Ubuntu
bind9 package

Backport of bind9 for focal, jammy and noble

Bug #2073310 reported by Bryce Harrington
12
This bug affects 2 people
Affects Status Importance Assigned to Milestone
bind-dyndb-ldap (Ubuntu)
Fix Released
Undecided
Lena Voytek
Ubuntu ubuntu-24.09
Focal
Fix Released
Undecided
Lena Voytek
Jammy
Fix Released
Undecided
Lena Voytek
Noble
Fix Released
Undecided
Lena Voytek
bind9 (Ubuntu)
Fix Released
Wishlist
Lena Voytek
Ubuntu ubuntu-24.09
Focal
Fix Released
Undecided
Lena Voytek
Jammy
Fix Released
Undecided
Lena Voytek
Noble
Fix Released
Undecided
Lena Voytek

Bug Description

This bug tracks an update for the bind9 package, moving to versions:

* Noble (24.04): bind9 9.18.30
* Jammy (22.04): bind9 9.18.30
* Focal (20.04): bind9 9.18.30

These updates include bug fixes following the SRU policy exception defined at https://wiki.ubuntu.com/Bind9Updates.

[Upstream changes]

Changes from 9.18.28 - 9.18.30 include:

Features:

Print initial working directory during named startup, and changed working directory when loading or reloading the configuration file
Add max-query-restarts configuration statement

Updates:

Restrain named to specified number of cores when running via taskset, cpuset, or numactl
Reduce default max-recursion-queries value from 100 to 32
Raise the log level of priming failures

Bug fixes:

https://gitlab.isc.org/isc-projects/bind9/-/issues/4855 - Fix privacy verification of EDDSA keys
https://gitlab.isc.org/isc-projects/bind9/-/issues/4878 - Fix algorithm rollover bug when there are two keys with the same keytag
https://gitlab.isc.org/isc-projects/bind9/-/issues/4449 - Return SERVFAIL for a too long CNAME chain
https://gitlab.isc.org/isc-projects/bind9/-/issues/4733 - Reconfigure catz member zones during named reconfiguration
https://gitlab.isc.org/isc-projects/bind9/-/issues/4677 - Update key lifetime and metadata after dnssec-policy reconfiguration
https://gitlab.isc.org/isc-projects/bind9/-/issues/4766 - Fix generation of 6to4-self name expansion from IPv4 address
https://gitlab.isc.org/isc-projects/bind9/-/issues/4796 - Fix invalid dig +yaml output
https://gitlab.isc.org/isc-projects/bind9/-/issues/4775 - Reject zero-length ALPN during SVBC ALPN text parsing
https://gitlab.isc.org/isc-projects/bind9/-/issues/4784 - Fix false QNAME minimisation error being reported
https://gitlab.isc.org/isc-projects/bind9/-/issues/4806 - Fix dig +timeout argument when using +https

Full release notes available here - https://bind9.readthedocs.io/en/v9.18.30/notes.html

[Test Plan]

DEP-8 Tests:

simpletest - Confirms bind9 daemon starts successfully and dig can find 127.0.0.1 through the default setup of bind9

zonetest - Added in this update, currently in lunar. Confirms the functionality of named and bind9 by creating a local DNS zone and domain, and having dig look it up

dyndb-ldap - Verifies functionality of bind-dyndb-ldap against the updated bind9 package with a basic setup. This also fails intentionally prior to bind-dyndb-ldap being rebuilt against the package, as this is a necessary step for bind9 updates.

validation - This test is provided by Debian and consistently fails both before and after the update due to several issues. It is marked as flaky, and does not block autopkgtest passing overall

[Regression Potential]

Upstream has an extensive build and integration test suite. So regressions would likely arise from a change in interaction with Ubuntu-specific integrations. Alternatively, regressions may arise for users due to behavior changes from the many bug fixes and minor feature updates.

See original description

Related branches

~lvoytek/ubuntu/+source/bind9:backport-9.18.30-focal
git-ubuntu bot: Approve
Bryce Harrington (community): Approve
Canonical Server Reporter: Pending requested
Diff: 142183 lines (+73568/-45847)
190 files modified
CHANGES (+15545/-14984)
ChangeLog (+15545/-14984)
NEWS (+15545/-14984)
README.md (+1/-32)
bin/check/named-checkconf.c (+8/-8)
bin/check/named-checkzone.c (+19/-19)
bin/confgen/rndc-confgen.c (+6/-5)
bin/confgen/tsig-keygen.c (+10/-10)
bin/confgen/util.c (+4/-2)
bin/delv/delv.c (+14/-6)
bin/dig/dig.c (+8/-13)
bin/dig/dighost.c (+12/-12)
bin/dig/host.c (+3/-2)
bin/dig/nslookup.c (+3/-2)
bin/dnssec/dnssec-cds.c (+3/-2)
bin/dnssec/dnssec-dsfromkey.c (+2/-2)
bin/dnssec/dnssec-importkey.c (+2/-2)
bin/dnssec/dnssec-keyfromlabel.c (+3/-3)
bin/dnssec/dnssec-keygen.c (+2/-2)
bin/dnssec/dnssec-revoke.c (+2/-2)
bin/dnssec/dnssec-settime.c (+2/-2)
bin/dnssec/dnssec-signzone.c (+5/-5)
bin/dnssec/dnssec-verify.c (+2/-2)
bin/dnssec/dnssectool.c (+3/-2)
bin/named/config.c (+2/-1)
bin/named/main.c (+7/-7)
bin/named/os.c (+2/-2)
bin/named/server.c (+145/-30)
bin/nsupdate/nsupdate.c (+17/-17)
bin/rndc/rndc.c (+1/-1)
bin/rndc/util.c (+2/-1)
bin/tests/convert-trs-to-junit.py (+1/-1)
bin/tests/system/Makefile.am (+1/-0)
bin/tests/system/Makefile.in (+8/-0)
bin/tests/system/catz/ns2/named1.conf.in (+1/-0)
bin/tests/system/catz/tests.sh (+17/-0)
bin/tests/system/chain/ns7/named.conf.in (+20/-3)
bin/tests/system/chain/tests.sh (+16/-4)
bin/tests/system/checkconf/good.conf (+2/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn1.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn2.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn3.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn4.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn5.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn6.db (+17/-0)
bin/tests/system/conf.sh.common (+1/-1)
bin/tests/system/cpu/clean.sh (+16/-0)
bin/tests/system/cpu/ns1/named.conf.in (+20/-0)
bin/tests/system/cpu/prereq.sh (+21/-0)
bin/tests/system/cpu/setup.sh (+21/-0)
bin/tests/system/cpu/tests.sh (+65/-0)
bin/tests/system/cpu/tests_sh_cpu.py (+14/-0)
bin/tests/system/digdelv/ns2/example.db.in (+39/-0)
bin/tests/system/digdelv/tests.sh (+65/-0)
bin/tests/system/dnssec/tests.sh (+2/-2)
bin/tests/system/doth/get_openssl_version.py (+1/-1)
bin/tests/system/doth/stress_http_quota.py (+1/-1)
bin/tests/system/ifconfig.sh.in (+20/-3)
bin/tests/system/isctest/__init__.py (+2/-0)
bin/tests/system/isctest/check.py (+24/-0)
bin/tests/system/isctest/hypothesis/__init__.py (+18/-0)
bin/tests/system/isctest/hypothesis/settings.py (+18/-0)
bin/tests/system/isctest/hypothesis/strategies.py (+170/-0)
bin/tests/system/isctest/mark.py (+4/-0)
bin/tests/system/isctest/name.py (+20/-0)
bin/tests/system/isctest/query.py (+4/-2)
bin/tests/system/kasp.sh (+24/-18)
bin/tests/system/kasp/ns6/named.conf.in (+28/-6)
bin/tests/system/kasp/ns6/named2.conf.in (+28/-6)
bin/tests/system/kasp/ns6/policies/kasp-fips.conf.in (+23/-0)
bin/tests/system/kasp/ns6/setup.sh (+5/-0)
bin/tests/system/kasp/tests.sh (+69/-16)
bin/tests/system/nsupdate/clean.sh (+1/-0)
bin/tests/system/nsupdate/ns10/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns5/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns6/2.0.0.2.ip6.addr.db.in (+21/-0)
bin/tests/system/nsupdate/ns6/named.conf.in (+10/-0)
bin/tests/system/nsupdate/ns7/named1.conf.in (+1/-0)
bin/tests/system/nsupdate/ns7/named2.conf.in (+1/-0)
bin/tests/system/nsupdate/ns8/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns9/named.conf.in (+1/-0)
bin/tests/system/nsupdate/setup.sh (+1/-0)
bin/tests/system/nsupdate/tests.sh (+84/-0)
bin/tests/system/org.isc.bind.system (+2/-0)
bin/tests/system/pipelined/pipequeries.c (+4/-4)
bin/tests/system/qmin/clean.sh (+3/-2)
bin/tests/system/qmin/ns1/root.db (+3/-0)
bin/tests/system/qmin/ns5/in-addr.arpa.db (+21/-0)
bin/tests/system/qmin/ns5/named.conf.in (+6/-0)
bin/tests/system/qmin/ns7/named.conf.in (+1/-0)
bin/tests/system/qmin/tests.sh (+11/-0)
bin/tests/system/reclimit/ns3/named1.conf.in (+1/-0)
bin/tests/system/resolve.c (+21/-21)
bin/tests/system/resolver/ans3/ans.pl (+3/-0)
bin/tests/system/resolver/ns1/named.conf.in (+1/-0)
bin/tests/system/resolver/tests.sh (+12/-1)
bin/tests/system/rsabigexponent/bigkey.c (+3/-3)
bin/tests/system/statschannel/ns2/sign.sh (+2/-1)
bin/tests/system/statschannel/tests_json.py (+1/-0)
bin/tests/system/statschannel/tests_xml.py (+1/-0)
bin/tests/system/tkey/keycreate.c (+4/-4)
bin/tests/system/tkey/keydelete.c (+5/-5)
bin/tests/system/wildcard/ns1/named.conf.in (+6/-0)
bin/tests/system/wildcard/ns1/nestedwild.db.in (+16/-0)
bin/tests/system/wildcard/ns1/sign.sh (+1/-0)
bin/tests/system/wildcard/tests_wildcard.py (+125/-44)
bin/tests/test_client.c (+1/-1)
bin/tests/test_server.c (+1/-1)
bin/tests/wire_test.c (+7/-7)
bin/tools/dnstap-read.c (+3/-2)
bin/tools/mdig.c (+10/-11)
bin/tools/named-journalprint.c (+2/-2)
bin/tools/named-nzd2nzf.c (+9/-8)
bin/tools/named-rrchecker.c (+6/-5)
bin/tools/nsec3hash.c (+3/-2)
config.h.in (+9/-6)
configure (+59/-56)
configure.ac (+14/-7)
contrib/README (+4/-0)
contrib/gitchangelog/changelog.rc.py (+340/-0)
contrib/gitchangelog/gitchangelog.py (+2275/-0)
contrib/gitchangelog/gitchangelog.spdx (+11/-0)
contrib/gitchangelog/relnotes.rc.py (+77/-0)
debian/changelog (+28/-0)
doc/arm/Makefile.am (+1/-0)
doc/arm/Makefile.in (+1/-0)
doc/arm/_ext/iscconf.py (+7/-7)
doc/arm/changelog.rst (+21677/-0)
doc/arm/index.rst (+1/-0)
doc/arm/notes.rst (+6/-2)
doc/arm/platforms.inc.rst (+6/-3)
doc/arm/reference.rst (+24/-10)
doc/man/named.conf.5in (+2/-0)
doc/misc/cfg_test.c (+5/-5)
doc/misc/options (+2/-0)
doc/notes/notes-9.18.29.rst (+98/-0)
doc/notes/notes-9.18.30.rst (+61/-0)
lib/bind9/check.c (+14/-0)
lib/dns/adb.c (+0/-4)
lib/dns/catz.c (+7/-0)
lib/dns/client.c (+18/-4)
lib/dns/gen.c (+17/-17)
lib/dns/include/dns/catz.h (+9/-0)
lib/dns/include/dns/client.h (+13/-0)
lib/dns/include/dns/db.h (+1/-0)
lib/dns/include/dns/validator.h (+8/-7)
lib/dns/include/dns/view.h (+13/-0)
lib/dns/keymgr.c (+42/-13)
lib/dns/masterdump.c (+58/-17)
lib/dns/message.c (+1/-11)
lib/dns/openssl_link.c (+1/-1)
lib/dns/openssleddsa_link.c (+9/-2)
lib/dns/rbtdb.c (+5/-1)
lib/dns/rdata.c (+10/-5)
lib/dns/rdata/generic/opt_41.c (+2/-2)
lib/dns/resolver.c (+73/-19)
lib/dns/ssu.c (+6/-7)
lib/dns/validator.c (+10/-2)
lib/dns/view.c (+16/-0)
lib/isc/app.c (+1/-1)
lib/isc/include/isc/attributes.h (+2/-0)
lib/isc/include/isc/thread.h (+1/-1)
lib/isc/include/isc/time.h (+9/-8)
lib/isc/interfaceiter.c (+0/-149)
lib/isc/jemalloc_shim.h (+2/-70)
lib/isc/log.c (+8/-4)
lib/isc/meminfo.c (+2/-2)
lib/isc/netmgr/netmgr-int.h (+2/-2)
lib/isc/netmgr/tcp.c (+2/-1)
lib/isc/netmgr/tcpdns.c (+2/-1)
lib/isc/netmgr/tlsdns.c (+2/-1)
lib/isc/netmgr/tlsstream.c (+5/-0)
lib/isc/netmgr/udp.c (+2/-1)
lib/isc/netmgr/uv-compat.h (+4/-0)
lib/isc/os.c (+79/-2)
lib/isc/stdtime.c (+2/-1)
lib/isc/task.c (+12/-0)
lib/isc/time.c (+2/-2)
lib/isc/tls.c (+2/-0)
lib/isccfg/namedconf.c (+1/-0)
lib/ns/include/ns/server.h (+1/-0)
lib/ns/query.c (+49/-17)
lib/ns/server.c (+1/-1)
ltmain.sh (+8/-20)
srcid (+1/-1)
tests/dns/rdata_test.c (+4/-2)
tests/dns/tsig_test.c (+0/-2)
tests/include/tests/isc.h (+84/-14)
tests/libtest/dns.c (+2/-2)
tests/libtest/isc.c (+1/-0)
~lvoytek/ubuntu/+source/bind9:backport-9.18.30-jammy
git-ubuntu bot: Approve
Bryce Harrington (community): Approve
Canonical Server Reporter: Pending requested
Diff: 142183 lines (+73568/-45847)
190 files modified
CHANGES (+15545/-14984)
ChangeLog (+15545/-14984)
NEWS (+15545/-14984)
README.md (+1/-32)
bin/check/named-checkconf.c (+8/-8)
bin/check/named-checkzone.c (+19/-19)
bin/confgen/rndc-confgen.c (+6/-5)
bin/confgen/tsig-keygen.c (+10/-10)
bin/confgen/util.c (+4/-2)
bin/delv/delv.c (+14/-6)
bin/dig/dig.c (+8/-13)
bin/dig/dighost.c (+12/-12)
bin/dig/host.c (+3/-2)
bin/dig/nslookup.c (+3/-2)
bin/dnssec/dnssec-cds.c (+3/-2)
bin/dnssec/dnssec-dsfromkey.c (+2/-2)
bin/dnssec/dnssec-importkey.c (+2/-2)
bin/dnssec/dnssec-keyfromlabel.c (+3/-3)
bin/dnssec/dnssec-keygen.c (+2/-2)
bin/dnssec/dnssec-revoke.c (+2/-2)
bin/dnssec/dnssec-settime.c (+2/-2)
bin/dnssec/dnssec-signzone.c (+5/-5)
bin/dnssec/dnssec-verify.c (+2/-2)
bin/dnssec/dnssectool.c (+3/-2)
bin/named/config.c (+2/-1)
bin/named/main.c (+7/-7)
bin/named/os.c (+2/-2)
bin/named/server.c (+145/-30)
bin/nsupdate/nsupdate.c (+17/-17)
bin/rndc/rndc.c (+1/-1)
bin/rndc/util.c (+2/-1)
bin/tests/convert-trs-to-junit.py (+1/-1)
bin/tests/system/Makefile.am (+1/-0)
bin/tests/system/Makefile.in (+8/-0)
bin/tests/system/catz/ns2/named1.conf.in (+1/-0)
bin/tests/system/catz/tests.sh (+17/-0)
bin/tests/system/chain/ns7/named.conf.in (+20/-3)
bin/tests/system/chain/tests.sh (+16/-4)
bin/tests/system/checkconf/good.conf (+2/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn1.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn2.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn3.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn4.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn5.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn6.db (+17/-0)
bin/tests/system/conf.sh.common (+1/-1)
bin/tests/system/cpu/clean.sh (+16/-0)
bin/tests/system/cpu/ns1/named.conf.in (+20/-0)
bin/tests/system/cpu/prereq.sh (+21/-0)
bin/tests/system/cpu/setup.sh (+21/-0)
bin/tests/system/cpu/tests.sh (+65/-0)
bin/tests/system/cpu/tests_sh_cpu.py (+14/-0)
bin/tests/system/digdelv/ns2/example.db.in (+39/-0)
bin/tests/system/digdelv/tests.sh (+65/-0)
bin/tests/system/dnssec/tests.sh (+2/-2)
bin/tests/system/doth/get_openssl_version.py (+1/-1)
bin/tests/system/doth/stress_http_quota.py (+1/-1)
bin/tests/system/ifconfig.sh.in (+20/-3)
bin/tests/system/isctest/__init__.py (+2/-0)
bin/tests/system/isctest/check.py (+24/-0)
bin/tests/system/isctest/hypothesis/__init__.py (+18/-0)
bin/tests/system/isctest/hypothesis/settings.py (+18/-0)
bin/tests/system/isctest/hypothesis/strategies.py (+170/-0)
bin/tests/system/isctest/mark.py (+4/-0)
bin/tests/system/isctest/name.py (+20/-0)
bin/tests/system/isctest/query.py (+4/-2)
bin/tests/system/kasp.sh (+24/-18)
bin/tests/system/kasp/ns6/named.conf.in (+28/-6)
bin/tests/system/kasp/ns6/named2.conf.in (+28/-6)
bin/tests/system/kasp/ns6/policies/kasp-fips.conf.in (+23/-0)
bin/tests/system/kasp/ns6/setup.sh (+5/-0)
bin/tests/system/kasp/tests.sh (+69/-16)
bin/tests/system/nsupdate/clean.sh (+1/-0)
bin/tests/system/nsupdate/ns10/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns5/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns6/2.0.0.2.ip6.addr.db.in (+21/-0)
bin/tests/system/nsupdate/ns6/named.conf.in (+10/-0)
bin/tests/system/nsupdate/ns7/named1.conf.in (+1/-0)
bin/tests/system/nsupdate/ns7/named2.conf.in (+1/-0)
bin/tests/system/nsupdate/ns8/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns9/named.conf.in (+1/-0)
bin/tests/system/nsupdate/setup.sh (+1/-0)
bin/tests/system/nsupdate/tests.sh (+84/-0)
bin/tests/system/org.isc.bind.system (+2/-0)
bin/tests/system/pipelined/pipequeries.c (+4/-4)
bin/tests/system/qmin/clean.sh (+3/-2)
bin/tests/system/qmin/ns1/root.db (+3/-0)
bin/tests/system/qmin/ns5/in-addr.arpa.db (+21/-0)
bin/tests/system/qmin/ns5/named.conf.in (+6/-0)
bin/tests/system/qmin/ns7/named.conf.in (+1/-0)
bin/tests/system/qmin/tests.sh (+11/-0)
bin/tests/system/reclimit/ns3/named1.conf.in (+1/-0)
bin/tests/system/resolve.c (+21/-21)
bin/tests/system/resolver/ans3/ans.pl (+3/-0)
bin/tests/system/resolver/ns1/named.conf.in (+1/-0)
bin/tests/system/resolver/tests.sh (+12/-1)
bin/tests/system/rsabigexponent/bigkey.c (+3/-3)
bin/tests/system/statschannel/ns2/sign.sh (+2/-1)
bin/tests/system/statschannel/tests_json.py (+1/-0)
bin/tests/system/statschannel/tests_xml.py (+1/-0)
bin/tests/system/tkey/keycreate.c (+4/-4)
bin/tests/system/tkey/keydelete.c (+5/-5)
bin/tests/system/wildcard/ns1/named.conf.in (+6/-0)
bin/tests/system/wildcard/ns1/nestedwild.db.in (+16/-0)
bin/tests/system/wildcard/ns1/sign.sh (+1/-0)
bin/tests/system/wildcard/tests_wildcard.py (+125/-44)
bin/tests/test_client.c (+1/-1)
bin/tests/test_server.c (+1/-1)
bin/tests/wire_test.c (+7/-7)
bin/tools/dnstap-read.c (+3/-2)
bin/tools/mdig.c (+10/-11)
bin/tools/named-journalprint.c (+2/-2)
bin/tools/named-nzd2nzf.c (+9/-8)
bin/tools/named-rrchecker.c (+6/-5)
bin/tools/nsec3hash.c (+3/-2)
config.h.in (+9/-6)
configure (+59/-56)
configure.ac (+14/-7)
contrib/README (+4/-0)
contrib/gitchangelog/changelog.rc.py (+340/-0)
contrib/gitchangelog/gitchangelog.py (+2275/-0)
contrib/gitchangelog/gitchangelog.spdx (+11/-0)
contrib/gitchangelog/relnotes.rc.py (+77/-0)
debian/changelog (+28/-0)
doc/arm/Makefile.am (+1/-0)
doc/arm/Makefile.in (+1/-0)
doc/arm/_ext/iscconf.py (+7/-7)
doc/arm/changelog.rst (+21677/-0)
doc/arm/index.rst (+1/-0)
doc/arm/notes.rst (+6/-2)
doc/arm/platforms.inc.rst (+6/-3)
doc/arm/reference.rst (+24/-10)
doc/man/named.conf.5in (+2/-0)
doc/misc/cfg_test.c (+5/-5)
doc/misc/options (+2/-0)
doc/notes/notes-9.18.29.rst (+98/-0)
doc/notes/notes-9.18.30.rst (+61/-0)
lib/bind9/check.c (+14/-0)
lib/dns/adb.c (+0/-4)
lib/dns/catz.c (+7/-0)
lib/dns/client.c (+18/-4)
lib/dns/gen.c (+17/-17)
lib/dns/include/dns/catz.h (+9/-0)
lib/dns/include/dns/client.h (+13/-0)
lib/dns/include/dns/db.h (+1/-0)
lib/dns/include/dns/validator.h (+8/-7)
lib/dns/include/dns/view.h (+13/-0)
lib/dns/keymgr.c (+42/-13)
lib/dns/masterdump.c (+58/-17)
lib/dns/message.c (+1/-11)
lib/dns/openssl_link.c (+1/-1)
lib/dns/openssleddsa_link.c (+9/-2)
lib/dns/rbtdb.c (+5/-1)
lib/dns/rdata.c (+10/-5)
lib/dns/rdata/generic/opt_41.c (+2/-2)
lib/dns/resolver.c (+73/-19)
lib/dns/ssu.c (+6/-7)
lib/dns/validator.c (+10/-2)
lib/dns/view.c (+16/-0)
lib/isc/app.c (+1/-1)
lib/isc/include/isc/attributes.h (+2/-0)
lib/isc/include/isc/thread.h (+1/-1)
lib/isc/include/isc/time.h (+9/-8)
lib/isc/interfaceiter.c (+0/-149)
lib/isc/jemalloc_shim.h (+2/-70)
lib/isc/log.c (+8/-4)
lib/isc/meminfo.c (+2/-2)
lib/isc/netmgr/netmgr-int.h (+2/-2)
lib/isc/netmgr/tcp.c (+2/-1)
lib/isc/netmgr/tcpdns.c (+2/-1)
lib/isc/netmgr/tlsdns.c (+2/-1)
lib/isc/netmgr/tlsstream.c (+5/-0)
lib/isc/netmgr/udp.c (+2/-1)
lib/isc/netmgr/uv-compat.h (+4/-0)
lib/isc/os.c (+79/-2)
lib/isc/stdtime.c (+2/-1)
lib/isc/task.c (+12/-0)
lib/isc/time.c (+2/-2)
lib/isc/tls.c (+2/-0)
lib/isccfg/namedconf.c (+1/-0)
lib/ns/include/ns/server.h (+1/-0)
lib/ns/query.c (+49/-17)
lib/ns/server.c (+1/-1)
ltmain.sh (+8/-20)
srcid (+1/-1)
tests/dns/rdata_test.c (+4/-2)
tests/dns/tsig_test.c (+0/-2)
tests/include/tests/isc.h (+84/-14)
tests/libtest/dns.c (+2/-2)
tests/libtest/isc.c (+1/-0)
~lvoytek/ubuntu/+source/bind9:backport-9.18.30-noble
git-ubuntu bot: Approve
Bryce Harrington (community): Approve
Canonical Server Reporter: Pending requested
Diff: 142329 lines (+73586/-45870)
191 files modified
CHANGES (+15545/-14984)
ChangeLog (+15545/-14984)
NEWS (+15545/-14984)
README.md (+1/-32)
bin/check/named-checkconf.c (+8/-8)
bin/check/named-checkzone.c (+19/-19)
bin/confgen/rndc-confgen.c (+6/-5)
bin/confgen/tsig-keygen.c (+10/-10)
bin/confgen/util.c (+4/-2)
bin/delv/delv.c (+14/-6)
bin/dig/dig.c (+8/-13)
bin/dig/dighost.c (+12/-12)
bin/dig/host.c (+3/-2)
bin/dig/nslookup.c (+3/-2)
bin/dnssec/dnssec-cds.c (+3/-2)
bin/dnssec/dnssec-dsfromkey.c (+2/-2)
bin/dnssec/dnssec-importkey.c (+2/-2)
bin/dnssec/dnssec-keyfromlabel.c (+3/-3)
bin/dnssec/dnssec-keygen.c (+2/-2)
bin/dnssec/dnssec-revoke.c (+2/-2)
bin/dnssec/dnssec-settime.c (+2/-2)
bin/dnssec/dnssec-signzone.c (+5/-5)
bin/dnssec/dnssec-verify.c (+2/-2)
bin/dnssec/dnssectool.c (+3/-2)
bin/named/config.c (+2/-1)
bin/named/main.c (+7/-7)
bin/named/os.c (+2/-2)
bin/named/server.c (+145/-30)
bin/nsupdate/nsupdate.c (+17/-17)
bin/rndc/rndc.c (+1/-1)
bin/rndc/util.c (+2/-1)
bin/tests/convert-trs-to-junit.py (+1/-1)
bin/tests/system/Makefile.am (+1/-0)
bin/tests/system/Makefile.in (+8/-0)
bin/tests/system/catz/ns2/named1.conf.in (+1/-0)
bin/tests/system/catz/tests.sh (+17/-0)
bin/tests/system/chain/ns7/named.conf.in (+20/-3)
bin/tests/system/chain/tests.sh (+16/-4)
bin/tests/system/checkconf/good.conf (+2/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn1.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn2.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn3.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn4.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn5.db (+17/-0)
bin/tests/system/checkzone/zones/bad-svcb-alpn6.db (+17/-0)
bin/tests/system/conf.sh.common (+1/-1)
bin/tests/system/cpu/clean.sh (+16/-0)
bin/tests/system/cpu/ns1/named.conf.in (+20/-0)
bin/tests/system/cpu/prereq.sh (+21/-0)
bin/tests/system/cpu/setup.sh (+21/-0)
bin/tests/system/cpu/tests.sh (+65/-0)
bin/tests/system/cpu/tests_sh_cpu.py (+14/-0)
bin/tests/system/digdelv/ns2/example.db.in (+39/-0)
bin/tests/system/digdelv/tests.sh (+65/-0)
bin/tests/system/dnssec/tests.sh (+2/-2)
bin/tests/system/doth/get_openssl_version.py (+1/-1)
bin/tests/system/doth/stress_http_quota.py (+1/-1)
bin/tests/system/ifconfig.sh.in (+20/-3)
bin/tests/system/isctest/__init__.py (+2/-0)
bin/tests/system/isctest/check.py (+24/-0)
bin/tests/system/isctest/hypothesis/__init__.py (+18/-0)
bin/tests/system/isctest/hypothesis/settings.py (+18/-0)
bin/tests/system/isctest/hypothesis/strategies.py (+170/-0)
bin/tests/system/isctest/mark.py (+4/-0)
bin/tests/system/isctest/name.py (+20/-0)
bin/tests/system/isctest/query.py (+4/-2)
bin/tests/system/kasp.sh (+24/-18)
bin/tests/system/kasp/ns6/named.conf.in (+28/-6)
bin/tests/system/kasp/ns6/named2.conf.in (+28/-6)
bin/tests/system/kasp/ns6/policies/kasp-fips.conf.in (+23/-0)
bin/tests/system/kasp/ns6/setup.sh (+5/-0)
bin/tests/system/kasp/tests.sh (+69/-16)
bin/tests/system/nsupdate/clean.sh (+1/-0)
bin/tests/system/nsupdate/ns10/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns5/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns6/2.0.0.2.ip6.addr.db.in (+21/-0)
bin/tests/system/nsupdate/ns6/named.conf.in (+10/-0)
bin/tests/system/nsupdate/ns7/named1.conf.in (+1/-0)
bin/tests/system/nsupdate/ns7/named2.conf.in (+1/-0)
bin/tests/system/nsupdate/ns8/named.conf.in (+1/-0)
bin/tests/system/nsupdate/ns9/named.conf.in (+1/-0)
bin/tests/system/nsupdate/setup.sh (+1/-0)
bin/tests/system/nsupdate/tests.sh (+84/-0)
bin/tests/system/org.isc.bind.system (+2/-0)
bin/tests/system/pipelined/pipequeries.c (+4/-4)
bin/tests/system/qmin/clean.sh (+3/-2)
bin/tests/system/qmin/ns1/root.db (+3/-0)
bin/tests/system/qmin/ns5/in-addr.arpa.db (+21/-0)
bin/tests/system/qmin/ns5/named.conf.in (+6/-0)
bin/tests/system/qmin/ns7/named.conf.in (+1/-0)
bin/tests/system/qmin/tests.sh (+11/-0)
bin/tests/system/reclimit/ns3/named1.conf.in (+1/-0)
bin/tests/system/resolve.c (+21/-21)
bin/tests/system/resolver/ans3/ans.pl (+3/-0)
bin/tests/system/resolver/ns1/named.conf.in (+1/-0)
bin/tests/system/resolver/tests.sh (+12/-1)
bin/tests/system/rsabigexponent/bigkey.c (+3/-3)
bin/tests/system/statschannel/ns2/sign.sh (+2/-1)
bin/tests/system/statschannel/tests_json.py (+1/-0)
bin/tests/system/statschannel/tests_xml.py (+1/-0)
bin/tests/system/tkey/keycreate.c (+4/-4)
bin/tests/system/tkey/keydelete.c (+5/-5)
bin/tests/system/wildcard/ns1/named.conf.in (+6/-0)
bin/tests/system/wildcard/ns1/nestedwild.db.in (+16/-0)
bin/tests/system/wildcard/ns1/sign.sh (+1/-0)
bin/tests/system/wildcard/tests_wildcard.py (+125/-44)
bin/tests/test_client.c (+1/-1)
bin/tests/test_server.c (+1/-1)
bin/tests/wire_test.c (+7/-7)
bin/tools/dnstap-read.c (+3/-2)
bin/tools/mdig.c (+10/-11)
bin/tools/named-journalprint.c (+2/-2)
bin/tools/named-nzd2nzf.c (+9/-8)
bin/tools/named-rrchecker.c (+6/-5)
bin/tools/nsec3hash.c (+3/-2)
config.h.in (+9/-6)
configure (+59/-56)
configure.ac (+14/-7)
contrib/README (+4/-0)
contrib/gitchangelog/changelog.rc.py (+340/-0)
contrib/gitchangelog/gitchangelog.py (+2275/-0)
contrib/gitchangelog/gitchangelog.spdx (+11/-0)
contrib/gitchangelog/relnotes.rc.py (+77/-0)
debian/changelog (+30/-0)
debian/patches/0002-Add-support-for-reporting-status-via-sd_notify.patch (+16/-23)
doc/arm/Makefile.am (+1/-0)
doc/arm/Makefile.in (+1/-0)
doc/arm/_ext/iscconf.py (+7/-7)
doc/arm/changelog.rst (+21677/-0)
doc/arm/index.rst (+1/-0)
doc/arm/notes.rst (+6/-2)
doc/arm/platforms.inc.rst (+6/-3)
doc/arm/reference.rst (+24/-10)
doc/man/named.conf.5in (+2/-0)
doc/misc/cfg_test.c (+5/-5)
doc/misc/options (+2/-0)
doc/notes/notes-9.18.29.rst (+98/-0)
doc/notes/notes-9.18.30.rst (+61/-0)
lib/bind9/check.c (+14/-0)
lib/dns/adb.c (+0/-4)
lib/dns/catz.c (+7/-0)
lib/dns/client.c (+18/-4)
lib/dns/gen.c (+17/-17)
lib/dns/include/dns/catz.h (+9/-0)
lib/dns/include/dns/client.h (+13/-0)
lib/dns/include/dns/db.h (+1/-0)
lib/dns/include/dns/validator.h (+8/-7)
lib/dns/include/dns/view.h (+13/-0)
lib/dns/keymgr.c (+42/-13)
lib/dns/masterdump.c (+58/-17)
lib/dns/message.c (+1/-11)
lib/dns/openssl_link.c (+1/-1)
lib/dns/openssleddsa_link.c (+9/-2)
lib/dns/rbtdb.c (+5/-1)
lib/dns/rdata.c (+10/-5)
lib/dns/rdata/generic/opt_41.c (+2/-2)
lib/dns/resolver.c (+73/-19)
lib/dns/ssu.c (+6/-7)
lib/dns/validator.c (+10/-2)
lib/dns/view.c (+16/-0)
lib/isc/app.c (+1/-1)
lib/isc/include/isc/attributes.h (+2/-0)
lib/isc/include/isc/thread.h (+1/-1)
lib/isc/include/isc/time.h (+9/-8)
lib/isc/interfaceiter.c (+0/-149)
lib/isc/jemalloc_shim.h (+2/-70)
lib/isc/log.c (+8/-4)
lib/isc/meminfo.c (+2/-2)
lib/isc/netmgr/netmgr-int.h (+2/-2)
lib/isc/netmgr/tcp.c (+2/-1)
lib/isc/netmgr/tcpdns.c (+2/-1)
lib/isc/netmgr/tlsdns.c (+2/-1)
lib/isc/netmgr/tlsstream.c (+5/-0)
lib/isc/netmgr/udp.c (+2/-1)
lib/isc/netmgr/uv-compat.h (+4/-0)
lib/isc/os.c (+79/-2)
lib/isc/stdtime.c (+2/-1)
lib/isc/task.c (+12/-0)
lib/isc/time.c (+2/-2)
lib/isc/tls.c (+2/-0)
lib/isccfg/namedconf.c (+1/-0)
lib/ns/include/ns/server.h (+1/-0)
lib/ns/query.c (+49/-17)
lib/ns/server.c (+1/-1)
ltmain.sh (+8/-20)
srcid (+1/-1)
tests/dns/rdata_test.c (+4/-2)
tests/dns/tsig_test.c (+0/-2)
tests/include/tests/isc.h (+84/-14)
tests/libtest/dns.c (+2/-2)
tests/libtest/isc.c (+1/-0)
Bryce Harrington (bryce)
Changed in bind9 (Ubuntu):
importance: Undecided → Wishlist
milestone: none → ubuntu-24.08
Lena Voytek (lvoytek)
Changed in bind9 (Ubuntu):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind9 (Ubuntu Jammy):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind9 (Ubuntu Focal):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind9 (Ubuntu Noble):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind9 (Ubuntu):
milestone: ubuntu-24.08 → ubuntu-24.09
Revision history for this message
Lena Voytek (lvoytek) wrote :

9.18.30 was just released so now is the ideal time to update. noble, jammy, and focal all match now after the recent security vulnerabilities, so all will be updated from 9.18.28 to 9.18.30

Changed in bind9 (Ubuntu):
status: New → In Progress
Changed in bind9 (Ubuntu Focal):
status: New → In Progress
Changed in bind9 (Ubuntu Jammy):
status: New → In Progress
Changed in bind9 (Ubuntu Noble):
status: New → In Progress
Lena Voytek (lvoytek)
Changed in bind-dyndb-ldap (Ubuntu):
status: New → In Progress
Changed in bind-dyndb-ldap (Ubuntu Focal):
status: New → In Progress
Changed in bind-dyndb-ldap (Ubuntu Jammy):
status: New → In Progress
Changed in bind-dyndb-ldap (Ubuntu Noble):
status: New → In Progress
Changed in bind-dyndb-ldap (Ubuntu):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind-dyndb-ldap (Ubuntu Focal):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind-dyndb-ldap (Ubuntu Jammy):
assignee: nobody → Lena Voytek (lvoytek)
Changed in bind-dyndb-ldap (Ubuntu Noble):
assignee: nobody → Lena Voytek (lvoytek)
Lena Voytek (lvoytek)
description: updated
Lena Voytek (lvoytek)
Changed in bind-dyndb-ldap (Ubuntu):
milestone: none → ubuntu-24.09
Revision history for this message
Timo Aaltonen (tjaalton) wrote : Please test proposed package

Hello Bryce, or anyone else affected,

Accepted bind9 into noble-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind9/1:9.18.30-0ubuntu0.24.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-noble to verification-done-noble. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-noble. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Changed in bind9 (Ubuntu Noble):
status: In Progress → Fix Committed
tags: added: verification-needed verification-needed-noble
Changed in bind9 (Ubuntu Jammy):
status: In Progress → Fix Committed
tags: added: verification-needed-jammy
Revision history for this message
Timo Aaltonen (tjaalton) wrote :

Hello Bryce, or anyone else affected,

Accepted bind9 into jammy-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind9/1:9.18.30-0ubuntu0.22.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-jammy to verification-done-jammy. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-jammy. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Changed in bind9 (Ubuntu Focal):
status: In Progress → Fix Committed
tags: added: verification-needed-focal
Revision history for this message
Timo Aaltonen (tjaalton) wrote :

Hello Bryce, or anyone else affected,

Accepted bind9 into focal-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind9/1:9.18.30-0ubuntu0.20.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-focal to verification-done-focal. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-focal. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Revision history for this message
Ubuntu SRU Bot (ubuntu-sru-bot) wrote : Autopkgtest regression report (bind9/1:9.18.30-0ubuntu0.20.04.1)

All autopkgtests for the newly accepted bind9 (1:9.18.30-0ubuntu0.20.04.1) for focal have finished running.
The following regressions have been reported in tests triggered by the package:

bind9/1:9.18.30-0ubuntu0.20.04.1 (armhf)

Please visit the excuses page listed below and investigate the failures, proceeding afterwards as per the StableReleaseUpdates policy regarding autopkgtest regressions [1].

https://people.canonical.com/~ubuntu-archive/proposed-migration/focal/update_excuses.html#bind9

[1] https://wiki.ubuntu.com/StableReleaseUpdates#Autopkgtest_Regressions

Thank you!

Revision history for this message
Ubuntu SRU Bot (ubuntu-sru-bot) wrote : Autopkgtest regression report (bind9/1:9.18.30-0ubuntu0.22.04.1)

All autopkgtests for the newly accepted bind9 (1:9.18.30-0ubuntu0.22.04.1) for jammy have finished running.
The following regressions have been reported in tests triggered by the package:

bind-dyndb-ldap/11.9-5ubuntu0.22.04.8 (amd64, arm64, ppc64el, s390x)
bind9/1:9.18.30-0ubuntu0.22.04.1 (amd64, arm64, ppc64el, s390x)

Please visit the excuses page listed below and investigate the failures, proceeding afterwards as per the StableReleaseUpdates policy regarding autopkgtest regressions [1].

https://people.canonical.com/~ubuntu-archive/proposed-migration/jammy/update_excuses.html#bind9

[1] https://wiki.ubuntu.com/StableReleaseUpdates#Autopkgtest_Regressions

Thank you!

Revision history for this message
Andreas Hasenack (ahasenack) wrote : Please test proposed package

Hello Bryce, or anyone else affected,

Accepted bind-dyndb-ldap into noble-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind-dyndb-ldap/11.10-6ubuntu11.24.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-noble to verification-done-noble. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-noble. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Changed in bind-dyndb-ldap (Ubuntu Noble):
status: In Progress → Fix Committed
Changed in bind-dyndb-ldap (Ubuntu Jammy):
status: In Progress → Fix Committed
Revision history for this message
Andreas Hasenack (ahasenack) wrote :

Hello Bryce, or anyone else affected,

Accepted bind-dyndb-ldap into jammy-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind-dyndb-ldap/11.9-5ubuntu0.22.04.9 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-jammy to verification-done-jammy. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-jammy. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Revision history for this message
Andreas Hasenack (ahasenack) wrote :

Hello Bryce, or anyone else affected,

Accepted bind-dyndb-ldap into focal-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind-dyndb-ldap/11.2-1ubuntu0.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-focal to verification-done-focal. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-focal. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Changed in bind-dyndb-ldap (Ubuntu Focal):
status: In Progress → Fix Committed
Revision history for this message
Lena Voytek (lvoytek) wrote :

Verified autopkgtests for noble, jammy, and focal

tags: added: verification-done verification-done-focal verification-done-jammy verification-done-noble
removed: verification-needed verification-needed-focal verification-needed-jammy verification-needed-noble
Revision history for this message
Lena Voytek (lvoytek) wrote :

Looks like bind-dyndb-ldap on armhf is continuing to fail for jammy. This is probably due to bind9 not publishing on that architecture in time when it was uploaded. In the buildlog, it shows:

Get:9 http://ftpmaster.internal/ubuntu jammy-security/main armhf bind9-libs armhf 1:9.18.28-0ubuntu0.22.04.1

This should be fixed by another no-change rebuild, so I will send that in.

Revision history for this message
Timo Aaltonen (tjaalton) wrote :

Hello Bryce, or anyone else affected,

Accepted bind-dyndb-ldap into jammy-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/bind-dyndb-ldap/11.9-5ubuntu0.22.04.10 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-jammy to verification-done-jammy. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-jammy. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

tags: added: verification-needed verification-needed-jammy
removed: verification-done verification-done-jammy
Revision history for this message
Lena Voytek (lvoytek) wrote :

armhf tests look good again in jammy with the new no-change rebuild

tags: added: verification-done verification-done-jammy
removed: verification-needed verification-needed-jammy
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package bind9 - 1:9.18.30-0ubuntu0.20.04.1

---------------
bind9 (1:9.18.30-0ubuntu0.20.04.1) focal; urgency=medium

  * New upstream release 9.18.30 (LP: #2073310)
    - Features:
      + Print initial working directory during named startup, and changed
        working directory when loading or reloading the configuration file
      + Add max-query-restarts configuration statement
    - Updates:
      + Restrain named to specified number of cores when running via taskset,
        cpuset, or numactl
      + Reduce default max-recursion-queries value from 100 to 32
      + Raise the log level of priming failures
    - Bug Fixes:
      + Fix privacy verification of EDDSA keys
      + Fix algorithm rollover bug when there are two keys with the same keytag
      + Return SERVFAIL for a too long CNAME chain
      + Reconfigure catz member zones during named reconfiguration
      + Update key lifetime and metadata after dnssec-policy reconfiguration
      + Fix generation of 6to4-self name expansion from IPv4 address
      + Fix invalid dig +yaml output
      + Reject zero-length ALPN during SVBC ALPN text parsing
      + Fix false QNAME minimisation error being reported
      + Fix dig +timeout argument when using +http
    - See https://bind9.readthedocs.io/en/v9.18.30/notes.html for additional
      information.

 -- Lena Voytek <email address hidden> Mon, 23 Sep 2024 17:21:48 -0400

Changed in bind9 (Ubuntu Focal):
status: Fix Committed → Fix Released
Revision history for this message
Chris Halse Rogers (raof) wrote : Update Released

The verification of the Stable Release Update for bind9 has completed successfully and the package is now being released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package bind9 - 1:9.18.30-0ubuntu0.22.04.1

---------------
bind9 (1:9.18.30-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream release 9.18.30 (LP: #2073310)
    - Features:
      + Print initial working directory during named startup, and changed
        working directory when loading or reloading the configuration file
      + Add max-query-restarts configuration statement
    - Updates:
      + Restrain named to specified number of cores when running via taskset,
        cpuset, or numactl
      + Reduce default max-recursion-queries value from 100 to 32
      + Raise the log level of priming failures
    - Bug Fixes:
      + Fix privacy verification of EDDSA keys
      + Fix algorithm rollover bug when there are two keys with the same keytag
      + Return SERVFAIL for a too long CNAME chain
      + Reconfigure catz member zones during named reconfiguration
      + Update key lifetime and metadata after dnssec-policy reconfiguration
      + Fix generation of 6to4-self name expansion from IPv4 address
      + Fix invalid dig +yaml output
      + Reject zero-length ALPN during SVBC ALPN text parsing
      + Fix false QNAME minimisation error being reported
      + Fix dig +timeout argument when using +http
    - See https://bind9.readthedocs.io/en/v9.18.30/notes.html for additional
      information.

 -- Lena Voytek <email address hidden> Mon, 23 Sep 2024 17:16:16 -0400

Changed in bind9 (Ubuntu Jammy):
status: Fix Committed → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package bind-dyndb-ldap - 11.9-5ubuntu0.22.04.10

---------------
bind-dyndb-ldap (11.9-5ubuntu0.22.04.10) jammy; urgency=medium

  * No change rebuild with bind9-libs 1:9.18.30-0ubuntu0.22.04.1
    attempt 2 for armhf (LP: #2073310)

 -- Lena Voytek <email address hidden> Fri, 13 Dec 2024 16:54:52 -0700

Changed in bind-dyndb-ldap (Ubuntu Jammy):
status: Fix Committed → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package bind9 - 1:9.18.30-0ubuntu0.24.04.1

---------------
bind9 (1:9.18.30-0ubuntu0.24.04.1) noble; urgency=medium

  * New upstream release 9.18.30 (LP: #2073310)
    - Features:
      + Print initial working directory during named startup, and changed
        working directory when loading or reloading the configuration file
      + Add max-query-restarts configuration statement
    - Updates:
      + Restrain named to specified number of cores when running via taskset,
        cpuset, or numactl
      + Reduce default max-recursion-queries value from 100 to 32
      + Raise the log level of priming failures
    - Bug Fixes:
      + Fix privacy verification of EDDSA keys
      + Fix algorithm rollover bug when there are two keys with the same keytag
      + Return SERVFAIL for a too long CNAME chain
      + Reconfigure catz member zones during named reconfiguration
      + Update key lifetime and metadata after dnssec-policy reconfiguration
      + Fix generation of 6to4-self name expansion from IPv4 address
      + Fix invalid dig +yaml output
      + Reject zero-length ALPN during SVBC ALPN text parsing
      + Fix false QNAME minimisation error being reported
      + Fix dig +timeout argument when using +http
    - See https://bind9.readthedocs.io/en/v9.18.30/notes.html for additional
      information.
  * d/p/0002-Add-support-for-reporting-status-via-sd_notify.patch: Refresh for
    new version

 -- Lena Voytek <email address hidden> Mon, 23 Sep 2024 17:02:05 -0400

Changed in bind9 (Ubuntu Noble):
status: Fix Committed → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package bind-dyndb-ldap - 11.10-6ubuntu11.24.04.1

---------------
bind-dyndb-ldap (11.10-6ubuntu11.24.04.1) noble; urgency=medium

  * No change rebuild with bind9-libs 1:9.18.30-0ubuntu0.24.04.1
    (LP: #2073310)

 -- Lena Voytek <email address hidden> Tue, 24 Sep 2024 08:22:13 -0400

Changed in bind-dyndb-ldap (Ubuntu Noble):
status: Fix Committed → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package bind-dyndb-ldap - 11.2-1ubuntu0.1

---------------
bind-dyndb-ldap (11.2-1ubuntu0.1) focal; urgency=medium

  * No change rebuild with bind9-libs 1:9.18.30-0ubuntu0.20.04.1
    (LP: #2073310)

 -- Lena Voytek <email address hidden> Thu, 10 Oct 2024 12:15:53 -0700

Changed in bind-dyndb-ldap (Ubuntu Focal):
status: Fix Committed → Fix Released
Lena Voytek (lvoytek)
Changed in bind-dyndb-ldap (Ubuntu):
status: In Progress → Fix Released
Changed in bind9 (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.