summaryrefslogtreecommitdiffstats
path: root/doc/notes/notes-9.18.2.rst
blob: 0111083d8b167994234e5196ca6182b2613a48fc (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53

.. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
..
.. SPDX-License-Identifier: MPL-2.0
..
.. This Source Code Form is subject to the terms of the Mozilla Public
.. License, v. 2.0.  If a copy of the MPL was not distributed with this
.. file, you can obtain one at https://mozilla.org/MPL/2.0/.
..
.. See the COPYRIGHT file distributed with this work for additional
.. information regarding copyright ownership.

Notes for BIND 9.18.2
---------------------

New Features
~~~~~~~~~~~~

- Add a new configuration option :any:`reuseport` to disable load balancing
  on sockets in situations where processing of Response Policy Zones
  (RPZ), Catalog Zones, or large zone transfers can cause service
  disruptions. See the BIND 9 ARM for more detail. :gl:`#3249`

Bug Fixes
~~~~~~~~~

- Previously, zone maintenance DNS queries retried forever if the
  destination server was unreachable. These queries included outgoing
  NOTIFY messages, refresh SOA queries, parental DS checks, and stub
  zone NS queries. For example, if a zone had any nameservers with IPv6
  addresses and a secondary server without IPv6 connectivity, that
  server would keep trying to send a growing amount of NOTIFY traffic
  over IPv6. This futile traffic was not logged. This excessive retry
  behavior has been fixed. :gl:`#3242`

- A number of crashes and hangs which could be triggered in
  :iscman:`dig` were identified and addressed. :gl:`#3020` :gl:`#3128`
  :gl:`#3145` :gl:`#3184` :gl:`#3205` :gl:`#3244` :gl:`#3248`

- Invalid :any:`dnssec-policy` definitions, where the defined keys did not
  cover both KSK and ZSK roles for a given algorithm, were being
  accepted. These are now checked, and the :any:`dnssec-policy` is rejected
  if both roles are not present for all algorithms in use. :gl:`#3142`

- Handling of TCP write timeouts has been improved to track the timeout
  for each TCP write separately, leading to a faster connection teardown
  in case the other party is not reading the data. :gl:`#3200`

Known Issues
~~~~~~~~~~~~

- There are no new known issues with this release. See :ref:`above
  <relnotes_known_issues>` for a list of all known issues affecting this
  BIND 9 branch.
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-03 15:18:15 +0000