upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-03-16 07:32:57 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
37459 commits 18 branches 854 tags 440 MiB
Commit graph

2832 commits

Author SHA1 Message Date
Michal Nowak
d8d283bb6f
Add FreeBSD 12.4 
(cherry picked from commit 2307661b1a)
 2023-02-24 14:04:02 +01:00
Michal Nowak
259dd5a3ec
Drop date from "Regularly Tested Platforms" section 
Changing the date is easy to forget and may be outdated.

(cherry picked from commit 5783280b10)
 2023-02-24 12:47:34 +01:00
Michal Nowak
9d8fe281c3
Add Alpine Linux 3.17 
(cherry picked from commit 345089ad23)
 2023-02-24 12:47:33 +01:00
Michal Nowak
e48b6dfc61 BIND 9.18.12 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEIz+ZTe/bbr1Q+/5RJKPoRjruXlYFAmPc7jgACgkQJKPoRjru
 Xlb/bQ/+JEQ7B2jvP3D3Q5s58cmofBboqtMY/KxYD4kYI8IHUZBedAUN+Oud2cV1
 QjHyklztrJATtbt0puWLwfb1bPbInBaQEhrMQML0S3qPeLovvYcojq8Fq42+17Rp
 AU8EwHodeFDkXbAMxgbs/5+kgHockFLl4S5H6rc/jz9oj8mJN1Paqk2RC3wBJHNQ
 05JikAVxNE58QAr50jenuf2bBHflhGC9JTm+dtt7o97k9LhNGrxKUfIwI8DhkuGh
 ca7bdWxGdd3OyfTGvP21FyjlD1VdAGcbnLJlJE8c1f+Hdrc1U9TNJY7gM3y2Z6gD
 57alUzqBYXXIM/efUGoTpbvX2l2SUBpMyBIBVdx+EumhQpLUAmmNKGU0bFkk+Vht
 ayzyKo8vksZsT6FKlQNOGedP/q17jz+UwBQ3KlIhS3shGJ1PfH/jDKlnRs69Ju2I
 jmImtUf1ddLACquXz8OKXPHMrKXaKBbp5Fd6kPAo58ho5JHzogBMdk5P6rdmb7PP
 X0LO5AVaCPL3MCEPncGy0IU8vFHcNjE2LzUpZDN5wLAzH/kfcdbVSkrLqfyDi3j1
 QeCK+KelPKUgvTE5x8Uddnxf2ur6n8JxgEzojcv/x+mdxqsV8EMwc0Lg4v4LLVad
 ryKtA9X8XG/bHNHRc6C5CGkQt/u7fWn0q34mdjq20nWNQWt+Z0I=
 =v/Mg
 -----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEIz+ZTe/bbr1Q+/5RJKPoRjruXlYFAmPuXLcACgkQJKPoRjru
 XlYpjQ//T2CxKxf5xuvFB1Lh797sL2sPQ9EHAaBvObBvloHmT6IZ8kcalIqZAkP+
 MRhgy2uCiAGXOerYE/6a9UqtT6vVGvRZb4zH5SF0kjLU7v8b0ttsZDxLNEJdHktz
 h/Q+r+xpW3JmqBivaOn6XTj7vysxsk/TD7SNc8cvLHGtp5Nuv1W24NjPDBWaHorL
 rAoXhHI3x73vr63nzuyHCpl++c8+kNoUS5D64pBjc3vfzVQcYPdvefg9OYxNdhyj
 TZyNKD5JqYs8bi1KdoFukXcFwGbfv7M+DBLby4pYXAiuIvfGZ/lE+sza3E9V+nsM
 Fx13JNoq8/NM6cBvkOLHeCfGAaF1mhf/R8O3aAYrCYos+1GSUkMluQNZyiCgGPfm
 5oDjaDLdUAxZQKNba6p6nAaORHREeUyxMhl0ZiozeBeKEmJ+GMfFdEprEHNDVYjE
 9TNoY0S0IRXGT5FEwuclEKd8xN8NS5eBzoWrHK/75tXrSGKljs9Tvt/Ngf3A02W8
 tOatFGMiAJ8Gxy16Q87GGpd7K55PQ7k6d9UyC2g9M+rJkzhfweSGRL6dqz4o+da9
 U2NmhhQ2u95yUEqcVN+0YZKgSzZOxA+VG/FY82wB9bhnm3pE9d8JcTG75v0Q1lBv
 z3HMbZ+RxOySjj7L8vwqXES2lklb6FNZVN1yWJUJBnOgpCbKCa4=
 =HfTO
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_12' into v9_18

BIND 9.18.12
 2023-02-16 17:40:52 +01:00
Ondřej Surý
3368e5f231 Avoid libuv 1.35 and 1.36 that have broken recvmmsg implementation 
The implementation of UDP recvmmsg in libuv 1.35 and 1.36 is
incomplete and could cause assertion failure under certain
circumstances.

Modify the configure and runtime checks to report a fatal error when
trying to compile or run with the affected versions.

(cherry picked from commit 251f411fc3)
 2023-02-09 22:10:46 +01:00
Michał Kępień
2b9fbddf91 Prepare release notes for BIND 9.18.12 2023-02-03 10:00:20 +01:00
Tom Krizek
c8b4ca8e3a Update docs to reflect 9.18 has become ESV 2023-02-03 10:00:20 +01:00
Evan Hunt
5fa4aa2fec mark "port" as deprecated for source address options 
Deprecate the use of "port" when configuring query-source(-v6),
transfer-source(-v6), notify-source(-v6), parental-source(-v6),
etc. Also deprecate use-{v4,v6}-udp-ports and avoid-{v4,v6}udp-ports.

(cherry picked from commit 470ccbc8ed)
 2023-02-02 12:21:08 +01:00
Michał Kępień
8b4dcc27ef BIND 9.18.11 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAmPAh6gPHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEFyGsQAJuggfdFRAFzH6QTlE+jYPGGPGGAEp9+lFuP
 ufCdlek5FKN/V/NFpuMfNeyQ3NhK93ofMzaluAg47vM5Cj2/lPxUUFea7w20tHVm
 Nqsxk4Lc+RsnngVNUwWtA6CkwAGHDQA0Rwa3OEjqPkm33KLwCeC3w3ufv6KPlT7m
 MubNOd7BogMBxDg63TnOlSBjcKFi/TzGCNmOVj1cyOj9QP52XeIe6iKol4g47mWG
 erQ8ZKV/vWoIRCwLdPheRgCgO/2KyHLGbtI+uJ53OExiYnrKL18wGnt1Foo8Er9V
 hOkBykzgtWTtgrl8Ljd1lbR6FjZvLgcWWIZ6oM2RXjD25942lNgyWYubQHsRHchi
 /vnFD3qg5SBBbCHuzIzy9QCk2YYwJiDpI8t2RngzhJOexHGcCLYyM99yriqNYnFw
 DHoFkcUbJiHGhtEzzGuhz7LrSySclvqQRYbWLh7qcuUIKGdbPiWB8BmZtAkaFyaN
 fOJYwk8pSlpgvFqaAOicG3hAWTUxcJ5U/wWdBFk7Xg3wZ/K2XLuA88QgxePh2S2L
 kYBwwD81amWMEZct1hq9PW42vFFiWjJtZnTceZjCVARQamJ/+QgjUapMfbnYb1jN
 ry4XQoFz3FhfT4Ow2cKfRUzrh8lrNUJNqMoNiXDnj4jjH1YwIN6NqIYqrXJUGeCU
 yaaBGMu/
 =XdZL
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_11' into v9_18

BIND 9.18.11
 2023-01-25 21:26:22 +01:00
Michał Kępień
166523fd61 Prepare release notes for BIND 9.18.11 2023-01-12 22:11:14 +01:00
Evan Hunt
3d2033bb89 add a configuration option for the update quota 
add an "update-quota" option to configure the update quota.

(cherry picked from commit f57758a730)
 2023-01-12 12:02:35 +01:00
Evan Hunt
9f1ebd25f6 add an update quota 
limit the number of simultaneous DNS UPDATE events that can be
processed by adding a quota for update and update forwarding.
this quota currently, arbitrarily, defaults to 100.

also add a statistics counter to record when the update quota
has been exceeded.

(cherry picked from commit 7c47254a14)
 2023-01-12 12:02:35 +01:00
Evan Hunt
5fd93c66aa remove nonfunctional DSCP implementation 
DSCP has not been fully working since the network manager was
introduced in 9.16, and has been completely broken since 9.18.
This seems to have caused very few difficulties for anyone,
so we have now marked it as obsolete and removed the
implementation.

To ensure that old config files don't fail, the code to parse
dscp key-value pairs is still present, but a warning is logged
that the feature is obsolete and should not be used. Nothing is
done with configured values, and there is no longer any
range checking.

(cherry picked from commit 916ea26ead)
 2023-01-09 14:23:26 -08:00
Michał Kępień
d72070f30e Update copyright year to 2023 
(cherry picked from commit 1a5d707f52)
 2023-01-02 14:12:23 +01:00
Tom Krizek
2c2148fb23 BIND 9.18.10 
-----BEGIN PGP SIGNATURE-----
 
 iHUEABYIAB0WIQQenrxMWseszT2nKSgBYjubZSogpwUCY5c1EgAKCRABYjubZSog
 p/TnAPoCt3+yFh7UMS71SVfOLwlnMHqZsAOz2oCxHQIp606ffQD+Ksbr9Lj1LMp4
 ImZbS9ow+w5glYju5S5+i9i0kk2IXwk=
 =gtsr
 -----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
 
 iHUEABYIAB0WIQQenrxMWseszT2nKSgBYjubZSogpwUCY6QeKAAKCRABYjubZSog
 pwHCAQChpnQ1gWj9WKN1LJSdRobmX2lur4iduD332t8Sgc2emAD/VbHBPgg6lTG7
 3OmcCSNSNk5pqQe3qg82jnY/gpR+dQE=
 =Z7cG
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_10' into v9_18

BIND 9.18.10
 2022-12-22 10:06:46 +01:00
Michał Kępień
b315fabdce Prepare release notes for BIND 9.18.10 2022-12-12 12:53:31 +01:00
Matthijs Mekking
7694e5019c Document NS queries are excempt from minimal-responses 
Also document that DNSKEY, DS, CDNSKEY, and CDS never do additional
section processing.

(cherry picked from commit f7b477f6ea)
 2022-12-07 12:06:43 +01:00
Matthijs Mekking
132387b658 Add missing deprecated tag to max-zone-ttl 
This option was deprecated in commit 19352dd187 but at that time
we didn't mark it deprecated in the ARM reference.

(cherry picked from commit 13a16c1f4d)
 2022-12-01 08:14:49 +01:00
Matthijs Mekking
b4429660da Deprecate alt-transfer-source and companions 
Deprecate the alternate transfer sources from BIND 8.

(cherry picked from commit 105465d316)
 2022-12-01 08:14:42 +01:00
Ondřej Surý
0d1c3ef7c2
Deprecate setting operating system limits from named.conf 
It was possible to set operating system limits (RLIMIT_DATA,
RLIMIT_STACK, RLIMIT_CORE and RLIMIT_NOFILE) from named.conf.  It's
better to leave these untouched as setting these is responsibility of
the operating system and/or supervisor.

Deprecate the configuration options and remove them in future BIND 9
release.

(cherry picked from commit 379929e052)
 2022-11-21 15:57:09 +01:00
Michal Nowak
ecd9ed84ea
Add Fedora 37 
(cherry picked from commit b293b2c638)
 2022-11-21 13:49:27 +01:00
Michal Nowak
f0fc13e408 BIND 9.18.9 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAmNpg9oPHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEF594P/0ZwbJ2oQTSt2m9q6MCHlHkDPKSpI/J/76R/
 SX29obKO8RFZd2tm41rlzZMI2+ekQur7ecQp+YPibsyJSbbYQtdEeNlzKIj9X3/m
 yTDM+yP1iLmZWin2Dl+tCRafT+0O3Pl60kjmHuGnJbChf7XP6YwdMIqMJqG5t2Er
 wLz6hR/RkE6UsbMXnWRkUSvhpEEu/8qHEfDLfFWmvfcHPrwxw5ExTtqfw5KBMbWg
 MUwlnCthLETqOcoyDzBN17ftcud6v51D9aCb/a3B5Sx4VI/qHPrhMQNDZUUEyeEG
 rhmtqI3hrvW8AGLrKCK5qkE9FHtYGbfkWAdkQagapmT2fxQ+wPf0iHTGWUuTlmL4
 gM0LY7uqHkXUxeseYrtSFgraTiynjXQARSnnMQv5HCQ7Wc6pePw64AM73bD7occL
 oxFC2lg00G8szuwQKEtUFMVhiXyCuuFTZQvzB/eDOvD+S1MtzBPn8FyZovCWQPWF
 gNKpHwa/VorWQEbZ4x6zDVhC41b5Ea2W6gK7Vx2eLc1gX+3ogqrcegTY+K9Mil6o
 aMpdIbUwBlhyyIjOTy61mkuQ+g7mSvzQ3nQLkZE3But4NmUUWdf+OYQJziq7Sl62
 APOcYOQ+GhbD9674/P4gQd9AOqxhnrPcJCraOYGBbdV1h1Csjb7+y3+I4y49uUZU
 t38Z/IKs
 =VQAG
 -----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEIz+ZTe/bbr1Q+/5RJKPoRjruXlYFAmN0+J8ACgkQJKPoRjru
 Xla7cQ/+LUq4mrlApNsMJePMtO/02PCftSg9OqKMJdiSd06wJUb/echTsfqKGdFv
 K38+iAsg1Vq3azgetAqYHBZFy9yumkHi6fPZ2R2EISWLI1xLVXDmUEZB0TOfckAs
 5NCzX9KcRBrtuelxorSkn14PSt6Es7rN7sqBYxE6/0Z/l8cGJDhzOxYxeTFvubaX
 g6bkrEBadzeR1NILosJgQqyhZS2B3yT4GZS6/uqZ4fw+uptIRz7vCHtFB4jy/+hc
 V2HicUYsosNmTMILGhCBVkUBFgu5N/TT8XS2upBEZaC7n+aDLJBV3JbC1ngea4eP
 nwnAfWPuww+28Qj+m3ELBL+TBK3bo660lVQ4RVBnLja1eqHDAeCcPT9bO1ZjG8jj
 SiBdgDjAnZjgF6BbAid7XJ/DvpMK8nE2iS8Al/KhAiR9jIxUDAxVfdOk3Sqlcy4O
 yQUA2LiCDrehtl6PJneBXNKiY199ak0lxGf9PScTMjea52x5oE+SR88LThOpYE/+
 JNb2Dks1rp2eVKLkoaPW+ZKczB5/E7sPKItiokT00O5+yQbfezNfG2Ta/it7PSsv
 HuhJT797NdNeAlR7iNrywvtccqTcPGhsE47WVTGWQBiFH5BKecnYhpFwtRXzgXs1
 AWEKe4LyysTckygUsDz91WMq833VfS6z+VtXZMqLXxVs6zCvm8s=
 =cWe+
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_9' into v9_18

BIND 9.18.9
 2022-11-16 15:49:55 +01:00
Michal Nowak
4f180ee1f6
Add OpenBSD 7.2 
(cherry picked from commit b239e6870d)
 2022-11-15 08:32:29 +01:00
Michal Nowak
e30f71f6f1
Replace "sha1sum" with "openssl sha1 -r" 
"sha1sum" is part of GNU Coreutils, neither BIND 9 dependency nor POSIX.
Replace it with "openssl sha1 -r" as OpenSSL is BIND 9 dependency.

(cherry picked from commit d34c7ae227)
 2022-11-14 21:03:01 +01:00
Petr Špaček
fb6e5c2d28
Document that update-policy external is synchronous 
(cherry picked from commit 7d352741a0)
 2022-11-11 10:38:17 +01:00
Michał Kępień
82cbef953b Prepare release notes for BIND 9.18.9 2022-11-07 22:33:46 +01:00
Petr Špaček
1275f47907 Repeat Known Issues at the top of Release Notes page 
From now on all per-version notes link to the global list
of Known Issues. If there is a new note it should be listed twice:
In the per-version list, and in the global list.

(cherry picked from commit c58dd2790a)
 2022-11-07 14:43:40 +01:00
Michał Kępień
da0cd8c6db Bump Sphinx version to 5.3.0 
Make the Sphinx version listed in doc/arm/requirements.txt match the
version currently used in GitLab CI, so that Read the Docs builds the
documentation using the same Python software versions as those used in
GitLab CI.

(cherry picked from commit a8f0ab7df6)
 2022-10-24 11:45:11 +02:00
Aram Sargsyan
6d64f9e4ec Fix prefetch "trigger" value's documentation in ARM 
For the prefetch "trigger" parameter ARM states that when a cache
record with a lower TTL value is encountered during query processing,
it is refreshed. But in reality, the record is refreshed when the TTL
value is lower or equal to the configured "trigger" value.

Fix the documentation to make it match with with the code.

(cherry picked from commit ef344b1f52)
 2022-10-21 10:22:44 +00:00
Michal Nowak
d11843bdfc BIND 9.18.8 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAmNDzSUPHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEFU+wP/3WJi2oLi/qFFHAbVswfP7PdFZqZN20OrFGX
 o0Z0sTXiQAI2s1RFEgeyiTuH/CBSphz8hIb2tdMoMensuypjq0sHMaMJiJYj+qpn
 A7ttsOckeWcxS2qpQdTnJxr/Y6ZhC2wR4Srl9uuTJEd8ohj8YUcKuSzw0yhOS37Z
 6Sz1daxFf0nLvG7EC0rZ/X4hC7HLUBO8urxRtWksRk9XyfRV7w5hLDhrcIRHIUHo
 55bLdYEQI39o9ojqfx+KdcKZUpAeQzCGbJmV4anW0ucMM/PBiwATmJNlE49wuRRg
 51PPs9FWpjX+5u7nRjLs3tl29TkRQUKkLSNfgK6Fn9+xROSmEkoOw2LRFhY0A4ck
 wB6zQWmwnNrtcNY99QEu7KZyiWE/21UXBenCppo7qzC/t6DdN1TB9Ad86b23AIVv
 79MDVB5y2z+eofLdYbkhPuHnAdfD5dpXFoaoVykNpnhCTwAtb32mMzPIFO8G2vHw
 yAjqSxW0L/TR0DVJE9458HphDJJDGSlarHZjDBW/y7RMytKpUAk8BJrDM0VtyOXI
 LXO2/HwbNftXnF5gBTqu8kjMrDjwHaVR4OINW/5hIvPbxXETr2IGUZsNQP1+bLxB
 3bL20Yev9Tzex52skMe58mB1gmEeratlz49BWx8pPFkU8zJfPF6WLKxNqhlkhbG1
 EkQpVVa6
 =3pD8
 -----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEIz+ZTe/bbr1Q+/5RJKPoRjruXlYFAmNRGUoACgkQJKPoRjru
 XlYGgA//W4SxAC/tQz527wDl2SW0wCm4pYJXY3mj5zUYCPwfwSaxjUntqwkcsNL0
 +w6uhtiU4zR5eWt6uMFDuGXYo4ophPewHqC8ZB8R2bdpjn8RhRtdU3zjU7HrU8D7
 xccNkHz/2vOV8k6guhGYSpV91B0oGO5f/2DoegZVT9IMOnUfyHG0Lad3Vcl3xw8N
 8Ce/qvQ55trG3Jvlc1y7SCXB4q/dhJbgnI0Smd5tVSZprTkTMz2alAywQUdGK+Dt
 82gZqH/6jTfxKhgDs/PMx9JOGaFZxNk927iTE3q22a1ZkBkkTAi9s7tcfTRWFQlW
 jJm1gV1BHsxDSB4sU7NuuVtCjL4ZM0Mv5CIA6pzc/qbO+PZ2c9PoGOfj8aSX+zmF
 OS9tlodKTehHp5+3wOZ2VHCUhUy10DeU9URaY/WUn29LRcdQtSQlKPUHG0gCM/QQ
 +L5qyxksaMSBfk4NVrczlBaG+KE9nuCoo4EHPUQa2YYyJxEzWaYQxcWq4V53e7IS
 bF4QYxXdAtkRUL1J/q6Fh7l7l83fFpDI8j4pSTkTitGXWUOBXBXeY/uee6LUmS4w
 axY4q8Lsxy4W5NDngV27V+cDBBz30YWKhpWgDt4rSSPjomxWKWlQ7a6GmU0xZtYq
 Ltay+6cW6flc1bNlNc2KRHXZvO1ooWX7drQFx2H4yz/oEyZQcC8=
 =Xjqe
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_8' into v9_18

BIND 9.18.8
 2022-10-20 11:47:43 +02:00
Michał Kępień
ec93236a5f Prepare release notes for BIND 9.18.8 2022-10-07 13:22:06 +02:00
Michal Nowak
8934362636
Drop flake8 ignore lists 
flake8 is not used in BIND 9 CI and inline ignore lists are not needed
anymore.

(cherry picked from commit f5d9fa6ea4)
 2022-10-05 18:06:38 +02:00
Petr Špaček
ce71fce811
Remove manually defined anchors pointing to statement definitions 
This is hopefully end of duplication. This batch did not cause clashes
in Sphinx but it was pointless nonetheless as we have auto-generated
anchors for all statements.

(cherry picked from commit 137e0f4e0e)

Adapted for v9_18 branch by doing cleanup also in
notes/notes-9.18.0.rst.
 2022-10-05 11:55:03 +02:00
Tom Krizek
6cd00258fa
Remove trailing whitespaces 
(cherry picked from commit ea2d213f34)
 2022-10-05 11:44:33 +02:00
Petr Špaček
bba3440638
Deduplicate link anchors in the ARM 
Some statement names like "allow-query" had manually defined link anchor
_allow-query and also implicit anchor created by
.. namedconf:statement:: syntax. This causes warnings if a ambiguous
reference is made using :any:`allow-query` syntax.

Remove (hopefully all) manually defined anchors which pointed to
identical place as the implicit anchor. This allows :any: to work.

In rare cases where manual anchor points to descriptive text separated
from statement definition the reference was disamguated by replacing
:any:`notify` with :ref:`notify` (for manual anchor)
vs. :namedconf:ref:`notify` (for statement definition).

Please note that `options` statement is a trap: It is ambiguous even
without manual anchor because rndc.conf has its own `options`. Use
:namedconf:ref:`options` vs. :rndcconf:ref:`options` to select
appropriate target.

(cherry picked from commit 9a7c2b370e)
 2022-10-05 11:44:33 +02:00
Matthijs Mekking
2abb2b638a Add inline-signing to config examples 
Add 'inline-signing yes;' to configuration examples to have working
copy paste configurations.

(cherry picked from commit 18d230a584)
 2022-09-28 10:37:41 +02:00
Matthijs Mekking
d1a01d88f9 Update inline-signing requirement to ARM 
This change was made in !6403, but the appropriate documentation
changes were not applied to the ARM.

(cherry picked from commit 5d454a7158)
 2022-09-28 10:37:41 +02:00
Michal Nowak
50405ba413 Add Fedora 36 
(cherry picked from commit a313c49a3b)
 2022-09-27 09:40:19 +02:00
Petr Menšík
dfc7b630db
Compatibility for building ARM on older sphinx 
Make documentation building successful even on RHEL9 sphinx 3.4.3. It
does not like case-insensitive matching of terms, so provide lowercase
text description with Uppercase word reference.

(cherry picked from commit bc6c6b1184)
 2022-09-26 17:16:38 +02:00
Aram Sargsyan
e20cda5928 Document dynamic update forwarding limitation when XoT is enabled 
BIND 9.18 does not support sending forwarded DDNS update requests
through DoT.
 2022-09-22 10:54:56 +00:00
Michał Kępień
0a53f61727 BIND 9.18.7 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAmMZ4qIPHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEFpl0QAItVxvXJ2yQw+06QhlmA7l0pmKgAqKzgwzcD
 hpOsYsglMGhkyry+eWr+XOSEyU/MAIHSvhaKvvlicZMrthe4wmip4O0M24BldVmL
 Vvqb8/0vg2/8hom9aJu9NgRaGX/ybewauIG21drPR4O6MnLfX+8m0c0bbO1I60bn
 xSL5OX1DzDYJhMQ+hBlG2hTlEhovtXBFZYpTR2H9ITvXMrDJNbs3VQZLKFrD56Ge
 WitoPeE4lkGpDcPTtFys3siRJjIOAl9jKUZWqfnhmiYGC0USMmXneEEuM9/sMXFv
 jh0AtymJbe0s9bceYD961RE1pd9cdbrUg+6EJIhoGqNL+ANtj61jtdpLtWwWWKgU
 3MiEJF7YQLQ0lWXArUtMTRwWUYeVpxPprzwXIdQfiTp35fTBoOzL3rslq4HdVCxA
 SPtAunI8OFsr2Njglf2VsJfcX0x7V4lbftnmY3e24b+C+YXddRVc+83cGZvh2kvB
 NKY2Y8/Op8BsFyUoJ69Umcrx+xZSmO0ngEA62lKjJ/oAZ/WaQ8bkcajCdtLYKFJd
 rTXw/UsdKQDlUQ/rCU/Ge+Y/BKFRn3f7UA0D0Mvp+DpTus9DYMvy/nWWphVgWNGP
 E2j/1orf/dGdWojvFLGe4zPl8BCRHqgoxfGBaizR4N3eTKHcOS2uVJJ0x4WfY9xe
 nUKGK+iw
 =OVc+
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_7' into v9_18

BIND 9.18.7
 2022-09-21 13:13:30 +02:00
Ondřej Surý
474676a38c
Provide stronger wording about the security of statistics channel 
Add more text about the importance of properly securing the statistics
channel and what is and what is not considered a security vulnerability.

(cherry picked from commit 6869c98d36)
 2022-09-15 10:58:09 +02:00
Evan Hunt
17da7dee5c flag "random-device" as obsolete 
the "random-device" option was made non-functional in 9.13, but was
not marked as obsolete at that time. this is now fixed; configuring
"random-device" will trigger a warning.
 2022-09-14 09:37:25 -07:00
Michał Kępień
364bdb5ec8 Prepare release notes for BIND 9.18.7 2022-09-08 14:03:54 +02:00
Aram Sargsyan
f2982a5d3f Document RRL processing for wildcard names 
All valid wildcard domain names are interpreted as the zone's origin
name concatenated to the "*" name.

(cherry picked from commit 89c2032421)
 2022-09-08 09:36:50 +02:00
Aram Sargsyan
5e868be3cc Update RPZ documentation 
The RPZ documentation section with response policy rules and actions
is incomplete.

Add information about the 'RPZ-CLIENT-IP' rule, and 'TCP-Only' and
'DROP' actions.

(cherry picked from commit 0fbd07ac22)
 2022-08-30 10:36:14 +00:00
Michal Nowak
9c9f773386
Add FreeBSD 13.1 
(cherry picked from commit bc425be55e1736d4f2ffada5e8d76f96b08c8351)
 2022-08-18 17:30:50 +02:00
Michal Nowak
b76c2ad366 BIND 9.18.6 
-----BEGIN PGP SIGNATURE-----
 
 iQJDBAABCgAtFiEENKwGS3ftSQfs1TU17QVz/8hFYQUFAmLsPkoPHG1pY2hhbEBp
 c2Mub3JnAAoJEO0Fc//IRWEFjloP/jIezvPCIUAe3BRDdKPngJmLaDxyMI7moz+V
 bQCRlubh4QS4biLnovXMjQfyqiDmslhbIU8Xj89Eake9NIcCrYD2ZXJcOHe5L72J
 hgVQIJexUObdcRFHMp0kv0UCLni7+eO6i5LhtFTSa72CAFTbyOxQqZpSWyrX2UIV
 myZtnMbmIMrR/lC4VOVPIR8YOmDZ1sPn/I3js5oBZcpaDGvQx5a/ajIOusg+UX6W
 hF2WoguvkIXsVRxdXvHAzWLTobz5euzYhNqM1qqcWVyBEl6CqVqcgvXP0QyDmfoF
 orOEr0D5Ej5tws2d7jNbv06cafPnIlABzl6FGLo3hg9h90aOSFnSJmgHhaDZ6x6B
 l02mahwWDP8KMArGt/endwTR1Hk8VE4z7+6zvOirK/Kg+RxDxiNs7hvEvOu/lMuO
 5cvGx7hDQVuUv406eA0YfxydXYGzQoIBoAj8+OOfKQmEy9uTjwy9zSI7sfmR6SMg
 SsiEAZrK5znAc3YMF2Ndr8/5qcBGwWtrvl4qO9QHKuO/+AzIkp438bqG0JOZUYeN
 XBPOR8lppItD6GOZO/17htmnYiE7l3cNsSzjx5WjaH4Iama2sFYET4SqfFKWcR42
 AIdF0IAqjLz8/oIBxu2MTcwXdWYVZJgvvT5ZDiZTccf6pCJv+QBX6g4UyNjjEbp1
 1/r6AbAE
 =R2op
 -----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCAAdFiEEIz+ZTe/bbr1Q+/5RJKPoRjruXlYFAmL+CcYACgkQJKPoRjru
 XlZS3A/9GT86v29eQQT5YCGegmJqa41Jxp/kE0B//7h0gN1uZr9D57UjwMw6vLr+
 N+FQqJFKjeO06JXXshNsgG+xE2IcW/gi51wc0XLSR1Vr9scK10jMisVo4peA/Rqz
 HoaVBF/ouqpYrTXEoIQef4Kh28G8K+5te1Iu+gxYaM5tTcMqChVCN5eeavlXiKr4
 hqokWozvqne4RmWgHoaMFb5bJdERd4hfodzcx3DRO3g37OMCfIIPA8h+OHerhZ6d
 0EmvW+KOzWVcZg1pd/pJE9u1S59Jc6IJMHo5b3U+FWzu+j5Pjufd6zPYITMS39kV
 EcVj5Uano3olPdlit2hK+5IQYhhfadCGhEpSCqvbutkPVvzWRXI1qP5wqn6xxNF3
 p2aCRmN0UAXGp6RMGRen8RTjlDsMvtKHiZIvqmv7MCS2fvSCa0FN7B+cPaGq4Pp0
 p3u1F/URya2KcnmvIP6VQCY6p1uzolKPFnGWjGEmzQ6ULXAv1RaxNy/W9b8x2SGg
 L7yBoqo++Z+qv0+eRH8U89UF1ksrLjqbvmRDjZVRnTolXrgS1g5BK45Hyxwx0ewD
 NOxnyDCPEqNn5ihEbA1A9O6hstrSaIZ/cHQxQA9Z7C4lNECe+z9C6sm/VK4wSJS5
 dEsaQ/jXhCn4mjCK8RIC/iUneCFYVRb6ylclJGYGq5nThE5OG3c=
 =VeGY
 -----END PGP SIGNATURE-----

Merge tag 'v9_18_6' into v9_18

BIND 9.18.6
 2022-08-18 11:43:29 +02:00
Michal Nowak
fdf85d8877
Add OpenBSD 7.1 
(cherry picked from commit 7edf8ab47cfd0cc3a633e941b2880ee11d75d6cd)
 2022-08-16 17:02:06 +02:00
Suzanne Goldlust
cb6bf93298
Edit tag/statement for glue-cache and reserved-sockets 2022-08-15 09:17:36 +02:00