Return to 71.html CVS log | Up to [local] / www |
version 1.33, 2022/04/11 10:41:58 | version 1.34, 2022/04/11 14:38:28 | ||
---|---|---|---|
|
|
||
<li>Make sure <a href="https://man.openbsd.org/iked.8">iked(8)</a> vroute messages are correctly aligned, fixes autoconfiguration of addresses on octeon. | <li>Make sure <a href="https://man.openbsd.org/iked.8">iked(8)</a> vroute messages are correctly aligned, fixes autoconfiguration of addresses on octeon. | ||
</ul> | </ul> | ||
<!-- rpki-client --> | <!-- rpki-client --> | ||
<li><a | <li><a href="https://man.openbsd.org/rpki-client.8">rpki-client(8)</a> was | ||
href="https://man.openbsd.org/rpki-client.8">rpki-client(8)</a> was | made more resilient regarding untrusted input. The following | ||
made more resilient regarding untrusted input. Additionally the | bugfixes and improvements were made: | ||
following bugfixes and improvements were made: | |||
<ul> | <ul> | ||
<li>Added support for validating BGPsec Router Public Keys. | <li>Added support for validating BGPsec Router Public Keys. | ||
<li>Fix issues with chunked transfer encoding in the RRDP HTTP client. | <li>Fix issues with chunked transfer encoding in the RRDP HTTP client. | ||
<li>Cleanup and improvement of how IO is handled. | <li>Cleanup and improvement of how IO is handled. | ||
<li>Improvements in the way X509 certificates are verified. | <li>Improvements in the way X509 certificates are verified. | ||
<li>Make rpki-client | |||
<li>Limit the number of concurrent rsync processes. | <li>Limit the number of concurrent rsync processes. | ||
<li>Fix CRLF in tal files. | <li>Fix CRLF in tal files. | ||
<li>Enforce the correct namespace of rrdp files. | <li>Enforce the correct namespace of rrdp files. | ||
|
|
||
<li>Do not apply timezone offsets when converting X509 times. X509 | <li>Do not apply timezone offsets when converting X509 times. X509 | ||
times are in UTC and comparing them to times in different timezones | times are in UTC and comparing them to times in different timezones | ||
would cause validity problems. | would cause validity problems. | ||
<li>Limited the number of <a | |||
href="https://man.openbsd.org/openrsync.1">openrsync(1)</a> processes | |||
being spawned by <a | |||
href="https://man.openbsd.org/rpki-client.8">rpki-client(8)</a> to 16. | |||
</ul> | </ul> | ||
<!-- bgpd --> | <!-- bgpd --> | ||
<li>In <a href="https://man.openbsd.org/bgpd.conf.5">bgpd(8)</a>, | <li>In <a href="https://man.openbsd.org/bgpd.conf.5">bgpd(8)</a>, | ||
<ul> | <ul> | ||
<li>Macro expansion in the config file was improved. It is now possible | |||
to expand 'set large-community $myAS:$location:$transit'. | |||
<li>The RIB codebase was refactored in order to add multipath | |||
support in an upcoming release. | |||
<li>The <a href="https://man.openbsd.org/bgpd.8">bgpd</a> login | <li>The <a href="https://man.openbsd.org/bgpd.8">bgpd</a> login | ||
class datasize attribute (in <a | class datasize attribute (in <a | ||
href="https://man.openbsd.org/login.conf.5">login.conf(5)</a>) was set | href="https://man.openbsd.org/login.conf.5">login.conf(5)</a>) was set | ||
to either 16G or 1G, depending on architecture. | to either 16G or 1G, depending on architecture. | ||
<li>Added a "listen on" parameter in in <a | <li>Macro expansion in the config file was improved. It is now possible | ||
href="https://man.openbsd.org/bgpd.conf.5">bgpd.conf(5)</a> to make it | to expand 'set large-community $myAS:$location:$transit'. | ||
<li>Added a "port" option to "listen on" and the "neighbor" section | |||
in <a href="https://man.openbsd.org/bgpd.conf.5">bgpd.conf(5)</a> to make it | |||
possible to bind and connect to non-default ports. | possible to bind and connect to non-default ports. | ||
<li>The RIB codebase was refactored in order to add multipath | |||
support in an upcoming release. | |||
</ul> | </ul> | ||
</ul> | </ul> | ||