ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
Files
856a52a6729be2567b681a1bcd41da44e2e02c9b
bind9/doc/notes/notes-current.rst
Mark Andrews e980affba0 Fix DNAME when QTYPE is CNAME or ANY 
The synthesised CNAME is not supposed to be followed when the
QTYPE is CNAME or ANY as the lookup is satisfied by the CNAME
record.
2020-11-19 10:18:01 +11:00

71 lines
2.1 KiB
ReStructuredText
Raw Blame History

..
Copyright (C) Internet Systems Consortium, Inc. ("ISC")
This Source Code Form is subject to the terms of the Mozilla Public
License, v. 2.0. If a copy of the MPL was not distributed with this
file, you can obtain one at https://mozilla.org/MPL/2.0/.
See the COPYRIGHT file distributed with this work for additional
information regarding copyright ownership.
Notes for BIND 9.17.6
---------------------
Security Fixes
~~~~~~~~~~~~~~
- None.
Known Issues
~~~~~~~~~~~~
- None.
New Features
~~~~~~~~~~~~
- None.
- A new configuration option ``stale-refresh-time`` has been introduced, it
allows stale RRset to be served directly from cache for a period of time
after a failed lookup, before a new attempt to refresh it is made. [GL #2066]
Removed Features
~~~~~~~~~~~~~~~~
- None.
Feature Changes
~~~~~~~~~~~~~~~
- The network manager API is now used by ``named`` to send zone transfer
requests. [GL #2016]
- The ``dig``, ``host``, and ``nslookup`` tools have been converted to
use the new network manager API rather than the older ISC socket API.
As a side effect of this change, the ``dig +unexpected`` option no longer
works. This could previously be used for diagnosing broken servers or
network configurations by listening for replies from servers other than
the one that was queried. With the new API such answers are filtered
before they ever reach ``dig``. Consequently, the option has been
removed. [GL #2140]
- Support for DNS over TLS (DoT) has been added to the network manager API, and
the support for DoT has been added to the ``dig`` tool and support for
listening on TLS port has been added to ``named``. ``named`` could use a
certificate provided by the user or it can generate an ephemeral certificate
on startup of the daemon.
Bug Fixes
~~~~~~~~~
- Handle `UV_EOF` differently such that it is not treated as a `TCP4RecvErr` or
`TCP6RecvErr`. [GL #2208]
- ``named`` could crash with an assertion failure if a TCP connection is closed
while the request is still processing. [GL #2227]
- The synthesised CNAME from a DNAME was incorrectly followed when the QTYPE
was CNAME or ANY. [GL #2280]
View Git Blame Copy Permalink