[kea-announce] Kea 2.5.2, a new development release of Kea, is now available

Everett B. Fulton ebf at isc.org
Tue Sep 26 19:21:03 UTC 2023 

Internet Systems Consortium is pleased to announce the release of Kea 2.5.2.

Releases in the Kea 2.5.x sequence are part of the Kea 2.5 development
branch, where new features are provided for testing and evaluation
before the branch is designated stable and recommended for production use.

The current stable branch of Kea is Kea 2.4 and its most recent release
is 2.4.0

Kea source tarball are available from cloudsmith.io:


https://dl.cloudsmith.io/public/isc/kea-2-4/raw/versions/2.4.0/kea-2.4.0.tar.gz

https://dl.cloudsmith.io/public/isc/kea-2-5/raw/versions/2.5.2/kea-2.5.2.tar.gz

And from the ISC download page:

           https://www.isc.org/download

----

# Kea 2.5.2 Release Notes, September 27, 2023

Welcome to Kea 2.5.2, the third monthly release of the 2.5 development
series. As with any other development release, use this with caution:
development releases are not recommended for production use.

Kea is a DHCP implementation developed by Internet Systems Consortium
(ISC) that features DHCPv4 and DHCPv6 servers with DNS update and a REST
API; optional database support (MySQL and PostgreSQL); optional RADIUS,
Kerberos, YANG/NETCONF, and GSS-TSIG support; and much more. Kea
provides extensive management capabilities, including but not limited
to: TLS support, Role-Based Access Control, run-time configuration
monitoring and updates via a REST API, host reservations, and client
classification.

The text below references issue numbers. For more details, visit the Kea
GitLab page at https://gitlab.isc.org/isc-projects/kea/-/issues.

The following bugfixes and features have been implemented since the
previous release, version 2.5.1:

1. **RADIUS**: An effort is underway to implement a new RADIUS hook. The
existing hook has been renamed to `old_radius`. If you are a RADIUS
user, please update your configuration. You need to change the hook name
in your configuration from `radius` to the`old_radius`. In the coming
releases, the new radius (`radius` hook) is expected to fully replace
the old RADIUS functionality. The new `radius` hook is not functional
yet [#3069]. Support for RADIUS attributes added [#3043]. Radcli, a
potential replacement for the FreeRADIUS-client, was evaluated but
rejected [#404]. Misuse of Framed-IPv6-Prefix in RADIUS hook was fixed
[#2998].

2. **Ping-check**: A new hook library is under development. While the
solution is not usable yet, much progress has been made in this release.
A design for the new hook was written and reviewed [#3008]. A skeleton
hook was implemented [#3012] with several important classes
(PingContext, PingContextStore) were implemented [#3054]. Also, ICMP
socket support was added [#3053]. A new hook point `lease4-offer` was
implemented [#3063, #3038] and documented [#3067].

3. **output-options**: The old syntax (`output_options`) has been
replaced with `output-options`. Please see the incompatible changes for
more details [#3004].

4. **Upper, lower case in expressions**: A mechanism to convert strings
to upper (`ucase`) and lower (`lcase`) case in expressions has been
implemented [#3048].

5. **Forensic logging**: The information about DHCPv6 clients is now
also logged on the secondary server in a HA configuration [#2967].

6. **Host Cache Hook**: The Host Cache hook is now multi-threading
capable. Sadly, there is no feasible way to take advantage of this yet,
as it only works with RADIUS which is not yet multi-threading capable
[#2023].

7. **Build improvements**: The `--enable-debug` compilation option now
enables more debugging features [#1520]. The hammer tool has been
improved to better handle packages for CentOS 7. The CentOS 7 itself is
no longer supported, but it might be useful when using hammer from this
release to build older Kea releases [#3060]. The `flto` (link-time
optimization) was disabled on RHEL packages. This optimization caused
Kea to crash in some rare circumstances [#3058]. Fedora 38 compilation
fixed [#3031].

8. **Documentation**: Added examples for Secure Zero Touch Provisioning
options [#3002]. Added a note about PXE DHCPv6 clients [#181]. CentOS 7
references removed from the documentation. It's no longer supported
[#2980]. ARM section about log message format clarified [#2591, #3011].

9. **Bugs**: A problem with DHCP4_CLASSES_ASSIGNED being logged twice
was fixed [#2591, #3009].

## Incompatible Changes

1. **RADIUS hook renamed**: The existing RADIUS hook has been renamed to
`old_radius`. If you are using RADIUS, please make sure to update your
hook configuration [#3069].

2. **output_options renamed to output-options**: The `output_options`
parameter used in configuring logging was the only parameter than used
underscore. To maintain consistency with hundreds of other options, it
has been update to `output-option`. The old spelling is still supported
when reading configuration or when setting configuration using
`config-set`. However, when retrieving (`config-get`) or storing
(`config-write`) configuration, the new syntax will be used. [#3004].

## License

This version of Kea is released under the Mozilla Public License,
version 2.0.

    https://www.mozilla.org/en-US/MPL/2.0

Some Kea hook libraries are provided under the MPL 2.0; others are
licensed with the Kea Hooks Basic Commercial End User License. The
source for each hook library includes the applicable license.

## Download

Pre-built ISC packages for current versions of the most popular Linux
operating systems are available at:

    https://cloudsmith.io/~isc/repos/

The Kea source and PGP signature for this release may be downloaded from:

    https://www.isc.org/download

The signature was generated with the ISC code-signing key, which is
available at:

    https://www.isc.org/pgpkey

ISC provides detailed documentation, including installation instructions
and usage tutorials, in the Kea Administrator Reference Manual.
Documentation is included with the installation or at
https://kea.readthedocs.io/en/latest/index.html in HTML, PDF, or EPUB
formats. ISC maintains a public open source code tree, wiki, issue
tracking system, milestone planner, and roadmap at
https://gitlab.isc.org/isc-projects/kea.

Limitations and known issues with this release can be found at
https://gitlab.isc.org/isc-projects/kea/-/wikis/known-issues-list.

We ask users of this software to please let us know how it worked for
you and what operating system you tested on. Feel free to share your
feedback on the Kea Users mailing list
(https://lists.isc.org/mailman/listinfo/kea-users). We would also like
to hear whether the documentation is adequate and accurate. Please open
tickets in the Kea GitLab project for bugs, documentation omissions and
errors, and enhancement requests. We want to hear from you even if
everything worked.

## Support

Professional support for Kea is available from ISC. We encourage all
professional users to consider this option; Kea maintenance is funded
with support subscriptions. For more information on ISC's Kea software
support, see https://www.isc.org/support/.

Free best-effort support is provided by our user community via a mailing
list. Information on all public email lists is available at
https://www.isc.org/community/mailing-list. If you have any comments or
questions about working with Kea, please share them to the Kea Users
list (https://lists.isc.org/mailman/listinfo/kea-users). Bugs and
feature requests may be submitted via GitLab at
https://gitlab.isc.org/isc-projects/kea/-/issues.

## Changes

The following summarizes changes and important upgrades since the 2.5.1
release.

2182.	[build]		razvan
	The library version numbers have been bumped up for the Kea 2.5.2
	development release.
	(Gitlab #3085)

2181.	[func]		razvan
	Added additional tokens which evaluate string expressions:
	"lcase" which converts to lower case and "ucase" which
	converts to upper case.
	(Gitlab #3048)

2180.	[build]		andrei
	Apart from enabling log4cplus's own logging, and adding more
	sanity checks in DNS code, the --enable-debug configure flag
	now also makes the compiler produce more abundant debugging
	information that can be read by a debugger.
	(Gitlab #1520)

2179.	[doc]		piotrek
	Updated Developer's Guide with information about new hook
	point "lease4_offer".
	(Gitlab #3067)

2178.	[doc]		andrei
	Clarified in the ARM that DHCPv6 clients with unstable DUIDs can
	be handled using the flex-id library. The configuration examples
	that can help with that are found in the flex-id documentation.
	(Gitlab #181)

2177.	[func]		piotrek
	Implemented new DHCPv4 hook point "lease4_offer".
	The callout is executed after the server has received
	the DHCPDISCOVER and the DHCPOFFER has been constructed
	but not yet sent to the client.
	(Gitlab #3038, #3063)

2176.	[doc]		piotrek, razvan
	Updated ARM docs with new configuration key "output-options" and
	alias "output_options". All config examples, where previous
	"output_options" key appeared, were updated.
	(Gitlab #2904, #3004)
And for Kea premium:

182.	[build]		fdupont, andrei
	The RADIUS client is being refactored. Until that work is done,
	the callouts of libdhcp_radius.so are disabled. The library will
	have no effect when loaded in a Kea server.
	libdhcp_old_radius.so provides the former features until then.
	(Gitlab #3043, #3069)

181.	[bug]		razvan
	Fixed an issue where lease updates coming from the High
	Availability hook library for DHCPv6 or from lease6-bulk-apply
	command were not logged by forensic log hook library.
	(Gitlab #2967)

180.	[func]		fdupont
	Made the host_cache hook library compatible with
	multi-threading.
	(Gitlab #2023)

179.	[build]		fdupont
	Now PW_DELEGATED_IPV6_PREFIX must be defined (it is
	not supported in very old FreeRADIUS client libraries)
	to build the RADIUS hook library.
	(Gitlab #2998)

Thank you again to everyone who assisted us in making this release
possible.

We look forward to receiving your feedback.

-- 
Everett B. Fulton
ISC Support

More information about the kea-announce mailing list