From ff8d37cbdb020e696c6b396e3342c786ada6d81d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ond=C5=99ej=20Sur=C3=BD?= Date: Mon, 3 Jan 2022 13:30:40 +0100 Subject: [PATCH] Add CHANGES and release note for [GL #3071] --- CHANGES | 6 ++++++ doc/notes/notes-current.rst | 6 ++++++ 2 files changed, 12 insertions(+) diff --git a/CHANGES b/CHANGES index c64bd9437c..0e6b6307ba 100644 --- a/CHANGES +++ b/CHANGES @@ -5,6 +5,12 @@ 5787. [doc] Update 'auto-dnssec' documentation, it may only be activated at zone level. [GL #3023] +5786. [bug] Defer detaching from zone->raw in zone_shutdown() if + the zone is in the process of being dumped to disk, to + ensure that the unsigned serial number information is + always written in the raw-format header of the signed + version on an inline-signed zone. [GL #3071] + 5785. [bug] named could leak memory when two dnssec-policy clauses had the same name. named failed to log this error. [GL #3085] diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst index dbf3266abd..741b70453b 100644 --- a/doc/notes/notes-current.rst +++ b/doc/notes/notes-current.rst @@ -43,3 +43,9 @@ Bug Fixes - On FreeBSD, a TCP connection would leak a small amount of heap memory leading to out-of-memory problem in a long run. This has been fixed. :gl:`#3051` + +- Under certain circumstances, the signed version of an inline-signed + zone could be dumped to disk without the serial number of the unsigned + version of the zone, preventing resynchronization of zone contents + after ``named`` restart in case the unsigned zone file gets modified + while ``named`` is not running. This has been fixed. :gl:`#3071`