[kea-announce] Kea 2.6.1 and 2.7.1 are released

Wed Jul 31 13:14:11 UTC 2024

Kea users-
Internet Systems Consortium is pleased to announce the release of Kea 2.6.1 and 2.7.1.
These are a maintenance update for the stable Kea 2.6 version, and the second release of the new Kea 2.7 development branch.  
There is a new known issue, affecting users of our RADIUS hook only: https://gitlab.isc.org/isc-projects/kea/-/issues/3503. Basically, the RADIUS protocol uses outdated cryptography and is therefore inherently subject to forgery attacks. This can be mitigated by protecting the traffic between the RADIUS server and the Kea server.
There are two stable branches of Kea, suitable for production use: the current versions are Kea 2.6.1 and Kea 2.4.1. Releases in the Kea 2.7.x sequence are part of the Kea development branch, where new features are provided for testing and evaluation before the branch is designated stable and recommended for production use.
Source tarballs and packages are available from cloudsmith.io:
https://cloudsmith.io/~isc/repos/kea-dev/packages/ <https://cloudsmith.io/~isc/repos/kea-/packages/>.
And from the ISC download page: https://www.isc.org/download/#Kea

Also note that we have a Docker image. Kea Dockers are available in a separate repository on Cloudsmith: https://cloudsmith.io/~isc/repos/docker/packages/.
Regards,

Vicky Risk, Product Manager
----------------
# Kea 2.6.1 Release Notes, July 31st 2024

Welcome to Kea 2.6.1, a maintenance release of the stable 2.6 series.

Kea is a DHCP implementation developed by Internet Systems Consortium 
(ISC) that features DHCPv4 and DHCPv6 servers with DNS update and a REST 
API; optional database support (MySQL/MariaDB and PostgreSQL); optional 
RADIUS, Kerberos, YANG/NETCONF, and GSS-TSIG support; and much more. Kea 
provides extensive management capabilities, including but not limited 
to: TLS support, Role-Based Access Control, run-time configuration 
monitoring and updates via a REST API, host reservations, and client 
classification.

The text below references issue numbers. For more details, visit the Kea 
GitLab page at https://gitlab.isc.org/isc-projects/kea/-/issues. For 
details about Docker issues, visit the page at 
https://gitlab.isc.org/isc-projects/kea-docker/-/issues/. For details 
about packaging, visit the page at 
https://gitlab.isc.org/isc-projects/kea-packaging/-/issues/.

The following bug fixes have been implemented since the previous stable 
release, version 2.6.0:

1. **Fix for option types in CB**: We corrected an issue with 
overlapping enum values for the option definition data type stored in 
the Configuration Backend (CB). This was causing option definitions of 
type "record", created via CB commands, to not load properly when 
fetched from the backend. This change updates DB schemas for both 
PostgreSQL and MySQL [#3484, backport of #3476].

2. **Fix for invalid sub-option storage in CB**: We corrected a bug in 
storing and fetching the encapsulated DHCP options from the CB. These 
options were sometimes not returned when they were specified at the 
subnet, shared-network, or client-class level [#3485, backport of #3481].

3. **PostgreSQL compilation fix**: [#3505, backport of #3436].

4. **Fix for a file descriptors leak**: We fixed a file descriptor leak 
in the High Availability hook library [#3486, backport of #3449].

5. **Fix for remote-class6-get API command**: We corrected an issue in 
the MySQL CB that caused preferred lifetime values to be overwritten 
when updating client classes via the `remote-set-class6` command [#3509, 
backport of #3469].

6. **CI**: We backported a small fix in the Continuous Integration (CI) 
that fixed the 2.6 pipeline [#3498].

## Incompatible Changes

None, although a DB schema update is necessary if PostgreSQL or MySQL is 
used, even if the Configuration Backend (CB) itself is not used.

## Packaging

1. **Native packages**: For convenient installation, Kea is available as 
native (deb, RPM, and APK) packages for the following systems on 
Intel/AMD x64 (amd64) and ARM (aarch64) architecture: Alpine 3.16 
(amd64), 3.17 (amd64), 3.18 (amd64), 3.19 (amd64, aarch64); RHEL 8 
(amd64), 9 (amd64, aarch64); Debian 10 (amd64), 11 (amd64, aarch64), 12 
(amd64, aarch64); Fedora 36 (amd64), 38 (amd64), 39 (amd64), 40 (amd64); 
and Ubuntu 20.04 (amd64), 22.04 (amd64, aarch64), 24.04 (amd64, 
aarch64). The images are available on Cloudsmith 
(https://cloudsmith.io/~isc/repos/).

2. **Docker**: Both pre-built Docker images and Docker files are 
available. Users can install a single container with a specific service, 
such as `kea-dhcp4`, or use the `kea-compose` script that makes 
deployment of a cluster of containers (kea-dhcp4, kea-dhcp6, and a 
PostgreSQL database) much easier. Running a DHCP server in a Docker 
container is a bit more complicated than a typical service, as a DHCPv4 
server needs to be able to receive traffic from clients that do not yet 
have an IP address assigned; simple port forwarding is not sufficient. 
Users should read about ipvlans before deploying Docker containers. 
Please use caution and share your feedback. For details, see the README 
file in https://gitlab.isc.org/isc-projects/kea-docker/. The images are 
available on Cloudsmith (at 
https://cloudsmith.io/~isc/repos/docker/packages/) and the docker files 
are on GitLab.

3. **Sources**: The source code is available as a tarball from 
Cloudsmith, on the ISC downloads site 
(https://downloads.isc.org/isc/kea/), or directly from the Kea 
repository on GitLab (https://gitlab.isc.org/isc-projects/kea).

## License

This version of Kea is released under the Mozilla Public License, 
version 2.0.

https://www.mozilla.org/en-US/MPL/2.0

Some Kea hook libraries are provided under the MPL 2.0; others are 
licensed with the [Kea Hooks Basic Commercial End User 
License](https://www.isc.org/kea-premium-license/). The source for each 
hook library includes the applicable license.

## Download

Pre-built ISC packages for current versions of the most popular Linux 
operating systems are available at:

https://cloudsmith.io/~isc/repos/

Pre-built Docker images as well as Docker files are available. For 
details, see:

https://gitlab.isc.org/isc-projects/kea-docker

The Kea source and PGP signature for this release may be downloaded from:

https://www.isc.org/download

The signature was generated with the ISC code-signing key, which is 
available at:

https://www.isc.org/pgpkey

ISC provides detailed documentation, including installation instructions 
and usage tutorials, in the Kea Administrator Reference Manual. 
Documentation is included with the installation or at 
https://kea.readthedocs.io/en/latest/index.html in HTML, PDF, or EPUB 
formats. ISC maintains a public open source code tree, wiki, issue 
tracking system, milestone planner, and roadmap at 
https://gitlab.isc.org/isc-projects/kea.

Limitations and known issues with this release can be found at 
https://gitlab.isc.org/isc-projects/kea/-/wikis/known-issues-list.

We ask users of this software to please let us know how it worked for 
you and what operating system you tested on. Feel free to share your 
feedback on the Kea Users mailing list 
(https://lists.isc.org/mailman/listinfo/kea-users). We would also like 
to hear whether the documentation is adequate and accurate. Please open 
tickets in the Kea GitLab project for bugs, documentation omissions and 
errors, and enhancement requests. We want to hear from you even if 
everything worked.

## Support

Professional support for Kea is available from ISC. We encourage all 
professional users to consider this option; Kea maintenance is funded 
with support subscriptions. For more information on ISC's Kea software 
support, see https://www.isc.org/support/.

Free best-effort support is provided by our user community via a mailing 
list. Information on all public email lists is available at 
https://www.isc.org/community/mailing-list. If you have any comments or 
questions about working with Kea, please share them to the Kea Users 
list (https://lists.isc.org/mailman/listinfo/kea-users). Bugs and 
feature requests may be submitted via GitLab at 
https://gitlab.isc.org/isc-projects/kea/-/issues.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/kea-announce/attachments/20240731/bf7bc6bc/attachment.htm>