CHANGES 6.59 KB
Newer Older
1
2
3
4
5
6
7

  56.	[bug]		SIG records were not properly returned in cached
			negative answers.

  55.	[bug]		Responses containing multiple names in the authority
			section were not negatively cached.

8
9
10
11
12
  54.	[bug]		If a fetch with sigrdataset==NULL joined one with
			sigrdataset!=NULL or vice versa, the resolver
			could catch an assertion or lose signature data,
			respectively.

13
14
15
  53.	[port]		freebsd 4.0: lib/isc/unix/socket.c requires
			<sys/param.h>.

16
17
18
  52.	[bug]		rndc: taskmgr and socketmgr were not initaliased
			to NULL.

19
20
21
  51.   [cleanup]       dns/compress.h and dns/zt.h did not need to include
                        dns/rbt.h; it was needed only by compress.c and zt.c.

22
23
  50.   [func]          RBT deletion no longer requires a valid chain to work,
                        and dns_rbt_deletenode was added.
Bob Halley's avatar
Bob Halley committed
24

Bob Halley's avatar
update    
Bob Halley committed
25
26
  49.	[func]		Each cache now has its own mctx.

Bob Halley's avatar
update    
Bob Halley committed
27
28
29
30
31
32
  48.	[func]		isc_task_create() no longer takes an mctx.
			isc_task_mem() has been eliminated.

  47.	[func]		A number of modules now use memory context reference
			counting.

Bob Halley's avatar
Bob Halley committed
33
34
35
36
37
  46.	[func]		Memory contexts are now reference counted.
			Added isc_mem_inuse() and isc_mem_preallocate().
			Renamed isc_mem_destroy_check() to
			isc_mem_setdestroycheck().

Brian Wellington's avatar
update    
Brian Wellington committed
38
39
40
41
42
43
44
  45.	[bug]		The trusted-key statement incorrectly loaded keys.

  44.	[bug]		Don't include authority data if it would force us
			to unset the AD bit in the message.

  43.	[bug]		DNSSEC verification of cached rdatasets was failing.

45
46
47
  42.	[cleanup]	Simplified logging of messages with embedded domain
			names by introducing a new convenience function
			dns_name_format().
Bob Halley's avatar
Bob Halley committed
48

Andreas Gustafsson's avatar
Andreas Gustafsson committed
49
  41.	[func]		Use PR_SET_KEEPCAPS on Linux 2.3.99-pre3 and later
Bob Halley's avatar
Bob Halley committed
50
51
52
53
			to allow 'named' to run as a non-root user while
			retaining the ability to bind() to privileged
			ports.

Andreas Gustafsson's avatar
Andreas Gustafsson committed
54
  40.	[func]		Introduced new logging category "dnssec" and
55
56
			logging module "dns/validator".

57
58
59
  39.	[cleanup]	Moved the typedefs for isc_region_t, isc_textregion_t, 
			and isc_lex_t to <isc/types.h>.

Brian Wellington's avatar
update    
Brian Wellington committed
60
61
  38.	[bug]		TSIG signed incoming zone transfers work now.

62
63
64
65
  37.	[bug]		If the first RR in an incoming zone transfer was 
			not an SOA, the server died with an assertion failure
			instead of just reporting an error.

Michael Graff's avatar
Michael Graff committed
66
67
  36.	[cleanup]	Change DNS_R_SUCCESS (and others) to ISC_R_SUCCESS

68
69
70
71
  35.   [performance]   Log messages which are of a level too high to be
                        logged by any channel in the logging configuration
                        will not cause the log mutex to be locked.

72
73
  34.   [bug]           Recursion was allowed even with 'recursion no'.

74
75
  33.   [func]          The RBT now maintains a parent pointer at each node.

76
77
78
  32.   [cleanup]       bin/lwresd/client.c needs <string.h> for memset()
                        prototype.

79
80
  31.   [bug]           Use ${LIBTOOL} to compile bin/named/main.@O@.

James Brister's avatar
update    
James Brister committed
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
  30.	[func]		config file grammer change to support optional 
			class type for a view.

  29.	[func]		support new config file view options:

				auth-nxdomain recursion query-source
				query-source-v6 transfer-source
				transfer-source-v6 max-transfer-time-out
				max-transfer-idle-out transfer-format
				request-ixfr privide-ixfr cleaning-interval
				fetch-glue notify rfc2308-type1 lame-ttl
				max-ncache-ttl min-roots

  28.	[func]		support lame-ttl, min-roots and serial-queries 
			config global options.
			
97
98
99
100
  27.   [bug]           Only include <netinet6/in6.h> on BSD/OS 4.[01]*.
                        Including it on other platforms (eg, NetBSD) can
                        cause a forced #error from the C preprocessor.

James Brister's avatar
update    
James Brister committed
101
102
  26.	[func]		new match-clients statement in config file view.

Andreas Gustafsson's avatar
Andreas Gustafsson committed
103
104
105
106
107
108
109
110
111
  25.	[bug]		make install failed to install <isc/log.h> and
			<isc/ondestroy.h>.

  24.	[cleanup]	Eliminate some unnecessary #includes of header
			files from header files.

  23.	[cleanup]	Provide more context in log messages about client
			requests, using a new function ns_client_log().

112
113
114
  22.   [bug]		SIGs weren't returned in the answer section when
			the query resulted in a fetch.

115
116
117
118
119
120
  21.   [port]          Look at STD_CINCLUDES after CINCLUDES during
                        compilation, so additional system include directories
                        can be searched but header files in the bind9 source
                        tree with conflicting names take precedence.  This
                        avoids issues with installed versions of dnssafe and
                        openssl.
Bob Halley's avatar
update    
Bob Halley committed
121

122
123
124
  20.	[func]		Configuration file post-load validation of zones
			failed if there were no zones.

Bob Halley's avatar
update    
Bob Halley committed
125
126
127
  19.	[bug]		dns_zone_notifyreceive() failed to unlock the zone
			lock in certain error cases.

128
129
130
  18.   [bug]           Use AC_TRY_LINK rather than AC_TRY_COMPILE in
                        configure.in to check for presence of in6addr_any.

131
132
133
134
  17.	[func]		Do configuration file post-load validation of zones.

  16.	[bug]		put quotes around key names on config file 
			output to avoid possible keyword clashes.
Bob Halley's avatar
update    
Bob Halley committed
135

Bob Halley's avatar
update    
Bob Halley committed
136
137
138
139
140
141
  15.	[func]		Add dns_name_dupwithoffsets().  This function is
			improves comparison performance for duped names.

  14.	[bug]		free_rbtdb() could have 'put' unallocated memory in
			an unlikely error path.

Bob Halley's avatar
update    
Bob Halley committed
142
143
144
  13.	[bug]		lib/dns/master.c and lib/dns/xfrin.c didn't ignore
			out-of-zone data.

James Brister's avatar
James Brister committed
145
  12.	[bug]		Fixed possible unitialized variable error.
Bob Halley's avatar
update    
Bob Halley committed
146

Bob Halley's avatar
update    
Bob Halley committed
147
148
149
150
  11.	[bug]		axfr_rrstream_first() didn't check the result code of
			db_rr_iterator_first(), possibly causing an assertion
			to be triggered later.

151
  10.	[bug]		A bug in the code which makes EDNS0 OPT records in
Bob Halley's avatar
update    
Bob Halley committed
152
153
154
			bin/named/client.c and lib/dns/resolver.c could
			trigger an assertion.

James Brister's avatar
James Brister committed
155
156
157
   9.   [cleanup]	replaced bit-setting code in confctx.c and replaced
			repeated code with macro calls.

158
159
160
   8.   [bug]		Shutdown of incoming zone transfer accessed
			freed memory.

161
162
163
164
165
166
167
168
169
   7.   [cleanup]	removed 'listen-on' from view statement.

   6.   [bug]		quote RR names when generating config file to 
			prevent possible clash with config file keywords 
			(such as 'key').

   5.   [func]		syntax change to named.conf file: new ssu grant/deny 
			statements must now be enclosed by an 'update-policy'
			block.
Bob Halley's avatar
add  
Bob Halley committed
170

Bob Halley's avatar
Bob Halley committed
171
172
173
174
175
176
   4.	[port]		bin/named/unix/os.c didn't compile on systems with
			linux 2.3 kernel includes due to conflicts between
			C library includes and the kernel includes.  We now
			get only what we need from <linux/capability.h>, and
			avoid pulling in other linux kernel .h files.

177
178
179
   3.	[bug]		TKEYs go in the answer section of responses, not
			the additional section.

180
181
182
   2.	[bug]		Generating cryptographic randomness failed on
			systems without /dev/random.

Bob Halley's avatar
add  
Bob Halley committed
183
184
185
186
187
   1.	[bug]		The installdirs rule in
			lib/isc/unix/include/isc/Makefile.in had a typo which
			prevented the isc directory from being created if it
			didn't exist.

Bob Halley's avatar
Bob Halley committed
188
	--- 9.0.0b2 released ---