---
- branch: MAIN
  date: Tue Jan  2 12:23:55 UTC 2018
  files:
  - new: '1.26'
    old: '1.25'
    path: pkgsrc/net/powerdns-recursor/Makefile
    pathrev: pkgsrc/net/powerdns-recursor/Makefile@1.26
    type: modified
  - new: '1.22'
    old: '1.21'
    path: pkgsrc/net/powerdns-recursor/distinfo
    pathrev: pkgsrc/net/powerdns-recursor/distinfo@1.22
    type: modified
  - new: '0'
    old: '1.4'
    path: pkgsrc/net/powerdns-recursor/options.mk
    pathrev: pkgsrc/net/powerdns-recursor/options.mk@0
    type: deleted
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/net/powerdns-recursor/patches/patch-configure
    pathrev: pkgsrc/net/powerdns-recursor/patches/patch-configure@1.3
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/net/powerdns-recursor/patches/patch-m4_pdns__check__os.m4
    pathrev: pkgsrc/net/powerdns-recursor/patches/patch-m4_pdns__check__os.m4@1.3
    type: modified
  - new: '1.4'
    old: '1.3'
    path: pkgsrc/net/powerdns-recursor/patches/patch-kqueuemplexer.cc
    pathrev: pkgsrc/net/powerdns-recursor/patches/patch-kqueuemplexer.cc@1.4
    type: modified
  - new: '1.1'
    old: '0'
    path: pkgsrc/net/powerdns-recursor/patches/patch-portsmplexer.cc
    pathrev: pkgsrc/net/powerdns-recursor/patches/patch-portsmplexer.cc@1.1
    type: added
  id: 20180102T122355Z.f7c9b5ebafa713529b57a464a3fbf90e2d3a9aea
  log: |
    Update net/powerdns-recursor to 4.1.0.
    Lua support no longer optional.

    PowerDNS Recursor 4.1.0
    ===========================================================

    - Improved DNSSEC support
    - Improved documentation
    - Improved RPZ support
    - Improved EDNS Client Subnet support
    - Support for Botan 2.x (and removal of support for Botan 1.10)
    - SNMP support
    - Lua engine has gained access to more parts of the recursor
    - CPU affinity can now be specified
    - TCP Fast Open support
    - New performance metrics

    Full changelog:

      https://doc.powerdns.com/recursor/changelog/4.1.html

    PowerDNS Recursor 4.0.7
    ===========================================================

    - Insufficient validation of DNSSEC signatures (CVE-2017-15090)
    - Cross-Site Scripting in the web interface (CVE-2017-15092)
    - Configuration file injection in the API (CVE-2017-15093)
    - Memory leak in DNSSEC parsing (CVE-2017-15094)

    Bug fixes
    - Update rec_control manpage
    - Check in the detected OpenSSL/libcrypto for ECDSA
    - Make more specific Netmasks < to less specific ones
    - Fix validation at the exact RRSIG inception or expiration time
    - Lowercase all outgoing qnames when lowercase-outgoing is set
    - Fix libatomic detection on ppc64
    - Edit configname definition to include the 'config-name' argument

    Improvements
    - Extract nested exception from Luawrapper
    - Use explicit yes for default-enabled settings
    - Throw an error when lua-conf-file can't be loaded
    - get-remote-ring's "other" report should only have two items.
    - PowerDNS sdig does not truncate trailing bits of EDNS Client Subnet
      mask
    - Only increase no-packet-error on the first read
    - Add support for Botan 2.x
    - Add more information to recursor cache dumps
    - Fix typo in two log messages
    - Add help text on autodetecting systemd support
    - Be more resilient with broken auths
    - Remove pdns.PASS and pdns.TRUNCATE
    - Improve dnsbulktest experience in travis for more robustness
    - Create socket-dir from init-script
    - b.root renumbering, effective 2017-10-24
    - Don't retry security polling too often when it fails
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/net/powerdns-recursor'
  unixtime: '1514895835'
  user: fhajny