bind/doc/notes/notes-9.19.16.rst

.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
..
.. SPDX-License-Identifier: MPL-2.0
..
.. This Source Code Form is subject to the terms of the Mozilla Public
.. License, v. 2.0.  If a copy of the MPL was not distributed with this
.. file, you can obtain one at https://mozilla.org/MPL/2.0/.
..
.. See the COPYRIGHT file distributed with this work for additional
.. information regarding copyright ownership.

Notes for BIND 9.19.16
----------------------

Removed Features
~~~~~~~~~~~~~~~~

- The ``auto-dnssec`` configuration statement has been removed. Please
  use :any:`dnssec-policy` or manual signing instead. The following
  statements have become obsolete: :any:`dnskey-sig-validity`,
  :any:`dnssec-dnskey-kskonly`, :any:`dnssec-update-mode`,
  :any:`sig-validity-interval`, and :any:`update-check-ksk`. :gl:`#3672`

- The :any:`dialup` and :any:`heartbeat-interval` options have been
  deprecated and will be removed in a future BIND 9 release. :gl:`#3700`

Feature Changes
~~~~~~~~~~~~~~~

- BIND now returns BADCOOKIE for out-of-date or otherwise bad but
  well-formed DNS server cookies. :gl:`#4194`

- The :any:`inline-signing` statement can now also be set inside
  :any:`dnssec-policy`. The built-in policies ``default`` and
  ``insecure`` enable the use of :any:`inline-signing`. If
  :any:`inline-signing` is set at the ``zone`` level, it overrides the
  value set in :any:`dnssec-policy`. :gl:`#3677`

Bug Fixes
~~~~~~~~~

- To improve query-processing latency under load, the uninterrupted time
  spent on resolving long chains of cached domain names has been
  reduced. :gl:`#4185`

- Setting :any:`dnssec-policy` to ``insecure`` prevented zones
  containing resource records with a TTL value larger than 86400 seconds
  (1 day) from being loaded. This has been fixed by ignoring the TTL
  values in the zone and using a value of 604800 seconds (1 week) as the
  maximum zone TTL in key rollover timing calculations. :gl:`#4032`

Known Issues
~~~~~~~~~~~~

- There are no new known issues with this release. See :ref:`above
  <relnotes_known_issues>` for a list of all known issues affecting this
  BIND 9 branch.
Set up release notes for BIND 9.19.1 2022-04-12 13:41:18 +02:00			`.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")`
			`..`
			`.. SPDX-License-Identifier: MPL-2.0`
			`..`
			`.. This Source Code Form is subject to the terms of the Mozilla Public`
			`.. License, v. 2.0. If a copy of the MPL was not distributed with this`
			`.. file, you can obtain one at https://mozilla.org/MPL/2.0/.`
			`..`
			`.. See the COPYRIGHT file distributed with this work for additional`
			`.. information regarding copyright ownership.`

Set up release notes for BIND 9.19.16 2023-07-10 15:08:50 +02:00			`Notes for BIND 9.19.16`
Set up release notes for BIND 9.19.10 2023-01-13 15:35:32 +01:00			`----------------------`
Set up release notes for BIND 9.19.1 2022-04-12 13:41:18 +02:00
			`Removed Features`
			`~~~~~~~~~~~~~~~~`

Tweak and reword release notes 2023-08-04 11:17:54 +02:00			- The ``auto-dnssec`` configuration statement has been removed. Please
			use :any:`dnssec-policy` or manual signing instead. The following
			statements have become obsolete: :any:`dnskey-sig-validity`,
CHANGES and release note for [GL #3700] 2023-07-03 16:40:56 -07:00			:any:`dnssec-dnskey-kskonly`, :any:`dnssec-update-mode`,
Tweak and reword release notes 2023-08-04 11:17:54 +02:00			:any:`sig-validity-interval`, and :any:`update-check-ksk`. :gl:`#3672`
CHANGES and release note for [GL #3700] 2023-07-03 16:40:56 -07:00
			- The :any:`dialup` and :any:`heartbeat-interval` options have been
Tweak and reword release notes 2023-08-04 11:17:54 +02:00			deprecated and will be removed in a future BIND 9 release. :gl:`#3700`
CHANGES and release note for [GL #3953] 2023-03-22 15:06:58 -07:00
Set up release notes for BIND 9.19.1 2022-04-12 13:41:18 +02:00			`Feature Changes`
			`~~~~~~~~~~~~~~~`

Tweak and reword release notes 2023-08-04 11:17:54 +02:00			`- BIND now returns BADCOOKIE for out-of-date or otherwise bad but`
			well-formed DNS server cookies. :gl:`#4194`
Add release note for [GL #4194] 2023-07-06 17:19:52 +10:00
Tweak and reword release notes 2023-08-04 11:17:54 +02:00			- The :any:`inline-signing` statement can now also be set inside
			:any:`dnssec-policy`. The built-in policies ``default`` and
			``insecure`` enable the use of :any:`inline-signing`. If
			:any:`inline-signing` is set at the ``zone`` level, it overrides the
			value set in :any:`dnssec-policy`. :gl:`#3677`
Add release note and CHANGES for GL #3677 News worthy. 2022-12-09 12:42:05 +01:00
Set up release notes for BIND 9.19.1 2022-04-12 13:41:18 +02:00			`Bug Fixes`
			`~~~~~~~~~`

Tweak and reword release notes 2023-08-04 11:17:54 +02:00			`- To improve query-processing latency under load, the uninterrupted time`
			`spent on resolving long chains of cached domain names has been`
			reduced. :gl:`#4185`
Add CHANGES and release note for [GL #4185] 2023-06-29 14:51:51 +02:00
Tweak and reword release notes 2023-08-04 11:17:54 +02:00			- Setting :any:`dnssec-policy` to ``insecure`` prevented zones
			`containing resource records with a TTL value larger than 86400 seconds`
			`(1 day) from being loaded. This has been fixed by ignoring the TTL`
			`values in the zone and using a value of 604800 seconds (1 week) as the`
			maximum zone TTL in key rollover timing calculations. :gl:`#4032`
Add CHANGES and release note for #4032 2023-07-26 11:55:20 +02:00
Repeat Known Issues at the top of Release Notes page From now on all per-version notes link to the global list of Known Issues. If there is a new note it should be listed twice: In the per-version list, and in the global list. 2022-11-07 14:03:15 +01:00			`Known Issues`
			`~~~~~~~~~~~~`

Set up release notes for BIND 9.19.12 2023-03-07 14:10:26 +01:00			- There are no new known issues with this release. See :ref:`above
			<relnotes_known_issues>` for a list of all known issues affecting this
			`BIND 9 branch.`