}
-
-	/*
-	 *  If we have exhausted the list, tell the user about the
-	 *  command line argument to specify an address.
-	 */
-
-	if (i == _res.nscount) {
-	    fprintf(stderr, "*** Default servers are not available\n");
-	    exit(1);
-	}
-
-    }
-    strcpy(defaultServer, defaultPtr->name);
-
-
-#ifdef DEBUG
-#ifdef DEBUG2
-    _res.options |= RES_DEBUG2;
-#endif
-    _res.options |= RES_DEBUG;
-    _res.retry    = 2;
-#endif /* DEBUG */
-
-    /*
-     * If we're in non-interactive mode, look up the wanted host and quit.
-     * Otherwise, print the initial server's name and continue with
-     * the initialization.
-     */
-
-    if (wantedHost != (char *) NULL) {
-	LookupHost(wantedHost, 0);
-    } else {
-	PrintHostInfo(stdout, "Default Server:", defaultPtr);
-
-	pager = getenv("PAGER");
-	if (pager == NULL) {
-	    pager = _PATH_PAGERCMD;
-	}
-
-	/*
-	 * Setup the environment to allow the interrupt handler to return here.
-	 */
-
-	(void) setjmp(env);
-
-	/* 
-	 * Return here after a longjmp.
-	 */
-
-	signal(SIGINT, IntrHandler);
-	signal(SIGPIPE, SIG_IGN);
-
-	/*
-	 * Read and evaluate commands. The commands are described in commands.l
-	 * Yylex returns 0 when ^D or 'exit' is typed. 
-	 */
-
-	printf("> ");
-	fflush(stdout);
-	while(yylex()) {
-	    printf("> ");
-	    fflush(stdout);
-	}
-    }
-    exit(0);
-}
-
-
-LocalServer(defaultPtr)
-    HostInfo *defaultPtr;
-{
-    char	hostName[NAME_LEN];
-
-    (void) gethostname(hostName, sizeof(hostName));
-
-    defaultAddr.s_addr = htonl(INADDR_ANY);
-    (void) GetHostInfoByName(&defaultAddr, C_IN, T_A,
-			     "0.0.0.0", defaultPtr, 1);
-    free(defaultPtr->name);
-    defaultPtr->name = Calloc(1, sizeof(hostName)+1);
-    strcpy(defaultPtr->name, hostName);
-}
-
-
-/*
- ******************************************************************************
- *
- *  Usage --
- *
- *	Lists the proper methods to run the program and exits.
- *
- ******************************************************************************
- */
-
-Usage()
-{
-    fprintf(stderr, "Usage:\n");
-    fprintf(stderr,
-"   nslookup [-opt ...]             # interactive mode using default server\n");
-    fprintf(stderr,
-"   nslookup [-opt ...] - server    # interactive mode using 'server'\n");
-    fprintf(stderr,
-"   nslookup [-opt ...] host        # just look up 'host' using default server\n");
-    fprintf(stderr,
-"   nslookup [-opt ...] host server # just look up 'host' using 'server'\n");
-    exit(1);
-}
-
-/*
- ******************************************************************************
- *
- * IsAddr --
- *
- *	Returns TRUE if the string looks like an Internet address.
- *	A string with a trailing dot is not an address, even if it looks
- *	like one.
- *
- ******************************************************************************
- */
-
-Boolean
-IsAddr(host, addrPtr)
-    char *host;
-    struct in_addr *addrPtr;	/* If return TRUE, contains IP address */
-{
-    register char *cp;
-
-    if (isdigit(host[0])) {
-	    /* Make sure it has only digits and dots. */
-	    for (cp = host; *cp; ++cp) {
-		if (!isdigit(*cp) && *cp != '.') 
-		    return FALSE;
-	    }
-	    /* If it has a trailing dot, don't treat it as an address. */
-	    if (*--cp != '.') { 
-		return inet_aton(host, addrPtr);
-	    }
-    }
-    return FALSE;
-}
-
-
-/*
- ******************************************************************************
- *
- *  SetDefaultServer --
- *
- *	Changes the default name server to the one specified by
- *	the first argument. The command "server name" uses the current 
- *	default server to lookup the info for "name". The command
- *	"lserver name" uses the original server to lookup "name".
- *
- *  Side effects:
- *	This routine will cause a core dump if the allocation requests fail.
- *
- *  Results:
- *	SUCCESS		The default server was changed successfully.
- *	NONAUTH		The server was changed but addresses of
- *			other servers who know about the requested server
- *			were returned.
- *	Errors		No info about the new server was found or
- *			requests to the current server timed-out.
- *
- ******************************************************************************
- */
-
-int
-SetDefaultServer(string, local)
-    char	*string;
-    Boolean	local;
-{
-    register HostInfo	*newDefPtr;
-    struct in_addr	*servAddrPtr;
-    struct in_addr	addr;
-    char		newServer[NAME_LEN];
-    int			result;
-    int			i;
-
-    /*
-     *  Parse the command line. It maybe of the form "server name",
-     *  "lserver name" or just "name".
-     */
-
-    if (local) {
-	i = sscanf(string, " lserver %s", newServer);
-    } else {
-	i = sscanf(string, " server %s", newServer);
-    }
-    if (i != 1) {
-	i = sscanf(string, " %s", newServer);
-	if (i != 1) {
-	    fprintf(stderr,"SetDefaultServer: invalid name: %s\n",  string);
-	    return(ERROR);
-	}
-    }
-
-    /*
-     * Allocate space for a HostInfo variable for the new server. Don't
-     * overwrite the old HostInfo struct because info about the new server
-     * might not be found and we need to have valid default server info.
-     */
-
-    newDefPtr = (HostInfo *) Calloc(1, sizeof(HostInfo));
-
-
-    /*
-     *	A 'local' lookup uses the original server that the program was
-     *  initialized with.
-     *
-     *  Check to see if we have the address of the server or the
-     *  address of a server who knows about this domain.
-     *  XXX For now, just use the first address in the list.
-     */
-
-    if (local) {
-	servAddrPtr = &defaultAddr;
-    } else if (defaultPtr->addrList != NULL) {
-	servAddrPtr = (struct in_addr *) defaultPtr->addrList[0];
-    } else {
-	servAddrPtr = (struct in_addr *) defaultPtr->servers[0]->addrList[0];
-    }
-
-    result = ERROR;
-    if (IsAddr(newServer, &addr)) {
-	result = GetHostInfoByAddr(servAddrPtr, &addr, newDefPtr);
-	/* If we can't get the name, fall through... */
-    } 
-    if (result != SUCCESS && result != NONAUTH) {
-	result = GetHostInfoByName(servAddrPtr, C_IN, T_A, 
-			newServer, newDefPtr, 1);
-    }
-
-    /* If we ask for an A record and get none back, but get an NS
-       record for the NS server, this is the NONAUTH case.
-       We must check whether we got an IP address for the NS
-       server or not.  */
-    if ((result == SUCCESS || result == NONAUTH) &&
-	((newDefPtr->addrList && newDefPtr->addrList[0] != 0) || 
-	 (newDefPtr->servers && newDefPtr->servers[0] &&
-			newDefPtr->servers[0]->addrList[0] != 0))) {
-	    /*
-	     *  Found info about the new server. Free the resources for
-	     *  the old server.
-	     */
-
-	    FreeHostInfoPtr(defaultPtr);
-	    free((char *)defaultPtr);
-	    defaultPtr = newDefPtr;
-	    strcpy(defaultServer, defaultPtr->name);
-	    PrintHostInfo(stdout, "Default Server:", defaultPtr);
-	    return(SUCCESS);
-    } else {
-	    fprintf(stderr, "*** Can't find address for server %s: %s\n",
-		    newServer, DecodeError(result));
-	    free((char *)newDefPtr);
-
-	    return(result);
-    }
-}
-
-/*
- ******************************************************************************
- *
- * DoLoookup --
- *
- *	Common subroutine for LookupHost and LookupHostWithServer.
- *
- *  Results:
- *	SUCCESS		- the lookup was successful.
- *	Misc. Errors	- an error message is printed if the lookup failed.
- *
- ******************************************************************************
- */
-
-static int
-DoLookup(host, servPtr, serverName)
-    char	*host;
-    HostInfo	*servPtr;
-    char	*serverName;
-{
-    int result;
-    struct in_addr *servAddrPtr;
-    struct in_addr addr; 
-
-    /* Skip escape character */
-    if (host[0] == '\\')
-	host++;
-
-    /*
-     *  If the user gives us an address for an address query, 
-     *  silently treat it as a PTR query. If the query type is already
-     *  PTR, then convert the address into the in-addr.arpa format.
-     *
-     *  Use the address of the server if it exists, otherwise use the
-     *	address of a server who knows about this domain.
-     *  XXX For now, just use the first address in the list.
-     */
-
-    if (servPtr->addrList != NULL) {
-	servAddrPtr = (struct in_addr *) servPtr->addrList[0];
-    } else {
-	servAddrPtr = (struct in_addr *) servPtr->servers[0]->addrList[0];
-    }
-
-    /* 
-     * RFC1123 says we "SHOULD check the string syntactically for a 
-     * dotted-decimal number before looking it up [...]" (p. 13).
-     */
-    if (queryType == T_A && IsAddr(host, &addr)) {
-	result = GetHostInfoByAddr(servAddrPtr, &addr, &curHostInfo);
-    } else {
-	if (queryType == T_PTR) {
-	    CvtAddrToPtr(host);
-	} 
-	result = GetHostInfoByName(servAddrPtr, queryClass, queryType, host, 
-			&curHostInfo, 0);
-    }
-
-    switch (result) {
-	case SUCCESS:
-	    /*
-	     *  If the query was for an address, then the &curHostInfo
-	     *  variable can be used by Finger.
-	     *  There's no need to print anything for other query types
-	     *  because the info has already been printed.
-	     */
-	    if (queryType == T_A) {
-		curHostValid = TRUE;
-		PrintHostInfo(filePtr, "Name:", &curHostInfo);
-	    }
-	    break;
-
-	/*
-	 * No Authoritative answer was available but we got names
-	 * of servers who know about the host.
-	 */
-	case NONAUTH:
-	    PrintHostInfo(filePtr, "Name:", &curHostInfo);
-	    break;
-
-	case NO_INFO:
-	    fprintf(stderr, "*** No %s (%s) records available for %s\n", 
-			DecodeType(queryType), p_type(queryType), host);
-	    break;
-
-	case TIME_OUT:
-	    fprintf(stderr, "*** Request to %s timed-out\n", serverName);
-	    break;
-
-	default:
-	    fprintf(stderr, "*** %s can't find %s: %s\n", serverName, host,
-		    DecodeError(result));
-    }
-    return result;
-}
-
-/*
- ******************************************************************************
- *
- *  LookupHost --
- *
- *	Asks the default name server for information about the
- *	specified host or domain. The information is printed
- *	if the lookup was successful.
- *
- *  Results:
- *	ERROR		- the output file could not be opened.
- *	+ results of DoLookup
- *
- ******************************************************************************
- */
-
-int
-LookupHost(string, putToFile)
-    char	*string;
-    Boolean	putToFile;
-{
-    char	host[NAME_LEN];
-    char	file[PATH_MAX];
-    int		result;
-
-    /*
-     *  Invalidate the current host information to prevent Finger 
-     *  from using bogus info.
-     */
-
-    curHostValid = FALSE;
-
-    /*
-     *	 Parse the command string into the host and
-     *	 optional output file name.
-     *
-     */
-
-    sscanf(string, " %s", host);	/* removes white space */
-    if (!putToFile) {
-	filePtr = stdout;
-    } else {
-	filePtr = OpenFile(string, file);
-	if (filePtr == NULL) {
-	    fprintf(stderr, "*** Can't open %s for writing\n", file);
-	    return(ERROR);
-	}
-	fprintf(filePtr,"> %s\n", string);
-    }
-
-    PrintHostInfo(filePtr, "Server:", defaultPtr);
-
-    result = DoLookup(host, defaultPtr, defaultServer);
-
-    if (putToFile) {
-	fclose(filePtr);
-	filePtr = NULL;
-    }
-    return(result);
-}
-
-/*
- ******************************************************************************
- *
- *  LookupHostWithServer --
- *
- *	Asks the name server specified in the second argument for 
- *	information about the host or domain specified in the first
- *	argument. The information is printed if the lookup was successful.
- *
- *	Address info about the requested name server is obtained
- *	from the default name server. This routine will return an
- *	error if the default server doesn't have info about the 
- *	requested server. Thus an error return status might not
- *	mean the requested name server doesn't have info about the
- *	requested host.
- *
- *	Comments from LookupHost apply here, too.
- *
- *  Results:
- *	ERROR		- the output file could not be opened.
- *	+ results of DoLookup
- *
- ******************************************************************************
- */
-
-int
-LookupHostWithServer(string, putToFile)
-    char	*string;
-    Boolean	putToFile;
-{
-    char	file[PATH_MAX];
-    char	host[NAME_LEN];
-    char	server[NAME_LEN];
-    int		result;
-    static HostInfo serverInfo;
-
-    curHostValid = FALSE;
-
-    sscanf(string, " %s %s", host, server);
-    if (!putToFile) {
-	filePtr = stdout;
-    } else {
-	filePtr = OpenFile(string, file);
-	if (filePtr == NULL) {
-	    fprintf(stderr, "*** Can't open %s for writing\n", file);
-	    return(ERROR);
-	}
-	fprintf(filePtr,"> %s\n", string);
-    }
-    
-    result = GetHostInfoByName(
-		defaultPtr->addrList ?
-		    (struct in_addr *) defaultPtr->addrList[0] :
-		    (struct in_addr *) defaultPtr->servers[0]->addrList[0], 
-		C_IN, T_A, server, &serverInfo, 1);
-
-    if (result != SUCCESS) {
-	fprintf(stderr,"*** Can't find address for server %s: %s\n", server,
-		 DecodeError(result));
-    } else {
-	PrintHostInfo(filePtr, "Server:", &serverInfo);
-
-	result = DoLookup(host, &serverInfo, server);
-    }
-    if (putToFile) {
-	fclose(filePtr);
-	filePtr = NULL;
-    }
-    return(result);
-}
-
-/*
- ******************************************************************************
- *
- *  SetOption -- 
- *
- *	This routine is used to change the state information
- *	that affect the lookups. The command format is
- *	   set keyword[=value]
- *	Most keywords can be abbreviated. Parsing is very simplistic--
- *	A value must not be separated from its keyword by white space.
- *
- *	Valid keywords:		Meaning:
- *	all			lists current values of options.
- *	ALL			lists current values of options, including
- *				  hidden options.
- *	[no]d2			turn on/off extra debugging mode.
- *	[no]debug		turn on/off debugging mode.
- *	[no]defname		use/don't use default domain name.
- *	[no]search		use/don't use domain search list.
- *	domain=NAME		set default domain name to NAME.
- *	[no]ignore		ignore/don't ignore trunc. errors.
- *	query=value		set default query type to value,
- *				value is one of the query types in RFC883
- *				without the leading T_.	(e.g., A, HINFO)
- *	[no]recurse		use/don't use recursive lookup.
- *	retry=#			set number of retries to #.
- *	root=NAME		change root server to NAME.
- *	time=#			set timeout length to #.
- *	[no]vc			use/don't use virtual circuit.
- *	port			TCP/UDP port to server.
- *
- * 	Deprecated:
- *	[no]primary		use/don't use primary server.
- *
- *  Results:
- *	SUCCESS		the command was parsed correctly.
- *	ERROR		the command was not parsed correctly.
- *
- ******************************************************************************
- */
-
-int
-SetOption(option)
-    register char *option;
-{
-    char	type[NAME_LEN];
-    char	*ptr;
-    int		tmp;
-
-    while (isspace(*option))
-	++option;
-    if (strncmp (option, "set ", 4) == 0)
-	option += 4;
-    while (isspace(*option))
-	++option;
-
-    if (*option == 0) {
-	fprintf(stderr, "*** Invalid set command\n");
-	return(ERROR);
-    } else {
-	if (strncmp(option, "all", 3) == 0) {
-	    ShowOptions();
-	} else if (strncmp(option, "ALL", 3) == 0) {
-	    ShowOptions();
-	} else if (strncmp(option, "d2", 2) == 0) {	/* d2 (more debug) */
-	    _res.options |= (RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "nod2", 4) == 0) {
-	    _res.options &= ~RES_DEBUG2;
-	    printf("d2 mode disabled; still in debug mode\n");
-	} else if (strncmp(option, "def", 3) == 0) {	/* defname */
-	    _res.options |= RES_DEFNAMES;
-	} else if (strncmp(option, "nodef", 5) == 0) {
-	    _res.options &= ~RES_DEFNAMES;
-	} else if (strncmp(option, "do", 2) == 0) {	/* domain */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%s", _res.defdname);
-		res_re_init();
-	    }
-	} else if (strncmp(option, "deb", 1) == 0) {	/* debug */
-	    _res.options |= RES_DEBUG;
-	} else if (strncmp(option, "nodeb", 5) == 0) {
-	    _res.options &= ~(RES_DEBUG | RES_DEBUG2);
-	} else if (strncmp(option, "ig", 2) == 0) {	/* ignore */
-	    _res.options |= RES_IGNTC;
-	} else if (strncmp(option, "noig", 4) == 0) {
-	    _res.options &= ~RES_IGNTC;
-	} else if (strncmp(option, "po", 2) == 0) {	/* port */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%hu", &nsport);
-	    }
-#ifdef deprecated
-	} else if (strncmp(option, "pri", 3) == 0) {	/* primary */
-	    _res.options |= RES_PRIMARY;
-	} else if (strncmp(option, "nopri", 5) == 0) {
-	    _res.options &= ~RES_PRIMARY;
-#endif
-	} else if (strncmp(option, "q", 1) == 0 ||	/* querytype */
-	  strncmp(option, "ty", 2) == 0) {		/* type */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%s", type);
-		queryType = StringToType(type, queryType, stderr);
-	    }
-	} else if (strncmp(option, "cl", 2) == 0) {	/* query class */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%s", type);
-		queryClass = StringToClass(type, queryClass, stderr);
-	    }
-	} else if (strncmp(option, "rec", 3) == 0) {	/* recurse */
-	    _res.options |= RES_RECURSE;
-	} else if (strncmp(option, "norec", 5) == 0) {
-	    _res.options &= ~RES_RECURSE;
-	} else if (strncmp(option, "ret", 3) == 0) {	/* retry */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%d", &tmp);
-		if (tmp >= 0) {
-		    _res.retry = tmp;
-		}
-	    }
-	} else if (strncmp(option, "ro", 2) == 0) {	/* root */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%s", rootServerName);
-	    }
-	} else if (strncmp(option, "sea", 3) == 0) {	/* search list */
-	    _res.options |= RES_DNSRCH;
-	} else if (strncmp(option, "nosea", 5) == 0) {
-	    _res.options &= ~RES_DNSRCH;
-	} else if (strncmp(option, "srchl", 5) == 0) {	/* domain search list */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		res_dnsrch(++ptr);
-	    }
-	} else if (strncmp(option, "ti", 2) == 0) {	/* timeout */
-	    ptr = strchr(option, '=');
-	    if (ptr != NULL) {
-		sscanf(++ptr, "%d", &tmp);
-		if (tmp >= 0) {
-		    _res.retrans = tmp;
-		}
-	    }
-	} else if (strncmp(option, "v", 1) == 0) {	/* vc */
-	    _res.options |= RES_USEVC;
-	} else if (strncmp(option, "nov", 3) == 0) {
-	    _res.options &= ~RES_USEVC;
-	} else {
-	    fprintf(stderr, "*** Invalid option: %s\n",  option);
-	    return(ERROR);
-	}
-    }
-    return(SUCCESS);
-}
-
-/*
- * Fake a reinitialization when the domain is changed.
- */
-res_re_init()
-{
-    register char *cp, **pp;
-    int n;
-
-    /* find components of local domain that might be searched */
-    pp = _res.dnsrch;
-    *pp++ = _res.defdname;
-    for (cp = _res.defdname, n = 0; *cp; cp++)
-	if (*cp == '.')
-	    n++;
-    cp = _res.defdname;
-    for (; n >= LOCALDOMAINPARTS && pp < _res.dnsrch + MAXDFLSRCH; n--) {
-	cp = strchr(cp, '.');
-	*pp++ = ++cp;
-    }
-    *pp = 0;
-    _res.options |= RES_INIT;
-}
-
-#define SRCHLIST_SEP '/'
-
-res_dnsrch(cp)
-    register char *cp;
-{
-    register char **pp;
-    int n;
-
-    (void)strncpy(_res.defdname, cp, sizeof(_res.defdname) - 1);
-    if ((cp = strchr(_res.defdname, '\n')) != NULL)
-	    *cp = '\0';
-    /*
-     * Set search list to be blank-separated strings
-     * on rest of line.
-     */
-    cp = _res.defdname;
-    pp = _res.dnsrch;
-    *pp++ = cp;
-    for (n = 0; *cp && pp < _res.dnsrch + MAXDNSRCH; cp++) {
-	    if (*cp == SRCHLIST_SEP) {
-		    *cp = '\0';
-		    n = 1;
-	    } else if (n) {
-		    *pp++ = cp;
-		    n = 0;
-	    }
-    }
-    if ((cp = strchr(pp[-1], SRCHLIST_SEP)) != NULL) {
-	*cp = '\0';
-    }
-    *pp = NULL;
-}
-
-
-/*
- ******************************************************************************
- *
- *  ShowOptions --
- *
- *	Prints out the state information used by the resolver
- *	library and other options set by the user.
- *
- ******************************************************************************
- */
-
-void
-ShowOptions()
-{
-    register char **cp;
-
-    PrintHostInfo(stdout, "Default Server:", defaultPtr);
-    if (curHostValid) {
-	PrintHostInfo(stdout, "Host:", &curHostInfo);
-    }
-
-    printf("Set options:\n");
-    printf("  %sdebug  \t", (_res.options & RES_DEBUG) ? "" : "no");
-    printf("  %sdefname\t", (_res.options & RES_DEFNAMES) ? "" : "no");
-    printf("  %ssearch\t", (_res.options & RES_DNSRCH) ? "" : "no");
-    printf("  %srecurse\n", (_res.options & RES_RECURSE) ? "" : "no");
-
-    printf("  %sd2\t\t", (_res.options & RES_DEBUG2) ? "" : "no");
-    printf("  %svc\t\t", (_res.options & RES_USEVC) ? "" : "no");
-    printf("  %signoretc\t", (_res.options & RES_IGNTC) ? "" : "no");
-    printf("  port=%u\n", nsport);
-
-    printf("  querytype=%s\t", p_type(queryType));
-    printf("  class=%s\t", p_class(queryClass));
-    printf("  timeout=%d\t", _res.retrans);
-    printf("  retry=%d\n", _res.retry);
-    printf("  root=%s\n", rootServerName);
-    printf("  domain=%s\n", _res.defdname);
-    
-    if (cp = _res.dnsrch) {
-	printf("  srchlist=%s", *cp);
-	for (cp++; *cp; cp++) {
-	    printf("%c%s", SRCHLIST_SEP, *cp);
-	}
-	putchar('\n');
-    }
-    putchar('\n');
-}
-#undef SRCHLIST_SEP
-
-/*
- ******************************************************************************
- *
- *  PrintHelp --
- *
- *	Displays the help file.
- *
- ******************************************************************************
- */
-
-void
-PrintHelp()
-{
-	char cmd[PATH_MAX];
-
-	sprintf(cmd, "%s %s", pager, _PATH_HELPFILE);
-	system(cmd);
-}
-
-/*
- ******************************************************************************
- *
- * CvtAddrToPtr --
- *
- *	Convert a dotted-decimal Internet address into the standard
- *	PTR format (reversed address with .in-arpa. suffix).
- *
- *	Assumes the argument buffer is large enougth to hold the result.
- *
- ******************************************************************************
- */
-
-static void
-CvtAddrToPtr(name)
-    char *name;
-{
-    char *p;
-    int ip[4];
-    struct in_addr addr;
-
-    if (IsAddr(name, &addr)) {
-	p = inet_ntoa(addr);
-	if (sscanf(p, "%d.%d.%d.%d", &ip[0], &ip[1], &ip[2], &ip[3]) == 4) {
-	    sprintf(name, "%d.%d.%d.%d.in-addr.arpa.", 
-		ip[3], ip[2], ip[1], ip[0]);
-	}
-    }
-}
-
-/*
- ******************************************************************************
- *
- * ReadRC --
- *
- *	Use the contents of ~/.nslookuprc as options.
- *
- ******************************************************************************
- */
-
-static void
-ReadRC()
-{
-    register FILE *fp;
-    register char *cp;
-    char buf[PATH_MAX];
-
-    if ((cp = getenv("HOME")) != NULL &&
-	(strlen(cp) + strlen(_PATH_NSLOOKUPRC)) < sizeof(buf)) {
-
-	(void) strcpy(buf, cp);
-	(void) strcat(buf, _PATH_NSLOOKUPRC);
-
-	if ((fp = fopen(buf, "r")) != NULL) {
-	    while (fgets(buf, sizeof(buf), fp) != NULL) {
-		if ((cp = strchr(buf, '\n')) != NULL) {
-		    *cp = '\0';
-		}
-		(void) SetOption(buf);
-	    }
-	    (void) fclose(fp);
-	}
-    }
-}
diff --git a/contrib/bind/tools/nslookup/nslookup.help b/contrib/bind/tools/nslookup/nslookup.help
deleted file mode 100644
index 9876e6f766523..0000000000000
--- a/contrib/bind/tools/nslookup/nslookup.help
+++ /dev/null
@@ -1,34 +0,0 @@
-$Id: nslookup.help,v 8.4 1996/10/08 04:51:08 vixie Exp $
-
-Commands: 	(identifiers are shown in uppercase, [] means optional)
-NAME		- print info about the host/domain NAME using default server
-NAME1 NAME2	- as above, but use NAME2 as server
-help or ?	- print info on common commands; see nslookup(1) for details
-set OPTION	- set an option
-    all		- print options, current server and host
-    [no]debug	- print debugging information
-    [no]d2	- print exhaustive debugging information
-    [no]defname	- append domain name to each query 
-    [no]recurse	- ask for recursive answer to query
-    [no]vc	- always use a virtual circuit
-    domain=NAME	- set default domain name to NAME
-    srchlist=N1[/N2/.../N6] - set domain to N1 and search list to N1,N2, etc.
-    root=NAME	- set root server to NAME
-    retry=X	- set number of retries to X
-    timeout=X	- set initial time-out interval to X seconds
-    querytype=X	- set query type, e.g., A,ANY,CNAME,HINFO,MX,PX,NS,PTR,SOA,TXT,WKS,SRV,NAPTR
-    port=X	- set port number to send query on
-    type=X	- synonym for querytype
-    class=X	- set query class to one of IN (Internet), CHAOS, HESIOD or ANY
-server NAME	- set default server to NAME, using current default server
-lserver NAME	- set default server to NAME, using initial server
-finger [USER]	- finger the optional USER at the current default host
-root		- set current default server to the root
-ls [opt] DOMAIN [> FILE] - list addresses in DOMAIN (optional: output to FILE)
-    -a 		-  list canonical names and aliases
-    -h 		-  list HINFO (CPU type and operating system)
-    -s 		-  list well-known services
-    -d 		-  list all records
-    -t TYPE 	-  list records of the given type (e.g., A,CNAME,MX, etc.)
-view FILE	- sort an 'ls' output file and view it with more
-exit		- exit the program, ^D also exits
diff --git a/contrib/bind/tools/nslookup/pathnames.h b/contrib/bind/tools/nslookup/pathnames.h
deleted file mode 100644
index bfeae4f8ab24d..0000000000000
--- a/contrib/bind/tools/nslookup/pathnames.h
+++ /dev/null
@@ -1,71 +0,0 @@
-/*
- * ++Copyright++ 1990
- * -
- * Copyright (c) 1990
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- *	@(#)pathnames.h	5.1 (Berkeley) 5/28/90
- *	$Id: pathnames.h,v 8.1 1994/12/15 06:24:31 vixie Exp $
- */
-
-#define	_PATH_NSLOOKUPRC	"/.nslookuprc"
-#define _PATH_PAGERCMD		"more"
-
-#ifndef _PATH_HELPFILE
-#if defined(BSD) && BSD >= 198810
-#define	_PATH_HELPFILE		"/usr/share/misc/nslookup.help"
-#else
-#define _PATH_HELPFILE		"/usr/lib/nslookup.help"
-#endif
-#endif
-
diff --git a/contrib/bind/tools/nslookup/res.h b/contrib/bind/tools/nslookup/res.h
deleted file mode 100644
index 6fe43c84ed826..0000000000000
--- a/contrib/bind/tools/nslookup/res.h
+++ /dev/null
@@ -1,177 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-/*
- *	@(#)res.h	5.10 (Berkeley) 6/1/90
- *	$Id: res.h,v 8.3 1996/12/02 09:17:24 vixie Exp $
- */
-
-/*
- *******************************************************************************
- *
- *  res.h --
- *
- *	Definitions used by modules of the name server lookup program.
- *
- *	Copyright (c) 1985
- *	Andrew Cherenson
- *	U.C. Berkeley
- *	CS298-26  Fall 1985
- * 
- *******************************************************************************
- */
-
-#define TRUE	1
-#define FALSE	0
-typedef int Boolean;
-
-#define MAXALIASES	35
-#define MAXADDRS	35
-#define MAXDOMAINS	35
-#define MAXSERVERS	10
-
-/*
- *  Define return statuses in addtion to the ones defined in namserv.h
- *   let SUCCESS be a synonym for NOERROR
- *
- *	TIME_OUT	- a socket connection timed out.
- *	NO_INFO		- the server didn't find any info about the host.
- *	ERROR		- one of the following types of errors:
- *			   dn_expand, res_mkquery failed
- *			   bad command line, socket operation failed, etc.
- *	NONAUTH		- the server didn't have the desired info but
- *			  returned the name(s) of some servers who should.
- *	NO_RESPONSE	- the server didn't respond.
- *
- */
-
-#define  SUCCESS		0
-#define  TIME_OUT		-1
-#define  NO_INFO		-2
-#define  ERROR			-3
-#define  NONAUTH		-4
-#define  NO_RESPONSE		-5
-
-/*
- *  Define additional options for the resolver state structure.
- *
- *   RES_DEBUG2		more verbose debug level
- */
-
-#define RES_DEBUG2	0x80000000
-
-/*
- *  Maximum length of server, host and file names.
- */
-
-#define NAME_LEN 256
-
-
-/*
- * Modified struct hostent from <netdb.h>
- *
- * "Structures returned by network data base library.  All addresses
- * are supplied in host order, and returned in network order (suitable
- * for use in system calls)."
- */
-
-typedef struct	{
-	char	*name;		/* official name of host */
-	char	**domains;	/* domains it serves */
-	char	**addrList;	/* list of addresses from name server */
-} ServerInfo;
-
-typedef struct	{
-	char	*name;		/* official name of host */
-	char	**aliases;	/* alias list */
-	char	**addrList;	/* list of addresses from name server */
-	int	addrType;	/* host address type */
-	int	addrLen;	/* length of address */
-	ServerInfo **servers;
-} HostInfo;
-
-
-/*
- *  FilePtr is used for directing listings to a file.
- *  It is global so the Control-C handler can close it.
- */
-
-extern FILE *filePtr;
-
-/*
- * TCP/UDP port of server.
- */
-extern unsigned short nsport;
-
-/*
- *  External routines:
- */
-
-extern Boolean IsAddr();
-extern int  Print_query();
-extern unsigned char *Print_cdname();
-extern unsigned char *Print_cdname2();	/* fixed width */
-extern unsigned char *Print_rr();
-extern const char *DecodeType();	/* descriptive version of p_type */
-extern const char *DecodeError();
-extern char *Calloc();
-extern char *Malloc();
-extern void NsError();
-extern void PrintServer();
-extern void PrintHostInfo();
-extern void ShowOptions();
-extern void FreeHostInfoPtr();
-extern FILE *OpenFile();
-extern char *res_skip();
diff --git a/contrib/bind/tools/nslookup/send.c b/contrib/bind/tools/nslookup/send.c
deleted file mode 100644
index c07d0b6145ade..0000000000000
--- a/contrib/bind/tools/nslookup/send.c
+++ /dev/null
@@ -1,411 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)send.c	5.18 (Berkeley) 3/2/91";
-static char rcsid[] = "$Id: send.c,v 8.2 1997/06/01 20:34:40 vixie Exp $";
-#endif /* not lint */
-
-/*
- ******************************************************************************
- *
- *  send.c --
- *
- *	Routine to send request packets to a name server.
- *
- *	Based on "@(#)res_send.c  6.25 (Berkeley) 6/1/90".
- *
- ******************************************************************************
- */
-
-
-/*
- * Send query to name server and wait for reply.
- */
-
-#include <sys/param.h>
-#include <sys/time.h>
-#include <sys/socket.h>
-#include <sys/uio.h>
-#include <netinet/in.h>
-#include <stdio.h>
-#include <errno.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <resolv.h>
-#include "res.h"
-#include "../../conf/portability.h"
-
-static int s = -1;	/* socket used for communications */
-
-
-#ifndef FD_SET
-#define	NFDBITS		32
-#define	FD_SETSIZE	32
-#define	FD_SET(n, p)	((p)->fds_bits[(n)/NFDBITS] |= (1 << ((n) % NFDBITS)))
-#define	FD_CLR(n, p)	((p)->fds_bits[(n)/NFDBITS] &= ~(1 << ((n) % NFDBITS)))
-#define	FD_ISSET(n, p)	((p)->fds_bits[(n)/NFDBITS] & (1 << ((n) % NFDBITS)))
-#define FD_ZERO(p)	bzero((char *)(p), sizeof(*(p)))
-#endif
-
-
-
-unsigned short nsport = NAMESERVER_PORT;
-
-
-
-/*
- ******************************************************************************
- *
- *   SendRequest --
- *
- *	Sends a request packet to a name server whose address
- *	is specified by the first argument and returns with
- *	the answer packet.
- *
- *  Results:
- *	SUCCESS		- the request was sent and an answer
- *			  was received.
- *	TIME_OUT	- the virtual circuit connection timed-out
- *			  or a reply to a datagram wasn't received.
- *
- *
- ******************************************************************************
- */
-
-int
-SendRequest(nsAddrPtr, buf, buflen, answer, anslen, trueLenPtr)
-	struct in_addr	*nsAddrPtr;
-	char		*buf;
-	int		buflen;
-	char		*answer;
-	u_int		anslen;
-	int		*trueLenPtr;
-{
-	register int n;
-	int try, v_circuit, resplen;
-	int gotsomewhere = 0, connected = 0;
-	int connreset = 0;
-	u_short id, len;
-	char *cp;
-	fd_set dsmask;
-	struct timeval timeout;
-	HEADER *hp = (HEADER *) buf;
-	HEADER *anhp = (HEADER *) answer;
-	struct iovec iov[2];
-	int terrno = ETIMEDOUT;
-	char junk[512];
-	struct sockaddr_in sin;
-
-	if (_res.options & RES_DEBUG2) {
-	    printf("------------\nSendRequest(), len %d\n", buflen);
-	    Print_query(buf, buf+buflen, 1);
-	}
-	sin.sin_family	= AF_INET;
-	sin.sin_port	= htons(nsport);
-	sin.sin_addr	= *nsAddrPtr;
-	v_circuit = (_res.options & RES_USEVC) || buflen > PACKETSZ;
-	id = hp->id;
-	/*
-	 * Send request, RETRY times, or until successful
-	 */
-	for (try = 0; try < _res.retry; try++) {
-	usevc:
-		if (v_circuit) {
-			int truncated = 0;
-
-			/*
-			 * Use virtual circuit;
-			 * at most one attempt per server.
-			 */
-			try = _res.retry;
-			if (s < 0) {
-				s = socket(AF_INET, SOCK_STREAM, 0);
-				if (s < 0) {
-					terrno = errno;
-					if (_res.options & RES_DEBUG)
-					    perror("socket (vc) failed");
-					continue;
-				}
-				if (connect(s, (struct sockaddr *)&sin,
-				   sizeof(struct sockaddr)) < 0) {
-					terrno = errno;
-					if (_res.options & RES_DEBUG)
-					    perror("connect failed");
-					(void) close(s);
-					s = -1;
-					continue;
-				}
-			}
-			/*
-			 * Send length & message
-			 */
-			__putshort(buflen, (u_char *)&len);
-			iov[0].iov_base = (caddr_t)&len;
-			iov[0].iov_len = INT16SZ;
-			iov[1].iov_base = buf;
-			iov[1].iov_len = buflen;
-			if (writev(s, iov, 2) != INT16SZ + buflen) {
-				terrno = errno;
-				if (_res.options & RES_DEBUG)
-					perror("write failed");
-				(void) close(s);
-				s = -1;
-				continue;
-			}
-			/*
-			 * Receive length & response
-			 */
-			cp = answer;
-			len = INT16SZ;
-			while ((n = read(s, (char *)cp, (int)len)) > 0) {
-				cp += n;
-				if ((len -= n) <= 0)
-					break;
-			}
-			if (n <= 0) {
-				terrno = errno;
-				if (_res.options & RES_DEBUG)
-					perror("read failed");
-				(void) close(s);
-				s = -1;
-				/*
-				 * A long running process might get its TCP
-				 * connection reset if the remote server was
-				 * restarted.  Requery the server instead of
-				 * trying a new one.  When there is only one
-				 * server, this means that a query might work
-				 * instead of failing.  We only allow one reset
-				 * per query to prevent looping.
-				 */
-				if (terrno == ECONNRESET && !connreset) {
-					connreset = 1;
-				}
-				continue;
-			}
-			cp = answer;
-			if ((resplen = _getshort((u_char*)cp)) > anslen) {
-				if (_res.options & RES_DEBUG)
-					fprintf(stderr, "response truncated\n");
-				len = anslen;
-				truncated = 1;
-			} else
-				len = resplen;
-			while (len != 0 &&
-			   (n = read(s, (char *)cp, (int)len)) > 0) {
-				cp += n;
-				len -= n;
-			}
-			if (n <= 0) {
-				terrno = errno;
-				if (_res.options & RES_DEBUG)
-					perror("read failed");
-				(void) close(s);
-				s = -1;
-				continue;
-			}
-			if (truncated) {
-				/*
-				 * Flush rest of answer
-				 * so connection stays in synch.
-				 */
-				anhp->tc = 1;
-				len = resplen - anslen;
-				while (len != 0) {
-					n = (len > sizeof(junk) ?
-					    sizeof(junk) : len);
-					if ((n = read(s, junk, n)) > 0)
-						len -= n;
-					else
-						break;
-				}
-			}
-		} else {
-			/*
-			 * Use datagrams.
-			 */
-			if (s < 0) {
-				s = socket(AF_INET, SOCK_DGRAM, 0);
-				if (s < 0) {
-					terrno = errno;
-					if (_res.options & RES_DEBUG)
-					    perror("socket (dg) failed");
-					continue;
-				}
-			}
-#if BSD >= 43
-				if (connected == 0) {
-					if (connect(s, (struct sockaddr *)&sin,
-					    sizeof(struct sockaddr)) < 0) {
-						if (_res.options & RES_DEBUG)
-							perror("connect");
-						continue;
-					}
-					connected = 1;
-				}
-				if (send(s, buf, buflen, 0) != buflen) {
-					if (_res.options & RES_DEBUG)
-						perror("send");
-					continue;
-				}
-#else /* BSD */
-				if (sendto(s, buf, buflen, 0,
-					   (struct sockaddr *) &sin,
-					   sizeof(sin)) != buflen) {
-					if (_res.options & RES_DEBUG)
-						perror("sendto");
-					continue;
-				}
-#endif
-
-			/*
-			 * Wait for reply
-			 */
-			timeout.tv_sec = (_res.retrans << try);
-			if (timeout.tv_sec <= 0)
-				timeout.tv_sec = 1;
-			timeout.tv_usec = 0;
-wait:
-			FD_ZERO(&dsmask);
-			FD_SET(s, &dsmask);
-			n = select(s+1, &dsmask, (fd_set *)NULL,
-				(fd_set *)NULL, &timeout);
-			if (n < 0) {
-				if (_res.options & RES_DEBUG)
-					perror("select");
-				continue;
-			}
-			if (n == 0) {
-				/*
-				 * timeout
-				 */
-				if (_res.options & RES_DEBUG)
-					printf("timeout\n");
-#if BSD >= 43
-				gotsomewhere = 1;
-#endif
-				continue;
-			}
-			if ((resplen = recv(s, answer, anslen, 0)) <= 0) {
-				if (_res.options & RES_DEBUG)
-					perror("recvfrom");
-				continue;
-			}
-			gotsomewhere = 1;
-			if (id != anhp->id) {
-				/*
-				 * response from old query, ignore it
-				 */
-				if (_res.options & RES_DEBUG2) {
-					printf("------------\nOld answer:\n");
-					Print_query(answer, answer+resplen, 1);
-				}
-				goto wait;
-			}
-			if (!(_res.options & RES_IGNTC) && anhp->tc) {
-				/*
-				 * get rest of answer;
-				 * use TCP with same server.
-				 */
-				if (_res.options & RES_DEBUG)
-					printf("truncated answer\n");
-				(void) close(s);
-				s = -1;
-				v_circuit = 1;
-				goto usevc;
-			}
-		}
-		if (_res.options & RES_DEBUG) {
-		    if (_res.options & RES_DEBUG2)
-			printf("------------\nGot answer (%d bytes):\n",
-			    resplen);
-		    else
-			printf("------------\nGot answer:\n");
-		    Print_query(answer, answer+resplen, 1);
-		}
-		(void) close(s);
-		s = -1;
-		*trueLenPtr = resplen;
-		return (SUCCESS);
-	}
-	if (s >= 0) {
-		(void) close(s);
-		s = -1;
-	}
-	if (v_circuit == 0)
-		if (gotsomewhere == 0)
-			return NO_RESPONSE;	/* no nameservers found */
-		else
-			return TIME_OUT;	/* no answer obtained */
-	else
-		if (errno == ECONNREFUSED)
-			return NO_RESPONSE;
-		else
-			return ERROR;
-}
-
-/*
- * This routine is for closing the socket if a virtual circuit is used and
- * the program wants to close it.
- *
- * Called from the interrupt handler.
- */
-SendRequest_close()
-{
-	if (s != -1) {
-		(void) close(s);
-		s = -1;
-	}
-}
diff --git a/contrib/bind/tools/nslookup/skip.c b/contrib/bind/tools/nslookup/skip.c
deleted file mode 100644
index 2c78377227afd..0000000000000
--- a/contrib/bind/tools/nslookup/skip.c
+++ /dev/null
@@ -1,211 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)skip.c	5.12 (Berkeley) 3/21/91";
-static char rcsid[] = "$Id: skip.c,v 8.1 1994/12/15 06:24:31 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  skip.c --
- *
- *	Routines to skip over portions of a query buffer.
- *
- *	Note: this file has been submitted for inclusion in
- *	BIND resolver library. When this has been done, this file
- *	is no longer necessary (assuming there haven't been any
- *	changes).
- *
- *	Adapted from 4.3BSD BIND res_debug.c
- *
- *******************************************************************************
- */
-
-#include <sys/param.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <resolv.h>
-#include <stdio.h>
-#include "../../conf/portability.h"
-
-char *res_skip_rr();
-
-
-/*
- *******************************************************************************
- *
- *  res_skip --
- *
- * 	Skip the contents of a query.
- *
- * 	Interpretation of numFieldsToSkip argument:
- *            res_skip returns pointer to:
- *    	1 ->  start of question records.
- *    	2 ->  start of authoritative answer records.
- *    	3 ->  start of additional records.
- *    	4 ->  first byte after end of additional records.
- *
- *   Results:
- *	(address)	- success operation.
- *  	NULL 		- a resource record had an incorrect format.
- *
- *******************************************************************************
- */
-
-char *
-res_skip(msg, numFieldsToSkip, eom)
-	char *msg;
-	int numFieldsToSkip;
-	char *eom;
-{
-	register char *cp;
-	register HEADER *hp;
-	register int tmp;
-	register int n;
-
-	/*
-	 * Skip the header fields.
-	 */
-	hp = (HEADER *)msg;
-	cp = msg + HFIXEDSZ;
-
-	/*
-	 * skip question records.
-	 */
-	if (n = ntohs(hp->qdcount) ) {
-		while (--n >= 0 && cp < eom) {
-			tmp = dn_skipname((u_char *)cp, (u_char *)eom);
-			if (tmp == -1) return(NULL);
-			cp += tmp;
-			cp += INT16SZ;	/* type 	*/
-			cp += INT16SZ;	/* class 	*/
-		}
-	}
-	if (--numFieldsToSkip <= 0) return(cp);
-
-	/*
-	 * skip authoritative answer records
-	 */
-	if (n = ntohs(hp->ancount)) {
-		while (--n >= 0 && cp < eom) {
-			cp = res_skip_rr(cp, eom);
-			if (cp == NULL) return(NULL);
-		}
-	}
-	if (--numFieldsToSkip == 0) return(cp);
-
-	/*
-	 * skip name server records
-	 */
-	if (n = ntohs(hp->nscount)) {
-		while (--n >= 0 && cp < eom) {
-			cp = res_skip_rr(cp, eom);
-			if (cp == NULL) return(NULL);
-		}
-	}
-	if (--numFieldsToSkip == 0) return(cp);
-
-	/*
-	 * skip additional records
-	 */
-	if (n = ntohs(hp->arcount)) {
-		while (--n >= 0 && cp < eom) {
-			cp = res_skip_rr(cp, eom);
-			if (cp == NULL) return(NULL);
-		}
-	}
-
-	return(cp);
-}
-
-
-/*
- *******************************************************************************
- *
- *  res_skip_rr --
- *
- * 	Skip over resource record fields.
- *
- *   Results:
- *	(address)	- success operation.
- *  	NULL 		- a resource record had an incorrect format.
- *******************************************************************************
- */
-
-char *
-res_skip_rr(cp, eom)
-	char *cp;
-	char *eom;
-{
-	int tmp;
-	int dlen;
-
-	if ((tmp = dn_skipname((u_char *)cp, (u_char *)eom)) == -1)
-		return (NULL);			/* compression error */
-	cp += tmp;
-	if ((cp + RRFIXEDSZ) > eom)
-		return (NULL);
-	cp += INT16SZ;	/* 	type 	*/
-	cp += INT16SZ;	/* 	class 	*/
-	cp += INT32SZ;	/* 	ttl 	*/
-	dlen = _getshort((u_char*)cp);
-	cp += INT16SZ;	/* 	dlen 	*/
-	cp += dlen;
-	if (cp > eom)
-		return (NULL);
-	return (cp);
-}
diff --git a/contrib/bind/tools/nslookup/subr.c b/contrib/bind/tools/nslookup/subr.c
deleted file mode 100644
index 615e6ebc2c539..0000000000000
--- a/contrib/bind/tools/nslookup/subr.c
+++ /dev/null
@@ -1,471 +0,0 @@
-/*
- * ++Copyright++ 1985, 1989
- * -
- * Copyright (c) 1985, 1989
- *    The Regents of the University of California.  All rights reserved.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- * 	This product includes software developed by the University of
- * 	California, Berkeley and its contributors.
- * 4. Neither the name of the University nor the names of its contributors
- *    may be used to endorse or promote products derived from this software
- *    without specific prior written permission.
- * 
- * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * -
- * Portions Copyright (c) 1993 by Digital Equipment Corporation.
- * 
- * Permission to use, copy, modify, and distribute this software for any
- * purpose with or without fee is hereby granted, provided that the above
- * copyright notice and this permission notice appear in all copies, and that
- * the name of Digital Equipment Corporation not be used in advertising or
- * publicity pertaining to distribution of the document or software without
- * specific, written prior permission.
- * 
- * THE SOFTWARE IS PROVIDED "AS IS" AND DIGITAL EQUIPMENT CORP. DISCLAIMS ALL
- * WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES
- * OF MERCHANTABILITY AND FITNESS.   IN NO EVENT SHALL DIGITAL EQUIPMENT
- * CORPORATION BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL
- * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR
- * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS
- * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS
- * SOFTWARE.
- * -
- * --Copyright--
- */
-
-#ifndef lint
-static char sccsid[] = "@(#)subr.c	5.24 (Berkeley) 3/2/91";
-static char rcsid[] = "$Id: subr.c,v 8.6 1996/08/08 06:54:51 vixie Exp $";
-#endif /* not lint */
-
-/*
- *******************************************************************************
- *
- *  subr.c --
- *
- *	Miscellaneous subroutines for the name server
- *	lookup program.
- *
- *	Copyright (c) 1985
- *	Andrew Cherenson
- *	U.C. Berkeley
- *	CS298-26  Fall 1985
- *
- *******************************************************************************
- */
-
-#include <sys/types.h>
-#include <sys/param.h>
-#include <netdb.h>
-#include <sys/socket.h>
-#include <netinet/in.h>
-#include <arpa/nameser.h>
-#include <arpa/inet.h>
-#include <signal.h>
-#include <setjmp.h>
-#include <stdio.h>
-#include "resolv.h"
-#include "res.h"
-#include "../../conf/portability.h"
-
-
-
-/*
- *******************************************************************************
- *
- *  IntrHandler --
- *
- *	This routine is called whenever a control-C is typed.
- *	It performs three main functions:
- *	 - closes an open socket connection,
- *	 - closes an open output file (used by LookupHost, et al.),
- *	 - jumps back to the main read-eval loop.
- *
- *	If a user types a ^C in the middle of a routine that uses a socket,
- *	the routine would not be able to close the socket. To prevent an
- *	overflow of the process's open file table, the socket and output
- *	file descriptors are closed by the interrupt handler.
- *
- *  Side effects:
- *	Open file descriptors are closed.
- *	If filePtr is valid, it is closed.
- *	Flow of control returns to the main() routine.
- *
- *******************************************************************************
- */
-
-SIG_FN
-IntrHandler()
-{
-    extern jmp_buf env;
-#if defined(BSD) && BSD >= 199006 && !defined(RISCOS_BSD) && !defined(__osf__)
-    extern FILE *yyin;		/* scanner input file */
-    extern void yyrestart();	/* routine to restart scanner after interrupt */
-#endif
-
-    SendRequest_close();
-    ListHost_close();
-    if (filePtr != NULL && filePtr != stdout) {
-	fclose(filePtr);
-	filePtr = NULL;
-    }
-    printf("\n");
-#if defined(BSD) && BSD >= 199006 && !defined(RISCOS_BSD) && !defined(__osf__)
-    yyrestart(yyin);
-#endif
-    longjmp(env, 1);
-}
-
-
-/*
- *******************************************************************************
- *
- *  Malloc --
- *  Calloc --
- *
- *      Calls the malloc library routine with SIGINT blocked to prevent
- *	corruption of malloc's data structures. We need to do this because
- *	a control-C doesn't kill the program -- it causes a return to the
- *	main command loop.
- *
- *	NOTE: This method doesn't prevent the pointer returned by malloc
- *	from getting lost, so it is possible to get "core leaks".
- *
- *	If malloc fails, the program exits.
- *
- *  Results:
- *	(address)	- address of new buffer.
- *
- *******************************************************************************
- */
-
-char *
-Malloc(size)
-    int size;
-{
-    char	*ptr;
-
-#ifdef SYSV
-#if defined(SVR3) || defined(SVR4)
-    sighold(SIGINT);
-    ptr = malloc((unsigned) size);
-    sigrelse(SIGINT);
-#else
-    { SIG_FN (*old)();
-      old = signal(SIGINT, SIG_IGN);
-      ptr = malloc((unsigned) size);
-      signal(SIGINT, old);
-    }
-#endif
-#else
-#ifdef POSIX_SIGNALS
-    { sigset_t sset;
-      sigemptyset(&sset);
-      sigaddset(&sset,SIGINT);
-      sigprocmask(SIG_BLOCK,&sset,NULL);
-      ptr = malloc((unsigned) size);
-      sigprocmask(SIG_UNBLOCK,&sset,NULL);
-    }
-#else
-    { int saveMask;
-      saveMask = sigblock(sigmask(SIGINT));
-      ptr = malloc((unsigned) size);
-      (void) sigsetmask(saveMask);
-    }
-#endif
-#endif
-    if (ptr == NULL) {
-	fflush(stdout);
-	fprintf(stderr, "*** Can't allocate memory\n");
-	fflush(stderr);
-	abort();
-	/*NOTREACHED*/
-    } else {
-	return(ptr);
-    }
-}
-
-char *
-Calloc(num, size)
-    register int num, size;
-{
-    char *ptr = Malloc(num*size);
-    bzero(ptr, num*size);
-    return(ptr);
-}
-
-
-/*
- *******************************************************************************
- *
- *  PrintHostInfo --
- *
- *	Prints out the HostInfo structure for a host.
- *
- *******************************************************************************
- */
-
-void
-PrintHostInfo(file, title, hp)
-	FILE	*file;
-	char	*title;
-	register HostInfo *hp;
-{
-	register char		**cp;
-	register ServerInfo	**sp;
-	char			comma;
-	int			i;
-
-	fprintf(file, "%-7s  %s", title, hp->name);
-
-	if (hp->addrList != NULL) {
-	    if (hp->addrList[1] != NULL) {
-		fprintf(file, "\nAddresses:");
-	    } else {
-		fprintf(file, "\nAddress:");
-	    }
-	    comma = ' ';
-	    i = 0;
-	    for (cp = hp->addrList; cp && *cp; cp++) {
-		i++;
-		if (i > 4) {
-		    fprintf(file, "\n\t");
-		    comma = ' ';
-		    i = 0;
-		}
-		fprintf(file,"%c %s", comma, inet_ntoa(*(struct in_addr *)*cp));
-		comma = ',';
-	    }
-	}
-
-	if (hp->aliases != NULL) {
-	    fprintf(file, "\nAliases:");
-	    comma = ' ';
-	    i = 10;
-	    for (cp = hp->aliases; cp && *cp && **cp; cp++) {
-		i += strlen(*cp) + 2;
-		if (i > 75) {
-		    fprintf(file, "\n\t");
-		    comma = ' ';
-		    i = 10;
-		}
-		fprintf(file, "%c %s", comma, *cp);
-		comma = ',';
-	    }
-	}
-
-	if (hp->servers != NULL) {
-	    fprintf(file, "\nServed by:\n");
-	    for (sp = hp->servers; *sp != NULL ; sp++) {
-
-		fprintf(file, "- %s\n\t",  (*sp)->name);
-
-		comma = ' ';
-		i = 0;
-		for (cp = (*sp)->addrList; cp && *cp && **cp; cp++) {
-		    i++;
-		    if (i > 4) {
-			fprintf(file, "\n\t");
-			comma = ' ';
-			i = 0;
-		    }
-		    fprintf(file,
-			"%c %s", comma, inet_ntoa(*(struct in_addr *)*cp));
-		    comma = ',';
-		}
-		fprintf(file, "\n\t");
-
-		comma = ' ';
-		i = 10;
-		for (cp = (*sp)->domains; cp && *cp && **cp; cp++) {
-		    i += strlen(*cp) + 2;
-		    if (i > 75) {
-			fprintf(file, "\n\t");
-			comma = ' ';
-			i = 10;
-		    }
-		    fprintf(file, "%c %s", comma, *cp);
-		    comma = ',';
-		}
-		fprintf(file, "\n");
-	    }
-	}
-
-	fprintf(file, "\n\n");
-}
-
-/*
- *******************************************************************************
- *
- *  OpenFile --
- *
- *	Parses a command string for a file name and opens
- *	the file.
- *
- *  Results:
- *	file pointer	- the open was successful.
- *	NULL		- there was an error opening the file or
- *			  the input string was invalid.
- *
- *******************************************************************************
- */
-
-FILE *
-OpenFile(string, file)
-    char *string;
-    char *file;
-{
-	char	*redirect;
-	FILE	*tmpPtr;
-
-	/*
-	 *  Open an output file if we see '>' or >>'.
-	 *  Check for overwrite (">") or concatenation (">>").
-	 */
-
-	redirect = strchr(string, '>');
-	if (redirect == NULL) {
-	    return(NULL);
-	}
-	if (redirect[1] == '>') {
-	    sscanf(redirect, ">> %s", file);
-	    tmpPtr = fopen(file, "a+");
-	} else {
-	    sscanf(redirect, "> %s", file);
-	    tmpPtr = fopen(file, "w");
-	}
-
-	if (tmpPtr != NULL) {
-	    redirect[0] = '\0';
-	}
-
-	return(tmpPtr);
-}
-
-/*
- *******************************************************************************
- *
- *  DecodeError --
- *
- *	Converts an error code into a character string.
- *
- *******************************************************************************
- */
-
-const struct res_sym error_syms[] = {
-	{ NOERROR,	"Success" },
-	{ FORMERR,	"Format error" },
-	{ SERVFAIL,	"Server failed" },
-	{ NXDOMAIN,	"Non-existent host/domain" },
-	{ NOTIMP,	"Not implemented" },
-	{ REFUSED,	"Query refused" },
-#ifdef NOCHANGE
-	{ NOCHANGE,	"No change" },
-#endif
-	{ TIME_OUT,	"Timed out" },
-	{ NO_INFO,	"No information" },
-	{ ERROR,	"Unspecified error" },
-	{ NONAUTH,	"Non-authoritative answer" },
-	{ NO_RESPONSE,	"No response from server" },
-	{ 0,		NULL }
-};
-
-const char *
-DecodeError(result)
-    int result;
-{
-	const char *string;
-	int success;
-
-	string = sym_ntos(error_syms, result, &success);
-	if (success)
-		return string;
-	return ("BAD ERROR VALUE");
-}
-
-
-int
-StringToClass(class, dflt, errorfile)
-    char *class;
-    int dflt;
-    FILE *errorfile;
-{
-	int result, success;
-
-	result = sym_ston(__p_class_syms, class, &success);
-	if (success)
-		return result;
-
-	if (errorfile)
-		fprintf(errorfile, "unknown query class: %s\n", class);
-	return(dflt);
-}
-
-
-/*
- *******************************************************************************
- *
- *  StringToType --
- *
- *	Converts a string form of a query type name to its
- *	corresponding integer value.
- *
- *******************************************************************************
- */
-
-int
-StringToType(type, dflt, errorfile)
-    char *type;
-    int dflt;
-    FILE *errorfile;
-{
-	int result, success;
-
-	result = sym_ston(__p_type_syms, type, &success);
-	if (success)
-		return (result);
-
-	if (errorfile)
-		fprintf(errorfile, "unknown query type: %s\n", type);
-	return (dflt);
-}
-
-/*
- *******************************************************************************
- *
- *  DecodeType --
- *
- *	Converts a query type to a descriptive name.
- *	(A more verbose form of p_type.)
- *
- *
- *******************************************************************************
- */
-
-const char *
-DecodeType(type)
-	int type;
-{
-
-	return (sym_ntop(__p_type_syms, type, (int *)0));
-}