From: Otto Moerbeek Date: Wed, 31 May 2023 08:28:00 +0000 (+0200) Subject: Prep for rec-4.9.0-beta1 X-Git-Tag: rec-4.10.0-alpha0~13^2 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=refs%2Fpull%2F12867%2Fhead;p=thirdparty%2Fpdns.git Prep for rec-4.9.0-beta1 --- diff --git a/docs/secpoll.zone b/docs/secpoll.zone index 233509b0cc..8fe514f2cf 100644 --- a/docs/secpoll.zone +++ b/docs/secpoll.zone @@ -1,4 +1,4 @@ -@ 86400 IN SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2023060101 10800 3600 604800 10800 +@ 86400 IN SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2023060201 10800 3600 604800 10800 @ 3600 IN NS pdns-public-ns1.powerdns.com. @ 3600 IN NS pdns-public-ns2.powerdns.com. @@ -350,6 +350,7 @@ recursor-4.8.2.security-status 60 IN TXT "3 Upgrade now recursor-4.8.3.security-status 60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html" recursor-4.8.4.security-status 60 IN TXT "1 OK" recursor-4.9.0-alpha1.security-status 60 IN TXT "1 Unsupported pre-release" +recursor-4.9.0-beta1.security-status 60 IN TXT "1 Unsupported pre-release" ; Recursor Debian recursor-3.6.2-2.debian.security-status 60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/3/security/powerdns-advisory-2015-01/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-02/" diff --git a/pdns/recursordist/docs/appendices/FAQ.rst b/pdns/recursordist/docs/appendices/FAQ.rst index 7d6110db5e..74a2e30535 100644 --- a/pdns/recursordist/docs/appendices/FAQ.rst +++ b/pdns/recursordist/docs/appendices/FAQ.rst @@ -69,7 +69,7 @@ This is needed to be able to resolve names, as the recursive algorithm starts at If the :ref:`setting-hint-file` is not set, :program:`Recursor` wil use a compiled-in table as root hints. Periodically, based on the :ref:`setting-max-cache-ttl`, the :program:`Recursor` will refetch the root data using data in its cache by doing a `. NS` query. -If that does not succeed, it wil fall back to using the root hints to fill the cache with root data. +If that does not succeed, it will fall back to using the root hints to fill the cache with root data. Prior to version 4.7.0, the period for re-fetching root data was :ref:`setting-max-cache-ttl` divided by 12, with a minimum of 10 seconds. Starting with version 4.7.0, the period is adaptive, starting at 80% of :ref:`setting-max-cache-ttl`, reducing the interval on failure. @@ -77,7 +77,7 @@ The root hints and resolved root data can differ if the root hints are outdated. As long as at least one root server mentioned in the root hints can be contacted, the periodic refresh will produce the desired record sets corresponding to the current up-to-date root server data. Starting with version 4.6.2, if :ref:`setting-hint-file` is set to ``no``, the :program:`Recursor` will not prime the cache with root data obtained from hints, but will still do the periodic refresh. -A (recursive) forward configuration is be needed to make the periodic refresh work. +A (recursive) forward configuration is needed to make the periodic refresh work. Starting with version 4.9, setting :ref:`setting-hint-file` to ``no-refresh`` disables both the initial reading of the hints and the periodic refresh of cached root data. This prevents :program:`Recursor` from resolving names by itself, so it is only useful in cases where all queries are forwarded. diff --git a/pdns/recursordist/docs/changelog/4.9.rst b/pdns/recursordist/docs/changelog/4.9.rst index b0976cb126..40aa969879 100644 --- a/pdns/recursordist/docs/changelog/4.9.rst +++ b/pdns/recursordist/docs/changelog/4.9.rst @@ -1,5 +1,46 @@ Changelogs for 4.9.X ==================== +.. changelog:: + :version: 4.9.0-beta1 + :released: 2nd of June 2023 + + .. change:: + :tags: Improvements + :pullreq: 12861 + :tickets: 12848 + + Introduce a way to completely disable root-refresh. + + .. change:: + :tags: Bug Fixes + :pullreq: 12673 + + Sanitize d_orig_ttl stored in record cache. + + .. change:: + :tags: Improvements + :pullreq: 12838,12837,12836,12790 + + Delint some files to make clang-tidy not report any issue. + + .. change:: + :tags: Bug Fixes + :pullreq: 12829 + :tickets: 12790 + + Fix clang-tidy botch with respect to spelling of "log-fail". + + .. change:: + :tags: Improvements + :pullreq: 12779,12862 + + Distinguish between recursion depth and CNAME chain length. + + .. change:: + :tags: Improvements + :pullreq: 12750 + + Log if the answer was marked variable by SyncRes and if it was stored into the packet cache (if !quiet). .. changelog:: :version: 4.9.0-alpha1 diff --git a/pdns/recursordist/docs/upgrade.rst b/pdns/recursordist/docs/upgrade.rst index 871186e6d3..b8b25de0cd 100644 --- a/pdns/recursordist/docs/upgrade.rst +++ b/pdns/recursordist/docs/upgrade.rst @@ -31,8 +31,9 @@ See :doc:`performance`. - The :ref:`setting-pdns-distributes-queries` default has been changed to ``no``. - The :ref:`setting-reuseport` default has been changed to ``yes``. - - The :ref:`setting-packetcache-ttl` default has been changed to 24 hours. +- The :ref:`setting-max-recursion-depth` default has been changed to 16. Before it was, 40, but effectively the CNAME length chain limit (fixed at 16) took precedence. +- The :ref:`setting-hint-file` setting gained a new special value to disable refreshing of root hints completely. See :ref:`handling-of-root-hints`. :program:`rec_control` ^^^^^^^^^^^^^^^^^^^^^^