[Bug 262247] net/routinator: Updata to 0.11.0
Date: Mon, 28 Feb 2022 14:25:53 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262247 Bug ID: 262247 Summary: net/routinator: Updata to 0.11.0 Product: Ports & Packages Version: Latest Hardware: Any URL: https://nlnetlabs.nl/news/2022/Feb/28/routinator-0.11. 0-released/ OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: ports-bugs@FreeBSD.org Reporter: jaap@NLnetLabs.nl Attachment #232160 maintainer-approval+ Flags: Created attachment 232160 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=232160&action=edit patch to update This release adds TLS support to both the built-in RTR and HTTP servers. It also adds support for validating and distributing BGPsec router keys. Since support for these keys in RTR hasn’t been widely tested, it will be initially disabled and needs to be activated via the new "enable-bgpsec" command line and config file option. Some smaller features have been added as well, such as a new "slurm" output format that produces JSON files following the local exception files defined in RFC 8416, and the ability to to select VRPs with more specific prefixes in the vrps command and from the HTTP server. Release Notes: New * Add TLS support to the RTR and HTTP servers. (#677) * Add support for BGPsec router keys. This needs to be explicitly enabled via the new enable-bgpsec command line and config file option. (#693) * Reject so-called premature manifests, i.e., manifests that have an issue time before the current time. This is a new requirement in draft-ietf-sidrops-6486bis. (#681, #690) * Add a new output format slurm that produces a JSON file formatted according to RFC 8416 with the validated payload included in the locally added assertions. (#702) * Make the (standard) JSON payload output available under /api/v1/origins with the same URL parameters.(#707) * Add a new URI parameter include=more-specifics to all HTTP payload output paths to include all route origins for prefixes that are more specifics of the selected prefixes. (#707) * Add a new option --more-specifics to the vrps command to include all route origins for prefixes that are more specifics of the selected prefixes. (#714) * Accept and process HEAD requests for all HTTP paths. (#707) Bug Fixes * Encountering stray files at the top level of the rsync cache directory will not cause Routinator to exit any more. Instead, it will just delete those files. (#675) * Don’t exit when a directory to be deleted doesn’t exist. In particular, this fixes an error in the dump command. (#682) * Count all valid CRLs for metrics generation during a validation run. (#683) * Don’t claim filtering of unsafe VRPs when the policy is warn. (Only the log message was wrong, no VRPs were filtered in this case.) (#699) * Use a TCP listener socket for the RTR server passed in via systemd socket activation if configured. This was already implemented but got lost a few versions ago. (#709) * Enable TCP keepalive on RTR connections when configured. This, too, was already implemented but got lost a few versions ago. (#710) Other Changes * Update the NLnet Labs RPKI testbed TAL to the one used by the new server. (#637) -- You are receiving this mail because: You are the assignee for the bug.