designate 12.1.0 (wallaby)

17 Jun 2022

We contentedly announce the release of:

designate 12.1.0: DNS as a Service

This release is part of the wallaby stable release series.

The source is available from:

    https://opendev.org/openstack/designate

Download the package from:

    https://tarballs.openstack.org/designate/

Please report issues through:

    https://bugs.launchpad.net/designate/+bugs

For more details, please see below.

12.1.0
^^^^^^

Bug Fixes

* Fixed an issue that caused the recordset_records quota to not be
  enforced.

* Fixes bug 1934252 which ignored invalid denylist patterns. The fix
  entailed checking the pattern string via regular expression compiler
  and testing for zero length.

  Previously you could create blacklist/denylist using string that
  cannot be used either as a regex or as a zone name, for example:
  patterns = ['', "'#(*&^%$%$#@$']"

  In addition, the server will return a 400 BadRequest response to an
  invalid pattern.

   (https://bugs.launchpad.net/designate/+bug/1934252)

* Fixed an issue where new BIND9 pool instances may fail on zone
  update.

* Fixed an issue where set-quotas will always return the default
  quotas if it was called with a non-project scoped token and the all-
  projects flag was not set.

* Fixes support for keystone default roles and scoped tokens.

* Allows for a minimum TTL value of zero to be used instead of 1. As
  stated in RFC
  https://datatracker.ietf.org/doc/html/rfc2181#section-8.

   (https://bugs.launchpad.net/designate/+bug/1926429)

* CAA records now allow the use of *+* prefixed subadresses like
  *security+caa@example.net* within mail urls. (https://www.rfc-
  editor.org/rfc/rfc5233.html#section-1)

  See bug 1958533 for more information.

   (https://bugs.launchpad.net/designate/+bug/1958533)

* Fixed a bug where deleting a zone transfer request may fail when
  using a system scoped token.

Changes in designate 12.0.1..12.1.0
-----------------------------------

f2557474 Fix misleading release note for RBAC changes.
abe17707 Update zuul queue configuration
eacd478e Clarifies the zone import error message
790f0963 Fix incorrect 404 error on floating IP create
8af89be2 Fix duplicate zone when creating ptr records
1dd3b9de Cleanup scheduler
29a8069e Fixed incorrect message when zone import failed due to quota
60682cce Fix dns.query.tcp/udp not always handling ipv6 properly
e6dbc1fb Simplify create zone import implementation
12510551 Stop running grenade on Wallaby
a2ff328c Checks for invalid denylist regex patterns
1eb5cb41 Improve wording for validation error messages
b51c9724 Modernize PTR implementation in Central
899cd6e7 Fix designate-manage pool update bugs
53cf9b96 Allow email subadresses to be used within mail url of CAA records
b6915f00 Fix zone update when adding new Bind9 target to pool.
0f041e37 Add proper quota error messages
8562a683 Fix delete zone transfer request with scoped token
3e753554 Minimum TTL value allowed is zero
7217ce4e Fix a typo in the tsigkey policy file
ea85d917 Fix set-quotas for non-project scoped tokens
72267c8f Validate worker actions before retrying poll
643f4cde Fixed incorrect quota exception message
2e55c3e2 Improve quota API validations
5d348de3 Fix tox docs env to have the correct dependencies
0323c424 Allow TXT record over 255 characters if split
bbde15f5 Fix support for scoped tokens and default roles
7ed90faa Fix recordset_records quota enforcement
9e2618a2 Add fips jobs
e1ee648f Replace md5 for fips
914b55a6 Remove lower-constraint job from stable/wallaby


Diffstat (except docs and test files)
-------------------------------------

.zuul.yaml                                         |   39 +-
designate/api/middleware.py                        |    6 +-
designate/api/v2/controllers/quotas.py             |   10 +
.../api/v2/controllers/zones/tasks/exports.py      |    9 +-
designate/backend/agent.py                         |   40 +-
designate/backend/impl_bind9.py                    |   31 +-
designate/central/service.py                       | 1273 +++++++++++++-------
designate/common/constants.py                      |   28 +
designate/common/policies/base.py                  |   70 +-
designate/common/policies/blacklist.py             |   56 +-
designate/common/policies/context.py               |   50 +-
designate/common/policies/diagnostics.py           |   51 +-
designate/common/policies/pool.py                  |   56 +-
designate/common/policies/quota.py                 |   34 +-
designate/common/policies/record.py                |   16 +-
designate/common/policies/recordset.py             |  106 +-
designate/common/policies/service_status.py        |   24 +-
designate/common/policies/tenant.py                |   24 +-
designate/common/policies/tld.py                   |   40 +-
designate/common/policies/tsigkey.py               |   45 +-
designate/common/policies/zone.py                  |  129 +-
designate/common/policies/zone_export.py           |   64 +-
designate/common/policies/zone_import.py           |   42 +-
designate/common/policies/zone_transfer_accept.py  |   48 +-
designate/common/policies/zone_transfer_request.py |   52 +-
designate/context.py                               |    5 +-
designate/dnsutils.py                              |  152 ++-
designate/exceptions.py                            |   13 +
designate/mdns/notify.py                           |   24 +-
.../adapters/api_v2/zone_transfer_request.py       |   12 +-
designate/objects/blacklist.py                     |    4 +-
designate/objects/fields.py                        |   53 +-
designate/objects/quota.py                         |    8 +-
designate/objects/rrdata_txt.py                    |   38 +-
designate/objects/zone.py                          |    2 +-
designate/policy.py                                |   15 +-
designate/quota/base.py                            |   19 +-
designate/quota/impl_storage.py                    |    2 +-
designate/scheduler/base.py                        |   52 +-
designate/scheduler/filters/attribute_filter.py    |   20 +-
designate/scheduler/filters/fallback_filter.py     |    9 +-
designate/scheduler/filters/random_filter.py       |   14 +-
designate/storage/impl_sqlalchemy/__init__.py      |   21 +-
designate/worker/README.md                         |    2 +-
designate/worker/tasks/base.py                     |   48 +
designate/worker/tasks/zone.py                     |   38 +-
designate/worker/utils.py                          |   82 --
lower-constraints.txt                              |    2 +-
playbooks/enable-fips.yaml                         |    3 +
...x-recordset-records-quota-76ed3095dd2afbbe.yaml |    4 +
...atterns-not-being-checked-ec1f1316ccc6cb1d.yaml |   16 +
...x-update-zone-create-zone-ada1fd81de479492.yaml |    4 +
...non-project-scoped-tokens-ffe3082db3dbb55b.yaml |    6 +
.../Support-scoped-tokens-6b7d6052a258cd11.yaml    |    4 +
...429-allow-ttl-min-of-zero-688f7c2cf095d89d.yaml |    8 +
...33-allow-caa-mail-subaddr-d02cdc46bbb118ad.yaml |   10 +
...sfer-request-scoped-token-fc9d3be407e1a50a.yaml |    5 +
requirements.txt                                   |    2 +-
tox.ini                                            |    1 +
81 files changed, 2773 insertions(+), 1454 deletions(-)


Requirements updates
--------------------

diff --git a/requirements.txt b/requirements.txt
index 26c39be3..6f622631 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -23 +23 @@ oslo.upgradecheck>=1.3.0
-oslo.utils>=4.5.0 # Apache-2.0
+oslo.utils>=4.7.0 # Apache-2.0

    

no-reply＠openstack.org

tags

participants (1)