Trust-DNS Resolver 0.11

Fixed

• Ignore UDP responses not from target src address #629 #630 #631 (@aep)
• Improved NSEC validation of responses #697

Added

• New option to execute queries concurrently, default is 2 #615
• Lookup::record_iter for listing all records returned in request #674
• NAPTR record data (no additional record processing support) #731

Changed

• Added option to distrust Nameservers on SERVFAIL responses, continue resolution #613
• breaking Record::from_rdata no longer requires RecordType parameter #674
• LRU cache is now based on Query rather than just name #674

Trust-DNS Client and Server 0.16.0

Fixed

• (proto) UDP Sockets not being properly closed in timeout scenarios #635
• (server) CNAME resolutions #720
• (server) NSEC evaluation for NODATA and NXDOMAIN responses #697
• (server) Call add_update_auth_key in named.rs #683 (@Darkspirit)

Added

• (proto) support for the OPENPGPKEY and SSHFP record types #646 #647
• (server/client) support ECDSA signing with ring #688 (@Darkspirit)
• (server) forwarding support in server with trust-dns-resolver (default feature) #674
• (server) Authority trait for generic Authorities (File, Sqlite, Forwarder) #674
• (server) ANAME resolutions #720
• (server) Additional section processing for ANAME, CNAME, MX, NS, and SRV #720
• (server) Added endpoint name config to DoH and DoT TLS endpoint #714
• (proto) NAPTR record data (no additional record processing support) #731
• (server) Added support for wildcard lookups, i.e. *.example.com in zone files

Changed

• breaking (proto) UdpClientStream and UdpClientConnection refactored to associate UDP sockets to single requests #635
• breaking (server) configuration for sqlite dynamic update different, see dnssec_with_update.toml for example #622
• breaking (util)/dnskey_to_pem has been renamed to bind_dnskey_to_pem for clarity #622
• breaking (proto) Record::from_rdata no longer requires RecordType parameter #674
• breaking (server) AuthLookup inner types simplified #674
• breaking (server) RequestHandler now requires associated type for Future results of lookups #674
• breaking (server) ResponseHandler now requires Clone and 'static #674
• breaking (server) Catalog::lookup takes ownership of MessageRequest and returns a LookupFuture #674
• breaking (server) MessageRequest and Queries no longer carrying lifetime parameters #674

Fix for UDP socket leak

Fixed

• UDP Sockets not being properly closed in timeout scenarios #635

Resolver 0.10.0

Fixed

Fix two separate integer overflows from substractions #585 (@oherrala)
strictly enforce name and label lengths during label parsing #584
enforce that only prior labels are used in label expansion, decompression #578 (@oherrala)
CAA now properly performs case-incesitive compares #587 (@oherrala)
overhauled rdata parsers with Restrict type to reduce potential of overflowing operations #586
Propagate TTLs for NXDOMAIN responses #485 (@hawkw)
LookupIpFuture implementation to be proper in regards to loop control #480 (@hawkw)
max query depth tracking in Resolver #469

Changed

Wrap types in Restrict and force validation before usage from streams #586
Delays all connections until actual use #566
Relax parsing rules for CAA issuer keys and values #517
ResolverFuture renamed to AsyncResolver #487 (@hawkw)
breaking AsyncResolver::new returns a tuple of an AsyncResolver and a future that drives DNS lookups in the background #487 (@hawkw)
breaking All AsyncResolver lookup methods return BackgroundLookup<T> rather than T #487 (@hawkw)
breaking Migrated from error_chain to Failure #474 (@silwol)
improve truncation to always return records #497

Added

updated root trust-anchor to include new 20326 RSA root ksk
DNS over HTTPS support #520

Client and Server 0.15

Fixed

Fix two separate integer overflows from substractions #585 (@oherrala)
strictly enforce name and label lengths during label parsing #584
enforce that only prior labels are used in label expansion, decompression #578 (@oherrala)
CAA now properly performs case-incesitive compares #587 (@oherrala)
overhauled rdata parsers with Restrict type to reduce potential of overflowing operations #586

Added

feature dns-over-rustls to trust-dns-server (server) and trust-dns (client)
feature dns-over-https-rustls experimental #557
new configuration options for tls, see server/tests/named_test_configs/dns_over_tls_rustls_and_openssl.toml
new utility for querying root key-signing-keys, util/get-root-ksks
updated root trust-anchor to include new 20326 RSA root ksk

Changed

Make trust_dns_server::server::ResponseHandler Send #593 (sticnarf)
Wrap types in Restrict and force validation before usage from streams #586
breaking Overhauled all ClientFuture implementations to align with new DnsExchange and DnsMultiplexer components in proto.
breaking ClientFuture after construction, now returns a "background" ClientFuture and a "foreground" BasicClientHandle
breaking Client has more type parameters, these match with the same types returned by the *ClientConnection constructors
breaking all default features, removed: "dns-over-openssl", "dnssec-openssl". Use --features=dns-over-openssl,dnssec-openssl to enable
breaking named configuration now has AXFR disabled by default.
breaking Migrated from error_chain to Failure #474 (@silwol)
feature tls renamed to dns-over-openssl
upgraded native-tls and tokio-tls to 0.2
upgraded rusqlite to 0.15

Patch for 32bit linux

Resolver 0.9.1

Fixes

• Fixes the MAX TTL being outside the bounds of 32bit systems, reduces max to 1 day #528

Client and Server 0.14

0.14.0

Changed

• Updated trust-dns-proto to 0.3, which brings in better Name and Label impls
• rusqlite updated to 0.13 #331 (@oherrala)
• Many serialization improvements #317
• Use tokio-timer (part of tokio upgrade) @justinlatimer #411
• Backtrace now optional @briansmith #416
• Use tokio-tcp (part of tokio upgrade) @Keruspe #426
• Use tokio-udp (part of tokio upgrade) @Keruspe #426
• Upgrade to tokio-executor (tokio upgrade) @Keruspe and @justinlatimer #438
• Send (Sync where applicable) enforced on all DnsHandle::send and other interfaces #460
• ClientHandle api return Send @ariwaranosai #465

Added

• Name and Label now support idna, punycode, see Name::from_str
• trust_dns::rr::ZoneUsage for detecting restrictions on Names and their associated zones

Fixed

• octal escapes fixed in Name parsing #330
• NULL record type incorrectly valued at 0 to proper 10 #329 (@jannic)
• BinEncoder panic on record sets of extreme sizes #352
• Panic when oneshot channel receiver goes away #356
• Hung server on UDP due to bad data #407

Removed

• usage of tokio-core::Core @Keruspe #446

Resolver 0.9.0

0.9

Added

• DNS-over-TLS configurations (requires one of dns-over-native-tls or dns-over-rustls features) #396
• Experimental DNS-SD, service discovery (RFC 6763, mdns feature required) #363
• Experimental mDNS, multicast DNS, known issues persist (RFC 6762, mdns feature required) #337
• Exposed TTLs on Lookup objects @hawkw #444
• Added global resolver example #460

Changed

• Use tokio-timer (part of tokio upgrade) @justinlatimer #411
• Backtrace now optional @briansmith #416
• Upgrade to tokio-tcp (tokio upgrade) @Keruspe #426
• Upgrade to tokio-udp (tokio upgrade) @Keruspe #427
• Upgrade to tokio-executor (tokio upgrade) @Keruspe and @justinlatimer #438
• Always reattempt nameserver reconnections regardless of time #457
• Defaulted type parameter for LookupFuture, removed InnerLookupFuture #459

Fixed

• BinEncoder panic on record sets of extreme sizes #352
• Panic when oneshot channel receiver goes away #356
• Incorrect IPv6 configuration for Google nameservers #358
• Properly yield on failure to acquire lock #372
• Correct order of search list with ndots variable #410
• Send (Sync where applicable) enforced on all DnsHandle::send and other interfaces #460
• Properly track max query depth as a task_local not thread_local #460, #469
• IPv4 like name resolution in lookup_ip with search order #467

Removed

• usage of tokio-core::Core @Keruspe #446

Fix label compression panic

Resolver 0.8.1

Changed

• Make read_system_conf() function public #338 (@oherrala)
• Hosts map was not properly reference counted #342

Fixed

• Panic in edge case of label compression #341 (@SAPikachu)
• Fix localhost lookup and no longer panic on no names #343

Faster Build Times w/o LALRPOP

0.8.0

Changed

• Updated trust-dns-proto to 0.3, which brings in better Name and Label impls
• Dropped LALRPOP resolv.conf parser in favor of the resolv-conf #335 (@cssivision & @little-dude)
• Improved message serialization #311 (@little-dude)
• Many serialization improvements #317
• Dependencies updated #334 (@oherrala)

Added

• Name and Label now support idna, punycode, see Name::from_str
• Clippy added to build #304! (@neosilky)
• from_system_conf on now supported on Windows 32bit targets (previously just 64bit) #313 (@liranringel)

Fixed

• octal escapes fixed in Name parsing #330
• NULL record type incorrectly valued at 0 to proper 10 #329 (@jannic)