aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2010-09-09Downgrade syslog priority of a few messagesRob Austein
svn path=/rpkid/rpki/https.py; revision=3444
2010-09-08Clean up unnecessarily opaque test condition.Rob Austein
svn path=/rpkid/rpki/rpki_engine.py; revision=3443
2010-09-08Partial (incomplete, written in a hospital waiting room) BPKI revocationn ↵Rob Austein
support. svn path=/rpkid/rpki/myrpki.py; revision=3442
2010-09-07Print CMS signingTime.Rob Austein
svn path=/utils/print_manifest/print_manifest.c; revision=3441
2010-09-07Add support for extracting signingTime from CMS messages.Rob Austein
svn path=/pow/POW-0.7/POW.c; revision=3440
2010-09-03Add new "Auto_update" flavor of DER objects: this is like Auto_file,Rob Austein
but saves the filename from which it was loaded, and attempts to reload itself automatically if the file's st_mtime changes. svn path=/rpkid/irdbd.py; revision=3439
2010-09-03Restrict extra identity checks for trusted BPKI EE certificates toRob Austein
subject name and public key, so that things won't come to a grinding halt if BPKI certificates are updated while daemons are running. svn path=/rpkid/rpki/x509.py; revision=3438
2010-09-03We don't really need the *.cacert.cer files.Rob Austein
svn path=/rpkid/rpki/myrpki.py; revision=3437
2010-09-01Clean up old sample trust anchorsRob Austein
svn path=/rcynic/sample-trust-anchors/iana-zsz.cer; revision=3436
2010-08-31regenRob Austein
svn path=/rpkid/publication-schema.rng; revision=3435
2010-08-31Sadly, it turns out that CRLs really can grow large enough to hit theRob Austein
length limits previously set in this schema as a precaution. Remove length limit and cross fingers, at least for now. svn path=/rpkid/publication-schema.rnc; revision=3434
2010-08-30Use correct exception handler in call_pubd()Rob Austein
svn path=/rpkid/rpki/left_right.py; revision=3433
2010-08-30Another dropped exception event, sigh.Rob Austein
svn path=/rpkid/rpki/https.py; revision=3432
2010-08-29Break XML packet dumps into multiple lines when logging schemaRob Austein
validation errors. svn path=/rpkid/rpki/publication.py; revision=3431
2010-08-28Allow disabling summary, mostly for extracting presentation slidesRob Austein
svn path=/rcynic/rcynic.xsl; revision=3430
2010-08-28Add test for withdrawing ROARob Austein
svn path=/rpkid/tests/smoketest.3.yaml; revision=3429
2010-08-28Clean up publication_queue wrapper methodsRob Austein
svn path=/rpkid/rpki/rpki_engine.py; revision=3428
2010-08-28Suppress duplicate roa_requestsRob Austein
svn path=/rpkid/rpki/left_right.py; revision=3427
2010-08-24Roll APNIC sample TA per mail from RobLRob Austein
svn path=/rcynic/sample-trust-anchors/apnic.cer; revision=3426
2010-08-24Schema changes a while backRob Austein
svn path=/rpkid/doc/rpkid.dot; revision=3425
2010-08-23APNIC 30 RPKI slidesRob Austein
svn path=/presentations/070523.lacnic-pki.pdf; revision=3424
2010-08-13Error in assertion messageRob Austein
svn path=/rpkid/rpki/resource_set.py; revision=3423
2010-08-06More informative title for <hostname/> field.Rob Austein
svn path=/rcynic/rcynic.c; revision=3422
2010-08-03Conversion script for TLS removal flag dayRob Austein
svn path=/scripts/convert-https-to-http.py; revision=3421
2010-07-30Doc nitRob Austein
svn path=/rpkid/rpki/__doc__.py.in; revision=3420
2010-07-28Add ITA for RIPE's current RTA, per TimRob Austein
svn path=/rcynic/sample-trust-anchors/ripe.ita; revision=3419
2010-07-27strictly enforce non-overlapping resource ranges in AddressRange and Asn ↵Michael Elkins
object trees. add cert member to Roa class to hold a pointer to the resource cert from which all prefixes in the roa derive svn path=/portal-gui/rpkigui/myrpki/forms.py; revision=3418
2010-07-22Doh. Thanks, Michael.Rob Austein
svn path=/rpkid/tests/smoketest.py; revision=3417
2010-07-19fix bug where instance method was called on class objectMichael Elkins
svn path=/portal-gui/scripts/list_resources.py; revision=3416
2010-07-16improved support for viewing unallocated address ranges in the dashboard and ↵Michael Elkins
prefix views svn path=/portal-gui/Makefile.in; revision=3415
2010-07-16irdbd uses MySQLdb directly, so has to db.ping(reconnect) on its ownRob Austein
to keep SQL connection open. Feh. svn path=/rpkid/irdbd.py; revision=3414
2010-07-16Only regenerate manifest and CRL once for batch ROA updates.Rob Austein
svn path=/rpkid/rpki/left_right.py; revision=3413
2010-07-16Doh, .sql_mark_deleted() works better if it also marks record dirty.Rob Austein
svn path=/rpkid/rpki/sql.py; revision=3412
2010-07-16Duct tape and bailing wire fix for .update_roas(). This isn't rightRob Austein
yet, arguably the underlying design is wrong here, but at least in theory this code should now clean up after itself. svn path=/rpkid/rpki/left_right.py; revision=3411
2010-07-15CleanupRob Austein
svn path=/scripts/debug-roas.py; revision=3410
2010-07-15Display some of the DER fields tooRob Austein
svn path=/scripts/debug-roas.py; revision=3409
2010-07-15Test scriptRob Austein
svn path=/scripts/debug-roas.py; revision=3408
2010-07-15ParanoiaRob Austein
svn path=/rpkid/rpki/left_right.py; revision=3407
2010-07-15More ROA loggingRob Austein
svn path=/rpkid/rpki/left_right.py; revision=3406
2010-07-15Can't see any reason why roa.asn should ever be NULL either.Rob Austein
svn path=/rpkid/rpkid.sql; revision=3405
2010-07-15I can think of no sane reason to allow roa.roa or roa.cert to be NULL.Rob Austein
svn path=/rpkid/rpkid.sql; revision=3404
2010-07-15Clean up unit testRob Austein
svn path=/rpkid/rpki/adns.py; revision=3403
2010-07-15Rolling expirations testRob Austein
svn path=/rpkid/tests/smoketest.9.yaml; revision=3402
2010-07-15Log reason for deciding to generate a ROA.Rob Austein
svn path=/rpkid/rpki/rpki_engine.py; revision=3401
2010-07-14Use setsockopt() to force normal (ie, BSD-like) IPv6 socket behaviorRob Austein
even on Linux. svn path=/rpkid/rpki/https.py; revision=3400
2010-07-14Fix several Linux-related problems found during last workshop:Rob Austein
1) rpki.https.http_listener() didn't handle .bind() failure properly, which left asyncore in a weird state. 2) On Linux, sockaddr.getaddr() can return duplicate records. This is insane, but the maintainers appear to consider this a feature, so we have to suppress it. 3) Linux's support for IPv4 mapped addresses in IPv6 is so whacked that it's impossible to tell whether a socket.bind() failure is real or an artifact of Linux's whacked API without checking the value of a magic sysctl. This is just too much fun for words, so IPv6 listeners are now disabled by default on Linux; feel free to turn them on yourself, but don't blame me if they bite you. svn path=/rpkid/rpki/https.py; revision=3399
2010-07-13change prefix split form to accept single input box in which the user can ↵Michael Elkins
enter a CIDR or range remove hyperlinks for roa/delete when the prefix has been allocated to a child svn path=/portal-gui/rpkigui/myrpki/forms.py; revision=3398
2010-07-13use specific exit code when list_resources.py detects it did not receive all ↵Michael Elkins
expected responses svn path=/portal-gui/scripts/list_resources.py; revision=3397
2010-07-12more copyright notice updates for $top/portal-gui/scripts/Michael Elkins
svn path=/portal-gui/scripts/helper.in; revision=3395
2010-07-12fix copyright noticesMichael Elkins
svn path=/portal-gui/rpkigui/django.wsgi.in; revision=3394
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-28 12:03:45 +0000