Release 0.14.0-rc1. (#964)

Breaking changes

* Keep the content of an RRDP repository in a single file rather than
  as individual files under a directory. ([#886])
* Changed the `summary` output format to have all lines end in a
  semicolon. ([#907])
* Changed the options used for `rsync`. The options `-rtO --delete` are
  now always used. The options set in the `rsync-args` are added or, if
  that is not used, `-z` and `--no-motd`, as well as `--contimeout=10`
  if it is supported by the rsync command, and `--max-size` if the
  `max-object-size` option has not been set to 0. ([#962])

New

* The `chain_validity` value in the `jsonext` format now considers the
  validity of the manifest’s EE certificates. A new `stale` value shows
  the time when any of the publication points along the way will become
  stale. ([#945])
* If a collected manifest has a lower manifest number or an older
  thisUpdate field than a stored manifest for the same CA, the collected
  manifest is ignored and the stored publication point is used instead.
  This implements a requirement added in [RFC 9286]. ([#946], [#954])
* The number of delta entries in a RRDP notification file is now limited
  to 500 by default. If there are more entries, the deltas are ignored and
  the snapshot is used. The limit can be changed through the new
  `rrdp-max-delta-list-len` configuration value. ([#961])
* The RRDP collector now falls back to a snapshot update if the hash of
  a delta listed in the notification file has changed from the previous
  update. This implements [draft-ietf-sidrops-rrdp-desynchronization-00].
  ([#951])
* The RRDP collector now enforces that all URIs referred to or redirected
  to by an RRDP server have the same origin as the rpkiNotify URI in the
  CA certificate. ([#953])
* The config file used is now printed for some commands. This should help
  with avoiding confusion when running Routinator as different users.
  ([#959])

Bug fixes

* Fixed an issue where the refresh time was calculated as zero under
  certain conditions until the dataset was updated. ([#940])
* Add the current RRDP serial number to the RRDP server metrics when a
  Not Modified response is received so that Prometheus shows a constant
  value.

Cargo.toml

@@ -1,7 +1,7 @@
 [package]
 # Note: some of these values are also used when building Debian packages below.
 name = "routinator"
-version = "0.14.0-dev"
+version = "0.14.0-rc1"
 edition = "2021"
 rust-version = "1.70"
 authors = ["NLnet Labs <rpki-team@nlnetlabs.nl>"]

Changelog.md

@@ -1,6 +1,8 @@
 # Change Log
 
-## Unreleased next version
+## 0.14.0-rc1
+
+Released 2024-06-10.
 
 Breaking changes
 
@@ -47,8 +49,6 @@ Bug fixes
   Not Modified response is received so that Prometheus shows a constant
   value.
 
-Other changes
-
 [#886]: https://github.com/NLnetLabs/routinator/pull/886
 [#907]: https://github.com/NLnetLabs/routinator/pull/907
 [#940]: https://github.com/NLnetLabs/routinator/pull/940

doc/routinator.1

@@ -27,7 +27,7 @@ level margin: \\n[rst2man-indent\\n[rst2man-indent-level]]
 .\" new: \\n[rst2man-indent\\n[rst2man-indent-level]]
 .in \\n[rst2man-indent\\n[rst2man-indent-level]]u
 ..
-.TH "ROUTINATOR" "1" "Sep 21, 2023" "0.13.1-dev" "Routinator"
+.TH "ROUTINATOR" "1" "Jun 10, 2024" "0.14.0-rc1" "Routinator"
 .SH NAME
 routinator \- RPKI relying party software
 .SH SYNOPSIS
@@ -324,6 +324,14 @@ instead. If the option is missing, the default of 100 is used.
 .UNINDENT
 .INDENT 0.0
 .TP
+.B \-\-rrdp\-max\-delta\-list\-len=len
+If the number of deltas included in the notification file of an RRDP
+repository is larger than the value provided, the delta list is
+considered empty and the snapshot is used instead. If the option is
+missing, the default of 500 is used.
+.UNINDENT
+.INDENT 0.0
+.TP
 .B \-\-rrdp\-timeout=seconds
 Sets the timeout in seconds for any RRDP\-related network operation,
 i.e., connects, reads, and writes. If this option is omitted, the
@@ -605,9 +613,11 @@ assertion in a local exception file.
 For RPKI objects, \fItal\fP provides the name of the trust
 anchor locator the object was published under, \fIuri\fP
 provides the rsync URI of the ROA or router certificate,
-\fIvalidity\fP provides the validity of the ROA itself, and
+\fIvalidity\fP provides the validity of the ROA itself,
 \fIchainValidity\fP the validity considering the validity of
-the certificates along the validation chain.
+the certificates along the validation chain, and
+\fIstale\fP the time when any of the publication points along
+the validation chain becomes stale.
 .sp
 For  assertions from local exceptions, \fIpath\fP will provide
 the path of the local exceptions file and, optionally,
@@ -1000,8 +1010,8 @@ The name of the user to change to for server mode. It this
 option is provided, Routinator will run as that user after the
 listening sockets for HTTP and RTR have been created. This may
 cause problems, if the user is not allowed to write to the
-directory given as repository directory or is not allowed to
-read the TAL directory or local exception files.
+directory given as repository directory or local exception
+files.
 .UNINDENT
 .INDENT 7.0
 .TP
@@ -1191,14 +1201,16 @@ A string specifying the command to use for running rsync. The
 default is simply \fIrsync\fP\&.
 .TP
 .B rsync\-args
-A list of strings containing the arguments to be passed to the
-rsync command. Each string is an argument of its own.
+A list of strings containing additional arguments to be passed
+to the rsync command. Each string is an argument of its own.
 .sp
-If this option is not provided, Routinator will try to find out
-if your rsync understands the \fB\-\-contimeout\fP option and, if so,
-will set it to 10 thus letting connection attempts time out after
-ten seconds. If your rsync is too old to support this option, no
-arguments are used.
+The options \fB\-rtO \-\-delete\fP are always passed to the command.
+The options listed in the option are added to it.
+.sp
+If the option is not provided, Routinator will add \fB\-z\fP and
+\fB\-\-no\-motd\fP, as well as \fB\-\-contimeout=10\fP if it is supported
+by the rsync command, and \fB\-\-max\-size\fP if the
+\fBmax\-object\-size\fP option has not been set to 0.
 .TP
 .B rsync\-timeout
 An integer value specifying the number seconds an rsync command
@@ -1227,6 +1239,12 @@ An integer value that specifies the maximum number of deltas
 necessary to update an RRDP repository before using the snapshot
 instead. If the value is missing, the default of 100 is used.
 .TP
+.B rrdp\-max\-delta\-list\-len
+An integer value that specifies the maximum number of deltas
+listed the notification file of an RRDP repository before the
+list is considered empty and the snapshot is used instead.
+If the value is missing, the default of 500 is used.
+.TP
 .B rrdp\-timeout
 An integer value that provides a timeout in seconds for all
 individual RRDP\-related network operations, i.e., connects,
@@ -1704,6 +1722,6 @@ update the repository fail.
 .SH AUTHOR
 Jaap Akkerhuis wrote the original version of this manual page, Martin Hoffmann extended it for later versions.
 .SH COPYRIGHT
-2018–2023, NLnet Labs
+2018–2024, NLnet Labs
 .\" Generated by docutils manpage writer.
 .