aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2012-03-21Merge from trunk.Rob Austein
svn path=/branches/tk161/; revision=4408
2012-03-21Merge from trunk/.Rob Austein
svn path=/branches/tk161/; revision=4405
2012-03-19Sync from trunk.Rob Austein
svn path=/branches/tk161/; revision=4403
2012-03-16Rework failure rate computation to use rolling 72 hour window, asRob Austein
previous metric was incomprehensible. svn path=/trunk/; revision=4401
2012-03-15Tweak exception handling code to log exception class. See #212.Rob Austein
svn path=/trunk/; revision=4400
2012-03-15Sigh, make work with Python 2.6 again.Rob Austein
svn path=/trunk/; revision=4399
2012-03-15No gdbm on MacOSX.Rob Austein
svn path=/trunk/; revision=4398
2012-03-15Add ylabels; cleanup.Rob Austein
svn path=/trunk/; revision=4397
2012-03-12"make depend" is currently (OpenSSL 1.0.0h) broken on Mac OS X,Rob Austein
because it goes looking for a non-existent "makedepend" program. As far as I can tell, everything works fine if we just ignore the failure and press on with the OpenSSL build, so we now do that. Sigh. svn path=/trunk/; revision=4396
2012-03-12CVE-2012-0884 (Bleichenbacher's "Million Message Attack") only appliesRob Austein
to CMS when used for encryption, so I don't think it's a serious issue for RPKI CMS signed data, but upgrade to OpenSSL 1.0.0h anyway. svn path=/trunk/; revision=4395
2012-03-11Use gdbm module directly instead of whacky anydb module.Rob Austein
svn path=/trunk/; revision=4394
2012-03-11Debug rekey/revoke code, mostly SQL interface issues.Rob Austein
This fixes #218. I think. svn path=/trunk/; revision=4393
2012-03-09Move AKI checks to precede signature check, as AKI checks are cheaper.Rob Austein
svn path=/trunk/; revision=4392
2012-03-09Fix fencepost error in walk_ctx_loop_next(). This closes #219.Rob Austein
svn path=/trunk/; revision=4391
2012-03-09Use Python "shelve" module to avoid processing XML we've already seenRob Austein
in a previous run, which speeds this tediously slow script up by something close to an order of magnitude. svn path=/trunk/; revision=4390
2012-03-07Start collecting data on how long it takes to run the bits we careRob Austein
about on the relying party side (time to fetch, time to validate). svn path=/trunk/; revision=4389
2012-03-07Break mirroring out of torrent creation, as they may need to run onRob Austein
very different schedules. svn path=/trunk/; revision=4388
2012-03-06Change default host for transmission RPC connection from "localhost"Rob Austein
to "127.0.0.1". Feh. svn path=/trunk/; revision=4387
2012-03-02Add lockfile support, to let us serialize rcynic runs. AllowRob Austein
configuration of our idea of the unauthenticated directory independent of rcynic, to avoid interfering with chroot configuration. svn path=/trunk/; revision=4386
2012-03-02Add keep-lockfile, to simplify process queuing.Rob Austein
svn path=/trunk/; revision=4385
2012-03-02First smoke test of generation and upload code.Rob Austein
svn path=/trunk/; revision=4384
2012-03-01Add seed ratio tweak.Rob Austein
svn path=/trunk/; revision=4383
2012-03-01Record failure when we can't even parse a trust anchor, much lessRob Austein
check it (eg, recent AfriNIC incident). Fixes #187. svn path=/trunk/; revision=4382
2012-03-01Work around atomic-rename problem using OpenSSH-specific extension.Rob Austein
svn path=/trunk/; revision=4381
2012-03-01Ignore atomic installation issue for now. Maybe ask author ofRob Austein
paramiko about it some day. svn path=/trunk/; revision=4380
2012-03-01Generation of new torrents almost working, except that SFTP doesn'tRob Austein
support atomic rename without a protocol extension which paramiko doesn't support (yet?). Yeargh. svn path=/trunk/; revision=4379
2012-02-29CheckpointRob Austein
svn path=/trunk/; revision=4378
2012-02-29Whack rootd's silly handling of CRL numbers and subject certificateRob Austein
serial numbers, to avoid resetting these values when rootd reboots. rootd is such a kludge. This fixes #214. svn path=/trunk/; revision=4377
2012-02-29CheckpointRob Austein
svn path=/trunk/; revision=4376
2012-02-28CheckpointRob Austein
svn path=/trunk/; revision=4375
2012-02-28CheckpointRob Austein
svn path=/trunk/; revision=4374
2012-02-28IdRob Austein
svn path=/trunk/; revision=4373
2012-02-28Checkpoint of rcynic-over-BitTorrent hack, using transmission-daemonRob Austein
as the BitTorrent engine. This is a work in progress, and doesn't yet include the hacks either to generate torrents or to follow multiple torrents in parallel. svn path=/trunk/; revision=4372
2012-02-26Allow configuration of authenticated and unauthenticated directoriesRob Austein
from command line, to simplify use with alternate fetch mechanisms. svn path=/trunk/; revision=4371
2012-02-25.mnf -> .mft.Rob Austein
svn path=/trunk/; revision=4370
2012-02-24add more information to the Parent detail view. closes #205Michael Elkins
svn path=/branches/tk161/; revision=4369
2012-02-24remove .title() from the template tags to retrieve the verbose_name of ↵Michael Elkins
objects in the generic lists properly capitalize the model names in verbose_name{,_plural}. closes #204 svn path=/branches/tk161/; revision=4368
2012-02-24display current resource handle in a larger font. closes #206Michael Elkins
svn path=/branches/tk161/; revision=4367
2012-02-24reword text to avoid indicating where the route origin validation table is ↵Michael Elkins
relative to the confirmation form. closes #203 svn path=/branches/tk161/; revision=4366
2012-02-24move copyright notice to comment block. pep8 formatting.Michael Elkins
svn path=/branches/tk161/; revision=4365
2012-02-24remove the admin link from the topbar. closes #202Michael Elkins
svn path=/branches/tk161/; revision=4364
2012-02-24HttpResponse is not an exceptionMichael Elkins
svn path=/branches/tk161/; revision=4363
2012-02-23move the 'select identity' link to the app_base template, inside the ↵Michael Elkins
is_superuser check. svn path=/branches/tk161/; revision=4362
2012-02-22remove gui interface to update_bpki since this should be run either by the ↵Michael Elkins
cli or in cron svn path=/branches/tk161/; revision=4361
2012-02-22Preserve old BPKI CA subject names when we can, since changing themRob Austein
requires re-doing OOB initialization dance. svn path=/branches/tk161/; revision=4360
2012-02-22rpki.rpkic.main.do_update_bpki() wasn't writing updated BPKI object toRob Austein
disk; see #200. Make BPKI certificate lifetimes and CRL intervals configurable; closes #201. svn path=/branches/tk161/; revision=4359
2012-02-22Make base_port configurable in [yamltest] section of rpki.conf. See #200.Rob Austein
svn path=/branches/tk161/; revision=4358
2012-02-22invoke .save() after calling .avow() or .generate_crl() to ensure the newly ↵Michael Elkins
generated objects are saved to the db. closes #200 svn path=/branches/tk161/; revision=4357
2012-02-21Another test configuration.Rob Austein
svn path=/trunk/; revision=4356
2012-02-20Include self_handle in up-down resource mismatch reports. Closes #14.Rob Austein
svn path=/trunk/; revision=4355
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-01 16:05:15 +0000