diff -Nru ldns-1.7.0~rc3/Changelog ldns-1.7.0/Changelog
--- ldns-1.7.0~rc3/Changelog	2016-12-15 16:34:32.000000000 +0000
+++ ldns-1.7.0/Changelog	2016-12-20 10:48:22.000000000 +0000
@@ -1,4 +1,4 @@
-1.7.0	2016-12-??
+1.7.0	2016-12-20
 	* Fix lookup of relative names in ldns_resolver_search.
 	* bugfix #548: Double free for answers > 4096 in ldns_resolver_send_pkt
 	* Follow CNAME's when tracing with drill (TODO dnssec trace)
@@ -109,6 +109,9 @@
 	* Clarify data ownership with consts for tsig parameters.
 	  Thanks Michael Weiser
 	* bugfix: Fix detection of DSA support with OpenSSL >= 1.1.0
+	* bugfix #1160: Provide sha256 for release tarballs
+	* --enable-gost-anyway compiles GOST support with OpenSSL >= 1.1.0
+	  even when the GOST engine is not available.
 
 1.6.17	2014-01-10
 	* Fix ldns_dnssec_zone_new_frm_fp_l to allow the last parsed line of a
diff -Nru ldns-1.7.0~rc3/configure ldns-1.7.0/configure
--- ldns-1.7.0~rc3/configure	2016-12-15 16:34:48.000000000 +0000
+++ ldns-1.7.0/configure	2016-12-20 10:48:27.000000000 +0000
@@ -808,6 +808,7 @@
 with_ssl
 enable_sha2
 enable_gost
+enable_gost_anyway
 enable_ecdsa
 enable_dsa
 enable_ed25519
@@ -1474,6 +1475,7 @@
   --enable-poll           This platform supports poll(7)
   --disable-sha2          Disable SHA256 and SHA512 RRSIG support
   --disable-gost          Disable GOST support
+  --enable-gost-anyway    Enable GOST even whithout a GOST engine installed
   --disable-ecdsa         Disable ECDSA support
   --disable-dsa           Disable DSA support
   --enable-ed25519        Enable ED25519 support (experimental)
@@ -15461,6 +15463,8 @@
         ;;
 esac
 
+# check wether gost also works
+
 # Check whether --enable-gost was given.
 if test "${enable_gost+set}" = set; then :
   enableval=$enable_gost;
@@ -15489,10 +15493,145 @@
 fi
 
 
-cat >>confdefs.h <<_ACEOF
-#define USE_GOST 1
+{ $as_echo "$as_me:${as_lineno-$LINENO}: checking if GOST works" >&5
+$as_echo_n "checking if GOST works... " >&6; }
+if test c${cross_compiling} = cno; then
+BAKCFLAGS="$CFLAGS"
+if test -n "$ssldir"; then
+	CFLAGS="$CFLAGS -Wl,-rpath,$ssldir/lib"
+fi
+if test "$cross_compiling" = yes; then :
+  { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5
+$as_echo "$as_me: error: in \`$ac_pwd':" >&2;}
+as_fn_error $? "cannot run test program while cross compiling
+See \`config.log' for more details" "$LINENO" 5; }
+else
+  cat confdefs.h - <<_ACEOF >conftest.$ac_ext
+/* end confdefs.h.  */
+
+#include <string.h>
+#include <openssl/ssl.h>
+#include <openssl/evp.h>
+#include <openssl/engine.h>
+#include <openssl/conf.h>
+/* routine to load gost (from sldns) */
+int load_gost_id(void)
+{
+	static int gost_id = 0;
+	const EVP_PKEY_ASN1_METHOD* meth;
+	ENGINE* e;
+
+	if(gost_id) return gost_id;
+
+	/* see if configuration loaded gost implementation from other engine*/
+	meth = EVP_PKEY_asn1_find_str(NULL, "gost2001", -1);
+	if(meth) {
+		EVP_PKEY_asn1_get0_info(&gost_id, NULL, NULL, NULL, NULL, meth);
+		return gost_id;
+	}
+
+	/* see if engine can be loaded already */
+	e = ENGINE_by_id("gost");
+	if(!e) {
+		/* load it ourself, in case statically linked */
+		ENGINE_load_builtin_engines();
+		ENGINE_load_dynamic();
+		e = ENGINE_by_id("gost");
+	}
+	if(!e) {
+		/* no gost engine in openssl */
+		return 0;
+	}
+	if(!ENGINE_set_default(e, ENGINE_METHOD_ALL)) {
+		ENGINE_finish(e);
+		ENGINE_free(e);
+		return 0;
+	}
+
+	meth = EVP_PKEY_asn1_find_str(&e, "gost2001", -1);
+	if(!meth) {
+		/* algo not found */
+		ENGINE_finish(e);
+		ENGINE_free(e);
+		return 0;
+	}
+	EVP_PKEY_asn1_get0_info(&gost_id, NULL, NULL, NULL, NULL, meth);
+	return gost_id;
+}
+int main(void) {
+	EVP_MD_CTX* ctx;
+	const EVP_MD* md;
+	unsigned char digest[64]; /* its a 256-bit digest, so uses 32 bytes */
+	const char* str = "Hello world";
+	const unsigned char check[] = {
+		0x40 , 0xed , 0xf8 , 0x56 , 0x5a , 0xc5 , 0x36 , 0xe1 ,
+		0x33 , 0x7c , 0x7e , 0x87 , 0x62 , 0x1c , 0x42 , 0xe0 ,
+		0x17 , 0x1b , 0x5e , 0xce , 0xa8 , 0x46 , 0x65 , 0x4d ,
+		0x8d , 0x3e , 0x22 , 0x9b , 0xe1 , 0x30 , 0x19 , 0x9d
+	};
+	OPENSSL_config(NULL);
+	(void)load_gost_id();
+	md = EVP_get_digestbyname("md_gost94");
+	if(!md) return 1;
+	memset(digest, 0, sizeof(digest));
+	ctx = EVP_MD_CTX_create();
+	if(!ctx) return 2;
+	if(!EVP_DigestInit_ex(ctx, md, NULL)) return 3;
+	if(!EVP_DigestUpdate(ctx, str, 10)) return 4;
+	if(!EVP_DigestFinal_ex(ctx, digest, NULL)) return 5;
+	/* uncomment to see the hash calculated.
+		{int i;
+		for(i=0; i<32; i++)
+			printf(" %2.2x", (int)digest[i]);
+		printf("\n");}
+	*/
+	if(memcmp(digest, check, sizeof(check)) != 0)
+		return 6;
+	return 0;
+}
+
 _ACEOF
+if ac_fn_c_try_run "$LINENO"; then :
+  eval "ac_cv_c_gost_works=yes"
+else
+  eval "ac_cv_c_gost_works=no"
+fi
+rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \
+  conftest.$ac_objext conftest.beam conftest.$ac_ext
+fi
+
+CFLAGS="$BAKCFLAGS"
+else
+eval "ac_cv_c_gost_works=maybe"
+fi
+
+	# Check whether --enable-gost-anyway was given.
+if test "${enable_gost_anyway+set}" = set; then :
+  enableval=$enable_gost_anyway;
+fi
+
+	if test "$ac_cv_c_gost_works" != "no" -o "$enable_gost_anyway" = "yes"; then
+		if test "$ac_cv_c_gost_works" = "no"; then
+			{ $as_echo "$as_me:${as_lineno-$LINENO}: result: no, but compiling with GOST support anyway" >&5
+$as_echo "no, but compiling with GOST support anyway" >&6; }
+		else
+			{ $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5
+$as_echo "yes" >&6; }
+		fi
+		use_gost="yes"
 
+$as_echo "#define USE_GOST 1" >>confdefs.h
+
+	else
+		{ $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5
+$as_echo "no" >&6; }
+		{ $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Gost support does not work because the engine is missing." >&5
+$as_echo "$as_me: WARNING: Gost support does not work because the engine is missing." >&2;}
+		{ $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Install gost-engine first or use the --enable-gost-anyway to compile with GOST support anyway" >&5
+$as_echo "$as_me: WARNING: Install gost-engine first or use the --enable-gost-anyway to compile with GOST support anyway" >&2;}
+		{ $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: See also https://github.com/gost-engine/engine/wiki for information about gost-engine" >&5
+$as_echo "$as_me: WARNING: See also https://github.com/gost-engine/engine/wiki for information about gost-engine" >&2;}
+	fi
         ;;
 esac
 
diff -Nru ldns-1.7.0~rc3/configure.ac ldns-1.7.0/configure.ac
--- ldns-1.7.0~rc3/configure.ac	2016-12-15 16:34:44.000000000 +0000
+++ ldns-1.7.0/configure.ac	2016-12-20 10:48:22.000000000 +0000
@@ -354,6 +354,103 @@
         ;;
 esac
 
+# check wether gost also works
+AC_DEFUN([AC_CHECK_GOST_WORKS],
+[AC_REQUIRE([AC_PROG_CC])
+AC_MSG_CHECKING([if GOST works])
+if test c${cross_compiling} = cno; then
+BAKCFLAGS="$CFLAGS"
+if test -n "$ssldir"; then
+	CFLAGS="$CFLAGS -Wl,-rpath,$ssldir/lib"
+fi
+AC_RUN_IFELSE([AC_LANG_SOURCE([[
+#include <string.h>
+#include <openssl/ssl.h>
+#include <openssl/evp.h>
+#include <openssl/engine.h>
+#include <openssl/conf.h>
+/* routine to load gost (from sldns) */
+int load_gost_id(void)
+{
+	static int gost_id = 0;
+	const EVP_PKEY_ASN1_METHOD* meth;
+	ENGINE* e;
+
+	if(gost_id) return gost_id;
+
+	/* see if configuration loaded gost implementation from other engine*/
+	meth = EVP_PKEY_asn1_find_str(NULL, "gost2001", -1);
+	if(meth) {
+		EVP_PKEY_asn1_get0_info(&gost_id, NULL, NULL, NULL, NULL, meth);
+		return gost_id;
+	}
+
+	/* see if engine can be loaded already */
+	e = ENGINE_by_id("gost");
+	if(!e) {
+		/* load it ourself, in case statically linked */
+		ENGINE_load_builtin_engines();
+		ENGINE_load_dynamic();
+		e = ENGINE_by_id("gost");
+	}
+	if(!e) {
+		/* no gost engine in openssl */
+		return 0;
+	}
+	if(!ENGINE_set_default(e, ENGINE_METHOD_ALL)) {
+		ENGINE_finish(e);
+		ENGINE_free(e);
+		return 0;
+	}
+
+	meth = EVP_PKEY_asn1_find_str(&e, "gost2001", -1);
+	if(!meth) {
+		/* algo not found */
+		ENGINE_finish(e);
+		ENGINE_free(e);
+		return 0;
+	}
+	EVP_PKEY_asn1_get0_info(&gost_id, NULL, NULL, NULL, NULL, meth);
+	return gost_id;
+}
+int main(void) { 
+	EVP_MD_CTX* ctx;
+	const EVP_MD* md;
+	unsigned char digest[64]; /* its a 256-bit digest, so uses 32 bytes */
+	const char* str = "Hello world";
+	const unsigned char check[] = {
+		0x40 , 0xed , 0xf8 , 0x56 , 0x5a , 0xc5 , 0x36 , 0xe1 ,
+		0x33 , 0x7c , 0x7e , 0x87 , 0x62 , 0x1c , 0x42 , 0xe0 ,
+		0x17 , 0x1b , 0x5e , 0xce , 0xa8 , 0x46 , 0x65 , 0x4d ,
+		0x8d , 0x3e , 0x22 , 0x9b , 0xe1 , 0x30 , 0x19 , 0x9d
+	};
+	OPENSSL_config(NULL);
+	(void)load_gost_id();
+	md = EVP_get_digestbyname("md_gost94");
+	if(!md) return 1;
+	memset(digest, 0, sizeof(digest));
+	ctx = EVP_MD_CTX_create();
+	if(!ctx) return 2;
+	if(!EVP_DigestInit_ex(ctx, md, NULL)) return 3;
+	if(!EVP_DigestUpdate(ctx, str, 10)) return 4;
+	if(!EVP_DigestFinal_ex(ctx, digest, NULL)) return 5;
+	/* uncomment to see the hash calculated.
+		{int i;
+		for(i=0; i<32; i++)
+			printf(" %2.2x", (int)digest[i]);
+		printf("\n");}
+	*/
+	if(memcmp(digest, check, sizeof(check)) != 0)
+		return 6;
+	return 0;
+}
+]])] , [eval "ac_cv_c_gost_works=yes"], [eval "ac_cv_c_gost_works=no"])
+CFLAGS="$BAKCFLAGS"
+else
+eval "ac_cv_c_gost_works=maybe"
+fi
+])dnl
+
 AC_ARG_ENABLE(gost, AC_HELP_STRING([--disable-gost], [Disable GOST support]))
 case "$enable_gost" in
     no)
@@ -365,7 +462,22 @@
         AC_MSG_CHECKING(for GOST)
         AC_CHECK_FUNC(EVP_PKEY_set_type_str, [],[AC_MSG_ERROR([OpenSSL >= 1.0.0 is needed for GOST support or rerun with --disable-gost])])
         AC_CHECK_FUNC(EC_KEY_new, [], [AC_MSG_ERROR([No ECC functions found in OpenSSL: please upgrade OpenSSL or rerun with --disable-gost])])
-        AC_DEFINE_UNQUOTED([USE_GOST], [1], [Define this to enable GOST support.])
+	AC_CHECK_GOST_WORKS
+	AC_ARG_ENABLE(gost-anyway, AC_HELP_STRING([--enable-gost-anyway], [Enable GOST even whithout a GOST engine installed]))
+	if test "$ac_cv_c_gost_works" != "no" -o "$enable_gost_anyway" = "yes"; then
+		if test "$ac_cv_c_gost_works" = "no"; then
+			AC_MSG_RESULT([no, but compiling with GOST support anyway])
+		else
+			AC_MSG_RESULT([yes])
+		fi
+		use_gost="yes"
+		AC_DEFINE([USE_GOST], [1], [Define this to enable GOST support.])
+	else
+		AC_MSG_RESULT([no])
+		AC_MSG_WARN([Gost support does not work because the engine is missing.])
+		AC_MSG_WARN([Install gost-engine first or use the --enable-gost-anyway to compile with GOST support anyway])
+		AC_MSG_WARN([See also https://github.com/gost-engine/engine/wiki for information about gost-engine])
+	fi
         ;;
 esac
 
diff -Nru ldns-1.7.0~rc3/contrib/DNS-LDNS/LDNS.xs ldns-1.7.0/contrib/DNS-LDNS/LDNS.xs
--- ldns-1.7.0~rc3/contrib/DNS-LDNS/LDNS.xs	2016-12-15 16:34:34.000000000 +0000
+++ ldns-1.7.0/contrib/DNS-LDNS/LDNS.xs	2016-12-20 10:48:23.000000000 +0000
@@ -2184,7 +2184,7 @@
 	ALIAS:
 	nameservers_randomize = 1
 
-char*
+const char*
 ldns_resolver_tsig_keyname(resolver)
 	DNS__LDNS__Resolver resolver;
 	ALIAS:
@@ -2197,7 +2197,7 @@
 	ALIAS:
 	set_tsig_keyname = 1
 
-char*
+const char*
 ldns_resolver_tsig_algorithm(resolver)
 	DNS__LDNS__Resolver resolver;
 	ALIAS:
@@ -2210,7 +2210,7 @@
 	ALIAS:
 	set_tsig_algorithm = 1
 
-char*
+const char*
 ldns_resolver_tsig_keydata(resolver)
 	DNS__LDNS__Resolver resolver;
 	ALIAS:
diff -Nru ldns-1.7.0~rc3/contrib/python/ldns.i ldns-1.7.0/contrib/python/ldns.i
--- ldns-1.7.0~rc3/contrib/python/ldns.i	2016-12-15 16:34:32.000000000 +0000
+++ ldns-1.7.0/contrib/python/ldns.i	2016-12-20 10:48:22.000000000 +0000
@@ -126,6 +126,9 @@
 %immutable ldns_struct_rr_descriptor::_name;
 %immutable ldns_error_str;
 %immutable ldns_signing_algorithms;
+%immutable ldns_tsig_credentials_struct::algorithm;
+%immutable ldns_tsig_credentials_struct::keyname;
+%immutable ldns_tsig_credentials_struct::keydata;
 
 //*_new_frm_fp_l
 %apply int *OUTPUT { (int *line_nr) };
diff -Nru ldns-1.7.0~rc3/contrib/python/ldns_resolver.i ldns-1.7.0/contrib/python/ldns_resolver.i
--- ldns-1.7.0~rc3/contrib/python/ldns_resolver.i	2016-12-15 16:34:32.000000000 +0000
+++ ldns-1.7.0/contrib/python/ldns_resolver.i	2016-12-20 10:48:22.000000000 +0000
@@ -113,9 +113,9 @@
 %rename(__ldns_resolver_tsig_algorithm) ldns_resolver_tsig_algorithm;
 %inline
 %{
-  char * _ldns_resolver_tsig_algorithm(const ldns_resolver *res)
+  const char * _ldns_resolver_tsig_algorithm(const ldns_resolver *res)
   {
-    char *str;
+    const char *str;
     str = ldns_resolver_tsig_algorithm(res);
     if (str != NULL) {
       str = strdup(str);
@@ -128,9 +128,9 @@
 %rename(__ldns_resolver_tsig_keydata) ldns_resolver_tsig_keydata;
 %inline
 %{
-  char * _ldns_resolver_tsig_keydata(const ldns_resolver *res)
+  const char * _ldns_resolver_tsig_keydata(const ldns_resolver *res)
   {
-    char *str;
+    const char *str;
     str = ldns_resolver_tsig_keydata(res);
     if (str != NULL) {
       str = strdup(str);
@@ -143,9 +143,9 @@
 %rename(__ldns_resolver_tsig_keyname) ldns_resolver_tsig_keyname;
 %inline
 %{
-  char * _ldns_resolver_tsig_keyname(const ldns_resolver *res)
+  const char * _ldns_resolver_tsig_keyname(const ldns_resolver *res)
   {
-    char *str;
+    const char *str;
     str = ldns_resolver_tsig_keyname(res);
     if (str != NULL) {
       str = strdup(str);
diff -Nru ldns-1.7.0~rc3/debian/changelog ldns-1.7.0/debian/changelog
--- ldns-1.7.0~rc3/debian/changelog	2016-12-17 09:36:30.000000000 +0000
+++ ldns-1.7.0/debian/changelog	2016-12-21 12:12:52.000000000 +0000
@@ -1,3 +1,10 @@
+ldns (1.7.0-1) unstable; urgency=medium
+
+  * Imported Upstream version 1.7.0
+  * Use --enable-gost-anyway to enable GOST even when not available at compile time
+
+ -- Ondřej Surý <ondrej@debian.org>  Wed, 21 Dec 2016 13:12:52 +0100
+
 ldns (1.7.0~rc3-1) unstable; urgency=medium
 
   * Imported Upstream version 1.7.0~rc3
diff -Nru ldns-1.7.0~rc3/debian/rules ldns-1.7.0/debian/rules
--- ldns-1.7.0~rc3/debian/rules	2016-12-17 09:36:30.000000000 +0000
+++ ldns-1.7.0/debian/rules	2016-12-21 12:12:52.000000000 +0000
@@ -17,7 +17,7 @@
 	dh $@ --with python2 --with autoreconf --with autotools-dev
 
 override_dh_auto_configure:
-	dh_auto_configure -- --disable-rpath --enable-gost --with-pyldns --with-examples --with-drill --disable-ldns-config
+	dh_auto_configure -- --disable-rpath --enable-gost --enable-gost-anyway --with-pyldns --with-examples --with-drill --disable-ldns-config
 
 override_dh_strip:
 	dh_strip -O--dbgsym-migration='libldns1-dbg (<< 1.7.0~)'
diff -Nru ldns-1.7.0~rc3/doc/header.html ldns-1.7.0/doc/header.html
--- ldns-1.7.0~rc3/doc/header.html	2016-12-15 16:34:32.000000000 +0000
+++ ldns-1.7.0/doc/header.html	2016-12-20 10:48:22.000000000 +0000
@@ -1,10 +1,55 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-<html><head><meta http-equiv="Content-Type"
-content="text/html;charset=iso-8859-1">
-<title>ldns documentation</title>
-<link href="doxygen.css" rel="stylesheet" type="text/css">
-<link href="tabs.css" rel="stylesheet" type="text/css">
-</head><body>
-<div class="logo">
-<img src="LogoInGradientBar2-y100.png"/>
+<!-- HTML header for doxygen 1.8.11-->
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/>
+<meta http-equiv="X-UA-Compatible" content="IE=9"/>
+<meta name="generator" content="Doxygen $doxygenversion"/>
+<!--BEGIN PROJECT_NAME--><title>$projectname: $title</title><!--END PROJECT_NAME-->
+<!--BEGIN !PROJECT_NAME--><title>$title</title><!--END !PROJECT_NAME-->
+<link href="$relpath^tabs.css" rel="stylesheet" type="text/css"/>
+<script type="text/javascript" src="$relpath^jquery.js"></script>
+<script type="text/javascript" src="$relpath^dynsections.js"></script>
+$treeview
+$search
+$mathjax
+<link href="$relpath^$stylesheet" rel="stylesheet" type="text/css" />
+$extrastylesheet
+</head>
+<body>
+<div id="top"><!-- do not remove this div, it is closed by doxygen! -->
+
+<!--BEGIN TITLEAREA-->
+<div id="titlearea">
+<table cellspacing="0" cellpadding="0">
+ <tbody>
+ <tr style="height: 56px;">
+  <!--BEGIN PROJECT_LOGO-->
+  <td id="projectlogo"><img alt="Logo" src="$relpath^$projectlogo"/></td>
+  <!--END PROJECT_LOGO-->
+  <!--BEGIN PROJECT_NAME-->
+  <td id="projectalign" style="padding-left: 0.5em;">
+   <div id="projectname">$projectname
+   <!--BEGIN PROJECT_NUMBER-->&#160;<span id="projectnumber">$projectnumber</span><!--END PROJECT_NUMBER-->
+   </div>
+   <!--BEGIN PROJECT_BRIEF--><div id="projectbrief">$projectbrief</div><!--END PROJECT_BRIEF-->
+  </td>
+  <!--END PROJECT_NAME-->
+  <!--BEGIN !PROJECT_NAME-->
+   <!--BEGIN PROJECT_BRIEF-->
+    <td style="padding-left: 0.5em;">
+    <div id="projectbrief">$projectbrief</div>
+    </td>
+   <!--END PROJECT_BRIEF-->
+  <!--END !PROJECT_NAME-->
+  <!--BEGIN DISABLE_INDEX-->
+   <!--BEGIN SEARCHENGINE-->
+   <td>$searchbox</td>
+   <!--END SEARCHENGINE-->
+  <!--END DISABLE_INDEX-->
+ </tr>
+ </tbody>
+</table>
 </div>
+<!--END TITLEAREA-->
+<!-- end header part -->
diff -Nru ldns-1.7.0~rc3/drill/configure ldns-1.7.0/drill/configure
--- ldns-1.7.0~rc3/drill/configure	2016-12-15 16:34:54.000000000 +0000
+++ ldns-1.7.0/drill/configure	2016-12-20 10:48:33.000000000 +0000
@@ -1,6 +1,6 @@
 #! /bin/sh
 # Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for ldns 1.7.0-rc3.
+# Generated by GNU Autoconf 2.69 for ldns 1.7.0.
 #
 # Report bugs to <libdns@nlnetlabs.nl>.
 #
@@ -580,8 +580,8 @@
 # Identity of this package.
 PACKAGE_NAME='ldns'
 PACKAGE_TARNAME='libdns'
-PACKAGE_VERSION='1.7.0-rc3'
-PACKAGE_STRING='ldns 1.7.0-rc3'
+PACKAGE_VERSION='1.7.0'
+PACKAGE_STRING='ldns 1.7.0'
 PACKAGE_BUGREPORT='libdns@nlnetlabs.nl'
 PACKAGE_URL=''
 
@@ -1247,7 +1247,7 @@
   # Omit some internal or obsolete options to make the list less imposing.
   # This message is too long to be a string in the A/UX 3.1 sh.
   cat <<_ACEOF
-\`configure' configures ldns 1.7.0-rc3 to adapt to many kinds of systems.
+\`configure' configures ldns 1.7.0 to adapt to many kinds of systems.
 
 Usage: $0 [OPTION]... [VAR=VALUE]...
 
@@ -1309,7 +1309,7 @@
 
 if test -n "$ac_init_help"; then
   case $ac_init_help in
-     short | recursive ) echo "Configuration of ldns 1.7.0-rc3:";;
+     short | recursive ) echo "Configuration of ldns 1.7.0:";;
    esac
   cat <<\_ACEOF
 
@@ -1408,7 +1408,7 @@
 test -n "$ac_init_help" && exit $ac_status
 if $ac_init_version; then
   cat <<\_ACEOF
-ldns configure 1.7.0-rc3
+ldns configure 1.7.0
 generated by GNU Autoconf 2.69
 
 Copyright (C) 2012 Free Software Foundation, Inc.
@@ -1831,7 +1831,7 @@
 This file contains any messages produced by compilers while
 running configure, to aid debugging if configure makes a mistake.
 
-It was created by ldns $as_me 1.7.0-rc3, which was
+It was created by ldns $as_me 1.7.0, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   $ $0 $@
@@ -5957,7 +5957,7 @@
 # report actual input values of CONFIG_FILES etc. instead of their
 # values after options handling.
 ac_log="
-This file was extended by ldns $as_me 1.7.0-rc3, which was
+This file was extended by ldns $as_me 1.7.0, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   CONFIG_FILES    = $CONFIG_FILES
@@ -6019,7 +6019,7 @@
 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`"
 ac_cs_version="\\
-ldns config.status 1.7.0-rc3
+ldns config.status 1.7.0
 configured by $0, generated by GNU Autoconf 2.69,
   with options \\"\$ac_cs_config\\"
 
diff -Nru ldns-1.7.0~rc3/drill/configure.ac ldns-1.7.0/drill/configure.ac
--- ldns-1.7.0~rc3/drill/configure.ac	2016-12-15 16:34:44.000000000 +0000
+++ ldns-1.7.0/drill/configure.ac	2016-12-20 10:48:22.000000000 +0000
@@ -2,7 +2,7 @@
 # Process this file with autoconf to produce a configure script.
 
 AC_PREREQ(2.56)
-AC_INIT(ldns, 1.7.0-rc3, libdns@nlnetlabs.nl,libdns)
+AC_INIT(ldns, 1.7.0, libdns@nlnetlabs.nl,libdns)
 AC_CONFIG_SRCDIR([drill.c])
 sinclude(../acx_nlnetlabs.m4)
 
diff -Nru ldns-1.7.0~rc3/examples/configure ldns-1.7.0/examples/configure
--- ldns-1.7.0~rc3/examples/configure	2016-12-15 16:34:51.000000000 +0000
+++ ldns-1.7.0/examples/configure	2016-12-20 10:48:30.000000000 +0000
@@ -1,6 +1,6 @@
 #! /bin/sh
 # Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for ldns 1.7.0-rc3.
+# Generated by GNU Autoconf 2.69 for ldns 1.7.0.
 #
 # Report bugs to <libdns@nlnetlabs.nl>.
 #
@@ -580,8 +580,8 @@
 # Identity of this package.
 PACKAGE_NAME='ldns'
 PACKAGE_TARNAME='libdns'
-PACKAGE_VERSION='1.7.0-rc3'
-PACKAGE_STRING='ldns 1.7.0-rc3'
+PACKAGE_VERSION='1.7.0'
+PACKAGE_STRING='ldns 1.7.0'
 PACKAGE_BUGREPORT='libdns@nlnetlabs.nl'
 PACKAGE_URL=''
 
@@ -1259,7 +1259,7 @@
   # Omit some internal or obsolete options to make the list less imposing.
   # This message is too long to be a string in the A/UX 3.1 sh.
   cat <<_ACEOF
-\`configure' configures ldns 1.7.0-rc3 to adapt to many kinds of systems.
+\`configure' configures ldns 1.7.0 to adapt to many kinds of systems.
 
 Usage: $0 [OPTION]... [VAR=VALUE]...
 
@@ -1321,7 +1321,7 @@
 
 if test -n "$ac_init_help"; then
   case $ac_init_help in
-     short | recursive ) echo "Configuration of ldns 1.7.0-rc3:";;
+     short | recursive ) echo "Configuration of ldns 1.7.0:";;
    esac
   cat <<\_ACEOF
 
@@ -1427,7 +1427,7 @@
 test -n "$ac_init_help" && exit $ac_status
 if $ac_init_version; then
   cat <<\_ACEOF
-ldns configure 1.7.0-rc3
+ldns configure 1.7.0
 generated by GNU Autoconf 2.69
 
 Copyright (C) 2012 Free Software Foundation, Inc.
@@ -1896,7 +1896,7 @@
 This file contains any messages produced by compilers while
 running configure, to aid debugging if configure makes a mistake.
 
-It was created by ldns $as_me 1.7.0-rc3, which was
+It was created by ldns $as_me 1.7.0, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   $ $0 $@
@@ -6566,7 +6566,7 @@
 # report actual input values of CONFIG_FILES etc. instead of their
 # values after options handling.
 ac_log="
-This file was extended by ldns $as_me 1.7.0-rc3, which was
+This file was extended by ldns $as_me 1.7.0, which was
 generated by GNU Autoconf 2.69.  Invocation command line was
 
   CONFIG_FILES    = $CONFIG_FILES
@@ -6628,7 +6628,7 @@
 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`"
 ac_cs_version="\\
-ldns config.status 1.7.0-rc3
+ldns config.status 1.7.0
 configured by $0, generated by GNU Autoconf 2.69,
   with options \\"\$ac_cs_config\\"
 
diff -Nru ldns-1.7.0~rc3/examples/configure.ac ldns-1.7.0/examples/configure.ac
--- ldns-1.7.0~rc3/examples/configure.ac	2016-12-15 16:34:44.000000000 +0000
+++ ldns-1.7.0/examples/configure.ac	2016-12-20 10:48:22.000000000 +0000
@@ -2,7 +2,7 @@
 # Process this file with autoconf to produce a configure script.
 
 AC_PREREQ(2.56)
-AC_INIT(ldns, 1.7.0-rc3, libdns@nlnetlabs.nl,libdns)
+AC_INIT(ldns, 1.7.0, libdns@nlnetlabs.nl,libdns)
 AC_CONFIG_SRCDIR([ldns-read-zone.c])
 sinclude(../acx_nlnetlabs.m4)
 
diff -Nru ldns-1.7.0~rc3/libdns.doxygen ldns-1.7.0/libdns.doxygen
--- ldns-1.7.0~rc3/libdns.doxygen	2016-12-15 16:34:32.000000000 +0000
+++ ldns-1.7.0/libdns.doxygen	2016-12-20 10:48:22.000000000 +0000
@@ -38,7 +38,7 @@
 # could be handy for archiving the generated documentation or if some version
 # control system is used.
 
-PROJECT_NUMBER         = 1.6.7
+PROJECT_NUMBER         = 1.7.0
 
 # Using the PROJECT_BRIEF tag one can provide an optional one line description
 # for a project that appears at the top of each page and should give viewer a
@@ -51,7 +51,7 @@
 # pixels and the maximum width should not exceed 200 pixels. Doxygen will copy
 # the logo to the output directory.
 
-PROJECT_LOGO           =
+PROJECT_LOGO           = doc/images/LogoInGradientBar2-y100.png
 
 # The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) path
 # into which the generated documentation will be written. If a relative path is