CHANGES 508 KB
Newer Older
1 2 3 4 5
4669.	[func]		Iterative query logic in resolver.c has been
			refactored into smaller functions and commented,
			for improved readability, maintainability and
			testability. [RT #45362]

6 7 8
4668.	[bug]		Use localtime_r and gmtime_r for thread safety.
			[RT #45664]

9 10
4667.	[cleanup]	Refactor RDATA unit tests. [RT #45610]

11 12 13 14 15
4666.	[bug]		dnssec-keymgr: Domain names beginning with digits (0-9)
			could cause a parser error when reading the policy
			file. This now works correctly so long as the domain
			name is quoted. [RT #45641]

16 17 18 19 20
4665.	[protocol]	Added support for ED25519 and ED448 DNSSEC signing
			algorithms (RFC 8080). (Note: these algorithms
			depend on code currently in the development branch
			of OpenSSL which has not yet been released.)
			[RT #44696]
21

Evan Hunt's avatar
Evan Hunt committed
22 23 24 25 26
4664.	[func]		Add a "glue-cache" option to enable or disable the
			glue cache. The default is "no" to reduce memory
			usage, but enabling this option will improve
			performance in delegation-heavy zones. [RT #45125]

27 28 29
4663.	[cleanup]	Clarify error message printed by dnssec-dsfromkey.
			[RT #21731]

30 31 32 33
4662.	[performance]	Improve cache memory cleanup of zero TTL records
			by putting them at the tail of LRU header lists.
			[RT #45274]

34 35 36 37
4661.	[bug]		A race condition could occur if a zone was reloaded
			while resigning, triggering a crash in
			rbtdb.c:closeversion(). [RT #45276]

38 39 40
4660.	[bug]		Remove spurious "peer" from Windows socket log
			messages. [RT #45617]

41 42 43 44
4659.   [bug]           Remove spurious log message about lmdb-mapsize
			not being supported when parsing builtin
			configuration file. [RT #45618]

45 46 47
4658.	[bug]		Clean up build directory created by "setup.py install"
			immediately.  [RT #45628]

48 49 50
4657.	[bug]		rrchecker system test result could be improperly
			determined. [RT #45602]

51 52 53 54
4656.	[bug]		Apply "port" and "dscp" values specified in catalog
			zone's "default-masters" option to the generated
			configuration of its member zones. [RT #45545]

55 56
4655.	[bug]		Lack of seccomp could be falsely reported. [RT #45599]

57 58 59
4654.	[cleanup]	Don't use C++ keywords delete, new and namespace.
			[RT #45538]

60 61
4653.	[bug]		Reorder includes to move @DST_OPENSSL_INC@ and
			@ISC_OPENSSL_INC@ after shipped include directories.
62 63
			[RT #45581]

Mark Andrews's avatar
Mark Andrews committed
64
4652.	[bug]		Nsupdate could attempt to use a zeroed address on
65 66
			server timeout. [RT #45417]

Mark Andrews's avatar
Mark Andrews committed
67 68 69
4651.	[test]		Silence coverity warnings in tsig_test.c. [RT #45528]

4650.	[placeholder]
70

71 72 73
4649.	[bug]		The wrong zone was logged when a catalog zone is added.
			[RT #45520]

74 75 76 77
4648.	[bug]		"rndc reconfig" on a slave no longer causes all member
			zones of configured catalog zones to be removed from
			configuration. [RT #45310]

78 79 80 81 82
4647.	[bug]		Change 4643 broke verification of TSIG signed TCP
			message sequences where not all the messages contain
			TSIG records.  These may be used in AXFR and IXFR
			responses. [RT #45509]

Mark Andrews's avatar
Mark Andrews committed
83 84
4646.	[placeholder]

85 86 87
4645.	[bug]		Fix PKCS#11 RSA parsing when MD5 is disabled.
			[RT #45300]

Mark Andrews's avatar
Mark Andrews committed
88 89
4644.	[placeholder]

90 91 92 93
4643.	[security]	An error in TSIG handling could permit unauthorized
			zone transfers or zone updates. (CVE-2017-3142)
			(CVE-2017-3143) [RT #45383]

Evan Hunt's avatar
Evan Hunt committed
94 95 96 97
4642.	[cleanup]	Add more logging of RFC 5011 events affecting the
			status of managed keys: newly observed keys,
			deletion of revoked keys, etc. [RT #45354]

98 99 100
4641.	[cleanup]	Parallel builds (make -j) could fail with --with-atf /
			--enable-developer. [RT #45373]

101 102 103 104
4640.	[bug]		If query_findversion failed in query_getdb due to
			memory failure the error status was incorrectly
			discarded. [RT #45331]

105 106 107
4639.	[bug]		Fix a regression in --with-tuning reporting introduced
			by change 4488. [RT #45396]

108 109 110
4638.	[bug]		Reloading or reconfiguring named could fail on
			some platforms when LMDB was in use. [RT #45203]

Evan Hunt's avatar
Evan Hunt committed
111 112 113 114 115 116
4637.	[func]		"nsec3hash -r" option ("rdata order") takes arguments
			in the same order as they appear in NSEC3 or
			NSEC3PARAM records, so that NSEC3 parameters can
			be cut and pasted from an existing record. Thanks
			to Tony Finch for the contribution. [RT #45183]

117 118 119
4636.	[bug]		Normalize rpz policy zone names when checking for
			existence. [RT #45358]

120 121 122
4635.	[bug]		Fix RPZ NSDNAME logging that was logging
			failures as NSIP. [RT #45052]

123 124 125
4634.	[contrib]	check5011.pl needs to handle optional space before
			semi-colon in +multi-line output. [RT #45352]

126 127
4633.	[maint]		Updated AAAA (2001:500:200::b) for B.ROOT-SERVERS.NET.

Mark Andrews's avatar
Mark Andrews committed
128
4632.	[security]	The BIND installer on Windows used an unquoted
129
			service path, which can enable privilege escalation.
130 131
			(CVE-2017-3141) [RT #45229]

Mark Andrews's avatar
Mark Andrews committed
132
4631.	[security]	Some RPZ configurations could go into an infinite
Evan Hunt's avatar
Evan Hunt committed
133 134 135
			query loop when encountering responses with TTL=0.
			(CVE-2017-3140) [RT #45181]

Mark Andrews's avatar
Mark Andrews committed
136
4630.	[bug]		"dyndb" is dependent on dlopen existing / being
137 138
			enabled. [RT #45291]

139 140 141
4629.	[bug]		dns_client_startupdate could not be called with a
			running client. [RT #45277]

142 143 144
4628.	[bug]		Fixed a potential reference leak in query_getdb().
			[RT #45247]

Mark Andrews's avatar
Mark Andrews committed
145 146
4627.	[placeholder]

Evan Hunt's avatar
Evan Hunt committed
147 148 149
4626.	[test]		Added more tests for handling of different record
			ordering in CNAME and DNAME responses. [QA #430]

150 151 152 153
4625.	[bug]		Running "rndc addzone" and "rndc delzone" at close
			to the same time could trigger a deadlock if using
			LMDB. [RT #45209]

Mark Andrews's avatar
Mark Andrews committed
154 155
4624.	[placeholder]

156 157 158
4623.	[bug]		Use --with-protobuf-c and --with-libfstrm to find
			protoc-c and fstrm_capture. [RT #45187]

159 160 161
4622.	[bug]		Remove unnecessary escaping of semicolon in CAA and
			URI records. [RT #45216]

162 163 164
4621.	[port]		Force alignment of oid arrays to silence loader
			warnings. [RT #45131]

165 166 167
4620.	[port]		Handle EPFNOSUPPORT being returned when probing
			to see if a socket type is supported. [RT #45214]

168 169 170
4619.	[bug]		Call isc_mem_put instead of isc_mem_free in
			bin/named/server.c:setup_newzones. [RT #45202]

171 172 173
4618.	[bug]		Check isc_mem_strdup results in dns_view_setnewzones.
			Add logging for lmdb call failures. [RT #45204]

174 175 176
4617.	[test]		Update rndc system test to be more delay tolerant.
			[RT #45177]

Evan Hunt's avatar
Evan Hunt committed
177 178 179 180
4616.	[bug]		When using LMDB, zones deleted using "rndc delzone"
			were not correctly removed from the new-zone
			database. [RT #45185]

181 182 183 184
4615.	[bug]		AD could be set on truncated answer with no records
			present in the answer and authority sections.
			[RT #45140]

185 186
4614.	[test]		Fixed an error in the sockaddr unit test. [RT #45146]

187 188 189 190 191 192 193
4613.	[func]		By default, the maximum size of a zone journal file
			is now twice the size of the zone's contents (there
			is little benefit to a journal larger than this).
			This can be overridden by setting "max-journal-size"
			to "unlimited" or to an explicit value up to 2G.
			Thanks to Tony Finch. [RT #38324]

194 195 196 197
4612.	[bug]		Silence 'may be use uninitalised' warning and simplify
			the code in lwres/getaddinfo:process_answer.
			[RT #45158]

198 199 200 201 202 203 204
4611.	[bug]		The default LMDB mapsize was too low and caused
			errors after few thousand zones were added using
			rndc addzone. A new config option "lmdb-mapsize"
			has been introduced to configure the LMDB
			mapsize depending on operational needs.
			[RT #44954]

205
4610.	[func]		The "new-zones-directory" option specifies the
206
			location of NZF or NZD files for storing
207 208 209
			configuration of zones added by "rndc addzone".
			Thanks to Petr Menšík. [RT #44853]

Evan Hunt's avatar
Evan Hunt committed
210 211 212
4609.	[cleanup]	Rearrange makefiles to enable parallel execution
			(i.e. "make -j"). [RT #45078]

213 214 215
4608.	[func]		DiG now warns about .local queries which are reserved
			for Multicast DNS. [RT #44783]

216 217 218 219
4607.	[bug]		The memory context's malloced and maxmalloced counters
			were being updated without the appropriate lock being
			held.  [RT #44869]

220 221 222
4606.	[port]		Stop using experimental "Experimental keys on scalar"
			feature of perl as it has been removed. [RT #45012]

223 224 225 226 227 228 229 230 231 232 233 234
4605.	[performance]	Improve performance for delegation heavy answers
			and also general query performance. Removes the
			acache feature that didn't significantly improve
			performance. Adds a glue cache. Removes
			additional-from-cache and additional-from-auth
			features. Enables minimal-responses by
			default. Improves performance of compression
			code, owner case restoration, hash function,
			etc. Uses inline buffer implementation by
			default. Many other performance changes and fixes.
			[RT #44029]

235 236 237
4604.	[bug]		Don't use ERR_load_crypto_strings() when building
			with OpenSSL 1.1.0. [RT #45117]

238 239 240 241
4603.	[doc]		Automatically generate named.conf(5) man page
			from doc/misc/options. Thanks to Tony Finch.
			[RT #43525]

242 243 244 245
4602.	[func]		Threads are now set to human-readable
			names to assist debugging, when supported by
			the OS. [RT #43234]

246 247 248 249
4601.	[bug]		Reject incorrect RSA key lengths during key
			generation and and sign/verify context
			creation. [RT #45043]

250 251 252
4600.	[bug]		Adjust RPZ trigger counts only when the entry
			being deleted exists. [RT #43386]

253 254 255 256 257
4599.	[bug]		Fix inconsistencies in inline signing time
			comparison that were introduced with the
			introduction of rdatasetheader->resign_lsb.
			[RT #42112]

258 259 260 261 262 263 264 265
4598.	[func]		Update fuzzing code to (1) reply to a DNSKEY
			query from named with appropriate DNSKEY used in
			fuzzing; (2) patch the QTYPE correctly in
			resolver fuzzing; (3) comment things so the rest
			of us are able to understand how fuzzing is
			implemented in named; (4) Coding style changes,
			cleanup, etc. [RT #44787]

266 267 268 269 270
4597.	[bug]		The validator now ignores SHA-1 DS digest type
			when a DS record with SHA-384 digest type is
			present and is a supported digest type.
			[RT #45017]

271 272 273 274 275
4596.	[bug]		Validate glue before adding it to the additional
			section. This also fixes incorrect TTL capping
			when the RRSIG expired earlier than the TTL.
			[RT #45062]

276 277 278 279
4595.	[func]		dnssec-keygen will no longer generate RSA keys
			less than 1024 bits in length. dnssec-keymgr
			was similarly updated. [RT #36895]

280 281 282
4594.	[func]		"dnstap-read -x" prints a hex dump of the wire
			format of each logged DNS message. [RT #44816]

Evan Hunt's avatar
Evan Hunt committed
283 284 285
4593.	[doc]		Update README using markdown, remove outdated FAQ
			file in favor of the knowledge base.

Evan Hunt's avatar
Evan Hunt committed
286
4592.	[bug]		A race condition on shutdown could trigger an
287 288
			assertion failure in dispatch.c. [RT #43822]

Evan Hunt's avatar
Evan Hunt committed
289 290 291
4591.	[port]		Addressed some python 3 compatibility issues.
			Thanks to Ville Skytta. [RT #44955] [RT #44956]

292 293 294
4590.	[bug]		Support for PTHREAD_MUTEX_ADAPTIVE_NP was not being
			properly detected. [RT #44871]

295 296
4589.	[cleanup]	"configure -q" is now silent. [RT #44829]

297 298 299 300
4588.	[bug]		nsupdate could send queries for TKEY to the wrong
			server when using GSSAPI. Thanks to Tomas Hozza.
			[RT #39893]

301 302 303
4587.	[bug]		named-checkzone failed to handle occulted data below
			DNAMEs correctly. [RT #44877]

304 305 306
4586.	[func]		dig, host and nslookup now use TCP for ANY queries.
			[RT #44687]

307 308
4585.	[port]		win32: Set CompileAS value. [RT #42474]

309 310 311
4584.	[bug]		A number of memory usage statistics were not properly
			reported when they exceeded 4G.  [RT #44750]

Mark Andrews's avatar
Mark Andrews committed
312
4583.	[func]		"host -A" returns most records for a name but
Evan Hunt's avatar
Evan Hunt committed
313 314 315
			omits RRSIG, NSEC and NSEC3. (Thanks to Tony Finch.)
			[RT #43032]

316 317 318
4582.	[security]	'rndc ""' could trigger a assertion failure in named.
			(CVE-2017-3138) [RT #44924]

319
4581.	[port]		Linux: Add getpid and getrandom to the list of system
320
			calls named uses for seccomp. [RT #44883]
321

322 323 324
4580.	[bug]		4578 introduced a regression when handling CNAME to
			referral below the current domain. [RT #44850]

325 326 327 328 329 330 331
4579.	[func]		Logging channels and dnstap output files can now
			be configured with a "suffix" option, set to
			either "increment" or "timestamp", indicating
			whether to use incrementing numbers or timestamps
			as the file suffix when rolling over a log file.
			[RT #42838]

Evan Hunt's avatar
Evan Hunt committed
332 333 334 335
4578.	[security]	Some chaining (CNAME or DNAME) responses to upstream
			queries could trigger assertion failures.
			(CVE-2017-3137) [RT #44734]

336 337 338
4577.	[func]		Make qtype of resolver fuzzing packet configurable
			via command line. [RT #43540]

339 340 341 342
4576.	[func]		The RPZ implementation has been substantially
			refactored for improved performance and reliability.
			[RT #43449]

Mark Andrews's avatar
Mark Andrews committed
343
4575.	[security]	DNS64 with "break-dnssec yes;" can result in an
344 345
			assertion failure. (CVE-2017-3136) [RT #44653]

346 347 348
4574.	[bug]		Dig leaked memory with multiple +subnet options.
			[RT #44683]

349 350 351 352 353
4573.	[func]		Query logic has been substantially refactored (e.g.
			query_find function has been split into smaller
			functions) for improved readability, maintainability
			and testability. [RT #43929]

354 355 356 357 358
4572.	[func]		The "dnstap-output" option can now take "size" and
			"versions" parameters to indicate the maximum size
			a dnstap log file can grow before rolling to a new
			file, and how many old files to retain. [RT #44502]

359 360
4571.	[bug]		Out-of-tree builds of backtrace_test failed.

361 362 363 364
4570.	[cleanup]	named did not correctly fall back to the built-in
			initializing keys if the bind.keys file was present
			but empty. [RT #44531]

365 366 367 368
4569.	[func]		Store both local and remote addresses in dnstap
			logging, and modify dnstap-read output format to
			print them. [RT #43595]

369 370 371
4568.	[contrib]	Added a --with-bind option to the dnsperf configure
			script to specify BIND prefix path.

372 373 374
4567.	[port]		Call getprotobyname and getservbyname prior to calling
			chroot so that shared libraries get loaded. [RT #44537]

375 376 377
4566.	[func]		Query logging now includes the ECS option if one
			was included in the query. [RT #44476]

378 379 380 381
4565.	[cleanup]	The inline macro versions of isc_buffer_put*()
			did not implement automatic buffer reallocation.
			[RT #44216]

382 383
4564.	[maint]		Update the built in managed keys to include the
			upcoming root KSK. [RT #44579]
384

385 386 387
4563.	[bug]		Modified zones would occasionally fail to reload.
			[RT #39424]

388 389 390
4562.	[func]		Add additional memory statistics currently malloced
			and maxmalloced per memory context. [RT #43593]

391 392
4561.	[port]		Silence a warning in strict C99 compilers. [RT #44414]

393
4560.	[bug]		mdig: add -m option to enable memory debugging rather
Evan Hunt's avatar
Evan Hunt committed
394
			than having it on all the time. [RT #44509]
395

396
4559.	[bug]		openssl_link.c didn't compile if ISC_MEM_TRACKLINES
397 398
			was turned off.  [RT #44509]

399
4558.	[bug]		Synthesised CNAME before matching DNAME was still
Mark Andrews's avatar
Mark Andrews committed
400
			being cached when it should not have been.  [RT #44318]
401

Mark Andrews's avatar
Mark Andrews committed
402
4557.	[security]	Combining dns64 and rpz can result in dereferencing
403 404
			a NULL pointer (read).  (CVE-2017-3135) [RT#44434]

405 406 407
4556.	[bug]		Sending an EDNS Padding option using "dig
			+ednsopt" could cause a crash in dig. [RT #44462]

408 409 410
4555.	[func]		dig +ednsopt: EDNS options can now be specified by
			name in addition to numeric value. [RT #44461]

411 412 413
4554.	[bug]		Remove double unlock in dns_dispatchmgr_setudp.
			[RT #44336]

414 415 416 417
4553.	[bug]		Named could deadlock there were multiple changes to
			NSEC/NSEC3 parameters for a zone being processed at
			the same time. [RT #42770]

418 419 420
4552.	[bug]		Named could trigger a assertion when sending notify
			messages. [RT #44019]

421 422 423
4551.	[test]		Add system tests for integrity checks of MX and
			SRV records. [RT #43953]

424 425 426
4550.	[cleanup]	Increased the number of available master file
			output style flags from 32 to 64. [RT #44043]

427 428 429 430 431 432
4549.	[func]		Added support for the EDNS TCP Keepalive option
			(RFC 7828). [RT #42126]

4548.	[func]		Added support for the EDNS Padding option (RFC 7830).
			[RT #42094]

433 434 435
4547.	[port]		Add support for --enable-native-pkcs11 on the AEP
			Keyper HSM. [RT #42463]

436 437
4546.	[func]		Extend the use of const declarations. [RT #43379]

438
4545.	[func]		Expand YAML output from dnstap-read to include
Evan Hunt's avatar
Evan Hunt committed
439
			a detailed breakdown of the DNS message contents.
440 441
			[RT #43642]

Evan Hunt's avatar
Evan Hunt committed
442
4544.	[bug]		Add message/payload size to dnstap-read YAML output.
443 444
			[RT #43622]

445 446 447 448
4543.	[bug]		dns_client_startupdate now delays sending the update
			request until isc_app_ctxrun has been called.
			[RT #43976]

449 450 451 452
4542.	[func]		Allow rndc to manipulate redirect zones with using
			-redirect as the zone name (use "-redirect." to
			manipulate a zone named "-redirect"). [RT #43971]

453 454 455
4541.	[bug]		rndc addzone should properly reject non master/slave
			zones. [RT #43665]

456 457 458
4540.	[bug]		Correctly handle ecs entries in dns_acl_isinsecure.
			[RT #43601]

Evan Hunt's avatar
Evan Hunt committed
459
4539.	[bug]		Referencing a nonexistent zone with RPZ could lead
460 461
			to a assertion failure when configuring. [RT #43787]

462 463 464
4538.	[bug]		Call dns_client_startresolve from client->task.
			[RT #43896]

Mark Andrews's avatar
Mark Andrews committed
465
4537.	[bug]		Handle timeouts better in dig/host/nslookup. [RT #43576]
466

467 468 469
4536.	[bug]		ISC_SOCKEVENTATTR_USEMINMTU was not being cleared
			when reusing the event structure. [RT #43885]

470 471 472
4535.	[bug]		Address race condition in setting / testing of
			DNS_REQUEST_F_SENDING. [RT #43889]

473 474
4534.	[bug]		Only set RD, RA and CD in QUERY responses. [RT #43879]

Mark Andrews's avatar
Mark Andrews committed
475
4533.	[bug]		dns_client_update should terminate on prerequisite
476 477 478
			failures (NXDOMAIN, YXDOMAIN, NXRRSET, YXRRSET)
			and also on BADZONE.  [RT #43865]

479 480 481
4532.	[contrib]	Make gen-data-queryperf.py python 3 compatible.
			[RT #43836]

482 483 484
4531.	[security]	'is_zone' was not being properly updated by redirect2
			and subsequently preserved leading to an assertion
			failure. (CVE-2016-9778) [RT #43837]
Mark Andrews's avatar
Mark Andrews committed
485

486 487 488 489
4530.	[bug]		Change 4489 broke the handling of CNAME -> DNAME
			in responses resulting in SERVFAIL being returned.
			[RT #43779]

490 491 492
4529.	[cleanup]	Silence noisy log warning when DSCP probe fails
			due to firewall rules. [RT #43847]

493 494 495
4528.	[bug]		Only set the flag bits for the i/o we are waiting
			for on EPOLLERR or EPOLLHUP. [RT #43617]

496 497
4527.	[doc]		Support DocBook XSL Stylesheets v1.79.1. [RT #43831]

Evan Hunt's avatar
Evan Hunt committed
498
4526.	[doc]		Corrected errors and improved formatting of
Mark Andrews's avatar
Mark Andrews committed
499
			grammar definitions in the ARM. [RT #43739]
Evan Hunt's avatar
Evan Hunt committed
500

Evan Hunt's avatar
Evan Hunt committed
501 502 503
4525.	[doc]		Fixed outdated documentation on managed-keys.
			[RT #43810]

504 505 506
4524.	[bug]		The net zero test was broken causing IPv4 servers
			with addresses ending in .0 to be rejected. [RT #43776]

507 508 509
4523.	[doc]		Expand config doc for <querysource4> and
			<querysource6>. [RT #43768]

510 511 512
4522.	[bug]		Handle big gaps in log file version numbers better.
			[RT #38688]

513 514 515
4521.	[cleanup]	Log it as an error if an entropy source is not
			found and there is no fallback available. [RT #43659]

Mark Andrews's avatar
Mark Andrews committed
516
4520.	[cleanup]	Alphabetize more of the grammar when printing it
517 518
			out. Fix unbalanced indenting. [RT #43755]

519 520
4519.	[port]		win32: handle ERROR_MORE_DATA. [RT #43534]

521 522 523 524 525 526 527
4518.	[func]		The "print-time" option in the logging configuration
			can now take arguments "local", "iso8601" or
			"iso8601-utc" to indicate the format in which the
			date and time should be logged. For backward
			compatibility, "yes" is a synonym for "local".
			[RT #42585]

528 529 530
4517.	[security]	Named could mishandle authority sections that were
			missing RRSIGs triggering an assertion failure.
			(CVE-2016-9444) [RT # 43632]
Mark Andrews's avatar
Mark Andrews committed
531

532 533 534
4516.	[bug]		isc_socketmgr_renderjson was missing from the
			windows build. [RT #43602]

535
4515.	[port]		FreeBSD: Find readline headers when they are in
536
			edit/readline/ instead of readline/. [RT #43658]
537

538 539
4514.	[port]		NetBSD: strip -WL, from ld command line. [RT #43204]

540 541 542
4513.	[cleanup]	Minimum Python versions are now 2.7 and 3.2.
			[RT #43566]

543 544 545
4512.	[bug]		win32: @GEOIP_INC@ missing from delv.vcxproj.in.
			[RT #43556]

546 547
4511.	[bug]		win32: mdig.exe-BNFT was missing Configure. [RT #43554]

548 549 550 551
4510.	[security]	Named mishandled some responses where covering RRSIG
			records are returned without the requested data
			resulting in a assertion failure. (CVE-2016-9147)
			[RT #43548]
Mark Andrews's avatar
Mark Andrews committed
552

553 554 555
4509.	[test]		Make the rrl system test more reliable on slower
			machines by using mdig instead of dig. [RT #43280]

556 557 558
4508.	[security]	Named incorrectly tried to cache TKEY records which
			could trigger a assertion failure when there was
			a class mismatch. (CVE-2016-9131) [RT #43522]
Mark Andrews's avatar
Mark Andrews committed
559

Francis Dupont's avatar
Francis Dupont committed
560
4507.	[bug]		Named could incorrectly log 'allows updates by IP
561 562
			address, which is insecure' [RT #43432]

563 564 565
4506.	[func]		'named-checkconf -l' will now list the zones found in
			named.conf. [RT #43154]

566 567
4505.	[port]		Use IP_PMTUDISC_OMIT if available. [RT #35494]

568 569 570 571
4504.	[security]	Allow the maximum number of records in a zone to
			be specified.  This provides a control for issues
			raised in CVE-2016-6170. [RT #42143]

Evan Hunt's avatar
Evan Hunt committed
572
4503.	[cleanup]	"make uninstall" now removes files installed by
Evan Hunt's avatar
Evan Hunt committed
573
			BIND. (This currently excludes Python files
Mark Andrews's avatar
Mark Andrews committed
574
			due to lack of support in setup.py.) [RT #42192]
Evan Hunt's avatar
Evan Hunt committed
575

576 577 578
4502.	[func]		Report multiple and experimental options when printing
			grammar. [RT #43134]

Mark Andrews's avatar
Mark Andrews committed
579 580
4501.	[placeholder]

581 582
4500.	[bug]		Support modifier I64 in isc__print_printf. [RT #43526]

583
4499.	[port]		MacOSX: silence deprecated function warning
584 585 586
			by using arc4random_stir() when available
			instead of arc4random_addrandom(). [RT #43503]

587 588 589
4498.	[test]		Simplify prerequisite checks in system tests.
			[RT #43516]

590 591
4497.	[port]		Add support for OpenSSL 1.1.0. [RT #41284]

592 593 594 595
4496.	[func]		dig: add +idnout to control whether labels are
			display in punycode or not.  Requires idn support
			to be enabled at compile time. [RT #43398]

Mark Andrews's avatar
Mark Andrews committed
596 597
4495.	[bug]		A isc_mutex_init call was not being checked.
			[RT #43391]
598

599 600
4494.	[bug]		Look for <editline/readline.h>. [RT #43429]

601 602 603
4493.	[bug]		bin/tests/system/dyndb/driver/Makefile.in should use
			SO_TARGETS. [RT# 43336]

Mark Andrews's avatar
Mark Andrews committed
604
4492.	[bug]		irs_resconf_load failed to initialize sortlistnxt
605 606 607
			causing bad writes if resolv.conf contained a
			sortlist directive. [RT #43459]

608 609 610
4491.	[bug]		Improve message emitted when testing whether sendmsg
			works with TOS/TCLASS fails. [RT #43483]

611 612
4490.	[maint]		Added AAAA (2001:500:12::d0d) for G.ROOT-SERVERS.NET.

613
4489.	[security]	It was possible to trigger assertions when processing
614 615
			a response containing a DNAME answer. (CVE-2016-8864)
			[RT #43465]
616

617 618
4488.	[port]		Darwin: use -framework for Kerberos. [RT #43418]

619 620
4487.	[test]		Make system tests work on Windows. [RT #42931]

Mark Andrews's avatar
Mark Andrews committed
621
4486.	[bug]		Look in $prefix/lib/pythonX.Y/site-packages for
622 623
			the python modules we install. [RT #43330]

Mark Andrews's avatar
Mark Andrews committed
624
4485.	[bug]		Failure to find readline when requested should be
625 626
			fatal to configure. [RT #43328]

Mark Andrews's avatar
Mark Andrews committed
627
4484.	[func]		Check prefixes in acls to make sure the address and
628 629 630
			prefix lengths are consistent.  Warn only in
			BIND 9.11 and earlier. [RT #43367]

Mark Andrews's avatar
Mark Andrews committed
631
4483.	[bug]		Address use before require check and remove extraneous
632 633 634
			dns_message_gettsigkey call in dns_tsig_sign.
			[RT #43374]

635 636
4482.	[cleanup]	Change #4455 was incomplete. [RT #43252]

637 638 639 640
4481.	[func]		dig: make +class, +crypto, +multiline, +rrcomments,
			+onesoa, +qr, +ttlid, +ttlunits and -u per lookup
			rather than global. [RT #42450]

Evan Hunt's avatar
Evan Hunt committed
641 642
4480.	[placeholder]

Evan Hunt's avatar
Evan Hunt committed
643 644
4479.	[placeholder]

Mark Andrews's avatar
Mark Andrews committed
645 646
4478.	[func]		Add +continue option to mdig, allow continue on socket
			errors. [RT #43281]
647

648 649
4477.	[test]		Fix mkeys test timing issues. [RT #41028]

650 651
4476.	[test]		Fix reclimit test on slower machines. [RT #43283]

652 653
4475.	[doc]		Update named-checkconf documentation. [RT #43153]

654 655 656
4474.	[bug]		win32: call WSAStartup in fromtext_in_wks so that
			getprotobyname and getservbyname work.  [RT #43197]

657 658
4473.	[bug]		Only call fsync / _commit on regular files. [RT #43196]

659
4472.	[bug]		Named could fail to find the correct NSEC3 records when
Mark Andrews's avatar
grammar  
Mark Andrews committed
660
			a zone was updated between looking for the answer and
661
			looking for the NSEC3 records proving nonexistence
662 663
			of the answer. [RT #43247]

Mark Andrews's avatar
Mark Andrews committed
664 665
	--- 9.11.0 released ---

Mark Andrews's avatar
Mark Andrews committed
666 667
	--- 9.11.0rc3 released ---

668 669 670 671
4471.	[cleanup]	Render client/query logging format consistent for
			ease of log file parsing. (Note that this affects
			"querylog" format: there is now an additional field
			indicating the client object address.) [RT #43238]
Evan Hunt's avatar
Evan Hunt committed
672

673 674 675
4470.	[bug]		Reset message with intent parse before
			calling dns_dispatch_getnext. [RT #43229]

Evan Hunt's avatar
Evan Hunt committed
676 677
4469.	[placeholder]

Mark Andrews's avatar
Mark Andrews committed
678 679
	--- 9.11.0rc2 released ---

680 681
4468.	[bug]		Address ECS option handling issues. [RT #43191]

Mukund Sivaraman's avatar
Typo  
Mukund Sivaraman committed
682 683
4467.	[security]	It was possible to trigger an assertion when
			rendering a message. (CVE-2016-2776) [RT #43139]
684

685 686 687
4466.	[bug]		Interface scanning didn't work on a Windows system
			without a non local IPv6 addresses. [RT #43130]

688 689 690
4465.	[bug]		Don't use "%z" as Windows doesn't support it.
			[RT #43131]

691 692
4464.	[bug]		Fix windows python support. [RT #43173]

693 694 695
4463.	[bug]		The dnstap system test failed on some systems.
			[RT #43129]

696 697 698
4462.	[bug]		Don't describe a returned EDNS COOKIE as "good"
			when there isn't a valid server cookie. [RT #43167]

699 700 701
4461.	[bug]		win32: not all external data was properly marked
			as external data for windows dll. [RT #43161]

Mark Andrews's avatar
Mark Andrews committed
702 703
	--- 9.11.0rc1 released ---

704 705 706
4460.	[test]		Add system test for dnstap using unix domain sockets.
			[RT #42926]

707 708 709 710
4459.	[bug]		TCP client objects created to handle pipeline queries
			were not cleaned up correctly, causing uncontrolled
			memory growth. [RT #43106]

711 712 713
4458.	[cleanup]	Update assertions to be more correct, and also remove
			use of a reserved word. [RT #43090]

714 715
4457.	[maint]		Added AAAA (2001:500:a8::e) for E.ROOT-SERVERS.NET.

716 717 718
4456.	[doc]		Add DOCTYPE and lang attribute to <html> tags.
			[RT #42587]

719 720 721 722
4455.	[cleanup]	Allow dyndb modules to correctly log the filename
			and line number when processing configuration text
			from named.conf. [RT #43050]

723 724
4454.	[bug]		'rndc dnstap -reopen' had a race issue. [RT #43089]

725
4453.	[bug]		Prefetching of DS records failed to update their
726 727
			RRSIGs. [RT #42865]

728 729 730 731
4452.	[bug]		The default key manager policy file is now
			<sysdir>/dnssec-policy.conf (usually
			/etc/dnssec-policy.conf). [RT #43064]

Mark Andrews's avatar
Mark Andrews committed
732
4451.	[cleanup]	Log more useful information if a PKCS#11 provider
733
			library cannot be loaded. [RT #43076]
734

735 736 737
4450.	[port]		Provide more nuanced HSM support which better matches
			the specific PKCS11 providers capabilities. [RT #42458]

738 739
4449.	[test]		Fix catalog zones test on slower systems. [RT #42997]

740 741 742
4448.	[bug]		win32: ::1 was not being found when iterating
			interfaces. [RT #42993]

743 744 745 746
4447.	[tuning]	Allow the fstrm_iothr_init() options to be set using
			named.conf to control how dnstap manages the data
			flow. [RT #42974]

747 748 749 750
4446.	[bug]		The cache_find() and _findrdataset() functions
			could find rdatasets that had been marked stale.
			[RT #42853]

751 752 753 754 755 756 757 758 759
4445.	[cleanup]	isc_errno_toresult() can now be used to call the
			formerly private function isc__errno2result().
			[RT #43050]

4444.	[bug]		Fixed some issues related to dyndb: A bug caused
			braces to be omitted when passing configuration text
			from named.conf to a dyndb driver, and there was a
			use-after-free in the sample dyndb driver. [RT #43050]

760 761 762
4443.	[func]		Set TCP_MAXSEG in addition to IPV6_USE_MIN_MTU on
			TCP sockets. [RT #42864]

763 764 765 766 767
4442.	[bug]		Fix RPZ CIDR tree insertion bug that corrupted
			tree data structure with overlapping networks
			(longest prefix match was ineffective).
			[RT #43035]

768 769
4441.	[cleanup]	Alphabetize host's help output. [RT #43031]

770 771 772
4440.	[func]		Enable TCP fast open support when available on the
			server side. [RT #42866]

773 774 775
4439.	[bug]		Address race conditions getting ownernames of nodes.
			[RT #43005]

776 777 778
4438.	[func]		Use LIFO rather than FIFO when processing startup
			notify and refresh queries. [RT #42825]

779 780 781 782 783 784
4437.	[func]		Minimal-responses now has two additional modes
			no-auth and no-auth-recursive which suppress
			adding the NS records to the authority section
			as well as the associated address records for the
			nameservers. [RT #42005]

785 786 787
4436.	[func]		Return TLSA records as additional data for MX and SRV
			lookups. [RT #42894]

788 789 790 791 792
4435.	[tuning]	Only set IPV6_USE_MIN_MTU for UDP when the message
			will not fit into a single IPv4 encapsulated IPv6
			UDP packet when transmitted over a Ethernet link.
			[RT #42871]

793 794 795
4434.	[protocol]	Return EDNS EXPIRE option for master zones in addition
			to slave zones. [RT #43008]

796 797
4433.	[cleanup]	Report an error when passing an invalid option or
			view name to "rndc dumpdb". [RT #42958]
Francis Dupont's avatar
Francis Dupont committed
798

799
4432.	[test]		Hide rndc output on expected failures in logfileconfig
800 801
			system test. [RT #27996]

802 803 804
4431.	[bug]		named-checkconf now checks the rate-limit clause.
			[RT #42970]

805 806 807
4430.	[bug]		Lwresd died if a search list was not defined.
			Found by 0x710DDDD At Alibaba Security. [RT #42895]

808 809 810
4429.	[bug]		Address potential use after free on fclose() error.
			[RT #42976]

811 812 813
4428.	[bug]		The "test dispatch getnext" unit test could fail
			in a threaded build. [RT #42979]

814 815 816
4427.	[bug]		The "query" and "response" parameters to the
			"dnstap" option had their functions reversed.

Mark Andrews's avatar
Mark Andrews committed
817 818
	--- 9.11.0b3 released ---

819 820
4426.	[bug]		Addressed Coverity warnings. [RT #42908]

821 822 823
4425.	[bug]		arpaname, dnstap-read and named-rrchecker were not
			being installed into ${prefix}/bin.  Tidy up
			installation issues with CHANGE 4421. [RT #42910]
824

825 826 827 828 829 830 831
4424.	[experimental]	Named now sends _ta-XXXX.<trust-anchor>/NULL queries
			to provide feedback to the trust-anchor administrators
			about how key rollovers are progressing as per
			draft-ietf-dnsop-edns-key-tag-02.  This can be
			disabled using 'trust-anchor-telemetry no;'.
			[RT #40583]

832 833 834
4423.	[maint]		Added missing IPv6 address 2001:500:84::b for
			B.ROOT-SERVERS.NET. [RT #42898]

Evan Hunt's avatar
Evan Hunt committed
835 836 837
4422.	[port]		Silence clang warnings in dig.c and dighost.c.
			[RT #42451]

838 839 840 841 842 843 844 845 846
4421.	[func]		When built with LMDB (Lightning Memory-mapped
			Database), named will now use a database to store
			the configuration for zones added by "rndc addzone"
			instead of using a flat NZF file. This improves
			performance of "rndc delzone" and "rndc modzone"
			significantly. Existing NZF files will
			automatically by converted to NZD databases.
			To view the contents of an NZD or to roll back to
			NZF format, use "named-nzd2nzf". To disable
847 848
			this feature, use "configure --without-lmdb".
			[RT #39837]
849

850 851 852
4420.	[func]		nslookup now looks for AAAA as well as A by default.
			[RT #40420]

853 854 855
4419.	[bug]		Don't cause undefined result if the label of an
			entry in catalog zone is changed. [RT #42708]

856 857
4418.	[bug]		Fix a compiler warning in GSSAPI code. [RT #42879]

858 859 860 861
4417.	[bug]		dnssec-keymgr could fail to create successor keys
			if the prepublication interval was set to a value
			smaller than the default. [RT #42820]

862 863 864
4416.	[bug]		dnssec-keymgr: Domain names in policy files could
			fail to match due to trailing dots. [RT #42807]

865 866
4415.	[bug]		dnssec-keymgr: Expired/deleted keys were not always
			excluded. [RT #42884]
867

868
4414.	[bug]		Corrected a bug in the MIPS implementation of
869 870
			isc_atomic_xadd(). [RT #41965]

871 872 873
4413.	[bug]		GSSAPI negotiation could fail if GSS_S_CONTINUE_NEEDED
			was returned. [RT #42733]

Mark Andrews's avatar
Mark Andrews committed
874 875
	--- 9.11.0b2 released ---

876 877 878
4412.	[cleanup]	Make fixes for GCC 6. ISC_OFFSET_MAXIMUM macro was
			removed. [RT #42721]

879
4411.	[func]		"rndc dnstap -roll" automatically rolls the
Evan Hunt's avatar
Evan Hunt committed
880 881 882 883 884
			dnstap output file; the previous version is
			saved with ".0" suffix, and earlier versions
			with ".1" and so on. An optional numeric argument
			indicates how many prior files to save. [RT #42830]

885 886 887
4410.	[bug]		Address use after free and memory leak with dnstap.
			[RT #42746]

Mark Andrews's avatar
Mark Andrews committed
888 889
4409.	[bug]		DNS64 should exclude mapped addresses by default when
			an exclude acl is not defined. [RT #42810]
890

891 892 893
4408.	[func]		Continue waiting for expected response when we the
			response we get does not match the request. [RT #41026]

894 895 896
4407.	[performance]	Use GCC builtin for clz in RPZ lookup code.
			[RT #42818]

Mark Andrews's avatar
Mark Andrews committed
897 898
4406.	[security]	getrrsetbyname with a non absolute name could
			trigger an infinite recursion bug in lwresd
899 900
			and named with lwres configured if when combined
			with a search list entry the resulting name is
Mark Andrews's avatar
Mark Andrews committed
901
			too long. (CVE-2016-2775) [RT #42694]
902

903 904 905 906
4405.	[bug]		Change 4342 introduced a regression where you could
			not remove a delegation in a NSEC3 signed zone using
			OPTOUT via nsupdate. [RT #42702]

907 908 909
4404.	[misc]		Allow krb5-config to be used when configuring gssapi.
			[RT #42580]

910 911 912
4403.	[bug]		Rename variables and arguments that shadow: basename,
			clone and gai_error.

913 914
4402.	[bug]		protoc-c is now a hard requirement for --enable-dnstap.

915 916
	--- 9.11.0b1 released ---

917 918
4401.	[misc]		Change LICENSE to MPL 2.0.

919 920 921
4400.	[bug]		ttl policy was not being inherited in policy.py.
			[RT #42718]

922
4399.	[bug]		policy.py 'ECCGOST', 'ECDSAP256SHA256', and
923 924 925
			'ECDSAP384SHA384' don't have settable keysize.
			[RT #42718]

926 927 928
4398.	[bug]		Correct spelling of ECDSAP256SHA256 in policy.py.
			[RT #42718]

929 930
4397.	[bug]		Update Windows python support. [RT #42538]

931 932 933 934
4396.	[func]		dnssec-keymgr now takes a '-r randomfile' option.
			[RT #42455]

4395.	[bug]		Improve out-of-tree installation of python modules.
935 936
			[RT #42586]

937
4394.	[func]		Add rndc command "dnstap-reopen" to close and
Mark Andrews's avatar
Mark Andrews committed
938
			reopen dnstap output files. [RT #41803]
939

Witold Krecicki's avatar
Witold Krecicki committed
940
4393.	[bug]		Address potential NULL pointer dereferences in
941 942
			dnstap code.

Witold Krecicki's avatar
Witold Krecicki committed
943
4392.	[func]		Collect statistics for RSSAC02v3 traffic-volume,
944 945
			traffic-sizes and rcode-volume reporting. [RT #41475]

946
4391.	[contrib]	Fix leaks in contrib DLZ code. [RT #42707]
947

Witold Krecicki's avatar
Witold Krecicki committed
948
4390.	[doc]		Description of masters with TSIG, allow-query and
949 950
			allow-transfer options in catalog zones. [RT #42692]

951 952 953 954 955
4389.	[test]		Rewritten test suite for catalog zones. [RT #42676]

4388.	[func]		Support for master entries with TSIG keys in catalog
			zones. [RT #42577]

956 957 958
4387.	[bug]		Change 4336 was not complete leading to SERVFAIL
			being return as NS records expired. [RT #42683]

959 960
4386.	[bug]		Remove shadowed overmem function/variable. [RT #42706]

961 962 963
4385.	[func]		Add support for allow-query and allow-transfer ACLs
			to catalog zones. [RT #42578]

964 965 966
4384.	[bug]		Change 4256 accidentally disabled logging of the
			rndc command. [RT #42654]

967 968 969
4383.	[bug]		Correct spelling error in stats channel description of
			"EDNS client subnet option received". [RT #42633]

970 971 972 973
4382.	[bug]		rndc {addzone,modzone,delzone,showzone} should all
			compare the zone name using a canonical format.
			[RT #42630]

974 975 976
4381.	[bug]		Missing "zone-directory" option in catalog zone
			definition caused BIND to crash. [RT #42579]

Witold Krecicki's avatar
Witold Krecicki committed
977 978
	--- 9.11.0a3 released ---

979 980 981 982 983 984
4380.	[experimental]	Added a "zone-directory" option to "catalog-zones"
			syntax, allowing local masterfiles for slaves
			that are provisioned by catalog zones to be stored
			in a directory other than the server's working
			directory. [RT #42527]

Mark Andrews's avatar
Mark Andrews committed
985
4379.	[bug]		An INSIST could be triggered if a zone contains
986 987 988
			RRSIG records with expiry fields that loop
			using serial number arithmetic. [RT #40571]

989 990 991
4378.	[contrib]	#include <isc/string.h> for strlcat in zone2ldap.c.
			[RT #42525]

992 993 994 995
4377.	[bug]		Don't reuse zero TTL responses beyond the current
			client set (excludes ANY/SIG/RRSIG queries).
			[RT #42142]

996 997 998 999 1000 1001 1002 1003
4376.	[experimental]	Added support for Catalog Zones, a new method for
			provisioning secondary servers in which a list of
			zones to be served is stored in a DNS zone and can
			be propagated to slaves via AXFR/IXFR. [RT #41581]

4375.	[func]		Add support for automatic reallocation of isc_buffer
			to isc_buffer_put* functions. [RT #42394]

1004 1005 1006 1007
4374.	[bug]		Use SAVE/RESTORE macros in query.c to reduce the
			probability of reference counting errors as seen
			in 4365. [RT #42405]

Mark Andrews's avatar
Mark Andrews committed
1008
4373.	[bug]		Address undefined behavior in getaddrinfo. [RT #42479]
1009

Mark Andrews's avatar
Mark Andrews committed
1010
4372.	[bug]		Address undefined behavior in libt_api. [RT #42480]
1011

Evan Hunt's avatar
Evan Hunt committed
1012 1013 1014 1015 1016
4371.	[func]		New "minimal-any" option reduces the size of UDP
			responses for qtype ANY by returning a single
			arbitrarily selected RRset instead of all RRsets.
			Thanks to Tony Finch. [RT #41615]

1017
4370.	[bug]		Address python3 compatibility issues with RNDC module.
1018
			[RT #42499] [RT #42506]
1019

Mark Andrews's avatar
Mark Andrews committed
1020
	--- 9.11.0a2 released ---
Mark Andrews's avatar
Mark Andrews committed
1021

1022 1023 1024
4369.	[bug]		Fix 'make' and 'make install' out-of-tree python
			support. [RT #42484]

1025 1026 1027 1028 1029
4368.	[bug]		Fix a crash when calling "rndc stats" on some
			Windows builds because some Visual Studio compilers
			generated crashing code for the "%z" printf()
			format specifier. [RT #42380]

1030 1031 1032
4367.	[bug]		Remove unnecessary assignment of loadtime in
			zone_touched. [RT #42440]

1033 1034 1035
4366.	[bug]		Address race condition when updating rbtnode bit
			fields. [RT #42379]

1036 1037 1038
4365.	[bug]		Address zone reference counting errors involving
			nxdomain-redirect. [RT #42258]

1039 1040
4364.	[port]		freebsd: add -Wl,-E to loader flags [RT #41690]

Mark Andrews's avatar
Mark Andrews committed
1041
4363.	[port]		win32: Disable explicit triggering UAC when running
Mark Andrews's avatar
Mark Andrews committed
1042
			BINDInstall.
1043

Mark Andrews's avatar
Mark Andrews committed
1044
4362.	[func]		Changed rndc reconfig behavior so that newly added
1045
			zones are loaded asynchronously and the loading does
1046 1047
			not block the server. [RT #41934]

1048 1049 1050 1051
4361.	[cleanup]	Where supported, file modification times returned
			by isc_file_getmodtime() are now accurate to the
			nanosecond. [RT #41968]

1052 1053 1054
4360.	[bug]		Silence spurious 'bad key type' message when there is
			a existing TSIG key. [RT #42195]

1055 1056 1057
4359.	[bug]		Inherited 'also-notify' lists were not being checked
			by named-checkconf. [RT #42174]