Accepting request 1034274 from home:jcronenberg:branches:network

- Update to bind release 9.18.8
  New Features:
  * Support for parsing and validating the dohpath service
    parameter in SVCB records was added.
  * named now logs the supported cryptographic algorithms during
    startup and in the output of named -V.
  * The recursion not available and query (cache) '...' denied log
    messages were extended to include the name of the ACL that
    caused a given query to be denied.
  Bug Fixes:
  * An assertion failure was fixed in named that was caused by
    aborting the statistics channel connection while sending
    statistics data to the client.
  * Changing just the TSIG key names for primaries in catalog
    zones’ member zones was not effective. This has been fixed.
  Known Issues:
  * Upgrading from BIND 9.16.32, 9.18.6, or any older version may
    require a manual configuration change. The following
    configurations are affected:
    - type primary zones configured with dnssec-policy but without
      either allow-update or update-policy,
    - type secondary zones configured with dnssec-policy.
    In these cases please add inline-signing yes; to the individual
    zone configuration(s). Without applying this change, named will
    fail to start. For more details, see
    https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
  * BIND 9.18 does not support dynamic update forwarding (see
    allow-update-forwarding) in conjuction with zone transfers over
    TLS (XoT).
  This obsoletes the following patch:
  * fix_documentation-Sphinx.patch

OBS-URL: https://build.opensuse.org/request/show/1034274
OBS-URL: https://build.opensuse.org/package/show/network/bind?expand=0&rev=362

bind-9.18.7.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:9e2acf1698f49d70ad12ffbad39ec6716a7da524e9ebd98429c7c70ba1262981
-size 5626820

bind-9.18.7.tar.xz.sha512.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEE4l6wzxzoBJ1H8dmmM+EOShg6jkYFAmMfNs4ACgkQM+EOShg6
-jkY1aRAAySGOpDT4MFnuTI5w7RdWjMNclOGJoFK6ihbkF6lQDrRqRuYlmAq9UwW2
-KR+rAAAqAHk/EmDzsmq15OcsJdJOMrJTp88YEI4EdAcInOK4xbjDl73P0oOnlRjJ
-/8Aw2awrDPjMPoEoF9YBLPfU1Q2Vlunybzlq9sZ7eUWpp1qSa6x3EoWS/bB/f66G
-FhWpbEqdkBOCW8osm3svSOTCkYhlimX6Y2bTyhjSUdfS8q5rwYoiDEsbzjgoMS5l
-eNQb0bexCEBmaTjzARGXo2JzGcNMu9aeee3noeusTV/x3r5zgOjl/TDkx7Y4CAaN
-qtWeoYVp4p4ulisaFqP1bHuksUVgez+2SzrqJ0NpvhLZzbi5dRnsHT93iDcoR+X/
-yjyVQFiunZq3kU46Cf8gT29fxfyi3C/3BVxMkdZz2kI4LwRWvAng7mk9tfKH/2/d
-d44hvv0R4Mdv38/zd8m2pddh8A7rY7l7CbPrKe0V6UTsnErFi/B14fLu58vQHlZL
-8SBBLT2YSiJFQRMfcbCwVTW9r54pqb+MJxkBCgGMDAULOqdBSXfydQdEkbkC1R9i
-u522mH5/VafntJabrxWa4blz/2pClTWswCYCT9LIb8wTFgU+n99+1ozIW7arLFMe
-/ncipDqQffaC+DY88PlF5AOhG4I7hqbJR6yVrPaIL7On+2vIn+A=
-=/BQv
------END PGP SIGNATURE-----

bind-9.18.8.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0e3c3ab9378db84ba0f37073d67ba125ae4f2ff8daf366c9db287e3f1b2c35f0
+size 5267280

bind-9.18.8.tar.xz.sha512.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=tpfx
+-----END PGP SIGNATURE-----

bind.changes

@@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Mon Nov  7 14:17:22 UTC 2022 - Jorik Cronenberg <jorik.cronenberg@suse.com>
+
+- Update to bind release 9.18.8
+  New Features:
+  * Support for parsing and validating the dohpath service
+    parameter in SVCB records was added.
+  * named now logs the supported cryptographic algorithms during
+    startup and in the output of named -V.
+  * The recursion not available and query (cache) '...' denied log
+    messages were extended to include the name of the ACL that
+    caused a given query to be denied.
+
+  Bug Fixes:
+  * An assertion failure was fixed in named that was caused by
+    aborting the statistics channel connection while sending
+    statistics data to the client.
+  * Changing just the TSIG key names for primaries in catalog
+    zones’ member zones was not effective. This has been fixed.
+
+  Known Issues:
+  * Upgrading from BIND 9.16.32, 9.18.6, or any older version may
+    require a manual configuration change. The following
+    configurations are affected:
+    - type primary zones configured with dnssec-policy but without
+      either allow-update or update-policy,
+    - type secondary zones configured with dnssec-policy.
+    In these cases please add inline-signing yes; to the individual
+    zone configuration(s). Without applying this change, named will
+    fail to start. For more details, see
+    https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
+  * BIND 9.18 does not support dynamic update forwarding (see
+    allow-update-forwarding) in conjuction with zone transfers over
+    TLS (XoT).
+
+  This obsoletes the following patch:
+  * fix_documentation-Sphinx.patch
+
 -------------------------------------------------------------------
 Wed Oct  5 20:01:23 UTC 2022 - Matej Cepl <mcepl@suse.com>
 

bind.spec

@@ -56,7 +56,7 @@
   %define _fillupdir %{_localstatedir}/adm/fillup-templates
 %endif
 Name:           bind
-Version:        9.18.7
+Version:        9.18.8
 Release:        0
 Summary:        Domain Name System (DNS) Server (named)
 License:        MPL-2.0