Home | History | Annotate | Line # | Download | only in notes 
      1 .. Copyright (C) Internet Systems Consortium, Inc. ("ISC")
      2 ..
      3 .. SPDX-License-Identifier: MPL-2.0
      4 ..
      5 .. This Source Code Form is subject to the terms of the Mozilla Public
      6 .. License, v. 2.0.  If a copy of the MPL was not distributed with this
      7 .. file, you can obtain one at https://mozilla.org/MPL/2.0/.
      8 ..
      9 .. See the COPYRIGHT file distributed with this work for additional
     10 .. information regarding copyright ownership.
     11 
     12 Notes for BIND 9.20.6
     13 ---------------------
     14 
     15 New Features
     16 ~~~~~~~~~~~~
     17 
     18 - Adds support for EDE code 1 and 2.
     19 
     20   Support was added for EDE codes 1 and 2, which might occur during DNSSEC
     21   validation in the case of an unsupported RRSIG algorithm or DNSKEY digest.
     22   :gl:`#2715`
     23 
     24 - Add an :iscman:`rndc` command to toggle jemalloc profiling.
     25 
     26   The new command is :option:`rndc memprof`; the memory profiling status is also
     27   reported inside :option:`rndc status`. The status shows whether
     28   :iscman:`named` can toggle memory profiling, and whether the server is built
     29   with jemalloc. :gl:`#4759`
     30 
     31 - Add support for multiple extended DNS errors.
     32 
     33   The Extended DNS Error (EDE) mechanism may raise errors
     34   during a DNS resolution. :iscman:`named` is now able to add up to three EDE
     35   codes in a DNS response. If there are duplicate error codes, only
     36   the first one is part of the DNS response. :gl:`#5085`
     37 
     38 - Print the expiration time of stale records.
     39 
     40   BIND now prints the expiration time of any stale RRsets in the cache dump.
     41 
     42 Bug Fixes
     43 ~~~~~~~~~
     44 
     45 - Recently expired records could be returned with a timestamp in future.
     46 
     47   Under rare circumstances, an RRSet that expired at the time of the
     48   query could be returned with a TTL in the future. This has been
     49   fixed.
     50 
     51   As a side effect, the expiration time of expired RRSets is no longer
     52   returned in a cache dump. :gl:`#5094`
     53 
     54 - YAML string not terminated in negative response in delv.
     55 
     56   :gl:`#5098`
     57 
     58 - Fix a bug in :iscman:`dnssec-signzone` related to keys being offline.
     59 
     60   When :iscman:`dnssec-signzone` was called on an already-signed
     61   zone and the private key file was unavailable, a signature that needed
     62   to be refreshed was dropped without being able to generate a
     63   replacement. This has been fixed. :gl:`#5126`
     64 
     65 - Apply the memory limit only to ADB database items.
     66 
     67   Under heavy load, a resolver could exhaust the memory available for
     68   storing the information in the Address Database (ADB), effectively
     69   discarding previously stored information in the ADB. The memory used to
     70   retrieve and provide information from the ADB is no longer subject to
     71   the same memory limits that are applied to
     72   the Address Database. :gl:`#5127`
     73 
     74 - Avoid unnecessary locking in the zone/cache database.
     75 
     76   Lock contention among many worker threads referring to the
     77   same database node at the same time is now prevented. This improves zone and
     78   cache database performance for any heavily contended database nodes.
     79   :gl:`#5130`
     80 
     81 - Fix reporting of Extended DNS Error 22 (No Reachable Authority).
     82 
     83   This error code was previously not reported in some applicable
     84   situations.  This has been fixed. :gl:`#5137`
     85 
     86