CHANGES 14.3 KB
Newer Older
1 2
 107.   [func]		Add keysigner and keysettool

3 4 5
 106.   [func]		Allow dnssec verifications to ignore the validity
			period.  Used by several of the dnssec tools.

6 7 8
 105.   [doc]           doc/dev/coding.html expanded with other
                        implicit conventions the developers have used.

9 10 11
 104.   [bug]           Made compress_add and compress_find static to
                        lib/dns/compress.c.

12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47
 103.   [func]          libisc buffer API changes for <isc/buffer.h>:
                        Added:
                                isc_buffer_base(b)          (pointer)
                                isc_buffer_current(b)       (pointer)
                                isc_buffer_active(b)        (pointer)
                                isc_buffer_used(b)          (pointer)
                                isc_buffer_length(b)            (int)
                                isc_buffer_usedlength(b)        (int)
                                isc_buffer_consumedlength(b)    (int)
                                isc_buffer_remaininglength(b)   (int)
                                isc_buffer_activelength(b)      (int)
                                isc_buffer_availablelength(b)   (int)
                        Removed:
                                ISC_BUFFER_USEDCOUNT(b)
                                ISC_BUFFER_AVAILABLECOUNT(b)
                                isc_buffer_type(b)
                        Changed names:
                                isc_buffer_used(b, r) ->
                                        isc_buffer_usedregion(b, r)
                                isc_buffer_available(b, r) ->
                                        isc_buffer_available_region(b, r)
                                isc_buffer_consumed(b, r) ->
                                        isc_buffer_consumedregion(b, r)
                                isc_buffer_active(b, r) ->
                                        isc_buffer_activeregion(b, r)
                                isc_buffer_remaining(b, r) ->
                                        isc_buffer_remainingregion(b, r)

                        Buffer types were removed, so the ISC_BUFFERTYPE_*
                        macros are no more, and the type argument to
                        isc_buffer_init and isc_buffer_allocate were removed.
                        isc_buffer_putstr is now void (instead of isc_result_t)
                        and requires that the caller ensure that there
                        is enough available buffer space for the string.

 102.   [port]          Correctly detect inet_aton, inet_pton and inet_ptop
48 49
                        on BSD/OS 4.1.

50 51
 101.   [cleanup]       Quieted EGCS warnings from lib/isc/print.c.

52 53 54
 100.   [cleanup]       <isc/random.h> does not need <isc/int.h> or
                        <isc/mutex.h>.  isc_random_t moved to <isc/types.h>.

55 56 57 58
  99.   [cleanup]	Rate limiter now has separate shutdown() and
			destroy() functions, and it guarantees that all 
			queued events are delivered even in the shutdown case.

59 60 61
  98.   [cleanup]       <isc/print.h> does not need <stdarg.h> or <stddef.h>
                        unless ISC_PLATFORM_NEEDVSNPRINTF is defined.

62 63 64
  97.   [cleanup]       <isc/ondestroy.h> does not need <stddef.h> or
                        <isc/event.h>.

65 66 67
  96.   [cleanup]       <isc/mutex.h> does not need <isc/lang.h> or
                        <isc/result.h>.

68 69
  95.   [cleanup]       <isc/mutexblock.h> does not need <isc/result.h>.

70 71
  94.   [cleanup]       Some installed header files did not compile as C++.

72 73
  93.   [cleanup]       <isc/msgcat.h> does not need <isc/result.h>.

74 75 76
  92.   [cleanup]       <isc/mem.h> does not need <stddef.h>, <isc/boolean.h>,
                        or <isc/result.h>.

77 78 79
  91.   [cleanup]       <isc/log.h> does not need <sys/types.h> or
                        <isc/result.h>.

80 81 82
  90.	[cleanup]	Removed unneeded ISC_LANG_BEGINDECLS/ISC_LANG_ENDDECLS
			from <named/listenlist.h>.

83 84
  89.   [cleanup]       <isc/lex.h> does not need <stddef.h>.

85 86 87 88
  88.   [cleanup]       <isc/interfaceiter.h> does not need <isc/result.h> or
                        <isc/mem.h>.  isc_interface_t and isc_interfaceiter_t
                        moved to <isc/types.h>.

89 90 91
  87.   [cleanup]       <isc/heap.h> does not need <isc/boolean.h>,
                        <isc/mem.h> or <isc/result.h>.

92 93 94 95 96 97
  86.   [cleanup]       isc_bufferlist_t moved from <isc/bufferlist.h> to
                        <isc/types.h>.

  85.   [cleanup]       <isc/bufferlist.h> does not need <isc/buffer.h>,
                        <isc/list.h>, <isc/mem.h>, <isc/region.h> or
                        <isc/int.h>.
Bob Halley's avatar
update  
Bob Halley committed
98 99 100 101 102 103 104 105 106 107

  84.	[func]		allow-query ACL checks now apply to all data
			added to a response.

  83.	[func]		If the server is authoritative for both a
			delegating zone and its (nonsecure) delegatee, and
			a query is made for a KEY RR at the top of the
			delegatee, then the server will look for a KEY
			in the delegator if it is not found in the delegatee.

108 109
  82.   [cleanup]       <isc/buffer.h> does not need <isc/list.h>.

110 111 112
  81.   [cleanup]       <isc/int.h> and <isc/boolean.h> do not need
                        <isc/lang.h>.

113 114
  80.   [cleanup]       <isc/print.h> does not need <stdio.h> or <stdlib.h>.

115 116
  79.   [cleanup]       <dns/callbacks.h> does not need <stdio.h>.

117 118 119 120 121 122
  78.   [cleanup]       lwres_conftest renamed to lwresconf_test for
                        consistency with other *_test programs.

  77.   [cleanup]       typedef of isc_time_t and isc_interval_t moved from
                        <isc/time.h> to <isc/types.h>.  

Brian Wellington's avatar
Brian Wellington committed
123 124
  76.   [cleanup]	Rewrote keygen.

125 126 127
  75.   [func]          Don't load a zone if its database file is older
                        than the last time the zone was loaded.

128 129 130
  74.   [cleanup]       Removed mktemplate.o and ufile.o from libisc.a,
                        subsumed by file.o.

131 132 133 134 135 136
  73.   [func]          New "file" API in libisc, including new function
                        isc_file_getmodtime, isc_mktemplate renamed to
                        isc_file_mktemplate and isc_ufile renamed to
                        isc_file_openunique.  By no means an exhaustive API,
                        it is just what's needed for now.

137 138 139 140 141
  72.   [func]          DNS_RBTFIND_NOPREDECESSOR and DNS_RBTFIND_NOOPTIONS
                        added for dns_rbt_findnode, the former to disable the
                        setting of the chain to the predecessor, and the
                        latter to make clear when no options are set.

142 143 144 145 146
  71.   [cleanup]       Made explicit the implicit REQUIREs of
                        isc_time_seconds, isc_time_nanoseconds, and
                        isc_time_subtract.

  70.   [func]          isc_time_set() added.
Bob Halley's avatar
update  
Bob Halley committed
147

148 149 150
  69.   [bug]		The zone object's master and also-notify lists grew
			longer with each server reload.

Brian Wellington's avatar
Brian Wellington committed
151
  68.	[func]		Partial support for SIG(0) on incoming messages.
152

Michael Graff's avatar
update  
Michael Graff committed
153 154 155
  67.	[performance]	Allow use of alternate (compile-time supplied)
			OpenSSL libraries/headers.

156 157 158
  66.   [func]		Data in authoritative zones should have a trust level
			beyond secure.

159 160 161
  65.   [cleanup]       Removed obsolete typedef of dns_zone_callbackarg_t
			from <dns/types.h>.

Bob Halley's avatar
update  
Bob Halley committed
162 163 164 165
  64.	[func]		The RBT, DB, and zone table APIs now allow the
			caller find the most-enclosing superdomain of
			a name.

166
  63	[func]		Generate NOTIFY messages.
Mark Andrews's avatar
Mark Andrews committed
167

168
  62.	[func]		Add UDP refresh support.
Mark Andrews's avatar
Mark Andrews committed
169

170
  61.   [cleanup]       Use single quotes consistently in log messages.
171

172 173 174
  60.	[func]		Catch and disallow singleton types on message
			parse.

Michael Graff's avatar
update  
Michael Graff committed
175 176
  59.	[bug]		Cause net/host unreachable to be a hard error
			when sending and receiving.
177

178 179 180 181
  58.	[bug]		bin/named/query.c could sometimes trigger the
			(client->query.attributes & NS_QUERYATTR_NAMEBUFUSED)
			== 0 assertion in query_newname().

Brian Wellington's avatar
Brian Wellington committed
182 183
  57.   [func]          Added dns_nxt_typepresent()

184 185 186 187 188 189
  56.	[bug]		SIG records were not properly returned in cached
			negative answers.

  55.	[bug]		Responses containing multiple names in the authority
			section were not negatively cached.

190 191 192 193 194
  54.	[bug]		If a fetch with sigrdataset==NULL joined one with
			sigrdataset!=NULL or vice versa, the resolver
			could catch an assertion or lose signature data,
			respectively.

195 196 197
  53.	[port]		freebsd 4.0: lib/isc/unix/socket.c requires
			<sys/param.h>.

198 199 200
  52.	[bug]		rndc: taskmgr and socketmgr were not initaliased
			to NULL.

201 202 203
  51.   [cleanup]       dns/compress.h and dns/zt.h did not need to include
                        dns/rbt.h; it was needed only by compress.c and zt.c.

204 205
  50.   [func]          RBT deletion no longer requires a valid chain to work,
                        and dns_rbt_deletenode was added.
Bob Halley's avatar
Bob Halley committed
206

Bob Halley's avatar
update  
Bob Halley committed
207 208
  49.	[func]		Each cache now has its own mctx.

Bob Halley's avatar
update  
Bob Halley committed
209 210 211 212 213 214
  48.	[func]		isc_task_create() no longer takes an mctx.
			isc_task_mem() has been eliminated.

  47.	[func]		A number of modules now use memory context reference
			counting.

Bob Halley's avatar
Bob Halley committed
215 216 217 218 219
  46.	[func]		Memory contexts are now reference counted.
			Added isc_mem_inuse() and isc_mem_preallocate().
			Renamed isc_mem_destroy_check() to
			isc_mem_setdestroycheck().

Brian Wellington's avatar
update  
Brian Wellington committed
220 221 222 223 224 225 226
  45.	[bug]		The trusted-key statement incorrectly loaded keys.

  44.	[bug]		Don't include authority data if it would force us
			to unset the AD bit in the message.

  43.	[bug]		DNSSEC verification of cached rdatasets was failing.

227 228 229
  42.	[cleanup]	Simplified logging of messages with embedded domain
			names by introducing a new convenience function
			dns_name_format().
Bob Halley's avatar
Bob Halley committed
230

Andreas Gustafsson's avatar
Andreas Gustafsson committed
231
  41.	[func]		Use PR_SET_KEEPCAPS on Linux 2.3.99-pre3 and later
Bob Halley's avatar
Bob Halley committed
232 233 234 235
			to allow 'named' to run as a non-root user while
			retaining the ability to bind() to privileged
			ports.

Andreas Gustafsson's avatar
Andreas Gustafsson committed
236
  40.	[func]		Introduced new logging category "dnssec" and
237 238
			logging module "dns/validator".

239 240 241
  39.	[cleanup]	Moved the typedefs for isc_region_t, isc_textregion_t, 
			and isc_lex_t to <isc/types.h>.

Brian Wellington's avatar
update  
Brian Wellington committed
242 243
  38.	[bug]		TSIG signed incoming zone transfers work now.

244 245 246 247
  37.	[bug]		If the first RR in an incoming zone transfer was 
			not an SOA, the server died with an assertion failure
			instead of just reporting an error.

Michael Graff's avatar
Michael Graff committed
248 249
  36.	[cleanup]	Change DNS_R_SUCCESS (and others) to ISC_R_SUCCESS

250 251 252 253
  35.   [performance]   Log messages which are of a level too high to be
                        logged by any channel in the logging configuration
                        will not cause the log mutex to be locked.

254 255
  34.   [bug]           Recursion was allowed even with 'recursion no'.

256 257
  33.   [func]          The RBT now maintains a parent pointer at each node.

258 259 260
  32.   [cleanup]       bin/lwresd/client.c needs <string.h> for memset()
                        prototype.

261 262
  31.   [bug]           Use ${LIBTOOL} to compile bin/named/main.@O@.

James Brister's avatar
update  
James Brister committed
263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278
  30.	[func]		config file grammer change to support optional 
			class type for a view.

  29.	[func]		support new config file view options:

				auth-nxdomain recursion query-source
				query-source-v6 transfer-source
				transfer-source-v6 max-transfer-time-out
				max-transfer-idle-out transfer-format
				request-ixfr privide-ixfr cleaning-interval
				fetch-glue notify rfc2308-type1 lame-ttl
				max-ncache-ttl min-roots

  28.	[func]		support lame-ttl, min-roots and serial-queries 
			config global options.
			
279 280 281 282
  27.   [bug]           Only include <netinet6/in6.h> on BSD/OS 4.[01]*.
                        Including it on other platforms (eg, NetBSD) can
                        cause a forced #error from the C preprocessor.

James Brister's avatar
update  
James Brister committed
283 284
  26.	[func]		new match-clients statement in config file view.

Andreas Gustafsson's avatar
Andreas Gustafsson committed
285 286 287 288 289 290 291 292 293
  25.	[bug]		make install failed to install <isc/log.h> and
			<isc/ondestroy.h>.

  24.	[cleanup]	Eliminate some unnecessary #includes of header
			files from header files.

  23.	[cleanup]	Provide more context in log messages about client
			requests, using a new function ns_client_log().

294 295 296
  22.   [bug]		SIGs weren't returned in the answer section when
			the query resulted in a fetch.

297 298 299 300 301 302
  21.   [port]          Look at STD_CINCLUDES after CINCLUDES during
                        compilation, so additional system include directories
                        can be searched but header files in the bind9 source
                        tree with conflicting names take precedence.  This
                        avoids issues with installed versions of dnssafe and
                        openssl.
Bob Halley's avatar
update  
Bob Halley committed
303

304 305 306
  20.	[func]		Configuration file post-load validation of zones
			failed if there were no zones.

Bob Halley's avatar
update  
Bob Halley committed
307 308 309
  19.	[bug]		dns_zone_notifyreceive() failed to unlock the zone
			lock in certain error cases.

310 311 312
  18.   [bug]           Use AC_TRY_LINK rather than AC_TRY_COMPILE in
                        configure.in to check for presence of in6addr_any.

313 314 315 316
  17.	[func]		Do configuration file post-load validation of zones.

  16.	[bug]		put quotes around key names on config file 
			output to avoid possible keyword clashes.
Bob Halley's avatar
update  
Bob Halley committed
317

Bob Halley's avatar
update  
Bob Halley committed
318 319 320 321 322 323
  15.	[func]		Add dns_name_dupwithoffsets().  This function is
			improves comparison performance for duped names.

  14.	[bug]		free_rbtdb() could have 'put' unallocated memory in
			an unlikely error path.

Bob Halley's avatar
update  
Bob Halley committed
324 325 326
  13.	[bug]		lib/dns/master.c and lib/dns/xfrin.c didn't ignore
			out-of-zone data.

James Brister's avatar
James Brister committed
327
  12.	[bug]		Fixed possible unitialized variable error.
Bob Halley's avatar
update  
Bob Halley committed
328

Bob Halley's avatar
update  
Bob Halley committed
329 330 331 332
  11.	[bug]		axfr_rrstream_first() didn't check the result code of
			db_rr_iterator_first(), possibly causing an assertion
			to be triggered later.

333
  10.	[bug]		A bug in the code which makes EDNS0 OPT records in
Bob Halley's avatar
update  
Bob Halley committed
334 335 336
			bin/named/client.c and lib/dns/resolver.c could
			trigger an assertion.

James Brister's avatar
James Brister committed
337 338 339
   9.   [cleanup]	replaced bit-setting code in confctx.c and replaced
			repeated code with macro calls.

340 341 342
   8.   [bug]		Shutdown of incoming zone transfer accessed
			freed memory.

343 344 345 346 347 348 349 350 351
   7.   [cleanup]	removed 'listen-on' from view statement.

   6.   [bug]		quote RR names when generating config file to 
			prevent possible clash with config file keywords 
			(such as 'key').

   5.   [func]		syntax change to named.conf file: new ssu grant/deny 
			statements must now be enclosed by an 'update-policy'
			block.
Bob Halley's avatar
add  
Bob Halley committed
352

Bob Halley's avatar
Bob Halley committed
353 354 355 356 357 358
   4.	[port]		bin/named/unix/os.c didn't compile on systems with
			linux 2.3 kernel includes due to conflicts between
			C library includes and the kernel includes.  We now
			get only what we need from <linux/capability.h>, and
			avoid pulling in other linux kernel .h files.

359 360 361
   3.	[bug]		TKEYs go in the answer section of responses, not
			the additional section.

362 363 364
   2.	[bug]		Generating cryptographic randomness failed on
			systems without /dev/random.

Bob Halley's avatar
add  
Bob Halley committed
365 366 367 368 369
   1.	[bug]		The installdirs rule in
			lib/isc/unix/include/isc/Makefile.in had a typo which
			prevented the isc directory from being created if it
			didn't exist.

Bob Halley's avatar
Bob Halley committed
370
	--- 9.0.0b2 released ---