mirror of
https://github.com/isc-projects/bind9.git
synced 2026-04-29 18:09:11 -04:00
2bf7921c7e
This commit converts the license handling to adhere to the REUSE
specification. It specifically:
1. Adds used licnses to LICENSES/ directory
2. Add "isc" template for adding the copyright boilerplate
3. Changes all source files to include copyright and SPDX license
header, this includes all the C sources, documentation, zone files,
configuration files. There are notes in the doc/dev/copyrights file
on how to add correct headers to the new files.
4. Handle the rest that can't be modified via .reuse/dep5 file. The
binary (or otherwise unmodifiable) files could have license places
next to them in <foo>.license file, but this would lead to cluttered
repository and most of the files handled in the .reuse/dep5 file are
system test files.
(cherry picked from commit 58bd26b6cf)
51 lines
1.9 KiB
ReStructuredText
51 lines
1.9 KiB
ReStructuredText
.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
|
|
..
|
|
.. SPDX-License-Identifier: MPL-2.0
|
|
..
|
|
.. This Source Code Form is subject to the terms of the Mozilla Public
|
|
.. License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
.. file, you can obtain one at https://mozilla.org/MPL/2.0/.
|
|
..
|
|
.. See the COPYRIGHT file distributed with this work for additional
|
|
.. information regarding copyright ownership.
|
|
|
|
Notes for BIND 9.16.10
|
|
----------------------
|
|
|
|
New Features
|
|
~~~~~~~~~~~~
|
|
|
|
- NSEC3 support was added to KASP. A new option for ``dnssec-policy``,
|
|
``nsec3param``, can be used to set the desired NSEC3 parameters.
|
|
NSEC3 salt collisions are automatically prevented during resalting.
|
|
:gl:`#1620`
|
|
|
|
Feature Changes
|
|
~~~~~~~~~~~~~~~
|
|
|
|
- The default value of ``max-recursion-queries`` was increased from 75
|
|
to 100. Since the queries sent towards root and TLD servers are now
|
|
included in the count (as a result of the fix for CVE-2020-8616),
|
|
``max-recursion-queries`` has a higher chance of being exceeded by
|
|
non-attack queries, which is the main reason for increasing its
|
|
default value. :gl:`#2305`
|
|
|
|
- The default value of ``nocookie-udp-size`` was restored back to 4096
|
|
bytes. Since ``max-udp-size`` is the upper bound for
|
|
``nocookie-udp-size``, this change relieves the operator from having
|
|
to change ``nocookie-udp-size`` together with ``max-udp-size`` in
|
|
order to increase the default EDNS buffer size limit.
|
|
``nocookie-udp-size`` can still be set to a value lower than
|
|
``max-udp-size``, if desired. :gl:`#2250`
|
|
|
|
Bug Fixes
|
|
~~~~~~~~~
|
|
|
|
- Handling of missing DNS COOKIE responses over UDP was tightened by
|
|
falling back to TCP. :gl:`#2275`
|
|
|
|
- The CNAME synthesized from a DNAME was incorrectly followed when the
|
|
QTYPE was CNAME or ANY. :gl:`#2280`
|
|
|
|
- Building with native PKCS#11 support for AEP Keyper has been broken
|
|
since BIND 9.16.6. This has been fixed. :gl:`#2315`
|