From f8a8eaba8b58f7c6dc33a564012055bb9ee00afd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= <michal@isc.org>
Date: Wed, 11 Mar 2020 09:06:40 +0100
Subject: [PATCH 1/3] Move pthread rwlocks release note to a section

---
 doc/arm/notes-9.17.0.xml | 76 +++++++++++++++++++++-------------------
 1 file changed, 39 insertions(+), 37 deletions(-)

diff --git a/doc/arm/notes-9.17.0.xml b/doc/arm/notes-9.17.0.xml
index a2ea9c73b2..4844ee1800 100644
--- a/doc/arm/notes-9.17.0.xml
+++ b/doc/arm/notes-9.17.0.xml
@@ -10,31 +10,33 @@
 -->
 
 <section xml:id="relnotes-9.17.0"><info><title>Notes for BIND 9.17.0</title></info>
-  <para>
-    System-provided pthread rwlocks implementation is used by default instead of
-    built-in ISC implementation of rwlocks. Please be aware that unpatched glibc
-    version from 2.26 had a <link xmlns:xlink="http://www.w3.org/1999/xlink"
-    xlink:href="https://sourceware.org/bugzilla/show_bug.cgi?id=23844">bug</link>
-    that could cause BIND 9 to deadlock.  The fix has been released as part of
-    glibc release 2.30, and various Linux distributions have patched their glibc
-    version with a notable exception of Ubuntu 18.04 (Bionic) which is work in
-    progress. If you are running on affected system (e.g. Ubuntu 18.04) you need
-    to compile BIND 9 with --disable-pthread-rwlock until Canonical releases
-    <link xmlns:xlink="http://www.w3.org/1999/xlink"
-    xlink:href="https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/1864864">fixed
-    version</link>.
-  </para>
 
   <section xml:id="relnotes-9.17.0-changes"><info><title>Feature Changes</title></info>
     <itemizedlist>
       <listitem>
         <para>
-	  The <command>rndc nta -dump</command> and
-	  <command>rndc secroots</command> commands now both include
-	  <command>validate-except</command> entries when listing negative
-	  trust anchors. These are indicated by the keyword
-	  <literal>permanent</literal> in place of the expiry
-	  date. [GL #1532]
+          System-provided pthread rwlocks implementation is used by default instead of
+          built-in ISC implementation of rwlocks. Please be aware that unpatched glibc
+          version from 2.26 had a <link xmlns:xlink="http://www.w3.org/1999/xlink"
+          xlink:href="https://sourceware.org/bugzilla/show_bug.cgi?id=23844">bug</link>
+          that could cause BIND 9 to deadlock.  The fix has been released as part of
+          glibc release 2.30, and various Linux distributions have patched their glibc
+          version with a notable exception of Ubuntu 18.04 (Bionic) which is work in
+          progress. If you are running on affected system (e.g. Ubuntu 18.04) you need
+          to compile BIND 9 with --disable-pthread-rwlock until Canonical releases
+          <link xmlns:xlink="http://www.w3.org/1999/xlink"
+          xlink:href="https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/1864864">fixed
+          version</link>.
+        </para>
+      </listitem>
+      <listitem>
+        <para>
+          The <command>rndc nta -dump</command> and
+          <command>rndc secroots</command> commands now both include
+          <command>validate-except</command> entries when listing negative
+          trust anchors. These are indicated by the keyword
+          <literal>permanent</literal> in place of the expiry
+          date. [GL #1532]
         </para>
       </listitem>
     </itemizedlist>
@@ -44,8 +46,8 @@
     <itemizedlist>
       <listitem>
         <para>
-	  Fixed re-signing issues with inline zones which resulted in
-	  records being re-signed late or not at all.
+          Fixed re-signing issues with inline zones which resulted in
+          records being re-signed late or not at all.
         </para>
       </listitem>
     </itemizedlist>
@@ -54,21 +56,21 @@
   <section xml:id="relnotes-9.17.0-new"><info><title>New Features</title></info>
     <itemizedlist>
       <listitem>
-	<para>
-	  When a secondary server receives a large incremental zone
-	  transfer (IXFR), it can have a negative impact on query
-	  performance while the incremental changes are applied to
-	  the zone. To address this, <command>named</command> can now
-	  limit the size of IXFR responses it sends in response to zone
-	  transfer requests. If an IXFR response would be larger than an
-	  AXFR of the entire zone, it will send an AXFR resonse instead.
-	</para>
-	<para>
-	  This behavior is controlled by the <command>max-ixfr-ratio</command>
-	  option - a percentage value representing the ratio of IXFR size
-	  to the size of a full zone transfer. This value cannot exceed
-	  100%, which is also the default. [GL #1515]
-	</para>
+        <para>
+          When a secondary server receives a large incremental zone
+          transfer (IXFR), it can have a negative impact on query
+          performance while the incremental changes are applied to
+          the zone. To address this, <command>named</command> can now
+          limit the size of IXFR responses it sends in response to zone
+          transfer requests. If an IXFR response would be larger than an
+          AXFR of the entire zone, it will send an AXFR resonse instead.
+        </para>
+        <para>
+          This behavior is controlled by the <command>max-ixfr-ratio</command>
+          option - a percentage value representing the ratio of IXFR size
+          to the size of a full zone transfer. This value cannot exceed
+          100%, which is also the default. [GL #1515]
+        </para>
       </listitem>
     </itemizedlist>
   </section>

From 2283d38ac27c915a7c229a58536813bd352a5e9d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= <michal@isc.org>
Date: Wed, 11 Mar 2020 09:06:40 +0100
Subject: [PATCH 2/3] Release note wording tweaks

---
 doc/arm/notes-9.17.0.xml | 26 ++++++++++++--------------
 1 file changed, 12 insertions(+), 14 deletions(-)

diff --git a/doc/arm/notes-9.17.0.xml b/doc/arm/notes-9.17.0.xml
index 4844ee1800..fe22b09470 100644
--- a/doc/arm/notes-9.17.0.xml
+++ b/doc/arm/notes-9.17.0.xml
@@ -15,18 +15,16 @@
     <itemizedlist>
       <listitem>
         <para>
-          System-provided pthread rwlocks implementation is used by default instead of
-          built-in ISC implementation of rwlocks. Please be aware that unpatched glibc
-          version from 2.26 had a <link xmlns:xlink="http://www.w3.org/1999/xlink"
-          xlink:href="https://sourceware.org/bugzilla/show_bug.cgi?id=23844">bug</link>
-          that could cause BIND 9 to deadlock.  The fix has been released as part of
-          glibc release 2.30, and various Linux distributions have patched their glibc
-          version with a notable exception of Ubuntu 18.04 (Bionic) which is work in
-          progress. If you are running on affected system (e.g. Ubuntu 18.04) you need
-          to compile BIND 9 with --disable-pthread-rwlock until Canonical releases
-          <link xmlns:xlink="http://www.w3.org/1999/xlink"
-          xlink:href="https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/1864864">fixed
-          version</link>.
+          The system-provided POSIX Threads read-write lock implementation is
+          now used by default instead of the native BIND 9 implementation.
+          Please be aware that glibc versions 2.26 through 2.29 had a
+          <link xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://sourceware.org/bugzilla/show_bug.cgi?id=23844">bug</link>
+          that could cause BIND 9 to deadlock. A fix was released in glibc 2.30,
+          and most current Linux distributions have patched or updated glibc,
+          with the notable exception of Ubuntu 18.04 (Bionic) which is a work in
+          progress. If you are running on an affected operating system, compile
+          BIND 9 with <command>--disable-pthread-rwlock</command> until a fixed
+          version of glibc is available.
         </para>
       </listitem>
       <listitem>
@@ -68,8 +66,8 @@
         <para>
           This behavior is controlled by the <command>max-ixfr-ratio</command>
           option - a percentage value representing the ratio of IXFR size
-          to the size of a full zone transfer. This value cannot exceed
-          100%, which is also the default. [GL #1515]
+          to the size of a full zone transfer. The default is
+          <literal>100%</literal>. [GL #1515]
         </para>
       </listitem>
     </itemizedlist>

From 384b413dc527e0a4118142ba6ddba4e80cc797d0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= <michal@isc.org>
Date: Wed, 11 Mar 2020 09:06:40 +0100
Subject: [PATCH 3/3] Add release note about controlling source ports

---
 doc/arm/notes-9.17.0.xml | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/doc/arm/notes-9.17.0.xml b/doc/arm/notes-9.17.0.xml
index fe22b09470..c3348fc73f 100644
--- a/doc/arm/notes-9.17.0.xml
+++ b/doc/arm/notes-9.17.0.xml
@@ -11,6 +11,25 @@
 
 <section xml:id="relnotes-9.17.0"><info><title>Notes for BIND 9.17.0</title></info>
 
+  <section xml:id="relnotes-9.17.0-known"><info><title>Known Issues</title></info>
+    <itemizedlist>
+      <listitem>
+        <para>
+          UDP network ports used for listening can no longer simultaneously be
+          used for sending traffic.  An example configuration which triggers
+          this issue would be one which uses the same
+          <replaceable>address:port</replaceable> pair for
+          <command>listen-on(-v6)</command> statements as for
+          <command>notify-source(-v6)</command> or
+          <command>transfer-source(-v6)</command>.  While this issue affects all
+          operating systems, it only triggers log messages (e.g. "unable to
+          create dispatch for reserved port") on some of them.  There are
+          currently no plans to make such a combination of settings work again.
+        </para>
+      </listitem>
+    </itemizedlist>
+  </section>
+
   <section xml:id="relnotes-9.17.0-changes"><info><title>Feature Changes</title></info>
     <itemizedlist>
       <listitem>