GitLab

3689.	[bug]		Fixed a bug causing an insecure delegation from one
			static-stub zone to another to fail with a broken
			trust chain. [RT #35081]

3525.	[func]		Support for additional signing algorithms in rndc:
			hmac-sha1, -sha224, -sha256, -sha384, and -sha512.
			The -A option to rndc-confgen can be used to
			select the algorithm for the generated key.
			(The default is still hmac-md5; this may
			change in a future release.) [RT #20363]

			approaching their expiry, so they don't remain
			in caches after expiry. [RT #26429]

			can be switched on by setting "dnssec-validation auto;"
			in the named.conf options. [RT #21727]

                        current managed keys combined with trusted keys.
                        [RT #20904]

                        validation.  default dnssec-validation no; to
                        be changed to yes in 9.5.0.  [RT #15674]

                        insensitive.

1599.   [bug]           Fix memory leak on error path when checking named.conf.

1598.   [func]          Specify that certain parts of the namespace must
                        be secure (dnssec-must-be-secure).

enable-dnssec -> dnssec-enable

                        running tests. [RT #9091]

                        DNSSEC specify "enable-dnssec yes;" in named.conf.

files, so that tests succeed while transfer-source is still being (ab)used as
the notify source address

own CVS tree will help minimize CVS conflicts.  Maybe not.
Blame Graff for getting me to trim all trailing whitespace.

sockets and causing failures on some platforms

Fix out output

- Added an insecure child of a secure parent (insecure.secure.example)
- Added a privately secure child of a secure parent (private.secure.example)