- 6067. [placeholder]
+6078. [func] Cleanup the memory statistic counters to a bare
+ minumum - InUse with Malloced as alias. [GL #3718]
+
+6077. [func] Implement query forwarding to DoT-enabled upstream
+ servers. [GL #3726]
+
+6076. [bug] Handle OS errors when creating UDP and TCP sockets
+ more gracefully. [GL #3800]
+
+6075. [bug] Add missing node lock when setting node->wild in
+ add_wildcard_magic. [GL #3799]
+
+6074. [func] Refactor the isc_nm_xfr_allowed() function to return
+ isc_result_t instead of boolean. [GL #3808]
+
+6073. [bug] Set RD=1 on DS requests to parental-agents. [GL #3783]
+
+6072. [bug] Avoid the OpenSSL lock contention when initializing
+ Message Digest Contexts by using explicit algorithm
+ fetching, initializing static contexts for every
+ supported algorithms, and initializing the new context
+ by copying the static copy. [GL #3795]
+
+6071. [func] The use of "port" when configuring query-source,
+ transfer-source, notify-source and parental-source
+ addresses has been deprecated, along with the
+ use-v[46]-udp-ports and avoid-v[46]-udp-ports
+ options. A warning will be logged when these
+ options are used. In a future release, they
+ will be removed. [GL #3781]
+
+6070. [func] DSCP parsing has now been fully removed, and
+ configuration of DSCP values in named.conf is a
+ configuration error. [GL #3789]
+
+6069. [bug] Detach from the view in zone_shutdown() to
+ release the memory held by the dead view
+ early. [GL #3801]
+
+6068. [bug] Downloading a zone via TLS from a server which does
+ not negotiate "dot" ALPN token could crash BIND
+ on shutdown. That has been fixed. [GL #3767]
+
+ --- 9.19.9 released ---
- 6066. [placeholder]
+ 6067. [security] Fix serve-stale crash when recursive clients soft quota
+ is reached. (CVE-2022-3924) [GL #3619]
+
+ 6066. [security] Handle RRSIG lookups when serve-stale is active.
+ (CVE-2022-3736) [GL #3622]
6065. [placeholder]
.. include:: ../notes/notes-known-issues.rst
+.. include:: ../notes/notes-current.rst
+ .. include:: ../notes/notes-9.19.9.rst
.. include:: ../notes/notes-9.19.8.rst
.. include:: ../notes/notes-9.19.7.rst
.. include:: ../notes/notes-9.19.6.rst
udp\-receive\-buffer <integer>;
udp\-send\-buffer <integer>;
update\-check\-ksk <boolean>;
- use\-v4\-udp\-ports { <portrange>; ... };
- use\-v6\-udp\-ports { <portrange>; ... };
+ update\-quota <integer>;
+ use\-v4\-udp\-ports { <portrange>; ... }; // deprecated
+ use\-v6\-udp\-ports { <portrange>; ... }; // deprecated
v6\-bias <integer>;
validate\-except { <string>; ... };
version ( <quoted_string> | none );
udp-receive-buffer <integer>;
udp-send-buffer <integer>;
update-check-ksk <boolean>;
- use-v4-udp-ports { <portrange>; ... };
- use-v6-udp-ports { <portrange>; ... };
+ update-quota <integer>;
+ use-v4-udp-ports { <portrange>; ... }; // deprecated
+ use-v6-udp-ports { <portrange>; ... }; // deprecated
v6-bias <integer>;
validate-except { <string>; ... };
version ( <quoted_string> | none );
{ "treat-cr-as-space", NULL, CFG_CLAUSEFLAG_ANCIENT },
{ "udp-receive-buffer", &cfg_type_uint32, 0 },
{ "udp-send-buffer", &cfg_type_uint32, 0 },
+ { "update-quota", &cfg_type_uint32, 0 },
{ "use-id-pool", NULL, CFG_CLAUSEFLAG_ANCIENT },
{ "use-ixfr", NULL, CFG_CLAUSEFLAG_ANCIENT },
- { "use-v4-udp-ports", &cfg_type_bracketed_portlist, 0 },
- { "use-v6-udp-ports", &cfg_type_bracketed_portlist, 0 },
+ { "use-v4-udp-ports", &cfg_type_bracketed_portlist,
+ CFG_CLAUSEFLAG_DEPRECATED },
+ { "use-v6-udp-ports", &cfg_type_bracketed_portlist,
+ CFG_CLAUSEFLAG_DEPRECATED },
{ "version", &cfg_type_qstringornone, 0 },
{ NULL, NULL, 0 }
};
projects / thirdparty / bind9.git / commitdiff
