STRLIST_APPEND("tls-session-ticket-keys:", tls_session_ticket_keys)
 +	else S_STR("tls-ciphers:", tls_ciphers)
 +	else S_STR("tls-ciphersuites:", tls_ciphersuites)
 +	else S_YNO("tls-use-sni:", tls_use_sni)
 +	else S_NUMBER_NONZERO("https-port:", https_port)
 +	else S_STR("http-endpoint:", http_endpoint)
 +	else S_NUMBER_NONZERO("http-max-streams:", http_max_streams)
 +	else S_MEMSIZE("http-query-buffer-size:", http_query_buffer_size)
 +	else S_MEMSIZE("http-response-buffer-size:", http_response_buffer_size)
 +	else S_YNO("http-nodelay:", http_nodelay)
 +	else S_YNO("http-notls-downstream:", http_notls_downstream)
 +	else S_NUMBER_NONZERO("quic-port:", quic_port)
 +	else S_MEMSIZE("quic-size:", quic_size)
 +	else S_YNO("interface-automatic:", if_automatic)
 +	else S_STR("interface-automatic-ports:", if_automatic_ports)
 +	else S_YNO("use-systemd:", use_systemd)
 +	else S_YNO("do-daemonize:", do_daemonize)
 +	else S_NUMBER_NONZERO("port:", port)
 +	else S_NUMBER_NONZERO("outgoing-range:", outgoing_num_ports)
 +	else S_SIZET_OR_ZERO("outgoing-num-tcp:", outgoing_num_tcp)
 +	else S_SIZET_OR_ZERO("incoming-num-tcp:", incoming_num_tcp)
 +	else S_MEMSIZE("stream-wait-size:", stream_wait_size)
 +	else S_SIZET_NONZERO("edns-buffer-size:", edns_buffer_size)
 +	else S_SIZET_NONZERO("msg-buffer-size:", msg_buffer_size)
 +	else S_MEMSIZE("msg-cache-size:", msg_cache_size)
 +	else S_POW2("msg-cache-slabs:", msg_cache_slabs)
 +	else S_SIZET_NONZERO("num-queries-per-thread:",num_queries_per_thread)
 +	else S_SIZET_OR_ZERO("jostle-timeout:", jostle_time)
 +	else S_MEMSIZE("so-rcvbuf:", so_rcvbuf)
 +	else S_MEMSIZE("so-sndbuf:", so_sndbuf)
 +	else S_YNO("so-reuseport:", so_reuseport)
 +	else S_YNO("ip-transparent:", ip_transparent)
 +	else S_YNO("ip-freebind:", ip_freebind)
 +	else S_NUMBER_OR_ZERO("ip-dscp:", ip_dscp)
 +	else S_MEMSIZE("rrset-cache-size:", rrset_cache_size)
 +	else S_POW2("rrset-cache-slabs:", rrset_cache_slabs)
 +	else S_YNO("prefetch:", prefetch)
 +	else S_YNO("prefetch-key:", prefetch_key)
 +	else S_YNO("deny-any:", deny_any)
 +	else if(strcmp(opt, "cache-max-ttl:") == 0)
 +	{ IS_NUMBER_OR_ZERO; cfg->max_ttl = atoi(val); MAX_TTL=(time_t)cfg->max_ttl;}
 +	else if(strcmp(opt, "cache-max-negative-ttl:") == 0)
 +	{ IS_NUMBER_OR_ZERO; cfg->max_negative_ttl = atoi(val); MAX_NEG_TTL=(time_t)cfg->max_negative_ttl;}
 +	else if(strcmp(opt, "cache-min-negative-ttl:") == 0)
 +	{ IS_NUMBER_OR_ZERO; cfg->min_negative_ttl = atoi(val); MIN_NEG_TTL=(time_t)cfg->min_negative_ttl;}
 +	else if(strcmp(opt, "cache-min-ttl:") == 0)
 +	{ IS_NUMBER_OR_ZERO; cfg->min_ttl = atoi(val); MIN_TTL=(time_t)cfg->min_ttl;}
 +	else if(strcmp(opt, "infra-cache-min-rtt:") == 0) {
 +	 	IS_NUMBER_OR_ZERO; cfg->infra_cache_min_rtt = atoi(val);
 +		RTT_MIN_TIMEOUT=cfg->infra_cache_min_rtt;
 +	}
 +	else if(strcmp(opt, "infra-cache-max-rtt:") == 0) {
 +		IS_NUMBER_OR_ZERO; cfg->infra_cache_max_rtt = atoi(val);
 +		RTT_MAX_TIMEOUT=config_apply_max_rtt(cfg->infra_cache_max_rtt);
 +	}
 +	else S_YNO("infra-keep-probing:", infra_keep_probing)
 +	else S_NUMBER_OR_ZERO("infra-host-ttl:", host_ttl)
 +	else S_POW2("infra-cache-slabs:", infra_cache_slabs)
 +	else S_SIZET_NONZERO("infra-cache-numhosts:", infra_cache_numhosts)
 +	else S_NUMBER_OR_ZERO("delay-close:", delay_close)
 +	else S_YNO("udp-connect:", udp_connect)
 +	else S_STR("chroot:", chrootdir)
 +	else S_STR("username:", username)
 +	else S_STR("directory:", directory)
 +	else S_STR("pidfile:", pidfile)
 +	else S_YNO("hide-identity:", hide_identity)
 +	else S_YNO("hide-version:", hide_version)
 +	else S_YNO("hide-trustanchor:", hide_trustanchor)
 +	else S_YNO("hide-http-user-agent:", hide_http_user_agent)
 +	else S_STR("identity:", identity)
 +	else S_STR("version:", version)
 +	else S_STR("http-user-agent:", http_user_agent)
 +	else if(strcmp(opt, "nsid:") == 0) {
 +		free(cfg->nsid_cfg_str);
 +		if (!(cfg->nsid_cfg_str = strdup(val)))
 +			return 0;
 +		/* Empty string is just validly unsetting nsid */
 +		if (*val == 0) {
 +			free(cfg->nsid);
 +			cfg->nsid = NULL;
 +			cfg->nsid_len = 0;
 +			return 1;
 +		}
 +		cfg->nsid = cfg_parse_nsid(val, &cfg->nsid_len);
 +		return cfg->nsid != NULL;
 +	}
 +	else S_STRLIST("root-hints:", root_hints)
 +	else S_STR("target-fetch-policy:", target_fetch_policy)
 +	else S_YNO("harden-glue:", harden_glue)
 +	else S_YNO("harden-unverified-glue:", harden_unverified_glue)
 +	else S_YNO("harden-short-bufsize:", harden_short_bufsize)
 +	else S_YNO("harden-large-queries:", harden_large_queries)
 +	else S_YNO("harden-dnssec-stripped:", harden_dnssec_stripped)
 +	else S_YNO("harden-below-nxdomain:", harden_below_nxdomain)
 +	else S_YNO("harden-referral-path:", harden_referral_path)
 +	else S_YNO("harden-algo-downgrade:", harden_algo_downgrade)
 +	else S_YNO("harden-unknown-additional:", harden_unknown_additional)
 +	else S_YNO("use-caps-for-id:", use_caps_bits_for_id)
 +	else S_STRLIST("caps-whitelist:", caps_whitelist)
 +	else S_SIZET_OR_ZERO("unwanted-reply-threshold:", unwanted_threshold)
 +	else S_STRLIST("private-address:", private_address)
 +	else S_STRLIST("private-domain:", private_domain)
 +	else S_YNO("do-not-query-localhost:", donotquery_localhost)
 +	else S_STRLIST("do-not-query-address:", donotqueryaddrs)
 +	else S_STRLIST("auto-trust-anchor-file:", auto_trust_anchor_file_list)
 +	else S_STRLIST("trust-anchor-file:", trust_anchor_file_list)
 +	else S_STRLIST("trust-anchor:", trust_anchor_list)
 +	else S_STRLIST("trusted-keys-file:", trusted_keys_file_list)
 +	else S_YNO("trust-anchor-signaling:", trust_anchor_signaling)
 +	else S_YNO("root-key-sentinel:", root_key_sentinel)
 +	else S_STRLIST("domain-insecure:", domain_insecure)
 +	else S_NUMBER_OR_ZERO("val-bogus-ttl:", bogus_ttl)
 +	else S_YNO("val-clean-additional:", val_clean_additional)
 +	else S_NUMBER_OR_ZERO("val-log-level:", val_log_level)
 +	else S_YNO("val-log-squelch:", val_log_squelch)
 +	else S_YNO("log-queries:", log_queries)
 +	else S_YNO("log-replies:", log_replies)
 +	else S_YNO("log-tag-queryreply:", log_tag_queryreply)
 +	else S_YNO("log-local-actions:", log_local_actions)
 +	else S_YNO("log-servfail:", log_servfail)
 +	else S_YNO("log-destaddr:", log_destaddr)
 +	else S_YNO("val-permissive-mode:", val_permissive_mode)
 +	else S_YNO("aggressive-nsec:", aggressive_nsec)
 +	else S_YNO("ignore-cd-flag:", ignore_cd)
 +	else S_YNO("disable-edns-do:", disable_edns_do)
 +	else if(strcmp(opt, "serve-expired:") == 0)
 +	{ IS_YES_OR_NO; cfg->serve_expired = (strcmp(val, "yes") == 0);
 +	  SERVE_EXPIRED = cfg->serve_expired; }
 +	else if(strcmp(opt, "serve-expired-ttl:") == 0)
 +	{ IS_NUMBER_OR_ZERO; cfg->serve_expired_ttl = atoi(val); SERVE_EXPIRED_TTL=(time_t)cfg->serve_expired_ttl;}
 +	else if(strcmp(opt, "serve-expired-ttl-reset:") == 0)
 +	{ IS_YES_OR_NO; cfg->serve_expired_ttl_reset = (strcmp(val, "yes") == 0);
 +	  SERVE_EXPIRED_TTL_RESET = cfg->serve_expired_ttl_reset; }
 +	else if(strcmp(opt, "serve-expired-reply-ttl:") == 0)
 +	{ IS_NUMBER_OR_ZERO; cfg->serve_expired_reply_ttl = atoi(val); SERVE_EXPIRED_REPLY_TTL=(time_t)cfg->serve_expired_reply_ttl;}
 +	else S_NUMBER_OR_ZERO("serve-expired-client-timeout:", serve_expired_client_timeout)
 +	else S_YNO("ede:", ede)
 +	else S_YNO("ede-serve-expired:", ede_serve_expired)
 +	else S_YNO("dns-error-reporting:", dns_error_reporting)
 +	else S_NUMBER_OR_ZERO("iter-scrub-ns:", iter_scrub_ns)
 +	else S_NUMBER_OR_ZERO("iter-scrub-cname:", iter_scrub_cname)
++	else S_YNO("iter-scrub-promiscuous:", iter_scrub_promiscuous)
 +	else S_NUMBER_OR_ZERO("max-global-quota:", max_global_quota)
 +	else S_YNO("serve-original-ttl:", serve_original_ttl)
 +	else S_STR("val-nsec3-keysize-iterations:", val_nsec3_key_iterations)
 +	else S_YNO("zonemd-permissive-mode:", zonemd_permissive_mode)
 +	else S_UNSIGNED_OR_ZERO("add-holddown:", add_holddown)
 +	else S_UNSIGNED_OR_ZERO("del-holddown:", del_holddown)
 +	else S_UNSIGNED_OR_ZERO("keep-missing:", keep_missing)
 +	else if(strcmp(opt, "permit-small-holddown:") == 0)
 +	{ IS_YES_OR_NO; cfg->permit_small_holddown = (strcmp(val, "yes") == 0);
 +	  autr_permit_small_holddown = cfg->permit_small_holddown; }
 +	else S_MEMSIZE("key-cache-size:", key_cache_size)
 +	else S_POW2("key-cache-slabs:", key_cache_slabs)
 +	else S_MEMSIZE("neg-cache-size:", neg_cache_size)
 +	else S_YNO("minimal-responses:", minimal_responses)
 +	else S_YNO("rrset-roundrobin:", rrset_roundrobin)
 +	else S_NUMBER_OR_ZERO("unknown-server-time-limit:", unknown_server_time_limit)
 +	else S_NUMBER_OR_ZERO("discard-timeout:", discard_timeout)
 +	else S_NUMBER_OR_ZERO("wait-limit:", wait_limit)
 +	else S_NUMBER_OR_ZERO("wait-limit-cookie:", wait_limit_cookie)
 +	else S_STRLIST("local-data:", local_data)
 +	else S_YNO("unblock-lan-zones:", unblock_lan_zones)
 +	else S_YNO("insecure-lan-zones:", insecure_lan_zones)
 +	else S_YNO("control-enable:", remote_control_enable)
 +	else S_STRLIST_APPEND("control-interface:", control_ifs)
 +	else S_NUMBER_NONZERO("control-port:", control_port)
 +	else S_STR("server-key-file:", server_key_file)
 +	else S_STR("server-cert-file:", server_cert_file)
 +	else S_STR("control-key-file:", control_key_file)
 +	else S_STR("control-cert-file:", control_cert_file)
 +	else S_STR("module-config:", module_conf)
 +	else S_STRLIST("python-script:", python_script)
 +	else S_STRLIST("dynlib-file:", dynlib_file)
 +	else S_YNO("disable-dnssec-lame-check:", disable_dnssec_lame_check)
 +#ifdef CLIENT_SUBNET
 +	/* Can't set max subnet prefix here, since that value is used when
 +	 * generating the address tree. */
 +	/* No client-subnet-always-forward here, module registration depends on
 +	 * this option. */
 +#endif
 +#ifdef USE_DNSTAP
 +	else S_YNO("dnstap-enable:", dnstap)
 +	else S_YNO("dnstap-bidirectional:", dnstap_bidirectional)
 +	else S_STR("dnstap-socket-path:", dnstap_socket_path)
 +	else S_STR("dnstap-ip:", dnstap_ip)
 +	else S_YNO("dnstap-tls:", dnstap_tls)
 +	else S_STR("dnstap-tls-server-name:", dnstap_tls_server_name)
 +	else S_STR("dnstap-tls-cert-bundle:", dnstap_tls_cert_bundle)
*** 3783 LINES SKIPPED ***