From: Remi Gacogne Date: Mon, 20 Nov 2023 13:37:15 +0000 (+0100) Subject: dnsdist: ChangeLog and secpoll update for 1.9.0-alpha4 X-Git-Tag: auth-4.9.0-alpha1~47^2~3 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=c1f653c0baa536b46714443f9cebb32bd71f8c0d;p=thirdparty%2Fpdns.git dnsdist: ChangeLog and secpoll update for 1.9.0-alpha4 --- diff --git a/docs/secpoll.zone b/docs/secpoll.zone index 5d11f438ce..4a7e847d4e 100644 --- a/docs/secpoll.zone +++ b/docs/secpoll.zone @@ -1,4 +1,4 @@ -@ 86400 IN SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2023120600 10800 3600 604800 10800 +@ 86400 IN SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2023121400 10800 3600 604800 10800 @ 3600 IN NS pdns-public-ns1.powerdns.com. @ 3600 IN NS pdns-public-ns2.powerdns.com. @@ -524,5 +524,6 @@ dnsdist-1.8.0.security-status 60 IN TXT "3 Upgrade dnsdist-1.8.1.security-status 60 IN TXT "3 Upgrade now, see https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/" dnsdist-1.8.2.security-status 60 IN TXT "1 OK" dnsdist-1.9.0-alpha1.security-status 60 IN TXT "3 Unsupported pre-release (known vulnerabilities)" -dnsdist-1.9.0-alpha2.security-status 60 IN TXT "1 Unsupported pre-release (no known vulnerabilities)" -dnsdist-1.9.0-alpha3.security-status 60 IN TXT "1 Unsupported pre-release (no known vulnerabilities)" +dnsdist-1.9.0-alpha2.security-status 60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)" +dnsdist-1.9.0-alpha3.security-status 60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)" +dnsdist-1.9.0-alpha4.security-status 60 IN TXT "1 Unsupported pre-release (no known vulnerabilities)" diff --git a/pdns/dnsdistdist/docs/changelog.rst b/pdns/dnsdistdist/docs/changelog.rst index d2e648cb21..13270141ba 100644 --- a/pdns/dnsdistdist/docs/changelog.rst +++ b/pdns/dnsdistdist/docs/changelog.rst @@ -1,6 +1,175 @@ Changelog ========= +.. changelog:: + :version: 1.9.0-alpha4 + :released: 14th of December 2023 + + Please review the :doc:`Upgrade Guide <../upgrade_guide>` before upgrading. + + .. change:: + :tags: Improvements + :pullreq: 13023 + + Remove legacy terms from the codebase (Kees Monshouwer) + + .. change:: + :tags: Improvements + :pullreq: 13191 + + Wrap `DIR*` objects in unique pointers to prevent memory leaks + + .. change:: + :tags: Improvements + :pullreq: 13342 + + Add a DynBlockRulesGroup:removeRange() binding + + .. change:: + :tags: Bugs, DNS over HTTPS + :pullreq: 13381 + + Fix the case where nghttp2 is available but DoH is disabled + + .. change:: + :tags: Improvements + :pullreq: 13435 + + Fix a few Coverity warnings + + .. change:: + :tags: Improvements, DNS over QUIC + :pullreq: 13437 + + Require Quiche >= 0.15.0 + + .. change:: + :tags: Improvements + :pullreq: 13445 + + Fix Coverity CID 1523748: Performance inefficiencies in dolog.hh + + .. change:: + :tags: Improvements, DNS over QUIC + :pullreq: 13472 + + Add missing DoQ latency metrics + + .. change:: + :tags: New Features + :pullreq: 13473 + + Add support for setting Extended DNS Error statuses + + .. change:: + :tags: Improvements + :pullreq: 13485 + :tickets: 13191 + + Add `pdns::visit_directory()`, wrapping opendir/readdir/closedir + + .. change:: + :tags: Bugs + :pullreq: 13488 + + Fix the removal of the last rule by name or UUID + + .. change:: + :tags: New Features, Webserver + :pullreq: 13489 + + Add a 'rings' endpoint to the REST API + + .. change:: + :tags: New Features + :pullreq: 13492 + + Add a cache-miss ratio dynamic block rule + + .. change:: + :tags: Improvements + :pullreq: 13500 + + Improve `NetmaskGroupRule`/`SuffixMatchNodeRule`, deprecate `makeRule` + + .. change:: + :tags: Improvements + :pullreq: 13503 + + Add `NetmaskGroup:addNMG()` to merge Netmask groups + + .. change:: + :tags: New Features + :pullreq: 13505 + + Add `getAddressInfo()` for asynchronous DNS resolution + + .. change:: + :tags: Improvements + :pullreq: 13506 + + Add an option to set the SSL proxy protocol TLV + + .. change:: + :tags: Improvements + :pullreq: 13509 + + Add Proxy Protocol v2 support to `TeeAction` + + .. change:: + :tags: Improvements + :pullreq: 13515 + + Allow setting the action from `setSuffixMatchRule{,FFI}()`'s visitor + + .. change:: + :tags: Improvements + :pullreq: 13517 + + Allow enabling incoming PROXY protocol on a per-bind basis + + .. change:: + :tags: Bug Fixes + :pullreq: 13520 + + Refactor the exponential back-off timer code + + .. change:: + :tags: Bug Fixes, DNS over QUIC + :pullreq: 13524 + + Fix building with DoQ but without DoH or DoT + + .. change:: + :tags: Bug Fixes + :pullreq: 13536 + + Detect and dismiss truncated UDP responses from a backend + + .. change:: + :tags: Improvements + :pullreq: 13537 + + Make the max size of entries in the packet cache configurable + + .. change:: + :tags: New Features, DNS over HTTP3, DNS over HTTPS + :pullreq: 13556 + + Add support for incoming DNS over HTTP/3 + + .. change:: + :tags: Improvements + :pullreq: 13560 + + Spoof a raw response for ANY queries + + .. change:: + :tags: Improvements + :pullreq: 13565 + + Add Lua FFI bindings: hashing arbitrary data and knowing if the query was received over IPv6 + .. changelog:: :version: 1.9.0-alpha3 :released: 20th of October 2023 diff --git a/pdns/dnsdistdist/docs/conf.py b/pdns/dnsdistdist/docs/conf.py index 59f8e5baef..10e75781f5 100644 --- a/pdns/dnsdistdist/docs/conf.py +++ b/pdns/dnsdistdist/docs/conf.py @@ -92,7 +92,7 @@ changelog_render_pullreq = "https://github.com/PowerDNS/pdns/pull/%s" changelog_render_changeset = "https://github.com/PowerDNS/pdns/commit/%s" changelog_sections = ['New Features', 'Improvements', 'Bug Fixes', 'Removals'] -changelog_inner_tag_sort = ['Security', 'DNS over QUIC', 'DNS over HTTPS', 'DNS over TLS', 'DNSCrypt', 'DNSTAP', 'Protobuf', 'Performance', 'Webserver', 'Metrics'] +changelog_inner_tag_sort = ['Security', 'DNS over QUIC', 'DNS over HTTP3', 'DNS over HTTPS', 'DNS over TLS', 'DNSCrypt', 'DNSTAP', 'Protobuf', 'Performance', 'Webserver', 'Metrics'] changelog_hide_tags_in_entry = True