[Bug 262247] net/routinator: Updata to 0.11.0

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 28 Feb 2022 14:25:53 UTC

            Bug ID: 262247
           Summary: net/routinator: Updata to 0.11.0
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
               URL: https://nlnetlabs.nl/news/2022/Feb/28/routinator-0.11.
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-bugs@FreeBSD.org
          Reporter: jaap@NLnetLabs.nl
 Attachment #232160 maintainer-approval+

Created attachment 232160
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=232160&action=edit
patch to update

This release adds TLS support to both the built-in RTR and HTTP
servers. It also adds support for validating and distributing BGPsec
router keys. Since support for these keys in RTR hasn’t been widely
tested, it will be initially disabled and needs to be activated via the
new "enable-bgpsec" command line and config file option.

Some smaller features have been added as well, such as a new "slurm" 
output format that produces JSON files following the local exception
files defined in RFC 8416, and the ability to to select VRPs with more
specific prefixes in the vrps command and from the HTTP server.

Release Notes:


* Add TLS support to the RTR and HTTP servers. (#677)
* Add support for BGPsec router keys. This needs to be explicitly
  enabled via the new enable-bgpsec command line and config file
  option. (#693)
* Reject so-called premature manifests, i.e., manifests that have an
  issue time before the current time. This is a new requirement in
  draft-ietf-sidrops-6486bis. (#681, #690)
* Add a new output format slurm that produces a JSON file formatted
  according to RFC 8416 with the validated payload included in the
  locally added assertions. (#702)
* Make the (standard) JSON payload output available under /api/v1/origins
  with the same URL parameters.(#707)
* Add a new URI parameter include=more-specifics to all HTTP payload
  output paths to include all route origins for prefixes that are
  more specifics of the selected prefixes. (#707)
* Add a new option --more-specifics to the vrps command to include
  all route origins for prefixes that are more specifics of the
  selected prefixes. (#714)
* Accept and process HEAD requests for all HTTP paths. (#707)

Bug Fixes

* Encountering stray files at the top level of the rsync cache
  directory will not cause Routinator to exit any more. Instead,
  it will just delete those files. (#675)
* Don’t exit when a directory to be deleted doesn’t exist. In
  particular, this fixes an error in the dump command. (#682)
* Count all valid CRLs for metrics generation during a validation
  run. (#683)
* Don’t claim filtering of unsafe VRPs when the policy is warn.
  (Only the log message was wrong, no VRPs were filtered in this
  case.) (#699)
* Use a TCP listener socket for the RTR server passed in via systemd
  socket activation if configured. This was already implemented but
  got lost a few versions ago. (#709)
* Enable TCP keepalive on RTR connections when configured. This,
  too, was already implemented but got lost a few versions ago.

Other Changes

* Update the NLnet Labs RPKI testbed TAL to the one used by the new
  server. (#637)

You are receiving this mail because:
You are the assignee for the bug.