Training courses

Kernel and Embedded Linux

Bootlin training courses

Embedded Linux, kernel,
Yocto Project, Buildroot, real-time,
graphics, boot time, debugging...

Bootlin logo

Elixir Cross Referencer

Open Menu /external/mpl/bind/dist/doc/notes/notes-9.16.21.rst 
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
..
.. SPDX-License-Identifier: MPL-2.0
..
.. This Source Code Form is subject to the terms of the Mozilla Public
.. License, v. 2.0.  If a copy of the MPL was not distributed with this
.. file, you can obtain one at https://mozilla.org/MPL/2.0/.
..
.. See the COPYRIGHT file distributed with this work for additional
.. information regarding copyright ownership.

Notes for BIND 9.16.21
----------------------

New Features
~~~~~~~~~~~~

- Support for HTTPS and SVCB record types has been added. (This does not
  include ADDITIONAL section processing for these record types, only
  basic support for RR type parsing and printing.) :gl:`#1132`

Feature Changes
~~~~~~~~~~~~~~~

- When ``dnssec-signzone`` signs a zone using a successor key whose
  predecessor is still published, it now only refreshes signatures for
  RRsets which have an invalid signature, an expired signature, or a
  signature which expires within the provided cycle interval. This
  allows ``dnssec-signzone`` to gradually replace signatures in a zone
  whose ZSK is being rolled over (similarly to what ``auto-dnssec
  maintain;`` does). :gl:`#1551`

Bug Fixes
~~~~~~~~~

- A recent change to the internal memory structure of zone databases
  inadvertently neglected to update the MAPAPI value for zone files in
  ``map`` format. This caused version 9.16.20 of ``named`` to attempt to
  load files into memory that were no longer compatible, triggering an
  assertion failure on startup. The MAPAPI value has now been updated,
  so ``named`` rejects outdated files when encountering them.
  :gl:`#2872`

- Zone files in ``map`` format whose size exceeded 2 GB failed to load.
  This has been fixed. :gl:`#2878`

- ``named`` was unable to run as a Windows Service under certain
  circumstances. This has been fixed. :gl:`#2837`

- Stale data in the cache could cause ``named`` to send non-minimized
  queries despite QNAME minimization being enabled. This has been fixed.
  :gl:`#2665`

- When a DNSSEC-signed zone which only has a single signing key
  available is migrated to ``dnssec-policy``, that key is now treated as
  a Combined Signing Key (CSK). :gl:`#2857`

- When a dynamic zone was made available in another view using the
  ``in-view`` statement, running ``rndc freeze`` always reported an
  ``already frozen`` error even though the zone was successfully
  frozen. This has been fixed. :gl:`#2844`

Known Issues
~~~~~~~~~~~~

- There are no new known issues with this release. See :ref:`above
  <relnotes_known_issues>` for a list of all known issues affecting this
  BIND 9 branch.