Hide Forgot
Description of problem: Current RHEL9 bind version is few versions behind, current version is 9.16.15. There are pending two CVEs with fix and other coverity detected issue, which would be fixed by rebase to latest version. There are few bug fixes and small feature changes [1] in following releases, none introducing any backward compatibility problem. Only change in versioning used libraries is significant, but it would have to be solved sooner or later. bind-dyndb-ldap component would have to be rebuilt together with bind. Few notable feature changes: - New option stale-answer-client-timeout, able to customize time when stale cache records can be served. Used only when stale-answer-enable is enabled. Disabled by default. - primaries, notify primary-only can be used instead of masters and notify master-only; rndc zonestatus now prints primary and secondary instead of master and slave types. - SONAME of libraries would change every new release, previous versioning numbers are not incremented like before, but would contain BIND version instead. - AXFR response is used instead IXFR if relative difference would big bigger than whole zone transfer. Could be adjusted by max-ixfr-ratio option. - purge-keys option added to dnssec-policy. Additional info: 1. https://downloads.isc.org/isc/bind9/9.16.15/doc/arm/html/notes.html#notes-for-bind-9-16-15
Prepared bind rebase. The change would modify displayed version in named -V and dig commands, because version is used also in library names. It would be just %{version}-RH now to keep it more compact. I have also merged bind-libs-lite into bind-libs, because bind-dyndb-ldap, single component depending on it needs both bind-libs and bind packages anyway. In no situation bind-libs-lite would be used without other dependencies, therefore it only fragments enough subpackages already.