From: Tomas Krizek <tomas.krizek@nic.cz>
Date: Wed, 4 Dec 2019 13:19:47 +0000 (+0100)
Subject: update NEWS, bump to 4.3.0
X-Git-Tag: v4.3.0^2
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=5214a8cb2af8d2a0fa590a9e6843f278a2ea9f4d;p=thirdparty%2Fknot-resolver.git

update NEWS, bump to 4.3.0
---

diff --git a/NEWS b/NEWS
index f395daf02..149d1a922 100644
--- a/NEWS
+++ b/NEWS
@@ -1,9 +1,10 @@
-Knot Resolver ??
+Knot Resolver 4.3.0 (2019-12-04)
 ================================
 
-Security
---------
-- fix CVE-2019-19331: improve CNAME chain length accounting (DoS, #518)
+Security - CVE-2019-19331
+-------------------------
+- fix speed of processing large RRsets (DoS, #518)
+- improve CNAME chain length accounting (DoS, !899)
 
 Bugfixes
 --------
@@ -12,12 +13,15 @@ Bugfixes
   have been configured with IP addresses after reboot (!884)
 - sendmmsg: improve reliability (!704)
 - cache: fix crash on insertion via lua for NS and CNAME (!889)
+- rpm package: move root.keys to /var/lib/knot-resolver (#513, !888)
 
 Improvements
 ------------
-- increase file-descriptor count limit to maximum allowed value (hard limit)
-- watchdog module: support testing a DNS query (and switch C -> lua; !878)
+- increase file-descriptor count limit to maximum allowed value (hard limit; !876)
+- watchdog module: support testing a DNS query (and switch C -> lua; !878, !881)
 - performance: use sendmmsg syscall towards clients by default (!877)
+- performance: avoid excessive getsockname() syscalls (!854)
+- performance: lua-related improvements (!874)
 - daemon now attempts to drop all capabilities (!896)
 - reduce CNAME chain length limit - now <= 12 (!899)
 
diff --git a/meson.build b/meson.build
index 9825580ec..9527acafa 100644
--- a/meson.build
+++ b/meson.build
@@ -2,7 +2,7 @@ project(
   'knot-resolver',
   ['c', 'cpp'],
   license: 'GPLv3+',
-  version: '4.2.2',
+  version: '4.3.0',
   default_options: ['c_std=gnu11', 'b_ndebug=if-release'],
   meson_version: '>=0.46',
 )