]>
Commit | Line | Data |
---|---|---|
3f90563f OM |
1 | Changelogs for 4.3.x |
2 | ==================== | |
d28ad210 OM |
3 | .. changelog:: |
4 | :version: 4.3.1 | |
5 | :released: 19th of May 2020 | |
6 | ||
7 | .. change:: | |
8 | :tags: Bug Fixes | |
9 | :pullreq: | |
10 | ||
11 | Backport of security fixes for CVE-2020-10995, CVE-2020-12244 and | |
12 | CVE-2020-10030, plus avoid a crash when loading an invalid RPZ. | |
13 | ||
14 | .. change:: | |
15 | :tags: Improvements | |
16 | :pullreq: 9082 | |
17 | ||
18 | Add ubuntu focal target. | |
19 | ||
20 | .. change:: | |
21 | :tags: Bug Fixes | |
22 | :pullreq: 9048 | |
23 | :tickets: 8778 | |
24 | ||
25 | RPZ dumpFile/seedFile: store/get SOA refresh on dump/load. | |
26 | ||
27 | .. change:: | |
28 | :tags: Internals | |
29 | :pullreq: 8963 | |
30 | :tickets: 8875 | |
31 | ||
32 | Update boost.m4. | |
32d62cea | 33 | |
f5f23841 OM |
34 | .. changelog:: |
35 | :version: 4.3.0 | |
36 | :released: 3rd of March 2020 | |
37 | ||
22854462 | 38 | .. change:: |
f5f23841 OM |
39 | :tags: Improvements |
40 | :pullreq: 8870 | |
41 | ||
42 | Only log qname parsing errors when 'log-common-errors' is set. | |
43 | ||
44 | .. change:: | |
45 | :tags: Improvements | |
46 | :pullreq: 8863 | |
47 | ||
48 | Update copyright year. | |
49 | ||
32d62cea OM |
50 | .. changelog:: |
51 | :version: 4.3.0-rc2 | |
52 | :released: 18th of February 2020 | |
53 | ||
54 | .. change:: | |
55 | :tags: Bug Fixes | |
56 | :pullreq: 8831 | |
57 | ||
58 | Refuse NSEC records with a bitmap length > 32. | |
59 | ||
60 | .. change:: | |
61 | :tags: Improvements | |
62 | :pullreq: 8827 | |
63 | ||
64 | Do continue rpz processing if the current policy is passthru. | |
65 | ||
fccade08 OM |
66 | .. changelog:: |
67 | :version: 4.3.0-rc1 | |
68 | :released: 3rd of February 2020 | |
69 | ||
70 | .. change:: | |
71 | :tags: Improvements | |
72 | :pullreq: 8751 | |
73 | ||
c3097a59 | 74 | Update boost.m4. |
fccade08 OM |
75 | |
76 | .. change:: | |
77 | :tags: Improvements | |
78 | :pullreq: 8738 | |
79 | ||
80 | Explicitly enable dnstap for debian-stretch and buster. | |
81 | ||
82 | .. change:: | |
83 | :tags: Bug Fixes | |
84 | :pullreq: 8730 | |
85 | ||
c3097a59 | 86 | Make ``ComboAddress::setPort()`` update the current object. |
fccade08 OM |
87 | |
88 | .. change:: | |
89 | :tags: Improvements | |
90 | :pullreq: 8728 | |
91 | ||
92 | EPEL 8 now has libfstrm-devel. | |
93 | ||
94 | .. change:: | |
95 | :tags: Bug Fixes | |
96 | :pullreq: 8727 | |
97 | ||
98 | Fix the evaluation order for filtering policies (RPZ). | |
99 | ||
100 | .. change:: | |
101 | :tags: Improvements | |
102 | :pullreq: 8726 | |
103 | ||
ef2ea4bf | 104 | Give an explicit message if something is wrong with socket-dir. |
3f90563f | 105 | |
c14c6a62 OM |
106 | .. changelog:: |
107 | :version: 4.3.0-beta2 | |
108 | :released: 16th of January 2020 | |
109 | ||
efa602c7 OM |
110 | .. change:: |
111 | :tags: Improvements | |
112 | :pullreq: 8704 | |
113 | ||
114 | Add the source and destination ports to the protobuf msg. | |
115 | ||
c14c6a62 OM |
116 | .. change:: |
117 | :tags: Bug Fixes | |
118 | :pullreq: 8673 | |
119 | ||
120 | Debian postinst / do not fail on user creation if it already exists. | |
121 | ||
122 | .. change:: | |
123 | :tags: Bug Fixes | |
124 | :pullreq: 8685 | |
125 | :tickets: 8676 | |
126 | ||
127 | Parsing `dont-throttle-names` and `dont-throttle-netmasks` as comma separated lists. (costypetrisor) | |
128 | ||
129 | .. change:: | |
130 | :tags: Bug Fixes | |
131 | :pullreq: 8692 | |
132 | :tickets: 8664 | |
133 | ||
134 | An Opt-Out NSEC3 RR only proves that there is no secure delegation. | |
135 | ||
136 | .. change:: | |
137 | :tags: Bug Fixes | |
138 | :pullreq: 8670 | |
139 | :tickets: 8642 | |
140 | ||
141 | Fix wrong zoneCuts caused by cache only lookup. | |
142 | ||
143 | .. change:: | |
efa602c7 | 144 | :tags: Improvements |
c14c6a62 OM |
145 | :pullreq: 8675 |
146 | :tickets: 8646 | |
147 | ||
efa602c7 | 148 | Increase default max-qperq. |
c14c6a62 | 149 | |
e7c91ced OM |
150 | .. changelog:: |
151 | :version: 4.3.0-beta1 | |
152 | :released: 12th of December 2019 | |
153 | ||
154 | .. change:: | |
155 | :tags: Improvements | |
156 | :pullreq: 8571 | |
157 | ||
158 | Better time based data structures | |
159 | ||
160 | .. change:: | |
161 | :tags: Bug Fixes | |
162 | :pullreq: 8512 | |
163 | ||
164 | Remove duplicate RRs inside a RRSet when computing the signature | |
165 | ||
166 | .. change:: | |
167 | :tags: Bug Fixes | |
168 | :pullreq: 8560 | |
169 | ||
170 | Check return value of dup() and avoid fd leak if if fdopen() fails | |
171 | ||
172 | .. change:: | |
173 | :tags: Bug Fixes | |
174 | :pullreq: 8559 | |
175 | :tickets: 8558 | |
176 | ||
d9346dd9 | 177 | Avoid startup race by setting the state of a thread before starting it. |
e7c91ced OM |
178 | |
179 | .. change:: | |
180 | :tags: Improvements | |
d9346dd9 | 181 | :pullreq: 8561, 8477 |
e7c91ced | 182 | |
973c426e | 183 | QName Minimization is no longer experimental and is now enabled by default. |
e7c91ced OM |
184 | |
185 | .. change:: | |
186 | :tags: Bug Fixes | |
187 | :pullreq: 8525 | |
188 | :tickets: 7771 | |
189 | ||
190 | Purge map of failed auths periodically by keeping a last changed timestamp. | |
191 | ||
192 | .. change:: | |
193 | :tags: Improvements | |
194 | :pullreq: 8521 | |
195 | :tickets: 8518 | |
196 | ||
197 | Make threads run until asked to stop. | |
198 | ||
199 | .. change:: | |
200 | :tags: Improvements | |
201 | :pullreq: 8440 | |
202 | ||
48eb36d6 | 203 | Fix -Wshadow warnings (Aki Tuomi) |
e7c91ced | 204 | |
e7c91ced OM |
205 | .. change:: |
206 | :tags: Improvements | |
207 | :pullreq: 8511 | |
208 | ||
209 | Do RFC 8020 only if cache entry is dnssec validated | |
210 | ||
211 | .. change:: | |
212 | :tags: Bug Fixes | |
213 | :pullreq: 8510 | |
214 | ||
215 | Avoid mthread race when using the set of rootNSZones. | |
216 | ||
217 | .. change:: | |
218 | :tags: Improvements | |
219 | :pullreq: 8492 | |
220 | ||
221 | Add a parameter to limit the number of '$GENERATE' steps | |
222 | ||
519789ab | 223 | .. changelog:: |
c2788779 | 224 | :version: 4.3.0-alpha3 |
519789ab OM |
225 | :released: 29th of October 2019 |
226 | ||
227 | .. change:: | |
228 | :tags: Bug fixes | |
229 | :pullreq: 8470 | |
230 | ||
f3d926b2 | 231 | Prime NS records of root-servers.net parent (.net) |
519789ab | 232 | |
519789ab OM |
233 | .. change:: |
234 | :tags: Improvements | |
235 | :pullreq: 8463 | |
236 | ||
f3d926b2 | 237 | Update CentOS 6 init script (None) |
519789ab | 238 | |
519789ab OM |
239 | .. change:: |
240 | :tags: Improvements | |
241 | :pullreq: 8451 | |
242 | ||
243 | Basic validation of $GENERATE parameters | |
244 | ||
519789ab OM |
245 | .. change:: |
246 | :tags: Bug fixes | |
247 | :pullreq: 8433 | |
248 | ||
249 | Dns64: stop hiding PTR indirection | |
250 | ||
519789ab OM |
251 | .. change:: |
252 | :tags: New features | |
253 | :pullreq: 8391 | |
254 | :tickets: 8358 | |
255 | ||
f3d926b2 | 256 | Allow multiple simultaneous incoming TCP queries over a connection |
519789ab | 257 | |
519789ab OM |
258 | .. change:: |
259 | :tags: Improvements | |
260 | :pullreq: 8344 | |
261 | ||
262 | Add signal handling for SIGTERM and SIGINT in pdns_recursor, if we are PID1 (Frank Louwers) | |
263 | ||
519789ab OM |
264 | .. change:: |
265 | :tags: New Features | |
266 | :pullreq: 8367 | |
267 | ||
268 | Implement RFC 8020 "NXDOMAIN: There Really Is Nothing Underneath" | |
269 | ||
519789ab OM |
270 | .. change:: |
271 | :tags: New features | |
272 | :pullreq: 8400 | |
273 | ||
274 | Add CentOS 8 as builder target | |
275 | ||
519789ab OM |
276 | .. change:: |
277 | :tags: Bug fixes | |
278 | :pullreq: 8371 | |
279 | ||
280 | Fix chmod paths in rules files | |
281 | ||
519789ab OM |
282 | .. change:: |
283 | :tags: New features | |
284 | :pullreq: 8366 | |
285 | ||
f3d926b2 | 286 | Build Newly Observed Domain (NOD) support by default. |
519789ab | 287 | |
519789ab OM |
288 | .. change:: |
289 | :tags: Bug fixes | |
290 | :pullreq: 8360 | |
291 | :tickets: 8352 | |
292 | ||
293 | Rec: chmod/own recursor.conf for the systemd case | |
c2788779 | 294 | |
519789ab OM |
295 | .. change:: |
296 | :tags: Bug fixes | |
297 | :pullreq: 8340 | |
298 | :tickets: 8338 | |
299 | ||
300 | Fix #8338: Issue with "zz" abbreviation for IPv6 RPZ triggers | |
301 | ||
519789ab OM |
302 | .. change:: |
303 | :tags: Bug fixes | |
304 | :pullreq: 8317 | |
305 | ||
306 | Retry getrandom() on EINTR | |
307 | ||
519789ab OM |
308 | .. change:: |
309 | :tags: Improvements | |
310 | :pullreq: 8287 | |
311 | ||
312 | Docs: Add small description for pipe backend about distributor-threads (Donatas Abraitis) | |
313 | ||
519789ab OM |
314 | .. change:: |
315 | :tags: Improvements | |
316 | :pullreq: 8290 | |
317 | ||
318 | Improve commandline error reporting for non-opts | |
319 | ||
519789ab OM |
320 | .. change:: |
321 | :tags: New features | |
322 | :pullreq: 7758 | |
323 | ||
324 | Recursor webhandler for prometheus metrics (Greg Cockroft) | |
325 | ||
c2788779 OM |
326 | .. changelog:: |
327 | :version: 4.3.0-alpha2 | |
328 | :released: Never released | |
329 | ||
3f90563f OM |
330 | .. changelog:: |
331 | :version: 4.3.0-alpha1 | |
332 | :released: 5th of September 2019 | |
333 | ||
334 | .. change:: | |
335 | :tags: Bug fixes | |
336 | :pullreq: 8256 | |
337 | ||
338 | Rec: fix two coverity issues | |
339 | ||
340 | .. change:: | |
341 | :tags: New Features | |
342 | :pullreq: 8210 | |
343 | ||
344 | Rec: lua pdns_features table | |
345 | ||
346 | .. change:: | |
347 | :tags: Bug fixes | |
348 | :pullreq: 8236 | |
349 | ||
350 | Add missing inc in rpz findclientpolicy loop. | |
351 | ||
352 | .. change:: | |
353 | :tags: Bug fixes | |
354 | :pullreq: 8227 | |
355 | ||
356 | Fix inverse handler registration logic for snmp. | |
357 | ||
358 | .. change:: | |
359 | :tags: Internals, Improvements | |
360 | :pullreq: 8122 | |
361 | ||
362 | Bail out when no context library is available | |
363 | ||
364 | .. change:: | |
365 | :tags: Internals, Improvements | |
366 | :pullreq: 8091 | |
367 | ||
368 | Some unneeded float<->double conversions. | |
369 | ||
370 | .. change:: | |
371 | :tags: Internals, Improvements | |
372 | :pullreq: 8140 | |
373 | ||
374 | Rec: document that the special-memory-usage stat is excluded by default | |
375 | ||
376 | .. change:: | |
377 | :tags: Bug fixes | |
378 | :pullreq: 8142 | |
379 | ||
380 | Restore the lua binding for dnsname::wirelength() | |
381 | ||
382 | .. change:: | |
383 | :tags: Bug fixes | |
384 | :pullreq: 8152 | |
385 | ||
386 | Rec docs: fix versionadded for maintenance() | |
387 | ||
388 | .. change:: | |
389 | :tags: Internals, Improvements | |
390 | :pullreq: 7951 | |
391 | :tickets: 6942, 8084 | |
392 | ||
393 | Update boost.m4 | |
394 | ||
395 | .. change:: | |
396 | :tags: Bug fixes | |
397 | :pullreq: 8089 | |
398 | ||
399 | Fix the rfc1982lessthan template. | |
400 | ||
401 | .. change:: | |
402 | :tags: Bug fixes | |
403 | :pullreq: 8034 | |
404 | ||
405 | Ensure debian sysv users get set{g,u}id | |
406 | ||
407 | .. change:: | |
408 | :tags: New Features | |
409 | :pullreq: 8075 | |
410 | ||
411 | Builder: add raspbian-buster target | |
412 | ||
413 | .. change:: | |
414 | :tags: Bug fixes | |
415 | :pullreq: 8067 | |
416 | ||
417 | Make sure we always compile with boost_cb_enable_debug set to 0 | |
418 | ||
419 | .. change:: | |
420 | :tags: Bug fixes | |
421 | :pullreq: 8028 | |
422 | ||
423 | Limit compression pointers to 14 bits | |
424 | ||
425 | .. change:: | |
426 | :tags: Bug fixes | |
427 | :pullreq: 8047 | |
428 | :tickets: 8008 | |
429 | ||
430 | Another time sensistive test fixed with a fixednow construct. | |
431 | ||
432 | .. change:: | |
433 | :tags: New Features | |
434 | :pullreq: 8000 | |
435 | ||
436 | Rec: export a protobuf incoming response message for timeouts | |
437 | ||
438 | .. change:: | |
439 | :tags: Internals, Improvements | |
440 | :pullreq: 8010 | |
441 | ||
442 | Rec: small speed improvements in the syncres | |
443 | ||
444 | .. change:: | |
445 | :tags: Internals, Improvements | |
446 | :pullreq: 8013 | |
447 | ||
448 | Don't create temporary strings to escape dnsname labels | |
449 | ||
450 | .. change:: | |
451 | :tags: New Features | |
452 | :pullreq: 8001 | |
453 | ||
454 | Recursor: add devicename field to protobuf messages | |
455 | ||
456 | .. change:: | |
457 | :tags: Bug fixes | |
458 | :pullreq: 8008 | |
459 | ||
460 | Rec: don't go bogus if the auth zone delegation test takes too long | |
461 | ||
462 | .. change:: | |
463 | :tags: Internals, Improvements | |
464 | :pullreq: 8007 | |
465 | ||
466 | Add static assertions for the size of the src address control buffer | |
467 | ||
468 | .. change:: | |
469 | :tags: Internals, Improvements | |
470 | :pullreq: 7996 | |
471 | :tickets: 7981 | |
472 | ||
473 | Clear cmsg_space(sizeof(data)) in cmsghdr to appease valgrind. | |
474 | ||
475 | .. change:: | |
476 | :tags: Bug fixes | |
477 | :pullreq: 7997 | |
478 | ||
479 | Rec: fix the export of only outgoing queries or incoming responses | |
480 | ||
481 | .. change:: | |
482 | :tags: Internals, Improvements | |
483 | :pullreq: 7990 | |
484 | :tickets: 7981 | |
485 | ||
486 | Explicitly align the buffer used for cmsgs | |
487 | ||
488 | .. change:: | |
489 | :tags: Bug fixes | |
490 | :pullreq: 7946 | |
491 | ||
492 | Fix a few markup issues in our documentation | |
493 | ||
494 | .. change:: | |
495 | :tags: Internals, Improvements | |
496 | :pullreq: 7967 | |
497 | :tickets: 7949 | |
498 | ||
f3d926b2 | 499 | Silence unused lambda warning (retry) (fwSmit) |
3f90563f OM |
500 | |
501 | .. change:: | |
502 | :tags: New Features | |
503 | :pullreq: 7879 | |
504 | ||
505 | Recursor: don't start as root in systemd | |
506 | ||
507 | .. change:: | |
508 | :tags: Internals, Improvements | |
509 | :pullreq: 7945 | |
510 | ||
511 | Rec: clean ups in the syncres::docnamecachelookup code | |
512 | ||
513 | .. change:: | |
514 | :tags: New Features | |
515 | :pullreq: 7757 | |
516 | ||
517 | Rec experimental qname minimization | |
518 | ||
519 | .. change:: | |
520 | :tags: Bug fixes | |
521 | :pullreq: 7871 | |
522 | ||
523 | Adapt calidns for openbsd and other systems without rcvmmsg(2) | |
524 | ||
525 | .. change:: | |
526 | :tags: Bug fixes | |
527 | :pullreq: 7928 | |
528 | ||
529 | Rec: better detection of bogus zone cuts for dnssec validation | |
530 | ||
531 | .. change:: | |
532 | :tags: Bug fixes | |
533 | :pullreq: 7886 | |
534 | ||
4909d904 | 535 | suffixmatchtree: fix root removal, partial match of non-leaf nodes |
3f90563f OM |
536 | |
537 | .. change:: | |
538 | :tags: Internals, Improvements | |
539 | :pullreq: 7699 | |
540 | ||
541 | All: dnsname, speeds up tostring() conversion | |
542 | ||
543 | .. change:: | |
544 | :tags: New Features | |
545 | :pullreq: 7877 | |
546 | ||
547 | Rec: set the query-zone field in the dnstap messages. | |
548 | ||
549 | .. change:: | |
550 | :tags: Internals, Improvements | |
551 | :pullreq: 7904 | |
552 | ||
4909d904 | 553 | rec: optimize for large number of filtering policies, empty sections |
3f90563f OM |
554 | |
555 | .. change:: | |
556 | :tags: Internals, Improvements | |
557 | :pullreq: 7901 | |
558 | ||
559 | Rec: reuse the outgoing query protobuf for the incoming response | |
560 | ||
561 | .. change:: | |
562 | :tags: Bug fixes | |
563 | :pullreq: 7884 | |
564 | :tickets: 6160, 7235, 7883 | |
565 | ||
566 | Rec: don't mix time() and gettimeofday() in our unit tests (again) | |
567 | ||
568 | .. change:: | |
569 | :tags: Internals, Improvements | |
570 | :pullreq: 7905 | |
571 | ||
572 | Rec: compare the cachekey type and place first then the name | |
573 | ||
574 | .. change:: | |
575 | :tags: Internals, Improvements | |
576 | :pullreq: 7862 | |
577 | ||
578 | Update boost.m4 to the latest version | |
579 | ||
580 | .. change:: | |
581 | :tags: New Features | |
582 | :pullreq: 7868 | |
583 | ||
584 | Allow unix domains sockets for dnstap destinations | |
585 | ||
586 | .. change:: | |
587 | :tags: Bug fixes | |
588 | :pullreq: 7870 | |
589 | ||
590 | Stubquery: fix handling of optional type arg. | |
591 | ||
592 | .. change:: | |
593 | :tags: Bug fixes | |
594 | :pullreq: 7864 | |
595 | ||
596 | Fix warnings reported by coverity | |
597 | ||
598 | .. change:: | |
599 | :tags: Internals, Improvements | |
600 | :pullreq: 7861 | |
601 | ||
602 | Check if -latomic is needed instead of hardcoding (Rosen Penev) | |
603 | ||
604 | .. change:: | |
605 | :tags: New Features | |
606 | :pullreq: 7538 | |
607 | ||
93be20f2 | 608 | DNSTAP logging for queries to, and responses from, auths |
3f90563f OM |
609 | |
610 | .. change:: | |
611 | :tags: Internals, Improvements | |
612 | :pullreq: 7843 | |
613 | ||
614 | Rec: small speedups in the recursion 'slow' path | |
615 | ||
616 | .. change:: | |
617 | :tags: Internals, Improvements | |
618 | :pullreq: 7857 | |
619 | ||
620 | Add latomic to arc platform (Rosen Penev) | |
621 | ||
622 | .. change:: | |
623 | :tags: Internals, Improvements | |
624 | :pullreq: 7548 | |
625 | ||
626 | Eliminate the loop in syncres::getaddrs() | |
627 | ||
628 | .. change:: | |
629 | :tags: Bug fixes | |
630 | :pullreq: 7841 | |
631 | ||
632 | Recursor: log udp tc bits during trace | |
633 |