upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-06-24 14:28:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
43793 commits 18 branches 886 tags 467 MiB
Commit graph

769 commits

Author SHA1 Message Date
Petr Špaček
3c21d8d499
Set up release notes for BIND 9.17.22 2021-12-16 13:17:13 +01:00
Michał Kępień
7d42bee183
Prepare release notes for BIND 9.17.21 2021-12-16 13:17:12 +01:00
Michał Kępień
513dfd4fcc
Reorder release notes 2021-12-16 13:17:12 +01:00
Michał Kępień
a8d5fd88e3
Mention GL #3040 in the release notes 2021-12-16 13:17:12 +01:00
Michał Kępień
da1e73cd4d
Add release note for GL #853 2021-12-16 13:17:12 +01:00
Michał Kępień
413e369137
Tweak and reword release notes 2021-12-16 13:17:12 +01:00
Ondřej Surý
dff5888d9b Add CHANGES and release not for [GL #3051] 2021-12-08 17:58:53 +01:00
Mark Andrews
733f58a7a5
Allow servers that emit broken NSEC records to be identified 
'server <prefix> { broken-nsec yes; };' can now be used to stop
NSEC records from negative responses from servers in the given
prefix being cached and hence available to synth-from-dnssec.
 2021-12-02 14:27:14 +01:00
Mark Andrews
12c64d55f2
Add CHANGES and release note for [GL #1265] 2021-12-02 14:24:31 +01:00
Ondřej Surý
9d53471890 Add CHANGES and release note for [GL #2700] 2021-12-02 14:08:53 +01:00
Ondřej Surý
4e779b11f6 Add CHANGES and release notes for [GL #3026] 2021-12-01 11:48:15 -08:00
Ondřej Surý
1d42178c46 Add CHANGES and release note for [GL #1610] 2021-12-01 16:10:04 +01:00
Artem Boldariev
792ff02045 Mention that the allow-transfer option has been extended 
This commit updates both the reference manual and release notes with
the information that 'allow-transfer' has been extended with
additional "port" and "transport" options.
 2021-11-30 12:20:22 +02:00
Aram Sargsyan
e644738310 Add CHANGES and release notes for [GL #1608] 2021-11-23 11:41:48 +00:00
Matthijs Mekking
842fa76cdd Add CHANGES and release notes for EDE:18 
New feature.
 2021-11-19 09:44:28 +01:00
Michał Kępień
d0940f87b6 Set up release notes for BIND 9.17.21 2021-11-18 09:00:07 +01:00
Michał Kępień
adf37a9d59 Prepare release notes for BIND 9.17.20 2021-11-18 09:00:07 +01:00
Michał Kępień
02b1a18db2 Reorder release notes 2021-11-18 09:00:07 +01:00
Michał Kępień
075f03d37f Tweak and reword release notes 2021-11-18 09:00:07 +01:00
Petr Špaček
660d502c64 Fix incorrect version bump in statistics channels 
The version number for the XML statistics channel was not incremented
correctly after removal of isc_socket code in
a55589f881, and the JSON version number
was not incremented at all.
 2021-11-04 18:45:36 -07:00
Michał Kępień
8e8ce6d714 Set up release notes for BIND 9.17.20 2021-10-28 12:05:58 +02:00
Michał Kępień
08a2f4c0b7 Prepare release notes for BIND 9.17.19 2021-10-28 12:05:58 +02:00
Michał Kępień
e22506337c Add release note for GL #2911 2021-10-28 12:05:58 +02:00
Michał Kępień
9e36b5bf09 Reorder release notes 2021-10-28 12:05:58 +02:00
Michał Kępień
3f8dcef5a8 Tweak and reword release notes 2021-10-28 12:05:58 +02:00
Ondřej Surý
88c6b4e7af Add CHANGES and release note for [GL #2899] 2021-10-28 12:05:58 +02:00
Mark Andrews
df1d8c9e9b Add release note for [GL #2843] 2021-10-28 07:40:10 +00:00
Matthijs Mekking
e713b8548c Add release note and CHANGES for #2956 
Feature change.
 2021-10-25 11:28:09 +02:00
Matthijs Mekking
b3507207d4 Add release note and CHANGES for #2742 
Feature change.
 2021-10-25 10:42:10 +02:00
Evan Hunt
1ed928dad7 CHANGES and release note for [GL #2927] 2021-10-21 02:15:55 -07:00
Evan Hunt
4919c7a227 CHANGES and release note for [GL #2926] 2021-10-15 01:01:25 -07:00
Mark Andrews
19819a1f02 Release note [GL #481] 2021-10-15 11:32:17 +11:00
Evan Hunt
96980adbad CHANGES and release note for [GL #828] 2021-10-13 08:34:36 -07:00
Ondřej Surý
89c41fbd03 Add CHANGES and release note for [GL #2941] 2021-10-12 15:08:23 +02:00
Matthijs Mekking
0870d666dc Add CHANGES and release note for [GL #1316] 2021-10-12 13:46:29 +02:00
Ondřej Surý
092200bffd Add CHANGES and release note for [GL #1610] 2021-10-12 12:13:33 +02:00
Artem Boldariev
cdf39260a7 Add an entry to the release notes file [GL #2794] 
Mention that "dot" ALPN tag is now required for XoT.
 2021-10-05 11:30:22 +03:00
Evan Hunt
d596bd04b6 Add CHANGES and release note for [GL #2401] 2021-10-02 11:43:59 -07:00
Artem Boldariev
834bb4e52b Modify release notes [GL #2796] 
Mention the new "tls" clause options in the release notes.
 2021-10-01 15:56:02 +03:00
Artem Boldariev
503a9a56b2 Modify release notes [GL #2795] 
Mention that it is now possible to specify supported TLS protocol
versions.
 2021-10-01 15:56:02 +03:00
Aram Sargsyan
3edaa0bde6 Add CHANGES and release notes for [GL #2308] 2021-09-30 19:19:43 +00:00
Ondřej Surý
d717975e3e Add CHANGES and release notes for [GL #2917] 2021-09-23 22:36:01 +02:00
Ondřej Surý
e543054d56 Add CHANGES and release note for [GL #2814] 2021-09-20 22:26:17 +02:00
Ondřej Surý
c6e5a4bbc3 Add CHANGES and release note for [GL #2882] (removal) 2021-09-17 07:09:50 +02:00
Ondřej Surý
c518036988 Add CHANGES and releases notes for [GL #2882] 2021-09-17 05:58:02 +02:00
Michał Kępień
81f18aa5c7 Set up release notes for BIND 9.17.19 2021-09-15 22:49:20 +02:00
Michał Kępień
3af61f9672 Prepare release notes for BIND 9.17.18 2021-09-15 22:49:20 +02:00
Michał Kępień
6705f0a280 Add release note for GL #2878 2021-09-15 22:49:20 +02:00
Michał Kępień
901eb7edae Add release note for GL #2844 2021-09-15 22:49:20 +02:00
Michał Kępień
fe86bac50c Add release note for GL #1944 2021-09-15 22:49:20 +02:00
Michał Kępień
7daf9aa5ac Reorder release notes 2021-09-15 22:49:20 +02:00
Michał Kępień
f2f672d69f Tweak and reword release notes 2021-09-15 22:49:20 +02:00
Ondřej Surý
bba5e98734 Add CHANGES and release notes for [GL #2888] 2021-09-14 19:24:39 +02:00
Ondřej Surý
23624a7adb Add CHANGES and release note for [GL #2852] 2021-09-14 14:51:31 +02:00
Ondřej Surý
79de2ee528 Add CHANGES and release note for GL #2691 2021-09-09 15:35:39 +02:00
Evan Hunt
351ed777c2 CHANGES, release note 2021-08-28 07:31:13 -07:00
Matthijs Mekking
c43faf44cd Add change and release note for [#2857] 2021-08-23 09:55:26 +02:00
Tony Finch
9557d6f70f Add CHANGES and release note for [GL !2946] 2021-08-18 22:42:00 -07:00
Michał Kępień
4b17dd17fa Set up release notes for BIND 9.17.18 2021-08-19 07:12:33 +02:00
Michał Kępień
80d76c47e1 Prepare release notes for BIND 9.17.17 2021-08-19 07:12:33 +02:00
Michał Kępień
c0d3a0b7d6 Add release note for GL #2756 2021-08-19 07:12:33 +02:00
Michał Kępień
20e5cf075d Reorder release notes 2021-08-19 07:12:33 +02:00
Michał Kępień
876ca54af5 Tweak and reword release notes 2021-08-19 07:12:33 +02:00
Evan Hunt
265fae928a Add CHANGES and release notes for [GL #2839] 2021-08-19 07:12:33 +02:00
Mark Andrews
8ebb05b0b7 Add CHANGES and release notes 2021-08-18 13:51:38 +10:00
Matthijs Mekking
192329d3c6 Add change entry and release note for GL #2665 2021-08-13 11:37:52 +02:00
Matthijs Mekking
1befaa5d45 Add release note and change entry for [#1551] 2021-08-11 15:15:48 +02:00
Michal Nowak
109bb0db47
Set up release notes for BIND 9.17.17 2021-07-23 09:19:37 +02:00
Michał Kępień
3cc71752d9
Prepare release notes for BIND 9.17.16 2021-07-23 09:19:36 +02:00
Michał Kępień
565ed6f76a
Add release note for GL #2758 2021-07-23 09:19:36 +02:00
Michał Kępień
db2e1de052
Add release note for GL #2686 2021-07-23 09:19:36 +02:00
Michał Kępień
8371f13b4e
Reorder release notes 2021-07-23 09:19:36 +02:00
Michal Nowak
0048006114
Tweak and reword release notes 2021-07-23 09:19:36 +02:00
Michał Kępień
7c61550435
Restore release note for GL #2780 2021-07-23 09:19:36 +02:00
Mark Andrews
36720fb4a6 add release note for [GL #2762] 2021-07-20 15:18:14 +10:00
Artem Boldariev
f5614be9df Update documentation to include the new HTTP configuration options 
Documentation for the new DoH options has been added.
 2021-07-16 11:50:22 +03:00
Matthijs Mekking
ba5869943d Add change and release notes [#2710] 2021-07-15 08:32:16 +02:00
Ondřej Surý
41afe6bc5e Add CHANGES and release notes for [GL #2822] 2021-07-13 15:44:08 +02:00
Mark Andrews
e9c72ca95c Add release note for [GL #2249] 2021-07-12 12:33:46 +10:00
Evan Hunt
d40d1fd590 Add CHANGES and release notes for [GL #2433] 2021-07-09 15:59:03 +02:00
Ondřej Surý
29843bcde8 Add CHANGES and release notes for [GL #2478] 2021-07-07 09:50:53 +02:00
Matthijs Mekking
be87edd249 Add release note and change for [#2786] 2021-07-01 10:20:15 +02:00
Matthijs Mekking
22cd63bf81 Add change and release note for [#1126] 
Seems pretty newsworthy.
 2021-06-30 17:29:13 +02:00
Matthijs Mekking
d0668bd4cc Add change and release note for [#2780] 2021-06-24 09:32:28 +02:00
Ondřej Surý
4266f6dd2b Change the safe edns-udp-size from 1400 to 1432 
When backporting the Don't Fragment UDP socket option, it was noticed
that the edns-udp-size probing uses 1432 as one of the values to be
probed and the documentation would be recommending 1400 as the safe
value.  As the safe value can be from the 1400-1500 interval, the
documentation has been changed to match the probed value, so we do not
skip it.
 2021-06-23 20:57:05 +02:00
Ondřej Surý
5d9c0a3721 Add CHANGES and release note for [GL #2790] 2021-06-23 17:41:34 +02:00
Michał Kępień
41de9ad84a Set up release notes for BIND 9.17.16 2021-06-23 12:56:35 +02:00
Michał Kępień
7b7dea04a3 Prepare release notes for BIND 9.17.15 2021-06-23 12:56:35 +02:00
Michał Kępień
7bfedd8c73 Tweak and reword release notes 2021-06-23 12:56:35 +02:00
Ondřej Surý
dd0e3b0213 Add CHANGES and release notes for [GL #2787] 2021-06-22 17:23:02 +03:00
Matthijs Mekking
dae42dc9d4 Add changes and notes for [#2783] 2021-06-22 09:04:11 +02:00
Mark Andrews
85033788d3 Add release note for [GL #2778] 2021-06-18 16:46:02 +10:00
Mark Andrews
7372e9a60d Add release note for [GL #2779] 2021-06-18 15:51:37 +10:00
Michał Kępień
f9e8c8057d Set up release notes for BIND 9.17.15 2021-06-16 22:18:12 +02:00
Michał Kępień
652d4a74fe Prepare release notes for BIND 9.17.14 2021-06-16 22:18:12 +02:00
Michał Kępień
54842d6349 Reorder release notes 2021-06-16 22:18:12 +02:00
Michał Kępień
451b29cbbf Tweak and reword release notes 2021-06-16 22:18:12 +02:00
Michał Kępień
0439e92fa0 Remove leftover release note for GL #2603 2021-06-16 22:18:12 +02:00
Michał Kępień
16708682ad Add release note 2021-06-10 10:13:23 +02:00
Ondřej Surý
0b5f205b57 Add CHANGES and release note for GL #2690 2021-06-09 14:35:35 +02:00
Matthijs Mekking
d51aed7112 Add release note and change entry for [#2725] 2021-06-09 09:14:51 +02:00
Ondřej Surý
22aa929aac Add CHANGES and release note for [GL #2746] 2021-06-02 17:47:14 +02:00
Ondřej Surý
3e433b87fb Add CHANGES and release note for [GL #2732] 2021-05-31 14:52:05 +02:00
Matthijs Mekking
7ca253818e Add CHANGES and notes for [#2733] 2021-05-30 00:04:01 -07:00
Evan Hunt
d8b793760c CHANGES, release note 2021-05-27 10:37:16 -07:00
Mark Andrews
80ca95a95c Add release note for [GL #2685] 2021-05-26 08:16:35 +10:00
Ondřej Surý
a7241bb5b3 Add CHANGES and release note for GL #2433 2021-05-24 20:45:19 +02:00
Michał Kępień
5a71af44b1 Set up release notes for BIND 9.17.14 2021-05-20 12:03:47 +02:00
Michał Kępień
8113dbe5bb Prepare release notes for BIND 9.17.13 2021-05-20 12:03:47 +02:00
Michał Kępień
e49bd0906e Add release note for GL #2626 2021-05-20 12:03:47 +02:00
Michał Kępień
620cccc3fc Reorder release notes 2021-05-20 12:03:47 +02:00
Michał Kępień
ced6c9b23a Tweak and reword release notes 2021-05-20 12:03:47 +02:00
Michal Nowak
ab6060c538 Drop duplicate release note for GL #2347 2021-05-20 12:03:47 +02:00
Matthijs Mekking
fa1cd0a1f1 Release notes and changes for [#1875] 2021-05-20 09:23:46 +02:00
Matthijs Mekking
a9f4b074c4 Release notes and changes for [GL #2463] 
Mention the bugfix.
 2021-05-18 15:47:02 +02:00
Ondřej Surý
3733b4f101 Add CHANGES and release note for GL #2313 2021-05-17 08:47:09 +02:00
Matthijs Mekking
0c09867e96 Changes and release notes for [#2603] 2021-05-05 19:15:32 +02:00
Mark Andrews
a60b54e1df Add release note for [GL #2670] 2021-05-05 23:13:55 +10:00
Matthijs Mekking
366ed047dd Changes and release notes for [#2596] 2021-05-05 11:14:35 +02:00
Mark Andrews
03978a7881 Add Release note for [GL #2536] 2021-05-04 23:35:59 +00:00
Matthijs Mekking
75024736a4 Release notes and changes for [#2645] 
The feature "going insecure gracefully" has been changed.
 2021-04-30 11:20:40 +02:00
Mark Andrews
8510ccaa54 Update ZONEMD to match RFC 8976 
* The location of the digest type field has changed to where the
  reserved field was.
* The reserved field is now called scheme and is where the digest
  type field was.
* Digest type 2 has been defined (SHA256).
 2021-04-30 10:43:37 +10:00
Mark Andrews
ad236976fc Add release note for [GL #2445] 2021-04-29 13:43:40 +02:00
Michał Kępień
2fadf29e6b Add a Sphinx role for linking GitLab issues/MRs 
Define a :gl: Sphinx role that takes a GitLab issue/MR number as an
argument and creates a hyperlink to the relevant ISC GitLab URL.  This
makes it easy to reach ISC GitLab pages directly from the release notes.

Make all GitLab references in the release notes use the new Sphinx role.
 2021-04-29 13:24:21 +02:00
Michał Kępień
0c4694277f Set up release notes for BIND 9.17.13 2021-04-29 10:30:00 +02:00
Michał Kępień
a051dd65e2 Prepare release notes for BIND 9.17.12 2021-04-29 10:30:00 +02:00
Michał Kępień
e8d9de39ac Add release note for GL #2490 2021-04-29 10:30:00 +02:00
Michał Kępień
4ac14c4a83 Reorder release notes 2021-04-29 10:30:00 +02:00
Michał Kępień
3270ac7d9b Tweak and reword release notes 2021-04-29 10:30:00 +02:00
Mark Andrews
f1d81d4e89 Add Release Notes entry for [GL #2540] 2021-04-29 10:30:00 +02:00
Mark Andrews
bd8a4a46df Add release note for [GL #2467] 2021-04-29 10:30:00 +02:00
Mark Andrews
ca07b8e414 Add Release Note for [GL #2642] 2021-04-29 17:18:26 +10:00
Matthijs Mekking
b99ec65745 Changes and release notes for [#2628] 2021-04-26 10:43:39 +02:00
Ondřej Surý
f022d2db8c Add CHANGES and release note for [GL #2638] 2021-04-20 23:22:28 +02:00
Mark Andrews
3df637fb83 Add CHANGES and release note for [GL #2623] 2021-04-16 12:04:06 +02:00
Matthijs Mekking
3b68dd426f Add change entry and release note for [#2347] 2021-04-13 11:26:26 +02:00
Matthijs Mekking
2a5e0232ed Fix nonsensical stale TTL values in cache dump 
When introducing change 5149, "rndc dumpdb" started to print a line
above a stale RRset, indicating how long the data will be retained.

At that time, I thought it should also be possible to load
a cache from file. But if a TTL has a value of 0 (because it is stale),
stale entries wouldn't be loaded from file. So, I added the
'max-stale-ttl' to TTL values, and adjusted the $DATE accordingly.

Since we actually don't have a "load cache from file" feature, this
is premature and is causing confusion at operators. This commit
changes the 'max-stale-ttl' adjustments.

A check in the serve-stale system test is added for a non-stale
RRset (longttl.example) to make sure the TTL in cache is sensible.

Also, the comment above stale RRsets could have nonsensical
values. A possible reason why this may happen is when the RRset was
marked a stale but the 'max-stale-ttl' has passed (and is actually an
RRset awaiting cleanup). This would lead to the "will be retained"
value to be negative (but since it is stored in an uint32_t, you would
get a nonsensical value (e.g. 4294362497).

To mitigate against this, we now also check if the header is not
ancient. In addition we check if the stale_ttl would be negative, and
if so we set it to 0. Most likely this will not happen because the
header would already have been marked ancient, but there is a possible
race condition where the 'rdh_ttl + serve_stale_ttl' has passed,
but the header has not been checked for staleness.
 2021-04-13 09:48:20 +02:00
Mark Andrews
0174098aca Add CHANGES and release note for [GL #2600] 2021-04-07 21:02:10 +02:00
Matthijs Mekking
e443279bbf Change default stale-answer-client-timeout to off 
Using "stale-answer-client-timeout" turns out to have unforeseen
negative consequences, and thus it is better to disable the feature
by default for the time being.
 2021-04-07 14:10:31 +02:00
Matthijs Mekking
e44bcc6f53 Add notes and changes for [#2594] 
Pretty newsworthy.
 2021-04-02 10:02:40 +02:00
Ondřej Surý
66bd47a129 Add CHANGES and release note for GL #2607 2021-04-01 16:08:19 +02:00
Matthijs Mekking
82f72ae249 Rekey immediately after rndc checkds/rollover 
Call 'dns_zone_rekey' after a 'rndc dnssec -checkds' or 'rndc dnssec
-rollover' command is received, because such a command may influence
the next key event. Updating the keys immediately avoids unnecessary
rollover delays.

The kasp system test no longer needs to call 'rndc loadkeys' after
a 'rndc dnssec -checkds' or 'rndc dnssec -rollover' command.
 2021-03-22 11:58:26 +01:00
Matthijs Mekking
841e90c6fc Add CHANGES and notes for [#2517] 2021-03-22 10:31:23 +01:00
Ondřej Surý
98f7495426 Add CHANGES and release note for GL #2573 2021-03-18 16:37:57 +01:00
Michal Nowak
3265dfa929
Set up release notes for BIND 9.17.12 2021-03-18 15:58:15 +01:00
Michal Nowak
924f8ceb06
Prepare release notes for BIND 9.17.11 2021-03-18 15:55:11 +01:00
Michal Nowak
e6ca82b2c4
Add release notes for GL #2472 2021-03-18 15:55:10 +01:00
Michal Nowak
566b8ab85e
Add release note for GL #2504 2021-03-18 15:55:10 +01:00
Michal Nowak
baf79279f0
Add release note for GL #2041 2021-03-18 15:55:10 +01:00
Michal Nowak
70076fb7c8
Reorder release notes 2021-03-18 15:55:10 +01:00
Michal Nowak
b66bb0c89e
Tweak and reword release notes 2021-03-18 15:54:41 +01:00
Matthijs Mekking
b518ed9f46 Fix "unable to thaw dynamic kasp zone" 
Dynamic zones with dnssec-policy could not be thawed because KASP
zones were considered always dynamic. But a dynamic KASP zone should
also check whether updates are disabled.
 2021-03-17 08:24:15 +01:00
Matthijs Mekking
ee0835d977 Fix a XoT crash 
The transport should also be detached when we skip a master, otherwise
named will crash when sending a SOA query to the next master over TLS,
because the transport must be NULL when we enter
'dns_view_gettransport'.
 2021-03-16 10:11:12 +01:00
Evan Hunt
f3b13c6027 CHANGES, release notes 2021-03-05 18:09:42 +02:00
Evan Hunt
82b82bb821 CHANGES, release note 2021-03-03 17:54:47 -08:00
Matthijs Mekking
a404eaaffd Add CHANGES and release notes for GL #2503 2021-02-25 11:32:53 +01:00
Matthijs Mekking
89c47b3b42 Add changes and notes for [#2498] 2021-02-25 17:21:17 +11:00
Matthijs Mekking
5a99a124fb Add changes and notes for [#2408] 2021-02-23 09:17:24 +01:00
Mark Andrews
3d340ecfd2 Add release note for [GL #2499] 2021-02-19 09:18:08 +11:00
Michał Kępień
ac95a9db99 Set up release notes for BIND 9.17.11 2021-02-17 22:25:26 +01:00
Michał Kępień
48353879e5 Prepare release notes for BIND 9.17.10 2021-02-17 22:20:24 +01:00
Michał Kępień
5c15c6ab21 Add release note for GL #2073 2021-02-17 22:20:24 +01:00
Michał Kępień
fc4b7e72cc Reorder release notes 2021-02-17 22:20:24 +01:00
Michał Kępień
3799e66f04 Tweak and reword release notes 2021-02-17 22:20:24 +01:00
Michał Kępień
234ff52725 Use :rfc:<number> references in release notes 2021-02-17 22:20:24 +01:00
Michał Kępień
e63b385073 Document the build-time requirement for nghttp2 2021-02-17 22:20:24 +01:00
Ondřej Surý
6d442e9c04 Add CHANGES and release notes for GL #2487 2021-02-17 08:10:45 +01:00
Evan Hunt
3126eb652d some release note corrections 2021-02-16 16:56:25 -08:00
Mark Andrews
7a47262626 Add release note for [GL #2460] 2021-02-09 12:30:14 +00:00
Mark Andrews
1294918702 Add release note entry 2021-02-03 16:24:44 +01:00
Matthijs Mekking
7947f7f9c6 Add change and release note for [#2375] 
News worthy.
 2021-02-03 15:35:06 +01:00
Evan Hunt
91718fe4fb CHANGES, release notes 2021-02-03 12:06:17 +01:00
Evan Hunt
06951472dd Add parser support for DoH configuration options 
This commit adds stub parser support and tests for:
- an "http" global option for HTTP/2 endpoint configuration.
- command line options to set http or https port numbers by
  specifying -p http=PORT or -p https=PORT.  (NOTE: this change
  only affects syntax; specifying HTTP and HTTPS ports on the
  command line currently has no effect.)
- named.conf options "http-port" and "https-port"
- HTTPSPORT environment variable for use when running tests.
 2021-02-03 12:06:17 +01:00
Matthijs Mekking
76cf72e65a Correctly initialize old key with state file 
The 'key_init()' function is used to initialize a state file for keys
that don't have one yet. This can happen if you are migrating from a
'auto-dnssec' or 'inline-signing' to a 'dnssec-policy' configuration.

It did not look at the "Inactive" and "Delete" timing metadata and so
old keys left behind in the key directory would also be considered as
a possible active key. This commit fixes this and now explicitly sets
the key goal to OMNIPRESENT for keys that have their "Active/Publish"
timing metadata in the past, but their "Inactive/Delete" timing
metadata in the future. If the "Inactive/Delete" timing metadata is
also in the past, the key goal is set to HIDDEN.

If the "Inactive/Delete" timing metadata is in the past, also the
key states are adjusted to either UNRETENTIVE or HIDDEN, depending on
how far in the past the metadata is set.
 2021-02-03 08:36:01 +01:00
Evan Hunt
220bca9ebf CHANGES and release notes 2021-01-29 12:07:38 +01:00
Matthijs Mekking
ed8421693c Add notes and change entry for [#2434] 
This concludes the serve-stale improvements.
 2021-01-28 17:02:56 +01:00
Mark Andrews
79fad620a2 Add release note for [GL #2413] 2021-01-28 01:54:59 +00:00
Matthijs Mekking
37d11f5be0 Add notes and changes for [#2178] 2021-01-26 15:01:24 +01:00
Diego Fronza
6ab9070457 Add documentation for stale-answer-client-timeout 2021-01-25 10:47:14 -03:00
Ondřej Surý
b30aaa3748 Add CHANGES and release note for GL #2387 2021-01-25 14:19:53 +01:00
Michał Kępień
7751a8eaf6 Set up release notes for BIND 9.17.10 2021-01-21 09:02:04 +01:00
Michał Kępień
6118f75c70 Prepare release notes for BIND 9.17.9 2021-01-21 08:57:22 +01:00
Michał Kępień
cf9d818be3 Add release note for GL #2091 2021-01-21 08:57:22 +01:00
Michał Kępień
09ff03bb1c Reorder release notes 2021-01-21 08:57:22 +01:00
Michał Kępień
e343aa5b94 Tweak and reword release notes 2021-01-21 08:57:22 +01:00
Matthijs Mekking
9d96350f4f Add notes for [#1086] 
Mention the configuration cleanup.
 2021-01-19 10:12:40 +01:00
Matthijs Mekking
ad63e9e4f8 Fix signatures-validity config option 
KASP was using 'signatures-validity-dnskey' instead of
'signatures-validity'.
 2021-01-12 10:54:48 +00:00
Matthijs Mekking
aa69753470 Fix current release notes 
Remove entry that was release in 9.17.8 already.
 2021-01-11 12:21:03 +01:00
Matthijs Mekking
e15a433b23 Update serve-stale config defaults 
Change the serve-stale configuration defaults so that they match the
recommendations from RFC 8767.
 2021-01-11 11:13:45 +01:00
Mark Andrews
584e589d84 Add release note 2021-01-06 15:28:23 +11:00
Matthijs Mekking
2e7ccecefe Fixup notes 
I screwed up the notes in !4474
 2020-12-23 12:03:26 +01:00
Matthijs Mekking
08b6e8c2c9 Add notes for [#2341] 
Mention the bugfix in the release.
 2020-12-23 11:43:03 +01:00
Matthijs Mekking
7825d8f916 Add documentation and notes for [#1750] 2020-12-23 09:10:13 +01:00
Mark Andrews
fc4af548e7 Add CHANGES and release notes for [GL #2245] 2020-12-23 09:16:26 +11:00
Michał Kępień
7c1c021fc5 Set up release notes for BIND 9.17.9 2020-12-16 22:09:14 +01:00
Michał Kępień
a5f1af7c14 Prepare release notes for BIND 9.17.8 2020-12-16 22:05:50 +01:00
Michał Kępień
af58fcc92a Add release note for GL #2321 2020-12-16 22:05:50 +01:00
Michał Kępień
552418b68c Add release note for GL #1816 2020-12-16 22:05:50 +01:00
Michał Kępień
bdc45c82c5 Reorder release notes 2020-12-16 22:05:50 +01:00
Michał Kępień
0f889b9c7d Tweak and reword release notes 2020-12-16 22:05:50 +01:00
Ondřej Surý
ba887a688c Add CHANGES and release notes for GL #2058 2020-12-12 07:15:45 +01:00
Mark Andrews
88943974de Add release note entry 2020-12-11 14:17:52 +11:00
Ondřej Surý
5e1a23a1b6 Add CHANGES and release note for GL #2137 2020-12-03 09:23:24 +01:00
Ondřej Surý
c7d81f12f8 Add CHANGES and release not for GL #2250 2020-12-02 11:07:01 +01:00
Ondřej Surý
c26a2ea134 Add release note for known issue #2137 2020-12-01 16:47:25 +01:00
Mark Andrews
ab0bf49203 Adjust default value of "max-recursion-queries" 
Since the queries sent towards root and TLD servers are now included in
the count (as a result of the fix for CVE-2020-8616),
"max-recursion-queries" has a higher chance of being exceeded by
non-attack queries.  Increase its default value from 75 to 100.
 2020-12-01 23:47:23 +11:00
Mark Andrews
356243aaec Add release note for [GL #2315] 2020-12-01 10:52:41 +01:00
Mark Andrews
d0dd71380b Add release note for [GL #2275] 2020-11-26 20:48:46 +00:00
Michał Kępień
2011a86881 Set up release notes for BIND 9.17.8 2020-11-26 12:16:49 +01:00
Michał Kępień
3a447d02b4 Prepare release notes for BIND 9.17.7 2020-11-26 12:12:17 +01:00
Michał Kępień
42cf594b37 Add release note for GL #2244 2020-11-26 12:12:17 +01:00
Michał Kępień
563f8a78e9 Add release note for GL #2236 2020-11-26 12:12:17 +01:00
Michał Kępień
572bc05aca Add release note for GL #1736 2020-11-26 12:12:17 +01:00
Michał Kępień
a4dea3c70c Reorder release notes 2020-11-26 12:12:17 +01:00
Michał Kępień
59221c4b3b Tweak and reword release notes 2020-11-26 12:12:17 +01:00
Matthijs Mekking
6b5d7357df Detect NSEC3 salt collisions 
When generating a new salt, compare it with the previous NSEC3
paremeters to ensure the new parameters are different from the
previous ones.

This moves the salt generation call from 'bin/named/*.s' to
'lib/dns/zone.c'. When setting new NSEC3 parameters, you can set a new
function parameter 'resalt' to enforce a new salt to be generated. A
new salt will also be generated if 'salt' is set to NULL.

Logging salt with zone context can now be done with 'dnssec_log',
removing the need for 'dns_nsec3_log_salt'.
 2020-11-26 10:43:59 +01:00
Matthijs Mekking
9adad77ac3 Add changes and notes for kasp NSEC3 support 
This feature is news worthy.
 2020-11-26 10:43:58 +01:00
Mark Andrews
fbad04a51a Add release note 2020-11-25 08:25:29 +11:00
Mark Andrews
e980affba0 Fix DNAME when QTYPE is CNAME or ANY 
The synthesised CNAME is not supposed to be followed when the
QTYPE is CNAME or ANY as the lookup is satisfied by the CNAME
record.
 2020-11-19 10:18:01 +11:00
Diego Fronza
b4c997537b Add CHANGES and release notes entry 2020-11-11 12:53:24 -03:00
Witold Kręcicki
bc19dc84ba CHANGES note 2020-11-10 14:20:31 +01:00
Evan Hunt
42d94614e4 CHANGES and release notes 2020-11-09 14:50:48 +01:00
Evan Hunt
3ff0ee568d CHANGES and release note 2020-11-08 13:36:12 -08:00
Witold Kręcicki
cd3117b747 Add CHANGES and release note for GL #2227 2020-10-29 12:34:00 +01:00
Michał Kępień
3e007be912 Set up release notes for BIND 9.17.7 2020-10-22 08:58:55 +02:00
Michał Kępień
2291356b08 Prepare release notes for BIND 9.17.6 2020-10-22 08:54:32 +02:00
Michał Kępień
ef3bd208aa Reorder release notes 2020-10-22 08:54:32 +02:00
Michał Kępień
65f88149de Tweak and reword release notes 2020-10-22 08:54:32 +02:00
Michał Kępień
88cb988cc3 Restore release note for GL #2146 2020-10-22 08:54:32 +02:00
Matthijs Mekking
6c5ff94218 Don't increment network error stats on UV_EOF 
When networking statistics was added to the netmgr (in commit
5234a8e00a), two lines were added that
increment the 'STATID_RECVFAIL' statistic: One if 'uv_read_start'
fails and one at the end of the 'read_cb'.  The latter happens
if 'nread < 0'.

According to the libuv documentation, I/O read callbacks (such as for
files and sockets) are passed a parameter 'nread'. If 'nread' is less
than 0, there was an error and 'UV_EOF' is the end of file error, which
you may want to handle differently.

In other words, we should not treat EOF as a RECVFAIL error.
 2020-10-20 10:57:16 +02:00
Ondřej Surý
096d41b4e2 Add text describing the changes done in the MR in more detail 2020-10-05 16:21:21 +02:00
Matthijs Mekking
e826facadb Add rndc dnssec -rollover command 
This command is similar in arguments as -checkds so refactor the
'named_server_dnssec' function accordingly.  The only difference
are that:

- It does not take a "publish" or "withdrawn" argument.
- It requires the key id to be set (add a check to make sure).

Add tests that will trigger rollover immediately and one that
schedules a test in the future.
 2020-10-05 10:53:45 +02:00
Matthijs Mekking
d6d41e96a3 Add change and note for #2171 
This is a bug that needs to be noted.
 2020-10-02 09:20:39 +02:00
Ondřej Surý
6179a38810 Add CHANGES and release note for GL #2124 2020-09-29 08:22:09 +02:00
Matthijs Mekking
1728599684 Add notes and CHANGES for #1870 
This is a new features so it requires a CHANGE and release notes entry.
 2020-09-23 16:09:24 +02:00
Matthijs Mekking
0a8cb3fa97 Fix 'deprected' typo 2020-09-21 11:26:52 +02:00
Ondřej Surý
2869ca1401 Add CHANGES and release note for GL #2166 2020-09-21 10:55:00 +02:00
Michał Kępień
853a51d4a9 Add release note 2020-09-21 09:28:36 +02:00
Michał Kępień
9040f9d63a Set up release notes for BIND 9.17.6 2020-09-16 22:41:35 +02:00
Michał Kępień
74ac8bf33a Prepare release notes for BIND 9.17.5 2020-09-16 22:34:05 +02:00
Michał Kępień
c3685f5351 Add release note for OSS-Fuzz fixes 2020-09-16 22:34:05 +02:00
Michał Kępień
b989be60bf Add release note for GL #2074 2020-09-16 22:34:05 +02:00
Michał Kępień
dbe63c7ae7 Tweak and reword release notes 2020-09-16 22:34:05 +02:00
Michał Kępień
e56e3aeb6a Add release note for #2146 2020-09-16 11:18:07 +02:00
Evan Hunt
dcee985b7f update all copyright headers to eliminate the typo 2020-09-14 16:20:40 -07:00
Mark Andrews
1134f077fd Add CHANGES and release note for GL #2054 2020-09-02 16:59:10 +02:00
Matthijs Mekking
ff006a1730 Add change entry and release note for #1748 2020-09-02 12:01:22 +02:00
Michal Nowak
10dd78126a
Add CHANGES and release note for GL !4045 2020-09-02 11:08:40 +02:00
Diego Fronza
044a72cca9 Add CHANGES and release note for GL #1847 2020-09-01 15:47:00 -03:00
Ondřej Surý
4722196b13 Add CHANGES and release note for GL #1928 2020-08-28 20:46:34 +02:00
Ondřej Surý
d47d2b3fe0 Add CHANGES and release notes for GL #2104 2020-08-28 16:21:56 +02:00
Evan Hunt
d7362ff16d BIND 9.17.4 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAl8xHJ0PHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEFcAsQAIDxJLjMt5lMV3XnakCy+4TSW03QNbnqg/+f
 VLqDzzMBbuKWYVm8GkBFtKehWHfeYGytDDKReM88M7vHzdpi9jWGi0/OIr/nZmUn
 1oK6Kx5TxoIwtW0c1nGiLfOFlBXfzFblcUviaA0aW0v824GkHEEM0gYTp6VJqL3N
 NHtkJXXVNyRRK0ER6xQtSJaizGV2Zt3qYrfo3xUJsFIt5vRUcGipHcaRAQxvmYvw
 SM2heKe4J4qONvFbNlsHRlMdQ4QKIUzFO5XB9hL8kiO1Yyt5bXKi4JRdNb1YkIbk
 pOjm3uNrXrCe8t3r1WxiCY8+9XNDxShL4VirmGKVGAZ/BktJzlyaa1LgkdA+6ggz
 UOo3/wREojYlKtuepZzgz4G5SUl7f5CIMmotAhF9qxDYOAJ/wWCxGhfcFtHUKHrk
 aqFdpQgYcqcT+z479Gov9DTu4RAX+yCSBELOJBPaEE/n4WAFP0p8zWlyFSw4i4hw
 7SFU9yhjpJgrj3HEuKlkK3v3WKFMRgOfeQgMmYNprxT/6NfQiF7PRK3Xrc12OE1m
 hY6wNf8e3VfuMmXJeAE+Ypjwl0bbeHzBCgVqDTqMAYOaW4VvsRV3d52kzWzDz3w8
 xfXWM3RGYlg1QVVo3dCNaKUL9lqVWAX0EXHinNueaiiakeB0FVNDOBtHHxpOlSkT
 izv1V//F
 =JqeM
 -----END PGP SIGNATURE-----

Merge tag 'v9_17_4' into main

BIND 9.17.4
 2020-08-20 12:05:01 -07:00
Matthijs Mekking
e4c82fc7ae Add notes for #1613 (rndc dnssec -checkds) 
This is a new feature that should be mentioned in the notes.
 2020-08-07 11:26:09 +02:00
Michał Kępień
8980d219c7 Reorder release notes 2020-08-05 16:02:38 +02:00
Michał Kępień
e0f394bbc4 Prepare release notes for BIND 9.17.4 2020-08-05 16:02:38 +02:00
Michał Kępień
9d932c6ddc Add release note for #1976 2020-08-05 16:02:38 +02:00
Michał Kępień
23a60ecd15 Add release note for #1619 2020-08-05 16:02:38 +02:00
Michał Kępień
bc212cf163 Tweak and reword release notes 2020-08-05 16:02:38 +02:00
Mark Andrews
4fb94906fa Add CHANGES and release note for GL #2055 2020-08-05 15:54:50 +02:00
Ondřej Surý
aaeea046ed Add CHANGES and release note for GL #2037 2020-08-05 15:51:29 +02:00
Mark Andrews
e576baad9d Add CHANGES and release notes for GL #2028 2020-08-05 15:47:14 +02:00
Evan Hunt
a3e42f8599 Add CHANGES and release note for GL #1997 2020-08-05 15:43:52 +02:00
Ondřej Surý
f2b41e11b4 Add CHANGES and release note for GL #1996 2020-08-05 12:57:23 +02:00
Ondřej Surý
dd62275152 Add CHANGES and release notes for GL #1712 and GL #1829 2020-08-04 10:51:09 +02:00
Witold Kręcicki
94eda43ab2 Add CHANGES and release note for GL #2038 2020-07-31 12:44:22 +02:00
Ondřej Surý
2b4f0f03f5 Add CHANGES and release note for #1775 2020-07-21 08:44:26 +02:00
Evan Hunt
efa5639934 CHANGES, release note 2020-07-15 22:35:07 -07:00
Michał Kępień
2b2e97a815 Set up release notes for BIND 9.17.4 2020-07-15 23:06:25 +02:00
Michał Kępień
fba5ce8a75 Reorder release notes 2020-07-15 22:51:33 +02:00
Michał Kępień
af35a186d0 Add release note for #1958 2020-07-15 22:51:33 +02:00
Michał Kępień
eedbd6ecf5 Add release note for #1938 2020-07-15 22:51:33 +02:00
Michał Kępień
41a79d068c Add release note for #1937 2020-07-15 22:51:33 +02:00
Michał Kępień
e9a869f51e Tweak and reword release notes 2020-07-15 22:51:33 +02:00
Michał Kępień
aa1d6a46ab Prepare release notes for BIND 9.17.3 2020-07-15 22:51:32 +02:00
Mark Andrews
3ff60b881f Add release note for [GL !3735] 2020-07-14 10:59:59 +10:00
Evan Hunt
7c703c851f CHANGES, release note 2020-07-13 13:17:08 -07:00
Diego Fronza
a22e61d554 Add CHANGES and release note for #1719 2020-07-13 11:48:55 -03:00
Evan Hunt
565f99f9e5 CHANGES, release note 2020-07-01 11:13:44 -07:00
Ondřej Surý
4c12709da4 Add CHANGES and release note for #1968 2020-07-01 15:11:44 +02:00
Ondřej Surý
ee43457811 Add release notes for #1862 2020-07-01 12:26:17 +02:00
Ondřej Surý
605209402f Add CHANGES and release not for #1747 2020-07-01 11:59:01 +02:00
Evan Hunt
08401e38c1 CHANGES, release note 2020-06-30 17:31:29 -07:00
Matthijs Mekking
e273b95a8b Update notes, changes for #1612 2020-06-30 09:51:22 +02:00
Mark Andrews
e195d4608a Add Release Note for [GL #1689] 2020-06-25 13:46:36 +02:00
Ondřej Surý
7f24d4b476 Add CHANGES and release note for #1933 2020-06-23 15:16:02 +02:00
Mark Andrews
81d15bc967 Add Release Note for [GL !3728] 2020-06-23 20:20:39 +10:00
Ondřej Surý
eaafae2766 Add CHANGES and release note for #1949 2020-06-22 12:33:54 +02:00
Michał Kępień
a4bb843075 Set up release notes for BIND 9.17.3 2020-06-18 10:10:02 +02:00
Michał Kępień
12aa6a0308 Tweak and reword release notes 2020-06-18 10:03:05 +02:00
Michał Kępień
861d824f56 Add release note for #1859 2020-06-18 10:03:05 +02:00
Michał Kępień
0d991837a2 Add release note for #1842 2020-06-18 10:03:05 +02:00
Michał Kępień
b932982903 Add release note for #1834 2020-06-18 10:03:05 +02:00
Michał Kępień
4c730f6d49 Add release note for #1812 2020-06-18 10:03:05 +02:00
Michał Kępień
e8a9a9b800 Add release note for #1714 2020-06-18 10:03:05 +02:00
Michał Kępień
9e8a2a8150 Add release note for #83 2020-06-18 10:03:05 +02:00
Michał Kępień
11d8177c99 Reorder release notes 2020-06-18 10:03:00 +02:00
Michał Kępień
2c90cfdcdd Prepare release notes for BIND 9.17.2 2020-06-18 09:59:20 +02:00
Mark Andrews
8e88a6f0ad Add release note for #1718 2020-06-18 09:59:20 +02:00
Mark Andrews
ed4b69abb8 Add release notes for #1850 2020-06-18 09:59:19 +02:00
Mark Andrews
f97889a51a Add release note for [GL #1926] 2020-06-11 16:04:28 +10:00
Ondřej Surý
5a9f594629 Add release note for #1808 2020-06-05 16:06:42 +02:00
Mark Andrews
3c65ff7deb Add CHANGES entry and release note for #1683 2020-06-04 16:11:05 +02:00
Mark Andrews
8b05e6f710 Add release note for #1798 2020-06-04 16:00:33 +02:00
Witold Kręcicki
d3ea1caf5a Add release notes for #1782 2020-06-04 15:50:40 +02:00
Ondřej Surý
bee9ed84f4 Update release note for #1877 2020-06-04 14:06:30 +02:00
Michal Nowak
172392a98a Add release note for #1724 2020-06-04 13:20:14 +02:00
Ondřej Surý
3be37fd9ef Add GL issue number to release note 2020-06-03 11:25:13 +02:00
Ondřej Surý
fc4f3b92ab Add release notes for #1877 2020-06-03 09:48:54 +02:00
Matthijs Mekking
e71d60299f Retire predecessor when creating successor 
When creating the successor, the current active key (predecessor)
should change its goal state to HIDDEN.

Also add two useful debug logs in the keymgr_key_rollover function.
 2020-06-02 10:01:28 +02:00
Matthijs Mekking
0d578097ef Fix bug in keymgr_key_has_successor 
The logic in `keymgr_key_has_successor(key, keyring)` is flawed, it
returns true if there is any key in the keyring that has a successor,
while what we really want here is to make sure that the given key
has a successor in the given keyring.

Rather than relying on `keymgr_key_exists_with_state`, walk the
list of keys in the keyring and check if the key is a successor of
the given predecessor key.
 2020-06-02 10:00:51 +02:00
Evan Hunt
6ebab27567 CHANGES, release note 2020-05-29 14:22:37 -07:00
Witold Kręcicki
4ae2a74873 CHANGES and release notes 2020-05-29 19:18:58 +00:00
Evan Hunt
d09c4ad402 CHANGES, README, release note 2020-05-26 00:55:19 -07:00
Mark Andrews
7ea45838a9 Add release notes entry 2020-05-19 12:32:31 +02:00
Mark Andrews
2a020ea970 Add release note entry 2020-05-19 12:30:28 +02:00
Mark Andrews
8f9dc72e63 Add release note entry 2020-05-13 15:42:24 +10:00
Michał Kępień
08d4983a5f Restore release notes for BIND 9.17.2 2020-05-12 15:20:22 +02:00
Michał Kępień
e7a9fc8a0e Restore release notes for BIND 9.17.1 2020-05-12 15:20:22 +02:00
Michał Kępień
ff1ac20e0f Restore release notes for BIND 9.17.0 2020-05-12 15:20:22 +02:00