0468253d8aa702e08d78fee34835aa07c4b6a1c433b9fa9b0f54318729c35367
Dear all,
We finally have a first candidate for a new 1.7.0 release of getdns. Sorry that this has taken so long. We promise that a next release will not take this long again. In fact, from now on we are committing ourselves to do new releases at least every three months. You can hold us to that!
This release has a Stubby version 0.4.0-rc.1 included with updated upstreams servers in the example stubby.yml
config file.
Warning! We will retire the dnsovertls*.sinodun.com
servers later this year.
The current example stubby.yml
config file has dnsovertls.sinonodun.com
and dnsovertls1.sinodun.com
as default DNS-over-TLS upstreams (next to getdnsapi.net
), but they will be excluded from the config in the next release.
We are considering other options as the default upstream servers and we welcome feedback and input from you in this github issue.
With the introduction of CMake as our new build system a few bugs have crept in. This getdns release has those corrected. Most notably:
getdns_context_set_tls_ciphersuites()
function, or at upstream level by specifying a tls_ciphersuites
entry.libgetdns_ext_event
, libgetdns_ext_ev
and libgetdns_ext_uv
.Besides these (and some other) bugfixes, this release has work included to improve user experience when falling back to other transports or upstreams after failure:
getdns_context_set_tcp_send_timeout()
.
Contributed by maciejsszmigiero Thanks Maciej!Also, people that had problems with truncated packets or too large packets from Stubby, may have less issues because smaller responses are returned thanks to the name-compression contribution from amialkow. Thanks Andy!
Please review these release candidates carefully, if all is well, the actual release will follow Friday the 4th of June.
Photo still from Frankenstein (1931 film)
* 2021-06-??: Version 1.7.0 * Make TLS Handshake timeout max 4/5th of timeout for the query, just like connection setup timeout was, so fallback transport have a chance too when TCP connection setup is less well detectable (as with TCP_FASTOPEN on MacOS). * Issue #466: Memory leak with retrying queries (for examples with search paths). Thanks doublez13. * Issue #480: Handling of strptime when Cross compiling with CMake. A new option to FORCE_COMPAT_STRPTIME (default disabled) will (when disabled) make cmake assume the target platform has a POSIX compatible strptime when cross-compiling. * Setting of the number of milliseconds send data may remain unacknowledged by the peer in a TCP connection (when supported by the OS) with getdns_context_set_tcp_send_timeout() Thanks maciejsszmigiero. * Issue #497: Fix typo in CMAKE included files, so Stubby can use TLS v1.3 with chipersuites options ON. Thanks har-riz. * Basic name compression on server replied messages. Thanks amialkow! This alleviates (but might not completely resolve) issues #495 and #320 . * Eventloop extensions back to the old names libgetdns_ext_event, libgetdns_ext_ev and libgetdns_ext_uv.
* 2021-06-??: Version 0.4.0 * We announce the intention to remove the dnsovertls*.sinodun.com servers from the default resolver list in the next release, see https://github.com/getdnsapi/stubby/issues/286 for details. * Add ability to run Stubby as a full Windows service * Update IPs for dot1.applied-privacy.net * Remove the secure.eu entries in the stubby config file * Bugfix: Make `run_in_foreground = 1` the default again * Support yaml config files that do not use quotes