Introduce a maximum size for a single flowspec NLRI of 4000 bytes.
Enforce this in both in the parser but also in the RDE.
In the RDE flowspec_valid() will error out if the lenght is too long
but also pt_get_flow() and pt_add_flow() will error out.
The fixed buffer in pt_get_flow() is now sized appropriately instead
of using a arbitrary size.
OK tb@
rpki-client: switch subordinates in CCR manifests to a simple queue
Using a simple list meant that we reversed the order on parsing, resulting
in confusing output in file mode. This is output cosmetics: the CCR DER is
unaffected.
Problem spotted by/ok job (who also wrote the exact same diff)
bluemoon: regen distinfo, tarball was rerolled.
The only change is in NEWS.adoc:
-2.15: 2026-03-29::
- Packaging fixes.
+2.15: 2026-04-04::
+ Manor metadata changes to help packagers.
Pointed out by naddy@, thanks!
Various fixes to the flowspec parser
- handle PROTO proto_item like PROTO { proto_item }.
- The LENGTH spec needs to be adjusted, curflow->type needs to be set
before evaluating lengthspec.
- Twice $$ is used in error checking before $$ was set. Use $1 instead.
- extra semicolon after flags
OK tb@
dosfstools: adjust TEST_DEPENDS after editors/vim,-main removal.
The vim port no longer has a -main subpackage, so depend on editors/vim
directly instead.
