From 8eb032c2d5baa680707dce2b649d824df191304208342b9a4281a38c6602bc8d Mon Sep 17 00:00:00 2001
From: Jorik Cronenberg <jorik.cronenberg@suse.com>
Date: Mon, 7 Nov 2022 15:48:12 +0000
Subject: [PATCH] Accepting request 1034274 from
 home:jcronenberg:branches:network
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Update to bind release 9.18.8
  New Features:
  * Support for parsing and validating the dohpath service
    parameter in SVCB records was added.
  * named now logs the supported cryptographic algorithms during
    startup and in the output of named -V.
  * The recursion not available and query (cache) '...' denied log
    messages were extended to include the name of the ACL that
    caused a given query to be denied.
  Bug Fixes:
  * An assertion failure was fixed in named that was caused by
    aborting the statistics channel connection while sending
    statistics data to the client.
  * Changing just the TSIG key names for primaries in catalog
    zones’ member zones was not effective. This has been fixed.
  Known Issues:
  * Upgrading from BIND 9.16.32, 9.18.6, or any older version may
    require a manual configuration change. The following
    configurations are affected:
    - type primary zones configured with dnssec-policy but without
      either allow-update or update-policy,
    - type secondary zones configured with dnssec-policy.
    In these cases please add inline-signing yes; to the individual
    zone configuration(s). Without applying this change, named will
    fail to start. For more details, see
    https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
  * BIND 9.18 does not support dynamic update forwarding (see
    allow-update-forwarding) in conjuction with zone transfers over
    TLS (XoT).
  This obsoletes the following patch:
  * fix_documentation-Sphinx.patch

OBS-URL: https://build.opensuse.org/request/show/1034274
OBS-URL: https://build.opensuse.org/package/show/network/bind?expand=0&rev=362
---
 bind-9.18.7.tar.xz            |  3 ---
 bind-9.18.7.tar.xz.sha512.asc | 16 ---------------
 bind-9.18.8.tar.xz            |  3 +++
 bind-9.18.8.tar.xz.sha512.asc | 16 +++++++++++++++
 bind.changes                  | 38 +++++++++++++++++++++++++++++++++++
 bind.spec                     |  2 +-
 6 files changed, 58 insertions(+), 20 deletions(-)
 delete mode 100644 bind-9.18.7.tar.xz
 delete mode 100644 bind-9.18.7.tar.xz.sha512.asc
 create mode 100644 bind-9.18.8.tar.xz
 create mode 100644 bind-9.18.8.tar.xz.sha512.asc

diff --git a/bind-9.18.7.tar.xz b/bind-9.18.7.tar.xz
deleted file mode 100644
index 6865a3d..0000000
--- a/bind-9.18.7.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:9e2acf1698f49d70ad12ffbad39ec6716a7da524e9ebd98429c7c70ba1262981
-size 5626820
diff --git a/bind-9.18.7.tar.xz.sha512.asc b/bind-9.18.7.tar.xz.sha512.asc
deleted file mode 100644
index adceb3f..0000000
--- a/bind-9.18.7.tar.xz.sha512.asc
+++ /dev/null
@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEE4l6wzxzoBJ1H8dmmM+EOShg6jkYFAmMfNs4ACgkQM+EOShg6
-jkY1aRAAySGOpDT4MFnuTI5w7RdWjMNclOGJoFK6ihbkF6lQDrRqRuYlmAq9UwW2
-KR+rAAAqAHk/EmDzsmq15OcsJdJOMrJTp88YEI4EdAcInOK4xbjDl73P0oOnlRjJ
-/8Aw2awrDPjMPoEoF9YBLPfU1Q2Vlunybzlq9sZ7eUWpp1qSa6x3EoWS/bB/f66G
-FhWpbEqdkBOCW8osm3svSOTCkYhlimX6Y2bTyhjSUdfS8q5rwYoiDEsbzjgoMS5l
-eNQb0bexCEBmaTjzARGXo2JzGcNMu9aeee3noeusTV/x3r5zgOjl/TDkx7Y4CAaN
-qtWeoYVp4p4ulisaFqP1bHuksUVgez+2SzrqJ0NpvhLZzbi5dRnsHT93iDcoR+X/
-yjyVQFiunZq3kU46Cf8gT29fxfyi3C/3BVxMkdZz2kI4LwRWvAng7mk9tfKH/2/d
-d44hvv0R4Mdv38/zd8m2pddh8A7rY7l7CbPrKe0V6UTsnErFi/B14fLu58vQHlZL
-8SBBLT2YSiJFQRMfcbCwVTW9r54pqb+MJxkBCgGMDAULOqdBSXfydQdEkbkC1R9i
-u522mH5/VafntJabrxWa4blz/2pClTWswCYCT9LIb8wTFgU+n99+1ozIW7arLFMe
-/ncipDqQffaC+DY88PlF5AOhG4I7hqbJR6yVrPaIL7On+2vIn+A=
-=/BQv
------END PGP SIGNATURE-----
diff --git a/bind-9.18.8.tar.xz b/bind-9.18.8.tar.xz
new file mode 100644
index 0000000..071e0dc
--- /dev/null
+++ b/bind-9.18.8.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0e3c3ab9378db84ba0f37073d67ba125ae4f2ff8daf366c9db287e3f1b2c35f0
+size 5267280
diff --git a/bind-9.18.8.tar.xz.sha512.asc b/bind-9.18.8.tar.xz.sha512.asc
new file mode 100644
index 0000000..719f52c
--- /dev/null
+++ b/bind-9.18.8.tar.xz.sha512.asc
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQIzBAABCgAdFiEE4l6wzxzoBJ1H8dmmM+EOShg6jkYFAmNOnicACgkQM+EOShg6
+jkbn3A//R+Z74l52IRFP48YEh3vxrTE1NPYhxnZ2IVSiEox4xzksF1ZRci9mC+UJ
+tZw2Kext0aongdzPPp2r0OlNAbemSYhcLhPAR1TbkCK5z2Dn++SoXVTN1tDgr3f6
+37DhHwH4qwtAQO2fTGWnvEQPwx0YrOzqWZpY2KAcY0W/KNhU0hwEASr/kJ6IsSsd
+rQjiA7NJQgluNnioKzw2MVrxFeRNq6v1Xr+qk+4tBRJc74ao84fGqVgiNOHD2JWN
+iYUszIK2QosAHPLagWhZ5Qy8XwEDeDbfFcqOSybsjFxzNDXvbj2apoewxpaIqyzI
+9ZYCdRO+3joWgv2+SU2Szv13YgmjILZTq11T+nJ/TXVlGsnxFJS38pOrdhn0M4al
+JGyge94sLH0iUma/fu9Yt9F46dqLiTAvgsyfmJPerX9xtrguOzxvi3W13imDggbS
+gp4JsDtzE8Fzy8gVjkFt3flVjZTtUZbNIZpfcUyxQpIa686f+s9A9bEq0CYNzaVH
+vT+DpDFD/kUVX6BUmMW7gwvhk+V0CxoejLfmokqMBQznTZBTOBHARtjW4IQN3Ari
+C++yECdnQzqhhl/ai4N6x4tZIpIR+XI9DlxLc+SvabkudCZ6pecqpiLotv1xAeKt
+HQuCw+CzxHv5wiAUws/8u5pdE36Pn3Dtnh92PVNc8HYmSBDlTYg=
+=tpfx
+-----END PGP SIGNATURE-----
diff --git a/bind.changes b/bind.changes
index 2359ad0..ef5b9c9 100644
--- a/bind.changes
+++ b/bind.changes
@@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Mon Nov  7 14:17:22 UTC 2022 - Jorik Cronenberg <jorik.cronenberg@suse.com>
+
+- Update to bind release 9.18.8
+  New Features:
+  * Support for parsing and validating the dohpath service
+    parameter in SVCB records was added.
+  * named now logs the supported cryptographic algorithms during
+    startup and in the output of named -V.
+  * The recursion not available and query (cache) '...' denied log
+    messages were extended to include the name of the ACL that
+    caused a given query to be denied.
+
+  Bug Fixes:
+  * An assertion failure was fixed in named that was caused by
+    aborting the statistics channel connection while sending
+    statistics data to the client.
+  * Changing just the TSIG key names for primaries in catalog
+    zones’ member zones was not effective. This has been fixed.
+
+  Known Issues:
+  * Upgrading from BIND 9.16.32, 9.18.6, or any older version may
+    require a manual configuration change. The following
+    configurations are affected:
+    - type primary zones configured with dnssec-policy but without
+      either allow-update or update-policy,
+    - type secondary zones configured with dnssec-policy.
+    In these cases please add inline-signing yes; to the individual
+    zone configuration(s). Without applying this change, named will
+    fail to start. For more details, see
+    https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
+  * BIND 9.18 does not support dynamic update forwarding (see
+    allow-update-forwarding) in conjuction with zone transfers over
+    TLS (XoT).
+
+  This obsoletes the following patch:
+  * fix_documentation-Sphinx.patch
+
 -------------------------------------------------------------------
 Wed Oct  5 20:01:23 UTC 2022 - Matej Cepl <mcepl@suse.com>
 
diff --git a/bind.spec b/bind.spec
index cdfb997..d17bfa4 100644
--- a/bind.spec
+++ b/bind.spec
@@ -56,7 +56,7 @@
   %define _fillupdir %{_localstatedir}/adm/fillup-templates
 %endif
 Name:           bind
-Version:        9.18.7
+Version:        9.18.8
 Release:        0
 Summary:        Domain Name System (DNS) Server (named)
 License:        MPL-2.0