CHANGES 490 KB
Newer Older
1
2
4843.	[bug]		dnssec-signzone free hashlist on exit. [RT #46791]

3
4
5
4842.	[bug]		Conditionally compile opensslecdsa_link.c to avoid
			warnings about unused function. [RT #46790]

6
7
4841.	[bug]		Address -fsanitize=undefined warnings. [RT #46786]

8
9
10
4840.	[test]		Add tests to cover fallback to using ZSK on inactive
			KSK. [RT #46787]

11
4839.	[bug]		zone.c:zone_sign was not properly determining
12
13
14
15
			if there were active KSK and ZSK keys for
			a algorithm when update-check-ksk is true
			(default) leaving records unsigned with one or
			more DNSKEY algorithms. [RT #46774]
16

17
18
19
20
21
22
4838.	[bug]		zone.c:add_sigs was not properly determining
			if there were active KSK and ZSK keys for
			a algorithm when update-check-ksk is true
			(default) leaving records unsigned with one or
			more DNSKEY algorithms. [RT #46754]

23
24
25
4837.	[bug]		dns_update_signatures{inc} (add_sigs) was not
			properly determining if there were active KSK and
			ZSK keys for a algorithm when update-check-ksk is
26
27
28
			true (default) leaving records unsigned when there
			were multiple DNSKEY algorithms for the zone.
			[RT #46743]
29

30
31
32
33
34
4836.	[bug]		Zones created using "rndc addzone" could
			temporarily fail to inherit an "allow-transfer"
			ACL that had been configured in the options
			statement. [RT #46603]

35
36
37
38
39
40
4833.	[bug]		isc_event_free should check that the event is not
			linked when called. [RT #46725]

4832.	[bug]		Events were not being removed from zone->rss_events.
			[RT #46725]

41
42
43
4831.	[bug]		Convert the RRSIG expirytime to 64 bits for
			comparisions in diff.c:resign. [RT #46710]

44
45
46
4830.	[bug]		Failure to configure ATF when requested did not cause
			an error in top-level configure script. [RT #46655]

47
48
49
50
4829.	[bug]		isc_heap_delete did not zero the index value when
			the heap was created with a callback to do that.
			[RT #46709]

51
52
53
4827.	[misc]		Add a precommit check script util/checklibs.sh
			[RT #46215]

54
55
56
4826.	[cleanup]	Prevent potential build failures in bin/confgen/ and
			bin/named/ when using parallel make. [RT #46648]

57
58
59
4823.	[test]		Refactor reclimit system test to improve its
			reliability and speed. [RT #46632]

60
61
4822.	[bug]		Use resign_sooner in dns_db_setsigningtime. [RT #46473]

62
63
64
65
66
67
68
69
4821.	[bug]		When resigning ensure that the SOA's expire time is
			always later that the resigning time of other records.
			[RT #46473]

4820.	[bug]		dns_db_subtractrdataset should transfer the resigning
			information to the new header. [RT #46473]

4819.	[bug]		Fully backout the transaction when adding a RRset
70
			to the resigning / removal heaps fails. [RT #46473]
71

72
73
74
4818.	[test]		The logfileconfig system test could intermittently
			report false negatives on some platforms. [RT #46615]

75
76
77
4817.	[cleanup]	Use DNS_NAME_INITABSOLUTE and DNS_NAME_INITNONABSOLUTE.
			[RT #45433]

78
79
80
4816.	[bug]		Don't use a common array for storing EDNS options
			in DiG as it could fill up. [RT #45611]

81
82
83
4815.	[bug]		rbt_test.c:insert_and_delete needed to call
			dns_rbt_addnode instead of dns_rbt_addname. [RT #46553]

84
85
4814.	[cleanup]	Use AS_HELP_STRING for consistent help text. [RT #46521]

86
87
88
4812.	[bug]		Minor improvements to stability and consistency of code
			handling managed keys. [RT #46468]

89
90
91
4810.	[test]		The chain system test failed if the IPv6 interfaces
			were not configured. [RT #46508]

92
93
94
4809.	[port]		Check at configure time whether -latomic is needed
			for stdatomic.h. [RT #46324]

95
96
97
4805.	[bug]		TCP4Active and TCP6Active weren't being updated
			correctly. [RT #46454]

98
99
100
101
4804.	[port]		win32: access() does not work on directories as
			required by POSIX.  Supply a alternative in
			isc_file_isdirwritable. [RT #46394]

102
103
4803.   [bug]		Backport fix for RT #46055 from RT #46267. [RT #46430]

104
105
4792.	[bug]		Fix map file header correctness check. [RT #38418]

Evan Hunt's avatar
Evan Hunt committed
106
107
108
4791.	[doc]		Fixed outdated documentation about export libraries.
			[RT #46341]

109
110
111
112
4790.	[bug]		nsupdate could trigger a require when sending a
			update to the second address of the server.
			[RT #45731]

113
114
115
116
4788.	[cleanup]	When using "update-policy local", log a warning
			when an update matching the session key is received
			from a remote host. [RT #46213]

117
118
119
120
4787.	[cleanup]	Turn nsec3param_salt_totext() into a public function,
			dns_nsec3param_salttotext(), and add unit tests for it.
			[RT #46289]

121
122
4783.	[test]		dnssec: 'check that NOTIFY is sent at the end of
			NSEC3 chain generation failed' required more time
123
			on some machines for the IXFR to complete. [RT #46388]
124

Evan Hunt's avatar
Evan Hunt committed
125
126
4781.	[maint]		B.ROOT-SERVERS.NET is now 199.9.14.201. [RT #45889]

127
128
129
130
4780.	[bug]		When answering ANY queries, don't include the NS
			RRset in the authority section if it was already
			in the answer section. [RT #44543]

Evan Hunt's avatar
Evan Hunt committed
131
132
133
4777.	[cleanup]	Removed a redundant call to configure_view_acl().
			[RT #46369]

134
135
136
4774.	[bug]		<isc/util.h> was incorrectly included in several
			header files. [RT #46311]

137
138
139
140
4773.	[doc]		Fixed generating Doxygen documentation for functions
			annotated using certain macros.  Miscellaneous
			Doxygen-related cleanups. [RT #46276]

141
142
143
4771.	[bug]		When sending RFC 5011 refresh queries, disregard
			cached DNSKEY rrsets. [RT #46251]

144
145
146
147
148
149
150
4770.	[bug]		Cache additional data from priming queries as glue.
			Previously they were ignored as unsigned
			non-answer data from a secure zone, and never
			actually got added to the cache, causing hints
			to be used frequently for root-server
			addresses, which triggered re-priming. [RT #45241]

151
152
153
154
155
4769.	[bug]		Enforce the requirement that the managed keys
			directory (specified by "managed-keys-directory",
			and defaulting to the working directory if not
			specified) must be writable. [RT #46077]

156
157
4766.	[cleanup]	Addresss Coverity warnings. [RT #46150]

158
159
160
161
162
4762.	[func]		"update-policy local" is now restricted to updates
			from local addresses. (Previously, other addresses
			were allowed so long as updates were signed by the
			local session key.) [RT #45492]

Michał Kępień's avatar
Michał Kępień committed
163
164
4761.	[protocol]	Add support for DOA. [RT #45612]

165
166
167
168
169
4759.	[func]		Add logging channel "trust-anchor-telementry" to
			record trust-anchor-telementry in incoming requests.
			Both _ta-XXXX.<anchor>/NULL and EDNS KEY-TAG options
			are logged.  [RT #46124]

Evan Hunt's avatar
Evan Hunt committed
170
171
172
4758.	[doc]		Remove documentation of unimplemented "topology".
			[RT #46161]

173
174
175
176
177
178
179
180
181
4756.	[bug]		Interrupting dig could lead to an INSIST failure after
			certain errors were encountered while querying a host
			whose name resolved to more than one address.  Change
			4537 increased the odds of triggering this issue by
			causing dig to hang indefinitely when certain error
			paths were evaluated.  dig now also retries TCP queries
			(once) if the server gracefully closes the connection
			before sending a response. [RT #42832, #45159]

182
183
184
4754.	[bug]		dns_zone_setview needs a two stage commit to properly
			handle errors. [RT #45841]

185
186
187
188
189
4753.	[contrib]	Software obtainable from known upstream locations
			(i.e., zkt, nslint, query-loc) has been removed.
			Links to these and other packages can be found at
			https://www.isc.org/community/tools [RT #46182]

190
191
4752.	[test]		Add unit test for isc_net_pton. [RT #46171]

Evan Hunt's avatar
Evan Hunt committed
192
193
194
195
196
197
198
4749.	[func]		The ISC DLV service has been shut down, and all
			DLV records have been removed from dlv.isc.org.
			- Removed references to ISC DLV in documentation
			- Removed DLV key from bind.keys
			- No longer use ISC DLV by default in delv
			[RT #46155]

199
200
4748.	[cleanup]	Sprintf to snprintf coversions. [RT #46132]

201
202
203
4746.	[cleanup]	Add configured prefixes to configure summary
			output. [RT #46153]

Evan Hunt's avatar
Evan Hunt committed
204
205
206
207
4745.	[test]		Add color-coded pass/fail messages to system
			tests when running on terminals that support them.
			[RT #45977]

208
209
210
4744.	[bug]		Suppress trust-anchor-telementry queries if
			validation is disabled. [RT #46131]

211
212
213
4741.	[bug]		Make isc_refcount_current() atomically read the
			counter value. [RT #46074]

214
215
4739.	[cleanup]	Address clang static analysis warnings. [RT #45952]

216
217
4738.	[port]		win32: strftime mishandles %Z. [RT #46039]

218
219
4737.	[cleanup]	Address Coverity warnings. [RT #46012]

220
221
222
223
224
4736.	[cleanup]	(a) Added comments to NSEC3-related functions in
			lib/dns/zone.c.  (b) Refactored NSEC3 salt formatting
			code.  (c) Minor tweaks to lock and result handling.
			[RT #46053]

225
226
4735.	[bug]		Add @ISC_OPENSSL_LIBS@ to isc-config. [RT #46078]

227
228
229
4734.	[contrib]	Added sample configuration for DNS-over-TLS in
			contrib/dnspriv.

Mukund Sivaraman's avatar
Mukund Sivaraman committed
230
4730.	[bug]		Fix out of bounds access in DHCID totext() method.
231
232
			[RT #46001]

233
234
235
236
237
4729.	[bug]		Don't use memset() to wipe memory, as it may be
			removed by compiler optimizations when the
			memset() occurs on automatic stack allocation
			just before function return. [RT #45947]

238
239
240
4728.	[func]		Use C11's stdatomic.h instead of isc_atomic
			where available. [RT #40668]

241
242
243
244
4727.	[bug]		Retransferring an inline-signed slave using NSEC3
			around the time its NSEC3 salt was changed could result
			in an infinite signing loop. [RT #45080]

245
246
247
248
249
4725.	[bug]		Nsupdate: "recvsoa" was incorrectly reported for
			failures in sending the update message.  The correct
			location to be reported is "update_completed".
			[RT #46014]

Evan Hunt's avatar
Evan Hunt committed
250
251
252
4722.	[cleanup]	Clean up uses of strcpy() and strcat() in favor of
			strlcpy() and strlcat() for safety. [RT #45981]

253
254
4719.	[bug]		Address PVS static analyzer warnings. [RT #45946]

255
256
257
258
4717.	[bug]		Treat replies with QCOUNT=0 as truncated if TC=1,
			FORMERR if TC=0, and log the error correctly.
			[RT #45836]

259
260
261
4715.	[bug]		TreeMemMax was mis-identified as a second HeapMemMax
			in the Json cache statistics. [RT #45980]

262
263
264
4714.	[port]		openbsd/libressl: add support for building with
			--enable-openssl-hash. [RT #45982]

Evan Hunt's avatar
Evan Hunt committed
265
266
267
4713.	[cleanup]	Minor revisions to RPZ code to reduce
			differences with the development branch. [RT #46037]

268
269
270
4712.	[bug]		"dig +domain" and "dig +search" didn't retain the
			search domain when retrying with TCP. [RT #45547]

271
272
273
4711.	[test]		Some RR types were missing from genzones.sh.
			[RT #45782]

274
275
276
4709.	[cleanup]	Use dns_name_fullhash() to hash names for RRL.
			[RT #45435]

277
278
279
4703.	[bug]		BINDInstall.exe was missing some buffer length checks.
			[RT #45898]

280
281
282
283
4698.	[port]		Add --with-python-install-dir configure option to allow
			specifying a nonstandard installation directory for
			Python modules. [RT #45407]

284
285
286
4696.	[port]		Enable filter-aaaa support by default on Windows
			builds. [RT #45883]

287
288
289
4692.	[bug]		Fix build failures with libressl introduced in 4676.
			[RT #45879]

290
291
292
4690.	[bug]		Command line options -4/-6 were handled inconsistently
			between tools. [RT #45632]

Mark Andrews's avatar
Mark Andrews committed
293
4689.	[cleanup]	Turn on minimal responses for CDNSKEY and CDS in
294
295
296
			addition to DNSKEY and DS. Thanks to Tony Finch.
			[RT #45690]

297
298
299
4688.	[protocol]	Check and display EDNS KEY TAG options (RFC 8145) in
			messages. [RT #44804]

300
301
302
303
304
4686.	[bug]		dnssec-settime -p could print a bogus warning about
			key deletion scheduled before its inactivation when a
			key had an inactivation date set but no deletion date
			set. [RT #45807]

305
306
307
4685.	[bug]		dnssec-settime incorrectly calculated publication and
			activation dates for a successor key. [RT #45806]

308
309
310
311
4684.	[bug]		delv could send bogus DNS queries when an explicit
			server address was specified on the command line along
			with -4/-6. [RT #45804]

312
313
314
4683.	[bug]		Prevent nsupdate from immediately exiting on invalid
			user input in interactive mode. [RT #28194]

315
316
317
4682.	[bug]		Don't report errors on records below a DNAME.
			[RT #44880]

318
319
320
4680.	[bug]		Fix failing over to another master server address when
			nsupdate is used with GSS-API. [RT #45380]

321
322
323
4679.	[cleanup]	Suggest using -o when dnssec-verify finds a SOA record
			not at top of zone and -o is not used. [RT #45519]

Evan Hunt's avatar
Evan Hunt committed
324
325
326
4677.	[cleanup]	Split up the main function in dig to better support
			the iOS app version. [RT #45508]

327
328
329
4676.	[cleanup]	Allow BIND to be built using OpenSSL 1.0.X with
			deprecated functions removed. [RT #45706]

330
331
4675.	[cleanup]	Don't use C++ keyword class. [RT #45726]

Evan Hunt's avatar
Evan Hunt committed
332
333
4673.	[port]		Silence GCC 7 warnings. [RT #45592]

334
335
336
337
338
339
340
341
4672.	[bug]		Fix a regression introduced by change 3938 (when
			--enable-fetchlimit is NOT in use), where named
			as resolver would, upon fetch timeout, repeat
			fetching from the same nameserver address. This
			also broke "forward first;" configurations (as
			forwarders are also treated as nameservers when
			fetching). [RT #45321]

342
343
344
345
346
4671.	[bug]		Fix a race condition that could cause the
			resolver to crash with assertion failure when
			chasing DS in specific conditions with a very
			short RTT to the upstream nameserver. [RT #45168]

Evan Hunt's avatar
Evan Hunt committed
347
348
4670.	[cleanup]	Ensure that a request MAC is never sent back
			in an XFR response unless the signature was
349
			verified. [RT #45494]
Evan Hunt's avatar
Evan Hunt committed
350

351
352
353
4668.	[bug]		Use localtime_r and gmtime_r for thread safety.
			[RT #45664]

354
355
4667.	[cleanup]	Refactor RDATA unit tests. [RT #45610]

356
357
358
359
360
4665.	[protocol]	Added support for ED25519 and ED448 DNSSEC signing
			algorithms (RFC 8080). (Note: these algorithms
			depend on code currently in the development branch
			of OpenSSL which has not yet been released.)
			[RT #44696]
361

362
363
364
4663.	[cleanup]	Clarify error message printed by dnssec-dsfromkey.
			[RT #21731]

365
366
367
368
4662.	[performance]	Improve cache memory cleanup of zero TTL records
			by putting them at the tail of LRU header lists.
			[RT #45274]

369
370
371
372
4661.	[bug]		A race condition could occur if a zone was reloaded
			while resigning, triggering a crash in
			rbtdb.c:closeversion(). [RT #45276]

373
374
375
4660.	[bug]		Remove spurious "peer" from Windows socket log
			messages. [RT #45617]

376
377
378
4658.	[bug]		Clean up build directory created by "setup.py install"
			immediately.  [RT #45628]

379
380
381
4657.	[bug]		rrchecker system test result could be improperly
			determined. [RT #45602]

382
383
4655.	[bug]		Lack of seccomp could be falsely reported. [RT #45599]

384
385
386
4654.	[cleanup]	Don't use C++ keywords delete, new and namespace.
			[RT #45538]

Mark Andrews's avatar
Mark Andrews committed
387
4652.	[bug]		Nsupdate could attempt to use a zeroed address on
388
389
			server timeout. [RT #45417]

Mark Andrews's avatar
Mark Andrews committed
390
4651.	[test]		Silence coverity warnings in tsig_test.c. [RT #45528]
391

Mark Andrews's avatar
9.10.6    
Mark Andrews committed
392
393
	--- 9.10.6 released ---

Mark Andrews's avatar
Mark Andrews committed
394
395
396
397
398
	--- 9.10.6rc2 released ---

4653.	[bug]		Reorder includes to move @DST_OPENSSL_INC@ and
			@ISC_OPENSSL_INC@ after shipped include directories.
			[RT #45581]
Evan Hunt's avatar
Evan Hunt committed
399

Mark Andrews's avatar
Mark Andrews committed
400
401
	--- 9.10.6rc1 released ---

402
403
404
405
406
4647.	[bug]		Change 4643 broke verification of TSIG signed TCP
			message sequences where not all the messages contain
			TSIG records.  These may be used in AXFR and IXFR
			responses. [RT #45509]

407
408
409
4645.	[bug]		Fix PKCS#11 RSA parsing when MD5 is disabled.
			[RT #45300]

Mark Andrews's avatar
Mark Andrews committed
410
411
	--- 9.10.6b1 released ---

412
413
414
415
4643.	[security]	An error in TSIG handling could permit unauthorized
			zone transfers or zone updates. (CVE-2017-3142)
			(CVE-2017-3143) [RT #45383]

Evan Hunt's avatar
Evan Hunt committed
416
417
418
419
4642.	[cleanup]	Add more logging of RFC 5011 events affecting the
			status of managed keys: newly observed keys,
			deletion of revoked keys, etc. [RT #45354]

420
421
422
4641.	[cleanup]	Parallel builds (make -j) could fail with --with-atf /
			--enable-developer. [RT #45373]

423
424
425
426
4640.	[bug]		If query_findversion failed in query_getdb due to
			memory failure the error status was incorrectly
			discarded. [RT #45331]

427
428
429
4636.	[bug]		Normalize rpz policy zone names when checking for
			existence. [RT #45358]

430
431
432
4635.	[bug]		Fix RPZ NSDNAME logging that was logging
			failures as NSIP. [RT #45052]

433
434
435
4634.	[contrib]	check5011.pl needs to handle optional space before
			semi-colon in +multi-line output. [RT #45352]

436
437
4633.	[maint]		Updated AAAA (2001:500:200::b) for B.ROOT-SERVERS.NET.

Mark Andrews's avatar
Mark Andrews committed
438
4632.	[security]	The BIND installer on Windows used an unquoted
439
			service path, which can enable privilege escalation.
440
441
			(CVE-2017-3141) [RT #45229]

Mark Andrews's avatar
Mark Andrews committed
442
4631.	[security]	Some RPZ configurations could go into an infinite
Evan Hunt's avatar
Evan Hunt committed
443
444
445
			query loop when encountering responses with TTL=0.
			(CVE-2017-3140) [RT #45181]

446
447
448
4629.	[bug]		dns_client_startupdate could not be called with a
			running client. [RT #45277]

449
450
451
4628.	[bug]		Fixed a potential reference leak in query_getdb().
			[RT #45247]

452
453
454
4627.	[func]		Deprecate 'dig +sit', it is replaced by 'dig +cookie'.
			[RT #45245]

Evan Hunt's avatar
Evan Hunt committed
455
456
457
4626.	[test]		Added more tests for handling of different record
			ordering in CNAME and DNAME responses. [QA #430]

458
4624.	[bug]		Check isc_mem_strdup results in dns_view_setnewzones.
459
460
			[RT #45210]

461
462
463
4622.	[bug]		Remove unnecessary escaping of semicolon in CAA and
			URI records. [RT #45216]

464
465
466
4621.	[port]		Force alignment of oid arrays to silence loader
			warnings. [RT #45131]

467
468
469
4620.	[port]		Handle EPFNOSUPPORT being returned when probing
			to see if a socket type is supported. [RT #45214]

470
471
472
4617.	[test]		Update rndc system test to be more delay tolerant.
			[RT #45177]

473
474
475
476
4615.	[bug]		AD could be set on truncated answer with no records
			present in the answer and authority sections.
			[RT #45140]

477
478
4614.	[test]		Fixed an error in the sockaddr unit test. [RT #45146]

479
480
481
482
4612.	[bug]		Silence 'may be use uninitalised' warning and simplify
			the code in lwres/getaddinfo:process_answer.
			[RT #45158]

Evan Hunt's avatar
Evan Hunt committed
483
484
485
4609.	[cleanup]	Rearrange makefiles to enable parallel execution
			(i.e. "make -j"). [RT #45078]

486
487
488
4608.	[func]		DiG now warns about .local queries which are reserved
			for Multicast DNS. [RT #44783]

489
490
491
4606.	[port]		Stop using experimental "Experimental keys on scalar"
			feature of perl as it has been removed. [RT #45012]

492
493
494
4604.	[bug]		Don't use ERR_load_crypto_strings() when building
			with OpenSSL 1.1.0. [RT #45117]

495
496
497
498
4603.	[doc]		Automatically generate named.conf(5) man page
			from doc/misc/options. Thanks to Tony Finch.
			[RT #43525]

499
500
501
502
4602.	[func]		Threads are now set to human-readable
			names to assist debugging, when supported by
			the OS. [RT #43234]

503
504
505
506
4601.	[bug]		Reject incorrect RSA key lengths during key
			generation and and sign/verify context
			creation. [RT #45043]

507
508
509
4600.	[bug]		Adjust RPZ trigger counts only when the entry
			being deleted exists. [RT #43386]

510
511
512
513
514
4599.	[bug]		Fix inconsistencies in inline signing time
			comparison that were introduced with the
			introduction of rdatasetheader->resign_lsb.
			[RT #42112]

515
516
517
518
519
4597.	[bug]		The validator now ignores SHA-1 DS digest type
			when a DS record with SHA-384 digest type is
			present and is a supported digest type.
			[RT #45017]

520
521
522
523
524
4596.	[bug]		Validate glue before adding it to the additional
			section. This also fixes incorrect TTL capping
			when the RRSIG expired earlier than the TTL.
			[RT #45062]

Evan Hunt's avatar
Evan Hunt committed
525
526
527
4593.	[doc]		Update README using markdown, remove outdated FAQ
			file in favor of the knowledge base.

Evan Hunt's avatar
Evan Hunt committed
528
4592.	[bug]		A race condition on shutdown could trigger an
529
530
			assertion failure in dispatch.c. [RT #43822]

Evan Hunt's avatar
Evan Hunt committed
531
532
533
4591.	[port]		Addressed some python 3 compatibility issues.
			Thanks to Ville Skytta. [RT #44955] [RT #44956]

534
535
536
4590.	[bug]		Support for PTHREAD_MUTEX_ADAPTIVE_NP was not being
			properly detected. [RT #44871]

537
538
4589.	[cleanup]	"configure -q" is now silent. [RT #44829]

539
540
541
542
4588.	[bug]		nsupdate could send queries for TKEY to the wrong
			server when using GSSAPI. Thanks to Tomas Hozza.
			[RT #39893]

543
544
545
4587.	[bug]		named-checkzone failed to handle occulted data below
			DNAMEs correctly. [RT #44877]

546
547
4585.	[port]		win32: Set CompileAS value. [RT #42474]

548
549
550
4584.	[bug]		A number of memory usage statistics were not properly
			reported when they exceeded 4G.  [RT #44750]

551
552
553
4574.	[bug]		Dig leaked memory with multiple +subnet options.
			[RT #44683]

554
555
556
4555.	[func]		dig +ednsopt: EDNS options can now be specified by
			name in addition to numeric value. [RT #44461]

Evan Hunt's avatar
Evan Hunt committed
557
558
	--- 9.10.5 released ---

559
560
	--- 9.10.5rc3 released ---

561
562
563
4582.	[security]	'rndc ""' could trigger a assertion failure in named.
			(CVE-2017-3138) [RT #44924]

564
4581.	[port]		Linux: Add getpid and getrandom to the list of system
565
			calls named uses for seccomp. [RT #44883]
566

567
568
569
4580.	[bug]		4578 introduced a regression when handling CNAME to
			referral below the current domain. [RT #44850]

570
571
572
573
574
	--- 9.10.5rc2 released ---

4578.	[security]	Some chaining (CNAME or DNAME) responses to upstream
			queries could trigger assertion failures.
			(CVE-2017-3137) [RT #44734]
Mark Andrews's avatar
Mark Andrews committed
575

Mark Andrews's avatar
Mark Andrews committed
576
4575.	[security]	DNS64 with "break-dnssec yes;" can result in an
577
			assertion failure. (CVE-2017-3136) [RT #44653]
578

Evan Hunt's avatar
Evan Hunt committed
579
580
	--- 9.10.5rc1 released ---

581
582
4571.	[bug]		Out-of-tree builds of backtrace_test failed.

583
584
585
586
4570.	[cleanup]	named did not correctly fall back to the built-in
			initializing keys if the bind.keys file was present
			but empty. [RT #44531]

587
588
589
4568.	[contrib]	Added a --with-bind option to the dnsperf configure
			script to specify BIND prefix path.

590
591
592
4567.	[port]		Call getprotobyname and getservbyname prior to calling
			chroot so that shared libraries get loaded. [RT #44537]

593
594
4564.	[maint]		Update the built in managed keys to include the
			upcoming root KSK. [RT #44579]
595

596
597
598
4563.	[bug]		Modified zones would occasionally fail to reload.
			[RT #39424]

599
600
4561.	[port]		Silence a warning in strict C99 compilers. [RT #44414]

601
4560.	[bug]		mdig: add -m option to enable memory debugging rather
Evan Hunt's avatar
Evan Hunt committed
602
			than having it on all the time. [RT #44509]
603

604
4559.	[bug]		openssl_link.c didn't compile if ISC_MEM_TRACKLINES
605
606
			was turned off.  [RT #44509]

607
4558.	[bug]		Synthesised CNAME before matching DNAME was still
Mark Andrews's avatar
Mark Andrews committed
608
			being cached when it should not have been.  [RT #44318]
609

Mark Andrews's avatar
Mark Andrews committed
610
4557.	[security]	Combining dns64 and rpz can result in dereferencing
611
612
			a NULL pointer (read).  (CVE-2017-3135) [RT#44434]

613
614
615
4554.	[bug]		Remove double unlock in dns_dispatchmgr_setudp.
			[RT #44336]

616
617
618
619
4553.	[bug]		Named could deadlock there were multiple changes to
			NSEC/NSEC3 parameters for a zone being processed at
			the same time. [RT #42770]

620
621
622
4552.	[bug]		Named could trigger a assertion when sending notify
			messages. [RT #44019]

623
624
625
4551.	[test]		Add system tests for integrity checks of MX and
			SRV records. [RT #43953]

626
627
628
4550.	[cleanup]	Increased the number of available master file
			output style flags from 32 to 64. [RT #44043]

629
630
631
4547.	[port]		Add support for --enable-native-pkcs11 on the AEP
			Keyper HSM. [RT #42463]

Mark Andrews's avatar
Mark Andrews committed
632
633
	--- 9.10.5b1 released ---

634
635
636
637
4543.	[bug]		dns_client_startupdate now delays sending the update
			request until isc_app_ctxrun has been called.
			[RT #43976]

638
639
640
4541.	[bug]		rndc addzone should properly reject non master/slave
			zones. [RT #43665]

Evan Hunt's avatar
Evan Hunt committed
641
4539.	[bug]		Referencing a nonexistent zone with RPZ could lead
642
643
			to a assertion failure when configuring. [RT #43787]

644
645
646
4538.	[bug]		Call dns_client_startresolve from client->task.
			[RT #43896]

Mark Andrews's avatar
Mark Andrews committed
647
4537.	[bug]		Handle timeouts better in dig/host/nslookup. [RT #43576]
648

649
650
651
4536.	[bug]		ISC_SOCKEVENTATTR_USEMINMTU was not being cleared
			when reusing the event structure. [RT #43885]

652
653
654
4535.	[bug]		Address race condition in setting / testing of
			DNS_REQUEST_F_SENDING. [RT #43889]

655
656
4534.	[bug]		Only set RD, RA and CD in QUERY responses. [RT #43879]

Mark Andrews's avatar
Mark Andrews committed
657
4533.	[bug]		dns_client_update should terminate on prerequisite
658
659
660
			failures (NXDOMAIN, YXDOMAIN, NXRRSET, YXRRSET)
			and also on BADZONE.  [RT #43865]

661
662
663
4532.	[contrib]	Make gen-data-queryperf.py python 3 compatible.
			[RT #43836]

664
665
666
667
4530.	[bug]		Change 4489 broke the handling of CNAME -> DNAME
			in responses resulting in SERVFAIL being returned.
			[RT #43779]

Evan Hunt's avatar
Evan Hunt committed
668
669
670
4529.	[cleanup]	Silence noisy log warning when DSCP probe fails
			due to firewall rules. [RT #43847]

671
672
673
4528.	[bug]		Only set the flag bits for the i/o we are waiting
			for on EPOLLERR or EPOLLHUP. [RT #43617]

674
675
4527.	[doc]		Support DocBook XSL Stylesheets v1.79.1. [RT #43831]

Evan Hunt's avatar
Evan Hunt committed
676
4526.	[doc]		Corrected errors and improved formatting of
Mark Andrews's avatar
Mark Andrews committed
677
			grammar definitions in the ARM. [RT #43739]
Evan Hunt's avatar
Evan Hunt committed
678

Evan Hunt's avatar
Evan Hunt committed
679
680
681
4525.	[doc]		Fixed outdated documentation on managed-keys.
			[RT #43810]

682
683
684
4524.	[bug]		The net zero test was broken causing IPv4 servers
			with addresses ending in .0 to be rejected. [RT #43776]

685
686
687
4523.	[doc]		Expand config doc for <querysource4> and
			<querysource6>. [RT #43768]

688
689
690
4522.	[bug]		Handle big gaps in log file version numbers better.
			[RT #38688]

691
692
693
4521.	[cleanup]	Log it as an error if an entropy source is not
			found and there is no fallback available. [RT #43659]

Mark Andrews's avatar
Mark Andrews committed
694
4520.	[cleanup]	Alphabetize more of the grammar when printing it
Mark Andrews's avatar
Mark Andrews committed
695
			out. [RT #43755]
696

697
698
4519.	[port]		win32: handle ERROR_MORE_DATA. [RT #43534]

699
700
701
702
4517.	[security]	Named could mishandle authority sections that were
			missing RRSIGs triggering an assertion failure.
			(CVE-2016-9444) [RT # 43632]

703
704
705
4516.	[bug]		isc_socketmgr_renderjson was missing from the
			windows build. [RT #43602]

706
4515.	[port]		FreeBSD: Find readline headers when they are in
707
			edit/readline/ instead of readline/. [RT #43658]
708

709
710
711
4513.	[cleanup]	Minimum Python versions are now 2.7 and 3.2.
			[RT #43566]

712
713
714
4512.	[bug]		win32: @GEOIP_INC@ missing from delv.vcxproj.in.
			[RT #43556]

715
716
717
718
719
4510.	[security]	Named mishandled some responses where covering RRSIG
			records are returned without the requested data
			resulting in a assertion failure. (CVE-2016-9147)
			[RT #43548]

Mark Andrews's avatar
Mark Andrews committed
720
4509.	[test]		Make the rrl system test more reliable on slower
721
722
			machines by using mdig instead of dig. [RT #43280]

723
724
725
726
4508.	[security]	Named incorrectly tried to cache TKEY records which
			could trigger a assertion failure when there was
			a class mismatch. (CVE-2016-9131) [RT #43522]

Francis Dupont's avatar
Francis Dupont committed
727
4507.	[bug]		Named could incorrectly log 'allows updates by IP
728
729
			address, which is insecure' [RT #43432]

730
731
4505.	[port]		Use IP_PMTUDISC_OMIT if available. [RT #35494]

732
733
734
735
4504.	[security]	Allow the maximum number of records in a zone to
			be specified.  This provides a control for issues
			raised in CVE-2016-6170. [RT #42143]

Evan Hunt's avatar
Evan Hunt committed
736
4503.	[cleanup]	"make uninstall" now removes files installed by
Evan Hunt's avatar
Evan Hunt committed
737
			BIND. (This currently excludes Python files
Mark Andrews's avatar
Mark Andrews committed
738
			due to lack of support in setup.py.) [RT #42192]
Evan Hunt's avatar
Evan Hunt committed
739

740
741
742
4502.	[func]		Report multiple and experimental options when printing
			grammar. [RT #43134]

743
744
4500.	[bug]		Support modifier I64 in isc__print_printf. [RT #43526]

Mark Andrews's avatar
Mark Andrews committed
745
4499.	[port]		MacOSX: silence deprecated function warning
746
747
748
			by using arc4random_stir() when available
			instead of arc4random_addrandom(). [RT #43503]

749
750
751
4498.	[test]		Simplify prerequisite checks in system tests.
			[RT #43516]

752
753
4497.	[port]		Add support for OpenSSL 1.1.0. [RT #41284]

754
755
756
757
4496.	[func]		dig: add +idnout to control whether labels are
			display in punycode or not.  Requires idn support
			to be enabled at compile time. [RT #43398]

758
759
4494.	[bug]		Look for <editline/readline.h>. [RT #43429]

Mark Andrews's avatar
Mark Andrews committed
760
4492.	[bug]		irs_resconf_load failed to initialize sortlistnxt
761
762
763
			causing bad writes if resolv.conf contained a
			sortlist directive. [RT #43459]

764
765
766
4491.	[bug]		Improve message emitted when testing whether sendmsg
			works with TOS/TCLASS fails. [RT #43483]

767
768
4490.	[maint]		Added AAAA (2001:500:12::d0d) for G.ROOT-SERVERS.NET.

769
4489.	[security]	It was possible to trigger assertions when processing
770
771
			a response containing a DNAME answer. (CVE-2016-8864)
			[RT #43465]
772

773
774
4488.	[port]		Darwin: use -framework for Kerberos. [RT #43418]

Evan Hunt's avatar
Evan Hunt committed
775
776
4487.	[test]		Make system tests work on Windows. [RT #42931]

Mark Andrews's avatar
Mark Andrews committed
777
4486.	[bug]		Look in $prefix/lib/pythonX.Y/site-packages for
778
779
			the python modules we install. [RT #43330]

Mark Andrews's avatar
Mark Andrews committed
780
4485.	[bug]		Failure to find readline when requested should be
781
782
			fatal to configure. [RT #43328]

Mark Andrews's avatar
Mark Andrews committed
783
4484.	[func]		Check prefixes in acls to make sure the address and
784
785
786
			prefix lengths are consistent.  Warn only in
			BIND 9.11 and earlier. [RT #43367]

Mark Andrews's avatar
Mark Andrews committed
787
4483.	[bug]		Address use before require check and remove extraneous
788
789
790
			dns_message_gettsigkey call in dns_tsig_sign.
			[RT #43374]

791
792
4476.	[test]		Fix reclimit test on slower machines. [RT #43283]

793
794
4475.	[doc]		Update named-checkconf documentation. [RT #43153]

795
796
797
4474.	[bug]		win32: call WSAStartup in fromtext_in_wks so that
			getprotobyname and getservbyname work.  [RT #43197]

798
799
4473.	[bug]		Only call fsync / _commit on regular files. [RT #43196]

800
801
4472.	[bug]		Named could fail to find the correct NSEC3 records when
			a zone was updated between looking for the answer and
802
			looking for the NSEC3 records proving nonexistence
803
804
			of the answer. [RT #43247]

Mark Andrews's avatar
Mark Andrews committed
805
4471.	[cleanup]	Revert a query logging change inadvertently
806
			backported from 9.11. [RT #43238]
807

808
809
4468.	[bug]		Address ECS option handling issues. [RT #43191]

Mukund Sivaraman's avatar
Typo    
Mukund Sivaraman committed
810
811
4467.	[security]	It was possible to trigger an assertion when
			rendering a message. (CVE-2016-2776) [RT #43139]
812

813
814
815
4466.	[bug]		Interface scanning didn't work on a Windows system
			without a non local IPv6 addresses. [RT #43130]

816
817
4464.	[bug]		Fix windows python support. [RT #43173]

818
819
820
4461.	[bug]		win32: not all external data was properly marked
			as external data for windows dll. [RT #43161]

821
822
823
4458.	[cleanup]	Update assertions to be more correct, and also remove
			use of a reserved word. [RT #43090]

824
825
4457.	[maint]		Added AAAA (2001:500:a8::e) for E.ROOT-SERVERS.NET.

826
827
828
4456.	[doc]		Add DOCTYPE and lang attribute to <html> tags.
			[RT #42587]

829
4453.	[bug]		Prefetching of DS records failed to update their
830
831
			RRSIGs. [RT #42865]

Mark Andrews's avatar
Mark Andrews committed
832
4451.	[cleanup]	Log more useful information if a PKCS#11 provider
833
			library cannot be loaded. [RT #43076]
834

835
836
837
4450.	[port]		Provide more nuanced HSM support which better matches
			the specific PKCS11 providers capabilities. [RT #42458]

838
839
840
4448.	[bug]		win32: ::1 was not being found when iterating
			interfaces. [RT #42993]

841
842
843
844
4446.	[bug]		The cache_find() and _findrdataset() functions
			could find rdatasets that had been marked stale.
			[RT #42853]

Evan Hunt's avatar
Evan Hunt committed
845
846
847
848
4445.	[cleanup]	isc_errno_toresult() can now be used to call the
			formerly private function isc__errno2result().
			[RT #43050]

849
850
851
4443.	[func]		Set TCP_MAXSEG in addition to IPV6_USE_MIN_MTU on
			TCP sockets. [RT #42864]

852
853
854
855
856
4442.	[bug]		Fix RPZ CIDR tree insertion bug that corrupted
			tree data structure with overlapping networks
			(longest prefix match was ineffective).
			[RT #43035]

857
858
4441.	[cleanup]	Alphabetize host's help output. [RT #43031]

859
860
861
862
863
4435.	[tuning]	Only set IPV6_USE_MIN_MTU for UDP when the message
			will not fit into a single IPv4 encapsulated IPv6
			UDP packet when transmitted over a Ethernet link.
			[RT #42871]

864
865
866
4434.	[protocol]	Return EDNS EXPIRE option for master zones in addition
			to slave zones. [RT #43008]

867
868
869
4433.	[cleanup]	Report an error when passing an invalid option or
			view name to "rndc dumpdb". [RT #42958]

870
4432.	[test]		Hide rndc output on expected failures in logfileconfig
871
872
			system test. [RT #27996]

873
874
875
4431.	[bug]		named-checkconf now checks the rate-limit clause.
			[RT #42970]

876
877
878
4430.	[bug]		Lwresd died if a search list was not defined.
			Found by 0x710DDDD At Alibaba Security. [RT #42895]

Mark Andrews's avatar
grammar    
Mark Andrews committed
879
4425.	[bug]		arpaname and named-rrchecker were not being installed
880
881
			into ${prefix}/bin.  [RT #42910]

882
883
884
885
886
887
888
4424.	[experimental]	Named now sends _ta-XXXX.<trust-anchor>/NULL queries
			to provide feedback to the trust-anchor administrators
			about how key rollovers are progressing as per
			draft-ietf-dnsop-edns-key-tag-02.  This can be
			disabled using 'trust-anchor-telemetry no;'.
			[RT #40583]

889
890
891
4423.	[maint]		Added missing IPv6 address 2001:500:84::b for
			B.ROOT-SERVERS.NET. [RT #42898]

Evan Hunt's avatar
Evan Hunt committed
892
893
894
4422.	[port]		Silence clang warnings in dig.c and dighost.c.
			[RT #42451]

895
896
4418.	[bug]		Fix a compiler warning in GSSAPI code. [RT #42879]

897
4414.	[bug]		Corrected a bug in the MIPS implementation of
898
899
			isc_atomic_xadd(). [RT #41965]

900
901
902
4413.	[bug]		GSSAPI negotiation could fail if GSS_S_CONTINUE_NEEDED
			was returned. [RT #42733]

903
904
905
4412.	[cleanup]	Make fixes for GCC 6. ISC_OFFSET_MAXIMUM macro was
			removed. [RT #42721]

Mark Andrews's avatar
Mark Andrews committed
906
907
4409.	[bug]		DNS64 should exclude mapped addresses by default when
			an exclude acl is not defined. [RT #42810]
908

909
910
911
4407.	[performance]	Use GCC builtin for clz in RPZ lookup code.
			[RT #42818]

Mark Andrews's avatar
Mark Andrews committed
912
913
4406.	[security]	getrrsetbyname with a non absolute name could
			trigger an infinite recursion bug in lwresd
914
915
			and named with lwres configured if when combined
			with a search list entry the resulting name is
Mark Andrews's avatar
Mark Andrews committed
916
			too long. (CVE-2016-2775) [RT #42694]
917

918
919
920
921
4405.	[bug]		Change 4342 introduced a regression where you could
			not remove a delegation in a NSEC3 signed zone using
			OPTOUT via nsupdate. [RT #42702]

922
923
924
4404.	[misc]		Allow krb5-config to be used when configuring gssapi.
			[RT #42580]

925
926
927
4403.	[bug]		Rename variables and arguments that shadow: basename,
			clone and gai_error.

928
929
930
4397.	[bug]		Update Windows python support. [RT #42538]

4395.	[bug]		Improve out-of-tree installation of python modules.
931
932
			[RT #42586]

933
934
935
4387.	[bug]		Change 4336 was not complete leading to SERVFAIL
			being return as NS records expired. [RT #42683]

936
937
938
4384.	[bug]		Change 4256 accidentally disabled logging of the
			rndc command. [RT #42654]

Mark Andrews's avatar
Mark Andrews committed
939
4379.	[bug]		An INSIST could be triggered if a zone contains
940
941
942
			RRSIG records with expiry fields that loop
			using serial number arithmetic. [RT #40571]

943
944
945
4378.	[contrib]	#include <isc/string.h> for strlcat in zone2ldap.c.
			[RT #42525]

946
947
948
949
4377.	[bug]		Don't reuse zero TTL responses beyond the current
			client set (excludes ANY/SIG/RRSIG queries).
			[RT #42142]

950
951
952
953
4374.	[bug]		Use SAVE/RESTORE macros in query.c to reduce the
			probability of reference counting errors as seen
			in 4365. [RT #42405]

Mark Andrews's avatar
Mark Andrews committed
954
4373.	[bug]		Address undefined behavior in getaddrinfo. [RT #42479]
955

Mark Andrews's avatar
Mark Andrews committed
956
4372.	[bug]		Address undefined behavior in libt_api. [RT #42480]
957

958
959
960
4369.	[bug]		Fix 'make' and 'make install' out-of-tree python
			support. [RT #42484]

961
962
963
964
965
4368.	[bug]		Fix a crash when calling "rndc stats" on some
			Windows builds because some Visual Studio compilers
			generated crashing code for the "%z" printf()
			format specifier. [RT #42380]

966
967
968
4367.	[bug]		Remove unnecessary assignment of loadtime in
			zone_touched. [RT #42440]

969
970
971
4366.	[bug]		Address race condition when updating rbtnode bit
			fields. [RT #42379]

Mark Andrews's avatar
Mark Andrews committed
972
4363.	[port]		win32: Disable explicit triggering UAC when running
Mark Andrews's avatar
Mark Andrews committed
973
			BINDInstall.
974

975
976
977
978
4361.	[cleanup]	Where supported, file modification times returned
			by isc_file_getmodtime() are now accurate to the
			nanosecond. [RT #41968]

979
980
981
4360.	[bug]		Silence spurious 'bad key type' message when there is
			a existing TSIG key. [RT #42195]

982
983
984
4359.	[bug]		Inherited 'also-notify' lists were not being checked
			by named-checkconf. [RT #42174]

985
986
987
4354.	[bug]		Check that the received HMAC length matches the
			expected length prior to check the contents on the
			control channel.  This prevents a OOB read error.
Mark Andrews's avatar
Mark Andrews committed
988
			This was reported by Lian Yihan, <lianyihan@360.cn>.
989
990
			[RT #42215]

Evan Hunt's avatar
Evan Hunt committed
991
992
4353.	[cleanup]	Update PKCS#11 header files. [RT #42175]

993
994
995
996
997
998
4352.	[cleanup]	The ISC DNSSEC Lookaside Validation (DLV) service
			is scheduled to be disabled in 2017.  A warning is
			now logged when named is configured to use it,
			either explicitly or via "dnssec-lookaside auto;"
			[RT #42207]

999
1000
4351.	[bug]		'dig +noignore' didn't work. [RT #42273]