pool/ldns
SHA256
12
0
Fork 2
Code Issues Pull Requests Activity

Accepting request 517554 from home:pmonrealgonzalez:branches:server:dns

Browse Source 
- Update to version 1.7.0 
  * Ldns built with openssl-1.1.0 [bsc#1042653]
  * Fix #551 change Regent to Copyright holder in BSD license in some of
    the headings of the file, to match the opensource.org BSD license.
  * -e option makes ldns-compare-zones exit with status code 2 on difference
  * Filter out specified RR types with ldns-read-zone -e and -E options
  * bugfix #563: Correct DNSKEY from DSA private key.
  * bugfix #562: ldns-keygen match DSA key maximum size with library.
    And check keysizes with all algorithms.
  * ldns-verify-zone accepts only one single zonefile as argument.
  * bugfix #573: ldns-keygen write private keys with mode 0600.
  * Fix configure to make ldns compile with LibreSSL 2.0
  * drill now also accepts dig style -y option
    (-y <[algo:]name:key> i.s.o. -y <name:key[:algo]>)
  * OPENPGPKEY draft rr types. Enable with: --enable-rrtype-openpgpkey
  * bugfix #608: Correct comment about escaped characters
  * CDS and CDNSKEY rr type from RFC 7344. --enable-rrtype-cds configure
    option removed
  * fix: Memory leak in ldns_pkt_rr_list_by_name()
  * fix: Memory leak in ldns_dname2buffer_wire_compress()
  * bugfix #613: Allow tab as whitespace too in last rdata field of types
    of variable length.
  * bugfix: strip trailing whitespace from $ORIGIN lines in zone files
  * Let ldns-keygen output .ds files only for KSK keys
  * Parse RFC7218 TLSA mnemonics, but do not output them
  * Let ldns-dane use SPKI as the default selector i.s.o. Cert
  * bugfix: Fit left over NSEC3s once more before adding empty non terminals
  * bugfix #605: Determine default trust anchor location at compile time
  * bugfix #697: Double free with ldns-dane create
  * bugfix #623: Do not redefine bool type and boolean values

OBS-URL: https://build.opensuse.org/request/show/517554
OBS-URL: https://build.opensuse.org/package/show/server:dns/ldns?expand=0&rev=32
This commit is contained in:
Ludwig Nussel
2017-08-24 08:27:35 +00:00
committed by Git OBS Bridge
parent 0ea1f5d38e
commit 0fdc4ce69e
5 changed files with 122 additions and 107 deletions
Download Patch File Download Diff File Expand all files Collapse all files

80
ldns.changes
View File

@@ -1,3 +1,83 @@
-------------------------------------------------------------------
Fri Aug 18 10:57:32 UTC 2017 - pmonrealgonzalez@suse.com
- Update to version 1.7.0
* Ldns built with openssl-1.1.0 [bsc#1042653]
* Fix #551 change Regent to Copyright holder in BSD license in some of
the headings of the file, to match the opensource.org BSD license.
* -e option makes ldns-compare-zones exit with status code 2 on difference
* Filter out specified RR types with ldns-read-zone -e and -E options
* bugfix #563: Correct DNSKEY from DSA private key.
* bugfix #562: ldns-keygen match DSA key maximum size with library.
And check keysizes with all algorithms.
* ldns-verify-zone accepts only one single zonefile as argument.
* bugfix #573: ldns-keygen write private keys with mode 0600.
* Fix configure to make ldns compile with LibreSSL 2.0
* drill now also accepts dig style -y option
(-y <[algo:]name:key> i.s.o. -y <name:key[:algo]>)
* OPENPGPKEY draft rr types. Enable with: --enable-rrtype-openpgpkey
* bugfix #608: Correct comment about escaped characters
* CDS and CDNSKEY rr type from RFC 7344. --enable-rrtype-cds configure
option removed
* fix: Memory leak in ldns_pkt_rr_list_by_name()
* fix: Memory leak in ldns_dname2buffer_wire_compress()
* bugfix #613: Allow tab as whitespace too in last rdata field of types
of variable length.
* bugfix: strip trailing whitespace from $ORIGIN lines in zone files
* Let ldns-keygen output .ds files only for KSK keys
* Parse RFC7218 TLSA mnemonics, but do not output them
* Let ldns-dane use SPKI as the default selector i.s.o. Cert
* bugfix: Fit left over NSEC3s once more before adding empty non terminals
* bugfix #605: Determine default trust anchor location at compile time
* bugfix #697: Double free with ldns-dane create
* bugfix #623: Do not redefine bool type and boolean values
* bugfix #570: Add TLSA, CDS, CDNSKEY and OPENPGPKEY RR types to ldnsx
* bugfix #575: ldns_pkt_clone() does not copy timestamp field
* bugfix #584: ldns-update fixes. Send update to port 53, bring manpage
in sync with the usage text, and don't alter the ldns_resolver passed
to ldns_update_soa_zone_mname(). Created a ldns_resolver_clone()
function in the process.
* bugfix #633: ldns_pkt_clone() parameter isn't const.
* bugfix: ldns-dane manpage correction
* RFC7553 RR Type URI is supported by default.
* Fix ECDSA signature generation, do not omit leading zeroes.
* bugfix: Get rid of superfluous newline in ldns-keyfetcher
* bugfix: -U option to ldns-signzone to sign with every algorithm
* const function parameters whenever possible.
* bugfix #725: allow RR-types on the type bitmap window border
* Add type CSYNC support, RFC 7477.
* Prepare for ED25519, ED448 support: todo convert* routines in dnssec.h,
once openssl has support for signing with these algorithms. The dns
algorithm number is not yet allocated. These features are not fully
implemented yet, openssl (1.1) does not support the algorithms enough
to generate keys and sign and verify with them.
* Fix drill axfr ipv4/ipv6 queries.
* Fix for openssl 1.1.0 API changes.
* bugfix #825: Module import breaks with newer SWIG versions.
* bugfix #769: Add support for :: in an IPv6 address
* bugfix #708: warnings and errors with xcode 6.1/7.0
* bugfix #754: Memory leak in ldns_str2rdf_ipseckey
* bugfix #661: Fail NSEC3 signing when NSEC domainname length would
overflow.
* bugfix #771: hmac-sha224, hmac-sha384 and hmac-sha512 keys.
* bugfix #680: ldns fails to reject invalidly formatted RFC 7553 URI RRs.
* bugfix #678: Use poll i.s.o. select to support > 1024 fds
* Use OpenSSL DANE functions for verification (unless explicitly disabled
with --disable-dane-ta-usage).
* Bumb .so version
* Include OPENPGPKEY RR type by default
* rdata processing for SMIMEA RR type
* Fix crash in displaying TLSA RR's.
* Update ldns-key2ds man page to mention GOST and SHA384 hash functions.
* Add sha384 and sha512 tsig algorithm.
* Clarify data ownership with consts for tsig parameters.
* bugfix: Fix detection of DSA support with OpenSSL >= 1.1.0
* bugfix #1160: Provide sha256 for release tarballs
* --enable-gost-anyway compiles GOST support with OpenSSL >= 1.1.0 even
when the GOST engine is not available.
- Dropped patch ldns-perl-5.22.patch
-------------------------------------------------------------------
Tue May 10 22:52:09 UTC 2016 - mrueckert@suse.de