BSDSec

deadsimple BSD Security Advisories and Announcements

OpenBGPD 7.0 released

We have released OpenBGPD 7.0, which will be arriving in the
OpenBGPD directory of your local OpenBSD mirror soon.

This release includes the following changes to the previous release:

    * Stop processing queued UPDATES when the max-prefix limit was reached.

    * Improve negotiation for route refresh, graceful restart and
      multi-protocol capabilities

    * Correctly track 'rde evaluate all' and 'export' settings during reload.

    * Properly withdraw prefixes when 'rde evaluate all' is used.

    * Fix MRT handling on initial startup for message dump types.

    * Fix and use non-blocking connect for RTR sessions.

    * Fully implement RFC 6286 by checking for BGP ID collisions.

    * Adjust the 4-byte AS number handling to RFC 6793 by changing error
      behaviour from prefix witdraw to attribute discard.

    * In bgpctl print out both the sent "Neighbor capabilities" and the
      "Negotiated capabilities" for a session. 

    * Print timestamps both as a formatted and a pure time in seconds
      filed in various JSON objects.

OpenBGPD-portable is known to compile and run on FreeBSD, and
the Linux distributions Alpine, Debian, Fedora, RHEL/CentOS and Ubuntu.
It is our hope that packagers take interest and help adapt OpenBGPD-portable
to more distributions.

We welcome feedback and improvements from the broader community.
Thanks to all of the contributors who helped make this release
possible.