Releases: hickory-dns/hickory-dns
Releases · hickory-dns/hickory-dns
Trust-DNS Resolver 0.11
Fixed
- Ignore UDP responses not from target src address #629 #630 #631 (@aep)
- Improved NSEC validation of responses #697
Added
- New option to execute queries concurrently, default is 2 #615
- Lookup::record_iter for listing all records returned in request #674
- NAPTR record data (no additional record processing support) #731
Changed
Trust-DNS Client and Server 0.16.0
Fixed
- (proto) UDP Sockets not being properly closed in timeout scenarios #635
- (server) CNAME resolutions #720
- (server) NSEC evaluation for NODATA and NXDOMAIN responses #697
- (server) Call add_update_auth_key in named.rs #683 (@Darkspirit)
Added
- (proto) support for the OPENPGPKEY and SSHFP record types #646 #647
- (server/client) support ECDSA signing with ring #688 (@Darkspirit)
- (server) forwarding support in server with trust-dns-resolver (default feature) #674
- (server) Authority trait for generic Authorities (File, Sqlite, Forwarder) #674
- (server) ANAME resolutions #720
- (server) Additional section processing for ANAME, CNAME, MX, NS, and SRV #720
- (server) Added endpoint name config to DoH and DoT TLS endpoint #714
- (proto) NAPTR record data (no additional record processing support) #731
- (server) Added support for wildcard lookups, i.e.
*.example.com
in zone files
Changed
- breaking (proto) UdpClientStream and UdpClientConnection refactored to associate UDP sockets to single requests #635
- breaking (server) configuration for sqlite dynamic update different, see dnssec_with_update.toml for example #622
- breaking (util)/dnskey_to_pem has been renamed to bind_dnskey_to_pem for clarity #622
- breaking (proto) Record::from_rdata no longer requires RecordType parameter #674
- breaking (server) AuthLookup inner types simplified #674
- breaking (server) RequestHandler now requires associated type for Future results of lookups #674
- breaking (server) ResponseHandler now requires Clone and 'static #674
- breaking (server) Catalog::lookup takes ownership of MessageRequest and returns a LookupFuture #674
- breaking (server) MessageRequest and Queries no longer carrying lifetime parameters #674
Fix for UDP socket leak
Fixed
- UDP Sockets not being properly closed in timeout scenarios #635
Resolver 0.10.0
Fixed
Fix two separate integer overflows from substractions #585 (@oherrala)
strictly enforce name and label lengths during label parsing #584
enforce that only prior labels are used in label expansion, decompression #578 (@oherrala)
CAA now properly performs case-incesitive compares #587 (@oherrala)
overhauled rdata parsers with Restrict type to reduce potential of overflowing operations #586
Propagate TTLs for NXDOMAIN responses #485 (@hawkw)
LookupIpFuture implementation to be proper in regards to loop control #480 (@hawkw)
max query depth tracking in Resolver #469
Changed
Wrap types in Restrict and force validation before usage from streams #586
Delays all connections until actual use #566
Relax parsing rules for CAA issuer keys and values #517
ResolverFuture renamed to AsyncResolver #487 (@hawkw)
breaking AsyncResolver::new returns a tuple of an AsyncResolver and a future that drives DNS lookups in the background #487 (@hawkw)
breaking All AsyncResolver lookup methods return BackgroundLookup<T> rather than T #487 (@hawkw)
breaking Migrated from error_chain to Failure #474 (@silwol)
improve truncation to always return records #497
Added
updated root trust-anchor to include new 20326 RSA root ksk
DNS over HTTPS support #520
Client and Server 0.15
Fixed
Fix two separate integer overflows from substractions #585 (@oherrala)
strictly enforce name and label lengths during label parsing #584
enforce that only prior labels are used in label expansion, decompression #578 (@oherrala)
CAA now properly performs case-incesitive compares #587 (@oherrala)
overhauled rdata parsers with Restrict type to reduce potential of overflowing operations #586
Added
feature dns-over-rustls to trust-dns-server (server) and trust-dns (client)
feature dns-over-https-rustls experimental #557
new configuration options for tls, see server/tests/named_test_configs/dns_over_tls_rustls_and_openssl.toml
new utility for querying root key-signing-keys, util/get-root-ksks
updated root trust-anchor to include new 20326 RSA root ksk
Changed
Make trust_dns_server::server::ResponseHandler Send #593 (sticnarf)
Wrap types in Restrict and force validation before usage from streams #586
breaking Overhauled all ClientFuture implementations to align with new DnsExchange and DnsMultiplexer components in proto.
breaking ClientFuture after construction, now returns a "background" ClientFuture and a "foreground" BasicClientHandle
breaking Client has more type parameters, these match with the same types returned by the *ClientConnection constructors
breaking all default features, removed: "dns-over-openssl", "dnssec-openssl". Use --features=dns-over-openssl,dnssec-openssl to enable
breaking named configuration now has AXFR disabled by default.
breaking Migrated from error_chain to Failure #474 (@silwol)
feature tls renamed to dns-over-openssl
upgraded native-tls and tokio-tls to 0.2
upgraded rusqlite to 0.15
Patch for 32bit linux
Resolver 0.9.1
Fixes
- Fixes the MAX TTL being outside the bounds of 32bit systems, reduces max to 1 day #528
Client and Server 0.14
0.14.0
Changed
- Updated
trust-dns-proto
to0.3
, which brings in betterName
andLabel
impls - rusqlite updated to 0.13 #331 (@oherrala)
- Many serialization improvements #317
- Use tokio-timer (part of tokio upgrade) @justinlatimer #411
- Backtrace now optional @briansmith #416
- Use tokio-tcp (part of tokio upgrade) @Keruspe #426
- Use tokio-udp (part of tokio upgrade) @Keruspe #426
- Upgrade to tokio-executor (tokio upgrade) @Keruspe and @justinlatimer #438
- Send (Sync where applicable) enforced on all DnsHandle::send and other interfaces #460
- ClientHandle api return Send @ariwaranosai #465
Added
Name
andLabel
now support idna, punycode, seeName::from_str
trust_dns::rr::ZoneUsage
for detecting restrictions onName
s and their associated zones
Fixed
- octal escapes fixed in
Name
parsing #330 NULL
record type incorrectly valued at0
to proper10
#329 (@jannic)- BinEncoder panic on record sets of extreme sizes #352
- Panic when oneshot channel receiver goes away #356
- Hung server on UDP due to bad data #407
Removed
Resolver 0.9.0
0.9
Added
- DNS-over-TLS configurations (requires one of
dns-over-native-tls
ordns-over-rustls
features) #396 - Experimental DNS-SD, service discovery (RFC 6763,
mdns
feature required) #363 - Experimental mDNS, multicast DNS, known issues persist (RFC 6762,
mdns
feature required) #337 - Exposed TTLs on
Lookup
objects @hawkw #444 - Added global resolver example #460
Changed
- Use tokio-timer (part of tokio upgrade) @justinlatimer #411
- Backtrace now optional @briansmith #416
- Upgrade to tokio-tcp (tokio upgrade) @Keruspe #426
- Upgrade to tokio-udp (tokio upgrade) @Keruspe #427
- Upgrade to tokio-executor (tokio upgrade) @Keruspe and @justinlatimer #438
- Always reattempt nameserver reconnections regardless of time #457
- Defaulted type parameter for LookupFuture, removed InnerLookupFuture #459
Fixed
- BinEncoder panic on record sets of extreme sizes #352
- Panic when oneshot channel receiver goes away #356
- Incorrect IPv6 configuration for Google nameservers #358
- Properly yield on failure to acquire lock #372
- Correct order of search list with ndots variable #410
- Send (Sync where applicable) enforced on all DnsHandle::send and other interfaces #460
- Properly track max query depth as a
task_local
notthread_local
#460, #469 - IPv4 like name resolution in lookup_ip with search order #467
Removed
Fix label compression panic
Faster Build Times w/o LALRPOP
0.8.0
Changed
- Updated
trust-dns-proto
to0.3
, which brings in betterName
andLabel
impls - Dropped LALRPOP
resolv.conf
parser in favor of theresolv-conf
#335 (@cssivision & @little-dude) - Improved message serialization #311 (@little-dude)
- Many serialization improvements #317
- Dependencies updated #334 (@oherrala)
Added
Name
andLabel
now support idna, punycode, seeName::from_str
- Clippy added to build #304! (@neosilky)
from_system_conf
on now supported on Windows 32bit targets (previously just 64bit) #313 (@liranringel)