Hi all,
We have a new release ready, rpstir-0.11. This version fixes a couple
of serious bugs. Full ChangeLog and download link below:
* Fix a bug where ROAs with hundreds of ROAIPAddresses or more
would be
truncated.
* Add support for new-style Trust Anchor Locators (TALs)
[draft-ietf-sidr-rfc6490-bis-03].
* Fix a potential buffer overflow in code that handles
untrusted input.
* Fix performance scaling of rpki-rtr-daemon. The
rpki-rtr-daemon
previously had poor performance with very large
rtr_incremental or
rtr_full tables.
* Decrease the likelihood of a malformed rsync URI resulting in
a
successful attack, by passing the --protect-args option to
rsync.
* Improve conformance to [RFC6810] by sending a No Data
Available PDU
instead of a Cache Reset PDU in response to a serial query
for which
we don't have data yet.
* Fix expired certificates in the test suite.
* Fix a potential infinite loop in one of the self tests.
* Fix a compatibility bug in the test suite, where the tests
were
failing on several popular systems that use a particular
version of
netcat.
Download: https://sourceforge.net/projects/rpstir/
Contact: rpstir-supp...@bbn.com
--
David Eric Mandelberg / dseomn
http://david.mandelberg.org/
------------------------------------------------------------------------------
_______________________________________________
rpstir-announce mailing list
rpstir-annou...@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rpstir-announce
------------------------------------------------------------------------------
_______________________________________________
rpstir-devel mailing list
rpstir-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/rpstir-devel
