From 43beb080fc6bae66c1f8935521a37e7e99b7415c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= Date: Mon, 12 Oct 2020 13:19:50 +0200 Subject: [PATCH 1/6] Minor documentation formatting tweaks --- bin/rndc/rndc.rst | 5 +---- doc/arm/reference.rst | 2 +- doc/man/rndc.8in | 15 +-------------- 3 files changed, 3 insertions(+), 19 deletions(-) diff --git a/bin/rndc/rndc.rst b/bin/rndc/rndc.rst index 70c3378315..6d540291f2 100644 --- a/bin/rndc/rndc.rst +++ b/bin/rndc/rndc.rst @@ -161,10 +161,7 @@ Currently supported commands are: See also ``rndc addzone`` and ``rndc modzone``. -``dnssec`` ( **-status** | - **-rollover** **-key** id [**-alg** *algorithm*] [**-when** *time*] | - **-checkds** [**-key** *id* [**-alg** *algorithm*]] [**-when** *time*] ( *published* | *withdrawn* ) - ) *zone* [*class* [*view*]] +``dnssec`` ( **-status** | **-rollover** **-key** id [**-alg** *algorithm*] [**-when** *time*] | **-checkds** [**-key** *id* [**-alg** *algorithm*]] [**-when** *time*] ( *published* | *withdrawn* )) *zone* [*class* [*view*]] This command allows you to interact with the "dnssec-policy" of a given zone. diff --git a/doc/arm/reference.rst b/doc/arm/reference.rst index f72c4c2f38..3fac4907a7 100644 --- a/doc/arm/reference.rst +++ b/doc/arm/reference.rst @@ -3170,7 +3170,7 @@ specify RRset ordering for a name and all of its subdomains, two separate rules must be defined: one for ```` and one for ``*.``. -The legal values for ``ordering`` are: +The legal values for ```` are: ``fixed`` Records are returned in the order they are defined in the zone file. diff --git a/doc/man/rndc.8in b/doc/man/rndc.8in index da4afa2436..d31b789453 100644 --- a/doc/man/rndc.8in +++ b/doc/man/rndc.8in @@ -161,20 +161,7 @@ recreated. To remove it permanently, it must also be removed from .sp See also \fBrndc addzone\fP and \fBrndc modzone\fP\&. .TP -\fBdnssec\fP ( \fB\-status\fP | -.INDENT 7.0 -.INDENT 3.5 -.INDENT 0.0 -.INDENT 3.5 -\fB\-rollover\fP \fB\-key\fP id [\fB\-alg\fP \fIalgorithm\fP] [\fB\-when\fP \fItime\fP] | -\fB\-checkds\fP [\fB\-key\fP \fIid\fP [\fB\-alg\fP \fIalgorithm\fP]] [\fB\-when\fP \fItime\fP] ( \fIpublished\fP | \fIwithdrawn\fP ) -.UNINDENT -.UNINDENT -.sp -) \fIzone\fP [\fIclass\fP [\fIview\fP]] -.UNINDENT -.UNINDENT -.sp +\fBdnssec\fP ( \fB\-status\fP | \fB\-rollover\fP \fB\-key\fP id [\fB\-alg\fP \fIalgorithm\fP] [\fB\-when\fP \fItime\fP] | \fB\-checkds\fP [\fB\-key\fP \fIid\fP [\fB\-alg\fP \fIalgorithm\fP]] [\fB\-when\fP \fItime\fP] ( \fIpublished\fP | \fIwithdrawn\fP )) \fIzone\fP [\fIclass\fP [\fIview\fP]] This command allows you to interact with the "dnssec\-policy" of a given zone. .sp From 35fe33b7d9d44ebfadcd57e934ff3e93107f9074 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= Date: Mon, 12 Oct 2020 13:19:50 +0200 Subject: [PATCH 2/6] Tweak and reword recent CHANGES entries --- CHANGES | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/CHANGES b/CHANGES index e089b2260d..d376b379ff 100644 --- a/CHANGES +++ b/CHANGES @@ -6,12 +6,12 @@ the RECVFAIL statistic count. [GL #2208] 5516. [func] The default EDNS buffer size has been changed from 4096 - to 1232, the EDNS buffer size probing has been removed - and ``named`` now sets the DON'T FRAGMENT flag on - outgoing UDP packets. [GL #2183] + to 1232 bytes, the EDNS buffer size probing has been + removed, and named now sets the DF (Don't Fragment) flag + on outgoing UDP packets. [GL #2183] -5515. [func] Add 'rndc dnssec -rollover' command to trigger a - manual rollover for a specific key. [GL #1749] +5515. [func] Add 'rndc dnssec -rollover' command to trigger a manual + rollover for a specific key. [GL #1749] 5514. [bug] Fix KASP expected key size for Ed25519 and Ed448. [GL #2171] @@ -28,7 +28,7 @@ microsecond. [GL #2190] 5510. [bug] Implement the attach/detach semantics for dns_message_t - to fix a data race in accessing already destroyed + to fix a data race in accessing an already-destroyed fctx->rmessage. [GL #2124] 5509. [bug] filter-aaaa: named crashed upon shutdown if it was in From 88cb988cc3206602225588ad8981aaaa3cee97ff Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= Date: Mon, 12 Oct 2020 13:19:50 +0200 Subject: [PATCH 3/6] Restore release note for GL #2146 --- doc/notes/notes-current.rst | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst index 0b4e9eb565..23b0e20c55 100644 --- a/doc/notes/notes-current.rst +++ b/doc/notes/notes-current.rst @@ -34,7 +34,9 @@ New Features Removed Features ~~~~~~~~~~~~~~~~ -- None. +- The ``glue-cache`` *option* has been marked as deprecated. The glue + cache *feature* still works and will be permanently *enabled* in a + future release. [GL #2146] Feature Changes From 65f88149de39f0f9fa9fa06b8ee4b280333ffead Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= Date: Mon, 12 Oct 2020 13:19:50 +0200 Subject: [PATCH 4/6] Tweak and reword release notes --- doc/notes/notes-current.rst | 46 +++++++++++++++++++------------------ 1 file changed, 24 insertions(+), 22 deletions(-) diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst index 23b0e20c55..1d633ab8f2 100644 --- a/doc/notes/notes-current.rst +++ b/doc/notes/notes-current.rst @@ -27,9 +27,9 @@ New Features - Add a new ``rndc`` command, ``rndc dnssec -rollover``, which triggers a manual rollover for a specific key. [GL #1749] -- New ``rndc`` command ``rndc dumpdb -expired`` that dumps the cache database - to the dump-file including expired RRsets that are awaiting cleanup, for - diagnostic purposes. [GL #1870] +- Add a new ``rndc`` command, ``rndc dumpdb -expired``, which dumps the + cache database, including expired RRsets that are awaiting cleanup, to + the ``dump-file`` for diagnostic purposes. [GL #1870] Removed Features ~~~~~~~~~~~~~~~~ @@ -42,17 +42,18 @@ Removed Features Feature Changes ~~~~~~~~~~~~~~~ -- [DNS Flag Day 2020]: The default EDNS buffer size has been changed from 4096 - to 1232, the EDNS buffer size probing has been removed and ``named`` now sets - the DON'T FRAGMENT flag on outgoing UDP packets. According to the - measurements done by multiple parties this should not be causing any - operational problems as most of the Internet "core" is able to cope with IP - message sizes between 1400-1500 bytes, the 1232 size was picked as a - conservative minimal number that could be changed by the DNS operator to a - estimated path MTU minus the estimated header space. In practice, the smallest - MTU witnessed in the operational DNS community is 1500 octets, the Ethernet - maximum payload size, so a a useful default for maximum DNS/UDP payload size - on reliable networks would be 1400. [GL #2183] +- DNS Flag Day 2020: The default EDNS buffer size has been changed from + 4096 to 1232 bytes, the EDNS buffer size probing has been removed, and + ``named`` now sets the DF (Don't Fragment) flag on outgoing UDP + packets. According to measurements done by multiple parties, this + should not cause any operational problems as most of the Internet + "core" is able to cope with IP message sizes between 1400-1500 bytes; + the 1232 size was picked as a conservative minimal number that could + be changed by the DNS operator to an estimated path MTU minus the + estimated header space. In practice, the smallest MTU witnessed in the + operational DNS community is 1500 octets, the maximum Ethernet payload + size, so a useful default for maximum DNS/UDP payload size on reliable + networks would be 1400 bytes. [GL #2183] Bug Fixes ~~~~~~~~~ @@ -61,16 +62,17 @@ Bug Fixes varying letter case could cause some processing rules in that RPZ zone to be erroneously ignored. [GL #2169] -- `named` would report invalid memory size when running in an environment - that doesn't properly report number of available memory pages or pagesize. - [GL #2166] +- ``named`` reported an invalid memory size when running in an + environment that did not properly report the number of available + memory pages and/or the size of each memory page. [GL #2166] -- `named` would exit with assertion failure REQUIRE(msg->state == (-1)) in - message.c due to a possible data race. [GL #2124] +- With multiple forwarders configured, ``named`` could fail the + ``REQUIRE(msg->state == (-1))`` assertion in ``lib/dns/message.c``, + causing it to crash. This has been fixed. [GL #2124] -- `named` would start continous rollovers for policies that algorithms - Ed25519 or Ed448 due to a mismatch in created key size and expected key size. - [GL #2171] +- ``named`` erroneously performed continuous key rollovers for KASP + policies that used algorithm Ed25519 or Ed448 due to a mismatch + between created key size and expected key size. [GL #2171] - Handle `UV_EOF` differently such that it is not treated as a `TCP4RecvErr` or `TCP6RecvErr`. [GL #2208] From ef3bd208aa8848415ee4daf9833c970a4eacb0a0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= Date: Mon, 12 Oct 2020 13:19:50 +0200 Subject: [PATCH 5/6] Reorder release notes --- doc/notes/notes-current.rst | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst index 1d633ab8f2..6c58e3307f 100644 --- a/doc/notes/notes-current.rst +++ b/doc/notes/notes-current.rst @@ -58,10 +58,6 @@ Feature Changes Bug Fixes ~~~~~~~~~ -- Updating contents of an RPZ zone which contained names spelled using - varying letter case could cause some processing rules in that RPZ zone - to be erroneously ignored. [GL #2169] - - ``named`` reported an invalid memory size when running in an environment that did not properly report the number of available memory pages and/or the size of each memory page. [GL #2166] @@ -74,5 +70,9 @@ Bug Fixes policies that used algorithm Ed25519 or Ed448 due to a mismatch between created key size and expected key size. [GL #2171] +- Updating contents of an RPZ zone which contained names spelled using + varying letter case could cause some processing rules in that RPZ zone + to be erroneously ignored. [GL #2169] + - Handle `UV_EOF` differently such that it is not treated as a `TCP4RecvErr` or `TCP6RecvErr`. [GL #2208] From 2291356b086f7a558ac7aadf650fb98ac9678879 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20K=C4=99pie=C5=84?= Date: Mon, 12 Oct 2020 13:19:50 +0200 Subject: [PATCH 6/6] Prepare release notes for BIND 9.17.6 --- doc/arm/notes.rst | 2 +- doc/notes/{notes-current.rst => notes-9.17.6.rst} | 14 -------------- util/copyrights | 2 +- 3 files changed, 2 insertions(+), 16 deletions(-) rename doc/notes/{notes-current.rst => notes-9.17.6.rst} (93%) diff --git a/doc/arm/notes.rst b/doc/arm/notes.rst index cbd4d5ed4d..2fa32e92d5 100644 --- a/doc/arm/notes.rst +++ b/doc/arm/notes.rst @@ -52,7 +52,7 @@ https://www.isc.org/download/. There you will find additional information about each release, source code, and pre-compiled versions for Microsoft Windows operating systems. -.. include:: ../notes/notes-current.rst +.. include:: ../notes/notes-9.17.6.rst .. include:: ../notes/notes-9.17.5.rst .. include:: ../notes/notes-9.17.4.rst .. include:: ../notes/notes-9.17.3.rst diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-9.17.6.rst similarity index 93% rename from doc/notes/notes-current.rst rename to doc/notes/notes-9.17.6.rst index 6c58e3307f..64e3aff025 100644 --- a/doc/notes/notes-current.rst +++ b/doc/notes/notes-9.17.6.rst @@ -11,16 +11,6 @@ Notes for BIND 9.17.6 --------------------- -Security Fixes -~~~~~~~~~~~~~~ - -- None. - -Known Issues -~~~~~~~~~~~~ - -- None. - New Features ~~~~~~~~~~~~ @@ -38,7 +28,6 @@ Removed Features cache *feature* still works and will be permanently *enabled* in a future release. [GL #2146] - Feature Changes ~~~~~~~~~~~~~~~ @@ -73,6 +62,3 @@ Bug Fixes - Updating contents of an RPZ zone which contained names spelled using varying letter case could cause some processing rules in that RPZ zone to be erroneously ignored. [GL #2169] - -- Handle `UV_EOF` differently such that it is not treated as a `TCP4RecvErr` or - `TCP6RecvErr`. [GL #2208] diff --git a/util/copyrights b/util/copyrights index c33c9c60da..ea91267d92 100644 --- a/util/copyrights +++ b/util/copyrights @@ -1240,7 +1240,7 @@ ./doc/notes/notes-9.17.3.rst RST 2020 ./doc/notes/notes-9.17.4.rst RST 2020 ./doc/notes/notes-9.17.5.rst RST 2020 -./doc/notes/notes-current.rst RST 2020 +./doc/notes/notes-9.17.6.rst RST 2020 ./docutil/HTML_COPYRIGHT X 2001,2004,2016,2018,2019,2020 ./docutil/MAN_COPYRIGHT X 2001,2004,2016,2018,2019,2020 ./docutil/patch-db2latex-duplicate-template-bug X 2007,2018,2019,2020