upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-22 01:10:41 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
27394 commits 18 branches 854 tags 440 MiB
Commit graph

319 commits

Author SHA1 Message Date
Mark Andrews
329a0e7812 Remove support for silently ignoring 'no-change' deltas from BIND 8 when processing an IXFR stream. 'no-change' deltas will now trigger a fallback to AXFR as the recovery mechanism. 2018-07-10 19:20:09 -07:00
Evan Hunt
3245eb98f4 clarify documentation of the 'mirror' option 2018-07-03 09:10:11 +02:00
Evan Hunt
6993d9131e update new features list; also fix the "mirror" release note 2018-07-02 19:09:32 -07:00
Ondřej Surý
b5ea00158d Improve documentation and error messages when libcap is not available 2018-07-02 08:47:32 +02:00
Michał Kępień
92ae05e1bc Add a release note 2018-06-28 13:38:39 +02:00
Evan Hunt
2aee33f412 CHANGES, release note 2018-06-27 17:37:29 -07:00
Ondřej Surý
cc5c3b5948 Update CHANGES and doc to reflect changes in master 2018-06-26 15:11:16 -07:00
Mark Andrews
379d407773 add CHANGES and release notes 
(cherry picked from commit 5f7a6232d6)
 2018-06-26 15:10:34 -07:00
Evan Hunt
03ecba2cdc allow-recursion could incorrectly inherit from the default allow-query 2018-06-14 14:42:50 +02:00
Evan Hunt
dde66b8012 nits 
- capitalize QNAME in the doc
- regenerate options/docbook
- whitespace
 2018-06-12 09:20:13 +02:00
Witold Kręcicki
265052df49 qname-minimization: Some post-review style/minor fixes 2018-06-12 09:20:12 +02:00
Ondřej Surý
e771326f60 Add note about removing ECC-GOST to release notes 2018-06-05 09:14:14 +02:00
Tony Finch
4862d8ffc1 Add CHANGES and release notes entries 
4957.	[func]		NSID logging (enabled by the "request-nsid" option)
			now has its own "nsid" category, instead of using the
			"resolver" category. [GL !331]
 2018-06-05 12:11:12 +10:00
Evan Hunt
d91e313337 CHANGES and release note 2018-05-31 18:23:43 +02:00
Evan Hunt
9f8ba2eb82 CHANGES, release note 2018-05-25 08:21:25 -07:00
Evan Hunt
b4d8349237 add new feature list to README 2018-05-24 11:26:12 -07:00
Evan Hunt
df4df8e0d5 begin preparation for 9.13.0 
- tidy up release notes, removing the existing "security fixes" and
  "bug fixes" sections
- add a section in the release notes to discuss the new version
  numbering
- update version, CHANGES, api, and mapapi files
 2018-05-21 11:50:38 -07:00
Ondřej Surý
087eab022f Add release notes. 2018-05-16 09:54:35 +02:00
Evan Hunt
ea5626179e CHANGES and release note 2018-05-13 19:18:56 -07:00
Ondřej Surý
ea95e83f5c Add release notes about removed support for OpenSSL 0.9.x 2018-05-03 15:55:45 +02:00
Evan Hunt
784087390a remove the rbtdb64 database implementation 2018-04-20 16:14:51 -07:00
Evan Hunt
c592655c0f new option "dnskey-sig-validity" 
- overrides "sig-validity-interval" for DNSKEY, CDNSKEY and CDS RRSIGs
 2018-04-20 12:12:08 -07:00
Mark Andrews
e20790c956 add release note for root-key-sentinel 2018-04-18 08:49:55 -07:00
Tony Finch
286a7b6b9a Allow TTL values when configuring TTLs and time intervals. 
Options updated to use ttlvals: max-cache-ttl, max-ncache-ttl,
max-policy-ttl, fstrm-set-reopen-interval, interface-interval, and
min-update-interval.
 2018-04-13 11:46:06 -07:00
Evan Hunt
e98b2489f3 Add release note 2018-03-18 10:08:57 +00:00
Ondřej Surý
f4a517e5d7 Add release notes and CHANGES 2018-03-17 13:50:59 +00:00
Ondřej Surý
e7590c7528 Add release notes for IDNA2008 2018-03-17 13:13:47 +00:00
Michał Kępień
2a50fc324b Add a release note about dropping support for non-dotted-quad IPv4 addresses in master files 
Support for non-dotted-quad IPv4 addresses in master files was dropped
when the inet_aton() call inside getquad() got replaced with a call to
inet_pton(), so a release note should have been added back then to
inform users that such syntax will no longer work.
 2018-03-06 09:49:27 +01:00
Evan Hunt
cc5432cea5 added missing release note 2018-02-25 14:37:37 -08:00
Evan Hunt
05a91e4e4c list servers that time out in dig +nssearch 2018-02-24 10:56:09 -08:00
Ondřej Surý
843d389661 Update license headers to not include years in copyright in all applicable files 2018-02-23 10:12:02 +01:00
Evan Hunt
1cb250c37c Added a release note, plus minor cleanups. 2018-02-22 13:38:51 -08:00
Evan Hunt
908b2f4b3b [master] add missing release notes, update README 2018-02-17 19:56:31 -08:00
Evan Hunt
355c533936 [master] add missing release note 2018-02-15 16:19:25 -08:00
Mark Andrews
ff8f2a584d add note for update-policy rules changes 2018-02-07 14:03:33 +11:00
Evan Hunt
c34680cf3b [master] spelling, release note 2018-02-02 10:32:17 -08:00
Evan Hunt
80788e72d0 [master] remove HMAC support from dnssec-keygen 
4868.	[func]		dnssec-keygen can no longer generate HMAC keys.
			Use tsig-keygen instead. [RT #46404]
 2018-01-18 17:29:28 -08:00
Tinderbox User
10e49fc83b update copyright notice / whitespace 2018-01-04 23:45:32 +00:00
Evan Hunt
79112cec7d [master] typo 2018-01-03 19:29:59 -08:00
Evan Hunt
053b51c4db [master] block validator deadlock and prevent use-after-free 
4859.	[bug]		A loop was possible when attempting to validate
			unsigned CNAME responses from secure zones;
			this caused a delay in returning SERVFAIL and
			also increased the chances of encountering
			CVE-2017-3145. [RT #46839]

4858.	[security]	Addresses could be referenced after being freed
			in resolver.c, causing an assertion failure.
			(CVE-2017-3145) [RT #46839]
 2018-01-03 19:11:18 -08:00
Evan Hunt
79c2400d91 [master] allow primary/secondary as synonyms for master/slave 
4848.	[func]		Zone types "primary" and "secondary" can now be used
			as synonyms for "master" and "slave" in named.conf.
			[RT #46713]
 2017-12-15 01:47:05 -08:00
Evan Hunt
d40f4c9885 [master] clear out release notes so they can be repopulated for 9.13 2017-12-15 01:40:16 -08:00
Mark Andrews
77f9623439 add [RT #46774] 2017-12-05 16:14:15 +11:00
Evan Hunt
b695f77533 [master] revised release note 2017-12-04 15:37:09 -08:00
Mark Andrews
9ff34db455 add note for [RT #46743] and [RT #46754] 2017-12-05 09:52:12 +11:00
Evan Hunt
e197a2bd15 [master] fix "allow-transfer" inheritance and clean up ACL configuration 
4836.	[bug]		Zones created using "rndc addzone" could
			temporarily fail to inherit an "allow-transfer"
			ACL that had been configured in the options
			statement. [RT #46603]
 2017-11-30 12:37:08 -08:00
Evan Hunt
f4b2356359 [master] remove extra comma 2017-11-08 09:31:25 -08:00
Evan Hunt
00827f59d2 [master] revise incorrect release note 2017-11-08 09:18:29 -08:00
Mark Andrews
f5e1b555c5 4801. [func] 'dnssec-lookaside auto;' and 'dnssec-lookaside . 
trust-anchor dlv.isc.org;' now elicit warnings rather
                        than being fatal configuration errors. [RT #46410]
 2017-10-30 07:40:59 +11:00
Evan Hunt
c9f8165a06 [master] tag initializing keys 
4798.	[func]		Keys specified in "managed-keys" statements
			are tagged as "initializing" until they have been
			updated by a key refresh query. If initialization
			fails it will be visible from "rndc secroots".
			[RT #46267]
 2017-10-27 15:49:44 -07:00