0.18.5

New

• ca::idexchange::Error now impls std::error::Error. (#297)
• Re-export bcder as dep::bcder if it is enabled. (#299)
• Added PublisherRequest::set_publisher_handle. (#300)
• Added uri::{Rsync,Https}::path_into_dir (#302)
• Added Ipv4Block and Ipv6Block and FromIterator impls for Ipv4Blocks and Ipv6Blocks. (#298)
• Made AddressRange public and added methods to convert ranges into a set of prefixes. (#306)
• Updated the ASPA RTR PDU to conform with version -14 of draft-ietf-sidrops-8210bis. (#309)
• Enable ASPA version 2 in the RTR server. (#318)
• The ASPA ProviderAsSet now keeps track of its length and exposes it via the new len method. (#315)
• The ASPA Provider AS Set is now limited to 16380 entries when parsing from ASPA objects and creating RTR PDUs. (#316)
• Exposed ca::idcert::TbsIdCert::validity. (#310);
• Protect against maliciously large XML input to the RRDP parser. This will allow re-enabling GZIP support in RRDP clients. (#319)

Bug fixes

• Do not allow backslashes in idexchange handles. (#304)
• Check the content of file names in a manifest during parsing. This fixes a crash when later code assumes that the file names only contain ASCII characters and otherwise panics. (#320)

Other changes

• The minimum supported Rust version is now 1.73. (#319)

0.18.4

Bug fixes

• Correctly encode a CRL with empty revokedCertificates. (#295)

0.18.3

New

• Added rrdp::NotificationFile::parse_limited that allows parsing while limiting the length of the list of deltas. (#293)

0.18.2

New

• Serial can now be converted from and to [u8; 20]. (#285)
• Added uri::Https::eq_authority and
  rrdp::NotificationFile::has_matching_origin to check for same origin
  rules in RRDP. (#287)

0.18.1

Bug fixes

• The RTR server now returns the expected protocol version in the version negotiation error message rather than the requested version. (#280)
• The RTR server does not accept protocol version 2 for now to avoid sending illegal ASPA PDUs. This is a workaround until the final format of the PDU is specified. (#281)
• Fixed protocol version negotiation in the RTR client. It will now error out if the server responds with a version greater than the requested one rather just accepting it. (#282)

0.18.0

Breaking changes

• Upgraded ring to 0.17 and quick-xml to 0.31. (#287)

0.17.2

Bug fixes

• Upgraded the dependency on bcder to at least 0.7.3 to avoid a number of decoding issues described in CVE-2023-39914. (#272)

0.17.1

New

• Added a new method write_encoded_slice to util::base64::Slurm. (#269)

Bug fixes

• Correctly rejects ASPA objects that have a version of 0. (#270)

0.17.0

Breaking changes

• Dropped dependency on routecore again and moved all used types into rpki-rs. The new module resources contains the AS and IP address resources. The BGPsec key identifier is now an actual type in crypto::keys. (#261)
• Changed the implementation of ASPA objects to conform with version 15 of the profile draft. (#264, #265)
• Changed the ASPA RTR PDU to not use the AFI flags any more and always set it to 0. (#264)

New

• Made rtr::server::NotifyReceiver public. (#259)
• Added an exclusion check to SLURM’s router key filters and provided
  type-specific check methods for the other types. (#260)
• Added a new module util::base64 that provides Base 64 encoding of data
  for various scenarios. (#263)

0.16.1

New

• Added implementations for the arbitrary::Arbitrary trait to ASN and IP resource types. (#255)
• Added more strict checks to validation of ASPA objects in accordance with draft-ietf-sidrops-aspa-profile-12. (#256)

Other changes

• Downgraded the minimum Rust version to 1.63. (#257)