bind/doc/notes/notes-current.rst

.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
..
.. SPDX-License-Identifier: MPL-2.0
..
.. This Source Code Form is subject to the terms of the Mozilla Public
.. License, v. 2.0.  If a copy of the MPL was not distributed with this
.. file, you can obtain one at https://mozilla.org/MPL/2.0/.
..
.. See the COPYRIGHT file distributed with this work for additional
.. information regarding copyright ownership.

Notes for BIND 9.17.22
----------------------

Security Fixes
~~~~~~~~~~~~~~

- None.

Known Issues
~~~~~~~~~~~~

- None.

New Features
~~~~~~~~~~~~

- ``named`` now logs TLS pre-master secrets for debugging purposes when
  the ``SSLKEYLOGFILE`` environment variable is set. This enables
  troubleshooting issues with encrypted DNS traffic. :gl:`#2723`

Removed Features
~~~~~~~~~~~~~~~~

- The IPv6 sockets are now explicitly restricted to sending and receiving IPv6
  packets only.  This renders the ``dig`` option ``+mapped`` non-functioning and
  thus the option has been removed. :gl:`#3093`

Feature Changes
~~~~~~~~~~~~~~~

- None.

Bug Fixes
~~~~~~~~~

- If signatures created by the ZSK are expired, and the ZSK private key is offline,
  allow the expired signatures to be replaced with signatures created by the KSK.
  :gl:`#3049`

- On FreeBSD, a TCP connection would leak a small amount of heap memory leading
  to out-of-memory problem in a long run. This has been fixed. :gl:`#3051`

- Under certain circumstances, the signed version of an inline-signed
  zone could be dumped to disk without the serial number of the unsigned
  version of the zone, preventing resynchronization of zone contents
  after ``named`` restart in case the unsigned zone file gets modified
  while ``named`` is not running. This has been fixed. :gl:`#3071`

- With libuv >= 1.37.0, the recvmmsg support would not be enabled in ``named``
  reducing the maximum query-response performance.  The recvmmsg support would
  be used only in libuv 1.35.0 and 1.36.0.  This has been fixed.  :gl:`#3095`
Update the copyright information in all files in the repository This commit converts the license handling to adhere to the REUSE specification. It specifically: 1. Adds used licnses to LICENSES/ directory 2. Add "isc" template for adding the copyright boilerplate 3. Changes all source files to include copyright and SPDX license header, this includes all the C sources, documentation, zone files, configuration files. There are notes in the doc/dev/copyrights file on how to add correct headers to the new files. 4. Handle the rest that can't be modified via .reuse/dep5 file. The binary (or otherwise unmodifiable) files could have license places next to them in <foo>.license file, but this would lead to cluttered repository and most of the files handled in the .reuse/dep5 file are system test files. 2021-06-03 08:37:05 +02:00			`.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")`
			`..`
			`.. SPDX-License-Identifier: MPL-2.0`
			`..`
			`.. This Source Code Form is subject to the terms of the Mozilla Public`
			`.. License, v. 2.0. If a copy of the MPL was not distributed with this`
			`.. file, you can obtain one at https://mozilla.org/MPL/2.0/.`
			`..`
			`.. See the COPYRIGHT file distributed with this work for additional`
			`.. information regarding copyright ownership.`
Set up release notes for BIND 9.17.22 2021-12-15 16:50:49 +01:00
			`Notes for BIND 9.17.22`
			`----------------------`

			`Security Fixes`
			`~~~~~~~~~~~~~~`

			`- None.`

			`Known Issues`
			`~~~~~~~~~~~~`

			`- None.`

			`New Features`
			`~~~~~~~~~~~~`

Add release note for GL #2723 2021-12-22 18:17:26 +01:00			- ``named`` now logs TLS pre-master secrets for debugging purposes when
			the ``SSLKEYLOGFILE`` environment variable is set. This enables
			troubleshooting issues with encrypted DNS traffic. :gl:`#2723`
Set up release notes for BIND 9.17.22 2021-12-15 16:50:49 +01:00
			`Removed Features`
			`~~~~~~~~~~~~~~~~`

Add CHANGES and release notes for [GL #3093] 2022-01-13 16:57:37 +01:00			`- The IPv6 sockets are now explicitly restricted to sending and receiving IPv6`
			packets only. This renders the ``dig`` option ``+mapped`` non-functioning and
			thus the option has been removed. :gl:`#3093`
Set up release notes for BIND 9.17.22 2021-12-15 16:50:49 +01:00
			`Feature Changes`
			`~~~~~~~~~~~~~~~`

			`- None.`

			`Bug Fixes`
			`~~~~~~~~~`

Add CHANGES and release note for GL #3049 This is a bugfix worth mentioning. 2021-12-07 14:26:05 +01:00			`- If signatures created by the ZSK are expired, and the ZSK private key is offline,`
			`allow the expired signatures to be replaced with signatures created by the KSK.`
			:gl:`#3049`

Set up release notes for BIND 9.17.22 2021-12-15 16:50:49 +01:00			`- On FreeBSD, a TCP connection would leak a small amount of heap memory leading`
			to out-of-memory problem in a long run. This has been fixed. :gl:`#3051`
Add CHANGES and release note for [GL #3071] 2022-01-03 13:30:40 +01:00
			`- Under certain circumstances, the signed version of an inline-signed`
			`zone could be dumped to disk without the serial number of the unsigned`
			`version of the zone, preventing resynchronization of zone contents`
			after ``named`` restart in case the unsigned zone file gets modified
			while ``named`` is not running. This has been fixed. :gl:`#3071`
Add CHANGES and release note for [GL #3079] 2022-01-06 13:14:55 +01:00
Add CHANGES and release notes for [GL #3095] 2022-01-13 09:39:41 +01:00			- With libuv >= 1.37.0, the recvmmsg support would not be enabled in ``named``
			`reducing the maximum query-response performance. The recvmmsg support would`
			be used only in libuv 1.35.0 and 1.36.0. This has been fixed. :gl:`#3095`