]> git.ipfire.org Git - thirdparty/pdns.git/blame - pdns/recursordist/docs/changelog/4.3.rst
projects / thirdparty / pdns.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
rec: prep for May 2020 security releases
[thirdparty/pdns.git] / pdns / recursordist / docs / changelog / 4.3.rst
CommitLineData
3f90563f
OM		 1Changelogs for 4.3.x
2====================
d28ad210
OM		 3.. changelog::
4 :version: 4.3.1
5 :released: 19th of May 2020
6
7 .. change::
8 :tags: Bug Fixes
9 :pullreq:
10
11 Backport of security fixes for CVE-2020-10995, CVE-2020-12244 and
12 CVE-2020-10030, plus avoid a crash when loading an invalid RPZ.
13
14 .. change::
15 :tags: Improvements
16 :pullreq: 9082
17
18 Add ubuntu focal target.
19
20 .. change::
21 :tags: Bug Fixes
22 :pullreq: 9048
23 :tickets: 8778
24
25 RPZ dumpFile/seedFile: store/get SOA refresh on dump/load.
26
27 .. change::
28 :tags: Internals
29 :pullreq: 8963
30 :tickets: 8875
31
32 Update boost.m4.
32d62cea 33
f5f23841
OM		 34.. changelog::
35 :version: 4.3.0
36 :released: 3rd of March 2020
37
22854462 38 .. change::
f5f23841
OM		 39 :tags: Improvements
40 :pullreq: 8870
41
42 Only log qname parsing errors when 'log-common-errors' is set.
43
44 .. change::
45 :tags: Improvements
46 :pullreq: 8863
47
48 Update copyright year.
49
32d62cea
OM		 50.. changelog::
51 :version: 4.3.0-rc2
52 :released: 18th of February 2020
53
54 .. change::
55 :tags: Bug Fixes
56 :pullreq: 8831
57
58 Refuse NSEC records with a bitmap length > 32.
59
60 .. change::
61 :tags: Improvements
62 :pullreq: 8827
63
64 Do continue rpz processing if the current policy is passthru.
65
fccade08
OM		 66.. changelog::
67 :version: 4.3.0-rc1
68 :released: 3rd of February 2020
69
70 .. change::
71 :tags: Improvements
72 :pullreq: 8751
73
c3097a59 74 Update boost.m4.
fccade08
OM		 75
76 .. change::
77 :tags: Improvements
78 :pullreq: 8738
79
80 Explicitly enable dnstap for debian-stretch and buster.
81
82 .. change::
83 :tags: Bug Fixes
84 :pullreq: 8730
85
c3097a59 86 Make ``ComboAddress::setPort()`` update the current object.
fccade08
OM		 87
88 .. change::
89 :tags: Improvements
90 :pullreq: 8728
91
92 EPEL 8 now has libfstrm-devel.
93
94 .. change::
95 :tags: Bug Fixes
96 :pullreq: 8727
97
98 Fix the evaluation order for filtering policies (RPZ).
99
100 .. change::
101 :tags: Improvements
102 :pullreq: 8726
103
ef2ea4bf 104 Give an explicit message if something is wrong with socket-dir.
3f90563f 105
c14c6a62
OM		 106.. changelog::
107 :version: 4.3.0-beta2
108 :released: 16th of January 2020
109
efa602c7
OM		 110 .. change::
111 :tags: Improvements
112 :pullreq: 8704
113
114 Add the source and destination ports to the protobuf msg.
115
c14c6a62
OM		 116 .. change::
117 :tags: Bug Fixes
118 :pullreq: 8673
119
120 Debian postinst / do not fail on user creation if it already exists.
121
122 .. change::
123 :tags: Bug Fixes
124 :pullreq: 8685
125 :tickets: 8676
126
127 Parsing `dont-throttle-names` and `dont-throttle-netmasks` as comma separated lists. (costypetrisor)
128
129 .. change::
130 :tags: Bug Fixes
131 :pullreq: 8692
132 :tickets: 8664
133
134 An Opt-Out NSEC3 RR only proves that there is no secure delegation.
135
136 .. change::
137 :tags: Bug Fixes
138 :pullreq: 8670
139 :tickets: 8642
140
141 Fix wrong zoneCuts caused by cache only lookup.
142
143 .. change::
efa602c7 144 :tags: Improvements
c14c6a62
OM		 145 :pullreq: 8675
146 :tickets: 8646
147
efa602c7 148 Increase default max-qperq.
c14c6a62 149
e7c91ced
OM		 150.. changelog::
151 :version: 4.3.0-beta1
152 :released: 12th of December 2019
153
154 .. change::
155 :tags: Improvements
156 :pullreq: 8571
157
158 Better time based data structures
159
160 .. change::
161 :tags: Bug Fixes
162 :pullreq: 8512
163
164 Remove duplicate RRs inside a RRSet when computing the signature
165
166 .. change::
167 :tags: Bug Fixes
168 :pullreq: 8560
169
170 Check return value of dup() and avoid fd leak if if fdopen() fails
171
172 .. change::
173 :tags: Bug Fixes
174 :pullreq: 8559
175 :tickets: 8558
176
d9346dd9 177 Avoid startup race by setting the state of a thread before starting it.
e7c91ced
OM		 178
179 .. change::
180 :tags: Improvements
d9346dd9 181 :pullreq: 8561, 8477
e7c91ced 182
973c426e 183 QName Minimization is no longer experimental and is now enabled by default.
e7c91ced
OM		 184
185 .. change::
186 :tags: Bug Fixes
187 :pullreq: 8525
188 :tickets: 7771
189
190 Purge map of failed auths periodically by keeping a last changed timestamp.
191
192 .. change::
193 :tags: Improvements
194 :pullreq: 8521
195 :tickets: 8518
196
197 Make threads run until asked to stop.
198
199 .. change::
200 :tags: Improvements
201 :pullreq: 8440
202
48eb36d6 203 Fix -Wshadow warnings (Aki Tuomi)
e7c91ced 204
e7c91ced
OM		 205 .. change::
206 :tags: Improvements
207 :pullreq: 8511
208
209 Do RFC 8020 only if cache entry is dnssec validated
210
211 .. change::
212 :tags: Bug Fixes
213 :pullreq: 8510
214
215 Avoid mthread race when using the set of rootNSZones.
216
217 .. change::
218 :tags: Improvements
219 :pullreq: 8492
220
221 Add a parameter to limit the number of '$GENERATE' steps
222
519789ab 223.. changelog::
c2788779 224 :version: 4.3.0-alpha3
519789ab
OM		 225 :released: 29th of October 2019
226
227 .. change::
228 :tags: Bug fixes
229 :pullreq: 8470
230
f3d926b2 231 Prime NS records of root-servers.net parent (.net)
519789ab 232
519789ab
OM		 233 .. change::
234 :tags: Improvements
235 :pullreq: 8463
236
f3d926b2 237 Update CentOS 6 init script (None)
519789ab 238
519789ab
OM		 239 .. change::
240 :tags: Improvements
241 :pullreq: 8451
242
243 Basic validation of $GENERATE parameters
244
519789ab
OM		 245 .. change::
246 :tags: Bug fixes
247 :pullreq: 8433
248
249 Dns64: stop hiding PTR indirection
250
519789ab
OM		 251 .. change::
252 :tags: New features
253 :pullreq: 8391
254 :tickets: 8358
255
f3d926b2 256 Allow multiple simultaneous incoming TCP queries over a connection
519789ab 257
519789ab
OM		 258 .. change::
259 :tags: Improvements
260 :pullreq: 8344
261
262 Add signal handling for SIGTERM and SIGINT in pdns_recursor, if we are PID1 (Frank Louwers)
263
519789ab
OM		 264 .. change::
265 :tags: New Features
266 :pullreq: 8367
267
268 Implement RFC 8020 "NXDOMAIN: There Really Is Nothing Underneath"
269
519789ab
OM		 270 .. change::
271 :tags: New features
272 :pullreq: 8400
273
274 Add CentOS 8 as builder target
275
519789ab
OM		 276 .. change::
277 :tags: Bug fixes
278 :pullreq: 8371
279
280 Fix chmod paths in rules files
281
519789ab
OM		 282 .. change::
283 :tags: New features
284 :pullreq: 8366
285
f3d926b2 286 Build Newly Observed Domain (NOD) support by default.
519789ab 287
519789ab
OM		 288 .. change::
289 :tags: Bug fixes
290 :pullreq: 8360
291 :tickets: 8352
292
293 Rec: chmod/own recursor.conf for the systemd case
c2788779 294
519789ab
OM		 295 .. change::
296 :tags: Bug fixes
297 :pullreq: 8340
298 :tickets: 8338
299
300 Fix #8338: Issue with "zz" abbreviation for IPv6 RPZ triggers
301
519789ab
OM		 302 .. change::
303 :tags: Bug fixes
304 :pullreq: 8317
305
306 Retry getrandom() on EINTR
307
519789ab
OM		 308 .. change::
309 :tags: Improvements
310 :pullreq: 8287
311
312 Docs: Add small description for pipe backend about distributor-threads (Donatas Abraitis)
313
519789ab
OM		 314 .. change::
315 :tags: Improvements
316 :pullreq: 8290
317
318 Improve commandline error reporting for non-opts
319
519789ab
OM		 320 .. change::
321 :tags: New features
322 :pullreq: 7758
323
324 Recursor webhandler for prometheus metrics (Greg Cockroft)
325
c2788779
OM		 326.. changelog::
327 :version: 4.3.0-alpha2
328 :released: Never released
329
3f90563f
OM		 330.. changelog::
331 :version: 4.3.0-alpha1
332 :released: 5th of September 2019
333
334 .. change::
335 :tags: Bug fixes
336 :pullreq: 8256
337
338 Rec: fix two coverity issues
339
340 .. change::
341 :tags: New Features
342 :pullreq: 8210
343
344 Rec: lua pdns_features table
345
346 .. change::
347 :tags: Bug fixes
348 :pullreq: 8236
349
350 Add missing inc in rpz findclientpolicy loop.
351
352 .. change::
353 :tags: Bug fixes
354 :pullreq: 8227
355
356 Fix inverse handler registration logic for snmp.
357
358 .. change::
359 :tags: Internals, Improvements
360 :pullreq: 8122
361
362 Bail out when no context library is available
363
364 .. change::
365 :tags: Internals, Improvements
366 :pullreq: 8091
367
368 Some unneeded float<->double conversions.
369
370 .. change::
371 :tags: Internals, Improvements
372 :pullreq: 8140
373
374 Rec: document that the special-memory-usage stat is excluded by default
375
376 .. change::
377 :tags: Bug fixes
378 :pullreq: 8142
379
380 Restore the lua binding for dnsname::wirelength()
381
382 .. change::
383 :tags: Bug fixes
384 :pullreq: 8152
385
386 Rec docs: fix versionadded for maintenance()
387
388 .. change::
389 :tags: Internals, Improvements
390 :pullreq: 7951
391 :tickets: 6942, 8084
392
393 Update boost.m4
394
395 .. change::
396 :tags: Bug fixes
397 :pullreq: 8089
398
399 Fix the rfc1982lessthan template.
400
401 .. change::
402 :tags: Bug fixes
403 :pullreq: 8034
404
405 Ensure debian sysv users get set{g,u}id
406
407 .. change::
408 :tags: New Features
409 :pullreq: 8075
410
411 Builder: add raspbian-buster target
412
413 .. change::
414 :tags: Bug fixes
415 :pullreq: 8067
416
417 Make sure we always compile with boost_cb_enable_debug set to 0
418
419 .. change::
420 :tags: Bug fixes
421 :pullreq: 8028
422
423 Limit compression pointers to 14 bits
424
425 .. change::
426 :tags: Bug fixes
427 :pullreq: 8047
428 :tickets: 8008
429
430 Another time sensistive test fixed with a fixednow construct.
431
432 .. change::
433 :tags: New Features
434 :pullreq: 8000
435
436 Rec: export a protobuf incoming response message for timeouts
437
438 .. change::
439 :tags: Internals, Improvements
440 :pullreq: 8010
441
442 Rec: small speed improvements in the syncres
443
444 .. change::
445 :tags: Internals, Improvements
446 :pullreq: 8013
447
448 Don't create temporary strings to escape dnsname labels
449
450 .. change::
451 :tags: New Features
452 :pullreq: 8001
453
454 Recursor: add devicename field to protobuf messages
455
456 .. change::
457 :tags: Bug fixes
458 :pullreq: 8008
459
460 Rec: don't go bogus if the auth zone delegation test takes too long
461
462 .. change::
463 :tags: Internals, Improvements
464 :pullreq: 8007
465
466 Add static assertions for the size of the src address control buffer
467
468 .. change::
469 :tags: Internals, Improvements
470 :pullreq: 7996
471 :tickets: 7981
472
473 Clear cmsg_space(sizeof(data)) in cmsghdr to appease valgrind.
474
475 .. change::
476 :tags: Bug fixes
477 :pullreq: 7997
478
479 Rec: fix the export of only outgoing queries or incoming responses
480
481 .. change::
482 :tags: Internals, Improvements
483 :pullreq: 7990
484 :tickets: 7981
485
486 Explicitly align the buffer used for cmsgs
487
488 .. change::
489 :tags: Bug fixes
490 :pullreq: 7946
491
492 Fix a few markup issues in our documentation
493
494 .. change::
495 :tags: Internals, Improvements
496 :pullreq: 7967
497 :tickets: 7949
498
f3d926b2 499 Silence unused lambda warning (retry) (fwSmit)
3f90563f
OM		 500
501 .. change::
502 :tags: New Features
503 :pullreq: 7879
504
505 Recursor: don't start as root in systemd
506
507 .. change::
508 :tags: Internals, Improvements
509 :pullreq: 7945
510
511 Rec: clean ups in the syncres::docnamecachelookup code
512
513 .. change::
514 :tags: New Features
515 :pullreq: 7757
516
517 Rec experimental qname minimization
518
519 .. change::
520 :tags: Bug fixes
521 :pullreq: 7871
522
523 Adapt calidns for openbsd and other systems without rcvmmsg(2)
524
525 .. change::
526 :tags: Bug fixes
527 :pullreq: 7928
528
529 Rec: better detection of bogus zone cuts for dnssec validation
530
531 .. change::
532 :tags: Bug fixes
533 :pullreq: 7886
534
4909d904 535 suffixmatchtree: fix root removal, partial match of non-leaf nodes
3f90563f
OM		 536
537 .. change::
538 :tags: Internals, Improvements
539 :pullreq: 7699
540
541 All: dnsname, speeds up tostring() conversion
542
543 .. change::
544 :tags: New Features
545 :pullreq: 7877
546
547 Rec: set the query-zone field in the dnstap messages.
548
549 .. change::
550 :tags: Internals, Improvements
551 :pullreq: 7904
552
4909d904 553 rec: optimize for large number of filtering policies, empty sections
3f90563f
OM		 554
555 .. change::
556 :tags: Internals, Improvements
557 :pullreq: 7901
558
559 Rec: reuse the outgoing query protobuf for the incoming response
560
561 .. change::
562 :tags: Bug fixes
563 :pullreq: 7884
564 :tickets: 6160, 7235, 7883
565
566 Rec: don't mix time() and gettimeofday() in our unit tests (again)
567
568 .. change::
569 :tags: Internals, Improvements
570 :pullreq: 7905
571
572 Rec: compare the cachekey type and place first then the name
573
574 .. change::
575 :tags: Internals, Improvements
576 :pullreq: 7862
577
578 Update boost.m4 to the latest version
579
580 .. change::
581 :tags: New Features
582 :pullreq: 7868
583
584 Allow unix domains sockets for dnstap destinations
585
586 .. change::
587 :tags: Bug fixes
588 :pullreq: 7870
589
590 Stubquery: fix handling of optional type arg.
591
592 .. change::
593 :tags: Bug fixes
594 :pullreq: 7864
595
596 Fix warnings reported by coverity
597
598 .. change::
599 :tags: Internals, Improvements
600 :pullreq: 7861
601
602 Check if -latomic is needed instead of hardcoding (Rosen Penev)
603
604 .. change::
605 :tags: New Features
606 :pullreq: 7538
607
93be20f2 608 DNSTAP logging for queries to, and responses from, auths
3f90563f
OM		 609
610 .. change::
611 :tags: Internals, Improvements
612 :pullreq: 7843
613
614 Rec: small speedups in the recursion 'slow' path
615
616 .. change::
617 :tags: Internals, Improvements
618 :pullreq: 7857
619
620 Add latomic to arc platform (Rosen Penev)
621
622 .. change::
623 :tags: Internals, Improvements
624 :pullreq: 7548
625
626 Eliminate the loop in syncres::getaddrs()
627
628 .. change::
629 :tags: Bug fixes
630 :pullreq: 7841
631
632 Recursor: log udp tc bits during trace
633
Unnamed repository; edit this file 'description' to name the repository.