Subject: CVS commit: pkgsrc/net/knot
From: Ryo ONODERA
Date: 2024-07-29 22:38:15
Message id: 20240729203815.4BDF1FC74@cvs.NetBSD.org
Log Message:
net/knot: Update to 3.3.8

Version 3.3.8

Monday, July 22, 2024

Features:

      + libzscanner,libknot: added support for 'dohpath' and 'ohttp' SVCB
        parameters
      + libzscanner,libknot: added support for WALLET rrtype
      + keymgr: new commands for keystore testing (see 'keystore-test' and
        'keystore-bench')
      + knotd: new configuration option for setting default TTL (see
        'zone.default-ttl')

Improvements:

      + libknot: added error codes to better describe some failures

Bugfixes:

      + knotd: DNSSEC signing doesn't remove NSEC records for non-authoritative
        nodes
      + knotd: DNSSEC signing not scheduled on secondary if nothing to be
        reloaded
      + libknot: TCP over XDP doesn't ignore SYN+ACK packets on the server side

Version 3.3.7

Tuesday, June 25, 2024

Improvements:

      + libs: upgraded embedded libngtcp2 to 1.6.0

Bugfixes:

      + knotd: insufficient metadata check can cause journal corruption
      + knotd: missing zone timers initialization upon purge
      + knotd: missing RCU lock in zone flush and refresh
      + knotd: defective assert in zone refresh

Version 3.3.6

Wednesday, June 12, 2024

Features:

      + knotd: configurable control socket backlog size (see 'control.backlog')
      + knotd: optional configuration of congruency of generated keytags (see
        'policy.keytag-modulo')
      + knotc: support for exporting configuration schema in JSON (see
        'conf-export') #912
      + mod-dnstap: configuration of sink allows TCP address specification

Improvements:

      + knotd: last-signed serial is stored to KASP even if not a secondary
        zone
      + knotd: allowed catalog role member in a catalog template configuration
      + knotd: some references in a zone configuration can be set empty to
        override a template
      + knotd: allowed zone backup during a zone transaction
      + knotd: add remote TSIG key name to outgoing event logs
      + knotc: zone backup with '+keysonly' silently uses all defaults as 'off'
      + kxdpgun: host name can be used for target specification
      + libs: upgraded embedded libngtcp2 to 1.5.0
      + doc: various fixes and updates

Bugfixes:

      + knotd: reset TCP connection not removed from a connection pool
      + knotd: server wrongly tries to remove removed ZONEMD
      + knotd: failed to parse empty list from a textual configuration
      + knotd: blocking zone signing in combination with an open transaction
        causes a deadlock
      + knotd: missing RCU lock when sending NOTIFY
      + kdig: QNAME letter case isn't preserved if IDN is enabled
      + kdig: failed to parse empty QNAME (do not fill question section)
      + kxdpgun: floating point exception on SIGUSR1 #927
      + libknot: incorrect handling of regular QUIC tokens in incoming initials
      + python: failed to set an empty configuration value
Files:
RevisionActionfile
1.85modifypkgsrc/net/knot/Makefile
1.48modifypkgsrc/net/knot/distinfo