All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Export
get_pipeline/0,1fromerldns_pipeline
- Zone loading from zonefiles: records from
dns_zone:parse_file/1now load successfully.
- Telemetry events to zone creation and deletion #344
- Record counters are correctly garbage collected #344
- Fixes wrong zone reuse and a
case_clauseerror when the delegated zone differed from the caller's zone #341 - When following delegation chains,
resolve_authoritative/7keeps track of a recursion depth and stops after 32 steps with a SERVFAIL, preventing infinite loops #342 - Simplify restart query operations on CNAME delegations #343
- Upgrade dns_erlang
erldns_zone_cache:delete_zone_rrset/5correctly returnsok | zone_not_found
- Ensure records are normalised as FQDN when using the sync counter zone cache functionality
- Zone cache: pre-reversed labels (used on every lookup),
zone_name_existenceand one-shot resolved lookups (#333) - Helper boolean filters for common record types (#332)
- Error logging on request timeout (#332)
- Log ingress and current timestamps when dropping a packet (#332)
- Richer context on query timeouts (what query actually timed out) (#332)
- Zone cache and resolver: reworked for performance and correctness; fewer redundant computations at runtime (#333)
- Optimised
erldns_dnssecanderldns_resolverpipes (#333) - Logging and observability: connection idle timeout at debug level; TCP socket errors and ingress timeouts at notice/info; skip logging TCP killed when we killed it ourselves; use
log_metadatahelper; clearer TCP worker log naming (#332) - Resolver: tiny list processing improvement; async cancel timers for timers (#332)
- Upgraded
dns_erlangdependency with DNSSEC ECDSA fixes
- Allow to use binary strings to specify listener IP
- Allow to use binary strings to specify zones path
- Updated changelog
- Pipeline suspension for non-blocking async operations: pipes can return
{suspend, Msg, Opts, AsyncFun}to run blocking work in a bounded worker pool so listener workers are not blocked (#327)
- Upgraded dns_erlang, which fixes a series of bugs regarding SVCB params (#329)
- Redesigned RFC compliant codecs for the Admin API (#325)
- Fixed spurious trailing dots in the admin API (#325)
- Fixed badly formatted TXT records in the admin API (#325)
- Better overload management (#301 #302 #306)
- RFC7766 pipelining support for TCP/TLS with concurrent request processing (#300)
- DNS over TLS (DoT) support per RFC 7858 (#300)
- Configurable request timeout monitoring for TCP workers with SERVFAIL responses (#300)
- Codec support for SVCB and HTTPS record types (#313)
- Codec support for many new record types introduced in
dns_erlangv4.9.0 (#312):- OPENPGPKEY (Type 61) — RFC 7929
- SMIMEA (Type 53) — RFC 8162
- URI (Type 256) — RFC 7553
- WALLET (Type 262) — IANA Registration
- EUI48 (Type 108) and EUI64 (Type 109) — RFC 7043
- CSYNC (Type 62) — RFC 7477
- DSYNC (Type 66) — RFC 9859
- Add initial documentation regarding the Admin API (#316)
- Move TCP and UDP ingress timeout configuration to per-listener
optsmap (#300) - Rename transport type
bothtostandardfor clarity (#300) - Upgrade dns_erlang dependency
- Includes small performance optimisations
- Adds support for many new record types
- Adds
dns:decode_query/1for early stop of bad input
rfc_compliant_entconfiguration option. RFC 4592 compliant empty non-terminal (ENT) handling is now always enabled (#308)- Global
ingress_tcp_request_timeoutandingress_udp_request_timeoutapplication environment variables are now configured per listener (#300)
- Implement basic RFC8914 extended errors (#290)
- Add support for standard DNS zone files (RFC-style) in addition to JSON format, this also improves loading times and initialisation (#291)
- Admin API now adds extensibility points to include custom HTTP handlers and TLS configuration (#294)
- Add support for RFC6605: ECDSA for DNSSEC.
- Add support for RFC8080: Ed22519/Ed448 for DNSSEC.
- Add support for RFC9077: NSEC/NSEC3 TTLs.
- Logic for handling DS type queries is changed to be RFC compliant, see: #285.
- Support for encoding/decoding records of type SPF.
- Implement ENTs compliant with RFC4592
- Add ENT support for wildcard synthesis meeting RFC 4592 specification requirements (#279).
The behaviour is currently opt-in using the
rfc_compliant_entoption in erdns.zones config.
This release has many optimisations, documentation and code quality improvements.
- Rework
erldns_zone_cacheanderldns_resolver: algorithm is extensively optimised and now supports ENT correctly. - Rework
erldns_handler: behaviour is now improved and clearly defined. Minimum supported handler version is now2. - Split
erldns_resolverpipe into more granular steps, addingerldns_resolver_recursive,erldns_dnssec,erldns_sorter, anderldns_section_counter. - Add
erldns_questionsquestions filter to the packet pipeline. - Update dns_erlang to v4.3 and remove
erldns_records:name_type/1. - Accept no SOA record if no RRSIG are required.
- Documentation improvements (#267)
- Separate edns payload size over UDP as a configurable pipe (#267)
- Extend pipelines with halt and secondary pipelines (#268)
[erldns, pipeline, questions]telemetry event with#{count => non_neg_integer()}wherecountis the number of questions removed.- Document some design decisions (#265)
- Add TLSA record support (#270)
- SPF record support will be removed in the upcoming releases (https://blog.dnsimple.com/2025/07/discontinuing-spf-record-type/)
This is a big release full of massive performance improvements and protocol compliance, but also of breaking changes. Read carefully the changelog and the documentation before migrating.
The application is now divided in three core subsystems, that is, listeners, packet pipelines,
and zones, which are configured differently and will require migration.
See m:erldns_listeners. m:erldns_pipeline and m:erldns_zones respectively for documentation
on how to reconfigure.
Telemetry events, as well as logger events, are entirely scoped within these respective subsystems,
that means, that the events are now prefixed with [erldns, request, _], for listener workers,
and [erldns, pipeline] for pipeline processing. Similarly, logger events are tagged with
domain => [erldns, admin | listeners | pipeline | zones] metadata, and all are structured.
If you had any custom parser or encoder, you will need to update them to the new API, which unifies
both into a single module. See m:erldns_zone_codec for more information on its callbacks. Note
that the zone_to_erlang/1,2 callbacks are now decode/1 and zone_*/x callbacks are now
encode/2, and they all take only maps as input and output respectively.
TXT and SPF record formats have changed, from a single string, to an array, to support more complex DNS records & use cases, so that the following:
{
...
"type": "TXT",
"data": {
"txt": "\"Hi, this is some text\" \"with extras\""
}
},becomes
{
...
"type": "TXT",
"data": {
"txts": ["Hi, this is some text", "with extras"]
}
},A warning will be logged for each invalid record, but they will be skipped, and not loaded.
For more important changes, see:
- Refactor the query processing pipeline #224
- Reimplement the network stack #225
- Rework zones loader #230
- Rework zones codecs #231
- Rework zones cache #232
- Rework documentation and internals #233
- Fix overriding packet size in optrr record #242
- Upgrade
dns_erlangto v4. - Use
segmented_cachefor the zone cache and the throttle modules.
- Support for OTP28 #220
- Support for
dns_erlangv4, which enforces strings as binaries and options as maps - Introduce domain tag in logger events #244
- zone cache
put_rrset_zoneaccepts zone records #243 - Add statistic functionality to listeners #227
- Support for TXT and SPF records with data as a single string, they must be a list of strings instead.
- Support for the
erldns_txtparser #248 - Support for zone parsers taking input as lists #231
- Fix DNSSEC timestamps #234
- Fix (C)DNS/(C)DNSKEY signing #235
- Fix cache non-normalised match bug #241
- Introduce backpressure and load shedding #240
- Add mailbox length telemetry events.
- Keep the handlers state in an ets table and avoid the singleton gen_server call.
- Add terminating context to telemetry span events
- Instrument code using telemetry in a metrics agnostic way.
- Introduce support for Logger
- Remove lager
- Remove the
erldns_eventssingleton.
- Export dnssec internal new API endpoint
- Add support for NSEC compact denial of existence
- Add support for zone records directory loading
- Add the latest
dnstestversion fixing almost all tests
- Update
dns_erlang: fix EDNS0 compliance for truncated records and unsupported versions
- Test admin API and fix bugs related to authentication and json encoding
- Ensure supervision tree starts correctly
- Merge admin and metrics APIs into this repository.
- Hide SPF/TXT multipart handling behind a feature flag
- Fix a bug mixing SPF and TXT records
- Bugfix handling null in the zone parser json payloads
- Introduce SPF/TXT multipart handling (#150)
- Add ex_doc support
- Remove support for OpenTelemetry.
- Bumps to OTP/27
- Replaced "jsx" with "json"
- Bumps to dns_erlang/v2.0.0
- erlfmt
- CONTRIBUTING.md
- CHANGELOG.md
- release process to hex.pm
- ...