Summary: | net/routinator: Updata to 0.11.0 | ||||||
---|---|---|---|---|---|---|---|
Product: | Ports & Packages | Reporter: | Jaap Akkerhuis <jaap> | ||||
Component: | Individual Port(s) | Assignee: | Guangyuan Yang <ygy> | ||||
Status: | Closed FIXED | ||||||
Severity: | Affects Only Me | CC: | ygy | ||||
Priority: | --- | ||||||
Version: | Latest | ||||||
Hardware: | Any | ||||||
OS: | Any | ||||||
URL: | https://nlnetlabs.nl/news/2022/Feb/28/routinator-0.11.0-released/ | ||||||
Attachments: |
|
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=8d3a67e4d487f20c7f3f6315bb26dbe247964562 commit 8d3a67e4d487f20c7f3f6315bb26dbe247964562 Author: Jaap Akkerhuis <jaap@NLnetLabs.nl> AuthorDate: 2022-03-02 01:54:23 +0000 Commit: Guangyuan Yang <ygy@FreeBSD.org> CommitDate: 2022-03-02 01:54:23 +0000 net/routinator: Update to 0.11.0 Changelog: https://nlnetlabs.nl/news/2022/Feb/28/routinator-0.11.0-released/ PR: 262247 net/routinator/Makefile | 239 +++++++++++++-------------- net/routinator/distinfo | 426 ++++++++++++++++++++++++------------------------ 2 files changed, 338 insertions(+), 327 deletions(-) |
Created attachment 232160 [details] patch to update This release adds TLS support to both the built-in RTR and HTTP servers. It also adds support for validating and distributing BGPsec router keys. Since support for these keys in RTR hasn’t been widely tested, it will be initially disabled and needs to be activated via the new "enable-bgpsec" command line and config file option. Some smaller features have been added as well, such as a new "slurm" output format that produces JSON files following the local exception files defined in RFC 8416, and the ability to to select VRPs with more specific prefixes in the vrps command and from the HTTP server. Release Notes: New * Add TLS support to the RTR and HTTP servers. (#677) * Add support for BGPsec router keys. This needs to be explicitly enabled via the new enable-bgpsec command line and config file option. (#693) * Reject so-called premature manifests, i.e., manifests that have an issue time before the current time. This is a new requirement in draft-ietf-sidrops-6486bis. (#681, #690) * Add a new output format slurm that produces a JSON file formatted according to RFC 8416 with the validated payload included in the locally added assertions. (#702) * Make the (standard) JSON payload output available under /api/v1/origins with the same URL parameters.(#707) * Add a new URI parameter include=more-specifics to all HTTP payload output paths to include all route origins for prefixes that are more specifics of the selected prefixes. (#707) * Add a new option --more-specifics to the vrps command to include all route origins for prefixes that are more specifics of the selected prefixes. (#714) * Accept and process HEAD requests for all HTTP paths. (#707) Bug Fixes * Encountering stray files at the top level of the rsync cache directory will not cause Routinator to exit any more. Instead, it will just delete those files. (#675) * Don’t exit when a directory to be deleted doesn’t exist. In particular, this fixes an error in the dump command. (#682) * Count all valid CRLs for metrics generation during a validation run. (#683) * Don’t claim filtering of unsafe VRPs when the policy is warn. (Only the log message was wrong, no VRPs were filtered in this case.) (#699) * Use a TCP listener socket for the RTR server passed in via systemd socket activation if configured. This was already implemented but got lost a few versions ago. (#709) * Enable TCP keepalive on RTR connections when configured. This, too, was already implemented but got lost a few versions ago. (#710) Other Changes * Update the NLnet Labs RPKI testbed TAL to the one used by the new server. (#637)