diff options
| author | Christoph Hrdinka <c.git@hrdinka.at> | 2016-09-27 00:10:39 +0200 |
|---|---|---|
| committer | Christoph Hrdinka <c.git@hrdinka.at> | 2016-09-27 00:14:24 +0200 |
| commit | 553a3295c126fd9e73635bcde7dc1714a230c3f2 (patch) | |
| tree | 4c28d584224c33f6e5912747b779d9f52691878f /pkgs/servers/dns/nsd | |
| parent | 900a04e6c9953fbdc59d4a51bef8283594357d28 (diff) | |
| download | nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.tar nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.tar.gz nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.tar.bz2 nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.tar.lz nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.tar.xz nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.tar.zst nixlib-553a3295c126fd9e73635bcde7dc1714a230c3f2.zip | |
nsd: 4.1.9 -> 4.1.12
4.1.12
======
Bugfixes
--------
Fix malformed edns query assertion failure, reported by Michal Kepien (NASK).
4.1.11
======
Features
--------
* When tcp is more than half full, use short timeout for tcp session.
* Patch for {max,min}-{refresh,retry}-time from YAMAGUCHI Takanori.
* Fix #790: size-limit-xfr can stop NSD from downloading infinite zone transfer data size, from Toshifumi Sakaguchi. Fixes CVE-2016-6173 JVN#63359718 JPCERT#91251865.
Bugfixes
--------
* Fix build without IPv6, patch from Zdenek Kaspar.
* Fix #783: Trying to run a root server without having configured it silently gives wrong answers.
* Fix #782: Serve DS record but parent zone has no NS record.
* Fix nsec3 missing for nsec3 signed parent and child for DS at zonecut.
4.1.10
======
Features
--------
* ip-freebind: yesno option in nsd.conf sets IP_FREEBIND socket option for Linux, binds to interfaces and addresses that are down.
* NSD includes AAAA before A for queries over IPV6 (in delegations). And TC is set if no glue can be provided with a delegation because of packet size.
* print notice that nsd is starting before taking off.
Bugfixes
--------
* Fix for openssl 1.1.0, HMAC_CTX size not exported from openssl.
* Fix #751: NSD fails to occlude names below a DNAME.
* If set without nsd.db print "" as the default in the man pages.
* Fix #755: NSD spins after a zone update and a lot of TCP queries.
* Fix for NSEC3 with zone signed without exact match for empty nonterminals, the answer for that domain gets closest encloser.
* #772 Document that recvmmsg has IPv6 problems on some linux kernels.
4.1.9
=====
Bugfixes
--------
* Change the nsd.db file version because of nanosecond precision fix.
Diffstat (limited to 'pkgs/servers/dns/nsd')
| -rw-r--r-- | pkgs/servers/dns/nsd/default.nix | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/pkgs/servers/dns/nsd/default.nix b/pkgs/servers/dns/nsd/default.nix index 48dd535382da..368f95b3a183 100644 --- a/pkgs/servers/dns/nsd/default.nix +++ b/pkgs/servers/dns/nsd/default.nix @@ -13,11 +13,11 @@ }: stdenv.mkDerivation rec { - name = "nsd-4.1.9"; + name = "nsd-4.1.12"; src = fetchurl { url = "http://www.nlnetlabs.nl/downloads/nsd/${name}.tar.gz"; - sha256 = "1wn8jm5kpp81m88c77j97850mnmd87yaw8qp3xsdwcakcd6j44dq"; + sha256 = "fd1979dff1fba55310fd4f439dc9f3f4701d435c0ec4fb9af533e12c7f27d5de"; }; buildInputs = [ libevent openssl ]; |