CVSROOT: /cvs
Module name: src
Changes by: clau...@cvs.openbsd.org 2021/04/01 10:04:48
Modified files:
usr.sbin/rpki-client: Makefile extern.h main.c rpki-client.8
Added files:
usr.sbin/rpki-client: repo.c rrdp.c rrdp.h rrdp_delta.c
rrdp_notification.c rrdp_snapshot.c
Log message:
Initial commit of RRDP (The RPKI Repository Delta Protocol - RFC8182) support
in rpki-client. For now it is off by default.
All XML processing is done in its own process with minimal pledge rights.
It uses the already present https process to fetch the xml files and uses
the master porcess to handle the file IO into the repositories.
RRDP data is stored in the cache under ./rrdp/ and the first directory
is the SHA256 hash of the notify URI.
Fetching snapshots and deltas works to bring the cache up to date.
If something goes wrong rpki-client will fall back to rsync.
RRDP was implemented by Nils Fisher and integrated into rpki-client by myself.
"Time to get it in" deraadt@
